[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.1.35' (ECDSA) to the list of known hosts. 2019/12/02 21:12:56 fuzzer started 2019/12/02 21:12:58 dialing manager at 10.128.0.26:38907 2019/12/02 21:12:58 syscalls: 2697 2019/12/02 21:12:58 code coverage: enabled 2019/12/02 21:12:58 comparison tracing: enabled 2019/12/02 21:12:58 extra coverage: extra coverage is not supported by the kernel 2019/12/02 21:12:58 setuid sandbox: enabled 2019/12/02 21:12:58 namespace sandbox: enabled 2019/12/02 21:12:58 Android sandbox: /sys/fs/selinux/policy does not exist 2019/12/02 21:12:58 fault injection: enabled 2019/12/02 21:12:58 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/12/02 21:12:58 net packet injection: enabled 2019/12/02 21:12:58 net device setup: enabled 2019/12/02 21:12:58 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2019/12/02 21:12:58 devlink PCI setup: PCI device 0000:00:10.0 is not available 21:12:59 executing program 0: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001077d60b7030000000000006a0a00fe18000000850000002b000000b70000000000000095000000000000001d7a28683a4102e4aeb54f36633e27c279341bf489903cfdb4c05e96e3046f04e77969be0634674d0942b66b249b358efe290b39a6f2fc2a5ba74e14b45685f002cf57bf887e83fbb2215b8a34e6bdc4dc1af6d3c6958da4bddac602e0048bec11e874602f925b6dbd2af21b75fe26aa5e85ae281993bfa213923ba455c1f1abd196407b4c8fabe27b2121a5f03dff2c5d9e2e"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xd2}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000780)={r0, 0x18000000000002a0, 0x8f, 0x0, &(0x7f00000006c0)="b9ff0300000d698cb89e40f02cea", 0x0, 0x102, 0x0, 0x0, 0x0, &(0x7f0000000000), &(0x7f0000000040)="899ca36fd5569044c5769ba3ba1e573fefbf118d30efa15353b488d502918e94570c4947851a8384fb77f40184531ac86ccfacb61859b3124d44f34c7bc181af57ca059381cc492c94e15ace65a23d2dbab1579e18229c6c15246ce36105085b28f414e5ff762249fdce76fa011926c3e8667ccda9b37c2fb8701545cade43defb04438093cbf7806a3ed023d3932c53a5a8c88d2c44bd0735af3e0723c624"}, 0x28) 21:12:59 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000080)=ANY=[@ANYBLOB="66696c7465720000000920bb8a18fda7549d7b965876ddea00000000020000000000000000000000000000000000000e000000040000007ff55cb19803000007000000010000000300000003000000030000000300000003"], 0x1) syzkaller login: [ 56.238860][ T8111] IPVS: ftp: loaded support on port[0] = 21 [ 56.382686][ T8111] chnl_net:caif_netlink_parms(): no params data found [ 56.428069][ T8111] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.437439][ T8111] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.445841][ T8111] device bridge_slave_0 entered promiscuous mode [ 56.455778][ T8111] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.463407][ T8111] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.471269][ T8111] device bridge_slave_1 entered promiscuous mode 21:13:00 executing program 2: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = dup(r0) getsockopt$inet6_tcp_int(r1, 0x6, 0x3, 0x0, &(0x7f0000012ffc)) [ 56.498937][ T8114] IPVS: ftp: loaded support on port[0] = 21 [ 56.509887][ T8111] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 56.527577][ T8111] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 56.584760][ T8111] team0: Port device team_slave_0 added [ 56.593609][ T8111] team0: Port device team_slave_1 added 21:13:00 executing program 3: r0 = socket$nl_crypto(0x10, 0x3, 0x15) sendmsg$netlink(r0, &(0x7f0000005d40)={0xfffffffffffffffe, 0x0, &(0x7f0000005cc0)=[{&(0x7f00000001c0)=ANY=[@ANYBLOB="e000000012000100000000002d979dbc32d19541baae9afdca7751d955d30b7c2a441ed955f2644b58c0909e7dfd181f098c9414f17e9d74b9ac9931a19146823c2d6f1657e62461bed4b8e4bfbbca2e3776054f3cf92d952d01f3ecc64af54229537854adeb0a630e4c27cda8136bf7e575adafcef320c42bdfde68195e8f9418a70c08fa950e12d26b7b47590d661136d52bfad435ed84c0e052cd9a9a7506e2b3b2468007f81de724bb12f273e358e806dcf7f518280c0d8813e25f574f90f60066ebf72ebc6ee49ea6922e7e942f00000025f85fa32f9984514c97e3d28a1a128857ae6c06434efa5c14e4962ab786c94b7a289f79493f5c41e17534f8598c25fb4a593e3c100594dd2640e6391b1d982530f9da3987e776d0a7eb99140b6d68dee7b5f884958d864ee616d9d566ae39995915a1872dc99d9798160da778ee61569bef565d12e94dc618cbab67780852b0a44ba949b403351741257cda7785a120ba381488e32dbddc9d3ed41a5f6def5de8f19a0423ec5a9a51bb12cb91c5f4459a1b979f0557ca8db24708e10e00"/413], 