[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 42.692796][ T25] audit: type=1800 audit(1575420834.651:25): pid=8049 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 42.720454][ T25] audit: type=1800 audit(1575420834.651:26): pid=8049 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 42.770273][ T25] audit: type=1800 audit(1575420834.661:27): pid=8049 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.1.21' (ECDSA) to the list of known hosts. 2019/12/04 00:54:04 fuzzer started 2019/12/04 00:54:06 dialing manager at 10.128.0.26:42111 2019/12/04 00:54:06 syscalls: 2689 2019/12/04 00:54:06 code coverage: enabled 2019/12/04 00:54:06 comparison tracing: enabled 2019/12/04 00:54:06 extra coverage: extra coverage is not supported by the kernel 2019/12/04 00:54:06 setuid sandbox: enabled 2019/12/04 00:54:06 namespace sandbox: enabled 2019/12/04 00:54:06 Android sandbox: /sys/fs/selinux/policy does not exist 2019/12/04 00:54:06 fault injection: enabled 2019/12/04 00:54:06 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/12/04 00:54:06 net packet injection: enabled 2019/12/04 00:54:06 net device setup: enabled 2019/12/04 00:54:06 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2019/12/04 00:54:06 devlink PCI setup: PCI device 0000:00:10.0 is not available 00:54:07 executing program 0: r0 = socket$vsock_stream(0x28, 0x1, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x28, 0x6, 0x0, &(0x7f0000000040)=0x10) 00:54:07 executing program 1: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000040)={0x0, 0x3}, 0xb) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000180)=0x10) r1 = socket$inet(0x2, 0x80001, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0x10, &(0x7f0000000080)=@assoc_value={r2}, 0x8) syzkaller login: [ 56.036960][ T8212] IPVS: ftp: loaded support on port[0] = 21 00:54:08 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x70, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = open(&(0x7f0000000000)='./file0\x00', 0x82040, 0x0) fcntl$setlease(r0, 0x400, 0x0) fcntl$setlease(r0, 0x400, 0x2) [ 56.193748][ T8212] chnl_net:caif_netlink_parms(): no params data found [ 56.224597][ T8215] IPVS: ftp: loaded support on port[0] = 21 [ 56.321878][ T8212] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.328994][ T8212] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.350939][ T8212] device bridge_slave_0 entered promiscuous mode [ 56.362290][ T8212] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.369341][ T8212] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.377550][ T8212] device bridge_slave_1 entered promiscuous mode [ 56.406795][ T8217] IPVS: ftp: loaded support on port[0] = 21 [ 56.423224][ T8212] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 56.436442][ T8212] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link 00:54:08 executing program 3: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c) r1 = dup2(r0, r0) sendmsg$unix(r1, &(0x7f0000001bc0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001cc0)=[@cred={{0x1c}}], 0x20}, 0x0) [ 56.511700][ T8212] team0: Port device team_slave_0 added [ 56.519123][ T8212] team0: Port device team_slave_1 added [ 56.550444][ T8215] chnl_net:caif_netlink_parms(): no params data found [ 56.647233][ T8217] chnl_net:caif_netlink_parms(): no params data found 00:54:08 executing program 4: r0 = socket(0x10, 0x3, 0x0) write(r0, &(0x7f0000000080)="240000001a005f0014f9f407000904000a002000000000000000000008001b0006000000", 0x24) [ 56.742615][ T8212] device hsr_slave_0 entered promiscuous mode [ 56.780533][ T8212] device hsr_slave_1 entered promiscuous mode [ 56.892808][ T8215] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.899962][ T8215] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.912440][ T8215] device bridge_slave_0 entered promiscuous mode [ 56.956346][ T8215] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.967144][ T8215] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.975094][ T8215] device bridge_slave_1 entered promiscuous mode [ 56.997778][ T8217] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.999050][ T8221] IPVS: ftp: loaded support on port[0] = 21 [ 57.007924][ T8217] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.018787][ T8217] device bridge_slave_0 entered promiscuous mode [ 57.034393][ T8215] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.048754][ T8224] IPVS: ftp: loaded support on port[0] = 21 [ 57.066456][ T8215] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.075798][ T8217] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.085756][ T8217] bridge0: port 2(bridge_slave_1) entered disabled state 00:54:09 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$md(0xffffffffffffff9c, &(0x7f0000000080)='/dev/md0\x00', 0x0, 0x0) ioctl$BLKPG(r3, 0x4004092b, 0x0) [ 57.093780][ T8217] device bridge_slave_1 entered promiscuous mode [ 57.109498][ T8212] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 57.152897][ T8212] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 57.193202][ T8212] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 57.256024][ T8217] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.274779][ T8212] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 57.328283][ T8215] team0: Port device team_slave_0 added [ 57.337617][ T8215] team0: Port device team_slave_1 added [ 57.344300][ T8217] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.372662][ T8227] IPVS: ftp: loaded support on port[0] = 21 [ 57.442372][ T8215] device hsr_slave_0 entered promiscuous mode [ 57.490543][ T8215] device hsr_slave_1 entered promiscuous mode [ 57.600385][ T8215] debugfs: Directory 'hsr0' with parent '/' already present! [ 57.623981][ T8217] team0: Port device team_slave_0 added [ 57.676427][ T8221] chnl_net:caif_netlink_parms(): no params data found [ 57.686692][ T8217] team0: Port device team_slave_1 added [ 57.792940][ T8217] device hsr_slave_0 entered promiscuous mode [ 57.860592][ T8217] device hsr_slave_1 entered promiscuous mode [ 57.910314][ T8217] debugfs: Directory 'hsr0' with parent '/' already present! [ 57.941411][ T8215] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 57.974354][ T8215] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 58.035963][ T8215] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 58.118959][ T8215] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 58.152100][ T8221] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.159180][ T8221] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.167267][ T8221] device bridge_slave_0 entered promiscuous mode [ 58.176570][ T8221] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.184851][ T8221] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.192947][ T8221] device bridge_slave_1 entered promiscuous mode [ 58.224885][ T8224] chnl_net:caif_netlink_parms(): no params data found [ 58.256826][ T8221] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.267906][ T8221] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.281855][ T8227] chnl_net:caif_netlink_parms(): no params data found [ 58.335636][ T8224] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.343388][ T8224] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.352086][ T8224] device bridge_slave_0 entered promiscuous mode [ 58.362920][ T8217] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 58.405748][ T8217] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 58.463343][ T8221] team0: Port device team_slave_0 added [ 58.469165][ T8217] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 58.533780][ T8224] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.541883][ T8224] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.549438][ T8224] device bridge_slave_1 entered promiscuous mode [ 58.571020][ T8221] team0: Port device team_slave_1 added [ 58.576742][ T8227] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.584037][ T8227] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.592148][ T8227] device bridge_slave_0 entered promiscuous mode [ 58.599177][ T8217] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 58.657066][ T8224] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.667405][ T8227] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.674730][ T8227] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.682722][ T8227] device bridge_slave_1 entered promiscuous mode [ 58.702896][ T8227] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.714491][ T8227] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.726373][ T8224] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.761434][ T8212] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.769443][ T8227] team0: Port device team_slave_0 added [ 58.785045][ T8224] team0: Port device team_slave_0 added [ 58.798213][ T8227] team0: Port device team_slave_1 added [ 58.853080][ T8221] device hsr_slave_0 entered promiscuous mode [ 58.890780][ T8221] device hsr_slave_1 entered promiscuous mode [ 58.940424][ T8221] debugfs: Directory 'hsr0' with parent '/' already present! [ 58.950108][ T8224] team0: Port device team_slave_1 added [ 59.023657][ T8227] device hsr_slave_0 entered promiscuous mode [ 59.060790][ T8227] device hsr_slave_1 entered promiscuous mode [ 59.100372][ T8227] debugfs: Directory 'hsr0' with parent '/' already present! [ 59.135184][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 59.144019][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 59.183268][ T8224] device hsr_slave_0 entered promiscuous mode [ 59.220689][ T8224] device hsr_slave_1 entered promiscuous mode [ 59.280396][ T8224] debugfs: Directory 'hsr0' with parent '/' already present! [ 59.291315][ T8212] 8021q: adding VLAN 0 to HW filter on device team0 [ 59.338255][ T8227] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 59.372312][ T8227] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 59.423203][ T8227] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 59.465830][ T8227] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 59.548130][ T8221] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 59.634480][ T3001] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 59.643387][ T3001] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 59.652680][ T3001] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.659830][ T3001] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.668041][ T3001] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 59.676974][ T3001] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 59.685372][ T3001] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.692455][ T3001] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.699916][ T3001] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 59.708560][ T8224] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 59.772453][ T8224] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 59.816338][ T8215] 8021q: adding VLAN 0 to HW filter on device bond0 [ 59.823320][ T8221] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 59.863034][ T8221] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 59.902903][ T8221] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 59.942761][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 59.951840][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 59.961519][ T8224] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 59.996932][ T8224] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 60.070046][ T3036] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 60.081801][ T3036] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 60.090112][ T3036] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 60.121698][ T3036] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 60.129579][ T3036] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 60.137909][ T3036] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 60.147431][ T3036] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 60.156447][ T3036] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 60.165314][ T3036] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 60.174436][ T3036] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 60.183002][ T3036] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 60.194589][ T8215] 8021q: adding VLAN 0 to HW filter on device team0 [ 60.205440][ T8217] 8021q: adding VLAN 0 to HW filter on device bond0 [ 60.222289][ T8212] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 60.249489][ T3036] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 60.258911][ T3036] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 60.268619][ T3036] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.275816][ T3036] bridge0: port 1(bridge_slave_0) entered forwarding state [ 60.284776][ T3036] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 60.294415][ T3036] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 60.302874][ T3036] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.310050][ T3036] bridge0: port 2(bridge_slave_1) entered forwarding state [ 60.317734][ T3036] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 60.327566][ T3036] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 60.336997][ T3036] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 60.366805][ T8217] 8021q: adding VLAN 0 to HW filter on device team0 [ 60.376135][ T3036] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 60.385443][ T3036] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 60.393429][ T3036] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 60.404080][ T3036] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 60.412913][ T3036] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 60.420684][ T3036] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 60.428360][ T3036] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 60.436934][ T3036] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 60.445878][ T3036] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 60.458151][ T8212] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 60.488319][ T8227] 8021q: adding VLAN 0 to HW filter on device bond0 [ 60.500136][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 60.509614][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 60.518661][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 60.528798][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 60.537684][ T43] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.544781][ T43] bridge0: port 1(bridge_slave_0) entered forwarding state [ 60.553057][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 60.562198][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 60.570746][ T43] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.577791][ T43] bridge0: port 2(bridge_slave_1) entered forwarding state [ 60.585422][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 60.593804][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 60.637252][ T8215] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 