Warning: Permanently added '[localhost]:53890' (ECDSA) to the list of known hosts. 2020/07/22 15:11:28 fuzzer started 2020/07/22 15:11:28 dialing manager at 10.0.2.10:39745 2020/07/22 15:11:28 syscalls: 3211 2020/07/22 15:11:28 code coverage: enabled 2020/07/22 15:11:28 comparison tracing: enabled 2020/07/22 15:11:28 extra coverage: enabled 2020/07/22 15:11:28 setuid sandbox: enabled 2020/07/22 15:11:28 namespace sandbox: enabled 2020/07/22 15:11:28 Android sandbox: /sys/fs/selinux/policy does not exist 2020/07/22 15:11:28 fault injection: enabled 2020/07/22 15:11:28 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2020/07/22 15:11:28 net packet injection: enabled 2020/07/22 15:11:28 net device setup: enabled 2020/07/22 15:11:28 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2020/07/22 15:11:28 devlink PCI setup: PCI device 0000:00:10.0 is not available 2020/07/22 15:11:28 USB emulation: enabled 15:12:07 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}) 15:12:08 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000500)=ANY=[@ANYBLOB="2000000011000d"], 0x20}, 0x1, 0xc00000000000000}, 0x0) 15:12:08 executing program 2: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ttyS3\x00', 0x0, 0x0) ioctl$TIOCVHANGUP(r0, 0x5437, 0x0) syzkaller login: [ 185.866565][ T8763] IPVS: ftp: loaded support on port[0] = 21 [ 185.866683][ T8765] IPVS: ftp: loaded support on port[0] = 21 15:12:09 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000180), 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='lp\x00', 0x3) sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x6}, 0x1c) [ 186.403275][ T8766] IPVS: ftp: loaded support on port[0] = 21 [ 186.496399][ T8765] chnl_net:caif_netlink_parms(): no params data found [ 186.596691][ T8763] chnl_net:caif_netlink_parms(): no params data found [ 186.700668][ T8765] bridge0: port 1(bridge_slave_0) entered blocking state [ 186.711200][ T8765] bridge0: port 1(bridge_slave_0) entered disabled state [ 186.728816][ T8765] device bridge_slave_0 entered promiscuous mode [ 186.768388][ T8765] bridge0: port 2(bridge_slave_1) entered blocking state [ 186.777925][ T8765] bridge0: port 2(bridge_slave_1) entered disabled state [ 186.787933][ T8765] device bridge_slave_1 entered promiscuous mode [ 186.814044][ T8771] IPVS: ftp: loaded support on port[0] = 21 [ 186.833545][ T8766] chnl_net:caif_netlink_parms(): no params data found [ 186.850996][ T8765] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 186.871393][ T8765] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 186.888265][ T8763] bridge0: port 1(bridge_slave_0) entered blocking state [ 186.898544][ T8763] bridge0: port 1(bridge_slave_0) entered disabled state [ 186.909540][ T8763] device bridge_slave_0 entered promiscuous mode [ 186.921380][ T8763] bridge0: port 2(bridge_slave_1) entered blocking state [ 186.930796][ T8763] bridge0: port 2(bridge_slave_1) entered disabled state [ 186.940659][ T8763] device bridge_slave_1 entered promiscuous mode [ 186.985129][ T8763] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 187.001245][ T8763] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 187.042813][ T8765] team0: Port device team_slave_0 added [ 187.065918][ T8763] team0: Port device team_slave_0 added [ 187.090439][ T8765] team0: Port device team_slave_1 added [ 187.104571][ T8763] team0: Port device team_slave_1 added [ 187.111713][ T8766] bridge0: port 1(bridge_slave_0) entered blocking state [ 187.122348][ T8766] bridge0: port 1(bridge_slave_0) entered disabled state [ 187.132331][ T8766] device bridge_slave_0 entered promiscuous mode [ 187.145371][ T8766] bridge0: port 2(bridge_slave_1) entered blocking state [ 187.157727][ T8766] bridge0: port 2(bridge_slave_1) entered disabled state [ 187.168106][ T8766] device bridge_slave_1 entered promiscuous mode [ 187.187941][ T8765] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 187.204908][ T8765] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 187.245087][ T8765] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 187.275422][ T8763] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 187.285513][ T8763] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 187.320325][ T8763] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 187.345419][ T8763] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 187.357398][ T8763] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 187.398317][ T8763] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 187.425062][ T8765] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 187.435811][ T8765] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 187.480806][ T8765] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 187.522386][ T8766] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 187.543077][ T8766] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 187.620459][ T8763] device hsr_slave_0 entered promiscuous mode [ 187.698362][ T8763] device hsr_slave_1 entered promiscuous mode [ 187.810217][ T8765] device hsr_slave_0 entered promiscuous mode [ 187.877944][ T8765] device hsr_slave_1 entered