INIT: Entering runlevel: 2
[�[36minfo�[39;49m] Using makefile-style concurrent boot in runlevel 2.
[....] Starting enhanced syslogd: rsyslogd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[....] Starting periodic command scheduler: cron�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[....] Starting OpenBSD Secure Shell server: sshd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
Debian GNU/Linux 7 syzkaller ttyS0
Warning: Permanently added '10.128.0.31' (ECDSA) to the list of known hosts.
syzkaller login: [ 30.988598]
[ 30.990263] ======================================================
[ 30.996559] WARNING: possible circular locking dependency detected
[ 31.002858] 4.17.0-rc1+ #12 Not tainted
[ 31.006808] ------------------------------------------------------
[ 31.013134] syzkaller981725/4527 is trying to acquire lock:
[ 31.018824] 00000000110136c8 (&mm->mmap_sem){++++}, at: __might_fault+0xfb/0x1e0
[ 31.026369]
[ 31.026369] but task is already holding lock:
[ 31.032319] 00000000e6438626 (sk_lock-AF_INET6){+.+.}, at: do_ipv6_setsockopt.isra.9+0x576/0x4660
[ 31.041329]
[ 31.041329] which lock already depends on the new lock.
[ 31.041329]
[ 31.049641]
[ 31.049641] the existing dependency chain (in reverse order) is:
[ 31.057250]
[ 31.057250] -> #1 (sk_lock-AF_INET6){+.+.}:
[ 31.063331] lock_sock_nested+0xd0/0x120
[ 31.067898] tcp_mmap+0x1c7/0x14f0
[ 31.071941] sock_mmap+0x8e/0xc0
[ 31.075814] mmap_region+0xd13/0x1820
[ 31.080122] do_mmap+0xc79/0x11d0
[ 31.084078] vm_mmap_pgoff+0x1fb/0x2a0
[ 31.088470] ksys_mmap_pgoff+0x4c9/0x640
[ 31.093035] __x64_sys_mmap+0xe9/0x1b0
[ 31.097436] do_syscall_64+0x1b1/0x800
[ 31.101834] entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 31.107522]
[ 31.107522] -> #0 (&mm->mmap_sem){++++}:
[ 31.113063] lock_acquire+0x1dc/0x520
[ 31.117376] __might_fault+0x155/0x1e0
[ 31.121775] _copy_from_user+0x30/0x150
[ 31.126264] do_ipv6_setsockopt.isra.9+0x28fd/0x4660
[ 31.131876] ipv6_setsockopt+0xbd/0x170
[ 31.136362] sctp_setsockopt+0x2da/0x7000
[ 31.141011] sock_common_setsockopt+0x9a/0xe0
[ 31.146012] __sys_setsockopt+0x1bd/0x390
[ 31.150661] __x64_sys_setsockopt+0xbe/0x150
[ 31.155580] do_syscall_64+0x1b1/0x800
[ 31.159972] entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 31.165665]
[ 31.165665] other info that might help us debug this:
[ 31.165665]
[ 31.173793] Possible unsafe locking scenario:
[ 31.173793]
[ 31.179837] CPU0 CPU1
[ 31.184488] ---- ----
[ 31.189140] lock(sk_lock-AF_INET6);
[ 31.192931] lock(&mm->mmap_sem);
[ 31.198973] lock(sk_lock-AF_INET6);
[ 31.205293] lock(&mm->mmap_sem);
[ 31.208814]
[ 31.208814] *** DEADLOCK ***
[ 31.208814]
[ 31.214856] 2 locks held by syzkaller981725/4527:
[ 31.219678] #0: 0000000051e96a4c (rtnl_mutex){+.+.}, at: rtnl_lock+0x17/0x20
[ 31.226956] #1: 00000000e6438626 (sk_lock-AF_INET6){+.+.}, at: do_ipv6_setsockopt.isra.9+0x576/0x4660
