[ 43.334631][ T25] audit: type=1800 audit(1575441633.880:29): pid=7997 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.192' (ECDSA) to the list of known hosts. 2019/12/04 06:40:44 fuzzer started 2019/12/04 06:40:46 dialing manager at 10.128.0.26:42111 2019/12/04 06:40:46 syscalls: 2689 2019/12/04 06:40:46 code coverage: enabled 2019/12/04 06:40:46 comparison tracing: enabled 2019/12/04 06:40:46 extra coverage: extra coverage is not supported by the kernel 2019/12/04 06:40:46 setuid sandbox: enabled 2019/12/04 06:40:46 namespace sandbox: enabled 2019/12/04 06:40:46 Android sandbox: /sys/fs/selinux/policy does not exist 2019/12/04 06:40:46 fault injection: enabled 2019/12/04 06:40:46 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/12/04 06:40:46 net packet injection: enabled 2019/12/04 06:40:46 net device setup: enabled 2019/12/04 06:40:46 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2019/12/04 06:40:46 devlink PCI setup: PCI device 0000:00:10.0 is not available 06:40:47 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_sctp(0x2, 0x1, 0x84) socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000100)={0x0, 0x0, 0x8004, 0x0, 0xffff0000}, &(0x7f00000001c0)=0x20) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, 0x0, 0x0) socket$inet(0x10, 0x0, 0x0) 06:40:47 executing program 1: setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000dc0)=ANY=[@ANYBLOB="6e617400000000000000000000000000000000000000000000000000000000001b00000005000000c803000048020000000000000000000058030000000000000005000000050000000500000005000000050000050000000000000000000000ac1414aae00000010000000000000000627071300000000000000000000000006e723000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000009800d00000000000000000000000000000000000000000000000000038004e45544d41500000000000000000000000000000000000000000000000000100000000000000ac1e00017f0000010000000000000000ac141400e00000010000000000000000766c616e30000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000009800d0000000000000000000000000000000000000000000000000003800444e415400000000000000000000000000000000000000000000000000000100000000000000e0000001e00000010000000000000000ffffffff0000000000000000000000006970366772653000000000000000000062726964676530000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000009800d0000000000000000000000000000000000000000000000000003800444e415400000000000000000000000000000000000000000000000000000100000000000000ac1e0001ac1414000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000009800c00000000000000000000000000000000000000000000000000028004d41524b00000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007000980000000000000000000000000000000000000000002800000000000000000000000000000000000000000000000000000000000000feffffff00000000000000000000000000000000a28b04aafc755cf14a06a4c2864507b5b90fba4e8b5f770384b015933ed995d39de3d2252ac2ef752c4def7b46d5f6579597a313fb4200a7c6e7767bd8cd569f6a4828ce920fc5a32aa76d2f021f2452b8ea9f9dc4ac299dc33b9d6b5582ac6a28fff346959373630179fcab8f1c908a50fea1189614f9c847950e803abc0915fec315b900b8b7fbbea31e7bd7cf120c43c75a60217ad9644117f136bb27ed67368c01bf"], 0x1) write$binfmt_script(0xffffffffffffffff, &(0x7f0000000c00)=ANY=[@ANYBLOB="2cd0"], 0x2) r0 = socket$inet6(0xa, 0x3, 0x3c) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @remote, 0x5}, 0x1c) io_setup(0x7f, &(0x7f0000000740)=0x0) io_submit(r1, 0x13c, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000780), 0x431c}]) syzkaller login: [ 57.467206][ T8161] IPVS: ftp: loaded support on port[0] = 21 06:40:48 executing program 2: capget(&(0x7f0000000040)={0x20071026}, 0x0) [ 57.629664][ T8161] chnl_net:caif_netlink_parms(): no params data found [ 57.665563][ T8164] IPVS: ftp: loaded support on port[0] = 21 [ 57.721372][ T8161] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.730122][ T8161] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.740683][ T8161] device bridge_slave_0 entered promiscuous mode [ 57.762409][ T8161] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.772703][ T8161] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.789978][ T8161] device bridge_slave_1 entered promiscuous mode 06:40:48 executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=@newlink={0xa0, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r1}, [@IFLA_XDP={0x80, 0x2b, [@IFLA_XDP_FLAGS={0x8, 0x3, 0x4}, @IFLA_XDP_FD={0x74, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}}]}]}, 0xa0}}, 0x0) [ 57.876112][ T8161] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.893857][ T8166] IPVS: ftp: loaded support on port[0] = 21 [ 57.943268][ T8161] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.965340][ T8164] chnl_net:caif_netlink_parms(): no params data found [ 58.022437][ T8161] team0: Port device team_slave_0 added [ 58.044766][ T8161] team0: Port device team_slave_1 added [ 58.066110][ T8170] IPVS: ftp: loaded support on port[0] = 21 06:40:48 executing program 4: sendmsg(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)=[{0x0}], 0x1}, 0x0) r0 = socket(0x10, 0x80002, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) writev(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f0000000000)="290000002000190f00003fffffffda060200000000e80001dd0000040d000600ea1100000005000000", 0x29}], 