RBP: 00000000006dcc60 R08: 000000000000000c R09: 0000000000000000
R10: 0000000020013ff4 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffee1c4b76f R14: 00007fbde3e329c0 R15: 0000000000000010

=============================
WARNING: suspicious RCU usage
4.18.0-rc4+ #138 Not tainted
-----------------------------
include/net/inet_sock.h:136 suspicious rcu_dereference_check() usage!

other info that might help us debug this:


rcu_scheduler_active = 2, debug_locks = 1
1 lock held by syz-executor093/15411:
 #0: (____ptrval____) (sk_lock-AF_INET6){+.+.}, at: lock_sock include/net/sock.h:1474 [inline]
 #0: (____ptrval____) (sk_lock-AF_INET6){+.+.}, at: do_ip_setsockopt.isra.12+0x355/0x3e50 net/ipv4/ip_sockglue.c:643

stack backtrace:
CPU: 0 PID: 15411 Comm: syz-executor093 Not tainted 4.18.0-rc4+ #138
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1c9/0x2b4 lib/dump_stack.c:113
 lockdep_rcu_suspicious+0x14a/0x153 kernel/locking/lockdep.c:4562
 ireq_opt_deref include/net/inet_sock.h:135 [inline]
 inet_csk_route_req+0x96b/0xdb0 net/ipv4/inet_connection_sock.c:538
 dccp_v4_send_response+0xb4/0x6d0 net/dccp/ipv4.c:485
 dccp_v4_conn_request+0xc6e/0x1380 net/dccp/ipv4.c:634
 dccp_v6_conn_request+0xdb6/0x1660 net/dccp/ipv6.c:317
 dccp_rcv_state_process+0x6f7/0x1a30 net/dccp/input.c:612
 dccp_v4_do_rcv+0x102/0x180 net/dccp/ipv4.c:683
 dccp_v6_do_rcv+0x935/0xb60 net/dccp/ipv6.c:579
 sk_backlog_rcv include/net/sock.h:914 [inline]
 __release_sock+0x12f/0x3a0 net/core/sock.c:2342
 release_sock+0xad/0x2c0 net/core/sock.c:2851
 do_ip_setsockopt.isra.12+0x5de/0x3e50 net/ipv4/ip_sockglue.c:1185
 ip_setsockopt+0x4c/0x140 net/ipv4/ip_sockglue.c:1246
 udp_setsockopt+0x62/0xa0 net/ipv4/udp.c:2502
 ipv6_setsockopt+0x149/0x170 net/ipv6/ipv6_sockglue.c:917
 dccp_setsockopt+0x96/0xf0 net/dccp/proto.c:574
 sock_common_setsockopt+0x9a/0xe0 net/core/sock.c:3040
 __sys_setsockopt+0x1c5/0x3b0 net/socket.c:1911
 __do_sys_setsockopt net/socket.c:1922 [inline]
 __se_sys_setsockopt net/socket.c:1919 [inline]
 __x64_sys_setsockopt+0xbe/0x150 net/socket.c:1919
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x446a59
Code: e8 ac e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 0d fc ff c3 66 2e 0f 1f 84 00 00 00 00 
RSP: 002b:00007fbde3dcece8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
RAX: ffffffffffffffda RBX: 00000000006dccac RCX: 0000000000446a59
RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000006
RBP: 00000000006dcca8 R08: 000000000000000c R09: 0000000000000000
R10: 0000000020013ff4 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffee1c4b76f R14: 00007fbde3dcf9c0 R15: 0000000000000010

=============================
WARNING: suspicious RCU usage
4.18.0-rc4+ #138 Not tainted
-----------------------------
include/net/inet_sock.h:136 suspicious rcu_dereference_check() usage!

other info that might help us debug this:


rcu_scheduler_active = 2, debug_locks = 1
1 lock held by syz-executor093/15411:
 #0: (____ptrval____) (sk_lock-AF_INET6){+.+.}, at: lock_sock include/net/sock.h:1474 [inline]
 #0: (____ptrval____) (sk_lock-AF_INET6){+.+.}, at: do_ip_setsockopt.isra.12+0x355/0x3e50 net/ipv4/ip_sockglue.c:643

stack backtrace:
CPU: 0 PID: 15411 Comm: syz-executor093 Not tainted 4.18.0-rc4+ #138
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1c9/0x2b4 lib/dump_stack.c:113
 lockdep_rcu_suspicious+0x14a/0x153 kernel/locking/lockdep.c:4562
 ireq_opt_deref include/net/inet_sock.h:135 [inline]
 dccp_v4_send_response+0x537/0x6d0 net/dccp/ipv4.c:496
 dccp_v4_conn_request+0xc6e/0x1380 net/dccp/ipv4.c:634
 dccp_v6_conn_request+0xdb6/0x1660 net/dccp/ipv6.c:317
 dccp_rcv_state_process+0x6f7/0x1a30 net/dccp/input.c:612
 dccp_v4_do_rcv+0x102/0x180 net/dccp/ipv4.c:683
 dccp_v6_do_rcv+0x935/0xb60 net/dccp/ipv6.c:579
 sk_backlog_rcv include/net/sock.h:914 [inline]
 __release_sock+0x12f/0x3a0 net/core/sock.c:2342
 release_sock+0xad/0x2c0 net/core/sock.c:2851
 do_ip_setsockopt.isra.12+0x5de/0x3e50 net/ipv4/ip_sockglue.c:1185
 ip_setsockopt+0x4c/0x140 net/ipv4/ip_sockglue.c:1246
 udp_setsockopt+0x62/0xa0 net/ipv4/udp.c:2502
 ipv6_setsockopt+0x149/0x170 net/ipv6/ipv6_sockglue.c:917
 dccp_setsockopt+0x96/0xf0 net/dccp/proto.c:574
 sock_common_setsockopt+0x9a/0xe0 net/core/sock.c:3040
 __sys_setsockopt+0x1c5/0x3b0 net/socket.c:1911
 __do_sys_setsockopt net/socket.c:1922 [inline]
 __se_sys_setsockopt net/socket.c:1919 [inline]
 __x64_sys_setsockopt+0xbe/0x150 net/socket.c:1919
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x446a59
Code: e8 ac e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 0d fc ff c3 66 2e 0f 1f 84 00 00 00 00 
RSP: 002b:00007fbde3dcece8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
RAX: ffffffffffffffda RBX: 00000000006dccac RCX: 0000000000446a59
RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000006
RBP: 00000000006dcca8 R08: 000000000000000c R09: 0000000000000000
R10: 0000000020013ff4 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffee1c4b76f R14: 00007fbde3dcf9c0 R15: 0000000000000010
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 1 PID: 15838 Comm: syz-executor093 Not tainted 4.18.0-rc4+ #138
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1c9/0x2b4 lib/dump_stack.c:113
 handle_userfault.cold.33+0x47/0x62 fs/userfaultfd.c:434
 do_anonymous_page mm/memory.c:3156 [inline]
 handle_pte_fault mm/memory.c:3970 [inline]
