pid_11 0KB 3KB pid_10 0KB 3KB pid_9 0KB 3KB pid_8 0KB 4KB pid_7 0KB 4KB INFO: task kworker/u4:8:9456 blocked for more than 140 seconds. Not tainted 4.19.211-syzkaller #0 pid_6 0KB 4KB pid_5 2KB 4KB "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. pid_4 13KB 15KB kworker/u4:8 D25664 9456 2 0x80000000 Workqueue: netns cleanup_net pid_3 10KB 15KB pid_2 509KB 516KB Call Trace: context_switch kernel/sched/core.c:2828 [inline] __schedule+0x887/0x2040 kernel/sched/core.c:3517 batadv_tt_change_cache 0KB 3KB batadv_tl_cache 4KB 8KB schedule+0x8d/0x1b0 kernel/sched/core.c:3561 p9_req_t 1KB 8KB TIPC 2601KB 2602KB schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3619 __mutex_lock_common kernel/locking/mutex.c:1016 [inline] __mutex_lock+0x5f0/0x1190 kernel/locking/mutex.c:1078 rds_tcp_incoming 0KB 3KB rds_tcp_connection 14KB 14KB rds_connection 1KB 7KB SCTPv6 7705KB 7709KB DCCPv6 8555KB 8557KB DCCP 8136KB 8136KB L2TP/IPv6 110KB 110KB RXRPC 2817KB 2821KB rxrpc_call_jar 19507KB 19514KB bridge_fdb_cache 11KB 15KB fib6_nodes 168KB 188KB ip6_dst_cache 128KB 397KB RAWv6 34799KB 34803KB UDPv6 3270KB 3270KB TCPv6 5514KB 5514KB nf_conntrack 4KB 22KB AF_VSOCK 61KB 63KB t10_alua_lu_gp_cache 0KB 3KB sd_ext_cdb 0KB 7KB scsi_sense_cache 1056KB 1060KB virtio_scsi_cmd 16KB 16KB sgpool-128 8KB 8KB sgpool-64 4KB 12KB sgpool-32 2KB 15KB sgpool-16 1KB 7KB sgpool-8 0KB 7KB mqueue_inode_cache 10KB 15KB bio_post_read_ctx 14KB 15KB bio-2 14KB 15KB jfs_mp 7KB 7KB fuse_request 1KB 4KB cifs_small_rq 15KB 16KB cifs_request 67KB 67KB cifs_mpx_ids 0KB 7KB nfs_commit_data 3KB 14KB nfs_write_data 34KB 44KB ext4_system_zone 1KB 7KB kioctx 5KB 7KB aio_kiocb 1KB 3KB fanotify_event_info 0KB 3KB bio-1 1KB 7KB pid_namespace 59KB 65KB kvm_vcpu 0KB 95KB rpc_buffers 17KB 25KB rpc_tasks 2KB 7KB UNIX 129KB 131KB tcp_bind_bucket 217KB 224KB inet_peer_cache 0KB 4KB xfrm_state 3KB 8KB ip_fib_trie 23KB 31KB ip_fib_alias 111KB 134KB ip_dst_cache 7KB 56KB RAW 20544KB 20550KB UDP 5860KB 5865KB TCP 253KB 258KB hugetlbfs_inode_cache 8KB 15KB fscache_cookie_jar 1KB 7KB eventpoll_pwq 10KB 39KB eventpoll_epi 20KB 43KB inotify_inode_mark 7KB 19KB request_queue 199KB 199KB blkdev_requests 1KB 3KB blkdev_ioc 47KB 54KB bio-0 9703KB 9705KB biovec-max 2120KB 2120KB biovec-64 5295KB 5299KB biovec-16 1910KB 1912KB bio_integrity_payload 1KB 8KB khugepaged_mm_slot 234KB 240KB user_namespace 5KB 11KB uid_cache 0KB 4KB dmaengine-unmap-2 0KB 3KB skbuff_fclone_cache 38KB 41KB skbuff_head_cache 12694KB 12720KB configfs_dir_cache 3KB 11KB file_lock_cache 6KB 7KB file_lock_ctx 9KB 11KB fsnotify_mark_connector 3KB 11KB net_namespace 29933KB 29933KB shmem_inode_cache 7917KB 8127KB task_delay_info 1792KB 2589KB taskstats 20KB 68KB proc_dir_entry 155008KB 155013KB pde_opener 1KB 11KB seq_file 90KB 90KB sigqueue 243KB 271KB kernfs_node_cache 435198KB 435200KB mnt_cache 316KB 336KB filp 5868KB 7402KB names_cache 44017KB 44017KB iint_cache 94KB 99KB key_jar 5KB 15KB uts_namespace 36KB 39KB nsproxy 320KB 328KB vm_area_struct 34872KB 34897KB mm_struct 6405KB 6409KB fs_cache 2391KB 3484KB files_cache 8695KB 10845KB signal_cache 13502KB 17178KB sighand_cache 12457KB 12487KB task_struct 58693KB 58744KB cred_jar 4909KB 7228KB anon_vma_chain 44105KB 44107KB anon_vma 11152KB 11161KB pid 594KB 780KB Acpi-Operand 156KB 202KB Acpi-ParseExt 9KB 11KB Acpi-Parse 41KB 47KB Acpi-State 52KB 63KB Acpi-Namespace 20KB 23KB numa_policy 0KB 3KB debug_objects_cache 34629KB 34630KB trace_event_file 297KB 298KB ftrace_event_field 398KB 401KB pool_workqueue 3576KB 3580KB page->ptl 6450KB 6463KB kmalloc-2097152 2050KB 2050KB kmalloc-524288 2056KB 2056KB kmalloc-262144 1290KB 1290KB kmalloc-131072 1690KB 1690KB kmalloc-65536 2310KB 2640KB kmalloc-32768 188034KB 188034KB kmalloc-16384 57948KB 57948KB kmalloc-8192 131067KB 131067KB kmalloc-4096 584987KB 584987KB kmalloc-2048 472614KB 472617KB kmalloc-1024 