[ 31.325513] kauditd_printk_skb: 9 callbacks suppressed [ 31.325520] audit: type=1800 audit(1564445215.324:33): pid=6750 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op="collect_data" cause="failed(directio)" comm="startpar" name="rc.local" dev="sda1" ino=2465 res=0 [ 31.355137] audit: type=1800 audit(1564445215.324:34): pid=6750 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op="collect_data" cause="failed(directio)" comm="startpar" name="rmnologin" dev="sda1" ino=2456 res=0 Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 36.114068] random: sshd: uninitialized urandom read (32 bytes read) [ 36.398812] audit: type=1400 audit(1564445220.394:35): avc: denied { map } for pid=6923 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 36.450652] random: sshd: uninitialized urandom read (32 bytes read) [ 37.155112] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.0.188' (ECDSA) to the list of known hosts. [ 42.721365] random: sshd: uninitialized urandom read (32 bytes read) 2019/07/30 00:07:06 fuzzer started [ 42.919981] audit: type=1400 audit(1564445226.914:36): avc: denied { map } for pid=6932 comm="syz-fuzzer" path="/root/syz-fuzzer" dev="sda1" ino=16482 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 44.935920] random: cc1: uninitialized urandom read (8 bytes read) 2019/07/30 00:07:09 dialing manager at 10.128.0.105:38197 2019/07/30 00:07:09 syscalls: 2461 2019/07/30 00:07:09 code coverage: enabled 2019/07/30 00:07:09 comparison tracing: ioctl(KCOV_TRACE_CMP) failed: invalid argument 2019/07/30 00:07:09 extra coverage: extra coverage is not supported by the kernel 2019/07/30 00:07:09 setuid sandbox: enabled 2019/07/30 00:07:09 namespace sandbox: enabled 2019/07/30 00:07:09 Android sandbox: /sys/fs/selinux/policy does not exist 2019/07/30 00:07:09 fault injection: enabled 2019/07/30 00:07:09 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/07/30 00:07:09 net packet injection: enabled 2019/07/30 00:07:09 net device setup: enabled [ 46.987559] random: crng init done 00:09:03 executing program 5: 00:09:03 executing program 0: 00:09:03 executing program 3: 00:09:03 executing program 1: r0 = openat$full(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/full\x00', 0x0, 0x0) fchmodat(0xffffffffffffffff, 0x0, 0x0) ioctl$SIOCGSTAMP(r0, 0x8906, 0x0) 00:09:03 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_TIOCINQ(0xffffffffffffffff, 0x541b, 0x0) alarm(0x0) ptrace$pokeuser(0x6, 0x0, 0x0, 0x0) getsockname$unix(r0, 0x0, &(0x7f0000000140)) 00:09:03 executing program 2: getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, 0x0, 0x0, 0x0) gettid() ptrace$cont(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) sched_getaffinity(0x0, 0x0, 0x0) ioctl$VT_GETMODE(0xffffffffffffffff, 0x5601, 0x0) select(0x0, 0x0, 0x0, 0x0, 0x0) write$P9_RXATTRWALK(r0, 0x0, 0x0) ioctl$KDDELIO(0xffffffffffffffff, 0x4b35, 0x0) ioctl$sock_inet_SIOCGIFBRDADDR(0xffffffffffffffff, 0x8919, 0x0) [ 159.696132] audit: type=1400 audit(1564445343.694:37): avc: denied { map } for pid=6932 comm="syz-fuzzer" path="/root/syzkaller-shm112085258" dev="sda1" ino=1426 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:file_t:s0 tclass=file permissive=1 [ 159.789131] audit: type=1400 audit(1564445343.714:38): avc: denied { map } for pid=6949 comm="syz-executor.5" path="/sys/kernel/debug/kcov" dev="debugfs" ino=13821 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:debugfs_t:s0 tclass=file permissive=1 [ 160.570283] IPVS: ftp: loaded support on port[0] = 21 [ 160.895605] chnl_net:caif_netlink_parms(): no params data found [ 160.905968] IPVS: ftp: loaded support on port[0] = 21 [ 160.959575] bridge0: port 1(bridge_slave_0) entered blocking state [ 160.967014] bridge0: port 1(bridge_slave_0) entered disabled state [ 160.974686] device bridge_slave_0 entered promiscuous mode [ 160.984468] bridge0: port 2(bridge_slave_1) entered blocking state [ 160.991485] bridge0: port 2(bridge_slave_1) entered disabled state [ 160.999114] device bridge_slave_1 entered promiscuous mode [ 161.028299] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 161.038203] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 161.060141] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 161.068191] team0: Port device team_slave_0 added [ 161.074514] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 161.082311] team0: Port device team_slave_1 added [ 161.090830] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 161.102630] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 161.120256] IPVS: ftp: loaded support on port[0] = 21 [ 161.182130] device hsr_slave_0 entered promiscuous mode [ 161.220412] device hsr_slave_1 entered promiscuous mode [ 161.301223] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 161.317442] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 161.331633] chnl_net:caif_netlink_parms(): no params data found [ 161.373642] bridge0: port 2(bridge_slave_1) entered blocking state [ 161.380541] bridge0: port 2(bridge_slave_1) entered forwarding state [ 161.387988] bridge0: port 1(bridge_slave_0) entered blocking state [ 161.396090] bridge0: port 1(bridge_slave_0) entered forwarding state [ 161.413157] IPVS: ftp: loaded support on port[0] = 21 [ 161.437894] bridge0: port 1(bridge_slave_0) entered blocking state [ 161.445297] bridge0: port 1(bridge_slave_0) entered