[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 43.227638][ T25] audit: type=1800 audit(1575378808.015:25): pid=8005 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 43.258918][ T25] audit: type=1800 audit(1575378808.015:26): pid=8005 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 43.293000][ T25] audit: type=1800 audit(1575378808.015:27): pid=8005 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.1.45' (ECDSA) to the list of known hosts. 2019/12/03 13:13:39 fuzzer started 2019/12/03 13:13:41 dialing manager at 10.128.0.26:45711 2019/12/03 13:13:41 syscalls: 2689 2019/12/03 13:13:41 code coverage: enabled 2019/12/03 13:13:41 comparison tracing: enabled 2019/12/03 13:13:41 extra coverage: extra coverage is not supported by the kernel 2019/12/03 13:13:41 setuid sandbox: enabled 2019/12/03 13:13:41 namespace sandbox: enabled 2019/12/03 13:13:41 Android sandbox: /sys/fs/selinux/policy does not exist 2019/12/03 13:13:41 fault injection: enabled 2019/12/03 13:13:41 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/12/03 13:13:41 net packet injection: enabled 2019/12/03 13:13:41 net device setup: enabled 2019/12/03 13:13:41 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2019/12/03 13:13:41 devlink PCI setup: PCI device 0000:00:10.0 is not available 13:13:42 executing program 0: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) socket$kcm(0x29, 0x1000000000002, 0x0) r0 = socket(0x10, 0x0, 0x0) syz_open_procfs(0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, 0x0) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000cf6fe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000000), 0x0) r2 = getpid() sched_setscheduler(r2, 0x5, &(0x7f0000000380)) r3 = syz_open_dev$usbmon(0x0, 0x0, 0x0) lstat(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)='fuse\x00', 0x8888, &(0x7f0000000640)=ANY=[@ANYBLOB, @ANYRESHEX=r3, @ANYBLOB=',rootmode=0000000@000000000040000,urer_id=', @ANYRESDEC=r4, @ANYRESDEC, @ANYBLOB=',allow_other']) getgid() r5 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BLKSECDISCARD(r5, 0x127d, &(0x7f0000000000)) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000640)) r6 = syz_open_dev$usbmon(0x0, 0x0, 0x0) lstat(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)='fuse\x00', 0x8888, &(0x7f0000000640)=ANY=[@ANYBLOB, @ANYRESHEX=r6, @ANYBLOB=',rootmode=0000000@000000000040000,urer_id=', @ANYRESDEC=r7, @ANYRESDEC, @ANYBLOB=',allow_other,func=CREDS_']) syz_open_dev$amidi(&(0x7f0000000680)='/dev/amidi#\x00', 0xf, 0x0) syz_open_dev$usbmon(0x0, 0x0, 0x0) lstat(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)='fuse\x00', 0x8888, &(0x7f0000000640)=ANY=[@ANYBLOB, @ANYRESDEC=r8, @ANYRESDEC, @ANYBLOB=',allow_other,func=CRE']) r9 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x4000000004002, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r9, 0x0) r10 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x0, 0x0) preadv(r10, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x3ffc00}], 0x1, 0x0) socket$rds(0x15, 0x5, 0x0) pipe2(0x0, 0x800) r11 = openat$nullb(0xffffffffffffff9c, 0x0, 0x0, 0x0) preadv(r11, &(0x7f0000000040)=[{0x0}], 0x1, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) syz_open_dev$usbmon(0x0, 0x0, 0x0) lstat(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)) mount$fuse(0x0, 0x0, &(0x7f0000000140)='fuse\x00', 0x8888, 0x0) getgroups(0x1, &(0x7f0000000700)=[0xee00]) getpid() sched_setscheduler(0x0, 0x0, 0x0) syz_open_dev$usbmon(0x0, 0x0, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) stat(0x0, 0x0) r12 = getegid() fchown(0xffffffffffffffff, 0x0, r12) getgroups(0x2, &(0x7f0000000740)=[0xee01, 0xee01]) fcntl$getown(r0, 0x9) syz_open_dev$usbmon(0x0, 0x0, 0x0) lstat(0x0, &(0x7f0000000300)) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) stat(0x0, 0x0) getgid() clone3(0x0, 0x0) lstat(0x0, &(0x7f0000000b00)) socket$vsock_stream(0x28, 0x1, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x10, 0xffffffffffffffff, 0x0) getpid() sched_setscheduler(0x0, 0x0, 0x0) lstat(0x0, 