Warning: Permanently added '10.128.0.81' (ECDSA) to the list of known hosts.
syzkaller login: [ 41.267595] audit: type=1400 audit(1595372444.017:8): avc: denied { execmem } for pid=6470 comm="syz-executor386" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[ 41.290472] IPVS: ftp: loaded support on port[0] = 21
[ 41.363481] chnl_net:caif_netlink_parms(): no params data found
[ 41.486615] bridge0: port 1(bridge_slave_0) entered blocking state
[ 41.493244] bridge0: port 1(bridge_slave_0) entered disabled state
[ 41.501542] device bridge_slave_0 entered promiscuous mode
[ 41.509202] bridge0: port 2(bridge_slave_1) entered blocking state
[ 41.515695] bridge0: port 2(bridge_slave_1) entered disabled state
[ 41.522628] device bridge_slave_1 entered promiscuous mode
[ 41.541225] bond0: Enslaving bond_slave_0 as an active interface with an up link
[ 41.550068] bond0: Enslaving bond_slave_1 as an active interface with an up link
[ 41.568961] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[ 41.576406] team0: Port device team_slave_0 added
[ 41.581872] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[ 41.589602] team0: Port device team_slave_1 added
[ 41.605519] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 41.611770] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 41.637073] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 41.648663] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 41.654981] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 41.680670] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 41.691802] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[ 41.699348] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[ 41.746865] device hsr_slave_0 entered promiscuous mode
[ 41.814494] device hsr_slave_1 entered promiscuous mode
[ 41.854782] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[ 41.861797] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[ 41.930190] bridge0: port 2(bridge_slave_1) entered blocking state
[ 41.936736] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 41.943462] bridge0: port 1(bridge_slave_0) entered blocking state
[ 41.949905] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 41.983703] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready
[ 41.990867] 8021q: adding VLAN 0 to HW filter on device bond0
[ 41.999742] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[ 42.009726] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 42.028546] bridge0: port 1(bridge_slave_0) entered disabled state
[ 42.035755] bridge0: port 2(bridge_slave_1) entered disabled state
[ 42.042762] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 42.054355] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[ 42.060462] 8021q: adding VLAN 0 to HW filter on device team0
[ 42.070226] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 42.078416] bridge0: port 1(bridge_slave_0) entered blocking state
[ 42.084814] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 42.094127] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 42.102242] bridge0: port 2(bridge_slave_1) entered blocking state
[ 42.108644] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 42.123467] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 42.132720] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 42.149257] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 42.159309] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 42.171013] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[ 42.178430] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 42.186400] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 42.194735] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 42.202172] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 42.214940] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
[ 42.224640] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 42.231336] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 42.240136] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 42.254716] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready
[ 42.264326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 42.301065] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready
[ 42.309768] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready
[ 42.317166] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready
[ 42.327541] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 42.335012] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 42.341837] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 42.351808] device veth0_vlan entered promiscuous mode
[ 42.360822] device veth1_vlan entered promiscuous mode
[ 42.375466] IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready
[ 42.386579] IPv6: ADDRCONF(NETDEV_UP): veth1_macvtap: link is not ready
[ 42.393387] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 42.402404] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 42.412380] device veth0_macvtap entered promiscuous mode
[ 42.419599] IPv6: ADDRCONF(NETDEV_UP): macvtap0: link is not ready
[ 42.428459] device veth1_macvtap entered promiscuous mode
[ 42.435711] IPv6: ADDRCONF(NETDEV_UP): macsec0: link is not ready
[ 42.444534] IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready
[ 42.457638] IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready
[ 42.467261] IPv6: ADDRCONF(NETDEV_UP): batadv_slave_0: link is not ready
