[ 41.968371][ T23] audit: type=1800 audit(1575357856.247:27): pid=7997 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [ 41.998527][ T23] audit: type=1800 audit(1575357856.247:28): pid=7997 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 42.622117][ T23] audit: type=1800 audit(1575357856.967:29): pid=7997 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 42.641786][ T23] audit: type=1800 audit(1575357856.967:30): pid=7997 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.239' (ECDSA) to the list of known hosts. 2019/12/03 07:24:27 fuzzer started 2019/12/03 07:24:28 dialing manager at 10.128.0.26:38907 2019/12/03 07:24:28 syscalls: 2697 2019/12/03 07:24:28 code coverage: enabled 2019/12/03 07:24:28 comparison tracing: enabled 2019/12/03 07:24:28 extra coverage: extra coverage is not supported by the kernel 2019/12/03 07:24:28 setuid sandbox: enabled 2019/12/03 07:24:28 namespace sandbox: enabled 2019/12/03 07:24:28 Android sandbox: /sys/fs/selinux/policy does not exist 2019/12/03 07:24:28 fault injection: enabled 2019/12/03 07:24:28 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/12/03 07:24:28 net packet injection: enabled 2019/12/03 07:24:28 net device setup: enabled 2019/12/03 07:24:28 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2019/12/03 07:24:28 devlink PCI setup: PCI device 0000:00:10.0 is not available 07:24:29 executing program 0: r0 = syz_init_net_socket$ax25(0x3, 0x5, 0x0) bind$ax25(r0, &(0x7f0000000200)={{0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x1}, [@null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @bcast, @null, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @default]}, 0x40) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup2(r1, r0) 07:24:29 executing program 1: r0 = syz_open_dev$sndtimer(&(0x7f0000000100)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0xc0f85403, &(0x7f0000000040)) syzkaller login: [ 55.511139][ T8160] IPVS: ftp: loaded support on port[0] = 21 [ 55.671222][ T8160] chnl_net:caif_netlink_parms(): no params data found [ 55.728379][ T8163] IPVS: ftp: loaded support on port[0] = 21 [ 55.740634][ T8160] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.763355][ T8160] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.771053][ T8160] device bridge_slave_0 entered promiscuous mode 07:24:30 executing program 2: r0 = socket$inet6(0xa, 0x3, 0x6b) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0815b5055e0bcfe87b3071") setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000002000)="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", 0x12e) setsockopt$inet6_MRT6_DEL_MFC_PROXY(0xffffffffffffffff, 0x29, 0xd3, &(0x7f0000002000)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @mcast2}}, 0x27a) setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000002000)={0x0, 0x0, 0x9}, 0x14) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(r1, 0x29, 0x40, &(0x7f0000001fde), 0x4) [ 55.796282][ T8160] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.803908][ T8160] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.811892][ T8160] device bridge_slave_1 entered promiscuous mode [ 55.861875][ T8160] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 55.896311][ T8160] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 55.935122][ T8160] team0: Port device team_slave_0 added [ 55.947370][ T8163] chnl_net:caif_netlink_parms(): no params data found [ 55.959854][ T8160] team0: Port device team_slave_1 added 07:24:30 executing program 3: bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x3, 0x3, &(0x7f0000000040)=@framed={{0x15, 0xa, 0x0, 0x0, 0x0, 0x71, 0x10, 0x9b}}, &(0x7f0000000080)='GPL\x04\x9c5\x14\xbfw-\xa0z\xe8.vY\n6\xf6I>\xc1\xab\x91\xb3\x97\xe4*\xbf\x1e\xa6\xcd\x8c\xd7t\'\xfc\x9a\x9e+qe\xf5+A\a\xbf\bP\xd8\x99\xdcR\xd0\x13\x17]\xdb\x1b/F <*\x05\xb7\"\xe3>Uo\xb2\xe3\xf3\x9a<\xde\x1f\xcaSd\x037\xec\x95aF\xbd\xbf\xcb\x11Pp\x19V1\xde]!\xa5\xea\x9ec\x8c+\xdbx\xa5\x01\xcaKn\xa3\x13\xd8%h\xf98,,?o\xab\xa6\xb4\xeeTy;N\xd2m\xae>R\"P)\xbb*\xc0\x00\x7fwuL?#\xce\xda\x98\t\xb9\xa9hJ\x94\n\xbc\xaa\x8c\xfc\xc7\x13>\xc4\"\xe9\xc88\x881\x8dA\xe9\xa4\x93\xf0\x19_\xe2Y\x96Q\xb8\x95\x04\xf5\xdb\xa1F%\xce#f\xf3=\x95\xdb\xa9/\x86ry\xca\xbfJ\xce\xdd\xc8Z\x8a\xf7\xa0\xfah\xd7g\xceQ6\xb9\xd0\xd1\x96lI\x9c\xb6\xbf4\xc2\x7f\x00'/248}, 0x48) [ 56.206552][ T8160] device hsr_slave_0 entered promiscuous mode 07:24:30 executing program 4: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000cd0fc8)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2, 0xf, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, [@sadb_x_policy={0x8, 0x12, 0x0, 0x0, 0x0, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in, @in6=@mcast2}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @mcast2}}, @sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}}}]}, 0xa0}}, 0x0) [ 56.256159][ T8160] device hsr_slave_1 entered promiscuous mode [ 56.311449][ T8163] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.333937][ T8163] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.341841][ T8163] device bridge_slave_0 entered promiscuous mode [ 56.383035][ T8168] IPVS: ftp: loaded support on port[0] = 21 [ 56.394981][ T8163] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.402072][ T8163] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.424182][ T8163] device bridge_slave_1 entered promiscuous mode [ 56.425390][ T8166] IPVS: ftp: loaded support on port[0] = 21 07:24:30 executing program 5: mkdir(&(0x7f0000000240)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='hugetlbfs\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='mountinfo\x00') preadv(r0, &(0x7f0000000940)=[{&(0x7f00000008c0)=""/106, 0x6a}], 0x1, 0x500) [ 56.521884][ T8170] IPVS: ftp: loaded support on port[0] = 21 [ 56.528406][ T8160] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 56.566349][ T8163] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 56.582068][ T8163] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 56.617700][ T8160] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 56.689368][ T8163] team0: Port device team_slave_0 added [ 56.697203][ T8160] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 56.745015][ T8160] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 56.800773][ T8163] team0: Port device team_slave_1 added [ 56.836794][ T8172] IPVS: ftp: loaded support on port[0] = 21 [ 56.895784][ T8163] device hsr_slave_0 entered promiscuous mode [ 56.963610][ T8163] device hsr_slave_1 entered promiscuous mode [ 57.023425][ T8163] debugfs: Directory 'hsr0' with parent '/' already present! [ 57.145165][ T8163] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 57.197343][ T8163] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 57.246378][ T8163] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 57.286457][ T8163] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 57.363312][ T8168] chnl_net:caif_netlink_parms(): no params data found [ 57.410148][ T8170] chnl_net:caif_netlink_parms(): no params data found [ 57.469073][ T8168] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.476394][ T8168] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.484438][ T8168] device bridge_slave_0 entered promiscuous mode [ 57.492180][ T8168] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.499875][ T8168] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.507939][ T8168] device bridge_slave_1 entered promiscuous mode [ 57.517770][ T8166] chnl_net:caif_netlink_parms(): no params data found [ 57.561421][ T8160] 8021q: adding VLAN 0 to HW filter on device bond0 [ 57.575247][ T8168] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.597703][ T8170] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.605189][ T8170] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.612835][ T8170] device bridge_slave_0 entered promiscuous mode [ 57.621783][ T8170] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.629038][ T8170] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.636714][ T8170] device bridge_slave_1 entered promiscuous mode [ 57.645605][ T8168] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.686723][ T8168] team0: Port device team_slave_0 added [ 57.701454][ T8166] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.709020][ T8166] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.716925][ T8166] device bridge_slave_0 entered promiscuous mode [ 57.728850][ T8166] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.736188][ T8166] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.744131][ T8166] device bridge_slave_1 entered promiscuous mode [ 57.753893][ T8168] team0: Port device team_slave_1 added [ 57.773166][ T8170] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.801905][ T8163] 8021q: adding VLAN 0 to HW filter on device bond0 [ 57.815202][ T8170] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.827462][ T8166] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.848316][ T8172] chnl_net:caif_netlink_parms(): no params data found [ 57.868156][ T8163] 8021q: adding VLAN 0 to HW filter on device team0 [ 57.880914][ T8166] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.925322][ T8168] device hsr_slave_0 entered promiscuous mode [ 57.963698][ T8168] device hsr_slave_1 entered promiscuous mode [ 58.013508][ T8168] debugfs: Directory 'hsr0' with parent '/' already present! [ 58.024665][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 58.033070][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 58.040946][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 58.048773][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 58.058989][ T8160] 8021q: adding VLAN 0 to HW filter on device team0 [ 58.070560][ T8170] team0: Port device team_slave_0 added [ 58.081808][ T8170] team0: Port device team_slave_1 added [ 58.112606][ T47] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 58.121240][ T47] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 58.130033][ T47] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.137272][ T47] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.160158][ T8166] team0: Port device team_slave_0 added [ 58.167928][ T8166] team0: Port device team_slave_1 added [ 58.178555][ T8172] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.186525][ T8172] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.195503][ T8172] device bridge_slave_0 entered promiscuous mode [ 58.204907][ T8173] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 58.212988][ T8173] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 58.222279][ T8173] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 58.231146][ T8173] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.238308][ T8173] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.248550][ T8173] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 58.256889][ T8173] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 58.265854][ T8173] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 58.275517][ T8173] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.282572][ T8173] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.315719][ T8170] device hsr_slave_0 entered promiscuous mode [ 58.353692][ T8170] device hsr_slave_1 entered promiscuous mode [ 58.393449][ T8170] debugfs: Directory 'hsr0' with parent '/' already present! [ 58.416341][ T8172] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.423742][ T8172] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.431696][ T8172] device bridge_slave_1 entered promiscuous mode [ 58.451711][ T8172] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.485036][ T8166] device hsr_slave_0 entered promiscuous mode [ 58.523686][ T8166] device hsr_slave_1 entered promiscuous mode [ 58.573385][ T8166] debugfs: Directory 'hsr0' with parent '/' already present! [ 58.591186][ T8173] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 58.600101][ T8173] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 58.608820][ T8173] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 58.617309][ T8173] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.624381][ T8173] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.634048][ T8172] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.674084][ T8173] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 58.682696][ T8173] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 58.691565][ T8173] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 58.700262][ T8173] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 58.708833][ T8173] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 58.744811][ T8172] team0: Port device team_slave_0 added [ 58.750664][ T8168] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 58.806104][ T8168] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 58.847998][ T8168] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 58.895569][ T3090] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 58.904236][ T3090] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 58.912623][ T3090] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 58.921092][ T3090] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 58.929561][ T3090] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 58.938277][ T3090] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 58.947063][ T3090] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 58.957229][ T8172] team0: Port device team_slave_1 added [ 58.963052][ T8170] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 59.020030][ T8160] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 59.033384][ T8160] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 59.046293][ T8168] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 59.075401][ T3090] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 59.083159][ T3090] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 59.091647][ T3090] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 59.099897][ T3090] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 59.108625][ T3090] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 59.155993][ T8172] device hsr_slave_0 entered promiscuous mode [ 59.193842][ T8172] device hsr_slave_1 entered promiscuous mode [ 59.233426][ T8172] debugfs: Directory 'hsr0' with parent '/' already present! [ 59.241140][ T8170] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 59.275071][ T8166] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 59.329596][ T3090] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 59.337941][ T3090] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 59.348762][ T3090] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 59.357464][ T3090] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 59.366864][ T8170] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 59.444815][ T8166] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 59.495599][ T8166] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 59.541752][ T8160] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 59.549657][ T8170] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 