[[0;32m  OK  [0m] Reached target Graphical Interface.
         Starting Update UTMP about System Runlevel Changes...
         Starting Load/Save RF Kill Switch Status...
[[0;32m  OK  [0m] Started Update UTMP about System Runlevel Changes.
[[0;32m  OK  [0m] Started Load/Save RF Kill Switch Status.

Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '10.128.0.109' (ECDSA) to the list of known hosts.
2020/09/02 21:16:44 parsed 1 programs
2020/09/02 21:16:44 executed programs: 0
syzkaller login: [   63.056219][ T6860] IPVS: ftp: loaded support on port[0] = 21
[   63.212884][ T6860] chnl_net:caif_netlink_parms(): no params data found
[   63.268430][ T6860] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.276306][ T6860] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.285114][ T6860] device bridge_slave_0 entered promiscuous mode
[   63.294473][ T6860] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.301566][ T6860] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.310459][ T6860] device bridge_slave_1 entered promiscuous mode
[   63.332254][ T6860] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   63.344312][ T6860] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   63.368630][ T6860] team0: Port device team_slave_0 added
[   63.376164][ T6860] team0: Port device team_slave_1 added
[   63.395158][ T6860] batman_adv: batadv0: Adding interface: batadv_slave_0
[   63.402204][ T6860] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.428198][ T6860] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   63.441234][ T6860] batman_adv: batadv0: Adding interface: batadv_slave_1
[   63.448336][ T6860] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.474411][ T6860] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   63.501712][ T6860] device hsr_slave_0 entered promiscuous mode
[   63.508488][ T6860] device hsr_slave_1 entered promiscuous mode
[   63.606493][ T6860] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   63.617271][ T6860] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   63.627426][ T6860] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   63.638065][ T6860] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   63.662360][ T6860] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.669502][ T6860] bridge0: port 2(bridge_slave_1) entered forwarding state
[   63.677648][ T6860] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.684863][ T6860] bridge0: port 1(bridge_slave_0) entered forwarding state
[   63.730858][ T6860] 8021q: adding VLAN 0 to HW filter on device bond0
[   63.748281][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   63.758588][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.767352][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.775812][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   63.789233][ T6860] 8021q: adding VLAN 0 to HW filter on device team0
[   63.800544][   T23] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   63.809659][   T23] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.816828][   T23] bridge0: port 1(bridge_slave_0) entered forwarding state
[   63.833356][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   63.841691][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.848814][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   63.873096][   T23] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   63.883157][   T23] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   63.891490][   T23] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   63.904858][ T6860] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   63.916520][ T6860] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   63.925537][ T2462] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   63.934579][ T2462] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   63.954825][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   63.963046][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   63.977043][ T6860] 8021q: adding VLAN 0 to HW filter on device batadv0
[   63.998193][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   64.019616][ T2462] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   64.028046][ T2462] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   64.036881][ T2462] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   64.048232][ T6860] device veth0_vlan entered promiscuous mode
[   64.061370][ T6860] device veth1_vlan entered promiscuous mode
[   64.085736][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   64.094775][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   64.104900][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   64.116564][ T6860] device veth0_macvtap entered promiscuous mode
[   64.127639][ T6860] device veth1_macvtap entered promiscuous mode
[   64.147431][ T6860] batman_adv: batadv0: Interface activated: batadv_slave_0
[   64.155593][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   64.165996][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   64.178636][ T6860] batman_adv: batadv0: Interface activated: batadv_slave_1