0x1) sendmmsg$alg(r0, &(0x7f0000000140), 0x4924aa4, 0x0) [ 58.181497][ T8161] device hsr_slave_0 entered promiscuous mode [ 58.219039][ T8161] device hsr_slave_1 entered promiscuous mode [ 58.272848][ T8164] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.286542][ T8164] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.296201][ T8164] device bridge_slave_0 entered promiscuous mode [ 58.324976][ T8172] IPVS: ftp: loaded support on port[0] = 21 [ 58.352728][ T8164] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.362012][ T8164] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.370146][ T8164] device bridge_slave_1 entered promiscuous mode 06:40:49 executing program 5: r0 = memfd_create(&(0x7f0000000200)='eth0\x00', 0x0) write(r0, &(0x7f0000000040)="06", 0x1) mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x80000000004, 0x11, r0, 0x0) r1 = socket$inet_dccp(0x2, 0x6, 0x0) getsockopt$inet_int(r1, 0x10d, 0xd4, 0x0, &(0x7f0000000000)) [ 58.438113][ T8161] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 58.531807][ T8161] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 58.603073][ T8161] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 58.651362][ T8164] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.675389][ T8166] chnl_net:caif_netlink_parms(): no params data found [ 58.692909][ T8161] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 58.742278][ T8164] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.767241][ T8164] team0: Port device team_slave_0 added [ 58.777431][ T8164] team0: Port device team_slave_1 added [ 58.830344][ T8164] device hsr_slave_0 entered promiscuous mode [ 58.879053][ T8164] device hsr_slave_1 entered promiscuous mode [ 58.918920][ T8164] debugfs: Directory 'hsr0' with parent '/' already present! [ 58.939202][ T8175] IPVS: ftp: loaded support on port[0] = 21 [ 58.968428][ T8166] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.977054][ T8166] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.986397][ T8166] device bridge_slave_0 entered promiscuous mode [ 58.994461][ T8166] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.002115][ T8166] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.010173][ T8166] device bridge_slave_1 entered promiscuous mode [ 59.076486][ T8166] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 59.091901][ T8164] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 59.161105][ T8164] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 59.211609][ T8164] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 59.273036][ T8166] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 59.297702][ T8170] chnl_net:caif_netlink_parms(): no params data found [ 59.306528][ T8164] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 59.358365][ T8166] team0: Port device team_slave_0 added [ 59.367261][ T8166] team0: Port device team_slave_1 added [ 59.423193][ T8170] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.432268][ T8170] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.440465][ T8170] device bridge_slave_0 entered promiscuous mode [ 59.448133][ T8170] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.456173][ T8170] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.463900][ T8170] device bridge_slave_1 entered promiscuous mode [ 59.496858][ T8170] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 59.590500][ T8166] device hsr_slave_0 entered promiscuous mode [ 59.629027][ T8166] device hsr_slave_1 entered promiscuous mode [ 59.669033][ T8166] debugfs: Directory 'hsr0' with parent '/' already present! [ 59.679478][ T8170] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 59.695576][ T8175] chnl_net:caif_netlink_parms(): no params data found [ 59.716230][ T8172] chnl_net:caif_netlink_parms(): no params data found [ 59.756129][ T8161] 8021q: adding VLAN 0 to HW filter on device bond0 [ 59.777778][ T8170] team0: Port device team_slave_0 added [ 59.787638][ T8170] team0: Port device team_slave_1 added [ 59.833501][ T8172] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.841012][ T8172] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.848805][ T8172] device bridge_slave_0 entered promiscuous mode [ 59.857249][ T8172] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.864563][ T8172] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.872687][ T8172] device bridge_slave_1 entered promiscuous mode [ 59.960519][ T8170] device hsr_slave_0 entered promiscuous mode [ 59.999142][ T8170] device hsr_slave_1 entered promiscuous mode [ 60.048831][ T8170] debugfs: Directory 'hsr0' with parent '/' already present! [ 60.057693][ T8172] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 60.067526][ T8166] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 60.120991][ T8166] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 60.180761][ T8166] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 60.231357][ T8175] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.238454][ T8175] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.246271][ T8175] device bridge_slave_0 entered promiscuous mode [ 60.262857][ T8172] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 60.275319][ T8161] 8021q: adding VLAN 0 to HW filter on device team0 [ 60.284240][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 