Warning: Permanently added '10.128.15.202' (ECDSA) to the list of known hosts. 2019/12/03 13:39:42 fuzzer started 2019/12/03 13:39:44 dialing manager at 10.128.0.26:45711 2019/12/03 13:39:44 syscalls: 2689 2019/12/03 13:39:44 code coverage: enabled 2019/12/03 13:39:44 comparison tracing: enabled 2019/12/03 13:39:44 extra coverage: extra coverage is not supported by the kernel 2019/12/03 13:39:44 setuid sandbox: enabled 2019/12/03 13:39:44 namespace sandbox: enabled 2019/12/03 13:39:44 Android sandbox: /sys/fs/selinux/policy does not exist 2019/12/03 13:39:44 fault injection: enabled 2019/12/03 13:39:44 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/12/03 13:39:44 net packet injection: enabled 2019/12/03 13:39:44 net device setup: enabled 2019/12/03 13:39:44 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2019/12/03 13:39:44 devlink PCI setup: PCI device 0000:00:10.0 is not available 13:39:45 executing program 0: unshare(0x2040400) r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000200)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_END_FF_UPLOAD(r0, 0x400c55cb, &(0x7f0000000240)={0x0, 0x0, {0x0, 0x0, 0x0, {}, {}, @ramp}}) 13:39:45 executing program 1: r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f00000000c0)) ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000080)=0xfffff800) read$dsp(r0, &(0x7f00000001c0)=""/195, 0xc3) syzkaller login: [ 52.611234][ T8067] IPVS: ftp: loaded support on port[0] = 21 [ 52.663527][ T8069] IPVS: ftp: loaded support on port[0] = 21 13:39:45 executing program 2: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='bpf\x00', 0x0, 0x0) mount$overlay(0x400000, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)='overlay\x00', 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB=',lowerdir=.:file0']) chdir(&(0x7f0000000080)='./file0\x00') mount$bpf(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='bpf\x00', 0x0, 0x0) mount$overlay(0x400000, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)='overlay\x00', 0x0, &(0x7f0000000040)=ANY=[]) lstat(&(0x7f0000000500)='./file0\x00', &(0x7f0000000540)) [ 52.843410][ T8067] chnl_net:caif_netlink_parms(): no params data found [ 52.870240][ T8069] chnl_net:caif_netlink_parms(): no params data found [ 52.982563][ T8069] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.006917][ T8069] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.015165][ T8069] device bridge_slave_0 entered promiscuous mode [ 53.032479][ T8069] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.040244][ T8069] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.048692][ T8069] device bridge_slave_1 entered promiscuous mode [ 53.058256][ T8067] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.065422][ T8067] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.073606][ T8067] device bridge_slave_0 entered promiscuous mode [ 53.091867][ T8073] IPVS: ftp: loaded support on port[0] = 21 [ 53.099467][ T8069] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 53.108783][ T8067] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.115859][ T8067] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.125509][ T8067] device bridge_slave_1 entered promiscuous mode 13:39:46 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000a80)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup2(r1, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) sendmsg$nl_xfrm(r0, &(0x7f0000000a80)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000a00)=ANY=[@ANYBLOB="5c000000150001000000000000000087741e0001000000000000000000000000fe8000000000000000000000000000000000000000000000f209762153fe8a09", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00ff0000000000000c0010000000000000000000"], 0x5c}}, 0x0) [ 53.142316][ T8069] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 53.184720][ T8067] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 53.227004][ T8069] team0: Port device team_slave_0 added [ 53.237009][ T8067] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 53.266873][ T8069] team0: Port device team_slave_1 added [ 53.322106][ T8067] team0: Port device team_slave_0 added [ 53.341959][ T8067] team0: Port device team_slave_1 added 13:39:46 executing program 4: r0 = socket$rxrpc(0x21, 0x2, 0xa) sendmsg$sock(r0, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x0) r1 = socket$rxrpc(0x21, 0x2, 0xa) bind$rxrpc(r1, &(0x7f0000001580)=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x4e22, 0x0, @empty}}, 0x24) [ 53.459670][ T8067] device hsr_slave_0 entered promiscuous mode [ 53.497171][ T8067] device hsr_slave_1 entered promiscuous mode [ 53.581330][ T8069] device hsr_slave_0 entered promiscuous mode 13:39:46 executing program 5: setrlimit(0x40000000000008, &(0x7f00000000c0)={0x4847, 0xfffffffffffff001}) mlock2(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0) r0 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0x0, r1, 0x0) mlock(&(0x7f0000ffa000/0x3000)=nil, 0x3000) [ 53.639183][ T8069] device hsr_slave_1 entered promiscuous mode [ 53.666887][ T8069] debugfs: Directory 'hsr0' with parent '/' already present! [ 53.700257][ T8077] IPVS: ftp: loaded support on port[0] = 21 [ 53.772907][ T8075] IPVS: ftp: loaded support on port[0] = 21 [ 