Warning: Permanently added '10.128.0.199' (ECDSA) to the list of known hosts. [ OK ] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch. [ OK ] Started Getty on tty6. [ OK ] Started Getty on tty5. [ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ 166.793467][ T29] audit: type=1400 audit(1597729938.703:8): avc: denied { execmem } for pid=8411 comm="syz-executor678" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ OK ] Started Getty on tty2. [ 166.851167][ T8417] IPVS: ftp: loaded support on port[0] = 21 [ OK ] Started Serial Getty on ttyS0. [ OK ] Reached target Login Prompts. [ 167.074419][ T8417] chnl_net:caif_netlink_parms(): no params data found [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. [ 167.215413][ T8417] bridge0: port 1(bridge_slave_0) entered blocking state [ 167.222699][ T8417] bridge0: port 1(bridge_slave_0) entered disabled state [ 167.232762][ T8417] device bridge_slave_0 entered promiscuous mode [ 167.248363][ T8417] bridge0: port 2(bridge_slave_1) entered blocking state [ 167.256407][ T8417] bridge0: port 2(bridge_slave_1) entered disabled state [ 167.266189][ T8417] device bridge_slave_1 entered promiscuous mode Starting Update UTMP about System Runlevel Changes... [ 167.384962][ T8417] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 167.414770][ T8417] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 167.497802][ T8417] team0: Port device team_slave_0 added [ 167.514081][ T8417] team0: Port device team_slave_1 added [ 167.720057][ T8417] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 167.720133][ T8417] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 167.720165][ T8417] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 167.778570][ T8417] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 167.778657][ T8417] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 167.778691][ T8417] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 168.032704][ T8417] device hsr_slave_0 entered promiscuous mode [ 168.087047][ T8417] device hsr_slave_1 entered promiscuous mode [ 169.362372][ T8417] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 169.397392][ T8417] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 169.467249][ T8417] netdevsim netdevsim0 netdevsim2: renamed from eth2 Debian GNU/Linux 9 syzkaller ttyS0 [ 169.536297][ T8417] netdevsim netdevsim0 netdevsim3: renamed from eth3 syzkaller login: [ 169.998484][ T8417] 8021q: adding VLAN 0 to HW filter on device bond0 [ 170.023888][ T4881] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 170.032781][ T4881] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 170.053590][ T8417] 8021q: adding VLAN 0 to HW filter on device team0 [ 170.072564][ T3217] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 170.082407][ T3217] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 170.092150][ T3217] bridge0: port 1(bridge_slave_0) entered blocking state [ 170.099556][ T3217] bridge0: port 1(bridge_slave_0) entered forwarding state [ 170.135600][ T3217] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 170.145826][ T3217] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 170.155918][ T3217] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 170.165434][ T3217] bridge0: port 2(bridge_slave_1) entered blocking state [ 170.172668][ T3217] bridge0: port 2(bridge_slave_1) entered forwarding state [ 170.181426][ T3217] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 170.192592][ T3217] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 170.215660][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 170.226650][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 170.242700][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 170.257901][ T3217] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 170.271372][ T3217] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 170.308243][ T3217] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 170.318556][ T3217] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 170.328524][ T3217] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 170.338496][ T3217] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 170.354939][ T8417] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 170.403040][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 170.411163][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 170.438121][ T8417] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 170.485595][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 170.495954][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 170.540795][ T3217] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 170.551084][ T3217] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 170.562447][ T3217] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 170.572236][ T3217] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 