Warning: Permanently added '10.128.0.24' (ECDSA) to the list of known hosts. 2019/12/03 20:48:31 fuzzer started 2019/12/03 20:48:33 dialing manager at 10.128.0.26:42111 2019/12/03 20:48:33 syscalls: 2689 2019/12/03 20:48:33 code coverage: enabled 2019/12/03 20:48:33 comparison tracing: enabled 2019/12/03 20:48:33 extra coverage: extra coverage is not supported by the kernel 2019/12/03 20:48:33 setuid sandbox: enabled 2019/12/03 20:48:33 namespace sandbox: enabled 2019/12/03 20:48:33 Android sandbox: /sys/fs/selinux/policy does not exist 2019/12/03 20:48:33 fault injection: enabled 2019/12/03 20:48:33 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/12/03 20:48:33 net packet injection: enabled 2019/12/03 20:48:33 net device setup: enabled 2019/12/03 20:48:33 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2019/12/03 20:48:33 devlink PCI setup: PCI device 0000:00:10.0 is not available 20:48:34 executing program 0: perf_event_open(&(0x7f0000000840)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$user(0x0, 0x0, &(0x7f00000001c0), 0x0, 0xffffffffffffffff) r0 = socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, 0x0) openat$full(0xffffffffffffff9c, &(0x7f0000000200)='/dev/full\x00', 0x81, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r1 = memfd_create(&(0x7f0000000200)='\x00', 0x5) ftruncate(r1, 0xc00000) read(r1, &(0x7f00000000c0)=""/48, 0xfffffca3) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000000), &(0x7f0000000040)=0xc) 20:48:34 executing program 1: sendto$inet(0xffffffffffffffff, &(0x7f0000000100)="bd384ce1f54f7c522811c090bbf4ef7b4926a15e53a1bbb46854e2666d3327c6ae8e714ad8116298b6e23a4b036512e6", 0x30, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_LINK_STATS(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x30, r1, 0x23f, 0x0, 0x0, {{}, 0x0, 0x410c, 0x0, {0x14, 0x14, 'broadcast-link\x0e'}}}, 0x30}}, 0x0) syzkaller login: [ 54.782170][ T8097] IPVS: ftp: loaded support on port[0] = 21 [ 54.938186][ T8097] chnl_net:caif_netlink_parms(): no params data found [ 54.977664][ T8100] IPVS: ftp: loaded support on port[0] = 21 20:48:34 executing program 2: socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setstatus(r1, 0x4, 0x2800) connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x2cb, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000400)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = fcntl$dupfd(r3, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ppoll(&(0x7f0000000000)=[{r1, 0x4}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f000030efc4)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) [ 55.013473][ T8097] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.034620][ T8097] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.045623][ T8097] device bridge_slave_0 entered promiscuous mode [ 55.077639][ T8097] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.086453][ T8097] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.106184][ T8097] device bridge_slave_1 entered promiscuous mode [ 55.181120][ T8097] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 55.203028][ T8097] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 55.218640][ T8100] chnl_net:caif_netlink_parms(): no params data found [ 55.259007][ T8097] team0: Port device team_slave_0 added [ 55.279633][ T8097] team0: Port device team_slave_1 added 20:48:35 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$ntfs(&(0x7f0000000000)='ntfs\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000980)=ANY=[@ANYBLOB='errors=remount-ro,show_sys_files=yes,disable_sparse=yes,uid=', @ANYRESHEX]) [ 55.328209][ T8097] device hsr_slave_0 entered promiscuous mode [ 55.365724][ T8097] device hsr_slave_1 entered promiscuous mode [ 55.422832][ T8103] IPVS: ftp: loaded support on port[0] = 21 [ 55.432271][ T8100] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.454705][ T8100] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.462623][ T8100] device bridge_slave_0 entered promiscuous mode [ 55.488061][ T8100] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.504627][ T8100] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.512165][ T8100] device bridge_slave_1 entered promiscuous mode [ 55.541067][ T8105] IPVS: ftp: loaded support on port[0] = 21 [ 55.563092][ T8100] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link 