[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 59.854227][ T27] audit: type=1800 audit(1576535504.088:25): pid=8792 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 59.890516][ T27] audit: type=1800 audit(1576535504.088:26): pid=8792 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 59.929346][ T27] audit: type=1800 audit(1576535504.098:27): pid=8792 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.114' (ECDSA) to the list of known hosts. syzkaller login: [ 71.966811][ T8946] IPVS: ftp: loaded support on port[0] = 21 [ 72.024367][ T8946] chnl_net:caif_netlink_parms(): no params data found [ 72.050256][ T8946] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.059481][ T8946] bridge0: port 1(bridge_slave_0) entered disabled state [ 72.067395][ T8946] device bridge_slave_0 entered promiscuous mode [ 72.075522][ T8946] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.082957][ T8946] bridge0: port 2(bridge_slave_1) entered disabled state [ 72.090593][ T8946] device bridge_slave_1 entered promiscuous mode [ 72.108094][ T8946] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 72.119253][ T8946] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 72.138693][ T8946] team0: Port device team_slave_0 added [ 72.146486][ T8946] team0: Port device team_slave_1 added [ 72.203385][ T8946] device hsr_slave_0 entered promiscuous mode [ 72.241258][ T8946] device hsr_slave_1 entered promiscuous mode [ 72.333534][ T8946] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 72.403117][ T8946] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 72.453232][ T8946] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 72.493556][ T8946] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 72.540299][ T8946] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.547513][ T8946] bridge0: port 2(bridge_slave_1) entered forwarding state [ 72.555284][ T8946] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.562348][ T8946] bridge0: port 1(bridge_slave_0) entered forwarding state [ 72.597047][ T8946] 8021q: adding VLAN 0 to HW filter on device bond0 [ 72.609932][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 72.630252][ T17] bridge0: port 1(bridge_slave_0) entered disabled state [ 72.649733][ T17] bridge0: port 2(bridge_slave_1) entered disabled state [ 72.658388][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 72.669983][ T8946] 8021q: adding VLAN 0 to HW filter on device team0 [ 72.691967][ T1112] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 72.700297][ T1112] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.707389][ T1112] bridge0: port 1(bridge_slave_0) entered forwarding state [ 72.732934][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 72.742012][ T17] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.749077][ T17] bridge0: port 2(bridge_slave_1) entered forwarding state [ 72.757370][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 72.766221][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 72.774597][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 72.782706][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 