[[0;32m  OK  [0m] Reached target Login Prompts.
[[0;32m  OK  [0m] Reached target Multi-User System.
[[0;32m  OK  [0m] Reached target Graphical Interface.
         Starting Update UTMP about System Runlevel Changes...
[[0;32m  OK  [0m] Started Update UTMP about System Runlevel Changes.

Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '10.128.0.247' (ECDSA) to the list of known hosts.
syzkaller login: [   32.173910] audit: type=1400 audit(1591692328.834:8): avc:  denied  { execmem } for  pid=6366 comm="syz-executor894" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[   32.396852] IPVS: ftp: loaded support on port[0] = 21
[   33.179240] chnl_net:caif_netlink_parms(): no params data found
[   33.248471] bridge0: port 1(bridge_slave_0) entered blocking state
[   33.255175] bridge0: port 1(bridge_slave_0) entered disabled state
[   33.262610] device bridge_slave_0 entered promiscuous mode
[   33.269798] bridge0: port 2(bridge_slave_1) entered blocking state
[   33.276827] bridge0: port 2(bridge_slave_1) entered disabled state
[   33.283716] device bridge_slave_1 entered promiscuous mode
[   33.300743] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   33.309507] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   33.327571] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   33.334815] team0: Port device team_slave_0 added
[   33.340672] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   33.347989] team0: Port device team_slave_1 added
[   33.363195] batman_adv: batadv0: Adding interface: batadv_slave_0
[   33.369494] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   33.394799] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   33.406521] batman_adv: batadv0: Adding interface: batadv_slave_1
[   33.412746] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   33.437998] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   33.448593] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   33.456657] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   33.507865] device hsr_slave_0 entered promiscuous mode
[   33.565617] device hsr_slave_1 entered promiscuous mode
[   33.645895] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[   33.653318] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[   33.717006] bridge0: port 2(bridge_slave_1) entered blocking state
[   33.723452] bridge0: port 2(bridge_slave_1) entered forwarding state
[   33.730304] bridge0: port 1(bridge_slave_0) entered blocking state
[   33.736700] bridge0: port 1(bridge_slave_0) entered forwarding state
[   33.765084] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready
[   33.771248] 8021q: adding VLAN 0 to HW filter on device bond0
[   33.780914] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   33.790121] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   33.808719] bridge0: port 1(bridge_slave_0) entered disabled state
[   33.816115] bridge0: port 2(bridge_slave_1) entered disabled state
[   33.825498] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[   33.831574] 8021q: adding VLAN 0 to HW filter on device team0
[   33.840092] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   33.847982] bridge0: port 1(bridge_slave_0) entered blocking state
[   33.854397] bridge0: port 1(bridge_slave_0) entered forwarding state
[   33.874510] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   33.884442] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   33.896533] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[   33.903094] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   33.911075] bridge0: port 2(bridge_slave_1) entered blocking state
[   33.917492] bridge0: port 2(bridge_slave_1) entered forwarding state
[   33.924912] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   33.932728] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   33.940596] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   33.948340] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   33.956015] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   33.962775] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   33.973847] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
[   33.982482] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   33.989850] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   34.000109] 8021q: adding VLAN 0 to HW filter on device batadv0
[   34.050585] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready
[   34.060334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   34.089281] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready
[   34.096941] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready
[   34.103389] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready
[   34.113489] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   34.121082] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   34.128083] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   34.137004] device veth0_vlan entered promiscuous mode
[   34.145752] device veth1_vlan entered promiscuous mode
[   34.151559] IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready
[   34.160486] IPv6: ADDRCONF(NETDEV_UP): macvlan1: link is not ready
