[ 54.756507][ T26] audit: type=1800 audit(1555030742.192:21): pid=8842 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="bootlogs" dev="sda1" ino=2419 res=0 [ 54.778860][ T26] audit: type=1800 audit(1555030742.202:22): pid=8842 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="motd" dev="sda1" ino=2447 res=0 [ 54.801282][ T26] audit: type=1800 audit(1555030742.202:23): pid=8842 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rsyslog" dev="sda1" ino=2442 res=0 [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.37' (ECDSA) to the list of known hosts. 2019/04/12 00:59:20 fuzzer started 2019/04/12 00:59:23 dialing manager at 10.128.0.26:38715 2019/04/12 00:59:23 syscalls: 2408 2019/04/12 00:59:23 code coverage: enabled 2019/04/12 00:59:23 comparison tracing: enabled 2019/04/12 00:59:23 extra coverage: extra coverage is not supported by the kernel 2019/04/12 00:59:23 setuid sandbox: enabled 2019/04/12 00:59:23 namespace sandbox: enabled 2019/04/12 00:59:23 Android sandbox: /sys/fs/selinux/policy does not exist 2019/04/12 00:59:23 fault injection: enabled 2019/04/12 00:59:23 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/04/12 00:59:23 net packet injection: enabled 2019/04/12 00:59:23 net device setup: enabled 01:00:41 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f319bc070") r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58) r2 = accept4(r1, 0x0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000480)="64f5d9f7", 0x4) r3 = syz_open_procfs(0x0, &(0x7f0000000080)='pagemap\x00') sendfile(r2, r3, 0x0, 0x10000000000443) sendmsg$xdp(r2, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) syzkaller login: [ 154.284178][ T9004] IPVS: ftp: loaded support on port[0] = 21 01:00:41 executing program 1: r0 = open(&(0x7f000000fffa)='./bus\x00', 0x141042, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x11, r0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f319bc070") mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) [ 154.363004][ T9004] chnl_net:caif_netlink_parms(): no params data found [ 154.419463][ T9004] bridge0: port 1(bridge_slave_0) entered blocking state [ 154.437778][ T9004] bridge0: port 1(bridge_slave_0) entered disabled state [ 154.457713][ T9004] device bridge_slave_0 entered promiscuous mode [ 154.467883][ T9004] bridge0: port 2(bridge_slave_1) entered blocking state [ 154.487365][ T9004] bridge0: port 2(bridge_slave_1) entered disabled state [ 154.495152][ T9004] device bridge_slave_1 entered promiscuous mode [ 154.511627][ T9004] bond0: Enslaving bond_slave_0 as an active interface with an up link 01:00:42 executing program 2: socket$inet_udplite(0x2, 0x2, 0x88) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000480)="64f5d9f7", 0x4) r2 = syz_open_procfs(0x0, &(0x7f0000000080)='pagemap\x00') sendfile(r1, r2, 0x0, 0x10000000000443) read(r1, &(0x7f00000003c0)=""/72, 0x100000104) sendmsg$xdp(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)}, 0x0) [ 154.521625][ T9004] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 154.523449][ T9007] IPVS: ftp: loaded support on port[0] = 21 [ 154.549042][ T9004] team0: Port device team_slave_0 added [ 154.564811][ T9004] team0: Port device team_slave_1 added [ 154.649950][ T9004] device hsr_slave_0 entered promiscuous mode 01:00:42 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1800008912, &(0x7f00000001c0)="0adc1f123c123f319bc070") r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x1, 0x0) write$sndseq(r1, &(0x7f00000000c0)=[{0x4, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x0, 0x0}}], 0x30) r2 = syz_open_dev$sndseq(&(0x7f0000832ff3)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r2, 0xc05c5340, &(0x7f0000dc5f98)) [ 154.757591][ T9004] device hsr_slave_1 entered promiscuous mode [ 154.803327][ T9004] bridge0: port 2(bridge_slave_1) entered blocking state [ 154.810467][ T9004] bridge0: port 2(bridge_slave_1) entered forwarding state [ 154.817837][ T9004] bridge0: port 1(bridge_slave_0) entered blocking state [ 154.824977][ T9004] bridge0: port 1(bridge_slave_0) entered forwarding state [ 154.842336][ T9009] IPVS: ftp: loaded support on port[0] = 21 [ 154.852922][ T9011] IPVS: ftp: loaded support on port[0] = 21 01:00:42 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000001c0)="0adc1f123c123f319bc070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) close(r1) [ 154.963221][ T9007] chnl_net:caif_netlink_parms(): no params data found [ 154.992139][ T9004] 8021q: adding VLAN 0 to HW filter on device bond0 [ 155.036579][ T9004] 8021q: adding VLAN 0 to HW filter on device team0 [ 155.055300][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 155.068584][ T12] bridge0: port 1(bridge_slave_0) entered disabled state 01:00:42 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e20, @local}, 0x10) connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @local}, 0x10) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000580)=0x19fc, 0x336) dup2(r0, r0) [ 155.098660][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 155.108788][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 155.165998][ T9014] IPVS: ftp: loaded support on port[0] = 21 [ 155.173455][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 155.182778][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 155.189884][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 155.199588][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 155.207863][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 155.214880][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 155.239147][ T2844] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 155.240874][ T9019] IPVS: ftp: loaded support on port[0] = 21 [ 155.262882][ T9007] bridge0: port 1(bridge_slave_0) entered blocking state [ 155.270510][ T9007] bridge0: port 1(bridge_slave_0) entered disabled state [ 155.278557][ T9007] device bridge_slave_0 entered promiscuous mode [ 155.286903][ T9007] bridge0: port 2(bridge_slave_1) entered blocking state [ 155.294175][ T9007] bridge0: port 2(bridge_slave_1) entered disabled state [ 155.302296][ T9007] device bridge_slave_1 entered promiscuous mode [ 155.317967][ T9007] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 155.329049][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 155.336979][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 155.367892][ T9007] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 155.385583][ T9007] team0: Port device team_slave_0 added [ 155.392882][ T9011] chnl_net:caif_netlink_parms(): no params data found [ 155.417720][ T9007] team0: Port device team_slave_1 added [ 155.423626][ T9009] chnl_net:caif_netlink_parms(): no params data found [ 155.433258][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 155.442248][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 155.466084][ T9011] bridge0: port 1(bridge_slave_0) entered blocking state [ 155.473568][ T9011] bridge0: port 1(bridge_slave_0) entered disabled state [ 155.481760][ T9011] device bridge_slave_0 entered promiscuous mode [ 155.489216][ T9011] bridge0: port 2(bridge_slave_1) entered blocking state [ 155.496248][ T9011] bridge0: port 2(bridge_slave_1) entered disabled state [ 155.503964][ T9011] device bridge_slave_1 entered promiscuous mode [ 155.514940][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 