 __handle_mm_fault+0x3a0a/0x4460 mm/memory.c:4096
 handle_mm_fault+0x53e/0xc80 mm/memory.c:4133
 __do_page_fault+0x620/0xe50 arch/x86/mm/fault.c:1396
 do_page_fault+0xf6/0x8c0 arch/x86/mm/fault.c:1471
 page_fault+0x1e/0x30 arch/x86/entry/entry_64.S:1160
RIP: 0010:copy_user_generic_unrolled+0x86/0xc0 arch/x86/lib/copy_user_64.S:65
Code: 4c 8b 5e 38 4c 89 47 20 4c 89 4f 28 4c 89 57 30 4c 89 5f 38 48 8d 76 40 48 8d 7f 40 ff c9 75 b6 89 d1 83 e2 07 c1 e9 03 74 12 <4c> 8b 06 4c 89 07 48 8d 76 08 48 8d 7f 08 ff c9 75 ee 21 d2 74 10 
RSP: 0018:ffff8801a9d3f700 EFLAGS: 00010203
RAX: 0000000000000004 RBX: 000000000000000c RCX: 0000000000000001
RDX: 0000000000000004 RSI: 0000000020013ff4 RDI: ffff8801cef76ea0
RBP: ffff8801a9d3f738 R08: ffffed0039deedd6 R09: ffffed0039deedd4
R10: ffffed0039deedd5 R11: 0000000000000003 R12: 0000000020014000
R13: 0000000020013ff4 R14: ffff8801cef76ea0 R15: 00007ffffffff000
 copy_from_user include/linux/uaccess.h:147 [inline]
 ip_options_get_from_user+0x8d/0xf0 net/ipv4/ip_options.c:537
 do_ip_setsockopt.isra.12+0x1b91/0x3e50 net/ipv4/ip_sockglue.c:652
 ip_setsockopt+0x4c/0x140 net/ipv4/ip_sockglue.c:1246
 tcp_setsockopt+0x93/0xe0 net/ipv4/tcp.c:3060
 sock_common_setsockopt+0x9a/0xe0 net/core/sock.c:3040
 __sys_setsockopt+0x1c5/0x3b0 net/socket.c:1911
 __do_sys_setsockopt net/socket.c:1922 [inline]
 __se_sys_setsockopt net/socket.c:1919 [inline]
 __x64_sys_setsockopt+0xbe/0x150 net/socket.c:1919
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x446a59
Code: e8 ac e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 0d fc ff c3 66 2e 0f 1f 84 00 00 00 00 
RSP: 002b:00007fbde3e31ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
RAX: ffffffffffffffda RBX: 00000000006dcc64 RCX: 0000000000446a59
RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000006
RBP: 00000000006dcc60 R08: 000000000000000c R09: 0000000000000000
R10: 0000000020013ff4 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffee1c4b76f R14: 00007fbde3e329c0 R15: 0000000000000010
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 0 PID: 16039 Comm: syz-executor093 Not tainted 4.18.0-rc4+ #138
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1c9/0x2b4 lib/dump_stack.c:113
 handle_userfault.cold.33+0x47/0x62 fs/userfaultfd.c:434
 do_anonymous_page mm/memory.c:3156 [inline]
 handle_pte_fault mm/memory.c:3970 [inline]
 __handle_mm_fault+0x3a0a/0x4460 mm/memory.c:4096
 handle_mm_fault+0x53e/0xc80 mm/memory.c:4133
 __do_page_fault+0x620/0xe50 arch/x86/mm/fault.c:1396
 do_page_fault+0xf6/0x8c0 arch/x86/mm/fault.c:1471
 page_fault+0x1e/0x30 arch/x86/entry/entry_64.S:1160
RIP: 0010:copy_user_generic_unrolled+0x86/0xc0 arch/x86/lib/copy_user_64.S:65
Code: 4c 8b 5e 38 4c 89 47 20 4c 89 4f 28 4c 89 57 30 4c 89 5f 38 48 8d 76 40 48 8d 7f 40 ff c9 75 b6 89 d1 83 e2 07 c1 e9 03 74 12 <4c> 8b 06 4c 89 07 48 8d 76 08 48 8d 7f 08 ff c9 75 ee 21 d2 74 10 
RSP: 0018:ffff8801a944f700 EFLAGS: 00010203
RAX: 0000000000000004 RBX: 000000000000000c RCX: 0000000000000001
RDX: 0000000000000004 RSI: 0000000020013ff4 RDI: ffff8801bc372720
RBP: ffff8801a944f738 R08: ffffed003786e4e6 R09: ffffed003786e4e4
R10: ffffed003786e4e5 R11: 0000000000000003 R12: 0000000020014000
R13: 0000000020013ff4 R14: ffff8801bc372720 R15: 00007ffffffff000
 copy_from_user include/linux/uaccess.h:147 [inline]
 ip_options_get_from_user+0x8d/0xf0 net/ipv4/ip_options.c:537
 do_ip_setsockopt.isra.12+0x1b91/0x3e50 net/ipv4/ip_sockglue.c:652
 ip_setsockopt+0x4c/0x140 net/ipv4/ip_sockglue.c:1246
 tcp_setsockopt+0x93/0xe0 net/ipv4/tcp.c:3060
 sock_common_setsockopt+0x9a/0xe0 net/core/sock.c:3040
 __sys_setsockopt+0x1c5/0x3b0 net/socket.c:1911
 __do_sys_setsockopt net/socket.c:1922 [inline]
 __se_sys_setsockopt net/socket.c:1919 [inline]
 __x64_sys_setsockopt+0xbe/0x150 net/socket.c:1919
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x446a59
Code: e8 ac e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 0d fc ff c3 66 2e 0f 1f 84 00 00 00 00 
RSP: 002b:00007fbde3e31ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
RAX: ffffffffffffffda RBX: 00000000006dcc64 RCX: 0000000000446a59
RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000006
RBP: 00000000006dcc60 R08: 000000000000000c R09: 0000000000000000
R10: 0000000020013ff4 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffee1c4b76f R14: 00007fbde3e329c0 R15: 0000000000000010
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 1 PID: 16210 Comm: syz-executor093 Not tainted 4.18.0-rc4+ #138
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1c9/0x2b4 lib/dump_stack.c:113
 handle_userfault.cold.33+0x47/0x62 fs/userfaultfd.c:434
 do_anonymous_page mm/memory.c:3156 [inline]
 handle_pte_fault mm/memory.c:3970 [inline]
 __handle_mm_fault+0x3a0a/0x4460 mm/memory.c:4096
 handle_mm_fault+0x53e/0xc80 mm/memory.c:4133
 __do_page_fault+0x620/0xe50 arch/x86/mm/fault.c:1396
 do_page_fault+0xf6/0x8c0 arch/x86/mm/fault.c:1471
 page_fault+0x1e/0x30 arch/x86/entry/entry_64.S:1160
RIP: 0010:copy_user_generic_unrolled+0x86/0xc0 arch/x86/lib/copy_user_64.S:65
Code: 4c 8b 5e 38 4c 89 47 20 4c 89 4f 28 4c 89 57 30 4c 89 5f 38 48 8d 76 40 48 8d 7f 40 ff c9 75 b6 89 d1 83 e2 07 c1 e9 03 74 12 <4c> 8b 06 4c 89 07 48 8d 76 08 48 8d 7f 08 ff c9 75 ee 21 d2 74 10 
RSP: 0018:ffff8801cfb4f700 EFLAGS: 00010203
RAX: 0000000000000004 RBX: 000000000000000c RCX: 0000000000000001
RDX: 0000000000000004 RSI: 0000000020013ff4 RDI: ffff8801d6ae9e20
