[ 18.540599][ T409] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 18.553136][ T413] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 18.561463][ T413] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 18.621222][ T408] syz-executor.0 (408) used greatest stack depth: 20512 bytes left [ 19.089601][ T8] device bridge_slave_1 left promiscuous mode [ 19.095906][ T8] bridge0: port 2(bridge_slave_1) entered disabled state [ 19.103527][ T8] device bridge_slave_0 left promiscuous mode [ 19.109609][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 19.117573][ T8] device veth1_macvtap left promiscuous mode [ 19.135548][ T8] device veth0_vlan left promiscuous mode Warning: Permanently added '10.128.1.190' (ECDSA) to the list of known hosts. 2023/03/24 08:19:40 ignoring optional flag "sandboxArg"="0" 2023/03/24 08:19:41 parsed 1 programs 2023/03/24 08:19:41 executed programs: 0 [ 36.341696][ T27] kauditd_printk_skb: 64 callbacks suppressed [ 36.341710][ T27] audit: type=1400 audit(1679645981.489:136): avc: denied { mounton } for pid=452 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 36.373388][ T27] audit: type=1400 audit(1679645981.489:137): avc: denied { mount } for pid=452 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 36.404211][ T456] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.411102][ T456] bridge0: port 1(bridge_slave_0) entered disabled state [ 36.418518][ T456] device bridge_slave_0 entered promiscuous mode [ 36.425268][ T456] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.432315][ T456] bridge0: port 2(bridge_slave_1) entered disabled state [ 36.439494][ T456] device bridge_slave_1 entered promiscuous mode [ 36.472989][ T456] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.481877][ T456] bridge0: port 2(bridge_slave_1) entered forwarding state [ 36.489132][ T456] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.496078][ T456] bridge0: port 1(bridge_slave_0) entered forwarding state [ 36.512008][ T54] bridge0: port 1(bridge_slave_0) entered disabled state [ 36.519281][ T54] bridge0: port 2(bridge_slave_1) entered disabled state [ 36.526411][ T54] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 36.533954][ T54] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 36.549727][ T54] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 36.557928][ T54] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 36.565993][ T54] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.572870][ T54] bridge0: port 1(bridge_slave_0) entered forwarding state [ 36.580818][ T54] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 36.588853][ T54] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.595807][ T54] bridge0: port 2(bridge_slave_1) entered forwarding state [ 36.602989][ T54] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 36.611427][ T54] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 36.622746][ T456] device veth0_vlan entered promiscuous mode [ 36.629301][ T54] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 36.637021][ T54] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 36.644416][ T54] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 36.654693][ T413] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 36.663675][ T456] device veth1_macvtap entered promiscuous mode [ 36.672036][ T54] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 36.683499][ T413] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 36.694815][ T27] audit: type=1400 audit(1679645981.839:138): avc: denied { mount } for pid=456 comm="syz-executor.0" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 36.845508][ T462] loop0: detected capacity change from 0 to 63271 [ 36.852337][ T27] audit: type=1400 audit(1679645981.999:139): avc: denied { mounton } for pid=461 comm="syz-executor.0" path="/root/syzkaller-testdir882946681/syzkaller.L0rMqw/0/bus" dev="sda1" ino=1148 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 36.863196][ T462] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 36.887542][ T462] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 36.896827][ T462] F2FS-fs (loop0): invalid crc value [ 36.903704][ T462] F2FS-fs (loop0): Found nat_bits in checkpoint [ 36.924439][ T462] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 36.931524][ T462] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 36.939218][ T27] audit: type=1400 audit(1679645982.089:140): avc: denied { mount } for pid=461 comm="syz-executor.0" name="/" dev="loop0" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 36.961147][ T27] audit: type=1400 audit(1679645982.109:141): avc: denied { write } for pid=461 comm="syz-executor.0" name="/" dev="loop0" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 36.983022][ T27] audit: type=1400 audit(1679645982.109:142): avc: denied { add_name } for pid=461 comm="syz-executor.0" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 37.003958][ T27] audit: type=1400 audit(1679645982.109:143): avc: denied { create } for pid=461 comm="syz-executor.0" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 37.025010][ T27] audit: type=1400 audit(1679645982.109:144): avc: denied { read write open } for pid=461 comm="syz-executor.0" path="/root/syzkaller-testdir882946681/syzkaller.L0rMqw/0/bus/bus" dev="loop0" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 37.053741][ T27] audit: type=1400 audit(1679645982.169:145): avc: denied { map } for pid=461 comm="syz-executor.0" path="/root/syzkaller-testdir882946681/syzkaller.L0rMqw/0/bus/bus" dev="loop0" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 37.055065][ T462] syz-executor.0: attempt to access beyond end of device [ 37.055065][ T462] loop0: rw=2049, want=77952, limit=63271 [ 37.334424][ T470] loop0: detected capacity change from 0 to 63271 [ 37.341816][ T470] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 37.350172][ T470] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 37.358796][ T470] F2FS-fs (loop0): invalid crc value [ 37.365262][ T470] F2FS-fs (loop0): Found nat_bits in checkpoint [ 37.386075][ T470] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 37.393429][ T470] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 37.484278][ T475] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=17 [ 37.484536][ T470] syz-executor.0: attempt to access beyond end of device [ 37.484536][ T470] loop0: rw=2049, want=77952, limit=63271 [ 37.735647][ T477] loop0: detected capacity change from 0 to 63271 [ 37.743225][ T477] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 37.752365][ T477] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 37.764105][ T477] F2FS-fs (loop0): invalid crc value [ 37.770890][ T477] F2FS-fs (loop0): Found nat_bits in checkpoint [ 37.791793][ T477] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 37.799062][ T477] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 37.882216][ T482] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=1 [ 38.307530][ T486] loop0: detected capacity change from 0 to 63271 [ 38.325621][ T486] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 38.334181][ T486] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 38.343153][ T486] F2FS-fs (loop0): invalid crc value [ 38.349667][ T486] F2FS-fs (loop0): Found nat_bits in checkpoint [ 38.370562][ T486] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 38.377412][ T486] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 38.464563][ T491] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=17 [ 38.464828][ T486] syz-executor.0: attempt to access beyond end of device [ 38.464828][ T486] loop0: rw=2049, want=77952, limit=63271 [ 38.758255][ T494] loop0: detected capacity change from 0 to 63271 [ 38.765655][ T494] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 38.773966][ T494] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 38.783079][ T494] F2FS-fs (loop0): invalid crc value [ 38.789579][ T494] F2FS-fs (loop0): Found nat_bits in checkpoint [ 38.810037][ T494] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 38.816889][ T494] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 38.898862][ T499] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=1 [ 39.015637][ T494] BUG: scheduling while atomic: syz-executor.0/494/0x00000002 [ 39.022981][ T494] Modules linked in: [ 39.026810][ T494] Preemption disabled at: [ 39.026817][ T494] [] unmap_page_range+0xa82/0x1ed0 [ 39.037540][ T494] CPU: 1 PID: 494 Comm: syz-executor.0 Not tainted 5.18.0-rc4-syzkaller-00030-g6213f5d4d23c #0 [ 39.047693][ T494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 39.057677][ T494] Call Trace: [ 39.060804][ T494] [ 39.063580][ T494] dump_stack_lvl+0x151/0x1b7 [ 39.068096][ T494] ? unmap_page_range+0xa82/0x1ed0 [ 39.073040][ T494] ? unmap_page_range+0xa82/0x1ed0 [ 39.077986][ T494] ? bfq_pos_tree_add_move+0x43b/0x43b [ 39.083283][ T494] ? unmap_page_range+0xa82/0x1ed0 [ 39.088239][ T494] dump_stack+0x15/0x17 [ 39.092239][ T494] __schedule_bug+0x1a0/0x240 [ 39.096773][ T494] ? select_fallback_rq+0x220/0x220 [ 39.101773][ T494] ? __kernel_text_address+0xd/0x40 [ 39.106984][ T494] __schedule+0xd0a/0x1560 [ 39.111238][ T494] ? sysvec_apic_timer_interrupt+0x55/0xc0 [ 39.116885][ T494] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 39.122870][ T494] ? __sched_text_start+0x8/0x8 [ 39.127554][ T494] ? mutex_spin_on_owner+0x140/0x2b0 [ 39.132701][ T494] schedule+0xeb/0x1a0 [ 39.136583][ T494] schedule_preempt_disabled+0x13/0x20 [ 39.141965][ T494] __mutex_lock+0x4b1/0x1040 [ 39.146390][ T494] ? __kasan_slab_alloc+0xb1/0xe0 [ 39.151247][ T494] ? slab_post_alloc_hook+0x53/0x2c0 [ 39.156370][ T494] ? kmem_cache_alloc+0x106/0x210 [ 39.161231][ T494] ? folio_mark_dirty+0xd3/0xf0 [ 39.165917][ T494] ? unmap_vmas+0x389/0x560 [ 39.170258][ T494] ? exit_mmap+0x1cc/0x4c0 [ 39.174510][ T494] ? do_exit+0xa5b/0x27d0 [ 39.178678][ T494] ? do_group_exit+0x255/0x320 [ 39.183277][ T494] ? get_signal+0x170e/0x1870 [ 39.187798][ T494] ? arch_do_signal_or_restart+0xb0/0x12a0 [ 39.193447][ T494] ? __ww_mutex_lock_interruptible_slowpath+0x20/0x20 [ 39.200034][ T494] ? do_syscall_64+0x49/0x80 [ 39.204459][ T494] ? entry_SYSCALL_64_after_hwframe+0x44/0xae [ 39.210359][ T494] __mutex_lock_slowpath+0xe/0x10 [ 39.215215][ T494] mutex_lock+0xeb/0x120 [ 39.219294][ T494] ? slab_post_alloc_hook+0x72/0x2c0 [ 39.224418][ T494] ? bit_wait_io_timeout+0x120/0x120 [ 39.229542][ T494] ? kmem_cache_alloc+0x106/0x210 [ 39.234413][ T494] ? f2fs_register_inmem_page+0x13f/0x4b0 [ 39.240040][ T494] f2fs_register_inmem_page+0x22c/0x4b0 [ 39.245420][ T494] f2fs_dirty_data_folio+0x31d/0x440 [ 39.250557][ T494] folio_mark_dirty+0xd3/0xf0 [ 39.255168][ T494] set_page_dirty+0x5c/0x70 [ 39.259505][ T494] unmap_page_range+0x12e4/0x1ed0 [ 39.264460][ T494] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 39.270628][ T494] ? pagevec_lru_move_fn+0x506/0x5a0 [ 39.276018][ T494] ? uprobe_munmap+0x18d/0x450 [ 39.280792][ T494] ? folio_rotate_reclaimable+0x510/0x510 [ 39.286354][ T494] unmap_vmas+0x389/0x560 [ 39.290527][ T494] ? unmap_page_range+0x1ed0/0x1ed0 [ 39.295543][ T494] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 39.300873][ T494] exit_mmap+0x1cc/0x4c0 [ 39.304929][ T494] ? vm_brk+0x30/0x30 [ 39.308742][ T494] ? uprobe_clear_state+0x2cd/0x320 [ 39.313767][ T494] __mmput+0x95/0x300 [ 39.317591][ T494] mmput+0x59/0x70 [ 39.321231][ T494] do_exit+0xa5b/0x27d0 [ 39.325225][ T494] ? put_task_struct+0x80/0x80 [ 39.329823][ T494] ? __kasan_check_write+0x14/0x20 [ 39.334776][ T494] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 39.339723][ T494] do_group_exit+0x255/0x320 [ 39.344158][ T494] ? __kasan_check_write+0x14/0x20 [ 39.349301][ T494] get_signal+0x170e/0x1870 [ 39.353612][ T494] ? __kasan_check_read+0x11/0x20 [ 39.358647][ T494] ? ptrace_notify+0x350/0x350 [ 39.363246][ T494] arch_do_signal_or_restart+0xb0/0x12a0 [ 39.368714][ T494] ? __kasan_check_write+0x14/0x20 [ 39.373745][ T494] ? fput_many+0x160/0x1b0 [ 39.378002][ T494] ? do_futex+0x3b5/0x490 [ 39.382175][ T494] ? __ia32_sys_get_robust_list+0x90/0x90 [ 39.387725][ T494] ? get_sigframe_size+0x10/0x10 [ 39.392493][ T494] ? __se_sys_futex+0x35e/0x3c0 [ 39.397194][ T494] exit_to_user_mode_loop+0x6b/0xa0 [ 39.402218][ T494] exit_to_user_mode_prepare+0x5a/0xa0 [ 39.407663][ T494] syscall_exit_to_user_mode+0x26/0x130 [ 39.413024][ T494] do_syscall_64+0x49/0x80 [ 39.417272][ T494] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 39.423001][ T494] RIP: 0033:0x7f3baf28c0f9 [ 39.427274][ T494] Code: Unable to access opcode bytes at RIP 0x7f3baf28c0cf. [ 39.434455][ T494] RSP: 002b:00007f3baedff218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 39.442819][ T494] RAX: fffffffffffffe00 RBX: 00007f3baf3abf88 RCX: 00007f3baf28c0f9 [ 39.450610][ T494] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3baf3abf88 [ 39.458506][ T494] RBP: 00007f3baf3abf80 R08: 0000000000000000 R09: 0000000000000000 [ 39.466428][ T494] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3baf3abf8c [ 39.474239][ T494] R13: 00007fff441c742f R14: 00007f3baedff300 R15: 0000000000022000 [ 39.482083][ T494] [ 39.488448][ T494] ------------[ cut here ]------------ [ 39.493941][ T494] DEBUG_LOCKS_WARN_ON(val > preempt_count()) [ 39.493979][ T494] WARNING: CPU: 1 PID: 494 at kernel/sched/core.c:5561 preempt_count_sub+0xa8/0x160 [ 39.509944][ T494] Modules linked in: [ 39.514115][ T494] CPU: 1 PID: 494 Comm: syz-executor.0 Tainted: G W 5.18.0-rc4-syzkaller-00030-g6213f5d4d23c #0 [ 39.526325][ T494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 39.536168][ T494] RIP: 0010:preempt_count_sub+0xa8/0x160 [ 39.542328][ T494] Code: 03 42 0f b6 04 30 84 c0 0f 85 86 00 00 00 83 3d 95 cd 35 05 00 75 d1 48 c7 c7 60 dc 08 85 48 c7 c6 00 dd 08 85 e8 a8 bb f5 ff <0f> 0b eb ba e8 4f 2b 08 01 85 c0 74 b1 48 c7 c0 d8 18 83 86 48 c1 [ 39.562639][ T494] RSP: 0018:ffffc90002c6f488 EFLAGS: 00010246 [ 39.568602][ T494] RAX: 865cb5a380802800 RBX: 0000000000000001 RCX: ffff888110e24300 [ 39.576480][ T494] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 39.584271][ T494] RBP: ffffc90002c6f498 R08: ffffffff81568a28 R09: ffffed103ee64e8b [ 39.592251][ T494] R10: 0000000000000000 R11: dffffc0000000001 R12: 0400000000000080 [ 39.600013][ T494] R13: 0000000020200000 R14: dffffc0000000000 R15: dffffc0000000000 [ 39.607856][ T494] FS: 0000000000000000(0000) GS:ffff8881f7300000(0000) knlGS:0000000000000000 [ 39.616607][ T494] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 39.623009][ T494] CR2: 00007f3ba88c3718 CR3: 000000010d260000 CR4: 00000000003506a0 [ 39.631031][ T494] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 39.638849][ T494] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 39.646819][ T494] Call Trace: [ 39.649911][ T494] [ 39.652670][ T494] _raw_spin_unlock+0x4c/0x70 [ 39.657208][ T494] unmap_page_range+0x1c84/0x1ed0 [ 39.662081][ T494] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 39.668211][ T494] ? pagevec_lru_move_fn+0x506/0x5a0 [ 39.673369][ T494] ? uprobe_munmap+0x18d/0x450 [ 39.677935][ T494] ? folio_rotate_reclaimable+0x510/0x510 [ 39.683523][ T494] unmap_vmas+0x389/0x560 [ 39.687652][ T494] ? unmap_page_range+0x1ed0/0x1ed0 [ 39.692825][ T494] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 39.698257][ T494] exit_mmap+0x1cc/0x4c0 [ 39.702380][ T494] ? vm_brk+0x30/0x30 [ 39.706366][ T494] ? uprobe_clear_state+0x2cd/0x320 [ 39.711464][ T494] __mmput+0x95/0x300 [ 39.715400][ T494] mmput+0x59/0x70 [ 39.718981][ T494] do_exit+0xa5b/0x27d0 [ 39.722947][ T494] ? put_task_struct+0x80/0x80 [ 39.727718][ T494] ? __kasan_check_write+0x14/0x20 [ 39.732876][ T494] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 39.738051][ T494] do_group_exit+0x255/0x320 [ 39.742614][ T494] ? __kasan_check_write+0x14/0x20 [ 39.747680][ T494] get_signal+0x170e/0x1870 [ 39.752155][ T494] ? __kasan_check_read+0x11/0x20 [ 39.757248][ T494] ? ptrace_notify+0x350/0x350 [ 39.762057][ T494] arch_do_signal_or_restart+0xb0/0x12a0 [ 39.767566][ T494] ? __kasan_check_write+0x14/0x20 [ 39.772719][ T494] ? fput_many+0x160/0x1b0 [ 39.777030][ T494] ? do_futex+0x3b5/0x490 [ 39.781409][ T494] ? __ia32_sys_get_robust_list+0x90/0x90 [ 39.787119][ T494] ? get_sigframe_size+0x10/0x10 [ 39.792132][ T494] ? __se_sys_futex+0x35e/0x3c0 [ 39.796975][ T494] exit_to_user_mode_loop+0x6b/0xa0 [ 39.802032][ T494] exit_to_user_mode_prepare+0x5a/0xa0 [ 39.807280][ T494] syscall_exit_to_user_mode+0x26/0x130 [ 39.812878][ T494] do_syscall_64+0x49/0x80 [ 39.817282][ T494] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 39.823261][ T494] RIP: 0033:0x7f3baf28c0f9 [ 39.827496][ T494] Code: Unable to access opcode bytes at RIP 0x7f3baf28c0cf. [ 39.834925][ T494] RSP: 002b:00007f3baedff218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 39.843158][ T494] RAX: fffffffffffffe00 RBX: 00007f3baf3abf88 RCX: 00007f3baf28c0f9 [ 39.851145][ T494] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3baf3abf88 [ 39.858925][ T494] RBP: 00007f3baf3abf80 R08: 0000000000000000 R09: 0000000000000000 [ 39.866763][ T494] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3baf3abf8c [ 39.874683][ T494] R13: 00007fff441c742f R14: 00007f3baedff300 R15: 0000000000022000 [ 39.882495][ T494] [ 39.885332][ T494] ---[ end trace 0000000000000000 ]--- [ 40.158726][ T502] loop0: detected capacity change from 0 to 63271 [ 40.165930][ T502] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 40.174277][ T502] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 40.183883][ T502] F2FS-fs (loop0): invalid crc value [ 40.191310][ T502] F2FS-fs (loop0): Found nat_bits in checkpoint [ 40.213978][ T502] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 40.220907][ T502] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 40.310058][ T507] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=1 [ 40.730668][ T510] loop0: detected capacity change from 0 to 63271 [ 40.738557][ T510] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 40.746885][ T510] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 40.756104][ T510] F2FS-fs (loop0): invalid crc value [ 40.764117][ T510] F2FS-fs (loop0): Found nat_bits in checkpoint [ 40.784807][ T510] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 40.791883][ T510] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 40.873514][ T515] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=1 [ 40.997891][ T510] BUG: scheduling while atomic: syz-executor.0/510/0x00000002 [ 41.005229][ T510] Modules linked in: [ 41.009223][ T510] Preemption disabled at: [ 41.009230][ T510] [] unmap_page_range+0xa82/0x1ed0 [ 41.020865][ T510] CPU: 1 PID: 510 Comm: syz-executor.0 Tainted: G W 5.18.0-rc4-syzkaller-00030-g6213f5d4d23c #0 [ 41.032388][ T510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 41.042278][ T510] Call Trace: [ 41.045402][ T510] [ 41.048974][ T510] dump_stack_lvl+0x151/0x1b7 [ 41.053500][ T510] ? unmap_page_range+0xa82/0x1ed0 [ 41.058435][ T510] ? unmap_page_range+0xa82/0x1ed0 [ 41.063369][ T510] ? bfq_pos_tree_add_move+0x43b/0x43b [ 41.068685][ T510] ? unmap_page_range+0xa82/0x1ed0 [ 41.073615][ T510] dump_stack+0x15/0x17 [ 41.077693][ T510] __schedule_bug+0x1a0/0x240 [ 41.082297][ T510] ? select_fallback_rq+0x220/0x220 [ 41.087329][ T510] ? __kernel_text_address+0xd/0x40 [ 41.092462][ T510] __schedule+0xd0a/0x1560 [ 41.096785][ T510] ? sysvec_apic_timer_interrupt+0x55/0xc0 [ 41.102608][ T510] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 41.108617][ T510] ? __sched_text_start+0x8/0x8 [ 41.113283][ T510] ? mutex_spin_on_owner+0x140/0x2b0 [ 41.118403][ T510] schedule+0xeb/0x1a0 [ 41.122335][ T510] schedule_preempt_disabled+0x13/0x20 [ 41.127606][ T510] __mutex_lock+0x4b1/0x1040 [ 41.132029][ T510] ? __kasan_slab_alloc+0xb1/0xe0 [ 41.136973][ T510] ? slab_post_alloc_hook+0x53/0x2c0 [ 41.142387][ T510] ? kmem_cache_alloc+0x106/0x210 [ 41.147668][ T510] ? folio_mark_dirty+0xd3/0xf0 [ 41.152337][ T510] ? unmap_vmas+0x389/0x560 [ 41.156684][ T510] ? exit_mmap+0x1cc/0x4c0 [ 41.160939][ T510] ? do_exit+0xa5b/0x27d0 [ 41.165440][ T510] ? do_group_exit+0x255/0x320 [ 41.170032][ T510] ? get_signal+0x170e/0x1870 [ 41.174719][ T510] ? arch_do_signal_or_restart+0xb0/0x12a0 [ 41.180741][ T510] ? __ww_mutex_lock_interruptible_slowpath+0x20/0x20 [ 41.187422][ T510] ? do_syscall_64+0x49/0x80 [ 41.192302][ T510] ? entry_SYSCALL_64_after_hwframe+0x44/0xae [ 41.198488][ T510] __mutex_lock_slowpath+0xe/0x10 [ 41.203462][ T510] mutex_lock+0xeb/0x120 [ 41.207553][ T510] ? slab_post_alloc_hook+0x72/0x2c0 [ 41.213066][ T510] ? bit_wait_io_timeout+0x120/0x120 [ 41.218173][ T510] ? kmem_cache_alloc+0x106/0x210 [ 41.223129][ T510] ? f2fs_register_inmem_page+0x13f/0x4b0 [ 41.228808][ T510] f2fs_register_inmem_page+0x22c/0x4b0 [ 41.234249][ T510] f2fs_dirty_data_folio+0x31d/0x440 [ 41.239457][ T510] folio_mark_dirty+0xd3/0xf0 [ 41.243966][ T510] set_page_dirty+0x5c/0x70 [ 41.248314][ T510] unmap_page_range+0x12e4/0x1ed0 [ 41.253171][ T510] ? kasan_set_track+0x4b/0x70 [ 41.257770][ T510] ? kasan_set_free_info+0x23/0x40 [ 41.262828][ T510] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 41.268989][ T510] ? uprobe_munmap+0x18d/0x450 [ 41.273588][ T510] unmap_vmas+0x389/0x560 [ 41.277840][ T510] ? unmap_page_range+0x1ed0/0x1ed0 [ 41.283390][ T510] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 41.288696][ T510] exit_mmap+0x1cc/0x4c0 [ 41.292765][ T510] ? vm_brk+0x30/0x30 [ 41.297452][ T510] ? uprobe_clear_state+0x2cd/0x320 [ 41.302487][ T510] __mmput+0x95/0x300 [ 41.306303][ T510] mmput+0x59/0x70 [ 41.309868][ T510] do_exit+0xa5b/0x27d0 [ 41.313855][ T510] ? put_task_struct+0x80/0x80 [ 41.318454][ T510] ? __kasan_check_write+0x14/0x20 [ 41.323489][ T510] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 41.328438][ T510] do_group_exit+0x255/0x320 [ 41.333231][ T510] ? __kasan_check_write+0x14/0x20 [ 41.338255][ T510] get_signal+0x170e/0x1870 [ 41.342683][ T510] ? __kasan_check_read+0x11/0x20 [ 41.347699][ T510] ? ptrace_notify+0x350/0x350 [ 41.352296][ T510] arch_do_signal_or_restart+0xb0/0x12a0 [ 41.358408][ T510] ? __kasan_check_write+0x14/0x20 [ 41.363438][ T510] ? fput_many+0x160/0x1b0 [ 41.367687][ T510] ? do_futex+0x3b5/0x490 [ 41.372617][ T510] ? __ia32_sys_get_robust_list+0x90/0x90 [ 41.378168][ T510] ? get_sigframe_size+0x10/0x10 [ 41.383112][ T510] ? __se_sys_futex+0x35e/0x3c0 [ 41.387811][ T510] exit_to_user_mode_loop+0x6b/0xa0 [ 41.392833][ T510] exit_to_user_mode_prepare+0x5a/0xa0 [ 41.398223][ T510] syscall_exit_to_user_mode+0x26/0x130 [ 41.403597][ T510] do_syscall_64+0x49/0x80 [ 41.407850][ T510] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 