[ 36.606165] audit: type=1800 audit(1576903149.354:28): pid=6908 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="startpar" name="ssh" dev="sda1" ino=2417 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 37.084835] audit: type=1800 audit(1576903149.834:29): pid=6908 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 37.106755] audit: type=1800 audit(1576903149.854:30): pid=6908 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 46.307875] IPVS: Creating netns size=2712 id=1 [ 46.312768] IPVS: ftp: loaded support on port[0] = 21 Warning: Permanently added '10.128.0.106' (ECDSA) to the list of known hosts. 2019/12/21 04:39:26 parsed 1 programs 2019/12/21 04:39:26 executed programs: 0 [ 54.043087] IPv6: ADDRCONF(NETDEV_CHANGE): nr0: link becomes ready [ 54.051476] IPv6: ADDRCONF(NETDEV_CHANGE): nr2: link becomes ready [ 54.059553] IPv6: ADDRCONF(NETDEV_CHANGE): nr5: link becomes ready [ 54.067375] IPv6: ADDRCONF(NETDEV_CHANGE): nr4: link becomes ready [ 54.076791] IPv6: ADDRCONF(NETDEV_CHANGE): nr1: link becomes ready [ 54.084813] IPv6: ADDRCONF(NETDEV_CHANGE): nr3: link becomes ready [ 54.103665] IPVS: Creating netns size=2712 id=2 [ 54.108508] IPVS: ftp: loaded support on port[0] = 21 [ 54.180951] IPVS: Creating netns size=2712 id=3 [ 54.186249] IPVS: ftp: loaded support on port[0] = 21 [ 54.335822] chnl_net:caif_netlink_parms(): no params data found [ 54.346016] IPVS: Creating netns size=2712 id=4 [ 54.350854] IPVS: ftp: loaded support on port[0] = 21 [ 54.477374] IPVS: Creating netns size=2712 id=5 [ 54.482222] IPVS: ftp: loaded support on port[0] = 21 [ 54.556478] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.562994] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.572169] device bridge_slave_0 entered promiscuous mode [ 54.643387] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.650065] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.659080] device bridge_slave_1 entered promiscuous mode [ 54.757787] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 54.783703] chnl_net:caif_netlink_parms(): no params data found [ 54.800620] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 54.892031] IPVS: Creating netns size=2712 id=6 [ 54.904981] IPVS: ftp: loaded support on port[0] = 21 [ 55.038674] chnl_net:caif_netlink_parms(): no params data found [ 55.067246] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 55.148361] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 55.239759] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 55.247540] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.253945] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.263217] device bridge_slave_0 entered promiscuous mode [ 55.304493] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 55.311937] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.318561] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.327782] device bridge_slave_1 entered promiscuous mode [ 55.342834] chnl_net:caif_netlink_parms(): no params data found [ 55.418896] IPVS: Creating netns size=2712 id=7 [ 55.423733] IPVS: ftp: loaded support on port[0] = 21 [ 55.447823] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.454286] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.463722] device bridge_slave_0 entered promiscuous mode [ 55.519464] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.526119] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.535544] device bridge_slave_1 entered promiscuous mode [ 55.544488] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 55.586352] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 55.623184] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 