[ 46.222533][ T23] audit: type=1800 audit(1575383474.729:25): pid=8131 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 46.251273][ T23] audit: type=1800 audit(1575383474.729:26): pid=8131 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 46.282363][ T23] audit: type=1800 audit(1575383474.729:27): pid=8131 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [ 46.306496][ T23] audit: type=1800 audit(1575383474.729:28): pid=8131 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.1.51' (ECDSA) to the list of known hosts. 2019/12/03 14:31:23 fuzzer started 2019/12/03 14:31:25 dialing manager at 10.128.0.26:45711 2019/12/03 14:31:25 syscalls: 2689 2019/12/03 14:31:25 code coverage: enabled 2019/12/03 14:31:25 comparison tracing: enabled 2019/12/03 14:31:25 extra coverage: extra coverage is not supported by the kernel 2019/12/03 14:31:25 setuid sandbox: enabled 2019/12/03 14:31:25 namespace sandbox: enabled 2019/12/03 14:31:25 Android sandbox: /sys/fs/selinux/policy does not exist 2019/12/03 14:31:25 fault injection: enabled 2019/12/03 14:31:25 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/12/03 14:31:25 net packet injection: enabled 2019/12/03 14:31:25 net device setup: enabled 2019/12/03 14:31:25 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2019/12/03 14:31:25 devlink PCI setup: PCI device 0000:00:10.0 is not available 14:31:26 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = dup3(r3, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r5, 0x4008ae89, &(0x7f0000000000)={0x7b, 0x5, [0x3a, 0x0, 0x40000106], [0xc1]}) 14:31:26 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) write(r0, &(0x7f0000000400)="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", 0xfc) syzkaller login: [ 58.317080][ T8295] IPVS: ftp: loaded support on port[0] = 21 14:31:27 executing program 2: r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ashmem\x00', 0x0, 0x0) ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x440000000002011, r0, 0x0) close(r0) [ 58.463648][ T8297] IPVS: ftp: loaded support on port[0] = 21 [ 58.475460][ T8295] chnl_net:caif_netlink_parms(): no params data found [ 58.575022][ T8295] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.584484][ T8295] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.601337][ T8295] device bridge_slave_0 entered promiscuous mode [ 58.648470][ T8295] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.659382][ T8295] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.668185][ T8295] device bridge_slave_1 entered promiscuous mode [ 58.684113][ T8297] chnl_net:caif_netlink_parms(): no params data found [ 58.697973][ T8301] IPVS: ftp: loaded support on port[0] = 21 [ 58.736964][ T8295] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.766657][ T8297] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.774519][ T8297] bridge0: port 1(bridge_slave_0) entered disabled state 14:31:27 executing program 3: mkdir(&(0x7f00000000c0)='./file0\x00', 0x0) mount$bpf(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='bpf\x00', 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)={0x9, 0x7, 0x8, 0x5, 0x0, 0x1}, 0x2c) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000140)={&(0x7f0000000000)='./file0/file0\x00', r0}, 0x10) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) bpf$OBJ_GET_PROG(0x7, &(0x7f0000000180)={&(0x7f0000000100)='./file0/file0\x00'}, 0x10) [ 58.782505][ T8297] device bridge_slave_0 entered promiscuous mode [ 58.791020][ T8295] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.805241][ T8297] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.820250][ T8297] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.840354][ T8297] device bridge_slave_1 entered promiscuous mode [ 58.909766][ T8295] team0: Port device team_slave_0 added [ 58.917114][ T8295] team0: Port device team_slave_1 added [ 58.947370][ T8297] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.971317][ T8297] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 59.024191][ T8304] IPVS: ftp: loaded support on port[0] = 21 14:31:27 executing program 4: r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000c34000)) ioctl$UFFDIO_ZEROPAGE(r0, 0xc020aa04, &(0x7f0000000080)={{&(0x7f0000291000/0x400000)=nil, 0x400000}, 0xb00, 0x6000000}) [ 59.095548][ T8295] device hsr_slave_0 entered promiscuous mode [ 59.159945][ T8295] device hsr_slave_1 entered promiscuous mode [ 59.201314][ T8297] team0: Port device team_slave_0 added [ 59.225132][ T8297] team0: Port device team_slave_1 added [ 59.233030][ T8308] IPVS: ftp: loaded support on port[0] = 21 14:31:27 executing program 5: syz_mount_image$reiserfs(&(0x7f0000001a80)='reiserfs\x00', &(0x7f0000001ac0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000001e00)={[{@jqfmt_vfsv0='jqfmt=vfsv0'}, {@jdev={'jdev', 