[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 62.753471][ T8611] IPVS: ftp: loaded support on port[0] = 21 [ 63.088290][ T379] tipc: TX() has been purged, node left! [ 63.889097][ T8599] can: request_module (can-proto-0) failed. [ 66.051487][ T8599] can: request_module (can-proto-0) failed. [ 66.062862][ T8599] can: request_module (can-proto-0) failed. [ 66.556235][ T8596] syz-fuzzer (8596) used greatest stack depth: 23968 bytes left Warning: Permanently added '10.128.0.144' (ECDSA) to the list of known hosts. 2020/03/15 08:01:22 parsed 1 programs 2020/03/15 08:01:23 executed programs: 0 [ 74.208294][ T8695] IPVS: ftp: loaded support on port[0] = 21 [ 74.258821][ T8697] IPVS: ftp: loaded support on port[0] = 21 [ 74.285869][ T8705] IPVS: ftp: loaded support on port[0] = 21 [ 74.289586][ T8699] IPVS: ftp: loaded support on port[0] = 21 [ 74.293026][ T8704] IPVS: ftp: loaded support on port[0] = 21 [ 74.315814][ T8702] IPVS: ftp: loaded support on port[0] = 21 [ 74.482449][ T8695] chnl_net:caif_netlink_parms(): no params data found [ 74.496810][ T8704] chnl_net:caif_netlink_parms(): no params data found [ 74.582152][ T8695] bridge0: port 1(bridge_slave_0) entered blocking state [ 74.589838][ T8695] bridge0: port 1(bridge_slave_0) entered disabled state [ 74.597400][ T8695] device bridge_slave_0 entered promiscuous mode [ 74.617685][ T8697] chnl_net:caif_netlink_parms(): no params data found [ 74.635957][ T8695] bridge0: port 2(bridge_slave_1) entered blocking state [ 74.644027][ T8695] bridge0: port 2(bridge_slave_1) entered disabled state [ 74.652751][ T8695] device bridge_slave_1 entered promiscuous mode [ 74.673957][ T8705] chnl_net:caif_netlink_parms(): no params data found [ 74.719278][ T8695] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 74.730329][ T8695] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 74.755179][ T8704] bridge0: port 1(bridge_slave_0) entered blocking state [ 74.762366][ T8704] bridge0: port 1(bridge_slave_0) entered disabled state [ 74.770197][ T8704] device bridge_slave_0 entered promiscuous mode [ 74.794910][ T8704] bridge0: port 2(bridge_slave_1) entered blocking state [ 74.802256][ T8704] bridge0: port 2(bridge_slave_1) entered disabled state [ 74.810824][ T8704] device bridge_slave_1 entered promiscuous mode [ 74.824173][ T8695] team0: Port device team_slave_0 added [ 74.835361][ T8695] team0: Port device team_slave_1 added [ 74.856118][ T8702] chnl_net:caif_netlink_parms(): no params data found [ 74.870816][ T8699] chnl_net:caif_netlink_parms(): no params data found [ 74.882521][ T8697] bridge0: port 1(bridge_slave_0) entered blocking state [ 74.891591][ T8697] bridge0: port 1(bridge_slave_0) entered disabled state [ 74.899366][ T8697] device bridge_slave_0 entered promiscuous mode [ 74.920543][ T8704] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 74.941062][ T8697] bridge0: port 2(bridge_slave_1) entered blocking state [ 74.948339][ T8697] bridge0: port 2(bridge_slave_1) entered disabled state [ 74.956010][ T8697] device bridge_slave_1 entered promiscuous mode [ 74.966984][ T8704] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 74.982982][ T8695] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 74.990606][ T8695] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 75.017037][ T8695] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 75.029554][ T8695] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 75.036508][ T8695] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 75.062774][ T8695] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 75.114206][ T8705] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.123006][ T8705] bridge0: port 1(bridge_slave_0) entered disabled state [ 75.132160][ T8705] device bridge_slave_0 entered promiscuous mode [ 75.147860][ T8704] team0: Port device team_slave_0 added [ 75.168546][ T8697] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 75.230909][ T8695] device hsr_slave_0 entered promiscuous mode [ 75.298418][ T8695] device hsr_slave_1 entered promiscuous mode [ 75.370938][ T8705] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.378003][ T8705] bridge0: port 2(bridge_slave_1) entered disabled state [ 75.385769][ T8705] device bridge_slave_1 entered promiscuous mode [ 75.393912][ T8704] team0: Port device team_slave_1 added [ 75.414311][ T8697] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 75.480349][ T8702] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.487416][ T8702] bridge0: port 1(bridge_slave_0) entered disabled state [ 75.495959][ T8702] device bridge_slave_0 entered promiscuous mode [ 75.507448][ T8702] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.514579][ T8702] bridge0: port 2(bridge_slave_1) entered disabled state [ 75.522364][ T8702] device bridge_slave_1 entered promiscuous mode [ 75.539463][ T8705] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 75.549595][ T8704] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 75.556548][ T8704] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 75.582514][ T8704] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 75.621037][ T8697] team0: Port device team_slave_0 added [ 75.628263][ T8705] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 75.642550][ T8704] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 75.649672][ T8704] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 75.676367][ T8704] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 75.689397][ T8702] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 75.701825][ T8699] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.709043][ T8699] bridge0: port 1(bridge_slave_0) entered disabled state [ 75.716695][ T8699] device bridge_slave_0 entered promiscuous mode [ 75.725416][ T8697] team0: Port device team_slave_1 added [ 75.752476][ T8702] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 75.764975][ T8699] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.772337][ T8699] bridge0: port 2(bridge_slave_1) entered disabled state [ 75.780206][ T8699] device bridge_slave_1 entered promiscuous mode [ 75.830932][ T8705] team0: Port device team_slave_0 added [ 75.836988][ T8697] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 75.847600][ T8697] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 75.874886][ T8697] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 75.930928][ T8704] device hsr_slave_0 entered promiscuous mode [ 75.968668][ T8704] device hsr_slave_1 entered promiscuous mode [ 76.008374][ T8704] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 76.016155][ T8704] Cannot create hsr debugfs directory [ 76.030121][ T8699] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 76.041191][ T8705] team0: Port device team_slave_1 added [ 76.047357][ T8697] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 76.054456][ T8697] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 76.080918][ T8697] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 76.109717][ T8702] team0: Port device team_slave_0 added [ 76.119190][ T8699] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 76.149709][ T8702] team0: Port device team_slave_1 added [ 76.176377][ T8699] team0: Port device team_slave_0 added [ 76.229923][ T8697] device hsr_slave_0 entered promiscuous mode [ 76.268579][ T8697] device hsr_slave_1 entered promiscuous mode [ 76.308397][ T8697] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 76.316132][ T8697] Cannot create hsr debugfs directory [ 76.331942][ T8705] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 76.338997][ T8705] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 76.365423][ T8705] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 76.380479][ T8705] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 76.387444][ T8705] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 76.413911][ T8705] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 76.426172][ T8699] team0: Port device team_slave_1 added [ 76.477942][ T8699] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 76.485054][ T8699] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 76.511389][ T8699] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 76.525828][ T8699] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 76.532879][ T8699] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 76.559099][ T8699] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 76.570445][ T8695] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 76.611011][ T8702] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 76.617991][ T8702] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 76.645359][ T8702] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 76.699915][ T8705] device hsr_slave_0 entered promiscuous mode [ 76.738735][ T8705] device hsr_slave_1 entered promiscuous mode [ 76.798365][ T8705] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 76.805955][ T8705] Cannot create hsr debugfs directory [ 76.861027][ T8699] device hsr_slave_0 entered promiscuous mode [ 76.898614][ T8699] device hsr_slave_1 entered promiscuous mode [ 76.938290][ T8699] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 76.945976][ T8699] Cannot create hsr debugfs directory [ 76.952209][ T8695] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 77.014886][ T8702] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 77.021961][ T8702] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 77.048086][ T8702] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 77.074770][ T8695] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 77.152383][ T8695] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 77.250878][ T8702] device hsr_slave_0 entered promiscuous mode [ 77.308632][ T8702] device hsr_slave_1 entered promiscuous mode [ 77.358365][ T8702] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 77.366062][ T8702] Cannot create hsr debugfs directory [ 77.451516][ T8704] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 