[   34.167838] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   34.174719] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   34.182065] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   34.192927] IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready
[   34.202088] IPv6: ADDRCONF(NETDEV_UP): veth1_macvtap: link is not ready
[   34.209480] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   34.218144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   34.227669] device veth0_macvtap entered promiscuous mode
[   34.233729] IPv6: ADDRCONF(NETDEV_UP): macvtap0: link is not ready
[   34.242229] device veth1_macvtap entered promiscuous mode
[   34.248525] IPv6: ADDRCONF(NETDEV_UP): macsec0: link is not ready
[   34.257641] IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready
[   34.267058] IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready
[   34.277087] IPv6: ADDRCONF(NETDEV_UP): batadv_slave_0: link is not ready
[   34.284145] batman_adv: batadv0: Interface activated: batadv_slave_0
[   34.291355] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   34.298669] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   34.306492] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   34.314160] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   34.324747] IPv6: ADDRCONF(NETDEV_UP): batadv_slave_1: link is not ready
[   34.331844] batman_adv: batadv0: Interface activated: batadv_slave_1
[   34.338995] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   34.346850] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
executing program
[   34.465121] BUG: spinlock recursion on CPU#0, syz-executor894/6367
[   34.471478]  lock: 0xffff8880975e4b68, .magic: dead4ead, .owner: syz-executor894/6367, .owner_cpu: 0
[   34.480795] CPU: 0 PID: 6367 Comm: syz-executor894 Not tainted 4.14.183-syzkaller #0
[   34.488671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   34.498007] Call Trace:
[   34.500576]  dump_stack+0x1b2/0x283
[   34.504713]  do_raw_spin_lock+0x1cd/0x230
[   34.509486]  dev_mc_sync+0x10b/0x1c0
[   34.513191]  ? vlan_dev_set_mac_address+0x5c0/0x5c0
[   34.518535]  vlan_dev_set_rx_mode+0x38/0x80
[   34.522835]  __dev_set_rx_mode+0x191/0x2a0
[   34.527153]  dev_uc_unsync+0x16c/0x1c0
[   34.531069]  bond_hw_addr_flush+0x5c/0xe0
[   34.535193]  ? bond_do_fail_over_mac+0xd00/0xd00
[   34.539923]  bond_enslave+0x2811/0x49b0
[   34.543879]  ? bond_update_slave_arr+0x6c0/0x6c0
[   34.548621]  ? rtmsg_ifinfo_event.part.0+0x9a/0xc0
[   34.553523]  ? rtmsg_ifinfo+0x64/0x80
[   34.557296]  ? __dev_notify_flags+0x110/0x210
[   34.561773]  ? dev_change_name+0x970/0x970
[   34.565988]  ? bond_update_slave_arr+0x6c0/0x6c0
[   34.570734]  do_set_master+0x19e/0x200
[   34.574606]  rtnl_newlink+0x1319/0x1720
[   34.578568]  ? quarantine_put+0xc9/0x190
[   34.582609]  ? rtnl_link_unregister+0x1f0/0x1f0
[   34.587259]  ? avc_has_perm_noaudit+0x157/0x2a0
[   34.591901]  ? lock_acquire+0x170/0x3f0
[   34.595850]  ? lock_acquire+0x170/0x3f0
[   34.599803]  ? lock_acquire+0x170/0x3f0
[   34.603747]  ? lock_downgrade+0x6e0/0x6e0
[   34.607876]  ? rtnl_link_unregister+0x1f0/0x1f0
[   34.612528]  rtnetlink_rcv_msg+0x3be/0xb10
[   34.616736]  ? rtnl_calcit.isra.0+0x3a0/0x3a0
[   34.621206]  ? netdev_pick_tx+0x2e0/0x2e0
[   34.625326]  netlink_rcv_skb+0x127/0x370
[   34.629359]  ? memcpy+0x35/0x50
[   34.632608]  ? rtnl_calcit.isra.0+0x3a0/0x3a0
[   34.637074]  ? netlink_ack+0x970/0x970
[   34.640950]  netlink_unicast+0x437/0x610
[   34.644982]  ? netlink_sendskb+0x50/0x50
[   34.649016]  netlink_sendmsg+0x64a/0xbb0
[   34.653049]  ? nlmsg_notify+0x160/0x160
[   34.657006]  ? move_addr_to_kernel.part.0+0xf0/0xf0
[   34.661995]  ? security_socket_sendmsg+0x83/0xb0
[   34.666725]  ? nlmsg_notify+0x160/0x160
[   34.670668]  sock_sendmsg+0xb5/0x100
[   34.674354]  ___sys_sendmsg+0x70a/0x840
[   34.678337]  ? copy_msghdr_from_user+0x380/0x380
[   34.683066]  ? trace_hardirqs_on+0x10/0x10
[   34.687280]  ? trace_hardirqs_on+0x10/0x10
[   34.691484]  ? fs_reclaim_acquire+0x10/0x10
[   34.695776]  ? __might_fault+0x104/0x1b0
[   34.699808]  ? lock_acquire+0x170/0x3f0
[   34.703751]  ? lock_downgrade+0x6e0/0x6e0
[   34.707881]  ? __might_fault+0x177/0x1b0
[   34.711922]  ? _copy_to_user+0x82/0xd0
[   34.715780]  ? __fget_light+0x16a/0x1f0
[   34.719734]  ? sockfd_lookup_light+0xb2/0x160
[   34.724202]  __sys_sendmsg+0xa3/0x120
[   34.727974]  ? SyS_shutdown+0x160/0x160
[   34.731932]  ? move_addr_to_kernel+0x60/0x60
[   34.736324]  SyS_sendmsg+0x27/0x40
[   34.739834]  ? __sys_sendmsg+0x120/0x120
[   34.743868]  do_syscall_64+0x1d5/0x640
[   34.747735]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[   34.752895] RIP: 0033:0x443cf9
[   34.756056] RSP: 002b:00007ffef76b08f8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   34.763735] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000443cf9
[   34.770975] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000010
[   34.778564] RBP: 00007ffef76b0910 R08: 00000000bb1414ac R09: 00000000bb1414ac
[   34.785818] R10: 00000000bb1414ac R11: 0000000000000246 R12: 00007ffef76b0940
[   34.793071] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   43.331858] NOHZ: local_softirq_pending 08