promiscuous mode [ 187.947542][ T8765] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 187.963305][ T8765] Cannot create hsr debugfs directory [ 188.003186][ T8766] team0: Port device team_slave_0 added [ 188.034411][ T8766] team0: Port device team_slave_1 added [ 188.095901][ T8766] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 188.113622][ T8766] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 188.172072][ T8766] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 188.198341][ T8766] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 188.211657][ T8766] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 188.256923][ T8766] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 188.311899][ T8771] chnl_net:caif_netlink_parms(): no params data found [ 188.422305][ T8766] device hsr_slave_0 entered promiscuous mode [ 188.477786][ T8766] device hsr_slave_1 entered promiscuous mode [ 188.537568][ T8766] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 188.553371][ T8766] Cannot create hsr debugfs directory [ 188.802279][ T8771] bridge0: port 1(bridge_slave_0) entered blocking state [ 188.816952][ T8771] bridge0: port 1(bridge_slave_0) entered disabled state [ 188.829150][ T8771] device bridge_slave_0 entered promiscuous mode [ 188.841638][ T8771] bridge0: port 2(bridge_slave_1) entered blocking state [ 188.852948][ T8771] bridge0: port 2(bridge_slave_1) entered disabled state [ 188.861882][ T8771] device bridge_slave_1 entered promiscuous mode [ 188.878461][ T8763] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 188.997555][ T8763] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 189.075312][ T8763] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 189.185575][ T8771] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 189.202843][ T8763] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 189.269948][ T8765] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 189.342073][ T8771] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 189.386980][ T8765] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 189.470228][ T8765] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 189.559907][ T8765] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 189.642934][ T8771] team0: Port device team_slave_0 added [ 189.664455][ T8771] team0: Port device team_slave_1 added [ 189.698188][ T8766] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 189.751032][ T8766] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 189.842606][ T8771] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 189.854241][ T8771] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 189.909300][ T8771] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 189.946308][ T8766] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 190.009694][ T8771] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 190.021751][ T8771] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 190.070416][ T8771] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 190.098066][ T8766] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 190.270099][ T8771] device hsr_slave_0 entered promiscuous mode [ 190.349115][ T8771] device hsr_slave_1 entered promiscuous mode [ 190.397416][ T8771] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 190.414674][ T8771] Cannot create hsr debugfs directory [ 190.576703][ T8771] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 190.635295][ T8771] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 190.704017][ T8771] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 190.760263][ T8771] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 190.857375][ T8763] 8021q: adding VLAN 0 to HW filter on device bond0 [ 190.889076][ T8765] 8021q: adding VLAN 0 to HW filter on device bond0 [ 190.900852][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 190.919629][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 190.952817][ T8763] 8021q: adding VLAN 0 to HW filter on device team0 [ 190.980960][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 190.992503][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 191.007851][ T38] bridge0: port 1(bridge_slave_0) entered blocking state [ 191.019725][ T38] bridge0: port 1(bridge_slave_0) entered forwarding state [ 191.046168][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 191.072878][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 191.104551][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 191.117924][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 191.136102][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 191.151919][ T38] bridge0: port 2(bridge_slave_1) entered blocking state [ 191.168760][ T38] bridge0: port 2(bridge_slave_1) entered forwarding state [ 191.187757][ T8765] 8021q: adding VLAN 0 to HW filter on device team0 [ 191.207179][ T8766] 8021q: adding VLAN 0 to HW filter on device bond0 [ 191.232060][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 191.245555][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 191.273303][ T2849] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 191.288227][ T2849] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 191.304226][ T2849] bridge0: port 1(bridge_slave_0) entered blocking state [ 191.318922][ T2849] bridge0: port 1(bridge_slave_0) entered forwarding state [ 191.337937][ T2849] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 191.355612][ T2849] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 191.369144][ T2849] bridge0: port 2(bridge_slave_1) entered blocking state [ 191.379673][ T2849] bridge0: port 2(bridge_slave_1) entered forwarding state [ 191.391341][ T2849] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 191.423560][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 191.449054][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 191.469129][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 191.488892][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 191.512535][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 191.531400][ T8766] 8021q: adding VLAN 0 to HW filter on device team0 [ 191.556976][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 191.571507][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 191.589870][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 191.608427][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 191.639610][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 191.654492][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 191.673088][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 191.689833][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 191.713554][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 191.744560][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 191.761294][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 191.775654][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 191.790193][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 191.811705][ T8768] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 191.828509][ T8768] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 191.847937][ T8768] bridge0: port 1(bridge_slave_0) entered blocking state [ 191.858758][ T8768] bridge0: port 1(bridge_slave_0) entered forwarding state [ 191.872433][ T8768] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 191.886551][ T8768] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 191.899549][ T8768] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 191.915679][ T8768] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 191.932812][ T8768] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 191.978153][ T3774] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 192.008157][ T3774] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 192.034259][ T3774] bridge0: port 2(bridge_slave_1) entered blocking state [ 192.064479][ T3774] bridge0: port 2(bridge_slave_1) entered forwarding state [ 192.098670][ T8765] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 192.124928][ T8768] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 192.163634][ T8771] 8021q: adding VLAN 0 to HW filter on device bond0 [ 192.183594][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 192.198411][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 192.211181][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 192.229195][ T3846] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 192.244849][ T3846] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 192.254949][ T3846] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 192.276235][ T8768] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 192.287514][ T8768] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 192.299684][ T8768] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 192.311615][ T8768] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 192.328104][ T8768] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 192.348512][ T8768] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 192.372857][ T8768] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 192.402405][ T8768] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 192.428225][ T8768] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 192.451566][ T8768] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 192.473339][ T8765] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 192.488814][ T8771] 8021q: adding VLAN 0 to HW filter on device team0 [ 192.514722][ T8763] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 192.537470][ T8766] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 192.568888][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 192.602705][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 192.631279][ T35] bridge0: port 1(bridge_slave_0) entered blocking state [ 192.643588][ T35] bridge0: port 1(bridge_slave_0) entered forwarding state [ 192.665112][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 192.687915][ T3846] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 192.709473][ T3846] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 192.727387][ T3846] bridge0: port 2(bridge_slave_1) entered blocking state [ 192.746394][ T3846] bridge0: port 2(bridge_slave_1) entered