Warning: Permanently added '10.128.10.21' (ECDSA) to the list of known hosts. 2019/12/04 03:01:22 fuzzer started 2019/12/04 03:01:23 dialing manager at 10.128.0.26:42111 2019/12/04 03:01:24 syscalls: 2689 2019/12/04 03:01:24 code coverage: enabled 2019/12/04 03:01:24 comparison tracing: enabled 2019/12/04 03:01:24 extra coverage: extra coverage is not supported by the kernel 2019/12/04 03:01:24 setuid sandbox: enabled 2019/12/04 03:01:24 namespace sandbox: enabled 2019/12/04 03:01:24 Android sandbox: /sys/fs/selinux/policy does not exist 2019/12/04 03:01:24 fault injection: enabled 2019/12/04 03:01:24 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/12/04 03:01:24 net packet injection: enabled 2019/12/04 03:01:24 net device setup: enabled 2019/12/04 03:01:24 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2019/12/04 03:01:24 devlink PCI setup: PCI device 0000:00:10.0 is not available 03:01:25 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x615, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x252, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x615, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x252, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3) dup2(r0, r2) 03:01:25 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000200)='/dev/dri/card#\x00', 0x0, 0x0) ioctl(r0, 0xbffffffebff7bfb9, 0x0) syzkaller login: [ 63.698924][ T8362] IPVS: ftp: loaded support on port[0] = 21 [ 63.832306][ T8364] IPVS: ftp: loaded support on port[0] = 21 03:01:25 executing program 2: r0 = socket$netlink(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x20, 0x2, 0x7, 0x1, 0x0, 0x0, {}, [@nested={0xc, 0x1, [@typed={0x8, 0x0, @u32}]}]}, 0x20}}, 0x0) [ 63.907929][ T8362] chnl_net:caif_netlink_parms(): no params data found [ 64.051358][ T8362] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.059444][ T8362] bridge0: port 1(bridge_slave_0) entered disabled state [ 64.069537][ T8362] device bridge_slave_0 entered promiscuous mode [ 64.082246][ T8362] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.090179][ T8362] bridge0: port 2(bridge_slave_1) entered disabled state [ 64.098572][ T8362] device bridge_slave_1 entered promiscuous mode [ 64.111130][ T8364] chnl_net:caif_netlink_parms(): no params data found [ 64.166809][ T8362] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 64.188279][ T8362] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 64.202806][ T8368] IPVS: ftp: loaded support on port[0] = 21 03:01:25 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000007c0)='TIPCv2\x00') sendmsg$TIPC_NL_PEER_REMOVE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)={0x14, r1, 0x5}, 0x14}}, 0x0) [ 64.226525][ T8364] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.236064][ T8364] bridge0: port 1(bridge_slave_0) entered disabled state [ 64.245249][ T8364] device bridge_slave_0 entered promiscuous mode [ 64.272252][ T8362] team0: Port device team_slave_0 added [ 64.289117][ T8364] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.296423][ T8364] bridge0: port 2(bridge_slave_1) entered disabled state [ 64.319447][ T8364] device bridge_slave_1 entered promiscuous mode [ 64.332791][ T8362] team0: Port device team_slave_1 added [ 64.386220][ T8364] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 64.420607][ T8364] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link 03:01:26 executing program 4: semop(0x0, &(0x7f0000000040)=[{0x0, 0x1}, {0x3}], 0x2) [ 64.481102][ T8364] team0: Port device team_slave_0 added [ 64.498801][ T8364] team0: Port device team_slave_1 added [ 64.589983][ T8362] device hsr_slave_0 entered promiscuous mode [ 64.637392][ T8362] device hsr_slave_1 entered promiscuous mode 03:01:26 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$vsock(0xffffffffffffff9c, 0x0, 0x8000, 0x0) syz_open_procfs(0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32, @ANYBLOB="0000000000000000280012000c000100766574680000000018000200fd0001000000000023c0306554362dddcb892ef8051404bde5bf296e3c566a03d724f7ead1ef33adfdbe08b8c5236b93b9797b4409f6e370d1515d2e1fa63259e6d4bd05772981", @ANYRES32=0x0, @ANYBLOB="d21b2b1a05febe147bacce9181cfcab6f608c526c59dab29b125d5b95ac25b11e10d4b38e24fd389e155ac8b7a94f1ce9bc1591df44e321c9cf8000169c22ca42586912db85716c5315cc15f56fed0516774"], 