syzkaller login: [ 63.394139][ T38] audit: type=1400 audit(1575022101.589:41): avc: denied { map } for pid=7836 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '[localhost]:47460' (ECDSA) to the list of known hosts. 2019/11/29 10:08:33 fuzzer started [ 75.746267][ T38] audit: type=1400 audit(1575022113.949:42): avc: denied { map } for pid=7852 comm="syz-fuzzer" path="/syz-fuzzer" dev="sda1" ino=16525 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:file_t:s0 tclass=file permissive=1 2019/11/29 10:08:35 dialing manager at 10.0.2.10:46599 2019/11/29 10:08:35 syscalls: 2543 2019/11/29 10:08:35 code coverage: enabled 2019/11/29 10:08:35 comparison tracing: enabled 2019/11/29 10:08:35 extra coverage: extra coverage is not supported by the kernel 2019/11/29 10:08:35 setuid sandbox: enabled 2019/11/29 10:08:35 namespace sandbox: enabled 2019/11/29 10:08:35 Android sandbox: /sys/fs/selinux/policy does not exist 2019/11/29 10:08:35 fault injection: enabled 2019/11/29 10:08:35 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/11/29 10:08:35 net packet injection: enabled 2019/11/29 10:08:35 net device setup: enabled 2019/11/29 10:08:35 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2019/11/29 10:08:35 devlink PCI setup: PCI device 0000:00:10.0 is not available 10:08:46 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000040)={0x0, 0x0}, &(0x7f0000000280)=0xc) setuid(r1) [ 87.884281][ T38] audit: type=1400 audit(1575022126.079:43): avc: denied { map } for pid=7872 comm="syz-executor.0" path="/sys/kernel/debug/kcov" dev="debugfs" ino=17742 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:debugfs_t:s0 tclass=file permissive=1 [ 88.010566][ T7873] IPVS: ftp: loaded support on port[0] = 21 10:08:46 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) request_key(&(0x7f0000000000)='user\x00', &(0x7f0000000040)={'sVz'}, &(0x7f0000000a80), 0xfffffffffffffffd) socket$inet(0x2, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80, 0x0, 0x271}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ptype\x00') preadv(r0, &(0x7f00000017c0), 0x315, 0x800000) [ 88.075721][ T7873] chnl_net:caif_netlink_parms(): no params data found [ 88.105924][ T7873] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.113726][ T7873] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.122264][ T7873] device bridge_slave_0 entered promiscuous mode [ 88.131665][ T7873] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.139454][ T7873] bridge0: port 2(bridge_slave_1) entered disabled state [ 88.147755][ T7873] device bridge_slave_1 entered promiscuous mode [ 88.163980][ T7873] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 88.174757][ T7873] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link 10:08:46 executing program 2: socket$inet(0x2, 0x0, 0x0) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) write(r1, &(0x7f00000001c0), 0xfffffef3) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff}) close(r2) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) sendmsg$TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0) dup2(r4, r2) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200)={0x0, r5+30000000}, 0x0) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) mkdir(&(0x7f00000001c0)='./file0\x00', 0x0) sendmmsg$sock(0xffffffffffffffff, 0x0, 0x0, 0x10) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x210007fd, 0x0, 0x0) [ 88.200626][ T7873] team0: Port device team_slave_0 added [ 88.208343][ T7873] team0: Port device team_slave_1 added [ 88.208809][ T7876] IPVS: ftp: loaded support on port[0] = 21 [ 88.286395][ T7873] device hsr_slave_0 entered promiscuous mode 10:08:46 executing program 3: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000900)='/dev/ppp\x00', 0x0, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f0000000640)=""/246) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ppp\x00', 0x41, 0x0) ioctl$EVIOCGPROP(r1, 0x4004743d, &(0x7f0000001080)=""/246) write$binfmt_script(r1, 0x0, 0xfffffff7) [ 88.384549][ T7873] device hsr_slave_1 entered promiscuous mode [ 88.447584][ T7879] IPVS: ftp: loaded support on port[0] = 21 10:08:46 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) write$evdev(r1, &(0x7f0000000140)=[{{0x0, 0x2710}}], 0x362) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000100)={0x0, 0x0, 0x0, 0xffff}) r3 = open(&(0x7f0000000140)='./bus\x00', 0x141042, 