Warning: Permanently added '10.128.10.49' (ECDSA) to the list of known hosts. 2021/07/07 08:51:45 fuzzer started 2021/07/07 08:51:45 connecting to host at 10.128.0.169:46653 2021/07/07 08:51:45 checking machine... 2021/07/07 08:51:45 checking revisions... 2021/07/07 08:51:45 testing simple program... syzkaller login: [ 64.249429][ T8448] chnl_net:caif_netlink_parms(): no params data found [ 64.291140][ T8448] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.299955][ T8448] bridge0: port 1(bridge_slave_0) entered disabled state [ 64.307961][ T8448] device bridge_slave_0 entered promiscuous mode [ 64.316835][ T8448] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.324736][ T8448] bridge0: port 2(bridge_slave_1) entered disabled state [ 64.334176][ T8448] device bridge_slave_1 entered promiscuous mode [ 64.355017][ T8448] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 64.367504][ T8448] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 64.387791][ T8448] team0: Port device team_slave_0 added [ 64.395233][ T8448] team0: Port device team_slave_1 added [ 64.411417][ T8448] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 64.418659][ T8448] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 64.446689][ T8448] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 64.458603][ T8448] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 64.466058][ T8448] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 64.495470][ T8448] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 64.516804][ T8448] device hsr_slave_0 entered promiscuous mode [ 64.523691][ T8448] device hsr_slave_1 entered promiscuous mode [ 64.589402][ T8448] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 64.600608][ T8448] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 64.610123][ T8448] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 64.620003][ T8448] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 64.636747][ T8448] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.645243][ T8448] bridge0: port 2(bridge_slave_1) entered forwarding state [ 64.653173][ T8448] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.660528][ T8448] bridge0: port 1(bridge_slave_0) entered forwarding state [ 64.691755][ T8448] 8021q: adding VLAN 0 to HW filter on device bond0 [ 64.704067][ T8669] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 64.713577][ T8669] bridge0: port 1(bridge_slave_0) entered disabled state [ 64.722186][ T8669] bridge0: port 2(bridge_slave_1) entered disabled state [ 64.731581][ T8669] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 64.743749][ T8448] 8021q: adding VLAN 0 to HW filter on device team0 [ 64.754301][ T8670] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 64.763897][ T8670] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.771386][ T8670] bridge0: port 1(bridge_slave_0) entered forwarding state [ 64.782200][ T3337] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 64.792650][ T3337] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.800847][ T3337] bridge0: port 2(bridge_slave_1) entered forwarding state [ 64.820541][ T4853] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 64.829976][ T4853] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 64.839958][ T4853] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 64.849542][ T4853] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 64.862706][ T8448] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 64.875320][ T8448] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 64.884245][ T8672] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 64.902893][ T8448] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 64.911191][ T8672] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 64.920084][ T8672] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 64.937397][ T8670] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 64.954835][ T8672] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 