77.519437][ T8704] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 77.570483][ T8704] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 77.626178][ T8704] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 77.739255][ T8697] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 77.780199][ T8697] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 77.822084][ T8697] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 77.882368][ T8697] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 77.981209][ T8695] 8021q: adding VLAN 0 to HW filter on device bond0 [ 77.988473][ T8705] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 78.052778][ T8705] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 78.090285][ T8705] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 78.141387][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 78.150236][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 78.170012][ T8695] 8021q: adding VLAN 0 to HW filter on device team0 [ 78.184798][ T8705] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 78.241710][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 78.250459][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 78.259199][ T42] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.266504][ T42] bridge0: port 1(bridge_slave_0) entered forwarding state [ 78.305350][ T8702] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 78.361411][ T2760] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 78.369314][ T2760] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 78.377850][ T2760] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 78.386305][ T2760] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.393395][ T2760] bridge0: port 2(bridge_slave_1) entered forwarding state [ 78.402544][ T2760] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 78.411292][ T2760] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 78.448747][ T8702] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 78.471946][ T8702] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 78.529651][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 78.538129][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 78.546733][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 78.555315][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 78.563939][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 78.572429][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 78.580871][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 78.589897][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 78.600636][ T8695] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 78.626056][ T8699] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 78.660767][ T8699] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 78.720343][ T8702] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 78.760448][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 78.786289][ T8697] 8021q: adding VLAN 0 to HW filter on device bond0 [ 78.800820][ T8699] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 78.831159][ T8699] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 78.885537][ T8705] 8021q: adding VLAN 0 to HW filter on device bond0 [ 78.896078][ T8704] 8021q: adding VLAN 0 to HW filter on device bond0 [ 78.926571][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 78.934380][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 78.946750][ T8697] 8021q: adding VLAN 0 to HW filter on device team0 [ 78.957737][ T8695] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 78.970231][ T8705] 8021q: adding VLAN 0 to HW filter on device team0 [ 78.979881][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 78.987518][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 78.998077][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 79.006054][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 79.014549][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 79.022604][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 79.041141][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 79.049862][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 79.059899][ T2832] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.066955][ T2832] bridge0: port 1(bridge_slave_0) entered forwarding state [ 79.075844][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 79.086037][ T8704] 8021q: adding VLAN 0 to HW filter on device team0 [ 79.118737][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 79.127336][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 79.136024][ T42] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.143108][ T42] bridge0: port 1(bridge_slave_0) entered forwarding state [ 79.151305][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 79.160086][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 79.168831][ T42] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.175870][ T42] bridge0: port 2(bridge_slave_1) entered forwarding state [ 79.183607][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 79.193080][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 79.201888][ T42] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.209110][ T42] bridge0: port 1(bridge_slave_0) entered forwarding state [ 79.216629][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 79.225804][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 79.234223][ T42] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.241304][ T42] bridge0: port 2(bridge_slave_1) entered forwarding state [ 79.249744][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 79.257532][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 79.289171][ T2744] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 79.297711][ T2744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 79.306805][ T2744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 79.329649][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 79.339106][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 79.347459][ T2836] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.354553][ T2836] bridge0: port 2(bridge_slave_1) entered forwarding state [ 79.363390][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 79.372015][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 79.414096][ T2760] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 79.423911][ T2760] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 79.432936][ T2760] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 79.445809][ T2760] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 79.454895][ T2760] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 79.463457][ T2760] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 79.472738][ T2760] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 79.481920][ T2760] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 79.502669][ T8705] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 79.513706][ T8705] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 79.532790][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 79.542160][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 79.550947][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 79.559937][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 79.568863][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 79.577164][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 79.585793][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 79.594667][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 79.603115][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 79.612916][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 79.621956][ T8695] device veth0_vlan entered promiscuous mode [ 79.643791][ T8702] 8021q: adding VLAN 0 to HW filter on device bond0 [ 79.652289][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 79.662516][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 79.671675][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 79.679603][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 79.687143][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 79.698597][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 79.706963][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 79.715636][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 79.724039][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 79.738108][ T8699] 8021q: adding VLAN 0 to HW filter on device bond0 [ 79.758960][ T8695] device veth1_vlan entered promiscuous mode [ 79.780060][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 79.787955][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 79.797536][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 79.806248][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 79.814929][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 79.822534][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 79.830625][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 79.838683][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 79.851882][ T8697] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 79.867270][ T8697] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 79.876566][ T8705] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 79.893702][ T8702] 8021q: adding VLAN 0 to HW filter on device team0 [ 79.901683][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 79.910390][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 79.919009][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 79.927210][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 79.935890][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 79.944322][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 79.957833][ T8699] 8021q: adding VLAN 0 to HW filter on device team0 [ 79.976235][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 79.984188][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 80.001491][ T8704] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 80.019218][ T2744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 80.030703][ T2744] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 80.039593][ T2744] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.046715][ T2744] bridge0: port 1(bridge_slave_0) entered forwarding state [ 80.054904][ T2744] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 80.063557][ T2744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 80.072841][ T2744] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 80.088935][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 80.097419][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 80.106625][ T2836] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.113814][ T2836] bridge0: port 1(bridge_slave_0) entered forwarding state [ 80.121960][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 80.130729][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 80.139724][ T2836] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.146763][ T2836] bridge0: port 2(bridge_slave_1) entered forwarding state [ 80.192347][ T8697] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 80.200841][ T8695] device veth0_macvtap entered promiscuous mode [ 80.210405][ T2781] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 80.218501][ T2781] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 80.226278][ T2781] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 80.235195][ T2781] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 80.243634][ T2781] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.250860][ T2781] bridge0: port 2(bridge_slave_1) entered forwarding state [ 80.259090][ T2781] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 80.269608][ T2781] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 80.278067][ T2781] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 80.286846][ T2781] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 80.295217][ T2781] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 80.302929][ T2781] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 80.311023][ T2781] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 80.319748][ T2781] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 80.328817][ T2781] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 80.336236][ T2781] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 80.354602][ T8704] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 80.367053][ T8695] device veth1_macvtap entered promiscuous mode [ 80.375846][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 80.386566][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 80.395528][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 80.404772][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 80.413160][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 80.428146][ T8705] device veth0_vlan entered promiscuous mode [ 80.464191][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 80.473753][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 80.484729][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 80.494410][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 80.504922][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 80.514316][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 80.524753][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 80.534553][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 80.545432][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 80.554839][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 80.563274][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 80.571449][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 80.580053][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 80.603692][ T8702] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 80.614300][ T8695] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 80.625524][ T8705] device veth1_vlan entered promiscuous mode [ 80.633669][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 80.643227][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 80.651152][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 80.659296][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 80.666926][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 80.675092][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 80.683327][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 80.692273][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 80.701829][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 80.710781][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 80.722295][ T8697] device veth0_vlan entered promiscuous mode [ 80.737272][ T8695] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 80.771544][ T2744] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 80.780963][ T2744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 80.790090][ T2744] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 80.798499][ T2744] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 80.806939][ T2744] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 80.815727][ T2744] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 80.824559][ T2744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 80.838044][ T8699] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 80.849982][ T8699] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 80.865316][ T8705] device veth0_macvtap entered promiscuous mode [ 80.883766][ T8704] device veth0_vlan entered promiscuous mode [ 80.890401][ T2744] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 80.902319][ T2744] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 80.911010][ T2744] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 80.922018][ T2744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 80.930580][ T2744] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 80.941623][ T2744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 80.950762][ T2744] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 80.963039][ T2744] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 80.970742][ T2744] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 80.989982][ T8697] device veth1_vlan entered promiscuous mode [ 81.011025][ T8705] device veth1_macvtap entered promiscuous mode [ 81.024581][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 81.036777][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 81.046030][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 81.054172][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 81.144295][ T8704] device veth1_vlan entered promiscuous mode [ 81.220924][ T8702] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 81.254841][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 81.274912][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 81.290030][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 81.298034][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 81.306025][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 81.315472][ T8699] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 81.330119][ T8705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 81.342533][ T8705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.353823][ T8705] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 81.365503][ T8705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 81.376617][ T8705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.388055][ T8705] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 81.401980][ T8697] device veth0_macvtap entered promiscuous mode [ 81.419866][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 81.429279][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 81.440034][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 81.459607][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 81.467563][ T8737] hqjagain: lessor 0xffff8880a7e3f400. drm_mode_create_lease_ioctl 500 [ 81.474831][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 81.490360][ T8737] hqjagain: leases 0xffffc90004e2fc88. drm_mode_create_lease_ioctl 501 [ 81.496690][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 81.499398][ T8737] FAULT_INJECTION: forcing a failure. [ 81.499398][ T8737] name failslab, interval 1, probability 0, space 0, times 1 [ 81.512764][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 81.520207][ T8737] CPU: 1 PID: 8737 Comm: syz-executor.3 Not tainted 5.6.0-rc5-syzkaller #0 [ 81.529303][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 81.536636][ T8737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 81.536646][ T8737] Call Trace: [ 81.552532][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 81.554582][ T8737] dump_stack+0x1fb/0x318 [ 81.554601][ T8737] should_fail+0x4b8/0x660 [ 81.574175][ T8737] __should_failslab+0xb9/0xe0 [ 81.574782][ T8704] device veth0_macvtap entered promiscuous mode [ 81.578936][ T8737] ? drm_mode_create_lease_ioctl+0x2f6/0x19b0 [ 81.578945][ T8737] should_failslab+0x9/0x20 [ 81.578955][ T8737] __kmalloc_track_caller+0x79/0x340 [ 81.578971][ T8737] memdup_user+0x25/0xb0 [ 81.578985][ T8737] drm_mode_create_lease_ioctl+0x2f6/0x19b0 [ 81.611313][ T8737] ? drm_lease_owner+0x51/0x60 [ 81.616064][ T8737] drm_ioctl_kernel+0x2cf/0x410 [ 81.620943][ T8737] ? _drm_lease_revoke+0x350/0x350 [ 81.626089][ T8737] drm_ioctl+0x52f/0x890 [ 81.630704][ T8737] ? _drm_lease_revoke+0x350/0x350 [ 81.635901][ T8737] ? do_vfs_ioctl+0x758/0x19d0 [ 81.640653][ T8737] ? tomoyo_file_ioctl+0x23/0x30 [ 81.645572][ T8737] ? drm_ioctl_kernel+0x410/0x410 [ 81.650590][ T8737] __se_sys_ioctl+0x113/0x190 [ 81.655268][ T8737] __x64_sys_ioctl+0x7b/0x90 [ 81.659849][ T8737] do_syscall_64+0xf7/0x1c0 [ 81.664339][ T8737] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 81.670235][ T8737] RIP: 0033:0x45c479 [ 81.674114][ T8737] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 81.693715][ T8737] RSP: 