[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.10.44' (ECDSA) to the list of known hosts. syzkaller login: [ 28.718104] FAULT_INJECTION: forcing a failure. [ 28.718104] name failslab, interval 1, probability 0, space 0, times 1 [ 28.729402] CPU: 1 PID: 8023 Comm: syz-executor594 Not tainted 4.14.210-syzkaller #0 [ 28.737268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 28.746595] Call Trace: [ 28.749249] dump_stack+0x1b2/0x283 [ 28.752852] should_fail.cold+0x10a/0x154 [ 28.756976] should_failslab+0xd6/0x130 [ 28.760928] kmem_cache_alloc_trace+0x29a/0x3d0 [ 28.765574] apparmor_file_alloc_security+0x129/0x800 [ 28.770756] security_file_alloc+0x66/0xa0 [ 28.774966] ? selinux_is_enabled+0x5/0x50 [ 28.779176] get_empty_filp+0x15c/0x3e0 [ 28.783123] path_openat+0x84/0x2970 [ 28.786815] ? path_lookupat+0x780/0x780 [ 28.790849] ? trace_hardirqs_on+0x10/0x10 [ 28.795057] ? trace_hardirqs_on+0x10/0x10 [ 28.799269] do_filp_open+0x179/0x3c0 [ 28.803128] ? may_open_dev+0xe0/0xe0 [ 28.806905] ? __alloc_fd+0x1be/0x490 [ 28.810680] ? lock_downgrade+0x740/0x740 [ 28.814804] ? do_raw_spin_unlock+0x164/0x220 [ 28.819276] ? _raw_spin_unlock+0x29/0x40 [ 28.823396] ? __alloc_fd+0x1be/0x490 [ 28.827173] ? _raw_spin_unlock_irq+0x24/0x80 [ 28.831642] do_sys_open+0x296/0x410 [ 28.835333] ? filp_open+0x60/0x60 [ 28.838848] ? do_syscall_64+0x4c/0x640 [ 28.842796] ? do_sys_open+0x410/0x410 [ 28.846657] do_syscall_64+0x1d5/0x640 [ 28.850535] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 28.855699] RIP: 0033:0x403d80 [ 28.858860] RSP: 002b:00007fff43091b38 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 28.866541] RAX: ffffffffffffffda RBX: 00007fff43091b61 RCX: 0000000000403d80 [ 28.873784] RDX: 00007fff43091b66 RSI: 0000000000080001 RDI: 00000000004ab720 [ 28.881030] RBP: 00007fff43091b60 R08: 0000000000000000 R09: 0000000000000001 [ 28.888274] R10: 0000000000000019 R11: 0000000000000246 R12: 00000000004ab720 [ 28.895519] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 28.916506] IPVS: ftp: loaded support on port[0] = 21 [ 28.990427] chnl_net:caif_netlink_parms(): no params data found [ 29.092299] bridge0: port 1(bridge_slave_0) entered blocking state [ 29.098937] bridge0: port 1(bridge_slave_0) entered disabled state [ 29.106485] device bridge_slave_0 entered promiscuous mode [ 29.113118] bridge0: port 2(bridge_slave_1) entered blocking state [ 29.120020] bridge0: port 2(bridge_slave_1) entered disabled state [ 29.126930] device bridge_slave_1 entered promiscuous mode [ 29.142216] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 29.150755] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 29.167445] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 29.174495] team0: Port device team_slave_0 added [ 29.180014] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 29.187172] team0: Port device team_slave_1 added [ 29.201419] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 29.207704] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 29.232897] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 29.244000] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 29.250372] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 29.275646] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 29.286258] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 29.293438] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 29.310692] device hsr_slave_0 entered promiscuous mode [ 29.316412] device hsr_slave_1 entered promiscuous mode [ 29.322218] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 29.329240] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 29.386171] bridge0: port 2(bridge_slave_1) entered blocking state [ 29.392551] bridge0: port 2(bridge_slave_1) entered forwarding state [ 29.399352] bridge0: port 1(bridge_slave_0) entered blocking state [ 29.405741] bridge0: port 1(bridge_slave_0) entered forwarding state [ 29.431289] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 29.437891] 8021q: adding VLAN 0 to HW filter on device bond0 [ 29.446420] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 29.455892] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 29.463427] bridge0: port 1(bridge_slave_0) entered disabled state [ 29.480560] bridge0: port 2(bridge_slave_1) entered disabled state [ 29.489991] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 29.496597] 8021q: adding VLAN 0 to HW filter on device team0 [ 29.504578] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 29.512141] bridge0: port 1(bridge_slave_0) entered