forwarding state [ 192.764203][ T3846] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 192.779876][ T3846] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 192.799937][ T3846] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 192.811044][ T3846] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 192.832787][ T3846] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 192.858032][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 192.881802][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 192.900845][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 192.936064][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 192.984263][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 193.016997][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 193.043562][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 193.084332][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 193.117800][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 193.145491][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 193.165125][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 193.176644][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 193.197882][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 193.220328][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 193.254072][ T8766] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 193.266364][ T8791] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 193.279087][ T8791] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 193.296523][ T8771] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 193.320276][ T8765] device veth0_vlan entered promiscuous mode [ 193.338687][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 193.359314][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 193.388723][ T8763] device veth0_vlan entered promiscuous mode [ 193.426373][ T8763] device veth1_vlan entered promiscuous mode [ 193.474471][ T3846] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 193.493770][ T3846] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 193.513204][ T3846] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 193.535057][ T3846] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 193.565441][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 193.587625][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 193.608803][ T8765] device veth1_vlan entered promiscuous mode [ 193.646898][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 193.678542][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 193.711380][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 193.741942][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 193.773637][ T8771] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 193.813474][ T8768] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 193.835635][ T8768] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 193.866841][ T8768] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 193.889051][ T8768] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 193.911983][ T8766] device veth0_vlan entered promiscuous mode [ 193.940924][ T8763] device veth0_macvtap entered promiscuous mode [ 193.972904][ T8763] device veth1_macvtap entered promiscuous mode [ 193.988980][ T2849] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 194.022021][ T2849] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 194.052146][ T2849] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 194.070842][ T2849] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 194.104492][ T2849] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 194.123642][ T2849] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 194.145930][ T2849] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 194.163839][ T2849] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 194.178341][ T8765] device veth0_macvtap entered promiscuous mode [ 194.213492][ T8765] device veth1_macvtap entered promiscuous mode [ 194.240769][ T8766] device veth1_vlan entered promiscuous mode [ 194.278345][ T8763] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 194.304115][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 194.323522][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 194.336915][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 194.360847][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 194.382328][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 194.400680][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 194.418307][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 194.431761][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 194.472728][ T8763] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 194.494893][ T8771] device veth0_vlan entered promiscuous mode [ 194.510058][ T8765] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 194.532039][ T8765] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.560511][ T8765] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 194.572941][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 194.593385][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 