vmalloc: allocation failure: 0 bytes syz-executor5: page allocation failure: order:0, mode:0x24000c2 CPU: 1 PID: 6015 Comm: syz-executor5 Not tainted 4.4.128-gbd23e3a #19 BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor2/6014 caller is __this_cpu_preempt_check+0x1c/0x20 lib/smp_processor_id.c:62 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 0000000000000000 a3f911fefdd2537a ffff8800a3b5f8b8 ffffffff81e0daad 1ffff1001476bf1a ffff88009a999800 00000000024000c2 0000000000000000 ffffffff83aad1a0 ffff8800a3b5f9c8 ffffffff81510f8b ffff880000000001 Call Trace: [] __dump_stack lib/dump_stack.c:15 [inline] [] dump_stack+0xc1/0x124 lib/dump_stack.c:51 [] warn_alloc_failed.cold.116+0x83/0x149 mm/page_alloc.c:2757 [] __vmalloc_node_range+0x359/0x630 mm/vmalloc.c:1692 [] __vmalloc_node mm/vmalloc.c:1715 [inline] [] __vmalloc_node_flags mm/vmalloc.c:1729 [inline] [] vmalloc+0x5b/0x70 mm/vmalloc.c:1744 [] sel_write_load+0x135/0xfc0 security/selinux/selinuxfs.c:527 [] __vfs_write+0x11c/0x3f0 fs/read_write.c:489 [] vfs_write+0x191/0x4e0 fs/read_write.c:538 [] SYSC_write fs/read_write.c:585 [inline] [] SyS_write+0xd9/0x1c0 fs/read_write.c:577 [] do_syscall_32_irqs_on arch/x86/entry/common.c:392 [inline] [] do_fast_syscall_32+0x326/0x8b0 arch/x86/entry/common.c:459 [] sysenter_flags_fixed+0xd/0x17 CPU: 0 PID: 6014 Comm: syz-executor2 Not tainted 4.4.128-gbd23e3a #19 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 0000000000000000 45afff7ed9f642d4 ffff8800b476f790 ffffffff81e0daad 0000000000000000 ffffffff83c132c0 ffffffff83f0a340 ffff8800a40b1800 0000000000000003 ffff8800b476f7d0 ffffffff81eb73d3 ffff8801d7cc9cfc Call Trace: [] __dump_stack lib/dump_stack.c:15 [inline] [] dump_stack+0xc1/0x124 lib/dump_stack.c:51 Mem-Info: active_anon:39702 inactive_anon:37 isolated_anon:0 active_file:10403 inactive_file:18391 isolated_file:0 unevictable:0 dirty:122 writeback:0 unstable:0 slab_reclaimable:7424 slab_unreclaimable:61206 mapped:73524 shmem:44 pagetables:851 bounce:0 free:1417860 free_pcp:593 free_cma:0 DMA free:15904kB min:160kB low:200kB high:240kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB present:15992kB managed:15904kB mlocked:0kB dirty:0kB writeback:0kB mapped:0kB shmem:0kB slab_reclaimable:0kB slab_unreclaimable:0kB kernel_stack:0kB pagetables:0kB unstable:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB writeback_tmp:0kB pages_scanned:0 all_unreclaimable? yes lowmem_reserve[]: 0 2908 6409 6409 DMA32 free:2555252kB min:30596kB low:38244kB high:45892kB active_anon:87492kB inactive_anon:28kB active_file:20764kB inactive_file:33476kB unevictable:0kB isolated(anon):0kB isolated(file):0kB present:3129292kB managed:2980440kB mlocked:0kB dirty:276kB writeback:0kB mapped:131280kB shmem:40kB slab_reclaimable:14448kB slab_unreclaimable:109944kB kernel_stack:2304kB pagetables:1608kB unstable:0kB bounce:0kB free_pcp:1120kB local_pcp:644kB free_cma:0kB writeback_tmp:0kB pages_scanned:0 all_unreclaimable? no lowmem_reserve[]: 0 0 3500 3500 Normal free:3100284kB min:36820kB low:46024kB high:55228kB active_anon:71316kB inactive_anon:120kB active_file:20848kB inactive_file:40088kB