[....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 51.246180] IPVS: Creating netns size=2720 id=1 [ 51.250924] IPVS: ftp: loaded support on port[0] = 21 [ 51.736978] audit_printk_skb: 12 callbacks suppressed [ 51.742216] audit: type=1400 audit(1561337426.496:34): avc: denied { create } for pid=6306 comm="syz-fuzzer" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_crypto_socket permissive=1 [ 51.766194] audit: type=1400 audit(1561337426.526:35): avc: denied { create } for pid=6306 comm="syz-fuzzer" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 51.790263] audit: type=1400 audit(1561337426.546:36): avc: denied { create } for pid=6306 comm="syz-fuzzer" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 Warning: Permanently added '10.128.0.30' (ECDSA) to the list of known hosts. 2019/06/24 00:50:34 parsed 1 programs 2019/06/24 00:50:34 executed programs: 0 [ 59.650075] IPv6: ADDRCONF(NETDEV_CHANGE): nr1: link becomes ready [ 59.666609] IPv6: ADDRCONF(NETDEV_CHANGE): nr3: link becomes ready [ 59.675883] IPv6: ADDRCONF(NETDEV_CHANGE): nr2: link becomes ready [ 59.684546] IPv6: ADDRCONF(NETDEV_CHANGE): nr5: link becomes ready [ 59.697972] IPVS: Creating netns size=2720 id=2 [ 59.698017] IPVS: ftp: loaded support on port[0] = 21 [ 59.717051] IPv6: ADDRCONF(NETDEV_CHANGE): nr0: link becomes ready [ 59.754764] IPVS: Creating netns size=2720 id=3 [ 59.760718] IPVS: ftp: loaded support on port[0] = 21 [ 59.813185] IPVS: Creating netns size=2720 id=4 [ 59.819313] IPVS: ftp: loaded support on port[0] = 21 [ 59.855096] IPv6: ADDRCONF(NETDEV_CHANGE): nr4: link becomes ready [ 59.870272] chnl_net:caif_netlink_parms(): no params data found [ 59.892249] IPVS: Creating netns size=2720 id=5 [ 59.897148] IPVS: ftp: loaded support on port[0] = 21 [ 59.982206] chnl_net:caif_netlink_parms(): no params data found [ 60.000792] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.007685] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.014764] device bridge_slave_0 entered promiscuous mode [ 60.030769] chnl_net:caif_netlink_parms(): no params data found [ 60.039544] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.046008] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.053154] device bridge_slave_1 entered promiscuous mode [ 60.074589] IPVS: Creating netns size=2720 id=6 [ 60.081228] IPVS: ftp: loaded support on port[0] = 21 [ 60.090030] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 60.106218] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 60.152469] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 60.159986] team0: Port device team_slave_0 added [ 60.183293] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 60.190490] team0: Port device team_slave_1 added [ 60.201094] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.207753] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.214733] device bridge_slave_0 entered promiscuous mode [ 60.224954] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 60.237068] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.243510] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.251495] device bridge_slave_1 entered promiscuous mode [ 60.259192] chnl_net:caif_netlink_parms(): no params data found [ 60.268267] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 60.275312] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.281718] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.288750] device bridge_slave_0 entered promiscuous mode [ 60.303787] IPVS: Creating netns size=2720 id=7 [ 60.310706] IPVS: ftp: loaded support on port[0] = 21 [ 60.320023] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.326459] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.333481] device bridge_slave_1 entered promiscuous mode [ 60.359655] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 60.368976] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 60.409485] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 60.425734] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 60.433685] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 60.440922] team0: Port device team_slave_0 added [ 60.453058] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 60.472964] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 60.480991] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 60.488398] team0: Port device team_slave_1 added [ 60.505268] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 60.512408] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.518922] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.526394] device bridge_slave_0 entered promiscuous mode [ 60.536267] chnl_net:caif_netlink_parms(): no params data found [ 