[info] Using makefile-style concurrent boot in runlevel 2. [ 26.774189] audit: type=1800 audit(1542478655.324:21): pid=5846 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="bootlogs" dev="sda1" ino=2419 res=0 [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.5' (ECDSA) to the list of known hosts. 2018/11/17 18:18:26 parsed 1 programs 2018/11/17 18:18:28 executed programs: 0 syzkaller login: [ 80.164806] IPVS: ftp: loaded support on port[0] = 21 [ 80.416699] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.423623] bridge0: port 1(bridge_slave_0) entered disabled state [ 80.431561] device bridge_slave_0 entered promiscuous mode [ 80.451638] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.458139] bridge0: port 2(bridge_slave_1) entered disabled state [ 80.465056] device bridge_slave_1 entered promiscuous mode [ 80.483835] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 80.501976] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 80.552759] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 80.574510] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 80.651169] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 80.660036] team0: Port device team_slave_0 added [ 80.677254] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 80.684451] team0: Port device team_slave_1 added [ 80.702568] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 80.722845] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 80.743664] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 80.763176] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 80.910536] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.916992] bridge0: port 2(bridge_slave_1) entered forwarding state [ 80.923896] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.930274] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.447682] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.500711] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 81.551806] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 81.558534] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 81.565765] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 81.619588] 8021q: adding VLAN 0 to HW filter on device team0 [ 82.053983] sched: DL replenish lagged too much [ 82.176436] hrtimer: interrupt took 47038 ns 2018/11/17 18:18:33 executed programs: 30 2018/11/17 18:18:38 executed programs: 79 2018/11/17 18:18:43 executed programs: 127 2018/11/17 18:18:48 executed programs: 173 2018/11/17 18:18:54 executed programs: 218 2018/11/17 18:18:59 executed programs: 266 2018/11/17 18:19:04 executed programs: 313 2018/11/17 18:19:09 executed programs: 358 2018/11/17 18:19:14 executed programs: 406 [ 128.897075] WARNING: CPU: 0 PID: 8290 at kernel/sched/deadline.c:628 enqueue_task_dl+0x22da/0x38a0 [ 128.907522] Kernel panic - not syncing: panic_on_warn set ... [ 128.913392] CPU: 0 PID: 8290 Comm: syz-executor0 Not tainted 4.20.0-rc2+ #117 [ 128.920661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 128.929999] Call Trace: [ 128.932574] dump_stack+0x244/0x39d [ 128.936193] ? dump_stack_print_info.cold.1+0x20/0x20 [ 128.941375] panic+0x2ad/0x55c [ 128.944552] ? add_taint.cold.5+0x16/0x16 [ 128.948690] ? __warn.cold.8+0x5/0x45 [ 128.952475] ? __warn+0xe8/0x1d0 [ 128.955837] ? enqueue_task_dl+0x22da/0x38a0 [ 128.960233] __warn.cold.8+0x20/0x45 [ 128.963934] ? rcu_softirq_qs+0x20/0x20 [ 128.967897] ? enqueue_task_dl+0x22da/0x38a0 [ 128.972292] report_bug+0x254/0x2d0 [ 128.975906] do_error_trap+0x11b/0x200 [ 128.979781] do_invalid_op+0x36/0x40 [ 128.983479] ? enqueue_task_dl+0x22da/0x38a0 [ 128.987875] invalid_op+0x14/0x20 [ 128.991315] RIP: 0010:enqueue_task_dl+0x22da/0x38a0 [ 128.996319] Code: ff 48 8b 8d c8 fe ff ff 48 c1 e6 2a 4c 8b 9d d0 fe ff ff 8b 95 d8 fe ff ff 48 8b 85 e0 fe ff ff e9 16 e4 ff ff e8 16 d0 ea ff <0f> 0b e9 17 f1 ff ff 48 8b bd e8 fe ff ff 4c 89 95 c8 fe