0x48}}, 0x0) [ 64.695941][ T8370] IPVS: ftp: loaded support on port[0] = 21 [ 64.780059][ T8372] IPVS: ftp: loaded support on port[0] = 21 [ 64.830410][ T8364] device hsr_slave_0 entered promiscuous mode [ 64.877584][ T8364] device hsr_slave_1 entered promiscuous mode [ 64.937808][ T8364] debugfs: Directory 'hsr0' with parent '/' already present! [ 64.955213][ T8368] chnl_net:caif_netlink_parms(): no params data found [ 65.015528][ T8375] IPVS: ftp: loaded support on port[0] = 21 [ 65.026276][ T8362] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 65.125035][ T8362] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 65.160197][ T8362] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 65.198081][ T8364] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 65.240006][ T8364] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 65.300091][ T8364] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 65.368128][ T8368] bridge0: port 1(bridge_slave_0) entered blocking state [ 65.375329][ T8368] bridge0: port 1(bridge_slave_0) entered disabled state [ 65.383383][ T8368] device bridge_slave_0 entered promiscuous mode [ 65.399150][ T8362] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 65.448584][ T8364] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 65.498766][ T8368] bridge0: port 2(bridge_slave_1) entered blocking state [ 65.505883][ T8368] bridge0: port 2(bridge_slave_1) entered disabled state [ 65.514122][ T8368] device bridge_slave_1 entered promiscuous mode [ 65.554773][ T8370] chnl_net:caif_netlink_parms(): no params data found [ 65.630925][ T8368] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 65.643214][ T8368] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 65.661631][ T8370] bridge0: port 1(bridge_slave_0) entered blocking state [ 65.669347][ T8370] bridge0: port 1(bridge_slave_0) entered disabled state [ 65.678085][ T8370] device bridge_slave_0 entered promiscuous mode [ 65.700006][ T8372] chnl_net:caif_netlink_parms(): no params data found [ 65.714674][ T8370] bridge0: port 2(bridge_slave_1) entered blocking state [ 65.722201][ T8370] bridge0: port 2(bridge_slave_1) entered disabled state [ 65.730297][ T8370] device bridge_slave_1 entered promiscuous mode [ 65.758229][ T8368] team0: Port device team_slave_0 added [ 65.766196][ T8368] team0: Port device team_slave_1 added [ 65.806382][ T8370] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 65.859047][ T8368] device hsr_slave_0 entered promiscuous mode [ 65.897031][ T8368] device hsr_slave_1 entered promiscuous mode [ 65.946866][ T8368] debugfs: Directory 'hsr0' with parent '/' already present! [ 65.957668][ T8372] bridge0: port 1(bridge_slave_0) entered blocking state [ 65.964782][ T8372] bridge0: port 1(bridge_slave_0) entered disabled state [ 65.974460][ T8372] device bridge_slave_0 entered promiscuous mode [ 65.985006][ T8370] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 66.016365][ T8372] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.025440][ T8372] bridge0: port 2(bridge_slave_1) entered disabled state [ 66.035185][ T8372] device bridge_slave_1 entered promiscuous mode [ 66.088203][ T8370] team0: Port device team_slave_0 added [ 66.096429][ T8375] chnl_net:caif_netlink_parms(): no params data found [ 66.125964][ T8372] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 66.138973][ T8372] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 66.151184][ T8370] team0: Port device team_slave_1 added [ 66.165215][ T8362] 8021q: adding VLAN 0 to HW filter on device bond0 [ 66.199888][ T8375] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.207644][ T8375] bridge0: port 1(bridge_slave_0) entered disabled state [ 66.215869][ T8375] device bridge_slave_0 entered promiscuous mode [ 66.232834][ T8372] team0: Port device team_slave_0 added [ 66.254029][ T8368] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 66.298631][ T8375] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.305814][ T8375] bridge0: port 2(bridge_slave_1) entered disabled state [ 66.314102][ T8375] device bridge_slave_1 entered promiscuous mode [ 66.329467][ T8372] team0: Port device team_slave_1 added [ 66.338818][ T2725] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 