[ 20.743142][ T409] device veth1_macvtap entered promiscuous mode [ 20.754494][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 20.762741][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 20.840822][ T409] syz-executor.0 (409) used greatest stack depth: 21088 bytes left [ 21.341258][ T199] device bridge_slave_1 left promiscuous mode [ 21.347232][ T199] bridge0: port 2(bridge_slave_1) entered disabled state [ 21.355085][ T199] device bridge_slave_0 left promiscuous mode [ 21.361483][ T199] bridge0: port 1(bridge_slave_0) entered disabled state [ 21.369492][ T199] device veth1_macvtap left promiscuous mode [ 21.375794][ T199] device veth0_vlan left promiscuous mode Warning: Permanently added '10.128.1.63' (ECDSA) to the list of known hosts. 2023/03/23 10:37:49 ignoring optional flag "sandboxArg"="0" 2023/03/23 10:37:50 parsed 1 programs 2023/03/23 10:37:50 executed programs: 0 [ 39.315011][ T28] kauditd_printk_skb: 64 callbacks suppressed [ 39.315025][ T28] audit: type=1400 audit(1679567870.100:136): avc: denied { mounton } for pid=452 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 39.346680][ T28] audit: type=1400 audit(1679567870.110:137): avc: denied { mount } for pid=452 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 39.388322][ T457] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.395407][ T457] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.402835][ T457] device bridge_slave_0 entered promiscuous mode [ 39.409415][ T457] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.416333][ T457] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.423674][ T457] device bridge_slave_1 entered promiscuous mode [ 39.458907][ T457] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.466257][ T457] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.473424][ T457] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.480367][ T457] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.498016][ T17] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.505618][ T17] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.513862][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 39.521650][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 39.530844][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 39.539103][ T37] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.546285][ T37] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.565205][ T457] device veth0_vlan entered promiscuous mode [ 39.571765][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 39.579893][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 39.587887][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 39.595898][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 39.603267][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 39.611534][ T17] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.618377][ T17] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.625942][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 39.633850][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 39.645682][ T457] device veth1_macvtap entered promiscuous mode [ 39.652480][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 39.665838][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 39.674502][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 39.685317][ T28] audit: type=1400 audit(1679567870.470:138): avc: denied { mount } for pid=457 comm="syz-executor.0" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 39.837869][ T463] loop0: detected capacity change from 0 to 63271 [ 39.845055][ T28] audit: type=1400 audit(1679567870.630:139): avc: denied { mounton } for pid=462 comm="syz-executor.0" path="/root/syzkaller-testdir2754822009/syzkaller.8Ypg5u/0/bus" dev="sda1" ino=1148 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 39.856747][ T463] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 39.880646][ T463] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 39.889515][ T463] F2FS-fs (loop0): invalid crc value [ 39.897032][ T463] F2FS-fs (loop0): Found nat_bits in checkpoint [ 39.917912][ T463] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 39.925023][ T463] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 39.933256][ T28] audit: type=1400 audit(1679567870.720:140): avc: denied { mount } for pid=462 comm="syz-executor.0" name="/" dev="loop0" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 39.956528][ T28] audit: type=1400 audit(1679567870.740:141): avc: denied { write } for pid=462 comm="syz-executor.0" name="/" dev="loop0" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 39.978846][ T28] audit: type=1400 audit(1679567870.740:142): avc: denied { add_name } for pid=462 comm="syz-executor.0" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 40.000015][ T28] audit: type=1400 audit(1679567870.740:143): avc: denied { create } for pid=462 comm="syz-executor.0" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 40.021869][ T28] audit: type=1400 audit(1679567870.740:144): avc: denied { read write open } for pid=462 comm="syz-executor.0" path="/root/syzkaller-testdir2754822009/syzkaller.8Ypg5u/0/bus/bus" dev="loop0" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 40.050752][ T28] audit: type=1400 audit(1679567870.810:145): avc: denied { map } for pid=462 comm="syz-executor.0" path="/root/syzkaller-testdir2754822009/syzkaller.8Ypg5u/0/bus/bus" dev="loop0" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 40.051640][ T463] syz-executor.0: attempt to access beyond end of device [ 40.051640][ T463] loop0: rw=2049, want=77952, limit=63271 [ 40.341529][ T472] loop0: detected capacity change from 0 to 63271 [ 40.351230][ T472] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 40.359839][ T472] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 40.369018][ T472] F2FS-fs (loop0): invalid crc value [ 40.375209][ T472] F2FS-fs (loop0): Found nat_bits in checkpoint [ 40.396081][ T472] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 40.403029][ T472] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 40.492381][ T477] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=17 [ 40.492674][ T472] syz-executor.0: attempt to access beyond end of device [ 40.492674][ T472] loop0: rw=2049, want=77952, limit=63271 [ 40.793699][ T479] loop0: detected capacity change from 0 to 63271 [ 40.801410][ T479] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 40.809792][ T479] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 40.818709][ T479] F2FS-fs (loop0): invalid crc value [ 40.825356][ T479] F2FS-fs (loop0): Found nat_bits in checkpoint [ 40.845625][ T479] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 40.852707][ T479] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 40.939853][ T484] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=1 [ 41.369496][ T487] loop0: detected capacity change from 0 to 63271 [ 41.376969][ T487] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 41.385780][ T487] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 41.394823][ T487] F2FS-fs (loop0): invalid crc value [ 41.401647][ T487] F2FS-fs (loop0): Found nat_bits in checkpoint [ 41.422245][ T487] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 