002b:00007f31fb97ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 81.702108][ T8737] RAX: ffffffffffffffda RBX: 00007f31fb97f6d4 RCX: 000000000045c479 [ 81.710063][ T8737] RDX: 0000000020000040 RSI: ffffffffffffffc6 RDI: 0000000000000003 [ 81.718016][ T8737] RBP: 000000000076bf20 R08: 0000000000000000 R09: 0000000000000000 [ 81.725965][ T8737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 81.733915][ T8737] R13: 0000000000000203 R14: 00000000004c3e56 R15: 0000000000000008 [ 81.746549][ T8735] hqjagain: lessor 0xffff8880a7e3f400. drm_master_destroy 332 [ 81.769354][ T8697] device veth1_macvtap entered promiscuous mode 2020/03/15 08:01:30 executed programs: 6 [ 81.779370][ T8735] hqjagain: lessor 0xffff8880a7e3f400. drm_master_destroy 342 [ 81.793005][ T8704] device veth1_macvtap entered promiscuous mode [ 81.807338][ T8735] hqjagain: leases 0xffff8880a7e3f4a8. drm_master_destroy 348 [ 81.821761][ T8735] hqjagain: lessee_idr 0xffff8880a7e3f4f8. drm_master_destroy 349 [ 81.854496][ T8747] hqjagain: lessor 0xffff88809d8fd800. drm_mode_create_lease_ioctl 500 [ 81.878833][ T8747] hqjagain: leases 0xffffc90003a07c88. drm_mode_create_lease_ioctl 501 [ 81.887440][ T8747] lessor 0 [ 81.891037][ T8747] FAULT_INJECTION: forcing a failure. [ 81.891037][ T8747] name failslab, interval 1, probability 0, space 0, times 0 [ 81.891409][ T8697] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 81.904531][ T8747] CPU: 1 PID: 8747 Comm: syz-executor.3 Not tainted 5.6.0-rc5-syzkaller #0 [ 81.921409][ T8697] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.923256][ T8747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 81.923261][ T8747] Call Trace: [ 81.923282][ T8747] dump_stack+0x1fb/0x318 [ 81.923301][ T8747] should_fail+0x4b8/0x660 [ 81.933223][ T8697] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 81.943147][ T8747] __should_failslab+0xb9/0xe0 [ 81.943161][ T8747] should_failslab+0x9/0x20 [ 81.943171][ T8747] kmem_cache_alloc_trace+0x5d/0x2f0 [ 81.943181][ T8747] ? drm_master_create+0x4f/0x2a0 [ 81.943198][ T8747] drm_master_create+0x4f/0x2a0 [ 81.946507][ T8697] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.950856][ T8747] drm_mode_create_lease_ioctl+0xbfc/0x19b0 [ 81.950908][ T8747] drm_ioctl_kernel+0x2cf/0x410 [ 81.956999][ T8697] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 81.965700][ T8747] ? _drm_lease_revoke+0x350/0x350 [ 81.965721][ T8747] drm_ioctl+0x52f/0x890 [ 81.965734][ T8747] ? _drm_lease_revoke+0x350/0x350 [ 81.965749][ T8747] ? do_vfs_ioctl+0x758/0x19d0 [ 81.965769][ T8747] ? tomoyo_file_ioctl+0x23/0x30 [ 82.004943][ T8699] device veth0_vlan entered promiscuous mode [ 82.005805][ T8747] ? drm_ioctl_kernel+0x410/0x410 [ 82.005821][ T8747] __se_sys_ioctl+0x113/0x190 [ 82.005841][ T8747] __x64_sys_ioctl+0x7b/0x90 [ 82.018847][ T8699] device veth1_vlan entered promiscuous mode [ 82.023332][ T8747] do_syscall_64+0xf7/0x1c0 [ 82.023352][ T8747] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 82.023360][ T8747] RIP: 0033:0x45c479 [ 82.023373][ T8747] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 82.049026][ T8699] device veth0_macvtap entered promiscuous mode [ 82.053546][ T8747] RSP: 002b:00007f31fb97ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 82.053558][ T8747] RAX: ffffffffffffffda RBX: 00007f31fb97f6d4 RCX: 000000000045c479 [ 82.053563][ T8747] RDX: 0000000020000040 RSI: ffffffffffffffc6 RDI: 0000000000000003 [ 82.053569][ T8747] RBP: 000000000076bf20 R08: 0000000000000000 R09: 0000000000000000 [ 82.053574][ T8747] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 82.053580][ T8747] R13: 0000000000000203 R14: 00000000004c3e56 R15: 0000000000000008 [ 82.164793][ T8747] drm_master_create failed [ 82.171089][ T8747] hqjagain: leases 0xffffc90003a07c88. drm_mode_create_lease_ioctl 596 [ 82.179882][ T8747] drm_mode_create_lease_ioctl failed: -12 [ 82.188575][ T8745] hqjagain: lessor 0xffff88809d8fd800. drm_master_destroy 332 [ 82.207131][ T8745] hqjagain: lessor 0xffff88809d8fd800. drm_master_destroy 342 [ 82.215204][ T8745] hqjagain: leases 0xffff88809d8fd8a8. drm_master_destroy 348 [ 82.218482][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 82.228083][ T8745] hqjagain: lessee_idr 0xffff88809d8fd8f8. drm_master_destroy 349 [ 82.236278][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 82.248555][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 82.257420][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 82.282489][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 82.291846][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 82.304920][ T8750] hqjagain: lessor 0xffff8880a8eed800. drm_mode_create_lease_ioctl 500 [ 82.316014][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 82.324507][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 82.335286][ T8750] hqjagain: leases 0xffffc90004e6fc88. drm_mode_create_lease_ioctl 501 [ 82.343923][ T8750] lessor 0 [ 82.344581][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 82.347071][ T8750] FAULT_INJECTION: forcing a failure. [ 82.347071][ T8750] name failslab, interval 1, probability 0, space 0, times 0 [ 82.355410][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 82.372380][ T8750] CPU: 1 PID: 8750 Comm: syz-executor.3 Not tainted 5.6.0-rc5-syzkaller #0 [ 82.376406][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 82.383815][ T8750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 82.383820][ T8750] Call Trace: [ 82.383841][ T8750] dump_stack+0x1fb/0x318 [ 82.383860][ T8750] should_fail+0x4b8/0x660 [ 82.383881][ T8750] __should_failslab+0xb9/0xe0 [ 82.383895][ T8750] should_failslab+0x9/0x20 [ 82.392832][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 82.401836][ T8750] kmem_cache_alloc_trace+0x5d/0x2f0 [ 82.401847][ T8750] ? drm_master_create+0x4f/0x2a0 [ 82.401862][ T8750] drm_master_create+0x4f/0x2a0 [ 82.401876][ T8750] drm_mode_create_lease_ioctl+0xbfc/0x19b0 [ 82.401918][ T8750] drm_ioctl_kernel+0x2cf/0x410 [ 82.406675][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 82.409491][ T8750] ? _drm_lease_revoke+0x350/0x350 [ 82.409511][ T8750] drm_ioctl+0x52f/0x890 [ 82.409524][ T8750] ? _drm_lease_revoke+0x350/0x350 [ 82.409537][ T8750] ? do_vfs_ioctl+0x758/0x19d0 [ 82.409558][ T8750] ? tomoyo_file_ioctl+0x23/0x30 [ 82.417173][ T8697] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 82.418693][ T8750] ? drm_ioctl_kernel+0x410/0x410 [ 82.418708][ T8750] __se_sys_ioctl+0x113/0x190 [ 82.418724][ T8750] __x64_sys_ioctl+0x7b/0x90 [ 82.418739][ T8750] do_syscall_64+0xf7/0x1c0 [ 82.418755][ T8750] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 82.426689][ T8697] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.431295][ T8750] RIP: 0033:0x45c479 [ 82.431306][ T8750] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 82.431311][ T8750] RSP: 002b:00007f31fb97ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 82.431321][ T8750] RAX: ffffffffffffffda RBX: 00007f31fb97f6d4 RCX: 000000000045c479 [ 82.431327][ T8750] RDX: 0000000020000040 RSI: ffffffffffffffc6 RDI: 0000000000000003 [ 82.431332][ T8750] RBP: 000000000076bf20 R08: 0000000000000000 R09: 0000000000000000 [ 82.431337][ T8750] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 82.431341][ T8750] R13: 0000000000000203 R14: 00000000004c3e56 R15: 0000000000000008 [ 82.437440][ T8750] drm_master_create failed [ 82.444485][ T8697] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 82.447127][ T8750] hqjagain: leases 0xffffc90004e6fc88. drm_mode_create_lease_ioctl 596 [ 82.453437][ T8697] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.462876][ T8750] drm_mode_create_lease_ioctl failed: -12 [ 82.467877][ T8697] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 82.478514][ T8704] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 82.511512][ T8704] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.527109][ T8704] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 82.569367][ T8704] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.577156][ T8749] hqjagain: lessor 0xffff8880a8eed800. drm_master_destroy 332 [ 82.585868][ T8704] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 82.626296][ T8704] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.658582][ T8704] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.692220][ T8749] hqjagain: lessor 0xffff8880a8eed800. drm_master_destroy 342 [ 82.740466][ T8749] hqjagain: leases 0xffff8880a8eed8a8. drm_master_destroy 348 [ 82.747916][ T8749] hqjagain: lessee_idr 0xffff8880a8eed8f8. drm_master_destroy 349 [ 82.782878][ T8753] hqjagain: lessor 0xffff8880a8fa1000. drm_mode_create_lease_ioctl 500 [ 82.784803][ T8699] device veth1_macvtap entered promiscuous mode [ 82.791769][ T8753] hqjagain: leases 0xffffc90004e9fc88. drm_mode_create_lease_ioctl 501 [ 82.809261][ T8753] FAULT_INJECTION: forcing a failure. [ 82.809261][ T8753] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 82.819006][ T8702] device veth0_vlan entered promiscuous mode [ 82.822623][ T8753] CPU: 1 PID: 8753 Comm: syz-executor.3 Not tainted 5.6.0-rc5-syzkaller #0 [ 82.822633][ T8753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 82.822637][ T8753] Call Trace: [ 82.822654][ T8753] dump_stack+0x1fb/0x318 [ 82.822674][ T8753] should_fail+0x4b8/0x660 [ 82.843519][ T8702] device veth1_vlan entered promiscuous mode [ 82.847319][ T8753] should_fail_alloc_page+0x4f/0x60 [ 82.870623][ T8753] prepare_alloc_pages+0x283/0x460 [ 82.871592][ T8702] device veth0_macvtap entered promiscuous mode [ 82.875759][ T8753] __alloc_pages_nodemask+0xb2/0x5d0 [ 82.875790][ T8753] kmem_getpages+0x4c/0x930 [ 82.886540][ T8702] device veth1_macvtap entered promiscuous mode [ 82.887403][ T8753] cache_grow_begin+0x7e/0x2e0 [ 82.887417][ T8753] ? cache_alloc_pfmemalloc+0x1e/0x1a0 [ 82.904325][ T8702] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 82.908404][ T8753] cache_alloc_refill+0x328/0x400 [ 82.908419][ T8753] ? debug_smp_processor_id+0x9/0x20 [ 82.908435][ T8753] kmem_cache_alloc+0x2b9/0x2e0 [ 82.908448][ T8753] ? radix_tree_node_alloc+0x81/0x390 [ 82.918953][ T8702] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.923850][ T8753] radix_tree_node_alloc+0x81/0x390 [ 82.923872][ T8753] idr_get_free+0x2cb/0x8c0 [ 82.929204][ T8702] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 82.933990][ T8753] ? vprintk_func+0x158/0x170 [ 82.934022][ T8753] idr_alloc+0x14a/0x290 [ 82.934048][ T8753] drm_mode_create_lease_ioctl+0x7cc/0x19b0 [ 82.939483][ T8702] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.949222][ T8753] drm_ioctl_kernel+0x2cf/0x410 [ 82.949236][ T8753] ? _drm_lease_revoke+0x350/0x350 [ 82.954487][ T8702] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 82.958923][ T8753] drm_ioctl+0x52f/0x890 [ 82.958938][ T8753] ? _drm_lease_revoke+0x350/0x350 [ 82.958953][ T8753] ? do_vfs_ioctl+0x758/0x19d0 [ 82.958976][ T8753] ? tomoyo_file_ioctl+0x23/0x30 [ 82.969440][ T8702] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.974053][ T8753] ? drm_ioctl_kernel+0x410/0x410 [ 82.974067][ T8753] __se_sys_ioctl+0x113/0x190 [ 82.974083][ T8753] __x64_sys_ioctl+0x7b/0x90 [ 82.978371][ T8702] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 82.984188][ T8753] do_syscall_64+0xf7/0x1c0 [ 82.984207][ T8753] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 82.984215][ T8753] RIP: 0033:0x45c479 [ 82.984228][ T8753] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 82.994136][ T8702] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.998847][ T8753] RSP: 002b:00007f31fb97ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 82.998858][ T8753] RAX: ffffffffffffffda RBX: 00007f31fb97f6d4 RCX: 000000000045c479 [ 82.998863][ T8753] RDX: 0000000020000040 RSI: ffffffffffffffc6 RDI: 0000000000000003 [ 82.998869][ T8753] RBP: 000000000076bf20 R08: 0000000000000000 R09: 0000000000000000 [ 82.998875][ T8753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 82.998881][ T8753] R13: 0000000000000203 R14: 00000000004c3e56 R15: 0000000000000008 [ 83.161589][ T8753] lessor 0 [ 83.164749][ T8753] new lessee 1 00000000dfb834d1, lessor 0 0000000056f9eef3 [ 83.178972][ T8753] Allocating lease file [ 83.183319][ T8753] Returning fd 5 id 1 [ 83.187281][ T8753] drm_mode_create_lease_ioctl succeeded [ 83.195038][ T8752] hqjagain: lessor 0xffff8880a1254c00. drm_master_destroy 332 [ 83.195502][ T8702] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 83.215044][ T8752] hqjagain: lessor 0xffff8880a8fa1000. drm_master_destroy 332 [ 83.222663][ T8752] hqjagain: lessor 0xffff8880a8fa1000. drm_master_destroy 342 [ 83.241750][ T2816] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 83.248532][ T8752] hqjagain: leases 0xffff8880a8fa10a8. drm_master_destroy 348 [ 83.250664][ T2816] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 83.262063][ T8752] hqjagain: lessee_idr 0xffff8880a8fa10f8. drm_master_destroy 349 [ 83.266638][ T2816] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 83.281631][ T2816] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 83.284564][ T8752] hqjagain: lessor 0xffff8880a1254c00. drm_master_destroy 342 [ 83.290154][ T2816] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 83.297512][ T8752] hqjagain: leases 0xffff8880a1254ca8. drm_master_destroy 348 [ 83.305209][ T2816] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 83.318391][ T8752] hqjagain: lessee_idr 0xffff8880a1254cf8. drm_master_destroy 349 [ 83.322115][ T2816] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 83.338527][ T2816] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 83.347191][ T2816] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 83.358972][ T2816] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 83.367334][ T2816] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 83.376053][ T2816] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 83.389994][ T8756] hqjagain: lessor 0xffff8880a3464000. drm_mode_create_lease_ioctl 500 [ 83.390047][ T2816] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 83.403632][ T8756] hqjagain: leases 0xffffc90004eafc88. drm_mode_create_lease_ioctl 501 [ 83.406988][ T2816] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 83.423584][ T8756] lessor 0 [ 83.426693][ T8756] FAULT_INJECTION: forcing a failure. [ 83.426693][ T8756] name failslab, interval 1, probability 0, space 0, times 0 [ 83.428874][ T2816] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 83.440193][ T8756] CPU: 1 PID: 8756 Comm: syz-executor.3 Not tainted 5.6.0-rc5-syzkaller #0 [ 83.447902][ T2816] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 83.455351][ T8756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 83.455356][ T8756] Call Trace: [ 83.455377][ T8756] dump_stack+0x1fb/0x318 [ 83.455397][ T8756] should_fail+0x4b8/0x660 [ 83.455419][ T8756] __should_failslab+0xb9/0xe0 [ 83.455428][ T8756] ? radix_tree_node_alloc+0x81/0x390 [ 83.455438][ T8756] should_failslab+0x9/0x20 [ 83.455448][ T8756] kmem_cache_alloc+0x56/0x2e0 [ 83.455458][ T8756] ? lock_acquire+0x154/0x250 [ 83.455474][ T8756] radix_tree_node_alloc+0x81/0x390 [ 83.455494][ T8756] idr_get_free+0x2cb/0x8c0 [ 83.455521][ T8756] idr_alloc+0x14a/0x290 [ 83.468914][ T2816] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 83.473549][ T8756] drm_mode_create_lease_ioctl+0x10ac/0x19b0 [ 83.537442][ T8756] drm_ioctl_kernel+0x2cf/0x410 [ 83.542269][ T8756] ? _drm_lease_revoke+0x350/0x350 [ 83.547394][ T8756] drm_ioctl+0x52f/0x890 [ 83.551612][ T8756] ? _drm_lease_revoke+0x350/0x350 [ 83.556697][ T8756] ? do_vfs_ioctl+0x758/0x19d0 [ 83.561443][ T8756] ? tomoyo_file_ioctl+0x23/0x30 [ 83.566394][ T8756] ? drm_ioctl_kernel+0x410/0x410 [ 83.571403][ T8756] __se_sys_ioctl+0x113/0x190 [ 83.576065][ T8756] __x64_sys_ioctl+0x7b/0x90 [ 83.580656][ T8756] do_syscall_64+0xf7/0x1c0 [ 83.585145][ T8756] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 83.591025][ T8756] RIP: 0033:0x45c479 [ 83.594893][ T8756] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 83.614480][ T8756] RSP: 002b:00007f31fb97ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 83.622865][ T8756] RAX: ffffffffffffffda RBX: 00007f31fb97f6d4 RCX: 000000000045c479 [ 83.630813][ T8756] RDX: 0000000020000040 RSI: ffffffffffffffc6 RDI: 0000000000000003 [ 83.638759][ T8756] RBP: 000000000076bf20 R08: 0000000000000000 R09: 0000000000000000 [ 83.646703][ T8756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 83.654651][ T8756] R13: 0000000000000203 R14: 00000000004c3e56 R15: 0000000000000008 [ 83.664767][ T8756] hqjagain: lessor 0xffff88808f5b3400. drm_master_destroy 332 [ 83.673300][ T8756] hqjagain: lessor 0xffff88808f5b3400. drm_master_destroy 342 [ 83.681369][ T8756] hqjagain: leases 0xffff88808f5b34a8. drm_master_destroy 348 [ 83.682131][ T8704] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 83.688873][ T8756] hqjagain: lessee_idr 0xffff88808f5b34f8. drm_master_destroy 349 [ 83.688898][ T8756] hqjagain: leases 0xffffc90004eafc88. drm_mode_create_lease_ioctl 596 [ 83.688903][ T8756] drm_mode_create_lease_ioctl failed: -12 [ 83.708348][ T8704] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.726348][ T8704] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 83.741739][ T8755] hqjagain: lessor 0xffff8880a3464000. drm_master_destroy 332 [ 83.742004][ T8704] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.749522][ T8755] hqjagain: lessor 0xffff8880a3464000. drm_master_destroy 342 [ 83.749529][ T8755] hqjagain: leases 0xffff8880a34640a8. drm_master_destroy 348 [ 83.749536][ T8755] hqjagain: lessee_idr 0xffff8880a34640f8. drm_master_destroy 349 [ 83.783582][ T8759] hqjagain: lessor 0xffff8880a038f000. drm_mode_create_lease_ioctl 500 [ 83.792213][ T8704] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 83.796863][ T8759] hqjagain: leases 0xffffc90004ebfc88. drm_mode_create_lease_ioctl 501 [ 83.808695][ T8704] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.822815][ T8704] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 83.830565][ T8759] lessor 0 [ 83.833822][ T8759] FAULT_INJECTION: forcing a failure. [ 83.833822][ T8759] name failslab, interval 1, probability 0, space 0, times 0 [ 83.850134][ T8702] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 83.873496][ T8702] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.883971][ T8702] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 83.893556][ T8761] FAULT_INJECTION: forcing a failure. [ 83.893556][ T8761] name failslab, interval 1, probability 0, space 0, times 0 [ 83.904533][ T8759] CPU: 1 PID: 8759 Comm: syz-executor.3 Not tainted 5.6.0-rc5-syzkaller #0 [ 83.915550][ T8759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 83.925724][ T8759] Call Trace: [ 83.929017][ T8759] dump_stack+0x1fb/0x318 [ 83.933345][ T8759] should_fail+0x4b8/0x660 [ 83.937775][ T8759] __should_failslab+0xb9/0xe0 [ 83.942524][ T8759] should_failslab+0x9/0x20 [ 83.947010][ T8759] kmem_cache_alloc_trace+0x5d/0x2f0 [ 83.952275][ T8759] ? drm_master_create+0x4f/0x2a0 [ 83.957285][ T8759] drm_master_create+0x4f/0x2a0 [ 83.962123][ T8759] drm_mode_create_lease_ioctl+0xbfc/0x19b0 [ 83.968032][ T8759] drm_ioctl_kernel+0x2cf/0x410 [ 83.972865][ T8759] ? _drm_lease_revoke+0x350/0x350 [ 83.977982][ T8759] drm_ioctl+0x52f/0x890 [ 83.982209][ T8759] ? _drm_lease_revoke+0x350/0x350 [ 83.987316][ T8759] ? do_vfs_ioctl+0x758/0x19d0 [ 83.992069][ T8759] ? tomoyo_file_ioctl+0x23/0x30 [ 83.997000][ T8759] ? drm_ioctl_kernel+0x410/0x410 [ 84.002007][ T8759] __se_sys_ioctl+0x113/0x190 [ 84.006677][ T8759] __x64_sys_ioctl+0x7b/0x90 [ 84.011259][ T8759] do_syscall_64+0xf7/0x1c0 [ 84.015748][ T8759] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 84.021619][ T8759] RIP: 0033:0x45c479 [ 84.025493][ T8759] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 84.045212][ T8759] RSP: 002b:00007f31fb97ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 84.053624][ T8759] RAX: ffffffffffffffda RBX: 00007f31fb97f6d4 RCX: 000000000045c479 [ 84.061578][ T8759] RDX: 0000000020000040 RSI: ffffffffffffffc6 RDI: 0000000000000003 [ 84.069536][ T8759] RBP: 000000000076bf20 R08: 0000000000000000 R09: 0000000000000000 [ 84.077508][ T8759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 84.085462][ T8759] R13: 0000000000000203 R14: 00000000004c3e56 R15: 0000000000000008 [ 84.093448][ T8761] CPU: 0 PID: 8761 Comm: syz-executor.0 Not tainted 5.6.0-rc5-syzkaller #0 [ 84.102036][ T8761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 84.104725][ T8702] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.112138][ T8761] Call Trace: [ 84.112160][ T8761] dump_stack+0x1fb/0x318 [ 84.112178][ T8761] should_fail+0x4b8/0x660 [ 84.112200][ T8761] __should_failslab+0xb9/0xe0 [ 84.112211][ T8761] ? drm_ioctl+0x42b/0x890 [ 84.112220][ T8761] should_failslab+0x9/0x20 [ 84.112235][ T8761] __kmalloc+0x7a/0x340 [ 84.112251][ T8761] ? _drm_lease_revoke+0x350/0x350 [ 84.112261][ T8761] drm_ioctl+0x42b/0x890 [ 84.112281][ T8761] ? do_vfs_ioctl+0x758/0x19d0 [ 84.112305][ T8761] ? tomoyo_file_ioctl+0x23/0x30 [ 84.127534][ T8702] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 84.129733][ T8761] ? drm_ioctl_kernel+0x410/0x410 [ 84.129749][ T8761] __se_sys_ioctl+0x113/0x190 [ 84.129768][ T8761] __x64_sys_ioctl+0x7b/0x90 [ 84.129783][ T8761] do_syscall_64+0xf7/0x1c0 [ 84.129799][ T8761] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 84.129812][ T8761] RIP: 0033:0x45c479 [ 84.134352][ T8702] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.138950][ T8761] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 84.138956][ T8761] RSP: 002b:00007f6030237c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 84.138966][ T8761] RAX: ffffffffffffffda RBX: 00007f60302386d4 RCX: 000000000045c479 [ 84.138972][ T8761] RDX: 0000000020000040 RSI: ffffffffffffffc6 RDI: 0000000000000003 [ 84.138977][ T8761] RBP: 000000000076bf20 R08: 0000000000000000 R09: 0000000000000000 [ 84.138983][ T8761] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 84.138988][ T8761] R13: 0000000000000203 R14: 00000000004c3e56 R15: 0000000000000008 [ 84.142841][ T8759] drm_master_create failed [ 84.148781][ T8702] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 84.152972][ T8759] hqjagain: leases 0xffffc90004ebfc88. drm_mode_create_lease_ioctl 596 [ 84.157186][ T8702] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.168184][ T8759] drm_mode_create_lease_ioctl failed: -12 [ 84.177838][ T8702] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.345783][ T8760] hqjagain: lessor 0xffff8880a038f000. drm_master_destroy 332 [ 84.369081][ T8760] hqjagain: lessor 0xffff8880a038f000. drm_master_destroy 342 [ 84.376655][ T8760] hqjagain: leases 0xffff8880a038f0a8. drm_master_destroy 348 [ 84.385634][ T8760] hqjagain: lessee_idr 0xffff8880a038f0f8. drm_master_destroy 349 [ 84.396260][ T8764] hqjagain: lessor 0xffff88808f6d9800. drm_mode_create_lease_ioctl 500 [ 84.406955][ T8764] hqjagain: leases 0xffffc90004ecfc88. drm_mode_create_lease_ioctl 501 [ 84.415559][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 84.438866][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 84.457101][ T8764] lessor 0 [ 84.466068][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 84.474114][ T8764] FAULT_INJECTION: forcing a failure. [ 84.474114][ T8764] name failslab, interval 1, probability 0, space 0, times 0 [ 84.493222][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 84.509395][ T8764] CPU: 0 PID: 8764 Comm: syz-executor.3 Not tainted 5.6.0-rc5-syzkaller #0 [ 84.518006][ T8764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 84.528069][ T8764] Call Trace: [ 84.531361][ T8764] dump_stack+0x1fb/0x318 [ 84.535698][ T8764] should_fail+0x4b8/0x660 [ 84.540124][ T8764] __should_failslab+0xb9/0xe0 [ 84.544891][ T8764] should_failslab+0x9/0x20 [ 84.549393][ T8764] kmem_cache_alloc_trace+0x5d/0x2f0 [ 84.554669][ T8764] ? drm_master_create+0x4f/0x2a0 [ 84.559699][ T8764] drm_master_create+0x4f/0x2a0 [ 84.564553][ T8764] drm_mode_create_lease_ioctl+0xbfc/0x19b0 [ 84.570489][ T8764] drm_ioctl_kernel+0x2cf/0x410 [ 84.575340][ T8764] ? _drm_lease_revoke+0x350/0x350 [ 84.580460][ T8764] drm_ioctl+0x52f/0x890 [ 84.584708][ T8764] ? _drm_lease_revoke+0x350/0x350 [ 84.589823][ T8764] ? do_vfs_ioctl+0x758/0x19d0 [ 84.594595][ T8764] ? tomoyo_file_ioctl+0x23/0x30 [ 84.599533][ T8764] ? drm_ioctl_kernel+0x410/0x410 [ 84.604557][ T8764] __se_sys_ioctl+0x113/0x190 [ 84.609240][ T8764] __x64_sys_ioctl+0x7b/0x90 [ 84.613819][ T8764] do_syscall_64+0xf7/0x1c0 [ 84.618308][ T8764] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 84.624175][ T8764] RIP: 0033:0x45c479 [ 84.628047][ T8764] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 84.647634][ T8764] RSP: 002b:00007f31fb97ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 84.656160][ T8764] RAX: ffffffffffffffda RBX: 00007f31fb97f6d4 RCX: 000000000045c479 [ 84.664122][ T8764] RDX: 0000000020000040 RSI: ffffffffffffffc6 RDI: 0000000000000003 [ 84.672095][ T8764] RBP: 000000000076bf20 R08: 0000000000000000 R09: 0000000000000000 [ 84.680068][ T8764] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 84.688051][ T8764] R13: 0000000000000203 R14: 00000000004c3e56 R15: 0000000000000008 [ 84.698047][ T8764] drm_master_create failed [ 84.698493][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 84.703257][ T8764] hqjagain: leases 0xffffc90004ecfc88. drm_mode_create_lease_ioctl 596 [ 84.711534][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 84.727798][ T8764] drm_mode_create_lease_ioctl failed: -12 [ 84.728300][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 84.748585][ T8763] hqjagain: lessor 0xffff88808f6d9800. drm_master_destroy 332 [ 84.756208][ T8763] hqjagain: lessor 0xffff88808f6d9800. drm_master_destroy 342 [ 84.763816][ T8763] hqjagain: leases 0xffff88808f6d98a8. drm_master_destroy 348 [ 84.771364][ T8763] hqjagain: lessee_idr 0xffff88808f6d98f8. drm_master_destroy 349 [ 84.789296][ T8699] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 84.802767][ T8699] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.812912][ T8699] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 84.823420][ T8699] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.833495][ T8699] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 84.843990][ T8699] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.854810][ T8699] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 84.865294][ T8699] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.877796][ T8699] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 84.888283][ T8699] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.899986][ T8699] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 85.004763][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 85.013504][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 85.024667][ T8699] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 85.036493][ T8699] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 85.046484][ T8699] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 85.057226][ T8699] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 85.067084][ T8699] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 85.077580][ T8699] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 85.087778][ T8699] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 85.098322][ T8699] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 85.108118][ T8699] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 85.119302][ T8699] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 85.130797][ T8699] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 85.182123][ T2744] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 85.194351][ T2744] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 85.243203][ T8775] FAULT_INJECTION: forcing a failure. [ 85.243203][ T8775] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 85.256633][ T8775] CPU: 0 PID: 8775 Comm: syz-executor.4 Not tainted 5.6.0-rc5-syzkaller #0 [ 85.265210][ T8775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 85.275319][ T8775] Call Trace: [ 85.278610][ T8775] dump_stack+0x1fb/0x318 [ 85.282951][ T8775] should_fail+0x4b8/0x660 [ 85.287380][ T8775] should_fail_alloc_page+0x4f/0x60 [ 85.292589][ T8775] prepare_alloc_pages+0x283/0x460 [ 85.297708][ T8775] __alloc_pages_nodemask+0xb2/0x5d0 [ 85.302993][ T8775] kmem_getpages+0x4c/0x930 [ 85.307478][ T8775] cache_grow_begin+0x7e/0x2e0 [ 85.312224][ T8775] ? cache_alloc_pfmemalloc+0x1e/0x1a0 [ 85.317672][ T8775] cache_alloc_refill+0x328/0x400 [ 85.322678][ T8775] ? debug_smp_processor_id+0x9/0x20 [ 85.327974][ T8775] __kmalloc+0x318/0x340 [ 85.332228][ T8775] ? kzalloc+0x1a/0x30 [ 85.336300][ T8775] kzalloc+0x1a/0x30 [ 85.340215][ T8775] tomoyo_commit_ok+0x23/0x1d0 [ 85.344968][ T8775] ? tomoyo_update_domain+0x4b7/0x7c0 [ 85.350347][ T8775] tomoyo_update_domain+0x4e4/0x7c0 [ 85.355535][ T8775] ? tomoyo_merge_path2_acl+0xe0/0xe0 [ 85.360902][ T8775] ? tomoyo_same_path_number_acl+0x2b0/0x2b0 [ 85.366875][ T8775] tomoyo_write_file+0x79c/0x1040 [ 85.371915][ T8775] tomoyo_supervisor+0x1005/0x1310 [ 85.377024][ T8775] ? vsnprintf+0x131/0x1bc0 [ 85.381538][ T8775] tomoyo_path_number_perm+0x49b/0x690 [ 85.387013][ T8775] ? smack_file_ioctl+0x277/0x2e0 [ 85.392040][ T8775] tomoyo_file_ioctl+0x23/0x30 [ 85.396794][ T8775] security_file_ioctl+0x68/0xd0 [ 85.401713][ T8775] __se_sys_ioctl+0x4e/0x190 [ 85.406295][ T8775] ? do_syscall_64+0x1d/0x1c0 [ 85.410967][ T8775] __x64_sys_ioctl+0x7b/0x90 [ 85.415567][ T8775] do_syscall_64+0xf7/0x1c0 [ 85.420096][ T8775] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 85.425965][ T8775] RIP: 0033:0x45c479 [ 85.429848][ T8775] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 85.449454][ T8775] RSP: 002b:00007fd522751c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 