[�[36minfo�[39;49m] Using makefile-style concurrent boot in runlevel 2.
[ 26.556808] audit: type=1800 audit(1545600996.625:21): pid=5865 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="bootlogs" dev="sda1" ino=2419 res=0
[....] Starting enhanced syslogd: rsyslogd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[ 27.376699] sshd (5933) used greatest stack depth: 15992 bytes left
[....] Starting periodic command scheduler: cron�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[....] Starting OpenBSD Secure Shell server: sshd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
Debian GNU/Linux 7 syzkaller ttyS0
syzkaller login: [ 33.231061] sshd (6003) used greatest stack depth: 15728 bytes left
Warning: Permanently added '10.128.0.146' (ECDSA) to the list of known hosts.
net.ipv6.conf.syz_tun.accept_dad = 0
[ 54.520652] IPVS: ftp: loaded support on port[0] = 21
net.ipv6.conf.syz_tun.router_solicitations = 0
[ 54.766997] bridge0: port 1(bridge_slave_0) entered blocking state
[ 54.773811] bridge0: port 1(bridge_slave_0) entered disabled state
[ 54.781251] device bridge_slave_0 entered promiscuous mode
[ 54.800122] bridge0: port 2(bridge_slave_1) entered blocking state
[ 54.806497] bridge0: port 2(bridge_slave_1) entered disabled state
[ 54.813568] device bridge_slave_1 entered promiscuous mode
[ 54.830892] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[ 54.849147] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[ 54.898117] bond0: Enslaving bond_slave_0 as an active interface with an up link
[ 54.918472] bond0: Enslaving bond_slave_1 as an active interface with an up link
[ 54.996208] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[ 55.003836] team0: Port device team_slave_0 added
[ 55.020481] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[ 55.027782] team0: Port device team_slave_1 added
[ 55.045517] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 55.065961] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 55.083949] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 55.103416] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
RTNETLINK answers: Operation not supported
RTNETLINK answers: No buffer space available
RTNETLINK answers: Operation not supported
[ 55.250211] bridge0: port 2(bridge_slave_1) entered blocking state
[ 55.256850] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 55.263713] bridge0: port 1(bridge_slave_0) entered blocking state
[ 55.270200] bridge0: port 1(bridge_slave_0) entered forwarding state
RTNETLINK answers: Operation not supported
RTNETLINK answers: Operation not supported
RTNETLINK answers: Operation not supported
RTNETLINK answers: Invalid argument
RTNETLINK answers: Invalid argument
RTNETLINK answers: Invalid argument
[ 55.786964] 8021q: adding VLAN 0 to HW filter on device bond0
[ 55.840621] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[ 55.894883] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[ 55.901060] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 55.908176] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 55.960889] 8021q: adding VLAN 0 to HW filter on device team0
executing program
[ 56.268854] ==================================================================
[ 56.276535] BUG: KASAN: slab-out-of-bounds in tick_sched_handle+0x16c/0x180
[ 56.283624] Read of size 8 at addr ffff8881b67dd970 by task syz-executor222/6021
[ 56.291129]
[ 56.292739] CPU: 0 PID: 6021 Comm: syz-executor222 Not tainted 4.20.0-rc6-next-20181217+ #172
[ 56.301382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 56.310710] Call Trace:
[ 56.313273]
[ 56.315492] dump_stack+0x244/0x39d
[ 56.319052] kasan: CONFIG_KASAN_INLINE enabled
