[info] Using makefile-style concurrent boot in runlevel 2. [ 26.083520] audit: type=1800 audit(1540744145.281:21): pid=5443 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="bootlogs" dev="sda1" ino=2419 res=0 [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.10.17' (ECDSA) to the list of known hosts. 2018/10/28 16:29:19 fuzzer started 2018/10/28 16:29:21 dialing manager at 10.128.0.26:37113 2018/10/28 16:29:21 syscalls: 1 2018/10/28 16:29:21 code coverage: enabled 2018/10/28 16:29:21 comparison tracing: enabled 2018/10/28 16:29:21 setuid sandbox: enabled 2018/10/28 16:29:21 namespace sandbox: enabled 2018/10/28 16:29:21 Android sandbox: /sys/fs/selinux/policy does not exist 2018/10/28 16:29:21 fault injection: enabled 2018/10/28 16:29:21 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2018/10/28 16:29:21 net packed injection: enabled 2018/10/28 16:29:21 net device setup: enabled 16:32:32 executing program 0: r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000100)={0x0, 0x5}, 0x4) sched_setaffinity(0x0, 0x8, &(0x7f0000000140)=0x5) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x40000, 0x0) connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @local, 0x2000000006}, 0x1c) sendmmsg(r1, &(0x7f00000002c0), 0x400000000000027, 0x0) syzkaller login: [ 233.819145] IPVS: ftp: loaded support on port[0] = 21 16:32:33 executing program 1: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x0, 0x0) ioctl$VHOST_GET_FEATURES(r0, 0x80044dff, &(0x7f0000000100)) [ 234.210194] IPVS: ftp: loaded support on port[0] = 21 16:32:33 executing program 2: unshare(0x400) r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x0, 0x0) ioctl$DRM_IOCTL_VERSION(r0, 0x80044df9, &(0x7f0000000380)={0x0, 0x0, 0x0, 0xc7, &(0x7f0000000040)=""/199, 0x88, &(0x7f0000000140)=""/136, 0xc8, &(0x7f0000000280)=""/200}) [ 234.571957] IPVS: ftp: loaded support on port[0] = 21 16:32:33 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r2, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4068aea3, &(0x7f0000000140)={0x7b}) ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000000000004"]) [ 234.996512] IPVS: ftp: loaded support on port[0] = 21 [ 235.401940] bridge0: port 1(bridge_slave_0) entered blocking state [ 235.421644] bridge0: port 1(bridge_slave_0) entered disabled state [ 235.429225] device bridge_slave_0 entered promiscuous mode [ 235.528283] bridge0: port 2(bridge_slave_1) entered blocking state [ 235.535915] bridge0: port 2(bridge_slave_1) entered disabled state [ 235.543772] device bridge_slave_1 entered promiscuous mode 16:32:34 executing program 4: r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000100)={0x0, 0x5}, 0x4) sched_setaffinity(0x0, 0x8, &(0x7f0000000140)=0x5) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) ioctl$DRM_IOCTL_GET_MAP(0xffffffffffffffff, 0xc0186404, &(0x7f00000001c0)={&(0x7f000000e000/0x4000)=nil, 0x0, 0x0, 0x0, &(0x7f0000000000/0x4000)=nil}) connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @local, 0x2000000006}, 0x1c) sendmmsg(r1, &(0x7f00000002c0), 0x400000000000027, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) [ 235.664236] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 235.779751] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 235.905694] IPVS: ftp: loaded support on port[0] = 21 [ 235.917435] bridge0: port 1(bridge_slave_0) entered blocking state [ 235.930097] bridge0: port 1(bridge_slave_0) entered disabled state [ 235.952763] device bridge_slave_0 entered promiscuous mode [ 236.089134] bridge0: port 2(bridge_slave_1) entered blocking state [ 236.097363] bridge0: port 2(bridge_slave_1) entered disabled state [ 236.105102] device bridge_slave_1 entered promiscuous mode 16:32:35 executing program 5: r0 = socket(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x9}, 0x1c) connect$inet(r0, &(0x7f00009a0000)={0x2, 0x0, @multicast2}, 0x10) [ 236.267778] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 236.302662] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 236.423047] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 236.435263] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 236.533839] bridge0: port 1(bridge_slave_0) entered blocking state [ 236.546406] bridge0: port 1(bridge_slave_0) entered disabled state [ 236.555807] IPVS: ftp: loaded support on port[0] = 21 [ 236.573094] device bridge_slave_0 entered promiscuous mode [ 236.716893] bridge0: port 2(bridge_slave_1) entered blocking state [ 236.728581] bridge0: port 2(bridge_slave_1) entered disabled state [ 236.736496] device bridge_slave_1 entered promiscuous mode [ 236.840582] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 