Starting getty on tty2-tty6 if dbus and logind are not available... [ OK ] Started Permit User Sessions. [ OK ] Found device /dev/ttyS0. [ OK ] Started System Logging Service. [*** ] (1 of 2) A start job is running for…Shell server (1min 31s / 2min 51s) [** ] (1 of 2) A start job is running for…Shell server (1min 33s / 2min 51s) [* ] (1 of 2) A start job is running for…Shell server (1min 33s / 2min 51s)[ 136.146516][ T8152] sshd (8152) used greatest stack depth: 4048 bytes left [ OK ] Started getty on tty2-tty6 if dbus and logind are not available. [ OK ] Started OpenBSD Secure Shell server. Warning: Permanently added '10.128.0.218' (ECDSA) to the list of known hosts. [ OK ] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch. [ OK ] Started Getty on tty6. [ OK ] Started Getty on tty5. [ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ 170.635060][ T29] audit: type=1400 audit(1597556807.750:8): avc: denied { execmem } for pid=8415 comm="syz-executor703" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 170.709912][ T8420] IPVS: ftp: loaded support on port[0] = 21 [ OK ] Started Getty on tty2. [ OK ] Started Getty on tty1. [ 170.966774][ T8420] chnl_net:caif_netlink_parms(): no params data found [ OK ] Started Serial Getty on ttyS0. [ 171.112145][ T8420] bridge0: port 1(bridge_slave_0) entered blocking state [ OK [0[ 171.119656][ T8420] bridge0: port 1(bridge_slave_0) entered disabled state m] Reached target Login Prompts.[ 171.130904][ T8420] device bridge_slave_0 entered promiscuous mode [ 171.143086][ T8420] bridge0: port 2(bridge_slave_1) entered blocking state [ 171.151465][ T8420] bridge0: port 2(bridge_slave_1) entered disabled state [ 171.160931][ T8420] device bridge_slave_1 entered promiscuous mode [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. [ 171.213763][ T8420] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 171.232541][ T8420] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 171.285864][ T8420] team0: Port device team_slave_0 added [ 171.301559][ T8420] team0: Port device team_slave_1 added [ 171.352168][ T8420] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 171.359734][ T8420] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 171.386896][ T8420] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 171.393912][ T8420] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 171.394034][ T8420] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 171.440365][ T8420] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 171.520062][ T8420] device hsr_slave_0 entered promiscuous mode [ 171.530900][ T8420] device hsr_slave_1 entered promiscuous mode Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ 171.989078][ T8420] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 172.056238][ T8420] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 172.116641][ T8420] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 172.164798][ T8420] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. [ 172.643122][ T8420] 8021q: adding VLAN 0 to HW filter on device bond0 [ 172.733021][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 172.744084][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 172.768577][ T8420] 8021q: adding VLAN 0 to HW filter on device team0 [ 172.899328][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 172.909778][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 172.919469][ T28] bridge0: port 1(bridge_slave_0) entered blocking state [ 172.929070][ T28] bridge0: port 1(bridge_slave_0) entered forwarding state [ 173.080831][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 173.090931][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 173.101121][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 173.110720][ T28] bridge0: port 2(bridge_slave_1) entered blocking state [ 173.118094][ T28] bridge0: port 2(bridge_slave_1) entered forwarding state [ 173.127234][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 