[ 56.323686] ? dump_stack_print_info.cold.1+0x20/0x20
[ 56.328975] ? printk+0xa7/0xcf
[ 56.332239] ? kmsg_dump_rewind_nolock+0xe4/0xe4
[ 56.336979] print_address_description.cold.4+0x9/0x1ff
[ 56.342374] ? tick_sched_handle+0x16c/0x180
[ 56.346773] kasan_report.cold.5+0x1b/0x39
[ 56.350987] ? tick_sched_handle+0x16c/0x180
[ 56.355376] ? tick_sched_handle+0x16c/0x180
[ 56.359767] __asan_report_load8_noabort+0x14/0x20
[ 56.364779] tick_sched_handle+0x16c/0x180
[ 56.369005] tick_sched_timer+0x45/0x130
[ 56.373058] __hrtimer_run_queues+0x41c/0x10d0
[ 56.377632] ? tick_sched_do_timer+0x1a0/0x1a0
[ 56.382203] ? hrtimer_start_range_ns+0xe00/0xe00
[ 56.387031] ? pvclock_read_flags+0x160/0x160
[ 56.391511] ? trace_hardirqs_on+0x310/0x310
[ 56.395904] ? kvm_clock_read+0x18/0x30
[ 56.399862] ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 56.404858] ? ktime_get_update_offsets_now+0x3b3/0x540
[ 56.410202] ? do_timer+0x50/0x50
[ 56.413751] ? rwlock_bug.part.2+0x90/0x90
[ 56.417967] ? trace_hardirqs_on+0x310/0x310
[ 56.422357] ? rcu_softirq_qs+0x20/0x20
[ 56.426314] hrtimer_interrupt+0x313/0x780
[ 56.430649] smp_apic_timer_interrupt+0x1a1/0x760
[ 56.435599] ? smp_reschedule_interrupt+0x109/0x650
[ 56.440646] ? smp_call_function_single_interrupt+0x650/0x650
[ 56.446518] ? interrupt_entry+0xb5/0xc0
[ 56.450632] ? trace_hardirqs_off_caller+0xbb/0x310
[ 56.455739] ? trace_hardirqs_off_caller+0xbb/0x310
[ 56.460746] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 56.465576] ? trace_hardirqs_on_caller+0x310/0x310
[ 56.470637] ? trace_hardirqs_on_caller+0x310/0x310
[ 56.475753] ? task_prio+0x50/0x50
[ 56.479281] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 56.484817] ? check_preemption_disabled+0x48/0x280
[ 56.489814] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 56.494639] apic_timer_interrupt+0xf/0x20
[ 56.498852]
[ 56.501061]
[ 56.502664] Allocated by task 5885:
[ 56.502672] kasan: GPF could be caused by NULL-ptr deref or user memory access
[ 56.506274] save_stack+0x43/0xd0
[ 56.513632] general protection fault: 0000 [#1] PREEMPT SMP KASAN
[ 56.517164] kasan_kmalloc+0xcb/0xd0
[ 56.523381] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 4.20.0-rc6-next-20181217+ #172
[ 56.527066] kmem_cache_alloc_trace+0x154/0x740
[ 56.527079] ima_calc_file_hash_tfm+0x2ee/0x450
[ 56.534929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 56.534942] RIP: 0010:debug_object_deactivate+0x191/0x450
[ 56.539584] ima_calc_file_hash+0x222/0x570
[ 56.539594] ima_collect_measurement+0x619/0x730
[ 56.544251] Code: 02 00 00 48 8b 1b 41 bf 01 00 00 00 48 85 db 74 46 48 b8 00 00 00 00 00 fc ff df 48 8d 7b 18 41 83 c7 01 48 89 fe 48 c1 ee 03 <80> 3c 06 00 0f 85 04 02 00 00 48 3b 53 18 0f 84 53 01 00 00 48 89
[ 56.553588] process_measurement+0x11fd/0x1bf0
[ 56.553598] ima_bprm_check+0x11e/0x2e0
[ 56.559107] RSP: 0018:ffff8881dad078b0 EFLAGS: 00010002
[ 56.559131] RAX: dffffc0000000000 RBX: 0000000000000040 RCX: ffffffff8394ea68
[ 56.563426] security_bprm_check+0x85/0xb0
[ 56.563441] search_binary_handler+0x77/0x570
[ 56.568159] RDX: ffff8881c1b92158 RSI: 000000000000000b RDI: 0000000000000058
[ 56.568168] RBP: ffff8881dad07968 R08: ffffed103b5a0f03 R09: ffffed103b5a0f02
[ 56.587262] __do_execve_file.isra.35+0x178c/0x2760
[ 56.591808] R10: ffffed103b5a0f02 R11: 0000000000000003 R12: 1ffff1103b5a0f18
[ 56.591817] R13: ffffffff8b4396c8 R14: ffffffff897ab5a0 R15: 0000000000000004
[ 56.595770] __x64_sys_execve+0x8f/0xc0
[ 56.601114] FS: 0000000000000000(0000) GS:ffff8881dad00000(0000) knlGS:0000000000000000
[ 56.601123] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 56.608392] do_syscall_64+0x1b9/0x820
