[ OK ] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch. [ OK ] Started Getty on tty6. [ OK ] Started Getty on tty5. [ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. [ OK ] Started Serial Getty on ttyS0. [ OK ] Started Getty on tty1. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Warning: Permanently added '10.128.0.113' (ECDSA) to the list of known hosts. Debian GNU/Linux 9 syzkaller ttyS0 2021/04/11 19:48:43 parsed 1 programs 2021/04/11 19:48:43 executed programs: 0 syzkaller login: [ 75.795911][ T38] audit: type=1400 audit(1618170523.860:8): avc: denied { execmem } for pid=8410 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 76.911831][ T8411] IPVS: ftp: loaded support on port[0] = 21 [ 77.067648][ T8411] chnl_net:caif_netlink_parms(): no params data found [ 77.118779][ T8411] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.126197][ T8411] bridge0: port 1(bridge_slave_0) entered disabled state [ 77.134526][ T8411] device bridge_slave_0 entered promiscuous mode [ 77.145207][ T8411] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.152400][ T8411] bridge0: port 2(bridge_slave_1) entered disabled state [ 77.160429][ T8411] device bridge_slave_1 entered promiscuous mode [ 77.180714][ T8411] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 77.191537][ T8411] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 77.214671][ T8411] team0: Port device team_slave_0 added [ 77.221824][ T8411] team0: Port device team_slave_1 added [ 77.239260][ T8411] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 77.246462][ T8411] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 77.272912][ T8411] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 77.285480][ T8411] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 77.292414][ T8411] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 77.319471][ T8411] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 77.346552][ T8411] device hsr_slave_0 entered promiscuous mode [ 77.353811][ T8411] device hsr_slave_1 entered promiscuous mode [ 77.457121][ T8411] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 77.467192][ T8411] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 77.476979][ T8411] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 77.487329][ T8411] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 77.512793][ T8411] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.519966][ T8411] bridge0: port 2(bridge_slave_1) entered forwarding state [ 77.527785][ T8411] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.534978][ T8411] bridge0: port 1(bridge_slave_0) entered forwarding state [ 77.578548][ T8411] 8021q: adding VLAN 0 to HW filter on device bond0 [ 77.595034][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 77.608023][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 77.616538][ T8] bridge0: port 2(bridge_slave_1) entered disabled state [ 77.625103][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 77.638635][ T8411] 8021q: adding VLAN 0 to HW filter on device team0 [ 77.649528][ T8631] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 77.658874][ T8631] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.665991][ T8631] bridge0: port 1(bridge_slave_0) entered forwarding state [ 77.685358][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 77.693800][ T20] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.700823][ T20] bridge0: port 2(bridge_slave_1) entered forwarding state [ 77.715934][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 77.733057][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 77.740857][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 77.750542][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 77.759331][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 77.772588][ T8411] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 77.791179][ T8632] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 77.798969][ T8632] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 77.813303][ T8411] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 77.833001][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 77.853060][ T8632] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 77.861179][ T8632] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 77.870218][ T8632] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 77.880770][ T8411] device veth0_vlan entered promiscuous mode [ 77.894820][ T8411] device veth1_vlan entered promiscuous mode [ 77.917347][ T8632] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 77.926257][ T8632] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 77.935121][ T8632] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 77.946710][ T8411] device veth0_macvtap entered promiscuous mode [ 77.957045][ T8411] device veth1_macvtap entered promiscuous mode [ 77.975567][ T8411] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 