[ 28.655638] audit: type=1800 audit(1544661350.840:27): pid=5916 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [ 28.693989] audit: type=1800 audit(1544661350.840:28): pid=5916 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 29.389828] audit: type=1800 audit(1544661351.630:29): pid=5916 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 29.411633] audit: type=1800 audit(1544661351.630:30): pid=5916 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 30.697571] sshd (6055) used greatest stack depth: 15600 bytes left Warning: Permanently added '10.128.0.158' (ECDSA) to the list of known hosts. 2018/12/13 00:35:59 fuzzer started 2018/12/13 00:36:02 dialing manager at 10.128.0.26:37649 2018/12/13 00:36:02 syscalls: 1 2018/12/13 00:36:02 code coverage: enabled 2018/12/13 00:36:02 comparison tracing: enabled 2018/12/13 00:36:02 setuid sandbox: enabled 2018/12/13 00:36:02 namespace sandbox: enabled 2018/12/13 00:36:02 Android sandbox: /sys/fs/selinux/policy does not exist 2018/12/13 00:36:02 fault injection: enabled 2018/12/13 00:36:02 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2018/12/13 00:36:02 net packet injection: enabled 2018/12/13 00:36:02 net device setup: enabled 00:38:59 executing program 0: syz_open_dev$radio(&(0x7f0000000040)='/dev/radio#\x00', 0x3, 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000380)="0f070f20616426660fe855090f350f22e4c4e205a622f20f5a2666baf80cb8ccae358eef66bafc0cb872000000efb805000000b9000000000f01d9b9800000c00f3235000800000f30", 0x49}], 0x1, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = userfaultfd(0x0) ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0) ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000913000)={{&(0x7f00004b3000/0x5000)=nil, 0x5000}, 0x1}) read(0xffffffffffffffff, 0x0, 0x0) [ 217.850309] IPVS: ftp: loaded support on port[0] = 21 00:39:00 executing program 1: r0 = socket$inet6(0xa, 0x2, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x8001, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) write$binfmt_misc(r0, &(0x7f0000000200)=ANY=[@ANYRES64, @ANYRES64], 0xfe5b) [ 218.084256] IPVS: ftp: loaded support on port[0] = 21 00:39:00 executing program 2: r0 = memfd_create(&(0x7f0000000140)='md5sumbdev.vmnet1lo\x00', 0x0) pwrite64(r0, &(0x7f000003bfff)='/', 0x1, 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0) symlink(&(0x7f0000001000)='./file0\x00', &(0x7f0000000080)='./file0\x00') llistxattr(&(0x7f0000000200)='./file0/../file0/file0\x00', 0x0, 0x0) [ 218.457854] IPVS: ftp: loaded support on port[0] = 21 00:39:00 executing program 3: syz_emit_ethernet(0xff27, &(0x7f000000a000)={@broadcast=[0xff, 0xe0], @broadcast, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0xfec3, 0x0, 0x0, 0x0, 0x0, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}, @multicast1}, @udp={0x0, 0x0, 0x8}}}}}, 0x0) [ 218.907020] IPVS: ftp: loaded support on port[0] = 21 00:39:01 executing program 4: r0 = socket$inet6(0xa, 0x2000000802, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000080)={@remote, 0x800, 0x0, 0xff, 0x1}, 0x20) setsockopt$inet6_int(r0, 0x29, 0x21, &(0x7f000089b000)=0x1, 0x4) sendmsg(r0, &(0x7f0000000000)={&(0x7f0000000100)=@in6={0xa, 0x4e24, 0x800, @dev}, 0x80, 0x0, 0x0, &(0x7f0000000180)=[{0x10}], 0x10}, 0x0) [ 219.430785] IPVS: ftp: loaded support on port[0] = 21 [ 219.542597] bridge0: port 1(bridge_slave_0) entered blocking state [ 219.549071] bridge0: port 1(bridge_slave_0) entered disabled state [ 219.571282] device bridge_slave_0 entered promiscuous mode [ 219.692775] bridge0: port 2(bridge_slave_1) entered blocking state [ 219.700920] bridge0: port 2(bridge_slave_1) entered disabled state [ 219.708390] device bridge_slave_1 entered promiscuous mode 00:39:02 executing program 5: seccomp(0x1, 0x0, &(0x7f0000007ff0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x50000}]}) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe) [ 219.860394] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 219.987298] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 220.039810] IPVS: ftp: loaded support on port[0] = 21 [ 220.093908] bridge0: port 1(bridge_slave_0) entered blocking state [ 220.109719] bridge0: port 1(bridge_slave_0) entered disabled state [ 220.123060] device bridge_slave_0 entered promiscuous mode [ 220.233201] bridge0: port 2(bridge_slave_1) entered blocking state [ 220.254601] bridge0: port 2(bridge_slave_1) entered disabled state [ 220.279935] device bridge_slave_1 entered promiscuous mode [ 220.395915] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 220.453085] bridge0: