[ 42.997277][ T26] audit: type=1800 audit(1575387857.708:26): pid=8018 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 43.065577][ T26] audit: type=1800 audit(1575387857.708:27): pid=8018 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [ 43.096876][ T26] audit: type=1800 audit(1575387857.708:28): pid=8018 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 43.525067][ T26] audit: type=1800 audit(1575387858.258:29): pid=8018 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.84' (ECDSA) to the list of known hosts. 2019/12/03 15:44:26 fuzzer started 2019/12/03 15:44:28 dialing manager at 10.128.0.26:45711 2019/12/03 15:44:28 syscalls: 2689 2019/12/03 15:44:28 code coverage: enabled 2019/12/03 15:44:28 comparison tracing: enabled 2019/12/03 15:44:28 extra coverage: extra coverage is not supported by the kernel 2019/12/03 15:44:28 setuid sandbox: enabled 2019/12/03 15:44:28 namespace sandbox: enabled 2019/12/03 15:44:28 Android sandbox: /sys/fs/selinux/policy does not exist 2019/12/03 15:44:28 fault injection: enabled 2019/12/03 15:44:28 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/12/03 15:44:28 net packet injection: enabled 2019/12/03 15:44:28 net device setup: enabled 2019/12/03 15:44:28 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2019/12/03 15:44:28 devlink PCI setup: PCI device 0000:00:10.0 is not available 15:44:29 executing program 0: syz_mount_image$ntfs(&(0x7f0000000000)='ntfs\x00', &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000001c00)={[{@uid={'uid', 0x3d, 0xee00}}], [{@smackfsdef={'smackfsdef', 0x3d, 'cpuacct.stat\x00'}}]}) 15:44:29 executing program 1: r0 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000265000)=@req={0x3fc}, 0x10) getsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000580), &(0x7f00000005c0)=0x4) syzkaller login: [ 54.855016][ T8183] IPVS: ftp: loaded support on port[0] = 21 [ 55.001236][ T8183] chnl_net:caif_netlink_parms(): no params data found [ 55.045784][ T8183] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.056227][ T8183] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.064716][ T8183] device bridge_slave_0 entered promiscuous mode [ 55.075942][ T8183] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.083565][ T8183] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.092620][ T8183] device bridge_slave_1 entered promiscuous mode 15:44:29 executing program 2: r0 = gettid() ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x20) perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000200)={0x2, 0x4e23, @dev}, 0x10) r2 = gettid() tkill(r2, 0x20) sendto$inet(r1, 0x0, 0xfffffffffffffc6d, 0x20000800, &(0x7f0000000240)={0x2, 0x4e23, @local}, 0x10) [ 55.117635][ T8183] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 55.134988][ T8187] IPVS: ftp: loaded support on port[0] = 21 [ 55.144512][ T8183] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 55.187636][ T8183] team0: Port device team_slave_0 added [ 55.212012][ T8183] team0: Port device team_slave_1 added 15:44:30 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000300)="580000001400192340834b80040d8c560a067fbc45ff81054e220000000058000b480400945f64009400050038925a01000000000000008000f0fffeffe809000000fff5dd0000001000010009080800418e00000a04fcff", 0x58}], 0x1) [ 55.369695][ T8183] device hsr_slave_0 entered promiscuous mode [ 55.427133][ T8183] device hsr_slave_1 entered promiscuous mode [ 55.485746][ T8189] IPVS: ftp: loaded support on port[0] = 21 15:44:30 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41be, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x10, 0x2, 0x0) sendmsg(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="24000000520007031dfffd946fa2830081200a0009000300001d85680c1ba3a20400ff7e", 0x24}], 0x1}, 0x0) recvmmsg(r0, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}}], 