[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.223' (ECDSA) to the list of known hosts. syzkaller login: [ 69.161756][ T8481] IPVS: ftp: loaded support on port[0] = 21 [ 69.252423][ T8481] chnl_net:caif_netlink_parms(): no params data found [ 69.306761][ T8481] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.314552][ T8481] bridge0: port 1(bridge_slave_0) entered disabled state [ 69.322529][ T8481] device bridge_slave_0 entered promiscuous mode [ 69.332034][ T8481] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.340769][ T8481] bridge0: port 2(bridge_slave_1) entered disabled state [ 69.349079][ T8481] device bridge_slave_1 entered promiscuous mode [ 69.369663][ T8481] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 69.380512][ T8481] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 69.403985][ T8481] team0: Port device team_slave_0 added [ 69.411449][ T8481] team0: Port device team_slave_1 added [ 69.429585][ T8481] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 69.437556][ T8481] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 69.463836][ T8481] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 69.477708][ T8481] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 69.484814][ T8481] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 69.511324][ T8481] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 69.538829][ T8481] device hsr_slave_0 entered promiscuous mode [ 69.545660][ T8481] device hsr_slave_1 entered promiscuous mode [ 69.650014][ T8481] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 69.660988][ T8481] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 69.671316][ T8481] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 69.681946][ T8481] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 69.708229][ T8481] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.715767][ T8481] bridge0: port 2(bridge_slave_1) entered forwarding state [ 69.723580][ T8481] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.730650][ T8481] bridge0: port 1(bridge_slave_0) entered forwarding state [ 69.778091][ T8481] 8021q: adding VLAN 0 to HW filter on device bond0 [ 69.791391][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 69.804650][ T17] bridge0: port 1(bridge_slave_0) entered disabled state [ 69.812930][ T17] bridge0: port 2(bridge_slave_1) entered disabled state [ 69.820737][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 69.834176][ T8481] 8021q: adding VLAN 0 to HW filter on device team0 [ 69.846791][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 69.855736][ T17] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.862862][ T17] bridge0: port 1(bridge_slave_0) entered forwarding state [ 69.884566][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 69.894560][ T17] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.901603][ T17] bridge0: port 2(bridge_slave_1) entered forwarding state [ 69.910430][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 69.920550][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 69.932851][ T3007] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 69.945928][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 69.958241][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 69.971128][ T8481] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 69.990633][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 69.998581][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 70.012116][ T8481] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 70.032298][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 70.053042][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 70.061418][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 70.069633][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 70.080495][ T8481] device veth0_vlan entered promiscuous mode [ 70.094874][ T8481] device veth1_vlan entered promiscuous mode [ 70.117179][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 70.125502][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 70.134887][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 70.145943][ T8481] device veth0_macvtap entered promiscuous mode [ 70.157819][ T8481] device veth1_macvtap entered promiscuous mode [ 70.178452][ T8481] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 70.185926][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 70.196446][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 70.208945][ T8481] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 70.217187][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready executing program [ 70.230116][ T8481] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.239290][ T8481] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.248728][ T8481] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.257782][ T8481] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 70.516302][ T8713] detected buffer overflow in strlen [ 70.527902][ T8713] ------------[ cut here ]------------ [ 70.549646][ T8713] kernel BUG at lib/string.c:1149! [ 70.556570][ T8713] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 70.562659][ T8713] CPU: 0 PID: 8713 Comm: syz-executor731 Not tainted 5.10.0-syzkaller #0 [ 70.571201][ T8713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 70.581238][ T8713] RIP: 0010:fortify_panic+0xf/0x11 [ 70.586348][ T8713] Code: b5 78 a3 04 48 c7 c7 c0 8f c2 89 58 5b 5d 41 5c 41 5d 41 5e 41 5f e9 30 ba ee ff 48 89 fe 48 c7 c7 80 90 c2 89 e8 21 ba ee