blocking state [ 29.519643] bridge0: port 1(bridge_slave_0) entered forwarding state [ 29.529222] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 29.537535] bridge0: port 2(bridge_slave_1) entered blocking state [ 29.543855] bridge0: port 2(bridge_slave_1) entered forwarding state [ 29.561037] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 29.570925] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 29.582522] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 29.589777] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 29.597590] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 29.605612] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 29.613122] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 29.620989] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 29.627921] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 29.639181] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready [ 29.647793] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 29.654521] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 29.663867] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 29.711559] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready [ 29.720447] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 29.746171] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready [ 29.752987] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready [ 29.759621] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready [ 29.768317] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 29.776591] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 29.783300] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 29.791722] device veth0_vlan entered promiscuous mode [ 29.799836] device veth1_vlan entered promiscuous mode [ 29.805783] IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready [ 29.813541] IPv6: ADDRCONF(NETDEV_UP): macvlan1: link is not ready [ 29.823609] IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready [ 29.832527] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 29.840321] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 29.847859] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 29.856976] device veth0_macvtap entered promiscuous mode [ 29.862944] IPv6: ADDRCONF(NETDEV_UP): macvtap0: link is not ready [ 29.870656] device veth1_macvtap entered promiscuous mode [ 29.879330] IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready [ 29.888363] IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready [ 29.897969] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 29.904955] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready executing program [ 29.912896] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 29.921975] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 29.928955] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 29.974477] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 30.004468] FAULT_INJECTION: forcing a failure. [ 30.004468] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 30.016738] CPU: 1 PID: 8024 Comm: syz-executor594 Not tainted 4.14.210-syzkaller #0 [ 30.024600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 30.033931] Call Trace: [ 30.036500] dump_stack+0x1b2/0x283 [ 30.040104] should_fail.cold+0x10a/0x154 [ 30.044242] __alloc_pages_nodemask+0x22c/0x2720 [ 30.049023] ? trace_hardirqs_on+0x10/0x10 [ 30.053229] ? is_bpf_text_address+0xb8/0x150 [ 30.057704] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 30.062576] ? unwind_get_return_address+0x51/0x90 [ 30.067488] ? entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 30.072830] ? __save_stack_trace+0xa0/0x160 [ 30.077221] ? __change_page_attr_set_clr+0x316/0x2280 [ 30.082510] ? lock_acquire+0x170/0x3f0 [ 30.086504] ? lock_downgrade+0x740/0x740 [ 30.090631] alloc_pages_current+0x155/0x260 [ 30.095016] ? do_raw_spin_unlock+0x164/0x220 [ 30.100183] __change_page_attr_set_clr+0x322/0x2280 [ 30.105589] ? slow_virt_to_phys+0x300/0x300 [ 30.109973] ? _raw_spin_unlock_irqrestore+0x79/0xe0 [ 30.115052] ? __change_page_attr_set_clr+0x1952/0x2280 [ 30.120390] ? lock_acquire+0x170/0x3f0 [ 30.124339] ? lock_downgrade+0x740/0x740 [ 30.128464] __change_page_attr_set_clr+0x1a45/0x2280 [ 30.133638] ? slow_virt_to_phys+0x300/0x300 [ 30.138028] ? __mutex_unlock_slowpath+0x75/0x770 [ 30.142848] ? wait_for_completion_io+0x10/0x10 [ 30.147533] ? vm_unmap_aliases+0x3a5/0x460 [ 30.151831] change_page_attr_set_clr+0x2a2/0xa30 [ 30.156655] ? __change_page_attr_set_clr+0x2280/0x2280 [ 