Warning: Permanently added '10.128.10.21' (ECDSA) to the list of known hosts. 2019/12/02 23:35:12 fuzzer started 2019/12/02 23:35:14 dialing manager at 10.128.0.26:38907 2019/12/02 23:35:14 syscalls: 2697 2019/12/02 23:35:14 code coverage: enabled 2019/12/02 23:35:14 comparison tracing: enabled 2019/12/02 23:35:14 extra coverage: extra coverage is not supported by the kernel 2019/12/02 23:35:14 setuid sandbox: enabled 2019/12/02 23:35:14 namespace sandbox: enabled 2019/12/02 23:35:14 Android sandbox: /sys/fs/selinux/policy does not exist 2019/12/02 23:35:14 fault injection: enabled 2019/12/02 23:35:14 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/12/02 23:35:14 net packet injection: enabled 2019/12/02 23:35:14 net device setup: enabled 2019/12/02 23:35:14 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2019/12/02 23:35:14 devlink PCI setup: PCI device 0000:00:10.0 is not available 23:35:15 executing program 0: r0 = socket$l2tp(0x18, 0x1, 0x1) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) connect$l2tp(r0, &(0x7f00000000c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, r1, 0x1, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, 0x3a) getsockopt$packet_buf(r0, 0x111, 0x1, 0x0, &(0x7f0000000580)) 23:35:16 executing program 1: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x5eb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_CONTEXT(r0, 0x84, 0x7b, &(0x7f0000000000), &(0x7f0000000140)=0x8) syzkaller login: [ 55.444590][ T8200] IPVS: ftp: loaded support on port[0] = 21 23:35:16 executing program 2: r0 = syz_open_dev$video(&(0x7f0000000080)='/dev/video#\x00', 0xd, 0x0) ioctl$VIDIOC_SUBDEV_DV_TIMINGS_CAP(r0, 0xc0905664, &(0x7f00000000c0)={0x0, 0x0, [], @raw_data}) [ 55.612448][ T8200] chnl_net:caif_netlink_parms(): no params data found [ 55.623307][ T8202] IPVS: ftp: loaded support on port[0] = 21 [ 55.710206][ T8200] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.718203][ T8200] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.728315][ T8200] device bridge_slave_0 entered promiscuous mode [ 55.757177][ T8200] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.764267][ T8200] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.787195][ T8200] device bridge_slave_1 entered promiscuous mode [ 55.830642][ T8206] IPVS: ftp: loaded support on port[0] = 21 [ 55.857134][ T8200] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 55.876932][ T8200] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link 23:35:16 executing program 3: bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x61, 0x10, 0xa4}, [@ldst={0x3, 0x0, 0x6, 0x1c10a1}]}, &(0x7f0000003ff6)='G\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195}, 0x48) [ 55.918162][ T8202] chnl_net:caif_netlink_parms(): no params data found [ 55.947009][ T8200] team0: Port device team_slave_0 added [ 55.979685][ T8200] team0: Port device team_slave_1 added [ 56.099575][ T8200] device hsr_slave_0 entered promiscuous mode 23:35:16 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x800000000e004, 0x1, &(0x7f0000000000)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x1000014, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = open(&(0x7f0000000100)='./file0\x00', 0x40c2, 0x0) r2 = open$dir(&(0x7f00000000c0)='./file0\x00', 0x4e200, 0x0) pipe(0x0) r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0) r4 = fanotify_init(0x0, 0x0) fanotify_mark(r4, 0x2000000000000011, 0x2, r3, 0x0) sendmsg$TIPC_NL_MON_PEER_GET(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000140), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x40010) open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) write(r1, &(0x7f0000000600)="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", 0x200) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r1, r2, 0x0, 0x7fffffa7) [ 56.177932][ T8200] device hsr_slave_1 entered promiscuous mode [ 56.261196][ T8209] IPVS: ftp: loaded support on port[0] = 21 [ 56.305408][ T8202] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.312502][ T8202] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.336020][ T8202] device bridge_slave_0 entered promiscuous mode 23:35:17 executing program 5: prlimit64(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x190, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket(0x40000000015, 0x5, 0x0) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10) bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x10) sendto$inet(r0, &(0x7f0000000d80), 0x0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000003440), 0x3d9fc9c77822327, 0x102, 0x0) [ 56.356208][ T8202] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.363333][ T8202] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.378254][ T8202] device bridge_slave_1 entered promiscuous mode [ 56.463091][ T8206] chnl_net:caif_netlink_parms(): no