[ 56.608405] entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 56.612614] CR2: 0000000000619570 CR3: 00000001c361b000 CR4: 00000000001406e0
[ 56.612622] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 56.617100]
[ 56.617108] Freed by task 5885:
[ 56.624359] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 56.631725] save_stack+0x43/0xd0
[ 56.636704] Call Trace:
[ 56.636711]
[ 56.643979] __kasan_slab_free+0x102/0x150
[ 56.651228] ? debug_stats_show+0x100/0x100
[ 56.655170] kasan_slab_free+0xe/0x10
[ 56.655180] kfree+0xcf/0x230
[ 56.663401] ? trace_hardirqs_on+0x310/0x310
[ 56.663418] ? trace_hardirqs_on+0x310/0x310
[ 56.669296] ima_calc_file_hash_tfm+0x3c7/0x450
[ 56.673159] ? graph_lock+0x270/0x270
[ 56.678312] ima_calc_file_hash+0x222/0x570
[ 56.678322] ima_collect_measurement+0x619/0x730
[ 56.685584] __run_timers+0x56f/0xc70
[ 56.692849] process_measurement+0x11fd/0x1bf0
[ 56.694453] ? timer_fixup_init+0x70/0x70
[ 56.697705] ima_bprm_check+0x11e/0x2e0
[ 56.704967] ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 56.708405] security_bprm_check+0x85/0xb0
[ 56.708418] search_binary_handler+0x77/0x570
[ 56.710994] ? graph_lock+0x270/0x270
[ 56.713215] __do_execve_file.isra.35+0x178c/0x2760
[ 56.717699] ? enqueue_hrtimer+0x1a5/0x560
[ 56.722005] __x64_sys_execve+0x8f/0xc0
[ 56.722017] do_syscall_64+0x1b9/0x820
[ 56.725796] ? hrtimer_update_softirq_timer+0xa0/0xa0
[ 56.728869] entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 56.728874]
[ 56.733266] ? find_held_lock+0x36/0x1c0
[ 56.737777] The buggy address belongs to the object at ffff8881b67dc3c0
[ 56.737777] which belongs to the cache kmalloc-4k of size 4096
[ 56.742424] ? pvclock_read_flags+0x160/0x160
[ 56.746195] The buggy address is located 1456 bytes to the right of
[ 56.746195] 4096-byte region [ffff8881b67dc3c0, ffff8881b67dd3c0)
[ 56.750495] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 56.755236] The buggy address belongs to the page:
[ 56.759021] ? check_preemption_disabled+0x48/0x280
[ 56.763578] page:ffffea0006d9f700 count:1 mapcount:0 mapping:ffff8881da800dc0 index:0x0 compound_mapcount: 0
[ 56.767706] ? rcu_lockdep_current_cpu_online+0x1a4/0x210
[ 56.771652] flags: 0x2fffc0000010200(slab|head)
[ 56.776748] ? rcu_pm_notify+0xc0/0xc0
[ 56.781061] raw: 02fffc0000010200 ffffea0006d98d88 ffffea00072a9508 ffff8881da800dc0
[ 56.785536] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 56.789307] raw: 0000000000000000 ffff8881b67dc3c0 0000000100000001 0000000000000000
[ 56.794303] ? check_preemption_disabled+0x48/0x280
[ 56.798502] page dumped because: kasan: bad access detected
[ 56.798524]
[ 56.802497] run_timer_softirq+0x52/0xb0
[ 56.806371] Memory state around the buggy address:
[ 56.811542] ? rcu_read_lock_sched_held+0x14f/0x180
[ 56.816701] ffff8881b67dd800: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 56.818324] __do_softirq+0x308/0xb7e
[ 56.822366] ffff8881b67dd880: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 56.834998] ? ktime_get_raw_ts64+0x4d0/0x4d0
[ 56.839478] >ffff8881b67dd900: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 56.852033] ? lock_downgrade+0x900/0x900
[ 56.857542] ^
[ 56.862459] ? __irqentry_text_end+0x1f9658/0x1f9658
[ 56.867444] ffff8881b67dd980: fc fc fc fc fc 00 00 00 00 00 00 00 00 00 00 00
[ 56.877566] ? pvclock_read_flags+0x160/0x160
[ 56.883070] ffff8881b67dda00: 00 00 00 f1 f1 f1 f1 00 f2 f2 f2 f2 f2 f2 f2 00
[ 56.887722] ? lapic_next_event+0x5a/0x90
[ 56.891575] ==================================================================
[ 56.899467] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 56.899480] ? kvm_clock_read+0x18/0x30
[ 56.905014] Kernel panic - not syncing: panic_on_warn set ...
