./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3092498701 <...> DUID 00:04:f8:bf:f0:9c:61:e1:97:95:98:d7:6e:33:ae:fb:a4:bd forked to background, child pid 3184 [ 26.984621][ T3185] 8021q: adding VLAN 0 to HW filter on device bond0 [ 26.995213][ T3185] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller Warning: Permanently added '10.128.0.128' (ECDSA) to the list of known hosts. execve("./syz-executor3092498701", ["./syz-executor3092498701"], 0x7ffc8ed0a5c0 /* 10 vars */) = 0 brk(NULL) = 0x5555573f2000 brk(0x5555573f2c40) = 0x5555573f2c40 arch_prctl(ARCH_SET_FS, 0x5555573f2300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor3092498701", 4096) = 28 brk(0x555557413c40) = 0x555557413c40 brk(0x555557414000) = 0x555557414000 mprotect(0x7fcfbbde3000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 socket(AF_INET6, SOCK_DCCP, IPPROTO_IP) = 3 setsockopt(3, SOL_SOCKET, SO_REUSEPORT, [65537], 4) = 0 listen(3, 0) = 0 exit_group(0) = ? syzkaller login: [ 49.399067][ T3606] [ 49.401551][ T3606] ============================= [ 49.406400][ T3606] WARNING: suspicious RCU usage [ 49.411281][ T3606] 5.19.0-syzkaller-11980-ge34cfee65ec8 #0 Not tainted [ 49.418030][ T3606] ----------------------------- [ 49.422902][ T3606] include/net/sock.h:592 suspicious rcu_dereference_check() usage! [ 49.430819][ T3606] [ 49.430819][ T3606] other info that might help us debug this: [ 49.430819][ T3606] [ 49.441081][ T3606] [ 49.441081][ T3606] rcu_scheduler_active = 2, debug_locks = 1 [ 49.449131][ T3606] 5 locks held by syz-executor309/3606: [ 49.454706][ T3606] #0: ffff888073ebb810 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: __sock_release+0x86/0x280 [ 49.465312][ T3606] #1: ffff888026a20bf0 (sk_lock-AF_INET6){+.+.}-{0:0}, at: dccp_close+0x7e/0xd50 [ 49.474580][ T3606] #2: ffff88814aa04330 (&h->lhash2[i].lock){+.+.}-{2:2}, at: inet_unhash+0x345/0x680 [ 49.484205][ T3606] #3: ffffffff8d7bb7b8 (reuseport_lock){+...}-{2:2}, at: reuseport_detach_sock+0x22/0x4a0 [ 49.494252][ T3606] #4: ffff888026a20e78 (clock-AF_INET6){++..}-{2:2}, at: bpf_sk_reuseport_detach+0x26/0x190 [ 49.504514][ T3606] [ 49.504514][ T3606] stack backtrace: [ 49.510445][ T3606] CPU: 0 PID: 3606 Comm: syz-executor309 Not tainted 5.19.0-syzkaller-11980-ge34cfee65ec8 #0 [ 49.520616][ T3606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 49.530656][ T3606] Call Trace: [ 49.533924][ T3606] [ 49.536843][ T3606] dump_stack_lvl+0xcd/0x134 [ 49.541432][ T3606] bpf_sk_reuseport_detach+0x156/0x190 [ 49.546902][ T3606] reuseport_detach_sock+0x8c/0x4a0 [ 49.552091][ T3606] ? rwlock_bug.part.0+0x90/0x90 [ 49.557022][ T3606] reuseport_stop_listen_sock+0x6d/0x500 [ 49.562682][ T3606] inet_unhash+0x3b1/0x680 [ 49.567090][ T3606] dccp_set_state+0x2af/0x3a0 [ 49.571759][ T3606] dccp_close+0xa23/0xd50 [ 49.576078][ T3606] ? dccp_recvmsg+0x9d0/0x9d0 [ 49.580741][ T3606] ? ip_mc_drop_socket+0x16/0x260 [ 49.585822][ T3606] inet_release+0x12e/0x270 [ 49.590346][ T3606] inet6_release+0x4c/0x70 [ 49.594764][ T3606] __sock_release+0xcd/0x280 [ 49.599356][ T3606] sock_close+0x18/0x20 [ 49.603526][ T3606] __fput+0x277/0x9d0 [ 49.607507][ T3606] ? __sock_release+0x280/0x280 [ 49.612362][ T3606] task_work_run+0xdd/0x1a0 [ 49.616866][ T3606] do_exit+0xad5/0x29b0 [ 49.621067][ T3606] ? mm_update_next_owner+0x7a0/0x7a0 [ 49.626437][ T3606] ? _raw_spin_unlock_irq+0x1f/0x40 [ 49.631641][ T3606] ? _raw_spin_unlock_irq+0x1f/0x40 [ 49.636834][ T3606] do_group_exit+0xd2/0x2f0 [ 49.641330][ T3606] __x64_sys_exit_group+0x3a/0x50 [ 49.646346][ T3606] do_syscall_64+0x35/0xb0 [ 49.650755][ T3606] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 49.656642][ T3606] RIP: 0033:0x7fcfbbd75639 [ 49.661049][ T3606] Code: Unable to access opcode bytes at RIP 0x7fcfbbd7560f. [ 49.668401][ T3606] RSP: 002b:00007ffe7e7a8c98 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 49.676810][ T3606] RAX: ffffffffffffffda RBX: 00007fcfbbde9270 RCX: 00007fcfbbd75639 [ 49.684781][ T3606] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000 +++ exited with 0 +++ [ 49.692760][ T3606] RBP: 0000000000000000 R08: ffffffffffffffc0 R09: 0000000000000000