60.647281][ T8230] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 60.655661][ T8230] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 60.665618][ T8230] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 60.674728][ T8230] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 60.683715][ T8230] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 60.692385][ T8230] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 60.701206][ T8230] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 60.709411][ T8230] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 60.717920][ T8230] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 60.726782][ T8230] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 60.746104][ T8227] 8021q: adding VLAN 0 to HW filter on device team0 [ 60.762485][ T8217] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 60.774737][ T8217] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 60.798463][ T8221] 8021q: adding VLAN 0 to HW filter on device bond0 [ 60.815710][ T8226] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 60.826540][ T8226] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 165.830189][ C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 165.837210][ C1] (detected by 1, t=10502 jiffies, g=6513, q=87) [ 165.843617][ C1] rcu: All QSes seen, last rcu_preempt kthread activity 10503 (4294953736-4294943233), jiffies_till_next_fqs=1, root ->qsmask 0x0 [ 165.857045][ C1] syz-executor.0 R running task 27880 8235 8212 0x0000400a [ 165.865027][ C1] Call Trace: [ 165.869266][ C1] [ 165.872115][ C1] sched_show_task+0x40f/0x560 [ 165.876924][ C1] rcu_sched_clock_irq+0x1861/0x1ad0 [ 165.882241][ C1] update_process_times+0x12d/0x180 [ 165.887467][ C1] tick_sched_timer+0x263/0x420 [ 165.892336][ C1] ? tick_setup_sched_timer+0x3d0/0x3d0 [ 165.898401][ C1] __hrtimer_run_queues+0x403/0x840 [ 165.903625][ C1] hrtimer_interrupt+0x38c/0xda0 [ 165.908566][ C1] ? debug_smp_processor_id+0x9/0x20 [ 165.913850][ C1] smp_apic_timer_interrupt+0x109/0x280 [ 165.919384][ C1] apic_timer_interrupt+0xf/0x20 [ 165.924305][ C1] [ 165.927332][ C1] RIP: 0010:free_thread_stack+0x177/0x590 [ 165.933905][ C1] Code: 80 3c 28 00 74 08 48 89 df e8 25 a4 69 00 48 8b 3b be fc ff ff ff e8 28 04 00 00 43 80 3c 2e 00 74 08 4c 89 e7 e8 09 a4 69 00 <49> 8b 1c 24 48 83 c3 08 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 [ 165.954452][ C1] RSP: 0018:ffffc900023f7c70 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13 [ 165.962868][ C1] RAX: ffffffff81487433 RBX: ffff8880a2b79808 RCX: ffff88809571c240 [ 165.970826][ C1] RDX: 0000000000000000 RSI: 00000000fffffffc RDI: ffffea000289f200 [ 165.978807][ C1] RBP: ffffc900023f7ca8 R08: dffffc0000000000 R09: fffffbfff12877ed [ 165.986776][ C1] R10: fffffbfff12877ed R11: 0000000000000000 R12: ffff8880a2b798a0 [ 165.994739][ C1] R13: dffffc0000000000 R14: 1ffff1101456f314 R15: ffff88808c54d428 [ 166.002910][ C1] ? mod_memcg_page_state+0x123/0x190 [ 166.008371][ C1] put_task_stack+0xa3/0x130 [ 166.012965][ C1] finish_task_switch+0x3f1/0x550 [ 166.018076][ C1] __schedule+0x9a8/0xcc0 [ 166.024173][ C1] ? ___preempt_schedule+0x16/0x18 [ 166.029292][ C1] preempt_schedule+0xdb/0x120 [ 166.034073][ C1] ___preempt_schedule+0x16/0x18 [ 166.039014][ C1] ? do_group_exit+0x2a8/0x2b0 [ 166.043787][ C1] _raw_spin_unlock_irq+0x77/0x80 [ 166.048806][ C1] do_group_exit+0x2a8/0x2b0 [ 166.053415][ C1] __do_sys_exit_group+0x17/0x20 [ 166.058436][ C1] __se_sys_exit_group+0x14/0x20 [ 166.063380][ C1] __x64_sys_exit_group+0x3b/0x40 [ 166.068503][ C1] do_syscall_64+0xf7/0x1c0 [ 166.074147][ C1] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 166.080030][ C1] RIP: 0033:0x45a679 [ 166.083915][ C1] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 166.103526][ C1] RSP: 002b:00007fff8311fdc8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 166.111923][ C1] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 000000000045a679 [ 166.119880][ C1] RDX: 0000000000414211 RSI: fffffffffffffff7 RDI: 0000000000000000 [ 166.127837][ C1] RBP: 0000000000000000 R08: ffffffffffffffff R09: 00007fff8311fe20 [ 166.135796][ C1] R10: 0000000000760130 R11: 0000000000000246 R12: 0000000000000001 [ 166.143755][ C1] R13: 00007fff8311fe20 R14: 0000000000000000 R15: 00007fff8311fe30 [ 166.151736][ C1] rcu: rcu_preempt kthread starved for 10534 jiffies! g6513 f0x2 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1 [ 166.162904][ C1] rcu: RCU grace-period kthread stack dump: [ 166.168865][ C1] rcu_preempt R running task 29032 10 2 0x80004000 [ 166.176770][ C1] Call Trace: [ 166.180142][ C1] __schedule+0x9a0/0xcc0 [ 166.184468][ C1] schedule+0x181/0x210 [ 166.188636][ C1] schedule_timeout+0x14f/0x240 [ 166.193475][ C1] ? run_local_timers+0x120/0x120 [ 166.198504][ C1] rcu_gp_kthread+0xed8/0x1770 [ 166.203269][ C1] kthread+0x332/0x350 [ 166.207327][ C1] ? rcu_report_qs_rsp+0x140/0x140 [ 166.212423][ C1] ? kthread_blkcg+0xe0/0xe0 [ 166.217001][ C1] ret_from_fork+0x24/0x30