DUID 00:04:ab:86:5b:51:31:5e:ac:a3:74:55:84:ab:cd:90:ff:3d forked to background, child pid 4658 [ 50.889572][ T4659] 8021q: adding VLAN 0 to HW filter on device bond0 [ 50.901379][ T4659] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller Warning: Permanently added '10.128.0.207' (ECDSA) to the list of known hosts. 2023/03/24 01:32:41 fuzzer started 2023/03/24 01:32:41 dialing manager at 10.128.0.169:40369 syzkaller login: [ 73.412898][ T5089] cgroup: Unknown subsys name 'net' [ 73.566625][ T5089] cgroup: Unknown subsys name 'rlimit' 2023/03/24 01:32:42 syscalls: 3784 2023/03/24 01:32:42 code coverage: enabled 2023/03/24 01:32:42 comparison tracing: enabled 2023/03/24 01:32:42 extra coverage: enabled 2023/03/24 01:32:42 delay kcov mmap: enabled 2023/03/24 01:32:42 setuid sandbox: enabled 2023/03/24 01:32:42 namespace sandbox: enabled 2023/03/24 01:32:42 Android sandbox: /sys/fs/selinux/policy does not exist 2023/03/24 01:32:42 fault injection: enabled 2023/03/24 01:32:42 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2023/03/24 01:32:42 net packet injection: enabled 2023/03/24 01:32:42 net device setup: enabled 2023/03/24 01:32:42 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2023/03/24 01:32:42 devlink PCI setup: PCI device 0000:00:10.0 is not available 2023/03/24 01:32:42 NIC VF setup: PCI device 0000:00:11.0 is not available 2023/03/24 01:32:42 USB emulation: enabled 2023/03/24 01:32:42 hci packet injection: enabled 2023/03/24 01:32:42 wifi device emulation: enabled 2023/03/24 01:32:42 802.15.4 emulation: enabled 2023/03/24 01:32:42 fetching corpus: 0, signal 0/2000 (executing program) 2023/03/24 01:32:42 fetching corpus: 50, signal 50425/54095 (executing program) 2023/03/24 01:32:42 fetching corpus: 100, signal 71068/76402 (executing program) 2023/03/24 01:32:43 fetching corpus: 150, signal 90211/97091 (executing program) 2023/03/24 01:32:43 fetching corpus: 200, signal 104879/113226 (executing program) 2023/03/24 01:32:44 fetching corpus: 250, signal 116867/126640 (executing program) 2023/03/24 01:32:44 fetching corpus: 300, signal 125699/136949 (executing program) 2023/03/24 01:32:44 fetching corpus: 350, signal 134123/146754 (executing program) [ 76.408743][ T1216] ieee802154 phy0 wpan0: encryption failed: -22 [ 76.415314][ T1216] ieee802154 phy1 wpan1: encryption failed: -22 2023/03/24 01:32:45 fetching corpus: 400, signal 140579/154587 (executing program) 2023/03/24 01:32:45 fetching corpus: 449, signal 147538/162877 (executing program) 2023/03/24 01:32:45 fetching corpus: 499, signal 156936/173434 (executing program) 2023/03/24 01:32:46 fetching corpus: 549, signal 161463/179275 (executing program) 2023/03/24 01:32:46 fetching corpus: 599, signal 166869/185937 (executing program) 2023/03/24 01:32:46 fetching corpus: 649, signal 175261/195390 (executing program) 2023/03/24 01:32:47 fetching corpus: 699, signal 184348/205437 (executing program) 2023/03/24 01:32:47 fetching corpus: 749, signal 189048/211310 (executing program) 2023/03/24 01:32:48 fetching corpus: 799, signal 194488/217860 (executing program) 2023/03/24 01:32:48 fetching corpus: 849, signal 198460/222946 (executing program) 2023/03/24 01:32:48 fetching corpus: 895, signal 202389/227994 (executing program) 2023/03/24 01:32:49 fetching corpus: 945, signal 211240/237605 (executing program) 2023/03/24 01:32:50 fetching corpus: 995, signal 220701/247645 (executing program) 2023/03/24 01:32:51 fetching corpus: 1045, signal 226588/254334 (executing program) 2023/03/24 01:32:51 fetching corpus: 1095, signal 234556/262992 (executing program) 2023/03/24 01:32:51 fetching corpus: 1144, signal 238510/267860 (executing program) 2023/03/24 01:32:52 fetching corpus: 1194, signal 242487/272755 (executing program) 2023/03/24 01:32:52 fetching corpus: 1244, signal 246844/277979 (executing program) 2023/03/24 01:32:53 fetching corpus: 1294, signal 251327/283322 (executing program) 2023/03/24 01:32:53 fetching corpus: 1344, signal 255354/288142 (executing program) 2023/03/24 01:32:54 fetching corpus: 1394, signal 260180/293735 (executing program) 2023/03/24 01:32:54 fetching corpus: 1444, signal 262138/296683 (executing program) 2023/03/24 01:32:54 fetching corpus: 1494, signal 265876/301200 (executing program) 2023/03/24 01:32:55 fetching corpus: 1544, signal 269256/305400 (executing program) 2023/03/24 01:32:55 fetching corpus: 1594, signal 272111/309093 (executing program) 2023/03/24 01:32:56 fetching corpus: 1644, signal 274764/312566 (executing program) 2023/03/24 01:32:56 fetching corpus: 1693, signal 277400/316016 (executing program) 2023/03/24 01:32:56 fetching corpus: 1739, signal 280074/319426 (executing program) 2023/03/24 01:32:57 fetching corpus: 1787, signal 283084/323146 (executing program) [ 88.591618][ T5088] general protection fault, probably for non-canonical address 0xdffffc00000011c3: 0000 [#1] PREEMPT SMP KASAN [ 88.603570][ T5088] KASAN: probably user-memory-access in range [0x0000000000008e18-0x0000000000008e1f] [ 88.613334][ T5088] CPU: 0 PID: 5088 Comm: syz-fuzzer Not tainted 6.3.0-rc3-next-20230323-syzkaller #0 [ 88.622819][ T5088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 88.632892][ T5088] RIP: 0010:vma_merge+0x234/0x1fd0 [ 88.638062][ T5088] Code: 08 00 0f 84 b0 03 00 00 e8 e9 54 bf ff 48 8b 44 24 08 48 8d b8 a8 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 4d 18 00 00 48 8b 44 24 08 48 8b b0 a8 00 00 00 [ 88.657696][ T5088] RSP: 0018:ffffc90003c0f998 EFLAGS: 00010206 [ 88.663811][ T5088] RAX: dffffc0000000000 RBX: ffff8880221a8a00 RCX: 0000000000000000 [ 88.671805][ T5088] RDX: 00000000000011c3 RSI: ffffffff81c37957 RDI: 0000000000008e1b [ 88.679798][ T5088] RBP: ffff8880221a8c00 R08: 0000000000000001 R09: 0000000000000000 [ 88.687786][ T5088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 88.695774][ T5088] R13: 0000000000000000 R14: 000000c002c00000 R15: 0000000000000000 [ 88.703760][ T5088] FS: 000000c000bbe890(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 88.712723][ T5088] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 88.719418][ T5088] CR2: 000000c0025a9010 CR3: 000000002a657000 CR4: 00000000003506f0 [ 88.727413][ T5088] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 88.735416][ T5088] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 88.743494][ T5088] Call Trace: [ 88.746786][ T5088] [ 88.749739][ T5088] ? vma_shrink+0x5c0/0x5c0 [ 88.754276][ T5088] ? print_usage_bug.part.0+0x660/0x660 [ 