55.809291] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 55.869408] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 55.877063] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.883515] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.892733] device bridge_slave_0 entered promiscuous mode [ 55.910415] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 55.939039] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 55.966764] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.973167] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.982477] device bridge_slave_1 entered promiscuous mode [ 56.101585] chnl_net:caif_netlink_parms(): no params data found [ 56.153940] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 56.164401] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 56.173504] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 56.188299] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 56.202882] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 56.211445] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 56.306318] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 56.447647] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.454138] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.463989] device bridge_slave_0 entered promiscuous mode [ 56.472041] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 56.496632] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.503027] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.513950] device bridge_slave_1 entered promiscuous mode [ 56.522705] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 56.536096] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 56.545512] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 56.687663] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 56.723040] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 56.768355] 8021q: adding VLAN 0 to HW filter on device bond0 [ 56.779179] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 56.829696] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 56.839883] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 56.856293] chnl_net:caif_netlink_parms(): no params data found [ 56.888895] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 56.910770] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 56.931104] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 56.948869] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 57.130758] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 57.165090] 8021q: adding VLAN 0 to HW filter on device bond0 [ 57.171964] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.179120] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.188995] device bridge_slave_0 entered promiscuous mode [ 57.197442] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 57.204575] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 57.213539] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.221611] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.228023] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.236001] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 57.250254] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.260292] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.275017] device bridge_slave_1 entered promiscuous mode [ 57.293143] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 57.300507] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 57.308510] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.314895] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.324470] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 57.412626] 8021q: adding VLAN 0 to HW filter on device