Warning: Permanently added '10.128.10.59' (ECDSA) to the list of known hosts. 2019/12/02 23:53:09 fuzzer started 2019/12/02 23:53:11 dialing manager at 10.128.0.26:38907 2019/12/02 23:53:11 syscalls: 2697 2019/12/02 23:53:11 code coverage: enabled 2019/12/02 23:53:11 comparison tracing: enabled 2019/12/02 23:53:11 extra coverage: extra coverage is not supported by the kernel 2019/12/02 23:53:11 setuid sandbox: enabled 2019/12/02 23:53:11 namespace sandbox: enabled 2019/12/02 23:53:11 Android sandbox: /sys/fs/selinux/policy does not exist 2019/12/02 23:53:11 fault injection: enabled 2019/12/02 23:53:11 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/12/02 23:53:11 net packet injection: enabled 2019/12/02 23:53:11 net device setup: enabled 2019/12/02 23:53:11 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2019/12/02 23:53:11 devlink PCI setup: PCI device 0000:00:10.0 is not available 23:53:12 executing program 0: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000400)={&(0x7f00000002c0)=ANY=[@ANYBLOB="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"], 0x0, 0x33}, 0x20) 23:53:12 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = semget$private(0x0, 0x2000000010a, 0x0) semctl$GETNCNT(r2, 0x0, 0xe, 0x0) syzkaller login: [ 55.278780][ T8119] IPVS: ftp: loaded support on port[0] = 21 [ 55.396970][ T8119] chnl_net:caif_netlink_parms(): no params data found 23:53:12 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip_vs\x00') socket$netlink(0x10, 0x3, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000036c0)=[{{0x0, 0x0, &(0x7f0000001c00)=[{&(0x7f0000001b80)=""/4, 0x4}], 0x1}}], 0x1, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x3e4845193edc0879, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) preadv(r0, &(0x7f00000017c0), 0x1be, 0x0) r1 = openat$proc_capi20(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x10, 0xffffffffffffffff, 0x0) pipe(0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x10, r1, 0x0) [ 55.475005][ T8119] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.491948][ T8119] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.503397][ T8119] device bridge_slave_0 entered promiscuous mode [ 55.533456][ T8119] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.551971][ T8119] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.561817][ T8119] device bridge_slave_1 entered promiscuous mode [ 55.588638][ T8122] IPVS: ftp: loaded support on port[0] = 21 [ 55.626250][ T8119] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 55.657378][ T8119] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link 23:53:13 executing program 3: syz_open_dev$vcsn(0x0, 0x0, 0x0) pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f00000001c0)={0x26, 'hash\x00', 0x0, 0x0, 'crc32c\x00'}, 0x58) r3 = accept4$alg(r2, 0x0, 0x0, 0x0) write$binfmt_elf64(r1, &(0x7f0000000040)=ANY=[], 0xfffffdea) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x20000000003, 0x0) [ 55.710594][ T8119] team0: Port device team_slave_0 added [ 55.740526][ T8119] team0: Port device team_slave_1 added [ 55.803677][ T8119] device hsr_slave_0 entered promiscuous mode [ 55.851343][ T8119] device hsr_slave_1 entered promiscuous mode [ 55.925431][ T8125] IPVS: ftp: loaded support on port[0] = 21 [ 55.949173][ T8122] chnl_net:caif_netlink_parms(): no params data found 23:53:13 executing program 4: r0 = creat(&(0x7f0000000140)='./bus\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x108000) truncate(&(0x7f0000000240)='./bus\x00', 0x7fff) r1 = open(&(0x7f00000002c0)='./bus\x00', 0x40000141041, 0x0) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0x323) open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0) [ 55.979775][ T8127] IPVS: ftp: loaded support on port[0] = 21 [ 56.046192][ T8119] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 56.094033][ T8119] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 56.167105][ T8122] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.175388][ T8122] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.184296][ T8122] device bridge_slave_0 entered promiscuous mode [ 56.201834][ T8122] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.208905][ T8122] bridge0: port 2(bridge_slave_1) entered disabled state 23:53:13 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000000)={@remote, 0x800, 0x0, 0x103, 0x1}, 0x20) setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x1, 0x4) sendmsg$inet6(r0, &(0x7f0000000180)={&(0x7f0000000080)={0xa, 0x4ea2, 0x80000, @local}, 0x1c, 0x0, 0x0, &(0x7f0000000040)=[@dontfrag={{0x14, 0x29, 0x37}}], 0x18}, 0x0) [ 56.232590][ T8122] device bridge_slave_1 entered promiscuous mode [ 56.239509][ T8119] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 56.293592][ T8119] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 56.361878][ T8132] IPVS: ftp: loaded support on port[0] = 21 [ 56.376069][ T8129] IPVS: ftp: loaded support on port[0] = 21 [ 56.376944][ T8119] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.389488][ T8119] bridge0: port 2(bridge_slave_1) entered forwarding state [ 56.397270][ T8119] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.404377][ T8119] bridge0: port 1(bridge_slave_0) entered forwarding state [ 56.420324][ T8122] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 56.432097][ T3065] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.440191][ T3065] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.476619][ T8122] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 56.505648][ T8122] team0: Port device team_slave_0 added [ 56.513221][ T8122] team0: Port device team_slave_1 added [ 56.662704][ T8122] device hsr_slave_0 entered promiscuous mode [ 56.701351][ T8122] device hsr_slave_1 entered promiscuous mode [ 56.741442][ T8122] debugfs: Directory 'hsr0' with parent '/' already present! [ 56.773878][ T8127] chnl_net:caif_netlink_parms(): no params data found [ 56.808480][ T8125] chnl_net:caif_netlink_parms(): no params data found [ 56.880883][ T8125] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.889057][ T8125] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.897246][ T8125] device bridge_slave_0 entered promiscuous mode [ 56.904885][ T8127] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.912803][ T8127] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.920517][ T8127] device bridge_slave_0 entered promiscuous mode [ 56.939404][ T8122] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 57.023984][ T8125] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.032114][ T8125] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.040083][ T8125] device bridge_slave_1 entered promiscuous mode [ 57.051732][ T8127] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.058794][ T8127] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.068035][ T8127] device bridge_slave_1 entered promiscuous mode [ 57.082973][ T8122] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 57.135442][ T8119] 8021q: adding VLAN 0 to HW filter on device bond0 [ 57.143015][ T8129] chnl_net:caif_netlink_parms(): no params data found [ 57.163923][ T8122] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 57.203162][ T8122] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 57.248660][ T8127] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.258785][ T8132] chnl_net:caif_netlink_parms(): no params data found [ 57.271164][ T8125] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.289926][ T8127] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.316279][ T8125] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.336700][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 57.344850][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 57.375175][ T8127] team0: Port device team_slave_0 added [ 57.385149][ T8119] 8021q: adding VLAN 0 to HW filter on device team0 [ 57.404022][ T8125] team0: Port device team_slave_0 added [ 57.409911][ T8132] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.419309][ T8132] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.427445][ T8132] device bridge_slave_0 entered promiscuous mode [ 57.437778][ T8127] team0: Port device team_slave_1 added [ 57.443969][ T8129] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.453910][ T8129] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.461789][ T8129] device bridge_slave_0 entered promiscuous mode [ 57.469268][ T8129] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.476532][ T8129] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.484387][ T8129] device bridge_slave_1 entered promiscuous mode [ 57.493002][ T8125] team0: Port device team_slave_1 added [ 57.499798][ T8132] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.508349][ T8132] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.516173][ T8132] device bridge_slave_1 entered promiscuous mode [ 57.525452][ T3065] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 57.534450][ T3065] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.542904][ T3065] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.549936][ T3065] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.613687][ T8127] device hsr_slave_0 entered promiscuous mode [ 57.651825][ T8127] device hsr_slave_1 entered promiscuous mode [ 57.691323][ T8127] debugfs: Directory 'hsr0' with parent '/' already present! [ 57.736933][ T8129] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.747564][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 57.757055][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 57.765599][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.772693][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.786743][ T8132] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.803657][ T8129] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.852693][ T8125] device hsr_slave_0 entered promiscuous mode [ 57.891349][ T8125] device hsr_slave_1 entered promiscuous mode [ 57.931136][ T8125] debugfs: Directory 'hsr0' with parent '/' already present! [ 57.940023][ T8132] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.972511][ T8132] team0: Port device team_slave_0 added [ 57.992327][ T2707] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 58.000799][ T2707] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 58.009534][ T2707] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 58.018074][ T2707] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 58.027050][ T2707] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 58.049990][ T8132] team0: Port device team_slave_1 added [ 58.070562][ T8129] team0: Port device team_slave_0 added [ 58.077017][ T8127] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 58.117272][ T8131] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 58.125880][ T8131] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 58.145985][ T8119] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 58.157169][ T8119] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 58.174542][ T8129] team0: Port device team_slave_1 added [ 58.180701][ T8127] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 58.242710][ T8132] device hsr_slave_0 entered promiscuous mode [ 58.311546][ T8132] device hsr_slave_1 entered promiscuous mode [ 58.351819][ T8132] debugfs: Directory 'hsr0' with parent '/' already present! [ 58.359408][ T8125] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 58.413440][ T2707] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 58.421777][ T2707] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 58.430247][ T2707] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 58.438585][ T2707] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 58.447203][ T2707] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 58.461961][ T8127] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 58.503214][ T8127] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 58.545617][ T8125] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 58.602723][ T8125] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 58.642592][ T8125] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 58.754548][ T8129] device hsr_slave_0 entered promiscuous mode [ 58.792062][ T8129] device hsr_slave_1 entered promiscuous mode [ 58.831684][ T8129] debugfs: Directory 'hsr0' with parent '/' already present! [ 58.854995][ T3065] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 58.863660][ T3065] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 58.881356][ T8122] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.896096][ T8119] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 58.927315][ T8122] 8021q: adding VLAN 0 to HW filter on device team0 [ 58.934349][ T8132] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 58.986206][ T8132] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 59.043608][ T8132] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 59.083503][ T8132] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 59.137487][ T8137] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 59.145891][ T8137] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 59.161809][ T8129] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 59.222850][ T8129] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 59.252628][ T8129] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 59.295960][ T8129] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 59.376646][ T8137] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 59.386314][ T8137] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 59.395179][ T8137] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.402234][ T8137] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.410469][ T8137] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 59.419088][ T8137] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 59.427482][ T8137] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.434568][ T8137] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.442967][ T8137] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 59.473385][ T3065] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 59.485598][ T3065] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 59.507337][ T8127] 8021q: adding VLAN 0 to HW filter on device bond0 [ 59.519558][ T3065] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 59.528232][ T3065] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 59.541733][ T3065] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 59.550692][ T3065] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 59.580672][ T8122] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 59.591805][ T8122] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 59.616177][ T8127] 8021q: adding VLAN 0 to HW filter on device team0 [ 59.624264][ T8137] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 59.633995][ T8137] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 59.658218][ T8137] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 59.668244][ T8137] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 59.682423][ T8137] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 59.690699][ T8137] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 59.703017][ T8137] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 59.710915][ T8137] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 164.660961][ C1] rcu: INFO: rcu_preempt self-detected stall on CPU [ 164.667731][ C1] rcu: 1-....: (10499 ticks this GP) idle=e42/1/0x4000000000000002 softirq=10570/10570 fqs=2777 [ 164.678563][ C1] (t=10500 jiffies g=6153 q=152) [ 164.683579][ C1] rcu: rcu_preempt kthread starved for 4934 jiffies! g6153 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 164.694572][ C1] rcu: RCU grace-period kthread stack dump: [ 164.700448][ C1] rcu_preempt R running task 29032 10 2 0x80004000 [ 164.708333][ C1] Call Trace: [ 164.711618][ C1] __schedule+0x9a0/0xcc0 [ 164.715939][ C1] schedule+0x181/0x210 [ 164.720083][ C1] schedule_timeout+0x14f/0x240 [ 164.724918][ C1] ? run_local_timers+0x120/0x120 [ 164.729932][ C1] rcu_gp_kthread+0xed8/0x1770 [ 164.734689][ C1] kthread+0x332/0x350 [ 164.738741][ C1] ? rcu_report_qs_rsp+0x140/0x140 [ 164.743836][ C1] ? kthread_blkcg+0xe0/0xe0 [ 164.748413][ C1] ret_from_fork+0x24/0x30 [ 164.752825][ C1] NMI backtrace for cpu 1 [ 164.757145][ C1] CPU: 1 PID: 8138 Comm: syz-executor.0 Not tainted 5.4.0-syzkaller #0 [ 164.765377][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 164.775430][ C1] Call Trace: [ 164.778710][ C1] [ 164.781665][ C1] dump_stack+0x1fb/0x318 [ 164.785987][ C1] nmi_cpu_backtrace+0xaf/0x1a0 [ 164.790823][ C1] ? nmi_trigger_cpumask_backtrace+0x16d/0x290 [ 164.796971][ C1] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 164.803027][ C1] nmi_trigger_cpumask_backtrace+0x174/0x290 [ 164.809100][ C1] arch_trigger_cpumask_backtrace+0x10/0x20 [ 164.814980][ C1] rcu_dump_cpu_stacks+0x15a/0x220 [ 164.820190][ C1] rcu_sched_clock_irq+0xe25/0x1ad0 [ 164.825376][ C1] ? trace_hardirqs_off+0x74/0x80 [ 164.830389][ C1] update_process_times+0x12d/0x180 [ 164.835573][ C1] tick_sched_timer+0x263/0x420 [ 164.840408][ C1] ? tick_setup_sched_timer+0x3d0/0x3d0 [ 164.845940][ C1] __hrtimer_run_queues+0x403/0x840 [ 164.851137][ C1] hrtimer_interrupt+0x38c/0xda0 [ 164.856077][ C1] ? debug_smp_processor_id+0x9/0x20 [ 164.861351][ C1] smp_apic_timer_interrupt+0x109/0x280 [ 164.866879][ C1] apic_timer_interrupt+0xf/0x20 [ 164.871810][ C1] [ 164.874735][ C1] RIP: 0010:__memcg_kmem_uncharge+0x0/0x2e0 [ 164.880616][ C1] Code: 00 eb 1b 83 3d 40 90 8c 07 00 74 12 48 81 c3 08 02 00 00 48 89 df 4c 89 f6 e8 dc 7d ff ff 5b 41 5e 5d c3 0f 1f 80 00 00 00 00 <55> 48 89 e5 41 57 41 56 41 55 41 54 53 50 89 f3 49 89 fc 48 b8 00 [ 164.900305][ C1] RSP: 0018:ffffc900025d7880 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13 [ 164.908803][ C1] RAX: ffffffff81486ea4 RBX: ffffea00024794c0 RCX: ffff888098a98480 [ 164.916762][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffea00024794c0 [ 164.924718][ C1] RBP: ffffc900025d78c0 R08: dffffc0000000000 R09: fffffbfff120248a [ 164.932763][ C1] R10: fffffbfff120248a R11: 0000000000000000 R12: ffff888092126f20 [ 164.940718][ C1] R13: dffffc0000000000 R14: 1ffff11012424de4 R15: ffff8880907dd8e8 [ 164.948687][ C1] ? free_thread_stack+0x124/0x590 [ 164.953785][ C1] ? free_thread_stack+0x12e/0x590 [ 164.958885][ C1] put_task_stack+0xa3/0x130 [ 164.963460][ C1] finish_task_switch+0x3f1/0x550 [ 164.968473][ C1] __schedule+0x9a8/0xcc0 [ 164.972799][ C1] ? ___preempt_schedule+0x16/0x18 [ 164.977894][ C1] preempt_schedule+0xdb/0x120 [ 164.982644][ C1] ___preempt_schedule+0x16/0x18 [ 164.987564][ C1] ? page_poisoning_enabled+0x1c/0x30 [ 164.992926][ C1] prep_new_page+0x161/0x2e0 [ 164.997516][ C1] get_page_from_freelist+0x850/0xaa0 [ 165.002884][ C1] __alloc_pages_nodemask+0x264/0x5d0 [ 165.008250][ C1] alloc_pages_vma+0x94a/0xd50 [ 165.013004][ C1] do_huge_pmd_anonymous_page+0x883/0xe50 [ 165.018718][ C1] handle_mm_fault+0x2017/0x2890 [ 165.023665][ C1] do_user_addr_fault+0x589/0xaf0 [ 165.028689][ C1] __do_page_fault+0xd3/0x1f0 [ 165.033350][ C1] do_page_fault+0x99/0xb0 [ 165.037753][ C1] page_fault+0x39/0x40 [ 165.041893][ C1] RIP: 0033:0x4006c4 [ 165.045772][ C1] Code: 01 e9 c9 00 00 00 48 8b 44 24 10 48 0b 44 24 28 be 08 00 00 00 48 8b 14 24 75 17 48 8b 7c 24 20 e8 11 55 00 00 48 8b 4c 24 08 <48> 89 01 e9 9d 00 00 00 48 8b 44 24 08 48 8b 38 e8 f7 54 00 00 8a [ 165.065359][ C1] RSP: 002b:00007ffec2f41940 EFLAGS: 00010202 [ 165.071406][ C1] RAX: 00000000200002c0 RBX: 0000000000000000 RCX: 0000000020000400 [ 165.079370][ C1] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 00000000200002c0 [ 165.087339][ C1] RBP: 0000000000760000 R08: 0000000000000000 R09: 0000000000000000 [ 165.095296][ C1] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000001 [ 165.103252][ C1] R13: 00007ffec2f41b60 R14: 0000000000760008 R15: 00007ffec2f41b70