port 1(bridge_slave_0) entered blocking state [ 220.469841] bridge0: port 1(bridge_slave_0) entered disabled state [ 220.477405] device bridge_slave_0 entered promiscuous mode [ 220.492168] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 220.528230] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 220.551662] bridge0: port 2(bridge_slave_1) entered blocking state [ 220.558023] bridge0: port 2(bridge_slave_1) entered disabled state [ 220.574452] device bridge_slave_1 entered promiscuous mode [ 220.641051] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 220.737189] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 220.882730] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 220.952777] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 221.062592] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 221.203384] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 221.241291] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 221.302990] bridge0: port 1(bridge_slave_0) entered blocking state [ 221.309356] bridge0: port 1(bridge_slave_0) entered disabled state [ 221.336835] device bridge_slave_0 entered promiscuous mode [ 221.352055] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 221.373613] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 221.387903] team0: Port device team_slave_0 added [ 221.394785] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 221.412829] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 221.466324] bridge0: port 2(bridge_slave_1) entered blocking state [ 221.485160] bridge0: port 2(bridge_slave_1) entered disabled state [ 221.499439] device bridge_slave_1 entered promiscuous mode [ 221.510709] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 221.535474] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 221.547174] team0: Port device team_slave_1 added [ 221.639738] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 221.648064] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 221.707432] bridge0: port 1(bridge_slave_0) entered blocking state [ 221.714785] bridge0: port 1(bridge_slave_0) entered disabled state [ 221.728085] device bridge_slave_0 entered promiscuous mode [ 221.735823] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 221.754325] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 221.775097] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 221.790699] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 221.802047] bridge0: port 2(bridge_slave_1) entered blocking state [ 221.808477] bridge0: port 2(bridge_slave_1) entered disabled state [ 221.820735] device bridge_slave_1 entered promiscuous mode [ 221.867768] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 221.880483] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 221.887811] team0: Port device team_slave_0 added [ 221.921429] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 221.982790] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 222.002404] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 222.016126] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 222.040348] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 222.057229] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 222.079538] team0: Port device team_slave_1 added [ 222.122049] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 222.132440] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 222.170067] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 222.178086] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 222.222140] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 222.230464] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 222.237802] team0: Port device team_slave_0 added [ 222.249718] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 222.265806] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 222.351769] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 222.358623] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 222.370393] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 222.400328] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 222.420594] team0: Port device team_slave_1 added [ 222.460845] bridge0: port 1(bridge_slave_0) entered blocking state [ 222.471605] bridge0: port 1(bridge_slave_0) entered disabled state [ 222.478952] device bridge_slave_0 entered promiscuous mode [ 222.497181] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 222.521172] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 222.528280] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 