85.457906][ T8775] RAX: ffffffffffffffda RBX: 00007fd5227526d4 RCX: 000000000045c479 [ 85.465917][ T8775] RDX: 0000000020000040 RSI: ffffffffffffffc6 RDI: 0000000000000003 [ 85.473879][ T8775] RBP: 000000000076bf20 R08: 0000000000000000 R09: 0000000000000000 [ 85.481829][ T8775] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 85.489814][ T8775] R13: 0000000000000203 R14: 00000000004c3e56 R15: 0000000000000008 [ 85.503115][ T0] NOHZ: local_softirq_pending 08 [ 85.534512][ T8775] hqjagain: lessor 0xffff88809feaa000. drm_mode_create_lease_ioctl 500 [ 85.542860][ T8775] hqjagain: leases 0xffffc90004effc88. drm_mode_create_lease_ioctl 501 [ 85.554971][ T8775] lessor 0 [ 85.558044][ T8775] new lessee 1 000000006c4d9b27, lessor 0 00000000f44c7b8a [ 85.567229][ T8776] FAULT_INJECTION: forcing a failure. [ 85.567229][ T8776] name failslab, interval 1, probability 0, space 0, times 0 [ 85.568287][ T8775] Allocating lease file [ 85.585221][ T8775] Returning fd 5 id 1 [ 85.591455][ T8775] drm_mode_create_lease_ioctl succeeded [ 85.597149][ T8776] CPU: 0 PID: 8776 Comm: syz-executor.2 Not tainted 5.6.0-rc5-syzkaller #0 [ 85.605722][ T8776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 85.605727][ T8776] Call Trace: [ 85.605743][ T8776] dump_stack+0x1fb/0x318 [ 85.605762][ T8776] should_fail+0x4b8/0x660 [ 85.605784][ T8776] __should_failslab+0xb9/0xe0 [ 85.605795][ T8776] ? drm_ioctl+0x42b/0x890 [ 85.605804][ T8776] should_failslab+0x9/0x20 [ 85.605813][ T8776] __kmalloc+0x7a/0x340 [ 85.605828][ T8776] ? _drm_lease_revoke+0x350/0x350 [ 85.605837][ T8776] drm_ioctl+0x42b/0x890 [ 85.605856][ T8776] ? do_vfs_ioctl+0x758/0x19d0 [ 85.605877][ T8776] ? tomoyo_file_ioctl+0x23/0x30 [ 85.605891][ T8776] ? drm_ioctl_kernel+0x410/0x410 [ 85.605908][ T8776] __se_sys_ioctl+0x113/0x190 [ 85.655044][ T8776] __x64_sys_ioctl+0x7b/0x90 [ 85.669719][ T8776] do_syscall_64+0xf7/0x1c0 [ 85.669739][ T8776] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 85.669748][ T8776] RIP: 0033:0x45c479 [ 85.669757][ T8776] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 85.669762][ T8776] RSP: 002b:00007fa1661d5c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 85.669772][ T8776] RAX: ffffffffffffffda RBX: 00007fa1661d66d4 RCX: 000000000045c479 [ 85.669777][ T8776] RDX: 0000000020000040 RSI: ffffffffffffffc6 RDI: 0000000000000003 [ 85.669783][ T8776] RBP: 000000000076bf20 R08: 0000000000000000 R09: 0000000000000000 [ 85.669788][ T8776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 85.669798][ T8776] R13: 0000000000000203 R14: 00000000004c3e56 R15: 0000000000000008 [ 85.782038][ T8772] hqjagain: lessor 0xffff88808c189000. drm_master_destroy 332 [ 85.796853][ T8772] hqjagain: lessor 0xffff88808c189000. drm_master_destroy 342 [ 85.811690][ T8772] hqjagain: leases 0xffff88808c1890a8. drm_master_destroy 348 [ 85.819805][ T8772] hqjagain: lessee_idr 0xffff88808c1890f8. drm_master_destroy 349 [ 85.827925][ T8774] hqjagain: lessor 0xffff88809feaa000. drm_master_destroy 332 [ 85.837546][ T8774] hqjagain: lessor 0xffff88809feaa000. drm_master_destroy 342 [ 85.866467][ T8774] hqjagain: leases 0xffff88809feaa0a8. drm_master_destroy 348 [ 85.882679][ T8774] hqjagain: lessee_idr 0xffff88809feaa0f8. drm_master_destroy 349 [ 85.919319][ T8777] hqjagain: lessor 0xffff88809e8c2c00. drm_master_destroy 332 [ 85.926935][ T8777] hqjagain: lessor 0xffff88809e8c2c00. drm_master_destroy 342 [ 85.941271][ T8777] hqjagain: leases 0xffff88809e8c2ca8. drm_master_destroy 348 [ 85.951798][ T8777] hqjagain: lessee_idr 0xffff88809e8c2cf8. drm_master_destroy 349 [ 85.972331][ T8784] hqjagain: lessor 0xffff888094f81400. drm_mode_create_lease_ioctl 500 [ 85.983425][ T8784] hqjagain: leases 0xffffc900053f7c88. drm_mode_create_lease_ioctl 501 [ 85.994589][ T8784] FAULT_INJECTION: forcing a failure. [ 85.994589][ T8784] name failslab, interval 1, probability 0, space 0, times 0 [ 86.039598][ T8784] CPU: 0 PID: 8784 Comm: syz-executor.5 Not tainted 5.6.0-rc5-syzkaller #0 [ 86.048256][ T8784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 86.058315][ T8784] Call Trace: [ 86.061772][ T8784] dump_stack+0x1fb/0x318 [ 86.066175][ T8784] should_fail+0x4b8/0x660 [ 86.070708][ T8784] __should_failslab+0xb9/0xe0 [ 86.075470][ T8784] ? drm_mode_create_lease_ioctl+0x3b3/0x19b0 [ 86.081534][ T8784] should_failslab+0x9/0x20 [ 86.086121][ T8784] __kmalloc+0x7a/0x340 [ 86.090261][ T8784] drm_mode_create_lease_ioctl+0x3b3/0x19b0 [ 86.096155][ T8784] drm_ioctl_kernel+0x2cf/0x410 [ 86.100986][ T8784] ? _drm_lease_revoke+0x350/0x350 [ 86.106077][ T8784] drm_ioctl+0x52f/0x890 [ 86.110309][ T8784] ? _drm_lease_revoke+0x350/0x350 [ 86.115463][ T8784] ? do_vfs_ioctl+0x758/0x19d0 [ 86.120386][ T8784] ? tomoyo_file_ioctl+0x23/0x30 [ 86.125305][ T8784] ? drm_ioctl_kernel+0x410/0x410 [ 86.130322][ T8784] __se_sys_ioctl+0x113/0x190 [ 86.134992][ T8784] __x64_sys_ioctl+0x7b/0x90 [ 86.139566][ T8784] do_syscall_64+0xf7/0x1c0 [ 86.144050][ T8784] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 86.149938][ T8784] RIP: 0033:0x45c479 [ 86.153820][ T8784] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 86.173412][ T8784] RSP: 002b:00007fadf9cdbc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 86.181810][ T8784] RAX: ffffffffffffffda RBX: 00007fadf9cdc6d4 RCX: 000000000045c479 [ 86.189816][ T8784] RDX: 0000000020000040 RSI: ffffffffffffffc6 RDI: 0000000000000003 [ 86.197791][ T8784] RBP: 000000000076bf20 R08: 0000000000000000 R09: 0000000000000000 [ 86.205802][ T8784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 86.213776][ T8784] R13: 0000000000000203 R14: 00000000004c3e56 R15: 0000000000000008 [ 86.230956][ T8784] lease object lookup failed: -12 [ 86.237228][ T8783] hqjagain: lessor 0xffff888094f81400. drm_master_destroy 332 [ 86.248877][ T8783] hqjagain: lessor 0xffff888094f81400. drm_master_destroy 342 [ 86.256423][ T8783] hqjagain: leases 0xffff888094f814a8. drm_master_destroy 348 [ 86.264112][ T8783] hqjagain: lessee_idr 0xffff888094f814f8. drm_master_destroy 349 [ 86.290849][ T8795] hqjagain: lessor 0xffff8880a4686c00. drm_mode_create_lease_ioctl 500 [ 86.310914][ T8798] FAULT_INJECTION: forcing a failure. [ 86.310914][ T8798] name failslab, interval 1, probability 0, space 0, times 0 [ 86.323253][ T8795] hqjagain: leases 0xffffc90004f67c88. drm_mode_create_lease_ioctl 501 [ 86.329208][ T8798] CPU: 1 PID: 8798 Comm: syz-executor.1 Not tainted 5.6.0-rc5-syzkaller #0 [ 86.340789][ T8798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 86.350837][ T8798] Call Trace: [ 86.350854][ T8798] dump_stack+0x1fb/0x318 [ 86.350874][ T8798] should_fail+0x4b8/0x660 [ 86.350898][ T8798] __should_failslab+0xb9/0xe0 [ 86.350908][ T8798] ? kzalloc+0x1a/0x30 [ 86.350920][ T8798] should_failslab+0x9/0x20 [ 86.358509][ T8798] __kmalloc+0x7a/0x340 [ 86.358531][ T8798] kzalloc+0x1a/0x30 [ 86.358541][ T8798] tomoyo_commit_ok+0x23/0x1d0 [ 86.358550][ T8798] ? tomoyo_update_domain+0x4b7/0x7c0 [ 86.358564][ T8798] tomoyo_update_domain+0x4e4/0x7c0 [ 86.358571][ T8798] ? tomoyo_merge_path2_acl+0xe0/0xe0 [ 86.358583][ T8798] ? tomoyo_same_path_number_acl+0x2b0/0x2b0 [ 86.367752][ T8798] tomoyo_write_file+0x79c/0x1040 [ 86.367790][ T8798] tomoyo_supervisor+0x1005/0x1310 [ 86.376330][ T8798] ? vsnprintf+0x131/0x1bc0 [ 86.376367][ T8798] tomoyo_path_number_perm+0x49b/0x690 [ 86.380832][ T8795] lessor 0 [ 86.384920][ T8798] ? smack_file_ioctl+0x277/0x2e0 [ 86.389965][ T8795] new lessee 1 00000000877fbc3e, lessor 0 000000008f9c1431 [ 86.395037][ T8798] tomoyo_file_ioctl+0x23/0x30 [ 86.395050][ T8798] security_file_ioctl+0x68/0xd0 [ 86.395066][ T8798] __se_sys_ioctl+0x4e/0x190 [ 86.400539][ T8795] Allocating lease file [ 86.405598][ T8798] ? do_syscall_64+0x1d/0x1c0 [ 86.405615][ T8798] __x64_sys_ioctl+0x7b/0x90 [ 86.405631][ T8798] do_syscall_64+0xf7/0x1c0 [ 86.411904][ T8795] FAULT_INJECTION: forcing a failure. [ 86.411904][ T8795] name failslab, interval 1, probability 0, space 0, times 0 [ 86.416708][ T8798] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 86.416719][ T8798] RIP: 0033:0x45c479 [ 86.416729][ T8798] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 86.416734][ T8798] RSP: 002b:00007ff47b340c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 86.416748][ T8798] RAX: ffffffffffffffda RBX: 00007ff47b3416d4 RCX: 000000000045c479 [ 86.538228][ T8798] RDX: 0000000020000040 RSI: ffffffffffffffc6 RDI: 0000000000000003 [ 86.546190][ T8798] RBP: 000000000076bf20 R08: 0000000000000000 R09: 0000000000000000 [ 86.554228][ T8798] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 86.562185][ T8798] R13: 0000000000000203 R14: 00000000004c3e56 R15: 0000000000000008 [ 86.570390][ T8795] CPU: 0 PID: 8795 Comm: syz-executor.4 Not tainted 5.6.0-rc5-syzkaller #0 [ 86.578992][ T8795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 86.580117][ T8798] ERROR: Out of memory at tomoyo_memory_ok. [ 86.589152][ T8795] Call Trace: [ 86.589174][ T8795] dump_stack+0x1fb/0x318 [ 86.589193][ T8795] should_fail+0x4b8/0x660 [ 86.589217][ T8795] __should_failslab+0xb9/0xe0 [ 86.589227][ T8795] ? __alloc_file+0x2c/0x390 [ 86.589236][ T8795] should_failslab+0x9/0x20 [ 86.589245][ T8795] kmem_cache_alloc+0x56/0x2e0 [ 86.589261][ T8795] __alloc_file+0x2c/0x390 [ 86.589269][ T8795] ? vprintk_func+0x158/0x170 [ 86.589284][ T8795] alloc_empty_file+0xac/0x1b0 [ 86.589296][ T8795] dentry_open+0x63/0x130 [ 86.589310][ T8795] drm_mode_create_lease_ioctl+0x11df/0x19b0 [ 86.589359][ T8795] drm_ioctl_kernel+0x2cf/0x410 [ 86.589370][ T8795] ? _drm_lease_revoke+0x350/0x350 [ 86.589387][ T8795] drm_ioctl+0x52f/0x890 [ 86.589401][ T8795] ? _drm_lease_revoke+0x350/0x350 [ 86.589414][ T8795] ? do_vfs_ioctl+0x758/0x19d0 [ 86.589434][ T8795] ? tomoyo_file_ioctl+0x23/0x30 [ 86.598598][ T8795] ? drm_ioctl_kernel+0x410/0x410 [ 86.598613][ T8795] __se_sys_ioctl+0x113/0x190 [ 86.598631][ T8795] __x64_sys_ioctl+0x7b/0x90 [ 86.598647][ T8795] do_syscall_64+0xf7/0x1c0 [ 86.598663][ T8795] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 86.598673][ T8795] RIP: 0033:0x45c479 [ 86.598683][ T8795] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 86.598688][ T8795] RSP: 002b:00007fd522751c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 86.607489][ T8795] RAX: ffffffffffffffda RBX: 00007fd5227526d4 RCX: 000000000045c479 [ 86.607495][ T8795] RDX: 0000000020000040 RSI: ffffffffffffffc6 RDI: 0000000000000003 [ 86.607500][ T8795] RBP: 000000000076bf20 R08: 0000000000000000 R09: 0000000000000000 [ 86.607505][ T8795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 86.607511][ T8795] R13: 0000000000000203 R14: 00000000004c3e56 R15: 0000000000000008 2020/03/15 08:01:35 executed programs: 25 [ 86.805377][ T8795] hqjagain: lessor 0xffff8880a4686c00. drm_mode_create_lease_ioctl 586 [ 86.816060][ T8795] hqjagain: lessee 0xffff8880a0deb400. drm_mode_create_lease_ioctl 587 [ 86.838714][ T8795] hqjagain: leases 0xffffc90004f67c88. drm_mode_create_lease_ioctl 588 [ 86.863592][ T8795] hqjagain: lessor 0xffff8880a0deb400. drm_master_destroy 332 [ 86.941186][ T8795] hqjagain: lessor 0xffff8880a0deb400. drm_master_destroy 342 [ 86.990950][ T8826] FAULT_INJECTION: forcing a failure. [ 86.990950][ T8826] name failslab, interval 1, probability 0, space 0, times 0 [ 87.003626][ T8795] hqjagain: leases 0xffff8880a0deb4a8. drm_master_destroy 348 [ 87.034897][ T8795] hqjagain: lessee_idr 0xffff8880a0deb4f8. drm_master_destroy 349 [ 87.053681][ T8826] CPU: 1 PID: 8826 Comm: syz-executor.1 Not tainted 5.6.0-rc5-syzkaller #0 [ 87.062308][ T8826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 87.068005][ T8795] ================================================================== [ 87.072360][ T8826] Call Trace: [ 87.072383][ T8826] dump_stack+0x1fb/0x318 [ 87.080551][ T8795] BUG: KASAN: use-after-free in idr_destroy+0xa3/0x260 [ 87.083840][ T8826] should_fail+0x4b8/0x660 [ 87.088134][ T8795] Read of size 8 at addr ffff8880a1bc40e8 by task syz-executor.4/8795 [ 87.088141][ T8795] [ 87.094987][ T8826] __should_failslab+0xb9/0xe0 [ 87.114539][ T8826] ? drm_ioctl+0x42b/0x890 [ 87.118950][ T8826] should_failslab+0x9/0x20 [ 87.123439][ T8826] __kmalloc+0x7a/0x340 [ 87.127587][ T8826] ? _drm_lease_revoke+0x350/0x350 [ 87.133555][ T8826] drm_ioctl+0x42b/0x890 [ 87.137806][ T8826] ? do_vfs_ioctl+0x758/0x19d0 [ 87.142580][ T8826] ? tomoyo_file_ioctl+0x23/0x30 [ 87.147503][ T8826] ? drm_ioctl_kernel+0x410/0x410 [ 87.152516][ T8826] __se_sys_ioctl+0x113/0x190 [ 87.157184][ T8826] __x64_sys_ioctl+0x7b/0x90 [ 87.161764][ T8826] do_syscall_64+0xf7/0x1c0 [ 87.166256][ T8826] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 87.172128][ T8826] RIP: 0033:0x45c479 [ 87.176003][ T8826] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 87.195587][ T8826] RSP: 002b:00007ff47b340c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 87.203975][ T8826] RAX: ffffffffffffffda RBX: 00007ff47b3416d4 RCX: 000000000045c479 [ 87.212110][ T8826] RDX: 0000000020000040 RSI: ffffffffffffffc6 RDI: 0000000000000003 [ 87.220076][ T8826] RBP: 000000000076bf20 R08: 0000000000000000 R09: 0000000000000000 [ 87.228047][ T8826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 87.236015][ T8826] R13: 0000000000000203 R14: 00000000004c3e56 R15: 0000000000000008 [ 87.244009][ T8795] CPU: 0 PID: 8795 Comm: syz-executor.4 Not tainted 5.6.0-rc5-syzkaller #0 [ 87.252593][ T8795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 87.262640][ T8795] Call Trace: [ 87.265937][ T8795] dump_stack+0x1fb/0x318 [ 87.265957][ T8795] print_address_description+0x74/0x5c0 [ 87.265969][ T8795] ? vprintk_default+0x28/0x30 [ 87.275811][ T8795] ? vprintk_func+0x158/0x170 [ 87.275822][ T8795] ? printk+0x62/0x8d [ 87.275845][ T8795] __kasan_report+0x149/0x1c0 [ 87.289215][ T8795] ? idr_destroy+0xa3/0x260 [ 87.289232][ T8795] kasan_report+0x26/0x50 [ 87.289248][ T8795] __asan_report_load8_noabort+0x14/0x20 [ 87.289256][ T8795] idr_destroy+0xa3/0x260 [ 87.289276][ T8795] drm_mode_create_lease_ioctl+0x12b3/0x19b0 [ 87.318754][ T8795] drm_ioctl_kernel+0x2cf/0x410 [ 87.323613][ T8795] ? _drm_lease_revoke+0x350/0x350 [ 87.328719][ T8795] drm_ioctl+0x52f/0x890 [ 87.332943][ T8795] ? _drm_lease_revoke+0x350/0x350 [ 87.338033][ T8795] ? do_vfs_ioctl+0x758/0x19d0 [ 87.342795][ T8795] ? tomoyo_file_ioctl+0x23/0x30 [ 87.347732][ T8795] ? drm_ioctl_kernel+0x410/0x410 [ 87.352737][ T8795] __se_sys_ioctl+0x113/0x190 [ 87.357396][ T8795] __x64_sys_ioctl+0x7b/0x90 [ 87.361979][ T8795] do_syscall_64+0xf7/0x1c0 [ 87.366523][ T8795] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 87.372495][ T8795] RIP: 0033:0x45c479 [ 87.376382][ T8795] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 87.395971][ T8795] RSP: 002b:00007fd522751c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 87.404380][ T8795] RAX: ffffffffffffffda RBX: 00007fd5227526d4 RCX: 000000000045c479 [ 87.412333][ T8795] RDX: 0000000020000040 RSI: ffffffffffffffc6 RDI: 0000000000000003 [ 87.420813][ T8795] RBP: 000000000076bf20 R08: 0000000000000000 R09: 0000000000000000 [ 87.428775][ T8795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 87.436728][ T8795] R13: 0000000000000203 R14: 00000000004c3e56 R15: 0000000000000008 [ 87.444690][ T8795] [ 87.447001][ T8795] Allocated by task 8795: [ 87.451309][ T8795] __kasan_kmalloc+0x118/0x1c0 [ 87.456046][ T8795] kasan_slab_alloc+0xf/0x20 [ 87.460618][ T8795] kmem_cache_alloc+0x1f5/0x2e0 [ 87.465452][ T8795] radix_tree_node_alloc+0x81/0x390 [ 87.470624][ T8795] idr_get_free+0x2cb/0x8c0 [ 87.475107][ T8795] idr_alloc+0x14a/0x290 [ 87.479345][ T8795] drm_mode_create_lease_ioctl+0x7cc/0x19b0 [ 87.485221][ T8795] drm_ioctl_kernel+0x2cf/0x410 [ 87.490053][ T8795] drm_ioctl+0x52f/0x890 [ 87.494279][ T8795] __se_sys_ioctl+0x113/0x190 [ 87.498945][ T8795] __x64_sys_ioctl+0x7b/0x90 [ 87.503519][ T8795] do_syscall_64+0xf7/0x1c0 [ 87.508006][ T8795] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 87.513869][ T8795] [ 87.516175][ T8795] Freed by task 8699: [ 87.520146][ T8795] __kasan_slab_free+0x12e/0x1e0 [ 87.525077][ T8795] kasan_slab_free+0xe/0x10 [ 87.529560][ T8795] kmem_cache_free+0x81/0xf0 [ 87.534134][ T8795] radix_tree_node_rcu_free+0x73/0x80 [ 87.539486][ T8795] rcu_core+0x81b/0x10c0 [ 87.543729][ T8795] rcu_core_si+0x9/0x10 [ 87.547859][ T8795] __do_softirq+0x283/0x7bd [ 87.552333][ T8795] [ 87.554640][ T8795] The buggy address belongs to the object at ffff8880a1bc40c0 [ 87.554640][ T8795] which belongs to the cache radix_tree_node of size 576 [ 87.569037][ T8795] The buggy address is located 40 bytes inside of [ 87.569037][ T8795] 576-byte region [ffff8880a1bc40c0, ffff8880a1bc4300) [ 87.583086][ T8795] The buggy address belongs to the page: [ 87.588728][ T8795] page:ffffea000286f100 refcount:1 mapcount:0 mapping:ffff8880aa4311c0 index:0xffff8880a1bc4ffb [ 87.599152][ T8795] flags: 0xfffe0000000200(slab) [ 87.603994][ T8795] raw: 00fffe0000000200 ffffea0002464148 ffffea0002a80f88 ffff8880aa4311c0 [ 87.612611][ T8795] raw: ffff8880a1bc4ffb ffff8880a1bc40c0 0000000100000005 0000000000000000 [ 87.621188][ T8795] page dumped because: kasan: bad access detected [ 87.627586][ T8795] [ 87.629891][ T8795] Memory state around the buggy address: [ 87.635510][ T8795] ffff8880a1bc3f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 87.643564][ T8795] ffff8880a1bc4000: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 87.651613][ T8795] >ffff8880a1bc4080: fc fc fc fc fc fc fc fc fb fb fb fb fb fb fb fb [ 87.659654][ T8795] ^ [ 87.667096][ T8795] ffff8880a1bc4100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 87.675138][ T8795] ffff8880a1bc4180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 87.683180][ T8795] ================================================================== [ 87.691226][ T8795] Disabling lock debugging due to kernel taint [ 87.715114][ T8795] Kernel panic - not syncing: panic_on_warn set ... [ 87.721743][ T8795] CPU: 0 PID: 8795 Comm: syz-executor.4 Tainted: G B 5.6.0-rc5-syzkaller #0 [ 87.731817][ T8795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 87.741865][ T8795] Call Trace: [ 87.745263][ T8795] dump_stack+0x1fb/0x318 [ 87.749574][ T8795] panic+0x264/0x7a9 [ 87.753443][ T8795] ? __kasan_report+0x193/0x1c0 [ 87.758402][ T8795] ? trace_hardirqs_on+0x34/0x80 [ 87.763327][ T8795] ? __kasan_report+0x193/0x1c0 [ 87.768160][ T8795] __kasan_report+0x1b9/0x1c0 [ 87.772946][ T8795] ? idr_destroy+0xa3/0x260 [ 87.777434][ T8795] kasan_report+0x26/0x50 [ 87.781744][ T8795] __asan_report_load8_noabort+0x14/0x20 [ 87.787351][ T8795] idr_destroy+0xa3/0x260 [ 87.791671][ T8795] drm_mode_create_lease_ioctl+0x12b3/0x19b0 [ 87.797655][ T8795] drm_ioctl_kernel+0x2cf/0x410 [ 87.802487][ T8795] ? _drm_lease_revoke+0x350/0x350 [ 87.807581][ T8795] drm_ioctl+0x52f/0x890 [ 87.811810][ T8795] ? _drm_lease_revoke+0x350/0x350 [ 87.816896][ T8795] ? do_vfs_ioctl+0x758/0x19d0 [ 87.821668][ T8795] ? tomoyo_file_ioctl+0x23/0x30 [ 87.826582][ T8795] ? drm_ioctl_kernel+0x410/0x410 [ 87.831585][ T8795] __se_sys_ioctl+0x113/0x190 [ 87.836248][ T8795] __x64_sys_ioctl+0x7b/0x90 [ 87.840830][ T8795] do_syscall_64+0xf7/0x1c0 [ 87.845322][ T8795] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 87.851198][ T8795] RIP: 0033:0x45c479 [ 87.855065][ T8795] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 87.874644][ T8795] RSP: 002b:00007fd522751c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 87.883032][ T8795] RAX: ffffffffffffffda RBX: 00007fd5227526d4 RCX: 000000000045c479 [ 87.890978][ T8795] RDX: 0000000020000040 RSI: ffffffffffffffc6 RDI: 0000000000000003 [ 87.900160][ T8795] RBP: 000000000076bf20 R08: 0000000000000000 R09: 0000000000000000 [ 87.908126][ T8795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 87.916129][ T8795] R13: 0000000000000203 R14: 00000000004c3e56 R15: 0000000000000008 [ 87.925518][ T8795] Kernel Offset: disabled [ 87.929838][ T8795] Rebooting in 86400 seconds..