30.161998] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 30.167007] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 30.172104] set_memory_ro+0x68/0x80 [ 30.175798] ? _set_memory_wb+0x80/0x80 [ 30.179747] bpf_int_jit_compile+0x441/0x5fe [ 30.184143] ? do_jit+0x5330/0x5330 [ 30.187746] ? __bpf_prog_run64+0xb0/0xb0 [ 30.191880] bpf_prog_select_runtime+0xdf/0x4e0 [ 30.196540] bpf_migrate_filter+0x242/0x2d0 [ 30.200837] ? __sk_attach_prog+0x360/0x360 [ 30.205622] bpf_prepare_filter+0x14c/0x320 [ 30.209917] __get_filter+0x196/0x240 [ 30.213701] sk_attach_filter+0x1b/0x140 [ 30.217742] sock_setsockopt+0x119a/0x1a50 [ 30.221954] ? sk_wait_data+0x3d0/0x3d0 [ 30.225903] ? lock_downgrade+0x740/0x740 [ 30.230024] ? __fdget+0x167/0x1f0 [ 30.233538] ? security_socket_setsockopt+0x83/0xb0 [ 30.238549] SyS_setsockopt+0x1a4/0x1e0 [ 30.242500] ? SyS_recv+0x40/0x40 [ 30.245931] ? __do_page_fault+0x159/0xad0 [ 30.250150] ? do_syscall_64+0x4c/0x640 [ 30.254104] ? SyS_recv+0x40/0x40 [ 30.257555] do_syscall_64+0x1d5/0x640 [ 30.261419] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 30.266581] RIP: 0033:0x443f49 [ 30.269744] RSP: 002b:00007fff43092048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 30.277429] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000443f49 [ 30.284691] RDX: 000000000000001a RSI: 0000000000000001 RDI: 0000000000000005 [ 30.291935] RBP: 00007fff43092060 R08: 0000000000000010 R09: 00000000bb1414ac [ 30.299180] R10: 0000000020ab9ff0 R11: 0000000000000246 R12: 00007fff43092090 [ 30.306864] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 30.318075] ------------[ cut here ]------------ [ 30.322840] WARNING: CPU: 1 PID: 8024 at include/linux/filter.h:628 bpf_int_jit_compile+0x50f/0x5fe [ 30.332011] Kernel panic - not syncing: panic_on_warn set ... [ 30.332011] [ 30.339360] CPU: 1 PID: 8024 Comm: syz-executor594 Not tainted 4.14.210-syzkaller #0 [ 30.347213] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 30.356542] Call Trace: [ 30.359193] dump_stack+0x1b2/0x283 [ 30.362797] panic+0x1f9/0x42d [ 30.365971] ? add_taint.cold+0x16/0x16 [ 30.369938] ? bpf_int_jit_compile+0x50f/0x5fe [ 30.374497] ? bpf_int_jit_compile+0x50f/0x5fe [ 30.379057] __warn.cold+0x20/0x4b [ 30.382573] ? ist_end_non_atomic+0x10/0x10 [ 30.386873] ? bpf_int_jit_compile+0x50f/0x5fe [ 30.391430] report_bug+0x208/0x249 [ 30.395033] do_error_trap+0x195/0x2d0 [ 30.398894] ? math_error+0x2d0/0x2d0 [ 30.403103] ? __change_page_attr_set_clr+0x2280/0x2280 [ 30.408443] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 30.413283] invalid_op+0x1b/0x40 [ 30.416714] RIP: 0010:bpf_int_jit_compile+0x50f/0x5fe [ 30.421875] RSP: 0018:ffff8880959d7b38 EFLAGS: 00010297 [ 30.427211] RAX: ffff8880b3586300 RBX: ffff8880b3586300 RCX: 0000000000000000 [ 30.434455] RDX: 0000000000000000 RSI: ffff8880b3586b88 RDI: 0000000000000001 [ 30.441696] RBP: 000000000000005a R08: ffffffff8b9c6c90 R09: 0000000000000000 [ 30.448959] R10: 0000000000000000 R11: 0000000000000000 R12: 00007ffffffff000 [ 30.456206] R13: ffffc900019c7000 R14: ffff8880aa887080 R15: ffff8880959d7ba0 [ 30.463475] ? bpf_int_jit_compile+0x50f/0x5fe [ 30.468038] ? do_jit+0x5330/0x5330 [ 30.471642] ? __bpf_prog_run64+0xb0/0xb0 [ 30.475765] bpf_prog_select_runtime+0xdf/0x4e0 [ 30.480415] bpf_migrate_filter+0x242/0x2d0 [ 30.484714] ? __sk_attach_prog+0x360/0x360 [ 30.489011] bpf_prepare_filter+0x14c/0x320 [ 30.493319] __get_filter+0x196/0x240 [ 30.497097] sk_attach_filter+0x1b/0x140 [ 30.501133] sock_setsockopt+0x119a/0x1a50 [ 30.505765] ? sk_wait_data+0x3d0/0x3d0 [ 30.509717] ? lock_downgrade+0x740/0x740 [ 30.513898] ? __fdget+0x167/0x1f0 [ 30.517423] ? security_socket_setsockopt+0x83/0xb0 [ 30.522432] SyS_setsockopt+0x1a4/0x1e0 [ 30.526402] ? SyS_recv+0x40/0x40 [ 30.529892] ? __do_page_fault+0x159/0xad0 [ 30.534112] ? do_syscall_64+0x4c/0x640 [ 30.538063] ? SyS_recv+0x40/0x40 [ 30.541533] do_syscall_64+0x1d5/0x640 [ 30.545415] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 30.550594] RIP: 0033:0x443f49 [ 30.553769] RSP: 002b:00007fff43092048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 30.561602] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000443f49 [ 30.568852] RDX: 000000000000001a RSI: 0000000000000001 RDI: 0000000000000005 [ 30.576101] RBP: 00007fff43092060 R08: 0000000000000010 R09: 00000000bb1414ac [ 30.583355] R10: 0000000020ab9ff0 R11: 0000000000000246 R12: 00007fff43092090 [ 30.590617] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 30.598591] Kernel Offset: disabled [ 30.602650] Rebooting in 86400 seconds..