72.792476][ T8946] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready executing program [ 72.800919][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 72.816427][ T1112] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 72.823978][ T1112] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 72.835694][ T8946] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 72.850049][ T8946] ------------[ cut here ]------------ [ 72.855628][ T8946] hsr_addr_subst_dest: Unknown node [ 72.861358][ T8946] WARNING: CPU: 1 PID: 8946 at net/hsr/hsr_framereg.c:303 hsr_addr_subst_dest+0x382/0x460 [ 72.871247][ T8946] Kernel panic - not syncing: panic_on_warn set ... [ 72.877914][ T8946] CPU: 1 PID: 8946 Comm: syz-executor612 Not tainted 5.5.0-rc1-syzkaller #0 [ 72.886570][ T8946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 72.896635][ T8946] Call Trace: [ 72.899908][ T8946] dump_stack+0x197/0x210 [ 72.904219][ T8946] ? hsr_addr_subst_dest+0x290/0x460 [ 72.909480][ T8946] panic+0x2e3/0x75c [ 72.913354][ T8946] ? add_taint.cold+0x16/0x16 [ 72.918027][ T8946] ? __kasan_check_write+0x14/0x20 [ 72.923133][ T8946] ? __warn.cold+0x14/0x3e [ 72.927528][ T8946] ? __warn+0xd9/0x1cf [ 72.931590][ T8946] ? hsr_addr_subst_dest+0x382/0x460 [ 72.936866][ T8946] __warn.cold+0x2f/0x3e [ 72.941105][ T8946] ? hsr_addr_subst_dest+0x382/0x460 [ 72.946438][ T8946] report_bug+0x289/0x300 [ 72.950766][ T8946] do_error_trap+0x11b/0x200 [ 72.955344][ T8946] do_invalid_op+0x37/0x50 [ 72.959735][ T8946] ? hsr_addr_subst_dest+0x382/0x460 [ 72.965016][ T8946] invalid_op+0x23/0x30 [ 72.969158][ T8946] RIP: 0010:hsr_addr_subst_dest+0x382/0x460 [ 72.975035][ T8946] Code: 89 de e8 21 2d b8 f9 84 db 75 d3 e8 d8 2b b8 f9 48 c7 c6 00 62 f5 88 48 c7 c7 c0 61 f5 88 c6 05 04 19 b8 02 01 e8 6d d5 88 f9 <0f> 0b eb b0 e8 b5 2b b8 f9 0f b6 1d f0 18 b8 02 31 ff 89 de e8 e5 [ 72.994639][ T8946] RSP: 0018:ffffc90001fb7540 EFLAGS: 00010282 [ 73.000704][ T8946] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 73.008681][ T8946] RDX: 0000000000000000 RSI: ffffffff815e88f6 RDI: fffff520003f6e9a [ 73.016638][ T8946] RBP: ffffc90001fb7580 R08: ffff888098344540 R09: ffffed1015d26621 [ 73.024600][ T8946] R10: ffffed1015d26620 R11: ffff8880ae933107 R12: ffff8880922c2ba0 [ 73.032569][ T8946] R13: 0000000000000000 R14: 00000000556dfb7b R15: 0000000000000000 [ 73.040544][ T8946] ? vprintk_func+0x86/0x189 [ 73.045124][ T8946] hsr_forward_skb+0x138b/0x1d30 [ 73.050047][ T8946] hsr_dev_xmit+0x7d/0xe0 [ 73.054354][ T8946] dev_hard_start_xmit+0x1a3/0x9b0 [ 73.059449][ T8946] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 73.065689][ T8946] __dev_queue_xmit+0x2b05/0x35c0 [ 73.070694][ T8946] ? find_held_lock+0x35/0x130 [ 73.075450][ T8946] ? __might_fault+0x12b/0x1e0 [ 73.080212][ T8946] ? netdev_core_pick_tx+0x2f0/0x2f0 [ 73.085480][ T8946] ? lock_downgrade+0x920/0x920 [ 73.090311][ T8946] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 73.096527][ T8946] ? iov_iter_advance+0x29a/0xe20 [ 73.101553][ T8946] dev_queue_xmit+0x18/0x20 [ 73.106046][ T8946] ? dev_queue_xmit+0x18/0x20 [ 73.110714][ T8946] pppoe_sendmsg+0x65e/0x7f0 [ 73.115282][ T8946] ? __delete_item+0x370/0x370 [ 73.120022][ T8946] ? apparmor_socket_sendmsg+0x2a/0x30 [ 73.125458][ T8946] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 73.131681][ T8946] ? security_socket_sendmsg+0x8d/0xc0 [ 73.137114][ T8946] ? __delete_item+0x370/0x370 [ 73.141857][ T8946] sock_sendmsg+0xd7/0x130 [ 73.146251][ T8946] ____sys_sendmsg+0x358/0x880 [ 73.150994][ T8946] ? kernel_sendmsg+0x50/0x50 [ 73.155647][ T8946] ? __lock_acquire+0x16f2/0x4a00 [ 73.160652][ T8946] ___sys_sendmsg+0x100/0x170 [ 73.165306][ T8946] ? mark_held_locks+0xf0/0xf0 [ 73.170049][ T8946] ? sendmsg_copy_msghdr+0x70/0x70 [ 73.175136][ T8946] ? __lock_acquire+0x29c9/0x4a00 [ 73.180136][ T8946] ? release_sock+0x20/0x1c0 [ 73.184703][ T8946] ? reacquire_held_locks+0x208/0x510 [ 73.190075][ T8946] ? release_sock+0x156/0x1c0 [ 73.194803][ T8946] ? find_held_lock+0x35/0x130 [ 73.199555][ T8946] ? release_sock+0x156/0x1c0 [ 73.204217][ T8946] ? __local_bh_enable_ip+0x15a/0x270 [ 73.209604][ T8946] ? _raw_spin_unlock_bh+0x2c/0x30 [ 73.214693][ T8946] ? __local_bh_enable_ip+0x15a/0x270 [ 73.220075][ T8946] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 73.226296][ T8946] ? __fget_light+0x1a9/0x230 [ 73.230953][ T8946] ? __fdget+0x1b/0x20 [ 73.235000][ T8946] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 73.241227][ T8946] ? sockfd_lookup_light+0xcb/0x180 [ 73.246445][ T8946] __sys_sendmmsg+0x1bf/0x4d0 [ 73.251148][ T8946] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 73.256157][ T8946] ? move_addr_to_kernel.part.0+0xcd/0x110 [ 73.261954][ T8946] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 73.268183][ T8946] ? __sys_connect+0x11d/0x1b0 [ 73.272925][ T8946] ? __sys_connect_file+0x1c0/0x1c0 [ 73.278104][ T8946] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 73.284329][ T8946] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 73.289772][ T8946] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 73.295214][ T8946] ? do_syscall_64+0x26/0x790 [ 73.299870][ T8946] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 73.305918][ T8946] ? do_syscall_64+0x26/0x790 [ 73.310581][ T8946] __x64_sys_sendmmsg+0x9d/0x100 [ 73.315497][ T8946] do_syscall_64+0xfa/0x790 [ 73.319994][ T8946] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 73.325874][ T8946] RIP: 0033:0x441fa9 [ 73.329745][ T8946] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 5b 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 73.349324][ T8946] RSP: 002b:00007fff53c03aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 73.357723][ T8946] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000441fa9 [ 73.365685][ T8946] RDX: 04000000000000eb RSI: 000000002000d180 RDI: 0000000000000003 [ 73.373632][ T8946] RBP: 0000000000000004 R08: 0000000000000025 R09: 0000000000000025 [ 73.381598][ T8946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 73.389566][ T8946] R13: 0000000000403520 R14: 0000000000000000 R15: 0000000000000000 [ 73.397592][ T8946] ------------[ cut here ]------------ [ 73.403036][ T8946] WARNING: CPU: 1 PID: 8946 at kernel/locking/mutex.c:1419 