0x0) r4 = creat(&(0x7f0000000300)='./file0\x00', 0x0) write$P9_RREMOVE(r4, &(0x7f0000000280), 0x1033b) ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000200)={0x0, r4, 0x2}) [ 88.468662][ T7881] IPVS: ftp: loaded support on port[0] = 21 [ 88.510600][ T38] audit: type=1400 audit(1575022126.709:44): avc: denied { create } for pid=7873 comm="syz-executor.0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 88.511391][ T7873] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 88.544001][ T38] audit: type=1400 audit(1575022126.709:45): avc: denied { write } for pid=7873 comm="syz-executor.0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 10:08:46 executing program 5: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000900)='/dev/ppp\x00', 0x0, 0x0) fsetxattr$security_selinux(r0, &(0x7f0000000040)='security.selinux\x00', &(0x7f0000000080)='system_u:object_r:checkpolicy_exec_t:s0\x00', 0x28, 0x0) [ 88.575068][ T38] audit: type=1400 audit(1575022126.709:46): avc: denied { read } for pid=7873 comm="syz-executor.0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 88.628737][ T7873] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 88.745695][ T7873] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 88.785935][ T7873] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 88.882344][ T7885] IPVS: ftp: loaded support on port[0] = 21 [ 88.901170][ T7883] IPVS: ftp: loaded support on port[0] = 21 [ 88.939237][ T7876] chnl_net:caif_netlink_parms(): no params data found [ 88.980731][ T7879] chnl_net:caif_netlink_parms(): no params data found [ 89.024941][ T7873] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.031561][ T7873] bridge0: port 2(bridge_slave_1) entered forwarding state [ 89.038808][ T7873] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.045701][ T7873] bridge0: port 1(bridge_slave_0) entered forwarding state [ 89.072289][ T7876] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.079893][ T7876] bridge0: port 1(bridge_slave_0) entered disabled state [ 89.087713][ T7876] device bridge_slave_0 entered promiscuous mode [ 89.103648][ T7881] chnl_net:caif_netlink_parms(): no params data found [ 89.119000][ T7876] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.126103][ T7876] bridge0: port 2(bridge_slave_1) entered disabled state [ 89.133706][ T7876] device bridge_slave_1 entered promiscuous mode [ 89.150757][ T1196] bridge0: port 1(bridge_slave_0) entered disabled state [ 89.158389][ T1196] bridge0: port 2(bridge_slave_1) entered disabled state [ 89.186537][ T7876] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 89.199920][ T7876] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 89.209298][ T7879] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.216456][ T7879] bridge0: port 1(bridge_slave_0) entered disabled state [ 89.223857][ T7879] device bridge_slave_0 entered promiscuous mode [ 89.249751][ T7876] team0: Port device team_slave_0 added [ 89.255869][ T7879] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.262529][ T7879] bridge0: port 2(bridge_slave_1) entered disabled state [ 89.270349][ T7879] device bridge_slave_1 entered promiscuous mode [ 89.285384][ T7881] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.292534][ T7881] bridge0: port 1(bridge_slave_0) entered disabled state [ 89.300333][ T7881] device bridge_slave_0 entered promiscuous mode [ 89.308099][ T7881] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.314944][ T7881] bridge0: port 2(bridge_slave_1) entered disabled state [ 89.322110][ T7881] device bridge_slave_1 entered promiscuous mode [ 89.330193][ T7876] team0: Port device team_slave_1 added [ 89.357970][ T7879] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 89.375916][ T7881] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 89.397334][ T7879] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 89.427335][ T7881] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 89.476988][ T7879] team0: Port device team_slave_0 added [ 89.525917][ T7876] device hsr_slave_0 entered promiscuous mode [ 89.584478][ T7876] device hsr_slave_1 entered promiscuous mode [ 89.644248][ T7876] debugfs: Directory 'hsr0' with parent '/' already present! [ 89.656413][ T7881] team0: Port device team_slave_0 added [ 89.674652][ T7879] team0: Port device team_slave_1 added [ 89.682785][ T7881] team0: Port device team_slave_1 added [ 89.696475][ T7883] chnl_net:caif_netlink_parms(): no params data found [ 89.708459][ T7885] chnl_net:caif_netlink_parms(): no params data found [ 89.776076][ T7879] device hsr_slave_0 entered promiscuous mode [ 89.844487][ T7879] device hsr_slave_1 entered promiscuous mode [ 89.884281][ T7879] debugfs: Directory 'hsr0' with parent '/' already present! [ 89.985962][ T7881] device hsr_slave_0 entered promiscuous mode [ 90.024357][ T7881] device hsr_slave_1 entered promiscuous mode [ 90.084207][ T7881] debugfs: Directory 'hsr0' with parent '/' already present! [ 90.109295][ T7873] 8021q: adding VLAN 0 to HW filter on device bond0 [ 90.137344][ T7883] bridge0: port 1(bridge_slave_0) entered blocking state [ 90.143988][ T7883] bridge0: port 1(bridge_slave_0) entered disabled state [ 90.151489][ T7883] device bridge_slave_0 entered promiscuous mode [ 90.159153][ T7883] bridge0: port 2(bridge_slave_1) entered blocking state [ 90.166139][ T7883] bridge0: port 2(bridge_slave_1) entered disabled state [ 90.173466][ T7883] device bridge_slave_1 entered promiscuous mode [ 90.180142][ T7876] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 90.259033][ T7876] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 90.368914][ T7876] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 90.477956][ T7876] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 90.580862][ T7879] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 90.655700][ T7879] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 90.721801][ T7879] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 90.787974][ T7879] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 90.861614][ T7883] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 90.872593][ T7883] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 90.881660][ T7885] bridge0: port 1(bridge_slave_0) entered blocking state [ 90.892227][ T7885] bridge0: port 1(bridge_slave_0) entered disabled state [ 90.901277][ T7885] device bridge_slave_0 entered promiscuous mode [ 90.911902][ T7885] bridge0: port 2(bridge_slave_1) entered blocking state [ 90.919032][ T7885] bridge0: port 2(bridge_slave_1) entered disabled state [ 90.929637][ T7885] device bridge_slave_1 entered promiscuous mode [ 90.964939][ T7883] team0: Port device team_slave_0 added [ 90.978189][ T2953] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 90.986413][ T2953] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 90.993906][ T7881] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 91.095671][ T7881] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 91.167680][ T7883] team0: Port device team_slave_1 added [ 91.178107][ T7885] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 91.188637][ T7885] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 91.202571][ T7881] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 91.255998][ T7881] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 91.316435][ T7873] 8021q: adding VLAN 0 to HW filter on device team0 [ 91.339863][ T7885] team0: Port device team_slave_0 added [ 91.447076][ T7883] device hsr_slave_0 entered promiscuous mode [ 91.505826][ T7883] device hsr_slave_1 entered promiscuous mode [ 91.564478][ T7883] debugfs: Directory 'hsr0' with parent '/' already present! [ 91.578773][ T3744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 91.588023][ T3744] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 91.596732][ T3744] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.604385][ T3744] bridge0: port 1(bridge_slave_0) entered forwarding state [ 91.616463][ T7885] team0: Port device team_slave_1 added [ 91.647123][ T3744] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 91.656331][ T3744] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 91.664697][ T3744] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.671582][ T3744] bridge0: port 2(bridge_slave_1) entered forwarding state [ 91.679237][ T3744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 91.688330][ T3744] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 91.696753][ T3744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 91.705397][ T3744] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 91.729864][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 91.737486][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 91.746152][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 91.770737][ T7883] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 91.847461][ T7883] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 91.996058][ T7885] device hsr_slave_0 entered promiscuous mode [ 92.044445][ T7885] device hsr_slave_1 entered promiscuous mode [ 92.094269][ T7885] debugfs: Directory 'hsr0' with parent '/' already present! [ 92.116382][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 92.124568][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 92.132967][ T7883] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 92.197904][ T7883] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 92.248314][ T7876] 8021q: adding VLAN 0 to HW filter on device bond0 [ 92.257946][ T1196] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 92.266883][ T1196] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 92.281112][ T7881] 8021q: adding VLAN 0 to HW filter on device bond0 [ 92.299587][ T7885] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 92.347306][ T7885] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 92.450688][ T7876] 8021q: adding VLAN 0 to HW filter on device team0 [ 92.462499][ T7885] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 92.547917][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 92.556261][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 92.565883][ T7873] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 92.580353][ T7885] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 92.682768][ T7881] 8021q: adding VLAN 0 to HW filter on device team0 [ 92.690462][ T4275] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 92.698682][ T4275] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 92.715054][ T7879] 8021q: adding VLAN 0 to HW filter on device bond0 [ 92.730670][ T1196] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 92.738994][ T1196] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 92.750812][ T1196] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.757861][ T1196] bridge0: port 1(bridge_slave_0) entered forwarding state [ 92.769181][ T1196] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 92.777932][ T1196] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 92.789148][ T1196] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.796058][ T1196] bridge0: port 2(bridge_slave_1) entered forwarding state [ 92.803543][ T1196] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 92.815722][ T1196] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 92.827442][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 92.842248][ T7873] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 92.853156][ T2953] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 92.860796][ T2953] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 92.868475][ T2953] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 92.877218][ T2953] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 92.885516][ T2953] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.892252][ T2953] bridge0: port 1(bridge_slave_0) entered forwarding state [ 92.899714][ T2953] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 92.907981][ T2953] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 92.916033][ T2953] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 92.924485][ T2953] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 92.932636][ T2953] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.939995][ T2953] bridge0: port 2(bridge_slave_1) entered forwarding state [ 92.949905][ T2953] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 92.958041][ T2953] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 92.979297][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 92.987962][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 93.005266][ T38] audit: type=1400 audit(1575022131.199:47): avc: denied { associate } for pid=7873 comm="syz-executor.0" name="syz0" scontext=unconfined_u:object_r:unlabeled_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=filesystem permissive=1 [ 93.013860][ T7883] 8021q: adding VLAN 0 to HW filter on device bond0 [ 93.040255][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 93.049005][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 93.057009][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 93.064799][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 93.072893][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 