RBP: ffff8801cfb4f738 R08: ffffed003ad5d3c6 R09: ffffed003ad5d3c4
R10: ffffed003ad5d3c5 R11: 0000000000000003 R12: 0000000020014000
R13: 0000000020013ff4 R14: ffff8801d6ae9e20 R15: 00007ffffffff000
 copy_from_user include/linux/uaccess.h:147 [inline]
 ip_options_get_from_user+0x8d/0xf0 net/ipv4/ip_options.c:537
 do_ip_setsockopt.isra.12+0x1b91/0x3e50 net/ipv4/ip_sockglue.c:652
 ip_setsockopt+0x4c/0x140 net/ipv4/ip_sockglue.c:1246
 tcp_setsockopt+0x93/0xe0 net/ipv4/tcp.c:3060
 sock_common_setsockopt+0x9a/0xe0 net/core/sock.c:3040
 __sys_setsockopt+0x1c5/0x3b0 net/socket.c:1911
 __do_sys_setsockopt net/socket.c:1922 [inline]
 __se_sys_setsockopt net/socket.c:1919 [inline]
 __x64_sys_setsockopt+0xbe/0x150 net/socket.c:1919
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x446a59
Code: e8 ac e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 0d fc ff c3 66 2e 0f 1f 84 00 00 00 00 
RSP: 002b:00007fbde3e31ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
RAX: ffffffffffffffda RBX: 00000000006dcc64 RCX: 0000000000446a59
RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000006
RBP: 00000000006dcc60 R08: 000000000000000c R09: 0000000000000000
R10: 0000000020013ff4 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffee1c4b76f R14: 00007fbde3e329c0 R15: 0000000000000010
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 0 PID: 16385 Comm: syz-executor093 Not tainted 4.18.0-rc4+ #138
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1c9/0x2b4 lib/dump_stack.c:113
 handle_userfault.cold.33+0x47/0x62 fs/userfaultfd.c:434
 do_anonymous_page mm/memory.c:3156 [inline]
 handle_pte_fault mm/memory.c:3970 [inline]
 __handle_mm_fault+0x3a0a/0x4460 mm/memory.c:4096
 handle_mm_fault+0x53e/0xc80 mm/memory.c:4133
 __do_page_fault+0x620/0xe50 arch/x86/mm/fault.c:1396
 do_page_fault+0xf6/0x8c0 arch/x86/mm/fault.c:1471
 page_fault+0x1e/0x30 arch/x86/entry/entry_64.S:1160
RIP: 0010:copy_user_generic_unrolled+0x86/0xc0 arch/x86/lib/copy_user_64.S:65
Code: 4c 8b 5e 38 4c 89 47 20 4c 89 4f 28 4c 89 57 30 4c 89 5f 38 48 8d 76 40 48 8d 7f 40 ff c9 75 b6 89 d1 83 e2 07 c1 e9 03 74 12 <4c> 8b 06 4c 89 07 48 8d 76 08 48 8d 7f 08 ff c9 75 ee 21 d2 74 10 
RSP: 0018:ffff8801adecf700 EFLAGS: 00010203
RAX: 0000000000000004 RBX: 000000000000000c RCX: 0000000000000001
RDX: 0000000000000004 RSI: 0000000020013ff4 RDI: ffff8801be171720
RBP: ffff8801adecf738 R08: ffffed0037c2e2e6 R09: ffffed0037c2e2e4
R10: ffffed0037c2e2e5 R11: 0000000000000003 R12: 0000000020014000
R13: 0000000020013ff4 R14: ffff8801be171720 R15: 00007ffffffff000
 copy_from_user include/linux/uaccess.h:147 [inline]
 ip_options_get_from_user+0x8d/0xf0 net/ipv4/ip_options.c:537
 do_ip_setsockopt.isra.12+0x1b91/0x3e50 net/ipv4/ip_sockglue.c:652
 ip_setsockopt+0x4c/0x140 net/ipv4/ip_sockglue.c:1246
 tcp_setsockopt+0x93/0xe0 net/ipv4/tcp.c:3060
 sock_common_setsockopt+0x9a/0xe0 net/core/sock.c:3040
 __sys_setsockopt+0x1c5/0x3b0 net/socket.c:1911
 __do_sys_setsockopt net/socket.c:1922 [inline]
 __se_sys_setsockopt net/socket.c:1919 [inline]
 __x64_sys_setsockopt+0xbe/0x150 net/socket.c:1919
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x446a59
Code: e8 ac e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 0d fc ff c3 66 2e 0f 1f 84 00 00 00 00 
RSP: 002b:00007fbde3e31ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
RAX: ffffffffffffffda RBX: 00000000006dcc64 RCX: 0000000000446a59
RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000006
RBP: 00000000006dcc60 R08: 000000000000000c R09: 0000000000000000
R10: 0000000020013ff4 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffee1c4b76f R14: 00007fbde3e329c0 R15: 0000000000000010
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 1 PID: 16568 Comm: syz-executor093 Not tainted 4.18.0-rc4+ #138
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1c9/0x2b4 lib/dump_stack.c:113
 handle_userfault.cold.33+0x47/0x62 fs/userfaultfd.c:434
 do_anonymous_page mm/memory.c:3156 [inline]
 handle_pte_fault mm/memory.c:3970 [inline]
 __handle_mm_fault+0x3a0a/0x4460 mm/memory.c:4096
 handle_mm_fault+0x53e/0xc80 mm/memory.c:4133
 __do_page_fault+0x620/0xe50 arch/x86/mm/fault.c:1396
 do_page_fault+0xf6/0x8c0 arch/x86/mm/fault.c:1471
 page_fault+0x1e/0x30 arch/x86/entry/entry_64.S:1160
RIP: 0010:copy_user_generic_unrolled+0x86/0xc0 arch/x86/lib/copy_user_64.S:65
Code: 4c 8b 5e 38 4c 89 47 20 4c 89 4f 28 4c 89 57 30 4c 89 5f 38 48 8d 76 40 48 8d 7f 40 ff c9 75 b6 89 d1 83 e2 07 c1 e9 03 74 12 <4c> 8b 06 4c 89 07 48 8d 76 08 48 8d 7f 08 ff c9 75 ee 21 d2 74 10 
RSP: 0018:ffff8801c9487700 EFLAGS: 00010203
RAX: 0000000000000004 RBX: 000000000000000c RCX: 0000000000000001
RDX: 0000000000000004 RSI: 0000000020013ff4 RDI: ffff8801be083fa0
RBP: ffff8801c9487738 R08: ffffed0037c107f6 R09: ffffed0037c107f4
R10: ffffed0037c107f5 R11: 0000000000000003 R12: 0000000020014000
R13: 0000000020013ff4 R14: ffff8801be083fa0 R15: 00007ffffffff000
 copy_from_user include/linux/uaccess.h:147 [inline]
 ip_options_get_from_user+0x8d/0xf0 net/ipv4/ip_options.c:537
 do_ip_setsockopt.isra.12+0x1b91/0x3e50 net/ipv4/ip_sockglue.c:652
 ip_setsockopt+0x4c/0x140 net/ipv4/ip_sockglue.c:1246
 tcp_setsockopt+0x93/0xe0 net/ipv4/tcp.c:3060
 sock_common_setsockopt+0x9a/0xe0 net/core/sock.c:3040
