[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.241' (ECDSA) to the list of known hosts. 2021/12/23 10:57:30 parsed 1 programs 2021/12/23 10:57:30 executed programs: 0 syzkaller login: [ 842.440721] IPVS: ftp: loaded support on port[0] = 21 [ 842.544796] chnl_net:caif_netlink_parms(): no params data found [ 842.648230] bridge0: port 1(bridge_slave_0) entered blocking state [ 842.654931] bridge0: port 1(bridge_slave_0) entered disabled state [ 842.662777] device bridge_slave_0 entered promiscuous mode [ 842.670272] bridge0: port 2(bridge_slave_1) entered blocking state [ 842.676631] bridge0: port 2(bridge_slave_1) entered disabled state [ 842.684401] device bridge_slave_1 entered promiscuous mode [ 842.702629] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 842.711473] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 842.730416] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 842.737786] team0: Port device team_slave_0 added [ 842.743183] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 842.751029] team0: Port device team_slave_1 added [ 842.766300] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 842.772845] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 842.798130] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 842.809657] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 842.815892] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 842.841117] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 842.851727] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 842.859497] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 842.878635] device hsr_slave_0 entered promiscuous mode [ 842.884469] device hsr_slave_1 entered promiscuous mode [ 842.891798] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 842.899074] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 842.962775] bridge0: port 2(bridge_slave_1) entered blocking state [ 842.969306] bridge0: port 2(bridge_slave_1) entered forwarding state [ 842.976092] bridge0: port 1(bridge_slave_0) entered blocking state [ 842.982507] bridge0: port 1(bridge_slave_0) entered forwarding state [ 843.013262] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 843.020893] 8021q: adding VLAN 0 to HW filter on device bond0 [ 843.030347] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 843.040584] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 843.049149] bridge0: port 1(bridge_slave_0) entered disabled state [ 843.056253] bridge0: port 2(bridge_slave_1) entered disabled state [ 843.064010] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 843.073917] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 843.080580] 8021q: adding VLAN 0 to HW filter on device team0 [ 843.090124] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 843.098188] bridge0: port 1(bridge_slave_0) entered blocking state [ 843.104520] bridge0: port 1(bridge_slave_0) entered forwarding state [ 843.114930] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 843.123450] bridge0: port 2(bridge_slave_1) entered blocking state [ 843.129852] bridge0: port 2(bridge_slave_1) entered forwarding state [ 843.144860] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 843.152854] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 843.163349] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 843.173720] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 843.184057] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 843.194801] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 843.201047] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 843.208571] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 843.221871] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready [ 843.231114] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 843.238932] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 843.248137] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 843.262129] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready [ 843.271570] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 843.303441] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready [ 843.310840] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready [ 843.317522] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready [ 843.327631] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 843.335041] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 843.342081] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 843.351018] device veth0_vlan entered promiscuous mode [ 843.360854] device veth1_vlan entered promiscuous mode [ 843.366638] IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready [ 843.375876] IPv6: ADDRCONF(NETDEV_UP): macvlan1: link is not ready [ 843.388279] IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready [ 843.398098] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 