[ 56.376326] audit: type=1800 audit(1540058034.427:25): pid=6073 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 56.395735] audit: type=1800 audit(1540058034.437:26): pid=6073 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 56.415318] audit: type=1800 audit(1540058034.457:27): pid=6073 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [ 56.488279] audit: type=1800 audit(1540058034.487:28): pid=6073 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.10.14' (ECDSA) to the list of known hosts. 2018/10/20 17:54:22 parsed 1 programs 2018/10/20 17:54:38 executed programs: 0 syzkaller login: [ 101.167147] IPVS: ftp: loaded support on port[0] = 21 [ 101.205573] IPVS: ftp: loaded support on port[0] = 21 [ 101.236922] IPVS: ftp: loaded support on port[0] = 21 [ 101.240735] IPVS: ftp: loaded support on port[0] = 21 [ 101.259843] IPVS: ftp: loaded support on port[0] = 21 [ 101.278284] IPVS: ftp: loaded support on port[0] = 21 [ 104.150491] bridge0: port 1(bridge_slave_0) entered blocking state [ 104.157106] bridge0: port 1(bridge_slave_0) entered disabled state [ 104.165615] device bridge_slave_0 entered promiscuous mode [ 104.389865] bridge0: port 2(bridge_slave_1) entered blocking state [ 104.396630] bridge0: port 2(bridge_slave_1) entered disabled state [ 104.405115] device bridge_slave_1 entered promiscuous mode [ 104.432374] bridge0: port 1(bridge_slave_0) entered blocking state [ 104.438822] bridge0: port 1(bridge_slave_0) entered disabled state [ 104.447398] device bridge_slave_0 entered promiscuous mode [ 104.467935] bridge0: port 1(bridge_slave_0) entered blocking state [ 104.474537] bridge0: port 1(bridge_slave_0) entered disabled state [ 104.482992] device bridge_slave_0 entered promiscuous mode [ 104.503889] bridge0: port 1(bridge_slave_0) entered blocking state [ 104.510349] bridge0: port 1(bridge_slave_0) entered disabled state [ 104.519126] device bridge_slave_0 entered promiscuous mode [ 104.537887] bridge0: port 1(bridge_slave_0) entered blocking state [ 104.544531] bridge0: port 1(bridge_slave_0) entered disabled state [ 104.552979] device bridge_slave_0 entered promiscuous mode [ 104.568676] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 104.639245] bridge0: port 2(bridge_slave_1) entered blocking state [ 104.645980] bridge0: port 2(bridge_slave_1) entered disabled state [ 104.654585] device bridge_slave_1 entered promiscuous mode [ 104.668337] bridge0: port 2(bridge_slave_1) entered blocking state [ 104.675023] bridge0: port 2(bridge_slave_1) entered disabled state [ 104.683572] device bridge_slave_1 entered promiscuous mode [ 104.724568] bridge0: port 2(bridge_slave_1) entered blocking state [ 104.731044] bridge0: port 2(bridge_slave_1) entered disabled state [ 104.739711] device bridge_slave_1 entered promiscuous mode [ 104.751798] bridge0: port 2(bridge_slave_1) entered blocking state [ 104.758236] bridge0: port 2(bridge_slave_1) entered disabled state [ 104.766857] device bridge_slave_1 entered promiscuous mode [ 104.776613] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 104.808940] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 104.863573] bridge0: port 1(bridge_slave_0) entered blocking state [ 104.870043] bridge0: port 1(bridge_slave_0) entered disabled state [ 104.878771] device bridge_slave_0 entered promiscuous mode [ 104.899353] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 104.957854] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 104.984928] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 105.032296] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 105.067170] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 105.078868] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.085613] bridge0: port 2(bridge_slave_1) entered disabled state [ 105.094160] device bridge_slave_1 entered promiscuous mode [ 105.128836] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 105.268499] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 105.295613] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 105.347772] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 105.500740] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 105.538020] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 105.561788] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 105.599698] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 105.707488] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 105.719560] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 105.727370] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 105.770705] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 105.809159] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 105.837689] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 105.871747] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 105.894591] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 105.914284] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 105.983116] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 106.009962] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 106.019487] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 106.043587] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 106.050637] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 106.153304] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 106.236160] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 