[ OK ] Started Getty on tty2. [ OK ] Reached target Login Prompts. [ OK ] Started OpenBSD Secure Shell server. [ OK ] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.74' (ECDSA) to the list of known hosts. syzkaller login: [ 33.286785] IPVS: ftp: loaded support on port[0] = 21 [ 33.357458] chnl_net:caif_netlink_parms(): no params data found [ 33.461991] bridge0: port 1(bridge_slave_0) entered blocking state [ 33.470528] bridge0: port 1(bridge_slave_0) entered disabled state [ 33.478209] device bridge_slave_0 entered promiscuous mode [ 33.485349] bridge0: port 2(bridge_slave_1) entered blocking state [ 33.493025] bridge0: port 2(bridge_slave_1) entered disabled state [ 33.500382] device bridge_slave_1 entered promiscuous mode [ 33.517970] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 33.526954] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 33.544894] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 33.552401] team0: Port device team_slave_0 added [ 33.558213] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 33.565434] team0: Port device team_slave_1 added [ 33.580892] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 33.587223] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 33.612689] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 33.624066] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 33.630379] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 33.655656] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 33.666648] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 33.674217] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 33.693562] device hsr_slave_0 entered promiscuous mode [ 33.699404] device hsr_slave_1 entered promiscuous mode [ 33.705425] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 33.712711] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 33.777191] bridge0: port 2(bridge_slave_1) entered blocking state [ 33.783824] bridge0: port 2(bridge_slave_1) entered forwarding state [ 33.790780] bridge0: port 1(bridge_slave_0) entered blocking state [ 33.797212] bridge0: port 1(bridge_slave_0) entered forwarding state [ 33.827403] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 33.833471] 8021q: adding VLAN 0 to HW filter on device bond0 [ 33.843012] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 33.853349] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 33.861921] bridge0: port 1(bridge_slave_0) entered disabled state [ 33.869406] bridge0: port 2(bridge_slave_1) entered disabled state [ 33.876443] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 33.887606] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 33.893690] 8021q: adding VLAN 0 to HW filter on device team0 [ 33.903542] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 33.911288] bridge0: port 1(bridge_slave_0) entered blocking state [ 33.917719] bridge0: port 1(bridge_slave_0) entered forwarding state [ 33.927476] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 33.935047] bridge0: port 2(bridge_slave_1) entered blocking state [ 33.941448] bridge0: port 2(bridge_slave_1) entered forwarding state [ 33.957067] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 33.969703] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 33.977108] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 33.984707] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 33.996272] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 34.007795] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 34.013857] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 34.021660] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 34.035390] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready [ 34.043656] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 34.050849] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 34.061778] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 34.074052] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready [ 34.083485] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 34.115052] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready [ 34.122745] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready [ 34.129976] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready [ 34.139287] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 34.147609] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 34.154419] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 34.163324] device veth0_vlan entered promiscuous mode [ 34.172992] device veth1_vlan entered promiscuous mode [ 34.179901] IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready [ 34.187200] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 34.197225] IPv6: ADDRCONF(NETDEV_UP): macvlan1: link is not ready [ 34.208934] IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready [ 34.219006] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 34.227579] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 34.236405] device veth0_macvtap entered promiscuous mode [ 34.242505] IPv6: ADDRCONF(NETDEV_UP): macvtap0: link is not ready [ 34.251701] device veth1_macvtap entered promiscuous mode [ 34.260510] IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready [ 34.269679] IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready [ 34.280583] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 34.287732] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 34.296279] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 34.305384] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 34.312892] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 34.421306] IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready [ 34.431570] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 34.446720] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 34.454261] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready executing program [ 34.483361] IPv6: ADDRCONF(NETDEV_UP): wlan1: link is not ready [ 34.490338] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 34.499426] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 34.507308] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 34.522789] FAULT_INJECTION: forcing a failure. [ 34.522789] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 34.534692] CPU: 1 PID: 8326 Comm: syz-executor341 Not tainted 4.19.211-syzkaller #0 [ 34.542570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 34.551904] Call Trace: [ 34.554477] dump_stack+0x1fc/0x2ef [ 34.558087] should_fail.cold+0xa/0xf [ 34.561876] ? setup_fault_attr+0x200/0x200 [ 34.566193] __alloc_pages_nodemask+0x239/0x2890 [ 34.570940] ? __lock_acquire+0x6de/0x3ff0 [ 34.575254] ? mark_held_locks+0xf0/0xf0 [ 34.579300] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 34.584124] ? lock_downgrade+0x720/0x720 [ 34.588257] ? __lock_acquire+0x6de/0x3ff0 [ 34.592481] ? mark_held_locks+0xa6/0xf0 [ 34.596525] alloc_pages_current+0x193/0x2a0 [ 34.600915] get_zeroed_page+0x10/0x40 [ 34.604778] dev_alloc_name_ns+0x142/0x440 [ 34.608992] ? dev_validate_mtu+0x170/0x170 [ 34.613292] ? dev_valid_name+0x220/0x220 [ 34.617435] ? ip6_route_dev_notify+0xd7/0xcd0 [ 34.622000] dev_get_valid_name+0x67/0xe0 [ 34.626143] register_netdevice+0x267/0x10f0 [ 34.630575] ? unregister_netdev+0x20/0x20 [ 34.634790] ? hsr_get_max_mtu+0x1d0/0x2a0 [ 34.639007] ? hsr_add_port+0x4e9/0x6a0 [ 34.642970] hsr_dev_finalize+0x4f5/0x770 [ 34.647100] hsr_newlink+0x27d/0x3e0 [ 34.650808] ? hsr_fill_info+0x590/0x590 [ 34.654961] ? rtnl_create_link+0x145/0xa40 [ 34.659285] ? hsr_fill_info+0x590/0x590 [ 34.663347] rtnl_newlink+0x1030/0x15c0 [ 34.667317] ? rtnl_getlink+0x620/0x620 [ 34.671284] ? __lock_acquire+0x6de/0x3ff0 [ 34.675512] ? deref_stack_reg+0x134/0x1d0 [ 34.679830] ? get_reg+0x176/0x1f0 [ 34.683355] ? __read_once_size_nocheck.constprop.0+0x10/0x10 [ 34.689230] ? deref_stack_reg+0x1d0/0x1d0 [ 34.693453] ? mark_held_locks+0xf0/0xf0 [ 34.697496] ? is_bpf_text_address+0xd5/0x1b0 [ 34.702097] ? lock_downgrade+0x720/0x720 [ 34.706239] ? lock_acquire+0x170/0x3c0 [ 34.710208] ? __bpf_address_lookup+0x330/0x330 [ 34.714873] ? check_preemption_disabled+0x41/0x280 [ 34.719891] ? lock_downgrade+0x720/0x720 [ 34.724027] ? lock_acquire+0x170/0x3c0 [ 34.727987] ? depot_save_stack+0x1e0/0x410 [ 34.732305] ? __lock_acquire+0x6de/0x3ff0 [ 34.736545] ? __kasan_slab_free+0x186/0x1f0 [ 34.740951] ? kmem_cache_free+0x7f/0x260 [ 34.745084] ? kfree_skbmem+0xc1/0x140 [ 34.748955] ? consume_skb+0x120/0x3d0 [ 34.752839] ? mark_held_locks+0xf0/0xf0 [ 34.756886] ? netlink_deliver_tap+0x8fb/0xb00 [ 34.761450] ? netlink_unicast+0x545/0x690 [ 34.765673] ? netlink_sendmsg+0x6c3/0xc50 [ 34.769899] ? sock_sendmsg+0xc3/0x120 [ 34.773766] ? ___sys_sendmsg+0x7bb/0x8e0 [ 34.777900] ? __x64_sys_sendmsg+0x132/0x220 [ 34.782299] ? do_syscall_64+0xf9/0x620 [ 34.786265] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 34.791636] ? mutex_trylock+0x1a0/0x1a0 [ 34.795685] ? check_preemption_disabled+0x41/0x280 [ 34.800684] ? rtnetlink_rcv_msg+0x3c3/0xb80 [ 34.805099] ? rtnl_getlink+0x620/0x620 [ 34.809061] rtnetlink_rcv_msg+0x453/0xb80 [ 34.813280] ? rtnl_calcit.isra.0+0x430/0x430 [ 34.817766] ? memcpy+0x35/0x50 [ 