155.523153][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 155.532258][ T9004] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 155.596776][ T9011] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 155.609914][ T9019] chnl_net:caif_netlink_parms(): no params data found [ 155.630634][ T9011] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 155.642389][ T9009] bridge0: port 1(bridge_slave_0) entered blocking state [ 155.649695][ T9009] bridge0: port 1(bridge_slave_0) entered disabled state [ 155.657185][ T9009] device bridge_slave_0 entered promiscuous mode [ 155.666522][ T9009] bridge0: port 2(bridge_slave_1) entered blocking state [ 155.674558][ T9009] bridge0: port 2(bridge_slave_1) entered disabled state [ 155.683316][ T9009] device bridge_slave_1 entered promiscuous mode [ 155.728749][ T9007] device hsr_slave_0 entered promiscuous mode [ 155.767595][ T9007] device hsr_slave_1 entered promiscuous mode [ 155.828740][ T9009] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 155.839785][ T9009] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 155.854318][ T9011] team0: Port device team_slave_0 added [ 155.861002][ T9019] bridge0: port 1(bridge_slave_0) entered blocking state [ 155.868817][ T9019] bridge0: port 1(bridge_slave_0) entered disabled state [ 155.876266][ T9019] device bridge_slave_0 entered promiscuous mode [ 155.883478][ T9019] bridge0: port 2(bridge_slave_1) entered blocking state [ 155.890709][ T9019] bridge0: port 2(bridge_slave_1) entered disabled state [ 155.898417][ T9019] device bridge_slave_1 entered promiscuous mode [ 155.913264][ T9009] team0: Port device team_slave_0 added [ 155.921507][ T9009] team0: Port device team_slave_1 added [ 155.928067][ T9011] team0: Port device team_slave_1 added [ 155.979447][ T9011] device hsr_slave_0 entered promiscuous mode [ 156.017959][ T9011] device hsr_slave_1 entered promiscuous mode [ 156.119630][ T9009] device hsr_slave_0 entered promiscuous mode [ 156.177808][ T9009] device hsr_slave_1 entered promiscuous mode [ 156.220315][ T9019] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 156.229847][ T9019] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 156.255387][ T9014] chnl_net:caif_netlink_parms(): no params data found [ 156.269836][ T9004] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 156.296987][ T9014] bridge0: port 1(bridge_slave_0) entered blocking state [ 156.304314][ T9014] bridge0: port 1(bridge_slave_0) entered disabled state [ 156.311928][ T9014] device bridge_slave_0 entered promiscuous mode [ 156.324827][ T9019] team0: Port device team_slave_0 added [ 156.331873][ T9019] team0: Port device team_slave_1 added [ 156.339465][ T9014] bridge0: port 2(bridge_slave_1) entered blocking state [ 156.346510][ T9014] bridge0: port 2(bridge_slave_1) entered disabled state [ 156.354222][ T9014] device bridge_slave_1 entered promiscuous mode [ 156.409524][ T9019] device hsr_slave_0 entered promiscuous mode [ 156.467736][ T9019] device hsr_slave_1 entered promiscuous mode [ 156.544884][ T9019] bridge0: port 2(bridge_slave_1) entered blocking state [ 156.552004][ T9019] bridge0: port 2(bridge_slave_1) entered forwarding state [ 156.559313][ T9019] bridge0: port 1(bridge_slave_0) entered blocking state [ 156.566372][ T9019] bridge0: port 1(bridge_slave_0) entered forwarding state [ 156.576814][ T9014] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 156.588885][ T9014] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 156.599561][ T9011] bridge0: port 2(bridge_slave_1) entered blocking state [ 156.606609][ T9011] bridge0: port 2(bridge_slave_1) entered forwarding state [ 156.613912][ T9011] bridge0: port 1(bridge_slave_0) entered blocking state [ 156.621144][ T9011] bridge0: port 1(bridge_slave_0) entered forwarding state [ 156.629964][ T3481] bridge0: port 1(bridge_slave_0) entered disabled state [ 156.637655][ T3481] bridge0: port 2(bridge_slave_1) entered disabled state [ 156.646307][ T3481] bridge0: port 1(bridge_slave_0) entered disabled state [ 156.654050][ T3481] bridge0: port 2(bridge_slave_1) entered disabled state [ 156.703515][ T9014] team0: Port device team_slave_0 added [ 156.712581][ T9014] team0: Port device team_slave_1 added [ 156.770430][ T9014] device hsr_slave_0 entered promiscuous mode [ 156.797595][ T9014] device hsr_slave_1 entered promiscuous mode [ 156.867992][ T9007] 8021q: adding VLAN 0 to HW filter on device bond0 [ 156.889942][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 156.899535][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 156.910778][ T9007] 8021q: adding VLAN 0 to HW filter on device team0 [ 156.921396][ T9019] 8021q: adding VLAN 0 to HW filter on device bond0 [ 156.934066][ T9011] 8021q: adding VLAN 0 to HW filter on device bond0 [ 156.949065][ T9009] 8021q: adding VLAN 0 to HW filter on device bond0 [ 156.967218][ T9007] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 156.978060][ T9007] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 156.994476][ T9019] 8021q: adding VLAN 0 to HW filter on device team0 [ 157.003061][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 157.012920][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 157.021420][ T9015] bridge0: port 1(bridge_slave_0) entered blocking state [ 157.028469][ T9015] bridge0: port 1(bridge_slave_0) entered forwarding state [ 157.036053][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 157.045040][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 157.053397][ T9015] bridge0: port 2(bridge_slave_1) entered blocking state [ 157.060488][ T9015] bridge0: port 2(bridge_slave_1) entered forwarding state [ 157.068039][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 157.076416][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 157.085022][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 157.093434][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 157.101690][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 157.110042][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 157.118383][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 157.126510][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 157.134666][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 157.142782][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 157.150980][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 157.158571][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 157.166411][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 157.174304][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 157.181955][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 157.192769][ T9011] 8021q: adding VLAN 0 to HW filter on device team0 [ 157.216360][ T9019] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 157.228367][ T9019] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 157.243848][ T9007] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 157.252496][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 157.260851][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 157.268676][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 157.279974][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 157.288649][ T9015] bridge0: port 1(bridge_slave_0) entered blocking state [ 157.295814][ T9015] bridge0: port 1(bridge_slave_0) entered forwarding state [ 157.303867][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 