106.243340] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 106.255613] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 106.262942] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 106.388768] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 106.429753] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 106.437001] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 106.565289] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 106.573577] team0: Port device team_slave_0 added [ 106.603801] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 106.610844] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 106.771184] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 106.778356] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 106.788692] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 106.796953] team0: Port device team_slave_0 added [ 106.835779] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 106.844022] team0: Port device team_slave_1 added [ 106.873297] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 106.881232] team0: Port device team_slave_0 added [ 106.927391] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 106.935662] team0: Port device team_slave_0 added [ 106.985717] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 106.994056] team0: Port device team_slave_1 added [ 107.007340] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 107.016657] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 107.025725] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 107.118272] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 107.126484] team0: Port device team_slave_1 added [ 107.156827] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 107.165082] team0: Port device team_slave_0 added [ 107.183141] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 107.191091] team0: Port device team_slave_1 added [ 107.211274] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 107.221811] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 107.230640] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 107.246758] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 107.306620] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 107.315820] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 107.356862] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 107.365013] team0: Port device team_slave_0 added [ 107.373785] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 107.382853] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 107.390966] team0: Port device team_slave_1 added [ 107.426377] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 107.450368] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 107.466146] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 107.475251] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 107.529739] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 107.536969] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 107.546186] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 107.572894] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 107.591987] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 107.600994] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 107.615059] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 107.623193] team0: Port device team_slave_1 added [ 107.631859] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 107.640984] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 107.661799] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 107.670698] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 107.679252] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 107.688127] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 107.713486] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 107.786269] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 107.806447] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 107.814380] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 107.823673] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 107.832480] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 107.841233] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 107.850066] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 107.859079] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 107.877278] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 107.896898] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 107.906053] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 107.924695] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 107.938752] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 107.947979] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 107.972534] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 107.995800] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 108.005117] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 108.027078] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 108.052766] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 108.060739] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 108.069999] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 108.078831] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 108.088038] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 108.113477] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 108.155863] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 