41.413681][ T510] RIP: 0033:0x7f3baf28c0f9 [ 41.417937][ T510] Code: Unable to access opcode bytes at RIP 0x7f3baf28c0cf. [ 41.425216][ T510] RSP: 002b:00007f3baedff218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 41.433816][ T510] RAX: fffffffffffffe00 RBX: 00007f3baf3abf88 RCX: 00007f3baf28c0f9 [ 41.441725][ T510] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3baf3abf88 [ 41.449722][ T510] RBP: 00007f3baf3abf80 R08: 0000000000000000 R09: 0000000000000000 [ 41.457631][ T510] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3baf3abf8c [ 41.465516][ T510] R13: 00007fff441c742f R14: 00007f3baedff300 R15: 0000000000022000 [ 41.473331][ T510] [ 41.476624][ T510] check_preemption_disabled: 3582 callbacks suppressed [ 41.476635][ T510] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-executor.0/510 [ 41.492619][ T510] caller is __this_cpu_preempt_check+0x13/0x20 [ 41.498582][ T510] CPU: 1 PID: 510 Comm: syz-executor.0 Tainted: G W 5.18.0-rc4-syzkaller-00030-g6213f5d4d23c #0 [ 41.512111][ T510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 41.522502][ T510] Call Trace: [ 41.525571][ T510] [ 41.528337][ T510] dump_stack_lvl+0x151/0x1b7 [ 41.532851][ T510] ? bfq_pos_tree_add_move+0x43b/0x43b [ 41.538253][ T510] ? mutex_unlock+0xa1/0x110 [ 41.542778][ T510] ? __mutex_lock_slowpath+0x10/0x10 [ 41.548012][ T510] dump_stack+0x15/0x17 [ 41.552094][ T510] check_preemption_disabled+0x109/0x110 [ 41.557561][ T510] __this_cpu_preempt_check+0x13/0x20 [ 41.562772][ T510] __mod_node_page_state+0x6d/0xf0 [ 41.567707][ T510] __mod_lruvec_page_state+0x154/0x200 [ 41.573106][ T510] ? page_remove_rmap+0x20f/0xa20 [ 41.578152][ T510] page_remove_rmap+0x73d/0xa20 [ 41.582842][ T510] ? mark_page_accessed+0x51/0x70 [ 41.587700][ T510] unmap_page_range+0x1039/0x1ed0 [ 41.592556][ T510] ? kasan_set_track+0x4b/0x70 [ 41.597157][ T510] ? kasan_set_free_info+0x23/0x40 [ 41.602103][ T510] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 41.608557][ T510] ? uprobe_munmap+0x18d/0x450 [ 41.613132][ T510] unmap_vmas+0x389/0x560 [ 41.617294][ T510] ? unmap_page_range+0x1ed0/0x1ed0 [ 41.622329][ T510] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 41.627617][ T510] exit_mmap+0x1cc/0x4c0 [ 41.631697][ T510] ? vm_brk+0x30/0x30 [ 41.635539][ T510] ? uprobe_clear_state+0x2cd/0x320 [ 41.641401][ T510] __mmput+0x95/0x300 [ 41.645177][ T510] mmput+0x59/0x70 [ 41.648750][ T510] do_exit+0xa5b/0x27d0 [ 41.652767][ T510] ? put_task_struct+0x80/0x80 [ 41.657332][ T510] ? __kasan_check_write+0x14/0x20 [ 41.662417][ T510] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 41.667356][ T510] do_group_exit+0x255/0x320 [ 41.671855][ T510] ? __kasan_check_write+0x14/0x20 [ 41.676938][ T510] get_signal+0x170e/0x1870 [ 41.681274][ T510] ? __kasan_check_read+0x11/0x20 [ 41.686239][ T510] ? ptrace_notify+0x350/0x350 [ 41.690864][ T510] arch_do_signal_or_restart+0xb0/0x12a0 [ 41.696573][ T510] ? __kasan_check_write+0x14/0x20 [ 41.701801][ T510] ? fput_many+0x160/0x1b0 [ 41.706229][ T510] ? do_futex+0x3b5/0x490 [ 41.710573][ T510] ? __ia32_sys_get_robust_list+0x90/0x90 [ 41.716405][ T510] ? get_sigframe_size+0x10/0x10 [ 41.721615][ T510] ? __se_sys_futex+0x35e/0x3c0 [ 41.726470][ T510] exit_to_user_mode_loop+0x6b/0xa0 [ 41.731787][ T510] exit_to_user_mode_prepare+0x5a/0xa0 [ 41.737078][ T510] syscall_exit_to_user_mode+0x26/0x130 [ 41.742461][ T510] do_syscall_64+0x49/0x80 [ 41.746710][ T510] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 41.752441][ T510] RIP: 0033:0x7f3baf28c0f9 [ 41.756693][ T510] Code: Unable to access opcode bytes at RIP 0x7f3baf28c0cf. [ 41.763901][ T510] RSP: 002b:00007f3baedff218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 41.772144][ T510] RAX: fffffffffffffe00 RBX: 00007f3baf3abf88 RCX: 00007f3baf28c0f9 [ 41.779962][ T510] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3baf3abf88 [ 41.787853][ T510] RBP: 00007f3baf3abf80 R08: 0000000000000000 R09: 0000000000000000 [ 41.795755][ T510] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3baf3abf8c [ 41.803824][ T510] R13: 00007fff441c742f R14: 00007f3baedff300 R15: 0000000000022000 [ 41.811736][ T510] [ 41.814901][ T510] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-executor.0/510 [ 41.824098][ T510] caller is __this_cpu_preempt_check+0x13/0x20 [ 41.830094][ T510] CPU: 1 PID: 510 Comm: syz-executor.0 Tainted: G W 5.18.0-rc4-syzkaller-00030-g6213f5d4d23c #0 [ 41.842477][ T510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 41.852374][ T510] Call Trace: [ 41.855502][ T510] [ 41.858382][ T510] dump_stack_lvl+0x151/0x1b7 [ 41.862893][ T510] ? bfq_pos_tree_add_move+0x43b/0x43b [ 41.868276][ T510] ? mutex_unlock+0xa1/0x110 [ 41.872704][ T510] ? __mutex_lock_slowpath+0x10/0x10 [ 41.877919][ T510] dump_stack+0x15/0x17 [ 41.882139][ T510] check_preemption_disabled+0x109/0x110 [ 41.887638][ T510] __this_cpu_preempt_check+0x13/0x20 [ 41.892807][ T510] __mod_node_page_state+0x89/0xf0 [ 41.897875][ T510] __mod_lruvec_page_state+0x154/0x200 [ 41.903156][ T510] ? page_remove_rmap+0x20f/0xa20 [ 41.908020][ T510] page_remove_rmap+0x73d/0xa20 [ 41.912707][ T510] ? mark_page_accessed+0x51/0x70 [ 41.917566][ T510] unmap_page_range+0x1039/0x1ed0 [ 41.922954][ T510] ? kasan_set_track+0x4b/0x70 [ 41.927601][ T510] ? kasan_set_free_info+0x23/0x40 [ 41.932514][ T510] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 41.938664][ T510] ? uprobe_munmap+0x18d/0x450 [ 41.943257][ T510] unmap_vmas+0x389/0x560 [ 41.947560][ T510] ? unmap_page_range+0x1ed0/0x1ed0 [ 41.952631][ T510] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 41.958034][ T510] exit_mmap+0x1cc/0x4c0 [ 41.962113][ T510] ? vm_brk+0x30/0x30 [ 41.965940][ T510] ? uprobe_clear_state+0x2cd/0x320 [ 41.970958][ T510] __mmput+0x95/0x300 [ 41.975479][ T510] mmput+0x59/0x70 [ 41.979641][ T510] do_exit+0xa5b/0x27d0 [ 41.983632][ T510] ? put_task_struct+0x80/0x80 [ 41.988368][ T510] ? __kasan_check_write+0x14/0x20 [ 41.993460][ T510] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 41.999028][ T510] do_group_exit+0x255/0x320 [ 42.003906][ T510] ? __kasan_check_write+0x14/0x20 [ 42.008893][ T510] get_signal+0x170e/0x1870 [ 42.013359][ T510] ? __kasan_check_read+0x11/0x20 [ 42.018211][ T510] ? ptrace_notify+0x350/0x350 [ 42.022825][ T510] arch_do_signal_or_restart+0xb0/0x12a0 [ 42.028378][ T510] ? __kasan_check_write+0x14/0x20 [ 42.033583][ T510] ? fput_many+0x160/0x1b0 [ 42.038947][ T510] ? do_futex+0x3b5/0x490 [ 42.043132][ T510] ? __ia32_sys_get_robust_list+0x90/0x90 [ 42.048687][ T510] ? get_sigframe_size+0x10/0x10 [ 42.053562][ T510] ? __se_sys_futex+0x35e/0x3c0 [ 42.058340][ T510] exit_to_user_mode_loop+0x6b/0xa0 [ 42.063459][ T510] exit_to_user_mode_prepare+0x5a/0xa0 [ 42.068753][ T510] syscall_exit_to_user_mode+0x26/0x130 [ 42.074231][ T510] do_syscall_64+0x49/0x80 [ 42.078498][ T510] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 42.084210][ T510] RIP: 0033:0x7f3baf28c0f9 [ 42.088550][ T510] Code: Unable to access opcode bytes at RIP 0x7f3baf28c0cf. [ 42.095844][ T510] RSP: 002b:00007f3baedff218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 42.104184][ T510] RAX: fffffffffffffe00 RBX: 00007f3baf3abf88 RCX: 00007f3baf28c0f9 [ 42.112042][ T510] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3baf3abf88 [ 42.119814][ T510] RBP: 00007f3baf3abf80 R08: 0000000000000000 R09: 0000000000000000 [ 42.127894][ T510] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3baf3abf8c [ 42.135879][ T510] R13: 00007fff441c742f R14: 00007f3baedff300 R15: 0000000000022000 [ 42.143694][ T510] [ 42.146683][ T510] BUG: using __this_cpu_write() in preemptible [00000000] code: syz-executor.0/510 [ 42.155786][ T510] caller is __this_cpu_preempt_check+0x13/0x20 [ 42.162108][ T510] CPU: 1 PID: 510 Comm: syz-executor.0 Tainted: G W 5.18.0-rc4-syzkaller-00030-g6213f5d4d23c #0 [ 42.173738][ T510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 42.183630][ T510] Call Trace: [ 42.186753][ T510] [ 42.189966][ T510] dump_stack_lvl+0x151/0x1b7 [ 42.194480][ T510] ? bfq_pos_tree_add_move+0x43b/0x43b [ 42.199881][ T510] ? mutex_unlock+0xa1/0x110 [ 42.204450][ T510] ? __mutex_lock_slowpath+0x10/0x10 [ 42.209603][ T510] dump_stack+0x15/0x17 [ 42.213596][ T510] check_preemption_disabled+0x109/0x110 [ 42.219319][ T510] __this_cpu_preempt_check+0x13/0x20 [ 42.224557][ T510] __mod_node_page_state+0xac/0xf0 [ 42.229470][ T510] __mod_lruvec_page_state+0x154/0x200 [ 42.234764][ T510] ? page_remove_rmap+0x20f/0xa20 [ 42.239625][ T510] page_remove_rmap+0x73d/0xa20 [ 42.244311][ T510] ? mark_page_accessed+0x51/0x70 [ 42.249174][ T510] unmap_page_range+0x1039/0x1ed0 [ 42.254033][ T510] ? kasan_set_track+0x4b/0x70 [ 42.258897][ T510] ? kasan_set_free_info+0x23/0x40 [ 42.263852][ T510] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 42.270013][ T510] ? uprobe_munmap+0x18d/0x450 [ 42.274609][ T510] unmap_vmas+0x389/0x560 [ 42.278782][ T510] ? unmap_page_range+0x1ed0/0x1ed0 [ 42.283812][ T510] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 42.289186][ T510] exit_mmap+0x1cc/0x4c0 [ 42.293263][ T510] ? vm_brk+0x30/0x30 [ 42.297089][ T510] ? uprobe_clear_state+0x2cd/0x320 [ 42.302139][ T510] __mmput+0x95/0x300 [ 42.305943][ T510] mmput+0x59/0x70 [ 42.309509][ T510] do_exit+0xa5b/0x27d0 [ 42.313492][ T510] ? put_task_struct+0x80/0x80 [ 42.318101][ T510] ? __kasan_check_write+0x14/0x20 [ 42.323036][ T510] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 42.327988][ T510] do_group_exit+0x255/0x320 [ 42.332410][ T510] ? __kasan_check_write+0x14/0x20 [ 42.337373][ T510] get_signal+0x170e/0x1870 [ 42.341696][ T510] ? __kasan_check_read+0x11/0x20 [ 42.346606][ T510] ? ptrace_notify+0x350/0x350 [ 42.353061][ T510] arch_do_signal_or_restart+0xb0/0x12a0 [ 42.359090][ T510] ? __kasan_check_write+0x14/0x20 [ 42.364720][ T510] ? fput_many+0x160/0x1b0 [ 42.369575][ T510] ? do_futex+0x3b5/0x490 [ 42.374198][ T510] ? __ia32_sys_get_robust_list+0x90/0x90 [ 42.380018][ T510] ? get_sigframe_size+0x10/0x10 [ 42.384799][ T510] ? __se_sys_futex+0x35e/0x3c0 [ 42.389649][ T510] exit_to_user_mode_loop+0x6b/0xa0 [ 42.394686][ T510] exit_to_user_mode_prepare+0x5a/0xa0 [ 42.399973][ T510] syscall_exit_to_user_mode+0x26/0x130 [ 42.405480][ T510] do_syscall_64+0x49/0x80 [ 42.409815][ T510] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 42.415621][ T510] RIP: 0033:0x7f3baf28c0f9 [ 42.419876][ T510] Code: Unable to access opcode bytes at RIP 0x7f3baf28c0cf. [ 42.427182][ T510] RSP: 002b:00007f3baedff218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 42.435427][ T510] RAX: fffffffffffffe00 RBX: 00007f3baf3abf88 RCX: 00007f3baf28c0f9 [ 42.443243][ T510] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3baf3abf88 [ 42.452802][ T510] RBP: 00007f3baf3abf80 R08: 0000000000000000 R09: 0000000000000000 [ 42.461928][ T510] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3baf3abf8c [ 42.470158][ T510] R13: 00007fff441c742f R14: 00007f3baedff300 R15: 0000000000022000 [ 42.478281][ T510] [ 42.481642][ T510] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor.0/510 [ 42.493458][ T510] caller is __this_cpu_preempt_check+0x13/0x20 [ 42.499976][ T510] CPU: 1 PID: 510 Comm: syz-executor.0 Tainted: G W 5.18.0-rc4-syzkaller-00030-g6213f5d4d23c #0 [ 42.511918][ T510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 