77.983944][ T8632] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 77.994034][ T8632] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 78.007896][ T8411] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 78.015571][ T8632] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 78.027580][ T8411] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.037584][ T8411] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.046672][ T8411] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.056034][ T8411] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.154381][ T25] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 78.162401][ T25] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 78.177496][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 78.218686][ T28] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 78.230299][ T28] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 78.241988][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 78.765424][ T8694] INFO: trying to register non-static key. [ 78.771245][ T8694] the code is fine but needs lockdep annotation. [ 78.777544][ T8694] turning off the locking correctness validator. [ 78.783966][ T8694] CPU: 0 PID: 8694 Comm: syz-executor.0 Not tainted 5.12.0-rc6-syzkaller #0 [ 78.792794][ T8694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 78.802850][ T8694] Call Trace: [ 78.806112][ T8694] dump_stack+0x141/0x1d7 [ 78.810492][ T8694] register_lock_class+0x106b/0x1170 [ 78.815761][ T8694] ? is_dynamic_key+0x1a0/0x1a0 [ 78.820597][ T8694] ? try_to_wake_up+0x62d/0x14a0 [ 78.825537][ T8694] __lock_acquire+0x106/0x54c0 [ 78.830281][ T8694] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 78.836280][ T8694] lock_acquire+0x1ab/0x740 [ 78.840764][ T8694] ? skb_dequeue+0x1c/0x180 [ 78.845251][ T8694] ? lock_release+0x720/0x720 [ 78.849908][ T8694] ? __queue_work+0x63c/0xf00 [ 78.854562][ T8694] ? _raw_spin_lock_irqsave+0x4e/0x50 [ 78.859923][ T8694] _raw_spin_lock_irqsave+0x39/0x50 [ 78.865189][ T8694] ? skb_dequeue+0x1c/0x180 [ 78.869675][ T8694] skb_dequeue+0x1c/0x180 [ 78.873985][ T8694] skb_queue_purge+0x21/0x30 [ 78.878557][ T8694] l2cap_chan_del+0x5f3/0xa80 [ 78.883217][ T8694] l2cap_chan_close+0x1bc/0xaf0 [ 78.888046][ T8694] ? l2cap_rx+0x1fb0/0x1fb0 [ 78.892529][ T8694] ? __mutex_unlock_slowpath+0xe2/0x610 [ 78.898054][ T8694] ? wait_for_completion_io+0x270/0x270 [ 78.903594][ T8694] ? __local_bh_enable_ip+0xa0/0x120 [ 78.908862][ T8694] l2cap_sock_shutdown+0x3e7/0x1100 [ 78.914050][ T8694] ? l2cap_sock_suspend_cb+0x80/0x80 [ 78.919332][ T8694] ? find_held_lock+0x2d/0x110 [ 78.924076][ T8694] ? l2cap_sock_release+0x65/0x200 [ 78.929274][ T8694] ? lock_downgrade+0x6e0/0x6e0 [ 78.934149][ T8694] ? do_raw_read_unlock+0x70/0x70 [ 78.939170][ T8694] l2cap_sock_release+0x72/0x200 [ 78.944092][ T8694] __sock_release+0xcd/0x280 [ 78.948678][ T8694] sock_close+0x18/0x20 [ 78.952816][ T8694] __fput+0x288/0x920 [ 78.956777][ T8694] ? __sock_release+0x280/0x280 [ 78.961609][ T8694] task_work_run+0xdd/0x1a0 [ 78.966096][ T8694] get_signal+0x1ba2/0x2150 [ 78.970580][ T8694] ? l2cap_sock_connect+0x356/0x6c0 [ 78.975760][ T8694] ? __local_bh_enable_ip+0xa0/0x120 [ 78.981028][ T8694] ? l2cap_sock_recv_cb+0x1e0/0x1e0 [ 78.986213][ T8694] ? selinux_netlbl_socket_connect+0x2e/0x40 [ 78.992176][ T8694] ? kick_process+0xe0/0x180 [ 78.996744][ T8694] arch_do_signal_or_restart+0x2a8/0x1eb0 [ 79.002449][ T8694] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 79.008679][ T8694] ? fput_many.part.0+0xc6/0x170 [ 79.013604][ T8694] ? fput+0x3b/0x50 [ 79.017395][ T8694] ? copy_siginfo_to_user32+0xa0/0xa0 [ 79.022751][ T8694] ? __sys_connect_file+0x1a0/0x1a0 [ 79.027938][ T8694] exit_to_user_mode_prepare+0x148/0x250 [ 79.033557][ T8694] syscall_exit_to_user_mode+0x19/0x60 [ 79.039003][ T8694] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 79.044890][ T8694] RIP: 0033:0x466459 [ 79.048762][ T8694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 79.068451][ T8694] RSP: 002b:00007fae60a90188 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 79.076849][ T8694] RAX: fffffffffffffffc RBX: 000000000056c008 RCX: 0000000000466459 [ 79.084806][ T8694] RDX: 000000000000000e RSI: 0000000020000040 RDI: 0000000000000006 [ 79.092756][ T8694] RBP: 00000000004bf9fb R08: 0000000000000000 R09: 0000000000000000 [ 79.100753][ T8694] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000056c008 [ 79.108815][ T8694] R13: 00007ffdacb1ce7f R14: 00007fae60a90300 R15: 0000000000022000 [ 79.123068][ T4807] Bluetooth: hci0: command 0x0409 tx timeout 2021/04/11 19:48:48 executed programs: 61 [ 81.162874][ T4807] Bluetooth: hci0: command 0x041b tx timeout [ 83.242365][ T3130] Bluetooth: hci0: command 0x040f tx timeout [ 85.322158][ T3130] Bluetooth: hci0: command 0x0419 tx timeout 2021/04/11 19:48:53 executed programs: 200 [ 87.402092][ T4807] Bluetooth: hci0: command 0x0405 tx timeout