194.612746][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 194.631274][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 194.684216][ T8765] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 194.696325][ T8765] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.716498][ T8765] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 194.857642][ T8771] device veth1_vlan entered promiscuous mode [ 194.889812][ T2849] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 194.914851][ T2849] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 194.944839][ T2849] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 195.103236][ T8791] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 195.139285][ T8791] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 195.178413][ T8766] device veth0_macvtap entered promiscuous mode [ 195.377800][ T8766] device veth1_macvtap entered promiscuous mode [ 195.495902][ T8763] cgroup: cgroup: disabling cgroup2 socket matching due to net_prio or net_cls activation [ 195.504763][ T8766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 195.559706][ T8766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 195.614483][ T8766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 195.655789][ T8766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 195.701066][ T8766] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 195.790499][ T8795] ================================================================== [ 195.792284][ T8795] BUG: KASAN: vmalloc-out-of-bounds in bitfill_aligned+0x34a/0x400 [ 195.792319][ T8795] Write of size 8 at addr ffffc90009751000 by task syz-executor.0/8795 [ 195.792322][ T8795] [ 195.793882][ T8795] CPU: 1 PID: 8795 Comm: syz-executor.0 Not tainted 5.8.0-rc6-syzkaller #0 [ 195.794201][ T8795] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014 [ 195.794375][ T8795] Call Trace: [ 195.795288][ T8795] dump_stack+0x18f/0x20d [ 195.795359][ T8795] ? bitfill_aligned+0x34a/0x400 [ 195.795369][ T8795] ? bitfill_aligned+0x34a/0x400 [ 195.795896][ T8795] print_address_description.constprop.0.cold+0x5/0x436 [ 195.797350][ T8795] ? lockdep_hardirqs_off+0x66/0xa0 [ 195.797350][ T8795] ? vprintk_func+0x97/0x1a6 [ 195.797350][ T8795] ? bitfill_aligned+0x34a/0x400 [ 195.797350][ T8795] kasan_report.cold+0x1f/0x37 [ 195.797350][ T8795] ? bitfill_aligned+0x34a/0x400 [ 195.797350][ T8795] bitfill_aligned+0x34a/0x400 [ 195.797350][ T8795] sys_fillrect+0x408/0x7a0 [ 195.797350][ T8795] ? sys_fillrect+0x7a0/0x7a0 [ 195.797350][ T8795] drm_fb_helper_sys_fillrect+0x1e/0x190 [ 195.797350][ T8795] bit_clear_margins+0x2d5/0x4a0 [ 195.797350][ T8795] ? bit_bmove+0x210/0x210 [ 195.797350][ T8795] ? fb_get_color_depth+0x11a/0x240 [ 195.797350][ T8795] fbcon_clear_margins+0x1d5/0x230 [ 195.797350][ T8795] fbcon_switch+0xb6e/0x16c0 [ 195.797350][ T8795] ? fbcon_scroll+0x3600/0x3600 [ 195.797350][ T8795] ? fbcon_cursor+0x52b/0x650 [ 195.797350][ T8795] ? kmalloc_array.constprop.0+0x20/0x20 [ 195.797350][ T8795] ? is_console_locked+0x5/0x10 [ 195.797350][ T8795] ? fbcon_set_origin+0x26/0x50 [ 195.797350][ T8795] redraw_screen+0x2ae/0x770 [ 195.797350][ T8795] ? vc_init+0x440/0x440 [ 195.797350][ T8795] ? fb_get_color_depth+0x11a/0x240 [ 195.797350][ T8795] ? fbcon_set_palette+0x3a8/0x490 [ 195.797350][ T8795] fbcon_modechanged+0x575/0x710 [ 195.797350][ T8795] fbcon_update_vcs+0x3a/0x50 [ 195.797350][ T8795] fb_set_var+0xae8/0xd60 [ 195.797350][ T8795] ? fb_blank+0x190/0x190 [ 195.797350][ T8795] ? lock_release+0x8d0/0x8d0 [ 195.797350][ T8795] ? lock_is_held_type+0xb0/0xe0 [ 195.797350][ T8795] ? do_fb_ioctl+0x2f2/0x6c0 [ 195.797350][ T8795] ? _raw_spin_unlock_irqrestore+0x62/0xe0 [ 195.797350][ T8795] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 195.797350][ T8795] ? trace_hardirqs_on+0x5f/0x220 [ 195.797350][ T8795] do_fb_ioctl+0x33f/0x6c0 [ 195.797350][ T8795] ? fb_set_suspend+0x1a0/0x1a0 [ 195.797350][ T8795] ? lock_downgrade+0x820/0x820 [ 195.797350][ T8795] ? trace_hardirqs_on+0x5f/0x220 [ 195.797350][ T8795] ? lockdep_hardirqs_on+0x6a/0xe0 [ 195.797350][ T8795] ? tomoyo_path_number_perm+0x244/0x4d0 [ 195.797350][ T8795] ? tomoyo_execute_permission+0x470/0x470 [ 195.797350][ T8795] ? __might_fault+0xef/0x1d0 [ 195.797350][ T8795] ? __sanitizer_cov_trace_switch+0x45/0x70 [ 195.797350][ T8795] ? do_vfs_ioctl+0x27d/0x1090 [ 195.797350][ T8795] ? generic_block_fiemap+0x60/0x60 [ 195.797350][ T8795] fb_compat_ioctl+0x175/0xc10 [ 195.797350][ T8795] ? fb_open+0x430/0x430 [ 195.797350][ T8795] ? __fget_files+0x294/0x400 [ 195.797350][ T8795] ? fb_open+0x430/0x430 [ 195.797350][ T8795] __do_compat_sys_ioctl+0x1d3/0x230 [ 195.797350][ T8795] do_syscall_32_irqs_on+0x3f/0x60 [ 195.797350][ T8795] do_fast_syscall_32+0x7f/0x120 [ 195.797350][ T8795] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 195.797350][ T8795] RIP: 0023:0xf7f79569 [ 195.797350][ T8795] Code: Bad RIP value. [ 195.797350][ T8795] RSP: 002b:00000000f5d530bc EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 195.797350][ T8795] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000004601 [ 195.797350][ T8795] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 195.797350][ T8795] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 195.797350][ T8795] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 195.797350][ T8795] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 195.797350][ T8795] [ 195.797350][ T8795] [ 195.797350][ T8795] Memory state around the buggy address: [ 195.797350][ T8795] ffffc90009750f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 195.797350][ T8795] ffffc90009750f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 195.797350][ T8795] >ffffc90009751000: f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 [ 195.797350][ T8795] ^ [ 195.797350][ T8795] ffffc90009751080: f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 [ 195.797350][ T8795] ffffc90009751100: f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 [ 195.797350][ T8795] ================================================================== [ 195.797350][ T8795] Disabling lock debugging due to kernel taint [ 195.807928][ T8795] Kernel panic - not syncing: panic_on_warn set ... [ 195.807958][ T8795] CPU: 1 PID: 8795 Comm: syz-executor.0 Tainted: G B 5.8.0-rc6-syzkaller #0 [ 195.807968][ T8795] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014 [ 195.808021][ T8795] Call Trace: [ 195.808128][ T8795] dump_stack+0x18f/0x20d [ 195.808142][ T8795] ? bitfill_aligned+0x310/0x400 [ 195.808318][ T8795] panic+0x2e3/0x75c [ 195.808331][ T8795] ? __warn_printk+0xf3/0xf3 [ 195.808346][ T8795] ? preempt_schedule_common+0x59/0xc0 [ 195.808359][ T8795] ? bitfill_aligned+0x34a/0x400 [ 195.808373][ T8795] ? preempt_schedule_thunk+0x16/0x18 [ 195.808385][ T8795] ? trace_hardirqs_on+0x55/0x220 [ 195.808398][ T8795] ? bitfill_aligned+0x34a/0x400 [ 195.808415][ T8795] ? bitfill_aligned+0x34a/0x400 [ 195.808427][ T8795] end_report+0x4d/0x53 [ 195.808442][ T8795] kasan_report.cold+0xd/0x37 [ 195.808455][ T8795] ? bitfill_aligned+0x34a/0x400 [ 195.808471][ T8795] bitfill_aligned+0x34a/0x400 [ 195.808487][ T8795] sys_fillrect+0x408/0x7a0 [ 195.808500][ T8795] ? sys_fillrect+0x7a0/0x7a0 [ 195.808513][ T8795] drm_fb_helper_sys_fillrect+0x1e/0x190 [ 195.808525][ T8795] bit_clear_margins+0x2d5/0x4a0 [ 195.808537][ T8795] ? bit_bmove+0x210/0x210 [ 195.808550][ T8795] ? fb_get_color_depth+0x11a/0x240 [ 195.808562][ T8795] fbcon_clear_margins+0x1d5/0x230 [ 195.808574][ T8795] fbcon_switch+0xb6e/0x16c0 [ 195.808589][ T8795] ? fbcon_scroll+0x3600/0x3600 [ 195.808605][ T8795] ? fbcon_cursor+0x52b/0x650 [ 195.808618][ T8795] ? kmalloc_array.constprop.0+0x20/0x20 [ 195.808631][ T8795] ? is_console_locked+0x5/0x10 [ 195.808643][ T8795] ? fbcon_set_origin+0x26/0x50 [ 195.808657][ T8795] redraw_screen+0x2ae/0x770 [ 195.808671][ T8795] ? vc_init+0x440/0x440 [ 195.808680][ T8795] ? fb_get_color_depth+0x11a/0x240 [ 195.808689][ T8795] ? fbcon_set_palette+0x3a8/0x490 [ 195.808697][ T8795] fbcon_modechanged+0x575/0x710 [ 195.808706][ T8795] fbcon_update_vcs+0x3a/0x50 [ 195.808715][ T8795] fb_set_var+0xae8/0xd60 [ 195.808724][ T8795] ? fb_blank+0x190/0x190 [ 195.808732][ T8795] ? lock_release+0x8d0/0x8d0 [ 195.808740][ T8795] ? lock_is_held_type+0xb0/0xe0 [ 195.808751][ T8795] ? do_fb_ioctl+0x2f2/0x6c0 [ 195.808766][ T8795] ? _raw_spin_unlock_irqrestore+0x62/0xe0 [ 195.808779][ T8795] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 195.808787][ T8795] ? trace_hardirqs_on+0x5f/0x220 [ 195.808797][ T8795] do_fb_ioctl+0x33f/0x6c0 [ 195.808805][ T8795] ? fb_set_suspend+0x1a0/0x1a0 [ 195.808813][ T8795] ? lock_downgrade+0x820/0x820 [ 195.808822][ T8795] ? trace_hardirqs_on+0x5f/0x220 [ 195.808829][ T8795] ? lockdep_hardirqs_on+0x6a/0xe0 [ 195.808839][ T8795] ? tomoyo_path_number_perm+0x244/0x4d0 [ 195.808848][ T8795] ? tomoyo_execute_permission+0x470/0x470 [ 195.808856][ T8795] ? __might_fault+0xef/0x1d0 [ 195.808869][ T8795] ? __sanitizer_cov_trace_switch+0x45/0x70 [ 195.808877][ T8795] ? do_vfs_ioctl+0x27d/0x1090 [ 195.808885][ T8795] ? generic_block_fiemap+0x60/0x60 [ 195.808894][ T8795] fb_compat_ioctl+0x175/0xc10 [ 195.808906][ T8795] ? fb_open+0x430/0x430 [ 195.808919][ T8795] ? __fget_files+0x294/0x400 [ 195.808930][ T8795] ? fb_open+0x430/0x430 [ 195.808938][ T8795] __do_compat_sys_ioctl+0x1d3/0x230 [ 195.808948][ T8795] do_syscall_32_irqs_on+0x3f/0x60 [ 195.808957][ T8795] do_fast_syscall_32+0x7f/0x120 [ 195.808966][ T8795] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 195.808973][ T8795] RIP: 0023:0xf7f79569 [ 195.808975][ T8795] Code: Bad RIP value. [ 195.808979][ T8795] RSP: 002b:00000000f5d530bc EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 195.808988][ T8795] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000004601 [ 195.808993][ T8795] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 195.808997][ T8795] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 195.809002][ T8795] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 195.809007][ T8795] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 195.817214][ T8795] Kernel Offset: disabled [ 195.817214][ T8795] Rebooting in 86400 seconds..