157.312461][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 157.320949][ T9015] bridge0: port 2(bridge_slave_1) entered blocking state [ 157.328215][ T9015] bridge0: port 2(bridge_slave_1) entered forwarding state [ 157.335683][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 157.344176][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 157.352744][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 157.361188][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 157.369492][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 157.377956][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 157.386236][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 157.394521][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 157.402684][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 157.410923][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 157.419346][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 157.426964][ T9015] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 157.442940][ T9014] 8021q: adding VLAN 0 to HW filter on device bond0 [ 157.450493][ T2844] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 157.459046][ T2844] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 157.477565][ T9011] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 157.489120][ T9011] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 157.502094][ T9009] 8021q: adding VLAN 0 to HW filter on device team0 [ 157.516888][ T9014] 8021q: adding VLAN 0 to HW filter on device team0 [ 157.525728][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 157.535167][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 157.543797][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 157.550884][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 157.558683][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 157.567099][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 157.575479][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 157.582547][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 157.590205][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 157.598689][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 157.606991][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 157.615405][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 157.624098][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 157.632544][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 157.640940][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 157.649163][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 157.657642][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 157.665784][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 157.674005][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 157.681747][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 157.689946][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 157.700279][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 157.712622][ T9011] 8021q: adding VLAN 0 to HW filter on device batadv0 01:00:45 executing program 0: perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xee6a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) sendto$inet6(r0, 0x0, 0x1ab, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x0, 0x0, @loopback}, 0x1c) [ 157.742409][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 157.757001][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 157.768801][ T23] bridge0: port 1(bridge_slave_0) entered blocking state [ 157.775982][ T23] bridge0: port 1(bridge_slave_0) entered forwarding state [ 157.797529][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 157.806712][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 157.815509][ T23] bridge0: port 2(bridge_slave_1) entered blocking state [ 157.822713][ T23] bridge0: port 2(bridge_slave_1) entered forwarding state [ 157.830600][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 157.839298][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 157.848209][ T23] bridge0: port 1(bridge_slave_0) entered blocking state [ 157.855270][ T23] bridge0: port 1(bridge_slave_0) entered forwarding state [ 157.863465][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 157.871937][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 157.880536][ T23] bridge0: port 2(bridge_slave_1) entered blocking state [ 157.887614][ T23] bridge0: port 2(bridge_slave_1) entered forwarding state [ 157.895158][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 157.903738][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 157.912435][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 157.920319][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 157.931194][ T9019] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 157.942449][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 157.953059][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 157.962162][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 157.971180][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready 01:00:45 executing program 1: r0 = getpgrp(0xffffffffffffffff) mount(0x0, 0x0, 0x0, 0x0, 0x0) prctl$PR_SET_PTRACER(0x59616d61, r0) clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x33) ptrace$cont(0x9, r1, 0x0, 0x7) ptrace$cont(0x9, r1, 0x0, 0x0) [ 158.002299][ T9014] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 158.024898][ T9014] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 158.041452][ T3481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready 01:00:45 executing program 0: r0 = syz_open_dev$sndseq(&(0x7f0000000600)='/dev/snd/seq\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$xdp(0x2c, 0x3, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000068f50)={{0x80}, 'por\xff\a\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x1f\x00\x00\xff\xff\xff\xff\xff\xff\xff\xef\x00\x00\x03\xff\x00\x00\x00\x00\x00\x00\x12\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00', 0xc3, 0x80003}) socket$nl_generic(0x10, 0x3, 0x10) setsockopt$l2tp_PPPOL2TP_SO_REORDERTO(0xffffffffffffffff, 0x111, 0x5, 0x394, 0x4) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x406, 0x0) dup2(r0, r1) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000040)={0x0, 0xec6}, &(0x7f0000000140)=0x8) close(0xffffffffffffffff) [ 158.068803][ T9043] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 158.069088][ T3481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 158.110742][ T3481] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready 01:00:45 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$inet_mtu(r0, 0x0, 0xa, &(0x7f0000000000), &(0x7f0000000040)=0x4) ioctl(r0, 0x1000008912, &(0x7f00000001c0)="0adc1f123c123f319bc070") r1 = mq_open(&(0x7f0000000080)='-$\x00', 0x0, 0x0, 0x0) mq_notify(r1, 0x0) [ 158.123238][ T3481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 158.147262][ C0] hrtimer: interrupt took 29217 ns [ 158.155452][ T3481] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 158.164353][ T3481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 158.172827][ T3481] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 158.181629][ T3481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 158.190240][ T3481] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 158.198761][ T3481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 