108.200711] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 108.208503] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 108.217675] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 108.226807] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 108.235699] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 108.244113] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 108.253210] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 108.331140] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 108.342066] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 108.352192] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 108.361190] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 108.369952] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 108.379005] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 108.623671] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 108.631206] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 108.640161] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 109.816203] bridge0: port 2(bridge_slave_1) entered blocking state [ 109.822785] bridge0: port 2(bridge_slave_1) entered forwarding state [ 109.829712] bridge0: port 1(bridge_slave_0) entered blocking state [ 109.836332] bridge0: port 1(bridge_slave_0) entered forwarding state [ 109.844801] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 109.859129] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 110.165665] bridge0: port 2(bridge_slave_1) entered blocking state [ 110.172236] bridge0: port 2(bridge_slave_1) entered forwarding state [ 110.179155] bridge0: port 1(bridge_slave_0) entered blocking state [ 110.185749] bridge0: port 1(bridge_slave_0) entered forwarding state [ 110.194251] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 110.377065] bridge0: port 2(bridge_slave_1) entered blocking state [ 110.383624] bridge0: port 2(bridge_slave_1) entered forwarding state [ 110.390503] bridge0: port 1(bridge_slave_0) entered blocking state [ 110.397134] bridge0: port 1(bridge_slave_0) entered forwarding state [ 110.406036] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 110.446295] bridge0: port 2(bridge_slave_1) entered blocking state [ 110.452820] bridge0: port 2(bridge_slave_1) entered forwarding state [ 110.459689] bridge0: port 1(bridge_slave_0) entered blocking state [ 110.466274] bridge0: port 1(bridge_slave_0) entered forwarding state [ 110.474992] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 110.483614] bridge0: port 2(bridge_slave_1) entered blocking state [ 110.490058] bridge0: port 2(bridge_slave_1) entered forwarding state [ 110.497026] bridge0: port 1(bridge_slave_0) entered blocking state [ 110.503552] bridge0: port 1(bridge_slave_0) entered forwarding state [ 110.513250] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 110.800585] bridge0: port 2(bridge_slave_1) entered blocking state [ 110.807147] bridge0: port 2(bridge_slave_1) entered forwarding state [ 110.814184] bridge0: port 1(bridge_slave_0) entered blocking state [ 110.820638] bridge0: port 1(bridge_slave_0) entered forwarding state [ 110.829726] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 110.902315] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 110.910314] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 110.918437] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 110.926492] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 110.934575] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 116.787478] ip (7249) used greatest stack depth: 53152 bytes left [ 117.821992] 8021q: adding VLAN 0 to HW filter on device bond0 [ 117.958808] 8021q: adding VLAN 0 to HW filter on device bond0 [ 118.017812] 8021q: adding VLAN 0 to HW filter on device bond0 [ 118.032169] 8021q: adding VLAN 0 to HW filter on device bond0 [ 118.171711] 8021q: adding VLAN 0 to HW filter on device bond0 [ 118.248472] 8021q: adding VLAN 0 to HW filter on device bond0 [ 118.482925] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 118.660032] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 118.683493] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 118.770693] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 118.905157] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 118.960235] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 119.245175] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 119.251754] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 119.259688] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 119.305709] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 119.324459] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 119.332722] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 119.396391] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 119.402876] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 119.410637] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 119.592975] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 119.601000] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 119.609016] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 119.669028] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 119.678587] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 119.686501] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 119.777030] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 119.786085] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 119.794072] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 119.999198] 8021q: adding VLAN 0 to HW filter on device team0 [ 120.035292] 8021q: adding VLAN 0 to HW filter on device team0 [ 120.201322] 8021q: adding VLAN 0 to HW filter on device team0 [ 120.350749] 8021q: adding VLAN 0 to HW filter on device team0 [ 120.361229] 8021q: adding VLAN 0 to HW filter on device team0 [ 120.460846] 8021q: adding VLAN 0 to HW filter on device team0 [ 124.383074] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details. 