[   64.186776][ T2462] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   64.199789][ T6860] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   64.208961][ T6860] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   64.218620][ T6860] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   64.229037][ T6860] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   65.053435][    T5] Bluetooth: hci0: command 0x0409 tx timeout
2020/09/02 21:16:49 executed programs: 66
[   67.131988][ T2462] Bluetooth: hci0: command 0x041b tx timeout
[   69.211653][ T2462] Bluetooth: hci0: command 0x040f tx timeout
[   71.291200][ T2462] Bluetooth: hci0: command 0x0419 tx timeout
2020/09/02 21:16:54 executed programs: 202
2020/09/02 21:16:59 executed programs: 345
[   77.511478][ T8437] general protection fault, probably for non-canonical address 0xdffffc0000000002: 0000 [#1] PREEMPT SMP KASAN
[   77.523329][ T8437] KASAN: null-ptr-deref in range [0x0000000000000010-0x0000000000000017]
[   77.531781][ T8437] CPU: 0 PID: 8437 Comm: syz-executor.0 Not tainted 5.9.0-rc3-syzkaller #0
[   77.540333][ T8437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   77.550432][ T8437] RIP: 0010:snd_ctl_release+0x69/0x3e0
[   77.555865][ T8437] Code: 44 24 10 4c 8b b0 b0 01 00 00 48 c7 80 b0 01 00 00 00 00 00 00 48 b8 00 00 00 00 00 fc ff df 49 8d 7e 10 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 f7 02 00 00 49 8b 46 10 4d 8d 6e 08 4c 8d a0 48
[   77.575450][ T8437] RSP: 0018:ffffc90009b67e10 EFLAGS: 00010202
[   77.581492][ T8437] RAX: dffffc0000000000 RBX: ffff8880a66c6d40 RCX: 1ffffffff11eb3f0
[   77.589448][ T8437] RDX: 0000000000000002 RSI: ffffffff860cc0cb RDI: 0000000000000010
[   77.597395][ T8437] RBP: ffff8880a66c6d40 R08: 0000000000000001 R09: ffffffff89cc5567
[   77.605342][ T8437] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8880a66c6dc4
[   77.613303][ T8437] R13: ffff8880a66c6d68 R14: 0000000000000000 R15: ffff8880a4be8758
[   77.621255][ T8437] FS:  00007f94c1cf8700(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000
[   77.630171][ T8437] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   77.636744][ T8437] CR2: 0000000000000000 CR3: 0000000099e44000 CR4: 00000000001506f0
[   77.644796][ T8437] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   77.652764][ T8437] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   77.660724][ T8437] Call Trace:
[   77.664010][ T8437]  __fput+0x285/0x920
[   77.667989][ T8437]  ? snd_ctl_empty_read_queue+0x210/0x210
[   77.673705][ T8437]  task_work_run+0xdd/0x190
[   77.678203][ T8437]  exit_to_user_mode_prepare+0x1e1/0x200
[   77.683819][ T8437]  syscall_exit_to_user_mode+0x7e/0x2e0
[   77.689347][ T8437]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   77.695252][ T8437] RIP: 0033:0x45d5b9
[   77.699136][ T8437] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   77.718727][ T8437] RSP: 002b:00007f94c1cf7c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[   77.727118][ T8437] RAX: 0000000000000000 RBX: 0000000000002ac0 RCX: 000000000045d5b9
[   77.735064][ T8437] RDX: 0000000000000004 RSI: 0000000000000001 RDI: 0000000000000006
[   77.743026][ T8437] RBP: 000000000118cf88 R08: 0000000000000000 R09: 0000000000000000
[   77.750986][ T8437] R10: 0000000020000180 R11: 0000000000000246 R12: 000000000118cf4c
[   77.758935][ T8437] R13: 00007ffc317144ff R14: 00007f94c1cf89c0 R15: 000000000118cf4c
[   77.766907][ T8437] Modules linked in:
[   77.779208][ T8437] ---[ end trace db9f5f35290c950a ]---
[   77.784693][ T8437] RIP: 0010:snd_ctl_release+0x69/0x3e0
[   77.790133][ T8437] Code: 44 24 10 4c 8b b0 b0 01 00 00 48 c7 80 b0 01 00 00 00 00 00 00 48 b8 00 00 00 00 00 fc ff df 49 8d 7e 10 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 f7 02 00 00 49 8b 46 10 4d 8d 6e 08 4c 8d a0 48
[   77.810502][ T8437] RSP: 0018:ffffc90009b67e10 EFLAGS: 00010202
[   77.816957][ T8437] RAX: dffffc0000000000 RBX: ffff8880a66c6d40 RCX: 1ffffffff11eb3f0
[   77.825580][ T8437] RDX: 0000000000000002 RSI: ffffffff860cc0cb RDI: 0000000000000010
[   77.833980][ T8437] RBP: ffff8880a66c6d40 R08: 0000000000000001 R09: ffffffff89cc5567
[   77.842349][ T8437] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8880a66c6dc4
[   77.850307][ T8437] R13: ffff8880a66c6d68 R14: 0000000000000000 R15: ffff8880a4be8758
[   77.858952][ T8437] FS:  00007f94c1cf8700(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000
[   77.868264][ T8437] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   77.875241][ T8437] CR2: 00007f8ee2d3c000 CR3: 0000000099e44000 CR4: 00000000001506f0
[   77.883607][ T8437] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   77.892241][ T8437] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   77.900196][ T8437] Kernel panic - not syncing: Fatal exception
[   77.907668][ T8437] Kernel Offset: disabled
[   77.912070][ T8437] Rebooting in 86400 seconds..