syzkaller login: [ 17.283773] cfg80211: Calling CRDA to update world regulatory domain [ 20.443769] cfg80211: Calling CRDA to update world regulatory domain [ 23.603844] cfg80211: Calling CRDA to update world regulatory domain [ 26.763757] cfg80211: Calling CRDA to update world regulatory domain [ 29.923770] cfg80211: Calling CRDA to update world regulatory domain [ 33.083764] cfg80211: Calling CRDA to update world regulatory domain [ 35.959395] IPVS: Creating netns size=2688 id=1 [ 35.964246] IPVS: ftp: loaded support on port[0] = 21 [ 36.243733] cfg80211: Calling CRDA to update world regulatory domain [ 39.403760] cfg80211: Exceeded CRDA call max attempts. Not calling CRDA Warning: Permanently added '10.128.10.55' (ECDSA) to the list of known hosts. 2019/04/13 18:16:47 parsed 1 programs 2019/04/13 18:16:47 executed programs: 0 [ 45.170133] IPVS: Creating netns size=2688 id=2 [ 45.175036] IPVS: ftp: loaded support on port[0] = 21 [ 45.185288] IPVS: Creating netns size=2688 id=3 [ 45.190847] IPVS: ftp: loaded support on port[0] = 21 [ 45.203376] IPVS: Creating netns size=2688 id=4 [ 45.210119] IPVS: ftp: loaded support on port[0] = 21 [ 45.224317] IPVS: Creating netns size=2688 id=5 [ 45.228993] IPVS: ftp: loaded support on port[0] = 21 [ 45.242327] IPVS: Creating netns size=2688 id=6 [ 45.248384] IPVS: ftp: loaded support on port[0] = 21 [ 45.268540] IPVS: Creating netns size=2688 id=7 [ 45.273232] IPVS: ftp: loaded support on port[0] = 21 [ 45.418495] device bridge_slave_0 entered promiscuous mode [ 45.433075] device bridge_slave_0 entered promiscuous mode [ 45.441658] device bridge_slave_1 entered promiscuous mode [ 45.449956] device bridge_slave_1 entered promiscuous mode [ 45.456480] device bridge_slave_0 entered promiscuous mode [ 45.464581] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 45.471893] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 45.480362] device bridge_slave_1 entered promiscuous mode [ 45.493352] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 45.500981] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 45.512366] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 45.520403] device bridge_slave_0 entered promiscuous mode [ 45.528367] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 45.541046] device bridge_slave_0 entered promiscuous mode [ 45.558222] device bridge_slave_1 entered promiscuous mode [ 45.564756] device bridge_slave_1 entered promiscuous mode [ 45.571178] IPv6: ADDRCONF(NETDEV_UP): bond_slave_0: link is not ready [ 45.578358] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 45.588447] IPv6: ADDRCONF(NETDEV_UP): bond_slave_0: link is not ready [ 45.595941] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 45.606609] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 45.614353] IPv6: ADDRCONF(NETDEV_UP): bond_slave_1: link is not ready [ 45.621136] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 45.629457] IPv6: ADDRCONF(NETDEV_UP): bond_slave_0: link is not ready [ 45.636253] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 45.644611] IPv6: ADDRCONF(NETDEV_UP): bond_slave_1: link is not ready [ 45.651404] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 45.661620] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 45.669082] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 45.677493] IPv6: ADDRCONF(NETDEV_UP): bond_slave_1: link is not ready [ 45.684520] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 45.692816] device bridge_slave_0 entered promiscuous mode [ 45.699813] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 45.707717] ip (5116) used greatest stack depth: 11768 bytes left [ 45.716219] device bridge_slave_1 entered promiscuous mode [ 45.730118] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 45.744972] IPv6: ADDRCONF(NETDEV_UP): bond_slave_0: link is not ready [ 45.751778] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 45.762271] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 45.770709] IPv6: ADDRCONF(NETDEV_UP): bond_slave_0: link is not ready [ 45.777730] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 45.788015] IPv6: ADDRCONF(NETDEV_UP): bond_slave_1: link is not ready [ 45.795091] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 45.805487] IPv6: ADDRCONF(NETDEV_UP): bond_slave_1: link is not ready [ 45.812264] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 45.838802] IPv6: ADDRCONF(NETDEV_UP): bond_slave_0: link is not ready [ 45.847580] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 45.860749] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 45.869017] IPv6: ADDRCONF(NETDEV_UP): bond_slave_1: link is not ready [ 45.876142] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 45.885213] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 45.892671] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 45.899829] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 45.911891] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 45.922343] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 45.931129] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 45.939919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 45.949079] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 45.965546] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 45.972972] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 45.986242] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 45.993381] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 46.002701] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 46.011533] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 46.021202] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 46.030878] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 46.040073] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 46.051666] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 46.062824] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 46.071791] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 46.083086] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 