20:48:35 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000006c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = fcntl$dupfd(r1, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0xb, 0xa, 0x209e1e, 0x1, 0x1}, 0x3c) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000b40)={r3, &(0x7f0000000300), &(0x7f0000000340)}, 0x20) bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000000240)={r3, &(0x7f0000000140), &(0x7f0000000040)=""/92}, 0x20) [ 55.582747][ T8100] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 55.592022][ T8097] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 55.652975][ T8097] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 55.698045][ T8097] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 55.775237][ T8097] netdevsim netdevsim0 netdevsim3: renamed from eth3 20:48:35 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) r2 = socket$inet(0x2b, 0x1, 0x0) bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @multicast2}, 0x10) connect$inet(r2, &(0x7f00000000c0)={0x2, 0x0, @local}, 0x10) bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e23, @multicast2}, 0x10) connect$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x0, @local}, 0x10) r3 = socket$inet(0x2b, 0x1, 0x0) bind$inet(r3, &(0x7f0000000000)={0x2, 0x4e23, @multicast2}, 0x10) connect$inet(r3, &(0x7f00000000c0)={0x2, 0x0, @local}, 0x10) r4 = socket$inet(0x2b, 0x1, 0x0) bind$inet(r4, &(0x7f0000000000)={0x2, 0x4e23, @multicast2}, 0x10) connect$inet(r4, &(0x7f00000000c0)={0x2, 0x0, @local}, 0x10) r5 = socket$inet(0x2b, 0x1, 0x0) bind$inet(r5, 0x0, 0x0) connect$inet(r5, &(0x7f00000000c0)={0x2, 0x0, @local}, 0x10) r6 = socket$inet(0x2b, 0x1, 0x0) bind$inet(r6, &(0x7f0000000000)={0x2, 0x4e23, @multicast2}, 0x10) connect$inet(r6, &(0x7f00000000c0)={0x2, 0x0, @local}, 0x10) r7 = socket$inet(0x2b, 0x1, 0x0) bind$inet(r7, &(0x7f0000000000)={0x2, 0x0, @multicast2}, 0x10) connect$inet(r7, &(0x7f00000000c0)={0x2, 0x0, @local}, 0x10) r8 = socket$inet(0x2b, 0x1, 0x0) bind$inet(r8, &(0x7f0000000000)={0x2, 0x4e23, @multicast2}, 0x10) connect$inet(r8, &(0x7f00000000c0)={0x2, 0x0, @local}, 0x10) r9 = socket$inet(0x2b, 0x1, 0x0) bind$inet(r9, &(0x7f0000000000)={0x2, 0x0, @multicast2}, 0x10) connect$inet(r9, &(0x7f00000000c0)={0x2, 0x0, @local}, 0x10) r10 = socket$inet(0x2b, 0x1, 0x0) bind$inet(r10, &(0x7f0000000000)={0x2, 0x4e23, @multicast2}, 0x10) [ 55.837544][ T8107] IPVS: ftp: loaded support on port[0] = 21 [ 55.848385][ T8100] team0: Port device team_slave_0 added [ 55.870880][ T8100] team0: Port device team_slave_1 added [ 55.928602][ T8097] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.935812][ T8097] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.943529][ T8097] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.950640][ T8097] bridge0: port 1(bridge_slave_0) entered forwarding state [ 56.013876][ T8105] chnl_net:caif_netlink_parms(): no params data found [ 56.025536][ T5] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.033125][ T5] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.096989][ T8100] device hsr_slave_0 entered promiscuous mode [ 56.135030][ T8100] device hsr_slave_1 entered promiscuous mode [ 56.174677][ T8100] debugfs: Directory 'hsr0' with parent '/' already present! [ 56.201527][ T8109] IPVS: ftp: loaded support on port[0] = 21 [ 56.285322][ T8105] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.292426][ T8105] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.301568][ T8105] device bridge_slave_0 entered promiscuous mode [ 56.310236][ T8105] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.317355][ T8105] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.325229][ T8105] device bridge_slave_1 entered promiscuous mode [ 56.332085][ T8103] chnl_net:caif_netlink_parms(): no params data found [ 56.345417][ T8100] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 56.397860][ T8100] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 56.480135][ T8100] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 56.542604][ T8097] 8021q: adding VLAN 0 to HW filter on device bond0 [ 56.552794][ T8100] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 56.622208][ T8105] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 56.633340][ T8105] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 