0x0) mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0) openat$qat_adf_ctl(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$nullb(0xffffffffffffff9c, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BLKSECDISCARD(0xffffffffffffffff, 0x127d, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0) stat(0x0, 0x0) syz_open_dev$usbmon(0x0, 0x0, 0x0) lstat(0x0, 0x0) mount$fuse(0x0, 0x0, &(0x7f0000000140)='fuse\x00', 0x0, 0x0) syz_open_dev$usbmon(0x0, 0x0, 0x0) lstat(0x0, 0x0) mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0) getpid() sched_setscheduler(0x0, 0x0, 0x0) getpgid(0x0) syz_open_dev$usbmon(0x0, 0x0, 0x0) lstat(0x0, 0x0) mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0) getpgrp(0xffffffffffffffff) dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BLKSECDISCARD(0xffffffffffffffff, 0x127d, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0) getgid() setresgid(0x0, 0x0, 0x0) syz_open_dev$usbmon(0x0, 0x0, 0x0) lstat(&(0x7f00000002c0)='./file0\x00', 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x8888, 0x0) openat$nullb(0xffffffffffffff9c, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0) syz_open_dev$usbmon(0x0, 0x0, 0x0) lstat(0x0, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x10, 0xffffffffffffffff, 0x0) getpid() sched_setscheduler(0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) stat(0x0, 0x0) getegid() fchown(0xffffffffffffffff, 0x0, 0x0) ioctl$BLKSECDISCARD(0xffffffffffffffff, 0x127d, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0) lstat(0x0, 0x0) mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) stat(0x0, 0x0) getegid() fchown(0xffffffffffffffff, 0x0, 0x0) openat$nullb(0xffffffffffffff9c, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0) syz_init_net_socket$llc(0x1a, 0x0, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x10, 0xffffffffffffffff, 0x0) openat$nullb(0xffffffffffffff9c, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0) openat$nullb(0xffffffffffffff9c, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000040), 0x0, 0x0) syz_open_dev$usbmon(0x0, 0x0, 0x0) lstat(0x0, 0x0) mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0) openat$nullb(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x10, 0xffffffffffffffff, 0x0) syz_open_dev$amidi(0x0, 0x0, 0x0) fanotify_init(0x0, 0x0) syz_open_dev$cec(0x0, 0x0, 0x2) r13 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x10, r13, 0x0) getpid() sched_setscheduler(0x0, 0x0, 0x0) getegid() ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000002900)) getuid() lstat(0x0, &(0x7f0000002980)) stat(0x0, 0x0) getgid() setresgid(0x0, 0x0, 0x0) getpid() sched_setscheduler(0x0, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0) lstat(0x0, 0x0) openat$nullb(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x10, 0xffffffffffffffff, 0x0) lstat(0x0, 0x0) stat(0x0, 0x0) fchown(0xffffffffffffffff, 0x0, 0x0) getpid() lstat(0x0, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) 13:13:42 executing program 1: r0 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x400, 0x0) ioctl$VIDIOC_G_CROP(r0, 0xc014563b, &(0x7f0000000040)={0xa}) syzkaller login: [ 57.765520][ T8169] IPVS: ftp: loaded support on port[0] = 21 [ 57.924653][ T8169] chnl_net:caif_netlink_parms(): no params data found 13:13:42 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = eventfd2(0x0, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000080)={0x0, 0x0, 0x0, r2}) ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f0000000100)={0x0, 0x0, 0x0, r2}) [ 57.997349][ T8169] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.007105][ T8169] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.017848][ T8169] device bridge_slave_0 entered promiscuous mode [ 58.038620][ T8172] IPVS: ftp: loaded support on port[0] = 21 [ 58.045952][ T8169] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.070523][ T8169] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.089886][ T8169] device bridge_slave_1 entered promiscuous mode [ 58.144566][ T8169] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.167721][ T8169] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link 