191178KB 191181KB kmalloc-512 157329KB 170478KB kmalloc-256 97739KB 99056KB kmalloc-128 49695KB 49797KB kmalloc-96 13561KB 14044KB kmalloc-64 34860KB 36032KB kmalloc-32 30449KB 31460KB kmalloc-192 66365KB 68216KB kmem_cache 189KB 198KB Out of memory (oom_kill_allocating_task): Kill process 7750 (cron) score 0 or sacrifice child Killed process 7750 (cron) total-vm:27996kB, anon-rss:240kB, file-rss:0kB, shmem-rss:0kB oom_reaper: reaped process 7750 (cron), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB syz-executor.1 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=1, oom_score_adj=1000 ip6gre_exit_batch_net+0x82/0x6c0 net/ipv6/ip6_gre.c:1632 syz-executor.1 cpuset=/ mems_allowed=0-1 CPU: 1 PID: 25385 Comm: syz-executor.1 Not tainted 4.19.211-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1fc/0x2ef lib/dump_stack.c:118 dump_header+0x15d/0xc3f mm/oom_kill.c:443 oom_kill_process.cold+0x10/0x692 mm/oom_kill.c:956 out_of_memory mm/oom_kill.c:1114 [inline] out_of_memory+0x1072/0x1390 mm/oom_kill.c:1064 __alloc_pages_may_oom mm/page_alloc.c:3553 [inline] __alloc_pages_slowpath mm/page_alloc.c:4255 [inline] __alloc_pages_nodemask+0x23a2/0x2890 mm/page_alloc.c:4419 ops_exit_list+0xf9/0x150 net/core/net_namespace.c:156 __alloc_pages include/linux/gfp.h:496 [inline] __alloc_pages_node include/linux/gfp.h:509 [inline] kmem_getpages mm/slab.c:1412 [inline] cache_grow_begin+0xa4/0x8a0 mm/slab.c:2682 fallback_alloc+0x213/0x2e0 mm/slab.c:3224 __do_cache_alloc mm/slab.c:3361 [inline] slab_alloc mm/slab.c:3389 [inline] __do_kmalloc mm/slab.c:3725 [inline] __kmalloc_track_caller+0x20e/0x3c0 mm/slab.c:3742 kmemdup+0x23/0x50 mm/util.c:118 kmemdup include/linux/string.h:450 [inline] __devinet_sysctl_register+0x98/0x280 net/ipv4/devinet.c:2332 cleanup_net+0x3b4/0x8b0 net/core/net_namespace.c:554 devinet_sysctl_register+0x160/0x230 net/ipv4/devinet.c:2384 inetdev_init+0x223/0x4a0 net/ipv4/devinet.c:269 inetdev_event+0x9cf/0x1270 net/ipv4/devinet.c:1477 notifier_call_chain+0xc0/0x230 kernel/notifier.c:93 call_netdevice_notifiers net/core/dev.c:1762 [inline] register_netdevice+0xdd2/0x10f0 net/core/dev.c:8761 __ip_tunnel_create+0x398/0x580 net/ipv4/ip_tunnel.c:280 ip_tunnel_init_net+0x330/0x990 net/ipv4/ip_tunnel.c:1035 ops_init+0xb3/0x410 net/core/net_namespace.c:129 process_one_work+0x864/0x1570 kernel/workqueue.c:2153 setup_net+0x2c2/0x720 net/core/net_namespace.c:316 copy_net_ns+0x1f7/0x340 net/core/net_namespace.c:439 create_new_namespaces+0x3f6/0x7b0 kernel/nsproxy.c:107 copy_namespaces+0x325/0x3c0 kernel/nsproxy.c:165 copy_process.part.0+0x3a59/0x8260 kernel/fork.c:1916 worker_thread+0x64c/0x1130 kernel/workqueue.c:2296 copy_process kernel/fork.c:1710 [inline] _do_fork+0x22f/0xf30 kernel/fork.c:2219 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7fe5f50dbe99 Code: Bad RIP value. RSP: 002b:00007fe5f39ee168 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 kthread+0x33f/0x460 kernel/kthread.c:259 RAX: ffffffffffffffda RBX: 00007fe5f51ef1d0 RCX: 00007fe5f50dbe99 RDX: 00000000200008c0 RSI: 00000000200007c0 RDI: 0000000141040000 RBP: 00007fe5f5135ff1 R08: 0000000020000940 R09: 0000000000000000 R10: 0000000020000900 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffcd1dc69df R14: 00007fe5f39ee300 R15: 0000000000022000 Mem-Info: active_anon:329960 inactive_anon:5240 isolated_anon:0 active_file:14 inactive_file:25 isolated_file:7 unevictable:0 dirty:0 writeback:0 unstable:0 slab_reclaimable:53267 slab_unreclaimable:1086193 mapped:22157 shmem:6929 pagetables:57614 bounce:0 free:25148 free_pcp:446 free_cma:0 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:415 Node 0 active_anon:1300476kB inactive_anon:20948kB active_file:52kB inactive_file:96kB unevictable:0kB isolated(anon):0kB isolated(file):28kB mapped:88628kB dirty:0kB writeback:0kB shmem:24332kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 