60.549662] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 60.556829] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.563201] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.570275] device bridge_slave_1 entered promiscuous mode [ 60.580580] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 60.588071] team0: Port device team_slave_0 added [ 60.609190] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 60.617016] team0: Port device team_slave_1 added [ 60.633659] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.640170] bridge0: port 2(bridge_slave_1) entered forwarding state [ 60.647166] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.653516] bridge0: port 1(bridge_slave_0) entered forwarding state [ 60.683956] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 60.691340] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 60.704662] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 60.714150] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 60.735502] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 60.742317] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 60.757828] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 60.764809] team0: Port device team_slave_0 added [ 60.770261] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 60.777573] team0: Port device team_slave_1 added [ 60.788509] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 60.796119] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 60.813619] chnl_net:caif_netlink_parms(): no params data found [ 60.826795] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 60.846208] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.852626] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.861389] device bridge_slave_0 entered promiscuous mode [ 60.873907] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 60.881201] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.887590] bridge0: port 2(bridge_slave_1) entered forwarding state [ 60.894252] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.900609] bridge0: port 1(bridge_slave_0) entered forwarding state [ 60.909240] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.927669] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.934725] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.941387] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.951514] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.958102] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.965043] device bridge_slave_1 entered promiscuous mode [ 60.979664] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 60.990497] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 61.007281] 8021q: adding VLAN 0 to HW filter on device bond0 [ 61.014712] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 61.021828] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 61.030239] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 61.039505] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 61.081006] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 61.087564] 8021q: adding VLAN 0 to HW filter on device team0 [ 61.104263] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 61.115956] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 61.134006] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.141142] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.150256] device bridge_slave_0 entered promiscuous mode [ 61.156592] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 61.163587] team0: Port device team_slave_0 added [ 61.192889] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 61.202068] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.208449] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.215230] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 61.222981] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.229350] bridge0: port 2(bridge_slave_1) entered forwarding state [ 61.236467] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 61.243880] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 61.251530] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 61.258901] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 61.266400] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.272771] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.280347] device bridge_slave_1 entered promiscuous mode [ 61.286795] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 61.293818] team0: Port device team_slave_1 added [ 61.302705] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 61.313508] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 61.322010] 8021q: adding VLAN 0 to HW filter on device bond0 [ 61.344169] 8021q: adding VLAN 0 to HW filter on device bond0 [ 