[[0;32m  OK  [0m] Reached target Login Prompts.
[[0;32m  OK  [0m] Reached target Multi-User System.
[[0;32m  OK  [0m] Reached target Graphical Interface.
         Starting Update UTMP about System Runlevel Changes...
[[0;32m  OK  [0m] Started Update UTMP about System Runlevel Changes.

Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '10.128.0.194' (ECDSA) to the list of known hosts.
2020/07/26 14:25:21 parsed 1 programs
2020/07/26 14:25:21 executed programs: 0
syzkaller login: [  146.030310][   T29] audit: type=1400 audit(1595773521.975:8): avc:  denied  { execmem } for  pid=6858 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[  146.082243][ T6859] IPVS: ftp: loaded support on port[0] = 21
[  146.188020][ T6859] chnl_net:caif_netlink_parms(): no params data found
[  146.240266][ T6859] bridge0: port 1(bridge_slave_0) entered blocking state
[  146.248040][ T6859] bridge0: port 1(bridge_slave_0) entered disabled state
[  146.257995][ T6859] device bridge_slave_0 entered promiscuous mode
[  146.268604][ T6859] bridge0: port 2(bridge_slave_1) entered blocking state
[  146.276459][ T6859] bridge0: port 2(bridge_slave_1) entered disabled state
[  146.285114][ T6859] device bridge_slave_1 entered promiscuous mode
[  146.305063][ T6859] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  146.316044][ T6859] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  146.338573][ T6859] team0: Port device team_slave_0 added
[  146.345968][ T6859] team0: Port device team_slave_1 added
[  146.364393][ T6859] batman_adv: batadv0: Adding interface: batadv_slave_0
[  146.371541][ T6859] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  146.398293][ T6859] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  146.412068][ T6859] batman_adv: batadv0: Adding interface: batadv_slave_1
[  146.419019][ T6859] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  146.446581][ T6859] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  146.522613][ T6859] device hsr_slave_0 entered promiscuous mode
[  146.560419][ T6859] device hsr_slave_1 entered promiscuous mode
[  146.686997][ T6859] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  146.733432][ T6859] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  146.792690][ T6859] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  146.832581][ T6859] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  146.897935][ T6859] bridge0: port 2(bridge_slave_1) entered blocking state
[  146.905351][ T6859] bridge0: port 2(bridge_slave_1) entered forwarding state
[  146.913441][ T6859] bridge0: port 1(bridge_slave_0) entered blocking state
[  146.920740][ T6859] bridge0: port 1(bridge_slave_0) entered forwarding state
[  146.963851][ T6859] 8021q: adding VLAN 0 to HW filter on device bond0
[  146.977666][ T3374] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  146.988348][ T3374] bridge0: port 1(bridge_slave_0) entered disabled state
[  146.996776][ T3374] bridge0: port 2(bridge_slave_1) entered disabled state
[  147.005224][ T3374] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  147.018692][ T6859] 8021q: adding VLAN 0 to HW filter on device team0
[  147.029816][ T2505] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  147.038665][ T2505] bridge0: port 1(bridge_slave_0) entered blocking state
[  147.045854][ T2505] bridge0: port 1(bridge_slave_0) entered forwarding state
[  147.062593][ T3374] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  147.072127][ T3374] bridge0: port 2(bridge_slave_1) entered blocking state
[  147.080225][ T3374] bridge0: port 2(bridge_slave_1) entered forwarding state
[  147.102985][ T2505] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  147.111782][ T2505] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  147.122178][ T2505] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  147.130815][ T2505] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  147.144207][ T6859] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  147.156114][ T6859] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  147.165603][ T3374] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  147.189243][ T6859] 8021q: adding VLAN 0 to HW filter on device batadv0