disabled state [ 161.454157] device bridge_slave_0 entered promiscuous mode [ 161.462329] bridge0: port 2(bridge_slave_1) entered blocking state [ 161.469386] bridge0: port 2(bridge_slave_1) entered disabled state [ 161.477486] device bridge_slave_1 entered promiscuous mode [ 161.512303] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 161.522247] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 161.598848] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 161.607156] team0: Port device team_slave_0 added [ 161.618354] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 161.627288] team0: Port device team_slave_1 added [ 161.635985] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 161.648401] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 161.657698] chnl_net:caif_netlink_parms(): no params data found [ 161.697215] IPVS: ftp: loaded support on port[0] = 21 [ 161.742636] device hsr_slave_0 entered promiscuous mode [ 161.780419] device hsr_slave_1 entered promiscuous mode [ 161.821031] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 161.865718] bridge0: port 1(bridge_slave_0) entered blocking state [ 161.873717] bridge0: port 1(bridge_slave_0) entered disabled state [ 161.883238] device bridge_slave_0 entered promiscuous mode [ 161.895478] bridge0: port 2(bridge_slave_1) entered blocking state [ 161.902565] bridge0: port 2(bridge_slave_1) entered disabled state [ 161.910895] device bridge_slave_1 entered promiscuous mode [ 161.918635] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 161.951757] bridge0: port 1(bridge_slave_0) entered disabled state [ 161.970842] bridge0: port 2(bridge_slave_1) entered disabled state [ 161.994938] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 162.007177] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 162.029411] 8021q: adding VLAN 0 to HW filter on device bond0 [ 162.056170] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 162.065542] team0: Port device team_slave_0 added [ 162.079944] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 162.091291] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 162.104936] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 162.115810] team0: Port device team_slave_1 added [ 162.153895] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 162.161770] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 162.175299] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 162.183428] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 162.192461] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 162.207693] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 162.214796] 8021q: adding VLAN 0 to HW filter on device team0 [ 162.233093] IPVS: ftp: loaded support on port[0] = 21 [ 162.234114] chnl_net:caif_netlink_parms(): no params data found [ 162.323469] device hsr_slave_0 entered promiscuous mode [ 162.370651] device hsr_slave_1 entered promiscuous mode [ 162.413344] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 162.422474] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 162.439874] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 162.496153] chnl_net:caif_netlink_parms(): no params data found [ 162.516241] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 162.526431] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 162.535428] bridge0: port 1(bridge_slave_0) entered blocking state [ 162.545215] bridge0: port 1(bridge_slave_0) entered forwarding state [ 162.564588] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 162.591424] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 162.609941] bridge0: port 1(bridge_slave_0) entered blocking state [ 162.618787] bridge0: port 1(bridge_slave_0) entered disabled state [ 162.628017] device bridge_slave_0 entered promiscuous mode [ 162.635387] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 162.644264] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 162.654971] bridge0: port 2(bridge_slave_1) entered blocking state [ 162.662551] bridge0: port 2(bridge_slave_1) entered forwarding state [ 162.671540] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 162.693359] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 162.701529] bridge0: port 2(bridge_slave_1) entered blocking state [ 162.709668] bridge0: port 2(bridge_slave_1) entered disabled state [ 162.718763] device bridge_slave_1 entered promiscuous mode [ 162.733505] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 162.757168] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 162.779537] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 162.789012] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 162.797880] bridge0: port 1(bridge_slave_0) entered blocking state [ 162.805635] bridge0: port 1(bridge_slave_0) entered disabled state [ 162.813979] device bridge_slave_0 entered promiscuous mode [ 162.824621] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 162.844830] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 162.854861] bridge0: port 2(bridge_slave_1) entered blocking state [ 162.863970] bridge0: port 2(bridge_slave_1) entered disabled state [ 162.872102] device bridge_slave_1 entered promiscuous mode [ 162.894042] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 162.908631] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 162.918938] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 