[ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.177' (ECDSA) to the list of known hosts. syzkaller login: [ 41.792768][ T7018] IPVS: ftp: loaded support on port[0] = 21 [ 41.869995][ T7018] chnl_net:caif_netlink_parms(): no params data found [ 41.914406][ T7018] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.923727][ T7018] bridge0: port 1(bridge_slave_0) entered disabled state [ 41.932975][ T7018] device bridge_slave_0 entered promiscuous mode [ 41.942232][ T7018] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.949324][ T7018] bridge0: port 2(bridge_slave_1) entered disabled state [ 41.957660][ T7018] device bridge_slave_1 entered promiscuous mode [ 41.976556][ T7018] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 41.987473][ T7018] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 42.008692][ T7018] team0: Port device team_slave_0 added [ 42.015861][ T7018] team0: Port device team_slave_1 added [ 42.031358][ T7018] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 42.038290][ T7018] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 42.064823][ T7018] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 42.077070][ T7018] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 42.084151][ T7018] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 42.110314][ T7018] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 42.173351][ T7018] device hsr_slave_0 entered promiscuous mode [ 42.231197][ T7018] device hsr_slave_1 entered promiscuous mode [ 42.344613][ T7018] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 42.393462][ T7018] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 42.434158][ T7018] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 42.482744][ T7018] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 42.534691][ T7018] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.541854][ T7018] bridge0: port 2(bridge_slave_1) entered forwarding state [ 42.549552][ T7018] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.556754][ T7018] bridge0: port 1(bridge_slave_0) entered forwarding state [ 42.596909][ T7018] 8021q: adding VLAN 0 to HW filter on device bond0 [ 42.609695][ T2773] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 42.620210][ T2773] bridge0: port 1(bridge_slave_0) entered disabled state [ 42.629434][ T2773] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.638806][ T2773] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 42.653649][ T7018] 8021q: adding VLAN 0 to HW filter on device team0 [ 42.664241][ T2812] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 42.673752][ T2812] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.680883][ T2812] bridge0: port 1(bridge_slave_0) entered forwarding state [ 42.692891][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 42.701639][ T17] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.708855][ T17] bridge0: port 2(bridge_slave_1) entered forwarding state [ 42.728162][ T2812] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 42.737603][ T2812] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 42.749565][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 42.762577][ T2812] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 42.776013][ T7018] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 42.788588][ T7018] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 42.796988][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 42.816009][ T2812] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 42.823564][ T2812] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 42.836529][ T7018] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 42.854437][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 42.872908][ T2812] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 42.881659][ T2812] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 42.891959][ T2812] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 42.899711][ T2812] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 42.909502][ T7018] device veth0_vlan entered promiscuous mode [ 42.924811][ T7018] device veth1_vlan entered promiscuous mode [ 42.943261][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 42.952265][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 42.961486][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 42.969872][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 42.981636][ T7018] device veth0_macvtap entered promiscuous mode [ 42.992422][ T7018] device veth1_macvtap entered promiscuous mode [ 43.007893][ T7018] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 43.015926][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 43.025467][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 43.033534][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 