[[0;32m  OK  [0m] Started Getty on tty4.
[[0;32m  OK  [0m] Started Getty on tty3.
[[0;32m  OK  [0m] Started Getty on tty2.
[[0;32m  OK  [0m] Started Serial Getty on ttyS0.
[[0;32m  OK  [0m] Started getty on tty2-tty6 if dbus and logind are not available.

Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '10.128.0.114' (ECDSA) to the list of known hosts.
syzkaller login: [  310.873529][ T6827] IPVS: ftp: loaded support on port[0] = 21
[  310.969100][ T6827] chnl_net:caif_netlink_parms(): no params data found
[  311.025794][ T6827] bridge0: port 1(bridge_slave_0) entered blocking state
[  311.033431][ T6827] bridge0: port 1(bridge_slave_0) entered disabled state
[  311.042637][ T6827] device bridge_slave_0 entered promiscuous mode
[  311.051737][ T6827] bridge0: port 2(bridge_slave_1) entered blocking state
[  311.058829][ T6827] bridge0: port 2(bridge_slave_1) entered disabled state
[  311.067719][ T6827] device bridge_slave_1 entered promiscuous mode
[  311.090924][ T6827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  311.102358][ T6827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  311.125023][ T6827] team0: Port device team_slave_0 added
[  311.133643][ T6827] team0: Port device team_slave_1 added
[  311.152606][ T6827] batman_adv: batadv0: Adding interface: batadv_slave_0
[  311.159556][ T6827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  311.186084][ T6827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  311.198615][ T6827] batman_adv: batadv0: Adding interface: batadv_slave_1
[  311.205701][ T6827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  311.231713][ T6827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  311.260830][ T6827] device hsr_slave_0 entered promiscuous mode
[  311.267496][ T6827] device hsr_slave_1 entered promiscuous mode
[  311.369199][ T6827] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  311.379429][ T6827] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  311.391732][ T6827] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  311.402149][ T6827] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  311.426393][ T6827] bridge0: port 2(bridge_slave_1) entered blocking state
[  311.433570][ T6827] bridge0: port 2(bridge_slave_1) entered forwarding state
[  311.441432][ T6827] bridge0: port 1(bridge_slave_0) entered blocking state
[  311.448494][ T6827] bridge0: port 1(bridge_slave_0) entered forwarding state
[  311.495825][ T6827] 8021q: adding VLAN 0 to HW filter on device bond0
[  311.509376][ T2615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  311.522496][ T2615] bridge0: port 1(bridge_slave_0) entered disabled state
[  311.531433][ T2615] bridge0: port 2(bridge_slave_1) entered disabled state
[  311.539237][ T2615] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  311.552967][ T6827] 8021q: adding VLAN 0 to HW filter on device team0
[  311.565000][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  311.573958][    T5] bridge0: port 1(bridge_slave_0) entered blocking state
[  311.581097][    T5] bridge0: port 1(bridge_slave_0) entered forwarding state
[  311.603076][ T2615] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  311.611970][ T2615] bridge0: port 2(bridge_slave_1) entered blocking state
[  311.619011][ T2615] bridge0: port 2(bridge_slave_1) entered forwarding state
[  311.627620][ T2615] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  311.637655][ T2615] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  311.652374][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  311.661213][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  311.678136][ T6827] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  311.689399][ T6827] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  311.698397][ T3696] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  311.718433][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  311.726293][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  311.738807][ T6827] 8021q: adding VLAN 0 to HW filter on device batadv0
[  311.759384][ T3696] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  311.781468][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  311.789831][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  311.797789][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  311.808914][ T6827] device veth0_vlan entered promiscuous mode
[  311.820951][ T6827] device veth1_vlan entered promiscuous mode
[  311.843437][ T3696] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  311.852001][ T3696] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  311.860950][ T3696] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  311.871894][ T6827] device veth0_macvtap entered promiscuous mode
[  311.882062][ T6827] device veth1_macvtap entered promiscuous mode
[  311.901960][ T6827] batman_adv: batadv0: Interface activated: batadv_slave_0
[  311.909411][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  311.921293][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  311.934456][ T6827] batman_adv: batadv0: Interface activated: batadv_slave_1
[  311.944917][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
executing program
[  311.955788][ T6827] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  311.964665][ T6827] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  311.973530][ T6827] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  311.982301][ T6827] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  312.062828][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  472.910452][ T1160] INFO: task syz-executor954:6827 blocked for more than 143 seconds.