34.821035] ? netdev_pick_tx+0x2f0/0x2f0 [ 34.825266] ? __copy_skb_header+0x414/0x500 [ 34.829798] ? kfree_skbmem+0x140/0x140 [ 34.833762] netlink_rcv_skb+0x160/0x440 [ 34.837818] ? rtnl_calcit.isra.0+0x430/0x430 [ 34.842303] ? netlink_ack+0xae0/0xae0 [ 34.846199] netlink_unicast+0x4d5/0x690 [ 34.850258] ? netlink_sendskb+0x110/0x110 [ 34.854480] ? _copy_from_iter_full+0x229/0x7c0 [ 34.859134] ? __phys_addr_symbol+0x2c/0x70 [ 34.863444] ? __check_object_size+0x17b/0x3e0 [ 34.868008] netlink_sendmsg+0x6c3/0xc50 [ 34.872053] ? aa_af_perm+0x230/0x230 [ 34.875841] ? nlmsg_notify+0x1f0/0x1f0 [ 34.879802] ? kernel_recvmsg+0x220/0x220 [ 34.883931] ? nlmsg_notify+0x1f0/0x1f0 [ 34.887891] sock_sendmsg+0xc3/0x120 [ 34.891671] ___sys_sendmsg+0x7bb/0x8e0 [ 34.895638] ? check_preemption_disabled+0x41/0x280 [ 34.900644] ? copy_msghdr_from_user+0x440/0x440 [ 34.905380] ? __fget+0x32f/0x510 [ 34.908828] ? lock_downgrade+0x720/0x720 [ 34.912962] ? check_preemption_disabled+0x41/0x280 [ 34.917961] ? check_preemption_disabled+0x41/0x280 [ 34.922961] ? __fget+0x356/0x510 [ 34.926394] ? do_dup2+0x450/0x450 [ 34.929914] ? lock_downgrade+0x720/0x720 [ 34.934041] ? vfs_write+0x3d7/0x540 [ 34.937738] ? __fdget+0x1d0/0x230 [ 34.941299] __x64_sys_sendmsg+0x132/0x220 [ 34.945520] ? __sys_sendmsg+0x1b0/0x1b0 [ 34.949579] ? vfs_write+0x393/0x540 [ 34.953287] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 34.958628] ? trace_hardirqs_off_caller+0x6e/0x210 [ 34.963623] ? do_syscall_64+0x21/0x620 [ 34.967581] do_syscall_64+0xf9/0x620 [ 34.971366] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 34.976537] RIP: 0033:0x7f55181e8e09 [ 34.980232] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 34.999112] RSP: 002b:00007f55181962e8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 35.006800] RAX: ffffffffffffffda RBX: 00007f55182714e0 RCX: 00007f55181e8e09 [ 35.014048] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000004 [ 35.021295] RBP: 00007f551823e5e4 R08: 0000000000000002 R09: 0000000000003331 [ 35.028540] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f55182714ec executing program [ 35.035817] R13: 00007f55181962f0 R14: 00007f55182714e8 R15: 0000000000000002 [ 35.062325] FAULT_INJECTION: forcing a failure. [ 35.062325] name failslab, interval 1, probability 0, space 0, times 1 [ 35.073696] CPU: 1 PID: 8329 Comm: syz-executor341 Not tainted 4.19.211-syzkaller #0 [ 35.081575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 35.090927] Call Trace: [ 35.093524] dump_stack+0x1fc/0x2ef [ 35.097164] should_fail.cold+0xa/0xf [ 35.100989] ? setup_fault_attr+0x200/0x200 [ 35.105309] __should_failslab+0x115/0x180 [ 35.109538] should_failslab+0x5/0x10 [ 35.113335] kmem_cache_alloc+0x3f/0x370 [ 35.117399] __debug_object_init+0x6d9/0x9b0 [ 35.121791] ? debug_object_destroy+0x240/0x240 [ 35.126449] init_timer_key+0x33/0x350 [ 35.130318] ? hsr_register_frame_out+0xf0/0xf0 [ 35.134979] hsr_dev_finalize+0x3b2/0x770 [ 35.139121] hsr_newlink+0x27d/0x3e0 [ 35.142817] ? hsr_fill_info+0x590/0x590 [ 35.146861] ? rtnl_create_link+0x145/0xa40 [ 35.151164] ? hsr_fill_info+0x590/0x590 [ 35.155208] rtnl_newlink+0x1030/0x15c0 [ 35.159168] ? rtnl_getlink+0x620/0x620 [ 35.163127] ? mark_held_locks+0xf0/0xf0 [ 35.167169] ? unwind_next_frame+0xeee/0x1400 [ 35.171652] ? __save_stack_trace+0x72/0x190 [ 35.176058] ? deref_stack_reg+0x134/0x1d0 [ 35.180279] ? get_reg+0x176/0x1f0 [ 35.183802] ? __read_once_size_nocheck.constprop.0+0x10/0x10 [ 35.189668] ? deref_stack_reg+0x1d0/0x1d0 [ 35.193893] ? is_bpf_text_address+0xd5/0x1b0 [ 35.198372] ? lock_downgrade+0x720/0x720 [ 35.202501] ? lock_acquire+0x170/0x3c0 [ 35.206466] ? __bpf_address_lookup+0x330/0x330 [ 35.211127] ? check_preemption_disabled+0x41/0x280 [ 35.216137] ? is_bpf_text_address+0xfc/0x1b0 [ 35.220617] ? kernel_text_address+0xbd/0xf0 [ 35.225011] ? __kernel_text_address+0x9/0x30 [ 35.229499] ? unwind_get_return_address+0x51/0x90 [ 35.234459] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 35.239807] ? __save_stack_trace+0xaf/0x190 [ 35.244197] ? __lock_acquire+0x6de/0x3ff0 [ 35.248416] ? __kasan_slab_free+0x186/0x1f0 [ 35.252808] ? kmem_cache_free+0x7f/0x260 [ 35.256944] ? kfree_skbmem+0xc1/0x140 [ 35.260813] ? consume_skb+0x120/0x3d0 [ 35.264685] ? mark_held_locks+0xf0/0xf0 [ 35.268729] ? netlink_deliver_tap+0x8fb/0xb00 [ 35.273290] ? netlink_unicast+0x545/0x690 [ 35.277508] ? netlink_sendmsg+0x6c3/0xc50 [ 35.281723] ? sock_sendmsg+0xc3/0x120 [ 35.285598] ? ___sys_sendmsg+0x7bb/0x8e0 [ 35.289734] ? __x64_sys_sendmsg+0x132/0x220 [ 35.294294] ? do_syscall_64+0xf9/0x620 [ 