params data found [ 56.471802][ T8212] IPVS: ftp: loaded support on port[0] = 21 [ 56.540745][ T8202] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 56.552246][ T8200] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 56.604906][ T8202] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 56.629183][ T8202] team0: Port device team_slave_0 added [ 56.641793][ T8200] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 56.712488][ T8214] IPVS: ftp: loaded support on port[0] = 21 [ 56.732578][ T8202] team0: Port device team_slave_1 added [ 56.743639][ T8200] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 56.810423][ T8200] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 56.879290][ T8206] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.886800][ T8206] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.894550][ T8206] device bridge_slave_0 entered promiscuous mode [ 56.902909][ T8206] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.910048][ T8206] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.918154][ T8206] device bridge_slave_1 entered promiscuous mode [ 57.038096][ T8202] device hsr_slave_0 entered promiscuous mode [ 57.075950][ T8202] device hsr_slave_1 entered promiscuous mode [ 57.135380][ T8202] debugfs: Directory 'hsr0' with parent '/' already present! [ 57.143445][ T8206] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.197073][ T8206] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.235632][ T8212] chnl_net:caif_netlink_parms(): no params data found [ 57.293361][ T8209] chnl_net:caif_netlink_parms(): no params data found [ 57.302180][ T8214] chnl_net:caif_netlink_parms(): no params data found [ 57.317872][ T8206] team0: Port device team_slave_0 added [ 57.333841][ T8202] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 57.380453][ T8202] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 57.430206][ T8206] team0: Port device team_slave_1 added [ 57.437989][ T8212] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.445486][ T8212] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.453406][ T8212] device bridge_slave_0 entered promiscuous mode [ 57.464425][ T8202] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 57.521058][ T8202] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 57.581630][ T8212] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.588952][ T8212] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.599396][ T8212] device bridge_slave_1 entered promiscuous mode [ 57.620535][ T8212] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.644014][ T8212] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.707581][ T8206] device hsr_slave_0 entered promiscuous mode [ 57.745464][ T8206] device hsr_slave_1 entered promiscuous mode [ 57.785268][ T8206] debugfs: Directory 'hsr0' with parent '/' already present! [ 57.813696][ T8200] 8021q: adding VLAN 0 to HW filter on device bond0 [ 57.829839][ T8214] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.841883][ T8214] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.850952][ T8214] device bridge_slave_0 entered promiscuous mode [ 57.863621][ T8209] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.870831][ T8209] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.879415][ T8209] device bridge_slave_0 entered promiscuous mode [ 57.900387][ T8214] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.907750][ T8214] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.916303][ T8214] device bridge_slave_1 entered promiscuous mode [ 57.924506][ T8212] team0: Port device team_slave_0 added [ 57.931123][ T8209] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.938881][ T8209] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.948401][ T8209] device bridge_slave_1 entered promiscuous mode [ 57.983336][ T8212] team0: Port device team_slave_1 added [ 57.992086][ T8209] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.003548][ T8209] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.044821][ T8209] team0: Port device team_slave_0 added [ 58.059481][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 58.069033][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 58.078554][ T8214] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.097847][ T8202] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.106542][ T8209] team0: Port device team_slave_1 added [ 58.112334][ T8206] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 58.160414][ T8206] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 58.220076][ T8200] 8021q: adding VLAN 0 to HW filter on device team0 [ 58.228771][ T8214] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.297241][ T8212] device hsr_slave_0 entered promiscuous mode [ 58.345549][ T8212] device hsr_slave_1 entered promiscuous mode [ 58.385297][ T8212] debugfs: Directory 'hsr0' with