[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.1.14' (ECDSA) to the list of known hosts. 2019/12/03 03:52:42 fuzzer started 2019/12/03 03:52:43 dialing manager at 10.128.0.26:38907 2019/12/03 03:52:43 syscalls: 2697 2019/12/03 03:52:43 code coverage: enabled 2019/12/03 03:52:43 comparison tracing: enabled 2019/12/03 03:52:43 extra coverage: extra coverage is not supported by the kernel 2019/12/03 03:52:43 setuid sandbox: enabled 2019/12/03 03:52:43 namespace sandbox: enabled 2019/12/03 03:52:43 Android sandbox: /sys/fs/selinux/policy does not exist 2019/12/03 03:52:43 fault injection: enabled 2019/12/03 03:52:43 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/12/03 03:52:43 net packet injection: enabled 2019/12/03 03:52:43 net device setup: enabled 2019/12/03 03:52:43 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2019/12/03 03:52:43 devlink PCI setup: PCI device 0000:00:10.0 is not available 03:52:44 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) mmap(&(0x7f0000007000/0x1000)=nil, 0x1000, 0x0, 0x11, r0, 0x0) 03:52:44 executing program 1: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) socket$nl_netfilter(0x10, 0x3, 0xc) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup2(r4, r3) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)={0x14, 0x4, 0x1, 0x621}, 0x14}}, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xffd7) splice(r0, 0x0, r2, 0x0, 0x80000000, 0x0) syzkaller login: [ 52.649293][ T8179] IPVS: ftp: loaded support on port[0] = 21 [ 52.818383][ T8179] chnl_net:caif_netlink_parms(): no params data found 03:52:45 executing program 2: r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_opts(r0, 0x0, 0x4, 0x0, 0x0) sendto$inet(r0, &(0x7f0000000140)='^', 0x1, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10) [ 52.860332][ T8182] IPVS: ftp: loaded support on port[0] = 21 [ 52.906638][ T8179] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.914880][ T8179] bridge0: port 1(bridge_slave_0) entered disabled state [ 52.934567][ T8179] device bridge_slave_0 entered promiscuous mode [ 52.981729][ T8179] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.988842][ T8179] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.012106][ T8179] device bridge_slave_1 entered promiscuous mode [ 53.037612][ T8184] IPVS: ftp: loaded support on port[0] = 21 [ 53.051333][ T8179] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 53.083272][ T8179] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link 03:52:45 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6(0xa, 0x0, 0x0) ioctl$ASHMEM_PURGE_ALL_CACHES(0xffffffffffffffff, 0x770a, 0x0) socket$inet6(0xa, 0x6, 0xc9) ioctl$EVIOCSABS3F(0xffffffffffffffff, 0x401845ff, &(0x7f0000000080)={0x8, 0x0, 0x0, 0x80, 0x0, 0xffff}) sendmsg$TIPC_NL_NODE_GET(0xffffffffffffffff, 0x0, 0x0) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x20002100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000700)=ANY=[@ANYBLOB="61124c00000000006113500000000000bf2000000000000007000000080000003d0301000000000095000000000000006926000000000000bf67000000000000150600000fff07003506000002000000070600000ee60000bf050000000000001f650000000000006507000002000000270700004c0000001f75000000000000bf54000000000000070400000400f9ffad4301000000000095000000000000000500000000000000950000000000000029cc11ce043098b7939b912e7bd8c5004acf53be3ea114ff2047eab21d3fd7044bacfc39e0e6a2697029692400a88625427fac8f24c19e086ff689429343cceed49bfb10125e71cc5f3d852cffd10efbbd7774a7b9d318a688fcd62779d29458de9c2afd4c965ee02ee994fb40cd9355a5e30eecbaecbbd348906d47990d11f5024c856da2fd37dd3843494d72c5126cf3a4fbecf2190cd2d5e8363f264fe7510137db289b13a2d2258bc3a70bd212d8cb716ccde508ee5612b29eafaa575775171cf5ca59110baa0be35d87aff107ba0723bfa32d193cf36b6dd4dd99f693578ad772bee354cac291df8454f528b719924213e34ba5342829b56cb0714a31338884e4da7bb9ae7e2823071482e531a988b4a24ea65b5c0dfaa16f218c2c03d3f96623afcd5eb0b41b27f6cfaad64445c1d7bf0d4e44002ee8f56647dbfc3db9adae0fe153104252adace0ae4dccbd7c45dc5fb7ccbbbba69710e97b925af4edfd615e3b0baf8db2481de72bbd19212cbb24cb9d3aab2c1f742e8c1bfd785a9c7d2e198d122f43a28e0e9f51e98ee2b8e6615eb5cf2c1530b92e3f5e644e5831634272a2410f068cfdff0da53c9fbeacaf3da13ead20d633b8c1b29c8177455a0396988cd66f7d560cf6e903371608cc6382199bc1c7eaf60b6755c4d069f403aa8bcb75aadcfe9e0828cfe3fa4947bb8137823b32d0a52df77aa373aaad9963f93b936fc75841303c6b969cbbd20213d774c2d6f31e81d251bf31c240a76dc6cee263d473a43c4c9fc051e911d2a89e2c250ce5d04f949203bdfc31571f51ff18b58f28e11bf7160d8c7e3ac3b9a45a30dc2d9e921f1e419a6d3482502d25f87f328882c9dfc7b2b3"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000040), 