61.351860] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 61.364662] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 61.372413] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 61.381310] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 61.395933] 8021q: adding VLAN 0 to HW filter on device bond0 [ 61.409849] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 61.428058] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 61.434450] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 61.442556] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 61.451589] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 61.458187] 8021q: adding VLAN 0 to HW filter on device team0 [ 61.464472] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 61.471750] team0: Port device team_slave_0 added [ 61.477341] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 61.484353] team0: Port device team_slave_1 added [ 61.491542] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 61.498096] 8021q: adding VLAN 0 to HW filter on device team0 [ 61.504846] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 61.511495] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 61.518915] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 61.526127] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 61.533603] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 61.544703] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 61.552227] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.558583] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.565293] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 61.573020] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.579384] bridge0: port 2(bridge_slave_1) entered forwarding state [ 61.587552] audit: type=1400 audit(1561337436.346:37): avc: denied { associate } for pid=6398 comm="syz-executor.3" name="syz3" scontext=unconfined_u:object_r:unlabeled_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=filesystem permissive=1 [ 61.600861] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 61.618682] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 61.618686] 8021q: adding VLAN 0 to HW filter on device team0 [ 61.632848] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 61.633070] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.633087] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.633359] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 61.633543] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.633559] bridge0: port 2(bridge_slave_1) entered forwarding state [ 61.634228] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 61.634652] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 61.635355] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 61.636179] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 61.636477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 61.636788] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 61.636972] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.636989] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.637244] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 61.637419] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.637435] bridge0: port 2(bridge_slave_1) entered forwarding state [ 61.637995] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 61.638277] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 61.649183] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 61.649451] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 61.649697] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 61.649950] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 61.650241] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 61.650518] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 61.672086] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 61.672537] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 61.672920] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 61.684600] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 61.684911] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 61.711188] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 61.711412] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 61.720488] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 61.755050] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 61.821714] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 61.844592] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 61.852976] 8021q: adding VLAN 0 to HW filter on device bond0 [ 61.854598] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 61.858328] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 61.874382] 8021q: adding VLAN 0 to HW filter