158.207723][ T3481] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 158.218013][ T3481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 158.226170][ T3481] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 158.234959][ T3481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 158.243685][ T3481] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 158.253430][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready 01:00:45 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) sendmsg(r0, &(0x7f0000002840)={&(0x7f0000001140)=@in={0x2, 0x4e21, @remote}, 0x80, &(0x7f0000002780)=[{&(0x7f00000012c0)="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", 0x4f0}], 0x1}, 0x4000) [ 158.270137][ T9014] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 158.277699][ T3481] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 158.285352][ T3481] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready 01:00:45 executing program 5: syz_open_dev$binder(0x0, 0xffffffffffffffff, 0x802) syz_open_dev$video(0x0, 0x0, 0x0) r0 = syz_open_dev$sndseq(&(0x7f0000000600)='/dev/snd/seq\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$xdp(0x2c, 0x3, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000068f50)={{0x80}, 'por\xff\a\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x1f\x00\x00\xff\xff\xff\xff\xff\xff\xff\xef\x00\x00\x03\xff\x00\x00\x00\x00\x00\x00\x12\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00', 0xc3, 0x80003}) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)={0x14, 0x0, 0x311, 0x0, 0x0, {0x12}}, 0x14}}, 0x0) setsockopt$l2tp_PPPOL2TP_SO_REORDERTO(0xffffffffffffffff, 0x111, 0x5, 0x0, 0x4) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x0, 0x0) getsockname$tipc(r2, 0x0, &(0x7f00000002c0)) write$P9_RMKDIR(0xffffffffffffffff, 0x0, 0x0) ioctl$VIDIOC_G_AUDIO(r2, 0x80345621, &(0x7f0000000340)) r3 = dup2(r0, r2) read(r3, &(0x7f00000000c0)=""/85, 0x321) ioctl$SIOCGETNODEID(0xffffffffffffffff, 0x89e1, 0x0) write$P9_RWRITE(r2, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r2, 0x84, 0x71, &(0x7f0000000040)={0x0, 0xec6}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r2, 0x84, 0x10, &(0x7f0000000180)=@assoc_value={r4}, &(0x7f00000001c0)=0x8) close(0xffffffffffffffff) [ 158.330247][ T9009] 8021q: adding VLAN 0 to HW filter on device batadv0 01:00:45 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000001c0)="0adc1f123c123f319bc070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) close(r1) 01:00:45 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000001c0)="0adc1f123c123f319bc070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) close(r1) 01:00:46 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000001c0)="0adc1f123c123f319bc070") r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sequencer\x00', 0x20102, 0x0) write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff]}, 0x45c) [ 318.817541][ T1043] INFO: task syz-executor.3:9058 blocked for more than 143 seconds. [ 318.825725][ T1043] Not tainted 5.1.0-rc4-next-20190411 #23 [ 318.832245][ T1043] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 318.841083][ T1043] syz-executor.3 D29480 9058 9011 0x00000004 [ 318.847620][ T1043] Call Trace: [ 318.851035][ T1043] __schedule+0x817/0x1cc0 [ 318.855445][ T1043] ? __sched_text_start+0x8/0x8 [ 318.860343][ T1043] ? __mutex_lock+0x527/0x1310 [ 318.865099][ T1043] schedule+0x92/0x180 [ 318.869631][ T1043] schedule_preempt_disabled+0x13/0x20 [ 318.875254][ T1043] __mutex_lock+0x726/0x1310 [ 318.880263][ T1043] ? odev_open+0x5f/0x90 [ 318.884520][ T1043] ? mutex_trylock+0x1e0/0x1e0 [ 318.889480][ T1043] ? mark_held_locks+0xf0/0xf0 [ 318.894419][ T1043] ? kasan_check_write+0x14/0x20 [ 318.899547][ T1043] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 318.905235][ T1043] ? lock_downgrade+0x880/0x880 [ 318.910215][ T1043] ? soundcore_open+0xa8/0x610 [ 318.915156][ T1043] mutex_lock_nested+0x16/0x20 [ 318.919948][ T1043] ? mutex_lock_nested+0x16/0x20 [ 318.925003][ T1043] odev_open+0x5f/0x90 [ 318.929127][ T1043] ? odev_release+0x80/0x80 [ 318.933918][ T1043] soundcore_open+0x456/0x610 [ 318.938688][ T1043] ? sound_devnode+0x100/0x100 [ 318.943506][ T1043] chrdev_open+0x247/0x6b0 [ 318.948070][ T1043] ? cdev_put.part.0+0x50/0x50 [ 318.952884][ T1043] ? security_file_open+0x8d/0x300 [ 318.958072][ T1043] do_dentry_open+0x4e2/0x1250 [ 318.962872][ T1043] ? match_exception_partial+0x242/0x2d0 [ 318.968845][ T1043] ? cdev_put.part.0+0x50/0x50 [ 318.973718][ T1043] ? chown_common+0x5c0/0x5c0 [ 318.978710][ T1043] ? inode_permission+0xb4/0x570 [ 318.983898][ T1043] vfs_open+0xa0/0xd0 [ 318.987931][ T1043] path_openat+0x10e9/0x46e0 [ 318.993201][ T1043] ? save_stack+0x45/0xd0 [ 318.997694][ T1043] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 319.003859][ T1043] ? kasan_slab_alloc+0xf/0x20 [ 319.009266][ T1043] ? kmem_cache_alloc+0x11a/0x6f0 [ 319.014385][ T1043] ? getname_flags+0xd6/0x5b0 [ 319.019100][ T1043] ? getname+0x1a/0x20 [ 319.023389][ T1043] ? path_lookupat.isra.0+0x8d0/0x8d0 [ 319.028803][ T1043] ? mark_held_locks+0xf0/0xf0 [ 319.033578][ T1043] ? mark_held_locks+0xf0/0xf0 [ 319.038510][ T1043] do_filp_open+0x1a1/0x280 [ 319.043230][ T1043] ? may_open_dev+0x100/0x100 [ 319.047973][ T1043] ? kasan_check_read+0x11/0x20 [ 319.053220][ T1043] ? do_raw_spin_unlock+0x57/0x270 [ 319.058444][ T1043] do_sys_open+0x3fe/0x5d0 [ 319.062870][ T1043] ? filp_open+0x80/0x80 [ 319.067164][ T1043] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 319.073486][ T1043] ? __x64_sys_clock_gettime+0x172/0x250 [ 319.079250][ T1043] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 319.085300][ T1043] __x64_sys_openat+0x9d/0x100 [ 319.090185][ T1043] do_syscall_64+0x103/0x610 [ 319.094805][ T1043] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 319.100984][ T1043] RIP: 0033:0x458c29 [ 319.104875][ T1043] Code: cc 64 48 8b 0c 25 f8 ff ff ff 48 3b 61 10 0f 86 df 00 00 00 48 83 ec 30 48 89 6c 24 28 48 8d 6c 24 28 48 8b 42 08 48 8b 48 70 <48> 89 4c 24 20 48 8b 10 48 89 54 24 18 48 8b 40 08 48 89 44 24 10 [ 319.125022][ T1043] RSP: 002b:00007f05e15a6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 319.133493][ T1043] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000458c29 [ 319.141973][ T1043] RDX: 0000000000000001 RSI: 0000000020000040 RDI: ffffffffffffff9c [ 319.150011][ T1043] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 319.158154][ T1043] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f05e15a76d4 [ 319.166125][ T1043] R13: 00000000004c5086 R14: 00000000004d8d88 R15: 00000000ffffffff [ 319.174161][ T1043] INFO: task syz-executor.3:9062 blocked for more than 143 seconds. [ 319.182319][ T1043] Not tainted 5.1.0-rc4-next-20190411 #23 [ 319.188695][ T1043] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 319.197458][ T1043] syz-executor.3 D29064 9062 9011 0x00000004 [ 319.205019][ T1043] Call Trace: [ 319.208373][ T1043] __schedule+0x817/0x1cc0 [ 319.213032][ T1043] ? __sched_text_start+0x8/0x8 [ 319.217965][ T1043] ? __mutex_lock+0x527/0x1310 [ 319.223001][ T1043] schedule+0x92/0x180 [ 319.227330][ T1043] schedule_preempt_disabled+0x13/0x20 [ 319.232926][ T1043] __mutex_lock+0x726/0x1310 [ 319.237698][ T1043] ? odev_open+0x5f/0x90 [ 319.242042][ T1043] ? mutex_trylock+0x1e0/0x1e0 [ 319.246817][ T1043] ? mark_held_locks+0xf0/0xf0 [ 319.251796][ T1043] ? lock_downgrade+0x880/0x880 [ 319.256742][ T1043] ? soundcore_open+0xa8/0x610 [ 319.261609][ T1043] mutex_lock_nested+0x16/0x20 [ 319.266386][ T1043] ? mutex_lock_nested+0x16/0x20 [ 319.271778][ T1043] odev_open+0x5f/0x90 [ 319.275859][ T1043] ? odev_release+0x80/0x80 [ 319.280623][ T1043] soundcore_open+0x456/0x610 [ 319.285973][ T1043] ? sound_devnode+0x100/0x100 [ 319.291388][ T1043] chrdev_open+0x247/0x6b0 [ 319.295807][ T1043] ? cdev_put.part.0+0x50/0x50 [ 319.300624][ T1043] ? security_file_open+0x8d/0x300 [ 319.305835][ T1043] do_dentry_open+0x4e2/0x1250 [ 319.310668][ T1043] ? match_exception_partial+0x242/0x2d0 [ 319.316649][ T1043] ? cdev_put.part.0+0x50/0x50 [ 319.321630][ T1043] ? chown_common+0x5c0/0x5c0 [ 319.326321][ T1043] ? inode_permission+0xb4/0x570 [ 319.331319][ T1043] vfs_open+0xa0/0xd0 [ 319.335406][ T1043] path_openat+0x10e9/0x46e0 [ 319.340041][ T1043] ? save_stack+0x45/0xd0 [ 319.344470][ T1043] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 319.350416][ T1043] ? kasan_slab_alloc+0xf/0x20 [ 319.355170][ T1043] ? kmem_cache_alloc+0x11a/0x6f0 [ 319.360221][ T1043] ? getname_flags+0xd6/0x5b0 [ 319.364898][ T1043] ? getname+0x1a/0x20 [ 319.369000][ T1043] ? path_lookupat.isra.0+0x8d0/0x8d0 [ 319.374617][ T1043] ? mark_held_locks+0xf0/0xf0 [ 319.379732][ T1043] do_filp_open+0x1a1/0x280 [ 319.384958][ T1043] ? may_open_dev+0x100/0x100 [ 319.389722][ T1043] ? kasan_check_read+0x11/0x20 [ 319.394630][ T1043] ? do_raw_spin_unlock+0x57/0x270 [ 319.400058][ T1043] do_sys_open+0x3fe/0x5d0 [ 319.404878][ T1043] ? filp_open+0x80/0x80 [ 319.409216][ T1043] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 319.415471][ T1043] ? __x64_sys_clock_gettime+0x172/0x250 [ 319.421324][ T1043] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 319.427442][ T1043] __x64_sys_openat+0x9d/0x100 [ 319.432206][ T1043] do_syscall_64+0x103/0x610 [ 319.436895][ T1043] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 319.442866][ T1043] RIP: 0033:0x458c29 [ 319.446755][ T1043] Code: cc 64 48 8b 0c 25 f8 ff ff ff 48 3b 61 10 0f 86 df 00 00 00 48 83 ec 30 48 89 6c 24 28 48 8d 6c 24 28 48 8b 42 08 48 8b 48 70 <48> 89 4c 24 20 48 8b 10 48 89 54 24 18 48 8b 40 08 48 89 44 24 10 [ 319.466723][ T1043] RSP: 002b:00007f05e1585c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 319.475275][ T1043] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000458c29 [ 319.483308][ T1043] RDX: 0000000000000001 RSI: 0000000020000040 RDI: ffffffffffffff9c [ 319.491628][ T1043] RBP: 000000000073c040 R08: 0000000000000000 R09: 0000000000000000 [ 319.499695][ T1043] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f05e15866d4 [ 319.507696][ T1043] R13: 00000000004c5086 R14: 00000000004d8d88 R15: 00000000ffffffff [ 319.515838][ T1043] INFO: task syz-executor.0:9055 blocked for more than 144 seconds. [ 319.523931][ T1043] Not tainted 5.1.0-rc4-next-20190411 #23 [ 319.530359][ T1043] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 319.539259][ T1043] syz-executor.0 D28120 9055 9004 0x00000004 [ 319.545598][ T1043] Call Trace: [ 319.549070][ T1043] __schedule+0x817/0x1cc0 [ 319.553584][ T1043] ? retint_kernel+0x2d/0x2d [ 319.558231][ T1043] ? __sched_text_start+0x8/0x8 [ 319.563269][ T1043] ? __mutex_lock+0x527/0x1310 [ 319.568109][ T1043] schedule+0x92/0x180 [ 319.572189][ T1043] schedule_preempt_disabled+0x13/0x20 [ 319.577776][ T1043] __mutex_lock+0x726/0x1310 [ 319.582511][ T1043] ? snd_seq_kernel_client_ctl+0xe5/0x170 [ 319.588373][ T1043] ? mutex_trylock+0x1e0/0x1e0 [ 319.593235][ T1043] ? odev_release+0x54/0x80 [ 319.597916][ T1043] ? __fput+0x2e5/0x8d0 [ 319.602070][ T1043] ? ____fput+0x16/0x20 [ 319.606290][ T1043] ? exit_to_usermode_loop+0x273/0x2c0 [ 319.611896][ T1043] ? do_syscall_64+0x52d/0x610 [ 319.616722][ T1043] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 319.623211][ T1043] ? lock_acquire+0x16f/0x3f0 [ 319.627971][ T1043] ? retint_kernel+0x2d/0x2d [ 319.632610][ T1043] ? trace_hardirqs_on_caller+0x6a/0x220 [ 319.638298][ T1043] mutex_lock_nested+0x16/0x20 [ 319.643180][ T1043] ? mutex_lock_nested+0x16/0x20 [ 319.648150][ T1043] snd_seq_kernel_client_ctl+0xe5/0x170 [ 319.654958][ T1043] snd_seq_oss_writeq_clear+0xe0/0x140 [ 319.673660][ T1043] ? snd_seq_oss_writeq_wakeup+0xc0/0xc0 [ 319.679377][ T1043] ? kfree+0x186/0x230 [ 319.683526][ T1043] ? create_port+0x250/0x250 [ 319.688430][ T1043] snd_seq_oss_writeq_delete+0x20/0x40 [ 319.694931][ T1043] free_devinfo+0x66/0xc0 [ 319.699652][ T1043] port_delete+0xe8/0x1c0 [ 319.704195][ T1043] snd_seq_delete_port+0x266/0x330 [ 319.709379][ T1043] snd_seq_ioctl_delete_port+0xba/0x190 [ 319.714937][ T1043] snd_seq_kernel_client_ctl+0x112/0x170 [ 319.720731][ T1043] ? snd_seq_info_done+0x30/0x30 [ 319.725798][ T1043] snd_seq_event_port_detach+0xba/0x100 [ 319.731412][ T1043] ? snd_seq_event_port_attach+0x220/0x220 [ 319.737534][ T1043] ? kasan_check_write+0x14/0x20 [ 319.742500][ T1043] ? kfree+0x1bf/0x230 [ 319.746658][ T1043] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 319.752810][ T1043] delete_port+0x87/0xd0 [ 319.757489][ T1043] snd_seq_oss_release+0xf5/0x150 [ 319.763636][ T1043] odev_release+0x54/0x80 [ 319.768391][ T1043] __fput+0x2e5/0x8d0 [ 319.772694][ T1043] ____fput+0x16/0x20 [ 319.776747][ T1043] task_work_run+0x14a/0x1c0 [ 319.781832][ T1043] exit_to_usermode_loop+0x273/0x2c0 [ 319.787133][ T1043] do_syscall_64+0x52d/0x610 [ 319.791770][ T1043] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 319.798039][ T1043] RIP: 0033:0x458c29 [ 319.801936][ T1043] Code: cc 64 48 8b 0c 25 f8 ff ff ff 48 3b 61 10 0f 86 df 00 00 00 48 83 ec 30 48 89 6c 24 28 48 8d 6c 24 28 48 8b 42 08 48 8b 48 70 <48> 89 4c 24 20 48 8b 10 48 89 54 24 18 48 8b 40 08 48 89 44 24 10 [ 319.821660][ T1043] RSP: 002b:00007f47e154ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000021 [ 319.830211][ T1043] RAX: 0000000000000007 RBX: 0000000000000002 RCX: 0000000000458c29 [ 319.838748][ T1043] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000003 [ 319.846847][ T1043] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 319.855078][ T1043] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f47e154f6d4 [ 319.863110][ T1043] R13: 00000000004bf189 R14: 00000000004d00d0 R15: 00000000ffffffff [ 319.871577][ T1043] INFO: task syz-executor.0:9060 blocked for more than 144 seconds. [ 319.882068][ T1043] Not tainted 5.1.0-rc4-next-20190411 #23 [ 319.888590][ T1043] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 319.897804][ T1043] syz-executor.0 D28192 9060 9004 0x00000004 [ 319.904273][ T1043] Call Trace: [ 319.907880][ T1043] __schedule+0x817/0x1cc0 [ 319.914971][ T1043] ? __sched_text_start+0x8/0x8 [ 319.921075][ T1043] schedule+0x92/0x180 [ 319.925566][ T1043] schedule_preempt_disabled+0x13/0x20 [ 319.932445][ T1043] __mutex_lock+0x726/0x1310 [ 319.937709][ T1043] ? snd_seq_kernel_client_ctl+0xe5/0x170 [ 319.943828][ T1043] ? mutex_trylock+0x1e0/0x1e0 [ 319.948945][ T1043] ? mark_held_locks+0xf0/0xf0 [ 319.954119][ T1043] mutex_lock_nested+0x16/0x20 [ 319.959990][ T1043] ? mutex_lock_nested+0x16/0x20 [ 319.965656][ T1043] snd_seq_kernel_client_ctl+0xe5/0x170 [ 319.971427][ T1043] receive_announce.part.0+0x180/0x1d0 [ 319.977176][ T1043] ? alloc_seq_queue.isra.0+0x180/0x180 [ 319.984477][ T1043] ? mark_held_locks+0xf0/0xf0 [ 319.989539][ T1043] ? unwind_get_return_address+0x61/0xa0 [ 