[ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.180' (ECDSA) to the list of known hosts. 2021/04/19 18:24:36 parsed 1 programs 2021/04/19 18:24:44 executed programs: 0 syzkaller login: [ 1072.708514][ T8411] IPVS: ftp: loaded support on port[0] = 21 [ 1072.770184][ T8411] chnl_net:caif_netlink_parms(): no params data found [ 1072.789349][ T8411] bridge0: port 1(bridge_slave_0) entered blocking state [ 1072.796583][ T8411] bridge0: port 1(bridge_slave_0) entered disabled state [ 1072.804478][ T8411] device bridge_slave_0 entered promiscuous mode [ 1072.811762][ T8411] bridge0: port 2(bridge_slave_1) entered blocking state [ 1072.819033][ T8411] bridge0: port 2(bridge_slave_1) entered disabled state [ 1072.826381][ T8411] device bridge_slave_1 entered promiscuous mode [ 1072.837192][ T8411] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1072.847642][ T8411] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1072.860566][ T8411] team0: Port device team_slave_0 added [ 1072.866751][ T8411] team0: Port device team_slave_1 added [ 1072.876001][ T8411] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1072.882967][ T8411] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1072.908901][ T8411] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1072.920092][ T8411] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1072.927020][ T8411] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1072.953180][ T8411] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1072.968793][ T8411] device hsr_slave_0 entered promiscuous mode [ 1072.975373][ T8411] device hsr_slave_1 entered promiscuous mode [ 1073.010952][ T8411] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1073.020974][ T8411] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1073.029778][ T8411] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1073.039962][ T8411] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1073.053090][ T8411] bridge0: port 2(bridge_slave_1) entered blocking state [ 1073.061177][ T8411] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1073.068776][ T8411] bridge0: port 1(bridge_slave_0) entered blocking state [ 1073.076193][ T8411] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1073.096505][ T8411] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1073.110894][ T8411] 8021q: adding VLAN 0 to HW filter on device team0 [ 1073.118952][ T8633] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 1073.126931][ T8633] bridge0: port 1(bridge_slave_0) entered disabled state [ 1073.135658][ T8633] bridge0: port 2(bridge_slave_1) entered disabled state [ 1073.144092][ T8633] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 1073.153635][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 1073.162038][ T7] bridge0: port 1(bridge_slave_0) entered blocking state [ 1073.169144][ T7] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1073.177994][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 1073.186412][ T19] bridge0: port 2(bridge_slave_1) entered blocking state [ 1073.193454][ T19] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1073.204976][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 1073.213376][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 1073.222339][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 1073.233561][ T8411] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 1073.244077][ T8411] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1073.255188][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 1073.263371][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 1073.271560][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 1073.284114][ T8411] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1073.291379][ T8553] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1073.298912][ T8553] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 1073.310732][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 1073.325052][ T8411] device veth0_vlan entered promiscuous mode [ 1073.331306][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 1073.339717][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 1073.347086][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 1073.357078][ T8411] device veth1_vlan entered promiscuous mode [ 1073.369606][ T8411] device veth0_macvtap entered promiscuous mode [ 1073.377127][ T8411] device veth1_macvtap entered promiscuous mode [ 1073.384485][ T8553] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 1073.392521][ T8553] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 1073.400646][ T8553] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 1073.408995][ T8553] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 1073.421964][ T8411] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1073.430231][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 1073.440762][ T8411] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1073.449063][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 1073.458621][ T8411] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1073.467441][ T8411] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1073.476518][ T8411] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1073.485338][ T8411] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1073.517425][ T690] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1073.529637][ T690] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1073.537069][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 1073.550717][ T8445] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1073.558594][ T8445] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1073.566089][ T3517] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1073.581702][ T8655] netlink: 'syz-executor.0': attribute type 4 has an invalid length. [ 1074.758448][ T19] Bluetooth: hci0: command 0x0409 tx timeout [ 1076.837905][ T8553] Bluetooth: hci0: command 0x041b tx timeout [ 1078.917756][ T8553] Bluetooth: hci0: command 0x040f tx timeout 2021/04/19 18:24:51 executed programs: 1 [ 1079.562888][ T8661] netlink: 'syz-executor.0': attribute type 4 has an invalid length. [ 1079.578535][ T8662] netlink: 'syz-executor.0': attribute type 4 has an invalid length. [ 1080.847230][ T8663] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 1080.997424][ T8385] Bluetooth: hci0: command 0x0419 tx timeout BUG: memory leak unreferenced object 0xffff8881160ee240 (size 32): comm "syz-executor.0", pid 8655, jiffies 4295044634 (age 13.730s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 01 00 00 00 00 00 00 00 00 00 00 00 00 00 02 00 ................ backtrace: [] ip_mc_add_src+0x348/0x450 [] ip_mc_source+0x3d4/0x610 [] ip_setsockopt+0x15d8/0x1f70 [] tcp_setsockopt+0x70/0x1420 [] __sys_setsockopt+0x1b0/0x360 [] __x64_sys_setsockopt+0x22/0x30 [] do_syscall_64+0x2d/0x70 [] entry_SYSCALL_64_after_hwframe+0x44/0xae