[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 44.239267][ T23] audit: type=1800 audit(1575461060.352:25): pid=8171 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 44.258273][ T23] audit: type=1800 audit(1575461060.352:26): pid=8171 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 44.279317][ T23] audit: type=1800 audit(1575461060.352:27): pid=8171 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.1.22' (ECDSA) to the list of known hosts. 2019/12/04 12:04:31 fuzzer started 2019/12/04 12:04:33 dialing manager at 10.128.0.26:36481 2019/12/04 12:04:33 syscalls: 2691 2019/12/04 12:04:33 code coverage: enabled 2019/12/04 12:04:33 comparison tracing: enabled 2019/12/04 12:04:33 extra coverage: extra coverage is not supported by the kernel 2019/12/04 12:04:33 setuid sandbox: enabled 2019/12/04 12:04:33 namespace sandbox: enabled 2019/12/04 12:04:33 Android sandbox: /sys/fs/selinux/policy does not exist 2019/12/04 12:04:33 fault injection: enabled 2019/12/04 12:04:33 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/12/04 12:04:33 net packet injection: enabled 2019/12/04 12:04:33 net device setup: enabled 2019/12/04 12:04:33 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2019/12/04 12:04:33 devlink PCI setup: PCI device 0000:00:10.0 is not available 12:04:34 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x3) r1 = socket$inet_udp(0x2, 0x2, 0x0) close(r1) dup3(r0, r1, 0x80000) 12:04:34 executing program 1: unshare(0x8000400) r0 = syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x0, 0x0) ioctl$KVM_SET_NR_MMU_PAGES(r0, 0xc0109207, 0x400004) syzkaller login: [ 58.485354][ T8335] IPVS: ftp: loaded support on port[0] = 21 12:04:34 executing program 2: syz_open_dev$usbfs(&(0x7f0000001280)='/dev/bus/usb/00#/00#\x00', 0x1aa1, 0x0) r0 = syz_open_dev$usbfs(0x0, 0x0, 0x802) ioctl$USBDEVFS_DISCONNECT_CLAIM(r0, 0xc0185500, &(0x7f0000000380)={0xc20, 0x0, "2c096e3659066f32daec85bccf90ac5642208e828d2dfccaa6c3ae612ad7d3c4382f2d211f2f8a3afcd759a437fb2258063f0bf108b9f82f5b570fbd978c3830095e09ca20ab9d83de55403d86fa7b1895b34f76d71614d075b9e4fe6a87c1c0fc5bebce32e0c4b5b8109744f0ac777cb7c7f2e88e6e674df8573c2d21c9cc49232e8013155f8ea355f314103c129ee97306b2745cf84e69c047eff561616036493f5b7d768a00315d413e355750e203450959c7fd06a90e3f27013ab40f93ed6312366b6882063acac294d7deac3a659a7a81d32c184c96830284954319650ead82d45ab0276b036e8d5a5bf0f5023f4c76deb82a06f8f35e0bfba07ac03d6a"}) [ 58.668121][ T8338] IPVS: ftp: loaded support on port[0] = 21 [ 58.676714][ T8335] chnl_net:caif_netlink_parms(): no params data found [ 58.754329][ T8335] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.765115][ T8335] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.773702][ T8335] device bridge_slave_0 entered promiscuous mode [ 58.787709][ T8335] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.795070][ T8335] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.804886][ T8335] device bridge_slave_1 entered promiscuous mode [ 58.830555][ T8335] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.842251][ T8335] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.880426][ T8335] team0: Port device team_slave_0 added [ 58.892798][ T8335] team0: Port device team_slave_1 added 12:04:35 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x6}, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000700)='/jstat\x00\xc6S\x81\xb4z\xae\xdf*\xf5\xc8\xaf4#\xfcA\x89\x1b\xd2\xa3\xc5m\x8c\x88\xe2\x9b\xadC\xf1\xda\x90n\x85_\xf1\x82\xde\x04\"~\xdc\xbb\xc2\xb1\xdf\x8f\x18\x0e\x15\x8e\x8a\xbdD,\xc0I\xcf\xfd\xa00\xff\'xu\xee\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xf52\x14M\x16q\xa6\xcd\xf5\x06\x9e[\xdd\xcf%\xcd\x7f#\x95kJ\x82\xdf\x90\x0f^\xb5v;O\xe8\xccqr\x96-%\x90\xb2\xdc\xa2\xa10\x8c8%A\xb0S\x19M\x90\'\xd8>\xe7\xba.2\x80\x85\x7f\x8f\x9fc\xfc\x90\xba\xe9Y\xc6\xe6px\xbf\x97\xe6\x15\xbf\xd9@\x99\x14\x95\x8a\xad\xcf\xb3ysT<`\xd85&\xe5\xc2g\xf7\xdf\xa5K\xd5$\xcc\x96q\xde\xddfQ\x992+\xda\xde\xe1%\xa3[@\xb7\xbe\f\a0\x1fC\x9a~\xdf\xa2o\xa9\x82w\xc8\a\x8b\x02\xe2\ab\x91\xc37\x87\xc5\x8b\x0e\xab\xbc9(\x8f\xc1\x05\t@\x9d\xe1\b\xf5\xca&\xa8\xc8\xe1\xaf\xb7\v*\x95i\xcf\x8fL\xdbmN\x97\xeb\x7f\xdf$\x1d\xee\x16\x0e`qa\x833\xcc\v\x0e\x8b\xc6\xa1z\v}`EP\xfd\x14\x9a\xd0x\xff\xe5Lc\x92\xfb\xa2\x90\x15\xa3\xaeswL\xd1,\x9c\x0e\xd2Q\xa7\xcf\x84=q-', 0x2761, 0x0) getsockopt$netrom_NETROM_T1(r0, 0x103, 0x1, 0x0, &(0x7f0000000380)) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="1500000065ffff0180000008003950323030302e4cc74502f987c2cec6504df6ead74ed8a60ab563e98b4b2a3d27a7082dbb78abd55fba3da80b856445ab100621d623455e1ffb5ea3544438cd89e9b08e3f5972fe9ca162b123e19268c89c9dd81c796f27f537cc5a3fb54aff8eaff4f6b59c41705b96a6711d4679079d00"/137], 0x15) ioctl$EVIOCGMTSLOTS(0xffffffffffffffff, 0x8040450a, 0x0) r3 = dup(r2) write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18}, 0x18) ioctl$SIOCGETLINKNAME(r3, 0x89e0, &(0x7f0000000a00)={0x4}) sendmsg$nl_route(r0, &(0x7f0000000980)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x53d00}, 