66.348483][ T2725] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 66.398770][ T8370] device hsr_slave_0 entered promiscuous mode [ 66.457567][ T8370] device hsr_slave_1 entered promiscuous mode [ 66.496884][ T8370] debugfs: Directory 'hsr0' with parent '/' already present! [ 66.505378][ T8368] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 66.564324][ T8368] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 66.622441][ T8368] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 66.690050][ T8362] 8021q: adding VLAN 0 to HW filter on device team0 [ 66.702758][ T8375] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 66.715771][ T8375] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 66.769466][ T8372] device hsr_slave_0 entered promiscuous mode [ 66.817043][ T8372] device hsr_slave_1 entered promiscuous mode [ 66.867029][ T8372] debugfs: Directory 'hsr0' with parent '/' already present! [ 66.909733][ T8364] 8021q: adding VLAN 0 to HW filter on device bond0 [ 66.925475][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 66.934922][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 66.943552][ T22] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.950899][ T22] bridge0: port 1(bridge_slave_0) entered forwarding state [ 66.961791][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 66.972078][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 66.982198][ T22] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.990020][ T22] bridge0: port 2(bridge_slave_1) entered forwarding state [ 67.003769][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 67.011929][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 67.023860][ T8375] team0: Port device team_slave_0 added [ 67.032222][ T8375] team0: Port device team_slave_1 added [ 67.071609][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 67.081138][ T8370] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 67.148938][ T8370] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 67.191867][ T8372] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 67.270024][ T8375] device hsr_slave_0 entered promiscuous mode [ 67.317125][ T8375] device hsr_slave_1 entered promiscuous mode [ 67.356890][ T8375] debugfs: Directory 'hsr0' with parent '/' already present! [ 67.365212][ T8376] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 67.375777][ T8376] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 67.385733][ T8376] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 67.395083][ T8376] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 67.404696][ T8376] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 67.413460][ T8370] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 67.461437][ T8370] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 67.510705][ T8372] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 67.560202][ T8364] 8021q: adding VLAN 0 to HW filter on device team0 [ 67.570157][ T2611] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 67.582381][ T2611] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 67.598218][ T8372] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 67.645514][ T8372] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 67.698514][ T2725] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 67.710521][ T2725] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 67.723275][ T8362] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 67.736293][ T8362] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 67.771541][ T2725] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 67.782287][ T2725] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 67.792271][ T2725] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 67.802266][ T2725] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 67.811097][ T2725] bridge0: port 1(bridge_slave_0) entered blocking state [ 67.818938][ T2725] bridge0: port 1(bridge_slave_0) entered forwarding state [ 67.828828][ T2725] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 67.861784][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 67.886079][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 67.895117][ T5] bridge0: port 2(bridge_slave_1) entered blocking state [ 67.902324][ T5] bridge0: port 