[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.208' (ECDSA) to the list of known hosts. syzkaller login: [ 81.336757] IPVS: ftp: loaded support on port[0] = 21 [ 81.407324] chnl_net:caif_netlink_parms(): no params data found [ 81.492092] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.499103] bridge0: port 1(bridge_slave_0) entered disabled state [ 81.506184] device bridge_slave_0 entered promiscuous mode [ 81.514289] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.520816] bridge0: port 2(bridge_slave_1) entered disabled state [ 81.527853] device bridge_slave_1 entered promiscuous mode [ 81.545619] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 81.554388] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 81.573125] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 81.580969] team0: Port device team_slave_0 added [ 81.586742] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 81.593934] team0: Port device team_slave_1 added [ 81.609377] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 81.615636] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 81.640899] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 81.652281] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 81.658622] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 81.683922] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 81.694852] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 81.702533] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 81.722102] device hsr_slave_0 entered promiscuous mode [ 81.728093] device hsr_slave_1 entered promiscuous mode [ 81.734061] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 81.741290] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 81.804165] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.810614] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.817556] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.824041] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.854760] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 81.862419] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.870765] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 81.879830] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 81.889080] bridge0: port 1(bridge_slave_0) entered disabled state [ 81.897600] bridge0: port 2(bridge_slave_1) entered disabled state [ 81.904661] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 81.915444] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 81.922329] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.931338] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 81.939078] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.945432] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.954769] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 81.963030] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.969412] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.988475] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 81.996799] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 82.004430] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 82.012555] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 82.022979] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 82.031711] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 82.038043] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 82.050689] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready [ 82.059419] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 82.066056] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 82.077956] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 82.090368] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready [ 82.100029] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 