236.860140] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 236.908189] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 236.989988] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 237.121837] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 237.128736] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 237.158574] bridge0: port 1(bridge_slave_0) entered blocking state [ 237.181603] bridge0: port 1(bridge_slave_0) entered disabled state [ 237.189057] device bridge_slave_0 entered promiscuous mode [ 237.229048] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 237.238910] team0: Port device team_slave_0 added [ 237.254556] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 237.261995] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 237.282788] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 237.330728] bridge0: port 2(bridge_slave_1) entered blocking state [ 237.354144] bridge0: port 2(bridge_slave_1) entered disabled state [ 237.369117] device bridge_slave_1 entered promiscuous mode [ 237.400493] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 237.432248] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 237.439674] team0: Port device team_slave_1 added [ 237.472232] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 237.596301] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 237.610363] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 237.622813] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 237.644419] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 237.683202] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 237.690636] team0: Port device team_slave_0 added [ 237.777135] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 237.844094] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 237.873953] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 237.881300] team0: Port device team_slave_1 added [ 237.892970] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 237.901126] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 237.965497] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 237.979772] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 237.997142] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 238.038126] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 238.060357] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 238.097372] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 238.120670] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 238.160142] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 238.177073] team0: Port device team_slave_0 added [ 238.201080] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 238.213557] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 238.224860] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 238.252492] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 238.273913] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 238.291928] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 238.363680] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 238.371116] team0: Port device team_slave_1 added [ 238.394019] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 238.403747] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 238.425060] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 238.462593] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 238.470534] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 238.496832] bridge0: port 1(bridge_slave_0) entered blocking state [ 238.503901] bridge0: port 1(bridge_slave_0) entered disabled state [ 238.511245] device bridge_slave_0 entered promiscuous mode [ 238.523611] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 238.530922] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 238.574299] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 238.592307] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 238.611948] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 238.622583] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 238.654543] bridge0: port 2(bridge_slave_1) entered blocking state [ 238.663648] bridge0: port 2(bridge_slave_1) entered disabled state [ 238.671101] device bridge_slave_1 entered promiscuous mode [ 238.719517] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 238.761789] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 238.786772] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 238.821925] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 238.829985] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 238.884645] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 238.916300] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 