[ 42.721321][ T25] audit: type=1800 audit(1575410972.526:29): pid=7959 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.10.50' (ECDSA) to the list of known hosts. 2019/12/03 22:09:43 fuzzer started 2019/12/03 22:09:44 dialing manager at 10.128.0.26:42111 2019/12/03 22:09:44 syscalls: 2689 2019/12/03 22:09:44 code coverage: enabled 2019/12/03 22:09:44 comparison tracing: enabled 2019/12/03 22:09:44 extra coverage: extra coverage is not supported by the kernel 2019/12/03 22:09:44 setuid sandbox: enabled 2019/12/03 22:09:44 namespace sandbox: enabled 2019/12/03 22:09:44 Android sandbox: /sys/fs/selinux/policy does not exist 2019/12/03 22:09:44 fault injection: enabled 2019/12/03 22:09:44 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/12/03 22:09:44 net packet injection: enabled 2019/12/03 22:09:44 net device setup: enabled 2019/12/03 22:09:44 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2019/12/03 22:09:44 devlink PCI setup: PCI device 0000:00:10.0 is not available 22:09:45 executing program 0: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) move_pages(0x0, 0x16d, &(0x7f0000000200)=[&(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil], 0x0, &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0], 0x0) move_pages(0x0, 0x7700, &(0x7f0000000300)=[&(0x7f0000005000/0x2000)=nil], &(0x7f0000000380)=[0x1], 0x0, 0x0) 22:09:46 executing program 1: r0 = creat(&(0x7f0000000280)='./file0\x00', 0x1) write$binfmt_elf32(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="7f454c460000000000000000000000000200030000000000000000003800000000000000000000000000200096"], 0x2d) close(r0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) syzkaller login: [ 56.324558][ T8124] IPVS: ftp: loaded support on port[0] = 21 [ 56.469845][ T8126] IPVS: ftp: loaded support on port[0] = 21 [ 56.483861][ T8124] chnl_net:caif_netlink_parms(): no params data found 22:09:46 executing program 2: r0 = perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000800)='&\x00') [ 56.597082][ T8124] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.605271][ T8124] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.614179][ T8124] device bridge_slave_0 entered promiscuous mode [ 56.656324][ T8124] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.663511][ T8124] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.672191][ T8124] device bridge_slave_1 entered promiscuous mode [ 56.684984][ T8130] IPVS: ftp: loaded support on port[0] = 21 [ 56.728530][ T8126] chnl_net:caif_netlink_parms(): no params data found [ 56.753211][ T8124] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 56.781270][ T8124] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link 22:09:46 executing program 3: r0 = socket$vsock_stream(0x28, 0x1, 0x0) accept(r0, 0x0, 0x0) [ 56.825639][ T8126] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.834752][ T8126] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.844855][ T8126] device bridge_slave_0 entered promiscuous mode [ 56.857290][ T8124] team0: Port device team_slave_0 added [ 56.869599][ T8124] team0: Port device team_slave_1 added [ 56.882209][ T8126] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.890180][ T8126] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.900223][ T8126] device bridge_slave_1 entered promiscuous mode [ 56.989231][ T8126] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.041203][ T8124] device hsr_slave_0 entered promiscuous mode 22:09:46 executing program 4: io_setup(0x9, &(0x7f0000000180)) epoll_create1(0x0) io_setup(0x0, 0x0) unshare(0x2040400) perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) rt_sigaction(0x100000000034, &(0x7f0000000440)={0x0, {0x1}, 0x0, 0x0}, 0x0, 0x8, &(0x7f0000000580)) openat$autofs(0xffffffffffffff9c, &(0x7f0000000280)='/dev/autofs\x00', 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x570) r0 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) openat$cgroup_procs(r0, &(0x7f0000000240)='\\Lu\xfdup\x00\x04\a\x00cs\x00', 0x2, 0x0) accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x80000) ioctl$PPPIOCSDEBUG(0xffffffffffffffff, 0x40047440, 0x0) perf_event_open$cgroup(&(0x7f0000000000)={0x3, 0x40, 0x0, 0x2, 0x1000, 0x2, 0x0, 0x1, 0x8, 0x3, 0x0, 0x2, 0xa1b, 0x1a, 0x0, 0x4ef07a30, 0x1, 0x0, 0x3ff, 0x0, 0x0, 0x1d32, 0x0, 0x0, 0x0, 0x401, 0x7fff, 0x80000000, 0x7ff, 0x3, 0xff, 0x0, 0xfffffffffffffffe, 0x6, 0x8, 0x80000000, 0x0, 0x2, 0x0, 0x401, 0x0, @perf_bp={&(0x7f0000000400), 0xa}, 0x1002c, 0x0, 0x9b31, 0x4, 0x3ff, 0xfffffffffffffffd, 0x1ba}, 0xffffffffffffffff, 0xa, 0xffffffffffffffff, 0xc) shmctl$SHM_INFO(0x0, 0xe, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0) getsockopt$SO_J1939_ERRQUEUE(r1, 0x6b, 0x4, 0x0, &(0x7f00000001c0)) ioctl$FS_IOC_FSSETXATTR(r1, 0x5452, &(0x7f0000000040)={0x10000}) ioctl$KVM_PPC_GET_PVINFO(r1, 0x4080aea1, &(0x7f0000000080)=""/4) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_ifreq(r2, 0x8991, &(0x7f00000000c0)={'bond0\x00\x16\b\xea\xff\xff\x80\x00\x06\x02\xff', @ifru_names='bond_slave_1\x00t\x00'}) ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, 0x0) ioctl$CAPI_GET_FLAGS(0xffffffffffffffff, 0x80044323, &(0x7f0000000480)) ioctl$sock_ifreq(r2, 0x8990, &(0x7f0000000240)={'bond0\x00\xe1\x03\n\x00!!