[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.10.53' (ECDSA) to the list of known hosts. syzkaller login: [ 68.541495][ T7015] IPVS: ftp: loaded support on port[0] = 21 [ 68.628754][ T7015] chnl_net:caif_netlink_parms(): no params data found [ 68.682880][ T7015] bridge0: port 1(bridge_slave_0) entered blocking state [ 68.690781][ T7015] bridge0: port 1(bridge_slave_0) entered disabled state [ 68.699663][ T7015] device bridge_slave_0 entered promiscuous mode [ 68.708577][ T7015] bridge0: port 2(bridge_slave_1) entered blocking state [ 68.716241][ T7015] bridge0: port 2(bridge_slave_1) entered disabled state [ 68.725119][ T7015] device bridge_slave_1 entered promiscuous mode [ 68.747315][ T7015] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 68.758341][ T7015] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 68.782849][ T7015] team0: Port device team_slave_0 added [ 68.790322][ T7015] team0: Port device team_slave_1 added [ 68.808581][ T7015] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 68.815676][ T7015] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.842399][ T7015] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 68.855959][ T7015] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 68.862913][ T7015] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.890270][ T7015] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 68.967139][ T7015] device hsr_slave_0 entered promiscuous mode [ 69.003788][ T7015] device hsr_slave_1 entered promiscuous mode [ 69.155981][ T7015] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 69.206427][ T7015] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 69.276274][ T7015] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 69.316221][ T7015] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 69.369666][ T7015] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.376874][ T7015] bridge0: port 2(bridge_slave_1) entered forwarding state [ 69.384796][ T7015] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.391945][ T7015] bridge0: port 1(bridge_slave_0) entered forwarding state [ 69.438258][ T7015] 8021q: adding VLAN 0 to HW filter on device bond0 [ 69.450910][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 69.462636][ T5] bridge0: port 1(bridge_slave_0) entered disabled state [ 69.471091][ T5] bridge0: port 2(bridge_slave_1) entered disabled state [ 69.479462][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 69.493651][ T7015] 8021q: adding VLAN 0 to HW filter on device team0 [ 69.505480][ T2879] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 69.515185][ T2879] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.522235][ T2879] bridge0: port 1(bridge_slave_0) entered forwarding state [ 69.546791][ T2879] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 69.555959][ T2879] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.562997][ T2879] bridge0: port 2(bridge_slave_1) entered forwarding state [ 69.571595][ T2879] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 69.583157][ T2879] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 69.595398][ T2684] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 69.612257][ T7015] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 69.623898][ T7015] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 69.637739][ T2879] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 69.646958][ T2879] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 69.656187][ T2879] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 69.665041][ T2879] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 69.673486][ T2879] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 69.695126][ T2684] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 69.702579][ T2684] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 69.718098][ T7015] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 69.737172][ T2684] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 69.746785][ T2684] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 69.766949][ T2879] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 69.775726][ T2879] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 69.788224][ T7015] device veth0_vlan entered promiscuous mode [ 69.796254][ T34] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 69.805052][ T34] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 69.818752][ T7015] device veth1_vlan entered promiscuous mode [ 69.839808][ T2684] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 69.848315][ T2684] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 69.856587][ T2684] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 69.865917][ T2684] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 69.877076][ T7015] device veth0_macvtap entered promiscuous mode [ 69.888784][ T7015] device veth1_macvtap entered promiscuous mode [ 69.906665][ T7015] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 69.915134][ T2684] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 69.924549][ T2684] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 69.932731][ T2684] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 69.942788][ T2684] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 69.956473][ T7015] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 69.964470][ T2879] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 69.973003][ T2879] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready executing program [ 70.210900][ T7224] netlink: 17 bytes leftover