0xe0}], 0x1}, 0x0) [ 56.715081][ T8111] device hsr_slave_0 entered promiscuous mode [ 56.752880][ T8111] device hsr_slave_1 entered promiscuous mode [ 56.884394][ T8114] chnl_net:caif_netlink_parms(): no params data found [ 56.906708][ T8117] IPVS: ftp: loaded support on port[0] = 21 [ 56.913136][ T8111] netdevsim netdevsim0 netdevsim0: renamed from eth0 21:13:00 executing program 4: io_setup(0x6, &(0x7f0000000000)=0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/net/tun\x00', 0x129202, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000280)={'bpq0\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x04\x00', 0x1}) io_submit(r0, 0x1, &(0x7f00000001c0)=[&(0x7f00000003c0)={0x0, 0x0, 0x0, 0x800000000001, 0x0, r1, 0x0}]) [ 56.963842][ T8111] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 57.028449][ T8111] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 57.093446][ T8111] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 57.159224][ T8114] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.161985][ T8119] IPVS: ftp: loaded support on port[0] = 21 [ 57.182970][ T8114] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.190683][ T8114] device bridge_slave_0 entered promiscuous mode [ 57.233557][ T8114] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.233840][ T8121] IPVS: ftp: loaded support on port[0] = 21 [ 57.242384][ T8114] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.257133][ T8114] device bridge_slave_1 entered promiscuous mode [ 57.276527][ T8111] bridge0: port 2(bridge_slave_1) entered blocking state 21:13:00 executing program 5: r0 = open(&(0x7f0000000300)='./file0\x00', 0x86842, 0x0) r1 = open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) write$9p(r0, &(0x7f0000000800)="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", 0x600) perf_event_open(&(0x7f0000000040)={0x1000000000000001, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000240), 0x0) setreuid(0x0, 0x0) openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x80, 0x0) syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x0, 0x2) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000040)=0xc) lstat(0x0, &(0x7f00000003c0)) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000001c0)) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000040)=0xc) fsetxattr$security_capability(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) write$P9_RGETATTR(0xffffffffffffffff, 0x0, 0x0) ioctl$RTC_AIE_ON(0xffffffffffffffff, 0x7001) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000280), 0x0, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0) sendfile(r0, r1, 0x0, 0x10000) [ 57.283731][ T8111] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.291551][ T8111] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.298631][ T8111] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.339396][ T8114] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.396342][ T8114] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.409995][ T3754] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.423760][ T3754] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.494887][ T8114] team0: Port device team_slave_0 added [ 57.501943][ T8114] team0: Port device team_slave_1 added [ 57.527741][ T8125] IPVS: ftp: loaded support on port[0] = 21 [ 57.535326][ T8111] 8021q: adding VLAN 0 to HW filter on device bond0 [ 57.570996][ T8121] chnl_net:caif_netlink_parms(): no params data found [ 57.643146][ T8114] device hsr_slave_0 entered promiscuous mode [ 57.691945][ T8114] device hsr_slave_1 entered promiscuous mode [ 57.731695][ T8114] debugfs: Directory 'hsr0' with parent '/' already present! [ 57.777649][ T8117] chnl_net:caif_netlink_parms(): no params data found [ 57.799866][ T8122] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 