Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.1.106' (ECDSA) to the list of known hosts. 2021/03/18 07:27:01 parsed 1 programs 2021/03/18 07:27:01 executed programs: 0 syzkaller login: [ 35.989080] IPVS: ftp: loaded support on port[0] = 21 [ 36.092576] chnl_net:caif_netlink_parms(): no params data found [ 36.205110] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.212054] bridge0: port 1(bridge_slave_0) entered disabled state [ 36.220227] device bridge_slave_0 entered promiscuous mode [ 36.227486] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.234227] bridge0: port 2(bridge_slave_1) entered disabled state [ 36.242027] device bridge_slave_1 entered promiscuous mode [ 36.261642] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 36.270723] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 36.290631] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 36.298030] team0: Port device team_slave_0 added [ 36.304406] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 36.312531] team0: Port device team_slave_1 added [ 36.328859] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 36.335115] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.361182] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 36.373151] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 36.380031] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.406366] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 36.417481] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 36.425446] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 36.446119] device hsr_slave_0 entered promiscuous mode [ 36.452058] device hsr_slave_1 entered promiscuous mode [ 36.459066] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 36.466169] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 36.533859] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.540320] bridge0: port 2(bridge_slave_1) entered forwarding state [ 36.547132] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.553578] bridge0: port 1(bridge_slave_0) entered forwarding state [ 36.585880] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 36.593683] 8021q: adding VLAN 0 to HW filter on device bond0 [ 36.603309] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 36.612714] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 36.621604] bridge0: port 1(bridge_slave_0) entered disabled state [ 36.629433] bridge0: port 2(bridge_slave_1) entered disabled state [ 36.636371] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 36.647137] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 36.653700] 8021q: adding VLAN 0 to HW filter on device team0 [ 36.663598] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 36.671600] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.677943] bridge0: port 1(bridge_slave_0) entered forwarding state [ 36.687307] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 36.695391] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.701817] bridge0: port 2(bridge_slave_1) entered forwarding state [ 36.717253] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 36.725909] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 36.736116] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 36.749595] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 36.757109] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 36.767799] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 36.774803] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 36.787234] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready [ 36.795173] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 36.802010] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 36.812636] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 36.825836] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready [ 36.837219] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 36.872157] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready [ 36.879716] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready [ 36.886208] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready [ 36.896457] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 36.904470] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 36.912186] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 36.922002] device veth0_vlan entered promiscuous mode [ 36.931213] device veth1_vlan entered promiscuous mode [ 36.937108] IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready [ 36.947070] IPv6: ADDRCONF(NETDEV_UP): macvlan1: link is not ready [ 36.959658] IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready [ 36.969429] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 36.976700] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 