222.537131] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 222.582511] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 222.589728] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 222.597946] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 222.624114] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 222.640377] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 222.677279] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 222.694080] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 222.714578] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 222.733968] bridge0: port 2(bridge_slave_1) entered blocking state [ 222.742019] bridge0: port 2(bridge_slave_1) entered disabled state [ 222.749484] device bridge_slave_1 entered promiscuous mode [ 222.763483] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 222.780935] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 222.808599] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 222.818450] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 222.845228] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 222.853992] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 222.882902] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 222.949471] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 222.959388] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 222.980443] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 223.018780] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 223.067058] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 223.088180] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 223.099420] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 223.426431] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 223.451549] ip (6506) used greatest stack depth: 15208 bytes left [ 223.453591] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 223.472484] team0: Port device team_slave_0 added [ 223.499024] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 223.520670] team0: Port device team_slave_0 added [ 223.531030] bridge0: port 2(bridge_slave_1) entered blocking state [ 223.537534] bridge0: port 2(bridge_slave_1) entered forwarding state [ 223.544702] bridge0: port 1(bridge_slave_0) entered blocking state [ 223.551101] bridge0: port 1(bridge_slave_0) entered forwarding state [ 223.588347] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 223.608123] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 223.639487] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 223.661066] team0: Port device team_slave_1 added [ 223.667933] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 223.690467] team0: Port device team_slave_1 added [ 223.778731] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 223.800883] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 223.808924] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 223.847516] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 223.895201] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 223.937384] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 224.013773] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 224.021380] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 224.037290] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 224.071618] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 224.097117] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 224.117263] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 224.149954] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 224.159321] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 224.191537] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 224.210833] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 224.232545] bridge0: port 2(bridge_slave_1) entered blocking state [ 224.238907] bridge0: port 2(bridge_slave_1) entered forwarding state [ 224.245640] bridge0: port 1(bridge_slave_0) entered blocking state [ 224.252042] bridge0: port 1(bridge_slave_0) entered forwarding state [ 224.261914] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 224.273791] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 224.290417] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 224.308975] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 224.340669] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 224.348013] team0: Port device team_slave_0 added [ 224.511756] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 224.519165] team0: Port device team_slave_1 added [ 224.647359] bridge0: port 2(bridge_slave_1) entered blocking state [ 