57.808097][ T8122] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 57.820339][ T8121] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.828501][ T8121] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.836230][ T8121] device bridge_slave_0 entered promiscuous mode [ 57.846029][ T8121] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.853175][ T8121] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.860747][ T8121] device bridge_slave_1 entered promiscuous mode [ 57.869882][ T8119] chnl_net:caif_netlink_parms(): no params data found [ 57.889988][ T8117] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.897487][ T8117] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.905099][ T8117] device bridge_slave_0 entered promiscuous mode [ 57.915942][ T8111] 8021q: adding VLAN 0 to HW filter on device team0 [ 57.937475][ T8117] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.947152][ T8117] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.955363][ T8117] device bridge_slave_1 entered promiscuous mode [ 57.975818][ T8122] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 57.984994][ T8122] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.993927][ T8122] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.000971][ T8122] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.028799][ T8117] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.040789][ T8117] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.055016][ T8121] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.089267][ T8121] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.111162][ T8121] team0: Port device team_slave_0 added [ 58.122017][ T8121] team0: Port device team_slave_1 added [ 58.128431][ T8114] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 58.184898][ T8117] team0: Port device team_slave_0 added [ 58.190776][ T8114] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 58.235517][ T8122] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 58.244154][ T8122] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 58.252901][ T8122] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.259956][ T8122] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.294726][ T8117] team0: Port device team_slave_1 added [ 58.300644][ T8114] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 58.343785][ T8114] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 58.392956][ T8119] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.400065][ T8119] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.408448][ T8119] device bridge_slave_0 entered promiscuous mode [ 58.417504][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 58.446409][ T8119] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.454658][ T8119] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.463032][ T8119] device bridge_slave_1 entered promiscuous mode [ 58.481963][ T8119] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.492003][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 58.501034][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 58.510095][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 58.518788][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 58.554264][ T8121] device hsr_slave_0 entered promiscuous mode [ 58.591983][ T8121] device hsr_slave_1 entered promiscuous mode [ 58.643980][ T8121] debugfs: Directory 'hsr0' with parent '/' already present! [ 58.660570][ T8119] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.734590][ T8117] device hsr_slave_0 entered promiscuous mode [ 58.791973][ T8117] device hsr_slave_1 entered promiscuous mode [ 58.831669][ T8117] debugfs: Directory 'hsr0' with parent '/' already present! [ 58.868651][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 58.877803][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 58.906298][ T8117] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 58.937451][ T8117] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 59.015910][ T2711] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 