41.429192][ T487] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 41.517080][ T492] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=1 [ 41.646007][ T487] BUG: scheduling while atomic: syz-executor.0/487/0x00000002 [ 41.653433][ T487] Modules linked in: [ 41.657118][ T487] Preemption disabled at: [ 41.657123][ T487] [] unmap_page_range+0xa37/0x1c00 [ 41.668178][ T487] CPU: 0 PID: 487 Comm: syz-executor.0 Not tainted 5.17.0-syzkaller #0 [ 41.676301][ T487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 41.686205][ T487] Call Trace: [ 41.689406][ T487] [ 41.692201][ T487] dump_stack_lvl+0x151/0x1b7 [ 41.696801][ T487] ? unmap_page_range+0xa37/0x1c00 [ 41.701903][ T487] ? unmap_page_range+0xa37/0x1c00 [ 41.706961][ T487] ? bfq_pos_tree_add_move+0x43b/0x43b [ 41.712624][ T487] ? is_bpf_text_address+0x172/0x190 [ 41.717727][ T487] ? stack_trace_save+0x1c0/0x1c0 [ 41.722687][ T487] ? unmap_page_range+0xa37/0x1c00 [ 41.727627][ T487] dump_stack+0x15/0x17 [ 41.731616][ T487] __schedule_bug+0x1a0/0x240 [ 41.736480][ T487] ? select_fallback_rq+0x220/0x220 [ 41.741713][ T487] __schedule+0xcef/0x1540 [ 41.745951][ T487] ? _raw_spin_lock+0x1b0/0x1b0 [ 41.750628][ T487] ? stack_trace_save+0x113/0x1c0 [ 41.755487][ T487] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 41.761565][ T487] ? release_firmware_map_entry+0x18f/0x18f [ 41.767430][ T487] ? _raw_spin_unlock_irqrestore+0x5c/0x80 [ 41.773033][ T487] ? __stack_depot_save+0x42a/0x490 [ 41.778069][ T487] schedule+0x12a/0x1f0 [ 41.782061][ T487] schedule_preempt_disabled+0x13/0x20 [ 41.787358][ T487] __mutex_lock+0x4b2/0x1040 [ 41.791800][ T487] ? kmem_cache_alloc+0xfd/0x200 [ 41.796567][ T487] ? f2fs_register_inmem_page+0x13f/0x4b0 [ 41.802114][ T487] ? f2fs_set_data_page_dirty+0x508/0x6a0 [ 41.807758][ T487] ? unmap_page_range+0x1030/0x1c00 [ 41.812796][ T487] ? exit_mmap+0x3fb/0x6f0 [ 41.817255][ T487] ? __mmput+0x95/0x300 [ 41.821489][ T487] ? mmput+0x59/0x70 [ 41.825317][ T487] ? get_signal+0x83c/0x17b0 [ 41.829736][ T487] ? arch_do_signal_or_restart+0xbd/0x16a0 [ 41.835375][ T487] ? exit_to_user_mode_loop+0xa0/0xe0 [ 41.840581][ T487] ? exit_to_user_mode_prepare+0x5a/0xa0 [ 41.846080][ T487] ? __ww_mutex_lock_interruptible_slowpath+0x20/0x20 [ 41.852736][ T487] __mutex_lock_slowpath+0xe/0x10 [ 41.857615][ T487] mutex_lock+0xeb/0x120 [ 41.861716][ T487] ? f2fs_register_inmem_page+0x13f/0x4b0 [ 41.867317][ T487] ? wait_for_completion_killable_timeout+0x10/0x10 [ 41.873854][ T487] ? f2fs_register_inmem_page+0x13f/0x4b0 [ 41.879405][ T487] f2fs_register_inmem_page+0x22c/0x4b0 [ 41.884780][ T487] f2fs_set_data_page_dirty+0x508/0x6a0 [ 41.890148][ T487] folio_mark_dirty+0xd0/0x150 [ 41.894746][ T487] set_page_dirty+0x5c/0x70 [ 41.899272][ T487] unmap_page_range+0x1030/0x1c00 [ 41.904359][ T487] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 41.910869][ T487] ? __munlock_isolated_page+0x210/0x210 [ 41.916347][ T487] ? uprobe_munmap+0x18d/0x450 [ 41.921107][ T487] unmap_vmas+0x389/0x560 [ 41.925272][ T487] ? unmap_page_range+0x1c00/0x1c00 [ 41.930328][ T487] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 41.935597][ T487] exit_mmap+0x3fb/0x6f0 [ 41.939772][ T487] ? vm_brk+0x30/0x30 [ 41.943587][ T487] ? uprobe_clear_state+0x2cd/0x320 [ 41.948729][ T487] __mmput+0x95/0x300 [ 41.952811][ T487] mmput+0x59/0x70 [ 41.956386][ T487] do_exit+0xab3/0x2850 [ 41.960362][ T487] ? put_task_struct+0x80/0x80 [ 41.965047][ T487] ? plist_check_list+0x254/0x270 [ 41.970076][ T487] ? __kasan_check_write+0x14/0x20 [ 41.975390][ T487] ? __kasan_check_write+0x14/0x20 [ 41.980509][ T487] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 41.985715][ T487] do_group_exit+0x255/0x320 [ 41.990139][ T487] ? __kasan_check_write+0x14/0x20 [ 41.995101][ T487] get_signal+0x83c/0x17b0 [ 41.999345][ T487] ? __kasan_check_read+0x11/0x20 [ 42.004292][ T487] ? ptrace_notify+0x350/0x350 [ 42.008892][ T487] arch_do_signal_or_restart+0xbd/0x16a0 [ 42.014359][ T487] ? __kasan_check_write+0x14/0x20 [ 42.019345][ T487] ? fput_many+0x160/0x1b0 [ 42.023557][ T487] ? do_futex+0x3b5/0x490 [ 42.027731][ T487] ? __ia32_sys_get_robust_list+0x90/0x90 [ 42.033453][ T487] ? get_sigframe_size+0x10/0x10 [ 42.038229][ T487] ? __x64_sys_futex+0x100/0x100 [ 42.043002][ T487] exit_to_user_mode_loop+0xa0/0xe0 [ 42.048046][ T487] exit_to_user_mode_prepare+0x5a/0xa0 [ 42.053341][ T487] syscall_exit_to_user_mode+0x26/0x160 [ 42.058711][ T487] do_syscall_64+0x50/0xd0 [ 42.063144][ T487] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 42.068963][ T487] RIP: 0033:0x7f2028ced0f9 [ 42.073205][ T487] Code: Unable to access opcode bytes at RIP 0x7f2028ced0cf. [ 42.080422][ T487] RSP: 002b:00007f2028860218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 42.088824][ T487] RAX: fffffffffffffe00 RBX: 00007f2028e0cf88 RCX: 00007f2028ced0f9 [ 42.096636][ T487] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2028e0cf88 [ 42.104536][ T487] RBP: 00007f2028e0cf80 R08: 0000000000000000 R09: 0000000000000000 [ 42.112347][ T487] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2028e0cf8c [ 42.120156][ T487] R13: 00007fff30a07c8f R14: 00007f2028860300 R15: 0000000000022000 [ 42.127998][ T487] [ 42.132471][ T487] ------------[ cut here ]------------ [ 42.138066][ T487] DEBUG_LOCKS_WARN_ON(val > preempt_count()) [ 42.138128][ T487] WARNING: CPU: 0 PID: 487 at kernel/sched/core.c:5483 preempt_count_sub+0xa8/0x160 [ 42.153384][ T487] Modules linked in: [ 42.157093][ T487] CPU: 0 PID: 487 Comm: syz-executor.0 Tainted: G W 5.17.0-syzkaller #0 [ 42.166878][ T487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 42.176737][ T487] RIP: 0010:preempt_count_sub+0xa8/0x160 [ 42.182304][ T487] Code: 03 42 0f b6 04 30 84 c0 0f 85 86 00 00 00 83 3d 85 b5 35 05 00 75 d1 48 c7 c7 00 ee 08 85 48 c7 c6 a0 ee 08 85 e8 78 9d f5 ff <0f> 0b eb ba e8 8f f6 06 01 85 c0 74 b1 48 c7 c0 88 1b 83 86 48 c1 [ 42.202000][ T487] RSP: 0018:ffffc90000d47448 EFLAGS: 00010246 [ 42.207936][ T487] RAX: 6bfdf75a132db000 RBX: 0000000000000001 RCX: ffff88810b373240 [ 42.215956][ T487] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 42.223774][ T487] RBP: ffffc90000d47458 R08: ffffffff81569348 R09: fffff520001a8da9 [ 42.231887][ T487] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 42.239683][ T487] R13: 0400000000000080 R14: dffffc0000000000 R15: 000000002007d000 [ 42.247611][ T487] FS: 0000000000000000(0000) GS:ffff8881f7200000(0000) knlGS:0000000000000000 [ 42.256974][ T487] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 42.263524][ T487] CR2: 00007f2022324718 CR3: 0000000123491000 CR4: 00000000003506b0 [ 42.271503][ T487] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 42.279367][ T487] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 42.287224][ T487] Call Trace: [ 42.290303][ T487] [ 42.294707][ T487] _raw_spin_unlock+0x4d/0x70 [ 42.299189][ T487] unmap_page_range+0x19cf/0x1c00 [ 42.304075][ T487] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 42.310216][ T487] ? __munlock_isolated_page+0x210/0x210 [ 42.315712][ T487] ? uprobe_munmap+0x18d/0x450 [ 42.320470][ T487] unmap_vmas+0x389/0x560 [ 42.324618][ T487] ? unmap_page_range+0x1c00/0x1c00 [ 42.330081][ T487] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 42.335721][ T487] exit_mmap+0x3fb/0x6f0 [ 42.339870][ T487] ? vm_brk+0x30/0x30 [ 42.343751][ T487] ? uprobe_clear_state+0x2cd/0x320 [ 42.348722][ T487] __mmput+0x95/0x300 [ 42.352586][ T487] mmput+0x59/0x70 [ 42.356189][ T487] do_exit+0xab3/0x2850 [ 42.360264][ T487] ? put_task_struct+0x80/0x80 [ 42.365032][ T487] ? plist_check_list+0x254/0x270 [ 42.369810][ T487] ? __kasan_check_write+0x14/0x20 [ 42.375012][ T487] ? __kasan_check_write+0x14/0x20 [ 42.379888][ T487] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 42.384976][ T487] do_group_exit+0x255/0x320 [ 42.389356][ T487] ? __kasan_check_write+0x14/0x20 [ 42.394329][ T487] get_signal+0x83c/0x17b0 [ 42.398556][ T487] ? __kasan_check_read+0x11/0x20 [ 42.403459][ T487] ? ptrace_notify+0x350/0x350 [ 42.408132][ T487] arch_do_signal_or_restart+0xbd/0x16a0 [ 42.413771][ T487] ? __kasan_check_write+0x14/0x20 [ 42.418705][ T487] ? fput_many+0x160/0x1b0 [ 42.423019][ T487] ? do_futex+0x3b5/0x490 [ 42.427129][ T487] ? __ia32_sys_get_robust_list+0x90/0x90 [ 42.432797][ T487] ? get_sigframe_size+0x10/0x10 [ 42.437544][ T487] ? __x64_sys_futex+0x100/0x100 [ 42.442518][ T487] exit_to_user_mode_loop+0xa0/0xe0 [ 42.447875][ T487] exit_to_user_mode_prepare+0x5a/0xa0 [ 42.453237][ T487] syscall_exit_to_user_mode+0x26/0x160 [ 42.458841][ T487] do_syscall_64+0x50/0xd0 [ 42.463201][ T487] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 42.468878][ T487] RIP: 0033:0x7f2028ced0f9 [ 42.473153][ T487] Code: Unable to access opcode bytes at RIP 0x7f2028ced0cf. [ 42.480463][ T487] RSP: 002b:00007f2028860218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 42.488846][ T487] RAX: fffffffffffffe00 RBX: 00007f2028e0cf88 RCX: 00007f2028ced0f9 [ 42.497471][ T487] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2028e0cf88 [ 42.505397][ T487] RBP: 00007f2028e0cf80 R08: 0000000000000000 R09: 0000000000000000 [ 42.513402][ T487] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2028e0cf8c [ 42.521317][ T487] R13: 00007fff30a07c8f R14: 00007f2028860300 R15: 0000000000022000 [ 42.529202][ T487] [ 42.532221][ T487] ---[ end trace 0000000000000000 ]--- [ 42.819300][ T495] loop0: detected capacity change from 0 to 63271 [ 42.826510][ T495] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 42.835191][ T495] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 42.843946][ T495] F2FS-fs (loop0): invalid crc value [ 42.850146][ T495] F2FS-fs (loop0): Found nat_bits in checkpoint [ 42.870216][ T495] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 42.877104][ T495] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 42.965329][ T500] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=17 [ 42.965566][ T495] syz-executor.0: attempt to access beyond end of device [ 42.965566][ T495] loop0: rw=2049, want=77952, limit=63271 [ 43.259780][ T503] loop0: detected capacity change from 0 to 63271 [ 43.267798][ T503] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 43.276113][ T503] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 43.285139][ T503] F2FS-fs (loop0): invalid crc value [ 43.291723][ T503] F2FS-fs (loop0): Found nat_bits in checkpoint [ 43.312090][ T503] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 43.319087][ T503] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 43.404071][ T508] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=1 [ 43.819977][ T510] loop0: detected capacity change from 0 to 63271 [ 43.827588][ T510] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 43.836217][ T510] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 43.845149][ T510] F2FS-fs (loop0): invalid crc value [ 43.851792][ T510] F2FS-fs (loop0): Found nat_bits in checkpoint [ 43.872351][ T510] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 43.879265][ T510] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 43.962911][ T515] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=9 [ 44.393018][ T518] loop0: detected capacity change from 0 to 63271 [ 44.400827][ T518] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 44.409488][ T518] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 44.418677][ T518] F2FS-fs (loop0): invalid crc value [ 44.425066][ T518] F2FS-fs (loop0): Found nat_bits in checkpoint [ 44.445133][ T518] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 44.452053][ T518] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b 2023/03/23 10:37:55 executed programs: 8 [ 44.539654][ T523] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=17 [ 44.539889][ T518] syz-executor.0: attempt to access beyond end of device [ 44.539889][ T518] loop0: rw=2049, want=77952, limit=63271 [ 44.843785][ T525] loop0: detected capacity change from 0 to 63271 [ 44.856765][ T525] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 44.865365][ T525] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 44.876758][ T525] F2FS-fs (loop0): invalid crc value [ 44.883061][ T525] F2FS-fs (loop0): Found nat_bits in checkpoint [ 44.904117][ T525] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 44.911167][ T525] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 44.998512][ T525] syz-executor.0: attempt to access beyond end of device [ 44.998512][ T525] loop0: rw=2049, want=77952, limit=63271 [ 45.000502][ T530] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=1 [ 45.322850][ T533] loop0: detected capacity change from 0 to 63271 [ 45.330907][ T533] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 45.339353][ T533] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 45.348069][ T533] F2FS-fs (loop0): invalid crc value [ 45.354542][ T533] F2FS-fs (loop0): Found nat_bits in checkpoint [ 45.374994][ T533] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 45.382039][ T533] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 45.479190][ T538] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=1 [ 45.912776][ T540] loop0: detected capacity change from 0 to 63271 [ 45.919955][ T540] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 45.928552][ T540] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 45.937390][ T540] F2FS-fs (loop0): invalid crc value [ 45.943699][ T540] F2FS-fs (loop0): Found nat_bits in checkpoint [ 45.964093][ T540] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 45.971010][ T540] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 46.050581][ T545] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=17 [ 46.050835][ T540] syz-executor.0: attempt to access beyond end of device [ 46.050835][ T540] loop0: rw=2049, want=77952, limit=63271 [ 46.319423][ T548] loop0: detected capacity change from 0 to 63271 [ 46.327585][ T548] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 46.336008][ T548] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 46.345077][ T548] F2FS-fs (loop0): invalid crc value [ 46.351666][ T548] F2FS-fs (loop0): Found nat_bits in checkpoint [ 46.372046][ T548] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 46.378890][ T548] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 46.467588][ T553] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=1 [ 46.900162][ T555] loop0: detected capacity change from 0 to 63271 [ 46.907914][ T555] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 46.916200][ T555] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 46.925008][ T555] F2FS-fs (loop0): invalid crc value [ 46.931539][ T555] F2FS-fs (loop0): Found nat_bits in checkpoint [ 46.952153][ T555] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 46.959010][ T555] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 47.046170][ T560] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=6 [ 47.482933][ T563] loop0: detected capacity change from 0 to 63271 [ 47.491179][ T563] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 47.499465][ T563] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 47.508397][ T563] F2FS-fs (loop0): invalid crc value [ 47.514866][ T563] F2FS-fs (loop0): Found nat_bits in checkpoint [ 47.535961][ T563] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 47.542891][ T563] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 47.627895][ T568] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=1 [ 47.754994][ T563] BUG: scheduling while atomic: syz-executor.0/563/0x00000002 [ 47.762331][ T563] Modules linked in: [ 47.766074][ T563] Preemption disabled at: [ 47.766080][ T563] [] unmap_page_range+0xa37/0x1c00 [ 47.776837][ T563] CPU: 1 PID: 563 Comm: syz-executor.0 Tainted: G W 5.17.0-syzkaller #0 [ 47.786240][ T563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 47.796175][ T563] Call Trace: [ 47.799257][ T563] [ 47.802037][ T563] dump_stack_lvl+0x151/0x1b7 [ 47.806553][ T563] ? unmap_page_range+0xa37/0x1c00 [ 47.811496][ T563] ? unmap_page_range+0xa37/0x1c00 [ 47.816447][ T563] ? bfq_pos_tree_add_move+0x43b/0x43b [ 47.821742][ T563] ? is_bpf_text_address+0x172/0x190 [ 47.826871][ T563] ? stack_trace_save+0x1c0/0x1c0 [ 47.831777][ T563] ? unmap_page_range+0xa37/0x1c00 [ 47.836810][ T563] dump_stack+0x15/0x17 [ 47.840760][ T563] __schedule_bug+0x1a0/0x240 [ 47.845404][ T563] ? select_fallback_rq+0x220/0x220 [ 47.850676][ T563] __schedule+0xcef/0x1540 [ 47.855009][ T563] ? release_firmware_map_entry+0x18f/0x18f [ 47.860737][ T563] ? mutex_spin_on_owner+0x141/0x2b0 [ 47.866107][ T563] schedule+0x12a/0x1f0 [ 47.870380][ T563] schedule_preempt_disabled+0x13/0x20 [ 47.875673][ T563] __mutex_lock+0x4b2/0x1040 [ 47.880082][ T563] ? kmem_cache_alloc+0xfd/0x200 [ 47.884858][ T563] ? f2fs_register_inmem_page+0x13f/0x4b0 [ 47.890525][ T563] ? f2fs_set_data_page_dirty+0x508/0x6a0 [ 47.896180][ T563] ? unmap_page_range+0x1030/0x1c00 [ 47.901375][ T563] ? __mmput+0x95/0x300 [ 47.905372][ T563] ? mmput+0x59/0x70 [ 47.909224][ T563] ? get_signal+0x83c/0x17b0 [ 47.913736][ T563] ? arch_do_signal_or_restart+0xbd/0x16a0 [ 47.919561][ T563] ? exit_to_user_mode_loop+0xa0/0xe0 [ 47.925045][ T563] ? exit_to_user_mode_prepare+0x5a/0xa0 [ 47.930676][ T563] ? __ww_mutex_lock_interruptible_slowpath+0x20/0x20 [ 47.937793][ T563] __mutex_lock_slowpath+0xe/0x10 [ 47.942654][ T563] mutex_lock+0xeb/0x120 [ 47.946727][ T563] ? f2fs_register_inmem_page+0x13f/0x4b0 [ 47.952390][ T563] ? wait_for_completion_killable_timeout+0x10/0x10 [ 47.958905][ T563] ? f2fs_register_inmem_page+0x13f/0x4b0 [ 47.964517][ T563] f2fs_register_inmem_page+0x22c/0x4b0 [ 47.969874][ T563] f2fs_set_data_page_dirty+0x508/0x6a0 [ 47.975672][ T563] folio_mark_dirty+0xd0/0x150 [ 47.980357][ T563] set_page_dirty+0x5c/0x70 [ 47.984892][ T563] unmap_page_range+0x1030/0x1c00 [ 47.989739][ T563] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 47.995986][ T563] ? __munlock_isolated_page+0x210/0x210 [ 48.001442][ T563] ? uprobe_munmap+0x18d/0x450 [ 48.006066][ T563] unmap_vmas+0x389/0x560 [ 48.010208][ T563] ? unmap_page_range+0x1c00/0x1c00 [ 48.015242][ T563] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 48.020721][ T563] exit_mmap+0x3fb/0x6f0 [ 48.024878][ T563] ? vm_brk+0x30/0x30 [ 48.028702][ T563] ? uprobe_clear_state+0x2cd/0x320 [ 48.033731][ T563] __mmput+0x95/0x300 [ 48.037599][ T563] mmput+0x59/0x70 [ 48.041194][ T563] do_exit+0xab3/0x2850 [ 48.045563][ T563] ? put_task_struct+0x80/0x80 [ 48.050210][ T563] ? plist_check_list+0x254/0x270 [ 48.055146][ T563] ? __kasan_check_write+0x14/0x20 [ 48.060164][ T563] ? __kasan_check_write+0x14/0x20 [ 48.065486][ T563] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 48.070455][ T563] do_group_exit+0x255/0x320 [ 48.074902][ T563] ? __kasan_check_write+0x14/0x20 [ 48.080206][ T563] get_signal+0x83c/0x17b0 [ 48.084460][ T563] ? __kasan_check_read+0x11/0x20 [ 48.089392][ T563] ? ptrace_notify+0x350/0x350 [ 48.093993][ T563] arch_do_signal_or_restart+0xbd/0x16a0 [ 48.099843][ T563] ? __kasan_check_write+0x14/0x20 [ 48.106452][ T563] ? fput_many+0x160/0x1b0 [ 48.112410][ T563] ? do_futex+0x3b5/0x490 [ 48.116569][ T563] ? __ia32_sys_get_robust_list+0x90/0x90 [ 48.122131][ T563] ? get_sigframe_size+0x10/0x10 [ 48.126996][ T563] ? __x64_sys_futex+0x100/0x100 [ 48.131843][ T563] exit_to_user_mode_loop+0xa0/0xe0 [ 48.136884][ T563] exit_to_user_mode_prepare+0x5a/0xa0 [ 48.142524][ T563] syscall_exit_to_user_mode+0x26/0x160 [ 48.147988][ T563] do_syscall_64+0x50/0xd0 [ 48.152246][ T563] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 48.157984][ T563] RIP: 0033:0x7f2028ced0f9 [ 48.162219][ T563] Code: Unable to access opcode bytes at RIP 0x7f2028ced0cf. [ 48.169717][ T563] RSP: 002b:00007f2028860218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 48.178235][ T563] RAX: fffffffffffffe00 RBX: 00007f2028e0cf88 RCX: 00007f2028ced0f9 [ 48.186206][ T563] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2028e0cf88 [ 48.194131][ T563] RBP: 00007f2028e0cf80 R08: 0000000000000000 R09: 0000000000000000 [ 48.202214][ T563] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2028e0cf8c [ 48.210200][ T563] R13: 00007fff30a07c8f R14: 00007f2028860300 R15: 0000000000022000 [ 48.218014][ T563] [ 48.221191][ T563] check_preemption_disabled: 861 callbacks suppressed [ 48.221204][ T563] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-executor.0/563 [ 48.237691][ T563] caller is __this_cpu_preempt_check+0x13/0x20 [ 48.244140][ T563] CPU: 1 PID: 563 Comm: syz-executor.0 Tainted: G W 5.17.0-syzkaller #0 [ 48.253995][ T563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 48.263914][ T563] Call Trace: [ 48.267018][ T563] [ 48.269899][ T563] dump_stack_lvl+0x151/0x1b7 [ 48.274432][ T563] ? bfq_pos_tree_add_move+0x43b/0x43b [ 48.279705][ T563] ? mutex_unlock+0xa1/0x110 [ 48.284302][ T563] ? __mutex_lock_slowpath+0x10/0x10 [ 48.289624][ T563] dump_stack+0x15/0x17 [ 48.293861][ T563] check_preemption_disabled+0x109/0x110 [ 48.299607][ T563] __this_cpu_preempt_check+0x13/0x20 [ 48.304894][ T563] __mod_node_page_state+0x6d/0xf0 [ 48.309925][ T563] __mod_lruvec_page_state+0x154/0x200 [ 48.315298][ T563] ? page_remove_rmap+0x2ee/0x910 [ 48.320252][ T563] page_remove_rmap+0x5f2/0x910 [ 48.325018][ T563] unmap_page_range+0x1207/0x1c00 [ 48.329882][ T563] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 48.336160][ T563] ? __munlock_isolated_page+0x210/0x210 [ 48.341792][ T563] ? uprobe_munmap+0x18d/0x450 [ 48.346470][ T563] unmap_vmas+0x389/0x560 [ 48.350664][ T563] ? unmap_page_range+0x1c00/0x1c00 [ 48.356033][ T563] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 48.361324][ T563] exit_mmap+0x3fb/0x6f0 [ 48.365490][ T563] ? vm_brk+0x30/0x30 [ 48.369504][ T563] ? uprobe_clear_state+0x2cd/0x320 [ 48.374536][ T563] __mmput+0x95/0x300 [ 48.378597][ T563] mmput+0x59/0x70 [ 48.382257][ T563] do_exit+0xab3/0x2850 [ 48.387560][ T563] ? put_task_struct+0x80/0x80 [ 48.392156][ T563] ? plist_check_list+0x254/0x270 [ 48.397123][ T563] ? __kasan_check_write+0x14/0x20 [ 48.402063][ T563] ? __kasan_check_write+0x14/0x20 [ 48.407013][ T563] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 48.411980][ T563] do_group_exit+0x255/0x320 [ 48.416464][ T563] ? __kasan_check_write+0x14/0x20 [ 48.421609][ T563] get_signal+0x83c/0x17b0 [ 48.425922][ T563] ? __kasan_check_read+0x11/0x20 [ 48.430866][ T563] ? ptrace_notify+0x350/0x350 [ 48.435477][ T563] arch_do_signal_or_restart+0xbd/0x16a0 [ 48.441024][ T563] ? __kasan_check_write+0x14/0x20 [ 48.445974][ T563] ? fput_many+0x160/0x1b0 [ 48.450399][ T563] ? do_futex+0x3b5/0x490 [ 48.454561][ T563] ? __ia32_sys_get_robust_list+0x90/0x90 [ 48.460340][ T563] ? get_sigframe_size+0x10/0x10 [ 48.465247][ T563] ? __x64_sys_futex+0x100/0x100 [ 48.469969][ T563] exit_to_user_mode_loop+0xa0/0xe0 [ 48.475200][ T563] exit_to_user_mode_prepare+0x5a/0xa0 [ 48.480481][ T563] syscall_exit_to_user_mode+0x26/0x160 [ 48.485865][ T563] do_syscall_64+0x50/0xd0 [ 48.490203][ T563] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 48.495931][ T563] RIP: 0033:0x7f2028ced0f9 [ 48.500185][ T563] Code: Unable to access opcode bytes at RIP 0x7f2028ced0cf. [ 48.507392][ T563] RSP: 002b:00007f2028860218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 48.515645][ T563] RAX: fffffffffffffe00 RBX: 00007f2028e0cf88 RCX: 00007f2028ced0f9 [ 48.523444][ T563] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2028e0cf88 [ 48.531343][ T563] RBP: 00007f2028e0cf80 R08: 0000000000000000 R09: 0000000000000000 [ 48.539349][ T563] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2028e0cf8c [ 48.547231][ T563] R13: 00007fff30a07c8f R14: 00007f2028860300 R15: 0000000000022000 [ 48.555042][ T563] [ 48.558028][ T563] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-executor.0/563 [ 48.567223][ T563] caller is __this_cpu_preempt_check+0x13/0x20 [ 48.573694][ T563] CPU: 1 PID: 563 Comm: syz-executor.0 Tainted: G W 5.17.0-syzkaller #0 [ 48.583471][ T563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 48.593368][ T563] Call Trace: [ 48.596652][ T563] [ 48.599428][ T563] dump_stack_lvl+0x151/0x1b7 [ 48.603945][ T563] ? bfq_pos_tree_add_move+0x43b/0x43b [ 48.609240][ T563] ? mutex_unlock+0xa1/0x110 [ 48.613775][ T563] ? __mutex_lock_slowpath+0x10/0x10 [ 48.618883][ T563] dump_stack+0x15/0x17 [ 48.622904][ T563] check_preemption_disabled+0x109/0x110 [ 48.628435][ T563] __this_cpu_preempt_check+0x13/0x20 [ 48.633756][ T563] __mod_node_page_state+0x89/0xf0 [ 48.638790][ T563] __mod_lruvec_page_state+0x154/0x200 [ 48.644089][ T563] ? page_remove_rmap+0x2ee/0x910 [ 48.648948][ T563] page_remove_rmap+0x5f2/0x910 [ 48.653634][ T563] unmap_page_range+0x1207/0x1c00 [ 48.658495][ T563] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 48.664668][ T563] ? __munlock_isolated_page+0x210/0x210 [ 48.670233][ T563] ? uprobe_munmap+0x18d/0x450 [ 48.674814][ T563] unmap_vmas+0x389/0x560 [ 48.679163][ T563] ? unmap_page_range+0x1c00/0x1c00 [ 48.684202][ T563] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 48.689682][ T563] exit_mmap+0x3fb/0x6f0 [ 48.693829][ T563] ? vm_brk+0x30/0x30 [ 48.697649][ T563] ? uprobe_clear_state+0x2cd/0x320 [ 48.702773][ T563] __mmput+0x95/0x300 [ 48.706585][ T563] mmput+0x59/0x70 [ 48.710180][ T563] do_exit+0xab3/0x2850 [ 48.714139][ T563] ? put_task_struct+0x80/0x80 [ 48.718737][ T563] ? plist_check_list+0x254/0x270 [ 48.723596][ T563] ? __kasan_check_write+0x14/0x20 [ 48.728631][ T563] ? __kasan_check_write+0x14/0x20 [ 48.733602][ T563] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 48.738532][ T563] do_group_exit+0x255/0x320 [ 48.743076][ T563] ? __kasan_check_write+0x14/0x20 [ 48.748162][ T563] get_signal+0x83c/0x17b0 [ 48.752418][ T563] ? __kasan_check_read+0x11/0x20 [ 48.757361][ T563] ? ptrace_notify+0x350/0x350 [ 48.761967][ T563] arch_do_signal_or_restart+0xbd/0x16a0 [ 48.767886][ T563] ? __kasan_check_write+0x14/0x20 [ 48.772829][ T563] ? fput_many+0x160/0x1b0 [ 48.777061][ T563] ? do_futex+0x3b5/0x490 [ 48.781420][ T563] ? __ia32_sys_get_robust_list+0x90/0x90 [ 48.786976][ T563] ? get_sigframe_size+0x10/0x10 [ 48.791744][ T563] ? __x64_sys_futex+0x100/0x100 [ 48.796516][ T563] exit_to_user_mode_loop+0xa0/0xe0 [ 48.801549][ T563] exit_to_user_mode_prepare+0x5a/0xa0 [ 48.806936][ T563] syscall_exit_to_user_mode+0x26/0x160 [ 48.812312][ T563] do_syscall_64+0x50/0xd0 [ 48.816572][ T563] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 48.822480][ T563] RIP: 0033:0x7f2028ced0f9 [ 48.826825][ T563] Code: Unable to access opcode bytes at RIP 0x7f2028ced0cf. [ 48.834361][ T563] RSP: 002b:00007f2028860218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 48.842611][ T563] RAX: fffffffffffffe00 RBX: 00007f2028e0cf88 RCX: 00007f2028ced0f9 [ 48.850807][ T563] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2028e0cf88 [ 48.858860][ T563] RBP: 00007f2028e0cf80 R08: 0000000000000000 R09: 0000000000000000 [ 48.866756][ T563] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2028e0cf8c [ 48.874662][ T563] R13: 00007fff30a07c8f R14: 00007f2028860300 R15: 0000000000022000 [ 48.882567][ T563] [ 48.885504][ T563] BUG: using __this_cpu_write() in preemptible [00000000] code: syz-executor.0/563 [ 48.894798][ T563] caller is __this_cpu_preempt_check+0x13/0x20 [ 48.900938][ T563] CPU: 1 PID: 563 Comm: syz-executor.0 Tainted: G W 5.17.0-syzkaller #0 [ 48.910376][ T563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 48.920449][ T563] Call Trace: [ 48.923673][ T563] [ 48.926418][ T563] dump_stack_lvl+0x151/0x1b7 [ 48.931023][ T563] ? bfq_pos_tree_add_move+0x43b/0x43b [ 48.936596][ T563] ? mutex_unlock+0xa1/0x110 [ 48.941070][ T563] ? __mutex_lock_slowpath+0x10/0x10 [ 48.946298][ T563] dump_stack+0x15/0x17 [ 48.950276][ T563] check_preemption_disabled+0x109/0x110 [ 48.955932][ T563] __this_cpu_preempt_check+0x13/0x20 [ 48.961142][ T563] __mod_node_page_state+0xac/0xf0 [ 48.966185][ T563] __mod_lruvec_page_state+0x154/0x200 [ 48.971732][ T563] ? page_remove_rmap+0x2ee/0x910 [ 48.976589][ T563] page_remove_rmap+0x5f2/0x910 [ 48.981358][ T563] unmap_page_range+0x1207/0x1c00 [ 48.986338][ T563] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 48.992488][ T563] ? __munlock_isolated_page+0x210/0x210 [ 48.998153][ T563] ? uprobe_munmap+0x18d/0x450 [ 49.002834][ T563] unmap_vmas+0x389/0x560 [ 49.007002][ T563] ? unmap_page_range+0x1c00/0x1c00 [ 49.012133][ T563] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 49.017870][ T563] exit_mmap+0x3fb/0x6f0 [ 49.022068][ T563] ? vm_brk+0x30/0x30 [ 49.025878][ T563] ? uprobe_clear_state+0x2cd/0x320 [ 49.031020][ T563] __mmput+0x95/0x300 [ 49.034851][ T563] mmput+0x59/0x70 [ 49.038396][ T563] do_exit+0xab3/0x2850 [ 49.042388][ T563] ? put_task_struct+0x80/0x80 [ 49.046983][ T563] ? plist_check_list+0x254/0x270 [ 