173.138506][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 173.369668][ T8420] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 173.380690][ T8420] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 173.462933][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 173.475122][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 173.486547][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 173.500319][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 173.511070][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 173.521258][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 173.532016][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 173.533995][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 173.727432][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 173.738284][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 173.863645][ T3672] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 173.871791][ T3672] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 173.951229][ T8420] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 174.244106][ T3672] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 174.255351][ T3672] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 174.467845][ T3672] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 174.478489][ T3672] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 174.537842][ T8420] device veth0_vlan entered promiscuous mode [ 174.564507][ T3672] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 174.574929][ T3672] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 174.622078][ T8420] device veth1_vlan entered promiscuous mode [ 174.686991][ T3672] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 174.697209][ T3672] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 174.706990][ T3672] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 174.716622][ T3672] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 174.736865][ T8420] device veth0_macvtap entered promiscuous mode [ 174.757910][ T8420] device veth1_macvtap entered promiscuous mode [ 174.799513][ T8420] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 174.808093][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 174.818353][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 174.828363][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready D[ 174.838795][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready ebian GNU/Linux 9 syzkaller ttyS0 syzkaller login: [ 174.872092][ T8420] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 174.880679][ T3672] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 174.891380][ T3672] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready executing program [ 175.008797][ T8420] ===================================================== [ 175.015861][ T8420] BUG: KMSAN: uninit-value in eth_type_trans+0x655/0xc10 [ 175.023179][ T8420] CPU: 1 PID: 8420 Comm: syz-executor703 Not tainted 5.8.0-rc5-syzkaller #0 [ 175.031885][ T8420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 175.042329][ T8420] Call Trace: [ 175.045661][ T8420] dump_stack+0x21c/0x280 [ 175.051049][ T8420] kmsan_report+0xf7/0x1e0 [ 175.055538][ T8420] __msan_warning+0x58/0xa0 [ 175.060111][ T8420] eth_type_trans+0x655/0xc10 [ 175.064848][ T8420] __dev_forward_skb+0x4b0/0xb30 [ 175.070012][ T8420] veth_xmit+0x486/0xcf0 [ 175.074623][ T8420] ? veth_close+0x160/0x160 [ 175.079205][ T8420] xmit_one+0x3cf/0x750 [ 175.083988][ T8420] ? kmsan_get_metadata+0x116/0x180 [ 175.089842][ T8420] __dev_queue_xmit+0x3aad/0x4470 [ 175.094966][ T8420] dev_queue_xmit+0x4b/0x60 [ 175.099984][ T8420] __bpf_redirect+0x1479/0x16b0 [ 175.106438][ T8420] ? skb_ensure_writable+0x4d1/0x590 [ 175.111872][ T8420] bpf_clone_redirect+0x498/0x650 [ 175.116963][ T8420] ? kmsan_slab_alloc+0x8a/0xe0 [ 175.122558][ T8420] ___bpf_prog_run+0x4498/0x98e0 [ 175.127540][ T8420] ? bpf_csum_level+0x780/0x780 [ 175.132524][ T8420] __bpf_prog_run512+0x12e/0x190 [ 175.137684][ T8420] ? kmsan_slab_alloc+0x8a/0xe0 [ 175.142575][ T8420] ? bpf_prog_test_run_skb+0x8cb/0x2ad0 [ 175.148175][ T8420] ? __do_sys_bpf+0xb364/0x1a4c0 [ 175.157336][ T8420] ? __ia32_sys_bpf+0x4a/0x70 [ 175.166690][ T8420] ? 