 __sys_setsockopt+0x1c5/0x3b0 net/socket.c:1911
 __do_sys_setsockopt net/socket.c:1922 [inline]
 __se_sys_setsockopt net/socket.c:1919 [inline]
 __x64_sys_setsockopt+0xbe/0x150 net/socket.c:1919
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x446a59
Code: e8 ac e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 0d fc ff c3 66 2e 0f 1f 84 00 00 00 00 
RSP: 002b:00007fbde3e31ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
RAX: ffffffffffffffda RBX: 00000000006dcc64 RCX: 0000000000446a59
RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000006
RBP: 00000000006dcc60 R08: 000000000000000c R09: 0000000000000000
R10: 0000000020013ff4 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffee1c4b76f R14: 00007fbde3e329c0 R15: 0000000000000010
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 0 PID: 16417 Comm: syz-executor093 Not tainted 4.18.0-rc4+ #138
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1c9/0x2b4 lib/dump_stack.c:113
 handle_userfault.cold.33+0x47/0x62 fs/userfaultfd.c:434
 do_anonymous_page mm/memory.c:3156 [inline]
 handle_pte_fault mm/memory.c:3970 [inline]
 __handle_mm_fault+0x3a0a/0x4460 mm/memory.c:4096
 handle_mm_fault+0x53e/0xc80 mm/memory.c:4133
 __do_page_fault+0x620/0xe50 arch/x86/mm/fault.c:1396
 do_page_fault+0xf6/0x8c0 arch/x86/mm/fault.c:1471
 page_fault+0x1e/0x30 arch/x86/entry/entry_64.S:1160
RIP: 0010:copy_user_generic_unrolled+0x86/0xc0 arch/x86/lib/copy_user_64.S:65
Code: 4c 8b 5e 38 4c 89 47 20 4c 89 4f 28 4c 89 57 30 4c 89 5f 38 48 8d 76 40 48 8d 7f 40 ff c9 75 b6 89 d1 83 e2 07 c1 e9 03 74 12 <4c> 8b 06 4c 89 07 48 8d 76 08 48 8d 7f 08 ff c9 75 ee 21 d2 74 10 
RSP: 0018:ffff8801b440f700 EFLAGS: 00010203
RAX: 0000000000000004 RBX: 000000000000000c RCX: 0000000000000001
RDX: 0000000000000004 RSI: 0000000020013ff4 RDI: ffff8801d28969a0
RBP: ffff8801b440f738 R08: ffffed003a512d36 R09: ffffed003a512d34
R10: ffffed003a512d35 R11: 0000000000000003 R12: 0000000020014000
R13: 0000000020013ff4 R14: ffff8801d28969a0 R15: 00007ffffffff000
 copy_from_user include/linux/uaccess.h:147 [inline]
 ip_options_get_from_user+0x8d/0xf0 net/ipv4/ip_options.c:537
 do_ip_setsockopt.isra.12+0x1b91/0x3e50 net/ipv4/ip_sockglue.c:652
 ip_setsockopt+0x4c/0x140 net/ipv4/ip_sockglue.c:1246
 tcp_setsockopt+0x93/0xe0 net/ipv4/tcp.c:3060
 sock_common_setsockopt+0x9a/0xe0 net/core/sock.c:3040
 __sys_setsockopt+0x1c5/0x3b0 net/socket.c:1911
 __do_sys_setsockopt net/socket.c:1922 [inline]
 __se_sys_setsockopt net/socket.c:1919 [inline]
 __x64_sys_setsockopt+0xbe/0x150 net/socket.c:1919
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x446a59
Code: e8 ac e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 0d fc ff c3 66 2e 0f 1f 84 00 00 00 00 
FAULT_FLAG_ALLOW_RETRY missing 30
RSP: 002b:00007fbde3e31ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
RAX: ffffffffffffffda RBX: 00000000006dcc64 RCX: 0000000000446a59
RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000006
RBP: 00000000006dcc60 R08: 000000000000000c R09: 0000000000000000
R10: 0000000020013ff4 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffee1c4b76f R14: 00007fbde3e329c0 R15: 0000000000000010
CPU: 1 PID: 16744 Comm: syz-executor093 Not tainted 4.18.0-rc4+ #138
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1c9/0x2b4 lib/dump_stack.c:113
 handle_userfault.cold.33+0x47/0x62 fs/userfaultfd.c:434
 do_anonymous_page mm/memory.c:3156 [inline]
 handle_pte_fault mm/memory.c:3970 [inline]
 __handle_mm_fault+0x3a0a/0x4460 mm/memory.c:4096
 handle_mm_fault+0x53e/0xc80 mm/memory.c:4133
 __do_page_fault+0x620/0xe50 arch/x86/mm/fault.c:1396
 do_page_fault+0xf6/0x8c0 arch/x86/mm/fault.c:1471
 page_fault+0x1e/0x30 arch/x86/entry/entry_64.S:1160
RIP: 0010:copy_user_generic_unrolled+0x86/0xc0 arch/x86/lib/copy_user_64.S:65
Code: 4c 8b 5e 38 4c 89 47 20 4c 89 4f 28 4c 89 57 30 4c 89 5f 38 48 8d 76 40 48 8d 7f 40 ff c9 75 b6 89 d1 83 e2 07 c1 e9 03 74 12 <4c> 8b 06 4c 89 07 48 8d 76 08 48 8d 7f 08 ff c9 75 ee 21 d2 74 10 
RSP: 0018:ffff8801c9487700 EFLAGS: 00010203
RAX: 0000000000000004 RBX: 000000000000000c RCX: 0000000000000001
RDX: 0000000000000004 RSI: 0000000020013ff4 RDI: ffff8801be00dba0
RBP: ffff8801c9487738 R08: ffffed0037c01b76 R09: ffffed0037c01b74
R10: ffffed0037c01b75 R11: 0000000000000003 R12: 0000000020014000
R13: 0000000020013ff4 R14: ffff8801be00dba0 R15: 00007ffffffff000
 copy_from_user include/linux/uaccess.h:147 [inline]
 ip_options_get_from_user+0x8d/0xf0 net/ipv4/ip_options.c:537
 do_ip_setsockopt.isra.12+0x1b91/0x3e50 net/ipv4/ip_sockglue.c:652
 ip_setsockopt+0x4c/0x140 net/ipv4/ip_sockglue.c:1246
 tcp_setsockopt+0x93/0xe0 net/ipv4/tcp.c:3060
 sock_common_setsockopt+0x9a/0xe0 net/core/sock.c:3040
 __sys_setsockopt+0x1c5/0x3b0 net/socket.c:1911
 __do_sys_setsockopt net/socket.c:1922 [inline]
 __se_sys_setsockopt net/socket.c:1919 [inline]
 __x64_sys_setsockopt+0xbe/0x150 net/socket.c:1919
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x446a59
Code: e8 ac e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 0d fc ff c3 66 2e 0f 1f 84 00 00 00 00 
RSP: 002b:00007fbde3e31ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
RAX: ffffffffffffffda RBX: 00000000006dcc64 RCX: 0000000000446a59
RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000006
RBP: 00000000006dcc60 R08: 000000000000000c R09: 0000000000000000
R10: 0000000020013ff4 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffee1c4b76f R14: 00007fbde3e329c0 R15: 0000000000000010