162.936757] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 162.949256] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 162.961448] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 162.972730] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 162.982917] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 163.019046] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 163.027512] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 163.041604] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 163.050778] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 163.059036] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 163.069887] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 163.077789] team0: Port device team_slave_0 added [ 163.108784] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 163.118123] team0: Port device team_slave_1 added [ 163.126819] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 163.135225] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 163.143434] team0: Port device team_slave_0 added [ 163.155010] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 163.163803] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 163.182306] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 163.193768] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 163.204153] team0: Port device team_slave_1 added [ 163.256345] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 163.265253] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 163.332394] device hsr_slave_0 entered promiscuous mode [ 163.370430] device hsr_slave_1 entered promiscuous mode [ 163.410859] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 163.422821] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 163.429975] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 163.447992] 8021q: adding VLAN 0 to HW filter on device bond0 [ 163.460949] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 163.515213] device hsr_slave_0 entered promiscuous mode [ 163.570699] device hsr_slave_1 entered promiscuous mode [ 163.615169] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 163.624738] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 163.632905] chnl_net:caif_netlink_parms(): no params data found [ 163.649905] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 163.660175] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 163.668637] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 163.681545] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 163.688340] 8021q: adding VLAN 0 to HW filter on device team0 [ 163.702794] 8021q: adding VLAN 0 to HW filter on device bond0 [ 163.715918] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 163.729398] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 163.777240] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 163.787382] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 163.800236] bridge0: port 1(bridge_slave_0) entered blocking state [ 163.807279] bridge0: port 1(bridge_slave_0) entered disabled state [ 163.815954] device bridge_slave_0 entered promiscuous mode [ 163.824452] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 163.837321] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 163.847089] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 163.856132] bridge0: port 1(bridge_slave_0) entered blocking state [ 163.864257] bridge0: port 1(bridge_slave_0) entered forwarding state [ 163.875517] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 163.885494] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 163.895594] bridge0: port 2(bridge_slave_1) entered blocking state [ 163.905365] bridge0: port 2(bridge_slave_1) entered disabled state [ 163.914524] device bridge_slave_1 entered promiscuous mode 00:09:07 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000300)=0x2) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x6685, 0x0) [ 163.937711] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 163.951102] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 163.959978] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 163.968779] bridge0: port 2(bridge_slave_1) entered blocking state [ 163.975696] bridge0: port 2(bridge_slave_1) entered forwarding state 00:09:08 executing program 5: pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$alg(0x26, 0x5, 0x0) write(r1, &(0x7f0000000180)="e4", 0x1) bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-avx\x00'}, 0x58) r3 = accept4$alg(r2, 0x0, 0x0, 0x0) write$binfmt_elf64(r1, &(0x7f0000000040)=ANY=[], 0xfffffdea) splice(r0, 0x0, r3, 0x0, 0x20000000003, 0x0) [ 163.990486] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 163.998016] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 164.011131] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 164.031415] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 164.052659] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 164.063520] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 164.074916] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 164.086406] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 164.097679] 8021q: adding VLAN 0 to HW filter on device team0 [ 164.108123] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 164.138246] 8021q: adding VLAN 0 to HW filter on device bond0 [ 