589824kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes INFO: task syz-executor.1:24324 blocked for more than 140 seconds. Node 1 active_anon:19364kB inactive_anon:12kB active_file:4kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:3384kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes Not tainted 4.19.211-syzkaller #0 Node 0 DMA free:10940kB min:204kB low:252kB high:300kB active_anon:2148kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:32kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. lowmem_reserve[]: 0 2693 2695 2695 2695 syz-executor.1 D26928 24324 24253 0x00000000 Node 0 DMA32 free:37668kB min:35996kB low:44992kB high:53988kB active_anon:1298288kB inactive_anon:20948kB active_file:60kB inactive_file:64kB unevictable:0kB writepending:0kB present:3129332kB managed:2763452kB mlocked:0kB kernel_stack:48096kB pagetables:62588kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB lowmem_reserve[]: 0 0 1 1 1 Node 0 Normal free:4kB min:24kB low:28kB high:32kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:1048576kB managed:2000kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB lowmem_reserve[]: 0 0 0 0 0 Node 1 Normal free:53772kB min:53876kB low:67344kB high:80812kB active_anon:19364kB inactive_anon:12kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:0kB present:4194304kB managed:4128248kB mlocked:0kB kernel_stack:121312kB pagetables:167760kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB lowmem_reserve[]: 0 0 0 0 0 Node 0 DMA: 7*4kB (M) 16*8kB (UM) 12*16kB (UM) 7*32kB (UME) 8*64kB (UME) 5*128kB (UME) 2*256kB (UE) 3*512kB (UE) 3*1024kB (UME) 2*2048kB (ME) 0*4096kB = 10940kB Node 0 DMA32: 955*4kB (UM) 1323*8kB (UME) 599*16kB (UME) 423*32kB (UME) 3*64kB (UE) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 37716kB Node 0 Normal: 1*4kB (E) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB Node 1 Normal: 1741*4kB (UME) 221*8kB (UME) 79*16kB (UME) 48*32kB (ME) 12*64kB (ME) 12*128kB (UM) 2*256kB (UM) 3*512kB (ME) 1*1024kB (M) 4*2048kB (UME) 7*4096kB (M) = 53772kB Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 6962 total pagecache pages 0 pages in swap cache Swap cache stats: add 0, delete 0, find 0/0 Free swap = 0kB Total swap = 0kB 2097051 pages RAM 0 pages HighMem/MovableOnly 369649 pages reserved 0 pages cma reserved Unreclaimable slab info: Call Trace: Name Used Total context_switch kernel/sched/core.c:2828 [inline] __schedule+0x887/0x2040 kernel/sched/core.c:3517 schedule+0x8d/0x1b0 kernel/sched/core.c:3561 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3619 __mutex_lock_common kernel/locking/mutex.c:1016 [inline] __mutex_lock+0x5f0/0x1190 kernel/locking/mutex.c:1078 ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 ops_init+0xb3/0x410 net/core/net_namespace.c:129 setup_net+0x2c2/0x720 net/core/net_namespace.c:316 copy_net_ns+0x1f7/0x340 net/core/net_namespace.c:439 create_new_namespaces+0x3f6/0x7b0 kernel/nsproxy.c:107 copy_namespaces+0x325/0x3c0 kernel/nsproxy.c:165 copy_process.part.0+0x3a59/0x8260 kernel/fork.c:1916 copy_process kernel/fork.c:1710 [inline] _do_fork+0x22f/0xf30 kernel/fork.c:2219 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7fe5f50dbe99 Code: Bad RIP value. RSP: 002b:00007fe5f39ee168 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 RAX: ffffffffffffffda RBX: 00007fe5f51ef1d0 RCX: 00007fe5f50dbe99 RDX: 00000000200008c0 RSI: 00000000200007c0 RDI: 0000000141040000 RBP: 00007fe5f5135ff1 R08: 0000000020000940 R09: 0000000000000000 pid_33 0KB 3KB R10: 0000000020000900 R11: 0000000000000246 R12: 0000000000000000 pid_32 0KB 7KB R13: 00007ffcd1dc69df R14: 00007fe5f39ee300 R15: 0000000000022000 pid_31 0KB 7KB INFO: task syz-executor.1:24641 blocked for more than 140 seconds. pid_30 0KB 7KB Not tainted 4.19.211-syzkaller #0 pid_29 0KB 7KB "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. pid_28 