36.984966] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 36.994512] device veth0_macvtap entered promiscuous mode [ 37.001675] IPv6: ADDRCONF(NETDEV_UP): macvtap0: link is not ready [ 37.010824] device veth1_macvtap entered promiscuous mode [ 37.019984] IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready [ 37.030048] IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready [ 37.041795] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 37.049103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 37.057390] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 37.069107] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 37.076176] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 37.195513] IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready [ 37.203047] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 37.218193] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 37.229394] IPv6: ADDRCONF(NETDEV_UP): wlan1: link is not ready [ 37.235571] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 37.244746] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 37.252681] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 37.259964] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 37.289805] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 37.295735] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 37.309379] vhci_hcd: connection closed [ 37.310141] vhci_hcd: stop threads [ 37.318297] vhci_hcd: release socket [ 37.322160] vhci_hcd: disconnect device [ 37.811386] vhci_hcd vhci_hcd.0: pdev(0) rhport(1) sockfd(3) [ 37.817339] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 37.826961] vhci_hcd: connection closed [ 37.827211] vhci_hcd: stop threads [ 37.834900] vhci_hcd: release socket [ 37.838907] vhci_hcd: disconnect device [ 37.852226] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 37.858083] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 37.869151] vhci_hcd: connection closed [ 37.869636] vhci_hcd: stop threads [ 37.877192] vhci_hcd: release socket [ 37.883301] vhci_hcd: disconnect device [ 38.018629] Bluetooth: hci0: command 0x0409 tx timeout [ 38.370997] vhci_hcd vhci_hcd.0: pdev(0) rhport(1) sockfd(3) [ 38.376844] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 38.384091] vhci_hcd: connection closed [ 38.387148] vhci_hcd: stop threads [ 38.394829] vhci_hcd: release socket [ 38.399034] vhci_hcd: disconnect device [ 38.411196] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 38.417054] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 38.426997] vhci_hcd: connection closed [ 38.427267] vhci_hcd: stop threads [ 38.434830] vhci_hcd: release socket [ 38.439654] vhci_hcd: disconnect device [ 38.949617] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 38.955608] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 38.964126] vhci_hcd: connection closed [ 38.964533] vhci_hcd: stop threads [ 38.972412] vhci_hcd: release socket [ 38.976128] vhci_hcd: disconnect device [ 39.466055] vhci_hcd vhci_hcd.0: pdev(0) rhport(1) sockfd(3) [ 39.471927] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 39.481535] vhci_hcd: connection closed [ 39.481782] vhci_hcd: stop threads [ 39.490345] vhci_hcd: release socket [ 39.494077] vhci_hcd: disconnect device [ 39.507847] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 39.513691] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 39.523789] vhci_hcd: connection closed [ 39.523977] vhci_hcd: stop threads [ 39.532165] vhci_hcd: release socket [ 39.536036] vhci_hcd: disconnect device 2021/03/18 07:27:06 executed programs: 5 [ 40.038675] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 40.044529] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 40.056266] vhci_hcd: connection closed [ 40.056485] vhci_hcd: stop threads [ 40.065169] vhci_hcd: release socket [ 40.069910] vhci_hcd: disconnect device [ 40.096960] Bluetooth: hci0: command 0x041b tx timeout [ 40.568476] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 40.574337] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 40.587400] vhci_hcd: connection closed [ 40.587600] vhci_hcd: stop threads [ 40.595154] vhci_hcd: release socket [ 40.600270] vhci_hcd: disconnect device [ 41.089171] vhci_hcd vhci_hcd.0: pdev(0) rhport(1) sockfd(3) [ 41.095018] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 41.101922] vhci_hcd: connection closed [ 41.102227] vhci_hcd: stop threads [ 41.106254] kasan: CONFIG_KASAN_INLINE enabled [ 41.106259] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 41.106273] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 41.106283] CPU: 0 PID: 8403 Comm: syz-executor.0 Not tainted 4.19.181-syzkaller #0 [ 