[[0;32m  OK  [0m] Reached target Login Prompts.
[[0;32m  OK  [0m] Reached target Multi-User System.
[[0;32m  OK  [0m] Reached target Graphical Interface.
         Starting Update UTMP about System Runlevel Changes...
[[0;32m  OK  [0m] Started Update UTMP about System Runlevel Changes.

Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '10.128.1.23' (ECDSA) to the list of known hosts.
syzkaller login: [   69.268639][ T8432] IPVS: ftp: loaded support on port[0] = 21
[   69.368636][ T8432] chnl_net:caif_netlink_parms(): no params data found
[   69.426395][ T8432] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.434929][ T8432] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.446133][ T8432] device bridge_slave_0 entered promiscuous mode
[   69.455763][ T8432] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.463417][ T8432] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.472279][ T8432] device bridge_slave_1 entered promiscuous mode
[   69.495868][ T8432] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   69.506957][ T8432] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   69.532299][ T8432] team0: Port device team_slave_0 added
[   69.540161][ T8432] team0: Port device team_slave_1 added
[   69.558919][ T8432] batman_adv: batadv0: Adding interface: batadv_slave_0
[   69.566549][ T8432] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   69.592596][ T8432] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   69.605557][ T8432] batman_adv: batadv0: Adding interface: batadv_slave_1
[   69.612621][ T8432] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   69.638876][ T8432] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   69.668152][ T8432] device hsr_slave_0 entered promiscuous mode
[   69.675284][ T8432] device hsr_slave_1 entered promiscuous mode
[   69.781723][ T8432] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   69.795533][ T8432] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   69.805826][ T8432] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   69.816105][ T8432] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   69.844612][ T8432] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.851991][ T8432] bridge0: port 2(bridge_slave_1) entered forwarding state
[   69.860030][ T8432] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.867296][ T8432] bridge0: port 1(bridge_slave_0) entered forwarding state
[   69.916720][ T8432] 8021q: adding VLAN 0 to HW filter on device bond0
[   69.932425][ T3001] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   69.943698][ T3001] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.953242][ T3001] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.962920][ T3001] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   69.980967][ T8432] 8021q: adding VLAN 0 to HW filter on device team0
[   69.993350][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   70.002834][    T7] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.010042][    T7] bridge0: port 1(bridge_slave_0) entered forwarding state
[   70.030864][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   70.039436][    T7] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.046655][    T7] bridge0: port 2(bridge_slave_1) entered forwarding state
[   70.059502][ T3850] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   70.072306][ T3850] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   70.093030][ T3850] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   70.102387][ T3850] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   70.111878][ T3850] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   70.123207][ T8432] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   70.144351][ T3850] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   70.152049][ T3850] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   70.167884][ T8432] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.188143][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   70.209688][ T3850] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   70.218534][ T3850] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   70.226681][ T3850] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   70.237941][ T8432] device veth0_vlan entered promiscuous mode