35.298258] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 35.303644] ? mutex_trylock+0x1a0/0x1a0 [ 35.307693] ? check_preemption_disabled+0x41/0x280 [ 35.312692] ? rtnetlink_rcv_msg+0x3c3/0xb80 [ 35.317098] ? rtnl_getlink+0x620/0x620 [ 35.321066] rtnetlink_rcv_msg+0x453/0xb80 [ 35.325298] ? rtnl_calcit.isra.0+0x430/0x430 [ 35.329786] ? memcpy+0x35/0x50 [ 35.333047] ? netdev_pick_tx+0x2f0/0x2f0 [ 35.337175] ? __copy_skb_header+0x414/0x500 [ 35.341565] ? kfree_skbmem+0x140/0x140 [ 35.345537] netlink_rcv_skb+0x160/0x440 [ 35.349594] ? rtnl_calcit.isra.0+0x430/0x430 [ 35.354069] ? netlink_ack+0xae0/0xae0 [ 35.357946] netlink_unicast+0x4d5/0x690 [ 35.361993] ? netlink_sendskb+0x110/0x110 [ 35.366208] ? _copy_from_iter_full+0x229/0x7c0 [ 35.370855] ? __phys_addr_symbol+0x2c/0x70 [ 35.375161] ? __check_object_size+0x17b/0x3e0 [ 35.379734] netlink_sendmsg+0x6c3/0xc50 [ 35.383779] ? aa_af_perm+0x230/0x230 [ 35.387559] ? nlmsg_notify+0x1f0/0x1f0 [ 35.391510] ? kernel_recvmsg+0x220/0x220 [ 35.395650] ? nlmsg_notify+0x1f0/0x1f0 [ 35.399614] sock_sendmsg+0xc3/0x120 [ 35.403306] ___sys_sendmsg+0x7bb/0x8e0 [ 35.407263] ? check_preemption_disabled+0x41/0x280 [ 35.412264] ? copy_msghdr_from_user+0x440/0x440 [ 35.417001] ? __fget+0x32f/0x510 [ 35.421305] ? lock_downgrade+0x720/0x720 [ 35.425443] ? check_preemption_disabled+0x41/0x280 [ 35.430447] ? check_preemption_disabled+0x41/0x280 [ 35.435448] ? __fget+0x356/0x510 [ 35.438881] ? do_dup2+0x450/0x450 [ 35.442401] ? lock_downgrade+0x720/0x720 [ 35.446528] ? vfs_write+0x3d7/0x540 [ 35.450223] ? __fdget+0x1d0/0x230 [ 35.453745] __x64_sys_sendmsg+0x132/0x220 [ 35.457961] ? __sys_sendmsg+0x1b0/0x1b0 [ 35.461998] ? vfs_write+0x393/0x540 [ 35.465709] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 35.471068] ? trace_hardirqs_off_caller+0x6e/0x210 [ 35.476071] ? do_syscall_64+0x21/0x620 [ 35.480026] do_syscall_64+0xf9/0x620 [ 35.483813] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 35.488993] RIP: 0033:0x7f55181e8e09 [ 35.492687] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 35.511568] RSP: 002b:00007f55181962e8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 35.519256] RAX: ffffffffffffffda RBX: 00007f55182714e0 RCX: 00007f55181e8e09 [ 35.526507] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000004 executing program [ 35.533755] RBP: 00007f551823e5e4 R08: 0000000000000002 R09: 0000000000003331 [ 35.541009] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f55182714ec [ 35.548263] R13: 00007f55181962f0 R14: 00007f55182714e8 R15: 0000000000000002 [ 35.571561] vcan0: Cannot use loopback or non-ethernet device as HSR slave. [ 35.592501] FAULT_INJECTION: forcing a failure. [ 35.592501] name failslab, interval 1, probability 0, space 0, times 0 [ 35.604179] CPU: 1 PID: 8334 Comm: syz-executor341 Not tainted 4.19.211-syzkaller #0 [ 35.612052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 35.621390] Call Trace: [ 35.623965] dump_stack+0x1fc/0x2ef [ 35.627576] should_fail.cold+0xa/0xf [ 35.631361] ? setup_fault_attr+0x200/0x200 [ 35.635667] __should_failslab+0x115/0x180 [ 35.639883] should_failslab+0x5/0x10 [ 35.643661] kmem_cache_alloc+0x3f/0x370 [ 35.647719] __debug_object_init+0x6d9/0x9b0 [ 35.652126] ? debug_object_destroy+0x240/0x240 [ 35.656781] init_timer_key+0x33/0x350 [ 35.660649] ? hsr_register_frame_out+0xf0/0xf0 [ 35.665309] hsr_dev_finalize+0x3b2/0x770 [ 35.669450] hsr_newlink+0x27d/0x3e0 [ 35.673146] ? hsr_fill_info+0x590/0x590 [ 35.677315] ? rtnl_create_link+0x145/0xa40 [ 35.681627] ? hsr_fill_info+0x590/0x590 [ 35.685776] rtnl_newlink+0x1030/0x15c0 [ 35.689756] ? rtnl_getlink+0x620/0x620 [ 35.693725] ? mark_held_locks+0xf0/0xf0 [ 35.697872] ? unwind_next_frame+0xeee/0x1400 [ 35.702350] ? __save_stack_trace+0x72/0x190 [ 35.706753] ? deref_stack_reg+0x134/0x1d0 [ 35.710979] ? get_reg+0x176/0x1f0 [ 35.714509] ? __read_once_size_nocheck.constprop.0+0x10/0x10 [ 35.720378] ? deref_stack_reg+0x1d0/0x1d0 [ 35.724689] ? is_bpf_text_address+0xd5/0x1b0 [ 35.729191] ? lock_downgrade+0x720/0x720 [ 35.733322] ? lock_acquire+0x170/0x3c0 [ 35.737274] ? __bpf_address_lookup+0x330/0x330 [ 35.741925] ? check_preemption_disabled+0x41/0x280 [ 35.746928] ? is_bpf_text_address+0xfc/0x1b0 [ 35.751407] ? __lock_acquire+0x6de/0x3ff0 [ 35.755624] ? __lock_acquire+0x6de/0x3ff0 [ 35.759853] ? mark_held_locks+0xf0/0xf0 [ 35.763893] ? kmem_cache_free+0x7f/0x260 [ 35.768027] ? kfree_skbmem+0xc1/0x140 [ 35.771892] ? consume_skb+0x120/0x3d0 [ 35.775767] ? mark_held_locks+0xf0/0xf0 [ 35.779895] ? netlink_deliver_tap+0x8fb/0xb00 [ 35.784453] ? netlink_unicast+0x545/0x690 [ 35.788666] ? netlink_sendmsg+0x6c3/0xc50 [ 35.792880] ? sock_sendmsg+0xc3/0x120 [ 35.796747] ? ___sys_sendmsg+0x7bb/0x8e0 [ 35.800879] ? __x64_sys_sendmsg+0x132/0x220 [ 35.805272] ? do_syscall_64+0xf9/0x620 [ 35.809235] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 35.814596] ? mutex_trylock+0x1a0/0x1a0 [ 35.818765] ? check_preemption_disabled+0x41/0x280 [ 35.823762] ? rtnetlink_rcv_msg+0x3c3/0xb80 [ 35.828160] ? rtnl_getlink+0x620/0x620 [ 35.832201] rtnetlink_rcv_msg+0x453/0xb80 [ 35.836439] ? rtnl_calcit.isra.0+0x430/0x430 [ 35.840916] ? memcpy+0x35/0x50 [ 35.844174] ? netdev_pick_tx+0x2f0/0x2f0 [ 35.848317] ? __copy_skb_header+0x414/0x500 [ 35.852706] ? kfree_skbmem+0x140/0x140 [ 35.856680] netlink_rcv_skb+0x160/0x440 [ 35.860722] ? rtnl_calcit.isra.0+0x430/0x430 [ 35.865214] ? netlink_ack+0xae0/0xae0 [ 35.869092] netlink_unicast+0x4d5/0x690 [ 35.873142] ? netlink_sendskb+0x110/0x110 [ 35.877353] ? _copy_from_iter_full+0x229/0x7c0 [ 35.882001] ? __phys_addr_symbol+0x2c/0x70 [ 35.886302] ? __check_object_size+0x17b/0x3e0 [ 35.890865] netlink_sendmsg+0x6c3/0xc50 [ 35.894924] ? aa_af_perm+0x230/0x230 [ 35.898710] ? nlmsg_notify+0x1f0/0x1f0 [ 35.902749] ? kernel_recvmsg+0x220/0x220 [ 35.906883] ? nlmsg_notify+0x1f0/0x1f0 [ 35.910839] sock_sendmsg+0xc3/0x120 [ 35.914888] ___sys_sendmsg+0x7bb/0x8e0 [ 35.918852] ? check_preemption_disabled+0x41/0x280 [ 35.923846] ? copy_msghdr_from_user+0x440/0x440 [ 35.928583] ? __fget+0x32f/0x510 [ 35.932017] ? lock_downgrade+0x720/0x720 [ 35.936148] ? check_preemption_disabled+0x41/0x280 [ 35.941146] ? check_preemption_disabled+0x41/0x280 [ 35.946156] ? __fget+0x356/0x510 [ 35.949595] ? do_dup2+0x450/0x450 [ 35.953138] ? lock_downgrade+0x720/0x720 [ 35.957274] ? vfs_write+0x3d7/0x540 [ 35.960973] ? __fdget+0x1d0/0x230 [ 35.964504] __x64_sys_sendmsg+0x132/0x220 [ 35.968726] ? __sys_sendmsg+0x1b0/0x1b0 [ 35.972770] ? vfs_write+0x393/0x540 [ 35.976470] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 35.981841] ? trace_hardirqs_off_caller+0x6e/0x210 [ 35.986838] ? do_syscall_64+0x21/0x620 [ 35.990801] do_syscall_64+0xf9/0x620 [ 35.994582] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 35.999750] RIP: 0033:0x7f55181e8e09 [ 36.003444] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 36.022326] RSP: 002b:00007f55181962e8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 36.030015] RAX: ffffffffffffffda RBX: 00007f55182714e0 RCX: 00007f55181e8e09 [ 36.037264] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000004 executing program [ 36.044512] RBP: 00007f551823e5e4 R08: 0000000000000002 R09: 0000000000003331 [ 36.051763] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f55182714ec [ 36.059012] R13: 00007f55181962f0 R14: 00007f55182714e8 R15: 0000000000000002 [ 36.074123] vcan0: Cannot use loopback or non-ethernet device as HSR slave. [ 36.108393] FAULT_INJECTION: forcing a failure. [ 36.108393] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 36.120331] CPU: 1 PID: 8339 Comm: syz-executor341 Not tainted 4.19.211-syzkaller #0 [ 36.128196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 36.137559] Call Trace: [ 36.140135] dump_stack+0x1fc/0x2ef [ 36.143759] should_fail.cold+0xa/0xf [ 36.147543] ? setup_fault_attr+0x200/0x200 [ 36.151868] __alloc_pages_nodemask+0x239/0x2890 [ 36.156604] ? __lock_acquire+0x6de/0x3ff0 [ 36.160823] ? mark_held_locks+0xf0/0xf0 [ 36.164883] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 36.169716] ? lock_downgrade+0x720/0x720 [ 36.173859] ? __lock_acquire+0x6de/0x3ff0 [ 36.178089] ? mark_held_locks+0xa6/0xf0 [ 36.182135] alloc_pages_current+0x193/0x2a0 [ 36.186526] get_zeroed_page+0x10/0x40 [ 36.190393] dev_alloc_name_ns+0x142/0x440 [ 36.194606] ? dev_validate_mtu+0x170/0x170 [ 36.198907] ? dev_valid_name+0x220/0x220 [ 36.203038] ? ip6_route_dev_notify+0xd7/0xcd0 [ 36.207599] dev_get_valid_name+0x67/0xe0 [ 36.211726] register_netdevice+0x267/0x10f0 [ 36.216116] ? unregister_netdev+0x20/0x20 [ 36.220328] ? hsr_get_max_mtu+0x1d0/0x2a0 [ 36.224544] ? hsr_add_port+0x4e9/0x6a0 [ 36.228499] hsr_dev_finalize+0x4f5/0x770 [ 36.232630] hsr_newlink+0x27d/0x3e0 [ 36.236325] ? hsr_fill_info+0x590/0x590 [ 36.240365] ? rtnl_create_link+0x145/0xa40 [ 36.244675] ? hsr_fill_info+0x590/0x590 [ 36.248726] rtnl_newlink+0x1030/0x15c0 [ 36.252684] ? rtnl_getlink+0x620/0x620 [ 36.256647] ? __lock_acquire+0x6de/0x3ff0 [ 36.260863] ? __save_stack_trace+0x72/0x190 [ 36.265248] ? deref_stack_reg+0x134/0x1d0 [ 36.269460] ? get_reg+0x176/0x1f0 [ 36.272979] ? mark_held_locks+0xf0/0xf0 [ 36.277019] ? __read_once_size_nocheck.constprop.0+0x10/0x10 [ 36.282879] ? deref_stack_reg+0x1d0/0x1d0 [ 36.287098] ? mark_held_locks+0xf0/0xf0 [ 36.291142] ? __lock_acquire+0x6de/0x3ff0 [ 36.295359] ? mark_held_locks+0xf0/0xf0 [ 36.299405] ? __lock_acquire+0x6de/0x3ff0 [ 36.303625] ? mark_held_locks+0xf0/0xf0 [ 36.307665] ? _raw_spin_unlock_irq+0x24/0x80 [ 36.312152] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 36.316735] ? mutex_trylock+0x1a0/0x1a0 [ 36.320775] ? check_preemption_disabled+0x41/0x280 [ 36.325770] ? rtnetlink_rcv_msg+0x3c3/0xb80 [ 36.330162] ? rtnl_getlink+0x620/0x620 [ 36.334114] rtnetlink_rcv_msg+0x453/0xb80 [ 36.338331] ? rtnl_calcit.isra.0+0x430/0x430 [ 36.342825] ? memcpy+0x35/0x50 [ 36.346091] ? netdev_pick_tx+0x2f0/0x2f0 [ 36.350220] ? __copy_skb_header+0x414/0x500 [ 36.354622] ? kfree_skbmem+0x140/0x140 [ 36.358592] netlink_rcv_skb+0x160/0x440 [ 36.362639] ? rtnl_calcit.isra.0+0x430/0x430 [ 36.367116] ? netlink_ack+0xae0/0xae0 [ 36.370990] netlink_unicast+0x4d5/0x690 [ 36.375033] ? netlink_sendskb+0x110/0x110 [ 36.379248] ? _copy_from_iter_full+0x229/0x7c0 [ 36.383899] ? __phys_addr_symbol+0x2c/0x70 [ 36.388223] ? __check_object_size+0x17b/0x3e0 [ 36.392793] netlink_sendmsg+0x6c3/0xc50 [ 36.396848] ? aa_af_perm+0x230/0x230 [ 36.400630] ? nlmsg_notify+0x1f0/0x1f0 [ 36.404590] ? kernel_recvmsg+0x220/0x220 [ 36.408728] ? nlmsg_notify+0x1f0/0x1f0 [ 36.412682] sock_sendmsg+0xc3/0x120 [ 36.416378] ___sys_sendmsg+0x7bb/0x8e0 [ 36.420332] ? check_preemption_disabled+0x41/0x280 [ 36.425328] ? copy_msghdr_from_user+0x440/0x440 [ 36.430064] ? __fget+0x32f/0x510 [ 36.433521] ? lock_downgrade+0x720/0x720 [ 36.437653] ? check_preemption_disabled+0x41/0x280 [ 36.442648] ? check_preemption_disabled+0x41/0x280 [ 36.447643] ? __fget+0x356/0x510 [ 36.451074] ? do_dup2+0x450/0x450 [ 36.454618] ? lock_downgrade+0x720/0x720 [ 36.458746] ? vfs_write+0x3d7/0x540 [ 36.462440] ? __fdget+0x1d0/0x230 [ 36.465964] __x64_sys_sendmsg+0x132/0x220 [ 36.470178] ? __sys_sendmsg+0x1b0/0x1b0 [ 36.474217] ? vfs_write+0x393/0x540 [ 36.477915] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 36.483257] ? trace_hardirqs_off_caller+0x6e/0x210 [ 36.488255] ? do_syscall_64+0x21/0x620 [ 36.492252] do_syscall_64+0xf9/0x620 [ 36.496140] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 36.501319] RIP: 0033:0x7f55181e8e09 [ 36.505019] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 36.524001] RSP: 002b:00007f55181962e8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 36.531717] RAX: ffffffffffffffda RBX: 00007f55182714e0 RCX: 00007f55181e8e09 [ 36.538972] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000004 [ 36.546229] RBP: 00007f551823e5e4 R08: 0000000000000002 R09: 0000000000003331 executing program [ 36.553475] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f55182714ec [ 36.560722] R13: 00007f55181962f0 R14: 00007f55182714e8 R15: 0000000000000002 [ 36.587635] FAULT_INJECTION: forcing a failure. [ 36.587635] name failslab, interval 1, probability 0, space 0, times 0 [ 36.599277] CPU: 1 PID: 8342 Comm: syz-executor341 Not tainted 4.19.211-syzkaller #0 [ 36.607164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 36.616515] Call Trace: [ 36.619091] dump_stack+0x1fc/0x2ef [ 36.622704] should_fail.cold+0xa/0xf [ 36.626493] ? setup_fault_attr+0x200/0x200 [ 36.630883] ? lock_acquire+0x170/0x3c0 [ 36.634842] __should_failslab+0x115/0x180 [ 36.639060] should_failslab+0x5/0x10 [ 36.642840] __kmalloc_track_caller+0x2a6/0x3c0 [ 36.647493] ? kstrdup_const+0x53/0x80 [ 36.651362] kstrdup+0x36/0x70 [ 36.654541] kstrdup_const+0x53/0x80 [ 36.658246] kvasprintf_const+0x108/0x190 [ 36.662374] kobject_set_name_vargs+0x56/0x150 [ 36.666939] dev_set_name+0xbd/0xf0 [ 36.670545] ? device_initialize+0x450/0x450 [ 36.674940] ? __lockdep_init_map+0x100/0x5a0 [ 36.679419] netdev_register_kobject+0xbd/0x430 [ 36.684073] register_netdevice+0xb46/0x10f0 [ 36.688463] ? unregister_netdev+0x20/0x20 [ 36.692681] ? hsr_add_port+0x4e9/0x6a0 [ 36.696638] hsr_dev_finalize+0x4f5/0x770 [ 36.700792] hsr_newlink+0x27d/0x3e0 [ 36.704504] ? hsr_fill_info+0x590/0x590 [ 36.708659] ? rtnl_create_link+0x145/0xa40 [ 36.712972] ? hsr_fill_info+0x590/0x590 [ 36.717018] rtnl_newlink+0x1030/0x15c0 [ 36.720980] ? rtnl_getlink+0x620/0x620 [ 36.724956] ? mark_held_locks+0xf0/0xf0 [ 36.729008] ? unwind_next_frame+0xeee/0x1400 [ 36.733483] ? __save_stack_trace+0x72/0x190 [ 36.737879] ? deref_stack_reg+0x134/0x1d0 [ 36.742098] ? get_reg+0x176/0x1f0 [ 36.745622] ? __read_once_size_nocheck.constprop.0+0x10/0x10 [ 36.751486] ? deref_stack_reg+0x1d0/0x1d0 [ 