bond0 [ 57.420286] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 57.431940] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 57.445542] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 57.459373] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 57.509586] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 57.521266] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 57.561577] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 57.575501] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.584222] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.590643] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.599977] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 57.632823] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 57.646412] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 57.654607] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.661039] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.670038] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 57.688492] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 57.716658] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 57.782716] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 57.851062] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 57.864136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.872857] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.879295] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.899987] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 57.908908] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 57.917727] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 57.944536] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 57.968006] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 57.976019] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.982484] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.990035] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 58.008630] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 58.030007] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 58.070434] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.099364] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 58.118696] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 58.138385] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 58.159517] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 58.189307] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 58.199322] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 58.317392] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.345909] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 58.357566] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'. [ 58.373666] sch_fq: defrate 0 ignored. [ 58.418570] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 58.437327] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'. [ 58.446895] sch_fq: defrate 0 ignored. [ 58.473359] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 58.493690] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.500137] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.526599] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'. [ 58.542146] sch_fq: defrate 0 ignored. [ 58.550932] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 58.605239] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 58.614028] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.620440] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.645876] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 58.661094] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'. [ 58.671108] sch_fq: defrate 0 ignored. [ 58.706840] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.726517] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'. [ 58.736805] sch_fq: defrate 0 ignored. [ 58.749710] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 58.767157] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 58.796903] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 58.805147] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.811571] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.819295] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 58.827599] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.833945] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.857927] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'. [ 58.878157] sch_fq: defrate 0 ignored. [ 58.887635] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 58.895899] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 58.911666] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 58.931339] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready 2019/12/21 04:39:31 executed programs: 12 [ 58.988852] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'. [ 58.997952] sch_fq: defrate 0 ignored. [ 59.004219] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'. [ 59.016883] sch_fq: defrate 0 ignored. [ 59.028093] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 59.085066] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 59.107304] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'. [ 59.116778] sch_fq: defrate 0 ignored. [ 59.154487] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 59.167494] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 59.175578] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.181950] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.189030] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 59.196917] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.203277] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.221284] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 59.229996] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 59.253614] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 59.280547] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 59.299750] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 59.321214] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 59.411975] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. [ 59.422643] sch_fq: defrate 0 ignored. [ 165.374629] INFO: rcu_preempt self-detected stall on CPU [ 165.380438] 0-...: (1 GPs behind) idle=3d3/140000000000002/0 softirq=10460/10461 fqs=33 [ 165.384637] INFO: rcu_sched detected stalls on CPUs/tasks: [ 165.384642] 0-...: (10500 ticks this GP) idle=3d3/140000000000002/0 softirq=10461/10461 fqs=34 [ 165.384646] (detected by 1, t=10502 jiffies, g=-9, c=-10, q=5) [ 165.384648] Task dump for CPU 0: [ 165.384668] syz-executor.5 R running task 24224 7157 7153 0x00000008 [ 165.384677] ffff8800b408fca0 ffffffff81a3c225 ffff8801291f3a24 ffff8801290b2e20 [ 165.384682] ffff8801291f3a00 ffff8800b408fec0 0000000000000004 ffff8800b408fe30 [ 165.384685] ffffffff81a3e32f ffff8800b408fcf8 ffffffff814351b8 0000000000000000 [ 165.384686] Call Trace: [ 165.384696] [] ? free_rb_tree_fname+0x15/0xc0 [ 165.384700] [] ext4_readdir+0x102f/0x2710 [ 165.384706] [] ? mark_held_locks+0xc8/0x120 [ 165.384711] [] ? mutex_lock_killable_nested+0x837/0xd20 [ 165.384715] [] ? trace_hardirqs_on_caller+0x44c/0x5e0 [ 165.384718] [] ? __ext4_check_dir_entry+0x5a0/0x5a0 [ 165.384722] [] ? debug_lockdep_rcu_enabled+0x77/0x90 [ 165.384725] [] ? mutex_trylock+0x570/0x570 [ 165.384730] [] ? common_file_perm+0x17e/0x410 [ 165.384734] [] iterate_dir+0x1b6/0x420 [ 