[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 20.180862] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. [ 21.291345] random: sshd: uninitialized urandom read (32 bytes read) Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 21.535902] random: sshd: uninitialized urandom read (32 bytes read) [ 22.400057] random: sshd: uninitialized urandom read (32 bytes read) [ 110.681622] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.10.47' (ECDSA) to the list of known hosts. [ 116.254305] random: sshd: uninitialized urandom read (32 bytes read) 2018/07/12 23:56:46 parsed 1 programs [ 118.220779] random: cc1: uninitialized urandom read (8 bytes read) 2018/07/12 23:56:48 executed programs: 0 [ 119.558064] IPVS: ftp: loaded support on port[0] = 21 [ 119.845985] bridge0: port 1(bridge_slave_0) entered blocking state [ 119.852743] bridge0: port 1(bridge_slave_0) entered disabled state [ 119.860830] device bridge_slave_0 entered promiscuous mode [ 119.883630] bridge0: port 2(bridge_slave_1) entered blocking state [ 119.890070] bridge0: port 2(bridge_slave_1) entered disabled state [ 119.897256] device bridge_slave_1 entered promiscuous mode [ 119.914398] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 119.932174] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 119.979547] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 119.999112] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 120.070463] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 120.077882] team0: Port device team_slave_0 added [ 120.094868] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 120.102102] team0: Port device team_slave_1 added [ 120.118723] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 120.137126] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 120.155166] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 120.174887] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 120.310795] bridge0: port 2(bridge_slave_1) entered blocking state [ 120.317307] bridge0: port 2(bridge_slave_1) entered forwarding state [ 120.324364] bridge0: port 1(bridge_slave_0) entered blocking state [ 120.330765] bridge0: port 1(bridge_slave_0) entered forwarding state [ 120.831197] 8021q: adding VLAN 0 to HW filter on device bond0 [ 120.882122] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 120.932223] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 120.938613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 120.947414] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 120.990450] 8021q: adding VLAN 0 to HW filter on device team0 [ 122.979191] BUG: MAX_LOCK_DEPTH too low! [ 122.983285] turning off the locking correctness validator. [ 122.988888] depth: 48 max: 48! [ 122.992155] 48 locks held by syz-executor0/5089: [ 122.996887] #0: (____ptrval____) (rcu_read_lock_bh){....}, at: __dev_queue_xmit+0x328/0x3910 [ 123.005547] #1: (____ptrval____) (&(&sch->seqlock)->rlock){+...}, at: __dev_queue_xmit+0x13a3/0x3910 [ 123.014897] #2: (____ptrval____) (dev->qdisc_running_key ?: &qdisc_running_key){+...}, at: dev_queue_xmit+0x17/0x20 [ 123.025547] #3: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.034111] #4: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.042676] #5: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.051249] #6: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.059808] #7: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.068369] #8: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.076930] #9: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.085495] #10: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.094147] #11: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.102828] #12: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.111491] #13: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.120141] #14: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.128802] #15: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.137463] #16: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.146123] #17: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.154812] #18: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.163508] #19: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.172170] #20: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.180833] #21: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.189606] #22: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.198267] #23: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.206929] #24: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.215586] #25: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.224247] #26: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.232896] #27: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.241546] #28: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.250195] #29: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.258844] #30: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