ff ff 48 [ 129.015201] RSP: 0018:ffff8881b7b77a18 EFLAGS: 00010002 [ 129.020558] RAX: 0000000000000000 RBX: ffff8881b221c640 RCX: ffff8881b221c8b8 [ 129.027812] RDX: ffff8881b221c67c RSI: 0000000000000002 RDI: ffff8881dae2d710 [ 129.035063] RBP: ffff8881b7b77b78 R08: 0000000000000001 R09: ffff8881dae00000 [ 129.042334] R10: 0000001e02d35722 R11: ffff8881dae2db3b R12: 1ffff11036f6ef4e [ 129.049589] R13: ffff8881b221c90c R14: ffff8881dae2ccc0 R15: ffff8881dae2ccc0 [ 129.056857] ? enqueue_task_dl+0x1ae3/0x38a0 [ 129.061253] ? switched_from_dl+0xf70/0xf70 [ 129.065560] ? dequeue_task_dl+0x4e4/0x870 [ 129.069780] ? dl_task_timer+0xc10/0xc10 [ 129.073839] ? __lock_is_held+0xb5/0x140 [ 129.077900] ? rcu_read_lock_sched_held+0x14f/0x180 [ 129.082900] enqueue_task+0x184/0x390 [ 129.086686] __sched_setscheduler+0xe99/0x2190 [ 129.091251] ? lock_downgrade+0x900/0x900 [ 129.095384] ? cpu_cgroup_fork+0x130/0x130 [ 129.099629] ? __x64_sys_sched_setattr+0x146/0x2f0 [ 129.104546] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 129.110084] ? check_preemption_disabled+0x48/0x280 [ 129.115086] ? kasan_check_read+0x11/0x20 [ 129.119220] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 129.124479] ? rcu_softirq_qs+0x20/0x20 [ 129.128440] ? _copy_from_user+0xdf/0x150 [ 129.132591] __x64_sys_sched_setattr+0x1b2/0x2f0 [ 129.137337] ? __ia32_sys_sched_setparam+0x80/0x80 [ 129.142249] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 129.147695] do_syscall_64+0x1b9/0x820 [ 129.151569] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 129.156916] ? syscall_return_slowpath+0x5e0/0x5e0 [ 129.161828] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 129.166658] ? trace_hardirqs_on_caller+0x310/0x310 [ 129.171660] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 129.176676] ? prepare_exit_to_usermode+0x291/0x3b0 [ 129.181677] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 129.186509] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 129.191682] RIP: 0033:0x457569 [ 129.194863] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 129.213746] RSP: 002b:00007ffa53acec78 EFLAGS: 00000246 ORIG_RAX: 000000000000013a [ 129.221439] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 129.228693] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000000 [ 129.235947] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 129.243201] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffa53acf6d4 [ 129.250457] R13: 00000000004c369f R14: 00000000004d5730 R15: 00000000ffffffff [ 129.257720] [ 129.257725] ====================================================== [ 129.257729] WARNING: possible circular locking dependency detected [ 129.257732] 4.20.0-rc2+ #117 Not tainted [ 129.257736] ------------------------------------------------------ [ 129.257740] syz-executor0/8290 is trying to acquire lock: [ 129.257742] 0000000074fe3dbd ((console_sem).lock){-.-.}, at: down_trylock+0x13/0x70 [ 129.257753] [ 129.257756] but task is already holding lock: [ 129.257758] 00000000f666655a (&rq->lock){-.-.}, at: task_rq_lock+0xc5/0x2a0 [ 129.257768] [ 129.257772] which lock already depends on the new lock. [ 129.257774] [ 129.257775] [ 129.257779] the existing dependency chain (in reverse order) is: [ 129.257781] [ 129.257783] -> #2 (&rq->lock){-.-.}: [ 129.257793] _raw_spin_lock+0x2d/0x40 [ 129.257796] task_fork_fair+0xb0/0x6d0 [ 129.257799] sched_fork+0x443/0xba0 [ 129.257802] copy_process+0x25b8/0x87a0 [ 129.257805] _do_fork+0x1cb/0x11d0 [ 129.257808] kernel_thread+0x34/0x40 [ 129.257810] rest_init+0x28/0x372 [ 129.257814] arch_call_rest_init+0xe/0x1b [ 129.257816] start_kernel+0x9f0/0xa2b [ 129.257820] x86_64_start_reservations+0x2e/0x30 [ 129.257823] x86_64_start_kernel+0x76/0x79 [ 129.257826] secondary_startup_64+0xa4/0xb0 [ 129.257828] [ 129.257830] -> #1 (&p->pi_lock){-.-.