\x00\x01\x00\x01', @ifru_names='bond_slave_1\x00\x00\x00\b'}) [ 57.087144][ T8124] device hsr_slave_1 entered promiscuous mode [ 57.160341][ T8126] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.213363][ T8134] IPVS: ftp: loaded support on port[0] = 21 [ 57.228940][ T8130] chnl_net:caif_netlink_parms(): no params data found [ 57.259189][ T8124] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 57.313029][ T8126] team0: Port device team_slave_0 added [ 57.349837][ T8124] netdevsim netdevsim0 netdevsim1: renamed from eth1 22:09:47 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0x4004ae8b, 0xffffffff00000000) [ 57.363892][ T8136] IPVS: ftp: loaded support on port[0] = 21 [ 57.420313][ T8126] team0: Port device team_slave_1 added [ 57.426923][ T8124] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 57.470384][ T8124] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 57.619864][ T8126] device hsr_slave_0 entered promiscuous mode [ 57.667137][ T8126] device hsr_slave_1 entered promiscuous mode [ 57.706894][ T8126] debugfs: Directory 'hsr0' with parent '/' already present! [ 57.726310][ T8138] IPVS: ftp: loaded support on port[0] = 21 [ 57.726940][ T8130] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.742437][ T8130] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.750096][ T8130] device bridge_slave_0 entered promiscuous mode [ 57.757997][ T8130] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.765040][ T8130] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.773230][ T8130] device bridge_slave_1 entered promiscuous mode [ 57.823418][ T8126] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 57.870968][ T8126] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 57.919055][ T8126] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 57.982510][ T8126] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 58.069128][ T8130] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.081805][ T8130] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.170662][ T8134] chnl_net:caif_netlink_parms(): no params data found [ 58.187639][ T8130] team0: Port device team_slave_0 added [ 58.198677][ T8136] chnl_net:caif_netlink_parms(): no params data found [ 58.221006][ T8130] team0: Port device team_slave_1 added [ 58.275607][ T8136] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.287076][ T8136] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.294861][ T8136] device bridge_slave_0 entered promiscuous mode [ 58.305196][ T8136] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.312567][ T8136] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.320563][ T8136] device bridge_slave_1 entered promiscuous mode [ 58.379859][ T8130] device hsr_slave_0 entered promiscuous mode [ 58.437161][ T8130] device hsr_slave_1 entered promiscuous mode [ 58.476856][ T8130] debugfs: Directory 'hsr0' with parent '/' already present! [ 58.489607][ T8134] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.496792][ T8134] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.504564][ T8134] device bridge_slave_0 entered promiscuous mode [ 58.529357][ T8136] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.539425][ T8134] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.546469][ T8134] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.555247][ T8134] device bridge_slave_1 entered promiscuous mode [ 58.585142][ T8126] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.594546][ T8136] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.663492][ T8134] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.675236][ T8124] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.692247][ T8126] 8021q: adding VLAN 0 to HW filter on device team0 [ 58.703713][ T8136] team0: Port device team_slave_0 added [ 58.713614][ T8134] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.727491][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 58.735468][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 58.764033][ T8136] team0: Port device team_slave_1 added [ 58.775903][ T8134] team0: Port device team_slave_0 added [ 58.785427][ T8134] team0: Port device team_slave_1 added [ 58.792177][ T8130] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 58.859384][ T8138] chnl_net:caif_netlink_parms(): no params data found [ 58.869045][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 