0x210, 0x4c, 0x0) [ 55.566554][ T8183] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 55.620902][ T8183] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 55.681312][ T8183] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 55.749533][ T8187] chnl_net:caif_netlink_parms(): no params data found [ 55.759132][ T8183] netdevsim netdevsim0 netdevsim3: renamed from eth3 15:44:30 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bind$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x0, @multicast1}, 0x10) syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xffffffffffffffff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) openat$vimc0(0xffffffffffffff9c, &(0x7f0000001c40)='/dev/video0\x00', 0x2, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0) r0 = syz_open_dev$sndctrl(0x0, 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r0, 0xc4c85512, &(0x7f0000000440)=0x7) syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x0, 0x0) [ 55.824607][ T8192] IPVS: ftp: loaded support on port[0] = 21 [ 55.845041][ T8194] IPVS: ftp: loaded support on port[0] = 21 [ 55.911882][ T8183] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.919094][ T8183] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.927035][ T8183] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.934347][ T8183] bridge0: port 1(bridge_slave_0) entered forwarding state [ 56.005261][ T8187] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.012731][ T8187] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.023954][ T8187] device bridge_slave_0 entered promiscuous mode [ 56.062656][ T5] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.064376][ T8197] IPVS: ftp: loaded support on port[0] = 21 [ 56.081755][ T5] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.091176][ T8187] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.098285][ T8187] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.105791][ T8187] device bridge_slave_1 entered promiscuous mode [ 56.160170][ T8187] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 56.188530][ T8189] chnl_net:caif_netlink_parms(): no params data found [ 56.204965][ T8183] 8021q: adding VLAN 0 to HW filter on device bond0 [ 56.213413][ T8187] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 56.254019][ T8189] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.261546][ T8189] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.269795][ T8189] device bridge_slave_0 entered promiscuous mode [ 56.283737][ T8187] team0: Port device team_slave_0 added [ 56.301194][ T8189] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.308399][ T8189] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.315939][ T8189] device bridge_slave_1 entered promiscuous mode [ 56.332200][ T8187] team0: Port device team_slave_1 added [ 56.367266][ T8192] chnl_net:caif_netlink_parms(): no params data found [ 56.403921][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 56.412661][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 56.422177][ T8183] 8021q: adding VLAN 0 to HW filter on device team0 [ 56.441440][ T8189] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 56.489559][ T8187] device hsr_slave_0 entered promiscuous mode [ 56.547146][ T8187] device hsr_slave_1 entered promiscuous mode [ 56.616957][ T8187] debugfs: Directory 'hsr0' with parent '/' already present! [ 56.632575][ T8189] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 56.654823][ T8189] team0: Port device team_slave_0 added [ 56.661057][ T8194] chnl_net:caif_netlink_parms(): no params data found [ 56.680688][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 56.689701][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 56.698731][ T17] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.705779][ T17] bridge0: port 1(bridge_slave_0) entered