165.384737] [] ? debug_lockdep_rcu_enabled+0x77/0x90 [ 165.384740] [] SyS_getdents+0xf3/0x1a0 [ 165.384743] [] ? SyS_old_readdir+0xf0/0xf0 [ 165.384746] [] ? iterate_dir+0x420/0x420 [ 165.384750] [] ? trace_hardirqs_on_thunk+0x1b/0x1d [ 165.384753] [] entry_SYSCALL_64_fastpath+0x23/0xc1 [ 165.384760] rcu_sched kthread starved for 10468 jiffies! g18446744073709551607 c18446744073709551606 f0x0 RCU_GP_WAIT_FQS(3) ->state=0x1 [ 165.384772] rcu_sched S ffff88012b0afac8 29392 8 2 0x00000000 [ 165.384777] ffff88012b0afac8 ffff88012c120400 ffff88012c120d90 ffff88012c120d68 [ 165.384781] ffff88012c120418 ffff88012b09a1c8 1ffff10000000000 ffff88012b10a400 [ 165.384784] ffff88012b09a1c0 ffff88012b0a8000 ffffed0025615001 ffff88012b0a8008 [ 165.384785] Call Trace: [ 165.384789] [] schedule+0x9a/0x1c0 [ 165.384792] [] schedule_timeout+0x2e5/0x670 [ 165.384795] [] ? usleep_range+0x130/0x130 [ 165.384798] [] ? prepare_to_swait+0x11e/0x220 [ 165.384801] [] ? swake_up_all+0x370/0x370 [ 165.384804] [] ? init_timer_on_stack_key+0xe0/0xe0 [ 165.384808] [] ? prepare_to_swait_event+0x6c/0xf0 [ 165.384811] [] rcu_gp_kthread+0xee2/0x1f70 [ 165.384816] [] ? pick_next_task_fair+0xa8e/0x1400 [ 165.384820] [] ? force_qs_rnp+0x400/0x400 [ 165.384824] [] ? trace_hardirqs_on_caller+0x44c/0x5e0 [ 165.384827] [] ? _raw_spin_unlock_irq+0x60/0x80 [ 165.384830] [] ? __schedule+0x1206/0x1c00 [ 165.384833] [] ? force_qs_rnp+0x400/0x400 [ 165.384837] [] kthread+0x209/0x2d0 [ 165.384841] [] ? kthread_create_on_node+0x390/0x390 [ 165.384845] [] ret_from_fork+0x22/0x50 [ 165.384849] [] ? kthread_create_on_node+0x390/0x390 [ 165.394642] INFO: rcu_preempt detected stalls on CPUs/tasks: [ 165.394648] 0-...: (1 GPs behind) idle=3d3/140000000000002/0 softirq=10460/10461 fqs=33 [ 165.394652] (detected by 1, t=10502 jiffies, g=1922, c=1921, q=244) [ 165.394654] Task dump for CPU 0: [ 165.394665] syz-executor.5 R running task 24224 7157 7153 0x00000008 [ 165.394670] ffff8800b408fca0 ffffffff81a3c225 ffff8801291f3a24 ffff8801290b2e20 [ 165.394674] ffff8801291f3a00 ffff8800b408fec0 0000000000000004 ffff8800b408fe30 [ 165.394678] ffffffff81a3e32f ffff8800b408fcf8 ffffffff814351b8 0000000000000000 [ 165.394679] Call Trace: [ 165.394685] [] ? free_rb_tree_fname+0x15/0xc0 [ 165.394688] [] ext4_readdir+0x102f/0x2710 [ 165.394692] [] ? mark_held_locks+0xc8/0x120 [ 165.394696] [] ? mutex_lock_killable_nested+0x837/0xd20 [ 165.394700] [] ? trace_hardirqs_on_caller+0x44c/0x5e0 [ 165.394704] [] ? __ext4_check_dir_entry+0x5a0/0x5a0 [ 165.394708] [] ? debug_lockdep_rcu_enabled+0x77/0x90 [ 165.394710] [] ? mutex_trylock+0x570/0x570 [ 165.394716] [] ? common_file_perm+0x17e/0x410 [ 165.394720] [] iterate_dir+0x1b6/0x420 [ 165.394723] [] ? debug_lockdep_rcu_enabled+0x77/0x90 [ 165.394726] [] SyS_getdents+0xf3/0x1a0 [ 165.394729] [] ? SyS_old_readdir+0xf0/0xf0 [ 165.394731] [] ? iterate_dir+0x420/0x420 [ 165.394736] [] ? trace_hardirqs_on_thunk+0x1b/0x1d [ 165.394739] [] entry_SYSCALL_64_fastpath+0x23/0xc1 [ 165.394745] rcu_preempt kthread starved for 10469 jiffies! g1922 c1921 f0x0 RCU_GP_WAIT_FQS(3) ->state=0x1 [ 165.394757] rcu_preempt S ffff88012b0a7ac8 28976 7 2 0x00000000 [ 165.394762] ffff88012b0a7ac8 ffff88012c120400 ffff88012c120d90 ffff88012c120d68 [ 165.394766] ffff88012c120418 ffff88012b098188 1ffff10000000000 ffff88012b09a1c0 [ 165.394770] ffff88012b098180 ffff88012b0a0000 ffffed0025614001 ffff88012b0a0008 [ 165.394771] Call Trace: [ 165.394774] [] schedule+0x9a/0x1c0 [ 165.394777] [] schedule_timeout+0x2e5/0x670 [ 165.394780] [] ? usleep_range+0x130/0x130 [ 165.394783] [] ? prepare_to_swait+0x11e/0x220 [ 165.394786] [] ? swake_up_all+0x370/0x370 [ 