[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 52.268852][ T26] audit: type=1800 audit(1578461853.792:25): pid=8391 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 52.287845][ T26] audit: type=1800 audit(1578461853.802:26): pid=8391 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 52.308727][ T26] audit: type=1800 audit(1578461853.802:27): pid=8391 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.216' (ECDSA) to the list of known hosts. 2020/01/08 05:37:43 fuzzer started 2020/01/08 05:37:46 dialing manager at 10.128.0.26:35703 2020/01/08 05:37:46 syscalls: 2824 2020/01/08 05:37:46 code coverage: enabled 2020/01/08 05:37:46 comparison tracing: enabled 2020/01/08 05:37:46 extra coverage: enabled 2020/01/08 05:37:46 setuid sandbox: enabled 2020/01/08 05:37:46 namespace sandbox: enabled 2020/01/08 05:37:46 Android sandbox: /sys/fs/selinux/policy does not exist 2020/01/08 05:37:46 fault injection: enabled 2020/01/08 05:37:46 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2020/01/08 05:37:46 net packet injection: enabled 2020/01/08 05:37:46 net device setup: enabled 2020/01/08 05:37:46 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2020/01/08 05:37:46 devlink PCI setup: PCI device 0000:00:10.0 is not available 05:37:47 executing program 0: perf_event_open(&(0x7f00000011c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000240)={0x26, 'rng\x00', 0x0, 0x0, 'jitterentropy_rng\x00'}, 0x58) 05:37:47 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setresgid(0x0, 0xee01, 0x0) setgroups(0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setuid(r1) shmget$private(0x0, 0x3000, 0x1800, &(0x7f0000ffd000/0x3000)=nil) syzkaller login: [ 65.762688][ T8557] IPVS: ftp: loaded support on port[0] = 21 05:37:47 executing program 2: r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setuid(r2) ioctl$SIOCRSSL2CALL(r0, 0x89e2, 0x0) [ 65.916279][ T8560] IPVS: ftp: loaded support on port[0] = 21 [ 65.944400][ T8557] chnl_net:caif_netlink_parms(): no params data found [ 66.077026][ T8557] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.085467][ T8557] bridge0: port 1(bridge_slave_0) entered disabled state [ 66.093912][ T8557] device bridge_slave_0 entered promiscuous mode [ 66.115413][ T8557] bridge0: port 2(bridge_slave_1) entered blocking state 05:37:47 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = fcntl$dupfd(r1, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x1000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='redirect_dir=.']) [ 66.124012][ T8557] bridge0: port 2(bridge_slave_1) entered disabled state [ 66.131881][ T8557] device bridge_slave_1 entered promiscuous mode [ 66.220658][ T8563] IPVS: ftp: loaded support on port[0] = 21 [ 66.244023][ T8557] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 66.270019][ T8560] chnl_net:caif_netlink_parms(): no params data found [ 66.299119][ T8557] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 66.337380][ T8557] team0: Port device team_slave_0 added [ 66.358938][ T8565] IPVS: ftp: loaded support on port[0] = 21 [ 66.373934][ T8557] team0: Port device team_slave_1 added [ 66.403004][ T8560] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.410183][ T8560] bridge0: port 1(bridge_slave_0) entered disabled state [ 66.418621][ T8560] device bridge_slave_0 entered promiscuous mode 05:37:48 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setuid(r1) r2 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000000)="580000001400192340834b80040d8c560a067fffffff81004e220000000058000b4824ca944f64009400050028925aa8000000000000008000f0fffeffff09000000fff5dd00000010000100090c0900fcff0000040e05a5", 0x58}], 0x1) [ 66.486372][ T8557] device hsr_slave_0 entered promiscuous mode [ 66.552275][ T8557] device hsr_slave_1 entered promiscuous mode [ 66.610743][ T8560] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.618301][ T8560] bridge0: port 2(bridge_slave_1) entered disabled state [ 66.627983][ T8560] device bridge_slave_1 entered promiscuous mode 05:37:48 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket$unix(0x1, 0x5, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000c85000)) epoll_wait(r1, &(0x7f0000000000)=[{}], 0x1, 0x0) [ 66.656565][ T8567] IPVS: ftp: loaded support on port[0] = 21 [ 66.781715][ T8560] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 66.841440][ T8570] IPVS: ftp: loaded support on port[0] = 21 [ 66.850270][ T8560] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 