Warning: Permanently added '10.128.1.93' (ECDSA) to the list of known hosts. 2021/07/09 08:41:49 fuzzer started 2021/07/09 08:41:49 connecting to host at 10.128.0.169:39045 2021/07/09 08:41:49 checking machine... 2021/07/09 08:41:49 checking revisions... 2021/07/09 08:41:49 testing simple program... syzkaller login: [ 62.402194][ T8447] chnl_net:caif_netlink_parms(): no params data found [ 62.459606][ T8447] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.468301][ T8447] bridge0: port 1(bridge_slave_0) entered disabled state [ 62.476560][ T8447] device bridge_slave_0 entered promiscuous mode [ 62.484592][ T8447] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.492667][ T8447] bridge0: port 2(bridge_slave_1) entered disabled state [ 62.500233][ T8447] device bridge_slave_1 entered promiscuous mode [ 62.514920][ T8447] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 62.525910][ T8447] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 62.544310][ T8447] team0: Port device team_slave_0 added [ 62.551830][ T8447] team0: Port device team_slave_1 added [ 62.566101][ T8447] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 62.573582][ T8447] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 62.600074][ T8447] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 62.612153][ T8447] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 62.619198][ T8447] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 62.645681][ T8447] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 62.667276][ T8447] device hsr_slave_0 entered promiscuous mode [ 62.673960][ T8447] device hsr_slave_1 entered promiscuous mode [ 62.735899][ T8447] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 62.745018][ T8447] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 62.759372][ T8447] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 62.772354][ T8447] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 62.790427][ T8447] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.797599][ T8447] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.804921][ T8447] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.812106][ T8447] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.841462][ T8447] 8021q: adding VLAN 0 to HW filter on device bond0 [ 62.853066][ T4876] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 62.861273][ T4876] bridge0: port 1(bridge_slave_0) entered disabled state [ 62.869412][ T4876] bridge0: port 2(bridge_slave_1) entered disabled state [ 62.877766][ T4876] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 62.887966][ T8447] 8021q: adding VLAN 0 to HW filter on device team0 [ 62.899964][ T4876] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 62.909216][ T4876] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.918687][ T4876] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.928369][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 62.938058][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.945507][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.962219][ T4876] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 62.970930][ T4876] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 62.985493][ T8447] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 62.996352][ T8447] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 63.008817][ T4876] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 63.017320][ T4876] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 63.026063][ T4876] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 63.035029][ T4876] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 63.051653][ T4876] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 63.059863][ T4876] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 63.071082][ T8447] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 63.094799][ T4876] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 63.112407][ T4876] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 63.120559][ T4876] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 63.128998][ T4876] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 63.138570][ T8447] device veth0_vlan entered promiscuous mode [ 63.150824][ T8447] device veth1_vlan entered promiscuous mode [ 63.172082][ T4876] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 63.180173][ T4876] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 63.190247][ T4876] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 63.201591][ T8447] device veth0_macvtap entered promiscuous mode [ 63.210539][ T8447] device veth1_macvtap entered promiscuous mode [ 63.225862][ T8447] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 63.233433][ T4876] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 63.243669][ T4876] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 63.255475][ T8447] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 63.263224][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 63.274498][ T8447] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.283983][ T8447] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.292839][ T8447] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.302077][ T8447] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.357042][ T232] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 63.368460][ T232] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 63.384335][ T185] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 63.390735][ T4831] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 63.394223][ T185] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 63.410144][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 2021/07/09 08:41:51 building call list... executing program [ 65.263985][ T8440] BUG: sleeping function called from invalid context at mm/page_alloc.c:5179 [ 65.272873][ T8440] in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 8440, name: syz-fuzzer [ 65.282001][ T8440] INFO: lockdep is turned off. [ 65.286918][ T8440] irq event stamp: 0 [ 65.290894][ T8440] hardirqs last enabled at (0): [<0000000000000000>] 0x0 [ 65.298163][ T8440] hardirqs last disabled at (0): [] copy_process+0x1e1b/0x74c0 [ 65.307432][ T8440] softirqs last enabled at (0): [] copy_process+0x1e5c/0x74c0 [ 65.316712][ T8440] softirqs last disabled at (0): [<0000000000000000>] 0x0 [ 65.323993][ T8440] CPU: 1 PID: 8440 Comm: syz-fuzzer Tainted: G W 5.13.0-syzkaller #0 [ 65.333880][ T8440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 65.344015][ T8440] Call Trace: [ 65.347411][ T8440] dump_stack_lvl+0xcd/0x134 [ 65.352087][ T8440] ___might_sleep.cold+0x1f1/0x237 [ 65.357283][ T8440] prepare_alloc_pages+0x3da/0x580 [ 65.362392][ T8440] ? do_syscall_64+0x35/0xb0 [ 65.366978][ T8440] __alloc_pages+0x12f/0x500 [ 65.371560][ T8440] ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0 [ 65.378421][ T8440] ? __unwind_start+0x51b/0x800 [ 65.383286][ T8440] ? __kernel_text_address+0x9/0x30 [ 65.388571][ T8440] alloc_pages+0x18c/0x2a0 [ 65.392986][ T8440] stack_depot_save+0x39d/0x4e0 [ 65.397937][ T8440] save_stack+0x15e/0x1e0 [ 65.402265][ T8440] ? register_early_stack+0xb0/0xb0 [ 65.407541][ T8440] ? lock_release+0x720/0x720 [ 65.412391][ T8440] ? __alloc_pages_bulk+0x8b9/0x1870 [ 65.417683][ T8440] ? __vmalloc_node_range+0x39d/0x960 [ 65.423354][ T8440] ? vzalloc+0x67/0x80 [ 65.427873][ T8440] ? n_tty_open+0x16/0x170 [ 65.433178][ T8440] ? tty_ldisc_open+0x9b/0x110 [ 65.437962][ T8440] ? tty_ldisc_setup+0x43/0x100 [ 65.442919][ T8440] ? tty_init_dev.part.0+0x1f4/0x610 [ 65.448423][ T8440] ? tty_open+0xb16/0x1000 [ 65.452861][ T8440] ? chrdev_open+0x266/0x770 [ 65.457616][ T8440] ? do_dentry_open+0x4c8/0x11c0 [ 65.462549][ T8440] ? path_openat+0x1c0e/0x27e0 [ 65.467306][ T8440] ? do_filp_open+0x190/0x3d0 [ 65.471972][ T8440] ? do_sys_openat2+0x16d/0x420 [ 65.476814][ T8440] ? __x64_sys_openat+0x13f/0x1f0 [ 65.482002][ T8440] ? do_syscall_64+0x35/0xb0 [ 65.486618][ T8440] ? entry_SYSCALL_64_after_hwframe+0x44/0xae [ 65.492958][ T8440] ? preempt_count_add+0x74/0x140 [ 65.498003][ T8440] __set_page_owner+0x50/0x290 [ 65.503205][ T8440] ? post_alloc_hook+0x145/0x1e0 [ 65.508142][ T8440] __alloc_pages_bulk+0x8b9/0x1870 [ 65.513377][ T8440] ? __alloc_pages+0x500/0x500 [ 65.518136][ T8440] ? rwlock_bug.part.0+0x90/0x90 [ 65.523145][ T8440] ? trace_kmalloc_node+0x32/0xf0 [ 65.528185][ T8440] ? trace_kmalloc_node+0x32/0xf0 [ 65.533395][ T8440] __vmalloc_node_range+0x39d/0x960 [ 65.538619][ T8440] ? vfree_atomic+0xe0/0xe0 [ 65.543323][ T8440] ? _raw_spin_unlock_irqrestore+0x3d/0x70 [ 65.549131][ T8440] ? __ldsem_down_read_nested+0x850/0x850 [ 65.554865][ T8440] ? __wake_up_common+0x650/0x650 [ 65.559932][ T8440] ? n_tty_open+0x16/0x170 [ 65.564439][ T8440] vzalloc+0x67/0x80 [ 65.568424][ T8440] ? n_tty_open+0x16/0x170 [ 65.573095][ T8440] n_tty_open+0x16/0x170 [ 65.577425][ T8440] ? n_tty_set_termios+0x1010/0x1010 [ 65.582703][ T8440] tty_ldisc_open+0x9b/0x110 [ 65.587288][ T8440] tty_ldisc_setup+0x43/0x100 [ 65.592256][ T8440] tty_init_dev.part.0+0x1f4/0x610 [ 65.597499][ T8440] tty_open+0xb16/0x1000 [ 65.601823][ T8440] ? tty_init_dev+0x80/0x80 [ 65.606342][ T8440] ? rwlock_bug.part.0+0x90/0x90 [ 65.611646][ T8440] ? tty_init_dev+0x80/0x80 [ 65.616229][ T8440] chrdev_open+0x266/0x770 [ 65.620638][ T8440] ? cdev_device_add+0x210/0x210 [ 65.625575][ T8440] ? security_file_open+0x205/0x4f0 [ 65.630807][ T8440] do_dentry_open+0x4c8/0x11c0 [ 65.635572][ T8440] ? cdev_device_add+0x210/0x210 [ 65.640508][ T8440] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 65.646741][ T8440] ? may_open+0x1f6/0x420 [ 65.651066][ T8440] path_openat+0x1c0e/0x27e0 [ 65.655649][ T8440] ? __kprobes_text_end+0x1d8798/0x1d8798 [ 65.661385][ T8440] ? arch_stack_walk+0x93/0xe0 [ 65.666157][ T8440] ? path_lookupat+0x850/0x850 [ 65.670975][ T8440] ? stack_trace_save+0x8c/0xc0 [ 65.675834][ T8440] ? stack_trace_consume_entry+0x160/0x160 [ 65.681639][ T8440] do_filp_open+0x190/0x3d0 [ 65.686147][ T8440] ? may_open_dev+0xf0/0xf0 [ 65.690677][ T8440] ? do_raw_spin_lock+0x120/0x2b0 [ 65.695699][ T8440] ? rwlock_bug.part.0+0x90/0x90 [ 65.700632][ T8440] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 65.707334][ T8440] ? _find_next_bit+0x1e3/0x260 [ 65.712197][ T8440] ? _raw_spin_unlock+0x24/0x40 [ 65.717072][ T8440] ? alloc_fd+0x2e6/0x660 [ 65.721393][ T8440] do_sys_openat2+0x16d/0x420 [ 65.726083][ T8440] ? lock_acquire+0x442/0x510 [ 65.730771][ T8440] ? security_file_free+0xa4/0xd0 [ 65.735820][ T8440] ? build_open_flags+0x6f0/0x6f0 [ 65.740922][ T8440] ? lock_acquire+0x442/0x510 [ 65.745588][ T8440] ? lock_release+0x522/0x720 [ 65.750286][ T8440] ? __context_tracking_exit+0xb8/0xe0 [ 65.755734][ T8440] ? lock_downgrade+0x6e0/0x6e0 [ 65.760579][ T8440] __x64_sys_openat+0x13f/0x1f0 [ 65.765526][ T8440] ? __ia32_sys_open+0x1c0/0x1c0 [ 65.770465][ T8440] ? syscall_enter_from_user_mode+0x21/0x70 [ 65.776585][ T8440] do_syscall_64+0x35/0xb0 [ 65.781001][ T8440] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 65.786977][ T8440] RIP: 0033:0x4af20a [ 65.790867][ T8440] Code: e8 3b 82 fb ff 48 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 4c 8b 54 24 28 4c 8b 44 24 30 4c 8b 4c 24 38 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 40 ff ff ff ff 48 c7 44 24 48 [ 65.810652][ T8440] RSP: 002b:000000c00015d3f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000101 [ 65.819056][ T8440] RAX: ffffffffffffffda RBX: 000000c00001c000 RCX: 00000000004af20a [ 65.827126][ T8440] RDX: 0000000000000000 RSI: 000000c0001a3a70 RDI: ffffffffffffff9c [ 65.835111][ T8440] RBP: 000000c00015d470 R08: 0000000000000000 R09: 0000000000000000 [ 65.843157][ T8440] R10: 0000000000000000 R11: 0000000000000216 R12: 00000000000001a8 [ 65.851593][ T8440] R13: 00000000000001a7 R14: 0000000000000200 R15: 000000c0003ce280 [ 65.921435][ T8440] can: request_module (can-proto-0) failed. [ 65.933525][ T8440] can: request_module (can-proto-0) failed. [ 65.944813][ T8440] can: request_module (can-proto-0) failed.