843.405290] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 843.413157] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 843.422261] device veth0_macvtap entered promiscuous mode [ 843.429009] IPv6: ADDRCONF(NETDEV_UP): macvtap0: link is not ready [ 843.437552] device veth1_macvtap entered promiscuous mode [ 843.446038] IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready [ 843.455769] IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready [ 843.466010] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 843.473216] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 843.481782] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 843.492035] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 843.499028] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 843.611753] IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready [ 843.619303] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 843.626518] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 843.638970] IPv6: ADDRCONF(NETDEV_UP): wlan1: link is not ready [ 843.645898] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 843.649098] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 843.656170] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 843.668103] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 844.478124] Bluetooth: hci0: command 0x0409 tx timeout [ 846.556949] Bluetooth: hci0: command 0x041b tx timeout [ 848.636750] Bluetooth: hci0: command 0x040f tx timeout [ 850.726512] Bluetooth: hci0: command 0x0419 tx timeout 2021/12/23 10:57:42 executed programs: 2 [ 863.604292] syz-executor.0 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=1000 [ 871.279218] ieee802154 phy0 wpan0: encryption failed: -22 [ 871.284957] ieee802154 phy1 wpan1: encryption failed: -22 [ 883.089264] syz-executor.0 cpuset=/ mems_allowed=0-1 [ 883.094622] CPU: 1 PID: 11770 Comm: syz-executor.0 Not tainted 4.19.211-syzkaller #0 [ 883.102497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 883.111843] Call Trace: [ 883.114436] dump_stack+0x1fc/0x2ef [ 883.118070] dump_header+0x15d/0xc3f [ 883.121893] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 883.127001] ? ___ratelimit+0x319/0x590 [ 883.130979] oom_kill_process.cold+0x10/0x692 [ 883.135478] ? check_preemption_disabled+0x41/0x280 [ 883.140501] ? has_intersects_mems_allowed+0x1d6/0x290 [ 883.145784] out_of_memory+0x1072/0x1390 [ 883.149853] ? oom_killer_disable+0x270/0x270 [ 883.154347] ? mutex_trylock+0x15f/0x1a0 [ 883.158413] __alloc_pages_nodemask+0x23a2/0x2890 [ 883.163276] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 883.168116] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 883.172959] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 883.178079] ? mark_held_locks+0xa6/0xf0 [ 883.182138] ? ____cache_alloc_node+0x156/0x1d0 [ 883.186803] ? cache_grow_begin+0x64/0x8a0 [ 883.191038] cache_grow_begin+0xa4/0x8a0 [ 883.195105] fallback_alloc+0x213/0x2e0 [ 883.199080] kmem_cache_alloc+0x1e4/0x370 [ 883.203366] anon_vma_clone+0x32d/0x5e0 [ 883.207360] anon_vma_fork+0x82/0x630 [ 883.211174] ? dup_userfaultfd+0x157/0x670 [ 883.215416] ? kmem_cache_alloc+0x315/0x370 [ 883.219748] copy_process.part.0+0x360f/0x8260 [ 883.224361] ? __cleanup_sighand+0x60/0x60 [ 883.228618] ? __do_page_fault+0x6d1/0xd60 [ 883.232858] _do_fork+0x22f/0xf30 [ 883.236317] ? fork_idle+0x220/0x220 [ 883.240031] ? up_read+0x17/0x110 [ 883.243483] ? __do_page_fault+0x180/0xd60 [ 883.247730] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 883.253097] ? trace_hardirqs_off_caller+0x6e/0x210 [ 883.258113] ? do_syscall_64+0x21/0x620 [ 883.262085] do_syscall_64+0xf9/0x620 [ 883.265891] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 883.271079] RIP: 0033:0x7fab46d94e99 [ 883.274795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 883.293698] RSP: 002b:00007fab4650a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 883.301408] RAX: ffffffffffffffda RBX: 00007fab46ea7f60 RCX: 00007fab46d94e99 [ 883.308674] RDX: 0000000000000000 RSI: 0000000020000b80 RDI: 0000000004060000 [ 883.315938] RBP: 00007fab46deeff1 R08: 0000000000000000 R09: 0000000000000000 [ 883.323202] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 883.330469] R13: 00007ffc3b72da6f R14: 00007fab4650a300 R15: 0000000000022000 [ 932.716329] ieee802154 phy0 wpan0: encryption failed: -22 [ 932.721950] ieee802154 phy1 wpan1: encryption failed: -22 [ 968.257124] Bluetooth: hci0: command 0x0406 tx timeout [ 994.152983] ieee802154 phy0 wpan0: encryption failed: -22 [ 994.158580] ieee802154 phy1 wpan1: encryption failed: -22 [ 1005.029703] INFO: task syz-executor.0:8399 blocked for more than 140 seconds. [ 1005.037169] Not tainted 4.19.211-syzkaller #0 [ 1010.998374] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.