[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 78.460155][ T27] audit: type=1800 audit(1582357093.734:25): pid=9227 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 78.493078][ T27] audit: type=1800 audit(1582357093.744:26): pid=9227 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 78.524093][ T27] audit: type=1800 audit(1582357093.744:27): pid=9227 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.1.41' (ECDSA) to the list of known hosts. syzkaller login: [ 88.716894][ T9385] IPVS: ftp: loaded support on port[0] = 21 [ 88.763123][ T9385] chnl_net:caif_netlink_parms(): no params data found [ 88.797454][ T9385] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.804793][ T9385] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.812382][ T9385] device bridge_slave_0 entered promiscuous mode [ 88.820717][ T9385] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.827945][ T9385] bridge0: port 2(bridge_slave_1) entered disabled state [ 88.836223][ T9385] device bridge_slave_1 entered promiscuous mode [ 88.852289][ T9385] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 88.862748][ T9385] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 88.881371][ T9385] team0: Port device team_slave_0 added [ 88.888439][ T9385] team0: Port device team_slave_1 added [ 88.901924][ T9385] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 88.909074][ T9385] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 88.935350][ T9385] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 88.947538][ T9385] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 88.954535][ T9385] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 88.980886][ T9385] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 89.035319][ T9385] device hsr_slave_0 entered promiscuous mode [ 89.103584][ T9385] device hsr_slave_1 entered promiscuous mode [ 89.209657][ T9385] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 89.245682][ T9385] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 89.305818][ T9385] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 89.374889][ T9385] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 89.446099][ T9385] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.453245][ T9385] bridge0: port 2(bridge_slave_1) entered forwarding state [ 89.460661][ T9385] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.467787][ T9385] bridge0: port 1(bridge_slave_0) entered forwarding state [ 89.506637][ T9385] 8021q: adding VLAN 0 to HW filter on device bond0 [ 89.518509][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 89.528639][ T3078] bridge0: port 1(bridge_slave_0) entered disabled state [ 89.536679][ T3078] bridge0: port 2(bridge_slave_1) entered disabled state [ 89.544709][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 89.556762][ T9385] 8021q: adding VLAN 0 to HW filter on device team0 [ 89.567269][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 89.575745][ T5] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.582796][ T5] bridge0: port 1(bridge_slave_0) entered forwarding state [ 89.594409][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 89.602744][ T3078] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.609839][ T3078] bridge0: port 2(bridge_slave_1) entered forwarding state [ 89.626955][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 89.636022][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 89.646886][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 89.662748][ T9385] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 89.673618][ T9385] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 89.685382][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 89.694905][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 89.703849][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 89.720208][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 89.727630][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 89.739545][ T9385] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.758653][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 89.776806][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 89.785118][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 89.793691][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 89.801519][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 89.811152][ T9385] device veth0_vlan entered promiscuous mode [ 89.825521][ T9385] device veth1_vlan entered promiscuous mode [ 89.844024][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 89.851943][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 89.860510][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 89.869300][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 89.880039][ T9385] device veth0_macvtap entered promiscuous mode [ 89.890044][ T9385] device veth1_macvtap entered promiscuous mode [ 89.905765][ T9385] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 89.914008][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 