}: [ 129.257840] _raw_spin_lock_irqsave+0x99/0xd0 [ 129.257843] try_to_wake_up+0xdc/0x1490 [ 129.257846] wake_up_process+0x10/0x20 [ 129.257849] __up.isra.1+0x1c0/0x2a0 [ 129.257852] up+0x13c/0x1c0 [ 129.257855] __up_console_sem+0xbe/0x1b0 [ 129.257858] console_unlock+0x811/0x1190 [ 129.257861] vprintk_emit+0x391/0x990 [ 129.257864] vprintk_default+0x28/0x30 [ 129.257867] vprintk_func+0x7e/0x181 [ 129.257869] printk+0xa7/0xcf [ 129.257872] do_exit.cold.18+0x57/0x16f [ 129.257875] do_group_exit+0x177/0x440 [ 129.257878] __x64_sys_exit_group+0x3e/0x50 [ 129.257881] do_syscall_64+0x1b9/0x820 [ 129.257885] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 129.257887] [ 129.257888] -> #0 ((console_sem).lock){-.-.}: [ 129.257899] lock_acquire+0x1ed/0x520 [ 129.257902] _raw_spin_lock_irqsave+0x99/0xd0 [ 129.257905] down_trylock+0x13/0x70 [ 129.257909] __down_trylock_console_sem+0xae/0x1f0 [ 129.257912] console_trylock+0x15/0xa0 [ 129.257915] vprintk_emit+0x372/0x990 [ 129.257918] vprintk_default+0x28/0x30 [ 129.257921] vprintk_func+0x7e/0x181 [ 129.257923] printk+0xa7/0xcf [ 129.257926] __warn+0x9e/0x1d0 [ 129.257929] report_bug+0x254/0x2d0 [ 129.257932] do_error_trap+0x11b/0x200 [ 129.257935] do_invalid_op+0x36/0x40 [ 129.257938] invalid_op+0x14/0x20 [ 129.257941] enqueue_task_dl+0x22da/0x38a0 [ 129.257944] enqueue_task+0x184/0x390 [ 129.257947] __sched_setscheduler+0xe99/0x2190 [ 129.257950] __x64_sys_sched_setattr+0x1b2/0x2f0 [ 129.257953] do_syscall_64+0x1b9/0x820 [ 129.257957] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 129.257959] [ 129.257962] other info that might help us debug this: [ 129.257964] [ 129.257966] Chain exists of: [ 129.257968] (console_sem).lock --> &p->pi_lock --> &rq->lock [ 129.257982] [ 129.257985] Possible unsafe locking scenario: [ 129.257987] [ 129.257990] CPU0 CPU1 [ 129.257993] ---- ---- [ 129.257995] lock(&rq->lock); [ 129.258001] lock(&p->pi_lock); [ 129.258008] lock(&rq->lock); [ 129.258014] lock((console_sem).lock); [ 129.258020] [ 129.258022] *** DEADLOCK *** [ 129.258024] [ 129.258027] 3 locks held by syz-executor0/8290: [ 129.258029] #0: 00000000da55d037 (rcu_read_lock){....}, at: __x64_sys_sched_setattr+0x146/0x2f0 [ 129.258041] #1: 0000000002709575 (&p->pi_lock){-.-.}, at: task_rq_lock+0x62/0x2a0 [ 129.258053] #2: 00000000f666655a (&rq->lock){-.-.}, at: task_rq_lock+0xc5/0x2a0 [ 129.258065] [ 129.258067] stack backtrace: [ 129.258072] CPU: 0 PID: 8290 Comm: syz-executor0 Not tainted 4.20.0-rc2+ #117 [ 129.258078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 129.258080] Call Trace: [ 129.258083] dump_stack+0x244/0x39d [ 129.258086] ? dump_stack_print_info.cold.1+0x20/0x20 [ 129.258089] ? vprintk_func+0x85/0x181 [ 129.258093] print_circular_bug.isra.35.cold.54+0x1bd/0x27d [ 129.258096] ? save_trace+0xe0/0x290 [ 129.258099] __lock_acquire+0x3399/0x4c20 [ 129.258102] ? widen_string+0xe0/0x2e0 [ 129.258105] ? mark_held_locks+0x130/0x130 [ 129.258108] ? string+0x225/0x2d0 [ 129.258111] ? widen_string+0x2e0/0x2e0 [ 129.258114] ? enqueue_task_dl+0x22da/0x38a0 [ 129.258117] ? enqueue_task_dl+0x22da/0x38a0 [ 129.258120] ? flags_string+0x350/0x350 [ 129.258123] ? zap_class+0x640/0x640 [ 129.258126] ? plist_check_list+0xa0/0xa0 [ 129.258129] ? __free_object+0x173/0x340 [ 129.258133] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 129.258136] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 129.258139] ? put_dec_trunc8+0x273/0x300 [ 129.258142] ? put_dec+0x3b/0xf0 [ 129.258145] ? enqueue_task_dl+0x22da/0x38a0 [ 129.258148] ? zap_class+0x640/0x640 [ 129.258152] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 129.258155] lock_acquire+0x1ed/0x520 [ 129.258158] ? down_trylock+0x13/0x70 [ 129.258161] ? lock_release+0xa00/0xa00 [ 129.258164] ? trace_hardirqs_off+0xb8/0x310 [ 129.258167] ? vprintk_emit+0x1de/0x990 [ 129.258170] ? trace_hardirqs_on+0x310/0x310 [ 129.258173] ? trace_hardirqs_off+0xb8/0x310 [ 129.258176] ? log_store+0x344/0x4c0 [ 