56.658494][ T8103] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.665701][ T8103] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.673348][ T8103] device bridge_slave_0 entered promiscuous mode [ 56.701309][ T8103] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.710975][ T8103] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.719687][ T8103] device bridge_slave_1 entered promiscuous mode [ 56.733706][ T8105] team0: Port device team_slave_0 added [ 56.763920][ T8105] team0: Port device team_slave_1 added [ 56.788086][ T8107] chnl_net:caif_netlink_parms(): no params data found [ 56.808409][ T3049] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 56.817602][ T3049] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 56.866602][ T8105] device hsr_slave_0 entered promiscuous mode [ 56.905001][ T8105] device hsr_slave_1 entered promiscuous mode [ 56.954808][ T8105] debugfs: Directory 'hsr0' with parent '/' already present! [ 56.981144][ T8103] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 56.995216][ T8103] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.015535][ T8103] team0: Port device team_slave_0 added [ 57.022982][ T8097] 8021q: adding VLAN 0 to HW filter on device team0 [ 57.052356][ T8103] team0: Port device team_slave_1 added [ 57.066092][ T8109] chnl_net:caif_netlink_parms(): no params data found [ 57.079386][ T3049] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 57.087989][ T3049] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.096766][ T3049] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.103802][ T3049] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.111634][ T3049] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 57.120178][ T3049] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 57.128847][ T3049] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.135939][ T3049] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.145324][ T8107] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.152368][ T8107] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.160752][ T8107] device bridge_slave_0 entered promiscuous mode [ 57.169595][ T8107] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.177130][ T8107] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.184977][ T8107] device bridge_slave_1 entered promiscuous mode [ 57.247598][ T8103] device hsr_slave_0 entered promiscuous mode [ 57.295134][ T8103] device hsr_slave_1 entered promiscuous mode [ 57.344644][ T8103] debugfs: Directory 'hsr0' with parent '/' already present! [ 57.397094][ T1096] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 57.439243][ T8107] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.449762][ T8109] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.457006][ T8109] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.465127][ T8109] device bridge_slave_0 entered promiscuous mode [ 57.473345][ T1096] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 57.481922][ T1096] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 57.491510][ T1096] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 57.500400][ T1096] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 57.517820][ T8105] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 57.578371][ T8107] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.588062][ T8109] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.595619][ T8109] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.603285][ T8109] device bridge_slave_1 entered promiscuous mode [ 57.626516][ T8103] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 57.666303][ T8105] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 57.696985][ T8105] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 57.740885][ T8105] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 57.816995][ T8100] 8021q: adding VLAN 0 to HW filter on device bond0 [ 57.824168][ T8110] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 57.833542][ T8110] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 57.841959][ T8110] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 57.850698][ T8110] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 57.861036][ T8109] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.875284][ T8103] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 