49.051844][ T563] ? __kasan_check_write+0x14/0x20 [ 49.056792][ T563] ? __kasan_check_write+0x14/0x20 [ 49.061774][ T563] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 49.066698][ T563] do_group_exit+0x255/0x320 [ 49.071231][ T563] ? __kasan_check_write+0x14/0x20 [ 49.076310][ T563] get_signal+0x83c/0x17b0 [ 49.080507][ T563] ? __kasan_check_read+0x11/0x20 [ 49.085579][ T563] ? ptrace_notify+0x350/0x350 [ 49.090245][ T563] arch_do_signal_or_restart+0xbd/0x16a0 [ 49.095722][ T563] ? __kasan_check_write+0x14/0x20 [ 49.100779][ T563] ? fput_many+0x160/0x1b0 [ 49.105137][ T563] ? do_futex+0x3b5/0x490 [ 49.109295][ T563] ? __ia32_sys_get_robust_list+0x90/0x90 [ 49.115119][ T563] ? get_sigframe_size+0x10/0x10 [ 49.120067][ T563] ? __x64_sys_futex+0x100/0x100 [ 49.125628][ T563] exit_to_user_mode_loop+0xa0/0xe0 [ 49.130765][ T563] exit_to_user_mode_prepare+0x5a/0xa0 [ 49.136205][ T563] syscall_exit_to_user_mode+0x26/0x160 [ 49.141670][ T563] do_syscall_64+0x50/0xd0 [ 49.146197][ T563] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 49.152013][ T563] RIP: 0033:0x7f2028ced0f9 [ 49.156264][ T563] Code: Unable to access opcode bytes at RIP 0x7f2028ced0cf. [ 49.163557][ T563] RSP: 002b:00007f2028860218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 49.172023][ T563] RAX: fffffffffffffe00 RBX: 00007f2028e0cf88 RCX: 00007f2028ced0f9 [ 49.180166][ T563] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2028e0cf88 [ 49.187977][ T563] RBP: 00007f2028e0cf80 R08: 0000000000000000 R09: 0000000000000000 [ 49.196047][ T563] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2028e0cf8c [ 49.203860][ T563] R13: 00007fff30a07c8f R14: 00007f2028860300 R15: 0000000000022000 [ 49.211681][ T563] [ 49.214595][ T563] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor.0/563 [ 49.223607][ T563] caller is __this_cpu_preempt_check+0x13/0x20 [ 49.229560][ T563] CPU: 1 PID: 563 Comm: syz-executor.0 Tainted: G W 5.17.0-syzkaller #0 [ 49.239223][ T563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 49.249783][ T563] Call Trace: [ 49.252904][ T563] [ 49.255672][ T563] dump_stack_lvl+0x151/0x1b7 [ 49.260273][ T563] ? bfq_pos_tree_add_move+0x43b/0x43b [ 49.265661][ T563] ? mutex_unlock+0xa1/0x110 [ 49.270082][ T563] ? __mutex_lock_slowpath+0x10/0x10 [ 49.275405][ T563] dump_stack+0x15/0x17 [ 49.279380][ T563] check_preemption_disabled+0x109/0x110 [ 49.285312][ T563] __this_cpu_preempt_check+0x13/0x20 [ 49.290611][ T563] __mod_memcg_lruvec_state+0x4f/0x1b0 [ 49.295994][ T563] ? __mod_node_page_state+0xac/0xf0 [ 49.301092][ T563] __mod_lruvec_page_state+0x164/0x200 [ 49.306471][ T563] ? page_remove_rmap+0x2ee/0x910 [ 49.311352][ T563] page_remove_rmap+0x5f2/0x910 [ 49.316109][ T563] unmap_page_range+0x1207/0x1c00 [ 49.320973][ T563] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 49.327476][ T563] ? __munlock_isolated_page+0x210/0x210 [ 49.333043][ T563] ? uprobe_munmap+0x18d/0x450 [ 49.337633][ T563] unmap_vmas+0x389/0x560 [ 49.341985][ T563] ? unmap_page_range+0x1c00/0x1c00 [ 49.347102][ T563] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 49.352400][ T563] exit_mmap+0x3fb/0x6f0 [ 49.356665][ T563] ? vm_brk+0x30/0x30 [ 49.360474][ T563] ? uprobe_clear_state+0x2cd/0x320 [ 49.365508][ T563] __mmput+0x95/0x300 [ 49.369410][ T563] mmput+0x59/0x70 [ 49.373066][ T563] do_exit+0xab3/0x2850 [ 49.377044][ T563] ? put_task_struct+0x80/0x80 [ 49.381661][ T563] ? plist_check_list+0x254/0x270 [ 49.386512][ T563] ? __kasan_check_write+0x14/0x20 [ 49.391458][ T563] ? __kasan_check_write+0x14/0x20 [ 49.396409][ T563] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 49.401348][ T563] do_group_exit+0x255/0x320 [ 49.405887][ T563] ? __kasan_check_write+0x14/0x20 [ 49.411100][ T563] get_signal+0x83c/0x17b0 [ 49.415352][ T563] ? __kasan_check_read+0x11/0x20 [ 49.420295][ T563] ? ptrace_notify+0x350/0x350 [ 49.425092][ T563] arch_do_signal_or_restart+0xbd/0x16a0 [ 49.430577][ T563] ? __kasan_check_write+0x14/0x20 [ 49.435767][ T563] ? fput_many+0x160/0x1b0 [ 49.440011][ T563] ? do_futex+0x3b5/0x490 [ 49.444191][ T563] ? __ia32_sys_get_robust_list+0x90/0x90 [ 49.449825][ T563] ? get_sigframe_size+0x10/0x10 [ 49.454605][ T563] ? __x64_sys_futex+0x100/0x100 [ 49.459633][ T563] exit_to_user_mode_loop+0xa0/0xe0 [ 49.464683][ T563] exit_to_user_mode_prepare+0x5a/0xa0 [ 49.470081][ T563] syscall_exit_to_user_mode+0x26/0x160 [ 49.475462][ T563] do_syscall_64+0x50/0xd0 [ 49.479717][ T563] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 49.485450][ T563] RIP: 0033:0x7f2028ced0f9 [ 49.489697][ T563] Code: Unable to access opcode bytes at RIP 0x7f2028ced0cf. [ 49.497184][ T563] RSP: 002b:00007f2028860218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 49.505410][ T563] RAX: fffffffffffffe00 RBX: 00007f2028e0cf88 RCX: 00007f2028ced0f9 [ 49.513476][ T563] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2028e0cf88 [ 49.521341][ T563] RBP: 00007f2028e0cf80 R08: 0000000000000000 R09: 0000000000000000 [ 49.529187][ T563] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2028e0cf8c [ 49.536998][ T563] R13: 00007fff30a07c8f R14: 00007f2028860300 R15: 0000000000022000 [ 49.544813][ T563] [ 49.547778][ T563] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor.0/563 [ 49.556748][ T563] caller is __this_cpu_preempt_check+0x13/0x20 [ 49.562940][ T563] CPU: 1 PID: 563 Comm: syz-executor.0 Tainted: G W 5.17.0-syzkaller #0 [ 49.573238][ T563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 49.583403][ T563] Call Trace: [ 49.586530][ T563] [ 49.589315][ T563] dump_stack_lvl+0x151/0x1b7 [ 49.593819][ T563] ? bfq_pos_tree_add_move+0x43b/0x43b [ 49.599288][ T563] ? mutex_unlock+0xa1/0x110 [ 49.603810][ T563] ? __mutex_lock_slowpath+0x10/0x10 [ 49.609015][ T563] dump_stack+0x15/0x17 [ 49.613001][ T563] check_preemption_disabled+0x109/0x110 [ 49.618468][ T563] __this_cpu_preempt_check+0x13/0x20 [ 49.623790][ T563] __mod_memcg_lruvec_state+0xa2/0x1b0 [ 49.629058][ T563] __mod_lruvec_page_state+0x164/0x200 [ 49.634819][ T563] ? page_remove_rmap+0x2ee/0x910 [ 49.639762][ T563] page_remove_rmap+0x5f2/0x910 [ 49.644447][ T563] unmap_page_range+0x1207/0x1c00 [ 49.649309][ T563] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 49.655471][ T563] ? __munlock_isolated_page+0x210/0x210 [ 49.661133][ T563] ? uprobe_munmap+0x18d/0x450 [ 49.665777][ T563] unmap_vmas+0x389/0x560 [ 49.669891][ T563] ? unmap_page_range+0x1c00/0x1c00 [ 49.674937][ T563] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 49.680221][ T563] exit_mmap+0x3fb/0x6f0 [ 49.684302][ T563] ? vm_brk+0x30/0x30 [ 49.688204][ T563] ? uprobe_clear_state+0x2cd/0x320 [ 49.693239][ T563] __mmput+0x95/0x300 [ 49.697070][ T563] mmput+0x59/0x70 [ 49.700620][ T563] do_exit+0xab3/0x2850 [ 49.704716][ T563] ? put_task_struct+0x80/0x80 [ 49.709298][ T563] ? plist_check_list+0x254/0x270 [ 49.714265][ T563] ? __kasan_check_write+0x14/0x20 [ 49.719211][ T563] ? __kasan_check_write+0x14/0x20 [ 49.724333][ T563] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 49.729277][ T563] do_group_exit+0x255/0x320 [ 49.733709][ T563] ? __kasan_check_write+0x14/0x20 [ 49.738666][ T563] get_signal+0x83c/0x17b0 [ 49.742907][ T563] ? __kasan_check_read+0x11/0x20 [ 49.747939][ T563] ? ptrace_notify+0x350/0x350 [ 49.752558][ T563] arch_do_signal_or_restart+0xbd/0x16a0 [ 49.758021][ T563] ? __kasan_check_write+0x14/0x20 [ 49.762959][ T563] ? fput_many+0x160/0x1b0 [ 49.767209][ T563] ? do_futex+0x3b5/0x490 [ 49.771376][ T563] ? __ia32_sys_get_robust_list+0x90/0x90 [ 49.777019][ T563] ? get_sigframe_size+0x10/0x10 [ 49.781793][ T563] ? __x64_sys_futex+0x100/0x100 [ 49.786589][ T563] exit_to_user_mode_loop+0xa0/0xe0 [ 49.791601][ T563] exit_to_user_mode_prepare+0x5a/0xa0 [ 49.796999][ T563] syscall_exit_to_user_mode+0x26/0x160 [ 49.802380][ T563] do_syscall_64+0x50/0xd0 [ 49.806725][ T563] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 49.812615][ T563] RIP: 0033:0x7f2028ced0f9 [ 49.816873][ T563] Code: Unable to access opcode bytes at RIP 0x7f2028ced0cf. [ 49.824219][ T563] RSP: 002b:00007f2028860218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 49.832404][ T563] RAX: fffffffffffffe00 RBX: 00007f2028e0cf88 RCX: 00007f2028ced0f9 [ 49.840661][ T563] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2028e0cf88 [ 49.848471][ T563] RBP: 00007f2028e0cf80 R08: 0000000000000000 R09: 0000000000000000 [ 49.856371][ T563] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2028e0cf8c [ 49.864355][ T563] R13: 00007fff30a07c8f R14: 00007f2028860300 R15: 0000000000022000 [ 49.872345][ T563] [ 49.875376][ T563] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.0/563 [ 49.884615][ T563] caller is debug_smp_processor_id+0x17/0x20 [ 49.890635][ T563] CPU: 1 PID: 563 Comm: syz-executor.0 Tainted: G W 5.17.0-syzkaller #0 [ 49.900355][ T563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 49.910434][ T563] Call Trace: [ 49.913808][ T563] [ 49.916565][ T563] dump_stack_lvl+0x151/0x1b7 [ 49.921164][ T563] ? bfq_pos_tree_add_move+0x43b/0x43b [ 49.926808][ T563] ? mutex_unlock+0xa1/0x110 [ 49.931237][ T563] ? __mutex_lock_slowpath+0x10/0x10 [ 49.936607][ T563] dump_stack+0x15/0x17 [ 49.940861][ T563] check_preemption_disabled+0x109/0x110 [ 49.946478][ T563] debug_smp_processor_id+0x17/0x20 [ 49.951602][ T563] __mod_memcg_lruvec_state+0x106/0x1b0 [ 49.957089][ T563] __mod_lruvec_page_state+0x164/0x200 [ 49.962384][ T563] ? page_remove_rmap+0x2ee/0x910 [ 49.967417][ T563] page_remove_rmap+0x5f2/0x910 [ 49.972107][ T563] unmap_page_range+0x1207/0x1c00 [ 49.976966][ T563] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 49.983242][ T563] ? __munlock_isolated_page+0x210/0x210 [ 49.988706][ T563] ? uprobe_munmap+0x18d/0x450 [ 49.993343][ T563] unmap_vmas+0x389/0x560 [ 49.997726][ T563] ? unmap_page_range+0x1c00/0x1c00 [ 50.002704][ T563] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 50.008087][ T563] exit_mmap+0x3fb/0x6f0 [ 50.012251][ T563] ? vm_brk+0x30/0x30 [ 50.016069][ T563] ? uprobe_clear_state+0x2cd/0x320 [ 50.021158][ T563] __mmput+0x95/0x300 [ 50.025017][ T563] mmput+0x59/0x70 [ 50.028664][ T563] do_exit+0xab3/0x2850 [ 50.032741][ T563] ? put_task_struct+0x80/0x80 [ 50.037342][ T563] ? plist_check_list+0x254/0x270 [ 50.042203][ T563] ? __kasan_check_write+0x14/0x20 [ 50.047237][ T563] ? __kasan_check_write+0x14/0x20 [ 50.052381][ T563] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 50.057322][ T563] do_group_exit+0x255/0x320 [ 50.061837][ T563] ? __kasan_check_write+0x14/0x20 [ 50.066869][ T563] get_signal+0x83c/0x17b0 [ 50.071126][ T563] ? __kasan_check_read+0x11/0x20 [ 50.075988][ T563] ? ptrace_notify+0x350/0x350 [ 50.080584][ T563] arch_do_signal_or_restart+0xbd/0x16a0 [ 50.086058][ T563] ? __kasan_check_write+0x14/0x20 [ 50.090999][ T563] ? fput_many+0x160/0x1b0 [ 50.095349][ T563] ? do_futex+0x3b5/0x490 [ 50.099734][ T563] ? __ia32_sys_get_robust_list+0x90/0x90 [ 50.105249][ T563] ? get_sigframe_size+0x10/0x10 [ 50.110112][ T563] ? __x64_sys_futex+0x100/0x100 [ 50.114999][ T563] exit_to_user_mode_loop+0xa0/0xe0 [ 50.120028][ T563] exit_to_user_mode_prepare+0x5a/0xa0 [ 50.125320][ T563] syscall_exit_to_user_mode+0x26/0x160 [ 50.130877][ T563] do_syscall_64+0x50/0xd0 [ 50.135197][ T563] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 50.140866][ T563] RIP: 0033:0x7f2028ced0f9 [ 50.145121][ T563] Code: Unable to access opcode bytes at RIP 0x7f2028ced0cf. [ 50.152403][ T563] RSP: 002b:00007f2028860218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 50.160668][ T563] RAX: fffffffffffffe00 RBX: 00007f2028e0cf88 RCX: 00007f2028ced0f9 [ 50.168481][ T563] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2028e0cf88 [ 50.176265][ T563] RBP: 00007f2028e0cf80 R08: 0000000000000000 R09: 0000000000000000 [ 50.184249][ T563] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2028e0cf8c [ 50.192068][ T563] R13: 00007fff30a07c8f R14: 00007f2028860300 R15: 0000000000022000 [ 50.199881][ T563] [ 50.202863][ T563] BUG: using __this_cpu_add_return() in preemptible [00000000] code: syz-executor.0/563 [ 50.212507][ T563] caller is __this_cpu_preempt_check+0x13/0x20 [ 50.218632][ T563] CPU: 1 PID: 563 Comm: syz-executor.0 Tainted: G W 5.17.0-syzkaller #0 [ 50.228089][ T563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 50.238073][ T563] Call Trace: [ 50.241202][ T563] [ 50.243981][ T563] dump_stack_lvl+0x151/0x1b7 [ 50.248534][ T563] ? bfq_pos_tree_add_move+0x43b/0x43b [ 50.253972][ T563] ? mutex_unlock+0xa1/0x110 [ 50.258395][ T563] ? __mutex_lock_slowpath+0x10/0x10 [ 50.263604][ T563] dump_stack+0x15/0x17 [ 50.267600][ T563] check_preemption_disabled+0x109/0x110 [ 50.273053][ T563] __this_cpu_preempt_check+0x13/0x20 [ 50.278483][ T563] __mod_memcg_lruvec_state+0x11c/0x1b0 [ 50.284036][ T563] __mod_lruvec_page_state+0x164/0x200 [ 50.289360][ T563] ? page_remove_rmap+0x2ee/0x910 [ 50.294404][ T563] page_remove_rmap+0x5f2/0x910 [ 50.299288][ T563] unmap_page_range+0x1207/0x1c00 [ 50.304276][ T563] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 50.310407][ T563] ? __munlock_isolated_page+0x210/0x210 [ 50.315966][ T563] ? uprobe_munmap+0x18d/0x450 [ 50.320648][ T563] unmap_vmas+0x389/0x560 [ 50.324818][ T563] ? unmap_page_range+0x1c00/0x1c00 [ 50.329860][ T563] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 50.335143][ T563] exit_mmap+0x3fb/0x6f0 [ 50.339221][ T563] ? vm_brk+0x30/0x30 [ 50.343040][ T563] ? uprobe_clear_state+0x2cd/0x320 [ 50.348074][ T563] __mmput+0x95/0x300 [ 50.351980][ T563] mmput+0x59/0x70 [ 50.355548][ T563] do_exit+0xab3/0x2850 [ 50.359531][ T563] ? put_task_struct+0x80/0x80 [ 50.364134][ T563] ? plist_check_list+0x254/0x270 [ 50.369398][ T563] ? __kasan_check_write+0x14/0x20 [ 50.374315][ T563] ? __kasan_check_write+0x14/0x20 [ 50.379344][ T563] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 50.384553][ T563] do_group_exit+0x255/0x320 [ 50.388977][ T563] ? __kasan_check_write+0x14/0x20 [ 50.394185][ T563] get_signal+0x83c/0x17b0 [ 50.398497][ T563] ? __kasan_check_read+0x11/0x20 [ 50.403317][ T563] ? ptrace_notify+0x350/0x350 [ 50.407990][ T563] arch_do_signal_or_restart+0xbd/0x16a0 [ 50.413459][ T563] ? __kasan_check_write+0x14/0x20 [ 50.418579][ T563] ? fput_many+0x160/0x1b0 [ 50.422831][ T563] ? do_futex+0x3b5/0x490 [ 50.427006][ T563] ? __ia32_sys_get_robust_list+0x90/0x90 [ 50.432550][ T563] ? get_sigframe_size+0x10/0x10 [ 50.437343][ T563] ? __x64_sys_futex+0x100/0x100 [ 50.442097][ T563] exit_to_user_mode_loop+0xa0/0xe0 [ 50.447242][ T563] exit_to_user_mode_prepare+0x5a/0xa0 [ 50.452766][ T563] syscall_exit_to_user_mode+0x26/0x160 [ 50.458117][ T563] do_syscall_64+0x50/0xd0 [ 50.462365][ T563] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 50.468202][ T563] RIP: 0033:0x7f2028ced0f9 [ 50.472449][ T563] Code: Unable to access opcode bytes at RIP 0x7f2028ced0cf. [ 50.479662][ T563] RSP: 002b:00007f2028860218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 50.488082][ T563] RAX: fffffffffffffe00 RBX: 00007f2028e0cf88 RCX: 00007f2028ced0f9 [ 50.495893][ T563] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2028e0cf88 [ 50.503839][ T563] RBP: 00007f2028e0cf80 R08: 0000000000000000 R09: 0000000000000000 2023/03/23 10:38:01 executed programs: 14 [ 50.511644][ T563] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2028e0cf8c [ 50.519454][ T563] R13: 00007fff30a07c8f R14: 00007f2028860300 R15: 0000000000022000 [ 50.527269][ T563] [ 50.842041][ T575] loop0: detected capacity change from 0 to 63271 [ 50.849667][ T575] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 50.858192][ T575] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 50.867123][ T575] F2FS-fs (loop0): invalid crc value [ 50.873844][ T575] F2FS-fs (loop0): Found nat_bits in checkpoint [ 50.894536][ T575] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 50.901527][ T575] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 50.989651][ T580] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=1 [ 51.126708][ T575] BUG: scheduling while atomic: syz-executor.0/575/0x00000002 [ 51.134056][ T575] Modules linked in: [ 51.137736][ T575] Preemption disabled at: [ 51.137742][ T575] [] unmap_page_range+0xa37/0x1c00 [ 51.148558][ T575] CPU: 0 PID: 575 Comm: syz-executor.0 Tainted: G W 5.17.0-syzkaller #0 [ 51.158115][ T575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 51.168101][ T575] Call Trace: [ 51.171224][ T575] [ 51.174059][ T575] dump_stack_lvl+0x151/0x1b7 [ 51.178617][ T575] ? unmap_page_range+0xa37/0x1c00 [ 51.183608][ T575] ? unmap_page_range+0xa37/0x1c00 [ 51.188617][ T575] ? bfq_pos_tree_add_move+0x43b/0x43b [ 51.193907][ T575] ? is_bpf_text_address+0x172/0x190 [ 51.199027][ T575] ? stack_trace_save+0x1c0/0x1c0 [ 51.203903][ T575] ? unmap_page_range+0xa37/0x1c00 [ 51.208838][ T575] dump_stack+0x15/0x17 [ 51.212823][ T575] __schedule_bug+0x1a0/0x240 [ 51.217340][ T575] ? select_fallback_rq+0x220/0x220 [ 51.222372][ T575] ? irqentry_exit+0x30/0x40 [ 51.226799][ T575] __schedule+0xcef/0x1540 [ 51.231075][ T575] ? mutex_spin_on_owner+0x141/0x2b0 [ 51.236295][ T575] ? kasan_check_range+0x82/0x2a0 [ 51.241208][ T575] ? release_firmware_map_entry+0x18f/0x18f [ 51.247053][ T575] ? mutex_spin_on_owner+0x141/0x2b0 [ 51.252163][ T575] schedule+0x12a/0x1f0 [ 51.256344][ T575] schedule_preempt_disabled+0x13/0x20 [ 51.261647][ T575] __mutex_lock+0x4b2/0x1040 [ 51.266091][ T575] ? kmem_cache_alloc+0xfd/0x200 [ 51.270929][ T575] ? f2fs_register_inmem_page+0x13f/0x4b0 [ 51.276475][ T575] ? f2fs_set_data_page_dirty+0x508/0x6a0 [ 51.282074][ T575] ? unmap_page_range+0x1030/0x1c00 [ 51.287065][ T575] ? __mmput+0x95/0x300 [ 51.291076][ T575] ? mmput+0x59/0x70 [ 51.295005][ T575] ? get_signal+0x83c/0x17b0 [ 51.299429][ T575] ? arch_do_signal_or_restart+0xbd/0x16a0 [ 51.305077][ T575] ? exit_to_user_mode_loop+0xa0/0xe0 [ 51.310375][ T575] ? exit_to_user_mode_prepare+0x5a/0xa0 [ 51.315846][ T575] ? __ww_mutex_lock_interruptible_slowpath+0x20/0x20 [ 51.322442][ T575] __mutex_lock_slowpath+0xe/0x10 [ 51.327443][ T575] mutex_lock+0xeb/0x120 [ 51.331485][ T575] ? f2fs_register_inmem_page+0x13f/0x4b0 [ 51.337042][ T575] ? wait_for_completion_killable_timeout+0x10/0x10 [ 51.343464][ T575] ? f2fs_register_inmem_page+0x13f/0x4b0 [ 51.349015][ T575] f2fs_register_inmem_page+0x22c/0x4b0 [ 51.354397][ T575] f2fs_set_data_page_dirty+0x508/0x6a0 [ 51.359784][ T575] folio_mark_dirty+0xd0/0x150 [ 51.364467][ T575] set_page_dirty+0x5c/0x70 [ 51.368802][ T575] unmap_page_range+0x1030/0x1c00 [ 51.373665][ T575] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 51.379833][ T575] ? __munlock_isolated_page+0x210/0x210 [ 51.385402][ T575] ? uprobe_munmap+0x18d/0x450 [ 51.390096][ T575] unmap_vmas+0x389/0x560 [ 51.394263][ T575] ? unmap_page_range+0x1c00/0x1c00 [ 51.399305][ T575] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 51.404593][ T575] exit_mmap+0x3fb/0x6f0 [ 51.408684][ T575] ? vm_brk+0x30/0x30 [ 51.412684][ T575] ? uprobe_clear_state+0x2cd/0x320 [ 51.417785][ T575] __mmput+0x95/0x300 [ 51.421610][ T575] mmput+0x59/0x70 [ 51.425185][ T575] do_exit+0xab3/0x2850 [ 51.429154][ T575] ? put_task_struct+0x80/0x80 [ 51.433753][ T575] ? plist_check_list+0x254/0x270 [ 51.438961][ T575] ? __kasan_check_write+0x14/0x20 [ 51.443993][ T575] ? __kasan_check_write+0x14/0x20 [ 51.448945][ T575] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 51.453893][ T575] do_group_exit+0x255/0x320 [ 51.458508][ T575] ? __kasan_check_write+0x14/0x20 [ 51.463689][ T575] get_signal+0x83c/0x17b0 [ 51.468043][ T575] ? __kasan_check_read+0x11/0x20 [ 51.472893][ T575] ? ptrace_notify+0x350/0x350 [ 51.477644][ T575] arch_do_signal_or_restart+0xbd/0x16a0 [ 51.483054][ T575] ? __kasan_check_write+0x14/0x20 [ 51.487993][ T575] ? fput_many+0x160/0x1b0 [ 51.492246][ T575] ? do_futex+0x3b5/0x490 [ 51.496413][ T575] ? __ia32_sys_get_robust_list+0x90/0x90 [ 51.501969][ T575] ? get_sigframe_size+0x10/0x10 [ 51.506744][ T575] ? __x64_sys_futex+0x100/0x100 [ 51.511518][ T575] exit_to_user_mode_loop+0xa0/0xe0 [ 51.516553][ T575] exit_to_user_mode_prepare+0x5a/0xa0 [ 51.521844][ T575] syscall_exit_to_user_mode+0x26/0x160 [ 51.527225][ T575] do_syscall_64+0x50/0xd0 [ 51.531477][ T575] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 51.537378][ T575] RIP: 0033:0x7f2028ced0f9 [ 51.541632][ T575] Code: Unable to access opcode bytes at RIP 0x7f2028ced0cf. [ 51.548946][ T575] RSP: 002b:00007f2028860218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 51.557197][ T575] RAX: fffffffffffffe00 RBX: 00007f2028e0cf88 RCX: 00007f2028ced0f9 [ 51.565006][ T575] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2028e0cf88 [ 51.572823][ T575] RBP: 00007f2028e0cf80 R08: 0000000000000000 R09: 0000000000000000 [ 51.581171][ T575] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2028e0cf8c [ 51.589261][ T575] R13: 00007fff30a07c8f R14: 00007f2028860300 R15: 0000000000022000 [ 51.597058][ T575] [ 51.602096][ T575] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-executor.0/575 [ 51.611353][ T575] caller is __this_cpu_preempt_check+0x13/0x20 [ 51.617316][ T575] CPU: 0 PID: 575 Comm: syz-executor.0 Tainted: G W 5.17.0-syzkaller #0 [ 51.626860][ T575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 51.636758][ T575] Call Trace: [ 51.639878][ T575] [ 51.642658][ T575] dump_stack_lvl+0x151/0x1b7 [ 51.647204][ T575] ? bfq_pos_tree_add_move+0x43b/0x43b [ 51.652467][ T575] ? mutex_unlock+0xa1/0x110 [ 51.656890][ T575] ? __mutex_lock_slowpath+0x10/0x10 [ 51.662205][ T575] dump_stack+0x15/0x17 [ 51.666308][ T575] check_preemption_disabled+0x109/0x110 [ 51.671936][ T575] __this_cpu_preempt_check+0x13/0x20