after parsing attributes in process `syz-executor834'. [ 70.220631][ T7224] netlink: 32 bytes leftover after parsing attributes in process `syz-executor834'. [ 70.313781][ T2684] divide error: 0000 [#1] PREEMPT SMP KASAN [ 70.319743][ T2684] CPU: 0 PID: 2684 Comm: kworker/0:3 Not tainted 5.6.0-syzkaller #0 [ 70.327708][ T2684] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 70.337757][ T2684] Workqueue: ipv6_addrconf addrconf_dad_work [ 70.343725][ T2684] RIP: 0010:tabledist.part.0+0x134/0x160 [ 70.349364][ T2684] Code: 4c 89 e0 48 83 c4 08 5b 5d 41 5c 41 5d c3 e8 b3 a0 31 fb 48 81 eb 00 10 00 00 eb aa e8 a5 a0 31 fb 8d 4c 2d 00 44 89 e8 31 d2 f1 49 29 ec 49 01 d4 eb c7 48 89 df e8 8a 49 6f fb e9 13 ff ff [ 70.368990][ T2684] RSP: 0018:ffffc90007b0f458 EFLAGS: 00010246 [ 70.375042][ T2684] RAX: 00000000074ed9e1 RBX: 0000000000000000 RCX: 0000000000000000 [ 70.383035][ T2684] RDX: 0000000000000000 RSI: ffffffff864190eb RDI: 0000000000000005 [ 70.390985][ T2684] RBP: ffffffff80000000 R08: ffff8880a00ec280 R09: ffffed1014dcab46 [ 70.398940][ T2684] R10: ffff8880a6e55a2f R11: ffffed1014dcab45 R12: 0000003e42c00000 [ 70.406894][ T2684] R13: 00000000074ed9e1 R14: ffff888093cac330 R15: ffff888093cac000 [ 70.414845][ T2684] FS: 0000000000000000(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000 [ 70.423753][ T2684] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 70.430315][ T2684] CR2: 0000000020000140 CR3: 0000000093460000 CR4: 00000000001406f0 [ 70.438266][ T2684] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 70.446602][ T2684] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 70.454558][ T2684] Call Trace: [ 70.457874][ T2684] netem_enqueue+0x412/0x2da0 [ 70.462532][ T2684] ? rwlock_bug.part.0+0x90/0x90 [ 70.467451][ T2684] ? rcu_read_lock_bh_held+0x5a/0xb0 [ 70.472723][ T2684] __dev_queue_xmit+0x154a/0x30a0 [ 70.477735][ T2684] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 70.483350][ T2684] ? mark_lock+0x12b/0xf10 [ 70.487744][ T2684] ? ip6_finish_output2+0x1091/0x25b0 [ 70.493096][ T2684] ? print_usage_bug+0x240/0x240 [ 70.498024][ T2684] ? lock_release+0x800/0x800 [ 70.502719][ T2684] ? lock_downgrade+0x840/0x840 [ 70.507549][ T2684] ? memcpy+0x39/0x60 [ 70.511509][ T2684] ? neigh_resolve_output+0x566/0x930 [ 70.516859][ T2684] neigh_resolve_output+0x566/0x930 [ 70.522040][ T2684] ip6_finish_output2+0x1091/0x25b0 [ 70.527224][ T2684] ? find_held_lock+0x2d/0x110 [ 70.531968][ T2684] ? ip6_frag_next+0xb40/0xb40 [ 70.536710][ T2684] ? lock_downgrade+0x840/0x840 [ 70.541540][ T2684] ? __ip6_finish_output+0x442/0xab0 [ 70.546850][ T2684] __ip6_finish_output+0x442/0xab0 [ 70.551946][ T2684] ip6_finish_output+0x34/0x1f0 [ 70.556797][ T2684] ip6_output+0x239/0x810 [ 70.561104][ T2684] ? ip6_finish_output+0x1f0/0x1f0 [ 70.566194][ T2684] ? __ip6_finish_output+0xab0/0xab0 [ 70.571459][ T2684] ndisc_send_skb+0xf40/0x14b0 [ 70.576209][ T2684] ? nf_hook.constprop.0+0x520/0x520 [ 70.581474][ T2684] ? __alloc_skb+0x3a7/0x5a0 [ 70.586046][ T2684] ? detach_if_pending+0x530/0x530 [ 70.591140][ T2684] ? skb_set_owner_w+0x24e/0x400 [ 70.596067][ T2684] ndisc_send_ns+0x3b0/0x860 [ 70.600645][ T2684] ? ndisc_netdev_event+0x5f0/0x5f0 [ 70.605824][ T2684] ? mark_held_locks+0x9f/0xe0 [ 70.610568][ T2684] ? __local_bh_enable_ip+0x159/0x270 [ 70.615919][ T2684] ? lockdep_hardirqs_on+0x463/0x620 [ 70.621185][ T2684] addrconf_dad_work+0xc4a/0x1280 [ 70.626201][ T2684] ? addrconf_dad_completed+0xbb0/0xbb0 [ 70.631738][ T2684] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 70.637736][ T2684] ? _raw_spin_unlock_irq+0x1f/0x80 [ 70.642919][ T2684] process_one_work+0x965/0x16a0 [ 70.647843][ T2684] ? lock_release+0x800/0x800 [ 70.652504][ T2684] ? pwq_dec_nr_in_flight+0x310/0x310 [ 70.657859][ T2684] ? rwlock_bug.part.0+0x90/0x90 [ 70.662777][ T2684] worker_thread+0x96/0xe20 [ 70.667264][ T2684] ? process_one_work+0x16a0/0x16a0 [ 70.672473][ T2684] kthread+0x388/0x470 [ 70.676521][ T2684] ? kthread_mod_delayed_work+0x1a0/0x1a0 [ 70.682227][ T2684] ret_from_fork+0x24/0x30 [ 70.686652][ T2684] Modules linked in: [ 70.690604][ T2684] ---[ end trace 83ab90b9d8e39deb ]--- [ 70.696094][ T2684] RIP: 0010:tabledist.part.0+0x134/0x160 [ 70.701723][ T2684] Code: 4c 89 e0 48 83 c4 08 5b 5d 41 5c 41 5d c3 e8 b3 a0 31 fb 48 81 eb 00 10 00 00 eb aa e8 a5 a0 31 fb 8d 4c 2d 00 44 89 e8 31 d2 f1 49 29 ec 49 01 d4 eb c7 48 89 df e8 8a 49 6f fb e9 13 ff ff [ 70.721477][ T2684] RSP: 0018:ffffc90007b0f458 EFLAGS: 00010246 [ 70.727598][ T2684] RAX: 00000000074ed9e1 RBX: 0000000000000000 RCX: 0000000000000000 [ 70.735606][ T2684] RDX: 0000000000000000 RSI: ffffffff864190eb RDI: 0000000000000005 [ 70.743618][ T2684] RBP: ffffffff80000000 R08: ffff8880a00ec280 R09: ffffed1014dcab46 [ 70.751585][ T2684] R10: ffff8880a6e55a2f R11: ffffed1014dcab45 R12: 0000003e42c00000 executing program [ 70.759590][ T2684] R13: 00000000074ed9e1 R14: ffff888093cac330 R15: ffff888093cac000 [ 70.767606][ T2684] FS: 0000000000000000(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000 [ 70.776618][ T2684] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 70.783251][ T2684] CR2: 0000000020000140 CR3: 0000000093460000 CR4: 00000000001406f0 [ 70.791221][ T2684] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 70.799233][ T2684] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 70.807244][ T2684] Kernel panic - not syncing: Fatal exception in interrupt [ 70.815504][ T2684] Kernel Offset: disabled [ 70.819824][ T2684] Rebooting in 86400 seconds..