129.258179] ? vprintk_emit+0x372/0x990 [ 129.258182] _raw_spin_lock_irqsave+0x99/0xd0 [ 129.258185] ? down_trylock+0x13/0x70 [ 129.258188] down_trylock+0x13/0x70 [ 129.258191] __down_trylock_console_sem+0xae/0x1f0 [ 129.258194] console_trylock+0x15/0xa0 [ 129.258197] vprintk_emit+0x372/0x990 [ 129.258200] ? wake_up_klogd+0x180/0x180 [ 129.258204] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 129.258207] ? __check_object_size+0xb1/0x782 [ 129.258210] ? usercopy_warn+0x110/0x110 [ 129.258213] ? enqueue_task_dl+0x22da/0x38a0 [ 129.258216] vprintk_default+0x28/0x30 [ 129.258219] vprintk_func+0x7e/0x181 [ 129.258221] printk+0xa7/0xcf [ 129.258225] ? kmsg_dump_rewind_nolock+0xe4/0xe4 [ 129.258228] ? enqueue_task_dl+0x22da/0x38a0 [ 129.258231] __warn+0x9e/0x1d0 [ 129.258234] ? rcu_softirq_qs+0x20/0x20 [ 129.258237] ? enqueue_task_dl+0x22da/0x38a0 [ 129.258240] report_bug+0x254/0x2d0 [ 129.258243] do_error_trap+0x11b/0x200 [ 129.258245] do_invalid_op+0x36/0x40 [ 129.258249] ? enqueue_task_dl+0x22da/0x38a0 [ 129.258251] invalid_op+0x14/0x20 [ 129.258255] RIP: 0010:enqueue_task_dl+0x22da/0x38a0 [ 129.258265] Code: ff 48 8b 8d c8 fe ff ff 48 c1 e6 2a 4c 8b 9d d0 fe ff ff 8b 95 d8 fe ff ff 48 8b 85 e0 fe ff ff e9 16 e4 ff ff e8 16 d0 ea ff <0f> 0b e9 17 f1 ff ff 48 8b bd e8 fe ff ff 4c 89 95 c8 fe ff ff 48 [ 129.258268] RSP: 0018:ffff8881b7b77a18 EFLAGS: 00010002 [ 129.258275] RAX: 0000000000000000 RBX: ffff8881b221c640 RCX: ffff8881b221c8b8 [ 129.258279] RDX: ffff8881b221c67c RSI: 0000000000000002 RDI: ffff8881dae2d710 [ 129.258284] RBP: ffff8881b7b77b78 R08: 0000000000000001 R09: ffff8881dae00000 [ 129.258288] R10: 0000001e02d35722 R11: ffff8881dae2db3b R12: 1ffff11036f6ef4e [ 129.258293] R13: ffff8881b221c90c R14: ffff8881dae2ccc0 R15: ffff8881dae2ccc0 [ 129.258296] ? enqueue_task_dl+0x1ae3/0x38a0 [ 129.258299] ? switched_from_dl+0xf70/0xf70 [ 129.258302] ? dequeue_task_dl+0x4e4/0x870 [ 129.258305] ? dl_task_timer+0xc10/0xc10 [ 129.258308] ? __lock_is_held+0xb5/0x140 [ 129.258312] ? rcu_read_lock_sched_held+0x14f/0x180 [ 129.258315] enqueue_task+0x184/0x390 [ 129.258318] __sched_setscheduler+0xe99/0x2190 [ 129.258321] ? lock_downgrade+0x900/0x900 [ 129.258324] ? cpu_cgroup_fork+0x130/0x130 [ 129.258328] ? __x64_sys_sched_setattr+0x146/0x2f0 [ 129.258331] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 129.258335] ? check_preemption_disabled+0x48/0x280 [ 129.258338] ? kasan_check_read+0x11/0x20 [ 129.258341] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 129.258344] ? rcu_softirq_qs+0x20/0x20 [ 129.258347] ? _copy_from_user+0xdf/0x150 [ 129.258351] __x64_sys_sched_setattr+0x1b2/0x2f0 [ 129.258354] ? __ia32_sys_sched_setparam+0x80/0x80 [ 129.258358] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 129.258361] do_syscall_64+0x1b9/0x820 [ 129.258364] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 129.258368] ? syscall_return_slowpath+0x5e0/0x5e0 [ 129.258371] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 129.258375] ? trace_hardirqs_on_caller+0x310/0x310 [ 129.258378] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 129.258382] ? prepare_exit_to_usermode+0x291/0x3b0 [ 129.258385] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 129.258389] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 129.258391] RIP: 0033:0x457569 [ 129.258401] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 129.258405] RSP: 002b:00007ffa53acec78 EFLAGS: 00000246 ORIG_RAX: 000000000000013a [ 129.258412] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 129.258417] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000000 [ 129.258421] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 129.258426] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffa53acf6d4 [ 129.258431] R13: 00000000004c369f R14: 00000000004d5730 R15: 00000000ffffffff [ 129.259542] Kernel Offset: disabled [ 130.170980] Rebooting in 86400 seconds..