[  472.918640][ T1160]       Not tainted 5.9.0-rc3-syzkaller #0
[  472.924536][ T1160] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  472.933258][ T1160] task:syz-executor954 state:D stack:23856 pid: 6827 ppid:  6826 flags:0x00000000
[  472.942579][ T1160] Call Trace:
[  472.946014][ T1160]  __schedule+0xea9/0x2230
[  472.950510][ T1160]  ? io_schedule_timeout+0x140/0x140
[  472.955811][ T1160]  schedule+0xd0/0x2a0
[  472.959921][ T1160]  schedule_timeout+0x1d8/0x250
[  472.964875][ T1160]  ? usleep_range+0x170/0x170
[  472.969688][ T1160]  ? mark_held_locks+0x9f/0xe0
[  472.974936][ T1160]  ? _raw_spin_unlock_irq+0x1f/0x80
[  472.980139][ T1160]  ? lockdep_hardirqs_on_prepare+0x354/0x530
[  472.986184][ T1160]  ? _raw_spin_unlock_irq+0x1f/0x80
[  472.991453][ T1160]  wait_for_completion+0x163/0x260
[  472.996557][ T1160]  ? wait_for_completion_interruptible+0x2e0/0x2e0
[  473.003131][ T1160]  ? _raw_spin_unlock_irq+0x1f/0x80
[  473.008331][ T1160]  ? lockdep_hardirqs_on_prepare+0x354/0x530
[  473.014368][ T1160]  ? _raw_spin_unlock_irq+0x1f/0x80
[  473.019669][ T1160]  __flush_work+0x51f/0xab0
[  473.024255][ T1160]  ? queue_delayed_work_on+0x1d0/0x1d0
[  473.029810][ T1160]  ? debug_object_free+0x350/0x350
[  473.034967][ T1160]  ? flush_workqueue_prep_pwqs+0x4f0/0x4f0
[  473.041061][ T1160]  ? mark_held_locks+0x9f/0xe0
[  473.045824][ T1160]  ? __cancel_work_timer+0x5a1/0x6c0
[  473.051154][ T1160]  ? check_preemption_disabled+0x50/0x130
[  473.056882][ T1160]  __cancel_work_timer+0x5bd/0x6c0
[  473.062069][ T1160]  ? try_to_grab_pending.part.0+0x770/0x770
[  473.067961][ T1160]  ? lock_acquire+0x1f3/0xae0
[  473.072858][ T1160]  ? __sock_release+0x86/0x280
[  473.077630][ T1160]  ? lock_release+0x8f0/0x8f0
[  473.082628][ T1160]  tls_sk_proto_close+0x4a7/0xaf0
[  473.087672][ T1160]  ? wait_on_pending_writer+0x3f0/0x3f0
[  473.094586][ T1160]  ? ip_mc_drop_socket+0x16/0x260
[  473.099818][ T1160]  inet_release+0x12e/0x280
[  473.104437][ T1160]  inet6_release+0x4c/0x70
[  473.108869][ T1160]  __sock_release+0xcd/0x280
[  473.113526][ T1160]  sock_close+0x18/0x20
[  473.117742][ T1160]  __fput+0x285/0x920
[  473.121819][ T1160]  ? __sock_release+0x280/0x280
[  473.126670][ T1160]  task_work_run+0xdd/0x190
[  473.131336][ T1160]  exit_to_user_mode_prepare+0x1e1/0x200
[  473.136969][ T1160]  syscall_exit_to_user_mode+0x7e/0x2e0
[  473.142655][ T1160]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  473.148576][ T1160] RIP: 0033:0x403960
[  473.152568][ T1160] Code: Bad RIP value.