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 1 PID: 16925 Comm: syz-executor093 Not tainted 4.18.0-rc4+ #138
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1c9/0x2b4 lib/dump_stack.c:113
FAULT_FLAG_ALLOW_RETRY missing 30
 handle_userfault.cold.33+0x47/0x62 fs/userfaultfd.c:434
 do_anonymous_page mm/memory.c:3156 [inline]
 handle_pte_fault mm/memory.c:3970 [inline]
 __handle_mm_fault+0x3a0a/0x4460 mm/memory.c:4096
 handle_mm_fault+0x53e/0xc80 mm/memory.c:4133
 __do_page_fault+0x620/0xe50 arch/x86/mm/fault.c:1396
 do_page_fault+0xf6/0x8c0 arch/x86/mm/fault.c:1471
 page_fault+0x1e/0x30 arch/x86/entry/entry_64.S:1160
RIP: 0010:copy_user_generic_unrolled+0x86/0xc0 arch/x86/lib/copy_user_64.S:65
Code: 4c 8b 5e 38 4c 89 47 20 4c 89 4f 28 4c 89 57 30 4c 89 5f 38 48 8d 76 40 48 8d 7f 40 ff c9 75 b6 89 d1 83 e2 07 c1 e9 03 74 12 <4c> 8b 06 4c 89 07 48 8d 76 08 48 8d 7f 08 ff c9 75 ee 21 d2 74 10 
RSP: 0018:ffff8801c8acf700 EFLAGS: 00010203
RAX: 0000000000000004 RBX: 000000000000000c RCX: 0000000000000001
RDX: 0000000000000004 RSI: 0000000020013ff4 RDI: ffff8801c1e24920
RBP: ffff8801c8acf738 R08: ffffed00383c4926 R09: ffffed00383c4924
R10: ffffed00383c4925 R11: 0000000000000003 R12: 0000000020014000
R13: 0000000020013ff4 R14: ffff8801c1e24920 R15: 00007ffffffff000
 copy_from_user include/linux/uaccess.h:147 [inline]
 ip_options_get_from_user+0x8d/0xf0 net/ipv4/ip_options.c:537
 do_ip_setsockopt.isra.12+0x1b91/0x3e50 net/ipv4/ip_sockglue.c:652
 ip_setsockopt+0x4c/0x140 net/ipv4/ip_sockglue.c:1246
 tcp_setsockopt+0x93/0xe0 net/ipv4/tcp.c:3060
 sock_common_setsockopt+0x9a/0xe0 net/core/sock.c:3040
 __sys_setsockopt+0x1c5/0x3b0 net/socket.c:1911
 __do_sys_setsockopt net/socket.c:1922 [inline]
 __se_sys_setsockopt net/socket.c:1919 [inline]
 __x64_sys_setsockopt+0xbe/0x150 net/socket.c:1919
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x446a59
Code: e8 ac e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 0d fc ff c3 66 2e 0f 1f 84 00 00 00 00 
RSP: 002b:00007fbde3e31ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
RAX: ffffffffffffffda RBX: 00000000006dcc64 RCX: 0000000000446a59
RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000006
RBP: 00000000006dcc60 R08: 000000000000000c R09: 0000000000000000
R10: 0000000020013ff4 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffee1c4b76f R14: 00007fbde3e329c0 R15: 0000000000000010
CPU: 0 PID: 16929 Comm: syz-executor093 Not tainted 4.18.0-rc4+ #138
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1c9/0x2b4 lib/dump_stack.c:113
 handle_userfault.cold.33+0x47/0x62 fs/userfaultfd.c:434
 do_anonymous_page mm/memory.c:3156 [inline]
 handle_pte_fault mm/memory.c:3970 [inline]
 __handle_mm_fault+0x3a0a/0x4460 mm/memory.c:4096
 handle_mm_fault+0x53e/0xc80 mm/memory.c:4133
 __do_page_fault+0x620/0xe50 arch/x86/mm/fault.c:1396
 do_page_fault+0xf6/0x8c0 arch/x86/mm/fault.c:1471
 page_fault+0x1e/0x30 arch/x86/entry/entry_64.S:1160
RIP: 0010:copy_user_generic_unrolled+0x86/0xc0 arch/x86/lib/copy_user_64.S:65
Code: 4c 8b 5e 38 4c 89 47 20 4c 89 4f 28 4c 89 57 30 4c 89 5f 38 48 8d 76 40 48 8d 7f 40 ff c9 75 b6 89 d1 83 e2 07 c1 e9 03 74 12 <4c> 8b 06 4c 89 07 48 8d 76 08 48 8d 7f 08 ff c9 75 ee 21 d2 74 10 
RSP: 0018:ffff8801c9487700 EFLAGS: 00010203
RAX: 0000000000000004 RBX: 000000000000000c RCX: 0000000000000001
RDX: 0000000000000004 RSI: 0000000020013ff4 RDI: ffff8801c2fb3ba0
RBP: ffff8801c9487738 R08: ffffed00385f6776 R09: ffffed00385f6774
R10: ffffed00385f6775 R11: 0000000000000003 R12: 0000000020014000
R13: 0000000020013ff4 R14: ffff8801c2fb3ba0 R15: 00007ffffffff000
 copy_from_user include/linux/uaccess.h:147 [inline]
 ip_options_get_from_user+0x8d/0xf0 net/ipv4/ip_options.c:537
 do_ip_setsockopt.isra.12+0x1b91/0x3e50 net/ipv4/ip_sockglue.c:652
 ip_setsockopt+0x4c/0x140 net/ipv4/ip_sockglue.c:1246
 tcp_setsockopt+0x93/0xe0 net/ipv4/tcp.c:3060
 sock_common_setsockopt+0x9a/0xe0 net/core/sock.c:3040
 __sys_setsockopt+0x1c5/0x3b0 net/socket.c:1911
 __do_sys_setsockopt net/socket.c:1922 [inline]
 __se_sys_setsockopt net/socket.c:1919 [inline]
 __x64_sys_setsockopt+0xbe/0x150 net/socket.c:1919
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x446a59
Code: e8 ac e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 0d fc ff c3 66 2e 0f 1f 84 00 00 00 00 
RSP: 002b:00007fbde3e31ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
RAX: ffffffffffffffda RBX: 00000000006dcc64 RCX: 0000000000446a59
RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000006
RBP: 00000000006dcc60 R08: 000000000000000c R09: 0000000000000000
R10: 0000000020013ff4 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffee1c4b76f R14: 00007fbde3e329c0 R15: 0000000000000010
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 0 PID: 17063 Comm: syz-executor093 Not tainted 4.18.0-rc4+ #138
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1c9/0x2b4 lib/dump_stack.c:113
 handle_userfault.cold.33+0x47/0x62 fs/userfaultfd.c:434
 do_anonymous_page mm/memory.c:3156 [inline]
 handle_pte_fault mm/memory.c:3970 [inline]
 __handle_mm_fault+0x3a0a/0x4460 mm/memory.c:4096
 handle_mm_fault+0x53e/0xc80 mm/memory.c:4133
 __do_page_fault+0x620/0xe50 arch/x86/mm/fault.c:1396
 do_page_fault+0xf6/0x8c0 arch/x86/mm/fault.c:1471
 page_fault+0x1e/0x30 arch/x86/entry/entry_64.S:1160
RIP: 0010:copy_user_generic_unrolled+0x86/0xc0 arch/x86/lib/copy_user_64.S:65
