[ 83.314528][ T27] audit: type=1800 audit(1579835479.558:25): pid=9656 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 84.063447][ T27] kauditd_printk_skb: 3 callbacks suppressed [ 84.063460][ T27] audit: type=1800 audit(1579835480.308:29): pid=9656 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 84.090397][ T27] audit: type=1800 audit(1579835480.308:30): pid=9656 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.179' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program syzkaller login: [ 329.890323][ T9812] Set syz2 is full, maxelem 65536 reached [ 434.892887][ C0] rcu: INFO: rcu_preempt self-detected stall on CPU [ 434.899626][ C0] rcu: 0-...!: (10510 ticks this GP) idle=6ca/1/0x4000000000000002 softirq=16152/16155 fqs=7 [ 434.910222][ C0] (t=10500 jiffies g=8933 q=807) [ 434.915338][ C0] rcu: rcu_preempt kthread starved for 10485 jiffies! g8933 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=1 [ 434.926658][ C0] rcu: RCU grace-period kthread stack dump: [ 434.932669][ C0] rcu_preempt I29264 10 2 0x80004000 [ 434.939147][ C0] Call Trace: [ 434.942497][ C0] __schedule+0x934/0x1f90 [ 434.946978][ C0] ? __sched_text_start+0x8/0x8 [ 434.951933][ C0] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 434.957754][ C0] ? schedule_timeout+0x47c/0xc50 [ 434.962944][ C0] ? lockdep_hardirqs_on+0x421/0x5e0 [ 434.968287][ C0] schedule+0xdc/0x2b0 [ 434.972431][ C0] schedule_timeout+0x486/0xc50 [ 434.977290][ C0] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 434.984279][ C0] ? usleep_range+0x170/0x170 [ 434.989008][ C0] ? trace_hardirqs_on+0x67/0x240 [ 434.994114][ C0] ? __next_timer_interrupt+0x1a0/0x1a0 [ 435.000590][ C0] ? swake_up_one+0x60/0x60 [ 435.005178][ C0] rcu_gp_kthread+0x9b2/0x18d0 [ 435.009992][ C0] ? rcu_barrier+0x350/0x350 [ 435.014726][ C0] ? trace_hardirqs_on+0x67/0x240 [ 435.020017][ C0] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 435.026480][ C0] ? __kthread_parkme+0x108/0x1c0 [ 435.031611][ C0] ? __kasan_check_read+0x11/0x20 [ 435.036661][ C0] kthread+0x361/0x430 [ 435.040951][ C0] ? rcu_barrier+0x350/0x350 [ 435.045538][ C0] ? kthread_mod_delayed_work+0x1f0/0x1f0 [ 435.051254][ C0] ret_from_fork+0x24/0x30 [ 435.055785][ C0] NMI backtrace for cpu 0 [ 435.060197][ C0] CPU: 0 PID: 9819 Comm: syz-executor189 Not tainted 5.5.0-rc7-syzkaller #0 [ 435.069156][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 435.079413][ C0] Call Trace: [ 435.082793][ C0] [ 435.085828][ C0] dump_stack+0x197/0x210 [ 435.090164][ C0] nmi_cpu_backtrace.cold+0x70/0xb2 [ 435.095486][ C0] ? lapic_can_unplug_cpu.cold+0x3a/0x3a [ 435.101134][ C0] nmi_trigger_cpumask_backtrace+0x23b/0x28b [ 435.107121][ C0] arch_trigger_cpumask_backtrace+0x14/0x20 [ 435.113277][ C0] rcu_dump_cpu_stacks+0x183/0x1cf [ 435.118394][ C0] rcu_sched_clock_irq.cold+0x509/0xc0d [ 435.124016][ C0] ? raise_softirq+0x138/0x340 [ 435.128930][ C0] update_process_times+0x2d/0x70 [ 435.134010][ C0] tick_sched_handle+0xa2/0x190 [ 435.138905][ C0] tick_sched_timer+0x53/0x140 [ 435.143668][ C0] __hrtimer_run_queues+0x364/0xe40 [ 435.148981][ C0] ? tick_sched_do_timer+0x1b0/0x1b0 [ 435.154267][ C0] ? hrtimer_init+0x330/0x330 [ 435.158941][ C0] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 435.164660][ C0] ? ktime_get_update_offsets_now+0x2ce/0x430 [ 435.170986][ C0] hrtimer_interrupt+0x314/0x770 [ 435.176033][ C0] smp_apic_timer_interrupt+0x160/0x610 [ 435.181569][ C0] apic_timer_interrupt+0xf/0x20 [ 435.186556][ C0] [ 435.189502][ C0] RIP: 0010:__sanitizer_cov_trace_pc+0x1a/0x50 [ 435.195648][ C0] Code: c3 0f 1f 44 00 00 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 65 48 8b 04 25 c0 1e 02 00 65 8b 15 14 27 8d 7e 81 e2 00 01 1f 00 <48> 8b 75 08 75 2b 8b 90 80 13 00 00 83 fa 02 75 20 48 8b 88 88 13 [ 435.215371][ C0] RSP: 0018:ffffc90002146e08 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13 [ 435.223783][ C0] RAX: ffff8880a8a0e380 RBX: 0000000000000002 RCX: ffffffff8676837f [ 435.232013][ C0] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000004 [ 435.240008][ C0] RBP: ffffc90002146e08 R08: ffff8880a8a0e380 R09: ffffed10152ec273 [ 435.247978][ C0] R10: ffffed10152ec272 R11: ffff8880a9761397 R12: ffff8880a97613c0 [ 435.256185][ C0] R13: ffff8880a513e500 R14: 0000000000000003 R15: dffffc0000000000 [ 435.264233][ C0] ? hash_ip4_expire.isra.0+0x2af/0x8d0 [ 435.269950][ C0] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 435.275939][ C0] hash_ip4_expire.isra.0+0x2c1/0x8d0 [ 435.281352][ C0] hash_ip4_add+0x178/0x1b6c [ 435.285947][ C0] hash_ip4_uadt+0x546/0x7a0 [ 435.290535][ C0] ? hash_ip6_add+0x1d70/0x1d70 [ 435.295386][ C0] ? hash_ip6_uadt+0x670/0x670 [ 435.302129][ C0] ? __kasan_check_write+0x14/0x20 [ 435.307298][ C0] call_ad+0x1a0/0x5a0 [ 435.311531][ C0] ? start_msg+0x220/0x220 [ 435.316005][ C0] ? nla_memcpy+0xb0/0xb0 [ 435.320342][ C0] ? __nla_parse+0x43/0x60 [ 435.324761][ C0] ip_set_ad.isra.0+0x572/0xb20 [ 435.329657][ C0] ? ip_set_nfnl_get_byindex+0x460/0x460 [ 435.335384][ C0] ? nla_memcpy+0xb0/0xb0 [ 435.339822][ C0] ? lock_downgrade+0x920/0x920 [ 435.344694][ C0] ip_set_uadd+0x37/0x50 [ 435.348938][ C0] ? ip_set_udel+0x50/0x50 [ 435.353434][ C0] nfnetlink_rcv_msg+0xcf2/0xfb0 [ 435.358521][ C0] ? nfnetlink_bind+0x2c0/0x2c0 [ 435.363370][ C0] ? __kasan_check_read+0x11/0x20 [ 435.368396][ C0] ? __lock_acquire+0x8a0/0x4a00 [ 435.373458][ C0] ? save_stack+0x5c/0x90 [ 435.377887][ C0] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 435.384529][ C0] ? apparmor_capable+0x497/0x900 [ 435.389556][ C0] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 435.395791][ C0] ? __kasan_check_read+0x11/0x20 [ 435.400847][ C0] ? apparmor_cred_prepare+0x7b0/0x7b0 [ 435.406379][ C0] netlink_rcv_skb+0x177/0x450 [ 435.411141][ C0] ? nfnetlink_bind+0x2c0/0x2c0 [ 435.415989][ C0] ? netlink_ack+0xb50/0xb50 [ 435.420579][ C0] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 435.426818][ C0] ? ns_capable_common+0x93/0x100 [ 435.431840][ C0] ? ns_capable+0x20/0x30 [ 435.436283][ C0] ? __netlink_ns_capable+0x104/0x140 [ 435.441715][ C0] nfnetlink_rcv+0x1ba/0x460 [ 435.446344][ C0] ? nfnetlink_rcv_batch+0x17a0/0x17a0 [ 435.451792][ C0] ? netlink_deliver_tap+0x24a/0xbe0 [ 435.457078][ C0] ? __kasan_check_write+0x14/0x20 [ 435.462320][ C0] netlink_unicast+0x58c/0x7d0 [ 435.467094][ C0] ? netlink_attachskb+0x870/0x870 [ 435.472206][ C0] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 435.478029][ C0] ? __check_object_size+0x3d/0x437 [ 435.483227][ C0] netlink_sendmsg+0x91c/0xea0 [ 435.488363][ C0] ? netlink_unicast+0x7d0/0x7d0 [ 435.493369][ C0] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 435.498938][ C0] ? apparmor_socket_sendmsg+0x2a/0x30 [ 435.504413][ C0] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 435.510729][ C0] ? security_socket_sendmsg+0x8d/0xc0 [ 435.516199][ C0] ? netlink_unicast+0x7d0/0x7d0 [ 435.521233][ C0] sock_sendmsg+0xd7/0x130 [ 435.525651][ C0] ____sys_sendmsg+0x753/0x880 [ 435.530470][ C0] ? kernel_sendmsg+0x50/0x50 [ 435.535849][ C0] ? lockdep_init_map+0x1be/0x6d0 [ 435.540929][ C0] ___sys_sendmsg+0x100/0x170 [ 435.545615][ C0] ? sendmsg_copy_msghdr+0x70/0x70 [ 435.550730][ C0] ? __kasan_check_read+0x11/0x20 [ 435.555771][ C0] ? __lock_acquire+0x8a0/0x4a00 [ 435.560743][ C0] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 435.567042][ C0] ? __this_cpu_preempt_check+0x35/0x190 [ 435.572681][ C0] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 435.578953][ C0] ? percpu_counter_add_batch+0x13c/0x190 [ 435.584760][ C0] ? __fd_install+0x1bc/0x640 [ 435.589504][ C0] ? find_held_lock+0x35/0x130 [ 435.594269][ C0] ? __fd_install+0x1bc/0x640 [ 435.598966][ C0] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 435.605469][ C0] ? __fget_light+0x1a9/0x230 [ 435.610862][ C0] ? __fdget+0x1b/0x20 [ 435.615100][ C0] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 435.621446][ C0] __sys_sendmsg+0x105/0x1d0 [ 435.626067][ C0] ? __sys_sendmsg_sock+0xc0/0xc0 [ 435.631390][ C0] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 435.636957][ C0] ? do_fast_syscall_32+0xd1/0xe16 [ 435.642062][ C0] ? entry_SYSENTER_compat+0x70/0x7f [ 435.647582][ C0] ? do_fast_syscall_32+0xd1/0xe16 [ 435.652987][ C0] __ia32_compat_sys_sendmsg+0x7a/0xb0 [ 435.658435][ C0] do_fast_syscall_32+0x27b/0xe16 [ 435.663466][ C0] entry_SYSENTER_compat+0x70/0x7f [ 435.668703][ C0] RIP: 0023:0xf7f5e9a9 [ 435.672775][ C0] Code: 00 00 00 89 d3 5b 5e 5f 5d c3 b8 80 96 98 00 eb c4 8b 04 24 c3 8b 1c 24 c3 8b 34 24 c3 8b 3c 24 c3 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 435.692375][ C0] RSP: 002b:00000000ffcfea5c EFLAGS: 00000202 ORIG_RAX: 0000000000000172 [ 435.700783][ C0] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000d00 [ 435.708753][ C0] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 00000000ffcfeb74 [ 435.716981][ C0] RBP: 00000000ffcfeb7c R08: 0000000000000000 R09: 0000000000000000 [ 435.724943][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 435.732928][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000