164.147870] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 164.162375] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 164.177473] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 164.189451] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 164.202451] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 164.211580] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 164.219921] bridge0: port 1(bridge_slave_0) entered blocking state [ 164.226947] bridge0: port 1(bridge_slave_0) entered forwarding state [ 164.237015] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 164.249183] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 164.274379] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 164.282822] team0: Port device team_slave_0 added [ 164.291561] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 164.300883] team0: Port device team_slave_1 added [ 164.308109] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 164.316114] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 164.325821] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 164.334549] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 164.353271] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 164.363217] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 164.374207] 8021q: adding VLAN 0 to HW filter on device team0 [ 164.384513] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 164.394079] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 164.402227] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 164.410865] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready 00:09:08 executing program 5: pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$alg(0x26, 0x5, 0x0) write(r1, &(0x7f0000000180)="e4", 0x1) bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-avx\x00'}, 0x58) r3 = accept4$alg(r2, 0x0, 0x0, 0x0) write$binfmt_elf64(r1, &(0x7f0000000040)=ANY=[], 0xfffffdea) splice(r0, 0x0, r3, 0x0, 0x20000000003, 0x0) [ 164.418567] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 164.428193] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 164.443023] bridge0: port 2(bridge_slave_1) entered blocking state [ 164.451055] bridge0: port 2(bridge_slave_1) entered forwarding state [ 164.459916] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 164.475006] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 164.484129] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 164.506837] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 164.523040] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 164.533398] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 164.544436] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 164.555590] bridge0: port 1(bridge_slave_0) entered blocking state [ 164.562655] bridge0: port 1(bridge_slave_0) entered forwarding state [ 164.578871] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 164.590976] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 164.626748] device hsr_slave_0 entered promiscuous mode [ 164.670390] device hsr_slave_1 entered promiscuous mode 00:09:08 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r1, 0x29, 0xcd, &(0x7f0000000080)={{0xa, 0x0, 0x0, @dev}, {0xa, 0x0, 0x0, @mcast1}}, 0x5c) [ 164.720858] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 164.728615] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 164.737871] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 164.754562] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 164.768946] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 164.778621] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 164.792637] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 164.804102] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 164.811090] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 164.832770] 8021q: adding VLAN 0 to HW filter on device bond0 [ 164.839914] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 164.850132] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 164.859078] bridge0: port 2(bridge_slave_1) entered blocking state [ 164.866585] bridge0: port 2(bridge_slave_1) entered forwarding state [ 164.875516] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready 00:09:08 executing program 5: openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet6(0xa, 0x1000000000002, 0x0) mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00000, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$IP6T_SO_GET_REVISION_MATCH(r0, 0x29, 0x44, 0x0, 0x0) ioctl$FS_IOC_GETFLAGS(0xffffffffffffffff, 0x80046601, 0x0) getsockopt$inet_sctp_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f0000000100), 0x0) openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0) sync() r1 = syz_open_dev$usb(&(0x7f0000000040)='/dev/bus/usb/00#/00#\x00', 0x40000fffffd, 0x200000000000042) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x0, 0x0) write$binfmt_aout(r2, &(0x7f00000000c0)=ANY=[], 0xff2e) ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000380)) r3 = syz_open_pts(r2, 0x0) dup3(r3, r2, 0x0) ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000000c0)=0xe) ioctl$FS_IOC_FSGETXATTR(r1, 0x8108551b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff0bdbe}) [ 164.889196] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 164.912474] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 