66.868670][ T8563] chnl_net:caif_netlink_parms(): no params data found [ 66.916048][ T8560] team0: Port device team_slave_0 added [ 66.952736][ T8560] team0: Port device team_slave_1 added [ 66.999630][ T8565] chnl_net:caif_netlink_parms(): no params data found [ 67.017529][ T8557] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 67.090474][ T8563] bridge0: port 1(bridge_slave_0) entered blocking state [ 67.097685][ T8563] bridge0: port 1(bridge_slave_0) entered disabled state [ 67.105286][ T8563] device bridge_slave_0 entered promiscuous mode [ 67.123894][ T8557] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 67.215907][ T8560] device hsr_slave_0 entered promiscuous mode [ 67.282238][ T8560] device hsr_slave_1 entered promiscuous mode [ 67.352223][ T8560] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 67.359981][ T8560] Cannot create hsr debugfs directory [ 67.365831][ T8563] bridge0: port 2(bridge_slave_1) entered blocking state [ 67.374822][ T8563] bridge0: port 2(bridge_slave_1) entered disabled state [ 67.382681][ T8563] device bridge_slave_1 entered promiscuous mode [ 67.400158][ T8557] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 67.453809][ T8567] chnl_net:caif_netlink_parms(): no params data found [ 67.470167][ T8563] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 67.485575][ T8557] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 67.555656][ T8563] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 67.603903][ T8563] team0: Port device team_slave_0 added [ 67.629667][ T8565] bridge0: port 1(bridge_slave_0) entered blocking state [ 67.636946][ T8565] bridge0: port 1(bridge_slave_0) entered disabled state [ 67.644881][ T8565] device bridge_slave_0 entered promiscuous mode [ 67.656315][ T8563] team0: Port device team_slave_1 added [ 67.677261][ T8565] bridge0: port 2(bridge_slave_1) entered blocking state [ 67.685253][ T8565] bridge0: port 2(bridge_slave_1) entered disabled state [ 67.693995][ T8565] device bridge_slave_1 entered promiscuous mode [ 67.726247][ T8567] bridge0: port 1(bridge_slave_0) entered blocking state [ 67.734242][ T8567] bridge0: port 1(bridge_slave_0) entered disabled state [ 67.742334][ T8567] device bridge_slave_0 entered promiscuous mode [ 67.751091][ T8567] bridge0: port 2(bridge_slave_1) entered blocking state [ 67.758402][ T8567] bridge0: port 2(bridge_slave_1) entered disabled state [ 67.766249][ T8567] device bridge_slave_1 entered promiscuous mode [ 67.794543][ T8565] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 67.834865][ T8565] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 67.860258][ T8560] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 67.934500][ T8563] device hsr_slave_0 entered promiscuous mode [ 67.972635][ T8563] device hsr_slave_1 entered promiscuous mode [ 68.022678][ T8563] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 68.030249][ T8563] Cannot create hsr debugfs directory [ 68.037244][ T8567] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 68.059976][ T8570] chnl_net:caif_netlink_parms(): no params data found [ 68.069317][ T8560] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 68.130037][ T8567] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 68.142136][ T8565] team0: Port device team_slave_0 added [ 68.155477][ T8565] team0: Port device team_slave_1 added [ 68.162688][ T8560] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 68.224403][ T8560] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 68.290811][ T8557] 8021q: adding VLAN 0 to HW filter on device bond0 [ 68.310687][ T8567] team0: Port device team_slave_0 added [ 68.373672][ T8565] device hsr_slave_0 entered promiscuous mode [ 68.422339][ T8565] device hsr_slave_1 entered promiscuous mode [ 68.462166][ T8565] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 68.462198][ T8565] Cannot create hsr debugfs directory [ 68.470614][ T8557] 8021q: adding VLAN 0 to HW filter on device team0 [ 68.493585][ T8567] team0: Port device team_slave_1 added [ 68.502944][ T3225] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 68.511143][ T3225] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 68.555762][ T8570] bridge0: port 1(bridge_slave_0) entered blocking state [ 68.563323][ T8570] bridge0: port 1(bridge_slave_0) entered disabled state [ 68.570901][ T8570] device bridge_slave_0 entered promiscuous mode [ 68.578255][ T3225] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 68.587069][ T3225] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 68.595703][ T3225] bridge0: port 1(bridge_slave_0) entered blocking state [ 68.602952][ T3225] bridge0: port 1(bridge_slave_0) entered forwarding state [ 68.610958][ T3225] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 68.683748][ T8567] device hsr_slave_0 entered promiscuous mode [ 68.732378][ T8567] device hsr_slave_1 entered promiscuous mode [ 68.782273][ T8567] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 68.789878][ T8567] Cannot create hsr debugfs directory [ 68.803221][ T8570] bridge0: port 2(bridge_slave_1) entered blocking state [ 68.810406][ T8570] bridge0: port 2(bridge_slave_1) entered disabled state [ 68.819070][ T8570] device bridge_slave_1 entered promiscuous mode [ 68.826969][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 68.836283][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 68.844746][ T2951] bridge0: port 2(bridge_slave_1) entered blocking state [ 68.851772][ T2951] bridge0: port 2(bridge_slave_1) entered forwarding state [ 68.888528][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 68.899033][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 68.907930][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 68.917005][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 68.926459][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 68.967385][ T8570] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 68.980214][ T8570] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 68.997301][ T8563] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 69.054896][ T8563] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 69.115752][ T8570] team0: Port device team_slave_0 added [ 69.124196][ T8570] team0: Port device team_slave_1 added [ 69.131531][ T2937] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 69.140330][ T2937] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 69.149956][ T8563] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 69.254869][ T8570] device hsr_slave_0 entered promiscuous mode [ 69.302262][ T8570] device hsr_slave_1 entered promiscuous mode [ 69.352462][ T8570] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 69.360083][ T8570] Cannot create hsr debugfs directory [ 69.372519][ T8563] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 69.403324][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 69.411690][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 69.420611][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 69.429106][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 69.439755][ T8557] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 69.486363][ T8560] 8021q: adding VLAN 0 to HW filter on device bond0 [ 69.523768][ T8565] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 69.569361][ T3224] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 69.577221][ T3224] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 69.587416][ T8567] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 69.657831][ T8567] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 69.704020][ T8565] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 69.744602][ T8560] 8021q: adding VLAN 0 to HW filter on device team0 [ 69.751378][ T8565] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 69.827282][ T8557] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 69.834742][ T8567] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 69.888240][ T8567] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 69.933882][ T8565] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 69.994545][ T2937] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 70.002707][ T2937] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 70.010094][ T2937] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 70.019773][ T2937] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 70.028205][ T2937] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.035264][ T2937] bridge0: port 1(bridge_slave_0) entered forwarding state [ 70.082671][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 70.090977][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 70.099694][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 70.108308][ T2951] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.115402][ T2951] bridge0: port 2(bridge_slave_1) entered forwarding state [ 70.124438][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 70.142544][ T8570] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 70.194924][ T8570] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 70.277094][ T2959] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 70.285729][ T2959] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 70.295271][ T2959] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 70.307040][ T2959] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 70.315815][ T2959] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 70.330342][ T8557] device veth0_vlan entered promiscuous mode [ 70.341696][ T8570] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 70.375884][ T8570] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 70.435190][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 70.443494][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 70.451983][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 70.460387][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 70.468995][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 70.477724][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 70.486528][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 70.494891][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 70.503559][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 70.512578][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 70.520368][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 70.535490][ T8557] device veth1_vlan entered promiscuous mode [ 70.552473][ T8560] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 70.569921][ T8563] 8021q: adding VLAN 0 to HW filter on device bond0 [ 70.624382][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 70.638770][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 70.648048][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 70.656539][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 70.678875][ T8560] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 70.694378][ T2959] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 70.701909][ T2959] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 175.761942][ C0] rcu: INFO: rcu_preempt self-detected stall on CPU [ 175.769895][ C0] rcu: 0-...!: (10499 ticks this GP) idle=4b2/1/0x4000000000000002 softirq=14046/14046 fqs=3 [ 175.780392][ C0] (t=10501 jiffies g=6589 q=45) [ 175.785325][ C0] rcu: rcu_preempt kthread starved for 10496 jiffies! g6589 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1 [ 175.796423][ C0] rcu: RCU grace-period kthread stack dump: [ 175.802325][ C0] rcu_preempt R running task 28824 10 2 0x80004000 [ 175.810232][ C0] Call Trace: [ 175.813526][ C0] __schedule+0x9a0/0xcc0 [ 175.817858][ C0] schedule+0x181/0x210 [ 175.822029][ C0] schedule_timeout+0x14f/0x240 [ 175.826993][ C0] ? run_local_timers+0x120/0x120 [ 175.832033][ C0] rcu_gp_kthread+0xed8/0x1770 [ 175.836809][ C0] kthread+0x332/0x350 [ 175.840880][ C0] ? rcu_report_qs_rsp+0x140/0x140 [ 175.845985][ C0] ? kthread_blkcg+0xe0/0xe0 [ 175.850576][ C0] ret_from_fork+0x24/0x30 [ 175.855012][ C0] NMI backtrace for cpu 0 [ 175.859341][ C0] CPU: 0 PID: 8567 Comm: syz-executor.4 Not tainted 5.5.0-rc5-syzkaller #0 [ 175.867932][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 175.877980][ C0] Call Trace: [ 175.881255][ C0] [ 175.884102][ C0] dump_stack+0x1fb/0x318 [ 175.888425][ C0] nmi_cpu_backtrace+0xaf/0x1a0 [ 175.893265][ C0] ? nmi_trigger_cpumask_backtrace+0x16d/0x290 [ 175.899444][ C0] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 175.905499][ C0] nmi_trigger_cpumask_backtrace+0x174/0x290 [ 175.911470][ C0] arch_trigger_cpumask_backtrace+0x10/0x20 [ 175.917354][ C0] rcu_dump_cpu_stacks+0x15a/0x220 [ 175.922465][ C0] rcu_sched_clock_irq+0xe25/0x1ad0 [ 175.927653][ C0] ? trace_hardirqs_off+0x74/0x80 [ 175.932668][ C0] update_process_times+0x12d/0x180 [ 175.937859][ C0] tick_sched_timer+0x263/0x420 [ 175.942697][ C0] ? tick_setup_sched_timer+0x3d0/0x3d0 [ 175.948230][ C0] __hrtimer_run_queues+0x403/0x840 [ 175.953439][ C0] hrtimer_interrupt+0x38c/0xda0 [ 175.958381][ C0] ? debug_smp_processor_id+0x9/0x20 [ 175.963657][ C0] smp_apic_timer_interrupt+0x109/0x280 [ 175.969195][ C0] apic_timer_interrupt+0xf/0x20 [ 175.974116][ C0] [ 175.977044][ C0] RIP: 0010:mod_memcg_page_state+0x161/0x190 [ 175.983012][ C0] Code: 3c 20 00 74 0c 48 c7 c7 68 95 2a 89 e8 d8 8e 6a 00 48 83 3d 68 fd e1 07 00 74 2d e8 79 26 2e 00 4c 89 ff 57 9d 0f 1f 44 00 00 <5b> 41 5c 41 5e 41 5f 5d c3 e8 61 26 2e 00 0f 0b e8 5a 26 2e 00 0f [ 