224.653852] bridge0: port 2(bridge_slave_1) entered forwarding state [ 224.660590] bridge0: port 1(bridge_slave_0) entered blocking state [ 224.666960] bridge0: port 1(bridge_slave_0) entered forwarding state [ 224.687353] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 224.702790] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 224.729810] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 224.737761] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 224.829122] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 224.842641] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 224.855852] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 224.965218] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 224.973434] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 224.987742] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 225.069977] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 225.077181] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 225.090633] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 225.159814] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 225.170182] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 225.688241] bridge0: port 2(bridge_slave_1) entered blocking state [ 225.694675] bridge0: port 2(bridge_slave_1) entered forwarding state [ 225.701393] bridge0: port 1(bridge_slave_0) entered blocking state [ 225.707756] bridge0: port 1(bridge_slave_0) entered forwarding state [ 225.749551] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 225.826858] bridge0: port 2(bridge_slave_1) entered blocking state [ 225.833256] bridge0: port 2(bridge_slave_1) entered forwarding state [ 225.839999] bridge0: port 1(bridge_slave_0) entered blocking state [ 225.846397] bridge0: port 1(bridge_slave_0) entered forwarding state [ 225.870339] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 226.170299] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 226.185483] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 226.409278] bridge0: port 2(bridge_slave_1) entered blocking state [ 226.415734] bridge0: port 2(bridge_slave_1) entered forwarding state [ 226.422479] bridge0: port 1(bridge_slave_0) entered blocking state [ 226.428900] bridge0: port 1(bridge_slave_0) entered forwarding state [ 226.456918] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 227.190854] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 228.790562] 8021q: adding VLAN 0 to HW filter on device bond0 [ 229.237176] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 229.394410] 8021q: adding VLAN 0 to HW filter on device bond0 [ 229.708365] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 229.717852] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 229.732828] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 229.783454] 8021q: adding VLAN 0 to HW filter on device bond0 [ 229.904292] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 230.164190] 8021q: adding VLAN 0 to HW filter on device team0 [ 230.301159] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 230.346799] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 230.364811] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 230.380526] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 230.753197] 8021q: adding VLAN 0 to HW filter on device team0 [ 230.799922] 8021q: adding VLAN 0 to HW filter on device bond0 [ 230.811754] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 230.820284] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 230.835250] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 230.943229] 8021q: adding VLAN 0 to HW filter on device bond0 [ 231.200834] 8021q: adding VLAN 0 to HW filter on device team0 [ 231.275798] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 231.344317] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 231.650160] 8021q: adding VLAN 0 to HW filter on device bond0 [ 231.751319] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 231.757598] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 231.778147] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 231.824237] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 231.840594] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 231.861138] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 232.109083] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 232.245970] 8021q: adding VLAN 0 to HW filter on device team0 [ 232.286225] 8021q: adding VLAN 0 to HW filter on device team0 [ 232.590888] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 