[  147.197548][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  147.207378][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  147.230685][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  147.243061][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  147.258835][ T3374] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  147.267933][ T3374] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  147.278921][ T6859] device veth0_vlan entered promiscuous mode
[  147.287150][ T3373] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  147.295555][ T3373] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  147.309844][ T6859] device veth1_vlan entered promiscuous mode
[  147.332285][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  147.341351][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  147.349367][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  147.358541][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  147.369383][ T6859] device veth0_macvtap entered promiscuous mode
[  147.381179][ T6859] device veth1_macvtap entered promiscuous mode
[  147.398658][ T6859] batman_adv: batadv0: Interface activated: batadv_slave_0
[  147.406653][ T3373] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  147.416010][ T3373] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  147.424684][ T3373] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  147.434997][ T3373] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  147.447031][ T6859] batman_adv: batadv0: Interface activated: batadv_slave_1
[  147.455810][ T3373] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  147.464729][ T3373] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
2020/07/26 14:25:26 executed programs: 93
2020/07/26 14:25:32 executed programs: 235
2020/07/26 14:25:37 executed programs: 383
2020/07/26 14:25:42 executed programs: 530
2020/07/26 14:25:47 executed programs: 771
2020/07/26 14:25:52 executed programs: 1048
2020/07/26 14:25:57 executed programs: 1331
2020/07/26 14:26:02 executed programs: 1617
2020/07/26 14:26:07 executed programs: 1895
2020/07/26 14:26:12 executed programs: 2182
2020/07/26 14:26:17 executed programs: 2459
[  206.018569][T16039] general protection fault, probably for non-canonical address 0xdffffc0000000012: 0000 [#1] PREEMPT SMP KASAN
[  206.030452][T16039] KASAN: null-ptr-deref in range [0x0000000000000090-0x0000000000000097]
[  206.039126][T16039] CPU: 1 PID: 16039 Comm: syz-executor.0 Not tainted 5.8.0-rc6-syzkaller #0
[  206.047882][T16039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  206.058042][T16039] RIP: 0010:vsock_poll+0x75a/0x8e0
[  206.063360][T16039] Code: 84 ed 0f 85 c4 00 00 00 e8 b3 06 99 f9 48 8d bb 90 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa c6 44 24 30 00 48 c1 ea 03 <80> 3c 02 00 0f 85 3f 01 00 00 48 8d 54 24 30 be 01 00 00 00 48 89
[  206.083402][T16039] RSP: 0018:ffffc90003a6f868 EFLAGS: 00010206
[  206.089468][T16039] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffff87dab60f
[  206.097443][T16039] RDX: 0000000000000012 RSI: ffffffff87dab61d RDI: 0000000000000090
[  206.105986][T16039] RBP: ffff88808994d800 R08: 0000000000000000 R09: 0000000000000000
[  206.113986][T16039] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  206.122137][T16039] R13: 0000000000000000 R14: ffff88808994dc2a R15: 0000000000000001
[  206.130471][T16039] FS:  00007fb98b6c6700(0000) GS:ffff8880ae700000(0000) knlGS:0000000000000000
[  206.139548][T16039] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  206.146141][T16039] CR2: 0000000000000000 CR3: 0000000096512000 CR4: 00000000001406e0
[  206.154193][T16039] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  206.162142][T16039] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  206.170869][T16039] Call Trace:
[  206.174319][T16039]  ? vsock_assign_transport+0x480/0x480
[  206.179857][T16039]  ? __fget_files+0x294/0x400