93.083557][ T7879] 8021q: adding VLAN 0 to HW filter on device team0 [ 93.118067][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 93.127994][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 93.136811][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready 10:08:51 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000040)={0x0, 0x0}, &(0x7f0000000280)=0xc) setuid(r1) [ 93.145232][ T7895] bridge0: port 1(bridge_slave_0) entered blocking state [ 93.153617][ T7895] bridge0: port 1(bridge_slave_0) entered forwarding state [ 93.161076][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 93.169561][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready 10:08:51 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000040)={0x0, 0x0}, &(0x7f0000000280)=0xc) setuid(r1) [ 93.181597][ T7895] bridge0: port 2(bridge_slave_1) entered blocking state [ 93.188765][ T7895] bridge0: port 2(bridge_slave_1) entered forwarding state [ 93.189078][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 93.204372][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready 10:08:51 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000040)={0x0, 0x0}, &(0x7f0000000280)=0xc) setuid(r1) [ 93.215586][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 93.227265][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready 10:08:51 executing program 0: socket$inet_udplite(0x2, 0x2, 0x88) setuid(0x0) [ 93.241039][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 93.252390][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready 10:08:51 executing program 0: socket$inet_udplite(0x2, 0x2, 0x88) setuid(0x0) [ 93.263292][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 93.277187][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready 10:08:51 executing program 0: socket$inet_udplite(0x2, 0x2, 0x88) setuid(0x0) [ 93.287965][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 93.298974][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready 10:08:51 executing program 0: getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000040)={0x0, 0x0}, &(0x7f0000000280)=0xc) setuid(r0) [ 93.309682][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 93.320726][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 93.331396][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 93.343163][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 93.352657][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 93.360749][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 93.373146][ T7876] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 93.388111][ T7883] 8021q: adding VLAN 0 to HW filter on device team0 [ 93.402857][ T7879] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 93.418718][ T586] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 93.431466][ T586] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 93.440228][ T586] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 93.448627][ T586] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 93.457384][ T586] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 93.470682][ T7885] 8021q: adding VLAN 0 to HW filter on device bond0 [ 93.487339][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 93.496054][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 93.503959][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 93.512157][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 93.519847][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 93.528086][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 93.541322][ T1196] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 93.549208][ T1196] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 93.556652][ T1196] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 93.565585][ T1196] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 93.573521][ T1196] bridge0: port 1(bridge_slave_0) entered blocking state [ 93.580575][ T1196] bridge0: port 1(bridge_slave_0) entered forwarding state [ 93.592045][ T7879] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 93.599594][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 93.610551][ T7881] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 93.620018][ T7876] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 93.638432][ T4275] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 93.647065][ T4275] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 93.655534][ T4275] bridge0: port 2(bridge_slave_1) entered blocking state [ 93.662228][ T4275] bridge0: port 2(bridge_slave_1) entered forwarding state [ 93.669485][ T4275] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 93.677564][ T4275] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 93.697392][ T7885] 8021q: adding VLAN 0 to HW filter on device team0 [ 93.717444][ T7881] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 93.726196][ T4275] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 93.736184][ T4275] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 93.744711][ T4275] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 93.752742][ T4275] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 93.762023][ T4275] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 93.771107][ T4275] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 93.779738][ T4275] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 93.788073][ T4275] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 93.796484][ T4275] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 93.803913][ T4275] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 93.811878][ T4275] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 93.832205][ T1196] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 93.840836][ T1196] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 93.856129][ T7883] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 93.882339][ T7883] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 93.902727][ T1196] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 93.916450][ T1196] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 93.919551][ T38] audit: type=1400 audit(1575022132.119:48): avc: denied { open } for pid=7929 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=perf_event permissive=1 [ 93.924725][ T1196] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 93.949086][ T38] audit: type=1400 audit(1575022132.119:49): avc: denied { kernel } for pid=7929 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=perf_event permissive=1 [ 93.957809][ T1196] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 93.988973][ T1196] bridge0: port 1(bridge_slave_0) entered blocking state [ 93.996119][ T1196] bridge0: port 1(bridge_slave_0) entered forwarding state [ 94.004370][ T1196] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 94.014104][ C0] hrtimer: interrupt took 27117 ns [ 199.024076][ C0] rcu: INFO: rcu_preempt self-detected stall on CPU [ 199.024625][ C0] rcu: 0-....: (1 GPs behind) idle=c56/1/0x4000000000000004 softirq=6883/6884 fqs=5250 [ 199.034227][ C0] (t=10502 jiffies g=5493 q=993) [ 199.046220][ C0] NMI backtrace for cpu 0 [ 199.046220][ C0] CPU: 0 PID: 7932 Comm: syz-executor.1 Not tainted 5.4.0-syzkaller #0 [ 199.054176][ C0] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.10.2-1 04/01/2014 [ 199.054176][ C0] Call Trace: [ 199.054176][ C0] [ 199.054176][ C0] dump_stack+0x197/0x210 [ 199.054176][ C0] nmi_cpu_backtrace.cold+0x70/0xb2 [ 199.054176][ C0] ? lapic_can_unplug_cpu.cold+0x3a/0x3a [ 199.054176][ C0] nmi_trigger_cpumask_backtrace+0x23b/0x28b [ 199.054176][ C0] arch_trigger_cpumask_backtrace+0x14/0x20 [ 199.054176][ C0] rcu_dump_cpu_stacks+0x183/0x1cf [ 199.054176][ C0] ? find_next_bit+0x107/0x130 [ 199.054176][ C0] rcu_sched_clock_irq.cold+0x509/0xc02 [ 199.054176][ C0] ? raise_softirq+0x138/0x340 [ 199.054176][ C0] update_process_times+0x2d/0x70 [ 199.054176][ C0] tick_sched_handle+0xa2/0x190 [ 199.054176][ C0] tick_sched_timer+0x53/0x140 [ 199.054176][ C0] __hrtimer_run_queues+0x364/0xe40 [ 199.054176][ C0] ? tick_sched_do_timer+0x1b0/0x1b0 [ 199.054176][ C0] ? hrtimer_init+0x330/0x330 [ 199.054176][ C0] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 199.054176][ C0] ? ktime_get_update_offsets_now+0x2ce/0x430 [ 199.054176][ C0] hrtimer_interrupt+0x314/0x770 [ 199.054176][ C0] smp_apic_timer_interrupt+0x160/0x610 [ 199.054176][ C0] apic_timer_interrupt+0xf/0x20 [ 199.054176][ C0] RIP: 0010:update_stack_state+0x46e/0x5f0 [ 199.054176][ C0] Code: 45 48 00 00 00 00 e9 16 ff ff ff 48 b8 00 00 00 00 00 fc ff df 4c 89 e1 48 c1 e9 03 80 3c 01 00 0f 85 12 01 00 00 4d 8b 24 24 b0 fe ff ff 49 8d 7d 38 48 b8 00 00 00 00 00 fc ff df 48 89 f9 [ 199.054176][ C0] RSP: 0018:ffff88802d6094a8 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13 [ 199.054176][ C0] RAX: dffffc0000000000 RBX: ffff8880122e7d30 RCX: 1ffff1100245cfa7 [ 199.054176][ C0] RDX: 0000000000000010 RSI: 1ffff11005ac1200 RDI: ffff88802d609680 [ 199.054176][ C0] RBP: ffff88802d609570 R08: ffff88801231c040 R09: ffff88802d6096b0 [ 199.054176][ C0] R10: ffff88802d609680 R11: ffff88802d609690 R12: ffffffff818eadbc [ 199.054176][ C0] R13: ffff88802d609658 R14: 1ffff11005ac129d R15: ffff88802d609698 [ 199.054176][ C0] ? apic_timer_interrupt+0xa/0x20 [ 199.054176][ C0] ? __do_sys_perf_event_open+0x1cbc/0x2c70 [ 199.054176][ C0] ? update_stack_state+0x190/0x5f0 [ 199.054176][ C0] ? __read_once_size_nocheck.constprop.0+0x10/0x10 [ 199.054176][ C0] unwind_next_frame.part.0+0x1a9/0xa20 [ 199.054176][ C0] ? unwind_dump+0x100/0x100 [ 199.054176][ C0] ? unwind_dump+0x100/0x100 [ 199.054176][ C0] ? profile_setup.cold+0xbb/0xbb [ 199.054176][ C0] unwind_next_frame+0x3b/0x50 [ 199.054176][ C0] arch_stack_walk+0x81/0xf0 [ 199.054176][ C0] ? perf_install_in_context+0x308/0x5a0 [ 199.054176][ C0] stack_trace_save+0xac/0xe0 [ 199.054176][ C0] ? stack_trace_consume_entry+0x190/0x190 [ 199.054176][ C0] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 199.054176][ C0] ? __this_cpu_preempt_check+0x2c/0x190 [ 199.054176][ C0] ? __this_cpu_preempt_check+0x35/0x190 [ 199.054176][ C0] ? retint_kernel+0x2b/0x2b [ 199.054176][ C0] save_stack+0x23/0x90 [ 199.054176][ C0] ? save_stack+0x23/0x90 [ 199.054176][ C0] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 199.054176][ C0] ? kasan_slab_alloc+0xf/0x20 [ 199.054176][ C0] ? kmem_cache_alloc_node_trace+0x143/0x750 [ 199.054176][ C0] ? __kmalloc_node_track_caller+0x3d/0x70 [ 199.054176][ C0] ? __kmalloc_reserve.isra.0+0x40/0xf0 [ 199.054176][ C0] ? __alloc_skb+0x10b/0x5e0 [ 199.054176][ C0] ? ndisc_alloc_skb+0x13c/0x340 [ 199.054176][ C0] ? ndisc_send_rs+0x39b/0x720 [ 199.054176][ C0] ? addrconf_rs_timer+0x30f/0x6e0 [ 199.054176][ C0] ? call_timer_fn+0x1ac/0x780 [ 199.054176][ C0] ? run_timer_softirq+0x6c3/0x1790 [ 199.054176][ C0] ? __do_softirq+0x262/0x98c [ 199.054176][ C0] ? irq_exit+0x19b/0x1e0 [ 199.054176][ C0] ? smp_apic_timer_interrupt+0x1a3/0x610 [ 199.054176][ C0] ? apic_timer_interrupt+0xf/0x20 [ 199.054176][ C0] ? generic_exec_single+0x33a/0x4c0 [ 199.054176][ C0] ? smp_call_function_single+0x17c/0x480 [ 199.054176][ C0] ? task_function_call+0xe9/0x180 [ 199.054176][ C0] ? perf_install_in_context+0x308/0x5a0 [ 199.054176][ C0] ? ndisc_alloc_skb+0x13c/0x340 [ 199.054176][ C0] ? ndisc_send_rs+0x39b/0x720 [ 199.054176][ C0] ? addrconf_rs_timer+0x30f/0x6e0 [ 199.054176][ C0] ? call_timer_fn+0x1ac/0x780 [ 199.054176][ C0] ? run_timer_softirq+0x6c3/0x1790 [ 199.054176][ C0] ? __do_softirq+0x262/0x98c [ 199.054176][ C0] ? irq_exit+0x19b/0x1e0 [ 199.054176][ C0] ? smp_apic_timer_interrupt+0x1a3/0x610 [ 199.054176][ C0] ? apic_timer_interrupt+0xf/0x20 [ 199.054176][ C0] ? generic_exec_single+0x33a/0x4c0 [ 199.054176][ C0] ? smp_call_function_single+0x17c/0x480 [ 199.054176][ C0] ? task_function_call+0xe9/0x180 [ 199.054176][ C0] ? perf_install_in_context+0x308/0x5a0 [ 199.054176][ C0] ? __do_sys_perf_event_open+0x1cbc/0x2c70 [ 199.054176][ C0] ? __x64_sys_perf_event_open+0xbe/0x150 [ 199.054176][ C0] ? do_syscall_64+0xfa/0x790 [ 199.054176][ C0] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 199.054176][ C0] ? __kasan_check_read+0x11/0x20 [ 199.054176][ C0] ? mark_lock+0xc2/0x1220 [ 199.054176][ C0] ? should_fail+0x1de/0x852 [ 199.054176][ C0] ? mark_held_locks+0xa4/0xf0 [ 199.054176][ C0] ? __kasan_check_read+0x11/0x20 [ 199.054176][ C0] ? kmem_cache_alloc_node_trace+0x239/0x750 [ 199.054176][ C0] ? __kmalloc_node_track_caller+0x3d/0x70 [ 199.054176][ C0] ? kmem_cache_alloc_node_trace+0x239/0x750 [ 199.054176][ C0] ? kasan_unpoison_shadow+0x35/0x50 [ 199.054176][ C0] __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 199.054176][ C0] kasan_slab_alloc+0xf/0x20 [ 199.054176][ C0] kmem_cache_alloc_node_trace+0x143/0x750 [ 199.054176][ C0] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 199.054176][ C0] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 199.054176][ C0] __kmalloc_node_track_caller+0x3d/0x70 [ 199.054176][ C0] __kmalloc_reserve.isra.0+0x40/0xf0 [ 199.054176][ C0] __alloc_skb+0x10b/0x5e0 [ 199.054176][ C0] ? __kmalloc_reserve.isra.0+0xf0/0xf0 [ 199.054176][ C0] ? __kasan_check_read+0x11/0x20 [ 199.054176][ C0] ndisc_alloc_skb+0x13c/0x340 [ 199.054176][ C0] ndisc_send_rs+0x39b/0x720 [ 199.054176][ C0] addrconf_rs_timer+0x30f/0x6e0 [ 199.054176][ C0] ? ipv6_get_lladdr+0x490/0x490 [ 199.054176][ C0] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 199.054176][ C0] ? call_timer_fn+0xe0/0x780 [ 199.054176][ C0] ? __lock_acquire+0x16f2/0x4a00 [ 199.054176][ C0] call_timer_fn+0x1ac/0x780 [ 199.054176][ C0] ? ipv6_get_lladdr+0x490/0x490 [ 199.054176][ C0] ? msleep_interruptible+0x150/0x150 [ 199.054176][ C0] ? ipv6_get_lladdr+0x490/0x490 [ 199.054176][ C0] run_timer_softirq+0x6c3/0x1790 [ 199.054176][ C0] ? add_timer+0x930/0x930 [ 199.054176][ C0] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 199.054176][ C0] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 199.054176][ C0] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 199.054176][ C0] __do_softirq+0x262/0x98c [ 199.054176][ C0] ? sched_clock_cpu+0x14e/0x1b0 [ 199.054176][ C0] irq_exit+0x19b/0x1e0 [ 199.054176][ C0] smp_apic_timer_interrupt+0x1a3/0x610 [ 199.054176][ C0] apic_timer_interrupt+0xf/0x20 [ 199.054176][ C0] [ 199.054176][ C0] RIP: 0010:generic_exec_single+0x33a/0x4c0 [ 199.054176][ C0] Code: 00 fc ff df 48 c1 e8 03 80 3c 10 00 0f 85 68 01 00 00 48 83 3d 2e 81 a9 07 00 0f 84 e0 00 00 00 e8 eb 2a 0b 00 48 89 df 57 9d <0f> 1f 44 00 00 45 31 ed e9 39 fe ff ff e8 d4 2a 0b 00 0f 0b e9 23 [ 199.054176][ C0] RSP: 0018:ffff8880122e7a80 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13 [ 199.054176][ C0] RAX: 0000000000040000 RBX: 0000000000000246 RCX: ffffc90008a44000 [ 199.054176][ C0] RDX: 0000000000040000 RSI: ffffffff8169b335 RDI: 0000000000000246 [ 199.054176][ C0] RBP: ffff8880122e7ab0 R08: 1ffffffff15377bb R09: fffffbfff15377bc [ 199.054176][ C0] R10: fffffbfff15377bb R11: ffffffff8a9bbddf R12: 0000000000000200 [ 199.054176][ C0] R13: ffff8880122e7b00 R14: ffff8880122e7bd0 R15: ffffffff818bd170 [ 199.054176][ C0] ? perf_duration_warn+0x40/0x40 [ 199.054176][ C0] ? generic_exec_single+0x335/0x4c0 [ 199.054176][ C0] ? __perf_event_enable+0x930/0x930 [ 199.054176][ C0] smp_call_function_single+0x17c/0x480 [ 199.054176][ C0] ? perf_duration_warn+0x40/0x40 [ 199.054176][ C0] ? generic_exec_single+0x4c0/0x4c0 [ 199.054176][ C0] ? __do_sys_perf_event_open+0x174c/0x2c70 [ 199.054176][ C0] ? __perf_event_enable+0x930/0x930 [ 199.054176][ C0] task_function_call+0xe9/0x180 [ 199.054176][ C0] ? perf_event_addr_filters_exec+0x310/0x310 [ 199.054176][ C0] ? __do_sys_perf_event_open+0x174c/0x2c70 [ 199.054176][ C0] ? __perf_event_enable+0x930/0x930 [ 199.054176][ C0] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 199.054176][ C0] ? exclusive_event_installable+0x257/0x320 [ 199.054176][ C0] perf_install_in_context+0x308/0x5a0 [ 199.054176][ C0] ? list_add_event+0xed0/0xed0 [ 199.054176][ C0] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 199.054176][ C0] ? __perf_event_header_size.isra.0+0x166/0x1c0 [ 199.054176][ C0] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 199.054176][ C0] __do_sys_perf_event_open+0x1cbc/0x2c70 [ 199.054176][ C0] ? perf_event_set_output+0x4e0/0x4e0 [ 199.054176][ C0] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 199.054176][ C0] ? put_timespec64+0xda/0x140 [ 199.054176][ C0] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 199.054176][ C0] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 199.054176][ C0] ? do_syscall_64+0x26/0x790 [ 199.054176][ C0] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 199.054176][ C0] ? do_syscall_64+0x26/0x790 [ 199.054176][ C0] __x64_sys_perf_event_open+0xbe/0x150 [ 199.054176][ C0] do_syscall_64+0xfa/0x790 [ 199.054176][ C0] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 199.054176][ C0] RIP: 0033:0x45a759 [ 199.054176][ C0] Code: bd b1 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 8b b1 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 199.054176][ C0] RSP: 002b:00007f82945e2c88 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 199.054176][ C0] RAX: ffffffffffffffda RBX: 000000000071bf00 RCX: 000000000045a759 [ 199.054176][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000002001d000 [ 199.054176][ C0] RBP: 0000000000000005 R08: 0000000000000000 R09: 0000000000000000 [ 199.054176][ C0] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f82945e36d4 [ 199.054176][ C0] R13: 00000000004aec17 R14: 00000000006f1cb0 R15: 00000000ffffffff