164.925581] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 164.935788] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 164.951239] hrtimer: interrupt took 34887 ns [ 164.964060] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 164.973707] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 164.982087] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 164.995913] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 165.003949] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 165.024533] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 165.035955] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 165.052917] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 165.062279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 165.071694] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 165.081570] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 165.094312] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 165.106968] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 165.117151] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 165.125899] 8021q: adding VLAN 0 to HW filter on device team0 [ 165.132856] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready 00:09:09 executing program 5: pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mkdir(&(0x7f0000000080)='./file0\x00', 0x0) write$P9_RVERSION(r1, &(0x7f0000000340)={0x15, 0x65, 0xffff, 0x8001, 0x8, '9P2000.L'}, 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f0000000000)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x26f) mount$9p_fd(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='9p\x00', 0x0, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) lsetxattr$trusted_overlay_nlink(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='trusted.overlay.nlink\x00', 0x0, 0x0, 0x0) syz_mount_image$reiserfs(0x0, &(0x7f0000000280)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 165.141185] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 165.156215] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 165.172982] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 165.185571] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 165.197851] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 165.212820] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 165.223036] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 165.233266] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 165.241627] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 165.249786] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 165.258816] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 165.267686] bridge0: port 1(bridge_slave_0) entered blocking state [ 165.275407] bridge0: port 1(bridge_slave_0) entered forwarding state [ 165.284334] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 165.295604] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 165.307974] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 165.332726] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready 00:09:09 executing program 5: r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) syz_genetlink_get_family_id$ipvs(0x0) sendmsg$IPVS_CMD_SET_DEST(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4000095}, 0x0) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) gettid() ptrace$setregs(0xd, 0x0, 0x0, 0x0) mkdir(0x0, 0x1a8) fchdir(0xffffffffffffffff) r1 = creat(&(0x7f0000000700)='./bus\x00', 0x0) r2 = open(&(0x7f0000000780)='./bus\x00', 0x14103e, 0x0) ftruncate(r1, 0x200003) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x4002011, r2, 0x0) pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) ptrace(0x420f, r0) write(r4, &(0x7f0000000340), 0x100000488) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) [ 165.343089] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 165.364226] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 165.376425] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 165.388956] audit: type=1400 audit(1564445349.384:39): avc: denied { create } for pid=7020 comm="syz-executor.5" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 165.422748] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 165.433563] audit: type=1400 audit(1564445349.384:40): avc: denied { write } for pid=7020 comm="syz-executor.5" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 165.433944] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 165.461347] audit: type=1400 audit(1564445349.394:41): avc: denied { read } for pid=7020 comm="syz-executor.5" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 165.476494] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 165.517510] bridge0: port 2(bridge_slave_1) entered blocking state [ 165.524409] bridge0: port 2(bridge_slave_1) entered forwarding state [ 165.542789] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 165.560669] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 165.567335] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 165.584225] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 165.604927] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 165.619690] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 165.635596] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 165.647413] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 165.668176] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 