0KB 3KB syz-executor.1 D26784 24641 24459 0x00000000 pid_27 0KB 3KB Call Trace: pid_26 0KB 3KB context_switch kernel/sched/core.c:2828 [inline] __schedule+0x887/0x2040 kernel/sched/core.c:3517 pid_25 0KB 3KB pid_24 0KB 4KB pid_23 0KB 4KB pid_22 0KB 4KB schedule+0x8d/0x1b0 kernel/sched/core.c:3561 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3619 __mutex_lock_common kernel/locking/mutex.c:1016 [inline] __mutex_lock+0x5f0/0x1190 kernel/locking/mutex.c:1078 pid_21 0KB 4KB pid_20 0KB 3KB pid_19 0KB 3KB pid_18 0KB 3KB pid_17 0KB 3KB pid_16 0KB 3KB pid_15 0KB 3KB pid_14 0KB 3KB ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 pid_13 0KB 3KB pid_12 0KB 3KB ops_init+0xb3/0x410 net/core/net_namespace.c:129 setup_net+0x2c2/0x720 net/core/net_namespace.c:316 pid_11 0KB 3KB pid_10 0KB 3KB copy_net_ns+0x1f7/0x340 net/core/net_namespace.c:439 pid_9 0KB 3KB create_new_namespaces+0x3f6/0x7b0 kernel/nsproxy.c:107 pid_8 0KB 4KB copy_namespaces+0x325/0x3c0 kernel/nsproxy.c:165 copy_process.part.0+0x3a59/0x8260 kernel/fork.c:1916 copy_process kernel/fork.c:1710 [inline] _do_fork+0x22f/0xf30 kernel/fork.c:2219 pid_7 0KB 4KB pid_6 0KB 4KB do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 pid_5 2KB 4KB entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7fe5f50dbe99 pid_4 13KB 15KB Code: Bad RIP value. pid_3 10KB 15KB RSP: 002b:00007fe5f39ee168 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 RAX: ffffffffffffffda RBX: 00007fe5f51ef1d0 RCX: 00007fe5f50dbe99 pid_2 509KB 516KB RDX: 00000000200008c0 RSI: 00000000200007c0 RDI: 0000000141040000 batadv_tt_change_cache 0KB 3KB RBP: 00007fe5f5135ff1 R08: 0000000020000940 R09: 0000000000000000 R10: 0000000020000900 R11: 0000000000000246 R12: 0000000000000000 batadv_tl_cache 4KB 8KB p9_req_t 1KB 8KB TIPC 2601KB 2602KB R13: 00007ffcd1dc69df R14: 00007fe5f39ee300 R15: 0000000000022000 rds_tcp_incoming 0KB 3KB rds_tcp_connection 14KB 14KB INFO: task syz-executor.1:24865 blocked for more than 140 seconds. rds_connection 1KB 7KB SCTPv6 7705KB 7709KB DCCPv6 8555KB 8557KB DCCP 8136KB 8136KB Not tainted 4.19.211-syzkaller #0 L2TP/IPv6 110KB 110KB "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. RXRPC 2817KB 2821KB syz-executor.1 D26792 24865 24618 0x00000000 Call Trace: rxrpc_call_jar 19507KB 19514KB bridge_fdb_cache 11KB 15KB context_switch kernel/sched/core.c:2828 [inline] __schedule+0x887/0x2040 kernel/sched/core.c:3517 fib6_nodes 168KB 188KB ip6_dst_cache 128KB 397KB RAWv6 34799KB 34803KB UDPv6 3270KB 3270KB schedule+0x8d/0x1b0 kernel/sched/core.c:3561 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3619 TCPv6 5514KB 5514KB nf_conntrack 4KB 22KB __mutex_lock_common kernel/locking/mutex.c:1016 [inline] __mutex_lock+0x5f0/0x1190 kernel/locking/mutex.c:1078 AF_VSOCK 61KB 63KB t10_alua_lu_gp_cache 0KB 3KB sd_ext_cdb 0KB 7KB scsi_sense_cache 1056KB 1060KB virtio_scsi_cmd 16KB 16KB sgpool-128 8KB 8KB sgpool-64 4KB 12KB sgpool-32 2KB 15KB sgpool-16 1KB 7KB sgpool-8 0KB 7KB mqueue_inode_cache 10KB 15KB bio_post_read_ctx 14KB 15KB bio-2 14KB 15KB jfs_mp 7KB 7KB fuse_request 1KB 4KB cifs_small_rq 15KB 16KB cifs_request 67KB 67KB ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 cifs_mpx_ids 0KB 7KB nfs_commit_data 3KB 14KB nfs_write_data 34KB 44KB ext4_system_zone 1KB 7KB ops_init+0xb3/0x410 net/core/net_namespace.c:129 setup_net+0x2c2/0x720 net/core/net_namespace.c:316 kioctx 5KB 7KB aio_kiocb 1KB 3KB copy_net_ns+0x1f7/0x340 net/core/net_namespace.c:439 create_new_namespaces+0x3f6/0x7b0 kernel/nsproxy.c:107 fanotify_event_info 0KB 3KB bio-1 1KB 7KB copy_namespaces+0x325/0x3c0 kernel/nsproxy.c:165 copy_process.part.0+0x3a59/0x8260 kernel/fork.c:1916 pid_namespace 59KB 65KB kvm_vcpu 0KB 95KB rpc_buffers 17KB 25KB copy_process kernel/fork.c:1710 [inline] _do_fork+0x22f/0xf30 kernel/fork.c:2219 rpc_tasks 2KB 7KB UNIX 131KB 131KB tcp_bind_bucket 217KB 224KB