0x1f1}, 0x48) exit(0x0) syz_open_procfs(0xffffffffffffffff, 0x0) [ 53.151924][ T8179] team0: Port device team_slave_0 added [ 53.160582][ T8179] team0: Port device team_slave_1 added [ 53.214611][ T8182] chnl_net:caif_netlink_parms(): no params data found [ 53.284242][ T8179] device hsr_slave_0 entered promiscuous mode [ 53.322711][ T8179] device hsr_slave_1 entered promiscuous mode 03:52:45 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) semctl$IPC_STAT(0x0, 0x0, 0x2, &(0x7f0000000200)=""/227) [ 53.439039][ T8187] IPVS: ftp: loaded support on port[0] = 21 [ 53.547546][ T8182] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.561305][ T8182] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.569593][ T8182] device bridge_slave_0 entered promiscuous mode [ 53.578077][ T8184] chnl_net:caif_netlink_parms(): no params data found [ 53.602525][ T8182] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.609742][ T8182] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.618390][ T8182] device bridge_slave_1 entered promiscuous mode [ 53.664509][ T8190] IPVS: ftp: loaded support on port[0] = 21 03:52:46 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_tcp_int(r0, 0x6, 0x1, 0x0, &(0x7f0000000080)) [ 53.708682][ T8182] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 53.736074][ T8179] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 53.813308][ T8184] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.820402][ T8184] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.830565][ T8184] device bridge_slave_0 entered promiscuous mode [ 53.840002][ T8184] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.848366][ T8184] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.856178][ T8184] device bridge_slave_1 entered promiscuous mode [ 53.864381][ T8182] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 53.886047][ T8192] IPVS: ftp: loaded support on port[0] = 21 [ 53.896256][ T8179] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 53.944995][ T8179] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 54.018491][ T8179] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 54.117310][ T8182] team0: Port device team_slave_0 added [ 54.125860][ T8182] team0: Port device team_slave_1 added [ 54.147536][ T8187] chnl_net:caif_netlink_parms(): no params data found [ 54.164512][ T8184] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 54.175341][ T8184] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 54.244243][ T8182] device hsr_slave_0 entered promiscuous mode [ 54.282625][ T8182] device hsr_slave_1 entered promiscuous mode [ 54.321798][ T8182] debugfs: Directory 'hsr0' with parent '/' already present! [ 54.376722][ T8184] team0: Port device team_slave_0 added [ 54.382939][ T8187] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.389989][ T8187] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.399425][ T8187] device bridge_slave_0 entered promiscuous mode [ 54.408761][ T8187] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.416313][ T8187] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.425610][ T8187] device bridge_slave_1 entered promiscuous mode [ 54.445074][ T8184] team0: Port device team_slave_1 added [ 54.471179][ T8187] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 54.496641][ T8187] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 54.563954][ T8184] device hsr_slave_0 entered promiscuous mode [ 54.611908][ T8184] device hsr_slave_1 entered promiscuous mode [ 54.651661][ T8184] debugfs: Directory 