2(bridge_slave_1) entered forwarding state [ 67.910717][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 67.920002][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 67.929883][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 67.939885][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 67.971125][ T8375] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 68.018937][ T8375] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 68.070558][ T8375] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 68.119037][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 68.129393][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 68.139873][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 68.150266][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 68.159120][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 68.167844][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 68.176203][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 68.184731][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 68.193076][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 68.213748][ T8362] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 68.222811][ T8375] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 68.265990][ T8364] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 68.334518][ T8368] 8021q: adding VLAN 0 to HW filter on device bond0 [ 68.345011][ T8370] 8021q: adding VLAN 0 to HW filter on device bond0 [ 68.362668][ T8372] 8021q: adding VLAN 0 to HW filter on device bond0 [ 68.384525][ T8364] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 68.391996][ T2725] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 68.400289][ T2725] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 68.424678][ T8370] 8021q: adding VLAN 0 to HW filter on device team0 [ 68.452149][ T8372] 8021q: adding VLAN 0 to HW filter on device team0 [ 173.556652][ C1] rcu: INFO: rcu_preempt self-detected stall on CPU [ 173.563652][ C1] rcu: 1-...!: (1 GPs behind) idle=9a6/1/0x4000000000000002 softirq=11307/11309 fqs=34 [ 173.573642][ C1] (t=10500 jiffies g=7189 q=185) [ 173.578683][ C1] rcu: rcu_preempt kthread starved for 10426 jiffies! g7189 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 173.590220][ C1] rcu: RCU grace-period kthread stack dump: [ 173.596147][ C1] rcu_preempt R running task 29032 10 2 0x90004000 [ 173.604094][ C1] Call Trace: [ 173.607417][ C1] __schedule+0x9a0/0xcc0 [ 173.611890][ C1] schedule+0x181/0x210 [ 173.616099][ C1] schedule_timeout+0x14f/0x240 [ 173.620951][ C1] ? run_local_timers+0x120/0x120 [ 173.626111][ C1] rcu_gp_kthread+0xed8/0x1770 [ 173.631161][ C1] kthread+0x332/0x350 [ 173.635235][ C1] ? rcu_report_qs_rsp+0x140/0x140 [ 173.640350][ C1] ? kthread_blkcg+0xe0/0xe0 [ 173.644951][ C1] ret_from_fork+0x24/0x30 [ 173.649403][ C1] NMI backtrace for cpu 1 [ 173.654049][ C1] CPU: 1 PID: 8372 Comm: syz-executor.4 Not tainted 5.4.0-syzkaller #0 [ 173.662627][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 173.672694][ C1] Call Trace: [ 173.675977][ C1] [ 173.679516][ C1] dump_stack+0x1fb/0x318 [ 173.684134][ C1] nmi_cpu_backtrace+0xaf/0x1a0 [ 173.689013][ C1] ? nmi_trigger_cpumask_backtrace+0x16d/0x290 [ 173.695185][ C1] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 173.701274][ C1] nmi_trigger_cpumask_backtrace+0x174/0x290 [ 173.707616][ C1] arch_trigger_cpumask_backtrace+0x10/0x20 [ 173.713778][ C1] rcu_dump_cpu_stacks+0x15a/0x220 [ 173.718919][ C1] rcu_sched_clock_irq+0xe25/0x1ad0 [ 173.725254][ C1] ? trace_hardirqs_off+0x74/0x80 [ 173.730290][ C1] update_process_times+0x12d/0x180 [ 173.735746][ C1] tick_sched_timer+0x263/0x420 [ 173.740607][ C1] ? tick_setup_sched_timer+0x3d0/0x3d0 [ 173.746194][ C1] __hrtimer_run_queues+0x403/0x840 [ 173.751510][ C1] hrtimer_interrupt+0x38c/0xda0 [ 173.756471][ C1] ? debug_smp_processor_id+0x9/0x20 [ 173.761900][ C1] smp_apic_timer_interrupt+0x109/0x280 [ 173.767462][ C1] apic_timer_interrupt+0xf/0x20 [ 173.772384][ C1] [ 173.775451][ C1] RIP: 0010:free_thread_stack+0x12e/0x590 [ 173.781180][ C1] Code: bf 00 00 00 00 00 ea ff ff 48 01 c7 be 03 00 00 00 e8 06 a2 60 00 e9 5d 04 00 00 e8 5c 2d 2e 00 48 89 df 31 f6 e8 42 af 6e 00 <43> 80 3c 2e 00 74 08 4c 89 e7 e8 43 a4 69 00 49 8b 1c 24 48 83 