36.755706] ? is_bpf_text_address+0xd5/0x1b0 [ 36.760184] ? lock_downgrade+0x720/0x720 [ 36.764313] ? lock_acquire+0x170/0x3c0 [ 36.768307] ? __bpf_address_lookup+0x330/0x330 [ 36.772960] ? check_preemption_disabled+0x41/0x280 [ 36.777963] ? __lock_acquire+0x6de/0x3ff0 [ 36.782196] ? __lock_acquire+0x6de/0x3ff0 [ 36.786429] ? mark_held_locks+0xf0/0xf0 [ 36.790481] ? mark_held_locks+0xf0/0xf0 [ 36.794536] ? pick_next_entity+0x27e/0x580 [ 36.798860] ? mutex_trylock+0x1a0/0x1a0 [ 36.802904] ? check_preemption_disabled+0x41/0x280 [ 36.807902] ? rtnetlink_rcv_msg+0x3c3/0xb80 [ 36.812300] ? rtnl_getlink+0x620/0x620 [ 36.816275] rtnetlink_rcv_msg+0x453/0xb80 [ 36.820509] ? rtnl_calcit.isra.0+0x430/0x430 [ 36.824999] ? lock_downgrade+0x720/0x720 [ 36.829161] ? rcu_read_unlock_special+0x4ce/0xfc0 [ 36.834077] ? _raw_spin_unlock_irqrestore+0x79/0xe0 [ 36.839163] netlink_rcv_skb+0x160/0x440 [ 36.843207] ? rtnl_calcit.isra.0+0x430/0x430 [ 36.847686] ? netlink_ack+0xae0/0xae0 [ 36.851648] netlink_unicast+0x4d5/0x690 [ 36.855715] ? netlink_sendskb+0x110/0x110 [ 36.859932] ? _copy_from_iter_full+0x229/0x7c0 [ 36.864589] ? __phys_addr_symbol+0x2c/0x70 [ 36.868989] ? __check_object_size+0x17b/0x3e0 [ 36.873554] netlink_sendmsg+0x6c3/0xc50 [ 36.877599] ? aa_af_perm+0x230/0x230 [ 36.881380] ? nlmsg_notify+0x1f0/0x1f0 [ 36.885332] ? kernel_recvmsg+0x220/0x220 [ 36.889462] ? nlmsg_notify+0x1f0/0x1f0 [ 36.893417] sock_sendmsg+0xc3/0x120 [ 36.897116] ___sys_sendmsg+0x7bb/0x8e0 [ 36.901075] ? check_preemption_disabled+0x41/0x280 [ 36.906091] ? copy_msghdr_from_user+0x440/0x440 [ 36.910834] ? __fget+0x32f/0x510 [ 36.914277] ? lock_downgrade+0x720/0x720 [ 36.918501] ? check_preemption_disabled+0x41/0x280 [ 36.923497] ? check_preemption_disabled+0x41/0x280 [ 36.928493] ? __fget+0x356/0x510 [ 36.931928] ? do_dup2+0x450/0x450 [ 36.935447] ? lock_downgrade+0x720/0x720 [ 36.939577] ? vfs_write+0x3d7/0x540 [ 36.943271] ? __fdget+0x1d0/0x230 [ 36.946795] __x64_sys_sendmsg+0x132/0x220 [ 36.951013] ? __sys_sendmsg+0x1b0/0x1b0 [ 36.955051] ? vfs_write+0x393/0x540 [ 36.958752] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 36.964094] ? trace_hardirqs_off_caller+0x6e/0x210 [ 36.969091] ? do_syscall_64+0x21/0x620 [ 36.973047] do_syscall_64+0xf9/0x620 [ 36.976839] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 36.982010] RIP: 0033:0x7f55181e8e09 [ 36.985702] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 37.004587] RSP: 002b:00007f55181962e8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 37.012283] RAX: ffffffffffffffda RBX: 00007f55182714e0 RCX: 00007f55181e8e09 [ 37.019531] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000004 [ 37.026809] RBP: 00007f551823e5e4 R08: 0000000000000002 R09: 0000000000003331 [ 37.034060] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f55182714ec [ 37.041310] R13: 00007f55181962f0 R14: 00007f55182714e8 R15: 0000000000000002 [ 37.051921] [ 37.053555] ============================================ [ 37.058988] WARNING: possible recursive locking detected [ 37.064437] 4.19.211-syzkaller #0 Not tainted [ 37.068918] -------------------------------------------- [ 37.074358] syz-executor341/8342 is trying to acquire lock: [ 37.080053] 00000000f2571ce1 (rtnl_mutex){+.+.}, at: hsr_dev_destroy+0x1b/0xb0 [ 37.087419] [ 37.087419] but task is already holding lock: [ 37.093368] 00000000f2571ce1 (rtnl_mutex){+.+.}, at: rtnetlink_rcv_msg+0x3fe/0xb80 [ 37.101063] [ 37.101063] other info that might help us debug this: [ 37.107702] Possible unsafe locking scenario: [ 37.107702] [ 37.113735] CPU0 [ 37.116291] ---- [ 37.118862] lock(rtnl_mutex); [ 37.122115] lock(rtnl_mutex); [ 37.125556] [ 37.125556] *** DEADLOCK *** [ 37.125556] [ 37.131600] May be due to missing lock nesting notation [ 37.131600] [ 37.138503] 1 lock held by syz-executor341/8342: [ 37.143231] #0: 00000000f2571ce1 (rtnl_mutex){+.+.}, at: rtnetlink_rcv_msg+0x3fe/0xb80 [ 37.151369] [ 37.151369] stack backtrace: [ 37.155846] CPU: 1 PID: 8342 Comm: syz-executor341 Not tainted 4.19.211-syzkaller #0 [ 37.163708] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 37.173041] Call Trace: [ 37.175612] dump_stack+0x1fc/0x2ef [ 37.179224] __lock_acquire.cold+0x121/0x57e [ 37.183613] ? kfree+0xcc/0x210 [ 37.186871] ? device_add+0x713/0x16d0 [ 37.190737] ? netdev_register_kobject+0x181/0x430 [ 37.195645] ? mark_held_locks+0xf0/0xf0 [ 37.199684] ? rtnl_newlink+0x1030/0x15c0 [ 37.203813] ? rtnetlink_rcv_msg+0x453/0xb80 [ 37.208198] ? netlink_rcv_skb+0x160/0x440 [ 37.212409] ? netlink_unicast+0x4d5/0x690 [ 37.216621] ? netlink_sendmsg+0x6c3/0xc50 [ 