Code: 4c 8b 5e 38 4c 89 47 20 4c 89 4f 28 4c 89 57 30 4c 89 5f 38 48 8d 76 40 48 8d 7f 40 ff c9 75 b6 89 d1 83 e2 07 c1 e9 03 74 12 <4c> 8b 06 4c 89 07 48 8d 76 08 48 8d 7f 08 ff c9 75 ee 21 d2 74 10 
RSP: 0018:ffff8801c7bbf700 EFLAGS: 00010203
RAX: 0000000000000004 RBX: 000000000000000c RCX: 0000000000000001
RDX: 0000000000000004 RSI: 0000000020013ff4 RDI: ffff8801d7676520
RBP: ffff8801c7bbf738 R08: ffffed003aececa6 R09: ffffed003aececa4
R10: ffffed003aececa5 R11: 0000000000000003 R12: 0000000020014000
R13: 0000000020013ff4 R14: ffff8801d7676520 R15: 00007ffffffff000
 copy_from_user include/linux/uaccess.h:147 [inline]
 ip_options_get_from_user+0x8d/0xf0 net/ipv4/ip_options.c:537
 do_ip_setsockopt.isra.12+0x1b91/0x3e50 net/ipv4/ip_sockglue.c:652
 ip_setsockopt+0x4c/0x140 net/ipv4/ip_sockglue.c:1246
 tcp_setsockopt+0x93/0xe0 net/ipv4/tcp.c:3060
 sock_common_setsockopt+0x9a/0xe0 net/core/sock.c:3040
 __sys_setsockopt+0x1c5/0x3b0 net/socket.c:1911
 __do_sys_setsockopt net/socket.c:1922 [inline]
 __se_sys_setsockopt net/socket.c:1919 [inline]
 __x64_sys_setsockopt+0xbe/0x150 net/socket.c:1919
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x446a59
Code: e8 ac e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 0d fc ff c3 66 2e 0f 1f 84 00 00 00 00 
RSP: 002b:00007fbde3e31ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
RAX: ffffffffffffffda RBX: 00000000006dcc64 RCX: 0000000000446a59
RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000006
RBP: 00000000006dcc60 R08: 000000000000000c R09: 0000000000000000
R10: 0000000020013ff4 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffee1c4b76f R14: 00007fbde3e329c0 R15: 0000000000000010
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 1 PID: 17256 Comm: syz-executor093 Not tainted 4.18.0-rc4+ #138
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1c9/0x2b4 lib/dump_stack.c:113
 handle_userfault.cold.33+0x47/0x62 fs/userfaultfd.c:434
 do_anonymous_page mm/memory.c:3156 [inline]
 handle_pte_fault mm/memory.c:3970 [inline]
 __handle_mm_fault+0x3a0a/0x4460 mm/memory.c:4096
 handle_mm_fault+0x53e/0xc80 mm/memory.c:4133
 __do_page_fault+0x620/0xe50 arch/x86/mm/fault.c:1396
 do_page_fault+0xf6/0x8c0 arch/x86/mm/fault.c:1471
 page_fault+0x1e/0x30 arch/x86/entry/entry_64.S:1160
RIP: 0010:copy_user_generic_unrolled+0x86/0xc0 arch/x86/lib/copy_user_64.S:65
Code: 4c 8b 5e 38 4c 89 47 20 4c 89 4f 28 4c 89 57 30 4c 89 5f 38 48 8d 76 40 48 8d 7f 40 ff c9 75 b6 89 d1 83 e2 07 c1 e9 03 74 12 <4c> 8b 06 4c 89 07 48 8d 76 08 48 8d 7f 08 ff c9 75 ee 21 d2 74 10 
RSP: 0018:ffff8801c498f700 EFLAGS: 00010203
RAX: 0000000000000004 RBX: 000000000000000c RCX: 0000000000000001
RDX: 0000000000000004 RSI: 0000000020013ff4 RDI: ffff8801c50670a0
RBP: ffff8801c498f738 R08: ffffed0038a0ce16 R09: ffffed0038a0ce14
R10: ffffed0038a0ce15 R11: 0000000000000003 R12: 0000000020014000
R13: 0000000020013ff4 R14: ffff8801c50670a0 R15: 00007ffffffff000
 copy_from_user include/linux/uaccess.h:147 [inline]
 ip_options_get_from_user+0x8d/0xf0 net/ipv4/ip_options.c:537
 do_ip_setsockopt.isra.12+0x1b91/0x3e50 net/ipv4/ip_sockglue.c:652
 ip_setsockopt+0x4c/0x140 net/ipv4/ip_sockglue.c:1246
 tcp_setsockopt+0x93/0xe0 net/ipv4/tcp.c:3060
 sock_common_setsockopt+0x9a/0xe0 net/core/sock.c:3040
 __sys_setsockopt+0x1c5/0x3b0 net/socket.c:1911
 __do_sys_setsockopt net/socket.c:1922 [inline]
 __se_sys_setsockopt net/socket.c:1919 [inline]
 __x64_sys_setsockopt+0xbe/0x150 net/socket.c:1919
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x446a59
Code: e8 ac e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 0d fc ff c3 66 2e 0f 1f 84 00 00 00 00 
RSP: 002b:00007fbde3e31ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
RAX: ffffffffffffffda RBX: 00000000006dcc64 RCX: 0000000000446a59
RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000006
RBP: 00000000006dcc60 R08: 000000000000000c R09: 0000000000000000
R10: 0000000020013ff4 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffee1c4b76f R14: 00007fbde3e329c0 R15: 0000000000000010
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 0 PID: 17370 Comm: syz-executor093 Not tainted 4.18.0-rc4+ #138
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1c9/0x2b4 lib/dump_stack.c:113
 handle_userfault.cold.33+0x47/0x62 fs/userfaultfd.c:434
 do_anonymous_page mm/memory.c:3156 [inline]
 handle_pte_fault mm/memory.c:3970 [inline]
 __handle_mm_fault+0x3a0a/0x4460 mm/memory.c:4096
 handle_mm_fault+0x53e/0xc80 mm/memory.c:4133
 __do_page_fault+0x620/0xe50 arch/x86/mm/fault.c:1396
 do_page_fault+0xf6/0x8c0 arch/x86/mm/fault.c:1471
 page_fault+0x1e/0x30 arch/x86/entry/entry_64.S:1160
RIP: 0010:copy_user_generic_unrolled+0x86/0xc0 arch/x86/lib/copy_user_64.S:65
Code: 4c 8b 5e 38 4c 89 47 20 4c 89 4f 28 4c 89 57 30 4c 89 5f 38 48 8d 76 40 48 8d 7f 40 ff c9 75 b6 89 d1 83 e2 07 c1 e9 03 74 12 <4c> 8b 06 4c 89 07 48 8d 76 08 48 8d 7f 08 ff c9 75 ee 21 d2 74 10 
RSP: 0018:ffff8801a944f700 EFLAGS: 00010203
RAX: 0000000000000004 RBX: 000000000000000c RCX: 0000000000000001
RDX: 0000000000000004 RSI: 0000000020013ff4 RDI: ffff8801c5f238a0
RBP: ffff8801a944f738 R08: ffffed0038be4716 R09: ffffed0038be4714
R10: ffffed0038be4715 R11: 0000000000000003 R12: 0000000020014000
R13: 0000000020013ff4 R14: ffff8801c5f238a0 R15: 00007ffffffff000
 copy_from_user include/linux/uaccess.h:147 [inline]
 ip_options_get_from_user+0x8d/0xf0 net/ipv4/ip_options.c:537
 do_ip_setsockopt.isra.12+0x1b91/0x3e50 net/ipv4/ip_sockglue.c:652
