Warning: Permanently added '10.128.0.116' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 553.988976][ T26] kauditd_printk_skb: 3 callbacks suppressed [ 553.988992][ T26] audit: type=1804 audit(1559823953.898:31): pid=9091 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor337" name="/root/bus" dev="sda1" ino=2339 res=1 [ 554.024749][ C1] hrtimer: interrupt took 25717 ns [ 658.964646][ C1] rcu: INFO: rcu_preempt self-detected stall on CPU [ 658.971540][ C1] rcu: 1-....: (10500 ticks this GP) idle=c06/1/0x4000000000000002 softirq=9917/9917 fqs=5249 [ 658.982124][ C1] (t=10502 jiffies g=8557 q=5) [ 658.986976][ C1] NMI backtrace for cpu 1 [ 658.991320][ C1] CPU: 1 PID: 9091 Comm: syz-executor337 Not tainted 5.2.0-rc3+ #20 [ 658.999395][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 659.009573][ C1] Call Trace: [ 659.012963][ C1] [ 659.015876][ C1] dump_stack+0x172/0x1f0 [ 659.020226][ C1] nmi_cpu_backtrace.cold+0x63/0xa4 [ 659.025541][ C1] ? lapic_can_unplug_cpu.cold+0x38/0x38 [ 659.031191][ C1] nmi_trigger_cpumask_backtrace+0x1be/0x236 [ 659.037207][ C1] arch_trigger_cpumask_backtrace+0x14/0x20 [ 659.043130][ C1] rcu_dump_cpu_stacks+0x183/0x1cf [ 659.048285][ C1] ? find_next_bit+0x107/0x130 [ 659.053101][ C1] rcu_sched_clock_irq.cold+0x4d1/0xbfd [ 659.058760][ C1] ? raise_softirq+0x11f/0x310 [ 659.063546][ C1] update_process_times+0x32/0x80 [ 659.068589][ C1] tick_sched_handle+0xa2/0x190 [ 659.073466][ C1] tick_sched_timer+0x47/0x130 [ 659.078245][ C1] __hrtimer_run_queues+0x33b/0xdd0 [ 659.083464][ C1] ? tick_sched_do_timer+0x1b0/0x1b0 [ 659.088797][ C1] ? hrtimer_start_range_ns+0xc70/0xc70 [ 659.094802][ C1] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 659.100549][ C1] ? ktime_get_update_offsets_now+0x2d3/0x440 [ 659.106645][ C1] hrtimer_interrupt+0x314/0x770 [ 659.111713][ C1] smp_apic_timer_interrupt+0x111/0x550 [ 659.117298][ C1] apic_timer_interrupt+0xf/0x20 [ 659.122333][ C1] [ 659.125401][ C1] RIP: 0010:__sanitizer_cov_trace_pc+0x11/0x50 [ 659.131665][ C1] Code: 48 c7 05 9e 68 f5 08 00 00 00 00 e9 a4 e9 ff ff 90 90 90 90 90 90 90 90 90 55 48 89 e5 48 8b 75 08 65 48 8b 04 25 c0 fd 01 00 <65> 8b 15 c0 56 91 7e 81 e2 00 01 1f 00 75 2b 8b 90 e0 12 00 00 83 [ 659.151379][ C1] RSP: 0018:ffff888097e07420 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13 [ 659.160097][ C1] RAX: ffff8880a4c44680 RBX: 0000000000035e40 RCX: ffffffff817be873 [ 659.168179][ C1] RDX: 0000000000000000 RSI: ffffffff83355230 RDI: 0000000000000001 [ 659.176189][ C1] RBP: ffff888097e07420 R08: ffff8880a4c44680 R09: ffff8880a4c44f48 [ 659.184188][ C1] R10: ffff8880a4c44f28 R11: ffff8880a4c44680 R12: 0000000000000000 [ 659.192180][ C1] R13: 0000000000000000 R14: ffff8880a4c44680 R15: ffff8880aa4007c0 [ 659.200193][ C1] ? is_bpf_text_address+0x63/0x170 [ 659.205718][ C1] ? debug_smp_processor_id+0x10/0x280 [ 659.211212][ C1] debug_smp_processor_id+0x10/0x280 [ 659.216526][ C1] rcu_dynticks_curr_cpu_in_eqs+0x17/0xb0 [ 659.222267][ C1] rcu_is_watching+0x10/0x30 [ 659.228358][ C1] is_bpf_text_address+0x128/0x170 [ 659.233496][ C1] kernel_text_address+0x73/0xf0 [ 659.238478][ C1] __kernel_text_address+0xd/0x40 [ 659.243527][ C1] unwind_get_return_address+0x61/0xa0 [ 659.249014][ C1] ? profile_setup.cold+0xbb/0xbb [ 659.254064][ C1] arch_stack_walk+0x97/0xf0 [ 659.258698][ C1] stack_trace_save+0xac/0xe0 [ 659.263506][ C1] ? stack_trace_consume_entry+0x190/0x190 [ 659.269365][ C1] ? __lock_acquire+0x54f/0x5490 [ 659.274359][ C1] save_stack+0x23/0x90 [ 659.278550][ C1] ? save_stack+0x23/0x90 [ 659.282891][ C1] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 659.288707][ C1] ? kasan_slab_alloc+0xf/0x20 [ 659.293484][ C1] ? __kmalloc+0x145/0x740 [ 659.297946][ C1] ? iter_file_splice_write+0x16e/0xbd0 [ 659.303507][ C1] ? direct_splice_actor+0x123/0x190 [ 659.308809][ C1] ? splice_direct_to_actor+0x366/0x970 [ 659.314424][ C1] ? do_splice_direct+0x1da/0x2a0 [ 659.319471][ C1] ? do_sendfile+0x597/0xd00 [ 659.324093][ C1] ? __x64_sys_sendfile64+0x1dd/0x220 [ 659.329512][ C1] ? do_syscall_64+0xfd/0x680 [ 659.334324][ C1] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 659.340866][ C1] ? mark_held_locks+0xa4/0xf0 [ 659.345668][ C1] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 659.351249][ C1] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 659.356844][ C1] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 659.362334][ C1] ? lockdep_hardirqs_on+0x418/0x5d0 [ 659.367657][ C1] ? retint_kernel+0x2b/0x2b [ 659.372265][ C1] ? trace_hardirqs_on_caller+0x6a/0x220 [ 659.377932][ C1] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 659.383416][ C1] ? retint_kernel+0x2b/0x2b [ 659.388037][ C1] ? __kasan_kmalloc.constprop.0+0x86/0xe0 [ 659.393879][ C1] __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 659.399552][ C1] kasan_slab_alloc+0xf/0x20 [ 659.404164][ C1] __kmalloc+0x145/0x740 [ 659.408428][ C1] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 659.414160][ C1] ? iter_file_splice_write+0x16e/0xbd0 [ 659.419737][ C1] iter_file_splice_write+0x16e/0xbd0 [ 659.425216][ C1] ? atime_needs_update+0x5f0/0x5f0 [ 659.430439][ C1] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 659.436007][ C1] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 659.441580][ C1] ? page_cache_pipe_buf_steal+0x2b0/0x2b0 [ 659.447501][ C1] ? trace_hardirqs_on_caller+0x6a/0x220 [ 659.453151][ C1] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 659.458625][ C1] ? retint_kernel+0x2b/0x2b [ 659.463323][ C1] ? page_cache_pipe_buf_steal+0x2b0/0x2b0 [ 659.469685][ C1] direct_splice_actor+0x123/0x190 [ 659.474866][ C1] splice_direct_to_actor+0x366/0x970 [ 659.480263][ C1] ? generic_pipe_buf_nosteal+0x10/0x10 [ 659.485827][ C1] ? do_splice_to+0x180/0x180 [ 659.490523][ C1] ? rw_verify_area+0x126/0x360 [ 659.495401][ C1] do_splice_direct+0x1da/0x2a0 [ 659.501523][ C1] ? splice_direct_to_actor+0x970/0x970 [ 659.507287][ C1] ? rcu_read_lock_sched_held+0x110/0x130 [ 659.513052][ C1] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 659.518717][ C1] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 659.524994][ C1] ? __sb_start_write+0x1ac/0x360 [ 659.530068][ C1] do_sendfile+0x597/0xd00 [ 659.534533][ C1] ? do_compat_pwritev64+0x1c0/0x1c0 [ 659.539851][ C1] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 659.546319][ C1] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 659.552786][ C1] __x64_sys_sendfile64+0x1dd/0x220 [ 659.558031][ C1] ? __ia32_sys_sendfile+0x230/0x230 [ 659.563445][ C1] ? do_syscall_64+0x26/0x680 [ 659.568151][ C1] ? lockdep_hardirqs_on+0x418/0x5d0 [ 659.573464][ C1] ? trace_hardirqs_on+0x67/0x220 [ 659.578527][ C1] do_syscall_64+0xfd/0x680 [ 659.583068][ C1] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 659.589237][ C1] RIP: 0033:0x440339 [ 659.593147][ C1] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 659.612895][ C1] RSP: 002b:00007ffc9926a808 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 659.621334][ C1] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 0000000000440339 [ 659.629609][ C1] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000003 [ 659.637791][ C1] RBP: 00000000006ca018 R08: 00000000004002c8 R09: 00000000004002c8 [ 659.645999][ C1] R10: 00008000fffffffe R11: 0000000000000246 R12: 0000000000401bc0 [ 659.654165][ C1] R13: 0000000000401c50 R14: 0000000000000000 R15: 0000000000000000