INIT: Entering runlevel: 2 [info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.36' (ECDSA) to the list of known hosts. 2018/04/14 22:40:23 parsed 1 programs 2018/04/14 22:40:23 executed programs: 0 syzkaller login: [ 25.560133] IPVS: ftp: loaded support on port[0] = 21 [ 25.560488] IPVS: ftp: loaded support on port[0] = 21 [ 25.567877] IPVS: ftp: loaded support on port[0] = 21 [ 25.605264] IPVS: ftp: loaded support on port[0] = 21 [ 25.614580] IPVS: ftp: loaded support on port[0] = 21 [ 25.618316] IPVS: ftp: loaded support on port[0] = 21 [ 25.632257] IPVS: ftp: loaded support on port[0] = 21 [ 25.653119] IPVS: ftp: loaded support on port[0] = 21 [ 25.830106] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 25.830313] IPVS: stopping backup sync thread 4512 ... [ 25.849535] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 25.849652] IPVS: stopping backup sync thread 4516 ... [ 25.863595] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 25.873991] IPVS: stopping backup sync thread 4517 ... [ 25.879469] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 25.879538] IPVS: stopping backup sync thread 4518 ... [ 25.919811] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 25.921370] IPVS: stopping backup sync thread 4529 ... [ 25.930455] IPVS: stopping backup sync thread 4530 ... [ 25.950925] IPVS: stopping backup sync thread 4532 ... [ 25.967562] IPVS: stopping backup sync thread 4539 ... [ 25.969789] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 25.984863] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 25.999733] IPVS: stopping backup sync thread 4544 ... [ 26.007187] IPVS: stopping backup sync thread 4546 ... [ 26.013487] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.034983] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.049734] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.074536] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.083609] IPVS: stopping backup sync thread 4541 ... [ 26.104345] IPVS: stopping backup sync thread 4552 ... [ 26.105641] IPVS: stopping backup sync thread 4551 ... [ 26.119759] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.131706] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.141576] IPVS: stopping backup sync thread 4574 ... [ 26.143484] IPVS: stopping backup sync thread 4581 ... [ 26.154509] IPVS: stopping backup sync thread 4557 ... [ 26.164528] IPVS: stopping backup sync thread 4566 ... [ 26.164963] IPVS: stopping backup sync thread 4582 ... [ 26.170194] IPVS: stopping backup sync thread 4559 ... [ 26.190698] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.193352] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.219805] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.240801] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.242751] IPVS: stopping backup sync thread 4585 ... [ 26.269973] IPVS: stopping backup sync thread 4602 ... [ 26.278693] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.304866] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.306000] IPVS: stopping backup sync thread 4595 ... [ 26.321456] IPVS: stopping backup sync thread 4611 ... [ 26.332891] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.334950] IPVS: stopping backup sync thread 4618 ... [ 26.342921] IPVS: stopping backup sync thread 4586 ... [ 26.352723] IPVS: stopping backup sync thread 4620 ... [ 26.354445] IPVS: stopping backup sync thread 4590 ... [ 26.363089] IPVS: stopping backup sync thread 4610 ... [ 26.366524] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.380701] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.394369] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.413716] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.442318] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.462874] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.467761] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.488830] IPVS: stopping backup sync thread 4626 ... [ 26.490250] IPVS: stopping backup sync thread 4652 ... [ 26.494330] IPVS: stopping backup sync thread 4624 ... [ 26.508452] IPVS: stopping backup sync thread 4655 ... [ 26.515241] IPVS: stopping backup sync thread 4631 ... [ 26.517125] IPVS: stopping backup sync thread 4622 ... [ 26.524321] IPVS: stopping backup sync thread 4646 ... [ 26.527006] IPVS: stopping backup sync thread 4635 ... [ 26.536066] IPVS: stopping backup sync thread 4661 ... [ 26.542695] IPVS: stopping backup sync thread 4650 ... [ 26.549863] IPVS: stopping backup sync thread 4664 ... [ 26.559873] IPVS: stopping backup sync thread 4666 ... [ 26.568220] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.583740] IPVS: stopping backup sync thread 4671 ... [ 26.591575] IPVS: stopping backup sync thread 4675 ... [ 26.620254] IPVS: stopping backup sync thread 4678 ... [ 26.620381] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.638872] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.639713] IPVS: stopping backup sync thread 4689 ... [ 26.661721] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.662046] IPVS: stopping backup sync thread 4690 ... [ 26.677850] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.678586] IPVS: stopping backup sync thread 4694 ... [ 26.706674] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.707268] IPVS: stopping backup sync thread 4668 ... [ 26.715632] IPVS: stopping backup sync thread 4695 ... [ 26.732398] IPVS: stopping backup sync thread 4700 ... [ 26.734570] IPVS: stopping backup sync thread 4702 ... [ 26.741507] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.748197] IPVS: stopping backup sync thread 4705 ... [ 26.759586] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.771418] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.788737] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.808746] IPVS: stopping backup sync thread 4708 ... [ 26.811856] IPVS: stopping backup sync thread 4710 ... [ 26.825255] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.825289] IPVS: stopping backup sync thread 4726 ... [ 26.846471] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.860998] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip_vti0, syncid = 0, id = 0 [ 26.862214] [ 26.871445] ============================================ [ 26.876885] WARNING: possible recursive locking detected [ 26.882324] 4.16.0+ #2 Not tainted [ 26.885852] -------------------------------------------- [ 26.891293] syz-executor7/4691 is trying to acquire lock: [ 26.896818] 000000005db18e52 (rtnl_mutex){+.+.}, at: rtnl_lock+0x17/0x20 [ 26.903674] [ 26.903674] but task is already holding lock: [ 26.909636] 000000005db18e52 (rtnl_mutex){+.+.}, at: rtnl_lock+0x17/0x20 [ 26.916478] [ 26.916478] other info that might help us debug this: [ 26.923133] Possible unsafe locking scenario: [ 26.923133] [ 26.929176] CPU0 [ 26.931734] ---- [ 26.934296] lock(rtnl_mutex); [ 26.937553] lock(rtnl_mutex); [ 26.940807] [ 26.940807] *** DEADLOCK *** [ 26.940807] [ 26.946840] May be due to missing lock nesting notation [ 26.946840] [ 26.953744] 2 locks held by syz-executor7/4691: [ 26.958387] #0: 000000005db18e52 (rtnl_mutex){+.+.}, at: rtnl_lock+0x17/0x20 [ 26.965672] #1: 00000000d6de161e (ipvs->sync_mutex){+.+.}, at: do_ip_vs_set_ctl+0x562/0x1d30 [ 26.974333] [ 26.974333] stack backtrace: [ 26.978853] CPU: 1 PID: 4691 Comm: syz-executor7 Not tainted 4.16.0+ #2 [ 26.985589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 26.994926] Call Trace: [ 26.997502] dump_stack+0x1b9/0x294 [ 27.001112] ? dump_stack_print_info.cold.2+0x52/0x52 [ 27.006293] ? print_lock+0xd1/0xd6 [ 27.009923] ? vprintk_func+0x81/0xe7 [ 27.013710] __lock_acquire.cold.62+0x18c/0x55b [ 27.018371] ? debug_check_no_locks_freed+0x310/0x310 [ 27.023553] ? __enqueue_entity+0x10d/0x1f0 [ 27.027865] ? __lock_is_held+0xb5/0x140 [ 27.031917] ? __lock_acquire+0x7f5/0x5140 [ 27.036153] ? graph_lock+0x170/0x170 [ 27.039933] ? __lock_is_held+0xb5/0x140 [ 27.043982] ? x2apic_send_IPI+0xbf/0x110 [ 27.048121] ? graph_lock+0x170/0x170 [ 27.051907] ? graph_lock+0x170/0x170 [ 27.055710] ? resched_curr+0x10f/0x190 [ 27.059671] ? graph_lock+0x170/0x170 [ 27.063448] ? graph_lock+0x170/0x170 [ 27.067238] lock_acquire+0x1dc/0x520 [ 27.071028] ? rtnl_lock+0x17/0x20 [ 27.074555] ? lock_release+0xa10/0xa10 [ 27.078517] ? check_same_owner+0x320/0x320 [ 27.082822] ? graph_lock+0x170/0x170 [ 27.086605] ? rcu_note_context_switch+0x710/0x710 [ 27.091519] ? __might_sleep+0x95/0x190 [ 27.095475] ? rtnl_lock+0x17/0x20 [ 27.099005] __mutex_lock+0x16d/0x17f0 [ 27.102880] ? rtnl_lock+0x17/0x20 [ 27.106411] ? rtnl_lock+0x17/0x20 [ 27.109942] ? mutex_trylock+0x2a0/0x2a0 [ 27.114087] ? mark_held_locks+0xc9/0x160 [ 27.118239] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 27.122817] ? _raw_spin_unlock_irq+0x27/0x70 [ 27.127294] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 27.132295] ? trace_hardirqs_on+0xd/0x10 [ 27.136429] ? _raw_spin_unlock_irq+0x27/0x70 [ 27.140913] ? wait_for_completion_killable+0x56c/0x960 [ 27.146273] ? wait_for_completion_interruptible_timeout+0x960/0x960 [ 27.152764] ? lock_downgrade+0x8e0/0x8e0 [ 27.156898] ? kasan_check_read+0x11/0x20 [ 27.161037] ? do_raw_spin_unlock+0x9e/0x2e0 [ 27.165438] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 27.170013] ? wake_up_q+0x100/0x100 [ 27.173725] ? kasan_check_write+0x14/0x20 [ 27.177951] ? do_raw_spin_lock+0xc1/0x200 [ 27.182174] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 27.187710] ? __kthread_create_on_node+0x34f/0x4c0 [ 27.192712] ? __kthread_parkme+0x280/0x280 [ 27.197025] ? __lock_is_held+0xb5/0x140 [ 27.201077] mutex_lock_nested+0x16/0x20 [ 27.205128] ? mutex_lock_nested+0x16/0x20 [ 27.209353] rtnl_lock+0x17/0x20 [ 27.212710] ip_mc_drop_socket+0x8f/0x270 [ 27.216852] inet_release+0x4e/0x1f0 [ 27.220554] sock_release+0x96/0x1b0 [ 27.224264] start_sync_thread+0xdc3/0x2d40 [ 27.228581] ? ip_vs_process_message+0xa0a/0xa0a [ 27.233333] ? ip_vs_sync_conn+0x33a0/0x33a0 [ 27.237726] ? graph_lock+0x170/0x170 [ 27.241518] ? lock_downgrade+0x8e0/0x8e0 [ 27.245665] ? lock_downgrade+0x8e0/0x8e0 [ 27.249814] ? kasan_check_read+0x11/0x20 [ 27.253957] ? do_raw_spin_unlock+0x9e/0x2e0 [ 27.258356] ? __local_bh_enable_ip+0x161/0x230 [ 27.263013] ? find_held_lock+0x36/0x1c0 [ 27.267073] ? lock_downgrade+0x8e0/0x8e0 [ 27.271215] ? lock_release+0xa10/0xa10 [ 27.275183] ? check_same_owner+0x320/0x320 [ 27.279487] ? module_unload_free+0x5b0/0x5b0 [ 27.283967] do_ip_vs_set_ctl+0x59c/0x1d30 [ 27.288190] ? find_held_lock+0x36/0x1c0 [ 27.292243] ? ip_vs_genl_set_cmd+0xe80/0xe80 [ 27.296730] ? lock_downgrade+0x8e0/0x8e0 [ 27.300867] ? lock_downgrade+0x8e0/0x8e0 [ 27.305011] ? kasan_check_read+0x11/0x20 [ 27.309150] ? rcu_is_watching+0x85/0x140 [ 27.313283] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 27.318466] ? kasan_check_write+0x14/0x20 [ 27.322696] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 27.327619] ? __fget+0x40c/0x650 [ 27.331067] ? wait_for_completion+0x870/0x870 [ 27.335638] ? module_unload_free+0x5b0/0x5b0 [ 27.340118] ? lock_downgrade+0x8e0/0x8e0 [ 27.344252] ? kasan_check_read+0x11/0x20 [ 27.348391] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 27.353569] ? mutex_unlock+0xd/0x10 [ 27.357268] nf_setsockopt+0x7d/0xd0 [ 27.360972] ? nf_setsockopt+0x7d/0xd0 [ 27.364863] ip_setsockopt+0xd8/0xf0 [ 27.368564] tcp_setsockopt+0x93/0xe0 [ 27.372371] sock_common_setsockopt+0x9a/0xe0 [ 27.376856] smc_setsockopt+0xc7/0x120 [ 27.380723] __sys_setsockopt+0x1bd/0x390 [ 27.384856] ? kernel_accept+0x310/0x310 [ 27.388899] ? do_futex+0x27d0/0x27d0 [ 27.392686] ? mm_fault_error+0x380/0x380 [ 27.396826] ? do_raw_spin_unlock+0x9e/0x2e0 [ 27.401224] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 27.405797] SyS_setsockopt+0x34/0x50 [ 27.409594] ? SyS_recv+0x40/0x40 [ 27.413047] do_syscall_64+0x29e/0x9d0 [ 27.416930] ? vmalloc_sync_all+0x30/0x30 [ 27.421073] ? _raw_spin_unlock_irq+0x27/0x70 [ 27.425578] ? finish_task_switch+0x1ca/0x810 [ 27.430062] ? syscall_return_slowpath+0x5c0/0x5c0 [ 27.434979] ? syscall_return_slowpath+0x30f/0x5c0 [ 27.439899] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 27.445258] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 27.450093] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 27.455260] RIP: 0033:0x455319 [ 27.458431] RSP: 002b:00007f80ff115c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 27.466125] RAX: ffffffffffffffda RBX: 00007f80ff1166d4 RCX: 0000000000455319 [ 27.473388] RDX: 000000000000048b RSI: 0000000000000000 RDI: 0000000000000004 [ 27.480648] RBP: 000000000072bea0 R08: 0000000000000018 R09: 0000000000000000 [ 27.487901] R10: 0000000020000240 R11: 0000000000000246 R12: 00000000ffffffff [ 27.495163] R13: 0000000000000520 R14: 00000000006faba0 R15: 0000000000000000 [ 27.624198] IPVS: stopping backup sync thread 4716 ... [ 27.695011] IPVS: stopping backup sync thread 4729 ... [ 27.700683] IPVS: stopping backup sync thread 4730 ...