 ip_setsockopt+0x4c/0x140 net/ipv4/ip_sockglue.c:1246
 tcp_setsockopt+0x93/0xe0 net/ipv4/tcp.c:3060
 sock_common_setsockopt+0x9a/0xe0 net/core/sock.c:3040
 __sys_setsockopt+0x1c5/0x3b0 net/socket.c:1911
 __do_sys_setsockopt net/socket.c:1922 [inline]
 __se_sys_setsockopt net/socket.c:1919 [inline]
 __x64_sys_setsockopt+0xbe/0x150 net/socket.c:1919
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x446a59
Code: e8 ac e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 0d fc ff c3 66 2e 0f 1f 84 00 00 00 00 
RSP: 002b:00007fbde3e31ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
RAX: ffffffffffffffda RBX: 00000000006dcc64 RCX: 0000000000446a59
RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000006
RBP: 00000000006dcc60 R08: 000000000000000c R09: 0000000000000000
R10: 0000000020013ff4 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffee1c4b76f R14: 00007fbde3e329c0 R15: 0000000000000010
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 1 PID: 17530 Comm: syz-executor093 Not tainted 4.18.0-rc4+ #138
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1c9/0x2b4 lib/dump_stack.c:113
 handle_userfault.cold.33+0x47/0x62 fs/userfaultfd.c:434
 do_anonymous_page mm/memory.c:3156 [inline]
 handle_pte_fault mm/memory.c:3970 [inline]
 __handle_mm_fault+0x3a0a/0x4460 mm/memory.c:4096
 handle_mm_fault+0x53e/0xc80 mm/memory.c:4133
 __do_page_fault+0x620/0xe50 arch/x86/mm/fault.c:1396
 do_page_fault+0xf6/0x8c0 arch/x86/mm/fault.c:1471
 page_fault+0x1e/0x30 arch/x86/entry/entry_64.S:1160
RIP: 0010:copy_user_generic_unrolled+0x86/0xc0 arch/x86/lib/copy_user_64.S:65
Code: 4c 8b 5e 38 4c 89 47 20 4c 89 4f 28 4c 89 57 30 4c 89 5f 38 48 8d 76 40 48 8d 7f 40 ff c9 75 b6 89 d1 83 e2 07 c1 e9 03 74 12 <4c> 8b 06 4c 89 07 48 8d 76 08 48 8d 7f 08 ff c9 75 ee 21 d2 74 10 
RSP: 0018:ffff8801b728f700 EFLAGS: 00010203
RAX: 0000000000000004 RBX: 000000000000000c RCX: 0000000000000001
RDX: 0000000000000004 RSI: 0000000020013ff4 RDI: ffff8801c02c72a0
RBP: ffff8801b728f738 R08: ffffed0038058e56 R09: ffffed0038058e54
R10: ffffed0038058e55 R11: 0000000000000003 R12: 0000000020014000
R13: 0000000020013ff4 R14: ffff8801c02c72a0 R15: 00007ffffffff000
 copy_from_user include/linux/uaccess.h:147 [inline]
 ip_options_get_from_user+0x8d/0xf0 net/ipv4/ip_options.c:537
 do_ip_setsockopt.isra.12+0x1b91/0x3e50 net/ipv4/ip_sockglue.c:652
 ip_setsockopt+0x4c/0x140 net/ipv4/ip_sockglue.c:1246
 tcp_setsockopt+0x93/0xe0 net/ipv4/tcp.c:3060
 sock_common_setsockopt+0x9a/0xe0 net/core/sock.c:3040
 __sys_setsockopt+0x1c5/0x3b0 net/socket.c:1911
 __do_sys_setsockopt net/socket.c:1922 [inline]
 __se_sys_setsockopt net/socket.c:1919 [inline]
 __x64_sys_setsockopt+0xbe/0x150 net/socket.c:1919
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x446a59
Code: e8 ac e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 0d fc ff c3 66 2e 0f 1f 84 00 00 00 00 
RSP: 002b:00007fbde3e31ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
RAX: ffffffffffffffda RBX: 00000000006dcc64 RCX: 0000000000446a59
RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000006
RBP: 00000000006dcc60 R08: 000000000000000c R09: 0000000000000000
R10: 0000000020013ff4 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffee1c4b76f R14: 00007fbde3e329c0 R15: 0000000000000010
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 1 PID: 17555 Comm: syz-executor093 Not tainted 4.18.0-rc4+ #138
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1c9/0x2b4 lib/dump_stack.c:113
 handle_userfault.cold.33+0x47/0x62 fs/userfaultfd.c:434
 do_anonymous_page mm/memory.c:3156 [inline]
 handle_pte_fault mm/memory.c:3970 [inline]
 __handle_mm_fault+0x3a0a/0x4460 mm/memory.c:4096
 handle_mm_fault+0x53e/0xc80 mm/memory.c:4133
 __do_page_fault+0x620/0xe50 arch/x86/mm/fault.c:1396
 do_page_fault+0xf6/0x8c0 arch/x86/mm/fault.c:1471
 page_fault+0x1e/0x30 arch/x86/entry/entry_64.S:1160
RIP: 0010:copy_user_generic_unrolled+0x86/0xc0 arch/x86/lib/copy_user_64.S:65
Code: 4c 8b 5e 38 4c 89 47 20 4c 89 4f 28 4c 89 57 30 4c 89 5f 38 48 8d 76 40 48 8d 7f 40 ff c9 75 b6 89 d1 83 e2 07 c1 e9 03 74 12 <4c> 8b 06 4c 89 07 48 8d 76 08 48 8d 7f 08 ff c9 75 ee 21 d2 74 10 
RSP: 0018:ffff8801a90e7700 EFLAGS: 00010203
RAX: 0000000000000004 RBX: 000000000000000c RCX: 0000000000000001
RDX: 0000000000000004 RSI: 0000000020013ff4 RDI: ffff8801be2b02a0
RBP: ffff8801a90e7738 R08: ffffed0037c56056 R09: ffffed0037c56054
R10: ffffed0037c56055 R11: 0000000000000003 R12: 0000000020014000
R13: 0000000020013ff4 R14: ffff8801be2b02a0 R15: 00007ffffffff000
 copy_from_user include/linux/uaccess.h:147 [inline]
 ip_options_get_from_user+0x8d/0xf0 net/ipv4/ip_options.c:537
 do_ip_setsockopt.isra.12+0x1b91/0x3e50 net/ipv4/ip_sockglue.c:652
 ip_setsockopt+0x4c/0x140 net/ipv4/ip_sockglue.c:1246
 tcp_setsockopt+0x93/0xe0 net/ipv4/tcp.c:3060
 sock_common_setsockopt+0x9a/0xe0 net/core/sock.c:3040
 __sys_setsockopt+0x1c5/0x3b0 net/socket.c:1911
 __do_sys_setsockopt net/socket.c:1922 [inline]
 __se_sys_setsockopt net/socket.c:1919 [inline]
 __x64_sys_setsockopt+0xbe/0x150 net/socket.c:1919
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x446a59
Code: e8 ac e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 0d fc ff c3 66 2e 0f 1f 84 00 00 00 00 
RSP: 002b:00007fbde3e31ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
RAX: ffffffffffffffda RBX: 00000000006dcc64 RCX: 0000000000446a59
RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000006
RBP: 00000000006dcc60 R08: 000000000000000c R09: 0000000000000000
R10: 0000000020013ff4 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffee1c4b76f R14: 00007fbde3e329c0 R15: 0000000000000010
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 0 PID: 17623 Comm: syz-executor093 Not tainted 4.18.0-rc4+ #138
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1c9/0x2b4 lib/dump_stack.c:113
 handle_userfault.cold.33+0x47/0x62 fs/userfaultfd.c:434
 do_anonymous_page mm/memory.c:3156 [inline]
 handle_pte_fault mm/memory.c:3970 [inline]
 __handle_mm_fault+0x3a0a/0x4460 mm/memory.c:4096
 handle_mm_fault+0x53e/0xc80 mm/memory.c:4133
 __do_page_fault+0x620/0xe50 arch/x86/mm/fault.c:1396
 do_page_fault+0xf6/0x8c0 arch/x86/mm/fault.c:1471
 page_fault+0x1e/0x30 arch/x86/entry/entry_64.S:1160
RIP: 0010:copy_user_generic_unrolled+0x86/0xc0 arch/x86/lib/copy_user_64.S:65
Code: 4c 8b 5e 38 4c 89 47 20 4c 89 4f 28 4c 89 57 30 4c 89 5f 38 48 8d 76 40 48 8d 7f 40 ff c9 75 b6 89 d1 83 e2 07 c1 e9 03 74 12 <4c> 8b 06 4c 89 07 48 8d 76 08 48 8d 7f 08 ff c9 75 ee 21 d2 74 10 
RSP: 0018:ffff8801ba3af700 EFLAGS: 00010203
RAX: 0000000000000004 RBX: 000000000000000c RCX: 0000000000000001
RDX: 0000000000000004 RSI: 0000000020013ff4 RDI: ffff8801b80715a0
RBP: ffff8801ba3af738 R08: ffffed003700e2b6 R09: ffffed003700e2b4
R10: ffffed003700e2b5 R11: 0000000000000003 R12: 0000000020014000
R13: 0000000020013ff4 R14: ffff8801b80715a0 R15: 00007ffffffff000
 copy_from_user include/linux/uaccess.h:147 [inline]
 ip_options_get_from_user+0x8d/0xf0 net/ipv4/ip_options.c:537
 do_ip_setsockopt.isra.12+0x1b91/0x3e50 net/ipv4/ip_sockglue.c:652
 ip_setsockopt+0x4c/0x140 net/ipv4/ip_sockglue.c:1246
 tcp_setsockopt+0x93/0xe0 net/ipv4/tcp.c:3060
 sock_common_setsockopt+0x9a/0xe0 net/core/sock.c:3040
 __sys_setsockopt+0x1c5/0x3b0 net/socket.c:1911
 __do_sys_setsockopt net/socket.c:1922 [inline]
 __se_sys_setsockopt net/socket.c:1919 [inline]
 __x64_sys_setsockopt+0xbe/0x150 net/socket.c:1919
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x446a59
Code: e8 ac e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 0d fc ff c3 66 2e 0f 1f 84 00 00 00 00 
RSP: 002b:00007fbde3e31ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
RAX: ffffffffffffffda RBX: 00000000006dcc64 RCX: 0000000000446a59
RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000006
RBP: 00000000006dcc60 R08: 000000000000000c R09: 0000000000000000
R10: 0000000020013ff4 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffee1c4b76f R14: 00007fbde3e329c0 R15: 0000000000000010
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 1 PID: 17867 Comm: syz-executor093 Not tainted 4.18.0-rc4+ #138
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1c9/0x2b4 lib/dump_stack.c:113
 handle_userfault.cold.33+0x47/0x62 fs/userfaultfd.c:434
 do_anonymous_page mm/memory.c:3156 [inline]
 handle_pte_fault mm/memory.c:3970 [inline]
 __handle_mm_fault+0x3a0a/0x4460 mm/memory.c:4096
 handle_mm_fault+0x53e/0xc80 mm/memory.c:4133
 __do_page_fault+0x620/0xe50 arch/x86/mm/fault.c:1396
 do_page_fault+0xf6/0x8c0 arch/x86/mm/fault.c:1471
 page_fault+0x1e/0x30 arch/x86/entry/entry_64.S:1160
RIP: 0010:copy_user_generic_unrolled+0x86/0xc0 arch/x86/lib/copy_user_64.S:65
Code: 4c 8b 5e 38 4c 89 47 20 4c 89 4f 28 4c 89 57 30 4c 89 5f 38 48 8d 76 40 48 8d 7f 40 ff c9 75 b6 89 d1 83 e2 07 c1 e9 03 74 12 <4c> 8b 06 4c 89 07 48 8d 76 08 48 8d 7f 08 ff c9 75 ee 21 d2 74 10 
RSP: 0018:ffff8801b44af700 EFLAGS: 00010203
RAX: 0000000000000004 RBX: 000000000000000c RCX: 0000000000000001
RDX: 0000000000000004 RSI: 0000000020013ff4 RDI: ffff8801b472bea0
RBP: ffff8801b44af738 R08: ffffed00368e57d6 R09: ffffed00368e57d4
R10: ffffed00368e57d5 R11: 0000000000000003 R12: 0000000020014000
R13: 0000000020013ff4 R14: ffff8801b472bea0 R15: 00007ffffffff000
 copy_from_user include/linux/uaccess.h:147 [inline]
 ip_options_get_from_user+0x8d/0xf0 net/ipv4/ip_options.c:537
 do_ip_setsockopt.isra.12+0x1b91/0x3e50 net/ipv4/ip_sockglue.c:652
 ip_setsockopt+0x4c/0x140 net/ipv4/ip_sockglue.c:1246
 tcp_setsockopt+0x93/0xe0 net/ipv4/tcp.c:3060
 sock_common_setsockopt+0x9a/0xe0 net/core/sock.c:3040
 __sys_setsockopt+0x1c5/0x3b0 net/socket.c:1911
 __do_sys_setsockopt net/socket.c:1922 [inline]
 __se_sys_setsockopt net/socket.c:1919 [inline]
 __x64_sys_setsockopt+0xbe/0x150 net/socket.c:1919
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x446a59
Code: e8 ac e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 0d fc ff c3 66 2e 0f 1f 84 00 00 00 00 
RSP: 002b:00007fbde3e31ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
RAX: ffffffffffffffda RBX: 00000000006dcc64 RCX: 0000000000446a59
RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000006
RBP: 00000000006dcc60 R08: 000000000000000c R09: 0000000000000000
R10: 0000000020013ff4 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffee1c4b76f R14: 00007fbde3e329c0 R15: 0000000000000010
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 0 PID: 18024 Comm: syz-executor093 Not tainted 4.18.0-rc4+ #138
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1c9/0x2b4 lib/dump_stack.c:113
 handle_userfault.cold.33+0x47/0x62 fs/userfaultfd.c:434
 do_anonymous_page mm/memory.c:3156 [inline]
 handle_pte_fault mm/memory.c:3970 [inline]
 __handle_mm_fault+0x3a0a/0x4460 mm/memory.c:4096