59.576697][ T8163] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 59.590905][ T47] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 59.598946][ T47] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 59.614529][ T8166] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 59.708894][ T47] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 59.719627][ T47] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 59.741405][ T8163] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 59.771227][ T8168] 8021q: adding VLAN 0 to HW filter on device bond0 [ 59.803434][ T8172] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 164.823209][ C1] rcu: INFO: rcu_preempt self-detected stall on CPU [ 164.830019][ C1] rcu: 1-...!: (1 GPs behind) idle=056/1/0x4000000000000002 softirq=10837/10839 fqs=39 [ 164.839986][ C1] (t=10501 jiffies g=6273 q=112) [ 164.845007][ C1] rcu: rcu_preempt kthread starved for 10424 jiffies! g6273 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 164.856092][ C1] rcu: RCU grace-period kthread stack dump: [ 164.861974][ C1] rcu_preempt R running task 29032 10 2 0x80004000 [ 164.869873][ C1] Call Trace: [ 164.873163][ C1] __schedule+0x9a0/0xcc0 [ 164.877490][ C1] schedule+0x181/0x210 [ 164.881635][ C1] schedule_timeout+0x14f/0x240 [ 164.886477][ C1] ? run_local_timers+0x120/0x120 [ 164.891495][ C1] rcu_gp_kthread+0xed8/0x1770 [ 164.896262][ C1] kthread+0x332/0x350 [ 164.900319][ C1] ? rcu_report_qs_rsp+0x140/0x140 [ 164.905420][ C1] ? kthread_blkcg+0xe0/0xe0 [ 164.910004][ C1] ret_from_fork+0x24/0x30 [ 164.914423][ C1] NMI backtrace for cpu 1 [ 164.918746][ C1] CPU: 1 PID: 8163 Comm: syz-executor.1 Not tainted 5.4.0-syzkaller #0 [ 164.926967][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 164.937026][ C1] Call Trace: [ 164.940299][ C1] [ 164.943147][ C1] dump_stack+0x1fb/0x318 [ 164.947470][ C1] nmi_cpu_backtrace+0xaf/0x1a0 [ 164.952309][ C1] ? nmi_trigger_cpumask_backtrace+0x16d/0x290 [ 164.958450][ C1] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 164.964509][ C1] nmi_trigger_cpumask_backtrace+0x174/0x290 [ 164.970483][ C1] arch_trigger_cpumask_backtrace+0x10/0x20 [ 164.976377][ C1] rcu_dump_cpu_stacks+0x15a/0x220 [ 164.981486][ C1] rcu_sched_clock_irq+0xe25/0x1ad0 [ 164.986681][ C1] ? trace_hardirqs_off+0x74/0x80 [ 164.991701][ C1] update_process_times+0x12d/0x180 [ 164.996895][ C1] tick_sched_timer+0x263/0x420 [ 165.001739][ C1] ? tick_setup_sched_timer+0x3d0/0x3d0 [ 165.007276][ C1] __hrtimer_run_queues+0x403/0x840 [ 165.012484][ C1] hrtimer_interrupt+0x38c/0xda0 [ 165.017431][ C1] ? debug_smp_processor_id+0x9/0x20 [ 165.022725][ C1] smp_apic_timer_interrupt+0x109/0x280 [ 165.028265][ C1] apic_timer_interrupt+0xf/0x20 [ 165.033190][ C1] [ 165.036148][ C1] RIP: 0010:free_thread_stack+0x186/0x590 [ 165.041863][ C1] Code: 8b 3b be fc ff ff ff e8 28 04 00 00 43 80 3c 2e 00 74 08 4c 89 e7 e8 09 a4 69 00 49 8b 1c 24 48 83 c3 08 48 89 d8 48 c1 e8 03 <42> 80 3c 28 00 74 08 48 89 df e8 eb a3 69 00 48 8b 1b e9 82 ff ff [ 165.061633][ C1] RSP: 0018:ffffc900021f7c28 EFLAGS: 00000a06 ORIG_RAX: ffffffffffffff13 [ 165.070041][ C1] RAX: 1ffff11013d306e1 RBX: ffff88809e983708 RCX: ffff8880a76fa380 [ 165.078018][ C1] RDX: 0000000000000000 RSI: 00000000fffffffc RDI: ffffea00027dfe00 [ 165.085995][ C1] RBP: ffffc900021f7c60 R08: 000000000003a768 R09: fffffbfff120248a [ 165.093987][ C1] R10: fffffbfff120248a R11: 0000000000000000 R12: ffff88809e9837a0 [ 165.101968][ C1] R13: dffffc0000000000 R14: 1ffff11013d306f4 R15: ffff8880929a17a8 [ 165.109960][ C1] ? free_thread_stack+0x168/0x590 [ 165.115087][ C1] put_task_stack+0xa3/0x130 [ 165.119673][ C1] finish_task_switch+0x3f1/0x550 [ 165.124696][ C1] __schedule+0x9a8/0xcc0 [ 165.129033][ C1] ? ___preempt_schedule+0x16/0x18 [ 165.134155][ C1] preempt_schedule+0xdb/0x120 [ 165.138914][ C1] ___preempt_schedule+0x16/0x18 [ 165.143847][ C1] ? __fd_install+0x277/0x4f0 [ 165.148521][ C1] ? __fd_install+0x2b8/0x4f0 [ 165.153190][ C1] __fd_install+0x2bd/0x4f0 [ 165.157690][ C1] fd_install+0x51/0x60 [ 165.161843][ C1] do_sys_open+0x412/0x560 [ 165.166265][ C1] __x64_sys_open+0x87/0x90 [ 165.170763][ C1] do_syscall_64+0xf7/0x1c0 [ 165.175262][ C1] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 165.181146][ C1] RIP: 0033:0x4143f0 [ 165.185030][ C1] Code: 05 48 3d 01 f0 ff ff 0f 83 2d 19 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 83 3d 7d 40 66 00 00 75 14 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 04 19 00 00 c3 48 83 ec 08 e8 0a fa ff ff [ 165.204627][ C1] RSP: 002b:00007ffcc0de8638 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 165.213027][ C1] RAX: ffffffffffffffda RBX: 00007ffcc0de8661 RCX: 00000000004143f0 [ 165.220990][ C1] RDX: 00007ffcc0de8666 RSI: 0000000000080001 RDI: 00007ffcc0de8bd0 [ 165.228957][ C1] RBP: 00007ffcc0de8660 R08: 0000000000000000 R09: 0000000000000001 [ 165.237104][ C1] R10: 0000000000000064 R11: 0000000000000246 R12: 00007ffcc0de8bd0 [ 165.245069][ C1] R13: 00007ffcc0de8fb8 R14: 0000000000000000 R15: 00007ffcc0de8b90