ff <0f> 0b e8 90 f9 97 f8 0f b6 f3 48 c7 c7 20 f4 10 8c e8 41 e8 fc fa [ 70.605940][ T8713] RSP: 0018:ffffc900020af500 EFLAGS: 00010282 [ 70.612141][ T8713] RAX: 0000000000000022 RBX: ffff888011c26768 RCX: 0000000000000000 [ 70.620096][ T8713] RDX: ffff88801bad0000 RSI: ffffffff815a6925 RDI: fffff52000415e92 [ 70.628060][ T8713] RBP: ffff88801be7c220 R08: 0000000000000022 R09: 0000000000000000 [ 70.636010][ T8713] R10: ffffffff815a4d7b R11: 0000000000000000 R12: ffff88801180ec00 [ 70.643961][ T8713] R13: ffff888011c26700 R14: 1ffff92000415ea2 R15: 0000000000000010 [ 70.651914][ T8713] FS: 0000000000812880(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000 [ 70.660825][ T8713] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 70.667389][ T8713] CR2: 00000000006dcf60 CR3: 00000000141ee000 CR4: 00000000001506f0 [ 70.675341][ T8713] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 70.683290][ T8713] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 70.691240][ T8713] Call Trace: [ 70.694502][ T8713] xt_rateest_tg_checkentry+0x2a5/0x6b0 [ 70.700034][ T8713] ? xt_rateest_net_init+0x90/0x90 [ 70.705145][ T8713] ? mutex_lock_io_nested+0xf60/0xf60 [ 70.710498][ T8713] ? xt_find_target+0xa3/0x280 [ 70.715246][ T8713] ? xt_rateest_net_init+0x90/0x90 [ 70.720354][ T8713] xt_check_target+0x26c/0x9e0 [ 70.725115][ T8713] ? textify_hooks.constprop.0+0x1a0/0x1a0 [ 70.730903][ T8713] ? xt_find_target+0x6e/0x280 [ 70.735654][ T8713] ? xt_find_target+0x6e/0x280 [ 70.740404][ T8713] find_check_entry.constprop.0+0x7f1/0x9e0 [ 70.746299][ T8713] ? compat_get_entries+0x7c0/0x7c0 [ 70.751480][ T8713] ? lockdep_hardirqs_on+0x79/0x100 [ 70.756663][ T8713] ? kfree+0xdb/0x3c0 [ 70.760634][ T8713] ? slab_free_freelist_hook+0x5d/0x150 [ 70.766162][ T8713] ? kfree+0xdb/0x3c0 [ 70.770126][ T8713] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 70.776348][ T8713] translate_table+0xc8b/0x1750 [ 70.781182][ T8713] ? ip6t_do_table+0x1a70/0x1a70 [ 70.786109][ T8713] do_ip6t_set_ctl+0x553/0xb70 [ 70.790862][ T8713] ? nf_sockopt_find.constprop.0+0x22d/0x2a0 [ 70.796832][ T8713] ? lock_downgrade+0x6d0/0x6d0 [ 70.801726][ T8713] ? compat_do_replace.constprop.0+0x470/0x470 [ 70.807869][ T8713] ? __mutex_unlock_slowpath+0xe2/0x610 [ 70.813415][ T8713] ? find_held_lock+0x2d/0x110 [ 70.818182][ T8713] ? nf_sockopt_find.constprop.0+0x22d/0x2a0 [ 70.824153][ T8713] nf_setsockopt+0x83/0xe0 [ 70.828570][ T8713] ipv6_setsockopt+0x122/0x180 [ 70.833350][ T8713] tcp_setsockopt+0x136/0x2440 [ 70.838156][ T8713] ? do_page_mkwrite+0x530/0x530 [ 70.843091][ T8713] ? tcp_sock_set_keepidle+0x40/0x40 [ 70.848376][ T8713] ? aa_sk_perm+0x385/0xb70 [ 70.852875][ T8713] ? aa_af_perm+0x230/0x230 [ 70.857366][ T8713] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 70.863595][ T8713] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 70.869834][ T8713] ? sock_common_setsockopt+0x2b/0x100 [ 70.875279][ T8713] __sys_setsockopt+0x2db/0x610 [ 70.880114][ T8713] ? sock_common_recvmsg+0x1a0/0x1a0 [ 70.885389][ T8713] ? __ia32_sys_recv+0x100/0x100 [ 70.890308][ T8713] ? vmacache_update+0xce/0x140 [ 70.895154][ T8713] __x64_sys_setsockopt+0xba/0x150 [ 70.900260][ T8713] ? syscall_enter_from_user_mode+0x1d/0x50 [ 70.906151][ T8713] do_syscall_64+0x2d/0x70 [ 70.910561][ T8713] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 70.916462][ T8713] RIP: 0033:0x4493d9 [ 70.920341][ T8713] Code: e8 0c ca 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 9b cb fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 70.939929][ T8713] RSP: 002b:00007fff679a3898 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 70.948330][ T8713] RAX: ffffffffffffffda RBX: 00000000200002c0 RCX: 00000000004493d9 [ 70.956283][ T8713] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000006 [ 70.964234][ T8713] RBP: 00007fff679a38b0 R08: 0000000000000470 R09: 00000000000000c2 [ 70.972186][ T8713] R10: 0000000020000080 R11: 0000000000000246 R12: 00000000000112d5 [ 70.980136][ T8713] R13: 00000000006d7dc8 R14: 0000000000000000 R15: 0000000000000000 [ 70.988091][ T8713] Modules linked in: [ 70.996643][ T8713] ---[ end trace e17a915ca7e8b666 ]--- [ 71.002261][ T8713] RIP: 0010:fortify_panic+0xf/0x11 [ 71.007618][ T8713] Code: b5 78 a3 04 48 c7 c7 c0 8f c2 89 58 5b 5d 41 5c 41 5d 41 5e 41 5f e9 30 ba ee ff 48 89 fe 48 c7 c7 80 90 c2 89 e8 21 ba ee ff <0f> 0b e8 90 f9 97 f8 0f b6 f3 48 c7 c7 20 f4 10 8c e8 41 e8 fc fa [ 71.027822][ T8713] RSP: 0018:ffffc900020af500 EFLAGS: 00010282 [ 71.034051][ T8713] RAX: 0000000000000022 RBX: ffff888011c26768 RCX: 0000000000000000 [ 71.042199][ T8713] RDX: ffff88801bad0000 RSI: ffffffff815a6925 RDI: fffff52000415e92 [ 71.051051][ T8713] RBP: ffff88801be7c220 R08: 0000000000000022 R09: 0000000000000000 [ 71.059189][ T8713] R10: ffffffff815a4d7b R11: 0000000000000000 R12: ffff88801180ec00 [ 71.067410][ T8713] R13: ffff888011c26700 R14: 1ffff92000415ea2 R15: 0000000000000010 [ 71.075534][ T8713] FS: 0000000000812880(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000 [ 71.085215][ T8713] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 71.091896][ T8713] CR2: 00000000006dcf60 CR3: 00000000141ee000 CR4: 00000000001506f0 [ 71.100007][ T8713] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 71.108492][ T8713] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 71.116589][ T8713] Kernel panic - not syncing: Fatal exception [ 71.123297][ T8713] Kernel Offset: disabled [ 71.127610][ T8713] Rebooting in 86400 seconds..