[  473.156645][ T1160] RSP: 002b:00007ffedb9fd138 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  473.165140][ T1160] RAX: 0000000000000000 RBX: 0000000000000005 RCX: 0000000000403960
[  473.173184][ T1160] RDX: 00000000000000d8 RSI: 00000000200005c0 RDI: 0000000000000004
[  473.181240][ T1160] RBP: 00007ffedb9fd140 R08: 0000000000000000 R09: 00000000000000d8
[  473.189209][ T1160] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffedb9fd150
[  473.197236][ T1160] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  473.205321][ T1160] 
[  473.205321][ T1160] Showing all locks held in the system:
[  473.213129][ T1160] 3 locks held by kworker/0:0/5:
[  473.218062][ T1160]  #0: ffff8880aa063d38 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x82b/0x1670
[  473.229371][ T1160]  #1: ffffc90000cbfda8 ((work_completion)(&(&sw_ctx_tx->tx_work.work)->work)){+.+.}-{0:0}, at: process_one_work+0x85f/0x1670
[  473.247020][ T1160]  #2: ffff888099978cd8 (&ctx->tx_lock){+.+.}-{3:3}, at: tx_work_handler+0x127/0x190
[  473.256706][ T1160] 1 lock held by khungtaskd/1160:
[  473.261807][ T1160]  #0: ffffffff89bd6a40 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260
[  473.271720][ T1160] 1 lock held by in:imklog/6514:
[  473.276646][ T1160]  #0: ffff8880922d1df0 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0xe9/0x100
[  473.285905][ T1160] 1 lock held by syz-executor954/6827:
[  473.291415][ T1160]  #0: ffff88808507c750 (&sb->s_type->i_mutex_key#13){+.+.}-{3:3}, at: __sock_release+0x86/0x280
[  473.302047][ T1160] 
[  473.304372][ T1160] =============================================
[  473.304372][ T1160] 
[  473.312848][ T1160] NMI backtrace for cpu 1
[  473.317234][ T1160] CPU: 1 PID: 1160 Comm: khungtaskd Not tainted 5.9.0-rc3-syzkaller #0
[  473.325451][ T1160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  473.336444][ T1160] Call Trace:
[  473.339784][ T1160]  dump_stack+0x198/0x1fd
[  473.344137][ T1160]  nmi_cpu_backtrace.cold+0x70/0xb1
[  473.349392][ T1160]  ? lapic_can_unplug_cpu.cold+0x38/0x38
[  473.355020][ T1160]  nmi_trigger_cpumask_backtrace+0x1b3/0x223
[  473.361173][ T1160]  watchdog+0xd7d/0x1000
[  473.365420][ T1160]  ? reset_hung_task_detector+0x30/0x30
[  473.370950][ T1160]  kthread+0x3b5/0x4a0
[  473.375019][ T1160]  ? __kthread_bind_mask+0xc0/0xc0
[  473.380201][ T1160]  ret_from_fork+0x1f/0x30
[  473.384711][ T1160] Sending NMI from CPU 1 to CPUs 0:
[  473.390404][    C0] NMI backtrace for cpu 0
[  473.390412][    C0] CPU: 0 PID: 3885 Comm: systemd-journal Not tainted 5.9.0-rc3-syzkaller #0
[  473.390418][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  473.390423][    C0] RIP: 0010:kmem_cache_alloc+0x1f/0x3a0
[  473.390434][    C0] Code: c2 eb dd 0f 1f 84 00 00 00 00 00 41 57 ba 01 00 00 00 41 56 49 89 fe 41 55 41 89 f5 41 54 55 53 48 83 ec 20 8b 1d 41 83 fe 08 <65> 48 8b 04 25 28 00 00 00 48 89 44 24 18 31 c0 48 c7 44 24 10 00
[  473.390438][    C0] RSP: 0018:ffffc90000f17e10 EFLAGS: 00000282