[ 31.236397]
[ 31.236397] stack backtrace:
[ 31.240883] CPU: 0 PID: 4527 Comm: syzkaller981725 Not tainted 4.17.0-rc1+ #12
[ 31.248230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 31.257564] Call Trace:
[ 31.260141] dump_stack+0x1b9/0x294
[ 31.263751] ? dump_stack_print_info.cold.2+0x52/0x52
[ 31.268927] ? print_lock+0xd1/0xd6
[ 31.272535] ? vprintk_func+0x81/0xe7
[ 31.276318] print_circular_bug.isra.36.cold.54+0x1bd/0x27d
[ 31.282020] ? save_trace+0xe0/0x290
[ 31.285724] __lock_acquire+0x343e/0x5140
[ 31.289858] ? kasan_check_read+0x11/0x20
[ 31.293994] ? debug_check_no_locks_freed+0x310/0x310
[ 31.299197] ? debug_check_no_locks_freed+0x310/0x310
[ 31.304390] ? kasan_check_write+0x14/0x20
[ 31.308624] ? __mutex_lock+0x7d9/0x17f0
[ 31.312670] ? lock_downgrade+0x8e0/0x8e0
[ 31.316799] ? mutex_trylock+0x2a0/0x2a0
[ 31.320845] ? kasan_check_read+0x11/0x20
[ 31.324977] ? rcu_is_watching+0x85/0x140
[ 31.329109] ? rcu_bh_force_quiescent_state+0x20/0x20
[ 31.334294] ? find_held_lock+0x36/0x1c0
[ 31.338341] ? graph_lock+0x170/0x170
[ 31.342123] ? graph_lock+0x170/0x170
[ 31.345903] ? graph_lock+0x170/0x170
[ 31.349689] lock_acquire+0x1dc/0x520
[ 31.353486] ? __might_fault+0xfb/0x1e0
[ 31.357459] ? lock_acquire+0x1dc/0x520
[ 31.361434] ? lock_release+0xa10/0xa10
[ 31.365400] ? check_same_owner+0x320/0x320
[ 31.369709] ? mark_held_locks+0xc9/0x160
[ 31.373843] ? __might_sleep+0x95/0x190
[ 31.377802] __might_fault+0x155/0x1e0
[ 31.381668] ? __might_fault+0xfb/0x1e0
[ 31.385626] _copy_from_user+0x30/0x150
[ 31.389594] ? __sanitizer_cov_trace_switch+0x53/0x90
[ 31.394786] do_ipv6_setsockopt.isra.9+0x28fd/0x4660
[ 31.399878] ? do_raw_spin_unlock+0x9e/0x2e0
[ 31.404278] ? ipv6_update_options+0x390/0x390
[ 31.408852] ? debug_check_no_locks_freed+0x310/0x310
[ 31.414026] ? graph_lock+0x170/0x170
[ 31.417810] ? debug_check_no_locks_freed+0x310/0x310
[ 31.422983] ? print_usage_bug+0xc0/0xc0
[ 31.427041] ? lock_downgrade+0x8e0/0x8e0
[ 31.431179] ? mark_held_locks+0xc9/0x160
[ 31.435312] ? do_raw_spin_trylock+0x1b0/0x1b0
[ 31.439897] ? _raw_spin_unlock_irqrestore+0x74/0xc0
[ 31.444991] ? trace_hardirqs_on_caller+0x421/0x5c0
[ 31.450010] ? pagevec_lru_move_fn+0x1e1/0x270
[ 31.454581] ? get_kernel_page+0x110/0x110
[ 31.458809] ? __lru_cache_add+0x31c/0x440
[ 31.463038] ? __pagevec_lru_add+0x30/0x30
[ 31.467272] ? mem_cgroup_usage+0x420/0x420
[ 31.471575] ? save_stack+0xa9/0xd0
[ 31.475195] ? save_stack+0x43/0xd0
[ 31.478800] ? kasan_kmalloc+0xc4/0xe0
[ 31.482680] ? kasan_slab_alloc+0x12/0x20
[ 31.486817] ? print_usage_bug+0xc0/0xc0
[ 31.490868] ? __handle_mm_fault+0x2d02/0x4310
[ 31.495446] ? handle_mm_fault+0x53a/0xc70
[ 31.499666] ? kasan_check_write+0x14/0x20
[ 31.503885] ipv6_setsockopt+0xbd/0x170
[ 31.507841] ? ipv6_setsockopt+0xbd/0x170
[ 31.511984] sctp_setsockopt+0x2da/0x7000
[ 31.516119] ? mark_held_locks+0xc9/0x160