2018/10/20 17:55:02 executed programs: 6 [ 125.252151] ================================================================== [ 125.259568] BUG: KMSAN: kernel-infoleak in _copy_to_user+0x15d/0x1f0 [ 125.266091] CPU: 1 PID: 7793 Comm: syz-executor3 Not tainted 4.19.0-rc8+ #70 [ 125.273295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 125.282666] Call Trace: [ 125.285302] dump_stack+0x306/0x460 [ 125.288958] ? _copy_to_user+0x15d/0x1f0 [ 125.293065] kmsan_report+0x1a2/0x2e0 [ 125.296920] kmsan_internal_check_memory+0x2cd/0x460 [ 125.302081] kmsan_copy_to_user+0x89/0xe0 [ 125.306258] _copy_to_user+0x15d/0x1f0 [ 125.310192] kvm_vcpu_ioctl+0xe2a/0x20b0 [ 125.314298] ? do_vfs_ioctl+0x187/0x2ca0 [ 125.318398] ? __se_sys_ioctl+0x1da/0x270 [ 125.322599] ? kvm_vm_release+0x90/0x90 [ 125.326601] do_vfs_ioctl+0xf28/0x2ca0 [ 125.330542] ? security_file_ioctl+0x92/0x200 [ 125.335103] __se_sys_ioctl+0x1da/0x270 [ 125.339141] __x64_sys_ioctl+0x4a/0x70 [ 125.343059] do_syscall_64+0xbe/0x100 [ 125.346906] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 125.352141] RIP: 0033:0x4573d7 [ 125.355355] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 125.374279] RSP: 002b:00007fc119f6e098 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 125.382012] RAX: ffffffffffffffda RBX: 0000000000000018 RCX: 00000000004573d7 [ 125.389303] RDX: 00007fc119f6e6f0 RSI: 000000008138ae83 RDI: 0000000000000005 [ 125.396581] RBP: 0000000020017000 R08: 0000000000000001 R09: 0000000000000048 [ 125.403867] R10: ffffffffffffffff R11: 0000000000000246 R12: 00000000fec00000 [ 125.411153] R13: 00000000ffffffff R14: 00000000004d7cf8 R15: 00000000ffffffff [ 125.418457] [ 125.420088] Uninit was stored to memory at: [ 125.424431] kmsan_internal_chain_origin+0x136/0x240 [ 125.429545] __msan_chain_origin+0x75/0xd0 [ 125.433855] __get_sregs+0x949/0xff0 [ 125.437582] kvm_arch_vcpu_ioctl_get_sregs+0x71/0xb0 [ 125.442700] kvm_vcpu_ioctl+0x40d/0x20b0 [ 125.446774] do_vfs_ioctl+0xf28/0x2ca0 [ 125.450675] __se_sys_ioctl+0x1da/0x270 [ 125.454664] __x64_sys_ioctl+0x4a/0x70 [ 125.458578] do_syscall_64+0xbe/0x100 [ 125.462408] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 125.467603] [ 125.469230] Uninit was stored to memory at: [ 125.473569] kmsan_internal_chain_origin+0x136/0x240 [ 125.478690] __msan_chain_origin+0x75/0xd0 [ 125.482949] kvm_inject_page_fault+0x2d7/0x6f0 [ 125.487546] handle_vmwrite+0xdac/0x3220 [ 125.491621] vmx_handle_exit+0x20f5/0xb900 [ 125.495870] kvm_arch_vcpu_ioctl_run+0xa22b/0x10ab0 [ 125.500916] kvm_vcpu_ioctl+0x11a7/0x20b0 [ 125.505079] do_vfs_ioctl+0xf28/0x2ca0 [ 125.508977] __se_sys_ioctl+0x1da/0x270 [ 125.512971] __x64_sys_ioctl+0x4a/0x70 [ 125.516871] do_syscall_64+0xbe/0x100 [ 125.520695] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 125.525881] [ 125.527522] Local variable description: ----e@handle_vmwrite [ 125.533321] Variable was created at: [ 125.537053] handle_vmwrite+0x1f6/0x3220 [ 125.541124] vmx_handle_exit+0x20f5/0xb900 [ 125.545387] [ 125.547031] Bytes 232-239 of 312 are uninitialized [ 125.551969] Memory access of size 312 starts at ffff880194616000 [ 125.558118] ================================================================== [ 125.565479] Disabling lock debugging due to kernel taint [ 125.570939] Kernel panic - not syncing: panic_on_warn set ... [ 125.570939] [ 125.578341] CPU: 1 PID: 7793 Comm: syz-executor3 Tainted: G B 4.19.0-rc8+ #70 [ 125.586928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 125.596290] Call Trace: [ 125.598920] dump_stack+0x306/0x460 [ 125.602591] panic+0x54c/0xafa [ 125.605842] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 125.611316] kmsan_report+0x2d3/0x2e0 [ 125.615152] kmsan_internal_check_memory+0x2cd/0x460 [ 125.620295] kmsan_copy_to_user+0x89/0xe0 [ 125.624465] _copy_to_user+0x15d/0x1f0 [ 125.628395] kvm_vcpu_ioctl+0xe2a/0x20b0 [ 125.632504] ? do_vfs_ioctl+0x187/0x2ca0 [ 125.636580] ? __se_sys_ioctl+0x1da/0x270 [ 125.640768] ? kvm_vm_release+0x90/0x90 [ 125.644756] do_vfs_ioctl+0xf28/0x2ca0 [ 125.648709] ? security_file_ioctl+0x92/0x200 [ 125.653231] __se_sys_ioctl+0x1da/0x270 [ 125.657239] __x64_sys_ioctl+0x4a/0x70 [ 125.661142] do_syscall_64+0xbe/0x100 [ 125.664965] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 125.670166] RIP: 0033:0x4573d7 [ 125.673376] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 125.692296] RSP: 002b:00007fc119f6e098 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 125.700024] RAX: ffffffffffffffda RBX: 0000000000000018 RCX: 00000000004573d7 [ 125.707323] RDX: 00007fc119f6e6f0 RSI: 000000008138ae83 RDI: 0000000000000005 [ 125.714609] RBP: 0000000020017000 R08: 0000000000000001 R09: 0000000000000048 [ 125.721904] R10: ffffffffffffffff R11: 0000000000000246 R12: 00000000fec00000 [ 125.729192] R13: 00000000ffffffff R14: 00000000004d7cf8 R15: 00000000ffffffff [ 125.737427] Kernel Offset: disabled [ 125.741062] Rebooting in 86400 seconds..