[   70.251732][ T8432] device veth1_vlan entered promiscuous mode
[   70.275458][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   70.284491][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   70.293523][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   70.305262][ T8432] device veth0_macvtap entered promiscuous mode
[   70.317649][ T8432] device veth1_macvtap entered promiscuous mode
[   70.336621][ T8432] batman_adv: batadv0: Interface activated: batadv_slave_0
[   70.344923][ T3850] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   70.355735][ T3850] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   70.368001][ T8432] batman_adv: batadv0: Interface activated: batadv_slave_1
[   70.375501][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   70.384842][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   70.397194][ T8432] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
executing program
[   70.406155][ T8432] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   70.415455][ T8432] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   70.424913][ T8432] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.674297][ T8642] BUG: unable to handle page fault for address: ffff8880bfffd000
[   71.682048][ T8642] #PF: supervisor read access in kernel mode
[   71.688007][ T8642] #PF: error_code(0x0000) - not-present page
[   71.693966][ T8642] PGD 10a01067 P4D 10a01067 PUD 23ffff067 PMD 23fffe067 PTE 0
[   71.701441][ T8642] Oops: 0000 [#1] PREEMPT SMP KASAN
[   71.706622][ T8642] CPU: 1 PID: 8642 Comm: syz-executor834 Not tainted 5.11.0-syzkaller #0
[   71.715020][ T8642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   71.725069][ T8642] RIP: 0010:do_csum+0x177/0x400
[   71.729968][ T8642] Code: 89 ee 44 89 6c 24 04 89 04 24 e8 54 eb 95 fd 45 85 ed 74 4e 4d 89 e6 e8 c7 e3 95 fd 41 83 ed 01 31 ff 31 c0 44 89 ee 49 03 1e <49> 13 5e 08 49 13 5e 10 49 13 5e 18 49 13 5e 20 49 13 5e 28 49 13
[   71.749689][ T8642] RSP: 0018:ffffc90001e4f420 EFLAGS: 00010282
[   71.755773][ T8642] RAX: 0000000000000000 RBX: e1c646d5ffdcfb8f RCX: 0000000000000000
[   71.763738][ T8642] RDX: ffff888018d45340 RSI: 00000000014dc661 RDI: 0000000000000000
[   71.771718][ T8642] RBP: 00000000ffffffec R08: 0000000000000000 R09: 0000000000000060
[   71.779686][ T8642] R10: ffffffff83dcc79b R11: 0000000000000060 R12: ffff8880137168b8
[   71.787978][ T8642] R13: 00000000014dc661 R14: ffff8880bfffcff8 R15: 0000000000000000
[   71.795947][ T8642] FS:  00007f497288d700(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000
[   71.804876][ T8642] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   71.811458][ T8642] CR2: ffff8880bfffd000 CR3: 0000000015988000 CR4: 00000000001506e0
[   71.819434][ T8642] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   71.827399][ T8642] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   71.835388][ T8642] Call Trace:
[   71.838672][ T8642]  csum_partial+0x1c/0x30
[   71.843007][ T8642]  __gre_xmit+0x879/0x970
[   71.847327][ T8642]  ipgre_xmit+0x679/0x830
[   71.851667][ T8642]  dev_hard_start_xmit+0x1eb/0x920
[   71.856779][ T8642]  __dev_queue_xmit+0x2121/0x2e00
[   71.861789][ T8642]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[   71.867497][ T8642]  ? _copy_from_iter+0x37b/0xbf0
[   71.872434][ T8642]  ? __sanitizer_cov_trace_cmp4+0x1c/0x70
[   71.878143][ T8642]  ? netdev_core_pick_tx+0x2e0/0x2e0
[   71.883428][ T8642]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[   71.889658][ T8642]  ? __sanitizer_cov_trace_cmp4+0x1c/0x70
[   71.895386][ T8642]  ? virtio_net_hdr_to_skb.constprop.0+0x423/0xa70
[   71.901885][ T8642]  ? __sanitizer_cov_trace_const_cmp2+0x22/0x80
[   71.908116][ T8642]  ? packet_parse_headers+0x11d/0x490
[   71.913479][ T8642]  ? prb_fill_curr_block+0x5d0/0x5d0
[   71.918775][ T8642]  packet_sendmsg+0x2405/0x52b0
[   71.924765][ T8642]  ? lock_is_held_type+0xd5/0x130