232.615742] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 232.625373] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 233.019440] 8021q: adding VLAN 0 to HW filter on device team0 [ 233.386634] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details. [ 233.586139] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 233.641785] hrtimer: interrupt took 60246 ns 00:39:15 executing program 1: r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000596000)=0x9, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10) 00:39:16 executing program 1: 00:39:16 executing program 1: 00:39:16 executing program 1: 00:39:16 executing program 1: 00:39:16 executing program 0: 00:39:16 executing program 0: 00:39:16 executing program 1: 00:39:16 executing program 2: 00:39:17 executing program 3: 00:39:17 executing program 4: 00:39:17 executing program 5: 00:39:17 executing program 1: 00:39:17 executing program 0: 00:39:17 executing program 2: 00:39:17 executing program 3: 00:39:17 executing program 4: 00:39:17 executing program 2: 00:39:17 executing program 0: 00:39:17 executing program 3: 00:39:17 executing program 4: 00:39:17 executing program 1: 00:39:17 executing program 5: 00:39:17 executing program 0: 00:39:17 executing program 2: 00:39:17 executing program 5: 00:39:17 executing program 1: 00:39:17 executing program 4: 00:39:17 executing program 3: 00:39:17 executing program 0: 00:39:17 executing program 5: [ 235.509826] list_add corruption. next->prev should be prev (ffff8881c3d9a730), but was ffff8881b2a6c6f0. (next=ffffffff8a1dca60). [ 235.522097] ------------[ cut here ]------------ [ 235.526861] kernel BUG at lib/list_debug.c:25! [ 235.531546] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 235.536952] CPU: 0 PID: 7698 Comm: syz-executor4 Not tainted 4.20.0-rc6-next-20181210+ #164 [ 235.545441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 235.554815] RIP: 0010:__list_add_valid.cold.2+0xf/0x2a [ 235.560101] Code: e5 80 88 e8 11 1f d2 fd 0f 0b 48 89 de 48 c7 c7 60 e5 80 88 e8 00 1f d2 fd 0f 0b 48 89 d9 48 c7 c7 20 e6 80 88 e8 ef 1e d2 fd <0f> 0b 48 89 f1 48 c7 c7 a0 e6 80 88 48 89 de e8 db 1e d2 fd 0f 0b [ 235.566457] kobject: 'loop1' (00000000ae275935): kobject_uevent_env [ 235.579007] RSP: 0018:ffff8881dac06ce0 EFLAGS: 00010286 [ 235.579018] RAX: 0000000000000075 RBX: ffffffff8a1dca60 RCX: 0000000000000000 [ 235.579026] RDX: 0000000000000000 RSI: ffffffff816621c5 RDI: 0000000000000005 [ 235.579034] RBP: ffff8881dac06cf8 R08: ffff88818bd30180 R09: ffffed103b585020 [ 235.579043] R10: ffffed103b585020 R11: ffff8881dac28107 R12: ffff8881d93626f0 [ 235.579057] R13: ffff8881d9362480 R14: ffffffff8a1dc820 R15: ffffffff8a1dcab0 [ 235.595065] kobject: 'loop1' (00000000ae275935): fill_kobj_path: path = '/devices/virtual/block/loop1' [ 235.598096] FS: 0000000001017940(0000) GS:ffff8881dac00000(0000) knlGS:0000000000000000 [ 235.609373] kobject: 'loop0' (00000000ff4241a0): kobject_uevent_env [ 235.612617] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 235.612625] CR2: 0000000000930000 CR3: 000000018d2b1000 CR4: 00000000001406f0 [ 235.612636] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 235.612650] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 235.628968] kobject: 'loop0' (00000000ff4241a0): fill_kobj_path: path = '/devices/virtual/block/loop0' [ 235.636598] Call Trace: [ 235.636604] [ 235.636625] ___neigh_create+0x14b7/0x2600 [ 235.636642] ? print_usage_bug+0xc0/0xc0 [ 235.636656] ? print_usage_bug+0xc0/0xc0 [ 235.636671] ? print_usage_bug+0xc0/0xc0 [ 235.636691] ? neigh_remove_one+0x5a0/0x5a0 [ 235.672432] kobject: 'loop5' (00000000ef3f4b1e): kobject_uevent_env [ 235.679017] ? print_usage_bug+0xc0/0xc0 [ 235.679033] ? __local_bh_enable_ip+0x160/0x260 [ 235.679045] ? __local_bh_enable_ip+0x160/0x260 [ 235.679059] ? lockdep_hardirqs_on+0x296/0x5b0 [ 235.679077] ? mark_held_locks+0x130/0x130 [ 235.688991] kobject: 'loop5' (00000000ef3f4b1e): fill_kobj_path: path = '/devices/virtual/block/loop5' [ 235.691104] ? __local_bh_enable_ip+0x160/0x260 00:39:17 executing program 0: r0 = syz_open_dev$binder(&(0x7f0000000100)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r0, 0xc018620c, &(0x7f00000000c0)={0x6c00000000000000, 0x0, 0x0, 0x0, 0x0, 0x0}) openat$rfkill(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, 0x0, &(0x7f0000000180)) 00:39:17 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000100)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r0, 0x40046207, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 00:39:17 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000100)={@local, @empty, @loopback, 