88.759858][ T5088] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 88.765875][ T5088] ? find_held_lock+0x2d/0x110 [ 88.770686][ T5088] madvise_update_vma+0x23f/0xd40 [ 88.775771][ T5088] ? anon_vma_name_alloc+0xe0/0xe0 [ 88.780933][ T5088] madvise_vma_behavior+0x7f6/0x20e0 [ 88.786275][ T5088] ? madvise_vma_anon_name+0xf0/0xf0 [ 88.791605][ T5088] ? find_vma_prev+0xe4/0x160 [ 88.796339][ T5088] ? vm_unmapped_area+0x650/0x650 [ 88.801395][ T5088] ? trace_lock_acquire+0x12d/0x180 [ 88.806637][ T5088] madvise_walk_vmas+0x1c7/0x2b0 [ 88.811632][ T5088] ? madvise_vma_anon_name+0xf0/0xf0 [ 88.816957][ T5088] ? __remove_memory+0x40/0x40 [ 88.821768][ T5088] ? down_write_killable_nested+0x250/0x250 [ 88.827714][ T5088] ? set_user_sigmask+0x217/0x2a0 [ 88.832781][ T5088] ? find_held_lock+0x2d/0x110 [ 88.837576][ T5088] do_madvise.part.0+0x193/0x470 [ 88.842557][ T5088] ? madvise_pageout+0x560/0x560 [ 88.847535][ T5088] ? __x64_sys_epoll_pwait+0x1db/0x310 [ 88.853028][ T5088] ? __ia32_sys_epoll_wait+0x280/0x280 [ 88.858527][ T5088] __x64_sys_madvise+0x117/0x150 [ 88.863509][ T5088] do_syscall_64+0x39/0xb0 [ 88.867953][ T5088] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 88.873889][ T5088] RIP: 0033:0x46b557 [ 88.877833][ T5088] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14 [ 88.897465][ T5088] RSP: 002b:000000c000235ea0 EFLAGS: 00000206 ORIG_RAX: 000000000000001c [ 88.905915][ T5088] RAX: ffffffffffffffda RBX: 000000000000c000 RCX: 000000000046b557 [ 88.913907][ T5088] RDX: 000000000000000f RSI: 0000000000200000 RDI: 000000c002c00000 [ 88.921986][ T5088] RBP: 000000c000235ee0 R08: 0000000000200000 R09: 0000000000000040 [ 88.929975][ T5088] R10: 0000000000000007 R11: 0000000000000206 R12: fffc003e081fff00 [ 88.938056][ T5088] R13: 0000000000000000 R14: 000000c0003f9a00 R15: 000000c0000ae900 [ 88.946059][ T5088] [ 88.949095][ T5088] Modules linked in: [ 88.961281][ T5088] ---[ end trace 0000000000000000 ]--- [ 88.966832][ T5088] RIP: 0010:vma_merge+0x234/0x1fd0 [ 88.971983][ T5088] Code: 08 00 0f 84 b0 03 00 00 e8 e9 54 bf ff 48 8b 44 24 08 48 8d b8 a8 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 4d 18 00 00 48 8b 44 24 08 48 8b b0 a8 00 00 00 [ 88.992019][ T5088] RSP: 0018:ffffc90003c0f998 EFLAGS: 00010206 [ 88.998544][ T5088] RAX: dffffc0000000000 RBX: ffff8880221a8a00 RCX: 0000000000000000 [ 89.007606][ T5088] RDX: 00000000000011c3 RSI: ffffffff81c37957 RDI: 0000000000008e1b [ 89.015616][ T5088] RBP: ffff8880221a8c00 R08: 0000000000000001 R09: 0000000000000000 [ 89.023915][ T5088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 89.032085][ T5088] R13: 0000000000000000 R14: 000000c002c00000 R15: 0000000000000000 [ 89.040301][ T5088] FS: 000000c000bbe890(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 89.049496][ T5088] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 89.056448][ T5088] CR2: 000000c0025a9010 CR3: 000000002a657000 CR4: 00000000003506f0 [ 89.065328][ T5088] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 89.073677][ T5088] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 89.081966][ T5088] Kernel panic - not syncing: Fatal exception [ 89.088275][ T5088] Kernel Offset: disabled [ 89.092613][ T5088] Rebooting in 86400 seconds..