[  473.390447][    C0] RAX: 0000000000000000 RBX: 0000000000ffffff RCX: ffffffff814e7a1c
[  473.390452][    C0] RDX: 0000000000000001 RSI: 0000000000000cc0 RDI: ffff8880aa06f900
[  473.390458][    C0] RBP: 0000000000000000 R08: 0000000000000000 R09: ffff8880996f2c07
[  473.390463][    C0] R10: 0000000043736564 R11: 0000000000000000 R12: 0000000000000001
[  473.390469][    C0] R13: 0000000000000cc0 R14: ffff8880aa06f900 R15: 0000000000000000
[  473.390475][    C0] FS:  00007fb0347a88c0(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000
[  473.390479][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  473.390485][    C0] CR2: 00007fb031b4f000 CR3: 000000009444d000 CR4: 00000000001506f0
[  473.390490][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  473.390496][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  473.390499][    C0] Call Trace:
[  473.390503][    C0]  ? __validate_process_creds+0x20c/0x370
[  473.390506][    C0]  prepare_creds+0x39/0x6c0
[  473.390510][    C0]  do_faccessat+0x3d7/0x820
[  473.390514][    C0]  ? stream_open+0x60/0x60
[  473.390518][    C0]  ? __secure_computing+0x104/0x360
[  473.390521][    C0]  do_syscall_64+0x2d/0x70
[  473.390526][    C0]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  473.390529][    C0] RIP: 0033:0x7fb033a649c7
[  473.390541][    C0] Code: 83 c4 08 48 3d 01 f0 ff ff 73 01 c3 48 8b 0d c8 d4 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 b8 15 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d a1 d4 2b 00 f7 d8 64 89 01 48
[  473.390545][    C0] RSP: 002b:00007ffd7b9ec818 EFLAGS: 00000246 ORIG_RAX: 0000000000000015
[  473.390554][    C0] RAX: ffffffffffffffda RBX: 00007ffd7b9ef840 RCX: 00007fb033a649c7
[  473.390560][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000055c91ea409a3
[  473.390565][    C0] RBP: 00007ffd7b9ec960 R08: 000055c91ea363e5 R09: 0000000000000018
[  473.390571][    C0] R10: 0000000000000069 R11: 0000000000000246 R12: 0000000000000000
[  473.390576][    C0] R13: 0000000000000000 R14: 000055c9200fc8a0 R15: 00007ffd7b9ece50
[  473.390952][ T1160] Kernel panic - not syncing: hung_task: blocked tasks
[  473.642068][ T1160] CPU: 1 PID: 1160 Comm: khungtaskd Not tainted 5.9.0-rc3-syzkaller #0
[  473.650541][ T1160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  473.660583][ T1160] Call Trace:
[  473.663884][ T1160]  dump_stack+0x198/0x1fd
[  473.668336][ T1160]  panic+0x347/0x7c0
[  473.672216][ T1160]  ? __warn_printk+0xf3/0xf3
[  473.676785][ T1160]  ? cpumask_next+0x3c/0x40
[  473.681314][ T1160]  ? printk_safe_flush+0xd6/0x120
[  473.686340][ T1160]  ? watchdog.cold+0x5/0x16b
[  473.690923][ T1160]  ? watchdog+0xa82/0x1000
[  473.695329][ T1160]  watchdog.cold+0x16/0x16b
[  473.699810][ T1160]  ? reset_hung_task_detector+0x30/0x30
[  473.705334][ T1160]  kthread+0x3b5/0x4a0
[  473.709388][ T1160]  ? __kthread_bind_mask+0xc0/0xc0
[  473.714478][ T1160]  ret_from_fork+0x1f/0x30
[  473.720084][ T1160] Kernel Offset: disabled
[  473.724408][ T1160] Rebooting in 86400 seconds..