[  206.184826][T16039]  ? vsock_assign_transport+0x480/0x480
[  206.190357][T16039]  sock_poll+0x159/0x460
[  206.194606][T16039]  ? __sys_setsockopt+0x480/0x480
[  206.199609][T16039]  do_sys_poll+0x607/0xd40
[  206.204220][T16039]  ? compat_core_sys_select+0x7c0/0x7c0
[  206.209816][T16039]  ? futex_wait_queue_me+0x3af/0x570
[  206.215078][T16039]  ? attach_to_pi_state+0x2c0/0x2c0
[  206.220253][T16039]  ? futex_wait+0x41d/0x560
[  206.224730][T16039]  ? futex_wait_setup+0x2d0/0x2d0
[  206.229747][T16039]  ? mark_lock+0xbc/0x1710
[  206.235181][T16039]  ? wake_up_q+0xa3/0x100
[  206.239482][T16039]  ? mark_lock+0xbc/0x1710
[  206.244125][T16039]  ? __lock_acquire+0x16e3/0x56e0
[  206.249564][T16039]  ? lockdep_hardirqs_on_prepare+0x590/0x590
[  206.255577][T16039]  ? __lock_acquire+0xc1e/0x56e0
[  206.261225][T16039]  ? lockdep_hardirqs_on_prepare+0x590/0x590
[  206.267297][T16039]  ? lock_acquire+0x1f1/0xad0
[  206.271971][T16039]  ? __might_fault+0xef/0x1d0
[  206.276625][T16039]  ? find_held_lock+0x2d/0x110
[  206.281475][T16039]  ? __might_fault+0x11f/0x1d0
[  206.286233][T16039]  ? lock_downgrade+0x820/0x820
[  206.291277][T16039]  ? read_seqcount_begin.constprop.0+0xd9/0x1f0
[  206.299098][T16039]  ? trace_hardirqs_on+0x5f/0x220
[  206.304247][T16039]  ? __might_fault+0x190/0x1d0
[  206.308988][T16039]  ? _copy_to_user+0x126/0x160
[  206.313825][T16039]  ? put_timespec64+0xcb/0x120
[  206.318564][T16039]  ? ns_to_timespec64+0xc0/0xc0
[  206.323478][T16039]  ? __x64_sys_futex+0x382/0x4e0
[  206.328426][T16039]  __x64_sys_poll+0x18c/0x440
[  206.333099][T16039]  ? __ia32_sys_pselect6+0x330/0x330
[  206.338375][T16039]  ? do_syscall_64+0x1c/0xe0
[  206.343069][T16039]  ? lockdep_hardirqs_on_prepare+0x3a2/0x590
[  206.349056][T16039]  do_syscall_64+0x60/0xe0
[  206.353687][T16039]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  206.359705][T16039] RIP: 0033:0x45c369
[  206.363685][T16039] Code: 8d b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 5b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  206.383529][T16039] RSP: 002b:00007fb98b6c5c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000007
[  206.392039][T16039] RAX: ffffffffffffffda RBX: 0000000000023400 RCX: 000000000045c369
[  206.399991][T16039] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000020000140
[  206.408189][T16039] RBP: 000000000078bfe0 R08: 0000000000000000 R09: 0000000000000000
[  206.416143][T16039] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac
[  206.424372][T16039] R13: 00007ffc9bf076ef R14: 00007fb98b6c69c0 R15: 000000000078bfac
[  206.432329][T16039] Modules linked in:
[  206.440144][T16039] ---[ end trace 9f3baca2e038fdae ]---
[  206.445629][T16039] RIP: 0010:vsock_poll+0x75a/0x8e0
[  206.450909][T16039] Code: 84 ed 0f 85 c4 00 00 00 e8 b3 06 99 f9 48 8d bb 90 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa c6 44 24 30 00 48 c1 ea 03 <80> 3c 02 00 0f 85 3f 01 00 00 48 8d 54 24 30 be 01 00 00 00 48 89
[  206.470830][T16039] RSP: 0018:ffffc90003a6f868 EFLAGS: 00010206
[  206.476890][T16039] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffff87dab60f
[  206.485240][T16039] RDX: 0000000000000012 RSI: ffffffff87dab61d RDI: 0000000000000090
[  206.493458][T16039] RBP: ffff88808994d800 R08: 0000000000000000 R09: 0000000000000000
[  206.501475][T16039] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  206.511321][T16039] R13: 0000000000000000 R14: ffff88808994dc2a R15: 0000000000000001
[  206.519498][T16039] FS:  00007fb98b6c6700(0000) GS:ffff8880ae700000(0000) knlGS:0000000000000000
[  206.528732][T16039] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  206.536307][T16039] CR2: 0000000000000000 CR3: 0000000096512000 CR4: 00000000001406e0
[  206.544522][T16039] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  206.552561][T16039] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  206.560674][T16039] Kernel panic - not syncing: Fatal exception
[  206.568447][T16039] Kernel Offset: disabled
[  206.572887][T16039] Rebooting in 86400 seconds..