[ 56.912910] ? kvm_sched_clock_read+0x9/0x20
[ 57.035895] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 57.041429] ? check_preemption_disabled+0x48/0x280
[ 57.046788] irq_exit+0x17f/0x1c0
[ 57.050246] smp_apic_timer_interrupt+0x1cb/0x760
[ 57.055090] ? smp_reschedule_interrupt+0x109/0x650
[ 57.060105] ? smp_call_function_single_interrupt+0x650/0x650
[ 57.065988] ? interrupt_entry+0xb5/0xc0
[ 57.070052] ? trace_hardirqs_off_caller+0xbb/0x310
[ 57.075063] ? trace_hardirqs_off_caller+0xbb/0x310
[ 57.080163] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 57.085005] ? trace_hardirqs_on_caller+0x310/0x310
[ 57.090016] ? trace_hardirqs_on_caller+0x310/0x310
[ 57.095026] ? check_preemption_disabled+0x48/0x280
[ 57.100039] ? task_prio+0x50/0x50
[ 57.103581] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 57.108431] apic_timer_interrupt+0xf/0x20
[ 57.112655]
[ 57.114893] RIP: 0010:native_safe_halt+0x6/0x10
[ 57.119563] Code: e9 2c ff ff ff 48 89 c7 48 89 45 d8 e8 73 e1 e2 f9 48 8b 45 d8 e9 ca fe ff ff 48 89 df e8 62 e1 e2 f9 eb 82 55 48 89 e5 fb f4 <5d> c3 0f 1f 84 00 00 00 00 00 55 48 89 e5 f4 5d c3 90 90 90 90 90
[ 57.138463] RSP: 0018:ffff8881d9b07cb8 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13
[ 57.146170] RAX: dffffc0000000000 RBX: 1ffff1103b360f9b RCX: 0000000000000000
[ 57.153437] RDX: 1ffffffff12e4949 RSI: 0000000000000001 RDI: ffffffff89724a48
[ 57.160699] RBP: ffff8881d9b07cb8 R08: ffff8881d9af2340 R09: 0000000000000000
[ 57.167964] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8881d9b07d78
[ 57.175225] R13: ffffffff8a3754e0 R14: 0000000000000000 R15: 0000000000000001
[ 57.182522] default_idle+0xbf/0x490
[ 57.186230] ? rcu_dynticks_eqs_enter+0x4f/0x80
[ 57.190910] ? __sched_text_end+0x1/0x1
[ 57.194892] ? rcu_idle_enter+0x39a/0x530
[ 57.199036] ? rcu_eqs_special_set+0x1c0/0x1c0
[ 57.203617] ? tsc_verify_tsc_adjust+0x137/0x450
[ 57.208373] ? trace_hardirqs_off_caller+0x310/0x310
[ 57.213482] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 57.219021] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 57.224556] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 57.230091] arch_cpu_idle+0x10/0x20
[ 57.233800] default_idle_call+0x6d/0x90
[ 57.237865] do_idle+0x49b/0x5c0
[ 57.241234] ? arch_cpu_idle_exit+0x70/0x70
[ 57.245552] ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[ 57.250651] ? complete+0x62/0x80
[ 57.254104] cpu_startup_entry+0x18/0x20
[ 57.258166] start_secondary+0x487/0x5f0
[ 57.262228] ? set_cpu_sibling_map+0x1890/0x1890
[ 57.266991] secondary_startup_64+0xa4/0xb0
[ 57.271311] Modules linked in:
[ 57.274509] ---[ end trace 730bc381e4d53076 ]---
[ 57.279264] RIP: 0010:debug_object_deactivate+0x191/0x450