59.024906][ T2711] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 59.033654][ T2711] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 59.042051][ T2711] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 59.051864][ T8111] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 59.064226][ T8119] team0: Port device team_slave_0 added [ 59.073885][ T8117] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 59.124588][ T8121] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 59.185180][ T8121] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 59.254995][ T8119] team0: Port device team_slave_1 added [ 59.265679][ T8117] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 59.315533][ T8121] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 59.365526][ T8121] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 59.444554][ T8125] chnl_net:caif_netlink_parms(): no params data found [ 59.468274][ T2711] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 59.476486][ T2711] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 59.554398][ T8119] device hsr_slave_0 entered promiscuous mode [ 59.601841][ T8119] device hsr_slave_1 entered promiscuous mode [ 59.671812][ T8119] debugfs: Directory 'hsr0' with parent '/' already present! [ 59.688729][ T8114] 8021q: adding VLAN 0 to HW filter on device bond0 [ 59.698498][ T8111] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 59.735043][ T8125] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.743901][ T8125] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.752480][ T8125] device bridge_slave_0 entered promiscuous mode [ 59.789687][ T8114] 8021q: adding VLAN 0 to HW filter on device team0 [ 59.802377][ T8125] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.809447][ T8125] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.817574][ T8125] device bridge_slave_1 entered promiscuous mode [ 59.830413][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 59.844196][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 59.852672][ T8119] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 59.934199][ T8125] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 59.950905][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 59.967527][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 59.987639][ T22] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.994783][ T22] bridge0: port 1(bridge_slave_0) entered forwarding state [ 60.008250][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 60.017069][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 60.032164][ T22] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.039523][ T22] bridge0: port 2(bridge_slave_1) entered forwarding state [ 60.052099][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 60.067549][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 60.102181][ T8119] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 164.981455][ C0] rcu: INFO: rcu_preempt self-detected stall on CPU [ 164.988257][ C0] rcu: 0-...!: (10499 ticks this GP) idle=e4e/1/0x4000000000000002 softirq=10973/10973 fqs=41 [ 164.999376][ C0] (t=10500 jiffies g=6101 q=71) [ 165.004393][ C0] rcu: rcu_preempt kthread starved for 10416 jiffies! g6101 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1 [ 165.015502][ C0] rcu: RCU grace-period kthread stack dump: [ 165.021748][ C0] rcu_preempt R running task 29032 10 2 0x80004000 [ 165.029651][ C0] Call Trace: [ 165.033142][ C0] __schedule+0x9a0/0xcc0 [ 165.037476][ C0] schedule+0x181/0x210 [ 165.041637][ C0] schedule_timeout+0x14f/0x240 [ 165.046476][ C0] ? run_local_timers+0x120/0x120 [ 165.051584][ C0] rcu_gp_kthread+0xed8/0x1770 [ 165.056355][ C0] kthread+0x332/0x350 [ 165.060605][ C0] ? rcu_report_qs_rsp+0x140/0x140 [ 165.065727][ C0] ? kthread_blkcg+0xe0/0xe0 [ 165.070305][ C0] ret_from_fork+0x24/0x30 [ 165.075857][ C0] NMI backtrace for cpu 0 [ 165.080457][ C0] CPU: 0 PID: 8134 Comm: syz-executor.0 Not tainted 5.4.0-syzkaller #0 [ 165.088955][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 