[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.108' (ECDSA) to the list of known hosts. 2021/02/17 06:35:31 parsed 1 programs 2021/02/17 06:35:32 executed programs: 0 syzkaller login: [ 37.069446] IPVS: ftp: loaded support on port[0] = 21 [ 37.193903] chnl_net:caif_netlink_parms(): no params data found [ 37.330730] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.337409] bridge0: port 1(bridge_slave_0) entered disabled state [ 37.345490] device bridge_slave_0 entered promiscuous mode [ 37.353835] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.360239] bridge0: port 2(bridge_slave_1) entered disabled state [ 37.368065] device bridge_slave_1 entered promiscuous mode [ 37.386890] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 37.396028] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 37.415925] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 37.423505] team0: Port device team_slave_0 added [ 37.429060] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 37.437441] team0: Port device team_slave_1 added [ 37.453792] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 37.460052] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 37.486309] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 37.498348] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 37.505198] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 37.531309] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 37.543077] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 37.550620] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 37.571444] device hsr_slave_0 entered promiscuous mode [ 37.577905] device hsr_slave_1 entered promiscuous mode [ 37.584767] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 37.591963] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 37.659454] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.666721] bridge0: port 2(bridge_slave_1) entered forwarding state [ 37.673776] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.680277] bridge0: port 1(bridge_slave_0) entered forwarding state [ 37.719745] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 37.726284] 8021q: adding VLAN 0 to HW filter on device bond0 [ 37.735547] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 37.747445] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 37.753993] 8021q: adding VLAN 0 to HW filter on device team0 [ 37.760134] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 37.769049] bridge0: port 1(bridge_slave_0) entered disabled state [ 37.776537] bridge0: port 2(bridge_slave_1) entered disabled state [ 37.784064] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 37.802936] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 37.810747] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.817204] bridge0: port 1(bridge_slave_0) entered forwarding state [ 37.824337] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 37.832182] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.838544] bridge0: port 2(bridge_slave_1) entered forwarding state [ 37.849580] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 37.858552] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 37.875420] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 37.885833] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 37.897086] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 37.904600] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 37.913132] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 37.920942] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 37.929709] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 37.943781] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready [ 37.951442] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 37.959084] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 37.969648] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 37.982797] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready [ 37.994501] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 38.030645] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready [ 38.038176] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready [ 38.046024] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready [ 38.055731] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 38.064125] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 38.071072] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 38.080146] device veth0_vlan entered promiscuous mode [ 38.090215] device veth1_vlan entered promiscuous mode [ 38.096382] IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready [ 38.106695] IPv6: ADDRCONF(NETDEV_UP): macvlan1: link is not ready [ 38.118274] IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready [ 38.128193] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 38.135914] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 38.143802] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 38.154230] device veth0_macvtap entered promiscuous mode [ 38.160536] IPv6: ADDRCONF(NETDEV_UP): macvtap0: link is not ready [ 38.169170] device veth1_macvtap entered promiscuous mode [ 38.179502] IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready [ 38.187830] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 38.197596] IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready [ 38.208354] IPv6: ADDRCONF(NETDEV_UP): batadv_slave_0: link is not