parent '/' already present! [ 58.393151][ T8206] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 58.457349][ T8214] team0: Port device team_slave_0 added [ 58.463211][ T8206] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 58.516743][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 58.526487][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 58.535606][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.545281][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.554331][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 58.562767][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 58.570597][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 58.579259][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 58.587720][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.594865][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.603431][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 58.613340][ T8202] 8021q: adding VLAN 0 to HW filter on device team0 [ 58.626600][ T8214] team0: Port device team_slave_1 added [ 58.697795][ T8209] device hsr_slave_0 entered promiscuous mode [ 58.755666][ T8209] device hsr_slave_1 entered promiscuous mode [ 58.795751][ T8209] debugfs: Directory 'hsr0' with parent '/' already present! [ 58.810867][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 58.819918][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 58.828860][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 58.838381][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 58.847593][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 58.865254][ T8218] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 58.874907][ T8218] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 58.884505][ T8218] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 58.893710][ T8218] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 58.934542][ T8212] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 58.977944][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 58.987465][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 58.996718][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.003845][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.013599][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 59.023364][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 59.032039][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.039132][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.059045][ T8200] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 59.071139][ T8200] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 59.092907][ T8212] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 59.117098][ T3192] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 59.129055][ T3192] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 59.137800][ T3192] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 59.147611][ T3192] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 59.157245][ T3192] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 59.165914][ T3192] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 59.174723][ T3192] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 59.183925][ T3192] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 59.214626][ T8209] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 59.267624][ T8214] device hsr_slave_0 entered promiscuous mode [ 59.315625][ T8214] device hsr_slave_1 entered promiscuous mode [ 59.355299][ T8214] debugfs: Directory 'hsr0' with parent '/' already present! [ 59.362916][ T8212] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 59.409353][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 59.418466][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 59.430018][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 59.438052][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 59.460085][ T8202] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 59.474010][ T8202] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 59.489051][ T8200] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 59.498361][ T8209] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 59.540790][ T8212] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 59.587947][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 59.596992][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 59.605851][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 59.614083][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 59.624913][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 59.645900][ T8202] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 59.653355][ T8209] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 59.710996][ T8209] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 59.750900][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 