inet_peer_cache 0KB 4KB xfrm_state 3KB 8KB ip_fib_trie 23KB 31KB ip_fib_alias 111KB 134KB do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 ip_dst_cache 7KB 56KB RAW 20544KB 20550KB UDP 5860KB 5865KB entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7fe5f50dbe99 TCP 253KB 258KB hugetlbfs_inode_cache 8KB 15KB fscache_cookie_jar 1KB 7KB Code: Bad RIP value. RSP: 002b:00007fe5f39ee168 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 eventpoll_pwq 10KB 39KB eventpoll_epi 20KB 43KB RAX: ffffffffffffffda RBX: 00007fe5f51ef1d0 RCX: 00007fe5f50dbe99 RDX: 00000000200008c0 RSI: 00000000200007c0 RDI: 0000000141040000 RBP: 00007fe5f5135ff1 R08: 0000000020000940 R09: 0000000000000000 inotify_inode_mark 7KB 19KB request_queue 199KB 199KB R10: 0000000020000900 R11: 0000000000000246 R12: 0000000000000000 blkdev_requests 1KB 3KB R13: 00007ffcd1dc69df R14: 00007fe5f39ee300 R15: 0000000000022000 blkdev_ioc 46KB 54KB INFO: task syz-executor.1:24876 blocked for more than 140 seconds. Not tainted 4.19.211-syzkaller #0 bio-0 9760KB 9761KB biovec-max 2120KB 2120KB "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. biovec-64 5299KB 5299KB syz-executor.1 D26880 24876 24324 0x00000000 biovec-16 1915KB 1916KB bio_integrity_payload 1KB 8KB Call Trace: context_switch kernel/sched/core.c:2828 [inline] __schedule+0x887/0x2040 kernel/sched/core.c:3517 khugepaged_mm_slot 234KB 240KB user_namespace 5KB 11KB schedule+0x8d/0x1b0 kernel/sched/core.c:3561 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3619 uid_cache 0KB 4KB dmaengine-unmap-2 0KB 3KB skbuff_fclone_cache 38KB 41KB skbuff_head_cache 12825KB 12851KB __mutex_lock_common kernel/locking/mutex.c:1016 [inline] __mutex_lock+0x5f0/0x1190 kernel/locking/mutex.c:1078 configfs_dir_cache 3KB 11KB file_lock_cache 6KB 7KB file_lock_ctx 9KB 11KB fsnotify_mark_connector 3KB 11KB net_namespace 29933KB 29933KB ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 shmem_inode_cache 7917KB 8127KB task_delay_info 1781KB 2589KB ops_init+0xb3/0x410 net/core/net_namespace.c:129 setup_net+0x2c2/0x720 net/core/net_namespace.c:316 taskstats 20KB 68KB proc_dir_entry 155007KB 155013KB pde_opener 1KB 11KB copy_net_ns+0x1f7/0x340 net/core/net_namespace.c:439 create_new_namespaces+0x3f6/0x7b0 kernel/nsproxy.c:107 seq_file 90KB 90KB sigqueue 243KB 271KB kernfs_node_cache 435198KB 435200KB mnt_cache 316KB 336KB copy_namespaces+0x325/0x3c0 kernel/nsproxy.c:165 copy_process.part.0+0x3a59/0x8260 kernel/fork.c:1916 filp 5840KB 7402KB names_cache 43694KB 43707KB copy_process kernel/fork.c:1710 [inline] _do_fork+0x22f/0xf30 kernel/fork.c:2219 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 iint_cache 94KB 99KB key_jar 5KB 15KB entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7fe5f50dbe99 Code: Bad RIP value. uts_namespace 36KB 39KB nsproxy 320KB 328KB RSP: 002b:00007fe5f39ee168 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 RAX: ffffffffffffffda RBX: 00007fe5f51ef1d0 RCX: 00007fe5f50dbe99 vm_area_struct 34871KB 34897KB mm_struct 6405KB 6409KB RDX: 00000000200008c0 RSI: 00000000200007c0 RDI: 0000000141040000 RBP: 00007fe5f5135ff1 R08: 0000000020000940 R09: 0000000000000000 fs_cache 2376KB 3484KB files_cache 8643KB 10833KB signal_cache 13432KB 17142KB sighand_cache 12457KB 12487KB task_struct 58314KB 58390KB cred_jar 4879KB 7228KB R10: 0000000020000900 R11: 0000000000000246 R12: 0000000000000000 anon_vma_chain 44105KB 44107KB anon_vma 11152KB 11161KB pid 586KB 780KB Acpi-Operand 156KB 202KB Acpi-ParseExt 9KB 11KB Acpi-Parse 41KB 47KB Acpi-State 52KB 63KB Acpi-Namespace 20KB 23KB R13: 00007ffcd1dc69df R14: 00007fe5f39ee300 R15: 0000000000022000 INFO: task syz-executor.1:24881 blocked for more than 140 seconds. numa_policy 0KB 3KB debug_objects_cache 34638KB 34638KB trace_event_file 297KB 298KB Not tainted 4.19.211-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. ftrace_event_field 