on device bond0 [ 61.877866] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 61.877871] 8021q: adding VLAN 0 to HW filter on device team0 [ 61.882407] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 61.882693] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 61.882904] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.882923] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.883208] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 61.891403] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 61.902300] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 61.902505] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.902523] bridge0: port 2(bridge_slave_1) entered forwarding state [ 61.903074] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 61.903446] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 61.906404] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 61.906408] 8021q: adding VLAN 0 to HW filter on device team0 [ 61.923639] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 61.923861] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.923878] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.924169] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 61.924353] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.924373] bridge0: port 2(bridge_slave_1) entered forwarding state [ 61.924882] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 61.925374] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 61.925972] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 61.930497] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 61.946321] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 61.946673] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 61.946953] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 61.947231] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 61.947538] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 62.029636] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 62.038627] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 162.560638] sched: RT throttling activated 2019/06/24 00:53:58 executed programs: 6 [ 285.200761] NMI watchdog: BUG: soft lockup - CPU#1 stuck for 114s! [syz-executor.5:6573] [ 285.209071] Modules linked in: [ 285.212417] irq event stamp: 15448324 [ 285.216228] hardirqs last enabled at (15448323): [ 285.220986] [] current_kernel_time64+0xc3/0x1a0 [ 285.227232] hardirqs last disabled at (15448324): [ 285.231980] [] apic_timer_interrupt+0x87/0xa0 [ 285.238404] softirqs last enabled at (15444978): [ 285.243260] [] __do_softirq+0x451/0x9d8 [ 285.248811] softirqs last disabled at (15444971): [ 285.254425] [] irq_exit+0x19b/0x1d0 [ 285.259762] CPU: 1 PID: 6573 Comm: syz-executor.5 Not tainted 4.9.0-rc3+ #1 [ 285.266847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 285.276190] task: ffff880125c14500 task.stack: ffff880126788000 [ 285.282257] RIP: 0010:[] [] __wake_up_bit+0x10/0xd0 [ 285.290802] RSP: 0018:ffff88012678f498 EFLAGS: 00000246 [ 285.296396] RAX: ffffffff86c0d540 RBX: ffffea00041e4a00 RCX: dffffc0000000000 [ 285.303654] RDX: 0000000000000000 RSI: ffffea00041e4a00 RDI: ffffffff86c0d540 [ 285.310924] RBP: ffff88012678f4a0 R08: ffff8801291cd540 R09: 0000000000000003 [ 285.318185] R10: 0000000000000000 R11: 0000000000000001 R12: ffffea00041e4a00 [ 285.326053] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff8801291cd330 [ 285.333313] FS: 00007f21a501c700(0000) GS:ffff88012c100000(0000) knlGS:0000000000000000 [ 285.341526] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 285.347573] CR2: 0000000000758080 CR3: 0000000126725000 CR4: 00000000001406e0 [ 285.354836] Stack: [ 285.356983] dffffc0000000000 ffff88012678f4c0 ffffffff8164725a ffffea00041e4a00 [ 285.365048] 0000000000000001 ffff88012678f5c8 ffffffff81ab0b41 ffff8801d73a8780 [ 285.373106] 0000000000000002 ffff8801291cd380 ffffffff86fd0d60 0000000000001c40 [ 285.381182] Call Trace: [ 285.383840] [] unlock_page+0x9a/0xd0 [ 285.389197] [] ext4_da_write_begin+0x1d1/0xaa0 [ 285.395421] [] ? csum_and_copy_to_iter+0xfe0/0xfe0 [ 285.401994] [] ? ext4_write_begin+0xd70/0xd70 [ 285.408219] [] ? mark_held_locks+0xc8/0x120 [ 285.414204] [] generic_perform_write+0x238/0x4b0 [ 285.420598] [] ? trace_hardirqs_on_caller+0x44c/0x5e0 [ 285.427435] [] ? generic_file_readonly_mmap+0x1b0/0x1b0 [ 285.434465] [] ? file_update_time+0xde/0x360 [ 285.440517] [] ? current_time+0xd0/0xd0 [ 285.446141] [] ? ext4_file_write_iter+0x122/0xdc0 [ 285.452629] [] __generic_file_write_iter+0x396/0x550 [ 285.459372] [] ext4_file_write_iter+0x1b0/0xdc0 [ 285.465731] [] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 285.472739] [] ? current_time+0x13/0xd0 [ 