Warning: Permanently added '10.128.0.75' (ED25519) to the list of known hosts. 2023/09/04 22:49:51 ignoring optional flag "sandboxArg"="0" 2023/09/04 22:49:51 parsed 1 programs 2023/09/04 22:49:51 executed programs: 0 [ 43.289167][ T30] audit: type=1400 audit(1693867791.654:152): avc: denied { mounton } for pid=344 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 43.314707][ T30] audit: type=1400 audit(1693867791.654:153): avc: denied { mount } for pid=344 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 43.351028][ T348] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.358079][ T348] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.365296][ T348] device bridge_slave_0 entered promiscuous mode [ 43.372172][ T348] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.379076][ T348] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.386233][ T348] device bridge_slave_1 entered promiscuous mode [ 43.427139][ T30] audit: type=1400 audit(1693867791.784:154): avc: denied { write } for pid=348 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 43.433138][ T348] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.447689][ T30] audit: type=1400 audit(1693867791.794:155): avc: denied { read } for pid=348 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 43.454910][ T348] bridge0: port 2(bridge_slave_1) entered forwarding state [ 43.482274][ T348] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.489139][ T348] bridge0: port 1(bridge_slave_0) entered forwarding state [ 43.508231][ T303] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.515794][ T303] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.523373][ T303] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 43.530646][ T303] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 43.539324][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 43.547402][ T39] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.554180][ T39] bridge0: port 1(bridge_slave_0) entered forwarding state [ 43.568397][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 43.576449][ T39] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.583315][ T39] bridge0: port 2(bridge_slave_1) entered forwarding state [ 43.590727][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 43.598670][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 43.611268][ T303] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 43.622444][ T348] device veth0_vlan entered promiscuous mode [ 43.629409][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 43.637453][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 43.644910][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 43.656584][ T348] device veth1_macvtap entered promiscuous mode [ 43.663939][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 43.677555][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 43.685802][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 43.698744][ T30] audit: type=1400 audit(1693867792.064:156): avc: denied { mounton } for pid=348 comm="syz-executor.0" path="/dev/binderfs" dev="devtmpfs" ino=362 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 43.873927][ T353] loop0: detected capacity change from 0 to 63271 [ 43.881100][ T30] audit: type=1400 audit(1693867792.254:157): avc: denied { mounton } for pid=352 comm="syz-executor.0" path="/root/syzkaller-testdir1098921875/syzkaller.K4YHOx/0/bus" dev="sda1" ino=1937 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 43.881970][ T353] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 43.916182][ T353] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 43.925366][ T353] F2FS-fs (loop0): invalid crc value [ 43.931977][ T353] F2FS-fs (loop0): Found nat_bits in checkpoint [ 43.963962][ T353] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 43.971021][ T353] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 43.978799][ T30] audit: type=1400 audit(1693867792.344:158): avc: denied { mount } for pid=352 comm="syz-executor.0" name="/" dev="loop0" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 44.001578][ T30] audit: type=1400 audit(1693867792.344:159): avc: denied { write } for pid=352 comm="syz-executor.0" name="/" dev="loop0" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 44.023703][ T30] audit: type=1400 audit(1693867792.344:160): avc: denied { add_name } for pid=352 comm="syz-executor.0" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 44.046186][ T30] audit: type=1400 audit(1693867792.344:161): avc: denied { create } for pid=352 comm="syz-executor.0" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 44.086152][ T359] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=1 [ 44.280878][ T353] BUG: scheduling while atomic: syz-executor.0/353/0x00000002 [ 44.288222][ T353] Modules linked in: [ 44.291913][ T353] Preemption disabled at: [ 44.291925][ T353] [] unmap_page_range+0xa2f/0x1ca0 [ 44.302830][ T353] CPU: 1 PID: 353 Comm: syz-executor.0 Not tainted 5.15.130-syzkaller-1068695-g1317bd27a72f #0 [ 44.313006][ T353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023 [ 44.323070][ T353] Call Trace: [ 44.326243][ T353] [ 44.328971][ T353] dump_stack_lvl+0x151/0x1b7 [ 44.333483][ T353] ? unmap_page_range+0xa2f/0x1ca0 [ 44.338432][ T353] ? unmap_page_range+0xa2f/0x1ca0 [ 44.343379][ T353] ? io_uring_drop_tctx_refs+0x190/0x190 [ 44.349033][ T353] ? unmap_page_range+0xa2f/0x1ca0 [ 44.354143][ T353] dump_stack+0x15/0x17 [ 44.358136][ T353] __schedule_bug+0x195/0x260 [ 44.362657][ T353] ? is_bpf_text_address+0x172/0x190 [ 44.367971][ T353] ? ttwu_queue_wakelist+0x510/0x510 [ 44.373061][ T353] ? __kernel_text_address+0x9b/0x110 [ 44.378279][ T353] ? unwind_get_return_address+0x4d/0x90 [ 44.383826][ T353] __schedule+0xd0b/0x1580 [ 44.388080][ T353] ? mutex_spin_on_owner+0x479/0x500 [ 44.393561][ T353] ? release_firmware_map_entry+0x18f/0x18f [ 44.399393][ T353] ? __mutex_add_waiter+0x1b5/0x310 [ 44.404769][ T353] ? __ww_mutex_check_waiters+0x350/0x350 [ 44.410324][ T353] schedule+0x11f/0x1e0 [ 44.414430][ T353] schedule_preempt_disabled+0x13/0x20 [ 44.419698][ T353] __mutex_lock+0x90e/0x1870 [ 44.424223][ T353] ? __mmput+0x95/0x310 [ 44.428204][ T353] ? mmput+0x5b/0x170 [ 44.432196][ T353] ? __ww_mutex_lock_interruptible_slowpath+0x20/0x20 [ 44.438887][ T353] ? exit_to_user_mode_loop+0xa0/0xe0 [ 44.444183][ T353] ? exit_to_user_mode_prepare+0x5a/0xa0 [ 44.449676][ T353] ? syscall_exit_to_user_mode+0x26/0x160 [ 44.455206][ T353] ? do_syscall_64+0x49/0xb0 [ 44.459672][ T353] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 44.465597][ T353] __mutex_lock_slowpath+0xe/0x10 [ 44.470395][ T353] mutex_lock+0x135/0x1e0 [ 44.474560][ T353] ? slab_post_alloc_hook+0x72/0x2c0 [ 44.479679][ T353] ? f2fs_register_inmem_page+0x13f/0x4b0 [ 44.485671][ T353] ? wait_for_completion_killable_timeout+0x10/0x10 [ 44.492186][ T353] ? kmem_cache_alloc+0xf5/0x200 [ 44.497045][ T353] f2fs_register_inmem_page+0x22c/0x4b0 [ 44.502564][ T353] f2fs_set_data_page_dirty+0x591/0x730 [ 44.508175][ T353] set_page_dirty+0x1a4/0x300 [ 44.512781][ T353] unmap_page_range+0xf33/0x1ca0 [ 44.517561][ T353] ? __activate_page+0xd24/0x1110 [ 44.522502][ T353] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 44.528748][ T353] ? pagevec_lru_move_fn+0x48d/0x520 [ 44.533969][ T353] ? uprobe_munmap+0x18d/0x450 [ 44.538558][ T353] ? rotate_reclaimable_page+0x670/0x670 [ 44.544038][ T353] unmap_vmas+0x389/0x560 [ 44.548373][ T353] ? unmap_page_range+0x1ca0/0x1ca0 [ 44.553416][ T353] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 44.558869][ T353] exit_mmap+0x3d8/0x6f0 [ 44.563043][ T353] ? vm_brk+0x30/0x30 [ 44.566972][ T353] ? mutex_unlock+0xb2/0x260 [ 44.571462][ T353] ? uprobe_clear_state+0x2cd/0x320 [ 44.576486][ T353] __mmput+0x95/0x310 [ 44.580924][ T353] mmput+0x5b/0x170 [ 44.584838][ T353] do_exit+0xbb4/0x2b60 [ 44.588828][ T353] ? splice_direct_to_actor+0x957/0xbe0 [ 44.594205][ T353] ? put_task_struct+0x80/0x80 [ 44.599006][ T353] ? __kasan_check_write+0x14/0x20 [ 44.603959][ T353] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 44.608987][ T353] ? _raw_spin_lock_irqsave+0x210/0x210 [ 44.614454][ T353] do_group_exit+0x141/0x310 [ 44.618906][ T353] get_signal+0x7a3/0x1630 [ 44.623137][ T353] ? do_splice_direct+0x296/0x3c0 [ 44.627994][ T353] arch_do_signal_or_restart+0xbd/0x1680 [ 44.633474][ T353] ? fput_many+0x160/0x1b0 [ 44.638062][ T353] ? fput+0x1a/0x20 [ 44.641712][ T353] ? do_sendfile+0xce7/0xfe0 [ 44.646232][ T353] ? notify_change+0xdb0/0x1030 [ 44.650904][ T353] ? fput_many+0x160/0x1b0 [ 44.655423][ T353] ? get_sigframe_size+0x10/0x10 [ 44.660365][ T353] ? __se_sys_futex+0x37b/0x3e0 [ 44.665056][ T353] ? fpu_flush_thread+0xf0/0xf0 [ 44.669738][ T353] exit_to_user_mode_loop+0xa0/0xe0 [ 44.674871][ T353] exit_to_user_mode_prepare+0x5a/0xa0 [ 44.680155][ T353] syscall_exit_to_user_mode+0x26/0x160 [ 44.685712][ T353] do_syscall_64+0x49/0xb0 [ 44.689965][ T353] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 44.695711][ T353] RIP: 0033:0x7f22172f68d9 [ 44.699959][ T353] Code: Unable to access opcode bytes at RIP 0x7f22172f68af. [ 44.707234][ T353] RSP: 002b:00007f2216e79178 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 44.715742][ T353] RAX: fffffffffffffe00 RBX: 00007f2217415f88 RCX: 00007f22172f68d9 [ 44.723649][ T353] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2217415f88 [ 44.731627][ T353] RBP: 00007f2217415f80 R08: 00007f2216e796c0 R09: 00007f2216e796c0 [ 44.740229][ T353] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2217415f8c [ 44.748028][ T353] R13: 000000000000000b R14: 00007ffdccb0bc20 R15: 00007ffdccb0bd08 [ 44.755856][ T353] [ 44.764450][ T353] ------------[ cut here ]------------ [ 44.769953][ T353] DEBUG_LOCKS_WARN_ON(val > preempt_count()) [ 44.769990][ T353] WARNING: CPU: 0 PID: 353 at kernel/sched/core.c:5644 preempt_count_sub+0xa8/0x160 [ 44.785321][ T353] Modules linked in: [ 44.789684][ T353] CPU: 0 PID: 353 Comm: syz-executor.0 Tainted: G W 5.15.130-syzkaller-1068695-g1317bd27a72f #0 [ 44.801940][ T353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023 [ 44.812517][ T353] RIP: 0010:preempt_count_sub+0xa8/0x160 [ 44.817955][ T353] Code: 03 42 0f b6 04 30 84 c0 0f 85 86 00 00 00 83 3d 95 32 5a 05 00 75 d1 48 c7 c7 60 8d 28 85 48 c7 c6 00 8e 28 85 e8 18 65 f5 ff <0f> 0b eb ba e8 bf be 14 01 85 c0 74 b1 48 c7 c0 68 40 a6 86 48 c1 [ 44.838141][ T353] RSP: 0018:ffffc90000ac74c8 EFLAGS: 00010246 [ 44.844035][ T353] RAX: 456a5faa31ca9600 RBX: 0000000000000001 RCX: ffff88810c45e2c0 [ 44.852440][ T353] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 44.860436][ T353] RBP: ffffc90000ac74d8 R08: ffffffff81573f65 R09: ffffed103ee04e93 [ 44.868523][ T353] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 44.876366][ T353] R13: 0400000000000080 R14: dffffc0000000000 R15: 0000000020200000 [ 44.884805][ T353] FS: 0000000000000000(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 44.893904][ T353] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 44.900904][ T353] CR2: 00007f221061d000 CR3: 00000001065d5000 CR4: 00000000003506a0 [ 44.908908][ T353] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 44.917161][ T353] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 44.925031][ T353] Call Trace: [ 44.928256][ T353] [ 44.931043][ T353] ? show_regs+0x58/0x60 [ 44.935291][ T353] ? __warn+0x160/0x2f0 [ 44.939784][ T353] ? preempt_count_sub+0xa8/0x160 [ 44.944698][ T353] ? report_bug+0x3d9/0x5b0 [ 44.949126][ T353] ? preempt_count_sub+0xa8/0x160 [ 44.953990][ T353] ? handle_bug+0x41/0x70 [ 44.958246][ T353] ? exc_invalid_op+0x1b/0x50 [ 44.962801][ T353] ? asm_exc_invalid_op+0x1b/0x20 [ 44.967712][ T353] ? __wake_up_klogd+0xd5/0x110 [ 44.972432][ T353] ? preempt_count_sub+0xa8/0x160 [ 44.977546][ T353] ? preempt_count_sub+0xa8/0x160 [ 44.982537][ T353] _raw_spin_unlock+0x4d/0x70 [ 44.987224][ T353] unmap_page_range+0x1a8c/0x1ca0 [ 44.992221][ T353] ? __activate_page+0xd24/0x1110 [ 44.997046][ T353] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 45.003488][ T353] ? pagevec_lru_move_fn+0x48d/0x520 [ 45.008593][ T353] ? uprobe_munmap+0x18d/0x450 [ 45.013442][ T353] ? rotate_reclaimable_page+0x670/0x670 [ 45.018952][ T353] unmap_vmas+0x389/0x560 [ 45.023337][ T353] ? unmap_page_range+0x1ca0/0x1ca0 [ 45.028737][ T353] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 45.034234][ T353] exit_mmap+0x3d8/0x6f0 [ 45.038328][ T353] ? vm_brk+0x30/0x30 [ 45.042105][ T353] ? mutex_unlock+0xb2/0x260 [ 45.046624][ T353] ? uprobe_clear_state+0x2cd/0x320 [ 45.051694][ T353] __mmput+0x95/0x310 [ 45.055521][ T353] mmput+0x5b/0x170 [ 45.059175][ T353] do_exit+0xbb4/0x2b60 [ 45.063501][ T353] ? splice_direct_to_actor+0x957/0xbe0 [ 45.069482][ T353] ? put_task_struct+0x80/0x80 [ 45.074574][ T353] ? __kasan_check_write+0x14/0x20 [ 45.079639][ T353] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 45.084787][ T353] ? _raw_spin_lock_irqsave+0x210/0x210 [ 45.090182][ T353] do_group_exit+0x141/0x310 [ 45.094576][ T353] get_signal+0x7a3/0x1630 [ 45.098975][ T353] ? do_splice_direct+0x296/0x3c0 [ 45.103774][ T353] arch_do_signal_or_restart+0xbd/0x1680 [ 45.109392][ T353] ? fput_many+0x160/0x1b0 [ 45.113585][ T353] ? fput+0x1a/0x20 [ 45.117225][ T353] ? do_sendfile+0xce7/0xfe0 [ 45.121719][ T353] ? notify_change+0xdb0/0x1030 [ 45.126432][ T353] ? fput_many+0x160/0x1b0 [ 45.130905][ T353] ? get_sigframe_size+0x10/0x10 [ 45.135717][ T353] ? __se_sys_futex+0x37b/0x3e0 [ 45.140451][ T353] ? fpu_flush_thread+0xf0/0xf0 [ 45.145092][ T353] exit_to_user_mode_loop+0xa0/0xe0 [ 45.150167][ T353] exit_to_user_mode_prepare+0x5a/0xa0 [ 45.155418][ T353] syscall_exit_to_user_mode+0x26/0x160 [ 45.160848][ T353] do_syscall_64+0x49/0xb0 [ 45.165054][ T353] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 45.170815][ T353] RIP: 0033:0x7f22172f68d9 [ 45.175214][ T353] Code: Unable to access opcode bytes at RIP 0x7f22172f68af. [ 45.182703][ T353] RSP: 002b:00007f2216e79178 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 45.191511][ T353] RAX: fffffffffffffe00 RBX: 00007f2217415f88 RCX: 00007f22172f68d9 [ 45.200286][ T353] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2217415f88 [ 45.208577][ T353] RBP: 00007f2217415f80 R08: 00007f2216e796c0 R09: 00007f2216e796c0 [ 45.216829][ T353] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2217415f8c [ 45.224828][ T353] R13: 000000000000000b R14: 00007ffdccb0bc20 R15: 00007ffdccb0bd08 [ 45.233084][ T353] [ 45.236200][ T353] ---[ end trace 2b99c084c5cb0383 ]--- [ 45.603245][ T364] loop0: detected capacity change from 0 to 63271 [ 45.610240][ T364] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 45.618554][ T364] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 45.627978][ T364] F2FS-fs (loop0): invalid crc value [ 45.634593][ T364] F2FS-fs (loop0): Found nat_bits in checkpoint [ 45.665240][ T364] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 45.672128][ T364] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 45.760306][ T369] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=1 [ 46.303353][ T371] loop0: detected capacity change from 0 to 63271 [ 46.310525][ T371] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 46.319183][ T371] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 46.329206][ T371] F2FS-fs (loop0): invalid crc value [ 46.335491][ T371] F2FS-fs (loop0): Found nat_bits in checkpoint [ 46.366421][ T371] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 46.373385][ T371] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 46.458608][ T377] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=17 [ 46.458966][ T371] attempt to access beyond end of device [ 46.458966][ T371] loop0: rw=2049, want=77952, limit=63271 [ 46.780293][ T379] loop0: detected capacity change from 0 to 63271 [ 46.787277][ T379] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 46.795724][ T379] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 46.804647][ T379] F2FS-fs (loop0): invalid crc value [ 46.811305][ T379] F2FS-fs (loop0): Found nat_bits in checkpoint [ 46.842479][ T379] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 46.849515][ T379] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 46.939461][ T384] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=1 [ 47.137638][ T379] BUG: scheduling while atomic: syz-executor.0/379/0x00000002 [ 47.145039][ T379] Modules linked in: [ 47.148917][ T379] Preemption disabled at: [ 47.148925][ T379] [] unmap_page_range+0xa2f/0x1ca0 [ 47.160004][ T379] CPU: 0 PID: 379 Comm: syz-executor.0 Tainted: G W 5.15.130-syzkaller-1068695-g1317bd27a72f #0 [ 47.171806][ T379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023 [ 47.182313][ T379] Call Trace: [ 47.185520][ T379] [ 47.188386][ T379] dump_stack_lvl+0x151/0x1b7 [ 47.193507][ T379] ? unmap_page_range+0xa2f/0x1ca0 [ 47.198461][ T379] ? unmap_page_range+0xa2f/0x1ca0 [ 47.203487][ T379] ? io_uring_drop_tctx_refs+0x190/0x190 [ 47.209129][ T379] ? unmap_page_range+0xa2f/0x1ca0 [ 47.214076][ T379] dump_stack+0x15/0x17 [ 47.218074][ T379] __schedule_bug+0x195/0x260 [ 47.222580][ T379] ? irqentry_exit+0x30/0x40 [ 47.227011][ T379] ? sysvec_apic_timer_interrupt+0x55/0xc0 [ 47.233008][ T379] ? ttwu_queue_wakelist+0x510/0x510 [ 47.238128][ T379] __schedule+0xd0b/0x1580 [ 47.242544][ T379] ? mutex_spin_on_owner+0x479/0x500 [ 47.247670][ T379] ? release_firmware_map_entry+0x18f/0x18f [ 47.253420][ T379] ? __mutex_add_waiter+0x1b5/0x310 [ 47.258434][ T379] ? __ww_mutex_check_waiters+0x350/0x350 [ 47.263990][ T379] schedule+0x11f/0x1e0 [ 47.267971][ T379] schedule_preempt_disabled+0x13/0x20 [ 47.273265][ T379] __mutex_lock+0x90e/0x1870 [ 47.277788][ T379] ? __mmput+0x95/0x310 [ 47.281858][ T379] ? mmput+0x5b/0x170 [ 47.285680][ T379] ? __ww_mutex_lock_interruptible_slowpath+0x20/0x20 [ 47.292364][ T379] ? exit_to_user_mode_loop+0xa0/0xe0 [ 47.297569][ T379] ? exit_to_user_mode_prepare+0x5a/0xa0 [ 47.303037][ T379] ? syscall_exit_to_user_mode+0x26/0x160 [ 47.308770][ T379] ? do_syscall_64+0x49/0xb0 [ 47.313207][ T379] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 47.319189][ T379] __mutex_lock_slowpath+0xe/0x10 [ 47.324136][ T379] mutex_lock+0x135/0x1e0 [ 47.328297][ T379] ? slab_post_alloc_hook+0x72/0x2c0 [ 47.333506][ T379] ? f2fs_register_inmem_page+0x13f/0x4b0 [ 47.339057][ T379] ? wait_for_completion_killable_timeout+0x10/0x10 [ 47.345481][ T379] ? kmem_cache_alloc+0xf5/0x200 [ 47.350254][ T379] f2fs_register_inmem_page+0x22c/0x4b0 [ 47.355896][ T379] f2fs_set_data_page_dirty+0x591/0x730 [ 47.361282][ T379] set_page_dirty+0x1a4/0x300 [ 47.365786][ T379] unmap_page_range+0xf33/0x1ca0 [ 47.370604][ T379] ? __activate_page+0xd24/0x1110 [ 47.375509][ T379] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 47.381680][ T379] ? pagevec_lru_move_fn+0x48d/0x520 [ 47.386790][ T379] ? __munlock_isolated_page+0x210/0x210 [ 47.392375][ T379] ? uprobe_munmap+0x18d/0x450 [ 47.396978][ T379] ? rotate_reclaimable_page+0x670/0x670 [ 47.402535][ T379] unmap_vmas+0x389/0x560 [ 47.406696][ T379] ? unmap_page_range+0x1ca0/0x1ca0 [ 47.411948][ T379] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 47.417244][ T379] exit_mmap+0x3d8/0x6f0 [ 47.421435][ T379] ? vm_brk+0x30/0x30 [ 47.425218][ T379] ? mutex_unlock+0xb2/0x260 [ 47.429648][ T379] ? uprobe_clear_state+0x2cd/0x320 [ 47.434940][ T379] __mmput+0x95/0x310 [ 47.438896][ T379] mmput+0x5b/0x170 [ 47.442527][ T379] do_exit+0xbb4/0x2b60 [ 47.446607][ T379] ? splice_direct_to_actor+0x957/0xbe0 [ 47.452087][ T379] ? put_task_struct+0x80/0x80 [ 47.456948][ T379] ? __kasan_check_write+0x14/0x20 [ 47.462124][ T379] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 47.467250][ T379] ? _raw_spin_lock_irqsave+0x210/0x210 [ 47.472793][ T379] do_group_exit+0x141/0x310 [ 47.477169][ T379] get_signal+0x7a3/0x1630 [ 47.481413][ T379] ? do_splice_direct+0x296/0x3c0 [ 47.486316][ T379] arch_do_signal_or_restart+0xbd/0x1680 [ 47.491930][ T379] ? fput_many+0x160/0x1b0 [ 47.497106][ T379] ? fput+0x1a/0x20 [ 47.500747][ T379] ? do_sendfile+0xce7/0xfe0 [ 47.505175][ T379] ? notify_change+0xdb0/0x1030 [ 47.509898][ T379] ? fput_many+0x160/0x1b0 [ 47.514205][ T379] ? get_sigframe_size+0x10/0x10 [ 47.518992][ T379] ? __se_sys_futex+0x37b/0x3e0 [ 47.523751][ T379] ? fpu_flush_thread+0xf0/0xf0 [ 47.528448][ T379] exit_to_user_mode_loop+0xa0/0xe0 [ 47.533580][ T379] exit_to_user_mode_prepare+0x5a/0xa0 [ 47.538880][ T379] syscall_exit_to_user_mode+0x26/0x160 [ 47.544241][ T379] do_syscall_64+0x49/0xb0 [ 47.548486][ T379] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 