170.593756][ T8417] device veth0_vlan entered promiscuous mode [ 170.619704][ T8417] device veth1_vlan entered promiscuous mode [ 170.672225][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 170.682084][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 170.692125][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 170.702052][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 170.723001][ T8417] device veth0_macvtap entered promiscuous mode [ 170.741717][ T8417] device veth1_macvtap entered promiscuous mode [ 170.783787][ T8417] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 170.792261][ T3217] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 170.802251][ T3217] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 170.811580][ T3217] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 170.822201][ T3217] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 170.843764][ T8417] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 170.857392][ T3217] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 170.868368][ T3217] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready executing program [ 171.009481][ T8417] ===================================================== [ 171.016491][ T8417] BUG: KMSAN: uninit-value in eth_type_trans+0x655/0xc10 [ 171.023552][ T8417] CPU: 0 PID: 8417 Comm: syz-executor678 Not tainted 5.8.0-rc5-syzkaller #0 [ 171.033513][ T8417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 171.043613][ T8417] Call Trace: [ 171.047038][ T8417] dump_stack+0x21c/0x280 [ 171.051419][ T8417] kmsan_report+0xf7/0x1e0 [ 171.055883][ T8417] __msan_warning+0x58/0xa0 [ 171.060420][ T8417] eth_type_trans+0x655/0xc10 [ 171.065149][ T8417] __dev_forward_skb+0x4b0/0xb30 [ 171.070128][ T8417] veth_xmit+0x486/0xcf0 [ 171.074419][ T8417] ? veth_close+0x160/0x160 [ 171.078954][ T8417] xmit_one+0x3cf/0x750 [ 171.083236][ T8417] ? kmsan_get_metadata+0x116/0x180 [ 171.088485][ T8417] __dev_queue_xmit+0x3aad/0x4470 [ 171.093588][ T8417] dev_queue_xmit+0x4b/0x60 [ 171.098355][ T8417] __bpf_redirect+0x1479/0x16b0 [ 171.103342][ T8417] ? skb_ensure_writable+0x4d1/0x590 [ 171.108686][ T8417] bpf_clone_redirect+0x498/0x650 [ 171.113764][ T8417] ___bpf_prog_run+0x4498/0x98e0 [ 171.118760][ T8417] ? bpf_csum_level+0x780/0x780 [ 171.123785][ T8417] __bpf_prog_run512+0x12e/0x190 [ 171.128881][ T8417] ? alloc_pages_current+0x685/0xb50 [ 171.134218][ T8417] ? entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 171.140870][ T8417] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 171.147039][ T8417] ? kmsan_get_metadata+0x116/0x180 [ 171.152251][ T8417] ? kmsan_internal_set_origin+0x75/0xb0 [ 171.158034][ T8417] ? __msan_poison_alloca+0xf0/0x120 [ 171.163661][ T8417] ? kmsan_get_metadata+0x116/0x180 [ 171.169237][ T8417] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 171.175164][ T8417] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 171.181395][ T8417] ? ktime_get+0x384/0x470 [ 171.185935][ T8417] ? kmsan_get_metadata+0x4f/0x180 [ 171.191414][ T8417] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 171.197507][ T8417] ? __bpf_prog_run480+0x190/0x190 [ 171.202840][ T8417] bpf_test_run+0x52d/0xed0 [ 171.207373][ T8417] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 171.213289][ T8417] bpf_prog_test_run_skb+0x1053/0x2ad0 [ 171.218794][ T8417] ? bpf_prog_test_run_tracing+0xa00/0xa00 [ 171.224733][ T8417] __do_sys_bpf+0xb364/0x1a4c0 [ 171.229706][ T8417] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 171.235549][ T8417] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 171.241786][ T8417] ? handle_mm_fault+0x46b0/0x4940 [ 171.247058][ T8417] ? kmsan_get_metadata+0x116/0x180 [ 171.252322][ T8417] ? kmsan_set_origin_checked+0x95/0xf0 [ 171.258176][ T8417] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 171.264305][ T8417] ? kmsan_get_metadata+0x116/0x180 [ 171.269516][ T8417] ? kmsan_get_metadata+0x116/0x180 [ 171.274831][ T8417] __se_sys_bpf+0x8e/0xa0 [ 171.279184][ T8417] __ia32_sys_bpf+0x4a/0x70 [ 171.283781][ T8417] __do_fast_syscall_32+0x2af/0x480 [ 171.288994][ T8417] do_fast_syscall_32+0x6b/0xd0 [ 171.293850][ T8417] do_SYSENTER_32+0x73/0x90 [ 171.298388][ T8417] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 171.304991][ T8417] RIP: 0023:0xf7f18549 [ 171.309191][ T8417] Code: Bad RIP value. [ 171.313387][ T8417] RSP: 002b:00000000ffb37cac EFLAGS: 00000246 ORIG_RAX: 0000000000000165 [ 171.321857][ T8417] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000740 [ 171.329933][ T8417] RDX: 0000000000000028 RSI: 00000000f7f1828c RDI: 0000000000000004 [ 171.337908][ T8417] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 171.346014][ T8417] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 171.354339][ T8417] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 171.362470][ T8417] [ 171.364812][ T8417] Uninit was created at: [ 171.369197][ T8417] kmsan_internal_poison_shadow+0x66/0xd0 [ 171.375092][ T8417] kmsan_slab_alloc+0x8a/0xe0 [ 171.379807][ T8417] __kmalloc_node_track_caller+0xeab/0x12e0 [ 171.386251][ T8417] pskb_expand_head+0x26e/0x1e30 [ 171.391206][ T8417] skb_ensure_writable+0x4d1/0x590 [ 171.396327][ T8417] bpf_clone_redirect+0x26c/0x650 [ 171.401500][ T8417] ___bpf_prog_run+0x4498/0x98e0 [ 171.406511][ T8417] __bpf_prog_run512+0x12e/0x190 [ 171.411588][ T8417] bpf_test_run+0x52d/0xed0 [ 171.416120][ T8417] bpf_prog_test_run_skb+0x1053/0x2ad0 [ 171.421938][ T8417] __do_sys_bpf+0xb364/0x1a4c0 [ 171.426802][ T8417] __se_sys_bpf+0x8e/0xa0 [ 171.431257][ T8417] __ia32_sys_bpf+0x4a/0x70 [ 171.435787][ T8417] __do_fast_syscall_32+0x2af/0x480 [ 171.441312][ T8417] do_fast_syscall_32+0x6b/0xd0 [ 171.446372][ T8417] do_SYSENTER_32+0x73/0x90 [ 171.451368][ T8417] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 171.457697][ T8417] ===================================================== [ 171.464751][ T8417] Disabling lock debugging due to kernel taint [ 171.471066][ T8417] Kernel panic - not syncing: panic_on_warn set ... [ 171.477669][ T8417] CPU: 0 PID: 8417 Comm: syz-executor678 Tainted: G B 5.8.0-rc5-syzkaller #0 [ 171.487872][ T8417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 171.498106][ T8417] Call Trace: [ 171.501558][ T8417] dump_stack+0x21c/0x280 [ 171.506092][ T8417] panic+0x4d7/0xef7 [ 171.510060][ T8417] ? add_taint+0x17c/0x210 [ 171.514889][ T8417] kmsan_report+0x1df/0x1e0 [ 171.519420][ T8417] __msan_warning+0x58/0xa0 [ 171.524150][ T8417] eth_type_trans+0x655/0xc10 [ 171.528909][ T8417] __dev_forward_skb+0x4b0/0xb30 [ 171.534209][ T8417] veth_xmit+0x486/0xcf0 [ 171.538483][ T8417] ? veth_close+0x160/0x160 [ 171.542996][ T8417] xmit_one+0x3cf/0x750 [ 171.547158][ T8417] ? kmsan_get_metadata+0x116/0x180 [ 171.552366][ T8417] __dev_queue_xmit+0x3aad/0x4470 [ 171.557558][ T8417] dev_queue_xmit+0x4b/0x60 [ 171.562210][ T8417] __bpf_redirect+0x1479/0x16b0 [ 171.567078][ T8417] ? skb_ensure_writable+0x4d1/0x590 [ 171.572422][ T8417] bpf_clone_redirect+0x498/0x650 [ 171.577479][ T8417] ___bpf_prog_run+0x4498/0x98e0 [ 171.582427][ T8417] ? bpf_csum_level+0x780/0x780 [ 171.587305][ T8417] __bpf_prog_run512+0x12e/0x190 [ 171.592254][ T8417] ? alloc_pages_current+0x685/0xb50 [ 171.597592][ T8417] ? entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 171.604106][ T8417] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 171.610966][ T8417] ? kmsan_get_metadata+0x116/0x180 [ 171.616397][ T8417] ? kmsan_internal_set_origin+0x75/0xb0 [ 171.622234][ T8417] ? __msan_poison_alloca+0xf0/0x120 [ 171.627520][ T8417] ? kmsan_get_metadata+0x116/0x180 [ 171.632720][ T8417] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 171.638553][ T8417] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 171.644785][ T8417] ? ktime_get+0x384/0x470 [ 171.649213][ T8417] ? kmsan_get_metadata+0x4f/0x180 [ 171.654550][ T8417] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 171.660393][ T8417] ? __bpf_prog_run480+0x190/0x190 [ 171.665522][ T8417] bpf_test_run+0x52d/0xed0 [ 171.670120][ T8417] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 171.676030][ T8417] bpf_prog_test_run_skb+0x1053/0x2ad0 [ 171.681529][ T8417] ? bpf_prog_test_run_tracing+0xa00/0xa00 [ 171.687465][ T8417] __do_sys_bpf+0xb364/0x1a4c0 [ 171.692258][ T8417] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 171.698266][ T8417] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 171.704358][ T8417] ? handle_mm_fault+0x46b0/0x4940 [ 171.709616][ T8417] ? kmsan_get_metadata+0x116/0x180 [ 171.715175][ T8417] ? kmsan_set_origin_checked+0x95/0xf0 [ 171.720966][ T8417] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 171.727187][ T8417] ? kmsan_get_metadata+0x116/0x180 [ 171.732487][ T8417] ? kmsan_get_metadata+0x116/0x180 [ 171.738018][ T8417] __se_sys_bpf+0x8e/0xa0 [ 171.742357][ T8417] __ia32_sys_bpf+0x4a/0x70 [ 171.746885][ T8417] __do_fast_syscall_32+0x2af/0x480 [ 171.752122][ T8417] do_fast_syscall_32+0x6b/0xd0 [ 171.757104][ T8417] do_SYSENTER_32+0x73/0x90 [ 171.761861][ T8417] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 171.768195][ T8417] RIP: 0023:0xf7f18549 [ 171.772254][ T8417] Code: Bad RIP value. [ 171.776330][ T8417] RSP: 002b:00000000ffb37cac EFLAGS: 00000246 ORIG_RAX: 0000000000000165 [ 171.784770][ T8417] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000740 [ 171.792803][ T8417] RDX: 0000000000000028 RSI: 00000000f7f1828c RDI: 0000000000000004 [ 171.800985][ T8417] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 171.809282][ T8417] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 171.817507][ T8417] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 171.827080][ T8417] Kernel Offset: disabled [ 171.831550][ T8417] Rebooting in 86400 seconds..