[ 57.284801] Code: 02 00 00 48 8b 1b 41 bf 01 00 00 00 48 85 db 74 46 48 b8 00 00 00 00 00 fc ff df 48 8d 7b 18 41 83 c7 01 48 89 fe 48 c1 ee 03 <80> 3c 06 00 0f 85 04 02 00 00 48 3b 53 18 0f 84 53 01 00 00 48 89
[ 57.303699] RSP: 0018:ffff8881dad078b0 EFLAGS: 00010002
[ 57.309059] RAX: dffffc0000000000 RBX: 0000000000000040 RCX: ffffffff8394ea68
[ 57.316322] RDX: ffff8881c1b92158 RSI: 000000000000000b RDI: 0000000000000058
[ 57.323593] RBP: ffff8881dad07968 R08: ffffed103b5a0f03 R09: ffffed103b5a0f02
[ 57.330861] R10: ffffed103b5a0f02 R11: 0000000000000003 R12: 1ffff1103b5a0f18
[ 57.338123] R13: ffffffff8b4396c8 R14: ffffffff897ab5a0 R15: 0000000000000004
[ 57.345391] FS: 0000000000000000(0000) GS:ffff8881dad00000(0000) knlGS:0000000000000000
[ 57.353610] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 57.359481] CR2: 0000000000619570 CR3: 00000001c361b000 CR4: 00000000001406e0
[ 57.366746] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 57.374012] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 58.097148] Shutting down cpus with NMI
[ 58.102039] Kernel Offset: disabled
[ 58.105654]
[ 58.105658] ======================================================
[ 58.105661] WARNING: possible circular locking dependency detected
[ 58.105663] 4.20.0-rc6-next-20181217+ #172 Not tainted
[ 58.105667] ------------------------------------------------------
[ 58.105669] swapper/1/0 is trying to acquire lock:
[ 58.105671] 000000006df32db9 ((console_sem).lock){-.-.}, at: down_trylock+0x13/0x70
[ 58.105679]
[ 58.105682] but task is already holding lock:
[ 58.105684] 00000000308a9dad (&obj_hash[i].lock){-.-.}, at: debug_object_deactivate+0xf7/0x450
[ 58.105692]
[ 58.105695] which lock already depends on the new lock.
[ 58.105696]
[ 58.105697]
[ 58.105700] the existing dependency chain (in reverse order) is:
[ 58.105701]
[ 58.105703] -> #3 (&obj_hash[i].lock){-.-.}:
[ 58.105711] _raw_spin_lock_irqsave+0x99/0xd0
[ 58.105713] __debug_object_init+0x127/0x1290
[ 58.105715] debug_object_init+0x16/0x20
[ 58.105718] hrtimer_init+0x97/0x490
[ 58.105720] init_dl_task_timer+0x1b/0x50
[ 58.105722] __sched_fork+0x2ae/0x590
[ 58.105724] init_idle+0x75/0x740
[ 58.105726] sched_init+0xb33/0xc07
[ 58.105729] start_kernel+0x4c6/0x9e0
[ 58.105731] x86_64_start_reservations+0x29/0x2b
[ 58.105734] x86_64_start_kernel+0x76/0x79
[ 58.105736] secondary_startup_64+0xa4/0xb0
[ 58.105737]
[ 58.105739] -> #2 (&rq->lock){-.-.}:
[ 58.105746] _raw_spin_lock+0x2d/0x40
[ 58.105748] task_fork_fair+0xb0/0x6d0
[ 58.105750] sched_fork+0x443/0xba0
[ 58.105753] copy_process+0x25b9/0x87a0
[ 58.105755] _do_fork+0x1cb/0x11d0
[ 58.105757] kernel_thread+0x34/0x40
[ 58.105762] rest_init+0x28/0x372
[ 58.105765] arch_call_rest_init+0xe/0x1b
[ 58.105767] start_kernel+0x9a5/0x9e0
[ 58.105772] x86_64_start_reservations+0x29/0x2b
[ 58.105774] x86_64_start_kernel+0x76/0x79