398KB 401KB pool_workqueue 3576KB 3580KB syz-executor.1 D26888 24881 24253 0x00000000 page->ptl 6449KB 6463KB kmalloc-2097152 2050KB 2050KB Call Trace: context_switch kernel/sched/core.c:2828 [inline] __schedule+0x887/0x2040 kernel/sched/core.c:3517 kmalloc-524288 2056KB 2056KB kmalloc-262144 1290KB 1290KB schedule+0x8d/0x1b0 kernel/sched/core.c:3561 kmalloc-131072 1690KB 1690KB kmalloc-65536 2310KB 2640KB schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3619 __mutex_lock_common kernel/locking/mutex.c:1016 [inline] __mutex_lock+0x5f0/0x1190 kernel/locking/mutex.c:1078 kmalloc-32768 188034KB 188034KB kmalloc-16384 57948KB 57948KB kmalloc-8192 131067KB 131067KB kmalloc-4096 584477KB 584515KB kmalloc-2048 472614KB 472617KB ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 kmalloc-1024 191445KB 191449KB kmalloc-512 157576KB 170726KB kmalloc-256 97750KB 99067KB kmalloc-128 49695KB 49797KB kmalloc-96 13573KB 14056KB kmalloc-64 34860KB 36032KB kmalloc-32 30461KB 31472KB kmalloc-192 66364KB 68216KB kmem_cache 189KB 198KB Out of memory (oom_kill_allocating_task): Kill process 25385 (syz-executor.1) score 0 or sacrifice child ops_init+0xb3/0x410 net/core/net_namespace.c:129 setup_net+0x2c2/0x720 net/core/net_namespace.c:316 Killed process 26416 (syz-executor.1) total-vm:57328kB, anon-rss:420kB, file-rss:14080kB, shmem-rss:0kB copy_net_ns+0x1f7/0x340 net/core/net_namespace.c:439 oom_reaper: reaped process 26416 (syz-executor.1), now anon-rss:0kB, file-rss:14080kB, shmem-rss:0kB create_new_namespaces+0x3f6/0x7b0 kernel/nsproxy.c:107 copy_namespaces+0x325/0x3c0 kernel/nsproxy.c:165 copy_process.part.0+0x3a59/0x8260 kernel/fork.c:1916 copy_process kernel/fork.c:1710 [inline] _do_fork+0x22f/0xf30 kernel/fork.c:2219 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7fe5f50dbe99 Code: Bad RIP value. RSP: 002b:00007fe5f39ee168 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 RAX: ffffffffffffffda RBX: 00007fe5f51ef1d0 RCX: 00007fe5f50dbe99 RDX: 00000000200008c0 RSI: 00000000200007c0 RDI: 0000000141040000 RBP: 00007fe5f5135ff1 R08: 0000000020000940 R09: 0000000000000000 R10: 0000000020000900 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffcd1dc69df R14: 00007fe5f39ee300 R15: 0000000000022000 INFO: task syz-executor.1:24906 blocked for more than 140 seconds. Not tainted 4.19.211-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor.1 D26776 24906 24459 0x00000000 Call Trace: context_switch kernel/sched/core.c:2828 [inline] __schedule+0x887/0x2040 kernel/sched/core.c:3517 schedule+0x8d/0x1b0 kernel/sched/core.c:3561 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3619 __mutex_lock_common kernel/locking/mutex.c:1016 [inline] __mutex_lock+0x5f0/0x1190 kernel/locking/mutex.c:1078 ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 kthreadd invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=3, oom_score_adj=0 ops_init+0xb3/0x410 net/core/net_namespace.c:129 setup_net+0x2c2/0x720 net/core/net_namespace.c:316 kthreadd cpuset=/ mems_allowed=0-1 CPU: 0 PID: 2 Comm: kthreadd Not tainted 4.19.211-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1fc/0x2ef lib/dump_stack.c:118 dump_header+0x15d/0xc3f mm/oom_kill.c:443 oom_kill_process.cold+0x10/0x692 mm/oom_kill.c:956 out_of_memory mm/oom_kill.c:1132 [inline] out_of_memory+0x34d/0x1390 mm/oom_kill.c:1064 __alloc_pages_may_oom mm/page_alloc.c:3553 [inline] __alloc_pages_slowpath mm/page_alloc.c:4255 [inline] __alloc_pages_nodemask+0x23a2/0x2890 mm/page_alloc.c:4419 __alloc_pages include/linux/gfp.h:496 [inline] __alloc_pages_node include/linux/gfp.h:509 [inline] alloc_pages_node include/linux/gfp.h:523 [inline] alloc_thread_stack_node kernel/fork.c:240 [inline] dup_task_struct kernel/fork.c:811 [inline] copy_process.part.0+0x3cf/0x8260 kernel/fork.c:1753 copy_process kernel/fork.c:1710 [inline] _do_fork+0x22f/0xf30 