mutex_trylock+0x279/0x2f0 [ 73.412475][ T8946] Modules linked in: [ 73.416349][ T8946] CPU: 1 PID: 8946 Comm: syz-executor612 Not tainted 5.5.0-rc1-syzkaller #0 [ 73.424989][ T8946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 73.435042][ T8946] RIP: 0010:mutex_trylock+0x279/0x2f0 [ 73.440399][ T8946] Code: c9 41 b8 01 00 00 00 31 c9 ba 01 00 00 00 31 f6 e8 1c 5d 93 f9 58 48 8d 65 d8 b8 01 00 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 <0f> 0b e9 0c fe ff ff 48 c7 c7 20 e5 63 8b 48 89 4d d0 e8 b0 16 eb [ 73.459979][ T8946] RSP: 0018:ffffc90001fb7108 EFLAGS: 00010006 [ 73.466032][ T8946] RAX: 0000000080000201 RBX: 1ffff920003f6e29 RCX: 0000000000000004 [ 73.473982][ T8946] RDX: 0000000000000000 RSI: ffffffff816c1c45 RDI: ffffffff899c3c60 [ 73.481931][ T8946] RBP: ffffc90001fb7138 R08: 0000000000000001 R09: fffffbfff1333ae5 [ 73.489877][ T8946] R10: fffffbfff1333ae4 R11: ffffffff8999d723 R12: ffffffff8b63e520 [ 73.497834][ T8946] R13: 0000000000000000 R14: ffffffff87bcff00 R15: ffffffff899c3c60 [ 73.505787][ T8946] FS: 0000000001169880(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 [ 73.514700][ T8946] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 73.521266][ T8946] CR2: 0000000020000000 CR3: 00000000a0018000 CR4: 00000000001406e0 [ 73.529242][ T8946] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 73.537192][ T8946] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 73.545156][ T8946] Call Trace: [ 73.548431][ T8946] ? hsr_addr_subst_dest+0x290/0x460 [ 73.553707][ T8946] __crash_kexec+0x91/0x200 [ 73.558190][ T8946] ? kexec_crash_loaded+0x20/0x20 [ 73.563195][ T8946] ? trace_hardirqs_off+0x62/0x240 [ 73.568288][ T8946] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 73.574081][ T8946] ? __printk_safe_flush+0x31e/0x3a0 [ 73.579361][ T8946] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 73.585077][ T8946] ? find_next_bit+0x107/0x130 [ 73.589847][ T8946] ? cpumask_next+0x41/0x50 [ 73.594337][ T8946] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 73.600041][ T8946] ? printk_safe_flush+0xf2/0x140 [ 73.605087][ T8946] ? hsr_addr_subst_dest+0x290/0x460 [ 73.610358][ T8946] panic+0x308/0x75c [ 73.614236][ T8946] ? add_taint.cold+0x16/0x16 [ 73.618896][ T8946] ? __kasan_check_write+0x14/0x20 [ 73.624018][ T8946] ? __warn.cold+0x14/0x3e [ 73.628408][ T8946] ? __warn+0xd9/0x1cf [ 73.632458][ T8946] ? hsr_addr_subst_dest+0x382/0x460 [ 73.637720][ T8946] __warn.cold+0x2f/0x3e [ 73.641942][ T8946] ? hsr_addr_subst_dest+0x382/0x460 [ 73.647243][ T8946] report_bug+0x289/0x300 [ 73.651554][ T8946] do_error_trap+0x11b/0x200 [ 73.656121][ T8946] do_invalid_op+0x37/0x50 [ 73.660561][ T8946] ? hsr_addr_subst_dest+0x382/0x460 [ 73.665845][ T8946] invalid_op+0x23/0x30 [ 73.669983][ T8946] RIP: 0010:hsr_addr_subst_dest+0x382/0x460 [ 73.675898][ T8946] Code: 89 de e8 21 2d b8 f9 84 db 75 d3 e8 d8 2b b8 f9 48 c7 c6 00 62 f5 88 48 c7 c7 c0 61 f5 88 c6 05 04 19 b8 02 01 e8 6d d5 88 f9 <0f> 0b eb b0 e8 b5 2b b8 f9 0f b6 1d f0 18 b8 02 31 ff 89 de e8 e5 [ 73.695486][ T8946] RSP: 0018:ffffc90001fb7540 EFLAGS: 00010282 [ 73.701540][ T8946] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 73.709503][ T8946] RDX: 0000000000000000 RSI: ffffffff815e88f6 RDI: fffff520003f6e9a [ 73.717452][ T8946] RBP: ffffc90001fb7580 R08: ffff888098344540 R09: ffffed1015d26621 [ 73.725401][ T8946] R10: ffffed1015d26620 R11: ffff8880ae933107 R12: ffff8880922c2ba0 [ 73.733353][ T8946] R13: 0000000000000000 R14: 00000000556dfb7b R15: 0000000000000000 [ 73.741330][ T8946] ? vprintk_func+0x86/0x189 [ 73.745915][ T8946] hsr_forward_skb+0x138b/0x1d30 [ 73.750851][ T8946] hsr_dev_xmit+0x7d/0xe0 [ 73.755158][ T8946] dev_hard_start_xmit+0x1a3/0x9b0 [ 73.760248][ T8946] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 73.766467][ T8946] __dev_queue_xmit+0x2b05/0x35c0 [ 73.771466][ T8946] ? find_held_lock+0x35/0x130 [ 73.776204][ T8946] ? __might_fault+0x12b/0x1e0 [ 73.780959][ T8946] ? netdev_core_pick_tx+0x2f0/0x2f0 [ 73.786228][ T8946] ? lock_downgrade+0x920/0x920 [ 73.791055][ T8946] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 73.797269][ T8946] ? iov_iter_advance+0x29a/0xe20 [ 73.802280][ T8946] dev_queue_xmit+0x18/0x20 [ 73.806771][ T8946] ? dev_queue_xmit+0x18/0x20 [ 73.811468][ T8946] pppoe_sendmsg+0x65e/0x7f0 [ 73.816035][ T8946] ? __delete_item+0x370/0x370 [ 73.820787][ T8946] ? apparmor_socket_sendmsg+0x2a/0x30 [ 73.826232][ T8946] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 73.832447][ T8946] ? security_socket_sendmsg+0x8d/0xc0 [ 73.837897][ T8946] ? __delete_item+0x370/0x370 [ 73.842642][ T8946] sock_sendmsg+0xd7/0x130 [ 73.847034][ T8946] ____sys_sendmsg+0x358/0x880 [ 73.851785][ T8946] ? kernel_sendmsg+0x50/0x50 [ 73.856438][ T8946] ? __lock_acquire+0x16f2/0x4a00 [ 73.861460][ T8946] ___sys_sendmsg+0x100/0x170 [ 73.866121][ T8946] ? mark_held_locks+0xf0/0xf0 [ 73.870862][ T8946] ? sendmsg_copy_msghdr+0x70/0x70 [ 73.875959][ T8946] ? __lock_acquire+0x29c9/0x4a00 [ 73.880975][ T8946] ? release_sock+0x20/0x1c0 [ 73.885554][ T8946] ? reacquire_held_locks+0x208/0x510 [ 73.890906][ T8946] ? release_sock+0x156/0x1c0 [ 73.895560][ T8946] ? find_held_lock+0x35/0x130 [ 73.900312][ T8946] ? release_sock+0x156/0x1c0 [ 73.904970][ T8946] ? __local_bh_enable_ip+0x15a/0x270 [ 73.910315][ T8946] ? _raw_spin_unlock_bh+0x2c/0x30 [ 73.915405][ T8946] ? __local_bh_enable_ip+0x15a/0x270 [ 73.920757][ T8946] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 73.926985][ T8946] ? __fget_light+0x1a9/0x230 [ 73.931641][ T8946] ? __fdget+0x1b/0x20 [ 73.935686][ T8946] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 73.941901][ T8946] ? sockfd_lookup_light+0xcb/0x180 [ 73.947078][ T8946] __sys_sendmmsg+0x1bf/0x4d0 [ 73.951750][ T8946] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 73.956767][ T8946] ? move_addr_to_kernel.part.0+0xcd/0x110 [ 73.962654][ T8946] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 73.968872][ T8946] ? __sys_connect+0x11d/0x1b0 [ 73.973628][ T8946] ? __sys_connect_file+0x1c0/0x1c0 [ 73.978806][ T8946] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 73.985042][ T8946] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 73.990500][ T8946] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 