47.554401][ T379] RIP: 0033:0x7f22172f68d9 [ 47.558641][ T379] Code: Unable to access opcode bytes at RIP 0x7f22172f68af. [ 47.565941][ T379] RSP: 002b:00007f2216e79178 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 47.574261][ T379] RAX: fffffffffffffe00 RBX: 00007f2217415f88 RCX: 00007f22172f68d9 [ 47.582074][ T379] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2217415f88 [ 47.589885][ T379] RBP: 00007f2217415f80 R08: 00007f2216e796c0 R09: 00007f2216e796c0 [ 47.597782][ T379] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2217415f8c [ 47.605684][ T379] R13: 000000000000000b R14: 00007ffdccb0bc20 R15: 00007ffdccb0bd08 [ 47.613499][ T379] [ 47.989533][ T387] loop0: detected capacity change from 0 to 63271 [ 47.996950][ T387] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 48.005390][ T387] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 48.014251][ T387] F2FS-fs (loop0): invalid crc value [ 48.020784][ T387] F2FS-fs (loop0): Found nat_bits in checkpoint [ 48.051555][ T387] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 48.058889][ T387] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 48.153663][ T392] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=1 2023/09/04 22:49:56 executed programs: 5 [ 48.698377][ T394] loop0: detected capacity change from 0 to 63271 [ 48.705321][ T394] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 48.713854][ T394] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 48.723019][ T394] F2FS-fs (loop0): invalid crc value [ 48.729518][ T394] F2FS-fs (loop0): Found nat_bits in checkpoint [ 48.760359][ T394] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 48.767247][ T394] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 48.856983][ T400] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=1 [ 49.418255][ T402] loop0: detected capacity change from 0 to 63271 [ 49.425321][ T402] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 49.433786][ T402] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 49.442919][ T402] F2FS-fs (loop0): invalid crc value [ 49.449179][ T402] F2FS-fs (loop0): Found nat_bits in checkpoint [ 49.480270][ T402] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 49.487978][ T402] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 49.577699][ T407] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=1 [ 49.769836][ T402] BUG: scheduling while atomic: syz-executor.0/402/0x00000002 [ 49.777238][ T402] Modules linked in: [ 49.780984][ T402] Preemption disabled at: [ 49.780992][ T402] [] unmap_page_range+0xa2f/0x1ca0 [ 49.791769][ T402] CPU: 0 PID: 402 Comm: syz-executor.0 Tainted: G W 5.15.130-syzkaller-1068695-g1317bd27a72f #0 [ 49.803477][ T402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023 [ 49.813491][ T402] Call Trace: [ 49.816608][ T402] [ 49.819392][ T402] dump_stack_lvl+0x151/0x1b7 [ 49.823989][ T402] ? unmap_page_range+0xa2f/0x1ca0 [ 49.829379][ T402] ? unmap_page_range+0xa2f/0x1ca0 [ 49.834330][ T402] ? io_uring_drop_tctx_refs+0x190/0x190 [ 49.839801][ T402] ? unmap_page_range+0xa2f/0x1ca0 [ 49.844740][ T402] dump_stack+0x15/0x17 [ 49.848736][ T402] __schedule_bug+0x195/0x260 [ 49.853245][ T402] ? is_bpf_text_address+0x172/0x190 [ 49.858373][ T402] ? ttwu_queue_wakelist+0x510/0x510 [ 49.863495][ T402] ? __kernel_text_address+0x9b/0x110 [ 49.868695][ T402] ? unwind_get_return_address+0x4d/0x90 [ 49.874163][ T402] __schedule+0xd0b/0x1580 [ 49.878416][ T402] ? mutex_spin_on_owner+0x479/0x500 [ 49.883540][ T402] ? release_firmware_map_entry+0x18f/0x18f [ 49.889274][ T402] ? __mutex_add_waiter+0x1b5/0x310 [ 49.894385][ T402] ? __ww_mutex_check_waiters+0x350/0x350 [ 49.900041][ T402] schedule+0x11f/0x1e0 [ 49.904118][ T402] schedule_preempt_disabled+0x13/0x20 [ 49.909401][ T402] __mutex_lock+0x90e/0x1870 [ 49.913833][ T402] ? __mmput+0x95/0x310 [ 49.917823][ T402] ? mmput+0x5b/0x170 [ 49.921643][ T402] ? __ww_mutex_lock_interruptible_slowpath+0x20/0x20 [ 49.928235][ T402] ? exit_to_user_mode_loop+0xa0/0xe0 [ 49.933451][ T402] ? exit_to_user_mode_prepare+0x5a/0xa0 [ 49.938910][ T402] ? syscall_exit_to_user_mode+0x26/0x160 [ 49.944560][ T402] ? do_syscall_64+0x49/0xb0 [ 49.948987][ T402] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 49.954895][ T402] __mutex_lock_slowpath+0xe/0x10 [ 49.959843][ T402] mutex_lock+0x135/0x1e0 [ 49.964004][ T402] ? slab_post_alloc_hook+0x72/0x2c0 [ 49.969210][ T402] ? f2fs_register_inmem_page+0x13f/0x4b0 [ 49.974951][ T402] ? wait_for_completion_killable_timeout+0x10/0x10 [ 49.981856][ T402] ? kmem_cache_alloc+0xf5/0x200 [ 49.986616][ T402] f2fs_register_inmem_page+0x22c/0x4b0 [ 49.992116][ T402] f2fs_set_data_page_dirty+0x591/0x730 [ 49.997672][ T402] set_page_dirty+0x1a4/0x300 [ 50.002181][ T402] unmap_page_range+0xf33/0x1ca0 [ 50.006953][ T402] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 50.013111][ T402] ? plist_del+0x40e/0x420 [ 50.017365][ T402] ? __munlock_isolated_page+0x210/0x210 [ 50.022879][ T402] ? uprobe_munmap+0x18d/0x450 [ 50.027436][ T402] unmap_vmas+0x389/0x560 [ 50.031601][ T402] ? unmap_page_range+0x1ca0/0x1ca0 [ 50.036693][ T402] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 50.042369][ T402] exit_mmap+0x3d8/0x6f0 [ 50.046689][ T402] ? vm_brk+0x30/0x30 [ 50.050505][ T402] ? mutex_unlock+0xb2/0x260 [ 50.055023][ T402] ? uprobe_clear_state+0x2cd/0x320 [ 50.060056][ T402] __mmput+0x95/0x310 [ 50.063879][ T402] mmput+0x5b/0x170 [ 50.067526][ T402] do_exit+0xbb4/0x2b60 [ 50.071518][ T402] ? splice_direct_to_actor+0x957/0xbe0 [ 50.077100][ T402] ? put_task_struct+0x80/0x80 [ 50.081834][ T402] ? __kasan_check_write+0x14/0x20 [ 50.086758][ T402] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 50.092068][ T402] ? _raw_spin_lock_irqsave+0x210/0x210 [ 50.097542][ T402] do_group_exit+0x141/0x310 [ 50.101974][ T402] get_signal+0x7a3/0x1630 [ 50.106222][ T402] ? do_splice_direct+0x296/0x3c0 [ 50.111080][ T402] arch_do_signal_or_restart+0xbd/0x1680 [ 50.116657][ T402] ? fput_many+0x160/0x1b0 [ 50.120905][ T402] ? fput+0x1a/0x20 [ 50.124560][ T402] ? do_sendfile+0xce7/0xfe0 [ 50.128975][ T402] ? notify_change+0xdb0/0x1030 [ 50.133837][ T402] ? fput_many+0x160/0x1b0 [ 50.138089][ T402] ? get_sigframe_size+0x10/0x10 [ 50.142873][ T402] ? __se_sys_futex+0x37b/0x3e0 [ 50.147661][ T402] ? fpu_flush_thread+0xf0/0xf0 [ 50.152339][ T402] exit_to_user_mode_loop+0xa0/0xe0 [ 50.157365][ T402] exit_to_user_mode_prepare+0x5a/0xa0 [ 50.163048][ T402] syscall_exit_to_user_mode+0x26/0x160 [ 50.168521][ T402] do_syscall_64+0x49/0xb0 [ 50.172762][ T402] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 50.178494][ T402] RIP: 0033:0x7f22172f68d9 [ 50.182739][ T402] Code: Unable to access opcode bytes at RIP 0x7f22172f68af. [ 50.189946][ T402] RSP: 002b:00007f2216e79178 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 