238.943155] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 238.977083] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 239.004276] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 239.012253] team0: Port device team_slave_0 added [ 239.132772] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 239.140223] team0: Port device team_slave_1 added [ 239.273428] bridge0: port 1(bridge_slave_0) entered blocking state [ 239.279901] bridge0: port 1(bridge_slave_0) entered disabled state [ 239.291030] device bridge_slave_0 entered promiscuous mode [ 239.303219] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 239.313717] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 239.327274] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 239.348056] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 239.420760] bridge0: port 2(bridge_slave_1) entered blocking state [ 239.456981] bridge0: port 2(bridge_slave_1) entered disabled state [ 239.465402] device bridge_slave_1 entered promiscuous mode [ 239.476954] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 239.497493] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 239.506147] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 239.536734] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 239.570025] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 239.642053] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 239.649854] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 239.664066] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 239.697485] bridge0: port 2(bridge_slave_1) entered blocking state [ 239.704025] bridge0: port 2(bridge_slave_1) entered forwarding state [ 239.710897] bridge0: port 1(bridge_slave_0) entered blocking state [ 239.717316] bridge0: port 1(bridge_slave_0) entered forwarding state [ 239.727085] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 239.754108] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 239.763747] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 239.772267] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 239.780248] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 240.001782] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 240.149292] bridge0: port 2(bridge_slave_1) entered blocking state [ 240.155755] bridge0: port 2(bridge_slave_1) entered forwarding state [ 240.162489] bridge0: port 1(bridge_slave_0) entered blocking state [ 240.168864] bridge0: port 1(bridge_slave_0) entered forwarding state [ 240.184864] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 240.215101] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 240.276455] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 240.312390] team0: Port device team_slave_0 added [ 240.359146] bridge0: port 2(bridge_slave_1) entered blocking state [ 240.365575] bridge0: port 2(bridge_slave_1) entered forwarding state [ 240.372294] bridge0: port 1(bridge_slave_0) entered blocking state [ 240.378666] bridge0: port 1(bridge_slave_0) entered forwarding state [ 240.416037] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 240.433305] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 240.465339] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 240.480573] team0: Port device team_slave_1 added [ 240.566796] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 240.582657] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 240.642284] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 240.649167] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 240.662514] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 240.837524] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 240.952164] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 240.962677] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 240.970637] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 241.055238] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 241.073674] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 241.091197] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 241.103336] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 241.119405] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 241.168923] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 241.190726] team0: Port device team_slave_0 added [ 241.234542] bridge0: port 2(bridge_slave_1) entered blocking state [ 241.240940] bridge0: port 2(bridge_slave_1) entered forwarding state [ 241.247676] bridge0: port 1(bridge_slave_0) entered blocking state [ 241.254105] bridge0: port 1(bridge_slave_0) entered forwarding state [ 241.285117] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 241.300209] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 241.321036] team0: Port device team_slave_1 added [ 241.481942] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 241.488819] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 241.512260] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 241.626089] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 241.650004] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 241.659842] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 241.742112] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 241.756117] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 241.772506] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 241.892303] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 241.899581] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 241.922401] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 242.061778] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 242.582419] bridge0: port 2(bridge_slave_1) entered blocking state [ 242.588822] bridge0: port 2(bridge_slave_1) entered forwarding state [ 242.595555] bridge0: port 1(bridge_slave_0) entered blocking state [ 242.601967] bridge0: port 1(bridge_slave_0) entered forwarding state [ 242.638644] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 243.071649] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 243.349079] bridge0: port 2(bridge_slave_1) entered blocking state [ 243.355510] bridge0: port 2(bridge_slave_1) entered forwarding state [ 243.362284] bridge0: port 1(bridge_slave_0) entered blocking state [ 243.368691] bridge0: port 1(bridge_slave_0) entered forwarding state [ 243.397142] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 244.138180] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 245.029918] 8021q: adding VLAN 0 to HW filter on device bond0 [ 245.466735] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 245.581732] 8021q: adding VLAN 0 to HW filter on device bond0 [ 245.603571] 8021q: adding VLAN 0 to HW filter on device bond0 [ 245.987757] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 246.003561] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 246.012381] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 246.042110] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 246.210518] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 246.472054] 8021q: adding VLAN 0 to HW filter on device bond0 [ 246.492688] 8021q: adding VLAN 0 to HW filter on device team0 [ 246.572341] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 246.578617] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 246.592105] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 246.790316] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 246.812191] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 246.821088] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 246.962915] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 247.178380] 8021q: adding VLAN 0 to HW filter on device team0 [ 247.322841] 8021q: adding VLAN 0 to HW filter on device team0 [ 247.453352] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 247.459612] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 247.468194] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 247.851471] 8021q: adding VLAN 0 to HW filter on device bond0 [ 247.996356] 8021q: adding VLAN 0 to HW filter on device team0 [ 248.312207] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 248.476535] 8021q: adding VLAN 0 to HW filter on device bond0 [ 248.765597] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 248.781177] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 248.797448] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 249.011314] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 249.233595] 8021q: adding VLAN 0 to HW filter on device team0 [ 249.480254] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 249.493945] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 249.502252] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 249.643299] hrtimer: interrupt took 33813 ns 16:32:49 executing program 0: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'irlan0\x00', 0x1}) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x1e, 0x0, &(0x7f0000000000)=@raw, &(0x7f0000000140)='syzkaller\x00', 0x6, 0xf2, &(0x7f00000002c0)=""/242, 0x41100, 0x1, [], 0x0, 0xb}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000240)='\x00', r1}, 0x10) capset(&(0x7f0000000040)={0x20071026}, &(0x7f0000000080)={0x1000, 0x5633}) r2 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r2, &(0x7f0000000180)={0x2, 0x0, @remote}, 0x10) [ 250.030591] 8021q: adding VLAN 0 to HW filter on device team0 [ 250.182335] capability: warning: `syz-executor0' uses deprecated