319.995247][ T1043] ? kasan_check_write+0x14/0x20 [ 320.000275][ T1043] ? do_raw_read_unlock+0x3f/0x70 [ 320.005756][ T1043] ? receive_announce.part.0+0x1d0/0x1d0 [ 320.011764][ T1043] receive_announce+0x124/0x150 [ 320.017136][ T1043] snd_seq_deliver_single_event.constprop.0+0x706/0x870 [ 320.024355][ T1043] ? snd_seq_ioctl_running_mode+0x190/0x190 [ 320.030696][ T1043] ? snd_seq_deliver_event+0x2b0/0x8e0 [ 320.036327][ T1043] snd_seq_deliver_event+0x341/0x8e0 [ 320.041825][ T1043] ? snd_seq_deliver_single_event.constprop.0+0x870/0x870 [ 320.049526][ T1043] ? preempt_count_sub+0x18/0x160 [ 320.054824][ T1043] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 320.062171][ T1043] ? snd_seq_client_use_ptr+0xa6/0x3f0 [ 320.067932][ T1043] snd_seq_kernel_client_dispatch+0x155/0x190 [ 320.074503][ T1043] snd_seq_system_broadcast+0xde/0x130 [ 320.080412][ T1043] ? event_input_timer+0x30/0x30 [ 320.085966][ T1043] ? strlcpy+0x40/0x80 [ 320.090168][ T1043] snd_seq_ioctl_create_port+0x4c8/0x6d0 [ 320.096009][ T1043] snd_seq_ioctl+0x224/0x3e0 [ 320.100769][ T1043] ? snd_seq_open+0x5a0/0x5a0 [ 320.106310][ T1043] ? snd_seq_open+0x5a0/0x5a0 [ 320.111705][ T1043] do_vfs_ioctl+0xd6e/0x1390 [ 320.116495][ T1043] ? ioctl_preallocate+0x210/0x210 [ 320.121872][ T1043] ? retint_kernel+0x2d/0x2d [ 320.126596][ T1043] ? tomoyo_file_ioctl+0x23/0x30 [ 320.132237][ T1043] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 320.138673][ T1043] ? security_file_ioctl+0x93/0xc0 [ 320.144151][ T1043] ksys_ioctl+0xab/0xd0 [ 320.148858][ T1043] __x64_sys_ioctl+0x73/0xb0 [ 320.153477][ T1043] do_syscall_64+0x103/0x610 [ 320.158328][ T1043] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 320.164595][ T1043] RIP: 0033:0x458c29 [ 320.168972][ T1043] Code: cc 64 48 8b 0c 25 f8 ff ff ff 48 3b 61 10 0f 86 df 00 00 00 48 83 ec 30 48 89 6c 24 28 48 8d 6c 24 28 48 8b 42 08 48 8b 48 70 <48> 89 4c 24 20 48 8b 10 48 89 54 24 18 48 8b 40 08 48 89 44 24 10 [ 320.191230][ T1043] RSP: 002b:00007f47e152dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 320.200403][ T1043] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458c29 [ 320.208667][ T1043] RDX: 0000000020068f50 RSI: 00000000c0a85320 RDI: 0000000000000003 [ 320.216813][ T1043] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 320.225312][ T1043] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f47e152e6d4 [ 320.235023][ T1043] R13: 00000000004cbd00 R14: 00000000004d57a0 R15: 00000000ffffffff [ 320.244298][ T1043] INFO: task syz-executor.0:9087 blocked for more than 144 seconds. [ 320.253622][ T1043] Not tainted 5.1.0-rc4-next-20190411 #23 [ 320.260382][ T1043] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 320.270470][ T1043] syz-executor.0 D29480 9087 9004 0x00000004 [ 320.278480][ T1043] Call Trace: [ 320.281771][ T1043] __schedule+0x817/0x1cc0 [ 320.286387][ T1043] ? __sched_text_start+0x8/0x8 [ 320.291487][ T1043] ? __mutex_lock+0x527/0x1310 [ 320.296422][ T1043] schedule+0x92/0x180 [ 320.300814][ T1043] schedule_preempt_disabled+0x13/0x20 [ 320.306817][ T1043] __mutex_lock+0x726/0x1310 [ 320.313131][ T1043] ? odev_open+0x5f/0x90 [ 320.318308][ T1043] ? mutex_trylock+0x1e0/0x1e0 [ 320.323270][ T1043] ? mark_held_locks+0xf0/0xf0 [ 320.328250][ T1043] ? lock_downgrade+0x880/0x880 [ 320.333123][ T1043] ? soundcore_open+0xa8/0x610 [ 320.338566][ T1043] mutex_lock_nested+0x16/0x20 [ 320.343782][ T1043] ? mutex_lock_nested+0x16/0x20 [ 320.348978][ T1043] odev_open+0x5f/0x90 [ 320.353268][ T1043] ? odev_release+0x80/0x80 [ 320.358260][ T1043] soundcore_open+0x456/0x610 [ 320.363510][ T1043] ? sound_devnode+0x100/0x100 [ 320.368908][ T1043] chrdev_open+0x247/0x6b0 [ 320.374200][ T1043] ? cdev_put.part.0+0x50/0x50 [ 320.379217][ T1043] ? security_file_open+0x8d/0x300 [ 320.384929][ T1043] do_dentry_open+0x4e2/0x1250 [ 320.390137][ T1043] ? match_exception_partial+0x242/0x2d0 [ 320.396330][ T1043] ? cdev_put.part.0+0x50/0x50 [ 320.401892][ T1043] ? chown_common+0x5c0/0x5c0 [ 320.406733][ T1043] ? inode_permission+0xb4/0x570 [ 320.412357][ T1043] vfs_open+0xa0/0xd0 [ 320.416354][ T1043] path_openat+0x10e9/0x46e0 [ 320.421222][ T1043] ? save_stack+0x45/0xd0 [ 320.425863][ T1043] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 320.431946][ T1043] ? kasan_slab_alloc+0xf/0x20 [ 320.437116][ T1043] ? kmem_cache_alloc+0x11a/0x6f0 [ 320.443346][ T1043] ? getname_flags+0xd6/0x5b0 [ 320.448417][ T1043] ? getname+0x1a/0x20 [ 320.452705][ T1043] ? path_lookupat.isra.0+0x8d0/0x8d0 [ 320.458406][ T1043] ? mark_held_locks+0xf0/0xf0 [ 320.463486][ T1043] ? mark_held_locks+0xf0/0xf0 [ 320.468337][ T1043] do_filp_open+0x1a1/0x280 [ 320.472845][ T1043] ? may_open_dev+0x100/0x100 [ 320.478437][ T1043] ? kasan_check_read+0x11/0x20 [ 320.483869][ T1043] ? do_raw_spin_unlock+0x57/0x270 [ 320.489107][ T1043] do_sys_open+0x3fe/0x5d0 [ 320.494285][ T1043] ? filp_open+0x80/0x80 [ 320.498935][ T1043] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 320.505469][ T1043] ? __x64_sys_clock_gettime+0x172/0x250 [ 320.511770][ T1043] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 320.517934][ T1043] __x64_sys_openat+0x9d/0x100 [ 320.523173][ T1043] do_syscall_64+0x103/0x610 [ 320.527939][ T1043] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 320.535250][ T1043] RIP: 0033:0x458c29 [ 320.539525][ T1043] Code: cc 64 48 8b 0c 25 f8 ff ff ff 48 3b 61 10 0f 86 df 00 00 00 48 83 ec 30 48 89 6c 24 28 48 8d 6c 24 28 48 8b 42 08 48 8b 48 70 <48> 89 4c 24 20 48 8b 10 48 89 54 24 18 48 8b 40 08 48 89 44 24 10 [ 320.561579][ T1043] RSP: 002b:00007f47e14ebc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 320.570100][ T1043] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000458c29 [ 320.579595][ T1043] RDX: 0000000000000406 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 320.588150][ T1043] RBP: 000000000073c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 320.596391][ T1043] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f47e14ec6d4 [ 320.604584][ T1043] R13: 00000000004c5097 R14: 00000000004d8da0 R15: 00000000ffffffff [ 320.612721][ T1043] INFO: task syz-executor.5:9075 blocked for more than 145 seconds. [ 320.620792][ T1043] Not tainted 5.1.0-rc4-next-20190411 #23 [ 320.629079][ T1043] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 320.638109][ T1043] syz-executor.5 D28704 9075 9019 0x00000004 [ 320.645014][ T1043] Call Trace: [ 320.648399][ T1043] __schedule+0x817/0x1cc0 [ 320.653328][ T1043] ? __sched_text_start+0x8/0x8 [ 320.659381][ T1043] ? __mutex_lock+0x527/0x1310 [ 320.664276][ T1043] schedule+0x92/0x180 [ 320.668837][ T1043] schedule_preempt_disabled+0x13/0x20 [ 320.674704][ T1043] __mutex_lock+0x726/0x1310 [ 320.679586][ T1043] ? odev_open+0x5f/0x90 [ 320.684167][ T1043] ? mutex_trylock+0x1e0/0x1e0 [ 320.689337][ T1043] ? mark_held_locks+0xf0/0xf0 [ 320.695166][ T1043] ? retint_kernel+0x2d/0x2d [ 320.701123][ T1043] ? trace_hardirqs_on_caller+0x6a/0x220 [ 320.707241][ T1043] ? lock_downgrade+0x880/0x880 [ 320.714766][ T1043] ? soundcore_open+0xa8/0x610 [ 320.719682][ T1043] mutex_lock_nested+0x16/0x20 [ 320.725229][ T1043] ? mutex_lock_nested+0x16/0x20 [ 320.732670][ T1043] odev_open+0x5f/0x90 [ 320.737161][ T1043] ? odev_release+0x80/0x80 [ 320.741804][ T1043] soundcore_open+0x456/0x610 [ 320.747674][ T1043] ? sound_devnode+0x100/0x100 [ 320.752857][ T1043] chrdev_open+0x247/0x6b0 [ 