42.522770][ T510] Call Trace: [ 42.526584][ T510] [ 42.530492][ T510] dump_stack_lvl+0x151/0x1b7 [ 42.535622][ T510] ? bfq_pos_tree_add_move+0x43b/0x43b [ 42.540985][ T510] ? mutex_unlock+0xa1/0x110 [ 42.545420][ T510] ? __mutex_lock_slowpath+0x10/0x10 [ 42.550521][ T510] dump_stack+0x15/0x17 [ 42.554515][ T510] check_preemption_disabled+0x109/0x110 [ 42.559991][ T510] __this_cpu_preempt_check+0x13/0x20 [ 42.565194][ T510] __mod_memcg_lruvec_state+0x4f/0x1b0 [ 42.570849][ T510] ? __mod_node_page_state+0xac/0xf0 [ 42.576291][ T510] __mod_lruvec_page_state+0x164/0x200 [ 42.581755][ T510] ? page_remove_rmap+0x20f/0xa20 [ 42.586722][ T510] page_remove_rmap+0x73d/0xa20 [ 42.591407][ T510] ? mark_page_accessed+0x51/0x70 [ 42.596490][ T510] unmap_page_range+0x1039/0x1ed0 [ 42.601312][ T510] ? kasan_set_track+0x4b/0x70 [ 42.606148][ T510] ? kasan_set_free_info+0x23/0x40 [ 42.611408][ T510] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 42.617951][ T510] ? uprobe_munmap+0x18d/0x450 [ 42.623074][ T510] unmap_vmas+0x389/0x560 [ 42.627565][ T510] ? unmap_page_range+0x1ed0/0x1ed0 [ 42.632589][ T510] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 42.637964][ T510] exit_mmap+0x1cc/0x4c0 [ 42.642046][ T510] ? vm_brk+0x30/0x30 [ 42.645862][ T510] ? uprobe_clear_state+0x2cd/0x320 [ 42.650992][ T510] __mmput+0x95/0x300 [ 42.654812][ T510] mmput+0x59/0x70 [ 42.658374][ T510] do_exit+0xa5b/0x27d0 [ 42.662541][ T510] ? put_task_struct+0x80/0x80 [ 42.667340][ T510] ? __kasan_check_write+0x14/0x20 [ 42.672399][ T510] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 42.677518][ T510] do_group_exit+0x255/0x320 [ 42.681941][ T510] ? __kasan_check_write+0x14/0x20 [ 42.686982][ T510] get_signal+0x170e/0x1870 [ 42.691930][ T510] ? __kasan_check_read+0x11/0x20 [ 42.696874][ T510] ? ptrace_notify+0x350/0x350 [ 42.701469][ T510] arch_do_signal_or_restart+0xb0/0x12a0 [ 42.706937][ T510] ? __kasan_check_write+0x14/0x20 [ 42.711887][ T510] ? fput_many+0x160/0x1b0 [ 42.716134][ T510] ? do_futex+0x3b5/0x490 [ 42.720311][ T510] ? __ia32_sys_get_robust_list+0x90/0x90 [ 42.725967][ T510] ? get_sigframe_size+0x10/0x10 [ 42.730894][ T510] ? __se_sys_futex+0x35e/0x3c0 [ 42.735586][ T510] exit_to_user_mode_loop+0x6b/0xa0 [ 42.740786][ T510] exit_to_user_mode_prepare+0x5a/0xa0 [ 42.746081][ T510] syscall_exit_to_user_mode+0x26/0x130 [ 42.751461][ T510] do_syscall_64+0x49/0x80 [ 42.756197][ T510] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 42.762159][ T510] RIP: 0033:0x7f3baf28c0f9 [ 42.766423][ T510] Code: Unable to access opcode bytes at RIP 0x7f3baf28c0cf. [ 42.773628][ T510] RSP: 002b:00007f3baedff218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 42.781870][ T510] RAX: fffffffffffffe00 RBX: 00007f3baf3abf88 RCX: 00007f3baf28c0f9 [ 42.789953][ T510] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3baf3abf88 [ 42.797796][ T510] RBP: 00007f3baf3abf80 R08: 0000000000000000 R09: 0000000000000000 [ 42.805825][ T510] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3baf3abf8c [ 42.813893][ T510] R13: 00007fff441c742f R14: 00007f3baedff300 R15: 0000000000022000 [ 42.821889][ T510] [ 42.824828][ T510] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor.0/510 [ 42.833898][ T510] caller is __this_cpu_preempt_check+0x13/0x20 [ 42.840066][ T510] CPU: 1 PID: 510 Comm: syz-executor.0 Tainted: G W 5.18.0-rc4-syzkaller-00030-g6213f5d4d23c #0 [ 42.852003][ T510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 42.862099][ T510] Call Trace: [ 42.865194][ T510] [ 42.867993][ T510] dump_stack_lvl+0x151/0x1b7 [ 42.872516][ T510] ? bfq_pos_tree_add_move+0x43b/0x43b [ 42.877934][ T510] ? mutex_unlock+0xa1/0x110 [ 42.882299][ T510] ? __mutex_lock_slowpath+0x10/0x10 [ 42.887416][ T510] dump_stack+0x15/0x17 [ 42.891493][ T510] check_preemption_disabled+0x109/0x110 [ 42.897048][ T510] __this_cpu_preempt_check+0x13/0x20 [ 42.902257][ T510] __mod_memcg_lruvec_state+0xa2/0x1b0 [ 42.907550][ T510] __mod_lruvec_page_state+0x164/0x200 [ 42.912847][ T510] ? page_remove_rmap+0x20f/0xa20 [ 42.917703][ T510] page_remove_rmap+0x73d/0xa20 [ 42.922391][ T510] ? mark_page_accessed+0x51/0x70 [ 42.927248][ T510] unmap_page_range+0x1039/0x1ed0 [ 42.932109][ T510] ? kasan_set_track+0x4b/0x70 [ 42.936951][ T510] ? kasan_set_free_info+0x23/0x40 [ 42.941914][ T510] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 42.948198][ T510] ? uprobe_munmap+0x18d/0x450 [ 42.952797][ T510] unmap_vmas+0x389/0x560 [ 42.956959][ T510] ? unmap_page_range+0x1ed0/0x1ed0 [ 42.962078][ T510] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 42.967402][ T510] exit_mmap+0x1cc/0x4c0 [ 42.971563][ T510] ? vm_brk+0x30/0x30 [ 42.975501][ T510] ? uprobe_clear_state+0x2cd/0x320 [ 42.980784][ T510] __mmput+0x95/0x300 [ 42.985044][ T510] mmput+0x59/0x70 [ 42.989143][ T510] do_exit+0xa5b/0x27d0 [ 42.993234][ T510] ? put_task_struct+0x80/0x80 [ 42.997825][ T510] ? __kasan_check_write+0x14/0x20 [ 43.003042][ T510] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 43.008161][ T510] do_group_exit+0x255/0x320 [ 43.013495][ T510] ? __kasan_check_write+0x14/0x20 [ 43.020529][ T510] get_signal+0x170e/0x1870 [ 43.025115][ T510] ? __kasan_check_read+0x11/0x20 [ 43.030248][ T510] ? ptrace_notify+0x350/0x350 [ 43.035046][ T510] arch_do_signal_or_restart+0xb0/0x12a0 [ 43.041359][ T510] ? __kasan_check_write+0x14/0x20 [ 43.046555][ T510] ? fput_many+0x160/0x1b0 [ 43.050839][ T510] ? do_futex+0x3b5/0x490 [ 43.054993][ T510] ? __ia32_sys_get_robust_list+0x90/0x90 [ 43.060546][ T510] ? get_sigframe_size+0x10/0x10 [ 43.065431][ T510] ? __se_sys_futex+0x35e/0x3c0 [ 43.070119][ T510] exit_to_user_mode_loop+0x6b/0xa0 [ 43.075157][ T510] exit_to_user_mode_prepare+0x5a/0xa0 [ 43.080447][ T510] syscall_exit_to_user_mode+0x26/0x130 [ 43.085836][ T510] do_syscall_64+0x49/0x80 [ 43.090082][ T510] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 43.095893][ T510] RIP: 0033:0x7f3baf28c0f9 [ 43.100148][ T510] Code: Unable to access opcode bytes at RIP 0x7f3baf28c0cf. [ 43.107354][ T510] RSP: 002b:00007f3baedff218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 43.115598][ T510] RAX: fffffffffffffe00 RBX: 00007f3baf3abf88 RCX: 00007f3baf28c0f9 [ 43.123494][ T510] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3baf3abf88 [ 43.137316][ T510] RBP: 00007f3baf3abf80 R08: 0000000000000000 R09: 0000000000000000 [ 43.145888][ T510] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3baf3abf8c [ 43.153988][ T510] R13: 00007fff441c742f R14: 00007f3baedff300 R15: 0000000000022000 [ 43.161980][ T510] [ 43.164980][ T510] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.0/510 [ 43.175763][ T510] caller is debug_smp_processor_id+0x17/0x20 [ 43.183156][ T510] CPU: 1 PID: 510 Comm: syz-executor.0 Tainted: G W 5.18.0-rc4-syzkaller-00030-g6213f5d4d23c #0 [ 43.195289][ T510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 43.206801][ T510] Call Trace: [ 43.210451][ T510] [ 43.213845][ T510] dump_stack_lvl+0x151/0x1b7 [ 43.218360][ T510] ? bfq_pos_tree_add_move+0x43b/0x43b [ 43.224440][ T510] ? mutex_unlock+0xa1/0x110 [ 43.229393][ T510] ? __mutex_lock_slowpath+0x10/0x10 [ 43.234781][ T510] dump_stack+0x15/0x17 [ 43.239410][ T510] check_preemption_disabled+0x109/0x110 [ 43.245371][ T510] debug_smp_processor_id+0x17/0x20 [ 43.250431][ T510] __mod_memcg_lruvec_state+0x106/0x1b0 [ 43.255789][ T510] __mod_lruvec_page_state+0x164/0x200 [ 43.261640][ T510] ? page_remove_rmap+0x20f/0xa20 [ 43.266563][ T510] page_remove_rmap+0x73d/0xa20 [ 43.271360][ T510] ? mark_page_accessed+0x51/0x70 [ 43.276332][ T510] unmap_page_range+0x1039/0x1ed0 [ 43.281372][ T510] ? kasan_set_track+0x4b/0x70 [ 43.285957][ T510] ? kasan_set_free_info+0x23/0x40 [ 43.291007][ T510] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 43.297170][ T510] ? uprobe_munmap+0x18d/0x450 [ 43.301843][ T510] unmap_vmas+0x389/0x560 [ 43.306363][ T510] ? unmap_page_range+0x1ed0/0x1ed0 [ 43.311659][ T510] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 43.317034][ T510] exit_mmap+0x1cc/0x4c0 [ 43.321117][ T510] ? vm_brk+0x30/0x30 [ 43.324945][ T510] ? uprobe_clear_state+0x2cd/0x320 [ 43.329969][ T510] __mmput+0x95/0x300 [ 43.333792][ T510] mmput+0x59/0x70 [ 43.337344][ T510] do_exit+0xa5b/0x27d0 [ 43.341689][ T510] ? put_task_struct+0x80/0x80 [ 43.346284][ T510] ? __kasan_check_write+0x14/0x20 [ 43.351349][ T510] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 43.356266][ T510] do_group_exit+0x255/0x320 [ 43.360693][ T510] ? __kasan_check_write+0x14/0x20 [ 43.365639][ T510] get_signal+0x170e/0x1870 [ 43.370068][ T510] ? __kasan_check_read+0x11/0x20 [ 43.375196][ T510] ? ptrace_notify+0x350/0x350 [ 43.379886][ T510] arch_do_signal_or_restart+0xb0/0x12a0 [ 43.385340][ T510] ? __kasan_check_write+0x14/0x20 [ 43.390287][ T510] ? fput_many+0x160/0x1b0 [ 43.394628][ T510] ? do_futex+0x3b5/0x490 [ 43.399067][ T510] ? __ia32_sys_get_robust_list+0x90/0x90 [ 43.404783][ T510] ? get_sigframe_size+0x10/0x10 [ 43.409728][ T510] ? __se_sys_futex+0x35e/0x3c0 [ 43.414422][ T510] exit_to_user_mode_loop+0x6b/0xa0 [ 43.419632][ T510] exit_to_user_mode_prepare+0x5a/0xa0 [ 43.425180][ T510] syscall_exit_to_user_mode+0x26/0x130 [ 43.430944][ T510] do_syscall_64+0x49/0x80 [ 43.435517][ T510] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 43.441432][ T510] RIP: 0033:0x7f3baf28c0f9 [ 43.445672][ T510] Code: Unable to access opcode bytes at RIP 0x7f3baf28c0cf. [ 43.453061][ T510] RSP: 002b:00007f3baedff218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 43.461674][ T510] RAX: fffffffffffffe00 RBX: 00007f3baf3abf88 RCX: 00007f3baf28c0f9 [ 43.469487][ T510] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3baf3abf88 [ 43.477406][ T510] RBP: 00007f3baf3abf80 R08: 0000000000000000 R09: 0000000000000000 [ 43.485286][ T510] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3baf3abf8c [ 43.493173][ T510] R13: 00007fff441c742f R14: 00007f3baedff300 R15: 0000000000022000 [ 43.500991][ T510] [ 43.503907][ T510] BUG: using __this_cpu_add_return() in preemptible [00000000] code: syz-executor.0/510 [ 43.514187][ T510] caller is __this_cpu_preempt_check+0x13/0x20 [ 43.520966][ T510] CPU: 1 PID: 510 Comm: syz-executor.0 Tainted: G W 5.18.0-rc4-syzkaller-00030-g6213f5d4d23c #0 [ 43.532620][ T510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 43.542493][ T510] Call Trace: [ 43.545617][ T510] [ 43.548393][ T510] dump_stack_lvl+0x151/0x1b7 [ 43.552905][ T510] ? bfq_pos_tree_add_move+0x43b/0x43b [ 43.558327][ T510] ? mutex_unlock+0xa1/0x110 [ 43.562753][ T510] ? __mutex_lock_slowpath+0x10/0x10 [ 43.567870][ T510] dump_stack+0x15/0x17 [ 43.571866][ T510] check_preemption_disabled+0x109/0x110 [ 43.577330][ T510] __this_cpu_preempt_check+0x13/0x20 [ 43.582544][ T510] __mod_memcg_lruvec_state+0x11c/0x1b0 [ 43.587923][ T510] __mod_lruvec_page_state+0x164/0x200 [ 43.593241][ T510] ? page_remove_rmap+0x20f/0xa20 [ 43.598174][ T510] page_remove_rmap+0x73d/0xa20 [ 43.603065][ T510] ? mark_page_accessed+0x51/0x70 [ 43.608042][ T510] unmap_page_range+0x1039/0x1ed0 [ 43.613094][ T510] ? kasan_set_track+0x4b/0x70 [ 43.617898][ T510] ? kasan_set_free_info+0x23/0x40 [ 43.622844][ T510] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 43.629183][ T510] ? uprobe_munmap+0x18d/0x450 [ 43.633968][ T510] unmap_vmas+0x389/0x560 [ 43.638321][ T510] ? unmap_page_range+0x1ed0/0x1ed0 [ 43.643535][ T510] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 43.648813][ T510] exit_mmap+0x1cc/0x4c0 [ 43.653012][ T510] ? vm_brk+0x30/0x30 [ 43.656935][ T510] ? uprobe_clear_state+0x2cd/0x320 [ 43.661925][ T510] __mmput+0x95/0x300 [ 43.665744][ T510] mmput+0x59/0x70 [ 43.669299][ T510] do_exit+0xa5b/0x27d0 [ 43.673289][ T510] ? put_task_struct+0x80/0x80 [ 43.677889][ T510] ? __kasan_check_write+0x14/0x20 [ 43.682837][ T510] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 43.687786][ T510] do_group_exit+0x255/0x320 [ 43.692526][ T510] ? __kasan_check_write+0x14/0x20 [ 43.698572][ T510] get_signal+0x170e/0x1870 [ 43.703268][ T510] ? __kasan_check_read+0x11/0x20 [ 43.708287][ T510] ? ptrace_notify+0x350/0x350 [ 43.713243][ T510] arch_do_signal_or_restart+0xb0/0x12a0 [ 43.718894][ T510] ? __kasan_check_write+0x14/0x20 [ 43.724122][ T510] ? fput_many+0x160/0x1b0 [ 43.728458][ T510] ? do_futex+0x3b5/0x490 [ 43.732768][ T510] ? __ia32_sys_get_robust_list+0x90/0x90 [ 43.738373][ T510] ? get_sigframe_size+0x10/0x10 [ 43.743476][ T510] ? __se_sys_futex+0x35e/0x3c0 [ 43.748408][ T510] exit_to_user_mode_loop+0x6b/0xa0 [ 43.753470][ T510] exit_to_user_mode_prepare+0x5a/0xa0 [ 43.760246][ T510] syscall_exit_to_user_mode+0x26/0x130 [ 43.767094][ T510] do_syscall_64+0x49/0x80 [ 43.771340][ T510] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 43.777189][ T510] RIP: 0033:0x7f3baf28c0f9 [ 43.781540][ T510] Code: Unable to access opcode bytes at RIP 0x7f3baf28c0cf. [ 43.788913][ T510] RSP: 002b:00007f3baedff218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 43.797224][ T510] RAX: fffffffffffffe00 RBX: 00007f3baf3abf88 RCX: 00007f3baf28c0f9 [ 43.805028][ T510] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3baf3abf88 [ 43.813021][ T510] RBP: 00007f3baf3abf80 R08: 0000000000000000 R09: 0000000000000000 [ 43.821565][ T510] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3baf3abf8c [ 43.829448][ T510] R13: 00007fff441c742f R14: 00007f3baedff300 R15: 0000000000022000 [ 43.837288][ T510] [ 43.842418][ T510] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-executor.0/510 [ 43.851711][ T510] caller is __this_cpu_preempt_check+0x13/0x20 [ 43.857719][ T510] CPU: 0 PID: 510 Comm: syz-executor.0 Tainted: G W 5.18.0-rc4-syzkaller-00030-g6213f5d4d23c #0 [ 43.869759][ T510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 43.880499][ T510] Call Trace: [ 43.883579][ T510] [ 43.886363][ T510] dump_stack_lvl+0x151/0x1b7 [ 43.890879][ T510] ? bfq_pos_tree_add_move+0x43b/0x43b [ 43.896457][ T510] ? preempt_schedule+0xd9/0xe0 [ 43.901247][ T510] dump_stack+0x15/0x17 [ 43.905392][ T510] check_preemption_disabled+0x109/0x110 [ 43.910943][ T510] __this_cpu_preempt_check+0x13/0x20 [ 43.916236][ T510] __mod_node_page_state+0x6d/0xf0 [ 43.921480][ T510] __mod_lruvec_page_state+0x154/0x200 [ 43.926766][ T510] ? page_remove_rmap+0x20f/0xa20 [ 43.931678][ T510] page_remove_rmap+0x73d/0xa20 [ 43.936419][ T510] ? mark_page_accessed+0x51/0x70 [ 43.941261][ T510] unmap_page_range+0x1039/0x1ed0 [ 43.946327][ T510] ? kasan_set_track+0x4b/0x70 [ 43.950888][ T510] ? kasan_set_free_info+0x23/0x40 [ 43.955857][ T510] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 43.962618][ T510] ? uprobe_munmap+0x18d/0x450 [ 43.967408][ T510] unmap_vmas+0x389/0x560 [ 43.971577][ T510] ? unmap_page_range+0x1ed0/0x1ed0 [ 43.977177][ T510] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 43.982535][ T510] exit_mmap+0x1cc/0x4c0 [ 43.986756][ T510] ? vm_brk+0x30/0x30 [ 43.990672][ T510] ? uprobe_clear_state+0x2cd/0x320 [ 43.995702][ T510] __mmput+0x95/0x300 [ 43.999639][ T510] mmput+0x59/0x70 [ 44.003192][ T510] do_exit+0xa5b/0x27d0 [ 44.007182][ T510] ? put_task_struct+0x80/0x80 [ 44.011790][ T510] ? __kasan_check_write+0x14/0x20 [ 44.016739][ T510] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 44.021695][ T510] do_group_exit+0x255/0x320 [ 44.026105][ T510] ? __kasan_check_write+0x14/0x20 [ 44.031161][ T510] get_signal+0x170e/0x1870 [ 44.035570][ T510] ? __kasan_check_read+0x11/0x20 [ 44.040429][ T510] ? ptrace_notify+0x350/0x350 [ 44.045130][ T510] arch_do_signal_or_restart+0xb0/0x12a0 [ 44.050616][ T510] ? __kasan_check_write+0x14/0x20 [ 44.055559][ T510] ? fput_many+0x160/0x1b0 [ 44.059802][ T510] ? do_futex+0x3b5/0x490 [ 44.063960][ T510] ? __ia32_sys_get_robust_list+0x90/0x90 [ 44.069700][ T510] ? get_sigframe_size+0x10/0x10 [ 44.074553][ T510] ? __se_sys_futex+0x35e/0x3c0 [ 44.079260][ T510] exit_to_user_mode_loop+0x6b/0xa0 [ 44.084272][ T510] exit_to_user_mode_prepare+0x5a/0xa0 [ 44.089666][ T510] syscall_exit_to_user_mode+0x26/0x130 [ 44.095202][ T510] do_syscall_64+0x49/0x80 [ 44.099453][ T510] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 44.105370][ T510] RIP: 0033:0x7f3baf28c0f9 [ 44.109746][ T510] Code: Unable to access opcode bytes at RIP 0x7f3baf28c0cf. [ 44.117196][ T510] RSP: 002b:00007f3baedff218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 44.125527][ T510] RAX: fffffffffffffe00 RBX: 00007f3baf3abf88 RCX: 00007f3baf28c0f9 [ 44.134212][ T510] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3baf3abf88 [ 44.145752][ T510] RBP: 00007f3baf3abf80 R08: 0000000000000000 R09: 0000000000000000 [ 44.154087][ T510] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3baf3abf8c [ 44.162263][ T510] R13: 00007fff441c742f R14: 00007f3baedff300 R15: 0000000000022000 [ 44.173223][ T510] [ 44.176839][ T510] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-executor.0/510 [ 44.187148][ T510] caller is __this_cpu_preempt_check+0x13/0x20 [ 44.193674][ T510] CPU: 0 PID: 510 Comm: syz-executor.0 Tainted: G W 5.18.0-rc4-syzkaller-00030-g6213f5d4d23c #0 [ 44.205361][ T510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 44.215519][ T510] Call Trace: [ 44.218677][ T510] [ 44.221511][ T510] dump_stack_lvl+0x151/0x1b7 [ 44.226118][ T510] ? bfq_pos_tree_add_move+0x43b/0x43b [ 44.231669][ T510] ? preempt_schedule+0xd9/0xe0 [ 44.236344][ T510] dump_stack+0x15/0x17 [ 44.240344][ T510] check_preemption_disabled+0x109/0x110 [ 44.246071][ T510] __this_cpu_preempt_check+0x13/0x20 [ 44.251628][ T510] __mod_node_page_state+0x89/0xf0 [ 44.256657][ T510] __mod_lruvec_page_state+0x154/0x200 [ 44.262056][ T510] ? page_remove_rmap+0x20f/0xa20 [ 44.266909][ T510] page_remove_rmap+0x73d/0xa20 [ 44.271681][ T510] ? mark_page_accessed+0x51/0x70 [ 44.276534][ T510] unmap_page_range+0x1039/0x1ed0 [ 44.281478][ T510] ? kasan_set_track+0x4b/0x70 [ 44.286165][ T510] ? kasan_set_free_info+0x23/0x40 [ 44.291213][ T510] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 44.297712][ T510] ? uprobe_munmap+0x18d/0x450 [ 44.302657][ T510] unmap_vmas+0x389/0x560 [ 44.306913][ T510] ? unmap_page_range+0x1ed0/0x1ed0 [ 44.312032][ T510] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 44.317412][ T510] exit_mmap+0x1cc/0x4c0 [ 44.321575][ T510] ? vm_brk+0x30/0x30 [ 44.325435][ T510] ? uprobe_clear_state+0x2cd/0x320 [ 44.330452][ T510] __mmput+0x95/0x300 [ 44.334432][ T510] mmput+0x59/0x70 [ 44.338165][ T510] do_exit+0xa5b/0x27d0 [ 44.342782][ T510] ? put_task_struct+0x80/0x80 [ 44.347548][ T510] ? __kasan_check_write+0x14/0x20 [ 44.352574][ T510] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 44.357521][ T510] do_group_exit+0x255/0x320 [ 44.361945][ T510] ? __kasan_check_write+0x14/0x20 [ 44.366905][ T510] get_signal+0x170e/0x1870 [ 44.371236][ T510] ? __kasan_check_read+0x11/0x20 [ 44.376091][ T510] ? ptrace_notify+0x350/0x350 [ 44.380701][ T510] arch_do_signal_or_restart+0xb0/0x12a0 [ 44.386169][ T510] ? __kasan_check_write+0x14/0x20 [ 44.391133][ T510] ? fput_many+0x160/0x1b0 [ 44.395372][ T510] ? do_futex+0x3b5/0x490 [ 44.399530][ T510] ? __ia32_sys_get_robust_list+0x90/0x90 [ 44.405166][ T510] ? get_sigframe_size+0x10/0x10 [ 44.410030][ T510] ? __se_sys_futex+0x35e/0x3c0 [ 44.414716][ T510] exit_to_user_mode_loop+0x6b/0xa0 [ 44.419931][ T510] exit_to_user_mode_prepare+0x5a/0xa0 [ 44.425322][ T510] syscall_exit_to_user_mode+0x26/0x130 [ 44.430953][ T510] do_syscall_64+0x49/0x80 [ 44.435491][ T510] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 44.441228][ T510] RIP: 0033:0x7f3baf28c0f9 [ 44.445481][ T510] Code: Unable to access opcode bytes at RIP 0x7f3baf28c0cf. [ 44.452679][ T510] RSP: 002b:00007f3baedff218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 44.461623][ T510] RAX: fffffffffffffe00 RBX: 00007f3baf3abf88 RCX: 00007f3baf28c0f9 [ 44.469605][ T510] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3baf3abf88 [ 44.477528][ T510] RBP: 00007f3baf3abf80 R08: 0000000000000000 R09: 0000000000000000 [ 44.485969][ T510] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3baf3abf8c [ 44.494848][ T510] R13: 00007fff441c742f R14: 00007f3baedff300 R15: 0000000000022000 [ 44.502655][ T510] [ 44.505636][ T510] BUG: using __this_cpu_write() in preemptible [00000000] code: syz-executor.0/510 [ 44.514886][ T510] caller is __this_cpu_preempt_check+0x13/0x20 [ 44.520968][ T510] CPU: 0 PID: 510 Comm: syz-executor.0 Tainted: G W 5.18.0-rc4-syzkaller-00030-g6213f5d4d23c #0 [ 44.532489][ T510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 44.542539][ T510] Call Trace: [ 44.545643][ T510] [ 44.548418][ T510] dump_stack_lvl+0x151/0x1b7 [ 44.553112][ T510] ? bfq_pos_tree_add_move+0x43b/0x43b [ 44.558515][ T510] ? preempt_schedule+0xd9/0xe0 [ 44.563188][ T510] dump_stack+0x15/0x17 [ 44.567281][ T510] check_preemption_disabled+0x109/0x110 [ 44.572910][ T510] __this_cpu_preempt_check+0x13/0x20 [ 44.578571][ T510] __mod_node_page_state+0xac/0xf0 [ 44.583691][ T510] __mod_lruvec_page_state+0x154/0x200 [ 44.588985][ T510] ? page_remove_rmap+0x20f/0xa20 [ 44.594107][ T510] page_remove_rmap+0x73d/0xa20 [ 44.598885][ T510] ? mark_page_accessed+0x51/0x70 [ 44.603870][ T510] unmap_page_range+0x1039/0x1ed0 [ 44.608896][ T510] ? kasan_set_track+0x4b/0x70 [ 44.613585][ T510] ? kasan_set_free_info+0x23/0x40 [ 44.618545][ T510] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 44.624878][ T510] ? uprobe_munmap+0x18d/0x450 [ 44.629467][ T510] unmap_vmas+0x389/0x560 [ 44.633713][ T510] ? unmap_page_range+0x1ed0/0x1ed0 [ 44.638774][ T510] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 44.644043][ T510] exit_mmap+0x1cc/0x4c0 [ 44.648222][ T510] ? vm_brk+0x30/0x30 [ 44.652063][ T510] ? uprobe_clear_state+0x2cd/0x320 [ 44.657297][ T510] __mmput+0x95/0x300 [ 44.661103][ T510] mmput+0x59/0x70 [ 44.664636][ T510] do_exit+0xa5b/0x27d0 [ 44.668858][ T510] ? put_task_struct+0x80/0x80 [ 44.673660][ T510] ? __kasan_check_write+0x14/0x20 [ 44.678618][ T510] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 44.683841][ T510] do_group_exit+0x255/0x320 [ 44.688325][ T510] ? __kasan_check_write+0x14/0x20 [ 44.693569][ T510] get_signal+0x170e/0x1870 [ 44.697898][ T510] ? __kasan_check_read+0x11/0x20 [ 44.702759][ T510] ? ptrace_notify+0x350/0x350 [ 44.707649][ T510] arch_do_signal_or_restart+0xb0/0x12a0 [ 44.713086][ T510] ? __kasan_check_write+0x14/0x20 [ 44.718217][ T510] ? fput_many+0x160/0x1b0 [ 44.722898][ T510] ? do_futex+0x3b5/0x490 [ 44.727342][ T510] ? __ia32_sys_get_robust_list+0x90/0x90 [ 44.732965][ T510] ? get_sigframe_size+0x10/0x10 [ 44.737763][ T510] ? __se_sys_futex+0x35e/0x3c0 [ 44.742529][ T510] exit_to_user_mode_loop+0x6b/0xa0 [ 44.747632][ T510] exit_to_user_mode_prepare+0x5a/0xa0 [ 