v2 capabilities in a way that may be insecure 16:32:49 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) getsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000280)=""/98, &(0x7f0000000040)=0x62) 16:32:49 executing program 0: r0 = socket(0xa, 0x5, 0x0) sendmsg$rds(r0, &(0x7f0000000a40)={&(0x7f0000000300)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x1a}, [0xfeffffff00000005, 0xe00000000000000]}, 0x10, &(0x7f0000000480), 0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00'], 0x30}, 0x0) 16:32:49 executing program 1: ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffffff, 0x40286608, &(0x7f0000000440)={0x2000000000000157, &(0x7f0000000400)}) clone(0x20002100, 0x0, 0xfffffffffffffffe, &(0x7f0000000340), 0xffffffffffffffff) prctl$intptr(0x24, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f00000008c0), &(0x7f0000000900)=0xc) r0 = socket$rds(0x15, 0x5, 0x0) bind$rds(r0, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000140), &(0x7f0000000080)=0xc) accept(0xffffffffffffffff, &(0x7f0000007ec0)=@can, &(0x7f0000007f40)=0x80) sendmmsg(0xffffffffffffffff, &(0x7f000000a7c0)=[{{&(0x7f0000008480)=@ethernet, 0x80, &(0x7f0000008580), 0x0, &(0x7f00000085c0), 0x0, 0x800}, 0x9}], 0x1, 0x8000) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VT_SETMODE(0xffffffffffffffff, 0x5602, &(0x7f0000000040)={0x0, 0x0, 0x2e}) sendmsg$rds(r0, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote, [0x3f000000, 0x700]}, 0x10, &(0x7f0000000100), 0x0, &(0x7f0000000780)=[@rdma_args={0x48, 0x114, 0x1, {{}, {&(0x7f0000000040)=""/156, 0x80389}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}, {&(0x7f00000001c0)=""/67, 0x43}, {&(0x7f0000000240)=""/198, 0xc6}, {&(0x7f0000000140)=""/15, 0xf}, {&(0x7f0000000340)=""/54, 0x7ffff}, {&(0x7f0000000380)=""/42, 0x2a}, {&(0x7f00000003c0)=""/77, 0x4d}, {&(0x7f0000000440)=""/244, 0xf4}, {&(0x7f0000000540)=""/219, 0xdb}], 0x9}}], 0x48}, 0x0) 16:32:49 executing program 1: ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffffff, 0x40286608, &(0x7f0000000440)={0x2000000000000157, &(0x7f0000000400)}) clone(0x20002100, 0x0, 0xfffffffffffffffe, &(0x7f0000000340), 0xffffffffffffffff) prctl$intptr(0x24, 0xfffffffffffffffe) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f00000008c0), &(0x7f0000000900)=0xc) r0 = socket$rds(0x15, 0x5, 0x0) bind$rds(r0, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000140)={0x0}, &(0x7f0000000080)=0xc) r2 = accept(0xffffffffffffffff, &(0x7f0000007ec0)=@can, &(0x7f0000007f40)=0x80) sendmmsg(0xffffffffffffffff, &(0x7f000000a7c0)=[{{&(0x7f0000008480)=@ethernet={0x7}, 0x80, &(0x7f0000008580)=[{&(0x7f0000008540)="ba7fc4f3551a042311aca774f9f25c", 0xf}], 0x1, &(0x7f00000085c0), 0x0, 0x800}, 0x9}], 0x1, 0x8000) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000940)={r1, @in6={{0xa, 0x4e21, 0x1ff, @remote, 0x400}}, 0x5, 0x749a55ae, 0x8, 0x69}, &(0x7f0000000180)=0x98) ioctl$VT_SETMODE(0xffffffffffffffff, 0x5602, &(0x7f0000000040)={0x0, 0x7, 0x2e, 0x7f, 0xf6ca}) sendmsg$rds(r0, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote, [0x3f000000, 0x700]}, 0x10, &(0x7f0000000100), 0x0, &(0x7f0000000780)=[@rdma_args={0x48, 0x114, 0x1, {{}, {&(0x7f0000000040)=""/156, 0x80389}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}, {&(0x7f00000001c0)=""/67, 0x43}, {&(0x7f0000000240)=""/198, 0xc6}, {&(0x7f0000000140)=""/15, 0xf}, {&(0x7f0000000340)=""/54, 0x7ffff}, {&(0x7f0000000380)=""/42, 0x2a}, {&(0x7f00000003c0)=""/77, 0x4d}, {&(0x7f0000000440)=""/244, 0xf4}, {&(0x7f0000000540)=""/219, 0xdb}], 0x9, 0x60}}], 0x48}, 0x0) ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000680)) socketpair$nbd(0x2, 0x1, 0x0, &(0x7f0000000800)) 16:32:49 executing program 0: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b7000000000000009500000000000000"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) socketpair$inet_tcp(0x2, 0x1, 0x0, &(0x7f0000000000)) getsockopt$ARPT_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x0, 0x63, &(0x7f0000000040)={'HL\x00'}, &(0x7f0000000080)=0x1e) bpf$MAP_CREATE(0x0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x2c) recvmsg(0xffffffffffffff9c, &(0x7f0000006980)={&(0x7f00000054c0)=@can, 0x80, &(0x7f0000005900), 0x5, &(0x7f0000005980)=""/4096, 0x1000}, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000100)={r0, 0x18000000000002a0, 0xe, 0x29, &(0x7f0000000280)="b90703e6680d698cb89e40f02cea", &(0x7f00000000c0)=""/41, 0x100}, 0x28) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, &(0x7f0000000040), 0xfb01cbdd028b9044) msgctl$MSG_INFO(0x0, 0xc, &(0x7f0000000000)=""/102) 16:32:49 executing program 2: r0 = socket$inet_tcp(0x2, 0x3, 