Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 59.071944] IPVS: Creating netns size=2712 id=1 [ 59.077107] IPVS: ftp: loaded support on port[0] = 21 [ 59.815234] audit_printk_skb: 6 callbacks suppressed [ 59.820513] audit: type=1400 audit(1584175823.862:34): avc: denied { create } for pid=7659 comm="syz-fuzzer" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_crypto_socket permissive=1 [ 59.845701] audit: type=1400 audit(1584175823.892:35): avc: denied { create } for pid=7659 comm="syz-fuzzer" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 59.870361] audit: type=1400 audit(1584175823.922:36): avc: denied { create } for pid=7659 comm="syz-fuzzer" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 [ 59.895438] audit: type=1400 audit(1584175823.942:37): avc: denied { create } for pid=7659 comm="syz-fuzzer" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_rdma_socket permissive=1 Warning: Permanently added '10.128.10.55' (ECDSA) to the list of known hosts. 2020/03/14 08:50:31 parsed 1 programs 2020/03/14 08:50:31 executed programs: 0 [ 67.578281] IPv6: ADDRCONF(NETDEV_CHANGE): nr3: link becomes ready [ 67.587076] IPv6: ADDRCONF(NETDEV_CHANGE): nr1: link becomes ready [ 67.597032] IPv6: ADDRCONF(NETDEV_CHANGE): nr5: link becomes ready [ 67.605811] IPv6: ADDRCONF(NETDEV_CHANGE): nr0: link becomes ready [ 67.614221] IPv6: ADDRCONF(NETDEV_CHANGE): nr2: link becomes ready [ 67.622364] IPv6: ADDRCONF(NETDEV_CHANGE): nr4: link becomes ready [ 67.643216] IPVS: Creating netns size=2712 id=2 [ 67.647985] IPVS: ftp: loaded support on port[0] = 21 [ 67.717064] IPVS: Creating netns size=2712 id=3 [ 67.721941] IPVS: ftp: loaded support on port[0] = 21 [ 67.861215] chnl_net:caif_netlink_parms(): no params data found [ 67.888101] IPVS: Creating netns size=2712 id=4 [ 67.893001] IPVS: ftp: loaded support on port[0] = 21 [ 68.089781] chnl_net:caif_netlink_parms(): no params data found [ 68.124444] IPVS: Creating netns size=2712 id=5 [ 68.129931] IPVS: ftp: loaded support on port[0] = 21 [ 68.253463] bridge0: port 1(bridge_slave_0) entered blocking state [ 68.260103] bridge0: port 1(bridge_slave_0) entered disabled state [ 68.269887] device bridge_slave_0 entered promiscuous mode [ 68.307589] bridge0: port 2(bridge_slave_1) entered blocking state [ 68.314811] bridge0: port 2(bridge_slave_1) entered disabled state [ 68.324250] device bridge_slave_1 entered promiscuous mode [ 68.453524] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 68.474687] IPVS: Creating netns size=2712 id=6 [ 68.479651] IPVS: ftp: loaded support on port[0] = 21 [ 68.484761] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 68.577143] chnl_net:caif_netlink_parms(): no params data found [ 68.774816] bridge0: port 1(bridge_slave_0) entered blocking state [ 68.781766] bridge0: port 1(bridge_slave_0) entered disabled state [ 68.790737] device bridge_slave_0 entered promiscuous mode [ 68.829108] bridge0: port 2(bridge_slave_1) entered blocking state [ 68.836046] bridge0: port 2(bridge_slave_1) entered disabled state [ 68.845504] device bridge_slave_1 entered promiscuous mode [ 68.852710] batman_adv: Unable to register the batman interface 'batadv0': -12 [ 68.928818] batman_adv: Unable to register the batman interface 'batadv0': -12 [ 68.938568] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 68.957812] IPVS: Creating netns size=2712 id=7 [ 68.962887] IPVS: ftp: loaded support on port[0] = 21 [ 68.981300] chnl_net:caif_netlink_parms(): no params