165.686213] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 165.699415] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 165.714751] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 165.724581] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 165.740494] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 165.747618] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 165.763752] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 165.782682] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 165.801407] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 165.811303] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 165.827296] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 165.841999] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 165.850960] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 165.858478] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 165.875765] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 165.889256] 8021q: adding VLAN 0 to HW filter on device bond0 [ 165.915147] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 165.931260] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 165.949092] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 165.959915] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 165.972281] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 165.979942] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 165.988566] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 165.997320] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 166.007845] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 166.017447] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 166.024094] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 166.032726] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 166.043304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 166.053592] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 166.059938] 8021q: adding VLAN 0 to HW filter on device team0 [ 166.074445] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 166.089046] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 166.105839] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 166.124855] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 166.133898] bridge0: port 1(bridge_slave_0) entered blocking state [ 166.143408] bridge0: port 1(bridge_slave_0) entered forwarding state [ 166.155680] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 166.165923] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 166.175974] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 166.184911] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 166.197113] bridge0: port 2(bridge_slave_1) entered blocking state [ 166.204579] bridge0: port 2(bridge_slave_1) entered forwarding state [ 166.227218] 8021q: adding VLAN 0 to HW filter on device batadv0 00:09:10 executing program 0: [ 166.240331] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 166.248724] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 166.272828] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 166.285854] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 166.310858] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 166.329050] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 166.347664] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 166.366124] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 166.375176] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 166.383739] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 166.392849] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 166.417134] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 166.425553] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 166.434239] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 166.445587] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 166.456064] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 166.466010] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 166.485755] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 166.497778] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 166.511971] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 166.522540] 8021q: adding VLAN 0 to HW filter on device batadv0 00:09:11 executing program 3: 00:09:11 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r0, 0x0) bind$inet6(r0, &(0x7f0000000400)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}}, 0x1c) 00:09:11 executing program 4: 00:09:11 executing program 1: 00:09:11 executing program 0: 00:09:11 executing program 2: 00:09:11 executing program 0: mount$9p_virtio(0x0, 0x0, 0x0, 0x280441, &(0x7f00000002c0)={'trans=virtio,', {[{@access_user='access=user'}, {@debug={'debug'}}], [{@dont_appraise='dont_appraise'}, {@dont_appraise='dont_appraise'}, {@seclabel='seclabel'}, {@fsname={'fsname', 0x3d, 'overlay\x00'}}]}}) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000180)='/dev/dsp#\x00', 0x1005, 0x0) ioctl$int_in(r0, 0x80000080045002, &(0x7f0000000000)) 00:09:11 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") syz_mount_image$gfs2(&(0x7f0000000100)='gfs2\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)={[{@noacl='noacl'}, {@nosuiddir='nosuiddir'}]}) 00:09:11 executing program 2: r0 = socket$inet6(0xa, 0x3, 0x1) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) 