57.920352][ T8103] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 57.977223][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 57.985737][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 57.993892][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 58.001685][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 58.014784][ T8109] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.024737][ T8097] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 58.034148][ T8107] team0: Port device team_slave_0 added [ 58.041820][ T8103] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 58.109857][ T8100] 8021q: adding VLAN 0 to HW filter on device team0 [ 58.129349][ T8107] team0: Port device team_slave_1 added [ 58.163595][ T8109] team0: Port device team_slave_0 added [ 58.170746][ T8109] team0: Port device team_slave_1 added [ 58.188171][ T8107] device hsr_slave_0 entered promiscuous mode [ 58.225747][ T8107] device hsr_slave_1 entered promiscuous mode [ 58.274639][ T8107] debugfs: Directory 'hsr0' with parent '/' already present! [ 58.283072][ T1096] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 58.291899][ T1096] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 58.300377][ T1096] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.307471][ T1096] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.316765][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 58.377723][ T8109] device hsr_slave_0 entered promiscuous mode [ 58.425449][ T8109] device hsr_slave_1 entered promiscuous mode [ 58.465554][ T8109] debugfs: Directory 'hsr0' with parent '/' already present! [ 58.498212][ T8111] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 58.505910][ T8111] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 58.514026][ T8111] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 58.523951][ T8111] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 58.532419][ T8111] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.539479][ T8111] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.552756][ T8097] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 58.588243][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 58.606509][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 58.625941][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 58.635307][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 58.643591][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 58.652533][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 58.670197][ T8107] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 58.726215][ T8107] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 58.780429][ T8107] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 58.838305][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 58.853899][ T8109] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 58.903457][ T8100] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 58.931515][ T8100] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 163.924510][ C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 163.931626][ C1] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P8100 [ 163.939059][ C1] (detected by 1, t=10503 jiffies, g=6325, q=181) [ 163.945542][ C1] syz-executor.1 R running task 24424 8100 8098 0x0000400a [ 163.953429][ C1] Call Trace: [ 163.956709][ C1] [ 163.959559][ C1] sched_show_task+0x40f/0x560 [ 163.964321][ C1] rcu_sched_clock_irq+0x16b1/0x1ad0 [ 163.969604][ C1] update_process_times+0x12d/0x180 [ 163.974789][ C1] tick_sched_timer+0x263/0x420 [ 163.979630][ C1] ? tick_setup_sched_timer+0x3d0/0x3d0 [ 163.985168][ C1] __hrtimer_run_queues+0x403/0x840 [ 163.990366][ C1] hrtimer_interrupt+0x38c/0xda0 [ 163.995306][ C1] ? debug_smp_processor_id+0x9/0x20 [ 164.000583][ C1] smp_apic_timer_interrupt+0x109/0x280 [ 164.006114][ C1] apic_timer_interrupt+0xf/0x20 [ 164.011033][ C1] [ 164.013958][ C1] RIP: 0010:free_thread_stack+0x124/0x590 [ 164.019666][ C1] Code: ff 48 c1 e8 06 48 83 e0 c0 48 bf 00 00 00 00 00 ea ff ff 48 01 c7 be 03 00 00 00 e8 06 a2 60 00 e9 5d 04 00 00 e8 5c 2d 2e 00 <48> 89 df 31 f6 e8 42 af 6e 00 43 80 3c 2e 00 74 08 4c 89 e7 e8 43 [ 164.039256][ C1] RSP: 0018:ffffc90002516e10 EFLAGS: 00000293 ORIG_RAX: ffffffffffffff13 [ 164.047657][ C1] RAX: ffffffff81486ea4 RBX: ffffea00024abcc0 RCX: ffff888095af40c0 [ 164.055614][ C1] RDX: 0000000000000000 RSI: 00000000fffffffc RDI: ffffea00024abcc0 [ 164.063568][ C1] RBP: ffffc90002516e48 R08: dffffc0000000000 R09: fffffbfff120248a [ 164.071521][ C1] R10: fffffbfff120248a R11: 0000000000000000 R12: ffff8880a7678ea0 [ 164.079478][ C1] R13: dffffc0000000000 R14: 1ffff11014ecf1d4 R15: ffff8880a937d5a8 [ 164.087442][ C1] ? free_thread_stack+0x124/0x590 [ 164.092544][ C1] put_task_stack+0xa3/0x130 [ 164.097128][ C1] finish_task_switch+0x3f1/0x550 [ 164.102142][ C1] __schedule+0x9a8/0xcc0 [ 164.106462][ C1] ? ___preempt_schedule+0x16/0x18 [ 164.111555][ C1] preempt_schedule+0xdb/0x120 [ 164.116303][ C1] ___preempt_schedule+0x16/0x18 [ 164.121227][ C1] ? vprintk_emit+0x2fe/0x3a0 [ 164.125884][ C1] ? vprintk_emit+0x368/0x3a0 [ 164.130551][ C1] vprintk_emit+0x36d/0x3a0 [ 164.135046][ C1] vprintk_default+0x28/0x30 [ 164.139619][ C1] vprintk_func+0x158/0x170 [ 164.144112][ C1] printk+0x62/0x8d [ 164.147903][ C1] ? rcu_lock_release+0x9/0x30 [ 164.152657][ C1] ? hsr_dev_open+0x1c9/0x360 [ 164.157319][ C1] __netdev_printk+0x245/0x3e9 [ 164.162068][ C1] ? trace_lock_acquire+0x159/0x1d0 [ 164.167259][ C1] netdev_warn+0xb9/0xdb [ 164.171486][ C1] ? hsr_dev_open+0x1c9/0x360 [ 164.176152][ C1] hsr_dev_open+0x213/0x360 [ 164.180652][ C1] __dev_open+0x284/0x420 [ 164.184979][ C1] __dev_change_flags+0x1a8/0x680 [ 164.189985][ C1] ? do_syscall_64+0xf7/0x1c0 [ 164.194654][ C1] dev_change_flags+0x8a/0x190 [ 164.199405][ C1] do_setlink+0xb2e/0x3960 [ 164.203807][ C1] ? memset+0x31/0x40 [ 164.207779][ C1] ? __nla_validate_parse+0x18cd/0x1f40 [ 164.213319][ C1] ? __kasan_check_read+0x11/0x20 [ 164.218330][ C1] rtnl_newlink+0x14dd/0x1bd0 [ 164.222989][ C1] ? rtnl_newlink+0x371/0x1bd0 [ 164.227742][ C1] ? trace_hardirqs_off+0x74/0x80 [ 164.232801][ C1] ? __mutex_lock_common+0x4f5/0x2e10 [ 164.238168][ C1] ? rtnetlink_rcv_msg+0x83c/0xd40 [ 164.243264][ C1] ? rcu_lock_release+0x9/0x30 [ 164.248026][ C1] ? rtnl_setlink+0x490/0x490 [ 164.252691][ C1] rtnetlink_rcv_msg+0x889/0xd40 [ 164.257642][ C1] ? rcu_lock_release+0x9/0x30 [ 164.262391][ C1] ? rcu_lock_release+0x9/0x30 [ 164.267145][ C1] ? rcu_lock_release+0x9/0x30 [ 164.271901][ C1] netlink_rcv_skb+0x19e/0x3d0 [ 164.276654][ C1] ? rtnetlink_bind+0x80/0x80 [ 164.281320][ C1] rtnetlink_rcv+0x1c/0x20 [ 164.285719][ C1] netlink_unicast+0x767/0x920 [ 164.290473][ C1] netlink_sendmsg+0xa21/0xd40 [ 164.295234][ C1] ? netlink_getsockopt+0x9f0/0x9f0 [ 164.300415][ C1] __sys_sendto+0x442/0x5e0 [ 164.304912][ C1] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 164.310964][ C1] ? prepare_exit_to_usermode+0x221/0x5b0 [ 164.316670][ C1] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 164.322204][ C1] __x64_sys_sendto+0xe5/0x100 [ 164.326954][ C1] do_syscall_64+0xf7/0x1c0 [ 164.331444][ C1] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 164.337317][ C1] RIP: 0033:0x414373 [ 164.341195][ C1] Code: ff 0f 83 b0 19 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 3d fd 40 66 00 00 75 17 49 89 ca b8 2c 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 81 19 00 00 c3 48 83 ec 08 e8 87 fa ff ff [ 164.360877][ C1] RSP: 002b:00007ffc795c23c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 164.369271][ C1] RAX: ffffffffffffffda RBX: 0000000000a72200 RCX: 0000000000414373 [ 164.377229][ C1] RDX: 0000000000000020 RSI: 0000000000a72250 RDI: 0000000000000003 [ 164.385184][ C1] RBP: 0000000000000000 R08: 00007ffc795c23d0 R09: 000000000000000c [ 164.393146][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 164.401100][ C1] R13: 0000000000000000 R14: 0000000000a72250 R15: 0000000000000003 [ 164.409075][ C1] rcu: rcu_preempt kthread starved for 10542 jiffies! g6325 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 164.420153][ C1] rcu: RCU grace-period kthread stack dump: [ 164.426025][ C1] rcu_preempt R running task 29104 10 2 0x80004000 [ 164.433907][ C1] Call Trace: [ 164.437182][ C1] __schedule+0x9a0/0xcc0 [ 164.441506][ C1] schedule+0x181/0x210 [ 164.445661][ C1] schedule_timeout+0x14f/0x240 [ 164.450494][ C1] ? run_local_timers+0x120/0x120 [ 164.455510][ C1] rcu_gp_kthread+0xed8/0x1770 [ 164.460283][ C1] kthread+0x332/0x350 [ 164.464339][ C1] ? rcu_report_qs_rsp+0x140/0x140 [ 164.469432][ C1] ? kthread_blkcg+0xe0/0xe0 [ 164.474008][ C1] ret_from_fork+0x24/0x30