58.878090][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 58.886591][ T5] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.893861][ T5] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.913361][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 58.936528][ T8124] 8021q: adding VLAN 0 to HW filter on device team0 [ 58.946482][ T8130] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 58.982700][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 58.993156][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 59.003727][ T5] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.010842][ T5] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.020543][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 59.028478][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 59.036115][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 59.064022][ T8130] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 59.111211][ T8130] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 59.158275][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 59.167516][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 59.176044][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 59.185586][ T43] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.192697][ T43] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.200516][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 59.209402][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 59.217826][ T43] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.224850][ T43] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.232493][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 59.289856][ T8136] device hsr_slave_0 entered promiscuous mode [ 59.348054][ T8136] device hsr_slave_1 entered promiscuous mode [ 59.386909][ T8136] debugfs: Directory 'hsr0' with parent '/' already present! [ 59.449093][ T8134] device hsr_slave_0 entered promiscuous mode [ 59.497897][ T8134] device hsr_slave_1 entered promiscuous mode [ 59.536947][ T8134] debugfs: Directory 'hsr0' with parent '/' already present! [ 59.545482][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 59.554325][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 59.562908][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 59.571601][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 59.580847][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 59.590820][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 59.606562][ T8126] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 59.617462][ T8126] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 59.635997][ T8138] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.643694][ T8138] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.652221][ T8138] device bridge_slave_0 entered promiscuous mode [ 59.661414][ T8129] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 59.670243][ T8129] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 59.679446][ T8129] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 59.688148][ T8129] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 59.696806][ T8129] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 59.719040][ T8138] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.726302][ T8138] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.740397][ T8138] device bridge_slave_1 entered promiscuous mode [ 59.748135][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 59.757526][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 59.766104][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 59.775412][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 59.794678][ T8126] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 59.827921][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 59.835380][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 59.856185][ T8136] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 59.925018][ T8138] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 59.944601][ T3101] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 59.954184][ T3101] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 59.967309][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 59.975503][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 59.983962][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 59.992982][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 60.001446][ T8136] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 60.061282][ T8138] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 60.086366][ T8124] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 60.102575][ T8136] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 165.136673][ C0] rcu: INFO: rcu_preempt self-detected stall on CPU [ 165.143493][ C0] rcu: 0-...!: (10499 ticks this GP) idle=bd6/1/0x4000000000000002 