forwarding state [ 56.733768][ T8189] team0: Port device team_slave_1 added [ 56.759225][ T3212] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 56.768111][ T3212] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 56.776379][ T3212] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.783452][ T3212] bridge0: port 2(bridge_slave_1) entered forwarding state [ 56.791379][ T3212] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 56.801204][ T3212] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 56.849294][ T8192] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.856401][ T8192] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.868156][ T8192] device bridge_slave_0 entered promiscuous mode [ 56.888872][ T8197] chnl_net:caif_netlink_parms(): no params data found [ 56.901340][ T8196] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 56.909948][ T8196] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 56.918323][ T8196] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 56.928446][ T8196] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 56.937064][ T8196] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 56.945396][ T8196] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 56.953912][ T8196] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 56.961909][ T8187] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 57.013595][ T8187] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 57.078844][ T8192] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.085990][ T8192] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.095117][ T8192] device bridge_slave_1 entered promiscuous mode [ 57.102164][ T8194] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.109470][ T8194] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.117234][ T8194] device bridge_slave_0 entered promiscuous mode [ 57.140320][ T8187] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 57.183804][ T8187] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 57.231200][ T8194] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.238380][ T8194] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.245960][ T8194] device bridge_slave_1 entered promiscuous mode [ 57.329842][ T8189] device hsr_slave_0 entered promiscuous mode [ 57.369957][ T8189] device hsr_slave_1 entered promiscuous mode [ 57.456972][ T8189] debugfs: Directory 'hsr0' with parent '/' already present! [ 57.475284][ T8192] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.491019][ T8192] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.503120][ T8194] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.514470][ T8198] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 57.523019][ T8198] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 57.544255][ T8183] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 57.558797][ T8194] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.577817][ T8197] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.584899][ T8197] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.596038][ T8197] device bridge_slave_0 entered promiscuous mode [ 57.624825][ T8192] team0: Port device team_slave_0 added [ 57.631874][ T8194] team0: Port device team_slave_0 added [ 57.638518][ T8197] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.645578][ T8197] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.657374][ T8197] device bridge_slave_1 entered promiscuous mode [ 57.682740][ T8192] team0: Port device team_slave_1 added [ 57.699594][ T8194] team0: Port device team_slave_1 added [ 57.724694][ T8187] 8021q: adding VLAN 0 to HW filter on device bond0 [ 57.758573][ T8192] device hsr_slave_0 entered promiscuous mode [ 57.827141][ T8192] device hsr_slave_1 entered promiscuous mode [ 57.887153][ T8192] debugfs: Directory 'hsr0' with parent '/' already present! [ 