[ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.1.127' (ECDSA) to the list of known hosts. 2022/05/03 08:41:13 parsed 1 programs 2022/05/03 08:41:13 executed programs: 0 syzkaller login: [ 33.913940] IPVS: ftp: loaded support on port[0] = 21 [ 34.012044] chnl_net:caif_netlink_parms(): no params data found [ 34.103687] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.110698] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.117843] device bridge_slave_0 entered promiscuous mode [ 34.124823] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.131427] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.138924] device bridge_slave_1 entered promiscuous mode [ 34.155216] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 34.163927] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 34.182142] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 34.189533] team0: Port device team_slave_0 added [ 34.194863] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 34.202476] team0: Port device team_slave_1 added [ 34.216794] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 34.223111] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 34.248327] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 34.259739] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 34.271248] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 34.296497] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 34.307262] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 34.314843] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 34.333479] device hsr_slave_0 entered promiscuous mode [ 34.339194] device hsr_slave_1 entered promiscuous mode [ 34.345060] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 34.352276] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 34.414585] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.421007] bridge0: port 2(bridge_slave_1) entered forwarding state [ 34.427851] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.434194] bridge0: port 1(bridge_slave_0) entered forwarding state [ 34.463615] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 34.470745] 8021q: adding VLAN 0 to HW filter on device bond0 [ 34.479253] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 34.487242] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 34.496236] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.503625] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.510907] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 34.522126] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 34.528694] 8021q: adding VLAN 0 to HW filter on device team0 [ 34.537119] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 34.544799] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.551193] bridge0: port 1(bridge_slave_0) entered forwarding state [ 34.560916] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 34.569147] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.575465] bridge0: port 2(bridge_slave_1) entered forwarding state [ 34.590106] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 34.598690] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 34.608233] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 34.621341] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 34.631286] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 34.642315] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 34.649247] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 34.656913] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 34.664552] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 34.676387] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready [ 34.684218] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 34.690958] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 34.701730] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 34.714067] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready [ 34.723989] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 34.754947] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready [ 34.762704] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready [ 34.769714] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready [ 34.779774] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 34.787229] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 34.794825] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 34.803535] device veth0_vlan entered promiscuous mode [ 34.812062] device veth1_vlan entered promiscuous mode [ 34.818667] IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready [ 34.826745] IPv6: ADDRCONF(NETDEV_UP): macvlan1: link is not ready [ 34.839374] IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready [ 34.848407] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 34.855587] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 34.863258] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 34.872603] device veth0_macvtap entered promiscuous mode [ 34.879194] IPv6: ADDRCONF(NETDEV_UP): macvtap0: link is not ready [ 34.886786] device veth1_macvtap entered promiscuous mode [ 34.895442] IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready [ 34.904746] IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready [ 34.914580] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 34.921804] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 34.930022] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 34.940438] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 34.947109] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 35.053056] IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready [ 35.059749] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 35.066881] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 35.075396] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 35.096937] IPv6: ADDRCONF(NETDEV_UP): wlan1: link is not ready [ 35.103809] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 35.112253] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 35.120725] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 35.947810] Bluetooth: hci0: command 0x0409 tx timeout 2022/05/03 08:41:18 executed programs: 169 [ 38.036918] Bluetooth: hci0: command 0x041b tx timeout [ 40.116171] Bluetooth: hci0: command 0x040f tx timeout [ 42.195541] Bluetooth: hci0: command 0x0419 tx timeout 2022/05/03 08:41:23 executed programs: 732 2022/05/03 08:41:28 executed programs: 1374 2022/05/03 08:41:33 executed programs: 2004 [ 53.365263] ------------[ cut here ]------------ [ 53.370052] DEBUG_LOCKS_WARN_ON(mutex_is_locked(lock)) [ 53.370109] WARNING: CPU: 1 PID: 15102 at kernel/locking/mutex-debug.c:103 mutex_destroy+0xec/0x130 [ 53.384527] Kernel panic - not syncing: panic_on_warn set ... [ 53.384527] [ 53.391871] CPU: 1 PID: 15102 Comm: syz-executor.0 Not tainted 4.19.211-syzkaller #0 [ 53.399731] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 53.409063] Call Trace: [ 53.411633] dump_stack+0x1fc/0x2ef [ 53.415240] panic+0x26a/0x50e [ 53.418414] ? __warn_printk+0xf3/0xf3 [ 53.422283] ? mutex_destroy+0xec/0x130 [ 53.426237] ? __probe_kernel_read+0x130/0x1b0 [ 53.430796] ? __warn.cold+0x5/0x5a [ 53.434400] ? __warn+0xe4/0x200 [ 53.437746] ? mutex_destroy+0xec/0x130 [ 53.441699] __warn.cold+0x20/0x5a [ 53.445216] ? kvm_sched_clock_read+0x14/0x40 [ 53.449689] ? mutex_destroy+0xec/0x130 [ 53.453640] report_bug+0x262/0x2b0 [ 53.457246] do_error_trap+0x1d7/0x310 [ 53.461113] ? math_error+0x310/0x310 [ 53.464902] ? vprintk_store+0x1f0/0x410 [ 53.468945] ? trace_hardirqs_on+0x55/0x210 [ 53.473249] ? error_entry+0x72/0xd0 [ 53.476943] ? trace_hardirqs_off_caller+0x6e/0x210 [ 53.481939] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 53.486762] invalid_op+0x14/0x20 [ 53.490205] RIP: 0010:mutex_destroy+0xec/0x130 [ 53.494766] Code: 11 38 d0 7c 04 84 d2 75 50 8b 05 6f 93 ec 0b 85 c0 0f 85 63 ff ff ff 48 c7 c6 c0 0f 6a 88 48 c7 c7 00 10 6a 88 e8 69 59 a8 06 <0f> 0b e9 49 ff ff ff 48 c7 c7 60 37 24 8d e8 d1 fd 4d 00 e9 2e ff [ 53.513646] RSP: 0018:ffff8880b449fde0 EFLAGS: 00010286 [ 53.518986] RAX: 0000000000000000 RBX: ffff88809c077c80 RCX: 0000000000000000 [ 53.526241] RDX: 0000000000000000 RSI: ffffffff814dff01 RDI: ffffed1016893fae [ 53.533488] RBP: ffff88809c077b00 R08: 0000000000000000 R09: 000000000000073d [ 53.540736] R10: 0000000000000006 R11: ffffffff8c66505b R12: 0000000000000000 [ 53.547984] R13: ffff88809c077c80 R14: ffff88809f439c08 R15: ffff88823b297820 [ 53.555244] ? vprintk_func+0x81/0x180 [ 53.559113] dma_buf_release+0x531/0x630 [ 53.563155] ? ima_file_free+0xb6/0x460 [ 53.567108] ? dma_buf_detach+0x240/0x240 [ 53.571237] __fput+0x2ce/0x890 [ 53.574513] task_work_run+0x148/0x1c0 [ 53.578387] exit_to_usermode_loop+0x251/0x2a0 [ 53.582948] do_syscall_64+0x538/0x620 [ 53.586833] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 53.592011] RIP: 0033:0x7f175123d0e9 [ 53.595706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 53.614589] RSP: 002b:00007f1750991168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 53.622282] RAX: 0000000000000000 RBX: 00007f1751350030 RCX: 00007f175123d0e9 [ 53.629531] RDX: 0000000020000140 RSI: 00000000c00464b4 RDI: 0000000000000003 [ 53.636777] RBP: 00007f175129708d R08: 0000000000000000 R09: 0000000000000000 [ 53.644023] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 53.651269] R13: 00007ffdb898784f R14: 00007f1750991300 R15: 0000000000022000 [ 53.658707] Kernel Offset: disabled [ 53.662317] Rebooting in 86400 seconds..