Warning: Permanently added '10.128.0.96' (ECDSA) to the list of known hosts. 2020/09/01 20:52:11 parsed 1 programs 2020/09/01 20:52:11 executed programs: 0 syzkaller login: [ 33.791936] audit: type=1400 audit(1598993531.555:8): avc: denied { execmem } for pid=6379 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 34.915364] IPVS: ftp: loaded support on port[0] = 21 [ 35.008701] chnl_net:caif_netlink_parms(): no params data found [ 35.093360] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.100030] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.108109] device bridge_slave_0 entered promiscuous mode [ 35.115952] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.122359] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.129687] device bridge_slave_1 entered promiscuous mode [ 35.146104] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 35.154890] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 35.172607] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 35.180187] team0: Port device team_slave_0 added [ 35.186109] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 35.193628] team0: Port device team_slave_1 added [ 35.208980] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 35.215322] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.240565] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 35.251999] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 35.258383] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.283672] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 35.294679] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 35.302281] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 35.322186] device hsr_slave_0 entered promiscuous mode [ 35.327953] device hsr_slave_1 entered promiscuous mode [ 35.334442] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 35.341543] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 35.407419] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.414054] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.420914] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.427335] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.457333] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 35.464480] 8021q: adding VLAN 0 to HW filter on device bond0 [ 35.474532] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 35.483644] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 35.502169] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.509780] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.520800] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 35.527949] 8021q: adding VLAN 0 to HW filter on device team0 [ 35.536436] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 35.544299] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.550733] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.571149] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 35.581359] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 35.593417] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 35.600567] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 35.608300] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.614831] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.623285] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 35.630971] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 35.639497] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 35.647507] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 35.656062] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 35.663497] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 35.676564] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready [ 35.684431] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 35.691215] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 35.701710] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 35.756579] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready [ 35.766048] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 35.797598] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready [ 35.805823] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready [ 35.812382] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready [ 35.821990] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 35.830166] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 35.837575] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 35.846643] device veth0_vlan entered promiscuous mode [ 35.856458] device veth1_vlan entered promiscuous mode [ 35.862996] IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready [ 35.871432] IPv6: ADDRCONF(NETDEV_UP): macvlan1: link is not ready [ 35.883779] IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready [ 35.894135] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 35.901398] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 35.909440] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 35.918870] device veth0_macvtap entered promiscuous mode [ 35.925005] IPv6: ADDRCONF(NETDEV_UP): macvtap0: link is not ready [ 35.933521] device veth1_macvtap entered promiscuous mode [ 35.941840] IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready [ 35.951347] IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready [ 35.961076] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 35.968309] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 35.977060] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 35.985274] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 35.995419] IPv6: ADDRCONF(NETDEV_UP): batadv_slave_1: link is not ready [ 36.002715] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 36.009301] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 36.017994] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 36.170608] kasan: CONFIG_KASAN_INLINE enabled [ 36.175290] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 36.182762] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 36.188975] Modules linked in: [ 36.192165] CPU: 0 PID: 6630 Comm: syz-executor.0 Not tainted 4.14.195-syzkaller #0 [ 36.200143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 36.209481] task: ffff88808bf7c480 task.stack: ffff8880947c0000 [ 36.215531] RIP: 0010:kasan_slab_free+0x34/0x1a0 [ 36.220267] RSP: 0018:ffff8880947c7b78 EFLAGS: 00010096 [ 36.225713] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: dffffc0000000000 [ 36.233239] RDX: 0000000000000004 RSI: 0000000000000000 RDI: dffffc0000000000 [ 36.240493] RBP: ffff8880947c7da8 R08: ffffffff8a083a68 R09: 0000000000000000 [ 36.247757] R10: 0000000000000000 R11: ffff88808bf7c480 R12: ffff8880aa50b380 [ 36.255010] R13: 0000000000000000 R14: ffffffff84e70bd0 R15: ffff88809694e350 [ 36.262283] FS: 00000000023b4940(0000) GS:ffff8880aea00000(0000) knlGS:0000000000000000 [ 36.270492] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 36.276385] CR2: 00005648d41e7010 CR3: 0000000090394000 CR4: 00000000001406f0 [ 36.283920] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 36.291182] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 36.298535] Call Trace: [ 36.301126] ? lock_acquire+0x170/0x3f0 [ 36.305086] ? lock_downgrade+0x740/0x740 [ 36.309344] ? debug_check_no_obj_freed+0x2c0/0x674 [ 36.314381] ? lock_acquire+0x170/0x3f0 [ 36.318339] ? lock_downgrade+0x740/0x740 [ 36.322569] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 36.327668] ? debug_check_no_obj_freed+0x2c0/0x674 [ 36.332690] ? debug_object_activate+0x490/0x490 [ 36.337428] ? security_file_free+0x42/0x80 [ 36.341740] kmem_cache_free+0x7c/0x2b0 [ 36.345703] security_file_free+0x42/0x80 [ 36.349848] __fput+0x26c/0x7a0 [ 36.353145] task_work_run+0x11f/0x190 [ 36.357039] exit_to_usermode_loop+0x1ad/0x200 [ 36.361635] do_syscall_64+0x4a3/0x640 [ 36.365538] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 36.370725] RIP: 0033:0x416f01 [ 36.373906] RSP: 002b:00007ffd4f9bc340 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 36.381591] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 0000000000416f01 [ 36.388853] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 0000000000000003 [ 36.396105] RBP: 0000000000000000 R08: 0000000001190358 R09: 0000000000000000 [ 36.403370] R10: 00007ffd4f9bc420 R11: 0000000000000293 R12: 0000000001190360 [ 36.410620] R13: 0000000000000000 R14: ffffffffffffffff R15: 000000000118cf4c [ 36.417978] Code: 00 48 b9 00 00 00 00 00 fc ff df 55 48 89 e5 41 55 49 89 f5 41 54 49 89 fc 48 89 f7 48 c1 ef 03 53 48 01 cf 48 81 ec 18 02 00 00 <0f> b6 07 3c 07 0f 87 20 01 00 00 49 63 44 24 74 48 83 e8 01 48 [ 36.437064] RIP: kasan_slab_free+0x34/0x1a0 RSP: ffff8880947c7b78 [ 36.443293] ---[ end trace b202e4c77fee0b55 ]--- [ 36.448027] Kernel panic - not syncing: Fatal exception [ 36.454019] Kernel Offset: disabled [ 36.458067] Rebooting in 86400 seconds..