.267492] #31: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.276137] #32: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.284788] #33: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.293436] #34: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.302090] #35: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.310745] #36: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.319392] #37: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.328038] #38: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.336683] #39: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.345331] #40: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.353980] #41: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.362640] #42: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.371297] #43: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.379943] #44: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.388679] #45: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.397328] #46: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.405993] #47: (____ptrval____) (rcu_read_lock){....}, at: skb_mac_gso_segment+0x229/0x740 [ 123.414659] INFO: lockdep is turned off. [ 123.418703] CPU: 1 PID: 5089 Comm: syz-executor0 Not tainted 4.18.0-rc4+ #46 [ 123.425863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 123.435202] Call Trace: [ 123.437771] dump_stack+0x1c9/0x2b4 [ 123.441380] ? dump_stack_print_info.cold.2+0x52/0x52 [ 123.446563] __lock_acquire+0x175d/0x5020 [ 123.450703] ? trace_hardirqs_on+0x10/0x10 [ 123.454918] ? print_usage_bug+0xc0/0xc0 [ 123.458967] ? __lock_acquire+0x7fc/0x5020 [ 123.463183] ? trace_hardirqs_on+0x10/0x10 [ 123.467398] ? print_usage_bug+0xc0/0xc0 [ 123.471452] lock_acquire+0x1e4/0x540 [ 123.475231] ? skb_mac_gso_segment+0x229/0x740 [ 123.479801] ? __lock_acquire+0x7fc/0x5020 [ 123.484022] ? lock_release+0xa30/0xa30 [ 123.487978] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 123.493156] ? skb_network_protocol+0xfc/0x4c0 [ 123.497723] skb_mac_gso_segment+0x263/0x740 [ 123.502106] ? skb_mac_gso_segment+0x229/0x740 [ 123.506668] ? skb_network_protocol+0x4c0/0x4c0 [ 123.511313] ? lock_acquire+0x1e4/0x540 [ 123.515263] ? skb_mac_gso_segment+0x229/0x740 [ 123.519823] nsh_gso_segment+0x470/0xb40 [ 123.523868] skb_mac_gso_segment+0x3b5/0x740 [ 123.528253] ? nsh_pop+0x500/0x500 [ 123.531781] ? skb_network_protocol+0x4c0/0x4c0 [ 123.536429] ? lock_acquire+0x1e4/0x540 [ 123.540381] ? skb_mac_gso_segment+0x229/0x740 [ 123.544943] ? __lock_acquire+0x7fc/0x5020 [ 123.549158] nsh_gso_segment+0x470/0xb40 [ 123.553215] skb_mac_gso_segment+0x3b5/0x740 [ 123.557615] ? nsh_pop+0x500/0x500 [ 123.561154] ? skb_network_protocol+0x4c0/0x4c0 [ 123.566165] ? lock_acquire+0x1e4/0x540 [ 123.570120] ? skb_mac_gso_segment+0x229/0x740 [ 123.574695] nsh_gso_segment+0x470/0xb40 [ 123.578738] skb_mac_gso_segment+0x3b5/0x740 [ 123.583122] ? nsh_pop+0x500/0x500 [ 123.586652] ? skb_network_protocol+0x4c0/0x4c0 [ 123.591303] ? lock_acquire+0x1e4/0x540 [ 123.595265] ? skb_mac_gso_segment+0x229/0x740 [ 123.599832] ? __lock_acquire+0x7fc/0x5020 [ 123.604057] nsh_gso_segment+0x470/0xb40 [ 123.608099] skb_mac_gso_segment+0x3b5/0x740 [ 123.612489] ? nsh_pop+0x500/0x500 [ 123.616012] ? skb_network_protocol+0x4c0/0x4c0 [ 123.620676] ? lock_acquire+0x1e4/0x540 [ 123.624630] ? skb_mac_gso_segment+0x229/0x740 [ 123.629194] nsh_gso_segment+0x470/0xb40 [ 123.633235] skb_mac_gso_segment+0x3b5/0x740 [ 123.637619] ? nsh_pop+0x500/0x500 [ 123.641151] ? skb_network_protocol+0x4c0/0x4c0 [ 123.645808] ? lock_acquire+0x1e4/0x540 [ 123.649761] ? skb_mac_gso_segment+0x229/0x740 [ 123.654319] ? __lock_acquire+0x7fc/0x5020 [ 123.658539] nsh_gso_segment+0x470/0xb40 [ 123.662583] skb_mac_gso_segment+0x3b5/0x740 [ 123.666971] ? nsh_pop+0x500/0x500 [ 123.670490] ? skb_network_protocol+0x4c0/0x4c0 [ 123.675140] ? lock_acquire+0x1e4/0x540 [ 123.679094] ? skb_mac_gso_segment+0x229/0x740 [ 123.683657] nsh_gso_segment+0x470/0xb40 [ 123.687699] skb_mac_gso_segment+0x3b5/0x740 [ 123.692085] ? nsh_pop+0x500/0x500 [ 123.695630] ? skb_network_protocol+0x4c0/0x4c0 [ 123.700300] ? lock_acquire+0x1e4/0x540 [ 123.704258] ? skb_mac_gso_segment+0x229/0x740 [ 123.708828] ? __lock_acquire+0x7fc/0x5020 [ 123.713049] nsh_gso_segment+0x470/0xb40 [ 123.717101] skb_mac_gso_segment+0x3b5/0x740 [ 123.721509] ? nsh_pop+0x500/0x500 [ 123.725040] ? skb_network_protocol+0x4c0/0x4c0 [ 123.729698] ? lock_acquire+0x1e4/0x540 [ 123.733650] ? skb_mac_gso_segment+0x229/0x740 [ 123.738215] nsh_gso_segment+0x470/0xb40 [ 123.742260] skb_mac_gso_segment+0x3b5/0x740 [ 123.746651] ? nsh_pop+0x500/0x500 [ 123.750171] ? skb_network_protocol+0x4c0/0x4c0 [ 123.754839] ? lock_acquire+0x1e4/0x540 [ 123.758802] ? skb_mac_gso_segment+0x229/0x740 [ 123.763368] ? __lock_acquire+0x7fc/0x5020 [ 123.767596] nsh_gso_segment+0x470/0xb40 [ 123.771640] skb_mac_gso_segment+0x3b5/0x740 [ 123.776032] ? nsh_pop+0x500/0x500 [ 123.779563] ? skb_network_protocol+0x4c0/0x4c0 [ 123.784213] ? lock_acquire+0x1e4/0x540 [ 123.788177] ? skb_mac_gso_segment+0x229/0x740 [ 123.792740] nsh_gso_segment+0x470/0xb40 [ 123.796788] skb_mac_gso_segment+0x3b5/0x740 [ 123.801182] ? nsh_pop+0x500/0x500 [ 123.804711] ? skb_network_protocol+0x4c0/0x4c0 [ 123.809361] ? lock_acquire+0x1e4/0x540 [ 123.813315] ? skb_mac_gso_segment+0x229/0x740 [ 123.817877] ? __lock_acquire+0x7fc/0x5020 [ 123.822101] nsh_gso_segment+0x470/0xb40 [ 123.826152] skb_mac_gso_segment+0x3b5/0x740 [ 123.830539] ? nsh_pop+0x500/0x500 [ 123.834055] ? skb_network_protocol+0x4c0/0x4c0 [ 123.838703] ? lock_acquire+0x1e4/0x540 [ 123.842656] ? skb_mac_gso_segment+0x229/0x740 [ 123.847219] nsh_gso_segment+0x470/0xb40 [ 123.851263] skb_mac_gso_segment+0x3b5/0x740 [ 123.855651] ? nsh_pop+0x500/0x500 [ 123.859178] ? skb_network_protocol+0x4c0/0x4c0 [ 123.863828] ? lock_acquire+0x1e4/0x540 [ 123.867788] ? skb_mac_gso_segment+0x229/0x740 [ 123.872347] ? __lock_acquire+0x7fc/0x5020 [ 123.876570] nsh_gso_segment+0x470/0xb40 [ 123.880618] skb_mac_gso_segment+0x3b5/0x740 [ 123.885017] ? nsh_pop+0x500/0x500 [ 123.888539] ? skb_network_protocol+0x4c0/0x4c0 [ 123.893188] ? lock_acquire+0x1e4/0x540 [ 123.897139] ? skb_mac_gso_segment+0x229/0x740 [ 123.901716] nsh_gso_segment+0x470/0xb40 [ 123.905760] skb_mac_gso_segment+0x3b5/0x740 [ 123.910147] ? nsh_pop+0x500/0x500 [ 123.913664] ? skb_network_protocol+0x4c0/0x4c0 [ 123.918419] ? lock_acquire+0x1e4/0x540 [ 123.922372] ? skb_mac_gso_segment+0x229/0x740 [ 123.926931] ? __lock_acquire+0x7fc/0x5020 [ 123.931152] nsh_gso_segment+0x470/0xb40 [ 123.935201] skb_mac_gso_segment+0x3b5/0x740 [ 123.939584] ? nsh_pop+0x500/0x500 [ 123.943107] ? skb_network_protocol+0x4c0/0x4c0 [ 123.947756] ? lock_acquire+0x1e4/0x540 [ 123.951703] ? skb_mac_gso_segment+0x229/0x740 [ 123.956275] nsh_gso_segment+0x470/0xb40 [ 123.960317] skb_mac_gso_segment+0x3b5/0x740 [ 123.964700] ? nsh_pop+0x500/0x500 [ 123.968217] ? skb_network_protocol+0x4c0/0x4c0 [ 123.972869] ? lock_acquire+0x1e4/0x540 [ 123.976820] ? skb_mac_gso_segment+0x229/0x740 [ 123.981378] ? __lock_acquire+0x7fc/0x5020 [ 123.985592] nsh_gso_segment+0x470/0xb40 [ 123.989634] skb_mac_gso_segment+0x3b5/0x740 [ 123.994035] ? nsh_pop+0x500/0x500 [ 123.997556] ? skb_network_protocol+0x4c0/0x4c0 [ 124.002205] ? lock_acquire+0x1e4/0x540 [ 124.006156] ? skb_mac_gso_segment+0x229/0x740 [ 124.010719] nsh_gso_segment+0x470/0xb40 [ 124.014758] skb_mac_gso_segment+0x3b5/0x740 [ 124.019141] ? nsh_pop+0x500/0x500 [ 124.022670] ? skb_network_protocol+0x4c0/0x4c0 [ 124.027323] ? lock_acquire+0x1e4/0x540 [ 124.031282] ? skb_mac_gso_segment+0x229/0x740 [ 124.035845] ? __lock_acquire+0x7fc/0x5020 [ 124.040062] nsh_gso_segment+0x470/0xb40 [ 124.044823] skb_mac_gso_segment+0x3b5/0x740 [ 124.049213] ? nsh_pop+0x500/0x500 [ 124.052730] ? skb_network_protocol+0x4c0/0x4c0 [ 124.057381] ? lock_acquire+0x1e4/0x540 [ 124.061332] ? skb_mac_gso_segment+0x229/0x740 [ 124.065907] nsh_gso_segment+0x470/0xb40 [ 124.069956] skb_mac_gso_segment+0x3b5/0x740 [ 124.074350] ? nsh_pop+0x500/0x500 [ 124.077867] ? skb_network_protocol+0x4c0/0x4c0 [ 124.082516] ? lock_acquire+0x1e4/0x540 [ 124.086467] ? skb_mac_gso_segment+0x229/0x740 [ 124.091050] ? __lock_acquire+0x7fc/0x5020 [ 124.095271] nsh_gso_segment+0x470/0xb40 [ 124.099314] skb_mac_gso_segment+0x3b5/0x740 [ 124.103703] ? nsh_pop+0x500/0x500 [ 124.107236] ? skb_network_protocol+0x4c0/0x4c0 [ 124.111894] ? lock_acquire+0x1e4/0x540 [ 124.115854] ? skb_mac_gso_segment+0x229/0x740 [ 124.120427] nsh_gso_segment+0x470/0xb40 [ 124.124485] skb_mac_gso_segment+0x3b5/0x740 [ 124.128886] ? nsh_pop+0x500/0x500 [ 124.132404] ? skb_network_protocol+0x4c0/0x4c0 [ 124.137055] ? lock_acquire+0x1e4/0x540 [ 124.141011] ? skb_mac_gso_segment+0x229/0x740 [ 124.145589] ? __lock_acquire+0x7fc/0x5020 [ 124.149807] nsh_gso_segment+0x470/0xb40 [ 124.153851] skb_mac_gso_segment+0x3b5/0x740 [ 124.158241] ? nsh_pop+0x500/0x500 [ 124.161760] ? skb_network_protocol+0x4c0/0x4c0 [ 124.166424] ? lock_acquire+0x1e4/0x540 [ 124.170387] ? skb_mac_gso_segment+0x229/0x740 [ 124.174957] nsh_gso_segment+0x470/0xb40 [ 124.179012] skb_mac_gso_segment+0x3b5/0x740 [ 124.183418] ? nsh_pop+0x500/0x500 [ 124.186947] ? skb_network_protocol+0x4c0/0x4c0 [ 124.191607] ? lock_acquire+0x1e4/0x540 [ 124.195559] ? skb_mac_gso_segment+0x229/0x740 [ 124.200127] ? __lock_acquire+0x7fc/0x5020 [ 124.204342] nsh_gso_segment+0x470/0xb40 [ 124.208394] skb_mac_gso_segment+0x3b5/0x740 [ 124.212780] ? nsh_pop+0x500/0x500 [ 124.216301] ? skb_network_protocol+0x4c0/0x4c0 [ 124.220963] ? lock_acquire+0x1e4/0x540 [ 124.224916] ? skb_mac_gso_segment+0x229/0x740 [ 124.229481] nsh_gso_segment+0x470/0xb40 [ 124.233532] skb_mac_gso_segment+0x3b5/0x740 [ 124.237921] ? nsh_pop+0x500/0x500 [ 124.241464] ? skb_network_protocol+0x4c0/0x4c0 [ 