285.478358] [] ? ext4_dax_fault+0x330/0x330 [ 285.484319] [] ? __atime_needs_update+0x1d3/0x980 [ 285.490799] [] ? debug_lockdep_rcu_enabled+0x77/0x90 [ 285.497564] [] ? mark_held_locks+0xc8/0x120 [ 285.503705] [] ? current_kernel_time64+0xc3/0x1a0 [ 285.510188] [] vfs_iter_write+0x2f6/0x620 [ 285.515981] [] ? vfs_iter_read+0x640/0x640 [ 285.521854] [] ? rcu_read_lock_sched_held+0x9e/0x120 [ 285.528603] [] ? iter_file_splice_write+0x12e/0xbc0 [ 285.535273] [] iter_file_splice_write+0x52c/0xbc0 [ 285.541765] [] ? page_cache_pipe_buf_release+0x120/0x120 [ 285.548886] [] ? selinux_file_permission+0x32a/0x400 [ 285.555637] [] ? rw_verify_area+0xb8/0x2b0 [ 285.561600] [] direct_splice_actor+0x104/0x1c0 [ 285.567935] [] splice_direct_to_actor+0x2a0/0x7a0 [ 285.574417] [] ? generic_pipe_buf_nosteal+0x10/0x10 [ 285.581077] [] ? do_splice_to+0x140/0x140 [ 285.586867] [] ? rw_verify_area+0xb8/0x2b0 [ 285.592742] [] do_splice_direct+0x14e/0x260 [ 285.598725] [] ? splice_direct_to_actor+0x7a0/0x7a0 [ 285.605410] [] ? rcu_sync_lockdep_assert+0x70/0xb0 [ 285.611981] [] ? __sb_start_write+0x138/0x2c0 [ 285.618118] [] ? do_sendfile+0x900/0xe50 [ 285.623847] [] do_sendfile+0x4b5/0xe50 [ 285.629378] [] ? do_compat_pwritev64.isra.24+0xc0/0xc0 [ 285.636294] [] ? __might_fault+0xf1/0x1b0 [ 285.642085] [] SyS_sendfile64+0xb6/0x120 [ 285.647785] [] ? SyS_sendfile+0x110/0x110 [ 285.653608] [] ? trace_hardirqs_on_caller+0x44c/0x5e0 [ 285.660443] [] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 285.667022] [] entry_SYSCALL_64_fastpath+0x23/0xc6 [ 285.673587] Code: 00 eb b3 e8 13 5e 33 00 eb 89 e8 0c 5e 33 00 e9 60 ff ff ff 0f 1f 80 00 00 00 00 48 b9 00 00 00 00 00 fc ff df 55 48 89 e5 41 55 <49> 89 fd 48 8d 45 88 41 54 4c 8d 67 38 48 c1 e8 03 53 48 89 c3 [ 285.701553] Sending NMI from CPU 1 to CPUs 0: [ 285.706310] NMI backtrace for cpu 0 [ 285.709948] CPU: 0 PID: 6574 Comm: syz-executor.3 Not tainted 4.9.0-rc3+ #1 [ 285.717025] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 285.726359] task: ffff8801220ca380 task.stack: ffff8801191a0000 [ 285.732395] RIP: 0010:[] c [] depot_save_stack+0x79/0x490 [ 285.741126] RSP: 0018:ffff8801191a7680 EFLAGS: 00000202 [ 285.746557] RAX: 000000003fe9919e RBX: 00000000c559bcd1 RCX: 000000009aaf3a1e [ 285.753809] RDX: ffff8801191a7744 RSI: 00000000024080c0 RDI: ffff8801191a76d8 [ 285.761058] RBP: ffff8801191a76c8 R08: ffff8801191a7690 R09: 0000000000000003 [ 285.768311] R10: 00000000574c80ba R11: 000000002751a72f R12: ffff88012afe9500 [ 285.775566] R13: ffff8801191a76f0 R14: ffff88012afe9500 R15: 000000000000000c [ 285.782912] FS: 00007f1ffab09700(0000) GS:ffff88012c000000(0000) knlGS:0000000000000000 [ 285.791123] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 285.796987] CR2: 0000000000758080 CR3: 000000011a37f000 CR4: 00000000001406f0 [ 285.804324] Stack: [ 285.806457] ffff8801220ca380c 0000000000000000c ffff8801191a7f48c 0000000000000000c [ 285.814665] 00000000024080c0c ffff88012afe9500c 00000000024080c0c ffff88012afe9500c [ 285.822879] ffff88012bc00500c ffff8801191a78f8c ffffffff81773615c 000000400000000cc [ 285.831088] Call Trace: [ 285.833650] [] save_stack+0xb5/0xd0 [ 285.838905] [] ? save_stack_trace+0x16/0x20 [ 285.844856] [] ? save_stack+0x46/0xd0 [ 285.850285] [] ? kasan_kmalloc+0xad/0xe0 [ 285.855975] [] ? kasan_slab_alloc+0x12/0x20 [ 285.861931] [] ? __kmalloc+0x172/0x770 [ 285.867448] [] ? iter_file_splice_write+0x12e/0xbc0 [ 285.874095] [] ? direct_splice_actor+0x104/0x1c0 [ 285.880479] [] ? splice_direct_to_actor+0x2a0/0x7a0 [ 285.887123] [] ? do_splice_direct+0x14e/0x260 [ 285.893243] [] ? do_sendfile+0x4b5/0xe50 [ 285.898933] [] ? SyS_sendfile64+0xb6/0x120 [ 285.904799] [] ? entry_SYSCALL_64_fastpath+0x23/0xc6 [ 285.911533] [] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 285.918699] [] ? current_time+0x13/0xd0 [ 285.924306] [] ? current_time+0x79/0xd0 [ 285.929916] [] ? __atime_needs_update+0x1d3/0x980 [ 285.936498] [] ? debug_lockdep_rcu_enabled+0x77/0x90 [ 285.943247] [] ? mark_held_locks+0xc8/0x120 [ 285.949197] [] ? current_kernel_time64+0xc3/0x1a0 [ 285.955686] [] ? kasan_unpoison_shadow+0x36/0x50 [ 285.962075] [] kasan_kmalloc+0xad/0xe0 [ 285.968169] [] kasan_slab_alloc+0x12/0x20 [ 285.973945] [] __kmalloc+0x172/0x770 [ 285.979287] [] ? iter_file_splice_write+0x12e/0xbc0 [ 285.985932] [] iter_file_splice_write+0x12e/0xbc0 [ 285.992404] [] ? __fsnotify_update_child_dentry_flags.part.1+0x260/0x260 [ 286.000877] [] ? page_cache_pipe_buf_release+0x120/0x120 [ 286.007965] [] ? selinux_file_permission+0x32a/0x400 [ 286.014696] [] ? rw_verify_area+0xb8/0x2b0 [ 286.022087] [] direct_splice_actor+0x104/0x1c0 [ 286.028318] [] splice_direct_to_actor+0x2a0/0x7a0 [ 286.034806] [] ? generic_pipe_buf_nosteal+0x10/0x10 [ 286.041463] [] ? do_splice_to+0x140/0x140 [ 286.055832] [] ? rw_verify_area+0xb8/0x2b0 [ 286.061800] [] do_splice_direct+0x14e/0x260 [ 286.067774] [] ? splice_direct_to_actor+0x7a0/0x7a0 [ 286.074444] [] ? rcu_sync_lockdep_assert+0x70/0xb0 [ 286.081028] [] ? __sb_start_write+0x138/0x2c0 [ 286.087178] [] ? do_sendfile+0x900/0xe50 [ 286.092895] [] do_sendfile+0x4b5/0xe50 [ 286.098430] [] ? do_compat_pwritev64.isra.24+0xc0/0xc0 [ 286.105345] [] ? __might_fault+0xf1/0x1b0 [ 286.111133] [] SyS_sendfile64+0xb6/0x120 [ 286.116837] [] ? SyS_sendfile+0x110/0x110 [ 286.122640] [] ? trace_hardirqs_on_caller+0x44c/0x5e0 [ 286.129478] [] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 286.136052] [] entry_SYSCALL_64_fastpath+0x23/0xc6 [ 286.142656] Code: c83 cc2 c0c c03 c42 cf8 c41 c29 cda c44 c03 c52 cf4 c41 c89 cdb c89 cd9 c41 cc1 cc3 c04 c01 cc1 c45 c31 cda c45 c89 cd3 c44 c29 cd0 c41 c01 cca c41 cc1 cc3 c06 c44 c31 cd8 c<41> c89 cc3 c29 cc1 c44 c01 cd0 c41 cc1 cc3 c08 c44 c31 cd9 c41 c89 ccb c41 c29 cca c [ 286.172944] Kernel panic - not syncing: softlockup: hung tasks [ 286.178941] CPU: 1 PID: 6573 Comm: syz-executor.5 Tainted: G L 4.9.0-rc3+ #1 [ 286.187319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 286.196794] ffff88012c107d30 ffffffff82ab8d86 ffffffff85cd9b00 ffff88012c107e08 [ 286.204896] 0000000000001900 0000000000000001 ffff88012c107df8 ffffffff81642662 [ 286.213058] 0000000041b58ab3 ffffffff868d863a ffffffff816424ac 0000000000000001 [ 286.221220] Call Trace: [ 286.223796] [ 286.225861] [] dump_stack+0xe6/0x120 [ 286.231259] [] panic+0x1b6/0x358 [ 286.236276] [] ? percpu_up_read_preempt_enable.constprop.43+0xb9/0xb9 [ 286.244510] [] ? printk_nmi_flush+0x56/0x110 [ 286.250574] [] ? delay_tsc+0x8f/0xc0 [ 286.255953] [] ? irq_force_complete_move+0x430/0x430 [ 286.262723] [] watchdog_timer_fn+0x2fb/0x310 [ 286.268793] [] ? watchdog+0x50/0x50 [ 286.274075] [] __hrtimer_run_queues+0x2d6/0xc00 [ 286.280405] [] ? enqueue_hrtimer+0x380/0x380 [ 286.286565] [] ? ktime_get_update_offsets_now+0x139/0x350 [ 286.293761] [] ? hrtimer_interrupt+0x139/0x470 [ 286.300004] [] hrtimer_interrupt+0x19d/0x470 [ 286.306075] [] local_apic_timer_interrupt+0x6e/0xf0 [ 286.312754] [] smp_apic_timer_interrupt+0x76/0xa0 [ 286.319261] [] apic_timer_interrupt+0x8c/0xa0 [ 286.325403] [ 286.327490] [] ? __wake_up_bit+0x10/0xd0 [ 286.333269] [] unlock_page+0x9a/0xd0 [ 286.338645] [] ext4_da_write_begin+0x1d1/0xaa0 [ 286.344889] [] ? csum_and_copy_to_iter+0xfe0/0xfe0 [ 286.351483] [] ? ext4_write_begin+0xd70/0xd70 [ 286.357638] [] ? mark_held_locks+0xc8/0x120 [ 286.363615] [] generic_perform_write+0x238/0x4b0 [ 286.370020] [] ? trace_hardirqs_on_caller+0x44c/0x5e0 [ 286.376865] [] ? generic_file_readonly_mmap+0x1b0/0x1b0 [ 286.383871] [] ? file_update_time+0xde/0x360 [ 286.389926] [] ? current_time+0xd0/0xd0 [ 286.395543] [] ? ext4_file_write_iter+0x122/0xdc0 [ 286.402027] [] __generic_file_write_iter+0x396/0x550 [ 286.408769] [] ext4_file_write_iter+0x1b0/0xdc0 [ 286.415088] [] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 286.422100] [] ? current_time+0x13/0xd0 [ 286.427735] [] ? ext4_dax_fault+0x330/0x330 [ 286.433716] [] ? __atime_needs_update+0x1d3/0x980 [ 286.440220] [] ? debug_lockdep_rcu_enabled+0x77/0x90 [ 286.446982] [] ? mark_held_locks+0xc8/0x120 [ 286.452996] [] ? current_kernel_time64+0xc3/0x1a0 [ 286.459511] [] vfs_iter_write+0x2f6/0x620 [ 286.465322] [] ? vfs_iter_read+0x640/0x640 [ 286.471215] [] ? rcu_read_lock_sched_held+0x9e/0x120 [ 286.477979] [] ? iter_file_splice_write+0x12e/0xbc0 [ 286.484657] [] iter_file_splice_write+0x52c/0xbc0 [ 286.491188] [] ? page_cache_pipe_buf_release+0x120/0x120 [ 286.498307] [] ? selinux_file_permission+0x32a/0x400 [ 286.505073] [] ? rw_verify_area+0xb8/0x2b0 [ 286.510976] [] direct_splice_actor+0x104/0x1c0 [ 286.517240] [] splice_direct_to_actor+0x2a0/0x7a0 [ 286.523746] [] ? generic_pipe_buf_nosteal+0x10/0x10 [ 286.530423] [] ? do_splice_to+0x140/0x140 [ 286.536238] [] ? rw_verify_area+0xb8/0x2b0 [ 286.542137] [] do_splice_direct+0x14e/0x260 [ 286.548123] [] ? splice_direct_to_actor+0x7a0/0x7a0 [ 286.554821] [] ? rcu_sync_lockdep_assert+0x70/0xb0 [ 286.561435] [] ? __sb_start_write+0x138/0x2c0 [ 286.567622] [] ? do_sendfile+0x900/0xe50 [ 286.573344] [] do_sendfile+0x4b5/0xe50 [ 286.578897] [] ? do_compat_pwritev64.isra.24+0xc0/0xc0 [ 286.586362] [] ? __might_fault+0xf1/0x1b0 [ 286.592171] [] SyS_sendfile64+0xb6/0x120 [ 286.597928] [] ? SyS_sendfile+0x110/0x110 [ 286.603743] [] ? trace_hardirqs_on_caller+0x44c/0x5e0 [ 286.610597] [] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 286.619044] [] entry_SYSCALL_64_fastpath+0x23/0xc6 [ 286.626760] Kernel Offset: disabled