data found [ 69.017396] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 69.058226] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 69.114313] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 69.318734] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 69.326293] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.334074] bridge0: port 1(bridge_slave_0) entered disabled state [ 69.343748] device bridge_slave_0 entered promiscuous mode [ 69.380135] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 69.408302] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.414986] bridge0: port 2(bridge_slave_1) entered disabled state [ 69.424492] device bridge_slave_1 entered promiscuous mode [ 69.535246] chnl_net:caif_netlink_parms(): no params data found [ 69.619451] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 69.631060] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 69.656855] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 69.705591] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 69.994414] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.000863] bridge0: port 1(bridge_slave_0) entered disabled state [ 70.010061] device bridge_slave_0 entered promiscuous mode [ 70.017629] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 70.064906] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.071336] bridge0: port 2(bridge_slave_1) entered disabled state [ 70.073499] audit: type=1400 audit(1584175834.112:38): avc: denied { write } for pid=7768 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 70.083163] audit: type=1400 audit(1584175834.122:39): avc: denied { read } for pid=7768 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 70.128826] device bridge_slave_1 entered promiscuous mode [ 70.135843] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 70.246057] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 70.255708] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 70.383481] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 70.442949] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 70.470978] chnl_net:caif_netlink_parms(): no params data found [ 70.490269] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.496887] bridge0: port 1(bridge_slave_0) entered disabled state [ 70.506666] device bridge_slave_0 entered promiscuous mode [ 70.545639] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 70.554134] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.560574] bridge0: port 2(bridge_slave_1) entered disabled state [ 70.569741] device bridge_slave_1 entered promiscuous mode [ 70.616348] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 70.626898] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 70.764942] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 70.867200] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 71.052746] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 71.104479] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 71.277840] ------------[ cut here ]------------ [ 71.282918] WARNING: CPU: 1 PID: 7772 at fs/sysfs/dir.c:31 sysfs_warn_dup+0x7b/0xa0 [ 71.290731] sysfs: cannot create duplicate filename '/class/macvtap/tap50' [ 71.297953] Kernel panic - not syncing: panic_on_warn set ... [ 71.297953] [ 71.305364] CPU: 1 PID: 7772 Comm: syz-executor.5 Not tainted 4.6.0-syzkaller #0 [ 71.312918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 71.322409] 1ffffffff0d95756 ffff8800ac566fb0 ffffffff82c74fc6 ffffffff85c81040 [ 