00:09:11 executing program 3: r0 = add_key$user(&(0x7f00000003c0)='user\x00', &(0x7f0000000440)={'syz'}, &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r0, r0}, 0x0, 0x0, 0x0) 00:09:11 executing program 4: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0xc0, 0x90) setsockopt$inet_int(r1, 0x0, 0x0, &(0x7f0000000040)=0x57, 0x4) shmat(0xffffffffffffffff, &(0x7f0000ffb000/0x2000)=nil, 0x6000) socket$inet_udp(0x2, 0x2, 0x0) getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f00000003c0)=""/232, 0x0) socket$packet(0x11, 0x5, 0x300) timer_create(0x0, &(0x7f0000066000), 0x0) gettid() fstat(0xffffffffffffffff, &(0x7f0000000600)) mkdir(&(0x7f0000000140)='./file0\x00', 0x0) accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x80000) mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, 0x0) setsockopt$inet6_buf(r1, 0x29, 0x0, &(0x7f00000004c0)="da1025162515799e20098c26d42941e2ba5f86959c4aa0edcafef3047ad6c59281dbea8d59daef8a851828245a4224a3f6a369164ad326aa8c3a1faf402bc7", 0x3f) chdir(&(0x7f0000000180)='./file0\x00') ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0x40a85323, &(0x7f0000000540)={{0x1ff, 0xfffffffffffffffe}, 'port0\x00', 0x0, 0x0, 0x0, 0x9, 0x0, 0x7, 0x0, 0x0, 0x2}) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) openat$ashmem(0xffffffffffffff9c, 0x0, 0x0, 0x0) write$UHID_INPUT(r2, &(0x7f0000001440)={0x8, "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", 0x1000}, 0xfffffc41) setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_FIEMAP(0xffffffffffffffff, 0xc020660b, 0x0) fadvise64(r2, 0x0, 0x0, 0x4) 00:09:11 executing program 5: openat$capi20(0xffffffffffffff9c, &(0x7f0000000000)='/dev/capi20\x00', 0x4080, 0x0) [ 167.940523] gfs2: not a GFS2 filesystem 00:09:12 executing program 2: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_buf(r1, 0x1, 0x12, &(0x7f0000b56f40)=""/192, &(0x7f0000000080)=0xc0) 00:09:12 executing program 3: mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) syz_mount_image$reiserfs(&(0x7f0000000000)='reiserfs\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000740)={[{@resize={'resize'}}]}) 00:09:12 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="11dca5055e0bcfe47bf070") r1 = socket$inet6(0xa, 0x3, 0x100000000000ff) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @remote, 0x9}, 0x1c) sendmsg$inet6(r1, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000200)="9f83c21f40c2c5fd8c4d5b2d85c07be56e33c702ca0e9ba961721f8e505e056f7876fe82b2106d11", 0x28}], 0x1, &(0x7f0000000600)=[@dstopts_2292={{0x18}}], 0x18}, 0x0) 00:09:12 executing program 0: mount$9p_virtio(0x0, 0x0, 0x0, 0x280441, &(0x7f00000002c0)={'trans=virtio,', {[{@access_user='access=user'}, {@debug={'debug'}}], [{@dont_appraise='dont_appraise'}, {@dont_appraise='dont_appraise'}, {@seclabel='seclabel'}, {@fsname={'fsname', 0x3d, 'overlay\x00'}}]}}) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000180)='/dev/dsp#\x00', 0x1005, 0x0) ioctl$int_in(r0, 0x80000080045002, &(0x7f0000000000)) [ 168.064610] gfs2: not a GFS2 filesystem [ 168.110359] ================================================================== [ 168.117881] BUG: KASAN: global-out-of-bounds in strscpy+0x20e/0x2c0 [ 168.124306] Read of size 8 at addr ffffffff8677bbb8 by task syz-executor.3/7117 [ 168.131756] [ 168.133418] CPU: 0 PID: 7117 Comm: syz-executor.3 Not tainted 4.14.134 #30 [ 168.140444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 168.149822] Call Trace: [ 168.152432] dump_stack+0x138/0x19c [ 168.156077] ? strscpy+0x20e/0x2c0 00:09:12 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_CLOCK(r1, 0xae44, &(0x7f00000000c0)) [ 168.159631] print_address_description.cold+0x5/0x1dc [ 168.164843] ? strscpy+0x20e/0x2c0 [ 168.168400] kasan_report.cold+0xa9/0x2af [ 168.172560] __asan_report_load8_noabort+0x14/0x20 [ 168.177523] strscpy+0x20e/0x2c0 [ 168.180909] prepare_error_buf+0x94/0x1aa0 [ 168.185161] ? lock_downgrade+0x6e0/0x6e0 [ 168.189351] ? scnprintf_le_key+0x600/0x600 [ 168.193684] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 168.198981] ? _parse_integer+0xe8/0x140 [ 168.203127] __reiserfs_warning+0x9f/0xb0 [ 168.207309] ? reiserfs_printk+0xd0/0xd0 [ 168.211410] ? ip6_string+0x3b0/0x3b0 [ 168.215316] reiserfs_parse_options+0xa16/0x1820 [ 168.220093] ? reiserfs_sync_fs+0xe0/0xe0 [ 168.224261] ? trace_hardirqs_on+0x10/0x10 [ 168.228727] ? workqueue_sysfs_register+0x3c0/0x3c0 [ 168.233804] ? lockdep_init_map+0x9/0x10 [ 168.237879] ? debug_mutex_init+0x2d/0x5a [ 168.242049] reiserfs_fill_super+0x461/0x2b20 [ 168.246566] ? finish_unfinished+0x1010/0x1010 [ 168.251172] ? snprintf+0xa5/0xd0 [ 168.254654] ? set_blocksize+0x270/0x300 [ 168.259081] ? ns_test_super+0x50/0x50 [ 168.262994] mount_bdev+0x2be/0x370 [ 168.266636] ? finish_unfinished+0x1010/0x1010 [ 168.271248] get_super_block+0x35/0x40 [ 168.275156] mount_fs+0x97/0x2a1 [ 168.278992] vfs_kern_mount.part.0+0x5e/0x3d0 [ 168.283538] do_mount+0x417/0x27d0 [ 168.287246] ? copy_mount_options+0x5c/0x2f0 [ 168.291677] ? rcu_read_lock_sched_held+0x110/0x130 [ 168.296714] ? copy_mount_string+0x40/0x40 [ 168.300979] ? copy_mount_options+0x1fe/0x2f0 [ 168.305580] SyS_mount+0xab/0x120 [ 168.309153] ? copy_mnt_ns+0x8c0/0x8c0 [ 168.313052] do_syscall_64+0x1e8/0x640 [ 168.316979] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 168.321844] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 