0x6) connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) write$binfmt_script(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="2321202e2f66696c65308b02d2827fe7c1783289f501005fd0efd28db006a9244655c39a430100010067000004ad00db8e000000"], 0x34) write$binfmt_script(r0, &(0x7f0000000180)={'#! ', './file0', [{0x20, 'GPL!wlan1-systemproc}keyring({,trusted'}]}, 0x32) [ 250.582451] rdma_op 00000000738aee65 conn xmit_rdma (null) [ 250.632886] ODEBUG: object 00000000b5dbcbbc is on stack 000000007bba5ce5, but NOT annotated. [ 250.645049] WARNING: CPU: 1 PID: 7104 at lib/debugobjects.c:369 __debug_object_init.cold.14+0x51/0xdf [ 250.654407] Kernel panic - not syncing: panic_on_warn set ... [ 250.660300] CPU: 1 PID: 7104 Comm: syz-executor0 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 250.668734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 250.678086] Call Trace: [ 250.680679] dump_stack+0x244/0x39d [ 250.684321] ? dump_stack_print_info.cold.1+0x20/0x20 [ 250.689540] panic+0x2ad/0x55c [ 250.692741] ? add_taint.cold.5+0x16/0x16 [ 250.696902] ? __warn.cold.8+0x5/0x45 [ 250.700715] ? __debug_object_init.cold.14+0x51/0xdf [ 250.705833] __warn.cold.8+0x20/0x45 [ 250.709564] ? __debug_object_init.cold.14+0x51/0xdf [ 250.714679] report_bug+0x254/0x2d0 [ 250.718381] do_error_trap+0x11b/0x200 [ 250.722285] do_invalid_op+0x36/0x40 [ 250.726006] ? __debug_object_init.cold.14+0x51/0xdf [ 250.731157] invalid_op+0x14/0x20 [ 250.734628] RIP: 0010:__debug_object_init.cold.14+0x51/0xdf [ 250.740356] Code: ea 03 80 3c 02 00 75 7c 49 8b 54 24 18 48 89 de 48 c7 c7 c0 f1 40 88 4c 89 85 d0 fd ff ff e8 09 8c d1 fd 4c 8b 85 d0 fd ff ff <0f> 0b e9 09 d6 ff ff 41 83 c4 01 b8 ff ff 37 00 44 89 25 b7 4e 66 [ 250.759263] RSP: 0018:ffff88018709f308 EFLAGS: 00010086 [ 250.764638] RAX: 0000000000000050 RBX: ffff88018709faf8 RCX: ffffc90001e5a000 [ 250.771909] RDX: 0000000000000000 RSI: ffffffff816585a5 RDI: 0000000000000005 [ 250.779184] RBP: ffff88018709f560 R08: ffff8801d48e6748 R09: fffffbfff12720d4 [ 250.786463] R10: fffffbfff12720d4 R11: ffffffff893906a3 R12: ffff88018713c280 [ 250.793739] R13: 0000000000086440 R14: ffff88018713c280 R15: ffff8801d48e6738 [ 250.801030] ? vprintk_func+0x85/0x181 [ 250.804931] ? __debug_object_init.cold.14+0x4a/0xdf [ 250.810050] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 250.814651] ? debug_object_free+0x690/0x690 [ 250.819076] ? unwind_get_return_address+0x61/0xa0 [ 250.824022] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 250.829129] ? depot_save_stack+0x292/0x470 [ 250.833463] ? save_stack+0xa9/0xd0 [ 250.837106] ? save_stack+0x43/0xd0 [ 250.840743] ? kasan_kmalloc+0xc7/0xe0 [ 250.844644] ? bpf_test_init.isra.10+0x98/0x100 [ 250.849334] ? zap_class+0x640/0x640 [ 250.853055] ? do_syscall_64+0x1b9/0x820 [ 250.857127] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 250.862508] ? find_held_lock+0x36/0x1c0 [ 250.866582] debug_object_init+0x16/0x20 [ 250.870650] init_timer_key+0xa9/0x480 [ 250.874561] ? init_timer_on_stack_key+0xe0/0xe0 [ 250.879337] ? __might_fault+0x12b/0x1e0 [ 250.883409] ? __lockdep_init_map+0x105/0x590 [ 250.887914] ? __lockdep_init_map+0x105/0x590 [ 250.892425] ? lockdep_init_map+0x9/0x10 [ 250.896501] sock_init_data+0xe1/0xdc0 [ 250.900405] ? sk_stop_timer+0x50/0x50 [ 250.904310] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 250.909872] ? _copy_from_user+0xdf/0x150 [ 250.914032] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 250.919585] ? bpf_test_init.isra.10+0x70/0x100 [ 250.924271] bpf_prog_test_run_skb+0x255/0xc40 [ 250.928875] ? __lock_acquire+0x62f/0x4c20 [ 250.933123] ? bpf_test_finish.isra.9+0x1f0/0x1f0 [ 250.937977] ? __lock_acquire+0x62f/0x4c20 [ 250.942298] ? fput+0x130/0x1a0 [ 250.945605] ? __bpf_prog_get+0x9b/0x290 [ 250.949679] ? bpf_test_finish.isra.9+0x1f0/0x1f0 [ 250.954533] bpf_prog_test_run+0x130/0x1a0 [ 250.958780] __x64_sys_bpf+0x3d8/0x510 [ 250.962674] ? bpf_prog_get+0x20/0x20 [ 250.966500] do_syscall_64+0x1b9/0x820 [ 250.970401] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 250.975778] ? syscall_return_slowpath+0x5e0/0x5e0 [ 250.980713] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 250.985559] ? trace_hardirqs_on_caller+0x310/0x310 [ 250.990577] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 250.995597] ? prepare_exit_to_usermode+0x291/0x3b0 [ 251.000619] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 251.005473] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 251.010659] RIP: 0033:0x457569 [ 251.013870] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 251.032771] RSP: 002b:00007f107f4d3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 251.040729] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 251.047999] RDX: 0000000000000028 RSI: 0000000020000100 RDI: 000000000000000a [ 251.055266] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 251.062532] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f107f4d46d4 [ 251.069799] R13: 00000000004bd892 R14: 00000000004cc208 R15: 00000000ffffffff [ 251.077083] [ 251.077091] ====================================================== [ 251.077097] WARNING: possible circular locking dependency detected [ 251.077102] 4.19.0-rc8-next-20181019+ #98 Not tainted [ 251.077109] ------------------------------------------------------ [ 251.077114] syz-executor0/7104 is trying to acquire lock: [ 251.077118] 00000000e7d976dc ((console_sem).lock){-.