165.099275][ C0] Call Trace: [ 165.102897][ C0] [ 165.105850][ C0] dump_stack+0x1fb/0x318 [ 165.110968][ C0] nmi_cpu_backtrace+0xaf/0x1a0 [ 165.116010][ C0] ? nmi_trigger_cpumask_backtrace+0x16d/0x290 [ 165.122695][ C0] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 165.128858][ C0] nmi_trigger_cpumask_backtrace+0x174/0x290 [ 165.134929][ C0] arch_trigger_cpumask_backtrace+0x10/0x20 [ 165.142286][ C0] rcu_dump_cpu_stacks+0x15a/0x220 [ 165.147406][ C0] rcu_sched_clock_irq+0xe25/0x1ad0 [ 165.152595][ C0] ? trace_hardirqs_off+0x74/0x80 [ 165.157609][ C0] update_process_times+0x12d/0x180 [ 165.162796][ C0] tick_sched_timer+0x263/0x420 [ 165.167649][ C0] ? tick_setup_sched_timer+0x3d0/0x3d0 [ 165.173197][ C0] __hrtimer_run_queues+0x403/0x840 [ 165.178396][ C0] hrtimer_interrupt+0x38c/0xda0 [ 165.183457][ C0] ? debug_smp_processor_id+0x9/0x20 [ 165.188732][ C0] smp_apic_timer_interrupt+0x109/0x280 [ 165.194268][ C0] apic_timer_interrupt+0xf/0x20 [ 165.199796][ C0] [ 165.202725][ C0] RIP: 0010:free_thread_stack+0x151/0x590 [ 165.210427][ C0] Code: 31 f6 e8 42 af 6e 00 43 80 3c 2e 00 74 08 4c 89 e7 e8 43 a4 69 00 49 8b 1c 24 48 83 c3 08 48 89 d8 48 c1 e8 03 42 80 3c 28 00 <74> 08 48 89 df e8 25 a4 69 00 48 8b 3b be fc ff ff ff e8 28 04 00 [ 165.230105][ C0] RSP: 0018:ffffc90002197540 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13 [ 165.238502][ C0] RAX: 1ffff110146e6a01 RBX: ffff8880a3735008 RCX: 0000000000000000 [ 165.246460][ C0] RDX: ffffc90001e69000 RSI: 0000000000000000 RDI: ffffea00024859c0 [ 165.255126][ C0] RBP: ffffc90002197578 R08: 000000000003a768 R09: ffffed1014aba28f [ 165.265090][ C0] R10: ffffed1014aba28f R11: 0000000000000000 R12: ffff8880a37350a0 [ 165.273050][ C0] R13: dffffc0000000000 R14: 1ffff110146e6a14 R15: ffff8880a55d1468 [ 165.281032][ C0] put_task_stack+0xa3/0x130 [ 165.285608][ C0] finish_task_switch+0x3f1/0x550 [ 165.290623][ C0] __schedule+0x9a8/0xcc0 [ 165.294949][ C0] ? ___preempt_schedule+0x16/0x18 [ 165.300046][ C0] preempt_schedule+0xdb/0x120 [ 165.304800][ C0] ___preempt_schedule+0x16/0x18 [ 165.309733][ C0] _raw_spin_unlock+0x3a/0x40 [ 165.314398][ C0] __cond_resched_lock+0x93/0x1d0 [ 165.319423][ C0] __purge_vmap_area_lazy+0x1a05/0x1b00 [ 165.324964][ C0] _vm_unmap_aliases+0x43a/0x4c0 [ 165.329893][ C0] vm_unmap_aliases+0x19/0x20 [ 165.334608][ C0] change_page_attr_set_clr+0x267/0x650 [ 165.340147][ C0] set_memory_ro+0x66/0x90 [ 165.344554][ C0] bpf_int_jit_compile+0x8bab/0x9090 [ 165.349863][ C0] ? ktime_get_with_offset+0x98/0x180 [ 165.355246][ C0] ? read_seqcount_begin+0x125/0x1c0 [ 165.360532][ C0] bpf_prog_select_runtime+0x787/0xa80 [ 165.365985][ C0] ? memset+0x31/0x40 [ 165.369960][ C0] __do_sys_bpf+0x9a47/0xc890 [ 165.374633][ C0] ? kcov_ioctl+0x285/0x2c0 [ 165.379129][ C0] ? __might_fault+0xf9/0x160 [ 165.383807][ C0] ? debug_smp_processor_id+0x9/0x20 [ 165.389078][ C0] ? debug_smp_processor_id+0x1c/0x20 [ 165.394436][ C0] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 165.400496][ C0] ? prepare_exit_to_usermode+0x221/0x5b0 [ 165.406200][ C0] ? trace_irq_disable_rcuidle+0x23/0x1e0 [ 165.411906][ C0] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 165.417349][ C0] ? trace_irq_disable_rcuidle+0x23/0x1e0 [ 165.423051][ C0] ? do_syscall_64+0x1d/0x1c0 [ 165.427716][ C0] __x64_sys_bpf+0x7a/0x90 [ 165.432120][ C0] do_syscall_64+0xf7/0x1c0 [ 165.436609][ C0] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 165.442485][ C0] RIP: 0033:0x45a679 [ 165.446367][ C0] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 165.465962][ C0] RSP: 002b:00007fb01f0fec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 165.474358][ C0] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a679 [ 165.482320][ C0] RDX: 0000000000000048 RSI: 0000000020000200 RDI: 0000000000000005 [ 165.490278][ C0] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 165.498236][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb01f0ff6d4 [ 165.506194][ C0] R13: 00000000004c0d07 R14: 00000000004d4808 R15: 00000000ffffffff