168.327073] RIP: 0033:0x45c27a [ 168.330274] RSP: 002b:00007f2dbd1eca88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 168.337993] RAX: ffffffffffffffda RBX: 00007f2dbd1ecb40 RCX: 000000000045c27a [ 168.345395] RDX: 00007f2dbd1ecae0 RSI: 00000000200000c0 RDI: 00007f2dbd1ecb00 [ 168.352679] RBP: 0000000000000000 R08: 00007f2dbd1ecb40 R09: 00007f2dbd1ecae0 [ 168.359956] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 168.367505] R13: 00000000004c8a4f R14: 00000000004df848 R15: 00000000ffffffff [ 168.374877] [ 168.376599] The buggy address belongs to the variable: [ 168.381973] __func__.31301+0x798/0x3a60 [ 168.386052] [ 168.387706] Memory state around the buggy address: [ 168.392765] ffffffff8677ba80: fa fa fa fa 00 02 fa fa fa fa fa fa 00 02 fa fa [ 168.400140] ffffffff8677bb00: fa fa fa fa 06 fa fa fa fa fa fa fa 07 fa fa fa [ 168.407507] >ffffffff8677bb80: fa fa fa fa 00 00 00 02 fa fa fa fa 00 03 fa fa [ 168.414962] ^ [ 168.420163] ffffffff8677bc00: fa fa fa fa 00 00 03 fa fa fa fa fa 00 03 fa fa [ 168.427526] ffffffff8677bc80: fa fa fa fa 00 03 fa fa fa fa fa fa 00 00 00 00 [ 168.435147] ================================================================== [ 168.442603] Disabling lock debugging due to kernel taint [ 168.448128] Kernel panic - not syncing: panic_on_warn set ... [ 168.448128] [ 168.455508] CPU: 0 PID: 7117 Comm: syz-executor.3 Tainted: G B 4.14.134 #30 [ 168.463757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 168.473635] Call Trace: [ 168.476238] dump_stack+0x138/0x19c [ 168.479881] ? strscpy+0x20e/0x2c0 [ 168.483510] panic+0x1f2/0x426 [ 168.486704] ? add_taint.cold+0x16/0x16 [ 168.490775] kasan_end_report+0x47/0x4f [ 168.494932] kasan_report.cold+0x130/0x2af [ 168.499174] __asan_report_load8_noabort+0x14/0x20 [ 168.504206] strscpy+0x20e/0x2c0 [ 168.507580] prepare_error_buf+0x94/0x1aa0 00:09:12 executing program 0: r0 = syz_open_dev$vcsa(&(0x7f0000000340)='/dev/vcsa#\x00', 0x3, 0x601000001) pwritev(r0, &(0x7f00000015c0)=[{&(0x7f0000000240)="f84c64a6cdf45d58495ccb32d8ab6c437b05d9e01d00e481676d00e1cd70c4a5d547a58ebf0d1f2c99135f824804603606cf32669c6ad8a79b20c3e4b3cb852c906c1e3018", 0x45}, {&(0x7f00000002c0)="6090a326b5215e0c1f9e1e1d9c9a3834f5c7557de0a76b1982ec16e50f23cc44915da752fe5e8c4ff0993643c028a92c189c203b4810552be5112e95b5f550d038ab746a67944e9a20990a0ef97d40a611b8a3541825cf74d841", 0x5a}, {&(0x7f0000000380)="eb48e4f1280cd00a06a39fde77a1a8c59052a048426a07d1b10d35582f6ef930114dd93aef445957a416162e32d408c38f4ddd689c4b13033d96713047681ddd6abccb9df2f433f5b6a8936fc6c808c13bf0f526cd76728475d6", 0x5a}, {&(0x7f0000000400)="ba0281492cb367ecd63d7f5c03b213daa75982237a2823e7a4bae6d2c7b14a31375a03cbb9aefe613d4b1b89e210b00ef682699cf63c8dc892cfccdf5235bca1a273d459d3412b66e6857c18b7dadd0d4703", 0x52}, {&(0x7f0000000480)='8', 0x1}, {&(0x7f00000004c0)="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", 0xe58}], 0x6, 0x0) 00:09:12 executing program 4: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f00000001c0)={{}, 'syz1\x00'}) ioctl$UI_DEV_SETUP(r0, 0x5501, 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x4, 0x0) ioctl$UI_DEV_DESTROY(r0, 0x5502) fcntl$dupfd(r1, 0x0, r1) pipe(&(0x7f0000000280)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b7}, &(0x7f0000000200), 0x0) [ 168.511828] ? lock_downgrade+0x6e0/0x6e0 [ 168.516268] ? scnprintf_le_key+0x600/0x600 [ 168.520763] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 168.525871] ? _parse_integer+0xe8/0x140 [ 168.529943] __reiserfs_warning+0x9f/0xb0 [ 168.534096] ? reiserfs_printk+0xd0/0xd0 [ 168.538243] ? ip6_string+0x3b0/0x3b0 [ 168.542049] reiserfs_parse_options+0xa16/0x1820 [ 168.546812] ? reiserfs_sync_fs+0xe0/0xe0 [ 168.550963] ? trace_hardirqs_on+0x10/0x10 [ 168.555343] ? workqueue_sysfs_register+0x3c0/0x3c0 [ 168.560450] ? lockdep_init_map+0x9/0x10 [ 168.564521] ? debug_mutex_init+0x2d/0x5a [ 168.568698] reiserfs_fill_super+0x461/0x2b20 [ 168.573222] ? finish_unfinished+0x1010/0x1010 [ 168.577819] ? snprintf+0xa5/0xd0 [ 168.581391] ? set_blocksize+0x270/0x300 [ 168.585488] ? ns_test_super+0x50/0x50 [ 168.589383] mount_bdev+0x2be/0x370 [ 168.593013] ? finish_unfinished+0x1010/0x1010 [ 168.598089] get_super_block+0x35/0x40 [ 168.601974] mount_fs+0x97/0x2a1 [ 168.605429] vfs_kern_mount.part.0+0x5e/0x3d0 [ 168.609922] do_mount+0x417/0x27d0 [ 168.613462] ? copy_mount_options+0x5c/0x2f0 [ 168.618131] ? rcu_read_lock_sched_held+0x110/0x130 [ 168.623147] ? copy_mount_string+0x40/0x40 [ 168.627405] ? copy_mount_options+0x1fe/0x2f0 [ 168.631900] SyS_mount+0xab/0x120 [ 168.635351] ? copy_mnt_ns+0x8c0/0x8c0 [ 168.639241] do_syscall_64+0x1e8/0x640 [ 168.643134] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 168.647988] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 168.653187] RIP: 0033:0x45c27a [ 168.656384] RSP: 002b:00007f2dbd1eca88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 168.664090] RAX: ffffffffffffffda RBX: 00007f2dbd1ecb40 RCX: 000000000045c27a [ 168.671363] RDX: 00007f2dbd1ecae0 RSI: 00000000200000c0 RDI: 00007f2dbd1ecb00 [ 168.678834] RBP: 0000000000000000 R08: 00007f2dbd1ecb40 R09: 00007f2dbd1ecae0 [ 168.686102] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 168.693395] R13: 00000000004c8a4f R14: 00000000004df848 R15: 00000000ffffffff [ 168.701983] Kernel Offset: disabled [ 168.705973] Rebooting in 86400 seconds..