Warning: Permanently added '10.128.0.32' (ECDSA) to the list of known hosts. 2020/07/27 09:39:33 parsed 1 programs 2020/07/27 09:39:34 executed programs: 0 syzkaller login: [ 1586.319366][ T29] audit: type=1400 audit(1595842774.105:8): avc: denied { execmem } for pid=6843 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 1586.353463][ T6844] IPVS: ftp: loaded support on port[0] = 21 [ 1586.461097][ T6844] chnl_net:caif_netlink_parms(): no params data found [ 1586.512729][ T6844] bridge0: port 1(bridge_slave_0) entered blocking state [ 1586.520670][ T6844] bridge0: port 1(bridge_slave_0) entered disabled state [ 1586.528670][ T6844] device bridge_slave_0 entered promiscuous mode [ 1586.538235][ T6844] bridge0: port 2(bridge_slave_1) entered blocking state [ 1586.545683][ T6844] bridge0: port 2(bridge_slave_1) entered disabled state [ 1586.553646][ T6844] device bridge_slave_1 entered promiscuous mode [ 1586.574030][ T6844] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1586.584912][ T6844] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1586.607182][ T6844] team0: Port device team_slave_0 added [ 1586.614660][ T6844] team0: Port device team_slave_1 added [ 1586.631666][ T6844] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1586.638609][ T6844] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1586.664926][ T6844] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1586.677544][ T6844] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1586.684801][ T6844] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1586.711030][ T6844] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1586.772465][ T6844] device hsr_slave_0 entered promiscuous mode [ 1586.810068][ T6844] device hsr_slave_1 entered promiscuous mode [ 1586.937717][ T6844] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1587.002730][ T6844] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1587.062332][ T6844] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1587.102461][ T6844] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1587.156455][ T6844] bridge0: port 2(bridge_slave_1) entered blocking state [ 1587.163687][ T6844] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1587.171647][ T6844] bridge0: port 1(bridge_slave_0) entered blocking state [ 1587.178714][ T6844] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1587.224187][ T6844] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1587.237317][ T6975] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 1587.247923][ T6975] bridge0: port 1(bridge_slave_0) entered disabled state [ 1587.256751][ T6975] bridge0: port 2(bridge_slave_1) entered disabled state [ 1587.265412][ T6975] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 1587.278234][ T6844] 8021q: adding VLAN 0 to HW filter on device team0 [ 1587.289828][ T3161] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 1587.298234][ T3161] bridge0: port 1(bridge_slave_0) entered blocking state [ 1587.305345][ T3161] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1587.322061][ T6975] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 1587.330972][ T6975] bridge0: port 2(bridge_slave_1) entered blocking state [ 1587.338020][ T6975] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1587.361637][ T3161] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 1587.371331][ T3161] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 1587.380234][ T3161] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 1587.390524][ T3161] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 1587.398598][ T3161] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 1587.412266][ T6844] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 1587.431041][ T7055] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1587.438464][ T7055] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 1587.452251][ T6844] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1587.470621][ T7055] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 1587.479288][ T7055] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 1587.500548][ T3161] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 1587.509113][ T3161] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 1587.521928][ T6844] device veth0_vlan entered promiscuous mode [ 1587.530361][ T3161] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 1587.538155][ T3161] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 1587.553163][ T6844] device veth1_vlan entered promiscuous mode [ 1587.573620][ T7055] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 1587.582650][ T7055] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 1587.591566][ T7055] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 1587.600955][ T7055] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 1587.613058][ T6844] device veth0_macvtap entered promiscuous mode [ 1587.623908][ T6844] device veth1_macvtap entered promiscuous mode [ 1587.640787][ T6844] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1587.648230][ T7055] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 1587.657646][ T7055] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 1587.666393][ T7055] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 1587.675079][ T7055] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 1587.687186][ T6844] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1587.694760][ T3161] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 1587.703923][ T3161] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 1596.511841][ T0] NOHZ: local_softirq_pending 08 [ 1637.466932][ T0] NOHZ: local_softirq_pending 08 [ 1657.946124][ T0] NOHZ: local_softirq_pending 08 [ 1692.911080][ C1] rcu: INFO: rcu_preempt self-detected stall on CPU [ 1692.917916][ C1] rcu: 1-....: (10499 ticks this GP) idle=f5e/1/0x4000000000000000 softirq=9550/9550 fqs=5243 [ 1692.928477][ C1] (t=10500 jiffies g=11425 q=460) [ 1692.933561][ C1] NMI backtrace for cpu 1 [ 1692.937863][ C1] CPU: 1 PID: 7059 Comm: syz-executor.0 Not tainted 5.8.0-rc7-syzkaller #0 [ 1692.946415][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1692.956441][ C1] Call Trace: [ 1692.959698][ C1] [ 1692.962658][ C1] dump_stack+0x18f/0x20d [ 1692.966965][ C1] nmi_cpu_backtrace.cold+0x70/0xb1 [ 1692.972201][ C1] ? lapic_can_unplug_cpu.cold+0x38/0x38 [ 1692.977807][ C1] nmi_trigger_cpumask_backtrace+0x1b3/0x223 [ 1692.983800][ C1] rcu_dump_cpu_stacks+0x194/0x1cf [ 1692.988900][ C1] rcu_sched_clock_irq.cold+0x5b3/0xccc [ 1692.994511][ C1] ? lock_is_held_type+0xb0/0xe0 [ 1692.999424][ C1] ? rcutree_dead_cpu+0x10/0x10 [ 1693.004248][ C1] ? lockdep_hardirqs_off+0x66/0xa0 [ 1693.009460][ C1] ? trace_hardirqs_off+0x27/0x210 [ 1693.014575][ C1] update_process_times+0x25/0x60 [ 1693.019617][ C1] tick_sched_handle+0x9b/0x180 [ 1693.024447][ C1] tick_sched_timer+0x108/0x290 [ 1693.029270][ C1] __hrtimer_run_queues+0x1d5/0xfc0 [ 1693.034441][ C1] ? can_stop_idle_tick+0x290/0x290 [ 1693.039615][ C1] ? hrtimer_sleeper_start_expires+0x80/0x80 [ 1693.045601][ C1] ? ktime_get_update_offsets_now+0x1c4/0x250 [ 1693.051647][ C1] hrtimer_interrupt+0x32a/0x930 [ 1693.056594][ C1] __sysvec_apic_timer_interrupt+0x142/0x5e0 [ 1693.062575][ C1] asm_call_on_stack+0xf/0x20 [ 1693.067229][ C1] [ 1693.070141][ C1] sysvec_apic_timer_interrupt+0xe0/0x120 [ 1693.075834][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1693.081815][ C1] RIP: 0010:iov_iter_copy_from_user_atomic+0x589/0xbe0 [ 1693.088640][ C1] Code: 8e 93 05 00 00 8b 68 08 48 89 44 24 38 ba 00 10 00 00 8b 44 24 14 8b 4c 24 20 44 29 fd 81 e1 ff 0f 00 00 39 c5 0f 47 e8 29 ca <89> 4c 24 30 39 d5 0f 47 ea 31 ff 89 ee e8 35 c7 dd fd 85 ed 74 76 [ 1693.108215][ C1] RSP: 0018:ffffc9000207f6f0 EFLAGS: 00000206 [ 1693.114251][ C1] RAX: 00000000000000d2 RBX: 0000000000000000 RCX: 0000000000000000 [ 1693.122197][ C1] RDX: 0000000000001000 RSI: ffffffff8395f175 RDI: ffff88808dc9ec08 [ 1693.130139][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: ffff8880842d47ff [ 1693.138096][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88808dc9ec00 [ 1693.146049][ C1] R13: 0000000000000000 R14: dffffc0000000000 R15: 0000000000000000 [ 1693.154010][ C1] ? iov_iter_copy_from_user_atomic+0x4f5/0xbe0 [ 1693.160298][ C1] generic_perform_write+0x277/0x4f0 [ 1693.165565][ C1] ? generic_file_readonly_mmap+0x1b0/0x1b0 [ 1693.171436][ C1] ? down_write_killable+0x170/0x170 [ 1693.176785][ C1] ext4_buffered_write_iter+0x235/0x4a0 [ 1693.182311][ C1] ext4_file_write_iter+0x1f3/0x13d0 [ 1693.187600][ C1] ? lock_acquire+0x1f1/0xad0 [ 1693.192292][ C1] ? pipe_lock+0x5a/0x70 [ 1693.196530][ C1] ? ext4_buffered_write_iter+0x4a0/0x4a0 [ 1693.202243][ C1] ? lock_release+0x8d0/0x8d0 [ 1693.206896][ C1] ? lock_is_held_type+0xb0/0xe0 [ 1693.211827][ C1] ? lock_is_held_type+0xb0/0xe0 [ 1693.216776][ C1] do_iter_readv_writev+0x567/0x780 [ 1693.221949][ C1] ? get_order+0x20/0x20 [ 1693.226163][ C1] ? lock_acquire+0x1f1/0xad0 [ 1693.230822][ C1] do_iter_write+0x188/0x5f0 [ 1693.235416][ C1] ? iter_file_splice_write+0x170/0xbe0 [ 1693.240981][ C1] ? rcu_read_lock_sched_held+0x3a/0xb0 [ 1693.246540][ C1] ? trace_kmalloc+0xfd/0x130 [ 1693.251203][ C1] vfs_iter_write+0x70/0xa0 [ 1693.255681][ C1] iter_file_splice_write+0x721/0xbe0 [ 1693.261041][ C1] ? __do_compat_sys_vmsplice+0x260/0x260 [ 1693.266746][ C1] ? lock_release+0x8d0/0x8d0 [ 1693.271446][ C1] ? avc_policy_seqno+0x9/0x70 [ 1693.276252][ C1] ? selinux_file_permission+0x92/0x520 [ 1693.281789][ C1] ? __sb_start_write+0x1d5/0x470 [ 1693.286803][ C1] ? __do_compat_sys_vmsplice+0x260/0x260 [ 1693.292499][ C1] do_splice+0xbcd/0x1820 [ 1693.296815][ C1] ? lock_downgrade+0x820/0x820 [ 1693.301796][ C1] ? __might_fault+0x190/0x1d0 [ 1693.306575][ C1] ? splice_from_pipe+0x140/0x140 [ 1693.311657][ C1] ? __fget_files+0x294/0x400 [ 1693.316325][ C1] __x64_sys_splice+0x198/0x250 [ 1693.321161][ C1] do_syscall_64+0x60/0xe0 [ 1693.325554][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1693.331421][ C1] RIP: 0033:0x45c369 [ 1693.335334][ C1] Code: 8d b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 5b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1693.354951][ C1] RSP: 002b:00007fb6b177cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 1693.363335][ C1] RAX: ffffffffffffffda RBX: 0000000000032240 RCX: 000000000045c369 [ 1693.371280][ C1] RDX: 0000000000000003 RSI: 0000000000000000 RDI: 0000000000000006 [ 1693.379224][ C1] RBP: 000000000078bf58 R08: 000000000000ffe0 R09: 0000000000000000 [ 1693.387166][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 1693.395129][ C1] R13: 00007ffc309f9a9f R14: 00007fb6b177d9c0 R15: 000000000078bf0c [ 1698.902561][ T0] NOHZ: local_softirq_pending 08