165.394789] [] ? init_timer_on_stack_key+0xe0/0xe0 [ 165.394793] [] ? prepare_to_swait_event+0x6c/0xf0 [ 165.394796] [] rcu_gp_kthread+0xee2/0x1f70 [ 165.394801] [] ? pick_next_task_fair+0xa8e/0x1400 [ 165.394805] [] ? force_qs_rnp+0x400/0x400 [ 165.394808] [] ? trace_hardirqs_on_caller+0x44c/0x5e0 [ 165.394811] [] ? _raw_spin_unlock_irq+0x60/0x80 [ 165.394814] [] ? __schedule+0x1206/0x1c00 [ 165.394818] [] ? force_qs_rnp+0x400/0x400 [ 165.394822] [] kthread+0x209/0x2d0 [ 165.394825] [] ? kthread_create_on_node+0x390/0x390 [ 165.394830] [] ret_from_fork+0x22/0x50 [ 165.394833] [] ? kthread_create_on_node+0x390/0x390 [ 166.004635] (t=10563 jiffies g=1922 c=1921 q=244) [ 166.009768] rcu_preempt kthread starved for 10530 jiffies! g1922 c1921 f0x2 RCU_GP_WAIT_FQS(3) ->state=0x0 [ 166.019539] rcu_preempt R running task 28976 7 2 0x00000000 [ 166.026975] ffff88012b0a7ac8 ffff88012c120400 ffff88012c120d90 ffff88012c120d68 [ 166.035009] ffff88012c120418 ffff88012b098188 1ffff10000000000 ffff88012b09a1c0 [ 166.043036] ffff88012b098180 ffff88012b0a0000 ffffed0025614001 ffff88012b0a0008 [ 166.051516] Call Trace: [ 166.054088] [] schedule+0x9a/0x1c0 [ 166.059261] [] schedule_timeout+0x2e5/0x670 [ 166.065214] [] ? usleep_range+0x130/0x130 [ 166.070994] [] ? prepare_to_swait+0x11e/0x220 [ 166.077118] [] ? swake_up_all+0x370/0x370 [ 166.082894] [] ? init_timer_on_stack_key+0xe0/0xe0 [ 166.089474] [] ? prepare_to_swait_event+0x6c/0xf0 [ 166.095952] [] rcu_gp_kthread+0xee2/0x1f70 [ 166.101820] [] ? pick_next_task_fair+0xa8e/0x1400 [ 166.108311] [] ? force_qs_rnp+0x400/0x400 [ 166.114106] [] ? trace_hardirqs_on_caller+0x44c/0x5e0 [ 166.120930] [] ? _raw_spin_unlock_irq+0x60/0x80 [ 166.127232] [] ? __schedule+0x1206/0x1c00 [ 166.133018] [] ? force_qs_rnp+0x400/0x400 [ 166.138795] [] kthread+0x209/0x2d0 [ 166.143966] [] ? kthread_create_on_node+0x390/0x390 [ 166.150617] [] ret_from_fork+0x22/0x50 [ 166.156135] [] ? kthread_create_on_node+0x390/0x390 [ 166.162780] Task dump for CPU 0: [ 166.166127] syz-executor.5 R running task 24224 7157 7153 0x00000008 [ 166.173568] 0000000000001bf1 ffff88012c006700 ffffffff813d414c ffffffff81615a00 [ 166.181602] 0000000041b58ab3 ffffffff868f20bf ffffffff813d3ec0 ffff88012c0066c0 [ 166.189648] ffffffff81483dd4 0000000000000000 ffffffff00000000 ffffffff813d3ec0 [ 166.197696] Call Trace: [ 166.200262] [] sched_show_task+0x28c/0x400 [ 166.206870] [] ? power_down+0xbf/0xbf [ 166.212300] [] ? SyS_sched_rr_get_interval+0x2b0/0x2b0 [ 166.219223] [] ? rcu_dump_cpu_stacks+0x84/0x290 [ 166.225609] [] ? SyS_sched_rr_get_interval+0x2b0/0x2b0 [ 166.232516] [] dump_cpu_task+0x71/0x90 [ 166.238035] [] rcu_dump_cpu_stacks+0x191/0x290 [ 166.244248] [] ? rcu_check_gp_kthread_starvation+0x24d/0x2d0 [ 166.251674] [] rcu_check_callbacks+0xde1/0x2010 [ 166.257976] [] ? trace_hardirqs_off+0xd/0x10 [ 166.264228] [] ? tick_sched_do_timer+0x80/0x80 [ 166.270451] [] ? tick_sched_do_timer+0x80/0x80 [ 166.276681] [] update_process_times+0x34/0x60 [ 166.282817] [] tick_sched_handle.isra.19+0x44/0xe0 [ 166.289385] [] tick_sched_timer+0x64/0xd0 [ 166.295168] [] __hrtimer_run_queues+0x2d4/0xbf0 [ 166.301598] [] ? enqueue_hrtimer+0x380/0x380 [ 166.307638] [] ? ktime_get_update_offsets_now+0x139/0x350 [ 166.314806] [] ? hrtimer_interrupt+0x139/0x470 [ 166.321107] [] hrtimer_interrupt+0x19d/0x470 [ 166.327159] [] local_apic_timer_interrupt+0x6e/0xf0 [ 166.333922] [] smp_apic_timer_interrupt+0x76/0xa0 [ 166.340401] [] apic_timer_interrupt+0x8c/0xa0 [ 166.346546] [] ? fq_dequeue+0x53f/0x1520 [ 166.352245] [] ? fq_dequeue+0x19/0x1520 [ 166.357863] [] ? save_stack_trace+0x26/0x50 [ 166.363821] [] ? save_stack+0x46/0xd0 [ 166.369265] [] ? kasan_slab_free+0x9b/0xb0 [ 166.375142] [] ? kfree+0xe2/0x460 [ 166.380230] [] __qdisc_run+0x15e/0x760 [ 166.385765] [] __dev_queue_xmit+0xa0e/0x1f40 [ 166.391806] [] ? __dev_queue_xmit+0x1b9/0x1f40 [ 166.398029] [] ? __kernel_text_address+0x61/0xa0 [ 166.404556] [] ? print_context_stack+0x7b/0xc0 [ 166.410865] [] ? dump_trace+0x11d/0x320 [ 166.416919] [] ? netdev_pick_tx+0x2a0/0x2a0 [ 166.423228] [] ? SyS_getdents+0xf3/0x1a0 [ 166.429018] [] dev_queue_xmit+0xb/0x10 [ 166.435147] [] br_dev_queue_push_xmit+0x16b/0x540 [ 166.441802] [] ? nf_iterate+0x220/0x220 [ 166.447427] [] br_nf_dev_queue_xmit+0x1da/0x1780 [ 166.453911] [] br_nf_post_routing+0x981/0xe30 [ 166.460445] [] ? ebt_register_table+0xaaa/0xac0 [ 166.466753] [] ? br_nf_dev_queue_xmit+0x1780/0x1780 [ 166.474146] [] ? br_nf_pre_routing_finish+0x12d0/0x12d0 [ 166.481413] [] nf_iterate+0x13e/0x220 [ 166.486855] [] ? nf_iterate+0x220/0x220 [ 166.492469] [] nf_hook_slow+0x166/0x290 [ 166.498092] [] ? nf_iterate+0x220/0x220 [ 166.503727] [] ? nf_iterate+0x220/0x220 [ 166.509340] [] ? nf_hook_slow+0x17f/0x290 [ 166.515132] [] br_forward_finish+0x110/0x180 [ 166.521192] [] ? nf_hook_slow+0x19c/0x290 [ 166.526972] [] ? br_dev_queue_push_xmit+0x540/0x540 [ 166.533621] [] ? deliver_clone+0xa0/0xa0 [ 166.539312] [] ? nf_iterate+0x13e/0x220 [ 166.544931] [] br_nf_forward_finish+0x1ab/0x960 [ 166.551231] [] ? br_nf_local_in+0x170/0x170 [ 166.557204] [] ? br_dev_queue_push_xmit+0x540/0x540 [ 166.563851] [] ? rcu_read_lock_held+0xa4/0xc0 [ 166.569978] [] br_nf_forward_ip+0x95c/0x1290 [ 166.576016] [] ? br_nf_pre_routing_finish_bridge+0x950/0x950 [ 166.583445] [] ? __netif_receive_skb_core+0x2d8a/0x2d90 [ 166.590451] [] ? br_nf_local_in+0x170/0x170 [ 166.596402] [] ? ebt_out_hook+0x5d/0x90 [ 166.602006] [] nf_iterate+0x13e/0x220 [ 166.607450] [] ? nf_iterate+0x220/0x220 [ 166.613056] [] nf_hook_slow+0x166/0x290 [ 166.618662] [] ? nf_iterate+0x220/0x220 [ 166.624281] [] ? nf_iterate+0x220/0x220 [ 166.629903] [] __br_forward+0x34d/0x4b0 [ 166.635522] [] ? br_multicast_flood+0x4f0/0x4f0 [ 166.641830] [] ? br_dev_queue_push_xmit+0x540/0x540 [ 166.648479] [] ? br_multicast_flood+0x4f0/0x4f0 [ 166.654783] [] deliver_clone+0x4e/0xa0 [ 166.660308] [] br_flood+0x28c/0x350 [ 166.665569] [] ? br_multicast_flood+0x4f0/0x4f0 [ 166.671871] [] br_flood_forward+0x14/0x20 [ 166.677648] [] br_handle_frame_finish+0x79b/0x1e60 [ 166.684209] [] ? br_handle_local_finish+0x300/0x300 [ 166.690856] [] ? nf_hook_slow+0x19c/0x290 [ 166.696662] [] ? netlink_setsockopt+0x4b0/0x7a0 [ 166.702964] [] ? nf_iterate+0x220/0x220 [ 166.708569] [] br_nf_pre_routing_finish_ipv6+0x5ec/0xd30 [ 166.715912] [] ? br_nf_pre_routing+0xf20/0xf20 [ 166.722122] [] ? br_handle_local_finish+0x300/0x300 [ 166.728768] [] ? setup_pre_routing+0x105/0x3d0 [ 166.734981] [] br_nf_pre_routing_ipv6+0x31b/0x4c0 [ 166.741456] [] ? br_validate_ipv6+0xf00/0xf00 [ 166.747583] [] ? br_nf_pre_routing+0xf20/0xf20 [ 166.753798] [] br_nf_pre_routing+0x9e8/0xf20 [ 166.759849] [] ? ebt_register_table+0xac0/0xac0 [ 166.766150] [] ? setup_pre_routing+0x3d0/0x3d0 [ 166.772366] [] ? ebt_nat_out+0x5d/0x90 [ 166.777883] [] nf_iterate+0x13e/0x220 [ 166.783314] [] ? nf_iterate+0x220/0x220 [ 166.788920] [] nf_hook_slow+0x166/0x290 [ 166.794522] [] ? nf_iterate+0x220/0x220 [ 166.800143] [] ? nf_iterate+0x220/0x220 [ 166.805753] [] br_handle_frame+0x63a/0xf40 [ 166.811620] [] ? br_handle_frame_finish+0x1e60/0x1e60 [ 166.818443] [] ? __lock_acquire+0xca1/0x5560 [ 166.824487] [] ? br_handle_local_finish+0x300/0x300 [ 166.831139] [] ? br_handle_frame_finish+0x1e60/0x1e60 [ 166.837967] [] __netif_receive_skb_core+0x5bf/0x2d90 [ 166.844704] [] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 