0x3d, './file0'}}]}) [ 59.295727][ T8301] chnl_net:caif_netlink_parms(): no params data found [ 59.327297][ T8295] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 59.374489][ T8295] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 59.432700][ T8295] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 59.571041][ T8297] device hsr_slave_0 entered promiscuous mode [ 59.629557][ T8297] device hsr_slave_1 entered promiscuous mode [ 59.709403][ T8297] debugfs: Directory 'hsr0' with parent '/' already present! [ 59.717179][ T8295] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 59.781451][ T8301] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.788875][ T8301] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.796953][ T8301] device bridge_slave_0 entered promiscuous mode [ 59.806567][ T8301] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.813847][ T8301] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.821479][ T8301] device bridge_slave_1 entered promiscuous mode [ 59.877152][ T8310] IPVS: ftp: loaded support on port[0] = 21 [ 59.917323][ T8301] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 59.934183][ T8308] chnl_net:caif_netlink_parms(): no params data found [ 59.962495][ T8301] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 59.972098][ T8304] chnl_net:caif_netlink_parms(): no params data found [ 60.013848][ T8297] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 60.063965][ T8297] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 60.115378][ T8297] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 60.193231][ T8308] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.200864][ T8308] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.208515][ T8308] device bridge_slave_0 entered promiscuous mode [ 60.215998][ T8297] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 60.267195][ T8301] team0: Port device team_slave_0 added [ 60.278285][ T8301] team0: Port device team_slave_1 added [ 60.284146][ T8308] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.291881][ T8308] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.299847][ T8308] device bridge_slave_1 entered promiscuous mode [ 60.316267][ T8304] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.323420][ T8304] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.331555][ T8304] device bridge_slave_0 entered promiscuous mode [ 60.360727][ T8308] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 60.370005][ T8304] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.377038][ T8304] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.385533][ T8304] device bridge_slave_1 entered promiscuous mode [ 60.405013][ T8304] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 60.421794][ T8304] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 60.434951][ T8308] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 60.455782][ T8308] team0: Port device team_slave_0 added [ 60.467109][ T8308] team0: Port device team_slave_1 added [ 60.500966][ T8301] device hsr_slave_0 entered promiscuous mode [ 60.549760][ T8301] device hsr_slave_1 entered promiscuous mode [ 60.599456][ T8301] debugfs: Directory 'hsr0' with parent '/' already present! [ 60.631220][ T8304] team0: Port device team_slave_0 added [ 60.637983][ T8304] team0: Port device team_slave_1 added [ 60.732082][ T8308] device hsr_slave_0 entered promiscuous mode [ 60.799961][ T8308] device hsr_slave_1 entered promiscuous mode [ 60.859443][ T8308] debugfs: Directory 'hsr0' with parent '/' already present! [ 60.873083][ T8295] 8021q: adding VLAN 0 to HW filter on device bond0 [ 60.931626][ T8304] device hsr_slave_0 entered promiscuous mode [ 60.979744][ T8304] device hsr_slave_1 entered promiscuous mode [ 61.049435][ T8304] debugfs: Directory 'hsr0' with parent '/' already present! [ 61.066888][ T8295] 8021q: adding VLAN 0 to HW filter on device team0 [ 61.086350][ T8310] chnl_net:caif_netlink_parms(): no params data found [ 61.095384][ T8311] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 61.103968][ T8311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 61.126136][ T8311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 61.134922][ T8311] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 61.143543][ T8311] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.150722][ T8311] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.161639][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 61.186560][ T8301] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 61.223256][ T8301] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 61.274342][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 61.284349][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 