0xffffffff81000000 [ 175.176850][ T8420] ? do_fast_syscall_32+0x6b/0xd0 [ 175.190804][ T8420] ? do_SYSENTER_32+0x73/0x90 [ 175.197442][ T8420] ? entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 175.203978][ T8420] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 175.210140][ T8420] ? kmsan_get_metadata+0x116/0x180 [ 175.215340][ T8420] ? kmsan_internal_set_origin+0x75/0xb0 [ 175.221967][ T8420] ? __msan_poison_alloca+0xf0/0x120 [ 175.227374][ T8420] ? kmsan_get_metadata+0x116/0x180 [ 175.232597][ T8420] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 175.238422][ T8420] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 175.244516][ T8420] ? ktime_get+0x384/0x470 [ 175.250392][ T8420] ? kmsan_get_metadata+0x4f/0x180 [ 175.255527][ T8420] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 175.261356][ T8420] ? __bpf_prog_run480+0x190/0x190 [ 175.266488][ T8420] bpf_test_run+0x52d/0xed0 [ 175.273030][ T8420] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 175.279096][ T8420] bpf_prog_test_run_skb+0x1053/0x2ad0 [ 175.284940][ T8420] ? bpf_prog_test_run_tracing+0xa00/0xa00 [ 175.291213][ T8420] __do_sys_bpf+0xb364/0x1a4c0 [ 175.296363][ T8420] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 175.302190][ T8420] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 175.308297][ T8420] ? handle_mm_fault+0x46b0/0x4940 [ 175.313422][ T8420] ? kmsan_get_metadata+0x116/0x180 [ 175.318650][ T8420] ? kmsan_set_origin_checked+0x95/0xf0 [ 175.324205][ T8420] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 175.330288][ T8420] ? kmsan_get_metadata+0x116/0x180 [ 175.335511][ T8420] ? kmsan_get_metadata+0x116/0x180 [ 175.340725][ T8420] __se_sys_bpf+0x8e/0xa0 [ 175.345085][ T8420] __ia32_sys_bpf+0x4a/0x70 [ 175.349804][ T8420] __do_fast_syscall_32+0x2af/0x480 [ 175.355027][ T8420] do_fast_syscall_32+0x6b/0xd0 [ 175.359910][ T8420] do_SYSENTER_32+0x73/0x90 [ 175.364439][ T8420] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 175.371096][ T8420] RIP: 0023:0xf7f6c549 [ 175.375153][ T8420] Code: Bad RIP value. [ 175.379221][ T8420] RSP: 002b:00000000ffd260ec EFLAGS: 00000246 ORIG_RAX: 0000000000000165 [ 175.387689][ T8420] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000740 [ 175.396276][ T8420] RDX: 0000000000000028 RSI: 00000000f7f6c28c RDI: 0000000000000004 [ 175.406337][ T8420] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 175.414329][ T8420] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 175.423713][ T8420] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 175.431805][ T8420] [ 175.434132][ T8420] Uninit was created at: [ 175.439077][ T8420] kmsan_internal_poison_shadow+0x66/0xd0 [ 175.444926][ T8420] kmsan_slab_alloc+0x8a/0xe0 [ 175.451638][ T8420] __kmalloc_node_track_caller+0xeab/0x12e0 [ 175.458149][ T8420] pskb_expand_head+0x26e/0x1e30 [ 175.465687][ T8420] skb_ensure_writable+0x4d1/0x590 [ 175.471993][ T8420] bpf_clone_redirect+0x26c/0x650 [ 175.479115][ T8420] ___bpf_prog_run+0x4498/0x98e0 [ 175.484299][ T8420] __bpf_prog_run512+0x12e/0x190 [ 175.489764][ T8420] bpf_test_run+0x52d/0xed0 [ 175.495933][ T8420] bpf_prog_test_run_skb+0x1053/0x2ad0 [ 175.502523][ T8420] __do_sys_bpf+0xb364/0x1a4c0 [ 175.508009][ T8420] __se_sys_bpf+0x8e/0xa0 [ 175.512793][ T8420] __ia32_sys_bpf+0x4a/0x70 [ 175.517311][ T8420] __do_fast_syscall_32+0x2af/0x480 [ 175.522517][ T8420] do_fast_syscall_32+0x6b/0xd0 [ 175.527368][ T8420] do_SYSENTER_32+0x73/0x90 [ 175.532036][ T8420] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 175.538352][ T8420] ===================================================== [ 175.545448][ T8420] Disabling lock debugging due to kernel taint [ 175.551595][ T8420] Kernel panic - not syncing: panic_on_warn set ... [ 175.558570][ T8420] CPU: 1 PID: 8420 Comm: syz-executor703 Tainted: G B 5.8.0-rc5-syzkaller #0 [ 175.568741][ T8420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 175.578921][ T8420] Call Trace: [ 175.582416][ T8420] dump_stack+0x21c/0x280 [ 175.586753][ T8420] panic+0x4d7/0xef7 [ 175.590969][ T8420] ? add_taint+0x17c/0x210 [ 175.595585][ T8420] kmsan_report+0x1df/0x1e0 [ 175.600110][ T8420] __msan_warning+0x58/0xa0 [ 175.604923][ T8420] eth_type_trans+0x655/0xc10 [ 175.609623][ T8420] __dev_forward_skb+0x4b0/0xb30 [ 175.614842][ T8420] veth_xmit+0x486/0xcf0 [ 175.619220][ T8420] ? veth_close+0x160/0x160 [ 175.623968][ T8420] xmit_one+0x3cf/0x750 [ 175.628143][ T8420] ? kmsan_get_metadata+0x116/0x180 [ 175.633692][ T8420] __dev_queue_xmit+0x3aad/0x4470 [ 175.638979][ T8420] dev_queue_xmit+0x4b/0x60 [ 175.643483][ T8420] __bpf_redirect+0x1479/0x16b0 [ 175.648363][ T8420] ? skb_ensure_writable+0x4d1/0x590 [ 175.653678][ T8420] bpf_clone_redirect+0x498/0x650 [ 175.658728][ T8420] ? kmsan_slab_alloc+0x8a/0xe0 [ 175.663586][ T8420] ___bpf_prog_run+0x4498/0x98e0 [ 175.668824][ T8420] ? bpf_csum_level+0x780/0x780 [ 175.674698][ T8420] __bpf_prog_run512+0x12e/0x190 [ 175.680883][ T8420] ? kmsan_slab_alloc+0x8a/0xe0 [ 175.685959][ T8420] ? bpf_prog_test_run_skb+0x8cb/0x2ad0 [ 175.691509][ T8420] ? __do_sys_bpf+0xb364/0x1a4c0 [ 175.696540][ T8420] ? __ia32_sys_bpf+0x4a/0x70 [ 175.701364][ T8420] ? 0xffffffff81000000 [ 175.705557][ T8420] ? do_fast_syscall_32+0x6b/0xd0 [ 175.710857][ T8420] ? do_SYSENTER_32+0x73/0x90 [ 175.715543][ T8420] ? entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 175.722065][ T8420] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 175.728222][ T8420] ? kmsan_get_metadata+0x116/0x180 [ 175.733425][ T8420] ? kmsan_internal_set_origin+0x75/0xb0 [ 175.739076][ T8420] ? __msan_poison_alloca+0xf0/0x120 [ 175.744366][ T8420] ? kmsan_get_metadata+0x116/0x180 [ 175.749678][ T8420] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 175.755528][ T8420] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 175.762038][ T8420] ? ktime_get+0x384/0x470 [ 175.766474][ T8420] ? kmsan_get_metadata+0x4f/0x180 [ 175.771598][ T8420] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 175.777701][ T8420] ? __bpf_prog_run480+0x190/0x190 [ 175.783749][ T8420] bpf_test_run+0x52d/0xed0 [ 175.788566][ T8420] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 175.794852][ T8420] bpf_prog_test_run_skb+0x1053/0x2ad0 [ 175.801055][ T8420] ? bpf_prog_test_run_tracing+0xa00/0xa00 [ 175.806956][ T8420] __do_sys_bpf+0xb364/0x1a4c0 [ 175.813657][ T8420] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 175.820103][ T8420] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 175.826807][ T8420] ? handle_mm_fault+0x46b0/0x4940 [ 175.832374][ T8420] ? kmsan_get_metadata+0x116/0x180 [ 175.837822][ T8420] ? kmsan_set_origin_checked+0x95/0xf0 [ 175.845286][ T8420] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 175.853188][ T8420] ? kmsan_get_metadata+0x116/0x180 [ 175.858571][ T8420] ? kmsan_get_metadata+0x116/0x180 [ 175.864504][ T8420] __se_sys_bpf+0x8e/0xa0 [ 175.871660][ T8420] __ia32_sys_bpf+0x4a/0x70 [ 175.876588][ T8420] __do_fast_syscall_32+0x2af/0x480 [ 175.882676][ T8420] do_fast_syscall_32+0x6b/0xd0 [ 175.887566][ T8420] do_SYSENTER_32+0x73/0x90 [ 175.892212][ T8420] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 175.898549][ T8420] RIP: 0023:0xf7f6c549 [ 175.902608][ T8420] Code: Bad RIP value. [ 175.908072][ T8420] RSP: 002b:00000000ffd260ec EFLAGS: 00000246 ORIG_RAX: 0000000000000165 [ 175.917130][ T8420] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000740 [ 175.925305][ T8420] RDX: 0000000000000028 RSI: 00000000f7f6c28c RDI: 0000000000000004 [ 175.933482][ T8420] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 175.941488][ T8420] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 175.950846][ T8420] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 175.961162][ T8420] Kernel Offset: disabled [ 175.965621][ T8420] Rebooting in 86400 seconds..