Warning: Permanently added '10.128.0.51' (ECDSA) to the list of known hosts. 2020/08/18 11:05:53 parsed 1 programs 2020/08/18 11:05:53 executed programs: 0 syzkaller login: [ 535.340405] audit: type=1400 audit(1597748753.733:8): avc: denied { execmem } for pid=6365 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 536.497762] IPVS: ftp: loaded support on port[0] = 21 [ 536.596469] chnl_net:caif_netlink_parms(): no params data found [ 536.689835] bridge0: port 1(bridge_slave_0) entered blocking state [ 536.696538] bridge0: port 1(bridge_slave_0) entered disabled state [ 536.704840] device bridge_slave_0 entered promiscuous mode [ 536.711826] bridge0: port 2(bridge_slave_1) entered blocking state [ 536.718579] bridge0: port 2(bridge_slave_1) entered disabled state [ 536.727271] device bridge_slave_1 entered promiscuous mode [ 536.746449] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 536.755358] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 536.773495] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 536.780721] team0: Port device team_slave_0 added [ 536.787706] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 536.795114] team0: Port device team_slave_1 added [ 536.810100] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 536.816600] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 536.841977] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 536.854105] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 536.860334] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 536.885593] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 536.896743] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 536.905758] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 536.923894] device hsr_slave_0 entered promiscuous mode [ 536.929576] device hsr_slave_1 entered promiscuous mode [ 536.935894] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 536.943214] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 537.008102] bridge0: port 2(bridge_slave_1) entered blocking state [ 537.015017] bridge0: port 2(bridge_slave_1) entered forwarding state [ 537.021859] bridge0: port 1(bridge_slave_0) entered blocking state [ 537.028317] bridge0: port 1(bridge_slave_0) entered forwarding state [ 537.056768] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 537.063658] 8021q: adding VLAN 0 to HW filter on device bond0 [ 537.071591] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 537.081311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 537.100706] bridge0: port 1(bridge_slave_0) entered disabled state [ 537.108214] bridge0: port 2(bridge_slave_1) entered disabled state [ 537.119434] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 537.126287] 8021q: adding VLAN 0 to HW filter on device team0 [ 537.135041] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 537.143124] bridge0: port 1(bridge_slave_0) entered blocking state [ 537.149472] bridge0: port 1(bridge_slave_0) entered forwarding state [ 537.170145] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 537.180030] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 537.192341] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 537.199903] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 537.208398] bridge0: port 2(bridge_slave_1) entered blocking state [ 537.215444] bridge0: port 2(bridge_slave_1) entered forwarding state [ 537.223157] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 537.230794] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 537.238587] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 537.246324] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 537.254240] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 537.261088] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 537.273872] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready [ 537.281216] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 537.293173] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 537.306158] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 537.359677] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready [ 537.369786] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 537.398809] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready [ 537.406281] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready [ 537.413669] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready [ 537.422624] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 537.430202] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 537.437365] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 537.446496] device veth0_vlan entered promiscuous mode [ 537.456295] device veth1_vlan entered promiscuous mode [ 537.462349] IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready [ 537.471693] IPv6: ADDRCONF(NETDEV_UP): macvlan1: link is not ready [ 537.483227] IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready [ 537.492361] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 537.500277] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 537.507950] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 537.517457] device veth0_macvtap entered promiscuous mode [ 537.524679] IPv6: ADDRCONF(NETDEV_UP): macvtap0: link is not ready [ 537.534090] device veth1_macvtap entered promiscuous mode [ 537.542319] IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready [ 537.552032] IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready [ 537.563187] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 537.569987] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 537.578797] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 537.586680] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 537.596508] IPv6: ADDRCONF(NETDEV_UP): batadv_slave_1: link is not ready [ 537.603612] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 537.610180] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 537.618086] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 537.731246] gre0: Master is either lo or non-ether device [ 537.781876] ip_vti0: Master is either lo or non-ether device [ 537.800858] ip6_vti0: Master is either lo or non-ether device [ 537.818359] sit0: Master is either lo or non-ether device [ 537.846232] ip6tnl0: Master is either lo or non-ether device [ 537.866472] ip6gre0: Master is either lo or non-ether device [ 537.918639] syz-executor.0 (6634) used greatest stack depth: 24656 bytes left [ 537.983524] vcan0: Master is either lo or non-ether device [ 538.096192] nlmon0: Master is either lo or non-ether device [ 538.178685] caif0: Master is either lo or non-ether device [ 538.272051] vxcan0: Master is either lo or non-ether device [ 538.357475] vxcan1: Master is either lo or non-ether device [ 538.523682] Bluetooth: hci0 command 0x0409 tx timeout [ 538.579995] bridge0: port 1(bridge_slave_0) entered disabled state [ 538.617931] bridge_slave_0: Device is already in use. [ 538.630888] bridge0: port 1(bridge_slave_0) entered disabled state [ 538.641321] device bridge_slave_0 left promiscuous mode [ 538.660814] bridge0: port 1(bridge_slave_0) entered disabled state [ 538.787438] bridge0: port 2(bridge_slave_1) entered disabled state [ 538.807514] bridge_slave_1: Device is already in use. [ 538.824195] bridge0: port 2(bridge_slave_1) entered disabled state [ 538.833917] device bridge_slave_1 left promiscuous mode [ 538.853749] bridge0: port 2(bridge_slave_1) entered disabled state [ 539.027804] bond_slave_0: Device is already in use. [ 539.046904] bond0: Releasing backup interface bond_slave_0 [ 539.181990] bond_slave_1: Device is already in use. [ 539.190402] bond0: Releasing backup interface bond_slave_1 [ 539.297683] team_slave_0: Device is already in use. [ 539.306685] team0: Port device team_slave_0 removed [ 539.477573] team_slave_1: Device is already in use. [ 539.494112] team0: Port device team_slave_1 removed [ 539.630652] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 539.644260] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 539.655345] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 539.666972] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 539.790182] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 539.800488] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 539.824473] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 539.839652] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 540.011192] hsr_slave_0: Device is already in use. [ 540.031582] device hsr_slave_0 left promiscuous mode [ 540.175542] hsr_slave_1: Device is already in use. [ 540.192521] device hsr_slave_1 left promiscuous mode 2020/08/18 11:05:58 executed programs: 45 [ 540.377443] veth1_vlan: Device is already in use. [ 540.431288] syz-executor.0 (6957) used greatest stack depth: 24408 bytes left [ 540.476913] ------------[ cut here ]------------ [ 540.481785] WARNING: CPU: 1 PID: 6968 at drivers/net/ipvlan/ipvlan_main.c:63 ipvlan_unregister_nf_hook+0x230/0x260 [ 540.492311] Kernel panic - not syncing: panic_on_warn set ... [ 540.492311] [ 540.499680] CPU: 1 PID: 6968 Comm: syz-executor.0 Not tainted 4.14.193-syzkaller #0 [ 540.507511] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 540.516902] Call Trace: [ 540.519570] dump_stack+0x1b2/0x283 [ 540.523252] panic+0x1f9/0x42d [ 540.526454] ? add_taint.cold+0x16/0x16 [ 540.530448] ? ipvlan_unregister_nf_hook+0x230/0x260 [ 540.535562] ? ipvlan_unregister_nf_hook+0x230/0x260 [ 540.540670] __warn.cold+0x20/0x4b [ 540.544213] ? ist_end_non_atomic+0x10/0x10 [ 540.548542] ? ipvlan_unregister_nf_hook+0x230/0x260 [ 540.553650] report_bug+0x208/0x249 [ 540.557290] do_error_trap+0x195/0x2d0 [ 540.561184] ? math_error+0x2d0/0x2d0 [ 540.565065] ? trace_hardirqs_on+0x10/0x10 [ 540.569313] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 540.574246] invalid_op+0x1b/0x40 [ 540.577705] RIP: 0010:ipvlan_unregister_nf_hook+0x230/0x260 [ 540.583412] RSP: 0018:ffff88808a0e73e8 EFLAGS: 00010297 [ 540.588779] RAX: ffff88809ae52540 RBX: 0000000000000000 RCX: 1ffff110135ca5be [ 540.596046] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000286 [ 540.602807] Bluetooth: hci0 command 0x041b tx timeout [ 540.603310] RBP: ffff888096d48040 R08: 0000000000000000 R09: 0000000000000001 [ 540.615789] R10: 0000000000000000 R11: ffff88809ae52540 R12: ffff88809b9b80c0 [ 540.623060] R13: ffff88809795c000 R14: 0000000000000000 R15: ffff888095dd4240 [ 540.630737] ? ipvlan_unregister_nf_hook+0x230/0x260 [ 540.635845] ipvlan_set_port_mode+0x491/0x5a0 [ 540.640328] ipvlan_link_new+0xba2/0xfa0 [ 540.644451] rtnl_newlink+0xf88/0x1830 [ 540.648344] ? __lock_acquire+0x5fc/0x3f20 [ 540.652587] ? ipvlan_port_destroy+0x3f0/0x3f0 [ 540.657158] ? trace_hardirqs_on+0x10/0x10 [ 540.661394] ? rtnl_dellink+0x6a0/0x6a0 [ 540.665354] ? trace_hardirqs_on+0x10/0x10 [ 540.669592] ? lock_acquire+0x170/0x3f0 [ 540.673565] ? lock_acquire+0x170/0x3f0 [ 540.677539] ? lock_downgrade+0x740/0x740 [ 540.681699] ? rtnl_dellink+0x6a0/0x6a0 [ 540.685670] rtnetlink_rcv_msg+0x3be/0xb10 [ 540.689889] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 540.694404] ? __netlink_lookup+0x345/0x5d0 [ 540.698713] netlink_rcv_skb+0x125/0x390 [ 540.702757] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 540.707233] ? netlink_ack+0x9a0/0x9a0 [ 540.711183] netlink_unicast+0x437/0x610 [ 540.715262] ? netlink_sendskb+0xd0/0xd0 [ 540.719325] netlink_sendmsg+0x62e/0xb80 [ 540.723379] ? nlmsg_notify+0x170/0x170 [ 540.727428] ? kernel_recvmsg+0x210/0x210 [ 540.731602] ? security_socket_sendmsg+0x83/0xb0 [ 540.736378] ? nlmsg_notify+0x170/0x170 [ 540.740361] sock_sendmsg+0xb5/0x100 [ 540.744083] ___sys_sendmsg+0x6c8/0x800 [ 540.748050] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 540.752812] ? __lock_acquire+0x5fc/0x3f20 [ 540.757076] ? do_futex+0x12b/0x1930 [ 540.760781] ? trace_hardirqs_on+0x10/0x10 [ 540.765043] ? __might_fault+0x104/0x1b0 [ 540.769093] ? trace_hardirqs_on+0x10/0x10 [ 540.773339] ? lock_acquire+0x170/0x3f0 [ 540.777301] ? lock_downgrade+0x740/0x740 [ 540.781458] ? futex_exit_release+0x220/0x220 [ 540.785957] ? __might_fault+0x104/0x1b0 [ 540.790006] ? lock_acquire+0x170/0x3f0 [ 540.793967] ? lock_downgrade+0x740/0x740 [ 540.798195] ? __fdget+0x167/0x1f0 [ 540.801786] ? sockfd_lookup_light+0xb2/0x160 [ 540.806274] __sys_sendmsg+0xa3/0x120 [ 540.810063] ? SyS_shutdown+0x160/0x160 [ 540.814069] ? SyS_clock_gettime+0xf5/0x180 [ 540.818385] ? SyS_clock_settime+0x1a0/0x1a0 [ 540.822781] SyS_sendmsg+0x27/0x40 [ 540.826353] ? __sys_sendmsg+0x120/0x120 [ 540.830411] do_syscall_64+0x1d5/0x640 [ 540.834338] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 540.839519] RIP: 0033:0x45d239 [ 540.842713] RSP: 002b:00007ffe3ee2f448 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 540.850430] RAX: ffffffffffffffda RBX: 000000000002c0c0 RCX: 000000000045d239 [ 540.857689] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000005 [ 540.864965] RBP: 000000000118cf80 R08: 0000000000000000 R09: 0000000000000000 [ 540.872231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000001190a50 [ 540.879935] R13: 0000000000000000 R14: 0000000000000b03 R15: 000000000118cf4c [ 540.888467] Kernel Offset: disabled [ 540.892129] Rebooting in 86400 seconds..