0xc, &(0x7f0000000940)={&(0x7f0000000540)=@getaddr={0x14, 0x16, 0x5accfc850116e8d7, 0x70bd29, 0x25dfdbfc, {}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x20000008) write$FUSE_NOTIFY_RETRIEVE(r3, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='9p\x00', 0x0, &(0x7f0000000880)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_fscache='cache=fscache'}, {@dfltgid={'dfltgid'}}, {@afid={'afid', 0x3d, 0x200}}, {@afid={'afid'}}, {@aname={'aname', 0x3d, '9p\x00'}}]}}) setxattr$trusted_overlay_upper(&(0x7f0000000080)='./file0\x00', &(0x7f0000000180)='trusted.overlay.upper\x00', &(0x7f0000000740)={0x0, 0xfb, 0x4c, 0x0, 0x0, "3535612161354c0fb81a15fda9d281b4", "a4d60b5094548af077bcabee2adf4e35466eba17e1aaac20f41178deca0e6663f5edc458c3cbe8b58dd2d47817d51c61f4bdc7d839a191"}, 0x4c, 0x2) socket(0x0, 0x3, 0x0) accept4(0xffffffffffffffff, 0x0, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000009c0)={0x0, 0xfffffffffffffcda}}, 0x135be07bb9d6b4f8) [ 59.011107][ T8335] device hsr_slave_0 entered promiscuous mode [ 59.107293][ T8335] device hsr_slave_1 entered promiscuous mode [ 59.160772][ T8338] chnl_net:caif_netlink_parms(): no params data found [ 59.189639][ T8341] IPVS: ftp: loaded support on port[0] = 21 [ 59.281328][ T8338] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.296958][ T8338] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.304740][ T8338] device bridge_slave_0 entered promiscuous mode [ 59.318846][ T8338] bridge0: port 2(bridge_slave_1) entered blocking state 12:04:35 executing program 4: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) read$FUSE(r0, &(0x7f0000003000), 0xffffff92) write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, 0x2, {0x7, 0x5}}, 0x50) statfs(&(0x7f0000000140)='./file0\x00', 0x0) [ 59.325946][ T8338] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.339166][ T8338] device bridge_slave_1 entered promiscuous mode [ 59.361141][ T8335] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 59.369468][ T8343] IPVS: ftp: loaded support on port[0] = 21 [ 59.444760][ T8335] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 59.512430][ T8335] netdevsim netdevsim0 netdevsim2: renamed from eth2 12:04:35 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000000)="120000001200e7ef007b0000f4afd7030a7c", 0xfcd1, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000020c0), 0x320, 0x0, &(0x7f0000003700)={0x77359400}) [ 59.571729][ T8338] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 59.607735][ T8335] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 59.616120][ T8345] IPVS: ftp: loaded support on port[0] = 21 [ 59.642657][ T8338] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 59.739120][ T8335] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.746492][ T8335] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.754698][ T8335] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.766049][ T8335] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.785925][ T8338] team0: Port device team_slave_0 added [ 59.802455][ T3064] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.818060][ T3064] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.865712][ T8341] chnl_net:caif_netlink_parms(): no params data found [ 59.876558][ T8338] team0: Port device team_slave_1 added [ 59.911550][ T8348] IPVS: ftp: loaded support on port[0] = 21 [ 59.999767][ T8338] device hsr_slave_0 entered promiscuous mode [ 60.037360][ T8338] device hsr_slave_1 entered promiscuous mode [ 60.077297][ T8338] debugfs: Directory 'hsr0' with parent '/' already present! [ 60.115231][ T8343] chnl_net:caif_netlink_parms(): no params data found [ 60.129219][ T8341] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.136324][ T8341] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.146408][ T8341] device bridge_slave_0 entered promiscuous mode [ 60.184562][ T8345] chnl_net:caif_netlink_parms(): no params data found [ 60.194827][ T8341] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.202623][ T8341] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.212070][ T8341] device bridge_slave_1 entered promiscuous mode [ 60.259489][ T8341] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 60.274019][ T8343] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.282519][ T8343] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.290800][ T8343] device bridge_slave_0 entered promiscuous mode [ 60.303775][ T8343] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.312015][ T8343] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.320974][ T8343] device bridge_slave_1 entered promiscuous mode [ 60.329935][ T8341] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 60.361787][ T8341] team0: Port device team_slave_0 added [ 60.401393][ T8338] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 60.439953][ T8341] team0: Port device team_slave_1 added [ 60.445754][ T8338] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 60.509196][ T8345] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.516476][ T8345] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.526530][ T8345] device bridge_slave_0 entered promiscuous mode [ 60.539578][ T8345] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.546761][ T8345] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.555102][ T8345] device bridge_slave_1 entered promiscuous mode [ 60.571390][ T8343] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 60.585101][ T8343] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 60.650002][ T8341] device hsr_slave_0 entered promiscuous mode [ 60.687483][ T8341] device hsr_slave_1 entered promiscuous mode [ 60.717080][ T8341] debugfs: Directory 'hsr0' with parent '/' already present! [ 60.724783][ T8338] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 60.782982][ T8338] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 60.854877][ T8345] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 60.893245][ T8345] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 60.913760][ T8343] team0: Port device team_slave_0 added [ 60.922174][ T8343] team0: Port device team_slave_1 added [ 60.960022][ T8345] team0: Port device team_slave_0 added [ 60.969168][ T8335] 8021q: adding VLAN 0 to HW filter on device bond0 [ 60.982426][ T8341] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 61.030605][ T8345] team0: Port device team_slave_1 added [ 61.089017][ T8343] device hsr_slave_0 entered promiscuous mode [ 61.118968][ T8343] device hsr_slave_1 entered promiscuous mode [ 61.157037][ T8343] debugfs: Directory 'hsr0' with parent '/' already present! [ 61.164668][ T8341] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 61.227704][ T8341] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 61.269298][ T8341] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 61.331582][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 61.340326][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 61.409267][ T8345] device hsr_slave_0 entered promiscuous mode [ 61.447394][ T8345] device hsr_slave_1 entered promiscuous mode [ 61.497219][ T8345] debugfs: Directory 'hsr0' with parent '/' already present! [ 61.506519][ T8335] 8021q: adding VLAN 0 to HW filter on device team0 [ 61.560974][ T3064] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 61.570218][ T3064] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 61.578902][ T3064] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.586125][ T3064] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.611045][ T8335] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 61.622440][ T8335] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 61.642488][ T8343] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 61.699633][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 61.708730][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 61.717998][ T29] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.725182][ T29] bridge0: port 2(bridge_slave_1) entered forwarding state [ 61.733033][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 61.742024][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 61.750673][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 61.759606][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 61.768127][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 61.776581][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 61.785085][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 61.793450][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 61.802369][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 61.811268][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 61.820033][ T8348] chnl_net:caif_netlink_parms(): no params data found [ 61.857770][ T8343] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 61.910072][ T8343] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 61.969736][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 61.977796][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 62.008768][ T8338] 8021q: adding VLAN 0 to HW filter on device bond0 [ 62.015640][ T2968] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 62.025244][ T2968] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 62.034037][ T8345] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 62.069276][ T8343] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 62.131862][ T8348] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.140853][ T8348] bridge0: port 1(bridge_slave_0) entered disabled state [ 62.149606][ T8348] device bridge_slave_0 entered promiscuous mode [ 62.160639][ T8335] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 62.168961][ T8345] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 62.211782][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 62.219673][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 