41.106293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 41.110125] vhci_hcd: release socket [ 41.114400] RIP: 0010:__lock_acquire+0x1eb/0x3ff0 [ 41.124124] vhci_hcd: disconnect device [ 41.127951] Code: 2b 29 00 00 48 81 c4 98 01 00 00 44 89 f8 5b 5d 41 5c 41 5d 41 5e 41 5f c3 48 b8 00 00 00 00 00 fc ff df 4c 89 f2 48 c1 ea 03 <80> 3c 02 00 0f 85 b3 2a 00 00 49 81 3e 20 82 66 8c 0f 84 65 ff ff [ 41.127957] RSP: 0018:ffff8880abb1f7d0 EFLAGS: 00010006 [ 41.127966] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 41.127971] RDX: 00000000000000fc RSI: 0000000000000000 RDI: 0000000000000001 [ 41.127977] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000001 [ 41.127982] R10: 0000000000000005 R11: 0000000000000000 R12: 0000000000000001 [ 41.127988] R13: ffff8880aaf98280 R14: 00000000000007e0 R15: 0000000000000001 [ 41.127997] FS: 00007f59d7f15700(0000) GS:ffff8880ba000000(0000) knlGS:0000000000000000 [ 41.128009] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 41.232420] CR2: 00007fd0ab4f9000 CR3: 00000000aacbc000 CR4: 00000000001406f0 [ 41.239679] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 41.246933] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 41.254181] Call Trace: [ 41.256755] ? mark_held_locks+0xa6/0xf0 [ 41.260798] ? finish_task_switch+0x118/0x760 [ 41.265275] ? _raw_spin_unlock_irq+0x24/0x80 [ 41.269751] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 41.274333] ? mark_held_locks+0xf0/0xf0 [ 41.278378] ? __schedule+0x88f/0x2040 [ 41.282248] ? io_schedule_timeout+0x140/0x140 [ 41.286811] ? try_to_wake_up+0x733/0x1050 [ 41.291028] lock_acquire+0x170/0x3c0 [ 41.294811] ? try_to_wake_up+0x7b/0x1050 [ 41.298940] _raw_spin_lock_irqsave+0x8c/0xc0 [ 41.303419] ? try_to_wake_up+0x7b/0x1050 [ 41.307552] try_to_wake_up+0x7b/0x1050 [ 41.311510] ? migrate_swap_stop+0x900/0x900 [ 41.315900] attach_store+0x65b/0xaa0 [ 41.319686] ? valid_port+0x190/0x190 [ 41.323485] ? lock_downgrade+0x720/0x720 [ 41.327612] ? valid_port+0x190/0x190 [ 41.331395] dev_attr_store+0x56/0x80 [ 41.335192] ? component_del+0x550/0x550 [ 41.339239] sysfs_kf_write+0x110/0x160 [ 41.343195] ? sysfs_file_ops+0x1c0/0x1c0 [ 41.347321] kernfs_fop_write+0x2b0/0x470 [ 41.351449] __vfs_write+0xf7/0x770 [ 41.355057] ? kernfs_vma_page_mkwrite+0x230/0x230 [ 41.359971] ? common_file_perm+0x4e5/0x850 [ 41.364272] ? kernel_read+0x110/0x110 [ 41.368175] ? apparmor_getprocattr+0x11d0/0x11d0 [ 41.373008] ? __mutex_add_waiter+0x160/0x160 [ 41.377495] ? check_preemption_disabled+0x41/0x280 [ 41.382495] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 41.387493] vfs_write+0x1f3/0x540 [ 41.391016] ksys_write+0x12b/0x2a0 [ 41.394623] ? __ia32_sys_read+0xb0/0xb0 [ 41.398669] ? trace_hardirqs_off_caller+0x6e/0x210 [ 41.403664] ? do_syscall_64+0x21/0x620 [ 41.407618] do_syscall_64+0xf9/0x620 [ 41.411397] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 41.416613] RIP: 0033:0x41914f [ 41.419787] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 41.438671] RSP: 002b:00007f59d7f14b90 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 41.446360] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000041914f [ 41.453607] RDX: 0000000000000007 RSI: 00007f59d7f14be0 RDI: 0000000000000005 [ 41.460856] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007f59d7f14b30 [ 41.468108] R10: 0000000000000000 R11: 0000000000000293 R12: 00000000004afb38 [ 41.475355] R13: 00007f59d7f14be0 R14: 0000000000000000 R15: 0000000000022000 [ 41.482605] Modules linked in: [ 41.485784] ---[ end trace 40f424ebd7f03790 ]--- [ 41.490522] RIP: 0010:__lock_acquire+0x1eb/0x3ff0 [ 41.495344] Code: 2b 29 00 00 48 81 c4 98 01 00 00 44 89 f8 5b 5d 41 5c 41 5d 41 5e 41 5f c3 48 b8 00 00 00 00 00 fc ff df 4c 89 f2 48 c1 ea 03 <80> 3c 02 00 0f 85 b3 2a 00 00 49 81 3e 20 82 66 8c 0f 84 65 ff ff [ 41.514227] RSP: 0018:ffff8880abb1f7d0 EFLAGS: 00010006 [ 41.519569] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 41.526819] RDX: 00000000000000fc RSI: 0000000000000000 RDI: 0000000000000001 [ 41.534086] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000001 [ 41.541449] R10: 0000000000000005 R11: 0000000000000000 R12: 0000000000000001 [ 41.548702] R13: ffff8880aaf98280 R14: 00000000000007e0 R15: 0000000000000001 [ 41.555956] FS: 00007f59d7f15700(0000) GS:ffff8880ba000000(0000) knlGS:0000000000000000 [ 41.564218] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 41.570082] CR2: 00007fd0ab4f9000 CR3: 00000000aacbc000 CR4: 00000000001406f0 [ 41.577344] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 41.584594] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 41.591867] Kernel panic - not syncing: Fatal exception [ 41.597788] Kernel Offset: disabled [ 41.601405] Rebooting in 86400 seconds..