71.330483] ffff8800ac567088 ffffffff85d2bac0 ffffffff81922ccb ffff8800ac567078 [ 71.338503] ffffffff8160cf4e 0000000041b58ab3 ffffffff868f2161 ffffffff8160cd9f [ 71.346503] Call Trace: [ 71.349065] [] dump_stack+0xe6/0x120 [ 71.354417] [] ? sysfs_warn_dup+0x7b/0xa0 [ 71.360203] [] panic+0x1af/0x348 [ 71.365201] [] ? set_ti_thread_flag+0xf/0xf [ 71.371161] [] ? sysfs_warn_dup+0x7b/0xa0 [ 71.376962] [] __warn+0x18d/0x1b0 [ 71.382044] [] warn_slowpath_fmt+0x92/0xb0 [ 71.387914] [] ? __warn+0x1b0/0x1b0 [ 71.393165] [] ? kernfs_path_from_node+0x4a/0x60 [ 71.399549] [] sysfs_warn_dup+0x7b/0xa0 [ 71.405148] [] sysfs_do_create_link_sd.isra.2+0xd1/0xf0 [ 71.412248] [] sysfs_create_link+0x43/0xb0 [ 71.418107] [] device_add+0x689/0x1360 [ 71.423621] [] ? kfree_const+0x1d/0x20 [ 71.429142] [] ? device_private_init+0x180/0x180 [ 71.435520] [] ? kfree_const+0x1d/0x20 [ 71.441030] [] ? kobject_set_name_vargs+0xb4/0x130 [ 71.447585] [] device_create_groups_vargs+0x1c8/0x220 [ 71.454408] [] device_create+0x88/0xa0 [ 71.459919] [] ? device_create_vargs+0x20/0x20 [ 71.466127] [] ? macvlan_set_mac_address+0x150/0x150 [ 71.472860] [] macvtap_device_event+0x1c4/0x2a0 [ 71.479152] [] notifier_call_chain+0x8b/0x170 [ 71.485273] [] raw_notifier_call_chain+0x11/0x20 [ 71.491665] [] call_netdevice_notifiers_info+0x47/0x80 [ 71.498693] [] register_netdevice+0x88a/0xce0 [ 71.504839] [] ? netdev_change_features+0x80/0x80 [ 71.511368] [] ? dev_get_nest_level+0x10c/0x1a0 [ 71.517669] [] macvlan_common_newlink+0x8b9/0x1090 [ 71.524246] [] macvtap_newlink+0xbf/0x110 [ 71.530036] [] ? __netlink_ns_capable+0xc7/0xf0 [ 71.536393] [] rtnl_newlink+0xd4b/0x1230 [ 71.542089] [] ? rtnl_link_ops_get+0x5d/0x90 [ 71.548254] [] ? rtnl_newlink+0x319/0x1230 [ 71.554265] [] ? load_balance+0xc76/0x1ea0 [ 71.560128] [] ? rtnl_setlink+0x2f0/0x2f0 [ 71.565991] [] ? avc_has_perm_noaudit+0x232/0x3f0 [ 71.572467] [] ? avc_has_perm_noaudit+0x24f/0x3f0 [ 71.578938] [] ? avc_has_perm_noaudit+0x8c/0x3f0 [ 71.585328] [] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 71.592332] [] ? cred_has_capability+0x112/0x220 [ 71.598712] [] ? __netlink_ns_capable+0xc7/0xf0 [ 71.605017] [] rtnetlink_rcv_msg+0x222/0x680 [ 71.611053] [] ? trace_hardirqs_on_caller+0x44c/0x5e0 [ 71.617924] [] ? rtnetlink_rcv+0x30/0x30 [ 71.623619] [] ? mutex_lock_nested+0x638/0xb30 [ 71.629893] [] ? rtnetlink_rcv+0x16/0x30 [ 71.635594] [] ? netlink_lookup+0xd4/0x630 [ 71.641463] [] netlink_rcv_skb+0x242/0x350 [ 71.647347] [] ? rtnetlink_rcv+0x30/0x30 [ 71.653040] [] rtnetlink_rcv+0x25/0x30 [ 71.658624] [] netlink_unicast+0x455/0x660 [ 71.664531] [] ? netlink_unicast+0x3b5/0x660 [ 71.670753] [] ? netlink_attachskb+0x730/0x730 [ 71.676967] [] netlink_sendmsg+0x893/0xb40 [ 71.682829] [] ? netlink_unicast+0x660/0x660 [ 71.688879] [] ? selinux_socket_sendmsg+0x3a/0x50 [ 71.695364] [] ? security_socket_sendmsg+0x6a/0xa0 [ 71.701954] [] ? netlink_unicast+0x660/0x660 [ 71.707996] [] sock_sendmsg+0xb5/0xf0 [ 71.713422] [] SYSC_sendto+0x1c9/0x300 [ 71.718933] [] ? SYSC_connect+0x2a0/0x2a0 [ 71.724706] [] ? mntput_no_expire+0xb1/0x600 [ 71.730740] [] ? mntput_no_expire+0xce/0x600 [ 71.736780] [] ? mnt_get_count+0x1c0/0x1c0 [ 71.742651] [] ? mntput+0x52/0x70 [ 71.747731] [] ? ___might_sleep+0x331/0x440 [ 71.753693] [] ? trace_hardirqs_on_caller+0x44c/0x5e0 [ 71.760513] [] ? trace_hardirqs_on_thunk+0x1b/0x1d [ 71.767065] [] SyS_sendto+0x9/0x10 [ 71.772232] [] entry_SYSCALL_64_fastpath+0x23/0xc1 [ 71.779624] Kernel Offset: disabled