320.757381][ T1043] ? cdev_put.part.0+0x50/0x50 [ 320.762936][ T1043] ? security_file_open+0x8d/0x300 [ 320.768431][ T1043] do_dentry_open+0x4e2/0x1250 [ 320.773603][ T1043] ? match_exception_partial+0x242/0x2d0 [ 320.779553][ T1043] ? cdev_put.part.0+0x50/0x50 [ 320.784479][ T1043] ? chown_common+0x5c0/0x5c0 [ 320.789611][ T1043] ? inode_permission+0xb4/0x570 [ 320.794589][ T1043] vfs_open+0xa0/0xd0 [ 320.799953][ T1043] path_openat+0x10e9/0x46e0 [ 320.806697][ T1043] ? save_stack+0x45/0xd0 [ 320.811257][ T1043] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 320.817247][ T1043] ? kasan_slab_alloc+0xf/0x20 [ 320.822105][ T1043] ? kmem_cache_alloc+0x11a/0x6f0 [ 320.828315][ T1043] ? getname_flags+0xd6/0x5b0 [ 320.834979][ T1043] ? getname+0x1a/0x20 [ 320.839561][ T1043] ? path_lookupat.isra.0+0x8d0/0x8d0 [ 320.845565][ T1043] ? mark_held_locks+0xf0/0xf0 [ 320.850764][ T1043] ? retint_kernel+0x2d/0x2d [ 320.855843][ T1043] do_filp_open+0x1a1/0x280 [ 320.860683][ T1043] ? may_open_dev+0x100/0x100 [ 320.865562][ T1043] ? kasan_check_read+0x11/0x20 [ 320.870510][ T1043] ? do_raw_spin_unlock+0x57/0x270 [ 320.875876][ T1043] do_sys_open+0x3fe/0x5d0 [ 320.880407][ T1043] ? filp_open+0x80/0x80 [ 320.885124][ T1043] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 320.892372][ T1043] ? __x64_sys_clock_gettime+0x172/0x250 [ 320.898494][ T1043] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 320.904875][ T1043] __x64_sys_openat+0x9d/0x100 [ 320.910291][ T1043] do_syscall_64+0x103/0x610 [ 320.915138][ T1043] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 320.921642][ T1043] RIP: 0033:0x458c29 [ 320.925849][ T1043] Code: cc 64 48 8b 0c 25 f8 ff ff ff 48 3b 61 10 0f 86 df 00 00 00 48 83 ec 30 48 89 6c 24 28 48 8d 6c 24 28 48 8b 42 08 48 8b 48 70 <48> 89 4c 24 20 48 8b 10 48 89 54 24 18 48 8b 40 08 48 89 44 24 10 [ 320.947857][ T1043] RSP: 002b:00007fdfeb934c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 320.956798][ T1043] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000458c29 [ 320.965254][ T1043] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 320.974168][ T1043] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 320.983988][ T1043] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fdfeb9356d4 [ 320.992995][ T1043] R13: 00000000004c5097 R14: 00000000004d8da0 R15: 00000000ffffffff [ 321.001382][ T1043] INFO: task syz-executor.2:9094 blocked for more than 145 seconds. [ 321.010088][ T1043] Not tainted 5.1.0-rc4-next-20190411 #23 [ 321.016789][ T1043] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 321.025879][ T1043] syz-executor.2 D28792 9094 9009 0x00000004 [ 321.032803][ T1043] Call Trace: [ 321.036102][ T1043] __schedule+0x817/0x1cc0 [ 321.041133][ T1043] ? __sched_text_start+0x8/0x8 [ 321.046478][ T1043] ? __mutex_lock+0x527/0x1310 [ 321.052116][ T1043] schedule+0x92/0x180 [ 321.058551][ T1043] schedule_preempt_disabled+0x13/0x20 [ 321.064261][ T1043] __mutex_lock+0x726/0x1310 [ 321.069570][ T1043] ? odev_open+0x5f/0x90 [ 321.074959][ T1043] ? mutex_trylock+0x1e0/0x1e0 [ 321.079803][ T1043] ? mark_held_locks+0xf0/0xf0 [ 321.085027][ T1043] ? lock_downgrade+0x880/0x880 [ 321.090657][ T1043] ? soundcore_open+0xa8/0x610 [ 321.095469][ T1043] mutex_lock_nested+0x16/0x20 [ 321.100909][ T1043] ? mutex_lock_nested+0x16/0x20 [ 321.106593][ T1043] odev_open+0x5f/0x90 [ 321.112598][ T1043] ? odev_release+0x80/0x80 [ 321.118810][ T1043] soundcore_open+0x456/0x610 [ 321.123798][ T1043] ? sound_devnode+0x100/0x100 [ 321.128813][ T1043] chrdev_open+0x247/0x6b0 [ 321.133226][ T1043] ? cdev_put.part.0+0x50/0x50 [ 321.140606][ T1043] ? security_file_open+0x8d/0x300 [ 321.145897][ T1043] do_dentry_open+0x4e2/0x1250 [ 321.151676][ T1043] ? match_exception_partial+0x242/0x2d0 [ 321.157691][ T1043] ? cdev_put.part.0+0x50/0x50 [ 321.163066][ T1043] ? chown_common+0x5c0/0x5c0 [ 321.168956][ T1043] ? inode_permission+0xb4/0x570 [ 321.173901][ T1043] vfs_open+0xa0/0xd0 [ 321.178201][ T1043] path_openat+0x10e9/0x46e0 [ 321.183653][ T1043] ? save_stack+0x45/0xd0 [ 321.188608][ T1043] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 321.195954][ T1043] ? kasan_slab_alloc+0xf/0x20 [ 321.202998][ T1043] ? kmem_cache_alloc+0x11a/0x6f0 [ 321.209024][ T1043] ? getname_flags+0xd6/0x5b0 [ 321.216566][ T1043] ? getname+0x1a/0x20 [ 321.221151][ T1043] ? path_lookupat.isra.0+0x8d0/0x8d0 [ 321.226740][ T1043] ? mark_held_locks+0xf0/0xf0 [ 321.232584][ T1043] do_filp_open+0x1a1/0x280 [ 321.237317][ T1043] ? may_open_dev+0x100/0x100 [ 321.242366][ T1043] ? kasan_check_read+0x11/0x20 [ 321.247228][ T1043] ? do_raw_spin_unlock+0x57/0x270 [ 321.254985][ T1043] do_sys_open+0x3fe/0x5d0 [ 321.260316][ T1043] ? filp_open+0x80/0x80 [ 321.265285][ T1043] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 321.273995][ T1043] ? __x64_sys_clock_gettime+0x172/0x250 [ 321.279699][ T1043] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 321.291270][ T1043] __x64_sys_openat+0x9d/0x100 [ 321.296486][ T1043] do_syscall_64+0x103/0x610 [ 321.301940][ T1043] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 321.308296][ T1043] RIP: 0033:0x458c29 [ 321.313080][ T1043] Code: cc 64 48 8b 0c 25 f8 ff ff ff 48 3b 61 10 0f 86 df 00 00 00 48 83 ec 30 48 89 6c 24 28 48 8d 6c 24 28 48 8b 42 08 48 8b 48 70 <48> 89 4c 24 20 48 8b 10 48 89 54 24 18 48 8b 40 08 48 89 44 24 10 [ 321.336185][ T1043] RSP: 002b:00007ff6d7258c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 321.345039][ T1043] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000458c29 [ 321.354875][ T1043] RDX: 0000000000020102 RSI: 0000000020000200 RDI: ffffffffffffff9c [ 321.363676][ T1043] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 321.372936][ T1043] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff6d72596d4 [ 321.380938][ T1043] R13: 00000000004c5086 R14: 00000000004d8d88 R15: 00000000ffffffff [ 321.389160][ T1043] INFO: task syz-executor.2:9096 blocked for more than 145 seconds. [ 321.397136][ T1043] Not tainted 5.1.0-rc4-next-20190411 #23 [ 321.403392][ T1043] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 321.412084][ T1043] syz-executor.2 D29480 9096 9009 0x00000004 [ 321.418463][ T1043] Call Trace: [ 321.421755][ T1043] __schedule+0x817/0x1cc0 [ 321.426148][ T1043] ? __sched_text_start+0x8/0x8 [ 321.431066][ T1043] ? __mutex_lock+0x527/0x1310 [ 321.435826][ T1043] schedule+0x92/0x180 [ 321.439915][ T1043] schedule_preempt_disabled+0x13/0x20 [ 321.445406][ T1043] __mutex_lock+0x726/0x1310 [ 321.450033][ T1043] ? odev_open+0x5f/0x90 [ 321.454277][ T1043] ? mutex_trylock+0x1e0/0x1e0 [ 321.459097][ T1043] ? mark_held_locks+0xf0/0xf0 [ 321.463964][ T1043] ? lock_downgrade+0x880/0x880 [ 321.468843][ T1043] ? soundcore_open+0xa8/0x610 [ 321.473607][ T1043] mutex_lock_nested+0x16/0x20 [ 321.478397][ T1043] ? mutex_lock_nested+0x16/0x20 [ 321.483339][ T1043] odev_open+0x5f/0x90 [ 321.487730][ T1043] ? odev_release+0x80/0x80 [ 321.492231][ T1043] soundcore_open+0x456/0x610 [ 321.496888][ T1043] ? sound_devnode+0x100/0x100 [ 321.501677][ T1043] chrdev_open+0x247/0x6b0 [ 321.506121][ T1043] ? cdev_put.part.0+0x50/0x50 [ 321.510941][ T1043] ? security_file_open+0x8d/0x300 [ 321.516159][ T1043] do_dentry_open+0x4e2/0x1250 [ 321.520965][ T1043] ? match_exception_partial+0x242/0x2d0 [ 321.526587][ T1043] ? cdev_put.part.0+0x50/0x50 [ 321.531382][ T1043] ? chown_common+0x5c0/0x5c0 [ 321.536155][ T1043] ? inode_permission+0xb4/0x570 [ 321.541213][ T1043] vfs_open+0xa0/0xd0 [ 321.545192][ T1043] path_openat+0x10e9/0x46e0 [ 321.549934][ T1043] ? save_stack+0x45/0xd0 [ 321.554256][ T1043] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 321.560083][ T1043] ? kasan_slab_alloc+0xf/0x20 [ 321.564848][ T1043] ? kmem_cache_alloc+0x11a/0x6f0 [ 321.569904][ T1043] ? getname_flags+0xd6/0x5b0 [ 321.574577][ T1043] ? getname+0x1a/0x20 [ 321.578684][ T1043] ? path_lookupat.isra.0+0x8d0/0x8d0 [ 321.584047][ T1043] ? mark_held_locks+0xf0/0xf0 [ 321.588831][ T1043] ? mark_held_locks+0xf0/0xf0 [ 321.593594][ T1043] do_filp_open+0x1a1/0x280 [ 321.598134][ T1043] ? may_open_dev+0x100/0x100 [ 321.602809][ T1043] ? kasan_check_read+0x11/0x20 [ 321.607696][ T1043] ? do_raw_spin_unlock+0x57/0x270 [ 321.612808][ T1043] do_sys_open+0x3fe/0x5d0 [ 321.617199][ T1043] ? filp_open+0x80/0x80 [ 321.621981][ T1043] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 321.628389][ T1043] ? __x64_sys_clock_gettime+0x172/0x250 [ 321.634017][ T1043] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 321.640112][ T1043] __x64_sys_openat+0x9d/0x100 [ 321.644890][ T1043] do_syscall_64+0x103/0x610 [ 321.649518][ T1043] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 321.655400][ T1043] RIP: 0033:0x458c29 [ 321.659312][ T1043] Code: cc 64 48 8b 0c 25 f8 ff ff ff 48 3b 61 10 0f 86 df 00 00 00 48 83 ec 30 48 89 6c 24 28 48 8d 6c 24 28 48 8b 42 08 48 8b 48 70 <48> 89 4c 24 20 48 8b 10 48 89 54 24 18 48 8b 40 08 48 89 44 24 10 [ 321.678953][ T1043] RSP: 002b:00007ff6d7216c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 321.689659][ T1043] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000458c29 [ 321.697709][ T1043] RDX: 0000000000020102 RSI: 0000000020000200 RDI: ffffffffffffff9c [ 321.705679][ T1043] RBP: 000000000073c040 R08: 0000000000000000 R09: 0000000000000000 [ 321.713675][ T1043] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff6d72176d4 [ 321.721695][ T1043] R13: 00000000004c5086 R14: 00000000004d8d88 R15: 00000000ffffffff [ 321.729705][ T1043] INFO: lockdep is turned off. [ 321.734483][ T1043] NMI backtrace for cpu 1 [ 321.739004][ T1043] CPU: 1 PID: 1043 Comm: khungtaskd Not tainted 5.1.0-rc4-next-20190411 #23 [ 321.747683][ T1043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 321.757748][ T1043] Call Trace: [ 321.761044][ T1043] dump_stack+0x172/0x1f0 [ 321.765368][ T1043] nmi_cpu_backtrace.cold+0x63/0xa4 [ 321.770615][ T1043] ? lapic_can_unplug_cpu.cold+0x38/0x38 [ 321.776227][ T1043] nmi_trigger_cpumask_backtrace+0x1be/0x236 [ 321.782218][ T1043] arch_trigger_cpumask_backtrace+0x14/0x20 [ 321.788195][ T1043] watchdog+0x9b7/0xec0 [ 321.792338][ T1043] kthread+0x357/0x430 [ 321.796380][ T1043] ? reset_hung_task_detector+0x30/0x30 [ 321.801903][ T1043] ? kthread_cancel_delayed_work_sync+0x20/0x20 [ 321.808118][ T1043] ret_from_fork+0x3a/0x50 [ 321.812626][ T1043] Sending NMI from CPU 1 to CPUs 0: [ 321.818385][ C0] NMI backtrace for cpu 0 [ 321.818390][ C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 5.1.0-rc4-next-20190411 #23 [ 321.818396][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 321.818400][ C0] RIP: 0010:debug_smp_processor_id+0x6/0x280 [ 321.818410][ C0] Code: a0 66 75 fe eb a2 4c 89 f7 e8 b6 66 75 fe e9 a4 fe ff ff e8 ac 66 75 fe e9 78 fe ff ff 0f 1f 80 00 00 00 00 55 48 89 e5 41 56 <41> 55 41 54 53 e8 80 5d 3c fe 65 44 8b 25 b8 55 cd 7c 65 8b 1d 11 [ 321.818414][ C0] RSP: 0018:ffff8880ae807f78 EFLAGS: 00000082 [ 321.818421][ C0] RAX: 0000000000000000 RBX: 000000000002d000 RCX: ffffffff814ec7df [ 321.818425][ C0] RDX: 0000000000000001 RSI: 0000000000000008 RDI: ffff8880ae82dce0 [ 321.818430][ C0] RBP: ffff8880ae807f80 R08: 1ffff11015d05b9c R09: ffffed1015d05b9d [ 321.818435][ C0] R10: ffffed1015d05b9c R11: ffff8880ae82dce7 R12: 000000000002d000 [ 321.818439][ C0] R13: ffff8880ae800000 R14: ffffffff8887a100 R15: ffffffff886d9060 [ 321.818444][ C0] FS: 0000000000000000(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000 [ 321.818448][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 321.818453][ C0] CR2: ffffffffff600400 CR3: 0000000097237000 CR4: 00000000001406f0 [ 321.818457][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 321.818462][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 321.818464][ C0] Call Trace: [ 321.818466][ C0] [ 321.818469][ C0] scheduler_ipi+0x28d/0x5b0 [ 321.818473][ C0] smp_reschedule_interrupt+0x7e/0x460 [ 321.818476][ C0] reschedule_interrupt+0xf/0x20 [ 321.818478][ C0] [ 321.818481][ C0] RIP: 0010:native_safe_halt+0x2/0x10 [ 321.818491][ C0] Code: ff ff ff 48 89 c7 48 89 45 d8 e8 59 fd 8d fa 48 8b 45 d8 e9 ce fe ff ff 48 89 df e8 48 fd 8d fa eb 82 90 90 90 90 90 90 fb f4 0f 1f 00 66 2e 0f 1f 84 00 00 00 00 00 f4 c3 90 90 90 90 90 90 [ 321.818495][ C0] RSP: 0018:ffffffff88807d08 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff02 [ 321.818503][ C0] RAX: 1ffffffff1124ad9 RBX: ffffffff8887a100 RCX: 1ffffffff12bf2b3 [ 321.818507][ C0] RDX: dffffc0000000000 RSI: ffffffff817605fe RDI: ffffffff871b8abc [ 321.818512][ C0] RBP: ffffffff88807d38 R08: ffffffff8887a100 R09: ffffed1015d05bd8 [ 321.818516][ C0] R10: ffffed1015d05bd7 R11: ffff8880ae82debb R12: 0000000000000000 [ 321.818521][ C0] R13: ffffffff889256b8 R14: 0000000000000000 R15: 0000000000000000 [ 321.818524][ C0] ? trace_hardirqs_on+0x5e/0x230 [ 321.818527][ C0] ? default_idle+0x1c/0x330 [ 321.818530][ C0] ? default_idle+0x4e/0x330 [ 321.818533][ C0] arch_cpu_idle+0x10/0x20 [ 321.818536][ C0] default_idle_call+0x36/0x90 [ 321.818539][ C0] do_idle+0x386/0x570 [ 321.818542][ C0] ? arch_cpu_idle_exit+0x80/0x80 [ 321.818545][ C0] cpu_startup_entry+0x1b/0x20 [ 321.818548][ C0] rest_init+0x245/0x37b [ 321.818551][ C0] arch_call_rest_init+0xe/0x1b [ 321.818554][ C0] start_kernel+0x816/0x84f [ 321.818557][ C0] ? mem_encrypt_init+0xb/0xb [ 321.818560][ C0] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 321.818563][ C0] ? x86_family+0x41/0x50 [ 321.818567][ C0] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 321.818570][ C0] x86_64_start_reservations+0x29/0x2b [ 321.818573][ C0] x86_64_start_kernel+0x77/0x7b [ 321.818576][ C0] secondary_startup_64+0xa4/0xb0 [ 321.819134][ T1043] Kernel panic - not syncing: hung_task: blocked tasks [ 322.143391][ T1043] CPU: 1 PID: 1043 Comm: khungtaskd Not tainted 5.1.0-rc4-next-20190411 #23 [ 322.152034][ T1043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 322.162094][ T1043] Call Trace: [ 322.165369][ T1043] dump_stack+0x172/0x1f0 [ 322.169743][ T1043] panic+0x2cb/0x72b [ 322.173630][ T1043] ? __warn_printk+0xf3/0xf3 [ 322.178299][ T1043] ? lapic_can_unplug_cpu.cold+0x38/0x38 [ 322.183908][ T1043] ? ___preempt_schedule+0x16/0x18 [ 322.188999][ T1043] ? nmi_trigger_cpumask_backtrace+0x19e/0x236 [ 322.195125][ T1043] ? nmi_trigger_cpumask_backtrace+0x1fa/0x236 [ 322.201255][ T1043] ? nmi_trigger_cpumask_backtrace+0x204/0x236 [ 322.207404][ T1043] ? nmi_trigger_cpumask_backtrace+0x19e/0x236 [ 322.213541][ T1043] watchdog+0x9c8/0xec0 [ 322.217714][ T1043] kthread+0x357/0x430 [ 322.221762][ T1043] ? reset_hung_task_detector+0x30/0x30 [ 322.227286][ T1043] ? kthread_cancel_delayed_work_sync+0x20/0x20 [ 322.233504][ T1043] ret_from_fork+0x3a/0x50 [ 322.239084][ T1043] Kernel Offset: disabled [ 322.243426][ T1043] Rebooting in 86400 seconds..