124.246116] ? lock_acquire+0x1e4/0x540 [ 124.250068] ? skb_mac_gso_segment+0x229/0x740 [ 124.254640] ? __lock_acquire+0x7fc/0x5020 [ 124.258856] nsh_gso_segment+0x470/0xb40 [ 124.262897] skb_mac_gso_segment+0x3b5/0x740 [ 124.267286] ? nsh_pop+0x500/0x500 [ 124.270805] ? skb_network_protocol+0x4c0/0x4c0 [ 124.275464] ? lock_acquire+0x1e4/0x540 [ 124.279424] ? skb_mac_gso_segment+0x229/0x740 [ 124.283999] nsh_gso_segment+0x470/0xb40 [ 124.288054] skb_mac_gso_segment+0x3b5/0x740 [ 124.292455] ? nsh_pop+0x500/0x500 [ 124.295981] ? skb_network_protocol+0x4c0/0x4c0 [ 124.300630] ? lock_acquire+0x1e4/0x540 [ 124.304583] ? skb_mac_gso_segment+0x229/0x740 [ 124.309143] ? __lock_acquire+0x7fc/0x5020 [ 124.313357] nsh_gso_segment+0x470/0xb40 [ 124.317397] skb_mac_gso_segment+0x3b5/0x740 [ 124.321783] ? nsh_pop+0x500/0x500 [ 124.325326] ? skb_network_protocol+0x4c0/0x4c0 [ 124.329983] ? lock_acquire+0x1e4/0x540 [ 124.333934] ? skb_mac_gso_segment+0x229/0x740 [ 124.338503] nsh_gso_segment+0x470/0xb40 [ 124.342545] skb_mac_gso_segment+0x3b5/0x740 [ 124.346940] ? nsh_pop+0x500/0x500 [ 124.350459] ? skb_network_protocol+0x4c0/0x4c0 [ 124.355108] ? lock_acquire+0x1e4/0x540 [ 124.359074] ? skb_mac_gso_segment+0x229/0x740 [ 124.363649] ? __lock_acquire+0x7fc/0x5020 [ 124.367871] nsh_gso_segment+0x470/0xb40 [ 124.371920] skb_mac_gso_segment+0x3b5/0x740 [ 124.376314] ? nsh_pop+0x500/0x500 [ 124.379831] ? skb_network_protocol+0x4c0/0x4c0 [ 124.384479] ? lock_acquire+0x1e4/0x540 [ 124.388430] ? skb_mac_gso_segment+0x229/0x740 [ 124.392994] nsh_gso_segment+0x470/0xb40 [ 124.397077] skb_mac_gso_segment+0x3b5/0x740 [ 124.401466] ? nsh_pop+0x500/0x500 [ 124.404989] ? skb_network_protocol+0x4c0/0x4c0 [ 124.409644] ? lock_acquire+0x1e4/0x540 [ 124.413603] ? skb_mac_gso_segment+0x229/0x740 [ 124.418167] ? __lock_acquire+0x7fc/0x5020 [ 124.422406] nsh_gso_segment+0x470/0xb40 [ 124.426463] skb_mac_gso_segment+0x3b5/0x740 [ 124.430853] ? nsh_pop+0x500/0x500 [ 124.434385] ? skb_network_protocol+0x4c0/0x4c0 [ 124.439047] ? lock_acquire+0x1e4/0x540 [ 124.443012] ? skb_mac_gso_segment+0x229/0x740 [ 124.447592] nsh_gso_segment+0x470/0xb40 [ 124.451644] skb_mac_gso_segment+0x3b5/0x740 [ 124.456043] ? nsh_pop+0x500/0x500 [ 124.459589] ? skb_network_protocol+0x4c0/0x4c0 [ 124.464277] ? lock_acquire+0x1e4/0x540 [ 124.468239] ? skb_mac_gso_segment+0x229/0x740 [ 124.472814] ? __lock_acquire+0x7fc/0x5020 [ 124.477044] nsh_gso_segment+0x470/0xb40 [ 124.481098] skb_mac_gso_segment+0x3b5/0x740 [ 124.485502] ? nsh_pop+0x500/0x500 [ 124.489037] ? skb_network_protocol+0x4c0/0x4c0 [ 124.493700] ? lock_acquire+0x1e4/0x540 [ 124.497663] ? skb_mac_gso_segment+0x229/0x740 [ 124.502254] nsh_gso_segment+0x470/0xb40 [ 124.506306] skb_mac_gso_segment+0x3b5/0x740 [ 124.510700] ? nsh_pop+0x500/0x500 [ 124.514240] ? skb_network_protocol+0x4c0/0x4c0 [ 124.518896] ? lock_acquire+0x1e4/0x540 [ 124.522853] ? skb_mac_gso_segment+0x229/0x740 [ 124.527437] ? __lock_acquire+0x7fc/0x5020 [ 124.531674] nsh_gso_segment+0x470/0xb40 [ 124.535739] skb_mac_gso_segment+0x3b5/0x740 [ 124.540139] ? nsh_pop+0x500/0x500 [ 124.543687] ? skb_network_protocol+0x4c0/0x4c0 [ 124.548345] ? lock_acquire+0x1e4/0x540 [ 124.552310] ? skb_mac_gso_segment+0x229/0x740 [ 124.556881] nsh_gso_segment+0x470/0xb40 [ 124.560930] skb_mac_gso_segment+0x3b5/0x740 [ 124.565409] ? nsh_pop+0x500/0x500 [ 124.568935] ? skb_network_protocol+0x4c0/0x4c0 [ 124.573604] ? lock_acquire+0x1e4/0x540 [ 124.577574] ? skb_mac_gso_segment+0x229/0x740 [ 124.582141] ? __lock_acquire+0x7fc/0x5020 [ 124.586361] nsh_gso_segment+0x470/0xb40 [ 124.590412] skb_mac_gso_segment+0x3b5/0x740 [ 124.594809] ? nsh_pop+0x500/0x500 [ 124.598350] ? skb_network_protocol+0x4c0/0x4c0 [ 124.603023] ? lock_acquire+0x1e4/0x540 [ 124.607004] ? skb_mac_gso_segment+0x229/0x740 [ 124.611585] nsh_gso_segment+0x470/0xb40 [ 124.615649] skb_mac_gso_segment+0x3b5/0x740 [ 124.620055] ? nsh_pop+0x500/0x500 [ 124.623586] ? skb_network_protocol+0x4c0/0x4c0 [ 124.628244] ? lock_acquire+0x1e4/0x540 [ 124.632207] ? skb_mac_gso_segment+0x229/0x740 [ 124.636780] ? __lock_acquire+0x7fc/0x5020 [ 124.641011] nsh_gso_segment+0x470/0xb40 [ 124.645080] skb_mac_gso_segment+0x3b5/0x740 [ 124.649478] ? nsh_pop+0x500/0x500 [ 124.653015] ? skb_network_protocol+0x4c0/0x4c0 [ 124.657691] ? find_held_lock+0x36/0x1c0 [ 124.661757] ? lock_acquire+0x1e4/0x540 [ 124.665738] ? skb_mac_gso_segment+0x229/0x740 [ 124.670342] nsh_gso_segment+0x470/0xb40 [ 124.674398] skb_mac_gso_segment+0x3b5/0x740 [ 124.678797] ? nsh_pop+0x500/0x500 [ 124.682316] ? skb_network_protocol+0x4c0/0x4c0 [ 124.686977] ? trace_hardirqs_on+0x10/0x10 [ 124.691201] ? lock_acquire+0x1e4/0x540 [ 124.695152] ? skb_mac_gso_segment+0x229/0x740 [ 124.699715] ? __free_pages_ok+0x1d3b/0x2a60 [ 124.704105] nsh_gso_segment+0x470/0xb40 [ 124.708146] skb_mac_gso_segment+0x3b5/0x740 [ 124.712538] ? nsh_pop+0x500/0x500 [ 124.716057] ? skb_network_protocol+0x4c0/0x4c0 [ 124.720703] ? print_usage_bug+0xc0/0xc0 [ 124.724749] ? __lock_acquire+0x7fc/0x5020 [ 124.728967] ? find_held_lock+0x36/0x1c0 [ 124.733011] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 124.738187] ? skb_network_protocol+0xfc/0x4c0 [ 124.742746] __skb_gso_segment+0x3c3/0x880 [ 124.746956] ? skb_mac_gso_segment+0x740/0x740 [ 124.751526] validate_xmit_skb+0x640/0xf30 [ 124.755738] ? netif_skb_features+0xb70/0xb70 [ 124.760221] validate_xmit_skb_list+0xbf/0x120 [ 124.764783] sch_direct_xmit+0x30e/0x1140 [ 124.768912] ? noqueue_init+0x40/0x40 [ 124.772690] ? dev_watchdog+0xb10/0xb10 [ 124.776642] ? __lock_is_held+0xb5/0x140 [ 124.780698] __qdisc_run+0x619/0x19f0 [ 124.784499] ? sch_direct_xmit+0x1140/0x1140 [ 124.788892] ? lock_acquire+0x1e4/0x540 [ 124.792848] ? dev_queue_xmit+0x17/0x20 [ 124.796805] ? lock_release+0xa30/0xa30 [ 124.800773] ? kasan_check_write+0x14/0x20 [ 124.805023] ? do_raw_spin_trylock+0x11c/0x1c0 [ 124.809607] ? do_raw_spin_lock+0x200/0x200 [ 124.813918] ? mini_qdisc_pair_init+0x160/0x160 [ 124.818576] __dev_queue_xmit+0x1419/0x3910 [ 124.823758] ? dev_queue_xmit+0x17/0x20 [ 124.827725] ? netdev_pick_tx+0x2d0/0x2d0 [ 124.831853] ? skb_scrub_packet+0x580/0x580 [ 124.836166] ? trace_hardirqs_on+0x10/0x10 [ 124.840385] ? print_usage_bug+0xc0/0xc0 [ 124.844445] ? graph_lock+0x170/0x170 [ 124.848239] ? __schedule+0x884/0x1ed0 [ 124.852110] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 124.857629] ? find_held_lock+0x36/0x1c0 [ 124.861688] ? lock_downgrade+0x8f0/0x8f0 [ 124.865821] ? lock_release+0xa30/0xa30 [ 124.869776] ? check_same_owner+0x340/0x340 [ 124.874076] ? skb_set_owner_w+0x24e/0x360 [ 124.878303] ? kasan_check_write+0x14/0x20 [ 124.882531] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 124.887538] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 124.892558] ? __check_object_size+0x9d/0x5f2 [ 124.897045] ? usercopy_warn+0x120/0x120 [ 124.901095] ? _copy_from_iter_nocache+0x1050/0x1050 [ 124.906177] ? _copy_from_iter_full+0x2bc/0xd20 [ 124.910831] ? kasan_check_read+0x11/0x20 [ 124.914979] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 124.920505] ? skb_copy_datagram_from_iter+0x451/0x660 [ 124.925762] ? iov_iter_advance+0x14e0/0x14e0 [ 124.930241] dev_queue_xmit+0x17/0x20 [ 124.934036] ? dev_queue_xmit+0x17/0x20 [ 124.938007] packet_sendmsg+0x428e/0x6130 [ 124.942157] ? find_held_lock+0x36/0x1c0 [ 124.946209] ? packet_getname+0x5f0/0x5f0 [ 124.950360] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 124.955377] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 124.960379] ? retint_kernel+0x10/0x10 [ 124.964264] ? compat_rw_copy_check_uvector+0x277/0x440 [ 124.969610] ? compat_rw_copy_check_uvector+0x27c/0x440 [ 124.974959] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 124.979955] ? compat_rw_copy_check_uvector+0x34d/0x440 [ 124.985319] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 124.990853] ? compat_import_iovec+0x269/0x469 [ 124.995419] ? iov_iter_get_pages+0x1210/0x1210 [ 125.000070] ? move_addr_to_kernel.part.20+0xc6/0x100 [ 125.005249] ? get_compat_msghdr+0x3f1/0x5d0 [ 125.009646] ? compat_mc_getsockopt+0xb20/0xb20 [ 125.014296] ? security_socket_sendmsg+0x94/0xc0 [ 125.019035] ? packet_getname+0x5f0/0x5f0 [ 125.023175] sock_sendmsg+0xd5/0x120 [ 125.026865] ___sys_sendmsg+0x7fd/0x930 [ 125.030820] ? copy_msghdr_from_user+0x580/0x580 [ 125.035558] ? lock_downgrade+0x8f0/0x8f0 [ 125.039685] ? __fget_light+0x2f7/0x440 [ 125.043637] ? fget_raw+0x20/0x20 [ 125.047070] ? get_unused_fd_flags+0x1a0/0x1a0 [ 125.051634] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 125.057154] ? sockfd_lookup_light+0xc5/0x160 [ 125.061628] __sys_sendmsg+0x11d/0x290 [ 125.065501] ? __ia32_sys_shutdown+0x80/0x80 [ 125.069891] ? __ia32_compat_sys_futex+0x3e6/0x5f0 [ 125.074800] ? syscall_slow_exit_work+0x500/0x500 [ 125.079623] __ia32_compat_sys_sendmsg+0x7a/0xb0 [ 125.084356] do_fast_syscall_32+0x34d/0xfb2 [ 125.088669] ? do_int80_syscall_32+0x890/0x890 [ 125.093232] ? _raw_spin_unlock_irq+0x27/0x70 [ 125.097705] ? finish_task_switch+0x1d3/0x870 [ 125.102179] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 125.107704] ? syscall_return_slowpath+0x31d/0x5e0 [ 125.112612] ? sysret32_from_system_call+0x5/0x46 [ 125.117433] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 125.122256] entry_SYSENTER_compat+0x70/0x7f [ 125.126642] RIP: 0023:0xf7fedcb9 [ 125.129980] Code: 55 08 8b 88 64 cd ff ff 8b 98 68 cd ff ff 89 c8 85 d2 74 02 89 0a 5b 5d c3 8b 04 24 c3 8b 1c 24 c3 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 125.149093] RSP: 002b:00000000f7fe90ac EFLAGS: 00000282 ORIG_RAX: 0000000000000172 [ 125.156780] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000480 [ 125.164030] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 125.171286] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 125.178542] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 