[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.1.144' (ECDSA) to the list of known hosts. syzkaller login: [ 28.290508] IPVS: ftp: loaded support on port[0] = 21 [ 28.359877] chnl_net:caif_netlink_parms(): no params data found [ 28.403424] bridge0: port 1(bridge_slave_0) entered blocking state [ 28.410032] bridge0: port 1(bridge_slave_0) entered disabled state [ 28.418924] device bridge_slave_0 entered promiscuous mode [ 28.425627] bridge0: port 2(bridge_slave_1) entered blocking state [ 28.432210] bridge0: port 2(bridge_slave_1) entered disabled state [ 28.439264] device bridge_slave_1 entered promiscuous mode [ 28.456252] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 28.464886] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 28.482076] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 28.489618] team0: Port device team_slave_0 added [ 28.494910] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 28.502338] team0: Port device team_slave_1 added [ 28.517079] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 28.523311] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 28.548625] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 28.559773] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 28.565989] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 28.591206] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 28.605000] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 28.612564] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 28.630548] device hsr_slave_0 entered promiscuous mode [ 28.636122] device hsr_slave_1 entered promiscuous mode [ 28.642264] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 28.649529] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 28.707171] bridge0: port 2(bridge_slave_1) entered blocking state [ 28.713550] bridge0: port 2(bridge_slave_1) entered forwarding state [ 28.720919] bridge0: port 1(bridge_slave_0) entered blocking state [ 28.727309] bridge0: port 1(bridge_slave_0) entered forwarding state [ 28.754753] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 28.761403] 8021q: adding VLAN 0 to HW filter on device bond0 [ 28.770064] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 28.778474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 28.796483] bridge0: port 1(bridge_slave_0) entered disabled state [ 28.803331] bridge0: port 2(bridge_slave_1) entered disabled state [ 28.812979] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 28.819583] 8021q: adding VLAN 0 to HW filter on device team0 [ 28.827626] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 28.835151] bridge0: port 1(bridge_slave_0) entered blocking state [ 28.841526] bridge0: port 1(bridge_slave_0) entered forwarding state [ 28.850670] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 28.858422] bridge0: port 2(bridge_slave_1) entered blocking state [ 28.864915] bridge0: port 2(bridge_slave_1) entered forwarding state [ 28.879100] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 28.892387] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 28.902227] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 28.913012] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 28.919934] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 28.927349] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 28.934736] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 28.942489] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 28.950025] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 28.960694] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready [ 28.971235] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 28.978200] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 28.987619] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 29.034234] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready [ 29.043366] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 29.073494] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready [ 29.080774] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready [ 29.088038] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready [ 29.096520] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 29.103784] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 29.111030] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 29.119511] device veth0_vlan entered promiscuous mode [ 29.128075] device veth1_vlan entered promiscuous mode [ 29.133798] IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready [ 29.142518] IPv6: ADDRCONF(NETDEV_UP): macvlan1: link is not ready [ 29.153869] IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready [ 29.162996] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 29.170191] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 29.177543] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 29.186763] device veth0_macvtap entered promiscuous mode [ 29.192713] IPv6: ADDRCONF(NETDEV_UP): macvtap0: link is not ready [ 29.201090] device veth1_macvtap entered promiscuous mode [ 29.209586] IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready [ 29.218688] IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready [ 29.227865] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 29.234477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 29.242876] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 29.252402] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 29.259224] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready executing program [ 29.339497] FAULT_INJECTION: forcing a failure. [ 29.339497] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 29.351733] CPU: 0 PID: 7986 Comm: syz-executor232 Not tainted 4.14.301-syzkaller #0 [ 29.359595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 29.368921] Call Trace: [ 29.371498] dump_stack+0x1b2/0x281 [ 29.375102] should_fail.cold+0x10a/0x149 [ 29.379225] __alloc_pages_nodemask+0x21e/0x2900 [ 29.383960] ? trace_hardirqs_on+0x10/0x10 [ 29.388166] ? is_bpf_text_address+0xb8/0x150 [ 29.392639] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 29.397454] ? unwind_get_return_address+0x51/0x90 [ 29.402353] ? entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 29.407687] ? __save_stack_trace+0xa0/0x160 [ 29.412072] ? __change_page_attr_set_clr+0x316/0x2280 [ 29.417320] ? lock_acquire+0x170/0x3f0 [ 29.421264] ? lock_downgrade+0x740/0x740 [ 29.425385] alloc_pages_current+0x155/0x260 [ 29.429769] ? do_raw_spin_unlock+0x164/0x220 [ 29.434236] __change_page_attr_set_clr+0x322/0x2280 [ 29.439321] ? slow_virt_to_phys+0x300/0x300 [ 29.443704] ? _raw_spin_unlock_irqrestore+0x79/0xe0 [ 29.448793] ? __change_page_attr_set_clr+0x1952/0x2280 [ 29.454130] ? lock_acquire+0x170/0x3f0 [ 29.458075] ? lock_downgrade+0x740/0x740 [ 29.462199] __change_page_attr_set_clr+0x1a45/0x2280 [ 29.467387] ? slow_virt_to_phys+0x300/0x300 [ 29.471773] ? __mutex_unlock_slowpath+0x75/0x770 [ 29.476589] ? wait_for_completion_io+0x10/0x10 [ 29.481231] ? vm_unmap_aliases+0x3a5/0x460 [ 29.485527] change_page_attr_set_clr+0x2a2/0xa30 [ 29.490342] ? __change_page_attr_set_clr+0x2280/0x2280 [ 29.495677] ? mark_held_locks+0xa6/0xf0 [ 29.499709] ? kfree+0x14a/0x250 [ 29.503047] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 29.508041] set_memory_ro+0x68/0x80 [ 29.511727] ? _set_memory_wb+0x80/0x80 [ 29.515675] ? __bpf_prog_run64+0xb0/0xb0 [ 29.519797] bpf_prog_select_runtime+0x143/0x4e0 [ 29.524528] bpf_migrate_filter+0x242/0x2d0 [ 29.528851] ? __sk_attach_prog+0x360/0x360 [ 29.533148] bpf_prepare_filter+0x14c/0x320 [ 29.537442] __get_filter+0x196/0x240 [ 29.541215] sk_attach_filter+0x1b/0x140 [ 29.545253] __tun_chr_ioctl.isra.0+0xbd7/0x3440 [ 29.549982] ? tun_attach.isra.0+0x1060/0x1060 [ 29.554536] ? fsnotify+0x974/0x11b0 [ 29.558220] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 29.563211] ? debug_check_no_obj_freed+0x2c0/0x680 [ 29.568214] ? __tun_chr_ioctl.isra.0+0x3440/0x3440 [ 29.573993] do_vfs_ioctl+0x75a/0xff0 [ 29.577766] ? ioctl_preallocate+0x1a0/0x1a0 [ 29.582149] ? vfs_write+0x319/0x4d0 [ 29.585844] ? SyS_write+0x14d/0x210 [ 29.589723] ? security_file_ioctl+0x83/0xb0 [ 29.594111] SyS_ioctl+0x7f/0xb0 [ 29.597461] ? do_vfs_ioctl+0xff0/0xff0 [ 29.601414] do_syscall_64+0x1d5/0x640 [ 29.605402] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 29.610570] RIP: 0033:0x7ff219e0e869 [ 29.614256] RSP: 002b:00007fffb22e9c08 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 29.622035] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007ff219e0e869 [ 29.629281] RDX: 0000000020000480 RSI: 00000000401054d5 RDI: 0000000000000003 [ 29.636526] RBP: 00007fffb22e9c10 R08: 0000000000000002 R09: 00007fffb2003131 [ 29.643790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 29.651049] R13: 00007fffb22e9c60 R14: 00007fffb22e9c58 R15: 00007fffb22e9ca0 [ 29.660262] ------------[ cut here ]------------ [ 29.665025] WARNING: CPU: 0 PID: 7986 at include/linux/filter.h:612 bpf_prog_select_runtime+0x3f1/0x4e0 [ 29.674546] Kernel panic - not syncing: panic_on_warn set ... [ 29.674546] [ 29.681898] CPU: 0 PID: 7986 Comm: syz-executor232 Not tainted 4.14.301-syzkaller #0 [ 29.689797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 29.699137] Call Trace: [ 29.701702] dump_stack+0x1b2/0x281 [ 29.705306] panic+0x1f9/0x42d [ 29.708481] ? add_taint.cold+0x16/0x16 [ 29.712432] ? bpf_prog_select_runtime+0x3f1/0x4e0 [ 29.717341] ? bpf_prog_select_runtime+0x3f1/0x4e0 [ 29.722244] __warn.cold+0x20/0x44 [ 29.725760] ? ist_end_non_atomic+0x10/0x10 [ 29.730055] ? bpf_prog_select_runtime+0x3f1/0x4e0 [ 29.734956] report_bug+0x208/0x250 [ 29.738556] do_error_trap+0x195/0x2d0 [ 29.742415] ? math_error+0x2d0/0x2d0 [ 29.746190] ? __change_page_attr_set_clr+0x2280/0x2280 [ 29.751529] ? mark_held_locks+0xa6/0xf0 [ 29.755563] ? kfree+0x14a/0x250 [ 29.758905] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 29.763722] invalid_op+0x1b/0x40 [ 29.767150] RIP: 0010:bpf_prog_select_runtime+0x3f1/0x4e0 [ 29.772655] RSP: 0018:ffff8880b351fb00 EFLAGS: 00010297 [ 29.777997] RAX: ffff888096922380 RBX: ffffffff815eca50 RCX: 0000000000000000 [ 29.785239] RDX: 0000000000000000 RSI: ffff888096922c30 RDI: 0000000000000001 [ 29.794309] RBP: ffffc90001ac4000 R08: ffffffff8b9b7690 R09: 0000000000000000 [ 29.801550] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8880aa404180 [ 29.808792] R13: ffffc90001ac4000 R14: ffff8880b351fbb0 R15: ffffc90001ac4000 [ 29.816041] ? __bpf_prog_run64+0xb0/0xb0 [ 29.820170] bpf_migrate_filter+0x242/0x2d0 [ 29.824466] ? __sk_attach_prog+0x360/0x360 [ 29.828762] bpf_prepare_filter+0x14c/0x320 [ 29.833057] __get_filter+0x196/0x240 [ 29.836833] sk_attach_filter+0x1b/0x140 [ 29.840866] __tun_chr_ioctl.isra.0+0xbd7/0x3440 [ 29.845598] ? tun_attach.isra.0+0x1060/0x1060 [ 29.850155] ? fsnotify+0x974/0x11b0 [ 29.853840] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 29.858747] ? debug_check_no_obj_freed+0x2c0/0x680 [ 29.863912] ? __tun_chr_ioctl.isra.0+0x3440/0x3440 [ 29.868917] do_vfs_ioctl+0x75a/0xff0 [ 29.872695] ? ioctl_preallocate+0x1a0/0x1a0 [ 29.877076] ? vfs_write+0x319/0x4d0 [ 29.880761] ? SyS_write+0x14d/0x210 [ 29.884452] ? security_file_ioctl+0x83/0xb0 [ 29.888833] SyS_ioctl+0x7f/0xb0 [ 29.892198] ? do_vfs_ioctl+0xff0/0xff0 [ 29.896148] do_syscall_64+0x1d5/0x640 [ 29.900016] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 29.905178] RIP: 0033:0x7ff219e0e869 [ 29.908862] RSP: 002b:00007fffb22e9c08 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 29.916542] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007ff219e0e869 [ 29.923786] RDX: 0000000020000480 RSI: 00000000401054d5 RDI: 0000000000000003 [ 29.931030] RBP: 00007fffb22e9c10 R08: 0000000000000002 R09: 00007fffb2003131 [ 29.938271] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 29.945514] R13: 00007fffb22e9c60 R14: 00007fffb22e9c58 R15: 00007fffb22e9ca0 [ 29.953061] Kernel Offset: disabled [ 29.956708] Rebooting in 86400 seconds..