[ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.61' (ECDSA) to the list of known hosts. syzkaller login: [ 43.640940][ T6989] IPVS: ftp: loaded support on port[0] = 21 [ 43.721322][ T6989] chnl_net:caif_netlink_parms(): no params data found [ 43.763680][ T6989] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.772217][ T6989] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.781216][ T6989] device bridge_slave_0 entered promiscuous mode [ 43.789662][ T6989] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.797369][ T6989] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.804913][ T6989] device bridge_slave_1 entered promiscuous mode [ 43.823393][ T6989] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 43.833903][ T6989] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 43.854410][ T6989] team0: Port device team_slave_0 added [ 43.861859][ T6989] team0: Port device team_slave_1 added [ 43.877895][ T6989] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 43.884850][ T6989] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 43.911494][ T6989] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 43.923803][ T6989] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 43.931346][ T6989] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 43.957820][ T6989] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 44.018884][ T6989] device hsr_slave_0 entered promiscuous mode [ 44.057041][ T6989] device hsr_slave_1 entered promiscuous mode [ 44.186275][ T6989] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 44.228089][ T6989] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 44.298183][ T6989] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 44.337771][ T6989] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 44.389307][ T6989] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.396530][ T6989] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.404066][ T6989] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.411184][ T6989] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.448659][ T6989] 8021q: adding VLAN 0 to HW filter on device bond0 [ 44.463856][ T2988] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 44.474019][ T2988] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.482082][ T2988] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.490161][ T2988] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 44.503544][ T6989] 8021q: adding VLAN 0 to HW filter on device team0 [ 44.513624][ T2494] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 44.523009][ T2494] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.530114][ T2494] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.546234][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 44.554565][ T17] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.561688][ T17] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.580332][ T6989] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 44.591572][ T6989] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 44.604056][ T2494] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 44.612893][ T2494] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 44.621540][ T2494] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 44.630517][ T2494] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 44.639133][ T2494] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 44.647779][ T2494] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 44.666142][ T2494] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 44.673525][ T2494] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 44.683535][ T6989] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 44.700194][ T2988] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 44.717756][ T2494] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 44.727238][ T2494] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 44.738545][ T6989] device veth0_vlan entered promiscuous mode [ 44.746739][ T4035] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 44.754444][ T4035] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 44.767297][ T6989] device veth1_vlan entered promiscuous mode [ 44.784698][ T2988] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 44.793145][ T2988] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 44.801694][ T2988] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 