kernel/fork.c:2219 kernel_thread+0x2f/0x40 kernel/fork.c:2278 create_kthread kernel/kthread.c:282 [inline] kthreadd+0x544/0x7b0 kernel/kthread.c:625 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:415 copy_net_ns+0x1f7/0x340 net/core/net_namespace.c:439 create_new_namespaces+0x3f6/0x7b0 kernel/nsproxy.c:107 copy_namespaces+0x325/0x3c0 kernel/nsproxy.c:165 copy_process.part.0+0x3a59/0x8260 kernel/fork.c:1916 Mem-Info: active_anon:329950 inactive_anon:5240 isolated_anon:0 active_file:21 inactive_file:15 isolated_file:19 unevictable:0 dirty:0 writeback:0 unstable:0 slab_reclaimable:53308 slab_unreclaimable:1086409 mapped:22180 shmem:6929 pagetables:57595 bounce:0 free:25046 free_pcp:304 free_cma:0 Node 0 active_anon:1300436kB inactive_anon:20948kB active_file:84kB inactive_file:52kB unevictable:0kB isolated(anon):0kB isolated(file):76kB mapped:88720kB dirty:0kB writeback:0kB shmem:24332kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 589824kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes copy_process kernel/fork.c:1710 [inline] _do_fork+0x22f/0xf30 kernel/fork.c:2219 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 Node 1 active_anon:19364kB inactive_anon:12kB active_file:0kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:3384kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7fe5f50dbe99 Code: Bad RIP value. RSP: 002b:00007fe5f39ee168 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 Node 0 DMA free:10940kB min:204kB low:252kB high:300kB active_anon:2148kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:96kB pagetables:32kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB RAX: ffffffffffffffda RBX: 00007fe5f51ef1d0 RCX: 00007fe5f50dbe99 RDX: 00000000200008c0 RSI: 00000000200007c0 RDI: 0000000141040000 RBP: 00007fe5f5135ff1 R08: 0000000020000940 R09: 0000000000000000 R10: 0000000020000900 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffcd1dc69df R14: 00007fe5f39ee300 R15: 0000000000022000 lowmem_reserve[]: 0 2693 2695 2695 2695 Node 0 DMA32 free:35468kB min:35996kB low:44992kB high:53988kB active_anon:1298288kB inactive_anon:20948kB active_file:188kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2763452kB mlocked:0kB kernel_stack:48096kB pagetables:62588kB bounce:0kB free_pcp:1192kB local_pcp:500kB free_cma:0kB INFO: task syz-executor.1:24907 blocked for more than 140 seconds. Not tainted 4.19.211-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. lowmem_reserve[]: 0 0 1 1 1 syz-executor.1 D26888 24907 24452 0x00000000 Call Trace: context_switch kernel/sched/core.c:2828 [inline] __schedule+0x887/0x2040 kernel/sched/core.c:3517 Node 0 Normal free:4kB min:24kB low:28kB high:32kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:1048576kB managed:2000kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB schedule+0x8d/0x1b0 kernel/sched/core.c:3561 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3619 __mutex_lock_common kernel/locking/mutex.c:1016 [inline] __mutex_lock+0x5f0/0x1190 kernel/locking/mutex.c:1078 lowmem_reserve[]: 0 0 0 0 0 Node 1 Normal free:53772kB min:53876kB low:67344kB high:80812kB active_anon:19364kB inactive_anon:12kB active_file:0kB inactive_file:8kB unevictable:0kB writepending:0kB present:4194304kB managed:4128248kB mlocked:0kB kernel_stack:121312kB pagetables:167760kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB lowmem_reserve[]: 0 0 0 0 0 ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 Node 0 DMA: 7*4kB (M) 16*8kB (UM) 12*16kB (UM) 7*32kB (UME) 8*64kB (UME) 5*128kB (UME) 2*256kB (UE) 3*512kB (UE) 3*1024kB (UME) 2*2048kB (ME) 0*4096kB = 10940kB Node 0 DMA32: 784*4kB (UMEH) 1208*8kB (MEH) 564*16kB (UME) 422*32kB (UME) 2*64kB (UM) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 35456kB Node 0 Normal: 1*4kB (E) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB Node 1 Normal: 1741*4kB (UME) 221*8kB (UME) 