62.229266][ T8338] 8021q: adding VLAN 0 to HW filter on device team0 [ 62.240031][ T8348] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.247739][ T8348] bridge0: port 2(bridge_slave_1) entered disabled state [ 62.255486][ T8348] device bridge_slave_1 entered promiscuous mode [ 62.275388][ T8348] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 62.286597][ T8348] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 62.296731][ T8345] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 62.329051][ T8345] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 62.399316][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 62.409744][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 62.419507][ T29] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.426577][ T29] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.434942][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 62.443661][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 62.452554][ T29] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.460633][ T29] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.468429][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 62.507135][ T8347] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 62.515194][ T8347] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 62.525652][ T8347] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 62.534779][ T8347] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 62.543776][ T8347] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 62.552399][ T8347] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 62.560742][ T8347] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 62.569312][ T8347] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 62.577751][ T8347] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 62.586187][ T8347] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 62.597620][ T8348] team0: Port device team_slave_0 added [ 62.605561][ T8348] team0: Port device team_slave_1 added [ 62.645600][ T8338] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 62.659638][ T8354] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 216.353571][ C0] watchdog: BUG: soft lockup - CPU#0 stuck for 123s! [syz-executor.0:8335] [ 216.362223][ C0] Modules linked in: [ 216.366107][ C0] irq event stamp: 155584 [ 216.370435][ C0] hardirqs last enabled at (155583): [] trace_hardirqs_on_thunk+0x1a/0x1c [ 216.380572][ C0] hardirqs last disabled at (155584): [] trace_hardirqs_off_thunk+0x1a/0x1c [ 216.390827][ C0] softirqs last enabled at (124886): [] irq_exit+0x227/0x230 [ 216.399835][ C0] softirqs last disabled at (124831): [] irq_exit+0x227/0x230 [ 216.409740][ C0] CPU: 0 PID: 8335 Comm: syz-executor.0 Not tainted 5.4.0-syzkaller #0 [ 216.417965][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 216.428016][ C0] RIP: 0010:free_thread_stack+0x177/0x590 [ 216.433735][ C0] Code: 80 3c 28 00 74 08 48 89 df e8 25 a0 69 00 48 8b 3b be fc ff ff ff e8 28 04 00 00 43 80 3c 2e 00 74 08 4c 89 e7 e8 09 a0 69 00 <49> 8b 1c 24 48 83 c3 08 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 [ 216.453340][ C0] RSP: 0018:ffffc90001e37bd0 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13 [ 216.461740][ C0] RAX: ffffffff81487433 RBX: ffff8880a7eac288 RCX: ffff88808dbc2380 [ 216.469700][ C0] RDX: 0000000000000000 RSI: 00000000fffffffc RDI: ffffea00029f2900 [ 216.477750][ C0] RBP: ffffc90001e37c08 R08: dffffc0000000000 R09: fffffbfff120248a [ 216.485724][ C0] R10: fffffbfff120248a R11: 0000000000000000 R12: ffff8880a7eac320 [ 216.493706][ C0] R13: dffffc0000000000 R14: 1ffff11014fd5864 R15: ffff888098e51828 [ 216.501679][ C0] FS: 0000000000e74940(0000) GS:ffff8880aec00000(0000) knlGS:0000000000000000 [ 216.510606][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 216.517177][ C0] CR2: 00007f0bccd40000 CR3: 000000007f9bb000 CR4: 00000000001406f0 [ 216.525141][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 216.533101][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 216.541059][ C0] Call Trace: [ 216.544351][ C0] put_task_stack+0xa3/0x130 [ 216.548933][ C0] finish_task_switch+0x3f1/0x550 [ 216.553950][ C0] __schedule+0x9a8/0xcc0 [ 216.558279][ C0] schedule+0x181/0x210 [ 216.562423][ C0] do_nanosleep+0x1d0/0x6c0 [ 216.566928][ C0] hrtimer_nanosleep+0x3a6/0x5b0 [ 216.571858][ C0] ? trace_hrtimer_expire_exit+0x2d0/0x2d0 [ 216.577663][ C0] __x64_sys_nanosleep+0x186/0x1d0 [ 216.582778][ C0] do_syscall_64+0xf7/0x1c0 [ 216.587466][ C0] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 216.593798][ C0] RIP: 0033:0x458b20 [ 216.597725][ C0] Code: c0 5b 5d c3 66 0f 1f 44 00 00 8b 04 24 48 83 c4 18 5b 5d c3 66 0f 1f 44 00 00 83 3d 11 fe 61 00 00 75 14 b8 23 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 d4 d1 fb ff c3 48 83 ec 08 e8 ea 46 00 00 [ 216.617413][ C0] RSP: 002b:00007fffbd2816e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000023 [ 216.625819][ C0] RAX: ffffffffffffffda