[ 58.105777] secondary_startup_64+0xa4/0xb0
[ 58.105778]
[ 58.105779] -> #1 (&p->pi_lock){-.-.}:
[ 58.105787] _raw_spin_lock_irqsave+0x99/0xd0
[ 58.105789] try_to_wake_up+0xdc/0x1440
[ 58.105792] wake_up_process+0x10/0x20
[ 58.105794] __up.isra.1+0x1c0/0x2a0
[ 58.105796] up+0x13c/0x1c0
[ 58.105798] __up_console_sem+0xbe/0x1b0
[ 58.105801] console_unlock+0x811/0x1190
[ 58.105803] vprintk_emit+0x391/0x990
[ 58.105805] vprintk_default+0x28/0x30
[ 58.105807] vprintk_func+0x7e/0x181
[ 58.105809] printk+0xa7/0xcf
[ 58.105812] do_exit.cold.18+0x71/0x16f
[ 58.105814] do_group_exit+0x177/0x440
[ 58.105817] __x64_sys_exit_group+0x3e/0x50
[ 58.105819] do_syscall_64+0x1b9/0x820
[ 58.105822] entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 58.105823]
[ 58.105824] -> #0 ((console_sem).lock){-.-.}:
[ 58.105832] lock_acquire+0x1ed/0x520
[ 58.105835] _raw_spin_lock_irqsave+0x99/0xd0
[ 58.105837] down_trylock+0x13/0x70
[ 58.105839] __down_trylock_console_sem+0xae/0x1f0
[ 58.105842] console_trylock+0x15/0xa0
[ 58.105844] vprintk_emit+0x372/0x990
[ 58.105846] vprintk_default+0x28/0x30
[ 58.105848] vprintk_func+0x7e/0x181
[ 58.105850] printk+0xa7/0xcf
[ 58.105853] kasan_die_handler.cold.20+0x11/0x30
[ 58.105857] notifier_call_chain+0x17e/0x380
[ 58.105860] atomic_notifier_call_chain+0x96/0x190
[ 58.105862] notify_die+0x1bd/0x2d0
[ 58.105865] do_general_protection+0x16d/0x2f0
[ 58.105867] general_protection+0x1e/0x30
[ 58.105870] debug_object_deactivate+0x191/0x450
[ 58.105872] __run_timers+0x56f/0xc70
[ 58.105874] run_timer_softirq+0x52/0xb0
[ 58.105876] __do_softirq+0x308/0xb7e
[ 58.105879] irq_exit+0x17f/0x1c0
[ 58.105881] smp_apic_timer_interrupt+0x1cb/0x760
[ 58.105884] apic_timer_interrupt+0xf/0x20
[ 58.105886] native_safe_halt+0x6/0x10
[ 58.105888] default_idle+0xbf/0x490
[ 58.105890] arch_cpu_idle+0x10/0x20
[ 58.105893] default_idle_call+0x6d/0x90
[ 58.105895] do_idle+0x49b/0x5c0
[ 58.105897] cpu_startup_entry+0x18/0x20
[ 58.105900] start_secondary+0x487/0x5f0
[ 58.105902] secondary_startup_64+0xa4/0xb0
[ 58.105903]
[ 58.105906] other info that might help us debug this:
[ 58.105907]
[ 58.105909] Chain exists of:
[ 58.105910] (console_sem).lock --> &rq->lock --> &obj_hash[i].lock
[ 58.105920]
[ 58.105922] Possible unsafe locking scenario:
[ 58.105924]
[ 58.105926] CPU0 CPU1
[ 58.105928] ---- ----
[ 58.105930] lock(&obj_hash[i].lock);
[ 58.105935] lock(&rq->lock);
[ 58.105940] lock(&obj_hash[i].lock);
[ 58.105945] lock((console_sem).lock);
[ 58.105949]
[ 58.105951] *** DEADLOCK ***
[ 58.105952]
[ 58.105954] 3 locks held by swapper/1/0:
[ 58.105955] #0: 00000000ed77b0bd (&base->lock){..-.}, at: __run_timers+0x168/0xc70
[ 58.105965] #1: 00000000308a9dad (&obj_hash[i].lock){-.-.}, at: debug_object_deactivate+0xf7/0x450