79*16kB (UME) 48*32kB (ME) 12*64kB (ME) 12*128kB (UM) 2*256kB (UM) 3*512kB (ME) 1*1024kB (M) 4*2048kB (UME) 7*4096kB (M) = 53772kB ops_init+0xb3/0x410 net/core/net_namespace.c:129 Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB setup_net+0x2c2/0x720 net/core/net_namespace.c:316 Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 7019 total pagecache pages 0 pages in swap cache Swap cache stats: add 0, delete 0, find 0/0 copy_net_ns+0x1f7/0x340 net/core/net_namespace.c:439 create_new_namespaces+0x3f6/0x7b0 kernel/nsproxy.c:107 Free swap = 0kB Total swap = 0kB 2097051 pages RAM 0 pages HighMem/MovableOnly 369649 pages reserved copy_namespaces+0x325/0x3c0 kernel/nsproxy.c:165 0 pages cma reserved copy_process.part.0+0x3a59/0x8260 kernel/fork.c:1916 Unreclaimable slab info: copy_process kernel/fork.c:1710 [inline] _do_fork+0x22f/0xf30 kernel/fork.c:2219 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7fe5f50dbe99 Code: Bad RIP value. RSP: 002b:00007fe5f39ee168 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 RAX: ffffffffffffffda RBX: 00007fe5f51ef1d0 RCX: 00007fe5f50dbe99 RDX: 00000000200008c0 RSI: 00000000200007c0 RDI: 0000000141040000 RBP: 00007fe5f5135ff1 R08: 0000000020000940 R09: 0000000000000000 R10: 0000000020000900 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffcd1dc69df R14: 00007fe5f39ee300 R15: 0000000000022000 INFO: task syz-executor.1:25296 blocked for more than 140 seconds. Not tainted 4.19.211-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor.1 D26888 25296 24452 0x00000000 Call Trace: context_switch kernel/sched/core.c:2828 [inline] __schedule+0x887/0x2040 kernel/sched/core.c:3517 schedule+0x8d/0x1b0 kernel/sched/core.c:3561 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3619 __mutex_lock_common kernel/locking/mutex.c:1016 [inline] __mutex_lock+0x5f0/0x1190 kernel/locking/mutex.c:1078 ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 vti_init_net+0x2a/0x370 net/ipv4/ip_vti.c:520 ops_init+0xb3/0x410 net/core/net_namespace.c:129 setup_net+0x2c2/0x720 net/core/net_namespace.c:316 copy_net_ns+0x1f7/0x340 net/core/net_namespace.c:439 create_new_namespaces+0x3f6/0x7b0 kernel/nsproxy.c:107 copy_namespaces+0x325/0x3c0 kernel/nsproxy.c:165 copy_process.part.0+0x3a59/0x8260 kernel/fork.c:1916 copy_process kernel/fork.c:1710 [inline] _do_fork+0x22f/0xf30 kernel/fork.c:2219 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7fe5f50dbe99 Code: Bad RIP value. RSP: 002b:00007fe5f39ee168 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 RAX: ffffffffffffffda RBX: 00007fe5f51ef1d0 RCX: 00007fe5f50dbe99 RDX: 00000000200008c0 RSI: 00000000200007c0 RDI: 0000000141040000 RBP: 00007fe5f5135ff1 R08: 0000000020000940 R09: 0000000000000000 R10: 0000000020000900 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffcd1dc69df R14: 00007fe5f39ee300 R15: 0000000000022000 INFO: task syz-executor.1:25297 blocked for more than 140 seconds. Not tainted 4.19.211-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor.1 D26792 25297 24459 0x00000000 Call Trace: context_switch kernel/sched/core.c:2828 [inline] __schedule+0x887/0x2040 kernel/sched/core.c:3517 schedule+0x8d/0x1b0 kernel/sched/core.c:3561 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3619 __mutex_lock_common kernel/locking/mutex.c:1016 [inline] __mutex_lock+0x5f0/0x1190 kernel/locking/mutex.c:1078 ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 ops_init+0xb3/0x410 net/core/net_namespace.c:129 setup_net+0x2c2/0x720 net/core/net_namespace.c:316 copy_net_ns+0x1f7/0x340 net/core/net_namespace.c:439 create_new_namespaces+0x3f6/0x7b0 kernel/nsproxy.c:107 copy_namespaces+0x325/0x3c0 kernel/nsproxy.c:165 copy_process.part.0+0x3a59/0x8260 kernel/fork.c:1916 copy_process kernel/fork.c:1710 [inline] _do_fork+0x22f/0xf30 kernel/fork.c:2219 Name Used Total do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293