unevictable:0kB isolated(anon):0kB isolated(file):0kB present:4718592kB managed:3584660kB mlocked:0kB dirty:212kB writeback:0kB mapped:162816kB shmem:136kB slab_reclaimable:15248kB slab_unreclaimable:134880kB kernel_stack:2944kB pagetables:1796kB unstable:0kB bounce:0kB free_pcp:1252kB local_pcp:596kB free_cma:0kB writeback_tmp:0kB pages_scanned:0 all_unreclaimable? no lowmem_reserve[]: 0 0 0 0 DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15904kB DMA32: 577*4kB (UME) 729*8kB (UM) 791*16kB (UME) 388*32kB (UME) 235*64kB (UME) 226*128kB (UME) 178*256kB (UM) 89*512kB (UME) 87*1024kB (UME) 2*2048kB (UM) 560*4096kB (M) = 2555260kB Normal: 581*4kB (UM) 667*8kB (UM) 851*16kB (UME) 437*32kB (UM) 335*64kB (UME) 293*128kB (UM) 231*256kB (UM) 98*512kB (UM) 101*1024kB (UME) 2*2048kB (M) 681*4096kB (UM) = 3100412kB Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 28837 total pagecache pages 0 pages in swap cache Swap cache stats: add 0, delete 0, find 0/0 Free swap = 0kB Total swap = 0kB 1965969 pages RAM 0 pages HighMem/MovableOnly 320718 pages reserved vmalloc: allocation failure: 0 bytes syz-executor5: page allocation failure: order:0, mode:0x24000c2 [] check_preemption_disabled.cold.0+0x7f/0x8b lib/smp_processor_id.c:46 [] __this_cpu_preempt_check+0x1c/0x20 lib/smp_processor_id.c:62 [] tcp_try_coalesce+0x22a/0x4c0 net/ipv4/tcp_input.c:4280 [] tcp_queue_rcv+0x127/0x6f0 net/ipv4/tcp_input.c:4487 [] tcp_send_rcvq+0x3a6/0x470 net/ipv4/tcp_input.c:4533 [] tcp_sendmsg+0x231e/0x2b20 net/ipv4/tcp.c:1134 [] inet_sendmsg+0x203/0x4d0 net/ipv4/af_inet.c:755 [] sock_sendmsg_nosec net/socket.c:625 [inline] [] sock_sendmsg+0xcc/0x110 net/socket.c:635 [] SYSC_sendto+0x21c/0x370 net/socket.c:1665 [] SyS_sendto+0x40/0x50 net/socket.c:1633 [] do_syscall_32_irqs_on arch/x86/entry/common.c:392 [inline] [] do_fast_syscall_32+0x326/0x8b0 arch/x86/entry/common.c:459 [] sysenter_flags_fixed+0xd/0x17 CPU: 1 PID: 6032 Comm: syz-executor5 Not tainted 4.4.128-gbd23e3a #19 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 0000000000000000 2c97fd05d6f897dd ffff8800a4ab78b8 ffffffff81e0daad 1ffff10014956f1a ffff8800993c9800 00000000024000c2 0000000000000000 ffffffff83aad1a0 ffff8800a4ab79c8 ffffffff81510f8b ffff880000000001 Call Trace: [] __dump_stack lib/dump_stack.c:15 [inline] [] dump_stack+0xc1/0x124 lib/dump_stack.c:51 [] warn_alloc_failed.cold.116+0x83/0x149 mm/page_alloc.c:2757 [] __vmalloc_node_range+0x359/0x630 mm/vmalloc.c:1692 [] __vmalloc_node mm/vmalloc.c:1715 [inline] [] __vmalloc_node_flags mm/vmalloc.c:1729 [inline] [] vmalloc+0x5b/0x70 mm/vmalloc.c:1744 [] sel_write_load+0x135/0xfc0 security/selinux/selinuxfs.c:527 [] __vfs_write+0x11c/0x3f0 fs/read_write.c:489 [] vfs_write+0x191/0x4e0 fs/read_write.c:538 [] SYSC_write fs/read_write.c:585 [inline] [] SyS_write+0xd9/0x1c0 fs/read_write.c:577 [] do_syscall_32_irqs_on arch/x86/entry/common.c:392 [inline] [] do_fast_syscall_32+0x326/0x8b0 arch/x86/entry/common.c:459 [] sysenter_flags_fixed+0xd/0x17 Mem-Info: active_anon:39655 inactive_anon:37 isolated_anon:0 active_file:10408 inactive_file:18392 isolated_file:0 unevictable:0 dirty:132 