Warning: Permanently added '10.128.0.204' (ECDSA) to the list of known hosts. 2019/12/04 02:55:02 fuzzer started 2019/12/04 02:55:03 dialing manager at 10.128.0.26:42111 2019/12/04 02:55:03 syscalls: 2689 2019/12/04 02:55:03 code coverage: enabled 2019/12/04 02:55:03 comparison tracing: enabled 2019/12/04 02:55:03 extra coverage: extra coverage is not supported by the kernel 2019/12/04 02:55:03 setuid sandbox: enabled 2019/12/04 02:55:03 namespace sandbox: enabled 2019/12/04 02:55:03 Android sandbox: /sys/fs/selinux/policy does not exist 2019/12/04 02:55:03 fault injection: enabled 2019/12/04 02:55:03 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/12/04 02:55:03 net packet injection: enabled 2019/12/04 02:55:03 net device setup: enabled 2019/12/04 02:55:03 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2019/12/04 02:55:03 devlink PCI setup: PCI device 0000:00:10.0 is not available 02:55:04 executing program 0: r0 = socket$rds(0x15, 0x5, 0x0) bind$rds(r0, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10) sendmsg$rds(r0, &(0x7f0000001380)={&(0x7f0000000040)={0x2, 0x0, @local}, 0x10, 0x0, 0x0, &(0x7f0000001240)=ANY=[@ANYBLOB="48000000000000001401000001000000000000000000000000000000000000007fff000000000000", @ANYPTR=&(0x7f0000000280)=ANY=[@ANYPTR=&(0x7f0000000080)=ANY=[], @ANYBLOB="1500000000000000", @ANYPTR=&(0x7f0000000380)=ANY=[], @ANYBLOB="2700000000000000ca845e2e6a4a024f0c"], @ANYBLOB="0300"/24], 0x48}, 0x0) 02:55:04 executing program 1: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) migrate_pages(0x0, 0x7ffd, 0x0, &(0x7f0000000180)=0x3) syzkaller login: [ 55.268443][ T8117] IPVS: ftp: loaded support on port[0] = 21 [ 55.339146][ T8119] IPVS: ftp: loaded support on port[0] = 21 [ 55.460794][ T8119] chnl_net:caif_netlink_parms(): no params data found 02:55:05 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x2) write$evdev(r0, &(0x7f000004d000)=[{{}, 0x0, 0x1}], 0xfffffe82) [ 55.519776][ T8117] chnl_net:caif_netlink_parms(): no params data found [ 55.537051][ T8119] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.545057][ T8119] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.554354][ T8119] device bridge_slave_0 entered promiscuous mode [ 55.571297][ T8119] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.580129][ T8119] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.594429][ T8119] device bridge_slave_1 entered promiscuous mode [ 55.665727][ T8119] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 55.691869][ T8117] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.714980][ T8117] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.722725][ T8117] device bridge_slave_0 entered promiscuous mode [ 55.747216][ T8119] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 55.762450][ T8117] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.770831][ T8117] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.779272][ T8117] device bridge_slave_1 entered promiscuous mode [ 55.803729][ T8119] team0: Port device team_slave_0 added 02:55:05 executing program 3: r0 = syz_open_dev$video(&(0x7f00000000c0)='/dev/video#\x00', 0x0, 0x0) ioctl$VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000000100)={0x6, @sdr}) [ 55.812731][ T8117] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 55.823453][ T8119] team0: Port device team_slave_1 added [ 55.832341][ T8117] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 55.833815][ T8123] IPVS: ftp: loaded support on port[0] = 21 [ 55.908549][ T8119] device hsr_slave_0 entered promiscuous mode [ 55.945235][ T8119] device hsr_slave_1 entered promiscuous mode [ 56.008886][ T8117] team0: Port device team_slave_0 added [ 56.040228][ T8117] team0: Port device team_slave_1 added 02:55:05 executing program 4: bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x3, 0x3, &(0x7f0000000040)=@framed={{0x15, 0xa, 0x0, 0x0, 0x0, 0x71, 0x10, 0x6e}}, &(0x7f0000000080)='GPL\x04\x9c5\x14\xbfw-\xa0z\xe8.vY\n6\xf6I>\xc1\xab\x91\xb3\x97\xe4*\xbf\x1e\xa6\xcd\x8c\xd7t\'\xfc\x9a\x9e+qe\xf5+A\a\xbf\bP\xd8\x99\xdcR\xd0\x13\x17]\xdb\x1b/F <*\x05\xb7\"\xe3>Uo\xb2\xe3\xf3\x9a<\xde\x1f\xcaSd\x037\xec\x95aF\xbd\xbf\xcb\x11Pp\x19V1\xde]!\xa5\xea\x9ec\x8c+\xdbx\xa5\x01\xcaKn\xa3\x13\xd8%h\xf98,,?o\xab\xa6\xb4\xeeTy;N\xd2m\xae>R\"P)\xbb*\xc0\x00\x7fwuL?#\xce\xda\x98\t\xb9\xa9hJ\x94\n\xbc\xaa\x8c\xfc\xc7\x13>\xc4\"\xe9\xc88\x881\x8dA\xe9\xa4\x93\xf0\x19_\xe2Y\x96Q\xb8\x95\x04\xf5\xdb\xa1F%\xce#f\xf3=\x95\xdb\xa9/\x86ry\xca\xbfJ\xce\xdd\xc8Z\x8a\xf7\xa0\xfah\xd7g\xceQ6\xb9\xd0\xd1\x96lI\x9c\xb6\xbf4\xc2\x7f\x00'/248}, 0x48) [ 56.075623][ T8119] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 56.084037][ T8125] IPVS: ftp: loaded support on port[0] = 21 [ 56.102240][ T8119] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 56.206620][ T8119] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 56.247000][ T8119] netdevsim netdevsim1 netdevsim3: renamed from eth3 02:55:05 executing program 5: syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0) r0 = syz_open_dev$sndpcmc(0x0, 0x0, 0x0) ioctl(r0, 0xc1004111, &(0x7f0000000000)) [ 56.378106][ T8117] device hsr_slave_0 entered promiscuous mode [ 56.426122][ T8117] device hsr_slave_1 entered