[   71.929805][ T8642]  ? aa_sk_perm+0x316/0xaa0
[   71.934312][ T8642]  ? packet_cached_dev_get+0x250/0x250
[   71.939762][ T8642]  ? aa_af_perm+0x230/0x230
[   71.944290][ T8642]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   71.950532][ T8642]  ? packet_cached_dev_get+0x250/0x250
[   71.956010][ T8642]  sock_sendmsg+0xcf/0x120
[   71.960467][ T8642]  sock_no_sendpage+0xee/0x130
[   71.965228][ T8642]  ? sk_page_frag_refill+0x1d0/0x1d0
[   71.970511][ T8642]  ? lock_release+0x710/0x710
[   71.975185][ T8642]  ? lock_is_held_type+0xd5/0x130
[   71.980195][ T8642]  ? find_held_lock+0x2d/0x110
[   71.984949][ T8642]  kernel_sendpage.part.0+0x1ab/0x350
[   71.990328][ T8642]  sock_sendpage+0xe5/0x140
[   71.994832][ T8642]  ? __sock_recv_ts_and_drops+0x430/0x430
[   72.000549][ T8642]  pipe_to_sendpage+0x2ad/0x380
[   72.005400][ T8642]  ? propagate_umount+0x1c20/0x1c20
[   72.010580][ T8642]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   72.016822][ T8642]  ? splice_from_pipe_next.part.0+0x167/0x520
[   72.022901][ T8642]  __splice_from_pipe+0x439/0x8a0
[   72.027918][ T8642]  ? propagate_umount+0x1c20/0x1c20
[   72.033121][ T8642]  generic_splice_sendpage+0xd4/0x140
[   72.038632][ T8642]  ? __do_sys_vmsplice+0x9d0/0x9d0
[   72.043885][ T8642]  ? security_file_permission+0x248/0x560
[   72.049604][ T8642]  ? __do_sys_vmsplice+0x9d0/0x9d0
[   72.054707][ T8642]  do_splice+0xba4/0x1a90
[   72.059025][ T8642]  ? lock_is_held_type+0xd5/0x130
[   72.064042][ T8642]  ? find_held_lock+0x2d/0x110
[   72.068794][ T8642]  ? lock_release+0x3bb/0x710
[   72.073458][ T8642]  ? splice_from_pipe+0x140/0x140
[   72.078472][ T8642]  __do_splice+0x134/0x250
[   72.082887][ T8642]  ? do_splice+0x1a90/0x1a90
[   72.087481][ T8642]  __x64_sys_splice+0x198/0x250
[   72.092322][ T8642]  do_syscall_64+0x2d/0x70
[   72.096737][ T8642]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[   72.102620][ T8642] RIP: 0033:0x449009
[   72.106498][ T8642] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   72.126113][ T8642] RSP: 002b:00007f497288d2e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[   72.134619][ T8642] RAX: ffffffffffffffda RBX: 00000000004cf510 RCX: 0000000000449009
[   72.142591][ T8642] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000004
[   72.150572][ T8642] RBP: 00000000004cf51c R08: 00000000ffffffff R09: 0000000000000000
[   72.158544][ T8642] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000049e004
[   72.166872][ T8642] R13: 78902f0000000000 R14: 6d32cc5e8ead0600 R15: 00000000004cf518
[   72.175109][ T8642] Modules linked in:
[   72.179002][ T8642] CR2: ffff8880bfffd000
[   72.183271][ T8642] ---[ end trace bfab3bbf1156c068 ]---
[   72.188708][ T8642] RIP: 0010:do_csum+0x177/0x400
[   72.193651][ T8642] Code: 89 ee 44 89 6c 24 04 89 04 24 e8 54 eb 95 fd 45 85 ed 74 4e 4d 89 e6 e8 c7 e3 95 fd 41 83 ed 01 31 ff 31 c0 44 89 ee 49 03 1e <49> 13 5e 08 49 13 5e 10 49 13 5e 18 49 13 5e 20 49 13 5e 28 49 13
[   72.213701][ T8642] RSP: 0018:ffffc90001e4f420 EFLAGS: 00010282
[   72.219774][ T8642] RAX: 0000000000000000 RBX: e1c646d5ffdcfb8f RCX: 0000000000000000
[   72.227985][ T8642] RDX: ffff888018d45340 RSI: 00000000014dc661 RDI: 0000000000000000
[   72.235962][ T8642] RBP: 00000000ffffffec R08: 0000000000000000 R09: 0000000000000060
[   72.243936][ T8642] R10: ffffffff83dcc79b R11: 0000000000000060 R12: ffff8880137168b8
[   72.252315][ T8642] R13: 00000000014dc661 R14: ffff8880bfffcff8 R15: 0000000000000000
[   72.260489][ T8642] FS:  00007f497288d700(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000
[   72.269560][ T8642] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   72.276153][ T8642] CR2: ffff8880bfffd000 CR3: 0000000015988000 CR4: 00000000001506e0
[   72.284314][ T8642] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   72.292481][ T8642] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   72.300468][ T8642] Kernel panic - not syncing: Fatal exception in interrupt
[   72.308349][ T8642] Kernel Offset: disabled
[   72.312786][ T8642] Rebooting in 86400 seconds..