writeback:0 unstable:0 slab_reclaimable:7454 slab_unreclaimable:61108 mapped:73527 shmem:44 pagetables:791 bounce:0 free:1417958 free_pcp:664 free_cma:0 DMA free:15904kB min:160kB low:200kB high:240kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB present:15992kB managed:15904kB mlocked:0kB dirty:0kB writeback:0kB mapped:0kB shmem:0kB slab_reclaimable:0kB slab_unreclaimable:0kB kernel_stack:0kB pagetables:0kB unstable:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB writeback_tmp:0kB pages_scanned:0 all_unreclaimable? yes lowmem_reserve[]: 0 2908 6409 6409 DMA32 free:2556200kB min:30596kB low:38244kB high:45892kB active_anon:87412kB inactive_anon:28kB active_file:20776kB inactive_file:33480kB unevictable:0kB isolated(anon):0kB isolated(file):0kB present:3129292kB managed:2980440kB mlocked:0kB dirty:288kB writeback:0kB mapped:131280kB shmem:40kB slab_reclaimable:14484kB slab_unreclaimable:109332kB kernel_stack:2496kB pagetables:1340kB unstable:0kB bounce:0kB free_pcp:1352kB local_pcp:716kB free_cma:0kB writeback_tmp:0kB pages_scanned:0 all_unreclaimable? no lowmem_reserve[]: 0 0 3500 3500 Normal free:3100080kB min:36820kB low:46024kB high:55228kB active_anon:71208kB inactive_anon:120kB active_file:20856kB inactive_file:40088kB unevictable:0kB isolated(anon):0kB isolated(file):0kB present:4718592kB managed:3584660kB mlocked:0kB dirty:248kB writeback:0kB mapped:162828kB shmem:136kB slab_reclaimable:15332kB slab_unreclaimable:135100kB kernel_stack:3040kB pagetables:1824kB unstable:0kB bounce:0kB free_pcp:1292kB local_pcp:632kB free_cma:0kB writeback_tmp:0kB pages_scanned:0 all_unreclaimable? no lowmem_reserve[]: 0 0 0 0 DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15904kB DMA32: 615*4kB (UME) 731*8kB (UM) 793*16kB (UME) 410*32kB (UME) 239*64kB (UME) 226*128kB (UME) 178*256kB (UM) 89*512kB (UME) 87*1024kB (UME) 1*2048kB (U) 562*4096kB (M) = 2562564kB Normal: 605*4kB (UME) 668*8kB (UM) 851*16kB (UM) 438*32kB (UME) 334*64kB (UM) 294*128kB (UME) 232*256kB (UME) 99*512kB (UME) 100*1024kB (UM) 3*2048kB (M) 681*4096kB (UM) = 3102404kB Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 28851 total pagecache pages 0 pages in swap cache Swap cache stats: add 0, delete 0, find 0/0 Free swap = 0kB Total swap = 0kB 1965969 pages RAM 0 pages HighMem/MovableOnly 320718 pages reserved vmalloc: allocation failure: 0 bytes syz-executor5: page allocation failure: order:0, mode:0x24000c2 CPU: 1 PID: 6050 Comm: syz-executor5 Not tainted 4.4.128-gbd23e3a #19 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 0000000000000000 118497c01ac324b0 ffff8800b9a978b8 ffffffff81e0daad 1ffff10017352f1a ffff8800b4769800 00000000024000c2 0000000000000000 ffffffff83aad1a0 ffff8800b9a979c8 ffffffff81510f8b[ 567.447560] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor2/6054 caller is __this_cpu_preempt_check+0x1c/0x20 lib/smp_processor_id.c:62 ffff880000000001 Call Trace: [] __dump_stack lib/dump_stack.c:15 [inline] [] dump_stack+0xc1/0x124 lib/dump_stack.c:51 [] warn_alloc_failed.cold.116+0x83/0x149 mm/page_alloc.c:2757 [] __vmalloc_node_range+0x359/0x630 mm/vmalloc.c:1692 [] __vmalloc_node