61.293192][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.300300][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 61.322564][ T8310] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.329899][ T8310] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.337534][ T8310] device bridge_slave_0 entered promiscuous mode [ 61.345133][ T8308] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 61.392185][ T8308] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 61.451598][ T8301] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 61.503294][ T8301] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 61.561738][ T8310] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.568858][ T8310] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.576849][ T8310] device bridge_slave_1 entered promiscuous mode [ 61.590159][ T8308] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 61.621147][ T8304] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 61.661799][ T8311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 61.672636][ T8311] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 61.681781][ T8311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 61.690707][ T8311] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 61.699664][ T8311] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 61.713777][ T8308] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 61.760762][ T8304] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 61.801152][ T8304] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 61.862134][ T8304] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 61.912351][ T8310] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 61.928594][ T8310] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 61.946549][ T8297] 8021q: adding VLAN 0 to HW filter on device bond0 [ 61.962157][ T8295] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 61.973007][ T8295] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 61.988271][ T3202] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 61.997255][ T3202] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 62.005747][ T3202] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 62.014662][ T3202] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 62.023225][ T3202] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 62.031580][ T3202] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 62.082827][ T8297] 8021q: adding VLAN 0 to HW filter on device team0 [ 62.093529][ T3202] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 62.102012][ T3202] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 62.109479][ T3202] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 62.121571][ T3202] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 62.129114][ T3202] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 62.164952][ T8310] team0: Port device team_slave_0 added [ 62.172770][ T8310] team0: Port device team_slave_1 added [ 62.197176][ T8302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 62.206208][ T8302] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 62.214723][ T8302] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.221812][ T8302] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.230720][ T8302] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 62.239122][ T8302] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 62.247562][ T8302] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.254717][ T8302] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.262724][ T8302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 62.272542][ T8295] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 62.292370][ T8304] 8021q: adding VLAN 0 to HW filter on device bond0 [ 62.302788][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 62.319875][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 62.335878][ T8301] 8021q: adding VLAN 0 to HW filter on device bond0 [ 62.402895][ T8310] device hsr_slave_0 entered promiscuous mode [ 62.449651][ T8310] device hsr_slave_1 entered promiscuous mode [ 62.500098][ T8310] debugfs: Directory 'hsr0' with parent '/' already present! [ 62.510040][ T8311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 62.518860][ T8311] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 62.537997][ T8301] 8021q: adding VLAN 0 to HW filter on device team0 [ 62.560871][ T8308] 8021q: adding VLAN 0 to HW filter on device bond0 [ 62.584419][ T8304] 8021q: adding VLAN 0 to HW filter on device team0 [ 167.589240][ C0] rcu: INFO: rcu_preempt self-detected stall on CPU [ 167.596017][ C0] rcu: 0-...!: (10499 ticks this GP) idle=1a2/1/0x4000000000000002 softirq=11835/11835 fqs=149 [ 167.606657][ C0] (t=10501 jiffies g=6341 q=169) [ 167.611695][ C0] rcu: rcu_preempt kthread starved for 10204 jiffies! g6341 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1 [ 167.624362][ C0] rcu: RCU grace-period kthread stack dump: [ 167.630273][ C0] rcu_preempt R running task 29104 10 2 0x80004000 [ 167.638279][ C0] Call Trace: [ 167.641745][ C0] __schedule+0x9a0/0xcc0 [ 167.646075][ C0] schedule+0x181/0x210 [ 167.650224][ C0] schedule_timeout+0x14f/0x240 [ 167.655078][ C0] ? run_local_timers+0x120/0x120 [ 167.660102][ C0] rcu_gp_kthread+0xed8/0x1770 [ 167.664864][ C0] kthread+0x332/0x350 [ 167.668920][ C0] ? rcu_report_qs_rsp+0x140/0x140 [ 167.674021][ C0] ? kthread_blkcg+0xe0/0xe0 [ 167.678616][ C0] ret_from_fork+0x24/0x30 [ 167.683132][ C0] NMI backtrace for cpu 0 [ 167.687451][ C0] CPU: 0 PID: 8319 Comm: syz-executor.0 Not tainted 5.4.0-syzkaller #0 [ 167.695670][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 167.705711][ C0] Call Trace: [ 167.708980][ C0] [ 167.711833][ C0] dump_stack+0x1fb/0x318 [ 167.716155][ C0] nmi_cpu_backtrace+0xaf/0x1a0 [ 167.721006][ C0] ? nmi_trigger_cpumask_backtrace+0x16d/0x290 [ 167.727187][ C0] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 167.733442][ C0] nmi_trigger_cpumask_backtrace+0x174/0x290 [ 167.739420][ C0] arch_trigger_cpumask_backtrace+0x10/0x20 [ 167.745300][ C0] rcu_dump_cpu_stacks+0x15a/0x220 [ 167.750406][ C0] rcu_sched_clock_irq+0xe25/0x1ad0 [ 167.755598][ C0] ? trace_hardirqs_off+0x74/0x80 [ 167.760612][ C0] update_process_times+0x12d/0x180 [ 167.765804][ C0] tick_sched_timer+0x263/0x420 [ 167.770651][ C0] ? tick_setup_sched_timer+0x3d0/0x3d0 [ 167.776184][ C0] __hrtimer_run_queues+0x403/0x840 [ 167.781383][ C0] hrtimer_interrupt+0x38c/0xda0 [ 167.786411][ C0] ? debug_smp_processor_id+0x9/0x20 [ 167.791706][ C0] smp_apic_timer_interrupt+0x109/0x280 [ 167.797240][ C0] apic_timer_interrupt+0xf/0x20 [ 167.802161][ C0] [ 167.805086][ C0] RIP: 0010:__memcg_kmem_uncharge+0x219/0x2e0 [ 167.811146][ C0] Code: 4b 0d 89 e8 59 97 00 00 bf 01 00 00 00 e8 2f e3 9b ff 65 8b 05 d4 fd 4a 7e 85 c0 74 53 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f <5d> c3 49 8d 5f 10 48 89 df be 08 00 00 00 e8 04 c1 fa ff 48 8b 45 [ 167.830744][ C0] RSP: 0018:ffffc90002857b68 EFLAGS: 00000292 ORIG_RAX: ffffffffffffff13 [ 167.839154][ C0] RAX: 0000000000000001 RBX: ffffea000257ed00 RCX: 0000000000000000 [ 167.847240][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffea000257ed00 [ 167.855223][ C0] RBP: ffffc90002857b68 R08: 000000000003a768 R09: ffffed101507a747 [ 167.863214][ C0] R10: ffffed101507a747 R11: 0000000000000000 R12: ffff8880a2bda5a0 [ 167.871180][ C0] R13: dffffc0000000000 R14: 1ffff1101457b4b4 R15: ffff8880a83d3a28 [ 167.879175][ C0] free_thread_stack+0x12e/0x590 [ 167.884110][ C0] put_task_stack+0xa3/0x130 [ 167.888718][ C0] finish_task_switch+0x3f1/0x550 [ 167.893744][ C0] __schedule+0x9a8/0xcc0 [ 167.898603][ C0] preempt_schedule_irq+0xc1/0x140 [ 167.903832][ C0] retint_kernel+0x1b/0x2b [ 167.908244][ C0] RIP: 0010:__sanitizer_cov_trace_pc+0xd/0x50 [ 167.914306][ C0] Code: e5 53 48 89 fb e8 13 00 00 00 48 8b 3d 74 25 cd 07 48 89 de e8 64 02 3b 00 5b 5d c3 cc 48 8b 04 24 65 48 8b 0c 25 c0 1d 02 00 <65> 8b 15 b8 81 8b 7e f7 c2 00 01 1f 00 75 2c 8b 91 80 13 00 00 83 [ 167.933899][ C0] RSP: 0018:ffffc90002857dc0 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13 [ 167.942307][ C0] RAX: ffffffff81484023 RBX: 0000000000000000 RCX: ffff8880988b82c0 [ 167.950359][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 167.958317][ C0] RBP: ffffc90002857e70 R08: ffffffff81483e2b R09: ffffed1012500104 [ 167.966368][ C0] R10: ffffed1012500104 R11: 0000000000000000 R12: ffff888092800040 [ 167.974348][ C0] R13: ffffc90002857ea8 R14: dffffc0000000000 R15: 0000000000000000 [ 167.982328][ C0] ? _do_fork+0x2db/0x660 [ 167.986649][ C0] ? _do_fork+0x4d3/0x660 [ 167.990975][ C0] ? _do_fork+0x4d3/0x660 [ 167.995302][ C0] __x64_sys_clone+0x20b/0x250 [ 168.000065][ C0] do_syscall_64+0xf7/0x1c0 [ 168.004564][ C0] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 168.010447][ C0] RIP: 0033:0x45d049 [ 168.014330][ C0] Code: ff 48 85 f6 0f 84 d7 8c fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c ae 8c fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75 [ 168.033918][ C0] RSP: 002b:00007fff139ce598 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 168.042319][ C0] RAX: ffffffffffffffda RBX: 00007f68e4efc700 RCX: 000000000045d049 [ 168.050273][ C0] RDX: 00007f68e4efc9d0 RSI: 00007f68e4efbdb0 RDI: 00000000003d0f00 [ 168.058340][ C0] RBP: 00007fff139ce7b0 R08: 00007f68e4efc700 R09: 00007f68e4efc700 [ 168.066305][ C0] R10: 00007f68e4efc9d0 R11: 0000000000000202 R12: 0000000000000000 [ 168.074269][ C0] R13: 00007fff139ce64f R14: 00007f68e4efc9c0 R15: 000000000075bf2c