0x0, 0x2, 0x1f, 0x0, 0x0, 0x1c0273}) 00:39:17 executing program 2: r0 = socket(0x200000000000011, 0x3, 0x8) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'bridge0\x00', 0x0}) bind$packet(r0, &(0x7f00000003c0)={0x11, 0x0, r1}, 0x14) sendto(r0, &(0x7f0000000080)="956567ea705affff8cbb688d1d06", 0xe, 0x0, 0x0, 0x0) 00:39:17 executing program 3: r0 = syz_open_dev$sndtimer(&(0x7f0000000100)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000000)={{0xffffffffffffffff}}) 00:39:18 executing program 3: r0 = syz_open_dev$sndtimer(&(0x7f0000000100)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000000)={{0xffffffffffffffff}}) [ 235.691118] ? lockdep_hardirqs_on+0x296/0x5b0 [ 235.691135] ? trace_hardirqs_on+0xbd/0x310 [ 235.691148] ? mark_held_locks+0xc7/0x130 [ 235.691162] ? ip6t_do_table+0xd9e/0x1d30 [ 235.691176] ? trace_hardirqs_off_caller+0x310/0x310 [ 235.691192] ? __local_bh_enable_ip+0x160/0x260 [ 235.712306] kobject: 'loop3' (000000000605d8a5): kobject_uevent_env [ 235.714097] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 235.714114] ? lock_acquire+0x1ed/0x520 [ 235.714128] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 235.714144] ? check_preemption_disabled+0x48/0x280 00:39:18 executing program 0: r0 = syz_open_dev$binder(&(0x7f0000000100)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r0, 0xc018620c, &(0x7f00000000c0)={0x6c00000000000000, 0x0, 0x0, 0x0, 0x0, 0x0}) openat$rfkill(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, 0x0, &(0x7f0000000180)) 00:39:18 executing program 3: r0 = syz_open_dev$sndtimer(&(0x7f0000000100)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000000)={{0xffffffffffffffff}}) [ 235.714161] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 235.750108] kobject: 'loop3' (000000000605d8a5): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 235.752182] ? rcu_pm_notify+0xc0/0xc0 [ 235.752201] __neigh_create+0x30/0x40 [ 235.752217] ip6_finish_output2+0xa64/0x2940 [ 235.752235] ? find_held_lock+0x36/0x1c0 [ 235.783490] binder: 7705 BINDER_GET_NODE_INFO_FOR_REF: only handle may be non-zero. [ 235.783513] binder: 7705:7715 ioctl c018620c 200000c0 returned -22 [ 235.783834] ? ip6_forward_finish+0x560/0x560 [ 235.842915] kobject: 'loop0' (00000000ff4241a0): kobject_uevent_env [ 235.849109] ? ip6_mtu+0x39c/0x520 [ 235.849126] ? lock_downgrade+0x900/0x900 [ 235.849142] ? check_preemption_disabled+0x48/0x280 [ 235.849178] ? kasan_check_read+0x11/0x20 [ 235.873574] kobject: 'loop0' (00000000ff4241a0): fill_kobj_path: path = '/devices/virtual/block/loop0' [ 235.874074] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 235.883362] binder: 7721 BINDER_GET_NODE_INFO_FOR_REF: only handle may be non-zero. [ 235.883374] binder: 7721:7723 ioctl c018620c 200000c0 returned -22 [ 235.892643] ? rcu_read_unlock_special+0x370/0x370 [ 235.892678] ? ip6_mtu+0x160/0x520 [ 235.892692] ? find_match+0x10a0/0x10a0 [ 235.892705] ? kasan_check_read+0x11/0x20 [ 235.892717] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 235.892731] ip6_finish_output+0x58c/0xc60 [ 235.892742] ? ip6_finish_output+0x58c/0xc60 [ 235.892758] ip6_output+0x232/0x9d0 [ 235.902839] kobject: 'loop3' (000000000605d8a5): kobject_uevent_env [ 235.905829] ? ip6_finish_output+0xc60/0xc60 [ 235.905844] ? ip6_fragment+0x38b0/0x38b0 [ 235.905858] ? __lock_is_held+0xb5/0x140 [ 235.905882] ndisc_send_skb+0x1005/0x1560 [ 235.927648] kobject: 'loop3' (000000000605d8a5): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 235.928743] ? nf_hook.constprop.33+0x860/0x860 [ 235.928763] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 235.928778] ? refcount_sub_and_test_checked+0x203/0x310 [ 235.928796] ? refcount_dec_if_one+0x180/0x180 [ 235.948534] kobject: 'loop0' (00000000ff4241a0): kobject_uevent_env [ 235.952699] ? memcpy+0x45/0x50 [ 235.952715] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 235.952731] ndisc_send_rs+0x134/0x6e0 [ 235.952747] addrconf_rs_timer+0x314/0x690 [ 235.952762] ? ipv6_get_lladdr+0x5e0/0x5e0 [ 235.952785] call_timer_fn+0x272/0x920 [ 235.962949] kobject: 'loop0' (00000000ff4241a0): fill_kobj_path: path = '/devices/virtual/block/loop0' [ 235.965373] ? ipv6_get_lladdr+0x5e0/0x5e0 [ 235.965386] ? process_timeout+0x40/0x40 [ 235.965404] ? mark_held_locks+0xc7/0x130 [ 235.965418] ? _raw_spin_unlock_irq+0x27/0x80 [ 235.965435] ? _raw_spin_unlock_irq+0x27/0x80 [ 236.016767] kobject: 'loop1' (00000000ae275935): kobject_uevent_env [ 236.018273] ? ipv6_get_lladdr+0x5e0/0x5e0 [ 236.018288] ? lockdep_hardirqs_on+0x296/0x5b0 [ 