mm/vmalloc.c:1715 [inline] [] __vmalloc_node_flags mm/vmalloc.c:1729 [inline] [] vmalloc+0x5b/0x70 mm/vmalloc.c:1744 [] sel_write_load+0x135/0xfc0 security/selinux/selinuxfs.c:527 [] __vfs_write+0x11c/0x3f0 fs/read_write.c:489 [] vfs_write+0x191/0x4e0 fs/read_write.c:538 [] SYSC_write fs/read_write.c:585 [inline] [] SyS_write+0xd9/0x1c0 fs/read_write.c:577 [] do_syscall_32_irqs_on arch/x86/entry/common.c:392 [inline] [] do_fast_syscall_32+0x326/0x8b0 arch/x86/entry/common.c:459 [] sysenter_flags_fixed+0xd/0x17 CPU: 0 PID: 6054 Comm: syz-executor2 Not tainted 4.4.128-gbd23e3a #19 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 0000000000000000 b8a6f94e10e2934e ffff8801ce4e7790 ffffffff81e0daad 0000000000000000 ffffffff83c132c0 ffffffff83f0a340 ffff8801bcd69800 0000000000000003 ffff8801ce4e77d0 ffffffff81eb73d3 ffff8800b37172fc Call Trace: [] __dump_stack lib/dump_stack.c:15 [inline] [] dump_stack+0xc1/0x124 lib/dump_stack.c:51 [] check_preemption_disabled.cold.0+0x7f/0x8b lib/smp_processor_id.c:46 [] __this_cpu_preempt_check+0x1c/0x20 lib/smp_processor_id.c:62 [] tcp_try_coalesce+0x22a/0x4c0 net/ipv4/tcp_input.c:4280 [] tcp_queue_rcv+0x127/0x6f0 net/ipv4/tcp_input.c:4487 [] tcp_send_rcvq+0x3a6/0x470 net/ipv4/tcp_input.c:4533 [] tcp_sendmsg+0x231e/0x2b20 net/ipv4/tcp.c:1134 [] inet_sendmsg+0x203/0x4d0 net/ipv4/af_inet.c:755 [] sock_sendmsg_nosec net/socket.c:625 [inline] [] sock_sendmsg+0xcc/0x110 net/socket.c:635 [] SYSC_sendto+0x21c/0x370 net/socket.c:1665 [] SyS_sendto+0x40/0x50 net/socket.c:1633 [] do_syscall_32_irqs_on arch/x86/entry/common.c:392 [inline] [] do_fast_syscall_32+0x326/0x8b0 arch/x86/entry/common.c:459 [] sysenter_flags_fixed+0xd/0x17 Mem-Info: active_anon:39678 inactive_anon:37 isolated_anon:0 active_file:10408 inactive_file:18392 isolated_file:0 unevictable:0 dirty:134 writeback:0 unstable:0 slab_reclaimable:7454 slab_unreclaimable:61249 mapped:73524 shmem:44 pagetables:801 bounce:0 free:1417969 free_pcp:534 free_cma:0 DMA free:15904kB min:160kB low:200kB high:240kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB present:15992kB managed:15904kB mlocked:0kB dirty:0kB writeback:0kB mapped:0kB shmem:0kB slab_reclaimable:0kB slab_unreclaimable:0kB kernel_stack:0kB pagetables:0kB unstable:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB writeback_tmp:0kB pages_scanned:0 all_unreclaimable? yes lowmem_reserve[]: 0 2908 6409 6409 DMA32 free:2562876kB min:30596kB low:38244kB high:45892kB active_anon:81204kB inactive_anon:36kB active_file:20780kB inactive_file:33476kB unevictable:0kB isolated(anon):0kB isolated(file):0kB present:3129292kB managed:2980440kB mlocked:0kB dirty:304kB writeback:0kB mapped:131280kB shmem:48kB slab_reclaimable:14504kB slab_unreclaimable:109008kB kernel_stack:2336kB pagetables:1380kB unstable:0kB bounce:0kB free_pcp:1180kB local_pcp:484kB free_cma:0kB writeback_tmp:0kB pages_scanned:0 all_unreclaimable? no lowmem_reserve[]: 0 0 3500 3500 Normal free:3093992kB min:36820kB low:46024kB high:55228kB active_anon:77408kB inactive_anon:112kB active_file:20904kB inactive_file:40088kB unevictable:0kB isolated(anon):0kB isolated(file):0kB