73.996122][ T8946] ? do_syscall_64+0x26/0x790 [ 74.000811][ T8946] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 74.006870][ T8946] ? do_syscall_64+0x26/0x790 [ 74.011627][ T8946] __x64_sys_sendmmsg+0x9d/0x100 [ 74.016588][ T8946] do_syscall_64+0xfa/0x790 [ 74.021210][ T8946] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 74.027100][ T8946] RIP: 0033:0x441fa9 [ 74.030988][ T8946] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 5b 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 74.050582][ T8946] RSP: 002b:00007fff53c03aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 74.059015][ T8946] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000441fa9 [ 74.066973][ T8946] RDX: 04000000000000eb RSI: 000000002000d180 RDI: 0000000000000003 [ 74.074923][ T8946] RBP: 0000000000000004 R08: 0000000000000025 R09: 0000000000000025 [ 74.082877][ T8946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 74.090831][ T8946] R13: 0000000000403520 R14: 0000000000000000 R15: 0000000000000000 [ 74.098823][ T8946] irq event stamp: 95623 [ 74.103053][ T8946] hardirqs last enabled at (95622): [] console_unlock+0x7b3/0xf00 [ 74.112503][ T8946] hardirqs last disabled at (95623): [] trace_hardirqs_off_thunk+0x1a/0x1c [ 74.122743][ T8946] softirqs last enabled at (95574): [] lock_sock_nested+0x9a/0x120 [ 74.132313][ T8946] softirqs last disabled at (95588): [] __dev_queue_xmit+0x20a/0x35c0 [ 74.142001][ T8946] ---[ end trace 92a513638a822ea2 ]--- [ 74.147731][ T8946] ------------[ cut here ]------------ [ 74.153263][ T8946] WARNING: CPU: 1 PID: 8946 at kernel/locking/mutex.c:737 mutex_unlock+0x1d/0x30 [ 74.162345][ T8946] Modules linked in: [ 74.166225][ T8946] CPU: 1 PID: 8946 Comm: syz-executor612 Tainted: G W 5.5.0-rc1-syzkaller #0 [ 74.176293][ T8946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 74.186333][ T8946] RIP: 0010:mutex_unlock+0x1d/0x30 [ 74.191420][ T8946] Code: 4c 89 ff e8 05 22 eb f9 e9 8c fb ff ff 55 65 8b 05 e0 79 3a 78 a9 00 ff 1f 00 48 89 e5 75 0b 48 8b 75 08 e8 45 f9 ff ff 5d c3 <0f> 0b 48 8b 75 08 e8 38 f9 ff ff 5d c3 66 0f 1f 44 00 00 48 b8 00 [ 74.211001][ T8946] RSP: 0018:ffffc90001fb7138 EFLAGS: 00010006 [ 74.217068][ T8946] RAX: 0000000080000201 RBX: 1ffff920003f6e29 RCX: ffffffff816c1c5d [ 74.225020][ T8946] RDX: 0000000000000000 RSI: ffffffff816c1cbf RDI: ffffffff899c3c60 [ 74.232970][ T8946] RBP: ffffc90001fb7138 R08: ffff888098344540 R09: fffffbfff165a1bc [ 74.240927][ T8946] R10: ffff888098344e28 R11: ffff888098344540 R12: 0000000000000001 [ 74.248900][ T8946] R13: 0000000000000000 R14: ffffffff87bcff00 R15: 000000000000012f [ 74.256855][ T8946] FS: 0000000001169880(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 [ 74.265768][ T8946] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 74.272340][ T8946] CR2: 0000000020000000 CR3: 00000000a0018000 CR4: 00000000001406e0 [ 74.280300][ T8946] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 74.288250][ T8946] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 74.296198][ T8946] Call Trace: [ 74.299474][ T8946] __crash_kexec+0x10b/0x200 [ 74.304042][ T8946] ? kexec_crash_loaded+0x20/0x20 [ 74.309045][ T8946] ? trace_hardirqs_off+0x62/0x240 [ 74.314138][ T8946] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 74.319923][ T8946] ? __printk_safe_flush+0x31e/0x3a0 [ 74.325192][ T8946] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 74.330908][ T8946] ? find_next_bit+0x107/0x130 [ 74.335671][ T8946] ? cpumask_next+0x41/0x50 [ 74.340157][ T8946] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 74.345853][ T8946] ? printk_safe_flush+0xf2/0x140 [ 74.350865][ T8946] ? hsr_addr_subst_dest+0x290/0x460 [ 74.356127][ T8946] panic+0x308/0x75c [ 74.360000][ T8946] ? add_taint.cold+0x16/0x16 [ 74.364667][ T8946] ? __kasan_check_write+0x14/0x20 [ 74.369763][ T8946] ? __warn.cold+0x14/0x3e [ 74.374155][ T8946] ? __warn+0xd9/0x1cf [ 74.378199][ T8946] ? hsr_addr_subst_dest+0x382/0x460 [ 74.383471][ T8946] __warn.cold+0x2f/0x3e [ 74.387706][ T8946] ? hsr_addr_subst_dest+0x382/0x460 [ 74.392968][ T8946] report_bug+0x289/0x300 [ 74.397278][ T8946] do_error_trap+0x11b/0x200 [ 74.401847][ T8946] do_invalid_op+0x37/0x50 [ 74.406240][ T8946] ? hsr_addr_subst_dest+0x382/0x460 [ 74.411508][ T8946] invalid_op+0x23/0x30 [ 74.415640][ T8946] RIP: 0010:hsr_addr_subst_dest+0x382/0x460 [ 74.421517][ T8946] Code: 89 de e8 21 2d b8 f9 84 db 75 d3 e8 d8 2b b8 f9 48 c7 c6 00 62 f5 88 48 c7 c7 c0 61 f5 88 c6 05 04 19 b8 02 01 e8 6d d5 88 f9 <0f> 0b eb b0 e8 b5 2b b8 f9 0f b6 1d f0 18 b8 02 31 ff 89 de e8 e5 [ 74.441114][ T8946] RSP: 0018:ffffc90001fb7540 EFLAGS: 00010282 [ 74.447169][ T8946] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 74.455119][ T8946] RDX: 0000000000000000 RSI: ffffffff815e88f6 RDI: fffff520003f6e9a [ 74.463069][ T8946] RBP: ffffc90001fb7580 R08: ffff888098344540 R09: ffffed1015d26621 [ 74.471029][ T8946] R10: ffffed1015d26620 R11: ffff8880ae933107 R12: ffff8880922c2ba0 [ 74.478980][ T8946] R13: 0000000000000000 R14: 00000000556dfb7b R15: 0000000000000000 [ 74.486955][ T8946] ? vprintk_func+0x86/0x189 [ 74.491544][ T8946] hsr_forward_skb+0x138b/0x1d30 [ 74.496478][ T8946] hsr_dev_xmit+0x7d/0xe0 [ 74.500795][ T8946] dev_hard_start_xmit+0x1a3/0x9b0 [ 74.505917][ T8946] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 74.512140][ T8946] __dev_queue_xmit+0x2b05/0x35c0 [ 74.517139][ T8946] ? find_held_lock+0x35/0x130 [ 74.521882][ T8946] ? __might_fault+0x12b/0x1e0 [ 74.526628][ T8946] ? netdev_core_pick_tx+0x2f0/0x2f0 [ 74.531902][ T8946] ? lock_downgrade+0x920/0x920 [ 74.536742][ T8946] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 74.542973][ T8946] ? iov_iter_advance+0x29a/0xe20 [ 74.547988][ T8946] dev_queue_xmit+0x18/0x20 [ 74.552486][ T8946] ? dev_queue_xmit+0x18/0x20 [ 74.557142][ T8946] pppoe_sendmsg+0x65e/0x7f0 [ 74.561721][ T8946] ? __delete_item+0x370/0x370 [ 74.566472][ T8946] ? apparmor_socket_sendmsg+0x2a/0x30 [ 74.571930][ T8946] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 74.578150][ T8946] ? security_socket_sendmsg+0x8d/0xc0 [ 74.583586][ T8946] ? __delete_item+0x370/0x370 [ 74.588329][ T8946] sock_sendmsg+0xd7/0x130 [ 74.592724][ T8946] ____sys_sendmsg+0x358/0x880 [ 74.597465][ T8946] ? kernel_sendmsg+0x50/0x50 [ 74.602120][ T8946] ? __lock_acquire+0x16f2/0x4a00 [ 74.607129][ T8946] ___sys_sendmsg+0x100/0x170 [ 74.611781][ T8946] ? mark_held_locks+0xf0/0xf0 [ 74.616523][ T8946] ? sendmsg_copy_msghdr+0x70/0x70 [ 74.621620][ T8946] ? __lock_acquire+0x29c9/0x4a00 [ 74.626644][ T8946] ? release_sock+0x20/0x1c0 [ 74.631209][ T8946] ? reacquire_held_locks+0x208/0x510 [ 74.636557][ T8946] ? release_sock+0x156/0x1c0 [ 74.641216][ T8946] ? find_held_lock+0x35/0x130 [ 74.645968][ T8946] ? release_sock+0x156/0x1c0 [ 74.650651][ T8946] ? __local_bh_enable_ip+0x15a/0x270 [ 74.656189][ T8946] ? _raw_spin_unlock_bh+0x2c/0x30 [ 74.661296][ T8946] ? __local_bh_enable_ip+0x15a/0x270 [ 74.666667][ T8946] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 74.672934][ T8946] ? __fget_light+0x1a9/0x230 [ 74.677597][ T8946] ? __fdget+0x1b/0x20 [ 74.681655][ T8946] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 74.687886][ T8946] ? sockfd_lookup_light+0xcb/0x180 [ 74.693065][ T8946] __sys_sendmmsg+0x1bf/0x4d0 [ 74.697725][ T8946] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 74.702735][ T8946] ? move_addr_to_kernel.part.0+0xcd/0x110 [ 74.708565][ T8946] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 74.714814][ T8946] ? __sys_connect+0x11d/0x1b0 [ 74.719612][ T8946] ? __sys_connect_file+0x1c0/0x1c0 [ 74.724790][ T8946] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 74.731032][ T8946] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 74.736482][ T8946] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 74.742001][ T8946] ? do_syscall_64+0x26/0x790 [ 74.746685][ T8946] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 74.752736][ T8946] ? do_syscall_64+0x26/0x790 [ 74.757404][ T8946] __x64_sys_sendmmsg+0x9d/0x100 [ 74.762327][ T8946] do_syscall_64+0xfa/0x790 [ 74.766853][ T8946] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 74.772749][ T8946] RIP: 0033:0x441fa9 [ 74.776624][ T8946] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 5b 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 74.796205][ T8946] RSP: 002b:00007fff53c03aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 74.804624][ T8946] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000441fa9 [ 74.812579][ T8946] RDX: 04000000000000eb RSI: 000000002000d180 RDI: 0000000000000003 [ 74.820559][ T8946] RBP: 0000000000000004 R08: 0000000000000025 R09: 0000000000000025 [ 74.828510][ T8946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 74.836459][ T8946] R13: 0000000000403520 R14: 0000000000000000 R15: 0000000000000000 [ 74.844445][ T8946] irq event stamp: 95623 [ 74.848667][ T8946] hardirqs last enabled at (95622): [] console_unlock+0x7b3/0xf00 [ 74.858109][ T8946] hardirqs last disabled at (95623): [] trace_hardirqs_off_thunk+0x1a/0x1c [ 74.868239][ T8946] softirqs last enabled at (95574): [] lock_sock_nested+0x9a/0x120 [ 74.877774][ T8946] softirqs last disabled at (95588): [] __dev_queue_xmit+0x20a/0x35c0 [ 74.887468][ T8946] ---[ end trace 92a513638a822ea3 ]--- [ 74.894249][ T8946] Kernel Offset: disabled [ 74.898639][ T8946] Rebooting in 86400 seconds..