-.}, at: down_trylock+0x13/0x70 [ 251.077135] [ 251.077140] but task is already holding lock: [ 251.077143] 00000000a099a114 (&obj_hash[i].lock){-.-.}, at: __debug_object_init+0x127/0x1290 [ 251.077160] [ 251.077165] which lock already depends on the new lock. [ 251.077168] [ 251.077171] [ 251.077177] the existing dependency chain (in reverse order) is: [ 251.077179] [ 251.077182] -> #3 (&obj_hash[i].lock){-.-.}: [ 251.077198] _raw_spin_lock_irqsave+0x99/0xd0 [ 251.077203] __debug_object_init+0x127/0x1290 [ 251.077208] debug_object_init+0x16/0x20 [ 251.077212] hrtimer_init+0x97/0x490 [ 251.077217] init_dl_task_timer+0x1b/0x50 [ 251.077222] __sched_fork+0x2ae/0x590 [ 251.077226] init_idle+0x75/0x740 [ 251.077230] sched_init+0xb33/0xc02 [ 251.077235] start_kernel+0x4be/0xa2b [ 251.077240] x86_64_start_reservations+0x2e/0x30 [ 251.077245] x86_64_start_kernel+0x76/0x79 [ 251.077249] secondary_startup_64+0xa4/0xb0 [ 251.077252] [ 251.077254] -> #2 (&rq->lock){-.-.}: [ 251.077270] _raw_spin_lock+0x2d/0x40 [ 251.077274] task_fork_fair+0xb0/0x6d0 [ 251.077279] sched_fork+0x443/0xba0 [ 251.077283] copy_process+0x2585/0x8770 [ 251.077288] _do_fork+0x1cb/0x11c0 [ 251.077292] kernel_thread+0x34/0x40 [ 251.077296] rest_init+0x28/0x372 [ 251.077301] arch_call_rest_init+0xe/0x1b [ 251.077305] start_kernel+0x9f0/0xa2b [ 251.077310] x86_64_start_reservations+0x2e/0x30 [ 251.077315] x86_64_start_kernel+0x76/0x79 [ 251.077320] secondary_startup_64+0xa4/0xb0 [ 251.077332] [ 251.077335] -> #1 (&p->pi_lock){-.-.}: [ 251.077351] _raw_spin_lock_irqsave+0x99/0xd0 [ 251.077355] try_to_wake_up+0xd2/0x12e0 [ 251.077360] wake_up_process+0x10/0x20 [ 251.077364] __up.isra.1+0x1c0/0x2a0 [ 251.077368] up+0x13c/0x1c0 [ 251.077373] __up_console_sem+0xbe/0x1b0 [ 251.077377] console_unlock+0x80c/0x1190 [ 251.077382] vprintk_emit+0x391/0x990 [ 251.077386] vprintk_default+0x28/0x30 [ 251.077391] vprintk_func+0x7e/0x181 [ 251.077395] printk+0xa7/0xcf [ 251.077399] do_exit.cold.18+0x57/0x16f [ 251.077404] do_group_exit+0x177/0x440 [ 251.077409] __x64_sys_exit_group+0x3e/0x50 [ 251.077413] do_syscall_64+0x1b9/0x820 [ 251.077419] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 251.077421] [ 251.077424] -> #0 ((console_sem).lock){-.-.}: [ 251.077440] lock_acquire+0x1ed/0x520 [ 251.077445] _raw_spin_lock_irqsave+0x99/0xd0 [ 251.077449] down_trylock+0x13/0x70 [ 251.077455] __down_trylock_console_sem+0xae/0x1f0 [ 251.077459] console_trylock+0x15/0xa0 [ 251.077464] vprintk_emit+0x372/0x990 [ 251.077469] vprintk_default+0x28/0x30 [ 251.077473] vprintk_func+0x7e/0x181 [ 251.077477] printk+0xa7/0xcf [ 251.077482] __debug_object_init.cold.14+0x4a/0xdf [ 251.077487] debug_object_init+0x16/0x20 [ 251.077492] init_timer_key+0xa9/0x480 [ 251.077496] sock_init_data+0xe1/0xdc0 [ 251.077501] bpf_prog_test_run_skb+0x255/0xc40 [ 251.077506] bpf_prog_test_run+0x130/0x1a0 [ 251.077511] __x64_sys_bpf+0x3d8/0x510 [ 251.077515] do_syscall_64+0x1b9/0x820 [ 251.077521] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 251.077523] [ 251.077529] other info that might help us debug this: [ 251.077531] [ 251.077535] Chain exists of: [ 251.077537] (console_sem).lock --> &rq->lock --> &obj_hash[i].lock [ 251.077557] [ 251.077562] Possible unsafe locking scenario: [ 251.077565] [ 251.077569] CPU0 CPU1 [ 251.077574] ---- ---- [ 251.077577] lock(&obj_hash[i].lock); [ 251.077588] lock(&rq->lock); [ 251.077598] lock(&obj_hash[i].lock); [ 251.077607] lock((console_sem).lock); [ 251.077616] [ 251.077620] *** DEADLOCK *** [ 251.077622] [ 251.077627] 1 lock held by syz-executor0/7104: [ 251.077630] #0: 00000000a099a114 (&obj_hash[i].lock){-.-.