present:4718592kB managed:3584660kB mlocked:0kB dirty:264kB writeback:0kB mapped:162828kB shmem:128kB slab_reclaimable:15360kB slab_unreclaimable:135432kB kernel_stack:2944kB pagetables:1784kB unstable:0kB bounce:0kB free_pcp:952kB local_pcp:236kB free_cma:0kB writeback_tmp:0kB pages_scanned:0 all_unreclaimable? no lowmem_reserve[]: 0 0 0 0 DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15904kB DMA32: 635*4kB (UME) 734*8kB (UME) 792*16kB (UME) 422*32kB (UME) 240*64kB (UME) 225*128kB (UM) 178*256kB (UM) 89*512kB (UME) 87*1024kB (UME) 3*2048kB (UM) 561*4096kB (M) = 2562972kB Normal: 631*4kB (UM) 668*8kB (UM) 853*16kB (UME) 429*32kB (UME) 335*64kB (UME) 294*128kB (UME) 232*256kB (UME) 99*512kB (UME) 100*1024kB (UM) 3*2048kB (M) 681*4096kB (UM) = 3102316kB Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 28859 total pagecache pages 0 pages in swap cache Swap cache stats: add 0, delete 0, find 0/0 Free swap = 0kB Total swap = 0kB 1965969 pages RAM 0 pages HighMem/MovableOnly 320718 pages reserved BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor2/6069 caller is __this_cpu_preempt_check+0x1c/0x20 lib/smp_processor_id.c:62 CPU: 0 PID: 6069 Comm: syz-executor2 Not tainted 4.4.128-gbd23e3a #19 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 0000000000000000 3103d8531d7709d3 ffff8801ce4e7790 ffffffff81e0daad 0000000000000000 ffffffff83c132c0 ffffffff83f0a340 ffff8800bb164800 0000000000000003 ffff8801ce4e77d0 ffffffff81eb73d3 ffff8801d72ea7fc Call Trace: [] __dump_stack lib/dump_stack.c:15 [inline] [] dump_stack+0xc1/0x124 lib/dump_stack.c:51 [] check_preemption_disabled.cold.0+0x7f/0x8b lib/smp_processor_id.c:46 [] __this_cpu_preempt_check+0x1c/0x20 lib/smp_processor_id.c:62 [] tcp_try_coalesce+0x22a/0x4c0 net/ipv4/tcp_input.c:4280 [] tcp_queue_rcv+0x127/0x6f0 net/ipv4/tcp_input.c:4487 [] tcp_send_rcvq+0x3a6/0x470 net/ipv4/tcp_input.c:4533 [] tcp_sendmsg+0x231e/0x2b20 net/ipv4/tcp.c:1134 [] inet_sendmsg+0x203/0x4d0 net/ipv4/af_inet.c:755 [] sock_sendmsg_nosec net/socket.c:625 [inline] [] sock_sendmsg+0xcc/0x110 net/socket.c:635 [] SYSC_sendto+0x21c/0x370 net/socket.c:1665 [] SyS_sendto+0x40/0x50 net/socket.c:1633 [] do_syscall_32_irqs_on arch/x86/entry/common.c:392 [inline] [] do_fast_syscall_32+0x326/0x8b0 arch/x86/entry/common.c:459 [] sysenter_flags_fixed+0xd/0x17 binder: 6199:6201 unknown command 2097160972 binder: 6199:6201 ioctl c0306201 20004000 returned -22 binder: 6199:6232 unknown command 2097160972 binder: 6199:6232 ioctl c0306201 20004000 returned -22 binder: BINDER_SET_CONTEXT_MGR already set binder: 6487:6502 ioctl 40046207 0 returned -16 binder: 6487:6502 unknown command 0 binder: 6487:6502 ioctl c0306201 2000a000 returned -22 binder_alloc: binder_alloc_mmap_handler: 6487 20000000-20002000 already mapped failed -16 binder: BINDER_SET_CONTEXT_MGR already set binder: 6487:6502 ioctl 40046207 0 returned -16 binder: BINDER_SET_CONTEXT_MGR already set binder: 6487:6503 ioctl 40046207 0 returned -16 binder: 6487:6503 unknown command 0 binder: 6487:6503 ioctl c0306201 2000a000 returned -22 tc_dump_action: action bad kind tc_dump_action: action bad kind