64.965657][ T8672] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 64.974180][ T8672] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 64.984999][ T8448] device veth0_vlan entered promiscuous mode [ 64.996449][ T8448] device veth1_vlan entered promiscuous mode [ 65.015018][ T8670] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 65.024197][ T8670] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 65.032967][ T8670] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 65.043586][ T8448] device veth0_macvtap entered promiscuous mode [ 65.052911][ T8448] device veth1_macvtap entered promiscuous mode [ 65.067469][ T8448] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 65.076291][ T8670] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 65.087363][ T8670] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 65.098179][ T8448] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 65.106590][ T8669] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 65.118098][ T8448] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.129954][ T8448] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.139340][ T8448] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.148534][ T8448] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.205209][ T8] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.213814][ T8] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.230549][ T234] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.237776][ T8670] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 65.247569][ T234] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.256218][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 2021/07/07 08:51:48 building call list... [ 65.602829][ T28] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 executing program [ 67.140099][ T8445] BUG: sleeping function called from invalid context at mm/page_alloc.c:5178 [ 67.149407][ T8445] in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 8445, name: syz-fuzzer [ 67.158685][ T8445] INFO: lockdep is turned off. [ 67.163698][ T8445] irq event stamp: 0 [ 67.167652][ T8445] hardirqs last enabled at (0): [<0000000000000000>] 0x0 [ 67.174851][ T8445] hardirqs last disabled at (0): [] copy_process+0x1dcd/0x74d0 [ 67.184837][ T8445] softirqs last enabled at (0): [] copy_process+0x1e0e/0x74d0 [ 67.194117][ T8445] softirqs last disabled at (0): [<0000000000000000>] 0x0 [ 67.201647][ T8445] CPU: 1 PID: 8445 Comm: syz-fuzzer Tainted: G W 5.13.0-next-20210707-syzkaller #0 [ 67.212762][ T8445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 67.223794][ T8445] Call Trace: [ 67.227223][ T8445] dump_stack_lvl+0xcd/0x134 [ 67.231905][ T8445] ___might_sleep.cold+0x1f1/0x237 [ 67.237096][ T8445] prepare_alloc_pages+0x3da/0x580 [ 67.242204][ T8445] ? __x64_sys_openat+0x13f/0x1f0 [ 67.247393][ T8445] __alloc_pages+0x12f/0x500 [ 67.251971][ T8445] ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0 [ 67.258814][ T8445] ? __unwind_start+0x51b/0x800 [ 67.263863][ T8445] ? __kernel_text_address+0x9/0x30 [ 67.269157][ T8445] alloc_pages+0x18c/0x2a0 [ 67.274407][ T8445] stack_depot_save+0x39d/0x4e0 [ 67.281425][ T8445] save_stack+0x15e/0x1e0 [ 67.286111][ T8445] ? register_early_stack+0xb0/0xb0 [ 67.291933][ T8445] ? lock_release+0x720/0x720 [ 67.296902][ T8445] ? __alloc_pages_bulk+0x8b9/0x1870 [ 67.302286][ T8445] ? __vmalloc_node_range+0x39d/0x960 [ 67.307653][ T8445] ? vzalloc+0x67/0x80 [ 67.311888][ T8445] ? n_tty_open+0x16/0x170 [ 67.316495][ T8445] ? tty_ldisc_open+0x9b/0x110 [ 67.321253][ T8445] ? tty_ldisc_setup+0x90/0x100 [ 67.326182][ T8445] ? tty_init_dev.part.0+0x1f4/0x610 [ 67.331818][ T8445] ? tty_init_dev+0x5b/0x80 [ 67.336328][ T8445] ? ptmx_open+0x112/0x360 [ 67.341610][ T8445] ? chrdev_open+0x266/0x770 [ 67.346375][ T8445] ? do_dentry_open+0x4c8/0x11d0 [ 67.351386][ T8445] ? path_openat+0x1c23/0x27f0 [ 67.356326][ T8445] ? do_filp_open+0x1aa/0x400 [ 67.360986][ T8445] ? do_sys_openat2+0x16d/0x420 [ 67.366082][ T8445] ? __x64_sys_openat+0x13f/0x1f0 [ 67.371099][ T8445] ? do_syscall_64+0x35/0xb0 [ 67.376983][ T8445] __set_page_owner+0x50/0x290 [ 67.381885][ T8445] ? kasan_unpoison+0x3c/0x60 [ 67.386569][ T8445] ? post_alloc_hook+0x1c7/0x230 [ 67.391900][ T8445] __alloc_pages_bulk+0x8b9/0x1870 [ 67.397112][ T8445] ? __alloc_pages+0x500/0x500 [ 67.402124][ T8445] ? rwlock_bug.part.0+0x90/0x90 [ 67.407136][ T8445] ? trace_kmalloc_node+0x32/0x100 [ 67.412494][ T8445] ? rcu_read_lock_sched_held+0xd/0x70 [ 67.418404][ T8445] ? trace_kmalloc_node+0x32/0x100 [ 67.424424][ T8445] __vmalloc_node_range+0x39d/0x960 [ 67.429960][ T8445] ? vfree_atomic+0xe0/0xe0 [ 67.434917][ T8445] ? down_write_killable_nested+0x180/0x180 [ 67.440978][ T8445] ? downgrade_write+0x3a0/0x3a0 [ 67.446192][ T8445] ? n_tty_open+0x16/0x170 [ 67.450817][ T8445] vzalloc+0x67/0x80 [ 67.455091][ T8445] ? n_tty_open+0x16/0x170 [ 67.459980][ T8445] n_tty_open+0x16/0x170 [ 67.464227][ T8445] ? n_tty_set_termios+0x1010/0x1010 [ 67.469605][ T8445] tty_ldisc_open+0x9b/0x110 [ 67.475208][ T8445] tty_ldisc_setup+0x90/0x100 [ 67.480353][ T8445] tty_init_dev.part.0+0x1f4/0x610 [ 67.485684][ T8445] ? pty_unix98_compat_ioctl+0x50/0x50 [ 67.491133][ T8445] tty_init_dev+0x5b/0x80 [ 67.495681][ T8445] ptmx_open+0x112/0x360 [ 67.500090][ T8445] ? pty_unix98_compat_ioctl+0x50/0x50 [ 67.505636][ T8445] chrdev_open+0x266/0x770 [ 67.510189][ T8445] ? cdev_device_add+0x210/0x210 [ 67.515486][ T8445] ? security_file_open+0x205/0x4f0 [ 67.521995][ T8445] do_dentry_open+0x4c8/0x11d0 [ 67.526783][ T8445] ? cdev_device_add+0x210/0x210 [ 67.531991][ T8445] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 67.538460][ T8445] ? may_open+0x1f6/0x420 [ 67.543509][ T8445] path_openat+0x1c23/0x27f0 [ 67.548464][ T8445] ? arch_stack_walk+0x50/0xe0 [ 67.553455][ T8445] ? path_lookupat+0x860/0x860 [ 67.558605][ T8445] ? stack_trace_save+0x8c/0xc0 [ 67.563456][ T8445] do_filp_open+0x1aa/0x400 [ 67.567950][ T8445] ? may_open_dev+0xf0/0xf0 [ 67.572978][ T8445] ? rwlock_bug.part.0+0x90/0x90 [ 67.578968][ T8445] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 67.586167][ T8445] ? _find_next_bit+0x1e3/0x260 [ 67.591422][ T8445] ? _raw_spin_unlock+0x24/0x40 [ 67.596372][ T8445] ? alloc_fd+0x2f0/0x670 [ 67.600879][ T8445] do_sys_openat2+0x16d/0x420 [ 67.605816][ T8445] ? clone_private_mount+0x140/0x140 [ 67.611533][ T8445] ? security_file_free+0xa4/0xd0 [ 67.616557][ T8445] ? build_open_flags+0x6f0/0x6f0 [ 67.621658][ T8445] ? lock_acquire+0x442/0x510 [ 67.626487][ T8445] ? lock_release+0x522/0x720 [ 67.631429][ T8445] ? __context_tracking_exit+0xb8/0xe0 [ 67.637064][ T8445] ? lock_downgrade+0x6e0/0x6e0 [ 67.642606][ T8445] __x64_sys_openat+0x13f/0x1f0 [ 67.647461][ T8445] ? __ia32_sys_open+0x1c0/0x1c0 [ 67.652858][ T8445] ? syscall_enter_from_user_mode+0x21/0x70 [ 67.659116][ T8445] do_syscall_64+0x35/0xb0 [ 67.664064][ T8445] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 67.670034][ T8445] RIP: 0033:0x4af20a [ 67.674567][ T8445] Code: e8 3b 82 fb ff 48 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 4c 8b 54 24 28 4c 8b 44 24 30 4c 8b 4c 24 38 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 40 ff ff ff ff 48 c7 44 24 48 [ 67.696553][ T8445] RSP: 002b:000000c0002193f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000101 [ 67.705139][ T8445] RAX: ffffffffffffffda RBX: 000000c00001c000 RCX: 00000000004af20a [ 67.714660][ T8445] RDX: 0000000000000000 RSI: 000000c0000f78b0 RDI: ffffffffffffff9c [ 67.723621][ T8445] RBP: 000000c000219470 R08: 0000000000000000 R09: 0000000000000000 [ 67.731867][ T8445] R10: 0000000000000000 R11: 0000000000000216 R12: 000000000000018c [ 67.739909][ T8445] R13: 000000000000018b R14: 0000000000000200 R15: 000000c00019c000 [ 67.852858][ T8445] can: request_module (can-proto-0) failed. [ 67.863620][ T8445] can: request_module (can-proto-0) failed. [ 67.875478][ T8445] can: request_module (can-proto-0) failed.