53.848474][ T8067] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 53.903310][ T8067] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 53.960920][ T8067] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 54.019190][ T8067] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 54.078980][ T8073] chnl_net:caif_netlink_parms(): no params data found [ 54.104244][ T8069] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 54.150598][ T8069] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 54.209156][ T8069] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 54.260285][ T8069] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 54.322937][ T8080] IPVS: ftp: loaded support on port[0] = 21 [ 54.368284][ T8073] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.375500][ T8073] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.383742][ T8073] device bridge_slave_0 entered promiscuous mode [ 54.392085][ T8073] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.399460][ T8073] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.409175][ T8073] device bridge_slave_1 entered promiscuous mode [ 54.468818][ T8073] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 54.522429][ T8073] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 54.540504][ T8075] chnl_net:caif_netlink_parms(): no params data found [ 54.563831][ T8073] team0: Port device team_slave_0 added [ 54.599445][ T8077] chnl_net:caif_netlink_parms(): no params data found [ 54.620486][ T8073] team0: Port device team_slave_1 added [ 54.644468][ T8075] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.652935][ T8075] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.661373][ T8075] device bridge_slave_0 entered promiscuous mode [ 54.695001][ T8075] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.703951][ T8075] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.712335][ T8075] device bridge_slave_1 entered promiscuous mode [ 54.728992][ T8077] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.736057][ T8077] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.743870][ T8077] device bridge_slave_0 entered promiscuous mode [ 54.793168][ T8075] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 54.808525][ T8075] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 54.820287][ T8077] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.828273][ T8077] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.836202][ T8077] device bridge_slave_1 entered promiscuous mode [ 54.880770][ T8073] device hsr_slave_0 entered promiscuous mode [ 54.947142][ T8073] device hsr_slave_1 entered promiscuous mode [ 54.996952][ T8073] debugfs: Directory 'hsr0' with parent '/' already present! [ 55.015987][ T8069] 8021q: adding VLAN 0 to HW filter on device bond0 [ 55.043606][ T8075] team0: Port device team_slave_0 added [ 55.053265][ T8075] team0: Port device team_slave_1 added [ 55.061536][ T8067] 8021q: adding VLAN 0 to HW filter on device bond0 [ 55.068924][ T8080] chnl_net:caif_netlink_parms(): no params data found [ 55.095537][ T8077] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 55.168887][ T8075] device hsr_slave_0 entered promiscuous mode [ 55.227695][ T8075] device hsr_slave_1 entered promiscuous mode [ 55.276888][ T8075] debugfs: Directory 'hsr0' with parent '/' already present! [ 55.288107][ T8069] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.302211][ T8077] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 55.316145][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 55.325071][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 55.333706][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 55.341741][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 55.350014][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 55.359264][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 55.367938][ T5] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.375351][ T5] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.394205][ T8067] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.402649][ T8073] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 55.448976][ T8073] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 55.500785][ T8073] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 55.548891][ T8073] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 55.603782][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 55.613212][ T8080] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.621377][ T8080] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.629917][ T8080] device bridge_slave_0 entered promiscuous mode [ 55.640690][ T8080] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.647897][ T8080] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.655541][ T8080] device bridge_slave_1 entered promiscuous mode [ 55.696058][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 55.705175][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 55.714488][ T43] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.721733][ T43] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.729404][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 55.738328][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 55.746907][ T43] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.753936][ T43] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.761492][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 55.783274][ T8077] team0: Port device team_slave_0 added [ 55.792178][ T8080] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 55.802562][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 55.811144][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 55.819774][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 55.828185][ T43] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.835236][ T43] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.858301][ T8077] team0: Port device team_slave_1 added [ 55.865519][ T8080] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 55.883544][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 55.892211][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 55.901070][ T8075] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 55.948607][ T8075] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 56.002805][ T8075] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 56.074748][ T8080] team0: Port device team_slave_0 added [ 56.083544][ T8081] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 56.092454][ T8081] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 56.101300][ T8081] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 56.109773][ T8081] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 56.118407][ T8081] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 56.126897][ T8081] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 56.135334][ T8081] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 56.143814][ T8081] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 56.152368][ T8081] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 56.162110][ T8075] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 56.223099][ T8080] team0: Port device team_slave_1 added [ 56.231650][ T8081] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 56.241464][ T8081] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 56.250793][ T8081] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 56.259721][ T8081] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 56.268330][ T8081] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 56.277000][ T8081] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 56.304172][ T8067] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 56.359450][ T8077] device hsr_slave_0 entered promiscuous mode [ 56.397321][ T8077] device hsr_slave_1 entered promiscuous mode [ 56.437932][ T8077] debugfs: Directory 'hsr0' with parent '/' already present! [ 56.455941][ T8073] 8021q: adding VLAN 0 to HW filter on device bond0 [ 56.508659][ T8080] device hsr_slave_0 entered promiscuous mode [ 56.557194][ T8080] device hsr_slave_1 entered promiscuous mode [ 56.596908][ T8080] debugfs: Directory 'hsr0' with parent '/' already present! [ 56.625326][ T3048] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 56.635956][ T3048] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 56.653400][ T8073] 8021q: adding VLAN 0 to HW filter on device team0 [ 56.662010][ T8081] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 56.670039][ T8081] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 56.686331][ T8069] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 56.698610][ T8069] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 56.715905][ T3048] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 56.732681][ T3048] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 56.754587][ T8067] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 56.781962][ T8069] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 56.789254][ T8080] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 56.824810][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 56.832341][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 56.841259][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 56.850169][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 56.858907][ T2723] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.865979][ T2723] bridge0: port 1(bridge_slave_0) entered forwarding state [ 56.873883][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 56.883189][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 56.891814][ T2723] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.899001][ T2723] bridge0: port 2(bridge_slave_1) entered forwarding state [ 56.906653][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 56.915387][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 56.922919][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 56.930500][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 56.939117][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 56.947889][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 56.957155][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 56.965090][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 56.991536][ T8073] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 57.002807][ T8073] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 57.020325][ T8080] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 57.079491][ T8080] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 57.119215][ T8080] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 57.165616][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 57.174212][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 57.183127][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 57.191649][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 57.200386][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 57.209509][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 57.219348][ T2723] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 57.238426][ T8075] 8021q: adding VLAN 0 to HW filter on device bond0 [ 57.245452][ T8077] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 57.279142][ T8077] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 162.316734][ C0] rcu: INFO: rcu_preempt self-detected stall on CPU [ 162.323816][ C0] rcu: 0-...!: (1 GPs behind) idle=266/1/0x4000000000000002 softirq=11445/11446 fqs=3 [ 162.334049][ C0] (t=10501 jiffies g=6057 q=46) [ 162.339477][ C0] rcu: rcu_preempt kthread starved for 10496 jiffies! g6057 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1 [ 162.351439][ C0] rcu: RCU grace-period kthread stack dump: [ 162.357609][ C0] rcu_preempt R running task 29104 10 2 0x80004000 [ 162.365871][ C0] Call Trace: [ 162.369470][ C0] __schedule+0x9a0/0xcc0 [ 162.375265][ C0] schedule+0x181/0x210 [ 162.380322][ C0] schedule_timeout+0x14f/0x240 [ 162.385682][ C0] ? run_local_timers+0x120/0x120 [ 162.391265][ C0] rcu_gp_kthread+0xed8/0x1770 [ 162.396395][ C0] kthread+0x332/0x350 [ 162.400648][ C0] ? rcu_report_qs_rsp+0x140/0x140 [ 162.408052][ C0] ? kthread_blkcg+0xe0/0xe0 [ 162.414668][ C0] ret_from_fork+0x24/0x30 [ 162.419196][ C0] NMI backtrace for cpu 0 [ 162.424039][ C0] CPU: 0 PID: 8040 Comm: udevd Not tainted 5.4.0-syzkaller #0 [ 162.431823][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 162.443388][ C0] Call Trace: [ 162.446698][ C0] [ 162.449775][ C0] dump_stack+0x1fb/0x318 [ 162.454202][ C0] nmi_cpu_backtrace+0xaf/0x1a0 [ 162.459192][ C0] ? nmi_trigger_cpumask_backtrace+0x16d/0x290 [ 162.465534][ C0] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 162.472441][ C0] nmi_trigger_cpumask_backtrace+0x174/0x290 [ 162.479197][ C0] arch_trigger_cpumask_backtrace+0x10/0x20 [ 162.485455][ C0] rcu_dump_cpu_stacks+0x15a/0x220 [ 162.490693][ C0] rcu_sched_clock_irq+0xe25/0x1ad0 [ 162.496349][ C0] ? trace_hardirqs_off+0x74/0x80 [ 162.502643][ C0] update_process_times+0x12d/0x180 [ 162.510894][ C0] tick_sched_timer+0x263/0x420 [ 162.515892][ C0] ? tick_setup_sched_timer+0x3d0/0x3d0 [ 162.523846][ C0] __hrtimer_run_queues+0x403/0x840 [ 162.529355][ C0] hrtimer_interrupt+0x38c/0xda0 [ 162.534624][ C0] ? debug_smp_processor_id+0x9/0x20 [ 162.539954][ C0] smp_apic_timer_interrupt+0x109/0x280 [ 162.545597][ C0] apic_timer_interrupt+0xf/0x20 [ 162.551375][ C0] [ 162.555434][ C0] RIP: 0010:__memcg_kmem_uncharge+0x213/0x2e0 [ 162.561598][ C0] Code: a4 ff 48 c7 c7 98 4b 0d 89 e8 59 97 00 00 bf 01 00 00 00 e8 2f e3 9b ff 65 8b 05 d4 fd 4a 7e 85 c0 74 53 48 83 c4 08 5b 41 5c <41> 5d 41 5e 41 5f 5d c3 49 8d 5f 10 48 89 df be 08 00 00 00 e8 04 [ 162.582699][ C0] RSP: 0018:ffffc90001d27ae8 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13 [ 162.591288][ C0] RAX: 0000000000000001 RBX: ffffea000250f8c0 RCX: 0000000000000000 [ 162.599530][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffea000250f8c0 [ 162.607857][ C0] RBP: ffffc90001d27b00 R08: dffffc0000000000 R09: fffffbfff120248a [ 162.619018][ C0] R10: fffffbfff120248a R11: 0000000000000000 R12: ffff888092a72520 [ 162.629344][ C0] R13: 1ffffd40004a1f1f R14: ffffea000250f8f8 R15: 0000000000000000 [ 162.638427][ C0] free_thread_stack+0x12e/0x590 [ 162.644039][ C0] put_task_stack+0xa3/0x130 [ 162.653100][ C0] finish_task_switch+0x3f1/0x550 [ 162.659552][ C0] __schedule+0x9a8/0xcc0 [ 162.664963][ C0] schedule+0x181/0x210 [ 162.670258][ C0] schedule_hrtimeout_range_clock+0x3c7/0x510 [ 162.677189][ C0] ? trace_hrtimer_expire_exit+0x2d0/0x2d0 [ 162.683244][ C0] schedule_hrtimeout_range+0x2a/0x40 [ 162.689627][ C0] ep_poll+0xa4d/0xe80 [ 162.695164][ C0] ? do_task_dead+0xc0/0xc0 [ 162.699846][ C0] ? __kasan_check_read+0x11/0x20 [ 162.705132][ C0] do_epoll_wait+0x1ee/0x260 [ 162.709930][ C0] __x64_sys_epoll_wait+0x9a/0xb0 [ 162.715213][ C0] do_syscall_64+0xf7/0x1c0 [ 162.720888][ C0] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 162.727973][ C0] RIP: 0033:0x7f6528b90943 [ 162.733447][ C0] Code: 00 31 d2 48 29 c2 64 89 11 48 83 c8 ff eb ea 90 90 90 90 90 90 90 90 83 3d b5 dc 2a 00 00 75 13 49 89 ca b8 e8 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 34 c3 48 83 ec 08 e8 3b c4 00 00 48 89 04 24 [ 162.753924][ C0] RSP: 002b:00007ffe02e26338 EFLAGS: 00000246 ORIG_RAX: 00000000000000e8 [ 162.765208][ C0] RAX: ffffffffffffffda RBX: 0000000000652250 RCX: 00007f6528b90943 [ 162.773354][ C0] RDX: 0000000000000004 RSI: 00007ffe02e26400 RDI: 0000000000000007 [ 162.781415][ C0] RBP: 0000000000625500 R08: 00007ffe02e26320 R09: 00007ffe02f250b8 [ 162.789384][ C0] R10: 000000000000ee42 R11: 0000000000000246 R12: 0000000000657390 [ 162.797354][ C0] R13: 00007ffe02e27457 R14: 0000000000000005 R15: 0000000000652250