13:13:43 executing program 3: r0 = socket(0x10, 0x80002, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0xffffffffffffffc7, &(0x7f0000000000)={&(0x7f0000000080)=@newlink={0x48, 0x10, 0x705, 0x0, 0x0, {0x0, 0x0, 0x0, r3}, [@IFLA_LINKINFO={0x28, 0x12, @veth={{0xc, 0x1, 'veth\x00'}, {0x18, 0x2, @VETH_INFO_PEER={0x14}}}}]}, 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="580000002400070500"/20, @ANYRES32=r3, @ANYBLOB="00000000ffffffff0000000008000100736662002c00020028000100"/64], 0x58}}, 0x0) sendmmsg$alg(r0, &(0x7f0000000140), 0x332, 0x0) [ 58.223048][ T8169] team0: Port device team_slave_0 added [ 58.270555][ T8169] team0: Port device team_slave_1 added [ 58.285861][ T8174] IPVS: ftp: loaded support on port[0] = 21 [ 58.315702][ T8172] chnl_net:caif_netlink_parms(): no params data found [ 58.382790][ T8169] device hsr_slave_0 entered promiscuous mode [ 58.430944][ T8169] device hsr_slave_1 entered promiscuous mode 13:13:43 executing program 4: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000140)={{}, 'syz0\x00'}) ioctl$UI_DEV_SETUP(r0, 0x5501, 0x0) ioctl$UI_SET_SWBIT(r0, 0x4004556d, 0x0) [ 58.504888][ T8177] IPVS: ftp: loaded support on port[0] = 21 [ 58.567795][ T8172] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.588924][ T8172] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.608937][ T8172] device bridge_slave_0 entered promiscuous mode [ 58.631241][ T8172] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.638311][ T8172] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.662122][ T8172] device bridge_slave_1 entered promiscuous mode [ 58.727041][ T8179] IPVS: ftp: loaded support on port[0] = 21 [ 58.770145][ T8169] netdevsim netdevsim0 netdevsim0: renamed from eth0 13:13:43 executing program 5: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)={0x12, 0x107, 0x4, 0x400}, 0x3c) socket$rxrpc(0x21, 0x2, 0xa) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4) connect$inet6(r1, &(0x7f0000000240), 0x1c) bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x5}, 0x3c) bpf$MAP_CREATE(0x2, &(0x7f0000003000)={0x3, 0x0, 0x77fffb, 0x0, 0x10020000000, 0x0}, 0x2c) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000000c0)={r0, &(0x7f00000002c0), 0x0}, 0x20) [ 58.851700][ T8172] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.871038][ T8169] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 58.931461][ T8169] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 58.982688][ T8169] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 59.034216][ T8172] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 59.053816][ T8172] team0: Port device team_slave_0 added [ 59.072426][ T8174] chnl_net:caif_netlink_parms(): no params data found [ 59.102473][ T8172] team0: Port device team_slave_1 added [ 59.132884][ T8182] IPVS: ftp: loaded support on port[0] = 21 [ 59.143909][ T8174] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.151908][ T8174] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.160108][ T8174] device bridge_slave_0 entered promiscuous mode [ 59.191309][ T8174] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.198616][ T8174] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.207359][ T8174] device bridge_slave_1 entered promiscuous mode [ 59.270873][ T8172] device hsr_slave_0 entered promiscuous mode [ 59.309328][ T8172] device hsr_slave_1 entered promiscuous mode [ 59.359272][ T8172] debugfs: Directory 'hsr0' with parent '/' already present! [ 59.390694][ T8174] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 59.436107][ T8179] chnl_net:caif_netlink_parms(): no params data found [ 59.447244][ T8174] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 59.464837][ T8177] chnl_net:caif_netlink_parms(): no params data found [ 59.503411][ T8174] team0: Port device team_slave_0 added [ 59.513184][ T8174] team0: Port device team_slave_1 added [ 59.538188][ T8179] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.546945][ T8179] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.555329][ T8179] device bridge_slave_0 entered