57.897824][ T8197] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.907841][ T8189] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 57.962443][ T8189] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 58.011567][ T8197] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.033052][ T8189] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 58.149438][ T8194] device hsr_slave_0 entered promiscuous mode [ 58.187202][ T8194] device hsr_slave_1 entered promiscuous mode [ 58.246917][ T8194] debugfs: Directory 'hsr0' with parent '/' already present! [ 58.257820][ T3212] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 58.265185][ T3212] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 58.274561][ T8197] team0: Port device team_slave_0 added [ 58.283150][ T8197] team0: Port device team_slave_1 added [ 58.289958][ T8189] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 58.356808][ T8183] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 58.399171][ T8196] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 58.407473][ T8196] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 58.488533][ T8197] device hsr_slave_0 entered promiscuous mode [ 58.528644][ T8197] device hsr_slave_1 entered promiscuous mode [ 58.576981][ T8197] debugfs: Directory 'hsr0' with parent '/' already present! [ 58.594981][ T8192] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 58.623875][ T8207] __ntfs_error: 1 callbacks suppressed [ 58.623881][ T8207] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 58.658723][ T8192] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 163.636748][ C0] rcu: INFO: rcu_preempt self-detected stall on CPU [ 163.643596][ C0] rcu: 0-...!: (10499 ticks this GP) idle=bea/1/0x4000000000000002 softirq=10739/10739 fqs=41 [ 163.654339][ C0] (t=10500 jiffies g=6073 q=50) [ 163.659278][ C0] rcu: rcu_preempt kthread starved for 10418 jiffies! g6073 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1 [ 163.670361][ C0] rcu: RCU grace-period kthread stack dump: [ 163.676237][ C0] rcu_preempt R running task 29032 10 2 0x80004000 [ 163.684146][ C0] Call Trace: [ 163.687438][ C0] __schedule+0x9a0/0xcc0 [ 163.691764][ C0] schedule+0x181/0x210 [ 163.695906][ C0] schedule_timeout+0x14f/0x240 [ 163.700744][ C0] ? run_local_timers+0x120/0x120 [ 163.705760][ C0] rcu_gp_kthread+0xed8/0x1770 [ 163.710521][ C0] kthread+0x332/0x350 [ 163.714571][ C0] ? rcu_report_qs_rsp+0x140/0x140 [ 163.719666][ C0] ? kthread_blkcg+0xe0/0xe0 [ 163.724244][ C0] ret_from_fork+0x24/0x30 [ 163.728659][ C0] NMI backtrace for cpu 0 [ 163.732977][ C0] CPU: 0 PID: 8154 Comm: udevd Not tainted 5.4.0-syzkaller #0 [ 163.740409][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 163.750445][ C0] Call Trace: [ 163.753716][ C0] [ 163.756552][ C0] dump_stack+0x1fb/0x318 [ 163.760871][ C0] nmi_cpu_backtrace+0xaf/0x1a0 [ 163.765703][ C0] ? nmi_trigger_cpumask_backtrace+0x16d/0x290 [ 163.771842][ C0] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 163.777894][ C0] nmi_trigger_cpumask_backtrace+0x174/0x290 [ 163.783862][ C0] arch_trigger_cpumask_backtrace+0x10/0x20 [ 163.789736][ C0] rcu_dump_cpu_stacks+0x15a/0x220 [ 163.795099][ C0] rcu_sched_clock_irq+0xe25/0x1ad0 [ 163.800286][ C0] ? trace_hardirqs_off+0x74/0x80 [ 163.805305][ C0] update_process_times+0x12d/0x180 [ 163.810492][ C0] tick_sched_timer+0x263/0x420 [ 163.815325][ C0] ? tick_setup_sched_timer+0x3d0/0x3d0 [ 163.820858][ C0] __hrtimer_run_queues+0x403/0x840 [ 163.826057][ C0] hrtimer_interrupt+0x38c/0xda0 [ 163.830994][ C0] ? debug_smp_processor_id+0x9/0x20 [ 163.836266][ C0] smp_apic_timer_interrupt+0x109/0x280 [ 163.841798][ C0] apic_timer_interrupt+0xf/0x20 [ 163.846746][ C0] [ 163.849695][ C0] RIP: 0010:__sanitizer_cov_trace_pc+0x22/0x50 [ 163.855844][ C0] Code: 64 02 3b 00 5b 5d c3 cc 48 8b 04 24 65 48 8b 0c 