44.752955][ T510] syscall_exit_to_user_mode+0x26/0x130 [ 44.758811][ T510] do_syscall_64+0x49/0x80 [ 44.763143][ T510] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 44.768965][ T510] RIP: 0033:0x7f3baf28c0f9 [ 44.773288][ T510] Code: Unable to access opcode bytes at RIP 0x7f3baf28c0cf. [ 44.780502][ T510] RSP: 002b:00007f3baedff218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 44.788738][ T510] RAX: fffffffffffffe00 RBX: 00007f3baf3abf88 RCX: 00007f3baf28c0f9 [ 44.796644][ T510] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3baf3abf88 [ 44.804851][ T510] RBP: 00007f3baf3abf80 R08: 0000000000000000 R09: 0000000000000000 2023/03/24 08:19:49 executed programs: 7 [ 44.812745][ T510] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3baf3abf8c [ 44.820731][ T510] R13: 00007fff441c742f R14: 00007f3baedff300 R15: 0000000000022000 [ 44.828733][ T510] [ 45.111313][ T522] loop0: detected capacity change from 0 to 63271 [ 45.118511][ T522] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 45.127090][ T522] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 45.136348][ T522] F2FS-fs (loop0): invalid crc value [ 45.143443][ T522] F2FS-fs (loop0): Found nat_bits in checkpoint [ 45.164296][ T522] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 45.171288][ T522] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 45.253303][ T527] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=1 [ 45.382355][ T522] BUG: scheduling while atomic: syz-executor.0/522/0x00000002 [ 45.389708][ T522] Modules linked in: [ 45.393382][ T522] Preemption disabled at: [ 45.393390][ T522] [] unmap_page_range+0xa82/0x1ed0 [ 45.404639][ T522] CPU: 1 PID: 522 Comm: syz-executor.0 Tainted: G W 5.18.0-rc4-syzkaller-00030-g6213f5d4d23c #0 [ 45.416318][ T522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 45.426295][ T522] Call Trace: [ 45.429447][ T522] [ 45.432222][ T522] dump_stack_lvl+0x151/0x1b7 [ 45.436830][ T522] ? unmap_page_range+0xa82/0x1ed0 [ 45.441778][ T522] ? unmap_page_range+0xa82/0x1ed0 [ 45.447038][ T522] ? bfq_pos_tree_add_move+0x43b/0x43b [ 45.452358][ T522] ? unmap_page_range+0xa82/0x1ed0 [ 45.457278][ T522] dump_stack+0x15/0x17 [ 45.461268][ T522] __schedule_bug+0x1a0/0x240 [ 45.466222][ T522] ? select_fallback_rq+0x220/0x220 [ 45.471337][ T522] ? __kernel_text_address+0xd/0x40 [ 45.476370][ T522] __schedule+0xd0a/0x1560 [ 45.480625][ T522] ? sysvec_apic_timer_interrupt+0x55/0xc0 [ 45.486461][ T522] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 45.492446][ T522] ? __sched_text_start+0x8/0x8 [ 45.497131][ T522] ? mutex_spin_on_owner+0x140/0x2b0 [ 45.502251][ T522] schedule+0xeb/0x1a0 [ 45.506244][ T522] schedule_preempt_disabled+0x13/0x20 [ 45.511538][ T522] __mutex_lock+0x4b1/0x1040 [ 45.515964][ T522] ? __kasan_slab_alloc+0xb1/0xe0 [ 45.520828][ T522] ? slab_post_alloc_hook+0x53/0x2c0 [ 45.526121][ T522] ? kmem_cache_alloc+0x106/0x210 [ 45.530978][ T522] ? folio_mark_dirty+0xd3/0xf0 [ 45.535666][ T522] ? unmap_vmas+0x389/0x560 [ 45.540008][ T522] ? exit_mmap+0x1cc/0x4c0 [ 45.544370][ T522] ? do_exit+0xa5b/0x27d0 [ 45.548775][ T522] ? do_group_exit+0x255/0x320 [ 45.553489][ T522] ? get_signal+0x170e/0x1870 [ 45.557993][ T522] ? arch_do_signal_or_restart+0xb0/0x12a0 [ 45.563649][ T522] ? __ww_mutex_lock_interruptible_slowpath+0x20/0x20 [ 45.570584][ T522] ? do_syscall_64+0x49/0x80 [ 45.575491][ T522] ? entry_SYSCALL_64_after_hwframe+0x44/0xae [ 45.581790][ T522] __mutex_lock_slowpath+0xe/0x10 [ 45.586817][ T522] mutex_lock+0xeb/0x120 [ 45.590895][ T522] ? slab_post_alloc_hook+0x72/0x2c0 [ 45.596016][ T522] ? bit_wait_io_timeout+0x120/0x120 [ 45.601222][ T522] ? kmem_cache_alloc+0x106/0x210 [ 45.606106][ T522] ? f2fs_register_inmem_page+0x13f/0x4b0 [ 45.611741][ T522] f2fs_register_inmem_page+0x22c/0x4b0 [ 45.617265][ T522] f2fs_dirty_data_folio+0x31d/0x440 [ 45.622690][ T522] folio_mark_dirty+0xd3/0xf0 [ 45.627311][ T522] set_page_dirty+0x5c/0x70 [ 45.631646][ T522] unmap_page_range+0x12e4/0x1ed0 [ 45.636512][ T522] ? kasan_set_track+0x4b/0x70 [ 45.641105][ T522] ? kasan_set_free_info+0x23/0x40 [ 45.646056][ T522] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 45.652250][ T522] ? uprobe_munmap+0x18d/0x450 [ 45.656814][ T522] unmap_vmas+0x389/0x560 [ 45.661079][ T522] ? unmap_page_range+0x1ed0/0x1ed0 [ 45.666107][ T522] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 45.671591][ T522] exit_mmap+0x1cc/0x4c0 [ 45.675687][ T522] ? vm_brk+0x30/0x30 [ 45.679631][ T522] ? uprobe_clear_state+0x2cd/0x320 [ 45.684647][ T522] __mmput+0x95/0x300 [ 45.688620][ T522] mmput+0x59/0x70 [ 45.692260][ T522] do_exit+0xa5b/0x27d0 [ 45.696254][ T522] ? put_task_struct+0x80/0x80 [ 45.701028][ T522] ? __kasan_check_write+0x14/0x20 [ 45.705973][ T522] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 45.710923][ T522] do_group_exit+0x255/0x320 [ 45.715352][ T522] ? __kasan_check_write+0x14/0x20 [ 45.720303][ T522] get_signal+0x170e/0x1870 [ 45.724648][ T522] ? __kasan_check_read+0x11/0x20 [ 45.729497][ T522] ? ptrace_notify+0x350/0x350 [ 45.734096][ T522] arch_do_signal_or_restart+0xb0/0x12a0 [ 45.739562][ T522] ? __kasan_check_write+0x14/0x20 [ 45.744511][ T522] ? fput_many+0x160/0x1b0 [ 45.748771][ T522] ? do_futex+0x3b5/0x490 [ 45.752934][ T522] ? __ia32_sys_get_robust_list+0x90/0x90 [ 45.758579][ T522] ? get_sigframe_size+0x10/0x10 [ 45.763358][ T522] ? __se_sys_futex+0x35e/0x3c0 [ 45.768303][ T522] exit_to_user_mode_loop+0x6b/0xa0 [ 45.773429][ T522] exit_to_user_mode_prepare+0x5a/0xa0 [ 45.778744][ T522] syscall_exit_to_user_mode+0x26/0x130 [ 45.784093][ T522] do_syscall_64+0x49/0x80 [ 45.788553][ T522] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 45.794264][ T522] RIP: 0033:0x7f3baf28c0f9 [ 45.798785][ T522] Code: Unable to access opcode bytes at RIP 0x7f3baf28c0cf. [ 45.806067][ T522] RSP: 002b:00007f3baedff218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 45.814584][ T522] RAX: fffffffffffffe00 RBX: 00007f3baf3abf88 RCX: 00007f3baf28c0f9 [ 45.822403][ T522] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3baf3abf88 [ 45.830214][ T522] RBP: 00007f3baf3abf80 R08: 0000000000000000 R09: 0000000000000000 [ 45.838019][ T522] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3baf3abf8c [ 45.845828][ T522] R13: 00007fff441c742f R14: 00007f3baedff300 R15: 0000000000022000 [ 45.853892][ T522] [ 46.154099][ T530] loop0: detected capacity change from 0 to 63271 [ 46.161881][ T530] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 46.170198][ T530] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 46.179136][ T530] F2FS-fs (loop0): invalid crc value [ 46.185165][ T530] F2FS-fs (loop0): Found nat_bits in checkpoint [ 46.205700][ T530] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 46.212669][ T530] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 46.293270][ T535] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=1 [ 46.424498][ T530] BUG: scheduling while atomic: syz-executor.0/530/0x00000002 [ 46.431859][ T530] Modules linked in: [ 46.435541][ T530] Preemption disabled at: [ 46.435550][ T530] [] unmap_page_range+0xa82/0x1ed0 [ 46.446407][ T530] CPU: 1 PID: 530 Comm: syz-executor.0 Tainted: G W 5.18.0-rc4-syzkaller-00030-g6213f5d4d23c #0 [ 46.457949][ T530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 46.467987][ T530] Call Trace: [ 46.471106][ T530] [ 46.473879][ T530] dump_stack_lvl+0x151/0x1b7 [ 46.478739][ T530] ? unmap_page_range+0xa82/0x1ed0 [ 46.483874][ T530] ? unmap_page_range+0xa82/0x1ed0 [ 46.488841][ T530] ? bfq_pos_tree_add_move+0x43b/0x43b [ 46.494225][ T530] ? unmap_page_range+0xa82/0x1ed0 [ 46.499254][ T530] dump_stack+0x15/0x17 [ 46.503352][ T530] __schedule_bug+0x1a0/0x240 [ 46.507862][ T530] ? select_fallback_rq+0x220/0x220 [ 46.512894][ T530] ? __kernel_text_address+0xd/0x40 [ 46.517930][ T530] __schedule+0xd0a/0x1560 [ 46.522183][ T530] ? sysvec_apic_timer_interrupt+0x55/0xc0 [ 46.527827][ T530] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 46.533848][ T530] ? __sched_text_start+0x8/0x8 [ 46.538504][ T530] ? mutex_spin_on_owner+0x140/0x2b0 [ 46.543622][ T530] schedule+0xeb/0x1a0 [ 46.547525][ T530] schedule_preempt_disabled+0x13/0x20 [ 46.552820][ T530] __mutex_lock+0x4b1/0x1040 [ 46.557246][ T530] ? __kasan_slab_alloc+0xb1/0xe0 [ 46.562107][ T530] ? slab_post_alloc_hook+0x53/0x2c0 [ 46.567226][ T530] ? kmem_cache_alloc+0x106/0x210 [ 46.572272][ T530] ? folio_mark_dirty+0xd3/0xf0 [ 46.577077][ T530] ? unmap_vmas+0x389/0x560 [ 46.581460][ T530] ? exit_mmap+0x1cc/0x4c0 [ 46.585669][ T530] ? do_exit+0xa5b/0x27d0 [ 46.589844][ T530] ? do_group_exit+0x255/0x320 [ 46.594527][ T530] ? get_signal+0x170e/0x1870 [ 46.599029][ T530] ? arch_do_signal_or_restart+0xb0/0x12a0 [ 46.604678][ T530] ? __ww_mutex_lock_interruptible_slowpath+0x20/0x20 [ 46.611275][ T530] ? do_syscall_64+0x49/0x80 [ 46.615698][ T530] ? entry_SYSCALL_64_after_hwframe+0x44/0xae [ 46.621604][ T530] __mutex_lock_slowpath+0xe/0x10 [ 46.626484][ T530] mutex_lock+0xeb/0x120 [ 46.630536][ T530] ? slab_post_alloc_hook+0x72/0x2c0 [ 46.635656][ T530] ? bit_wait_io_timeout+0x120/0x120 [ 46.640778][ T530] ? kmem_cache_alloc+0x106/0x210 [ 46.645641][ T530] ? f2fs_register_inmem_page+0x13f/0x4b0 [ 46.651195][ T530] f2fs_register_inmem_page+0x22c/0x4b0 [ 46.656583][ T530] f2fs_dirty_data_folio+0x31d/0x440 [ 46.661804][ T530] folio_mark_dirty+0xd3/0xf0 [ 46.666546][ T530] set_page_dirty+0x5c/0x70 [ 46.670955][ T530] unmap_page_range+0x12e4/0x1ed0 [ 46.675857][ T530] ? kasan_set_track+0x4b/0x70 [ 46.680596][ T530] ? kasan_set_free_info+0x23/0x40 [ 46.685564][ T530] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 46.691705][ T530] ? uprobe_munmap+0x18d/0x450 [ 46.696393][ T530] unmap_vmas+0x389/0x560 [ 46.700557][ T530] ? unmap_page_range+0x1ed0/0x1ed0 [ 46.705587][ T530] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 46.710884][ T530] exit_mmap+0x1cc/0x4c0 [ 46.714968][ T530] ? vm_brk+0x30/0x30 [ 46.718786][ T530] ? uprobe_clear_state+0x2cd/0x320 [ 46.723819][ T530] __mmput+0x95/0x300 [ 46.727633][ T530] mmput+0x59/0x70 [ 46.731191][ T530] do_exit+0xa5b/0x27d0 [ 46.735190][ T530] ? put_task_struct+0x80/0x80 [ 46.739783][ T530] ? __kasan_check_write+0x14/0x20 [ 46.744741][ T530] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 46.749683][ T530] do_group_exit+0x255/0x320 [ 46.754388][ T530] ? __kasan_check_write+0x14/0x20 [ 46.759506][ T530] get_signal+0x170e/0x1870 [ 46.764090][ T530] ? __kasan_check_read+0x11/0x20 [ 46.769200][ T530] ? ptrace_notify+0x350/0x350 [ 46.773847][ T530] arch_do_signal_or_restart+0xb0/0x12a0 [ 46.779357][ T530] ? __kasan_check_write+0x14/0x20 [ 46.784307][ T530] ? fput_many+0x160/0x1b0 [ 46.788558][ T530] ? do_futex+0x3b5/0x490 [ 46.792927][ T530] ? __ia32_sys_get_robust_list+0x90/0x90 [ 46.798569][ T530] ? get_sigframe_size+0x10/0x10 [ 46.803343][ T530] ? __se_sys_futex+0x35e/0x3c0 [ 46.808121][ T530] exit_to_user_mode_loop+0x6b/0xa0 [ 46.813581][ T530] exit_to_user_mode_prepare+0x5a/0xa0 [ 46.818980][ T530] syscall_exit_to_user_mode+0x26/0x130 [ 46.824366][ T530] do_syscall_64+0x49/0x80 [ 46.828632][ T530] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 46.834508][ T530] RIP: 0033:0x7f3baf28c0f9 [ 46.838757][ T530] Code: Unable to access opcode bytes at RIP 0x7f3baf28c0cf. [ 46.845963][ T530] RSP: 