[ 31.520254] ? page_add_new_anon_rmap+0x3ff/0x850
[ 31.525085] ? sctp_setsockopt_paddr_thresholds+0x560/0x560
[ 31.530781] ? find_held_lock+0x36/0x1c0
[ 31.534827] ? lock_downgrade+0x8e0/0x8e0
[ 31.538958] ? pudp_huge_clear_flush+0x230/0x230
[ 31.543696] ? kasan_check_read+0x11/0x20
[ 31.547824] ? do_raw_spin_unlock+0x9e/0x2e0
[ 31.552223] ? do_raw_spin_trylock+0x1b0/0x1b0
[ 31.556787] ? kasan_check_write+0x14/0x20
[ 31.561003] ? do_raw_spin_lock+0xc1/0x200
[ 31.565222] ? _raw_spin_unlock+0x22/0x30
[ 31.569354] ? do_huge_pmd_anonymous_page+0x48d/0x1cc0
[ 31.574631] ? __thp_get_unmapped_area+0x180/0x180
[ 31.579549] ? debug_check_no_locks_freed+0x310/0x310
[ 31.584722] ? alloc_file+0x24/0x3e0
[ 31.588419] ? sock_alloc_file+0x1f3/0x4e0
[ 31.592633] ? __sys_socket+0x16f/0x250
[ 31.596602] ? do_syscall_64+0x1b1/0x800
[ 31.600645] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 31.605991] ? debug_mutex_init+0x1c/0x60
[ 31.610122] ? trace_hardirqs_on_caller+0x421/0x5c0
[ 31.615122] ? graph_lock+0x170/0x170
[ 31.618903] ? pud_val+0x80/0xf0
[ 31.622255] ? pmd_val+0xf0/0xf0
[ 31.625605] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 31.631129] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 31.636656] ? __handle_mm_fault+0x93a/0x4310
[ 31.641146] ? vm_insert_mixed_mkwrite+0x40/0x40
[ 31.645895] ? graph_lock+0x170/0x170
[ 31.649678] ? graph_lock+0x170/0x170
[ 31.653458] ? find_held_lock+0x36/0x1c0
[ 31.657503] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 31.663026] ? __fget_light+0x2ef/0x430
[ 31.666989] ? fget_raw+0x20/0x20
[ 31.670428] ? lock_downgrade+0x8e0/0x8e0
[ 31.674560] ? handle_mm_fault+0x8c0/0xc70
[ 31.678784] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 31.684305] ? handle_mm_fault+0x55a/0xc70
[ 31.688524] sock_common_setsockopt+0x9a/0xe0
[ 31.693002] __sys_setsockopt+0x1bd/0x390
[ 31.697130] ? kernel_accept+0x310/0x310
[ 31.701174] ? mm_fault_error+0x380/0x380
[ 31.705305] ? __ia32_sys_fallocate+0xf0/0xf0
[ 31.709782] __x64_sys_setsockopt+0xbe/0x150
[ 31.714186] ? trace_hardirqs_on_caller+0x421/0x5c0
[ 31.719186] do_syscall_64+0x1b1/0x800
[ 31.723063] ? syscall_return_slowpath+0x5c0/0x5c0
[ 31.727977] ? syscall_return_slowpath+0x30f/0x5c0
[ 31.732890] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 31.738411] ? retint_user+0x18/0x18
[ 31.742112] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 31.746944] entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 31.752115] RIP: 0033:0x43fe59
[ 31.755295] RSP: 002b:00007ffe42754d68 EFLAGS: 00000217 ORIG_RAX: 0000000000000036
[ 31.762984] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 000000000043fe59
[ 31.770235] RDX: 000000000000002c RSI: 0000000000000029 RDI: 0000000000000004
[ 31.777500] RBP: 00000000006ca018 R08: 0000000000000108 R09: 00000000004002c8
[ 31.784759] R10: 0000000020000180 R11: 0000000000000217 R12: 0000000000401780
[