25 c0 1d 02 00 65 8b 15 b8 81 8b 7e f7 c2 00 01 1f 00 75 2c 8b 91 80 13 00 00 <83> fa 02 75 21 48 8b 91 88 13 00 00 48 8b 32 48 8d 7e 01 8b 89 84 [ 163.875558][ C0] RSP: 0018:ffffc90001e27420 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13 [ 163.883971][ C0] RAX: ffffffff81487326 RBX: ffffea000245ed00 RCX: ffff888098f940c0 [ 163.891944][ C0] RDX: 0000000000000000 RSI: 00000000fffffffc RDI: ffffea000245ed00 [ 163.899920][ C0] RBP: ffffc90001e27448 R08: 000000000003a768 R09: ffffed10145822e7 [ 163.907888][ C0] R10: ffffed10145822e7 R11: 0000000000000000 R12: ffff88808cebdf20 [ 163.915856][ C0] R13: dffffc0000000000 R14: 00000000fffffffc R15: ffff8880a2c11728 [ 163.923848][ C0] ? mod_memcg_page_state+0x16/0x190 [ 163.929153][ C0] ? mod_memcg_page_state+0x16/0x190 [ 163.934446][ C0] free_thread_stack+0x168/0x590 [ 163.939475][ C0] put_task_stack+0xa3/0x130 [ 163.944333][ C0] finish_task_switch+0x3f1/0x550 [ 163.949364][ C0] __schedule+0x9a8/0xcc0 [ 163.953710][ C0] preempt_schedule_irq+0xc1/0x140 [ 163.958819][ C0] retint_kernel+0x1b/0x2b [ 163.963224][ C0] RIP: 0010:qlink_free+0x91/0xb0 [ 163.968256][ C0] Code: 58 07 00 74 35 4c 89 f7 57 9d 0f 1f 44 00 00 e8 15 1b ca ff eb 19 e8 ae 18 ca ff 48 83 3d 0e 7a 58 07 00 74 17 4c 89 f7 57 9d <0f> 1f 44 00 00 5b 41 5e 41 5f 5d c3 0f 0b 0f 0b 0f 0b 0f 0b 90 66 [ 163.987862][ C0] RSP: 0018:ffffc90001e276a8 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13 [ 163.996355][ C0] RAX: ffff888098f94954 RBX: ffff888091e2d000 RCX: ffffffff815c0597 [ 164.004319][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000286 [ 164.012324][ C0] RBP: ffffc90001e276c0 R08: ffff888098f94918 R09: fffffbfff13c8d2f [ 164.020307][ C0] R10: fffffbfff13c8d2f R11: 0000000000000000 R12: ffff888091e2d000 [ 164.028263][ C0] R13: 0000000000000200 R14: 0000000000000286 R15: ffff8880aa812a80 [ 164.036244][ C0] ? mark_lock+0x107/0x1650 [ 164.040744][ C0] quarantine_reduce+0x15e/0x1d0 [ 164.045668][ C0] __kasan_kmalloc+0x46/0x1b0 [ 164.050340][ C0] ? rcu_read_lock_sched_held+0x10b/0x170 [ 164.056064][ C0] ? trace_mm_page_alloc+0x18c/0x1f0 [ 164.061363][ C0] ? __kasan_check_read+0x11/0x20 [ 164.066380][ C0] ? mark_lock+0x107/0x1650 [ 164.070884][ C0] ? do_raw_spin_unlock+0x136/0x260 [ 164.076083][ C0] ? _raw_spin_unlock+0x27/0x40 [ 164.080931][ C0] ? cache_grow_end+0x143/0x170 [ 164.085776][ C0] ? lockdep_hardirqs_on+0x3c5/0x7d0 [ 164.091053][ C0] ? kmem_cache_alloc_trace+0x199/0x2f0 [ 164.096591][ C0] kasan_slab_alloc+0xf/0x20 [ 164.101168][ C0] kmem_cache_alloc_trace+0x1fa/0x2f0 [ 164.106529][ C0] ? kernfs_fop_open+0x3a9/0xc20 [ 164.111455][ C0] kernfs_fop_open+0x3a9/0xc20 [ 164.116212][ C0] ? kernfs_fop_mmap+0x4f0/0x4f0 [ 164.121171][ C0] do_dentry_open+0x740/0x10c0 [ 164.125930][ C0] vfs_open+0x73/0x80 [ 164.129901][ C0] path_openat+0x1397/0x44a0 [ 164.134516][ C0] do_filp_open+0x192/0x3d0 [ 164.139026][ C0] do_sys_open+0x29f/0x560 [ 164.143433][ C0] __x64_sys_open+0x87/0x90 [ 164.147924][ C0] do_syscall_64+0xf7/0x1c0 [ 164.152417][ C0] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 164.158294][ C0] RIP: 0033:0x7f2260db5120 [ 164.162702][ C0] Code: 48 8b 15 1b 4d 2b 00 f7 d8 64 89 02 83 c8 ff c3 90 90 90 90 90 90 90 90 90 90 83 3d d5 a4 2b 00 00 75 10 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 5e 8c 01 00 48 89 04 24 [ 164.182288][ C0] RSP: 002b:00007ffd6e7b1a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 164.190685][ C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f2260db5120 [ 164.198638][ C0] RDX: 0000000000000124 RSI: 0000000000080000 RDI: 00007ffd6e7b1b10 [ 164.206679][ C0] RBP: 0000000000f8c744 R08: 0000000000f8c744 R09: 00007f2260e0ac20 [ 164.214632][ C0] R10: 7269762f73656369 R11: 0000000000000246 R12: 0000000000f83e60 [ 164.222588][ C0] R13: 0000000000f83f50 R14: 0000000000f72250 R15: 0000000000f77e10