236.018305] ? trace_hardirqs_on+0xbd/0x310 [ 236.018318] ? kasan_check_read+0x11/0x20 [ 236.018335] ? __run_timers+0x7da/0xc70 [ 236.023855] kobject: 'loop1' (00000000ae275935): fill_kobj_path: path = '/devices/virtual/block/loop1' [ 236.026791] ? trace_hardirqs_off_caller+0x310/0x310 [ 236.026822] ? ipv6_get_lladdr+0x5e0/0x5e0 [ 236.026853] ? ipv6_get_lladdr+0x5e0/0x5e0 [ 236.026885] __run_timers+0x7e5/0xc70 [ 236.071211] kobject: 'loop5' (00000000ef3f4b1e): kobject_uevent_env [ 236.072272] ? timer_fixup_init+0x70/0x70 [ 236.072287] ? lock_acquire+0x1ed/0x520 [ 236.072320] ? graph_lock+0x270/0x270 [ 236.076925] kobject: 'loop5' (00000000ef3f4b1e): fill_kobj_path: path = '/devices/virtual/block/loop5' [ 236.081216] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 236.081231] ? print_usage_bug+0xc0/0xc0 [ 236.081244] ? kasan_check_write+0x14/0x20 [ 236.081262] ? do_raw_spin_lock+0x14f/0x350 [ 236.097494] kobject: 'loop3' (000000000605d8a5): kobject_uevent_env [ 236.098827] ? find_held_lock+0x36/0x1c0 [ 236.098843] ? graph_lock+0x270/0x270 [ 236.098861] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 236.109824] kobject: 'loop3' (000000000605d8a5): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 236.112398] ? check_preemption_disabled+0x48/0x280 [ 236.112417] ? __lock_is_held+0xb5/0x140 [ 236.112436] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 236.205805] ? check_preemption_disabled+0x48/0x280 [ 236.210809] run_timer_softirq+0x52/0xb0 [ 236.214856] ? rcu_read_lock_sched_held+0x14f/0x180 [ 236.219861] __do_softirq+0x308/0xb7e [ 236.223646] ? ktime_get_raw_ts64+0x4d0/0x4d0 [ 236.228145] ? lock_downgrade+0x900/0x900 [ 236.232288] ? __irqentry_text_end+0x1f9658/0x1f9658 [ 236.237380] ? pvclock_read_flags+0x160/0x160 [ 236.241883] ? lapic_next_event+0x5a/0x90 [ 236.246020] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 236.251549] ? kvm_clock_read+0x18/0x30 [ 236.255524] ? kvm_sched_clock_read+0x9/0x20 [ 236.259920] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 236.265454] ? check_preemption_disabled+0x48/0x280 [ 236.270476] irq_exit+0x17f/0x1c0 [ 236.273922] smp_apic_timer_interrupt+0x1cb/0x760 [ 236.278782] ? smp_reschedule_interrupt+0x109/0x650 [ 236.283783] ? smp_call_function_single_interrupt+0x650/0x650 [ 236.289653] ? interrupt_entry+0xb5/0xc0 [ 236.293710] ? trace_hardirqs_off_caller+0xbb/0x310 [ 236.298720] ? trace_hardirqs_off_caller+0xbb/0x310 [ 236.303751] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 236.308583] ? trace_hardirqs_on_caller+0x310/0x310 [ 236.313588] ? trace_hardirqs_on_caller+0x310/0x310 [ 236.318653] ? task_prio+0x50/0x50 [ 236.322210] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 236.327753] ? check_preemption_disabled+0x48/0x280 [ 236.332774] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 236.337605] apic_timer_interrupt+0xf/0x20 [ 236.341869] [ 236.344094] RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x50 [ 236.349492] Code: 14 dd 28 00 00 00 4d 39 d0 72 1b 49 83 c1 01 4a 89 7c 10 e0 4a 89 74 10 e8 4a 89 54 10 f0 4a 89 4c d8 20 4c 89 08 5d c3 66 90 <55> 48 89 e5 48 8b 75 08 65 48 8b 04 25 40 ee 01 00 65 8b 15 a8 f5 [ 236.368392] RSP: 0018:ffff88818bd27050 EFLAGS: 00000a02 ORIG_RAX: ffffffffffffff13 [ 236.376084] RAX: 1ffff110317a4e3b RBX: ffff88818bd27600 RCX: ffff8881bfe754e0 [ 236.383337] RDX: 0000000000000000 RSI: ffffffff81b378b6 RDI: 0000000000000001 [ 236.390590] RBP: ffff88818bd27480 R08: ffff88818bd30180 R09: fffff94000c70af6 [ 236.397856] R10: fffff94000c70af6 R11: ffffea00063857b3 R12: 0000000000000001 [ 236.405124] R13: 00007faa3e29d000 R14: dffffc0000000000 R15: ffffea00063857c0 [ 236.412412] ? unmap_page_range+0xd06/0x2930 [ 236.416822] ? unmap_page_range+0xd54/0x2930 [ 236.421238] ? vm_normal_page_pmd+0x510/0x510 [ 236.425719] ? lock_release+0xa00/0xa00 [ 236.429676] ? perf_trace_sched_process_exec+0x860/0x860 [ 236.435111] ? print_usage_bug+0xc0/0xc0 [ 236.439158] ? graph_lock+0x270/0x270 [ 236.442970] ? __mutex_lock+0x85e/0x16f0 [ 236.447020] ? uprobe_clear_state+0xb4/0x390 [ 236.451422] ? graph_lock+0x270/0x270 [ 236.455206] ? find_held_lock+0x36/0x1c0 [ 236.459264] ? find_held_lock+0x36/0x1c0 [ 236.463325] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 236.468860] ? uprobe_munmap+0x14c/0x450 [ 236.472904] ? uprobe_mmap+0x1130/0x1130 [ 236.476947] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 236.482035] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 236.487139] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 236.491705] ? pagevec_lru_move_fn+0x259/0x350 [ 