125.185805] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 125.208451] ================================================================== [ 125.215880] BUG: KASAN: stack-out-of-bounds in debug_check_no_obj_freed+0x467/0x595 [ 125.223675] Read of size 8 at addr ffff8801d69dba80 by task rs:main Q:Reg/4460 [ 125.231029] [ 125.232665] CPU: 0 PID: 4460 Comm: rs:main Q:Reg Not tainted 4.18.0-rc4+ #46 [ 125.238020] kasan: CONFIG_KASAN_INLINE enabled [ 125.239844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 125.244410] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 125.253742] Call Trace: [ 125.261081] general protection fault: 0000 [#1] SMP KASAN [ 125.263662] dump_stack+0x1c9/0x2b4 [ 125.269165] CPU: 1 PID: 5089 Comm: syz-executor0 Not tainted 4.18.0-rc4+ #46 [ 125.272772] ? dump_stack_print_info.cold.2+0x52/0x52 [ 125.279927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 125.285098] ? printk+0xa7/0xcf [ 125.294526] RIP: 0010:cpuacct_account_field+0x17b/0x3b0 [ 125.297781] ? kmsg_dump_rewind_nolock+0xe4/0xe4 [ 125.303107] Code: [ 125.307841] ? debug_check_no_obj_freed+0x467/0x595 [ 125.307843] 0f 84 [ 125.309981] print_address_description+0x6c/0x20b [ 125.314963] 81 [ 125.317100] ? debug_check_no_obj_freed+0x467/0x595 [ 125.321914] 00 [ 125.323784] kasan_report.cold.7+0x242/0x2fe [ 125.328769] 00 00 [ 125.330656] __asan_report_load8_noabort+0x14/0x20 [ 125.335026] 4c 63 [ 125.337166] debug_check_no_obj_freed+0x467/0x595 [ 125.342064] ad [ 125.344213] ? free_obj_work+0xbb0/0xbb0 [ 125.349016] 74 ff [ 125.350899] ? kasan_check_read+0x11/0x20 [ 125.354934] ff [ 125.357075] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 125.361183] ff 48 [ 125.363068] ? kernel_poison_pages+0x136/0x220 [ 125.368577] b8 00 [ 125.370731] free_unref_page_list+0x3c1/0x1200 [ 125.375282] 00 [ 125.377431] ? __page_frag_cache_drain+0x1f0/0x1f0 [ 125.381989] 00 [ 125.383874] ? jbd2_journal_stop+0x449/0x15c0 [ 125.388769] 00 [ 125.390645] ? __mem_cgroup_threshold+0x740/0x740 [ 125.395101] 00 fc [ 125.396983] ? trace_hardirqs_on+0x10/0x10 [ 125.401794] ff [ 125.403929] ? trace_hardirqs_on+0x10/0x10 [ 125.408129] df [ 125.410003] ? trace_hardirqs_on+0x10/0x10 [ 125.414203] 49 [ 125.416090] ? kasan_check_read+0x11/0x20 [ 125.420283] c1 e5 [ 125.422164] ? do_raw_spin_unlock+0xa7/0x2f0 [ 125.426292] 03 [ 125.428428] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 125.432813] 49 [ 125.434690] ? trace_hardirqs_on+0xd/0x10 [ 125.439236] 8d [ 125.441118] ? uncharge_batch+0x559/0xab0 [ 125.445231] bc [ 125.447109] ? mem_cgroup_uncharge_list+0x17b/0x210 [ 125.451233] 24 [ 125.453108] ? mem_cgroup_uncharge+0x100/0x100 [ 125.458099] 38 [ 125.459974] ? do_raw_spin_lock+0xc1/0x200 [ 125.464520] 01 00 [ 125.466415] release_pages+0x7cf/0x14e0 [ 125.470613] 00 [ 125.472749] ? __activate_page+0x1340/0x1340 [ 125.476693] 48 [ 125.478570] ? bpf_prog_kallsyms_find+0xde/0x4c0 [ 125.482943] 89 [ 125.484818] ? lock_acquire+0x1e4/0x540 [ 125.489533] fa 48 [ 125.491417] ? is_bpf_text_address+0xae/0x170 [ 125.495370] c1 [ 125.497514] ? lock_release+0xa30/0xa30 [ 125.501992] ea [ 125.503865] ? kasan_check_read+0x11/0x20 [ 125.507800] 03 [ 125.509671] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 125.513783] <80> [ 125.515664] ? kernel_text_address+0x79/0xf0 [ 125.520040] 3c [ 125.522092] ? flush_tlb_func_common.constprop.18+0x690/0xd90 [ 125.526464] 02 [ 125.528341] ? leave_mm+0x40/0x40 [ 125.534190] 00 [ 125.536063] ? save_stack+0xa9/0xd0 [ 125.539483] 0f [ 125.541356] ? save_stack+0x43/0xd0 [ 125.544946] 85 [ 125.546815] ? kasan_slab_free+0xe/0x10 [ 125.550418] af [ 125.552289] ? kmem_cache_free+0x86/0x2d0 [ 125.556228] 01 [ 125.558100] ? unlink_anon_vmas+0x3b2/0xa60 [ 125.562213] 00 [ 125.564088] ? free_pgtables+0xe6/0x380 [ 125.568377] 00 [ 125.570265] ? unmap_region+0x3d8/0x570 [ 125.574294] 49 [ 125.576170] ? do_munmap+0x617/0xf90 [ 125.580120] 8b [ 125.581994] ? __x64_sys_brk+0x5a0/0x7a0 [ 125.585689] 9c [ 125.587565] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 125.591597] 24 [ 125.593478] ? do_raw_spin_unlock+0xa7/0x2f0 [ 125.598806] 38 [ 125.600683] ? unlink_anon_vmas+0x45d/0xa60 [ 125.605056] 01 [ 125.606941] ? lock_downgrade+0x8f0/0x8f0 [ 125.611233] 00 00 [ 125.613123] ? do_raw_spin_lock+0xc1/0x200 [ 125.617245] 65 48 [ 125.619399] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 125.623613] 03 [ 125.625760] ? find_next_bit+0x104/0x130 [ 125.630740] 1d [ 125.632616] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 125.638523] ? lru_add_drain_cpu+0x1c0/0x500 [ 125.644036] RSP: 0018:ffff8801daf078e8 EFLAGS: 00010806 [ 125.648429] free_pages_and_swap_cache+0x391/0x510 [ 125.648448] ? free_page_and_swap_cache+0x760/0x760 [ 125.653783] RAX: dffffc0000000000 RBX: dffffc0000000000 RCX: 0000000000000000 [ 125.658696] ? unlink_anon_vmas+0x6e0/0xa60 [ 125.663682] RDX: 1bffff8000000027 RSI: 0000000000000000 RDI: dffffc0000000138 [ 125.670940] tlb_flush_mmu_free+0xc3/0x160 [ 125.675236] RBP: ffff8801daf07978 R08: 0000000000000000 R09: 0000000000000001 [ 125.682504] arch_tlb_finish_mmu+0xad/0x170 [ 125.686709] R10: ffff8801daf07950 R11: ffffffff88fa1263 R12: dffffc0000000000 [ 125.693958] tlb_finish_mmu+0x140/0x1f0 [ 125.698254] R13: 0000000000000020 R14: 1ffff1003b5e0f1e R15: 00000000000f4240 [ 125.705514] ? tlb_gather_mmu+0x80/0x80 [ 125.709467] FS: 0000000000000000(0000) GS:ffff8801daf00000(0063) knlGS:00000000f7fe9b40 [ 125.716713] ? free_pgtables+0x2d6/0x380 [ 125.720658] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 125.728865] unmap_region+0x3ea/0x570 [ 125.732892] CR2: 00007ffeb557dd98 CR3: 00000001bc314000 CR4: 00000000001406e0 [ 125.738751] ? reusable_anon_vma+0x640/0x640 [ 125.742520] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 125.749859] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 125.754233] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 125.761483] ? __vma_adjust+0xad3/0x1840 [ 125.766986] Call Trace: [ 125.774244] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 125.778269] [ 125.780835] ? userfaultfd_unmap_prep+0x4b8/0x6f0 [ 125.785825] ? cpuacct_charge+0x5d0/0x5d0 [ 125.787953] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 125.792774] ? _raw_spin_unlock_irqrestore+0x63/0xc0 [ 125.796892] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 125.802404] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 125.807480] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 125.812991] ? update_wall_time+0x8b9/0xbd0 [ 125.818499] do_munmap+0x617/0xf90 [ 125.823491] account_system_index_time+0x1dc/0x5c0 [ 125.827794] __x64_sys_brk+0x5a0/0x7a0 [ 125.831314] ? tick_do_update_jiffies64.part.17+0x18f/0x290 [ 125.836220] ? __ia32_sys_brk+0x7a0/0x7a0 [ 125.840600] ? account_guest_time+0x460/0x460 [ 125.846295] ? syscall_slow_exit_work+0x500/0x500 [ 125.850416] ? lock_downgrade+0x8d0/0x8f0 [ 125.854882] ? ksys_ioctl+0x81/0xd0 [ 125.859701] ? kasan_check_read+0x11/0x20 [ 125.863821] do_syscall_64+0x1b9/0x820 [ 125.867419] ? do_raw_spin_unlock+0xa7/0x2f0 [ 125.871541] ? syscall_return_slowpath+0x5e0/0x5e0 [ 125.875398] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 125.879781] ? syscall_return_slowpath+0x31d/0x5e0 [ 125.884697] account_system_time+0x7f/0xb0 [ 125.889256] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 125.894155] account_process_tick+0x76/0x240 [ 125.898368] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 125.903705] update_process_times+0x21/0x70 [ 125.908110] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 125.913017] tick_sched_handle+0x9f/0x180 [ 125.917320] RIP: 0033:0x7f375ef1920a [ 125.922495] tick_sched_timer+0x45/0x130 [ 125.926618] Code: [ 125.930499] __hrtimer_run_queues+0x3eb/0x10c0 [ 125.934524] 03 [ 125.936659] ? tick_sched_do_timer+0x1a0/0x1a0 [ 125.941207] 01 [ 125.943103] ? hrtimer_start_range_ns+0xd20/0xd20 [ 125.947657] 00 [ 125.949533] ? pvclock_read_flags+0x160/0x160 [ 125.954339] 00 [ 125.956209] ? kvm_clock_read+0x25/0x30 [ 125.960669] 00 [ 125.962540] ? kvm_clock_read+0x25/0x30 [ 125.966477] 0f [ 125.968350] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 125.972286] 1f [ 125.974169] ? ktime_get_update_offsets_now+0x3db/0x5d0 [ 125.979146] 00 b8 [ 125.981025] ? do_timer+0x50/0x50 [ 125.986364] ff [ 125.988503] ? kasan_check_read+0x11/0x20 [ 125.991922] ff [ 125.993801] ? rcu_nmi_exit+0xe0/0x2d0 [ 125.997921] ff [ 125.999801] ? do_raw_spin_lock+0xc1/0x200 [ 126.003650] ff [ 126.005528] hrtimer_interrupt+0x2f3/0x750 [ 126.009725] 48 [ 126.011602] smp_apic_timer_interrupt+0x165/0x730 [ 126.015806] 8b [ 126.017679] ? smp_call_function_single_interrupt+0x660/0x660 [ 126.022484] 1c [ 126.024356] ? _raw_spin_unlock+0x22/0x30 [ 126.030212] 24 [ 126.032086] ? handle_edge_irq+0x330/0x870 [ 126.036207] 48 [ 126.038094] ? task_prio+0x50/0x50 [ 126.042286] 8b [ 126.044162] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 126.047665] 6c [ 126.049540] apic_timer_interrupt+0xf/0x20 [ 126.054347] 24 [ 126.056219] [ 126.060429] 08 [ 126.062299] Modules linked in: [ 126.064509] 4c [ 126.069546] 8b 64 24 [ 126.071417] Dumping ftrace buffer: [ 126.071427] (ftrace buffer empty) [ 126.073810] 10 [ 126.077334] ---[ end trace 0de547695d3fb3f7 ]--- [ 126.081019] 48 [ 126.082897] RIP: 0010:cpuacct_account_field+0x17b/0x3b0 [ 126.087617] 83 [ 126.089481] Code: [ 126.094817] c4 [ 126.096680] 0f [ 126.098802] 18 [ 126.100666] 84 [ 126.102528] c3 [ 126.104387] 81 [ 126.106249] 48 [ 126.108113] 00 [ 126.109973] 89 [ 126.111835] 00 [ 126.113696] fa [ 126.115557] 00 [ 126.117421] b8 [ 126.119278] 4c [ 126.121141] 0c [ 126.123004] 63 [ 126.124865] 00 [ 126.126725] ad [ 126.128586] 00 [ 126.130449] 74 [ 126.132310] 00 [ 126.134174] ff [ 126.136035] 0f [ 126.137895] ff [ 126.139754] 05 [ 126.141615] ff [ 126.143480] <48> [ 126.145340] 48 [ 126.147201] 3d [ 