82.132858] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready [ 82.140510] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready [ 82.148551] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready [ 82.158722] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 82.167135] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 82.174036] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 82.183691] device veth0_vlan entered promiscuous mode [ 82.192371] device veth1_vlan entered promiscuous mode [ 82.199057] IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready [ 82.208978] IPv6: ADDRCONF(NETDEV_UP): macvlan1: link is not ready [ 82.221437] IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready [ 82.230578] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 82.238476] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 82.245778] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 82.255963] device veth0_macvtap entered promiscuous mode [ 82.262594] IPv6: ADDRCONF(NETDEV_UP): macvtap0: link is not ready [ 82.270964] device veth1_macvtap entered promiscuous mode [ 82.279885] IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready [ 82.290544] IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready [ 82.300456] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.308814] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 82.317798] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 82.327358] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 82.336677] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 107.152154] watchdog: BUG: soft lockup - CPU#1 stuck for 22s! [kworker/1:1:41] [ 107.159603] Modules linked in: [ 107.162774] irq event stamp: 54925425 [ 107.166559] hardirqs last enabled at (54925424): [] ktime_get+0x235/0x2f0 [ 107.175118] hardirqs last disabled at (54925425): [] trace_hardirqs_off_thunk+0x1a/0x1c [ 107.184804] softirqs last enabled at (59266): [] icmp6_dst_alloc+0x3de/0x660 [ 107.193621] softirqs last disabled at (59268): [] ip6_finish_output2+0x1f2/0x2290 [ 107.203393] CPU: 1 PID: 41 Comm: kworker/1:1 Not tainted 4.19.211-syzkaller #0 [ 107.210793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 107.220165] Workqueue: ipv6_addrconf addrconf_dad_work [ 107.225427] RIP: 0010:lock_acquire+0x1ec/0x3c0 [ 107.230001] Code: 08 00 00 00 00 00 00 48 c1 e8 03 80 3c 10 00 0f 85 b7 01 00 00 48 83 3d 09 2e a6 08 00 0f 84 2a 01 00 00 48 8b 7c 24 08 57 9d <0f> 1f 44 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f c3 65 8b [ 107.248886] RSP: 0018:ffff8880b5166bd8 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13 [ 107.256573] RAX: 1ffffffff13e3051 RBX: ffff8880b51543c0 RCX: 00000000000074f1 [ 107.263822] RDX: dffffc0000000000 RSI: 0000000086ba128a RDI: 0000000000000286 [ 107.271071] RBP: ffff8880a93f3088 R08: ffffffff8cd51cc8 R09: 000000000000000a [ 107.278322] R10: ffff8880b5154dd8 R11: ffffffff8c66505b R12: 0000000000000000 [ 107.285587] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001 [ 107.292844] FS: 0000000000000000(0000) GS:ffff8880ba100000(0000) knlGS:0000000000000000 [ 107.301067] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 107.306937] CR2: 00007fffdebf75b8 CR3: 0000000009e6d000 CR4: 00000000003406e0 [ 107.314191] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 107.321459] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 107.328705] Call Trace: [ 107.331280] ? ktime_get+0x200/0x2f0 [ 107.335007] _raw_spin_lock+0x2a/0x40 [ 107.338808] ? tcf_police_act+0x7a/0xe60 [ 107.342849] tcf_police_act+0x7a/0xe60 [ 107.346731] ? tcf_police_dump+0x960/0x960 [ 107.350945] ? tcf_action_exec+0x16f/0x400 [ 107.355174] ? tcf_action_exec+0x12e/0x400 [ 107.359388] tcf_action_exec+0x160/0x400 [ 107.363469] basic_classify+0x184/0x2b0 [ 107.367434] tcf_classify+0x120/0x3c0 [ 107.371216] prio_enqueue+0x3bb/0x7a0 [ 107.374996] ? prio_reset+0x160/0x160 [ 107.378813] ? __dev_queue_xmit+0x134e/0x2e00 [ 107.383296] __dev_queue_xmit+0x140a/0x2e00 [ 107.387600] ? netdev_pick_tx+0x2f0/0x2f0 [ 107.391737] ? mark_held_locks+0xa6/0xf0 [ 107.395807] ? ip_finish_output2+0xfbc/0x15a0 [ 107.400330] ip_finish_output2+0xb6d/0x15a0 [ 107.404634] ? ip_send_check+0xb0/0xb0 [ 107.408500] ? ip_output+0x3a5/0x5f0 [ 107.412210] ip_finish_output+0xae9/0x10b0 [ 107.416437] ip_output+0x203/0x5f0 [ 107.419955] ? ip_mc_output+0xec0/0xec0 [ 107.423909] ? ip_fragment.constprop.0+0x240/0x240 [ 107.428845] ? prandom_u32+0x171/0x1f0 [ 107.432723] ip_local_out+0xaf/0x170 [ 107.436426] iptunnel_xmit+0x63b/0x9d0 [ 107.440292] ? erspan_changelink+0x150/0x220 [ 107.444685] geneve_xmit+0x120d/0x2e60 [ 107.448556] ? geneve_fill_metadata_dst+0x1580/0x1580 [ 107.453728] ? __lock_acquire+0x6de/0x3ff0 [ 107.457948] ? netif_skb_features+0x5c1/0xb30 [ 107.462425] ? check_preemption_disabled+0x41/0x280 [ 107.467427] dev_hard_start_xmit+0x1a8/0x920 [ 107.471820] __dev_queue_xmit+0x269d/0x2e00 [ 107.476127] ? netdev_pick_tx+0x2f0/0x2f0 [ 107.480260] ? ip6_finish_output2+0x113d/0x2290 [ 107.484913] ? memcpy+0x35/0x50 [ 107.488179] neigh_resolve_output+0x55a/0x910 [ 107.492673] ip6_finish_output2+0x113d/0x2290 [ 107.497161] ? ip6_forward_finish+0x4b0/0x4b0 [ 107.501646] ? lock_downgrade+0x720/0x720 [ 107.505772] ? lock_acquire+0x170/0x3c0 [ 107.509727] ? check_preemption_disabled+0x41/0x280 [ 107.514743] ip6_finish_output+0x89b/0x10f0 [ 107.519044] ip6_output+0x205/0x770 [ 107.522655] ? ip6_finish_output+0x10f0/0x10f0 [ 107.527219] ? ip6_fragment+0x34e0/0x34e0 [ 107.531350] ? check_preemption_disabled+0x41/0x280 [ 107.536347] ndisc_send_skb+0xa24/0x1720 [ 107.540477] ? ndisc_alloc_skb+0x320/0x320 [ 107.544710] ? ipv6_setsockopt+0x160/0x160 [ 107.549035] ? kmem_cache_alloc_node_trace+0x351/0x3b0 [ 107.554296] ? __alloc_skb+0x34f/0x560 [ 107.558163] ? skb_set_owner_w+0x1f6/0x330 [ 107.562382] ndisc_send_ns+0x51d/0x840 [ 107.566252] ? addrconf_dad_work+0xa48/0x10a0 [ 107.570816] ? pndisc_redo+0x20/0x20 [ 107.574526] ? mark_held_locks+0xa6/0xf0 [ 107.578566] ? __local_bh_enable_ip+0x159/0x270 [ 107.583217] addrconf_dad_work+0xb0e/0x10a0 [ 107.587521] ? addrconf_dad_completed+0xb60/0xb60 [ 107.592361] process_one_work+0x864/0x1570 [ 107.596586] ? pwq_dec_nr_in_flight+0x2d0/0x2d0 [ 107.601239] worker_thread+0x64c/0x1130 [ 107.605196] ? __kthread_parkme+0x133/0x1e0 [ 107.609499] ? process_one_work+0x1570/0x1570 [ 107.613973] kthread+0x33f/0x460 [ 107.617320] ? kthread_park+0x180/0x180 [ 107.621277] ret_from_fork+0x24/0x30 [ 107.624977] Kernel panic - not syncing: softlockup: hung tasks [ 107.630942] CPU: 1 PID: 41 Comm: kworker/1:1 Tainted: G L 4.19.211-syzkaller #0 [ 107.639667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 107.649010] Workqueue: ipv6_addrconf addrconf_dad_work [ 107.654267] Call Trace: [ 107.656828] [ 107.658967] dump_stack+0x1fc/0x2ef [ 107.662574] panic+0x26a/0x50e [ 107.665745] ? __warn_printk+0xf3/0xf3 [ 107.669616] ? watchdog_timer_fn.cold+0x5/0x25 [ 107.674179] ? watchdog_timer_fn+0x53e/0x580 [ 107.678572] watchdog_timer_fn.cold+0x16/0x25 [ 107.683056] __hrtimer_run_queues+0x3f6/0xe60 [ 107.687532] ? softlockup_fn+0xb0/0xb0 [ 107.691402] ? hrtimer_fixup_free+0xa0/0xa0 [ 107.695703] ? kvm_clock_get_cycles+0x14/0x30 [ 107.700182] ? ktime_get_update_offsets_now+0x2ec/0x460 [ 107.705539] hrtimer_interrupt+0x326/0x9e0 [ 107.709788] smp_apic_timer_interrupt+0x10c/0x550 [ 107.714622] apic_timer_interrupt+0xf/0x20 [ 107.718844] [ 107.721066] RIP: 0010:lock_acquire+0x1ec/0x3c0 [ 107.725631] Code: 08 00 00 00 00 00 00 48 c1 e8 03 80 3c 10 00 0f 85 b7 01 