236.496273] ? trace_hardirqs_off_caller+0x310/0x310 [ 236.501373] unmap_single_vma+0x19b/0x310 [ 236.505531] unmap_vmas+0x252/0x3d0 [ 236.509169] ? zap_vma_ptes+0x110/0x110 [ 236.513124] ? perf_trace_mm_lru_insertion+0x1490/0x1490 [ 236.518570] ? kasan_check_write+0x14/0x20 [ 236.522807] exit_mmap+0x2be/0x590 [ 236.526346] ? __ia32_sys_munmap+0x80/0x80 [ 236.530565] ? mutex_unlock+0xd/0x10 [ 236.534272] ? __might_sleep+0x95/0x190 [ 236.538238] mmput+0x247/0x610 [ 236.541417] ? lock_downgrade+0x900/0x900 [ 236.545549] ? set_mm_exe_file+0x200/0x200 [ 236.549770] ? kasan_check_read+0x11/0x20 [ 236.553904] ? do_raw_spin_unlock+0xa7/0x330 [ 236.558294] ? do_raw_spin_trylock+0x270/0x270 [ 236.562860] ? up_read_non_owner+0x100/0x100 [ 236.567254] ? __down_interruptible+0x700/0x700 [ 236.571910] do_exit+0xdeb/0x2620 [ 236.575347] ? lock_acquire+0x1a1/0x520 [ 236.579308] ? mm_update_next_owner+0x990/0x990 [ 236.583966] ? mark_held_locks+0x130/0x130 [ 236.588184] ? rwlock_bug.part.2+0x90/0x90 [ 236.592403] ? do_raw_spin_trylock+0x270/0x270 [ 236.596997] ? fault_dirty_shared_page.isra.87+0x320/0x320 [ 236.602624] ? __handle_mm_fault+0xa57/0x5b70 [ 236.607135] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 236.611973] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 236.617235] ? graph_lock+0x270/0x270 [ 236.621020] ? rcu_read_unlock_special+0x370/0x370 [ 236.625951] ? graph_lock+0x270/0x270 [ 236.629737] ? graph_lock+0x270/0x270 [ 236.633544] ? graph_lock+0x270/0x270 [ 236.637339] ? find_held_lock+0x36/0x1c0 [ 236.641384] ? find_held_lock+0x36/0x1c0 [ 236.645433] ? __close_fd+0x32a/0x3a0 [ 236.649234] ? lock_downgrade+0x900/0x900 [ 236.653371] ? kasan_check_read+0x11/0x20 [ 236.657524] ? do_raw_spin_unlock+0xa7/0x330 [ 236.661918] ? do_raw_spin_trylock+0x270/0x270 [ 236.666485] ? __lock_is_held+0xb5/0x140 [ 236.670546] ? _raw_spin_unlock+0x2c/0x50 [ 236.674682] ? __close_fd+0x24c/0x3a0 [ 236.678468] do_group_exit+0x177/0x440 [ 236.682361] ? trace_hardirqs_on+0xbd/0x310 [ 236.686676] ? __ia32_sys_exit+0x50/0x50 [ 236.690753] ? trace_hardirqs_off_caller+0x310/0x310 [ 236.695847] __x64_sys_exit_group+0x3e/0x50 [ 236.700179] do_syscall_64+0x1b9/0x820 [ 236.704066] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 236.709413] ? syscall_return_slowpath+0x5e0/0x5e0 [ 236.714326] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 236.719153] ? trace_hardirqs_on_caller+0x310/0x310 [ 236.724168] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 236.729167] ? prepare_exit_to_usermode+0x291/0x3b0 [ 236.734184] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 236.739027] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 236.744217] RIP: 0033:0x457679 [ 236.747399] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 236.766282] RSP: 002b:00007ffeab32f6a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 236.773972] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 0000000000457679 [ 236.781240] RDX: 0000000000411110 RSI: 00000000000001cd RDI: 0000000000000000 [ 236.788523] RBP: 0000000000000000 R08: 0000000000000004 R09: 0000000000000001 [ 236.795779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 236.803034] R13: 0000000000000001 R14: 0000000000000004 R15: 0000000000000004 [ 236.810287] Modules linked in: [ 236.813564] ---[ end trace 53dc1e2765712fd4 ]--- [ 236.818331] RIP: 0010:__list_add_valid.cold.2+0xf/0x2a [ 236.823639] Code: e5 80 88 e8 11 1f d2 fd 0f 0b 48 89 de 48 c7 c7 60 e5 80 88 e8 00 1f d2 fd 0f 0b 48 89 d9 48 c7 c7 20 e6 80 88 e8 ef 1e d2 fd <0f> 0b 48 89 f1 48 c7 c7 a0 e6 80 88 48 89 de e8 db 1e d2 fd 0f 0b [ 236.842555] RSP: 0018:ffff8881dac06ce0 EFLAGS: 00010286 [ 236.847954] RAX: 0000000000000075 RBX: ffffffff8a1dca60 RCX: 0000000000000000 [ 236.855235] RDX: 0000000000000000 RSI: ffffffff816621c5 RDI: 0000000000000005 [ 236.862638] RBP: ffff8881dac06cf8 R08: ffff88818bd30180 R09: ffffed103b585020 [ 236.869923] R10: ffffed103b585020 R11: ffff8881dac28107 R12: ffff8881d93626f0 [ 236.877190] R13: ffff8881d9362480 R14: ffffffff8a1dc820 R15: ffffffff8a1dcab0 [ 236.884478] FS: 0000000001017940(0000) GS:ffff8881dac00000(0000) knlGS:0000000000000000 [ 236.892732] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 236.898634] CR2: 0000000000930000 CR3: 000000018d2b1000 CR4: 00000000001406f0 [ 236.905918] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 236.913202] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 236.920481] Kernel panic - not syncing: Fatal exception in interrupt [ 236.927940] Kernel Offset: disabled [ 236.931561] Rebooting in 86400 seconds..