166.851712] [] ? net_tx_action+0xbd0/0xbd0 [ 166.857594] [] ? _raw_spin_unlock_irqrestore+0xa6/0xd0 [ 166.864508] [] ? debug_lockdep_rcu_enabled+0x77/0x90 [ 166.871257] [] ? mark_held_locks+0xc8/0x120 [ 166.877211] [] __netif_receive_skb+0x1f/0x150 [ 166.883337] [] process_backlog+0x26b/0x790 [ 166.889241] [] ? process_backlog+0x1f3/0x790 [ 166.895294] [] ? mark_held_locks+0xc8/0x120 [ 166.901254] [] net_rx_action+0x721/0xe70 [ 166.906951] [] ? sk_busy_loop+0xac0/0xac0 [ 166.912734] [] __do_softirq+0x2cc/0xa06 [ 166.918344] [] ? sched_clock+0x31/0x40 [ 166.923873] [] irq_exit+0x157/0x190 [ 166.929148] [] smp_apic_timer_interrupt+0x7b/0xa0 [ 166.935623] [] apic_timer_interrupt+0x8c/0xa0 [ 166.941759] [] ? save_stack_trace+0x26/0x50 [ 166.948464] [] ? preempt_count_add+0x47/0x160 [ 166.954590] [] is_module_text_address+0x12/0x50 [ 166.960890] [] __kernel_text_address+0x61/0xa0 [ 166.967115] [] print_context_stack+0x7b/0xc0 [ 166.973200] [] dump_trace+0x11d/0x320 [ 166.978658] [] save_stack_trace+0x26/0x50 [ 166.984440] [] save_stack+0x46/0xd0 [ 166.989705] [] ? save_stack_trace+0x26/0x50 [ 166.995660] [] ? save_stack+0x46/0xd0 [ 167.001092] [] ? kasan_kmalloc+0xc9/0xe0 [ 167.006787] [] ? __kmalloc+0x169/0x6d0 [ 167.012306] [] ? ext4_htree_store_dirent+0x89/0x5f0 [ 167.018959] [] ? htree_dirblock_to_tree+0x402/0x540 [ 167.025613] [] ? ext4_readdir+0x102f/0x2710 [ 167.031567] [] ? iterate_dir+0x1b6/0x420 [ 167.037259] [] ? SyS_getdents+0xf3/0x1a0 [ 167.042952] [] ? entry_SYSCALL_64_fastpath+0x23/0xc1 [ 167.049688] [] ? ___might_sleep+0x331/0x440 [ 167.055661] [] ? __might_sleep+0x90/0x1a0 [ 167.061443] [] ? __getblk_gfp+0x34/0x70 [ 167.067053] [] ? ext4_getblk+0x128/0x390 [ 167.072750] [] ? debug_lockdep_rcu_enabled+0x77/0x90 [ 167.079482] [] ? mark_held_locks+0xc8/0x120 [ 167.085434] [] ? kasan_unpoison_shadow+0x36/0x50 [ 167.091819] [] ? kasan_unpoison_shadow+0x36/0x50 [ 167.098204] [] kasan_kmalloc+0xc9/0xe0 [ 167.103730] [] __kmalloc+0x169/0x6d0 [ 167.109077] [] ? str2hashbuf_unsigned+0x1f0/0x1f0 [ 167.115551] [] ? ext4_htree_store_dirent+0x89/0x5f0 [ 167.122195] [] ext4_htree_store_dirent+0x89/0x5f0 [ 167.128683] [] htree_dirblock_to_tree+0x402/0x540 [ 167.135243] [] ? save_stack_trace+0x26/0x50 [ 167.141201] [] ? dx_probe+0x1570/0x1570 [ 167.146818] [] ? debug_lockdep_rcu_enabled+0x77/0x90 [ 167.153564] [] ? is_module_text_address+0x2a/0x50 [ 167.160049] [] ext4_htree_fill_tree+0x1f6/0x870 [ 167.166356] [] ? debug_lockdep_rcu_enabled+0x77/0x90 [ 167.173090] [] ? __lock_acquire+0x1a38/0x5560 [ 167.179214] [] ? do_raw_spin_unlock+0x163/0x250 [ 167.185516] [] ? do_split+0x1fc0/0x1fc0 [ 167.191126] [] ? _raw_spin_unlock+0x2c/0x50 [ 167.197079] [] ? ext4_readdir+0x17af/0x2710 [ 167.203035] [] ? ext4_readdir+0x17af/0x2710 [ 167.208990] [] ? rcu_read_lock_sched_held+0x9e/0x120 [ 167.215725] [] ? kmem_cache_alloc_trace+0x3b3/0x6b0 [ 167.222370] [] ? free_rb_tree_fname+0x15/0xc0 [ 167.228497] [] ext4_readdir+0x102f/0x2710 [ 167.234278] [] ? mark_held_locks+0xc8/0x120 [ 167.240238] [] ? mutex_lock_killable_nested+0x837/0xd20 [ 167.247236] [] ? trace_hardirqs_on_caller+0x44c/0x5e0 [ 167.254058] [] ? __ext4_check_dir_entry+0x5a0/0x5a0 [ 167.260706] [] ? debug_lockdep_rcu_enabled+0x77/0x90 [ 167.267440] [] ? mutex_trylock+0x570/0x570 [ 167.273481] [] ? common_file_perm+0x17e/0x410 [ 167.279607] [] iterate_dir+0x1b6/0x420 [ 167.285126] [] ? debug_lockdep_rcu_enabled+0x77/0x90 [ 167.291861] [] SyS_getdents+0xf3/0x1a0 [ 167.297510] [] ? SyS_old_readdir+0xf0/0xf0 [ 167.303394] [] ? iterate_dir+0x420/0x420 [ 167.309104] [] ? trace_hardirqs_on_thunk+0x1b/0x1d [ 167.315705] [] entry_SYSCALL_64_fastpath+0x23/0xc1