softirq=11195/11195 fqs=0 [ 165.153977][ C0] (t=10501 jiffies g=6113 q=34) [ 165.158905][ C0] rcu: rcu_preempt kthread starved for 10502 jiffies! g6113 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1 [ 165.169987][ C0] rcu: RCU grace-period kthread stack dump: [ 165.175860][ C0] rcu_preempt R running task 29048 10 2 0x80004000 [ 165.183744][ C0] Call Trace: [ 165.187028][ C0] __schedule+0x9a0/0xcc0 [ 165.191354][ C0] schedule+0x181/0x210 [ 165.195497][ C0] schedule_timeout+0x14f/0x240 [ 165.200334][ C0] ? run_local_timers+0x120/0x120 [ 165.205348][ C0] rcu_gp_kthread+0xed8/0x1770 [ 165.210108][ C0] kthread+0x332/0x350 [ 165.214158][ C0] ? rcu_report_qs_rsp+0x140/0x140 [ 165.219253][ C0] ? kthread_blkcg+0xe0/0xe0 [ 165.223829][ C0] ret_from_fork+0x24/0x30 [ 165.228250][ C0] NMI backtrace for cpu 0 [ 165.232566][ C0] CPU: 0 PID: 8144 Comm: blkid Not tainted 5.4.0-syzkaller #0 [ 165.239999][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 165.250039][ C0] Call Trace: [ 165.253331][ C0] [ 165.256169][ C0] dump_stack+0x1fb/0x318 [ 165.260492][ C0] nmi_cpu_backtrace+0xaf/0x1a0 [ 165.265324][ C0] ? nmi_trigger_cpumask_backtrace+0x16d/0x290 [ 165.271463][ C0] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 165.277513][ C0] nmi_trigger_cpumask_backtrace+0x174/0x290 [ 165.283477][ C0] arch_trigger_cpumask_backtrace+0x10/0x20 [ 165.289353][ C0] rcu_dump_cpu_stacks+0x15a/0x220 [ 165.294456][ C0] rcu_sched_clock_irq+0xe25/0x1ad0 [ 165.299641][ C0] ? trace_hardirqs_off+0x74/0x80 [ 165.304657][ C0] update_process_times+0x12d/0x180 [ 165.309841][ C0] tick_sched_timer+0x263/0x420 [ 165.314677][ C0] ? tick_setup_sched_timer+0x3d0/0x3d0 [ 165.320242][ C0] __hrtimer_run_queues+0x403/0x840 [ 165.325441][ C0] hrtimer_interrupt+0x38c/0xda0 [ 165.330383][ C0] ? debug_smp_processor_id+0x9/0x20 [ 165.335657][ C0] smp_apic_timer_interrupt+0x109/0x280 [ 165.341194][ C0] apic_timer_interrupt+0xf/0x20 [ 165.346116][ C0] [ 165.349042][ C0] RIP: 0010:mod_memcg_page_state+0x3d/0x190 [ 165.354919][ C0] Code: 28 2e 00 48 83 c3 38 48 89 d8 48 c1 e8 03 49 bc 00 00 00 00 00 fc ff df 42 80 3c 20 00 74 08 48 89 df e8 b6 9f 69 00 48 8b 1b <48> 85 db 0f 84 d8 00 00 00 48 c7 c0 20 96 0a 89 48 c1 e8 03 42 80 [ 165.374505][ C0] RSP: 0018:ffffc90002217670 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13 [ 165.382901][ C0] RAX: 1ffffd4000363ce7 RBX: 0000000000000000 RCX: ffff8880a4942100 [ 165.390859][ C0] RDX: 0000000000000000 RSI: 00000000fffffffc RDI: ffffea0001b1e700 [ 165.398992][ C0] RBP: ffffc90002217690 R08: 000000000003a768 R09: fffffbfff120248a [ 165.406961][ C0] R10: fffffbfff120248a R11: 0000000000000000 R12: dffffc0000000000 [ 165.415060][ C0] R13: dffffc0000000000 R14: 00000000fffffffc R15: ffff8880a791d768 [ 165.423068][ C0] free_thread_stack+0x168/0x590 [ 165.428029][ C0] put_task_stack+0xa3/0x130 [ 165.432613][ C0] finish_task_switch+0x3f1/0x550 [ 165.437633][ C0] __schedule+0x9a8/0xcc0 [ 165.441960][ C0] ? ___preempt_schedule+0x16/0x18 [ 165.447060][ C0] preempt_schedule+0xdb/0x120 [ 165.451816][ C0] ___preempt_schedule+0x16/0x18 [ 165.456748][ C0] ? debug_check_no_obj_freed+0x505/0x5b0 [ 165.462457][ C0] _raw_spin_unlock_irqrestore+0xcc/0xe0 [ 165.468074][ C0] debug_check_no_obj_freed+0x505/0x5b0 [ 165.473613][ C0] ? rcu_read_lock_sched_held+0x10b/0x170 [ 165.479324][ C0] free_pcp_prepare+0x202/0x4b0 [ 165.484179][ C0] free_unref_page_list+0xa6/0x5e0 [ 165.489287][ C0] release_pages+0x1348/0x14f0 [ 165.494046][ C0] free_pages_and_swap_cache+0x96/0xb0 [ 165.499505][ C0] tlb_flush_mmu+0x755/0x8f0 [ 165.504087][ C0] tlb_finish_mmu+0xd2/0x1f0 [ 165.508668][ C0] exit_mmap+0x29b/0x530 [ 165.512913][ C0] ? exit_aio+0x25e/0x370 [ 165.517240][ C0] __mmput+0x120/0x3a0 [ 165.521304][ C0] mmput+0x5d/0x70 [ 165.525011][ C0] exit_mm+0x50a/0x590 [ 165.529083][ C0] do_exit+0x544/0x2020 [ 165.533230][ C0] ? check_preemption_disabled+0xb4/0x260 [ 165.538943][ C0] do_group_exit+0x15c/0x2b0 [ 165.543525][ C0] __do_sys_exit_group+0x17/0x20 [ 165.548480][ C0] __se_sys_exit_group+0x14/0x20 [ 165.553436][ C0] __x64_sys_exit_group+0x3b/0x40 [ 165.558463][ C0] do_syscall_64+0xf7/0x1c0 [ 165.562981][ C0] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 165.568874][ C0] RIP: 0033:0x7f05b35881e8 [ 165.573295][ C0] Code: Bad RIP value. [ 165.577349][ C0] RSP: 002b:00007fffd879e7c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 165.585751][ C0] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f05b35881e8 [ 165.593736][ C0] RDX: 0000000000000002 RSI: 000000000000003c RDI: 0000000000000002 [ 165.601707][ C0] RBP: 00007f05b385d840 R08: 00000000000000e7 R09: ffffffffffffffa8 [ 165.609666][ C0] R10: 00007f05b3863740 R11: 0000000000000246 R12: 00007f05b385d840 [ 165.617628][ C0] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000000