promiscuous mode [ 59.564794][ T8179] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.572099][ T8179] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.580019][ T8179] device bridge_slave_1 entered promiscuous mode [ 59.605538][ T8172] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 59.670962][ T8172] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 59.712630][ T8172] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 59.774324][ T8172] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 59.845508][ T8169] 8021q: adding VLAN 0 to HW filter on device bond0 [ 59.911558][ T8174] device hsr_slave_0 entered promiscuous mode [ 59.959262][ T8174] device hsr_slave_1 entered promiscuous mode [ 59.999026][ T8174] debugfs: Directory 'hsr0' with parent '/' already present! [ 60.006773][ T8177] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.015503][ T8177] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.023604][ T8177] device bridge_slave_0 entered promiscuous mode [ 60.032239][ T8179] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 60.053474][ T8177] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.062965][ T8177] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.071119][ T8177] device bridge_slave_1 entered promiscuous mode [ 60.086916][ T8179] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 60.150004][ T8179] team0: Port device team_slave_0 added [ 60.160813][ T8169] 8021q: adding VLAN 0 to HW filter on device team0 [ 60.168734][ T8177] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 60.185590][ T8182] chnl_net:caif_netlink_parms(): no params data found [ 60.195604][ T1107] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 60.203836][ T1107] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 60.223432][ T8179] team0: Port device team_slave_1 added [ 60.230494][ T8177] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 60.247105][ T2725] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 60.256643][ T2725] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 60.268245][ T2725] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.275526][ T2725] bridge0: port 1(bridge_slave_0) entered forwarding state [ 60.284063][ T2725] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 60.292963][ T2725] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 60.302686][ T2725] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.309795][ T2725] bridge0: port 2(bridge_slave_1) entered forwarding state [ 60.317460][ T2725] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 60.401034][ T8179] device hsr_slave_0 entered promiscuous mode [ 60.470386][ T8179] device hsr_slave_1 entered promiscuous mode [ 60.509243][ T8179] debugfs: Directory 'hsr0' with parent '/' already present! [ 60.516908][ T2725] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 60.524988][ T2725] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 60.534052][ T8174] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 60.585528][ T8174] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 60.652427][ T8177] team0: Port device team_slave_0 added [ 60.663414][ T8177] team0: Port device team_slave_1 added [ 60.721950][ T8177] device hsr_slave_0 entered promiscuous mode [ 60.749250][ T8177] device hsr_slave_1 entered promiscuous mode [ 60.809200][ T8177] debugfs: Directory 'hsr0' with parent '/' already present! [ 60.824108][ T8187] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 60.833414][ T8187] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 60.843022][ T8187] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 60.860147][ T8187] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 60.870322][ T8187] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 60.878511][ T8187] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 60.886889][ T8187] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 60.895493][ T8187] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 60.903852][ T8187] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 60.911702][ T8174] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 