'hsr0' with parent '/' already present! [ 54.669911][ T8182] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 54.728956][ T8187] team0: Port device team_slave_0 added [ 54.739816][ T8187] team0: Port device team_slave_1 added [ 54.769344][ T8182] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 54.803867][ T8182] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 54.855402][ T8182] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 54.925840][ T8190] chnl_net:caif_netlink_parms(): no params data found [ 55.023811][ T8187] device hsr_slave_0 entered promiscuous mode [ 55.071927][ T8187] device hsr_slave_1 entered promiscuous mode [ 55.111666][ T8187] debugfs: Directory 'hsr0' with parent '/' already present! [ 55.171399][ T8192] chnl_net:caif_netlink_parms(): no params data found [ 55.237876][ T8192] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.246025][ T8192] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.254212][ T8192] device bridge_slave_0 entered promiscuous mode [ 55.261560][ T8187] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 55.304011][ T8187] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 55.344075][ T8184] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 55.389634][ T8184] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 55.433178][ T8184] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 55.483047][ T8192] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.490136][ T8192] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.498205][ T8192] device bridge_slave_1 entered promiscuous mode [ 55.506481][ T8187] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 55.554837][ T8187] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 55.603392][ T8190] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.610495][ T8190] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.618539][ T8190] device bridge_slave_0 entered promiscuous mode [ 55.627383][ T8190] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.634569][ T8190] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.642976][ T8190] device bridge_slave_1 entered promiscuous mode [ 55.650639][ T8184] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 55.721831][ T8190] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 55.739909][ T8192] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 55.753524][ T8179] 8021q: adding VLAN 0 to HW filter on device bond0 [ 55.764739][ T8190] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 55.783826][ T8192] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 55.826778][ T8192] team0: Port device team_slave_0 added [ 55.839644][ T8182] 8021q: adding VLAN 0 to HW filter on device bond0 [ 55.849212][ T8195] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 55.860677][ T8195] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 55.872142][ T8179] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.886520][ T8192] team0: Port device team_slave_1 added [ 55.905956][ T8190] team0: Port device team_slave_0 added [ 55.914204][ T8190] team0: Port device team_slave_1 added [ 55.973589][ T8190] device hsr_slave_0 entered promiscuous mode [ 56.011845][ T8190] device hsr_slave_1 entered promiscuous mode [ 56.051576][ T8190] debugfs: Directory 'hsr0' with parent '/' already present! [ 56.113923][ T8192] device hsr_slave_0 entered promiscuous mode [ 56.151802][ T8192] device hsr_slave_1 entered promiscuous mode [ 56.201714][ T8192] debugfs: Directory 'hsr0' with parent '/' already present! [ 56.215155][ T8182] 8021q: adding VLAN 0 to HW filter on device team0 [ 56.234491][ T8195] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 56.243652][ T8195] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 56.253067][ T8195] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.260178][ T8195] bridge0: port 1(bridge_slave_0) entered forwarding state [ 56.268151][ T8195] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 56.276656][ T8195] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 56.293156][ T8195] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 