50.198202][ T402] RAX: fffffffffffffe00 RBX: 00007f2217415f88 RCX: 00007f22172f68d9 [ 50.206098][ T402] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2217415f88 [ 50.213996][ T402] RBP: 00007f2217415f80 R08: 00007f2216e796c0 R09: 00007f2216e796c0 [ 50.222025][ T402] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2217415f8c [ 50.229901][ T402] R13: 000000000000000b R14: 00007ffdccb0bc20 R15: 00007ffdccb0bd08 [ 50.237715][ T402] [ 50.242030][ T402] check_preemption_disabled: 7162 callbacks suppressed [ 50.242045][ T402] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-executor.0/402 [ 50.257853][ T402] caller is __this_cpu_preempt_check+0x13/0x20 [ 50.263821][ T402] CPU: 0 PID: 402 Comm: syz-executor.0 Tainted: G W 5.15.130-syzkaller-1068695-g1317bd27a72f #0 [ 50.275534][ T402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023 [ 50.285429][ T402] Call Trace: [ 50.288561][ T402] [ 50.291333][ T402] dump_stack_lvl+0x151/0x1b7 [ 50.295844][ T402] ? io_uring_drop_tctx_refs+0x190/0x190 [ 50.301313][ T402] dump_stack+0x15/0x17 [ 50.305414][ T402] check_preemption_disabled+0x109/0x110 [ 50.310862][ T402] __this_cpu_preempt_check+0x13/0x20 [ 50.316067][ T402] __mod_node_page_state+0x6d/0xf0 [ 50.321015][ T402] __mod_lruvec_page_state+0x131/0x1c0 [ 50.326309][ T402] ? page_remove_rmap+0x783/0x1420 [ 50.331345][ T402] page_remove_rmap+0xb49/0x1420 [ 50.336120][ T402] ? page_add_file_rmap+0x8e0/0x8e0 [ 50.341158][ T402] ? mark_page_accessed+0x56b/0xbf0 [ 50.346427][ T402] ? __activate_page+0x10d0/0x1110 [ 50.351323][ T402] unmap_page_range+0x110a/0x1ca0 [ 50.356347][ T402] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 50.362505][ T402] ? plist_del+0x40e/0x420 [ 50.366758][ T402] ? __munlock_isolated_page+0x210/0x210 [ 50.372310][ T402] ? uprobe_munmap+0x18d/0x450 [ 50.377255][ T402] unmap_vmas+0x389/0x560 [ 50.381422][ T402] ? unmap_page_range+0x1ca0/0x1ca0 [ 50.386458][ T402] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 50.391754][ T402] exit_mmap+0x3d8/0x6f0 [ 50.395835][ T402] ? vm_brk+0x30/0x30 [ 50.399652][ T402] ? mutex_unlock+0xb2/0x260 [ 50.404079][ T402] ? uprobe_clear_state+0x2cd/0x320 [ 50.409114][ T402] __mmput+0x95/0x310 [ 50.412930][ T402] mmput+0x5b/0x170 [ 50.416576][ T402] do_exit+0xbb4/0x2b60 [ 50.420571][ T402] ? splice_direct_to_actor+0x957/0xbe0 [ 50.425954][ T402] ? put_task_struct+0x80/0x80 [ 50.430553][ T402] ? __kasan_check_write+0x14/0x20 [ 50.435671][ T402] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 50.440645][ T402] ? _raw_spin_lock_irqsave+0x210/0x210 [ 50.446085][ T402] do_group_exit+0x141/0x310 [ 50.450598][ T402] get_signal+0x7a3/0x1630 [ 50.454850][ T402] ? do_splice_direct+0x296/0x3c0 [ 50.459801][ T402] arch_do_signal_or_restart+0xbd/0x1680 [ 50.465527][ T402] ? fput_many+0x160/0x1b0 [ 50.469780][ T402] ? fput+0x1a/0x20 [ 50.473428][ T402] ? do_sendfile+0xce7/0xfe0 [ 50.477945][ T402] ? notify_change+0xdb0/0x1030 [ 50.482797][ T402] ? fput_many+0x160/0x1b0 [ 50.487050][ T402] ? get_sigframe_size+0x10/0x10 [ 50.491827][ T402] ? __se_sys_futex+0x37b/0x3e0 [ 50.496865][ T402] ? fpu_flush_thread+0xf0/0xf0 [ 50.501642][ T402] exit_to_user_mode_loop+0xa0/0xe0 [ 50.506673][ T402] exit_to_user_mode_prepare+0x5a/0xa0 [ 50.512061][ T402] syscall_exit_to_user_mode+0x26/0x160 [ 50.517595][ T402] do_syscall_64+0x49/0xb0 [ 50.521876][ T402] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 50.527612][ T402] RIP: 0033:0x7f22172f68d9 [ 50.531947][ T402] Code: Unable to access opcode bytes at RIP 0x7f22172f68af. [ 50.539162][ T402] RSP: 002b:00007f2216e79178 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 50.547499][ T402] RAX: fffffffffffffe00 RBX: 00007f2217415f88 RCX: 00007f22172f68d9 [ 50.555313][ T402] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2217415f88 [ 50.563419][ T402] RBP: 00007f2217415f80 R08: 00007f2216e796c0 R09: 00007f2216e796c0 [ 50.571191][ T402] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2217415f8c [ 50.579006][ T402] R13: 000000000000000b R14: 00007ffdccb0bc20 R15: 00007ffdccb0bd08 [ 50.586822][ T402] [ 50.589934][ T402] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-executor.0/402 [ 50.599135][ T402] caller is __this_cpu_preempt_check+0x13/0x20 [ 50.605134][ T402] CPU: 0 PID: 402 Comm: syz-executor.0 Tainted: G W 5.15.130-syzkaller-1068695-g1317bd27a72f #0 [ 50.616760][ T402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023 [ 50.627015][ T402] Call Trace: [ 50.630402][ T402] [ 50.633178][ T402] dump_stack_lvl+0x151/0x1b7 [ 50.637717][ T402] ? io_uring_drop_tctx_refs+0x190/0x190 [ 50.643375][ T402] dump_stack+0x15/0x17 [ 50.647429][ T402] check_preemption_disabled+0x109/0x110 [ 50.652897][ T402] __this_cpu_preempt_check+0x13/0x20 [ 50.658109][ T402] __mod_node_page_state+0x89/0xf0 [ 50.663140][ T402] __mod_lruvec_page_state+0x131/0x1c0 [ 50.668440][ T402] ? page_remove_rmap+0x783/0x1420 [ 50.673483][ T402] page_remove_rmap+0xb49/0x1420 [ 50.678241][ T402] ? page_add_file_rmap+0x8e0/0x8e0 [ 50.683451][ T402] ? mark_page_accessed+0x56b/0xbf0 [ 50.688481][ T402] ? __activate_page+0x10d0/0x1110 [ 50.693436][ T402] unmap_page_range+0x110a/0x1ca0 [ 50.698293][ T402] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 50.704461][ T402] ? plist_del+0x40e/0x420 [ 50.708702][ T402] ? __munlock_isolated_page+0x210/0x210 [ 50.714269][ T402] ? uprobe_munmap+0x18d/0x450 [ 50.718859][ T402] unmap_vmas+0x389/0x560 [ 50.723031][ T402] ? unmap_page_range+0x1ca0/0x1ca0 [ 50.728063][ T402] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 50.733356][ T402] exit_mmap+0x3d8/0x6f0 [ 50.737433][ T402] ? vm_brk+0x30/0x30 [ 50.741261][ T402] ? mutex_unlock+0xb2/0x260 [ 50.745684][ T402] ? uprobe_clear_state+0x2cd/0x320 [ 50.750806][ T402] __mmput+0x95/0x310 [ 50.754618][ T402] mmput+0x5b/0x170 [ 50.758412][ T402] do_exit+0xbb4/0x2b60 [ 50.762405][ T402] ? splice_direct_to_actor+0x957/0xbe0 [ 50.767735][ T402] ? put_task_struct+0x80/0x80 [ 50.772338][ T402] ? __kasan_check_write+0x14/0x20 [ 50.777273][ T402] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 50.782231][ T402] ? _raw_spin_lock_irqsave+0x210/0x210 [ 50.787689][ T402] do_group_exit+0x141/0x310 [ 50.792116][ T402] get_signal+0x7a3/0x1630 [ 50.796375][ T402] ? do_splice_direct+0x296/0x3c0 [ 50.801232][ T402] arch_do_signal_or_restart+0xbd/0x1680 [ 50.806708][ T402] ? fput_many+0x160/0x1b0 [ 50.811044][ T402] ? fput+0x1a/0x20 [ 50.814690][ T402] ? do_sendfile+0xce7/0xfe0 [ 50.819193][ T402] ? notify_change+0xdb0/0x1030 [ 50.824939][ T402] ? fput_many+0x160/0x1b0 [ 50.829188][ T402] ? get_sigframe_size+0x10/0x10 [ 50.833963][ T402] ? __se_sys_futex+0x37b/0x3e0 [ 50.838648][ T402] ? fpu_flush_thread+0xf0/0xf0 [ 50.843333][ T402] exit_to_user_mode_loop+0xa0/0xe0 [ 50.848462][ T402] exit_to_user_mode_prepare+0x5a/0xa0 [ 50.853845][ T402] syscall_exit_to_user_mode+0x26/0x160 [ 50.859312][ T402] do_syscall_64+0x49/0xb0 [ 50.863902][ T402] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 50.869744][ T402] RIP: 0033:0x7f22172f68d9 [ 50.873984][ T402] Code: Unable to access opcode bytes at RIP 0x7f22172f68af. [ 50.881731][ T402] RSP: 002b:00007f2216e79178 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 50.890061][ T402] RAX: fffffffffffffe00 RBX: 00007f2217415f88 RCX: 00007f22172f68d9 [ 50.898155][ T402] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2217415f88 [ 50.906137][ T402] RBP: 00007f2217415f80 R08: 00007f2216e796c0 R09: 00007f2216e796c0 [ 50.913953][ T402] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2217415f8c [ 50.921764][ T402] R13: 000000000000000b R14: 00007ffdccb0bc20 R15: 00007ffdccb0bd08 [ 50.929668][ T402] [ 50.932719][ T402] BUG: using __this_cpu_write() in preemptible [00000000] code: syz-executor.0/402 [ 50.941982][ T402] caller is __this_cpu_preempt_check+0x13/0x20 [ 50.948164][ T402] CPU: 0 PID: 402 Comm: syz-executor.0 Tainted: G W 5.15.130-syzkaller-1068695-g1317bd27a72f #0 [ 50.959650][ T402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023 [ 50.969539][ T402] Call Trace: [ 50.972670][ T402] [ 50.975464][ T402] dump_stack_lvl+0x151/0x1b7 [ 50.979958][ T402] ? io_uring_drop_tctx_refs+0x190/0x190 [ 50.985597][ T402] dump_stack+0x15/0x17 [ 50.989596][ T402] check_preemption_disabled+0x109/0x110 [ 50.995055][ T402] __this_cpu_preempt_check+0x13/0x20 [ 51.000366][ T402] __mod_node_page_state+0xac/0xf0 [ 51.005301][ T402] __mod_lruvec_page_state+0x131/0x1c0 [ 51.010593][ T402] ? page_remove_rmap+0x783/0x1420 [ 51.015542][ T402] page_remove_rmap+0xb49/0x1420 [ 51.020316][ T402] ? page_add_file_rmap+0x8e0/0x8e0 [ 51.025435][ T402] ? mark_page_accessed+0x56b/0xbf0 [ 51.030473][ T402] ? __activate_page+0x10d0/0x1110 [ 51.035421][ T402] unmap_page_range+0x110a/0x1ca0 [ 51.040279][ T402] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 51.046611][ T402] ? plist_del+0x40e/0x420 [ 51.050863][ T402] ? __munlock_isolated_page+0x210/0x210 [ 51.056518][ T402] ? uprobe_munmap+0x18d/0x450 [ 51.061121][ T402] unmap_vmas+0x389/0x560 [ 51.065410][ T402] ? unmap_page_range+0x1ca0/0x1ca0 [ 51.070414][ T402] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 51.075699][ T402] exit_mmap+0x3d8/0x6f0 [ 51.079788][ T402] ? vm_brk+0x30/0x30 [ 51.083602][ T402] ? mutex_unlock+0xb2/0x260 [ 51.088289][ T402] ? uprobe_clear_state+0x2cd/0x320 [ 51.093405][ T402] __mmput+0x95/0x310 [ 51.097399][ T402] mmput+0x5b/0x170 [ 51.101226][ T402] do_exit+0xbb4/0x2b60 [ 51.105213][ T402] ? splice_direct_to_actor+0x957/0xbe0 [ 51.110711][ T402] ? put_task_struct+0x80/0x80 [ 51.115482][ T402] ? __kasan_check_write+0x14/0x20 [ 51.120430][ T402] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 51.125451][ T402] ? _raw_spin_lock_irqsave+0x210/0x210 [ 51.130762][ T402] do_group_exit+0x141/0x310 [ 51.135188][ T402] get_signal+0x7a3/0x1630 [ 51.139436][ T402] ? do_splice_direct+0x296/0x3c0 [ 51.144298][ T402] arch_do_signal_or_restart+0xbd/0x1680 [ 51.149769][ T402] ? fput_many+0x160/0x1b0 [ 51.154018][ T402] ? fput+0x1a/0x20 [ 51.157665][ T402] ? do_sendfile+0xce7/0xfe0 [ 51.162089][ T402] ? notify_change+0xdb0/0x1030 [ 51.166779][ T402] ? fput_many+0x160/0x1b0 [ 51.171033][ T402] ? get_sigframe_size+0x10/0x10 [ 51.175803][ T402] ? __se_sys_futex+0x37b/0x3e0 [ 51.180495][ T402] ? fpu_flush_thread+0xf0/0xf0 [ 51.185177][ T402] exit_to_user_mode_loop+0xa0/0xe0 [ 51.190216][ T402] exit_to_user_mode_prepare+0x5a/0xa0 [ 51.195506][ T402] syscall_exit_to_user_mode+0x26/0x160 [ 51.200888][ T402] do_syscall_64+0x49/0xb0 [ 51.205140][ T402] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 51.210868][ T402] RIP: 0033:0x7f22172f68d9 [ 51.215123][ T402] Code: Unable to access opcode bytes at RIP 0x7f22172f68af. [ 51.222322][ T402] RSP: 002b:00007f2216e79178 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 51.230574][ T402] RAX: fffffffffffffe00 RBX: 00007f2217415f88 RCX: 00007f22172f68d9 [ 51.238382][ T402] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2217415f88 [ 51.246466][ T402] RBP: 00007f2217415f80 R08: 00007f2216e796c0 R09: 00007f2216e796c0 [ 51.254452][ T402] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2217415f8c [ 51.262261][ T402] R13: 000000000000000b R14: 00007ffdccb0bc20 R15: 00007ffdccb0bd08 [ 51.270075][ T402] [ 51.273108][ T402] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor.0/402 [ 51.282078][ T402] caller is __this_cpu_preempt_check+0x13/0x20 [ 51.288152][ T402] CPU: 0 PID: 402 Comm: syz-executor.0 Tainted: G W 5.15.130-syzkaller-1068695-g1317bd27a72f #0 [ 51.299672][ T402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023 [ 51.309564][ T402] Call Trace: [ 51.312687][ T402] [ 51.315466][ T402] dump_stack_lvl+0x151/0x1b7 [ 51.319986][ T402] ? io_uring_drop_tctx_refs+0x190/0x190 [ 51.325447][ T402] dump_stack+0x15/0x17 [ 51.329438][ T402] check_preemption_disabled+0x109/0x110 [ 51.334906][ T402] __this_cpu_preempt_check+0x13/0x20 [ 51.340116][ T402] __mod_memcg_lruvec_state+0x4f/0x1b0 [ 51.345408][ T402] ? __mod_node_page_state+0xac/0xf0 [ 51.350531][ T402] __mod_lruvec_page_state+0x141/0x1c0 [ 51.355823][ T402] ? page_remove_rmap+0x783/0x1420 [ 51.360773][ T402] page_remove_rmap+0xb49/0x1420 [ 51.365545][ T402] ? page_add_file_rmap+0x8e0/0x8e0 [ 51.370579][ T402] ? mark_page_accessed+0x56b/0xbf0 [ 51.375612][ T402] ? __activate_page+0x10d0/0x1110 [ 51.380562][ T402] unmap_page_range+0x110a/0x1ca0 [ 51.385520][ T402] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 51.391670][ T402] ? plist_del+0x40e/0x420 [ 51.396067][ T402] ? __munlock_isolated_page+0x210/0x210 [ 51.401477][ T402] ? uprobe_munmap+0x18d/0x450 [ 51.406078][ T402] unmap_vmas+0x389/0x560 [ 51.410245][ T402] ? unmap_page_range+0x1ca0/0x1ca0 [ 51.415279][ T402] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 51.420572][ T402] exit_mmap+0x3d8/0x6f0 [ 51.424656][ T402] ? vm_brk+0x30/0x30 [ 51.428507][ T402] ? mutex_unlock+0xb2/0x260 [ 51.433010][ T402] ? uprobe_clear_state+0x2cd/0x320 [ 51.438029][ T402] __mmput+0x95/0x310 [ 51.441947][ T402] mmput+0x5b/0x170 [ 51.445665][ T402] do_exit+0xbb4/0x2b60 [ 51.449659][ T402] ? splice_direct_to_actor+0x957/0xbe0 [ 51.455214][ T402] ? put_task_struct+0x80/0x80 [ 51.459816][ T402] ? __kasan_check_write+0x14/0x20 [ 51.464759][ T402] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 51.469704][ T402] ? _raw_spin_lock_irqsave+0x210/0x210 [ 51.475089][ T402] do_group_exit+0x141/0x310 [ 51.479513][ T402] get_signal+0x7a3/0x1630 [ 51.483767][ T402] ? do_splice_direct+0x296/0x3c0 [ 51.488629][ T402] arch_do_signal_or_restart+0xbd/0x1680 [ 51.494181][ T402] ? fput_many+0x160/0x1b0 [ 51.498520][ T402] ? fput+0x1a/0x20 [ 51.502174][ T402] ? do_sendfile+0xce7/0xfe0 [ 51.506600][ T402] ? notify_change+0xdb0/0x1030 [ 51.511299][ T402] ? fput_many+0x160/0x1b0 [ 51.515619][ T402] ? get_sigframe_size+0x10/0x10 [ 51.520395][ T402] ? __se_sys_futex+0x37b/0x3e0 [ 51.525082][ T402] ? fpu_flush_thread+0xf0/0xf0 [ 51.529768][ T402] exit_to_user_mode_loop+0xa0/0xe0 [ 51.534909][ T402] exit_to_user_mode_prepare+0x5a/0xa0 [ 51.540205][ T402] syscall_exit_to_user_mode+0x26/0x160 [ 51.545583][ T402] do_syscall_64+0x49/0xb0 [ 51.549960][ T402] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 51.555847][ T402] RIP: 0033:0x7f22172f68d9 [ 51.560100][ T402] Code: Unable to access opcode bytes at RIP 0x7f22172f68af. [ 51.567391][ T402] RSP: 002b:00007f2216e79178 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 51.575636][ T402] RAX: fffffffffffffe00 RBX: 00007f2217415f88 RCX: 00007f22172f68d9 [ 51.583447][ T402] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2217415f88 [ 51.591431][ T402] RBP: 00007f2217415f80 R08: 00007f2216e796c0 R09: 00007f2216e796c0 [ 51.599244][ T402] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2217415f8c [ 51.607062][ T402] R13: 000000000000000b R14: 00007ffdccb0bc20 R15: 00007ffdccb0bd08 [ 51.614870][ T402] [ 51.617946][ T402] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor.0/402 [ 51.626956][ T402] caller is __this_cpu_preempt_check+0x13/0x20 [ 51.633231][ T402] CPU: 0 PID: 402 Comm: syz-executor.0 Tainted: G W 5.15.130-syzkaller-1068695-g1317bd27a72f #0 [ 51.644739][ T402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023 [ 51.654636][ T402] Call Trace: [ 51.657764][ T402] [ 51.660536][ T402] dump_stack_lvl+0x151/0x1b7 [ 51.665073][ T402] ? io_uring_drop_tctx_refs+0x190/0x190 [ 51.670614][ T402] dump_stack+0x15/0x17 [ 51.674598][ T402] check_preemption_disabled+0x109/0x110 [ 51.680326][ T402] __this_cpu_preempt_check+0x13/0x20 [ 51.685629][ T402] __mod_memcg_lruvec_state+0xa2/0x1b0 [ 51.690922][ T402] __mod_lruvec_page_state+0x141/0x1c0 [ 51.696215][ T402] ? page_remove_rmap+0x783/0x1420 [ 51.701301][ T402] page_remove_rmap+0xb49/0x1420 [ 51.706126][ T402] ? page_add_file_rmap+0x8e0/0x8e0 [ 51.711185][ T402] ? mark_page_accessed+0x56b/0xbf0 [ 51.716305][ T402] ? __activate_page+0x10d0/0x1110 [ 51.721254][ T402] unmap_page_range+0x110a/0x1ca0 [ 51.726126][ T402] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 51.732384][ T402] ? plist_del+0x40e/0x420 [ 51.736641][ T402] ? __munlock_isolated_page+0x210/0x210 [ 51.742104][ T402] ? uprobe_munmap+0x18d/0x450 [ 51.746715][ T402] unmap_vmas+0x389/0x560 [ 51.750872][ T402] ? unmap_page_range+0x1ca0/0x1ca0 [ 51.756020][ T402] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 51.761312][ T402] exit_mmap+0x3d8/0x6f0 [ 51.765391][ T402] ? vm_brk+0x30/0x30 [ 51.769213][ T402] ? mutex_unlock+0xb2/0x260 [ 51.773725][ T402] ? uprobe_clear_state+0x2cd/0x320 [ 51.778761][ T402] __mmput+0x95/0x310 [ 51.782589][ T402] mmput+0x5b/0x170 [ 51.786221][ T402] do_exit+0xbb4/0x2b60 [ 51.790221][ T402] ? splice_direct_to_actor+0x957/0xbe0 [ 51.795603][ T402] ? put_task_struct+0x80/0x80 [ 51.800200][ T402] ? __kasan_check_write+0x14/0x20 [ 51.805165][ T402] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 51.810207][ T402] ? _raw_spin_lock_irqsave+0x210/0x210 [ 51.815568][ T402] do_group_exit+0x141/0x310 [ 51.820247][ T402] get_signal+0x7a3/0x1630 [ 51.824502][ T402] ? do_splice_direct+0x296/0x3c0 [ 51.829371][ T402] arch_do_signal_or_restart+0xbd/0x1680 [ 51.835002][ T402] ? fput_many+0x160/0x1b0 [ 51.839254][ T402] ? fput+0x1a/0x20 [ 51.844288][ T402] ? do_sendfile+0xce7/0xfe0 [ 51.848714][ T402] ? notify_change+0xdb0/0x1030 [ 51.853403][ T402] ? fput_many+0x160/0x1b0 [ 51.857657][ T402] ? get_sigframe_size+0x10/0x10 [ 51.862600][ T402] ? __se_sys_futex+0x37b/0x3e0 [ 51.867288][ T402] ? fpu_flush_thread+0xf0/0xf0 [ 51.871988][ T402] exit_to_user_mode_loop+0xa0/0xe0 [ 51.877010][ T402] exit_to_user_mode_prepare+0x5a/0xa0 [ 51.882319][ T402] syscall_exit_to_user_mode+0x26/0x160 [ 51.887762][ T402] do_syscall_64+0x49/0xb0 [ 51.892389][ T402] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 51.898378][ T402] RIP: 0033:0x7f22172f68d9 [ 51.902630][ T402] Code: Unable to access opcode bytes at RIP 0x7f22172f68af. [ 51.909836][ T402] RSP: 002b:00007f2216e79178 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 51.918164][ T402] RAX: fffffffffffffe00 RBX: 00007f2217415f88 RCX: 00007f22172f68d9 [ 51.925985][ T402] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2217415f88 [ 51.933781][ T402] RBP: 00007f2217415f80 R08: 00007f2216e796c0 R09: 00007f2216e796c0 [ 51.941592][ T402] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2217415f8c [ 51.949431][ T402] R13: 000000000000000b R14: 00007ffdccb0bc20 R15: 00007ffdccb0bd08 [ 51.957223][ T402] [ 51.960139][ T402] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.0/402 [ 51.969320][ T402] caller is debug_smp_processor_id+0x17/0x20 [ 51.975102][ T402] CPU: 0 PID: 402 Comm: syz-executor.0 Tainted: G W 5.15.130-syzkaller-1068695-g1317bd27a72f #0 [ 51.986916][ T402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023 [ 51.996819][ T402] Call Trace: [ 51.999934][ T402] [ 52.002712][ T402] dump_stack_lvl+0x151/0x1b7 [ 52.007310][ T402] ? io_uring_drop_tctx_refs+0x190/0x190 [ 52.012897][ T402] dump_stack+0x15/0x17 [ 52.016856][ T402] check_preemption_disabled+0x109/0x110 [ 52.022420][ T402] debug_smp_processor_id+0x17/0x20 [ 52.027448][ T402] __mod_memcg_lruvec_state+0x106/0x1b0 [ 52.032863][ T402] __mod_lruvec_page_state+0x141/0x1c0 [ 52.038441][ T402] ? page_remove_rmap+0x783/0x1420 [ 52.043521][ T402] page_remove_rmap+0xb49/0x1420 [ 52.048620][ T402] ? page_add_file_rmap+0x8e0/0x8e0 [ 52.053584][ T402] ? mark_page_accessed+0x56b/0xbf0 [ 52.058790][ T402] ? __activate_page+0x10d0/0x1110 [ 52.063741][ T402] unmap_page_range+0x110a/0x1ca0 [ 52.068610][ T402] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 52.074781][ T402] ? plist_del+0x40e/0x420 [ 52.079012][ T402] ? __munlock_isolated_page+0x210/0x210 [ 52.084481][ T402] ? uprobe_munmap+0x18d/0x450 [ 52.089080][ T402] unmap_vmas+0x389/0x560 [ 52.093364][ T402] ? unmap_page_range+0x1ca0/0x1ca0 [ 52.098369][ T402] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 52.103773][ T402] exit_mmap+0x3d8/0x6f0 [ 52.107945][ T402] ? vm_brk+0x30/0x30 [ 52.111773][ T402] ? mutex_unlock+0xb2/0x260 [ 52.116193][ T402] ? uprobe_clear_state+0x2cd/0x320 [ 52.121324][ T402] __mmput+0x95/0x310 [ 52.125124][ T402] mmput+0x5b/0x170 [ 52.128773][ T402] do_exit+0xbb4/0x2b60 [ 52.132878][ T402] ? splice_direct_to_actor+0x957/0xbe0 [ 52.138393][ T402] ? put_task_struct+0x80/0x80 [ 52.143033][ T402] ? __kasan_check_write+0x14/0x20 [ 52.148078][ T402] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 52.153102][ T402] ? _raw_spin_lock_irqsave+0x210/0x210 [ 52.158569][ T402] do_group_exit+0x141/0x310 [ 52.163087][ T402] get_signal+0x7a3/0x1630 [ 52.167345][ T402] ? do_splice_direct+0x296/0x3c0 [ 52.172473][ T402] arch_do_signal_or_restart+0xbd/0x1680 [ 52.177926][ T402] ? fput_many+0x160/0x1b0 [ 52.182267][ T402] ? fput+0x1a/0x20 [ 52.185920][ T402] ? do_sendfile+0xce7/0xfe0 [ 52.190422][ T402] ? notify_change+0xdb0/0x1030 [ 52.195322][ T402] ? fput_many+0x160/0x1b0 [ 52.199657][ T402] ? get_sigframe_size+0x10/0x10 [ 52.204457][ T402] ? __se_sys_futex+0x37b/0x3e0 [ 52.209131][ T402] ? fpu_flush_thread+0xf0/0xf0 [ 52.213841][ T402] exit_to_user_mode_loop+0xa0/0xe0 [ 52.219276][ T402] exit_to_user_mode_prepare+0x5a/0xa0 [ 52.224745][ T402] syscall_exit_to_user_mode+0x26/0x160 [ 52.230121][ T402] do_syscall_64+0x49/0xb0 [ 52.234535][ T402] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 52.240258][ T402] RIP: 0033:0x7f22172f68d9 [ 52.244597][ T402] Code: Unable to access opcode bytes at RIP 0x7f22172f68af. [ 52.252181][ T402] RSP: 002b:00007f2216e79178 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 52.260520][ T402] RAX: fffffffffffffe00 RBX: 00007f2217415f88 RCX: 00007f22172f68d9 [ 52.268321][ T402] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2217415f88 [ 52.276239][ T402] RBP: 00007f2217415f80 R08: 00007f2216e796c0 R09: 00007f2216e796c0 [ 52.284035][ T402] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2217415f8c [ 52.292881][ T402] R13: 000000000000000b R14: 00007ffdccb0bc20 R15: 00007ffdccb0bd08 [ 52.300794][ T402] [ 52.303731][ T402] BUG: using __this_cpu_add_return() in preemptible [00000000] code: syz-executor.0/402 [ 52.313417][ T402] caller is __this_cpu_preempt_check+0x13/0x20 [ 52.319623][ T402] CPU: 0 PID: 402 Comm: syz-executor.0 Tainted: G W 5.15.130-syzkaller-1068695-g1317bd27a72f #0 [ 52.331376][ T402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023 [ 52.341442][ T402] Call Trace: [ 52.344564][ T402] [ 52.347342][ T402] dump_stack_lvl+0x151/0x1b7 [ 52.351862][ T402] ? io_uring_drop_tctx_refs+0x190/0x190 [ 52.357424][ T402] dump_stack+0x15/0x17 [ 52.361412][ T402] check_preemption_disabled+0x109/0x110 [ 52.367054][ T402] __this_cpu_preempt_check+0x13/0x20 [ 52.372324][ T402] __mod_memcg_lruvec_state+0x11c/0x1b0 [ 52.377769][ T402] __mod_lruvec_page_state+0x141/0x1c0 [ 52.383063][ T402] ? page_remove_rmap+0x783/0x1420 [ 52.388006][ T402] page_remove_rmap+0xb49/0x1420 [ 52.392779][ T402] ? page_add_file_rmap+0x8e0/0x8e0 [ 52.397812][ T402] ? mark_page_accessed+0x56b/0xbf0 [ 52.402860][ T402] ? __activate_page+0x10d0/0x1110 [ 52.407797][ T402] unmap_page_range+0x110a/0x1ca0 [ 52.412671][ T402] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 52.418993][ T402] ? plist_del+0x40e/0x420 [ 52.423245][ T402] ? __munlock_isolated_page+0x210/0x210 [ 52.428800][ T402] ? uprobe_munmap+0x18d/0x450 [ 52.433574][ T402] unmap_vmas+0x389/0x560 [ 52.437745][ T402] ? unmap_page_range+0x1ca0/0x1ca0 [ 52.442776][ T402] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 52.448080][ T402] exit_mmap+0x3d8/0x6f0 [ 52.452155][ T402] ? vm_brk+0x30/0x30 [ 52.455979][ T402] ? mutex_unlock+0xb2/0x260 [ 52.460841][ T402] ? uprobe_clear_state+0x2cd/0x320 [ 52.466049][ T402] __mmput+0x95/0x310 [ 52.469857][ T402] mmput+0x5b/0x170 [ 52.473497][ T402] do_exit+0xbb4/0x2b60 [ 52.477773][ T402] ? splice_direct_to_actor+0x957/0xbe0 [ 52.483309][ T402] ? put_task_struct+0x80/0x80 [ 52.487908][ T402] ? __kasan_check_write+0x14/0x20 [ 52.492939][ T402] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 52.498251][ T402] ? _raw_spin_lock_irqsave+0x210/0x210 [ 52.503616][ T402] do_group_exit+0x141/0x310 [ 52.508043][ T402] get_signal+0x7a3/0x1630 [ 52.512303][ T402] ? do_splice_direct+0x296/0x3c0 [ 52.517156][ T402] arch_do_signal_or_restart+0xbd/0x1680 [ 52.522621][ T402] ? fput_many+0x160/0x1b0 [ 52.526876][ T402] ? fput+0x1a/0x20 [ 52.530517][ T402] ? do_sendfile+0xce7/0xfe0 [ 52.534948][ T402] ? notify_change+0xdb0/0x1030 [ 52.539635][ T402] ? fput_many+0x160/0x1b0 [ 52.543888][ T402] ? get_sigframe_size+0x10/0x10 [ 52.548673][ T402] ? __se_sys_futex+0x37b/0x3e0 [ 52.553357][ T402] ? fpu_flush_thread+0xf0/0xf0 [ 52.558224][ T402] exit_to_user_mode_loop+0xa0/0xe0 [ 52.563343][ T402] exit_to_user_mode_prepare+0x5a/0xa0 [ 52.568718][ T402] syscall_exit_to_user_mode+0x26/0x160 [ 52.574250][ T402] do_syscall_64+0x49/0xb0 [ 52.578585][ T402] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 52.584315][ T402] RIP: 0033:0x7f22172f68d9 [ 52.588565][ T402] Code: Unable to access opcode bytes at RIP 0x7f22172f68af. [ 52.595942][ T402] RSP: 002b:00007f2216e79178 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 52.604189][ T402] RAX: fffffffffffffe00 RBX: 00007f2217415f88 RCX: 00007f22172f68d9 [ 52.612086][ T402] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2217415f88 [ 52.620942][ T402] RBP: 00007f2217415f80 R08: 00007f2216e796c0 R09: 00007f2216e796c0 [ 52.628761][ T402] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2217415f8c [ 52.636735][ T402] R13: 000000000000000b R14: 00007ffdccb0bc20 R15: 00007ffdccb0bd08 [ 52.644665][ T402] [ 53.025914][ T414] loop0: detected capacity change from 0 to 63271 [ 53.033000][ T414] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 53.041617][ T414] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 53.051140][ T414] F2FS-fs (loop0): invalid crc value [ 53.057882][ T414] F2FS-fs (loop0): Found nat_bits in checkpoint [ 53.088643][ T414] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 53.095537][ T414] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 53.187499][ T419] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=17 [ 53.187931][ T414] attempt to access beyond end of device [ 53.187931][ T414] loop0: rw=2049, want=77952, limit=63271 [ 53.516334][ T421] loop0: detected capacity change from 0 to 63271 [ 53.523342][ T421] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 53.531720][ T421] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 53.540947][ T421] F2FS-fs (loop0): invalid crc value [ 53.547214][ T421] F2FS-fs (loop0): Found nat_bits in checkpoint [ 53.577953][ T421] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 53.585000][ T421] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b 2023/09/04 22:50:02 executed programs: 9 [ 53.740481][ T421] attempt to access beyond end of device [ 53.740481][ T421] loop0: rw=2049, want=63368, limit=63271 [ 54.110053][ T429] loop0: detected capacity change from 0 to 63271 [ 54.117103][ T429] F2FS-fs (loop0): Mismatch start address, segment0(512) cp_blkaddr(605) [ 54.125653][ T429] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 54.134983][ T429] F2FS-fs (loop0): invalid crc value [ 54.141928][ T429] F2FS-fs (loop0): Found nat_bits in checkpoint [ 54.172914][ T429] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 54.179839][ T429] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 54.265550][ T434] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=4, npages=9