126.149235] b8 [ 126.151095] 00 [ 126.152956] 00 [ 126.154816] f0 [ 126.156677] 00 [ 126.158536] ff [ 126.160398] 00 [ 126.162264] ff [ 126.164128] 00 [ 126.165992] 77 [ 126.167855] 00 [ 126.169719] 33 [ 126.171579] fc [ 126.173441] 48 [ 126.175302] ff [ 126.177161] 8b [ 126.179021] df [ 126.180886] 0d [ 126.182746] 49 [ 126.184607] 57 [ 126.186471] c1 [ 126.188332] fc [ 126.190196] e5 [ 126.192058] 2a [ 126.193923] 03 [ 126.195782] 00 48 [ 126.197650] 49 [ 126.199514] 89 [ 126.201640] 8d bc [ 126.203511] 01 [ 126.205383] 24 [ 126.207504] 31 [ 126.209377] 38 [ 126.211238] c9 [ 126.213100] 01 [ 126.214970] 48 [ 126.216839] 00 [ 126.218709] 39 [ 126.220573] 00 [ 126.224297] 48 [ 126.226159] RSP: 002b:00007f375db8ab88 EFLAGS: 00000206 [ 126.226166] 89 [ 126.228031] ORIG_RAX: 000000000000000c [ 126.233518] fa [ 126.235385] RAX: ffffffffffffffda RBX: 0000000000eda000 RCX: 00007f375ef1920a [ 126.239330] 48 [ 126.241197] RDX: 0000000000eb9000 RSI: 00007f375f1cae40 RDI: 0000000000eb9000 [ 126.248434] c1 ea [ 126.250321] RBP: fffffffffffdf000 R08: 0000000000e82b80 R09: 000000000000116c [ 126.257571] 03 [ 126.259700] R10: 0000000000000000 R11: 0000000000000206 R12: 00007f375f1cbef0 [ 126.266943] <80> [ 126.268823] R13: 0000000000eda000 R14: 0000000000021000 R15: 0000000000e72a10 [ 126.276065] 3c [ 126.278123] [ 126.285367] 02 [ 126.287248] Allocated by task 3104: [ 126.288857] 00 [ 126.290734] save_stack+0x43/0xd0 [ 126.294320] 0f 85 [ 126.296210] kasan_kmalloc+0xc4/0xe0 [ 126.299628] af [ 126.301757] kasan_slab_alloc+0x12/0x20 [ 126.305432] 01 00 [ 126.307322] kmem_cache_alloc+0x12e/0x760 [ 126.311263] 00 [ 126.313414] __debug_object_init+0xbe1/0x12e0 [ 126.317521] 49 [ 126.319393] debug_object_activate+0x32e/0x690 [ 126.323906] 8b [ 126.325772] __call_rcu.constprop.67+0xc8/0xc00 [ 126.330318] 9c [ 126.332187] call_rcu_sched+0x12/0x20 [ 126.336832] 24 [ 126.338700] dentry_free+0xcb/0x170 [ 126.342474] 38 [ 126.344355] __dentry_kill+0x527/0x7a0 [ 126.347948] 01 [ 126.349835] shrink_dentry_list+0x322/0x7c0 [ 126.353695] 00 [ 126.355563] shrink_dcache_sb+0x229/0x350 [ 126.359848] 00 [ 126.361726] do_remount_sb+0x2cc/0x7b0 [ 126.365845] 65 [ 126.367717] do_mount+0x149b/0x30e0 [ 126.371573] 48 [ 126.373443] ksys_mount+0x12d/0x140 [ 126.377032] 03 [ 126.378901] __x64_sys_mount+0xbe/0x150 [ 126.382496] 1d [ 126.384383] do_syscall_64+0x1b9/0x820 [ 126.390191] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 126.394042] RSP: 0018:ffff8801daf078e8 EFLAGS: 00010806 [ 126.399195] [ 126.404798] Freed by task 0: [ 126.406406] RAX: dffffc0000000000 RBX: dffffc0000000000 RCX: 0000000000000000 [ 126.409404] (stack is not available) [ 126.416652] RDX: 1bffff8000000027 RSI: 0000000000000000 RDI: dffffc0000000138 [ 126.420331] [ 126.427847] RBP: ffff8801daf07978 R08: 0000000000000000 R09: 0000000000000001 [ 126.429455] The buggy address belongs to the object at ffff8801d69dba80 [ 126.429455] which belongs to the cache debug_objects_cache of size 40 [ 126.436702] R10: ffff8801daf07950 R11: ffffffff88fa1263 R12: dffffc0000000000 [ 126.450296] The buggy address is located 0 bytes inside of [ 126.450296] 40-byte region [ffff8801d69dba80, ffff8801d69dbaa8) [ 126.457550] R13: 0000000000000020 R14: 1ffff1003b5e0f1e R15: 00000000000f4240 [ 126.469132] The buggy address belongs to the page: [ 126.476394] FS: 0000000000000000(0000) GS:ffff8801daf00000(0063) knlGS:00000000f7fe9b40 [ 126.481302] page:ffffea00075a76c0 count:1 mapcount:0 mapping:ffff8801da810dc0 index:0xffff8801d69dbfb9 [ 126.489497] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 126.498926] CR2: 00007ffeb557dd98 CR3: 00000001bc314000 CR4: 00000000001406e0 [ 126.498937] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 126.504795] flags: 0x2fffc0000000100(slab) [ 126.512044] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 126.512053] Kernel panic - not syncing: Fatal exception in interrupt [ 126.519314] raw: 02fffc0000000100 ffffea0006fccbc8 ffffea00075c0348 ffff8801da810dc0 [ 126.545142] raw: ffff8801d69dbfb9 ffff8801d69db000 0000000100000035 0000000000000000 [ 126.552997] page dumped because: kasan: bad access detected [ 126.558681] [ 126.560308] Memory state around the buggy address: [ 126.565217] ffff8801d69db980: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 126.572557] ffff8801d69dba00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 f1 [ 126.579898] >ffff8801d69dba80: f1 f1 f1 04 f2 f2 f2 f2 f2 f2 f2 f8 f2 f2 f2 f2 [ 126.587232] ^ [ 126.590590] ffff8801d69dbb00: f2 f2 f2 f8 f2 f2 f2 00 00 00 00 00 00 00 00 00 [ 126.597939] ffff8801d69dbb80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 126.605285] ================================================================== [ 127.622305] Shutting down cpus with NMI [ 127.626873] Dumping ftrace buffer: [ 127.630399] (ftrace buffer empty) [ 127.634093] Kernel Offset: disabled [ 127.637705] Rebooting in 86400 seconds..