44.810593][ T2988] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 44.822416][ T6989] device veth0_macvtap entered promiscuous mode [ 44.835822][ T6989] device veth1_macvtap entered promiscuous mode [ 44.851191][ T6989] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 44.859200][ T2988] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 44.867599][ T2988] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 44.875495][ T2988] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 44.883842][ T2988] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 44.895812][ T6989] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 44.903246][ T4035] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 44.913186][ T4035] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready executing program [ 46.130163][ T7201] general protection fault, probably for non-canonical address 0xdffffc0000000002: 0000 [#1] PREEMPT SMP KASAN [ 46.141888][ T7201] KASAN: null-ptr-deref in range [0x0000000000000010-0x0000000000000017] [ 46.150285][ T7201] CPU: 1 PID: 7201 Comm: kworker/u5:1 Not tainted 5.8.0-syzkaller #0 [ 46.158329][ T7201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 46.168380][ T7201] Workqueue: hci0 hci_rx_work [ 46.173052][ T7201] RIP: 0010:hci_event_packet+0x8386/0x18260 [ 46.178934][ T7201] Code: c1 e8 03 49 be 00 00 00 00 00 fc ff df 42 80 3c 30 00 74 08 48 89 df e8 58 9a 5e fa 48 8b 1b 48 83 c3 10 48 89 d8 48 c1 e8 03 <42> 80 3c 30 00 74 08 48 89 df e8 3b 9a 5e fa 48 8b 1b 48 89 d8 48 [ 46.198534][ T7201] RSP: 0018:ffffc900018d7ac8 EFLAGS: 00010202 [ 46.204585][ T7201] RAX: 0000000000000002 RBX: 0000000000000010 RCX: dffffc0000000000 [ 46.212608][ T7201] RDX: ffff88809294e100 RSI: 0000000000000000 RDI: 0000000000000000 [ 46.220588][ T7201] RBP: ffff8880a7508000 R08: ffffffff875506b4 R09: fffffbfff131a9a6 [ 46.228530][ T7201] R10: fffffbfff131a9a6 R11: 0000000000000000 R12: ffff8880910f8010 [ 46.236474][ T7201] R13: ffff8880910f9110 R14: dffffc0000000000 R15: ffff8880910f8000 [ 46.244419][ T7201] FS: 0000000000000000(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 [ 46.253341][ T7201] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 46.259894][ T7201] CR2: 00007f143cb896c0 CR3: 000000009bd78000 CR4: 00000000001406e0 [ 46.267876][ T7201] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 46.275819][ T7201] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 46.283756][ T7201] Call Trace: [ 46.287018][ T7201] ? trace_lock_release+0x137/0x1a0 [ 46.292207][ T7201] ? _raw_spin_unlock_irqrestore+0x6f/0xd0 [ 46.297980][ T7201] ? lockdep_hardirqs_on+0x38/0xe0 [ 46.303103][ T7201] hci_rx_work+0x236/0x9c0 [ 46.307502][ T7201] process_one_work+0x789/0xfc0 [ 46.312361][ T7201] worker_thread+0xaa4/0x1460 [ 46.317011][ T7201] kthread+0x37e/0x3a0 [ 46.321070][ T7201] ? rcu_lock_release+0x20/0x20 [ 46.325911][ T7201] ? kthread_blkcg+0xd0/0xd0 [ 46.330495][ T7201] ret_from_fork+0x1f/0x30 [ 46.334880][ T7201] Modules linked in: [ 46.341527][ T7201] ---[ end trace 851c37537b6b0f6d ]--- [ 46.347856][ T7201] RIP: 0010:hci_event_packet+0x8386/0x18260 [ 46.353746][ T7201] Code: c1 e8 03 49 be 00 00 00 00 00 fc ff df 42 80 3c 30 00 74 08 48 89 df e8 58 9a 5e fa 48 8b 1b 48 83 c3 10 48 89 d8 48 c1 e8 03 <42> 80 3c 30 00 74 08 48 89 df e8 3b 9a 5e fa 48 8b 1b 48 89 d8 48 [ 46.373447][ T7201] RSP: 0018:ffffc900018d7ac8 EFLAGS: 00010202 [ 46.379752][ T7201] RAX: 0000000000000002 RBX: 0000000000000010 RCX: dffffc0000000000 [ 46.387773][ T7201] RDX: ffff88809294e100 RSI: 0000000000000000 RDI: 0000000000000000 [ 46.395921][ T7201] RBP: ffff8880a7508000 R08: ffffffff875506b4 R09: fffffbfff131a9a6 [ 46.403884][ T7201] R10: fffffbfff131a9a6 R11: 0000000000000000 R12: ffff8880910f8010 [ 46.411872][ T7201] R13: ffff8880910f9110 R14: dffffc0000000000 R15: ffff8880910f8000 [ 46.419875][ T7201] FS: 0000000000000000(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 [ 46.430665][ T7201] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 46.437307][ T7201] CR2: 00007f143cb896c0 CR3: 000000009bd78000 CR4: 00000000001406e0 [ 46.445922][ T7201] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 46.453880][ T7201] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 46.461899][ T7201] Kernel panic - not syncing: Fatal exception [ 46.468993][ T7201] Kernel Offset: disabled [ 46.473302][ T7201] Rebooting in 86400 seconds..