60.292719][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 60.301482][ T8166] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 60.362216][ T8175] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.370931][ T8175] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.381140][ T8175] device bridge_slave_1 entered promiscuous mode [ 60.411260][ T8164] 8021q: adding VLAN 0 to HW filter on device bond0 [ 60.431991][ T8172] team0: Port device team_slave_0 added [ 60.440968][ T8172] team0: Port device team_slave_1 added [ 60.449578][ T8170] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 60.520215][ T8164] 8021q: adding VLAN 0 to HW filter on device team0 [ 60.537415][ T8175] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 60.552833][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 60.561817][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 60.570585][ T2723] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.577755][ T2723] bridge0: port 1(bridge_slave_0) entered forwarding state [ 60.585758][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 60.595391][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 60.603980][ T2723] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.611825][ T2723] bridge0: port 2(bridge_slave_1) entered forwarding state [ 60.619612][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 60.629197][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 60.636953][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 60.645599][ T8170] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 60.691013][ T8170] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 60.792017][ T8172] device hsr_slave_0 entered promiscuous mode [ 60.839843][ T8172] device hsr_slave_1 entered promiscuous mode [ 60.888828][ T8172] debugfs: Directory 'hsr0' with parent '/' already present! [ 60.897576][ T8175] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 60.923718][ T8175] team0: Port device team_slave_0 added [ 60.930535][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 60.941151][ T8170] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 60.984749][ T8175] team0: Port device team_slave_1 added [ 60.997225][ T8180] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 61.005967][ T8180] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 61.015297][ T8180] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 61.023718][ T8180] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.030793][ T8180] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.038292][ T8180] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 61.046886][ T8180] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 61.055345][ T8180] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.062469][ T8180] bridge0: port 2(bridge_slave_1) entered forwarding state [ 61.070469][ T8180] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 61.118501][ T8172] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 61.191030][ T8172] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 61.231563][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 61.241590][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 61.250490][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 61.259398][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 61.267704][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 61.276456][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 61.284800][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 61.293204][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 61.302126][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 61.351155][ T8175] device hsr_slave_0 entered promiscuous mode [ 61.400271][ T8175] device hsr_slave_1 entered promiscuous mode [ 61.458795][ T8175] debugfs: Directory 'hsr0' with parent '/' already present! [ 61.485973][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 61.496356][ T8161] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 61.509038][ T8172] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 61.531689][ T8172] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 61.622721][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 61.639010][ T8175] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 61.691056][ T8175] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 61.737095][ T8180] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 61.745160][ T8180] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 61.756693][ T8161] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 61.767523][ T8175] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 61.823902][ T8166] 8021q: adding VLAN 0 to HW filter on device bond0 [ 61.850382][ T8175] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 61.881548][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 61.890402][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 61.898794][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 61.907906][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 61.917453][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 61.926015][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 61.940015][ T8164] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 61.957653][ T8164] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 61.989228][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 61.997176][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 62.008208][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 62.019977][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 62.027424][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 62.035786][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 62.043590][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 62.068827][ T8166] 8021q: adding VLAN 0 to HW filter on device team0 [ 62.098226][ T8170] 8021q: adding VLAN 0 to HW filter on device bond0 [ 62.118254][ T8164] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 167.128626][ C1] rcu: INFO: rcu_preempt self-detected stall on CPU [ 167.135408][ C1] rcu: 1-....: (1 GPs behind) idle=dba/1/0x4000000000000002 softirq=10456/10463 fqs=2766 [ 167.145704][ C1] (t=10501 jiffies g=6425 q=240) [ 167.150738][ C1] rcu: rcu_preempt kthread starved for 4970 jiffies! g6425 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 167.161752][ C1] rcu: RCU grace-period kthread stack dump: [ 167.167800][ C1] rcu_preempt R running task 29032 10 2 0x80004000 [ 167.175783][ C1] Call Trace: [ 167.179239][ C1] __schedule+0x9a0/0xcc0 [ 167.183576][ C1] schedule+0x181/0x210 [ 167.187721][ C1] schedule_timeout+0x14f/0x240 [ 167.192560][ C1] ? run_local_timers+0x120/0x120 [ 167.197585][ C1] rcu_gp_kthread+0xed8/0x1770 [ 167.202344][ C1] kthread+0x332/0x350 [ 167.206399][ C1] ? rcu_report_qs_rsp+0x140/0x140 [ 167.211520][ C1] ? kthread_blkcg+0xe0/0xe0 [ 167.216095][ C1] ret_from_fork+0x24/0x30 [ 167.220513][ C1] NMI backtrace for cpu 1 [ 167.224847][ C1] CPU: 1 PID: 8161 Comm: syz-executor.0 Not tainted 5.4.0-syzkaller #0 [ 167.233063][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 167.243109][ C1] Call Trace: [ 167.246382][ C1] [ 167.249224][ C1] dump_stack+0x1fb/0x318 [ 167.253551][ C1] nmi_cpu_backtrace+0xaf/0x1a0 [ 167.258394][ C1] ? nmi_trigger_cpumask_backtrace+0x16d/0x290 [ 167.264713][ C1] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 167.270765][ C1] nmi_trigger_cpumask_backtrace+0x174/0x290 [ 167.276739][ C1] arch_trigger_cpumask_backtrace+0x10/0x20 [ 167.282617][ C1] rcu_dump_cpu_stacks+0x15a/0x220 [ 167.287716][ C1] rcu_sched_clock_irq+0xe25/0x1ad0 [ 167.292905][ C1] ? trace_hardirqs_off+0x74/0x80 [ 167.297919][ C1] update_process_times+0x12d/0x180 [ 167.303105][ C1] tick_sched_timer+0x263/0x420 [ 167.307943][ C1] ? tick_setup_sched_timer+0x3d0/0x3d0 [ 167.313474][ C1] __hrtimer_run_queues+0x403/0x840 [ 167.318672][ C1] hrtimer_interrupt+0x38c/0xda0 [ 167.323612][ C1] ? debug_smp_processor_id+0x9/0x20 [ 167.328898][ C1] smp_apic_timer_interrupt+0x109/0x280 [ 167.334518][ C1] apic_timer_interrupt+0xf/0x20 [ 167.339438][ C1] [ 167.342367][ C1] RIP: 0010:mod_memcg_page_state+0x161/0x190 [ 167.348336][ C1] Code: 3c 20 00 74 0c 48 c7 c7 28 96 0a 89 e8 a8 9e 69 00 48 83 3d c8 21 c2 07 00 74 2d e8 99 27 2e 00 4c 89 ff 57 9d 0f 1f 44 00 00 <5b> 41 5c 41 5e 41 5f 5d c3 e8 81 27 2e 00 0f 0b e8 7a 27 2e 00 0f [ 167.368019][ C1] RSP: 0018:ffffc90002367738 EFLAGS: 00000293 ORIG_RAX: ffffffffffffff13 [ 167.376429][ C1] RAX: ffffffff81487433 RBX: 0000000000000000 RCX: ffff8880902aa680 [ 167.384391][ C1] RDX: 0000000000000000 RSI: 00000000fffffffc RDI: ffffea00024a0500 [ 167.392347][ C1] RBP: ffffc90002367758 R08: 000000000003a768 R09: fffffbfff120248a [ 167.400332][ C1] R10: fffffbfff120248a R11: 0000000000000000 R12: dffffc0000000000 [ 167.408374][ C1] R13: dffffc0000000000 R14: 00000000fffffffc R15: ffff8880a84cb9e8 [ 167.416361][ C1] ? mod_memcg_page_state+0x123/0x190 [ 167.421732][ C1] ? mod_memcg_page_state+0x123/0x190 [ 167.427199][ C1] free_thread_stack+0x168/0x590 [ 167.432151][ C1] put_task_stack+0xa3/0x130 [ 167.436729][ C1] finish_task_switch+0x3f1/0x550 [ 167.441749][ C1] __schedule+0x9a8/0xcc0 [ 167.446075][ C1] ? ___preempt_schedule+0x16/0x18 [ 167.451172][ C1] preempt_schedule+0xdb/0x120 [ 167.455924][ C1] ___preempt_schedule+0x16/0x18 [ 167.460879][ C1] _raw_spin_unlock+0x3a/0x40 [ 167.465724][ C1] copy_page_range+0x2487/0x29a0 [ 167.470679][ C1] ? __vma_link_rb+0x839/0x860 [ 167.475430][ C1] dup_mmap+0xa01/0xe00 [ 167.479580][ C1] dup_mm+0x9e/0x340 [ 167.483462][ C1] copy_process+0x1e49/0x5510 [ 167.488159][ C1] _do_fork+0x13e/0x660 [ 167.492301][ C1] ? check_preemption_disabled+0xb4/0x260 [ 167.498002][ C1] ? debug_smp_processor_id+0x9/0x20 [ 167.503277][ C1] ? debug_smp_processor_id+0x1c/0x20 [ 167.508637][ C1] __x64_sys_clone+0x20b/0x250 [ 167.513400][ C1] do_syscall_64+0xf7/0x1c0 [ 167.518502][ C1] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 167.524382][ C1] RIP: 0033:0x458c4a [ 167.528263][ C1] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00 [ 167.547851][ C1] RSP: 002b:00007fff714b1a20 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 167.556247][ C1] RAX: ffffffffffffffda RBX: 00007fff714b1a20 RCX: 0000000000458c4a [ 167.564213][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 [ 167.572173][ C1] RBP: 00007fff714b1a60 R08: 0000000000000001 R09: 00000000010ad940 [ 167.580129][ C1] R10: 00000000010adc10 R11: 0000000000000246 R12: 0000000000000001 [ 167.588103][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 00007fff714b1ab0