}, at: __debug_object_init+0x127/0x1290 [ 251.077649] [ 251.077653] stack backtrace: [ 251.077661] CPU: 1 PID: 7104 Comm: syz-executor0 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 251.077669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 251.077673] Call Trace: [ 251.077677] dump_stack+0x244/0x39d [ 251.077682] ? dump_stack_print_info.cold.1+0x20/0x20 [ 251.077687] ? vprintk_func+0x85/0x181 [ 251.077693] print_circular_bug.isra.35.cold.54+0x1bd/0x27d [ 251.077697] ? save_trace+0xe0/0x290 [ 251.077702] __lock_acquire+0x3399/0x4c20 [ 251.077706] ? mark_held_locks+0x130/0x130 [ 251.077710] ? put_dec+0xf0/0xf0 [ 251.077715] ? mark_held_locks+0x130/0x130 [ 251.077720] ? pointer_string+0x14e/0x1b0 [ 251.077724] ? number+0xca0/0xca0 [ 251.077729] ? update_load_avg+0x2470/0x2470 [ 251.077733] ? print_usage_bug+0xc0/0xc0 [ 251.077738] ? ptr_to_id+0xd0/0x1d0 [ 251.077742] ? dentry_name+0x8f0/0x8f0 [ 251.077747] ? pick_next_task_fair+0xa35/0x1c90 [ 251.077752] ? zap_class+0x640/0x640 [ 251.077757] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 251.077762] lock_acquire+0x1ed/0x520 [ 251.077766] ? down_trylock+0x13/0x70 [ 251.077771] ? lock_release+0xa10/0xa10 [ 251.077775] ? trace_hardirqs_off+0xb8/0x310 [ 251.077780] ? vprintk_emit+0x1de/0x990 [ 251.077785] ? trace_hardirqs_on+0x310/0x310 [ 251.077790] ? trace_hardirqs_off+0xb8/0x310 [ 251.077794] ? log_store+0x344/0x4c0 [ 251.077799] ? vprintk_emit+0x372/0x990 [ 251.077803] _raw_spin_lock_irqsave+0x99/0xd0 [ 251.077808] ? down_trylock+0x13/0x70 [ 251.077812] down_trylock+0x13/0x70 [ 251.077817] __down_trylock_console_sem+0xae/0x1f0 [ 251.077822] console_trylock+0x15/0xa0 [ 251.077826] vprintk_emit+0x372/0x990 [ 251.077831] ? wake_up_klogd+0x180/0x180 [ 251.077835] ? zap_class+0x640/0x640 [ 251.077840] ? __switch_to_asm+0x34/0x70 [ 251.077844] ? __switch_to_asm+0x40/0x70 [ 251.077849] ? print_usage_bug+0xc0/0xc0 [ 251.077868] ? __switch_to_asm+0x40/0x70 [ 251.077873] ? find_held_lock+0x36/0x1c0 [ 251.077877] vprintk_default+0x28/0x30 [ 251.077882] vprintk_func+0x7e/0x181 [ 251.077886] printk+0xa7/0xcf [ 251.077891] ? kmsg_dump_rewind_nolock+0xe4/0xe4 [ 251.077896] __debug_object_init.cold.14+0x4a/0xdf [ 251.077901] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 251.077906] ? debug_object_free+0x690/0x690 [ 251.077911] ? unwind_get_return_address+0x61/0xa0 [ 251.077916] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 251.077921] ? depot_save_stack+0x292/0x470 [ 251.077925] ? save_stack+0xa9/0xd0 [ 251.077930] ? save_stack+0x43/0xd0 [ 251.077934] ? kasan_kmalloc+0xc7/0xe0 [ 251.077939] ? bpf_test_init.isra.10+0x98/0x100 [ 251.077944] ? zap_class+0x640/0x640 [ 251.077948] ? do_syscall_64+0x1b9/0x820 [ 251.077954] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 251.077959] ? find_held_lock+0x36/0x1c0 [ 251.077963] debug_object_init+0x16/0x20 [ 251.077968] init_timer_key+0xa9/0x480 [ 251.077973] ? init_timer_on_stack_key+0xe0/0xe0 [ 251.077977] ? __might_fault+0x12b/0x1e0 [ 251.077982] ? __lockdep_init_map+0x105/0x590 [ 251.077987] ? __lockdep_init_map+0x105/0x590 [ 251.077992] ? lockdep_init_map+0x9/0x10 [ 251.077996] sock_init_data+0xe1/0xdc0 [ 251.078001] ? sk_stop_timer+0x50/0x50 [ 251.078006] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 251.078011] ? _copy_from_user+0xdf/0x150 [ 251.078017] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 251.078022] ? bpf_test_init.isra.10+0x70/0x100 [ 251.078027] bpf_prog_test_run_skb+0x255/0xc40 [ 251.078031] ? __lock_acquire+0x62f/0x4c20 [ 251.078037] ? bpf_test_finish.isra.9+0x1f0/0x1f0 [ 251.078041] ? __lock_acquire+0x62f/0x4c20 [ 251.078045] ? fput+0x130/0x1a0 [ 251.078050] ? __bpf_prog_get+0x9b/0x290 [ 251.078055] ? bpf_test_finish.isra.9+0x1f0/0x1f0 [ 251.078060] bpf_prog_test_run+0x130/0x1a0 [ 251.078064] __x64_sys_bpf+0x3d8/0x510 [ 251.078069] ? bpf_prog_get+0x20/0x20 [ 251.078073] do_syscall_64+0x1b9/0x820 [ 251.078079] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 251.078084] ? syscall_return_slowpath+0x5e0/0x5e0 [ 251.078089] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 251.078094] ? trace_hardirqs_on_caller+0x310/0x310 [ 251.078100] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 251.078105] ? prepare_exit_to_usermode+0x291/0x3b0 [ 251.078110] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 251.078115] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 251.078119] RIP: 0033:0x457569 [ 251.078135] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 251.078140] RSP: 002b:00007f107f4d3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 251.078152] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 251.078158] RDX: 0000000000000028 RSI: 0000000020000100 RDI: 000000000000000a [ 251.078165] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 251.078172] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f107f4d46d4 [ 251.078179] R13: 00000000004bd892 R14: 00000000004cc208 R15: 00000000ffffffff [ 252.205019] Shutting down cpus with NMI [ 253.114715] Kernel Offset: disabled [ 253.118347] Rebooting in 86400 seconds..