56.301369][ T8195] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 56.310359][ T8195] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 56.319211][ T8195] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.326316][ T8195] bridge0: port 2(bridge_slave_1) entered forwarding state [ 56.335317][ T8195] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 56.366241][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 56.375985][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 56.384845][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 56.393510][ T5] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.400693][ T5] bridge0: port 1(bridge_slave_0) entered forwarding state [ 56.408476][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 56.427237][ T8184] 8021q: adding VLAN 0 to HW filter on device bond0 [ 56.452706][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 56.461264][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 56.473383][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 56.481945][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 56.490205][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 56.499291][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 56.507896][ T5] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.514975][ T5] bridge0: port 2(bridge_slave_1) entered forwarding state [ 56.523111][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 56.539029][ T8179] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 56.549891][ T8179] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 56.566108][ T8190] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 56.623876][ T8190] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 56.666618][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 56.675499][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 56.684371][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 56.692928][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 56.701836][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 56.710250][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 56.718867][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 56.727170][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 56.735708][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 56.744377][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 56.760423][ T8182] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 56.773327][ T8182] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 56.789885][ T8184] 8021q: adding VLAN 0 to HW filter on device team0 [ 56.800364][ T8190] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 56.846703][ T8190] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 56.894129][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 56.903514][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 56.911140][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 56.919890][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 56.928985][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 56.937431][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 56.945737][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 56.953635][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 56.968940][ T8179] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 56.986625][ T8192] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 57.023838][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 57.031866][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 57.039319][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 57.047069][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 57.056151][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.064554][ T5] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.071658][ T5] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.079110][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 57.088040][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 57.096744][ T5] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.103847][ T5] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.115293][ T8187] 8021q: adding VLAN 0 to HW filter on device bond0 [ 57.130628][ T8192] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 57.173931][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 57.182088][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 57.225175][ T8192] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 57.259079][ T8192] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 57.302804][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 57.310239][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 57.317887][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 57.326364][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 57.335245][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 57.343667][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 57.353692][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 57.362315][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 57.370581][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 57.379254][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 57.387367][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 57.409033][ T8182] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 162.451434][ C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 162.458429][ C0] (detected by 0, t=10502 jiffies, g=6293, q=126) [ 162.464920][ C0] rcu: All QSes seen, last rcu_preempt kthread activity 10503 (4294953368-4294942865), jiffies_till_next_fqs=1, root ->qsmask 0x0 [ 162.478264][ C0] syz-executor.1 R running task 24840 8182 8180 0x0000400a [ 162.486160][ C0] Call Trace: [ 162.489437][ C0] [ 162.492292][ C0] sched_show_task+0x40f/0x560 [ 162.497058][ C0] rcu_sched_clock_irq+0x1861/0x1ad0 [ 162.502341][ C0] update_process_times+0x12d/0x180 [ 162.507525][ C0] tick_sched_timer+0x263/0x420 [ 162.512360][ C0] ? tick_setup_sched_timer+0x3d0/0x3d0 [ 162.517894][ C0] __hrtimer_run_queues+0x403/0x840 [ 162.523103][ C0] hrtimer_interrupt+0x38c/0xda0 [ 162.528041][ C0] ? debug_smp_processor_id+0x9/0x20 [ 162.533321][ C0] smp_apic_timer_interrupt+0x109/0x280 [ 162.539025][ C0] apic_timer_interrupt+0xf/0x20 [ 162.544029][ C0] [ 162.546965][ C0] RIP: 0010:free_thread_stack+0x151/0x590 [ 162.552673][ C0] Code: 31 f6 e8 42 af 6e 00 43 80 3c 2e 00 74 08 4c 89 e7 e8 43 a4 69 00 49 8b 1c 24 48 83 c3 08 48 89 d8 48 c1 e8 03 42 80 3c 28 00 <74> 08 48 89 df e8 25 a4 69 00 48 8b 3b be fc ff ff ff e8 28 04 00 [ 162.572263][ C0] RSP: 0018:ffffc90001ec7028 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13 [ 162.580660][ C0] RAX: 1ffff11013e55861 RBX: ffff88809f2ac308 RCX: 0000000000000000 [ 162.588618][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffea0002769740 [ 162.596575][ C0] RBP: ffffc90001ec7060 R08: dffffc0000000000 R09: fffffbfff120248a [ 162.604567][ C0] R10: fffffbfff120248a R11: 0000000000000000 R12: ffff88809f2ac3a0 [ 162.612526][ C0] R13: dffffc0000000000 R14: 1ffff11013e55874 R15: ffff8880a859d528 [ 162.620518][ C0] ? free_thread_stack+0x12e/0x590 [ 162.625618][ C0] put_task_stack+0xa3/0x130 [ 162.630201][ C0] finish_task_switch+0x3f1/0x550 [ 162.635221][ C0] __schedule+0x9a8/0xcc0 [ 162.639578][ C0] preempt_schedule_irq+0xc1/0x140 [ 162.644797][ C0] retint_kernel+0x1b/0x2b [ 162.649200][ C0] RIP: 0010:lock_release+0x4c7/0x780 [ 162.654472][ C0] Code: 48 c1 e8 03 80 3c 10 00 74 0c 48 c7 c7 28 96 0a 89 e8 9d 5b 56 00 48 83 3d bd de ae 07 00 0f 84 8c 02 00 00 48 8b 7d 88 57 9d <0f> 1f 44 00 00 65 48 8b 04 25 28 00 00 00 48 3b 45 d0 0f 85 70 02 [ 162.675713][ C0] RSP: 0018:ffffc90001ec7278 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13 [ 162.684111][ C0] RAX: 1ffffffff12152c5 RBX: ffff88808fcd6ec8 RCX: ffffffff815bbb47 [ 162.692677][ C0] RDX: dffffc0000000000 RSI: ffff88808fcd6f20 RDI: 0000000000000286 [ 162.700647][ C0] RBP: ffffc90001ec72f8 R08: dffffc0000000000 R09: fffffbfff1287025 [ 162.708614][ C0] R10: fffffbfff1287025 R11: 0000000000000000 R12: 0000000000000001 [ 162.716572][ C0] R13: 0000000000000000 R14: 