89.922671][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 89.930647][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 89.939660][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 89.951412][ T9385] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 89.960266][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 89.969132][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready executing program [ 90.126086][ T27] kauditd_printk_skb: 3 callbacks suppressed [ 90.126098][ T27] audit: type=1305 audit(1582357105.404:31): op=set audit_failure=2 old=1 auid=4294967295 ses=4294967295 subj==unconfined res=1 [ 90.133456][ T9385] audit: audit_backlog=4 > audit_backlog_limit=2 [ 90.146668][ T27] audit: type=1305 audit(1582357105.404:32): op=set audit_pid=0 old=0 auid=4294967295 ses=4294967295 subj==unconfined res=1 [ 90.152744][ T9385] audit: audit_lost=1 audit_rate_limit=4294967295 audit_backlog_limit=2 [ 90.165944][ T27] audit: type=1305 audit(1582357105.404:33): op=set audit_rate_limit=4294967295 old=0 auid=4294967295 ses=4294967295 subj==unconfined res=1 [ 90.174775][ T9385] Kernel panic - not syncing: audit: backlog limit exceeded [ 90.187664][ T27] audit: type=1305 audit(1582357105.404:34): op=set audit_backlog_limit=2 old=64 auid=4294967295 ses=4294967295 subj==unconfined res=1 [ 90.194531][ T9385] CPU: 0 PID: 9385 Comm: syz-executor167 Not tainted 5.6.0-rc1-syzkaller #0 [ 90.194540][ T9385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 90.194545][ T9385] Call Trace: [ 90.194567][ T9385] dump_stack+0x197/0x210 [ 90.194593][ T9385] panic+0x2e3/0x75c [ 90.208404][ T27] audit: type=1305 audit(1582357105.404:35): op=set audit_backlog_wait_time=0 old=6000 auid=4294967295 ses=4294967295 subj==unconfined res=1 [ 90.217022][ T9385] ? add_taint.cold+0x16/0x16 [ 90.217046][ T9385] ? kmsg_dump_rewind_nolock+0xe4/0xe4 [ 90.262909][ T9385] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 90.268742][ T9385] ? audit_panic+0x24/0x70 [ 90.273140][ T9385] audit_panic.cold+0x32/0x32 [ 90.277795][ T9385] audit_log_lost+0x8b/0x180 [ 90.282364][ T9385] audit_log_start+0x70e/0x7c0 [ 90.287120][ T9385] ? audit_log_task_context+0x170/0x170 [ 90.292654][ T9385] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 90.298802][ T9385] ? __kmalloc_node+0x3d/0x70 [ 90.303469][ T9385] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 90.308995][ T9385] ? __kasan_check_read+0x11/0x20 [ 90.314001][ T9385] audit_log+0x95/0x120 [ 90.318137][ T9385] ? audit_log_start+0x7c0/0x7c0 [ 90.323264][ T9385] ? mark_held_locks+0xa4/0xf0 [ 90.328010][ T9385] ? __local_bh_enable_ip+0x15a/0x270 [ 90.333360][ T9385] ? xt_replace_table+0x361/0x830 [ 90.338362][ T9385] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 90.344213][ T9385] ? _find_next_bit.constprop.0+0x17a/0x200 [ 90.350096][ T9385] xt_replace_table+0x61d/0x830 [ 90.354938][ T9385] __do_replace+0x1da/0x940 [ 90.359427][ T9385] ? get_info+0x570/0x570 [ 90.363740][ T9385] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 90.369970][ T9385] ? _copy_from_user+0x12c/0x1a0 [ 90.374904][ T9385] do_ipt_set_ctl+0x33a/0x4c2 [ 90.379566][ T9385] ? compat_do_ipt_set_ctl+0x170/0x170 [ 90.385020][ T9385] ? mutex_unlock+0xd/0x10 [ 90.389421][ T9385] ? nf_sockopt_find.constprop.0+0x226/0x290 [ 90.395388][ T9385] nf_setsockopt+0x77/0xd0 [ 90.399834][ T9385] ip_setsockopt+0xdf/0x100 [ 90.404325][ T9385] tcp_setsockopt+0x8f/0xe0 [ 90.409605][ T9385] sock_common_setsockopt+0x94/0xd0 [ 90.414797][ T9385] __sys_setsockopt+0x261/0x4c0 [ 90.419639][ T9385] ? sock_create_kern+0x50/0x50 [ 90.424564][ T9385] ? up_read+0x1cd/0x810 [ 90.428800][ T9385] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 90.434245][ T9385] ? do_syscall_64+0x26/0x790 [ 90.439470][ T9385] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 90.445785][ T9385] ? do_syscall_64+0x26/0x790 [ 90.450451][ T9385] __x64_sys_setsockopt+0xbe/0x150 [ 90.455549][ T9385] do_syscall_64+0xfa/0x790 [ 90.460040][ T9385] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 90.466026][ T9385] RIP: 0033:0x44720a [ 90.469945][ T9385] Code: 49 89 ca b8 37 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 1a e0 fb ff c3 66 0f 1f 84 00 00 00 00 00 49 89 ca b8 36 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 fa df fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 90.489534][ T9385] RSP: 002b:00007ffda0e11f08 EFLAGS: 00000286 ORIG_RAX: 0000000000000036 [ 90.497936][ T9385] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000044720a [ 90.505974][ T9385] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000003 [ 90.513929][ T9385] RBP: 00007ffda0e12030 R08: 00000000000002d8 R09: 0000000000004000 [ 90.521984][ T9385] R10: 00000000006d9d00 R11: 0000000000000286 R12: 00007ffda0e11f30 [ 90.530229][ T9385] R13: 00000000006dbf20 R14: 0000000000000000 R15: 00000000006d9d60 [ 90.539828][ T9385] Kernel Offset: disabled [ 90.544215][ T9385] Rebooting in 86400 seconds..