59.758688][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 59.808408][ T8206] 8021q: adding VLAN 0 to HW filter on device bond0 [ 59.853046][ T8214] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 164.865066][ C1] rcu: INFO: rcu_preempt self-detected stall on CPU [ 164.871840][ C1] rcu: 1-...!: (1 GPs behind) idle=286/1/0x4000000000000002 softirq=10885/10886 fqs=2 [ 164.881794][ C1] (t=10501 jiffies g=6569 q=210) [ 164.886897][ C1] rcu: rcu_preempt kthread starved for 10498 jiffies! g6569 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 164.898024][ C1] rcu: RCU grace-period kthread stack dump: [ 164.904422][ C1] rcu_preempt R running task 29032 10 2 0x80004000 [ 164.912310][ C1] Call Trace: [ 164.915592][ C1] __schedule+0x9a0/0xcc0 [ 164.919919][ C1] schedule+0x181/0x210 [ 164.924065][ C1] schedule_timeout+0x14f/0x240 [ 164.928922][ C1] ? run_local_timers+0x120/0x120 [ 164.933939][ C1] rcu_gp_kthread+0xed8/0x1770 [ 164.938705][ C1] kthread+0x332/0x350 [ 164.942757][ C1] ? rcu_report_qs_rsp+0x140/0x140 [ 164.948205][ C1] ? kthread_blkcg+0xe0/0xe0 [ 164.952964][ C1] ret_from_fork+0x24/0x30 [ 164.957380][ C1] NMI backtrace for cpu 1 [ 164.961701][ C1] CPU: 1 PID: 8202 Comm: syz-executor.1 Not tainted 5.4.0-syzkaller #0 [ 164.969933][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 164.979987][ C1] Call Trace: [ 164.983279][ C1] [ 164.986121][ C1] dump_stack+0x1fb/0x318 [ 164.990441][ C1] nmi_cpu_backtrace+0xaf/0x1a0 [ 164.995295][ C1] ? nmi_trigger_cpumask_backtrace+0x16d/0x290 [ 165.001464][ C1] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 165.007544][ C1] nmi_trigger_cpumask_backtrace+0x174/0x290 [ 165.013523][ C1] arch_trigger_cpumask_backtrace+0x10/0x20 [ 165.019415][ C1] rcu_dump_cpu_stacks+0x15a/0x220 [ 165.025163][ C1] rcu_sched_clock_irq+0xe25/0x1ad0 [ 165.030351][ C1] ? trace_hardirqs_off+0x74/0x80 [ 165.035369][ C1] update_process_times+0x12d/0x180 [ 165.040576][ C1] tick_sched_timer+0x263/0x420 [ 165.045416][ C1] ? tick_setup_sched_timer+0x3d0/0x3d0 [ 165.050951][ C1] __hrtimer_run_queues+0x403/0x840 [ 165.056815][ C1] hrtimer_interrupt+0x38c/0xda0 [ 165.061785][ C1] ? debug_smp_processor_id+0x9/0x20 [ 165.067424][ C1] smp_apic_timer_interrupt+0x109/0x280 [ 165.072970][ C1] apic_timer_interrupt+0xf/0x20 [ 165.077924][ C1] [ 165.080873][ C1] RIP: 0010:free_thread_stack+0x16d/0x590 [ 165.086586][ C1] Code: c3 08 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 25 a4 69 00 48 8b 3b be fc ff ff ff e8 28 04 00 00 43 80 3c 2e 00 <74> 08 4c 89 e7 e8 09 a4 69 00 49 8b 1c 24 48 83 c3 08 48 89 d8 48 [ 165.106182][ C1] RSP: 0018:ffffc90002927960 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13 [ 165.114597][ C1] RAX: ffffffff81487433 RBX: ffff8880a2f8c708 RCX: ffff8880906b4580 [ 165.122564][ C1] RDX: 0000000000000000 RSI: 00000000fffffffc RDI: ffffea0002896b00 [ 165.130523][ C1] RBP: ffffc90002927998 R08: 000000000003a768 R09: ffffed10149f9eb7 [ 165.138508][ C1] R10: ffffed10149f9eb7 R11: 0000000000000000 R12: ffff8880a2f8c7a0 [ 165.146468][ C1] R13: dffffc0000000000 R14: 1ffff110145f18f4 R15: ffff8880a4fcf5a8 [ 165.154458][ C1] ? mod_memcg_page_state+0x123/0x190 [ 165.159825][ C1] put_task_stack+0xa3/0x130 [ 165.164404][ C1] finish_task_switch+0x3f1/0x550 [ 165.169431][ C1] __schedule+0x9a8/0xcc0 [ 165.173756][ C1] ? ___preempt_schedule+0x16/0x18 [ 165.178855][ C1] preempt_schedule+0xdb/0x120 [ 165.183621][ C1] ___preempt_schedule+0x16/0x18 [ 165.188555][ C1] ? __wake_up+0xe1/0x150 [ 165.192869][ C1] _raw_spin_unlock_irqrestore+0xcc/0xe0 [ 165.198751][ C1] __wake_up+0xe1/0x150 [ 165.202917][ C1] fsnotify_add_event+0x2fc/0x390 [ 165.207939][ C1] inotify_handle_event+0x409/0x620 [ 165.213129][ C1] fsnotify+0xb9f/0x13d0 [ 165.217376][ C1] __fput+0x205/0x740 [ 165.221623][ C1] ____fput+0x15/0x20 [ 165.226110][ C1] task_work_run+0x17e/0x1b0 [ 165.230702][ C1] prepare_exit_to_usermode+0x483/0x5b0 [ 165.236238][ C1] syscall_return_slowpath+0x113/0x4a0 [ 165.241684][ C1] do_syscall_64+0x11f/0x1c0 [ 165.246265][ C1] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 165.252144][ C1] RIP: 0033:0x4141f0 [ 165.256028][ C1] Code: 01 f0 ff ff 0f 83 30 1b 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 3d 7d 42 66 00 00 75 14 b8 03 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 04 1b 00 00 c3 48 83 ec 08 e8 0a fc ff ff [ 165.275622][ C1] RSP: 002b:00007ffe24b8be08 EFLAGS: 00000246 ORIG_RAX: 0000000000000003 [ 165.284016][ C1] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 00000000004141f0 [ 165.292098][ C1] RDX: 0000000000000000 RSI: 0000000000004c01 RDI: 0000000000000003 [ 165.300064][ C1] RBP: 0000000000715460 R08: 0000000000000000 R09: 000000000000000a [ 165.308036][ C1] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000000 [ 165.315994][ C1] R13: 00007ffe24b8be40 R14: 0000000000000003 R15: 00007ffe24b8be50