37.220838] ? sock_sendmsg+0xc3/0x120 [ 37.224702] ? ___sys_sendmsg+0x7bb/0x8e0 [ 37.228824] ? __x64_sys_sendmsg+0x132/0x220 [ 37.233211] ? do_syscall_64+0xf9/0x620 [ 37.237162] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 37.242504] ? debug_check_no_obj_freed+0x201/0x490 [ 37.247499] ? lock_downgrade+0x720/0x720 [ 37.251625] ? lock_acquire+0x170/0x3c0 [ 37.255576] lock_acquire+0x170/0x3c0 [ 37.259353] ? hsr_dev_destroy+0x1b/0xb0 [ 37.263394] ? hsr_dev_destroy+0x1b/0xb0 [ 37.267430] __mutex_lock+0xd7/0x1190 [ 37.271214] ? hsr_dev_destroy+0x1b/0xb0 [ 37.275258] ? mark_held_locks+0xa6/0xf0 [ 37.279299] ? kfree+0x110/0x210 [ 37.282661] ? hsr_dev_destroy+0x1b/0xb0 [ 37.286701] ? mutex_trylock+0x1a0/0x1a0 [ 37.290739] ? device_add+0x69f/0x16d0 [ 37.294606] ? device_check_offline+0x280/0x280 [ 37.299253] ? __lockdep_init_map+0x100/0x5a0 [ 37.303728] ? hsr_dev_close+0x10/0x10 [ 37.307593] hsr_dev_destroy+0x1b/0xb0 [ 37.311460] ? hsr_dev_close+0x10/0x10 [ 37.315326] register_netdevice+0x901/0x10f0 [ 37.319714] ? unregister_netdev+0x20/0x20 [ 37.323927] ? hsr_add_port+0x4e9/0x6a0 [ 37.327880] hsr_dev_finalize+0x4f5/0x770 [ 37.332008] hsr_newlink+0x27d/0x3e0 [ 37.335702] ? hsr_fill_info+0x590/0x590 [ 37.339745] ? rtnl_create_link+0x145/0xa40 [ 37.344049] ? hsr_fill_info+0x590/0x590 [ 37.348088] rtnl_newlink+0x1030/0x15c0 [ 37.352039] ? rtnl_getlink+0x620/0x620 [ 37.355995] ? mark_held_locks+0xf0/0xf0 [ 37.360032] ? unwind_next_frame+0xeee/0x1400 [ 37.364504] ? __save_stack_trace+0x72/0x190 [ 37.368891] ? deref_stack_reg+0x134/0x1d0 [ 37.373101] ? get_reg+0x176/0x1f0 [ 37.376618] ? __read_once_size_nocheck.constprop.0+0x10/0x10 [ 37.382566] ? deref_stack_reg+0x1d0/0x1d0 [ 37.386778] ? is_bpf_text_address+0xd5/0x1b0 [ 37.391433] ? lock_downgrade+0x720/0x720 [ 37.395555] ? lock_acquire+0x170/0x3c0 [ 37.399506] ? __bpf_address_lookup+0x330/0x330 [ 37.404185] ? check_preemption_disabled+0x41/0x280 [ 37.409180] ? __lock_acquire+0x6de/0x3ff0 [ 37.413394] ? __lock_acquire+0x6de/0x3ff0 [ 37.417607] ? mark_held_locks+0xf0/0xf0 [ 37.421765] ? mark_held_locks+0xf0/0xf0 [ 37.425912] ? pick_next_entity+0x27e/0x580 [ 37.430217] ? mutex_trylock+0x1a0/0x1a0 [ 37.434265] ? check_preemption_disabled+0x41/0x280 [ 37.439289] ? rtnetlink_rcv_msg+0x3c3/0xb80 [ 37.443675] ? rtnl_getlink+0x620/0x620 [ 37.447637] rtnetlink_rcv_msg+0x453/0xb80 [ 37.451852] ? rtnl_calcit.isra.0+0x430/0x430 [ 37.456331] ? lock_downgrade+0x720/0x720 [ 37.460457] ? rcu_read_unlock_special+0x4ce/0xfc0 [ 37.465380] ? _raw_spin_unlock_irqrestore+0x79/0xe0 [ 37.470469] netlink_rcv_skb+0x160/0x440 [ 37.474515] ? rtnl_calcit.isra.0+0x430/0x430 [ 37.478988] ? netlink_ack+0xae0/0xae0 [ 37.482859] netlink_unicast+0x4d5/0x690 [ 37.486902] ? netlink_sendskb+0x110/0x110 [ 37.491116] ? _copy_from_iter_full+0x229/0x7c0 [ 37.495763] ? __phys_addr_symbol+0x2c/0x70 [ 37.500078] ? __check_object_size+0x17b/0x3e0 [ 37.504639] netlink_sendmsg+0x6c3/0xc50 [ 37.508678] ? aa_af_perm+0x230/0x230 [ 37.512458] ? nlmsg_notify+0x1f0/0x1f0 [ 37.516406] ? kernel_recvmsg+0x220/0x220 [ 37.520532] ? nlmsg_notify+0x1f0/0x1f0 [ 37.524484] sock_sendmsg+0xc3/0x120 [ 37.528178] ___sys_sendmsg+0x7bb/0x8e0 [ 37.532132] ? check_preemption_disabled+0x41/0x280 [ 37.537126] ? copy_msghdr_from_user+0x440/0x440 [ 37.541861] ? __fget+0x32f/0x510 [ 37.545293] ? lock_downgrade+0x720/0x720 [ 37.549418] ? check_preemption_disabled+0x41/0x280 [ 37.554412] ? check_preemption_disabled+0x41/0x280 [ 37.559406] ? __fget+0x356/0x510 [ 37.562836] ? do_dup2+0x450/0x450 [ 37.566353] ? lock_downgrade+0x720/0x720 [ 37.570477] ? vfs_write+0x3d7/0x540 [ 37.574176] ? __fdget+0x1d0/0x230 [ 37.577702] __x64_sys_sendmsg+0x132/0x220 [ 37.581913] ? __sys_sendmsg+0x1b0/0x1b0 [ 37.585951] ? vfs_write+0x393/0x540 [ 37.589647] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 37.594988] ? trace_hardirqs_off_caller+0x6e/0x210 [ 37.599981] ? do_syscall_64+0x21/0x620 [ 37.603935] do_syscall_64+0xf9/0x620 [ 37.607717] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 37.612886] RIP: 0033:0x7f55181e8e09 [ 37.616606] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 37.635575] RSP: 002b:00007f55181962e8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 37.643261] RAX: ffffffffffffffda RBX: 00007f55182714e0 RCX: 00007f55181e8e09 [ 37.650515] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000004 [ 37.657767] RBP: 00007f551823e5e4 R08: 0000000000000002 R09: 0000000000003331 [ 37.665020] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f55182714ec [ 37.672282] R13: 00007f55181962f0 R14: 00007f55182714e8 R15: 0000000000000002