c3 [ 173.800794][ C1] RSP: 0018:ffffc90002327078 EFLAGS: 00000292 ORIG_RAX: ffffffffffffff13 [ 173.809200][ C1] RAX: 0000000000000001 RBX: ffffea0002482a80 RCX: 0000000000000000 [ 173.817284][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffea0002482a80 [ 173.825248][ C1] RBP: ffffc900023270b0 R08: 000000000003a768 R09: ffffed1015092f47 [ 173.833237][ C1] R10: ffffed1015092f47 R11: 0000000000000000 R12: ffff8880a1bbce20 [ 173.841222][ C1] R13: dffffc0000000000 R14: 1ffff110143779c4 R15: ffff8880a8497a28 [ 173.849941][ C1] ? free_thread_stack+0x12e/0x590 [ 173.855344][ C1] put_task_stack+0xa3/0x130 [ 173.859951][ C1] finish_task_switch+0x3f1/0x550 [ 173.865032][ C1] __schedule+0x9a8/0xcc0 [ 173.869396][ C1] ? stack_trace_save+0x150/0x150 [ 173.874452][ C1] ? ___preempt_schedule_notrace+0x16/0x27 [ 173.880680][ C1] preempt_schedule_notrace+0xdb/0x120 [ 173.886854][ C1] ___preempt_schedule_notrace+0x16/0x27 [ 173.892498][ C1] ? rcu_is_watching+0x57/0xa0 [ 173.897404][ C1] rcu_is_watching+0x82/0xa0 [ 173.902016][ C1] __kernel_text_address+0x74/0x110 [ 173.907228][ C1] unwind_get_return_address+0x4c/0x90 [ 173.912849][ C1] arch_stack_walk+0x98/0xe0 [ 173.917463][ C1] stack_trace_save+0xb6/0x150 [ 173.922323][ C1] __kasan_kmalloc+0x11c/0x1b0 [ 173.927615][ C1] ? __kasan_kmalloc+0x11c/0x1b0 [ 173.933287][ C1] ? kasan_slab_alloc+0xf/0x20 [ 173.938064][ C1] ? kmem_cache_alloc_node+0x235/0x280 [ 173.945906][ C1] ? __alloc_skb+0x9f/0x500 [ 173.951559][ C1] ? rtmsg_ifa+0x17d/0x2f0 [ 173.956160][ C1] ? __inet_insert_ifa+0x957/0xb60 [ 173.962489][ C1] ? inet_rtm_newaddr+0x104b/0x1980 [ 173.967782][ C1] ? rtnetlink_rcv_msg+0x889/0xd40 [ 173.974323][ C1] ? netlink_rcv_skb+0x19e/0x3d0 [ 173.980286][ C1] ? rtnetlink_rcv+0x1c/0x20 [ 173.986105][ C1] ? netlink_unicast+0x767/0x920 [ 173.991045][ C1] ? netlink_sendmsg+0xa21/0xd40 [ 173.996395][ C1] ? __sys_sendto+0x442/0x5e0 [ 174.001084][ C1] ? __x64_sys_sendto+0xe5/0x100 [ 174.006029][ C1] ? do_syscall_64+0xf7/0x1c0 [ 174.010803][ C1] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 174.016881][ C1] ? __kasan_check_read+0x11/0x20 [ 174.022453][ C1] ? mark_lock+0x107/0x1650 [ 174.027509][ C1] ? ___preempt_schedule_notrace+0x16/0x27 [ 174.033343][ C1] ? lockdep_hardirqs_on+0x3c5/0x7d0 [ 174.038936][ C1] ? kmem_cache_alloc_node+0x1e1/0x280 [ 174.044676][ C1] kasan_slab_alloc+0xf/0x20 [ 174.049816][ C1] kmem_cache_alloc_node+0x235/0x280 [ 174.056481][ C1] ? __alloc_skb+0x9f/0x500 [ 174.061266][ C1] __alloc_skb+0x9f/0x500 [ 174.066043][ C1] rtmsg_ifa+0x17d/0x2f0 [ 174.070320][ C1] __inet_insert_ifa+0x957/0xb60 [ 174.075631][ C1] inet_rtm_newaddr+0x104b/0x1980 [ 174.080674][ C1] ? inet_gifconf+0x420/0x420 [ 174.085394][ C1] rtnetlink_rcv_msg+0x889/0xd40 [ 174.090568][ C1] ? rcu_lock_release+0x9/0x30 [ 174.095791][ C1] ? rcu_lock_release+0x9/0x30 [ 174.100556][ C1] ? rcu_lock_release+0x9/0x30 [ 174.105333][ C1] netlink_rcv_skb+0x19e/0x3d0 [ 174.110359][ C1] ? rtnetlink_bind+0x80/0x80 [ 174.115570][ C1] rtnetlink_rcv+0x1c/0x20 [ 174.120802][ C1] netlink_unicast+0x767/0x920 [ 174.125766][ C1] netlink_sendmsg+0xa21/0xd40 [ 174.131276][ C1] ? netlink_getsockopt+0x9f0/0x9f0 [ 174.136667][ C1] __sys_sendto+0x442/0x5e0 [ 174.141820][ C1] ? syscall_trace_enter+0x621/0x8f0 [ 174.148272][ C1] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 174.154223][ C1] __x64_sys_sendto+0xe5/0x100 [ 174.159369][ C1] do_syscall_64+0xf7/0x1c0 [ 174.164148][ C1] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 174.170118][ C1] RIP: 0033:0x414373 [ 174.174624][ C1] Code: ff 0f 83 b0 19 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 3d fd 40 66 00 00 75 17 49 89 ca b8 2c 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 81 19 00 00 c3 48 83 ec 08 e8 87 fa ff ff [ 174.194824][ C1] RSP: 002b:00007ffeba34d1e8 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 174.203236][ C1] RAX: ffffffffffffffda RBX: 0000000000a72200 RCX: 0000000000414373 [ 174.211229][ C1] RDX: 0000000000000028 RSI: 0000000000a72250 RDI: 0000000000000003 [ 174.219200][ C1] RBP: 0000000000000000 R08: 00007ffeba34d1f0 R09: 000000000000000c [ 174.227509][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 174.235483][ C1] R13: 0000000000000000 R14: 0000000000a72250 R15: 0000000000000003