43.042404][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 43.054939][ T7018] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 43.063412][ T2812] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 43.072978][ T2812] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready executing program [ 43.402753][ T7226] general protection fault, probably for non-canonical address 0xdffffc0000000004: 0000 [#1] PREEMPT SMP KASAN [ 43.414482][ T7226] KASAN: null-ptr-deref in range [0x0000000000000020-0x0000000000000027] [ 43.422885][ T7226] CPU: 1 PID: 7226 Comm: syz-executor523 Not tainted 5.7.0-rc6-syzkaller #0 [ 43.431551][ T7226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 43.441605][ T7226] RIP: 0010:sock_recvmsg+0x92/0x110 [ 43.446770][ T7226] Code: 5b 41 5c 41 5d 41 5e 41 5f 5d c3 44 89 6c 24 04 e8 53 18 1d fb 4d 8d 6f 20 4c 89 e8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df <80> 3c 08 00 74 08 4c 89 ef e8 20 12 5b fb bd a0 00 00 00 49 03 6d [ 43.466344][ T7226] RSP: 0018:ffffc90001077b98 EFLAGS: 00010202 [ 43.472394][ T7226] RAX: 0000000000000004 RBX: ffffc90001077dc0 RCX: dffffc0000000000 [ 43.480342][ T7226] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 43.488305][ T7226] RBP: 0000000000000000 R08: ffffffff86565e59 R09: ffffed10115afeaa [ 43.496250][ T7226] R10: ffffed10115afeaa R11: 0000000000000000 R12: 1ffff9200020efbc [ 43.504199][ T7226] R13: 0000000000000020 R14: ffffc90001077de0 R15: 0000000000000000 [ 43.512150][ T7226] FS: 00007fc6a3abe700(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 [ 43.521216][ T7226] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 43.527769][ T7226] CR2: 00000000004d0050 CR3: 00000000969f0000 CR4: 00000000001406e0 [ 43.535728][ T7226] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 43.543674][ T7226] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 43.551671][ T7226] Call Trace: [ 43.554953][ T7226] mptcp_recvmsg+0x18d5/0x19b0 [ 43.559689][ T7226] ? wait_woken+0x240/0x240 [ 43.564167][ T7226] inet_recvmsg+0xf6/0x1d0 [ 43.568553][ T7226] ? inet_sendpage+0x370/0x370 [ 43.573313][ T7226] __sys_recvfrom+0x2f3/0x470 [ 43.577979][ T7226] ? __sys_connect+0x1c4/0x360 [ 43.584880][ T7226] ? __sys_bind+0x2c5/0x360 [ 43.589370][ T7226] ? check_preemption_disabled+0xb0/0x240 [ 43.595083][ T7226] ? debug_smp_processor_id+0x5/0x20 [ 43.600339][ T7226] ? __fpregs_load_activate+0x168/0x1f0 [ 43.605874][ T7226] __x64_sys_recvfrom+0xda/0xf0 [ 43.610707][ T7226] do_syscall_64+0xf3/0x1b0 [ 43.615186][ T7226] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 43.621048][ T7226] RIP: 0033:0x448ef9 [ 43.624914][ T7226] Code: e8 cc 14 03 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 9b 0c fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 43.644495][ T7226] RSP: 002b:00007fc6a3abdda8 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 43.652880][ T7226] RAX: ffffffffffffffda RBX: 00000000006dec28 RCX: 0000000000448ef9 [ 43.660889][ T7226] RDX: 0000000000001000 RSI: 00000000200004c0 RDI: 0000000000000003 [ 43.668846][ T7226] RBP: 00000000006dec20 R08: 0000000000000000 R09: 0000000000000000 [ 43.676852][ T7226] R10: 0000000040000000 R11: 0000000000000246 R12: 00000000006dec2c [ 43.684798][ T7226] R13: 00007ffe4730174f R14: 00007fc6a3abe9c0 R15: 00000000006dec2c [ 43.692746][ T7226] Modules linked in: [ 43.698703][ T7226] ---[ end trace 097bdf143c3a60db ]--- [ 43.704262][ T7226] RIP: 0010:sock_recvmsg+0x92/0x110 [ 43.709444][ T7226] Code: 5b 41 5c 41 5d 41 5e 41 5f 5d c3 44 89 6c 24 04 e8 53 18 1d fb 4d 8d 6f 20 4c 89 e8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df <80> 3c 08 00 74 08 4c 89 ef e8 20 12 5b fb bd a0 00 00 00 49 03 6d [ 43.729555][ T7226] RSP: 0018:ffffc90001077b98 EFLAGS: 00010202 [ 43.735691][ T7226] RAX: 0000000000000004 RBX: ffffc90001077dc0 RCX: dffffc0000000000 [ 43.744063][ T7226] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 43.752052][ T7226] RBP: 0000000000000000 R08: ffffffff86565e59 R09: ffffed10115afeaa [ 43.760112][ T7226] R10: ffffed10115afeaa R11: 0000000000000000 R12: 1ffff9200020efbc [ 43.768063][ T7226] R13: 0000000000000020 R14: ffffc90001077de0 R15: 0000000000000000 [ 43.776098][ T7226] FS: 00007fc6a3abe700(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 [ 43.785064][ T7226] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 43.791867][ T7226] CR2: 00000000004d0050 CR3: 00000000969f0000 CR4: 00000000001406e0 [ 43.800133][ T7226] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 43.808136][ T7226] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 43.816170][ T7226] Kernel panic - not syncing: Fatal exception [ 43.823502][ T7226] Kernel Offset: disabled [ 43.827829][ T7226] Rebooting in 86400 seconds..