ready [ 38.216175] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 38.223536] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 38.232424] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 38.244120] IPv6: ADDRCONF(NETDEV_UP): batadv_slave_1: link is not ready [ 38.251090] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 38.257919] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 38.265954] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 38.382301] IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready [ 38.389453] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 38.403733] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 38.411241] IPv6: ADDRCONF(NETDEV_UP): wlan1: link is not ready [ 38.420516] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 38.424114] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 38.435671] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 38.443610] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 39.111994] Bluetooth: hci0: command 0x0409 tx timeout [ 40.303624] WARNING: CPU: 0 PID: 8758 at kernel/events/core.c:1840 perf_group_attach+0x3df/0x4b0 [ 40.312777] Kernel panic - not syncing: panic_on_warn set ... [ 40.312777] [ 40.320254] CPU: 0 PID: 8758 Comm: systemd-udevd Not tainted 4.19.172-syzkaller #0 [ 40.328406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 40.341864] Call Trace: [ 40.344573] [ 40.346728] dump_stack+0x1fc/0x2ef [ 40.350363] panic+0x26a/0x50e [ 40.353574] ? __warn_printk+0xf3/0xf3 [ 40.357471] ? perf_group_attach+0x3df/0x4b0 [ 40.361907] ? __probe_kernel_read+0x130/0x1b0 [ 40.366493] ? __warn.cold+0x5/0x5a [ 40.370114] ? __warn+0xe4/0x200 [ 40.373502] ? perf_group_attach+0x3df/0x4b0 [ 40.377913] __warn.cold+0x20/0x5a [ 40.381458] ? perf_group_attach+0x3df/0x4b0 [ 40.385871] report_bug+0x262/0x2b0 [ 40.389515] do_error_trap+0x1d7/0x310 [ 40.393547] ? math_error+0x310/0x310 [ 40.397357] ? lock_downgrade+0x720/0x720 [ 40.401517] ? mark_held_locks+0xf0/0xf0 [ 40.405598] ? error_entry+0x72/0xd0 [ 40.409402] ? trace_hardirqs_off_caller+0x2c/0x210 [ 40.414427] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 40.419311] invalid_op+0x14/0x20 [ 40.422791] RIP: 0010:perf_group_attach+0x3df/0x4b0 [ 40.428720] Code: ff 48 8d 7b 10 48 89 f8 48 c1 e8 03 42 80 3c 20 00 75 57 48 8b 5b 10 48 83 eb 10 48 39 dd 75 d4 e9 2b ff ff ff e8 31 9d eb ff <0f> 0b e9 6e fd ff ff e8 15 54 21 00 e9 cd fc ff ff 48 c7 c7 a0 cc [ 40.447631] RSP: 0018:ffff8880ba007ed0 EFLAGS: 00010006 [ 40.452996] RAX: ffff88809eb9e040 RBX: ffff88809e8ad340 RCX: ffffffff8176b985 [ 40.460267] RDX: 0000000000010000 RSI: ffffffff8176bc8f RDI: ffff88809e8ad558 [ 40.467546] RBP: ffff88809f00b300 R08: 0000000000000001 R09: 0000000000000000 [ 40.474823] R10: 0000000000000005 R11: ffffffff8c65d01b R12: ffffe8ffffc114a0 [ 40.482095] R13: 0000000000000000 R14: ffff8880ba0301c8 R15: ffff88809e8ad820 [ 40.489479] ? perf_group_attach+0xd5/0x4b0 [ 40.494148] ? perf_group_attach+0x3df/0x4b0 [ 40.498661] __perf_install_in_context+0x491/0x900 [ 40.503600] ? __perf_event_enable+0x900/0x900 [ 40.508540] remote_function+0x11e/0x1a0 [ 40.512612] flush_smp_call_function_queue+0x144/0x4d0 [ 40.518066] ? perf_duration_warn+0x40/0x40 [ 40.523014] smp_call_function_single_interrupt+0x98/0x440 [ 40.528654] call_function_single_interrupt+0xf/0x20 [ 40.533847] [ 40.536176] RIP: 0010:kmem_cache_free+0x11c/0x260 [ 40.541159] Code: 11 48 63 75 74 48 89 df e8 11 e0 dd 01 e9 68 ff ff ff e8 b7 a5 cf ff 48 83 3d 87 aa 59 08 00 0f 84 f8 00 00 00 4c 89 e7 57 9d <0f> 1f 44 00 00 eb 86 65 8b 05 96 a9 69 7e 83 f8 07 0f 87 e7 00 00 [ 40.560195] RSP: 0018:ffff88809f847be0 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff04 [ 40.568972] RAX: 0000000000000007 RBX: ffff88809fa61da8 RCX: 0000000000000000 [ 40.576954] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000286 [ 40.584876] RBP: ffff88823b833ac0 R08: 0000000000400000 R09: 0000000000000000 [ 40.592325] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000286 [ 40.599608] R13: ffffffff818d6842 R14: 000000000000012f R15: ffff88809e525900 [ 40.607069] ? remove_vma+0x132/0x170 [ 40.610985] remove_vma+0x132/0x170 [ 40.614988] exit_mmap+0x359/0x530 [ 40.618539] ? __ia32_sys_remap_file_pages+0x150/0x150 [ 40.623817] ? exit_aio+0x296/0x360 [ 40.627451] ? reacquire_held_locks+0xb5/0x430 [ 40.632059] mmput+0x14e/0x4a0 [ 40.635274] do_exit+0xaec/0x2be0 [ 40.638781] ? __secure_computing+0x104/0x360 [ 40.643453] ? mm_update_next_owner+0x650/0x650 [ 40.648227] ? syscall_trace_enter+0x3b7/0xd60 [ 40.652843] ? syscall_slow_exit_work+0x630/0x630 [ 40.657966] do_group_exit+0x125/0x310 [ 40.661864] __x64_sys_exit_group+0x3a/0x50 [ 40.666213] do_syscall_64+0xf9/0x620 [ 40.670024] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 40.675221] RIP: 0033:0x7ffb27106618 [ 40.678950] Code: Bad RIP value. [ 40.682312] RSP: 002b:00007ffc56a7a7f8 EFLAGS: 00000206 ORIG_RAX: 00000000000000e7 [ 40.690121] RAX: ffffffffffffffda RBX: 00007ffc56a7a8c0 RCX: 00007ffb27106618 [ 40.697413] RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000 [ 40.704715] RBP: 00007ffc56a7a970 R08: 00000000000000e7 R09: fffffffffffffe50 [ 40.712078] R10: 00000000ffffffff R11: 0000000000000206 R12: 0000000000000000 [ 40.719434] R13: 0000000000000000 R14: 0000000000000003 R15: 000000000000000e [ 40.728104] Kernel Offset: disabled [ 40.731905] Rebooting in 86400 seconds..