002b:00007f3baedff218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 46.854294][ T530] RAX: fffffffffffffe00 RBX: 00007f3baf3abf88 RCX: 00007f3baf28c0f9 [ 46.862106][ T530] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3baf3abf88 [ 46.870380][ T530] RBP: 00007f3baf3abf80 R08: 0000000000000000 R09: 0000000000000000 [ 46.878267][ T530] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3baf3abf8c [ 46.886460][ T530] R13: 00007fff441c742f R14: 00007f3baedff300 R15: 0000000000022000 [ 46.894363][ T530] [ 46.897640][ T530] check_preemption_disabled: 7150 callbacks suppressed [ 46.897653][ T530] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-executor.0/530 [ 46.913544][ T530] caller is __this_cpu_preempt_check+0x13/0x20 [ 46.919631][ T530] CPU: 1 PID: 530 Comm: syz-executor.0 Tainted: G W 5.18.0-rc4-syzkaller-00030-g6213f5d4d23c #0 [ 46.931213][ T530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 46.941305][ T530] Call Trace: [ 46.944430][ T530] [ 46.947345][ T530] dump_stack_lvl+0x151/0x1b7 [ 46.951830][ T530] ? bfq_pos_tree_add_move+0x43b/0x43b [ 46.957183][ T530] ? mutex_unlock+0xa1/0x110 [ 46.961551][ T530] ? __mutex_lock_slowpath+0x10/0x10 [ 46.966670][ T530] dump_stack+0x15/0x17 [ 46.970663][ T530] check_preemption_disabled+0x109/0x110 [ 46.976134][ T530] __this_cpu_preempt_check+0x13/0x20 [ 46.981428][ T530] __mod_node_page_state+0x6d/0xf0 [ 46.986470][ T530] __mod_lruvec_page_state+0x154/0x200 [ 46.991755][ T530] ? page_remove_rmap+0x20f/0xa20 [ 46.996614][ T530] page_remove_rmap+0x73d/0xa20 [ 47.001300][ T530] ? mark_page_accessed+0x51/0x70 [ 47.006179][ T530] unmap_page_range+0x1039/0x1ed0 [ 47.011022][ T530] ? kasan_set_track+0x4b/0x70 [ 47.015727][ T530] ? kasan_set_free_info+0x23/0x40 [ 47.020681][ T530] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 47.026830][ T530] ? uprobe_munmap+0x18d/0x450 [ 47.031431][ T530] unmap_vmas+0x389/0x560 [ 47.035597][ T530] ? unmap_page_range+0x1ed0/0x1ed0 [ 47.040637][ T530] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 47.045924][ T530] exit_mmap+0x1cc/0x4c0 [ 47.050002][ T530] ? vm_brk+0x30/0x30 [ 47.053913][ T530] ? uprobe_clear_state+0x2cd/0x320 [ 47.058950][ T530] __mmput+0x95/0x300 [ 47.062775][ T530] mmput+0x59/0x70 [ 47.066324][ T530] do_exit+0xa5b/0x27d0 [ 47.070334][ T530] ? put_task_struct+0x80/0x80 [ 47.075000][ T530] ? __kasan_check_write+0x14/0x20 [ 47.079950][ T530] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 47.084893][ T530] do_group_exit+0x255/0x320 [ 47.089316][ T530] ? __kasan_check_write+0x14/0x20 [ 47.094263][ T530] get_signal+0x170e/0x1870 [ 47.099144][ T530] ? __kasan_check_read+0x11/0x20 [ 47.104203][ T530] ? ptrace_notify+0x350/0x350 [ 47.108803][ T530] arch_do_signal_or_restart+0xb0/0x12a0 [ 47.114461][ T530] ? __kasan_check_write+0x14/0x20 [ 47.119411][ T530] ? fput_many+0x160/0x1b0 [ 47.123818][ T530] ? do_futex+0x3b5/0x490 [ 47.128068][ T530] ? __ia32_sys_get_robust_list+0x90/0x90 [ 47.133625][ T530] ? get_sigframe_size+0x10/0x10 [ 47.138402][ T530] ? __se_sys_futex+0x35e/0x3c0 [ 47.143084][ T530] exit_to_user_mode_loop+0x6b/0xa0 [ 47.148116][ T530] exit_to_user_mode_prepare+0x5a/0xa0 [ 47.153776][ T530] syscall_exit_to_user_mode+0x26/0x130 [ 47.159261][ T530] do_syscall_64+0x49/0x80 [ 47.163588][ T530] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 47.169311][ T530] RIP: 0033:0x7f3baf28c0f9 [ 47.173567][ T530] Code: Unable to access opcode bytes at RIP 0x7f3baf28c0cf. [ 47.181245][ T530] RSP: 002b:00007f3baedff218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 47.189774][ T530] RAX: fffffffffffffe00 RBX: 00007f3baf3abf88 RCX: 00007f3baf28c0f9 [ 47.197582][ T530] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3baf3abf88 [ 47.205643][ T530] RBP: 00007f3baf3abf80 R08: 0000000000000000 R09: 0000000000000000 [ 47.213458][ T530] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3baf3abf8c [ 47.221436][ T530] R13: 00007fff441c742f R14: 00007f3baedff300 R15: 0000000000022000 [ 47.229166][ T530] [ 47.232118][ T530] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-executor.0/530 [ 47.241072][ T530] caller is __this_cpu_preempt_check+0x13/0x20 [ 47.247043][ T530] CPU: 1 PID: 530 Comm: syz-executor.0 Tainted: G W 5.18.0-rc4-syzkaller-00030-g6213f5d4d23c #0 [ 47.258714][ T530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 47.268657][ T530] Call Trace: [ 47.271776][ T530] [ 47.274562][ T530] dump_stack_lvl+0x151/0x1b7 [ 47.279072][ T530] ? bfq_pos_tree_add_move+0x43b/0x43b [ 47.284366][ T530] ? mutex_unlock+0xa1/0x110 [ 47.288789][ T530] ? __mutex_lock_slowpath+0x10/0x10 [ 47.293909][ T530] dump_stack+0x15/0x17 [ 47.297903][ T530] check_preemption_disabled+0x109/0x110 [ 47.303372][ T530] __this_cpu_preempt_check+0x13/0x20 [ 47.308577][ T530] __mod_node_page_state+0x89/0xf0 [ 47.313532][ T530] __mod_lruvec_page_state+0x154/0x200 [ 47.318816][ T530] ? page_remove_rmap+0x20f/0xa20 [ 47.323679][ T530] page_remove_rmap+0x73d/0xa20 [ 47.328366][ T530] ? mark_page_accessed+0x51/0x70 [ 47.333231][ T530] unmap_page_range+0x1039/0x1ed0 [ 47.338089][ T530] ? kasan_set_track+0x4b/0x70 [ 47.342686][ T530] ? kasan_set_free_info+0x23/0x40 [ 47.347638][ T530] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 47.353798][ T530] ? uprobe_munmap+0x18d/0x450 [ 47.358395][ T530] unmap_vmas+0x389/0x560 [ 47.362562][ T530] ? unmap_page_range+0x1ed0/0x1ed0 [ 47.367598][ T530] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 47.372888][ T530] exit_mmap+0x1cc/0x4c0 [ 47.376969][ T530] ? vm_brk+0x30/0x30 [ 47.380787][ T530] ? uprobe_clear_state+0x2cd/0x320 [ 47.385822][ T530] __mmput+0x95/0x300 [ 47.389639][ T530] mmput+0x59/0x70 [ 47.393375][ T530] do_exit+0xa5b/0x27d0 [ 47.397362][ T530] ? put_task_struct+0x80/0x80 [ 47.401993][ T530] ? __kasan_check_write+0x14/0x20 [ 47.406999][ T530] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 47.412140][ T530] do_group_exit+0x255/0x320 [ 47.416562][ T530] ? __kasan_check_write+0x14/0x20 [ 47.421507][ T530] get_signal+0x170e/0x1870 [ 47.425848][ T530] ? __kasan_check_read+0x11/0x20 [ 47.431001][ T530] ? ptrace_notify+0x350/0x350 [ 47.435572][ T530] arch_do_signal_or_restart+0xb0/0x12a0 [ 47.441036][ T530] ? __kasan_check_write+0x14/0x20 [ 47.446075][ T530] ? fput_many+0x160/0x1b0 [ 47.450321][ T530] ? do_futex+0x3b5/0x490 [ 47.454486][ T530] ? __ia32_sys_get_robust_list+0x90/0x90 [ 47.460051][ T530] ? get_sigframe_size+0x10/0x10 [ 47.464835][ T530] ? __se_sys_futex+0x35e/0x3c0 [ 47.469504][ T530] exit_to_user_mode_loop+0x6b/0xa0 [ 47.474537][ T530] exit_to_user_mode_prepare+0x5a/0xa0 [ 47.479835][ T530] syscall_exit_to_user_mode+0x26/0x130 [ 47.485215][ T530] do_syscall_64+0x49/0x80 [ 47.489462][ T530] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 47.495194][ T530] RIP: 0033:0x7f3baf28c0f9 [ 47.499544][ T530] Code: Unable to access opcode bytes at RIP 0x7f3baf28c0cf. [ 47.506837][ T530] RSP: 002b:00007f3baedff218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 47.515082][ T530] RAX: fffffffffffffe00 RBX: 00007f3baf3abf88 RCX: 00007f3baf28c0f9 [ 47.522903][ T530] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3baf3abf88 [ 47.530791][ T530] RBP: 00007f3baf3abf80 R08: 0000000000000000 R09: 0000000000000000 [ 47.538602][ T530] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3baf3abf8c [ 47.546499][ T530] R13: 00007fff441c742f R14: 00007f3baedff300 R15: 0000000000022000 [ 47.554404][ T530] [ 47.557423][ T530] BUG: using __this_cpu_write() in preemptible [00000000] code: syz-executor.0/530 [ 47.566592][ T530] caller is __this_cpu_preempt_check+0x13/0x20 [ 47.572656][ T530] CPU: 1 PID: 530 Comm: syz-executor.0 Tainted: G W 5.18.0-rc4-syzkaller-00030-g6213f5d4d23c #0 [ 47.584375][ T530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 47.594432][ T530] Call Trace: [ 47.597558][ T530] [ 47.600424][ T530] dump_stack_lvl+0x151/0x1b7 [ 47.604958][ T530] ? bfq_pos_tree_add_move+0x43b/0x43b [ 47.610314][ T530] ? mutex_unlock+0xa1/0x110 [ 47.615098][ T530] ? __mutex_lock_slowpath+0x10/0x10 [ 47.620179][ T530] dump_stack+0x15/0x17 [ 47.624274][ T530] check_preemption_disabled+0x109/0x110 [ 47.629901][ T530] __this_cpu_preempt_check+0x13/0x20 [ 47.635119][ T530] __mod_node_page_state+0xac/0xf0 [ 47.640072][ T530] __mod_lruvec_page_state+0x154/0x200 [ 47.645345][ T530] ? page_remove_rmap+0x20f/0xa20 [ 47.650316][ T530] page_remove_rmap+0x73d/0xa20 [ 47.655002][ T530] ? mark_page_accessed+0x51/0x70 [ 47.659950][ T530] unmap_page_range+0x1039/0x1ed0 [ 47.665010][ T530] ? kasan_set_track+0x4b/0x70 [ 47.669668][ T530] ? kasan_set_free_info+0x23/0x40 [ 47.674630][ T530] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 47.680782][ T530] ? uprobe_munmap+0x18d/0x450 [ 47.685397][ T530] unmap_vmas+0x389/0x560 [ 47.689548][ T530] ? unmap_page_range+0x1ed0/0x1ed0 [ 47.694580][ T530] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 47.699875][ T530] exit_mmap+0x1cc/0x4c0 [ 47.703955][ T530] ? vm_brk+0x30/0x30 [ 47.707774][ T530] ? uprobe_clear_state+0x2cd/0x320 [ 47.712824][ T530] __mmput+0x95/0x300 [ 47.716626][ T530] mmput+0x59/0x70 [ 47.720199][ T530] do_exit+0xa5b/0x27d0 [ 47.724177][ T530] ? put_task_struct+0x80/0x80 [ 47.728776][ T530] ? __kasan_check_write+0x14/0x20 [ 47.733725][ T530] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 47.738761][ T530] do_group_exit+0x255/0x320 [ 47.743181][ T530] ? __kasan_check_write+0x14/0x20 [ 47.748139][ T530] get_signal+0x170e/0x1870 [ 47.752572][ T530] ? __kasan_check_read+0x11/0x20 [ 47.757419][ T530] ? ptrace_notify+0x350/0x350 [ 47.762018][ T530] arch_do_signal_or_restart+0xb0/0x12a0 [ 47.767485][ T530] ? __kasan_check_write+0x14/0x20 [ 47.772433][ T530] ? fput_many+0x160/0x1b0 [ 47.776687][ T530] ? do_futex+0x3b5/0x490 [ 47.780853][ T530] ? __ia32_sys_get_robust_list+0x90/0x90 [ 47.786407][ T530] ? get_sigframe_size+0x10/0x10 [ 47.791181][ T530] ? __se_sys_futex+0x35e/0x3c0 [ 47.795869][ T530] exit_to_user_mode_loop+0x6b/0xa0 [ 47.800900][ T530] exit_to_user_mode_prepare+0x5a/0xa0 [ 47.806193][ T530] syscall_exit_to_user_mode+0x26/0x130 [ 47.811577][ T530] do_syscall_64+0x49/0x80 [ 47.815829][ T530] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 47.821557][ T530] RIP: 0033:0x7f3baf28c0f9 [ 47.825809][ T530] Code: Unable to access opcode bytes at RIP 0x7f3baf28c0cf. [ 47.833012][ T530] RSP: 002b:00007f3baedff218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 47.841257][ T530] RAX: fffffffffffffe00 RBX: 00007f3baf3abf88 RCX: 00007f3baf28c0f9 [ 47.849067][ T530] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3baf3abf88 [ 47.856882][ T530] RBP: 00007f3baf3abf80 R08: 0000000000000000 R09: 0000000000000000 [ 47.864695][ T530] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3baf3abf8c [ 47.872540][ T530] R13: 00007fff441c742f R14: 00007f3baedff300 R15: 0000000000022000 [ 47.880325][ T530] [ 47.883269][ T530] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor.0/530 [ 47.892450][ T530] caller is __this_cpu_preempt_check+0x13/0x20 [ 47.898549][ T530] CPU: 1 PID: 530 Comm: syz-executor.0 Tainted: G W 5.18.0-rc4-syzkaller-00030-g6213f5d4d23c #0 [ 47.910095][ T530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 47.920115][ T530] Call Trace: [ 47.923240][ T530] [ 47.926109][ T530] dump_stack_lvl+0x151/0x1b7 [ 47.930623][ T530] ? bfq_pos_tree_add_move+0x43b/0x43b [ 47.935915][ T530] ? mutex_unlock+0xa1/0x110 [ 47.940342][ T530] ? __mutex_lock_slowpath+0x10/0x10 [ 47.945461][ T530] dump_stack+0x15/0x17 [ 47.949543][ T530] check_preemption_disabled+0x109/0x110 [ 47.955011][ T530] __this_cpu_preempt_check+0x13/0x20 [ 47.960223][ T530] __mod_memcg_lruvec_state+0x4f/0x1b0 [ 47.965617][ T530] ? __mod_node_page_state+0xac/0xf0 [ 47.970739][ T530] __mod_lruvec_page_state+0x164/0x200 [ 47.976032][ T530] ? page_remove_rmap+0x20f/0xa20 [ 47.980892][ T530] page_remove_rmap+0x73d/0xa20 [ 47.985781][ T530] ? mark_page_accessed+0x51/0x70 [ 47.990646][ T530] unmap_page_range+0x1039/0x1ed0 [ 47.995499][ T530] ? kasan_set_track+0x4b/0x70 [ 48.000095][ T530] ? kasan_set_free_info+0x23/0x40 [ 48.005160][ T530] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 48.011315][ T530] ? uprobe_munmap+0x18d/0x450 [ 48.015917][ T530] unmap_vmas+0x389/0x560 [ 48.020083][ T530] ? unmap_page_range+0x1ed0/0x1ed0 [ 48.025116][ T530] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 48.030411][ T530] exit_mmap+0x1cc/0x4c0 [ 48.034494][ T530] ? vm_brk+0x30/0x30 [ 48.038313][ T530] ? uprobe_clear_state+0x2cd/0x320 [ 48.043343][ T530] __mmput+0x95/0x300 [ 48.047163][ T530] mmput+0x59/0x70 [ 48.050720][ T530] do_exit+0xa5b/0x27d0 [ 48.054725][ T530] ? put_task_struct+0x80/0x80 [ 48.059401][ T530] ? __kasan_check_write+0x14/0x20 [ 48.064369][ T530] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 48.069293][ T530] do_group_exit+0x255/0x320 [ 48.073722][ T530] ? __kasan_check_write+0x14/0x20 [ 48.079110][ T530] get_signal+0x170e/0x1870 [ 48.083516][ T530] ? __kasan_check_read+0x11/0x20 [ 48.088549][ T530] ? ptrace_notify+0x350/0x350 [ 48.093243][ T530] arch_do_signal_or_restart+0xb0/0x12a0 [ 48.098842][ T530] ? __kasan_check_write+0x14/0x20 [ 48.103845][ T530] ? fput_many+0x160/0x1b0 [ 48.108096][ T530] ? do_futex+0x3b5/0x490 [ 48.112360][ T530] ? __ia32_sys_get_robust_list+0x90/0x90 [ 48.117927][ T530] ? get_sigframe_size+0x10/0x10 [ 48.122855][ T530] ? __se_sys_futex+0x35e/0x3c0 [ 48.127631][ T530] exit_to_user_mode_loop+0x6b/0xa0 [ 48.133448][ T530] exit_to_user_mode_prepare+0x5a/0xa0 [ 48.138838][ T530] syscall_exit_to_user_mode+0x26/0x130 [ 48.144303][ T530] do_syscall_64+0x49/0x80 [ 48.148730][ T530] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 48.154549][ T530] RIP: 0033:0x7f3baf28c0f9 [ 48.159147][ T530] Code: Unable to access opcode bytes at RIP 0x7f3baf28c0cf. [ 48.166784][ T530] RSP: 002b:00007f3baedff218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 48.176083][ T530] RAX: fffffffffffffe00 RBX: 00007f3baf3abf88 RCX: 00007f3baf28c0f9 [ 48.184439][ T530] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3baf3abf88 [ 48.192408][ T530] RBP: 00007f3baf3abf80 R08: 0000000000000000 R09: 0000000000000000 [ 48.200476][ T530] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3baf3abf8c [ 48.208379][ T530] R13: 00007fff441c742f R14: 00007f3baedff300 R15: 0000000000022000 [ 48.216192][ T530] [ 48.219532][ T530] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor.0/530 [ 48.228637][ T530] caller is __this_cpu_preempt_check+0x13/0x20 [ 48.234855][ T530] CPU: 1 PID: 530 Comm: syz-executor.0 Tainted: G W 5.18.0-rc4-syzkaller-00030-g6213f5d4d23c #0 [ 48.247236][ T530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 48.257194][ T530] Call Trace: [ 48.260302][ T530] [ 48.263077][ T530] dump_stack_lvl+0x151/0x1b7 [ 48.267679][ T530] ? bfq_pos_tree_add_move+0x43b/0x43b [ 48.273181][ T530] ? mutex_unlock+0xa1/0x110 [ 48.277949][ T530] ? __mutex_lock_slowpath+0x10/0x10 [ 48.283200][ T530] dump_stack+0x15/0x17 [ 48.287353][ T530] check_preemption_disabled+0x109/0x110 [ 48.292820][ T530] __this_cpu_preempt_check+0x13/0x20 [ 48.298056][ T530] __mod_memcg_lruvec_state+0xa2/0x1b0 [ 48.303406][ T530] __mod_lruvec_page_state+0x164/0x200 [ 48.309142][ T530] ? page_remove_rmap+0x20f/0xa20 [ 48.314100][ T530] page_remove_rmap+0x73d/0xa20 [ 48.318781][ T530] ? mark_page_accessed+0x51/0x70 [ 48.323638][ T530] unmap_page_range+0x1039/0x1ed0 [ 48.328499][ T530] ? kasan_set_track+0x4b/0x70 [ 48.333097][ T530] ? kasan_set_free_info+0x23/0x40 [ 48.338044][ T530] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 48.344608][ T530] ? uprobe_munmap+0x18d/0x450 [ 48.349158][ T530] unmap_vmas+0x389/0x560 [ 48.356628][ T530] ? unmap_page_range+0x1ed0/0x1ed0 [ 48.361653][ T530] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 48.367161][ T530] exit_mmap+0x1cc/0x4c0 [ 48.371357][ T530] ? vm_brk+0x30/0x30 [ 48.375127][ T530] ? uprobe_clear_state+0x2cd/0x320 [ 48.380390][ T530] __mmput+0x95/0x300 [ 48.384151][ T530] mmput+0x59/0x70 [ 48.387713][ T530] do_exit+0xa5b/0x27d0 [ 48.391702][ T530] ? put_task_struct+0x80/0x80 [ 48.396307][ T530] ? __kasan_check_write+0x14/0x20 [ 48.401254][ T530] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 48.406281][ T530] do_group_exit+0x255/0x320 [ 48.410793][ T530] ? __kasan_check_write+0x14/0x20 [ 48.415740][ T530] get_signal+0x170e/0x1870 [ 48.420217][ T530] ? __kasan_check_read+0x11/0x20 [ 48.425034][ T530] ? ptrace_notify+0x350/0x350 [ 48.429628][ T530] arch_do_signal_or_restart+0xb0/0x12a0 [ 48.435121][ T530] ? __kasan_check_write+0x14/0x20 [ 48.440291][ T530] ? fput_many+0x160/0x1b0 [ 48.444503][ T530] ? do_futex+0x3b5/0x490 [ 48.448675][ T530] ? __ia32_sys_get_robust_list+0x90/0x90 [ 48.454315][ T530] ? get_sigframe_size+0x10/0x10 [ 48.459074][ T530] ? __se_sys_futex+0x35e/0x3c0 [ 48.464052][ T530] exit_to_user_mode_loop+0x6b/0xa0 [ 48.469274][ T530] exit_to_user_mode_prepare+0x5a/0xa0 [ 48.474586][ T530] syscall_exit_to_user_mode+0x26/0x130 [ 48.480033][ T530] do_syscall_64+0x49/0x80 [ 48.484567][ T530] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 48.491222][ T530] RIP: 0033:0x7f3baf28c0f9 [ 48.495474][ T530] Code: Unable to access opcode bytes at RIP 0x7f3baf28c0cf. [ 48.502939][ T530] RSP: 002b:00007f3baedff218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 48.511254][ T530] RAX: fffffffffffffe00 RBX: 00007f3baf3abf88 RCX: 00007f3baf28c0f9 [ 48.519602][ T530] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3baf3abf88 [ 48.527770][ T530] RBP: 00007f3baf3abf80 R08: 0000000000000000 R09: 0000000000000000 [ 48.535844][ T530] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3baf3abf8c [ 48.543654][ T530] R13: 00007fff441c742f R14: 00007f3baedff300 R15: 0000000000022000 [ 48.552804][ T530] [ 48.555756][ T530] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.0/530 [ 48.564891][ T530] caller is debug_smp_processor_id+0x17/0x20 [ 48.570991][ T530] CPU: 1 PID: 530 Comm: syz-executor.0 Tainted: G W 5.18.0-rc4-syzkaller-00030-g6213f5d4d23c #0 [ 48.583049][ T530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 48.593367][ T530] Call Trace: [ 48.596468][ T530] [ 48.599382][ T530] dump_stack_lvl+0x151/0x1b7 [ 48.603888][ T530] ? bfq_pos_tree_add_move+0x43b/0x43b [ 48.609841][ T530] ? mutex_unlock+0xa1/0x110 [ 48.614314][ T530] ? __mutex_lock_slowpath+0x10/0x10 [ 48.619386][ T530] dump_stack+0x15/0x17 [ 48.623395][ T530] check_preemption_disabled+0x109/0x110 [ 48.628848][ T530] debug_smp_processor_id+0x17/0x20 [ 48.633881][ T530] __mod_memcg_lruvec_state+0x106/0x1b0 [ 48.639351][ T530] __mod_lruvec_page_state+0x164/0x200 [ 48.644835][ T530] ? page_remove_rmap+0x20f/0xa20 [ 48.649692][ T530] page_remove_rmap+0x73d/0xa20 [ 48.654377][ T530] ? mark_page_accessed+0x51/0x70 [ 48.659241][ T530] unmap_page_range+0x1039/0x1ed0 [ 48.664100][ T530] ? kasan_set_track+0x4b/0x70 [ 48.668698][ T530] ? kasan_set_free_info+0x23/0x40 [ 48.673651][ T530] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 48.679810][ T530] ? uprobe_munmap+0x18d/0x450 [ 48.684437][ T530] unmap_vmas+0x389/0x560 [ 48.688574][ T530] ? unmap_page_range+0x1ed0/0x1ed0 [ 48.693610][ T530] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 48.698906][ T530] exit_mmap+0x1cc/0x4c0 [ 48.702995][ T530] ? vm_brk+0x30/0x30 [ 48.706800][ T530] ? uprobe_clear_state+0x2cd/0x320 [ 48.711837][ T530] __mmput+0x95/0x300 [ 48.715711][ T530] mmput+0x59/0x70 [ 48.719219][ T530] do_exit+0xa5b/0x27d0 [ 48.723201][ T530] ? put_task_struct+0x80/0x80 [ 48.727802][ T530] ? __kasan_check_write+0x14/0x20 [ 48.732755][ T530] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 48.737970][ T530] do_group_exit+0x255/0x320 [ 48.742471][ T530] ? __kasan_check_write+0x14/0x20 [ 48.747417][ T530] get_signal+0x170e/0x1870 [ 48.751758][ T530] ? __kasan_check_read+0x11/0x20 [ 48.757163][ T530] ? ptrace_notify+0x350/0x350 [ 48.761928][ T530] arch_do_signal_or_restart+0xb0/0x12a0 [ 48.767677][ T530] ? __kasan_check_write+0x14/0x20 [ 48.772626][ T530] ? fput_many+0x160/0x1b0 [ 48.777003][ T530] ? do_futex+0x3b5/0x490 [ 48.781286][ T530] ? __ia32_sys_get_robust_list+0x90/0x90 [ 48.786921][ T530] ? get_sigframe_size+0x10/0x10 [ 48.791841][ T530] ? __se_sys_futex+0x35e/0x3c0 [ 48.796526][ T530] exit_to_user_mode_loop+0x6b/0xa0 [ 48.802778][ T530] exit_to_user_mode_prepare+0x5a/0xa0 [ 48.808071][ T530] syscall_exit_to_user_mode+0x26/0x130 [ 48.813451][ T530] do_syscall_64+0x49/0x80 [ 48.817809][ T530] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 48.823604][ T530] RIP: 0033:0x7f3baf28c0f9 [ 48.827852][ T530] Code: Unable to access opcode bytes at RIP 0x7f3baf28c0cf. [ 48.835057][ T530] RSP: 002b:00007f3baedff218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 48.843308][ T530] RAX: fffffffffffffe00 RBX: 00007f3baf3abf88 RCX: 00007f3baf28c0f9 [ 48.851116][ T530] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3baf3abf88 [ 48.858926][ T530] RBP: 00007f3baf3abf80 R08: 0000000000000000 R09: 0000000000000000 [ 48.866824][ T530] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3baf3abf8c [ 48.874640][ T530] R13: 00007fff441c742f R14: 00007f3baedff300 R15: 0000000000022000 [ 48.882458][ T530] [ 48.885468][ T530] BUG: using __this_cpu_add_return() in preemptible [00000000] code: syz-executor.0/530 [ 48.895100][ T530] caller is __this_cpu_preempt_check+0x13/0x20 [ 48.901103][ T530] CPU: 1 PID: 530 Comm: syz-executor.0 Tainted: G W 5.18.0-rc4-syzkaller-00030-g6213f5d4d23c #0 [ 48.912611][ T530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 48.922505][ T530] Call Trace: [ 48.925622][ T530] [ 48.928410][ T530] dump_stack_lvl+0x151/0x1b7 [ 48.932916][ T530] ? bfq_pos_tree_add_move+0x43b/0x43b [ 48.938383][ T530] ? mutex_unlock+0xa1/0x110 [ 48.942992][ T530] ? __mutex_lock_slowpath+0x10/0x10 [ 48.948101][ T530] dump_stack+0x15/0x17 [ 48.952093][ T530] check_preemption_disabled+0x109/0x110 [ 48.957561][ T530] __this_cpu_preempt_check+0x13/0x20 [ 48.962773][ T530] __mod_memcg_lruvec_state+0x11c/0x1b0 [ 48.968411][ T530] __mod_lruvec_page_state+0x164/0x200 [ 48.973793][ T530] ? page_remove_rmap+0x20f/0xa20 [ 48.978753][ T530] page_remove_rmap+0x73d/0xa20 [ 48.983440][ T530] ? mark_page_accessed+0x51/0x70 [ 48.988301][ T530] unmap_page_range+0x1039/0x1ed0 [ 48.993319][ T530] ? kasan_set_track+0x4b/0x70 [ 48.997927][ T530] ? kasan_set_free_info+0x23/0x40 [ 49.003115][ T530] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 49.009286][ T530] ? uprobe_munmap+0x18d/0x450 [ 49.013845][ T530] unmap_vmas+0x389/0x560 [ 49.018010][ T530] ? unmap_page_range+0x1ed0/0x1ed0 [ 49.023148][ T530] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 49.028441][ T530] exit_mmap+0x1cc/0x4c0 [ 49.032560][ T530] ? vm_brk+0x30/0x30