[ 42.474535] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 42.481180] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 42.488945] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 42.496715] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 42.504811] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 42.515910] IPv6: ADDRCONF(NETDEV_UP): batadv_slave_1: link is not ready
[ 42.522756] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 42.529961] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 42.537876] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
executing program
[ 42.632893] IPv6: ADDRCONF(NETDEV_CHANGE): rose0: link becomes ready
[ 42.743668] kasan: CONFIG_KASAN_INLINE enabled
[ 42.748340] kasan: GPF could be caused by NULL-ptr deref or user memory access
[ 42.755775] general protection fault: 0000 [#1] PREEMPT SMP KASAN
[ 42.762131] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 4.19.133-syzkaller #0
[ 42.769206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 42.778564] RIP: 0010:rose_send_frame+0x199/0x260
[ 42.783409] Code: 48 c1 ea 03 80 3c 02 00 0f 85 9e 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 8b 6b 20 48 8d bd 58 03 00 00 48 89 fa 48 c1 ea 03 <80> 3c 02 00 75 75 4c 8b bd 58 03 00 00 e9 bf fe ff ff e8 40 c5 f8
[ 42.802469] RSP: 0018:ffff8880ae707b00 EFLAGS: 00010202
[ 42.807982] RAX: dffffc0000000000 RBX: ffff888216180840 RCX: ffffffff8670e213
[ 42.815227] RDX: 000000000000006b RSI: ffffffff8670e33e RDI: 0000000000000358
[ 42.822489] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[ 42.829746] R10: 0000000000000005 R11: 0000000000000000 R12: ffff888216180840
[ 42.836992] R13: ffff8880a653d140 R14: 0000000000000005 R15: 0000000000000010
[ 42.844240] FS: 0000000000000000(0000) GS:ffff8880ae700000(0000) knlGS:0000000000000000
[ 42.852438] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 42.858313] CR2: 0000000020000190 CR3: 000000008a2ab000 CR4: 00000000001406e0
[ 42.865574] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 42.872831] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 42.880086] Call Trace:
[ 42.882645]
[ 42.884780] rose_transmit_clear_request+0x1d5/0x290
[ 42.889876] ? lockdep_hardirqs_on+0x288/0x5c0
[ 42.894453] rose_rx_call_request+0x4c3/0x18cc
[ 42.899027] ? rose_release+0x3b0/0x3b0
[ 42.902995] rose_loopback_timer+0x15d/0x470
[ 42.907408] call_timer_fn+0x177/0x700
[ 42.911273] ? rose_link_rx_restart.cold+0xab/0xab
[ 42.916179] ? process_timeout+0x40/0x40
[ 42.920220] ? _raw_spin_unlock_irq+0x24/0x80
[ 42.924711] ? rose_link_rx_restart.cold+0xab/0xab
[ 42.929614] ? rose_link_rx_restart.cold+0xab/0xab
[ 42.934538] expire_timers+0x243/0x4e0
[ 42.938505] run_timer_softirq+0x21c/0x670
[ 42.942719] ? expire_timers+0x4e0/0x4e0
[ 42.946758] ? kvm_sched_clock_read+0x14/0x40
[ 42.951228] ? check_preemption_disabled+0x41/0x280
[ 42.956223] __do_softirq+0x26c/0x9a0
[ 42.960004] irq_exit+0x215/0x260
[ 42.963441] smp_apic_timer_interrupt+0x136/0x550
[ 42.968272] apic_timer_interrupt+0xf/0x20
[ 42.972476]
[ 42.974692] RIP: 0010:native_safe_halt+0xe/0x10
[ 42.979337] Code: 48 89 df e8 34 ec 65 fa e9 2e ff ff ff 48 89 df e8 27 ec 65 fa eb 82 90 90 90 90 90 e9 07 00 00 00 0f 00 2d 54 10 4e 00 fb f4 90 e9 07 00 00 00 0f 00 2d 44 10 4e 00 f4 c3 90 90 41 56 41 55
[ 42.998233] RSP: 0018:ffff8880a9f47d58 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13
[ 43.005920] RAX: 1ffffffff11a4b6c RBX: dffffc0000000000 RCX: 0000000000000000
[ 43.013166] RDX: dffffc0000000000 RSI: 0000000000000001 RDI: ffff8880a9f3ac44
[ 43.020413] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[ 43.027662] R10: 0000000000000000 R11: 0000000000000000 R12: ffffffff88d25b50
[ 43.034927] R13: 1ffff110153e8fb5 R14: 0000000000000000 R15: 0000000000000000
[ 43.042195] default_idle+0x49/0x310
[ 43.045894] do_idle+0x2ec/0x4b0
[ 43.049240] ? arch_cpu_idle_exit+0x70/0x70
[ 43.053543] ? _raw_spin_unlock_irqrestore+0x79/0xe0
[ 43.058627] ? lockdep_hardirqs_on+0x3a8/0x5c0
[ 43.063206] cpu_startup_entry+0xc5/0xe0
[ 43.067280] ? cpu_in_idle+0x20/0x20
[ 43.070975] ? _raw_spin_unlock_irqrestore+0x79/0xe0
[ 43.076076] ? lockdep_hardirqs_on+0x3a8/0x5c0
[ 43.080644] start_secondary+0x41f/0x580
[ 43.084709] ? set_cpu_sibling_map+0x17b0/0x17b0
[ 43.089454] secondary_startup_64+0xa4/0xb0
[ 43.093757] Modules linked in:
[ 43.097004] ---[ end trace c6581d60abc1b4b9 ]---
[ 43.101801] RIP: 0010:rose_send_frame+0x199/0x260
[ 43.106704] Code: 48 c1 ea 03 80 3c 02 00 0f 85 9e 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 8b 6b 20 48 8d bd 58 03 00 00 48 89 fa 48 c1 ea 03 <80> 3c 02 00 75 75 4c 8b bd 58 03 00 00 e9 bf fe ff ff e8 40 c5 f8
[ 43.125657] RSP: 0018:ffff8880ae707b00 EFLAGS: 00010202
[ 43.131018] RAX: dffffc0000000000 RBX: ffff888216180840 RCX: ffffffff8670e213
[ 43.138351] RDX: 000000000000006b RSI: ffffffff8670e33e RDI: 0000000000000358
[ 43.145664] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[ 43.152936] R10: 0000000000000005 R11: 0000000000000000 R12: ffff888216180840
[ 43.160248] R13: ffff8880a653d140 R14: 0000000000000005 R15: 0000000000000010
[ 43.167574] FS: 0000000000000000(0000) GS:ffff8880ae700000(0000) knlGS:0000000000000000
[ 43.175864] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 43.181753] CR2: 0000000020000190 CR3: 000000008a2ab000 CR4: 00000000001406e0
[ 43.189066] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 43.196373] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 43.203697] Kernel panic - not syncing: Fatal exception in interrupt
[ 43.211432] Kernel Offset: disabled
[ 43.215063] Rebooting in 86400 seconds..