[ 58.105974] #2: 000000005d3d1da7 (rcu_read_lock){....}, at: atomic_notifier_call_chain+0x0/0x190
[ 58.105984]
[ 58.105986] stack backtrace:
[ 58.105989] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 4.20.0-rc6-next-20181217+ #172
[ 58.105994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 58.105995] Call Trace:
[ 58.105997]
[ 58.105999] dump_stack+0x244/0x39d
[ 58.106002] ? dump_stack_print_info.cold.1+0x20/0x20
[ 58.106004] ? vprintk_func+0x85/0x181
[ 58.106007] print_circular_bug.isra.36.cold.58+0x1bd/0x27d
[ 58.106009] ? save_trace+0xe0/0x290
[ 58.106011] __lock_acquire+0x3399/0x4c20
[ 58.106014] ? mark_held_locks+0x130/0x130
[ 58.106016] ? mark_held_locks+0x130/0x130
[ 58.106018] ? update_group_capacity+0xe00/0xe00
[ 58.106021] ? do_raw_spin_unlock+0xa7/0x330
[ 58.106023] ? trace_hardirqs_on+0x310/0x310
[ 58.106026] ? do_raw_spin_trylock+0x270/0x270
[ 58.106028] ? graph_lock+0x270/0x270
[ 58.106031] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 58.106033] lock_acquire+0x1ed/0x520
[ 58.106035] ? down_trylock+0x13/0x70
[ 58.106037] ? lock_release+0xa00/0xa00
[ 58.106040] ? trace_hardirqs_off+0xb8/0x310
[ 58.106042] ? vprintk_emit+0x1de/0x990
[ 58.106044] ? trace_hardirqs_on+0x310/0x310
[ 58.106047] ? trace_hardirqs_off+0xb8/0x310
[ 58.106049] ? log_store+0x344/0x4c0
[ 58.106051] ? vprintk_emit+0x372/0x990
[ 58.106054] _raw_spin_lock_irqsave+0x99/0xd0
[ 58.106056] ? down_trylock+0x13/0x70
[ 58.106058] down_trylock+0x13/0x70
[ 58.106061] __down_trylock_console_sem+0xae/0x1f0
[ 58.106063] console_trylock+0x15/0xa0
[ 58.106065] vprintk_emit+0x372/0x990
[ 58.106067] ? wake_up_klogd+0x180/0x180
[ 58.106070] ? __lock_acquire+0x62f/0x4c20
[ 58.106072] ? print_usage_bug+0xc0/0xc0
[ 58.106074] vprintk_default+0x28/0x30
[ 58.106076] vprintk_func+0x7e/0x181
[ 58.106078] printk+0xa7/0xcf
[ 58.106081] ? kmsg_dump_rewind_nolock+0xe4/0xe4
[ 58.106083] ? mark_held_locks+0x130/0x130
[ 58.106085] ? mark_held_locks+0x130/0x130
[ 58.106088] ? kasan_die_handler.cold.20+0x5/0x30
[ 58.106090] ? kasan_die_handler+0x1a/0x31
[ 58.106093] kasan_die_handler.cold.20+0x11/0x30
[ 58.106095] notifier_call_chain+0x17e/0x380
[ 58.106098] ? unregister_die_notifier+0x20/0x20
[ 58.106100] ? kasan_check_read+0x11/0x20
[ 58.106103] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[ 58.106105] ? rcu_softirq_qs+0x20/0x20
[ 58.106107] ? rcu_softirq_qs+0x20/0x20
[ 58.106109] ? cmp_ex_search+0x8c/0xb0
[ 58.106112] atomic_notifier_call_chain+0x96/0x190
[ 58.106114] notify_die+0x1bd/0x2d0
[ 58.106117] ? __atomic_notifier_call_chain+0x1a0/0x1a0
[ 58.106119] ? debug_object_deactivate+0x191/0x450
[ 58.106122] ? search_exception_tables+0x47/0x50
[ 58.106124] ? fixup_exception+0xb1/0xde
[ 58.106127] do_general_protection+0x16d/0x2f0
[ 58.106129] general_protection+0x1e/0x30
[ 58.106132] RIP: 0010:debug_object_deactivate+0x191/0x450