5f154898ded5cb00 R15: 000000000002002b [ 162.724548][ C0] ? trace_lock_release+0x117/0x1a0 [ 162.729750][ C0] ? rcu_lock_release+0x9/0x30 [ 162.734505][ C0] ? stack_trace_save+0x150/0x150 [ 162.739512][ C0] rcu_lock_release+0x21/0x30 [ 162.744175][ C0] is_bpf_text_address+0x358/0x370 [ 162.749276][ C0] ? stack_trace_save+0x150/0x150 [ 162.754297][ C0] __kernel_text_address+0x9a/0x110 [ 162.759481][ C0] unwind_get_return_address+0x4c/0x90 [ 162.764941][ C0] arch_stack_walk+0x98/0xe0 [ 162.769524][ C0] stack_trace_save+0xb6/0x150 [ 162.774280][ C0] __kasan_kmalloc+0x11c/0x1b0 [ 162.779029][ C0] ? __kasan_kmalloc+0x11c/0x1b0 [ 162.783950][ C0] ? kasan_slab_alloc+0xf/0x20 [ 162.788699][ C0] ? __kmalloc+0x22b/0x340 [ 162.793099][ C0] ? tomoyo_encode2+0x273/0x5a0 [ 162.797935][ C0] ? tomoyo_realpath_from_path+0x769/0x7c0 [ 162.803728][ C0] ? tomoyo_check_open_permission+0x1ce/0x9d0 [ 162.809775][ C0] ? tomoyo_file_open+0x141/0x190 [ 162.814806][ C0] ? security_file_open+0x65/0x2f0 [ 162.819927][ C0] ? do_dentry_open+0x351/0x10c0 [ 162.824857][ C0] ? vfs_open+0x73/0x80 [ 162.829003][ C0] ? path_openat+0x1397/0x44a0 [ 162.833762][ C0] ? do_filp_open+0x192/0x3d0 [ 162.838454][ C0] ? do_sys_open+0x29f/0x560 [ 162.843041][ C0] ? __x64_sys_open+0x87/0x90 [ 162.847704][ C0] ? do_syscall_64+0xf7/0x1c0 [ 162.852366][ C0] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 162.858418][ C0] ? tomoyo_file_open+0x141/0x190 [ 162.863428][ C0] ? security_file_open+0x65/0x2f0 [ 162.868522][ C0] ? do_dentry_open+0x351/0x10c0 [ 162.873443][ C0] ? vfs_open+0x73/0x80 [ 162.877584][ C0] ? path_openat+0x1397/0x44a0 [ 162.882437][ C0] ? prepend_path+0x271/0xa70 [ 162.887100][ C0] ? rcu_lock_release+0x9/0x30 [ 162.891871][ C0] ? tomoyo_encode2+0x273/0x5a0 [ 162.896711][ C0] ? __kmalloc+0x1c0/0x340 [ 162.901210][ C0] kasan_slab_alloc+0xf/0x20 [ 162.905788][ C0] __kmalloc+0x22b/0x340 [ 162.910016][ C0] ? tomoyo_encode2+0x273/0x5a0 [ 162.914958][ C0] tomoyo_encode2+0x273/0x5a0 [ 162.919627][ C0] tomoyo_realpath_from_path+0x769/0x7c0 [ 162.925262][ C0] tomoyo_check_open_permission+0x1ce/0x9d0 [ 162.931177][ C0] tomoyo_file_open+0x141/0x190 [ 162.936016][ C0] security_file_open+0x65/0x2f0 [ 162.940942][ C0] do_dentry_open+0x351/0x10c0 [ 162.945700][ C0] vfs_open+0x73/0x80 [ 162.949667][ C0] path_openat+0x1397/0x44a0 [ 162.954284][ C0] do_filp_open+0x192/0x3d0 [ 162.958791][ C0] do_sys_open+0x29f/0x560 [ 162.963204][ C0] __x64_sys_open+0x87/0x90 [ 162.967696][ C0] do_syscall_64+0xf7/0x1c0 [ 162.972189][ C0] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 162.978071][ C0] RIP: 0033:0x4143f0 [ 162.982053][ C0] Code: 05 48 3d 01 f0 ff ff 0f 83 2d 19 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 83 3d 7d 40 66 00 00 75 14 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 04 19 00 00 c3 48 83 ec 08 e8 0a fa ff ff [ 163.001654][ C0] RSP: 002b:00007ffd7fde59c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 163.010054][ C0] RAX: ffffffffffffffda RBX: 00007ffd7fde59f1 RCX: 00000000004143f0 [ 163.018012][ C0] RDX: 00007ffd7fde59f6 RSI: 0000000000080001 RDI: 00007ffd7fde5f60 [ 163.025974][ C0] RBP: 00007ffd7fde59f0 R08: 0000000000000000 R09: 0000000000000001 [ 163.033928][ C0] R10: 0000000000000064 R11: 0000000000000246 R12: 00007ffd7fde5f60 [ 163.041885][ C0] R13: 00007ffd7fde6348 R14: 0000000000000000 R15: 00007ffd7fde5f20 [ 163.049863][ C0] rcu: rcu_preempt kthread starved for 10561 jiffies! g6293 f0x2 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1 [ 163.060942][ C0] rcu: RCU grace-period kthread stack dump: [ 163.066814][ C0] rcu_preempt R running task 29032 10 2 0x80004000 [ 163.074700][ C0] Call Trace: [ 163.077986][ C0] __schedule+0x9a0/0xcc0 [ 163.082310][ C0] schedule+0x181/0x210 [ 163.086455][ C0] schedule_timeout+0x14f/0x240 [ 163.091293][ C0] ? run_local_timers+0x120/0x120 [ 163.096314][ C0] rcu_gp_kthread+0xed8/0x1770 [ 163.101076][ C0] kthread+0x332/0x350 [ 163.105128][ C0] ? rcu_report_qs_rsp+0x140/0x140 [ 163.110223][ C0] ? kthread_blkcg+0xe0/0xe0 [ 163.114799][ C0] ret_from_fork+0x24/0x30