60.971320][ T8174] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 61.020764][ T8169] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 61.046466][ T8182] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.054785][ T8182] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.062986][ T8182] device bridge_slave_0 entered promiscuous mode [ 61.074679][ T8182] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.082553][ T8182] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.092972][ T8182] device bridge_slave_1 entered promiscuous mode [ 61.138180][ T8182] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 61.158631][ T8169] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 61.172858][ T8177] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 61.220972][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 61.228427][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 61.240131][ T8172] 8021q: adding VLAN 0 to HW filter on device bond0 [ 61.248291][ T8182] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 61.269660][ T8179] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 61.311533][ T8179] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 61.350456][ T8177] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 61.410974][ T8182] team0: Port device team_slave_0 added [ 61.424399][ T8179] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 61.465910][ T8177] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 61.515203][ T8182] team0: Port device team_slave_1 added [ 61.531338][ T8179] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 61.636722][ T8179] 8021q: adding VLAN 0 to HW filter on device bond0 [ 61.658389][ T8179] 8021q: adding VLAN 0 to HW filter on device team0 [ 61.683395][ T8172] 8021q: adding VLAN 0 to HW filter on device team0 [ 61.727143][ T8172] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 61.743191][ T8172] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 61.755471][ T8177] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 166.568813][ C1] rcu: INFO: rcu_preempt self-detected stall on CPU [ 166.575593][ C1] rcu: 1-....: (10499 ticks this GP) idle=fca/1/0x4000000000000002 softirq=10862/10862 fqs=2805 [ 166.586481][ C1] (t=10500 jiffies g=6197 q=645) [ 166.591510][ C1] rcu: rcu_preempt kthread starved for 4876 jiffies! g6197 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 166.602509][ C1] rcu: RCU grace-period kthread stack dump: [ 166.608391][ C1] rcu_preempt R running task 29048 10 2 0x80004000 [ 166.616301][ C1] Call Trace: [ 166.619598][ C1] __schedule+0x9a0/0xcc0 [ 166.623926][ C1] schedule+0x181/0x210 [ 166.628070][ C1] schedule_timeout+0x14f/0x240 [ 166.632912][ C1] ? run_local_timers+0x120/0x120 [ 166.637927][ C1] rcu_gp_kthread+0xed8/0x1770 [ 166.642713][ C1] kthread+0x332/0x350 [ 166.646768][ C1] ? rcu_report_qs_rsp+0x140/0x140 [ 166.651865][ C1] ? kthread_blkcg+0xe0/0xe0 [ 166.656440][ C1] ret_from_fork+0x24/0x30 [ 166.660856][ C1] NMI backtrace for cpu 1 [ 166.665172][ C1] CPU: 1 PID: 8190 Comm: syz-executor.0 Not tainted 5.4.0-syzkaller #0 [ 166.673402][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 166.683430][ C1] Call Trace: [ 166.686690][ C1] [ 166.689517][ C1] dump_stack+0x1fb/0x318 [ 166.693826][ C1] nmi_cpu_backtrace+0xaf/0x1a0 [ 166.698662][ C1] ? nmi_trigger_cpumask_backtrace+0x16d/0x290 [ 166.704787][ C1] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 166.710826][ C1] nmi_trigger_cpumask_backtrace+0x174/0x290 [ 166.716888][ C1] arch_trigger_cpumask_backtrace+0x10/0x20 [ 166.722838][ C1] rcu_dump_cpu_stacks+0x15a/0x220 [ 166.727943][ C1] rcu_sched_clock_irq+0xe25/0x1ad0 [ 166.733127][ C1] ? trace_hardirqs_off+0x74/0x80 [ 166.738137][ C1] update_process_times+0x12d/0x180 [ 166.743311][ C1] tick_sched_timer+0x263/0x420 [ 166.748242][ C1] ? tick_setup_sched_timer+0x3d0/0x3d0 [ 166.754022][ C1] __hrtimer_run_queues+0x403/0x840 [ 166.759219][ C1] hrtimer_interrupt+0x38c/0xda0 [ 166.764141][ C1] ? debug_smp_processor_id+0x9/0x20 [ 166.769401][ C1] smp_apic_timer_interrupt+0x109/0x280 [ 166.774917][ C1] apic_timer_interrupt+0xf/0x20 [ 166.779838][ C1] [ 166.782750][ C1] RIP: 0010:mod_memcg_page_state+0x123/0x190 [ 166.788703][ C1] Code: e8 f2 9e 69 00 48 83 3d 12 22 c2 07 00 74 70 e8 e3 27 2e 00 4c 89 ff 57 9d 0f 1f 44 00 00 e8 f4 c2 33 00 eb 43 e8 cd 27 2e 00 3c e8 86 c0 33 00 48 c7 c0 28 96 0a 89 48 c1 e8 03 42 80 3c 20 [ 166.808305][ C1] RSP: 0018:ffffc90002477588 EFLAGS: 00000293 ORIG_RAX: ffffffffffffff13 [ 166.816686][ C1] RAX: ffffffff81487433 RBX: 0000000000000000 RCX: ffff88809a2cc640 [ 166.824631][ C1] RDX: 0000000000000000 RSI: 00000000fffffffc RDI: ffffea00026a3d40 [ 166.832940][ C1] RBP: ffffc900024775a8 R08: 000000000003a768 R09: ffffed10116daeaf [ 166.840884][ C1] R10: ffffed10116daeaf R11: 0000000000000000 R12: dffffc0000000000 [ 166.848829][ C1] R13: dffffc0000000000 R14: 00000000fffffffc R15: ffff88808b6d7568 [ 166.860776][ C1] ? mod_memcg_page_state+0x123/0x190 [ 166.866126][ C1] ? mod_memcg_page_state+0x123/0x190 [ 166.871908][ C1] free_thread_stack+0x168/0x590 [ 166.876819][ C1] put_task_stack+0xa3/0x130 [ 166.881380][ C1] finish_task_switch+0x3f1/0x550 [ 166.886382][ C1] __schedule+0x9a8/0xcc0 [ 166.890691][ C1] preempt_schedule_irq+0xc1/0x140 [ 166.895777][ C1] retint_kernel+0x1b/0x2b [ 166.900181][ C1] RIP: 0010:qlink_free+0x91/0xb0 [ 166.905087][ C1] Code: 58 07 00 74 35 4c 89 f7 57 9d 0f 1f 44 00 00 e8 15 1b ca ff eb 19 e8 ae 18 ca ff 48 83 3d 0e 7a 58 07 00 74 17 4c 89 f7 57 9d <0f> 1f 44 00 00 5b 41 5e 41 5f 5d c3 0f 0b 0f 0b 0f 0b 0f 0b 90 66 [ 166.924750][ C1] RSP: 0018:ffffc90002477808 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13 [ 166.933133][ C1] RAX: ffff88809a2cced4 RBX: ffff88808fd06000 RCX: ffffffff815c0597 [ 166.941076][ C1] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000286 [ 166.949033][ C1] RBP: ffffc90002477820 R08: ffff88809a2cce98 R09: fffffbfff13c8d2e [ 166.956984][ C1] R10: fffffbfff13c8d2e R11: 0000000000000000 R12: ffff88808fd06000 [ 166.965035][ C1] R13: 0000000000000080 R14: 0000000000000286 R15: ffff8880aa802000 [ 166.973001][ C1] ? mark_lock+0x107/0x1650 [ 166.977483][ C1] quarantine_reduce+0x15e/0x1d0 [ 166.982391][ C1] __kasan_kmalloc+0x46/0x1b0 [ 166.987046][ C1] ? _raw_spin_unlock_irqrestore+0xb7/0xe0 [ 166.992829][ C1] ? __kasan_check_read+0x11/0x20 [ 166.997825][ C1] ? mark_lock+0x107/0x1650 [ 167.002302][ C1] ? lockdep_hardirqs_on+0x3c5/0x7d0 [ 167.007566][ C1] ? tomoyo_supervisor+0xc08/0x1330 [ 167.012739][ C1] ? lockdep_hardirqs_on+0x3c5/0x7d0 [ 167.018012][ C1] ? __kmalloc+0x1c0/0x340 [ 167.022402][ C1] kasan_slab_alloc+0xf/0x20 [ 167.026964][ C1] __kmalloc+0x22b/0x340 [ 167.031174][ C1] ? tomoyo_supervisor+0xc08/0x1330 [ 167.036357][ C1] tomoyo_supervisor+0xc08/0x1330 [ 167.041352][ C1] ? rcu_read_lock_sched_held+0x10b/0x170 [ 167.047132][ C1] ? tomoyo_check_acl+0x2dc/0x3a0 [ 167.052146][ C1] ? __kmalloc+0x26c/0x340 [ 167.056536][ C1] ? tomoyo_encode2+0x273/0x5a0 [ 167.061624][ C1] tomoyo_path_perm+0x5c3/0x850 [ 167.066722][ C1] tomoyo_path_symlink+0x95/0xc0 [ 167.071737][ C1] security_path_symlink+0xed/0x170 [ 167.076912][ C1] do_symlinkat+0xf3/0x3f0 [ 167.081319][ C1] __x64_sys_symlink+0x60/0x70 [ 167.086061][ C1] do_syscall_64+0xf7/0x1c0 [ 167.090552][ C1] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 167.096421][ C1] RIP: 0033:0x45a3a7 [ 167.100564][ C1] Code: 0f 1f 00 b8 5c 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 6d b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 58 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 4d b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 167.120138][ C1] RSP: 002b:00007ffe818276c8 EFLAGS: 00000202 ORIG_RAX: 0000000000000058 [ 167.128542][ C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000045a3a7 [ 167.136638][ C1] RDX: 00007ffe81827767 RSI: 00000000004c00d3 RDI: 00007ffe81827750 [ 167.144719][ C1] RBP: 0000000000000000 R08: 0000000000000220 R09: 0000000000000017 [ 167.152684][ C1] R10: 0000000000000075 R11: 0000000000000202 R12: 0000000000000001 [ 167.160634][ C1] R13: 00007ffe81827700 R14: 0000000000000000 R15: 00007ffe81827710