RBX: 000000000000f4d2 RCX: 0000000000458b20 [ 216.633791][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fffbd2816f0 [ 216.644102][ C0] RBP: 0000000000000002 R08: 0000000000000001 R09: 0000000000e74940 [ 216.652199][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 216.660189][ C0] R13: 00007fffbd281740 R14: 000000000000f4bc R15: 00007fffbd281750 [ 216.668436][ C0] Sending NMI from CPU 0 to CPUs 1: [ 216.673942][ C1] NMI backtrace for cpu 1 [ 216.673946][ C1] CPU: 1 PID: 8357 Comm: syz-executor.0 Not tainted 5.4.0-syzkaller #0 [ 216.673949][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 216.673951][ C1] RIP: 0010:free_thread_stack+0x11f/0x590 [ 216.673957][ C1] Code: 3e e8 e5 96 ee ff 48 c1 e8 06 48 83 e0 c0 48 bf 00 00 00 00 00 ea ff ff 48 01 c7 be 03 00 00 00 e8 f6 9e 60 00 e9 5d 04 00 00 dc 2a 2e 00 48 89 df 31 f6 e8 a2 a1 6e 00 43 80 3c 2e 00 74 08 [ 216.673959][ C1] RSP: 0018:ffffc900021d7848 EFLAGS: 00000246 [ 216.673964][ C1] RAX: 1ffff11012469311 RBX: ffffea00025a65c0 RCX: 0000000000040000 [ 216.673967][ C1] RDX: ffffc90001e79000 RSI: 000000000003ffff RDI: 0000000000040000 [ 216.673970][ C1] RBP: ffffc900021d7880 R08: dffffc0000000000 R09: fffffbfff1287a8d [ 216.673972][ C1] R10: fffffbfff1287a8d R11: 0000000000000000 R12: ffff888092349920 [ 216.673975][ C1] R13: dffffc0000000000 R14: 1ffff11012469324 R15: ffff888098485628 [ 216.673978][ C1] FS: 00007fc138f87700(0000) GS:ffff8880aed00000(0000) knlGS:0000000000000000 [ 216.673980][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 216.673983][ C1] CR2: 000000000075c000 CR3: 00000000a3424000 CR4: 00000000001406e0 [ 216.673986][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 216.673988][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 216.673990][ C1] Call Trace: [ 216.673992][ C1] put_task_stack+0xa3/0x130 [ 216.673994][ C1] finish_task_switch+0x3f1/0x550 [ 216.673995][ C1] __schedule+0x9a8/0xcc0 [ 216.673997][ C1] schedule+0x181/0x210 [ 216.673999][ C1] futex_wait_queue_me+0x2a3/0x4b0 [ 216.674001][ C1] futex_wait+0x252/0x770 [ 216.674003][ C1] ? __fs_reclaim_release+0x4/0x20 [ 216.674005][ C1] do_futex+0x437/0x3d60 [ 216.674007][ C1] ? __lock_acquire+0xc75/0x1be0 [ 216.674009][ C1] ? percpu_counter_add_batch+0x153/0x170 [ 216.674011][ C1] ? __might_fault+0xf9/0x160 [ 216.674013][ C1] ? __might_fault+0xf9/0x160 [ 216.674015][ C1] ? check_preemption_disabled+0xb4/0x260 [ 216.674017][ C1] ? debug_smp_processor_id+0x9/0x20 [ 216.674019][ C1] __se_sys_futex+0x28c/0x360 [ 216.674021][ C1] ? prepare_exit_to_usermode+0x221/0x5b0 [ 216.674024][ C1] ? trace_irq_disable_rcuidle+0x23/0x1e0 [ 216.674026][ C1] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 216.674028][ C1] __x64_sys_futex+0xe5/0x100 [ 216.674030][ C1] do_syscall_64+0xf7/0x1c0 [ 216.674032][ C1] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 216.674034][ C1] RIP: 0033:0x45a679 [ 216.674040][ C1] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 216.674042][ C1] RSP: 002b:00007fc138f86cf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 216.674047][ C1] RAX: ffffffffffffffda RBX: 000000000075bf28 RCX: 000000000045a679 [ 216.674049][ C1] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000075bf28 [ 216.674052][ C1] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 216.674055][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000075bf2c [ 216.674057][ C1] R13: 00007fffbd2814df R14: 00007fc138f879c0 R15: 000000000075bf2c [ 216.674628][ C0] Kernel panic - not syncing: softlockup: hung tasks [ 216.997482][ C0] CPU: 0 PID: 8335 Comm: syz-executor.0 Tainted: G L 5.4.0-syzkaller #0 [ 217.007095][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 217.017177][ C0] Call Trace: [ 217.020461][ C0] [ 217.023317][ C0] dump_stack+0x1fb/0x318 [ 217.027643][ C0] panic+0x264/0x7a9 [ 217.031534][ C0] ? watchdog_timer_fn+0x52f/0x590 [ 217.036721][ C0] watchdog_timer_fn+0x583/0x590 [ 217.041652][ C0] ? proc_watchdog_cpumask+0xd0/0xd0 [ 217.046925][ C0] __hrtimer_run_queues+0x403/0x840 [ 217.052123][ C0] hrtimer_interrupt+0x38c/0xda0 [ 217.057070][ C0] ? debug_smp_processor_id+0x9/0x20 [ 217.062492][ C0] smp_apic_timer_interrupt+0x109/0x280 [ 217.068201][ C0] apic_timer_interrupt+0xf/0x20 [ 217.073179][ C0] [ 217.076123][ C0] RIP: 0010:free_thread_stack+0x177/0x590 [ 217.081848][ C0] Code: 80 3c 28 00 74 08 48 89 df e8 25 a0 69 00 48 8b 3b be fc ff ff ff e8 28 04 00 00 43 80 3c 2e 00 74 08 4c 89 e7 e8 09 a0 69 00 <49> 8b 1c 24 48 83 c3 08 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 [ 217.101446][ C0] RSP: 0018:ffffc90001e37bd0 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13 [ 217.109851][ C0] RAX: ffffffff81487433 RBX: ffff8880a7eac288 RCX: ffff88808dbc2380 [ 217.117811][ C0] RDX: 0000000000000000 RSI: 00000000fffffffc RDI: ffffea00029f2900 [ 217.125887][ C0] RBP: ffffc90001e37c08 R08: dffffc0000000000 R09: fffffbfff120248a [ 217.133849][ C0] R10: fffffbfff120248a R11: 0000000000000000 R12: ffff8880a7eac320 [ 217.141984][ C0] R13: dffffc0000000000 R14: 1ffff11014fd5864 R15: ffff888098e51828 [ 217.149987][ C0] ? mod_memcg_page_state+0x123/0x190 [ 217.155355][ C0] put_task_stack+0xa3/0x130 [ 217.159933][ C0] finish_task_switch+0x3f1/0x550 [ 217.164949][ C0] __schedule+0x9a8/0xcc0 [ 217.169310][ C0] schedule+0x181/0x210 [ 217.173473][ C0] do_nanosleep+0x1d0/0x6c0 [ 217.177975][ C0] hrtimer_nanosleep+0x3a6/0x5b0 [ 217.182901][ C0] ? trace_hrtimer_expire_exit+0x2d0/0x2d0 [ 217.188739][ C0] __x64_sys_nanosleep+0x186/0x1d0 [ 217.193858][ C0] do_syscall_64+0xf7/0x1c0 [ 217.198351][ C0] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 217.204231][ C0] RIP: 0033:0x458b20 [ 217.208117][ C0] Code: c0 5b 5d c3 66 0f 1f 44 00 00 8b 04 24 48 83 c4 18 5b 5d c3 66 0f 1f 44 00 00 83 3d 11 fe 61 00 00 75 14 b8 23 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 d4 d1 fb ff c3 48 83 ec 08 e8 ea 46 00 00 [ 217.228581][ C0] RSP: 002b:00007fffbd2816e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000023 [ 217.236979][ C0] RAX: ffffffffffffffda RBX: 000000000000f4d2 RCX: 0000000000458b20 [ 217.244957][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fffbd2816f0 [ 217.252915][ C0] RBP: 0000000000000002 R08: 0000000000000001 R09: 0000000000e74940 [ 217.260872][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 217.268832][ C0] R13: 00007fffbd281740 R14: 000000000000f4bc R15: 00007fffbd281750 [ 217.276863][ C0] ------------[ cut here ]------------ [ 217.282321][ C0] WARNING: CPU: 0 PID: 8335 at kernel/locking/mutex.c:1419 mutex_trylock+0x208/0x2c0 [ 217.291757][ C0] Kernel panic - not syncing: panic_on_warn set ... [ 217.298370][ C0] ------------[ cut here ]------------ [ 217.303819][ C0] WARNING: CPU: 0 PID: 8335 at kernel/locking/mutex.c:1419 mutex_trylock+0x208/0x2c0 [ 217.313249][ C0] Modules linked in: [ 217.317143][ C0] CPU: 0 PID: 8335 Comm: syz-executor.0 Tainted: G L 5.4.0-syzkaller #0 [ 217.326768][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 217.336817][ C0] RIP: 0010:mutex_trylock+0x208/0x2c0 [ 217.342173][ C0] Code: 00 00 31 c9 41 b8 01 00 00 00 45 31 c9 ff 75 08 e8 ed e0 68 f9 48 83 c4 08 89 d8 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d c3 <0f> 0b e9 5d fe ff ff e8 8c e1 99 fb 85 c0 0f 84 3e fe ff ff 48 c7 [ 217.361766][ C0] RSP: 0018:ffffc90000007840 EFLAGS: 00010006 [ 217.367833][ C0] RAX: 0000000000010003 RBX: dffffc0000000000 RCX: ffff88808dbc2380 [ 217.375792][ C0] RDX: 0000000000010003 RSI: 0000000000000040 RDI: ffffffff890dbe98 [ 217.383764][ C0] RBP: ffffc90000007870 R08: ffffffff838e94e4 R09: fffffbfff121a689 [ 217.391726][ C0] R10: fffffbfff121a689 R11: 0000000000000000 R12: 0000000000000000 [ 217.399696][ C0] R13: dffffc0000000000 R14: ffffffff890dbe98 R15: 1ffffffff130354e [ 217.407684][ C0] FS: 0000000000e74940(0000) GS:ffff8880aec00000(0000) knlGS:0000000000000000 [ 217.416616][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 217.423191][ C0] CR2: 00007f0bccd40000 CR3: 000000007f9bb000 CR4: 00000000001406f0 [ 217.431237][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 217.439200][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 217.447155][ C0] Call Trace: [ 217.450425][ C0] [ 217.453271][ C0] ? __crash_kexec+0x23/0xc0 [ 217.457854][ C0] __crash_kexec+0x2f/0xc0 [ 217.462258][ C0] ? __printk_safe_flush+0x50e/0x540 [ 217.468485][ C0] ? find_next_bit+0x10c/0x120 [ 217.473234][ C0] ? cpumask_next+0x38/0x60 [ 217.477726][ C0] ? cpumask_next+0x4a/0x60 [ 217.482223][ C0] ? printk_safe_flush_on_panic+0x1d0/0x250 [ 217.488107][ C0] panic+0x294/0x7a9 [ 217.491992][ C0] ? __warn+0x105/0x210 [ 217.496139][ C0] ? mutex_trylock+0x208/0x2c0 [ 217.500894][ C0] __warn+0x20e/0x210 [ 217.504862][ C0] ? mutex_trylock+0x208/0x2c0 [ 217.509614][ C0] report_bug+0x1b6/0x2f0 [ 217.513935][ C0] ? mutex_trylock+0x208/0x2c0 [ 217.518691][ C0] do_error_trap+0xd7/0x440 [ 217.523190][ C0] do_invalid_op+0x36/0x40 [ 217.527593][ C0] ? mutex_trylock+0x208/0x2c0 [ 217.532387][ C0] invalid_op+0x23/0x30 [ 217.536535][ C0] RIP: 0010:mutex_trylock+0x208/0x2c0 [ 217.541894][ C0] Code: 00 00 31 c9 41 b8 01 00 00 00 45 31 c9 ff 75 08 e8 ed e0 68 f9 48 83 c4 08 89 d8 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d c3 <0f> 0b e9 5d fe ff ff e8 8c e1 99 fb 85 c0 0f 84 3e fe ff ff 48 c7 [ 217.561501][ C0] RSP: 0018:ffffc90000007bd0 EFLAGS: 00010006 [ 217.567668][ C0] RAX: 0000000000010002 RBX: dffffc0000000000 RCX: ffff88808dbc2380 [ 217.575635][ C0] RDX: 0000000000010002 RSI: 0000000000000040 RDI: ffffffff890dbe98 [ 217.583616][ C0] RBP: ffffc90000007c00 R08: ffffffff838e94e4 R09: fffffbfff121a689 [ 217.591574][ C0] R10: fffffbfff121a689 R11: 0000000000000000 R12: ffff88808dbc2300 [ 217.599535][ C0] R13: dffffc0000000000 R14: ffffffff890dbe98 R15: 1ffffffff130354e [ 217.607540][ C0] ? find_next_bit+0xa4/0x120 [ 217.612309][ C0] ? __crash_kexec+0x23/0xc0 [ 217.616889][ C0] __crash_kexec+0x2f/0xc0 [ 217.621297][ C0] ? __printk_safe_flush+0x50e/0x540 [ 217.626567][ C0] ? find_next_bit+0x10c/0x120 [ 217.631359][ C0] ? cpumask_next+0x38/0x60 [ 217.635861][ C0] ? cpumask_next+0x4a/0x60 [ 217.640380][ C0] ? printk_safe_flush_on_panic+0x1d0/0x250 [ 217.646293][ C0] panic+0x294/0x7a9 [ 217.650185][ C0] ? watchdog_timer_fn+0x52f/0x590 [ 217.655307][ C0] watchdog_timer_fn+0x583/0x590 [ 217.660232][ C0] ? proc_watchdog_cpumask+0xd0/0xd0 [ 217.665503][ C0] __hrtimer_run_queues+0x403/0x840 [ 217.670706][ C0] hrtimer_interrupt+0x38c/0xda0 [ 217.675652][ C0] ? debug_smp_processor_id+0x9/0x20 [ 217.680954][ C0] smp_apic_timer_interrupt+0x109/0x280 [ 217.686488][ C0] apic_timer_interrupt+0xf/0x20 [ 217.691413][ C0] [ 217.694346][ C0] RIP: 0010:free_thread_stack+0x177/0x590 [ 217.700052][ C0] Code: 80 3c 28 00 74 08 48 89 df e8 25 a0 69 00 48 8b 3b be fc ff ff ff e8 28 04 00 00 43 80 3c 2e 00 74 08 4c 89 e7 e8 09 a0 69 00 <49> 8b 1c 24 48 83 c3 08 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 [ 217.719761][ C0] RSP: 0018:ffffc90001e37bd0 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13 [ 217.728193][ C0] RAX: ffffffff81487433 RBX: ffff8880a7eac288 RCX: ffff88808dbc2380 [ 217.736172][ C0] RDX: 0000000000000000 RSI: 00000000fffffffc RDI: ffffea00029f2900 [ 217.744135][ C0] RBP: ffffc90001e37c08 R08: dffffc0000000000 R09: fffffbfff120248a [ 217.752250][ C0] R10: fffffbfff120248a R11: 0000000000000000 R12: ffff8880a7eac320 [ 217.760234][ C0] R13: dffffc0000000000 R14: 1ffff11014fd5864 R15: ffff888098e51828 [ 217.768222][ C0] ? mod_memcg_page_state+0x123/0x190 [ 217.773609][ C0] put_task_stack+0xa3/0x130 [ 217.778194][ C0] finish_task_switch+0x3f1/0x550 [ 217.783217][ C0] __schedule+0x9a8/0xcc0 [ 217.787542][ C0] schedule+0x181/0x210 [ 217.791689][ C0] do_nanosleep+0x1d0/0x6c0 [ 217.796193][ C0] hrtimer_nanosleep+0x3a6/0x5b0 [ 217.801122][ C0] ? trace_hrtimer_expire_exit+0x2d0/0x2d0 [ 217.806920][ C0] __x64_sys_nanosleep+0x186/0x1d0 [ 217.812065][ C0] do_syscall_64+0xf7/0x1c0 [ 217.816592][ C0] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 217.822489][ C0] RIP: 0033:0x458b20 [ 217.826379][ C0] Code: c0 5b 5d c3 66 0f 1f 44 00 00 8b 04 24 48 83 c4 18 5b 5d c3 66 0f 1f 44 00 00 83 3d 11 fe 61 00 00 75 14 b8 23 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 d4 d1 fb ff c3 48 83 ec 08 e8 ea 46 00 00 [ 217.845985][ C0] RSP: 002b:00007fffbd2816e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000023 [ 217.854426][ C0] RAX: ffffffffffffffda RBX: 000000000000f4d2 RCX: 0000000000458b20 [ 217.862392][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fffbd2816f0 [ 217.870354][ C0] RBP: 0000000000000002 R08: 0000000000000001 R09: 0000000000e74940 [ 217.878454][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 217.886451][ C0] R13: 00007fffbd281740 R14: 000000000000f4bc R15: 00007fffbd281750 [ 217.894473][ C0] irq event stamp: 155584 [ 217.898817][ C0] hardirqs last enabled at (155583): [] trace_hardirqs_on_thunk+0x1a/0x1c [ 217.909217][ C0] hardirqs last disabled at (155584): [] trace_hardirqs_off_thunk+0x1a/0x1c [ 217.919455][ C0] softirqs last enabled at (124886): [] irq_exit+0x227/0x230 [ 217.928832][ C0] softirqs last disabled at (124831): [] irq_exit+0x227/0x230 [ 217.937851][ C0] ---[ end trace c4ec818d8e99a44a ]--- [ 217.943600][ C0] ------------[ cut here ]------------ [ 217.949192][ C0] WARNING: CPU: 0 PID: 8335 at kernel/locking/mutex.c:737 mutex_unlock+0x1d/0x30 [ 217.958451][ C0] Modules linked in: [ 217.962347][ C0] CPU: 0 PID: 8335 Comm: syz-executor.0 Tainted: G W L 5.4.0-syzkaller #0 [ 217.972041][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 217.982092][ C0] RIP: 0010:mutex_unlock+0x1d/0x30 [ 217.987281][ C0] Code: ff eb 85 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 65 8b 05 c1 6c 0f 78 a9 00 ff 1f 00 75 0b 48 8b 75 08 e8 15 00 00 00 5d c3 <0f> 0b eb f1 0f 1f 44 00 00 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 [ 218.006893][ C0] RSP: 0018:ffffc90000007870 EFLAGS: 00010006 [ 218.012980][ C0] RAX: 0000000000010003 RBX: 0000000000000001 RCX: ffff88808dbc2380 [ 218.020980][ C0] RDX: 0000000000010003 RSI: 0000000000000001 RDI: ffffffff890dbe98 [ 218.028973][ C0] RBP: ffffc90000007870 R08: ffffffff816dc96a R09: fffffbfff13ca139 [ 218.037072][ C0] R10: fffffbfff13ca139 R11: 0000000000000000 R12: 0000000000000000 [ 218.045102][ C0] R13: dffffc0000000000 R14: 0000000000000000 R15: 1ffffffff130354e [ 218.053086][ C0] FS: 0000000000e74940(0000) GS:ffff8880aec00000(0000) knlGS:0000000000000000 [ 218.062009][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 218.068584][ C0] CR2: 00007f0bccd40000 CR3: 000000007f9bb000 CR4: 00000000001406f0 [ 218.076548][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 218.084507][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 218.092465][ C0] Call Trace: [ 218.095738][ C0] [ 218.098595][ C0] __crash_kexec+0x92/0xc0 [ 218.103003][ C0] ? __printk_safe_flush+0x50e/0x540 [ 218.108293][ C0] ? find_next_bit+0x10c/0x120 [ 218.113044][ C0] ? cpumask_next+0x38/0x60 [ 218.117534][ C0] ? cpumask_next+0x4a/0x60 [ 218.122025][ C0] ? printk_safe_flush_on_panic+0x1d0/0x250 [ 218.127909][ C0] panic+0x294/0x7a9 [ 218.131959][ C0] ? __warn+0x105/0x210 [ 218.136144][ C0] ? mutex_trylock+0x208/0x2c0 [ 218.140925][ C0] __warn+0x20e/0x210 [ 218.144913][ C0] ? mutex_trylock+0x208/0x2c0 [ 218.149677][ C0] report_bug+0x1b6/0x2f0 [ 218.153995][ C0] ? mutex_trylock+0x208/0x2c0 [ 218.158750][ C0] do_error_trap+0xd7/0x440 [ 218.163246][ C0] do_invalid_op+0x36/0x40 [ 218.167647][ C0] ? mutex_trylock+0x208/0x2c0 [ 218.172403][ C0] invalid_op+0x23/0x30 [ 218.176545][ C0] RIP: 0010:mutex_trylock+0x208/0x2c0 [ 218.181911][ C0] Code: 00 00 31 c9 41 b8 01 00 00 00 45 31 c9 ff 75 08 e8 ed e0 68 f9 48 83 c4 08 89 d8 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d c3 <0f> 0b e9 5d fe ff ff e8 8c e1 99 fb 85 c0 0f 84 3e fe ff ff 48 c7 [ 218.201505][ C0] RSP: 0018:ffffc90000007bd0 EFLAGS: 00010006 [ 218.207569][ C0] RAX: 0000000000010002 RBX: dffffc0000000000 RCX: ffff88808dbc2380 [ 218.215527][ C0] RDX: 0000000000010002 RSI: 0000000000000040 RDI: ffffffff890dbe98 [ 218.223503][ C0] RBP: ffffc90000007c00 R08: ffffffff838e94e4 R09: fffffbfff121a689 [ 218.231463][ C0] R10: fffffbfff121a689 R11: 0000000000000000 R12: ffff88808dbc2300 [ 218.239423][ C0] R13: dffffc0000000000 R14: ffffffff890dbe98 R15: 1ffffffff130354e [ 218.247402][ C0] ? find_next_bit+0xa4/0x120 [ 218.252101][ C0] ? __crash_kexec+0x23/0xc0 [ 218.256680][ C0] __crash_kexec+0x2f/0xc0 [ 218.261085][ C0] ? __printk_safe_flush+0x50e/0x540 [ 218.266445][ C0] ? find_next_bit+0x10c/0x120 [ 218.271197][ C0] ? cpumask_next+0x38/0x60 [ 218.275690][ C0] ? cpumask_next+0x4a/0x60 [ 218.280185][ C0] ? printk_safe_flush_on_panic+0x1d0/0x250 [ 218.286070][ C0] panic+0x294/0x7a9 [ 218.289961][ C0] ? watchdog_timer_fn+0x52f/0x590 [ 218.295085][ C0] watchdog_timer_fn+0x583/0x590 [ 218.300014][ C0] ? proc_watchdog_cpumask+0xd0/0xd0 [ 218.305290][ C0] __hrtimer_run_queues+0x403/0x840 [ 218.310490][ C0] hrtimer_interrupt+0x38c/0xda0 [ 218.315431][ C0] ? debug_smp_processor_id+0x9/0x20 [ 218.320714][ C0] smp_apic_timer_interrupt+0x109/0x280 [ 218.326251][ C0] apic_timer_interrupt+0xf/0x20 [ 218.331173][ C0] [ 218.334103][ C0] RIP: 0010:free_thread_stack+0x177/0x590 [ 218.339812][ C0] Code: 80 3c 28 00 74 08 48 89 df e8 25 a0 69 00 48 8b 3b be fc ff ff ff e8 28 04 00 00 43 80 3c 2e 00 74 08 4c 89 e7 e8 09 a0 69 00 <49> 8b 1c 24 48 83 c3 08 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 [ 218.359408][ C0] RSP: 0018:ffffc90001e37bd0 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13 [ 218.367806][ C0] RAX: ffffffff81487433 RBX: ffff8880a7eac288 RCX: ffff88808dbc2380 [ 218.375763][ C0] RDX: 0000000000000000 RSI: 00000000fffffffc RDI: ffffea00029f2900 [ 218.383723][ C0] RBP: ffffc90001e37c08 R08: dffffc0000000000 R09: fffffbfff120248a [ 218.391689][ C0] R10: fffffbfff120248a R11: 0000000000000000 R12: ffff8880a7eac320 [ 218.399651][ C0] R13: dffffc0000000000 R14: 1ffff11014fd5864 R15: ffff888098e51828 [ 218.407639][ C0] ? mod_memcg_page_state+0x123/0x190 [ 218.413019][ C0] put_task_stack+0xa3/0x130 [ 218.417607][ C0] finish_task_switch+0x3f1/0x550 [ 218.422628][ C0] __schedule+0x9a8/0xcc0 [ 218.426956][ C0] schedule+0x181/0x210 [ 218.431100][ C0] do_nanosleep+0x1d0/0x6c0 [ 218.435602][ C0] hrtimer_nanosleep+0x3a6/0x5b0 [ 218.440534][ C0] ? trace_hrtimer_expire_exit+0x2d0/0x2d0 [ 218.446330][ C0] __x64_sys_nanosleep+0x186/0x1d0 [ 218.451438][ C0] do_syscall_64+0xf7/0x1c0 [ 218.455937][ C0] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 218.461816][ C0] RIP: 0033:0x458b20 [ 218.465700][ C0] Code: c0 5b 5d c3 66 0f 1f 44 00 00 8b 04 24 48 83 c4 18 5b 5d c3 66 0f 1f 44 00 00 83 3d 11 fe 61 00 00 75 14 b8 23 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 d4 d1 fb ff c3 48 83 ec 08 e8 ea 46 00 00 [ 218.485294][ C0] RSP: 002b:00007fffbd2816e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000023 [ 218.493693][ C0] RAX: ffffffffffffffda RBX: 000000000000f4d2 RCX: 0000000000458b20 [ 218.501650][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fffbd2816f0 [ 218.509618][ C0] RBP: 0000000000000002 R08: 0000000000000001 R09: 0000000000e74940 [ 218.517576][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 218.525534][ C0] R13: 00007fffbd281740 R14: 000000000000f4bc R15: 00007fffbd281750 [ 218.533505][ C0] irq event stamp: 155584 [ 218.537838][ C0] hardirqs last enabled at (155583): [] trace_hardirqs_on_thunk+0x1a/0x1c [ 218.547972][ C0] hardirqs last disabled at (155584): [] trace_hardirqs_off_thunk+0x1a/0x1c [ 218.558198][ C0] softirqs last enabled at (124886): [] irq_exit+0x227/0x230 [ 218.567293][ C0] softirqs last disabled at (124831): [] irq_exit+0x227/0x230 [ 218.576334][ C0] ---[ end trace c4ec818d8e99a44b ]--- [ 218.583238][ C0] Kernel Offset: disabled [ 218.587665][ C0] Rebooting in 86400 seconds..