00 00 48 83 3d 09 2e a6 08 00 0f 84 2a 01 00 00 48 8b 7c 24 08 57 9d <0f> 1f 44 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f c3 65 8b [ 107.744514] RSP: 0018:ffff8880b5166bd8 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13 [ 107.752208] RAX: 1ffffffff13e3051 RBX: ffff8880b51543c0 RCX: 00000000000074f1 [ 107.759549] RDX: dffffc0000000000 RSI: 0000000086ba128a RDI: 0000000000000286 [ 107.766800] RBP: ffff8880a93f3088 R08: ffffffff8cd51cc8 R09: 000000000000000a [ 107.774055] R10: ffff8880b5154dd8 R11: ffffffff8c66505b R12: 0000000000000000 [ 107.781304] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001 [ 107.788566] ? ktime_get+0x200/0x2f0 [ 107.792273] _raw_spin_lock+0x2a/0x40 [ 107.796061] ? tcf_police_act+0x7a/0xe60 [ 107.800101] tcf_police_act+0x7a/0xe60 [ 107.803976] ? tcf_police_dump+0x960/0x960 [ 107.808192] ? tcf_action_exec+0x16f/0x400 [ 107.812414] ? tcf_action_exec+0x12e/0x400 [ 107.816639] tcf_action_exec+0x160/0x400 [ 107.820682] basic_classify+0x184/0x2b0 [ 107.824637] tcf_classify+0x120/0x3c0 [ 107.828422] prio_enqueue+0x3bb/0x7a0 [ 107.832208] ? prio_reset+0x160/0x160 [ 107.835995] ? __dev_queue_xmit+0x134e/0x2e00 [ 107.840736] __dev_queue_xmit+0x140a/0x2e00 [ 107.845049] ? netdev_pick_tx+0x2f0/0x2f0 [ 107.849185] ? mark_held_locks+0xa6/0xf0 [ 107.853229] ? ip_finish_output2+0xfbc/0x15a0 [ 107.857706] ip_finish_output2+0xb6d/0x15a0 [ 107.862036] ? ip_send_check+0xb0/0xb0 [ 107.865926] ? ip_output+0x3a5/0x5f0 [ 107.869622] ip_finish_output+0xae9/0x10b0 [ 107.873856] ip_output+0x203/0x5f0 [ 107.877398] ? ip_mc_output+0xec0/0xec0 [ 107.881367] ? ip_fragment.constprop.0+0x240/0x240 [ 107.886279] ? prandom_u32+0x171/0x1f0 [ 107.890153] ip_local_out+0xaf/0x170 [ 107.893853] iptunnel_xmit+0x63b/0x9d0 [ 107.897724] ? erspan_changelink+0x150/0x220 [ 107.902136] geneve_xmit+0x120d/0x2e60 [ 107.906015] ? geneve_fill_metadata_dst+0x1580/0x1580 [ 107.911189] ? __lock_acquire+0x6de/0x3ff0 [ 107.915409] ? netif_skb_features+0x5c1/0xb30 [ 107.920062] ? check_preemption_disabled+0x41/0x280 [ 107.925181] dev_hard_start_xmit+0x1a8/0x920 [ 107.929588] __dev_queue_xmit+0x269d/0x2e00 [ 107.933949] ? netdev_pick_tx+0x2f0/0x2f0 [ 107.938082] ? ip6_finish_output2+0x113d/0x2290 [ 107.942739] ? memcpy+0x35/0x50 [ 107.946002] neigh_resolve_output+0x55a/0x910 [ 107.950502] ip6_finish_output2+0x113d/0x2290 [ 107.954991] ? ip6_forward_finish+0x4b0/0x4b0 [ 107.959480] ? lock_downgrade+0x720/0x720 [ 107.963740] ? lock_acquire+0x170/0x3c0 [ 107.967700] ? check_preemption_disabled+0x41/0x280 [ 107.972713] ip6_finish_output+0x89b/0x10f0 [ 107.977028] ip6_output+0x205/0x770 [ 107.980640] ? ip6_finish_output+0x10f0/0x10f0 [ 107.985207] ? ip6_fragment+0x34e0/0x34e0 [ 107.989340] ? check_preemption_disabled+0x41/0x280 [ 107.994345] ndisc_send_skb+0xa24/0x1720 [ 107.998392] ? ndisc_alloc_skb+0x320/0x320 [ 108.002611] ? ipv6_setsockopt+0x160/0x160 [ 108.006848] ? kmem_cache_alloc_node_trace+0x351/0x3b0 [ 108.012130] ? __alloc_skb+0x34f/0x560 [ 108.016024] ? skb_set_owner_w+0x1f6/0x330 [ 108.020262] ndisc_send_ns+0x51d/0x840 [ 108.024136] ? addrconf_dad_work+0xa48/0x10a0 [ 108.028617] ? pndisc_redo+0x20/0x20 [ 108.032321] ? mark_held_locks+0xa6/0xf0 [ 108.036377] ? __local_bh_enable_ip+0x159/0x270 [ 108.041037] addrconf_dad_work+0xb0e/0x10a0 [ 108.047875] ? addrconf_dad_completed+0xb60/0xb60 [ 108.052729] process_one_work+0x864/0x1570 [ 108.056970] ? pwq_dec_nr_in_flight+0x2d0/0x2d0 [ 108.061624] worker_thread+0x64c/0x1130 [ 108.065704] ? __kthread_parkme+0x133/0x1e0 [ 108.070023] ? process_one_work+0x1570/0x1570 [ 108.074501] kthread+0x33f/0x460 [ 108.077849] ? kthread_park+0x180/0x180 [ 108.081809] ret_from_fork+0x24/0x30 [ 108.085805] Kernel Offset: disabled [ 108.089475] Rebooting in 86400 seconds..