[ 58.106140] Code: 02 00 00 48 8b 1b 41 bf 01 00 00 00 48 85 db 74 46 48 b8 00 00 00 00 00 fc ff df 48 8d 7b 18 41 83 c7 01 48 89 fe 48 c1 ee 03 <80> 3c 06 00 0f 85 04 02 00 00 48 3b 53 18 0f 84 53 01 00 00 48 89
[ 58.106142] RSP: 0018:ffff8881dad078b0 EFLAGS: 00010002
[ 58.106147] RAX: dffffc0000000000 RBX: 0000000000000040 RCX: ffffffff8394ea68
[ 58.106150] RDX: ffff8881c1b92158 RSI: 000000000000000b RDI: 0000000000000058
[ 58.106154] RBP: ffff8881dad07968 R08: ffffed103b5a0f03 R09: ffffed103b5a0f02
[ 58.106157] R10: ffffed103b5a0f02 R11: 0000000000000003 R12: 1ffff1103b5a0f18
[ 58.106161] R13: ffffffff8b4396c8 R14: ffffffff897ab5a0 R15: 0000000000000004
[ 58.106163] ? debug_object_deactivate+0x3a8/0x450
[ 58.106166] ? debug_stats_show+0x100/0x100
[ 58.106168] ? trace_hardirqs_on+0x310/0x310
[ 58.106171] ? trace_hardirqs_on+0x310/0x310
[ 58.106173] ? graph_lock+0x270/0x270
[ 58.106175] __run_timers+0x56f/0xc70
[ 58.106177] ? timer_fixup_init+0x70/0x70
[ 58.106180] ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 58.106182] ? graph_lock+0x270/0x270
[ 58.106184] ? enqueue_hrtimer+0x1a5/0x560
[ 58.106187] ? hrtimer_update_softirq_timer+0xa0/0xa0
[ 58.106189] ? find_held_lock+0x36/0x1c0
[ 58.106192] ? pvclock_read_flags+0x160/0x160
[ 58.106195] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 58.106197] ? check_preemption_disabled+0x48/0x280
[ 58.106200] ? rcu_lockdep_current_cpu_online+0x1a4/0x210
[ 58.106202] ? rcu_pm_notify+0xc0/0xc0
[ 58.106205] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 58.106208] ? check_preemption_disabled+0x48/0x280
[ 58.106210] run_timer_softirq+0x52/0xb0
[ 58.106213] ? rcu_read_lock_sched_held+0x14f/0x180
[ 58.106215] __do_softirq+0x308/0xb7e
[ 58.106217] ? ktime_get_raw_ts64+0x4d0/0x4d0
[ 58.106219] ? lock_downgrade+0x900/0x900
[ 58.106222] ? __irqentry_text_end+0x1f9658/0x1f9658
[ 58.106225] ? pvclock_read_flags+0x160/0x160
[ 58.106227] ? lapic_next_event+0x5a/0x90
[ 58.106230] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 58.106232] ? kvm_clock_read+0x18/0x30
[ 58.106235] ? kvm_sched_clock_read+0x9/0x20
[ 58.106238] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 58.106240] ? check_preemption_disabled+0x48/0x280
[ 58.106243] irq_exit+0x17f/0x1c0
[ 58.106245] smp_apic_timer_interrupt+0x1cb/0x760
[ 58.106248] ? smp_reschedule_interrupt+0x109/0x650
[ 58.106251] ? smp_call_function_single_interrupt+0x650/0x650
[ 58.106253] ? interrupt_entry+0xb5/0xc0
[ 58.106256] ? trace_hardirqs_off_caller+0xbb/0x310
[ 58.106258] ? trace_hardirqs_off_caller+0xbb/0x310
[ 58.106261] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 58.106263] ? trace_hardirqs_on_caller+0x310/0x310
[ 58.106265] ? trac
[ 58.106270] Lost 34 message(s)!
[ 59.130137] Rebooting in 86400 seconds..