176.002602][ C0] RSP: 0018:ffffc90002406d58 EFLAGS: 00000293 ORIG_RAX: ffffffffffffff13 [ 176.010999][ C0] RAX: ffffffff814897d3 RBX: 0000000000000000 RCX: ffff88809ff48300 [ 176.018961][ C0] RDX: 0000000000000000 RSI: 00000000fffffffc RDI: ffffea0002378fc0 [ 176.026919][ C0] RBP: ffffc90002406d78 R08: 000000000003a728 R09: ffffed1014fb7f29 [ 176.034877][ C0] R10: ffffed1014fb7f29 R11: 0000000000000000 R12: dffffc0000000000 [ 176.042837][ C0] R13: dffffc0000000000 R14: 00000000fffffffc R15: ffff8880a7dbf938 [ 176.050804][ C0] ? mod_memcg_page_state+0x123/0x190 [ 176.056169][ C0] ? mod_memcg_page_state+0x123/0x190 [ 176.061529][ C0] free_thread_stack+0x168/0x590 [ 176.066457][ C0] put_task_stack+0xa3/0x130 [ 176.071040][ C0] finish_task_switch+0x3f1/0x550 [ 176.076058][ C0] __schedule+0x9a8/0xcc0 [ 176.081968][ C0] preempt_schedule_irq+0xc1/0x140 [ 176.087067][ C0] retint_kernel+0x1b/0x2b [ 176.091468][ C0] RIP: 0010:__sanitizer_cov_trace_pc+0x22/0x50 [ 176.097609][ C0] Code: 84 f4 3b 00 5b 5d c3 cc 48 8b 04 24 65 48 8b 0c 25 c0 1d 02 00 65 8b 15 38 5f 8b 7e f7 c2 00 01 1f 00 75 2c 8b 91 80 13 00 00 <83> fa 02 75 21 48 8b 91 88 13 00 00 48 8b 32 48 8d 7e 01 8b 89 84 [ 176.117197][ C0] RSP: 0018:ffffc90002406fd8 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13 [ 176.125595][ C0] RAX: ffffffff839a2aaf RBX: 0000000000000003 RCX: ffff88809ff48300 [ 176.133556][ C0] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000000 [ 176.141517][ C0] RBP: ffffc90002407010 R08: ffffffff839a2aa5 R09: ffff8880a2285a58 [ 176.149474][ C0] R10: ffffed1014450b4d R11: 0000000000000000 R12: 0000000000000000 [ 176.157436][ C0] R13: dffffc0000000000 R14: 0000000000000040 R15: ffffffff8964b170 [ 176.165403][ C0] ? find_next_bit+0x75/0x120 [ 176.170063][ C0] ? find_next_bit+0x7f/0x120 [ 176.174735][ C0] ? find_next_bit+0x7f/0x120 [ 176.179399][ C0] ? cpumask_next+0x38/0x60 [ 176.183890][ C0] cpumask_next+0x4a/0x60 [ 176.188210][ C0] is_kernel_percpu_address+0x64/0x110 [ 176.193659][ C0] is_dynamic_key+0x2e/0x1c0 [ 176.198256][ C0] lockdep_init_map+0xe9/0x680 [ 176.203024][ C0] qdisc_alloc+0x612/0x850 [ 176.207438][ C0] qdisc_create_dflt+0x69/0x260 [ 176.212288][ C0] dev_activate+0x2be/0xc50 [ 176.216799][ C0] __dev_open+0x318/0x420 [ 176.221305][ C0] __dev_change_flags+0x1a8/0x680 [ 176.226325][ C0] ? kfree+0x194/0x200 [ 176.230390][ C0] dev_change_flags+0x8a/0x190 [ 176.235149][ C0] do_setlink+0xb2e/0x3960 [ 176.239562][ C0] ? __nla_validate_parse+0x18cd/0x1f40 [ 176.245106][ C0] ? __kasan_check_read+0x11/0x20 [ 176.250123][ C0] rtnl_newlink+0x14dd/0x1bd0 [ 176.254787][ C0] ? rtnl_newlink+0x351/0x1bd0 [ 176.259599][ C0] ? __mutex_lock_common+0x4f5/0x2e10 [ 176.264960][ C0] ? rtnetlink_rcv_msg+0x83c/0xd40 [ 176.270058][ C0] ? rcu_lock_release+0x9/0x30 [ 176.274822][ C0] ? rtnl_setlink+0x490/0x490 [ 176.279487][ C0] rtnetlink_rcv_msg+0x889/0xd40 [ 176.284431][ C0] ? rcu_lock_release+0x9/0x30 [ 176.289182][ C0] ? rcu_lock_release+0x9/0x30 [ 176.293940][ C0] ? rcu_lock_release+0x9/0x30 [ 176.298719][ C0] netlink_rcv_skb+0x19e/0x3d0 [ 176.303502][ C0] ? rtnetlink_bind+0x80/0x80 [ 176.308197][ C0] rtnetlink_rcv+0x1c/0x20 [ 176.312611][ C0] netlink_unicast+0x767/0x920 [ 176.317376][ C0] netlink_sendmsg+0xa31/0xd50 [ 176.322140][ C0] ? netlink_getsockopt+0x9f0/0x9f0 [ 176.327337][ C0] __sys_sendto+0x442/0x5e0 [ 176.331844][ C0] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 176.337911][ C0] ? prepare_exit_to_usermode+0x221/0x5b0 [ 176.343624][ C0] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 176.349077][ C0] __x64_sys_sendto+0xe5/0x100 [ 176.353834][ C0] do_syscall_64+0xf7/0x1c0 [ 176.358356][ C0] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 176.364253][ C0] RIP: 0033:0x414c43 [ 176.368500][ C0] Code: ff 0f 83 b0 19 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 3d 2d 38 66 00 00 75 17 49 89 ca b8 2c 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 81 19 00 00 c3 48 83 ec 08 e8 87 fa ff ff [ 176.388109][ C0] RSP: 002b:00007ffd6f20e3a8 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 176.396521][ C0] RAX: ffffffffffffffda RBX: 0000000000a72200 RCX: 0000000000414c43 [ 176.404479][ C0] RDX: 000000000000002c RSI: 0000000000a72250 RDI: 0000000000000003 [ 176.412567][ C0] RBP: 0000000000000000 R08: 00007ffd6f20e3b0 R09: 000000000000000c [ 176.420531][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 176.428503][ C0] R13: 0000000000000000 R14: 0000000000a72250 R15: 0000000000000003