46.102265] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 46.115374] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 46.157764] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.164622] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.171133] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.177632] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.187088] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.193597] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.200176] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.206665] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.218405] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.224927] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.231411] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.237987] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.259746] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.266286] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.272776] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.279281] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.305870] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.312431] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.318939] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.325441] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.349800] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.356342] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.362837] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.369338] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.828953] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.865819] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.872655] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.879723] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 46.913508] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 46.924581] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 46.936050] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.945987] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 46.957262] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.964439] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.983167] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 46.995333] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 47.007750] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 47.015580] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 47.022863] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 47.058435] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 47.068268] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 47.087080] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 47.356739] BUG: unable to handle kernel NULL pointer dereference at 0000000000000008 [ 47.365016] IP: [] rdma_listen+0x16d/0x260 [ 47.370932] PGD ba8e8067 [ 47.372560] kobject: 'loop5' (ffff8800baec18a0): kobject_uevent_env [ 47.372564] kobject: 'loop5' (ffff8800baec18a0): fill_kobj_path: path = '/devices/virtual/block/loop5' [ 47.372636] kobject: 'loop1' (ffff8800baded0a0): kobject_uevent_env [ 47.372638] kobject: 'loop1' (ffff8800baded0a0): fill_kobj_path: path = '/devices/virtual/block/loop1' [ 47.387320] kobject: 'loop4' (ffff8800bafef0a0): kobject_uevent_env [ 47.387323] kobject: 'loop4' (ffff8800bafef0a0): fill_kobj_path: path = '/devices/virtual/block/loop4' [ 47.412524] kobject: 'loop3' (ffff8800bb5448a0): kobject_uevent_env [ 47.412534] kobject: 'loop3' (ffff8800bb5448a0): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 47.427548] kobject: 'loop2' (ffff8800bafef8a0): kobject_uevent_env [ 47.427551] kobject: 'loop2' (ffff8800bafef8a0): fill_kobj_path: path = '/devices/virtual/block/loop2' [ 47.452493] PUD b6f4e067 PMD 0 [ 47.456281] Oops: 0000 [#1] PREEMPT SMP [ 47.460670] Modules linked in: [ 47.463963] CPU: 0 PID: 6662 Comm: syz-executor0 Not tainted 4.1.0 #1 [ 47.470506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 47.479832] task: ffff88020ca6cb10 ti: ffff88020c420000 task.ti: ffff88020c420000 [ 47.487421] RIP: 0010:[] [] rdma_listen+0x16d/0x260 [ 47.495743] RSP: 0018:ffff88020c423d98 EFLAGS: 00010296 [ 47.501839] RAX: 0000000080000000 RBX: ffff8800b9c71c00 RCX: 0000000000000001 [ 47.509078] RDX: 0000000080000001 RSI: ffff88020ca6d378 RDI: 00000000ffffffff [ 47.516316] RBP: ffff88020c423db8 R08: ffff88020c423d38 R09: 0000000000000000 [ 47.523557] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 47.530798] R13: 0000000000000400 R14: 0000000000000010 R15: 00000000ffffffff [ 47.538041] FS: 00007f3cf562a700(0000) GS:ffff88021fc00000(0000) knlGS:0000000000000000 [ 47.546237] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 47.552087] CR2: 0000000000000008 CR3: 00000000b6fb2000 CR4: 00000000001407f0 [ 47.559329] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 47.566570] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 47.573814] Stack: [ 47.575934] ffffffff812ac027 0000000020000208 ffff8800bb5acc40 ffff88020caa2e00 [ 47.583924] ffff88020c423de8 ffffffff81fb16be ffffffff812ac027 0000000000000001 [ 47.591922] 0000000020000200 0000000000000010 ffff88020c423e28 ffffffff81fb0a7d [ 47.599915] Call Trace: [ 47.602475] [] ? might_fault+0x57/0xb0 [ 47.607997] [] ucma_listen+0x6e/0x90 [ 47.613331] [] ? might_fault+0x57/0xb0 [ 47.618841] [] ucma_write+0x6d/0xc0 [ 47.624087] [] __vfs_write+0x23/0x100 [ 47.629507] [] ? apparmor_file_permission+0x13/0x20 [ 47.636144] [] ? security_file_permission+0x1e/0xa0 [ 47.642780] [] ? rw_verify_area+0x4a/0xf0 [ 47.648544] [] vfs_write+0xa1/0x1c0 [ 47.653788] [] SyS_write+0x44/0xb0 [ 47.658949] [] system_call_fastpath+0x16/0x7a [ 47.665074] Code: 41 89 c4 75 c1 31 c0 48 83 c4 08 5b 41 5c 41 5d 5d c3 0f 1f 40 00 4c 8b a3 b0 01 00 00 31 f6 48 c7 c7 20 3f 37 83 e8 13 85 67 00 <49> 8b 44 24 08 48 83 38 00 74 40 31 d2 4c 89 e7 48 89 de e8 2b [ 47.691973] RIP [] rdma_listen+0x16d/0x260 [ 47.697956] RSP [ 47.701548] CR2: 0000000000000008 [ 47.706843] ---[ end trace 09557b44637c5880 ]--- [ 47.711585] Kernel panic - not syncing: Fatal exception [ 47.717779] Kernel Offset: disabled