promiscuous mode [ 56.495023][ T8117] debugfs: Directory 'hsr0' with parent '/' already present! [ 56.548336][ T8127] IPVS: ftp: loaded support on port[0] = 21 [ 56.579318][ T8129] IPVS: ftp: loaded support on port[0] = 21 [ 56.640577][ T8123] chnl_net:caif_netlink_parms(): no params data found [ 56.654634][ T8117] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 56.708819][ T8117] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 56.769939][ T8117] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 56.816902][ T8117] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 56.938813][ T8123] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.946144][ T8123] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.953792][ T8123] device bridge_slave_0 entered promiscuous mode [ 57.005335][ T8123] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.012408][ T8123] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.020540][ T8123] device bridge_slave_1 entered promiscuous mode [ 57.032813][ T8125] chnl_net:caif_netlink_parms(): no params data found [ 57.071267][ T8123] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.082792][ T8127] chnl_net:caif_netlink_parms(): no params data found [ 57.103367][ T8117] 8021q: adding VLAN 0 to HW filter on device bond0 [ 57.130452][ T8123] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.151268][ T8125] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.159644][ T8125] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.167378][ T8125] device bridge_slave_0 entered promiscuous mode [ 57.193886][ T8125] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.201245][ T8125] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.208888][ T8125] device bridge_slave_1 entered promiscuous mode [ 57.220424][ T8117] 8021q: adding VLAN 0 to HW filter on device team0 [ 57.234134][ T8119] 8021q: adding VLAN 0 to HW filter on device bond0 [ 57.249525][ T8123] team0: Port device team_slave_0 added [ 57.262451][ T8129] chnl_net:caif_netlink_parms(): no params data found [ 57.277676][ T8133] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 57.286265][ T8133] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 57.315837][ T8123] team0: Port device team_slave_1 added [ 57.338249][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 57.347653][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.357120][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.364254][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.372373][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 57.381795][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 57.390314][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.397414][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.405736][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 57.414226][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 57.423076][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 57.432395][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 57.441636][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 57.450781][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 57.459889][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 57.468418][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 57.477666][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 57.486264][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 57.494433][ T8127] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.503455][ T8127] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.511456][ T8127] device bridge_slave_0 entered promiscuous mode [ 57.521491][ T8127] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.529128][ T8127] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.537493][ T8127] device bridge_slave_1 entered promiscuous mode [ 57.545999][ T8117] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 57.560944][ T8125] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.577170][ T8125] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.589506][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 57.597513][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 57.606074][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 57.613739][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 57.624592][ T8119] 8021q: adding VLAN 0 to HW filter on device team0 [ 57.676564][ T8123] device hsr_slave_0 entered promiscuous mode [ 57.725924][ T8123] device hsr_slave_1 entered promiscuous mode [ 57.765502][ T8123] debugfs: Directory 'hsr0' with parent '/' already present! [ 57.786954][ T8125] team0: Port device team_slave_0 added [ 57.794739][ T8125] team0: Port device team_slave_1 added [ 57.808299][ T8127] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.820787][ T8133] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 57.830070][ T8133] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.840156][ T8133] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.847243][ T8133] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.855792][ T8133] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 57.876943][ T8129] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.884013][ T8129] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.893197][ T8129] device bridge_slave_0 entered promiscuous mode [ 57.900931][ T8129] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.908811][ T8129] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.916729][ T8129] device bridge_slave_1 entered promiscuous mode [ 57.926002][ T8127] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.937815][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 57.946980][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 57.955632][ T5] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.962664][ T5] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.970327][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 57.978384][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 57.991947][ T8117] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 58.014195][ T8129] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.032616][ T3054] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 58.041681][ T3054] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 58.097425][ T8125] device hsr_slave_0 entered promiscuous mode [ 58.135266][ T8125] device hsr_slave_1 entered promiscuous mode [ 58.175168][ T8125] debugfs: Directory 'hsr0' with parent '/' already present! [ 58.183905][ T8129] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.212193][ T8129] team0: Port device team_slave_0 added [ 58.225769][ T8129] team0: Port device team_slave_1 added [ 58.232093][ T2726] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 58.240553][ T2726] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 58.249411][ T2726] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 58.258226][ T2726] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 58.267772][ T2726] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 58.276344][ T2726] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 58.284395][ T2726] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 58.293079][ T2726] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 58.301429][ T2726] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 58.319929][ T8127] team0: Port device team_slave_0 added [ 58.337464][ T8119] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 58.373218][ T8127] team0: Port device team_slave_1 added [ 163.404853][ C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 163.411849][ C1] (detected by 1, t=10502 jiffies, g=5829, q=105) [ 163.418337][ C1] rcu: All QSes seen, last rcu_preempt kthread activity 10503 (4294953479-4294942976), jiffies_till_next_fqs=1, root ->qsmask 0x0 [ 163.431676][ C1] kworker/u4:0 R running task 27344 7 2 0x80004008 [ 163.439608][ C1] Workqueue: 0x0 (gid-cache-wq) [ 163.444528][ C1] Call Trace: [ 163.447805][ C1] [ 163.450649][ C1] sched_show_task+0x40f/0x560 [ 163.455404][ C1] rcu_sched_clock_irq+0x1861/0x1ad0 [ 163.460685][ C1] update_process_times+0x12d/0x180 [ 163.465866][ C1] tick_sched_timer+0x263/0x420 [ 163.470699][ C1] ? tick_setup_sched_timer+0x3d0/0x3d0 [ 163.476228][ C1] __hrtimer_run_queues+0x403/0x840 [ 163.481430][ C1] hrtimer_interrupt+0x38c/0xda0 [ 163.486368][ C1] ? debug_smp_processor_id+0x9/0x20 [ 163.491645][ C1] smp_apic_timer_interrupt+0x109/0x280 [ 163.497186][ C1] apic_timer_interrupt+0xf/0x20 [ 163.502113][ C1] [ 163.505040][ C1] RIP: 0010:mod_memcg_page_state+0x0/0x190 [ 163.510831][ C1] Code: 48 8b 3b e8 12 c1 5f 00 eb 0c e8 0b 29 2e 00 eb 05 e8 04 29 2e 00 48 83 c4 10 5b 41 5c 41 5d 41 5e 41 5f 5d c3 0f 1f 44 00 00 <55> 48 89 e5 41 57 41 56 41 54 53 41 89 f6 48 89 fb e8 da 28 2e 00 [ 163.530430][ C1] RSP: 0018:ffffc90000cdfc28 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13 [ 163.538825][ C1] RAX: 1ffff11013a58bf1 RBX: ffff88809d2c5f88 RCX: 0000000000000000 [ 163.546799][ C1] RDX: 0000000000000000 RSI: 00000000fffffffc RDI: ffffea000274b1c0 [ 163.554757][ C1] RBP: ffffc90000cdfc68 R08: dffffc0000000000 R09: fffffbfff120248a [ 163.562738][ C1] R10: fffffbfff120248a R11: 0000000000000000 R12: ffff88806c4ea020 [ 163.570707][ C1] R13: dffffc0000000000 R14: 1ffff1100d89d404 R15: ffff8880a6fa95e8 [ 163.578698][ C1] ? free_thread_stack+0x168/0x590 [ 163.583809][ C1] put_task_stack+0xa3/0x130 [ 163.588384][ C1] finish_task_switch+0x3f1/0x550 [ 163.593401][ C1] __schedule+0x9a8/0xcc0 [ 163.597735][ C1] schedule+0x181/0x210 [ 163.601879][ C1] worker_thread+0x10d6/0x1630 [ 163.606653][ C1] kthread+0x332/0x350 [ 163.610706][ C1] ? rcu_lock_release+0x30/0x30 [ 163.615542][ C1] ? kthread_blkcg+0xe0/0xe0 [ 163.620116][ C1] ret_from_fork+0x24/0x30 [ 163.624532][ C1] rcu: rcu_preempt kthread starved for 10523 jiffies! g5829 f0x2 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 163.635614][ C1] rcu: RCU grace-period kthread stack dump: [ 163.641488][ C1] rcu_preempt R running task 29104 10 2 0x80004000 [ 163.649373][ C1] Call Trace: [ 163.652651][ C1] __schedule+0x9a0/0xcc0 [ 163.656975][ C1] schedule+0x181/0x210 [ 163.661120][ C1] schedule_timeout+0x14f/0x240 [ 163.665958][ C1] ? run_local_timers+0x120/0x120 [ 163.670999][ C1] rcu_gp_kthread+0xed8/0x1770 [ 163.675759][ C1] kthread+0x332/0x350 [ 163.679811][ C1] ? rcu_report_qs_rsp+0x140/0x140 [ 163.684908][ C1] ? kthread_blkcg+0xe0/0xe0 [ 163.689484][ C1] ret_from_fork+0x24/0x30