[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.50' (ECDSA) to the list of known hosts. 2020/11/04 07:38:43 parsed 1 programs 2020/11/04 07:38:44 executed programs: 0 syzkaller login: [ 32.805961] IPVS: ftp: loaded support on port[0] = 21 [ 32.890629] chnl_net:caif_netlink_parms(): no params data found [ 32.970055] bridge0: port 1(bridge_slave_0) entered blocking state [ 32.977594] bridge0: port 1(bridge_slave_0) entered disabled state [ 32.985424] device bridge_slave_0 entered promiscuous mode [ 32.992786] bridge0: port 2(bridge_slave_1) entered blocking state [ 32.999152] bridge0: port 2(bridge_slave_1) entered disabled state [ 33.006405] device bridge_slave_1 entered promiscuous mode [ 33.022603] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 33.031297] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 33.048399] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 33.055593] team0: Port device team_slave_0 added [ 33.060908] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 33.068323] team0: Port device team_slave_1 added [ 33.083225] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 33.089488] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 33.114955] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 33.126746] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 33.133220] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 33.158493] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 33.169245] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 33.177374] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 33.195177] device hsr_slave_0 entered promiscuous mode [ 33.200760] device hsr_slave_1 entered promiscuous mode [ 33.206896] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 33.213955] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 33.275336] bridge0: port 2(bridge_slave_1) entered blocking state [ 33.281776] bridge0: port 2(bridge_slave_1) entered forwarding state [ 33.288487] bridge0: port 1(bridge_slave_0) entered blocking state [ 33.294881] bridge0: port 1(bridge_slave_0) entered forwarding state [ 33.322241] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 33.328302] 8021q: adding VLAN 0 to HW filter on device bond0 [ 33.337374] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 33.346358] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 33.364548] bridge0: port 1(bridge_slave_0) entered disabled state [ 33.371779] bridge0: port 2(bridge_slave_1) entered disabled state [ 33.381228] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 33.387291] 8021q: adding VLAN 0 to HW filter on device team0 [ 33.396324] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 33.404085] bridge0: port 1(bridge_slave_0) entered blocking state [ 33.410437] bridge0: port 1(bridge_slave_0) entered forwarding state [ 33.430283] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 33.440252] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 33.452251] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 33.458777] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 33.467073] bridge0: port 2(bridge_slave_1) entered blocking state [ 33.473494] bridge0: port 2(bridge_slave_1) entered forwarding state [ 33.482338] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 33.489841] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 33.497516] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 33.505121] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 33.512783] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 33.519574] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 33.531192] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready [ 33.540035] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 33.547384] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 33.557364] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 33.607460] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready [ 33.617616] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 33.645539] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready [ 33.653333] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready [ 33.659723] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready [ 33.668999] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 33.676566] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 33.683876] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 33.692606] device veth0_vlan entered promiscuous mode [ 33.700968] device veth1_vlan entered promiscuous mode [ 33.706768] IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready [ 33.715165] IPv6: ADDRCONF(NETDEV_UP): macvlan1: link is not ready [ 33.726387] IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready [ 33.736176] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 33.744074] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 33.751591] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 33.760391] device veth0_macvtap entered promiscuous mode [ 33.767478] IPv6: ADDRCONF(NETDEV_UP): macvtap0: link is not ready [ 33.775789] device veth1_macvtap entered promiscuous mode [ 33.785440] IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready [ 33.794398] IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready [ 33.804200] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 33.811394] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 33.819302] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 33.829226] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 33.836037] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 33.881778] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 33.935472] IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready [ 33.962157] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 33.969356] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 33.969382] IPv6: ADDRCONF(NETDEV_UP): wlan1: link is not ready [ 33.989872] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 33.999225] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 34.007510] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 34.015700] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 34.830765] Bluetooth: hci0 command 0x0409 tx timeout 2020/11/04 07:38:49 executed programs: 240 [ 36.909006] Bluetooth: hci0 command 0x041b tx timeout [ 39.001069] Bluetooth: hci0 command 0x040f tx timeout [ 41.066571] Bluetooth: hci0 command 0x0419 tx timeout 2020/11/04 07:38:54 executed programs: 829 [ 43.145937] Bluetooth: hci0 command 0x0405 tx timeout 2020/11/04 07:38:59 executed programs: 1417 [ 51.485275] INFO: trying to register non-static key. [ 51.490387] the code is fine but needs lockdep annotation. [ 51.495982] turning off the locking correctness validator. [ 51.501592] CPU: 0 PID: 14224 Comm: syz-executor.0 Not tainted 4.14.203-syzkaller #0 [ 51.509443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 51.518781] Call Trace: [ 51.521349] dump_stack+0x1b2/0x283 [ 51.524965] register_lock_class+0x32b/0x1320 [ 51.529449] ? check_preemption_disabled+0x35/0x240 [ 51.534872] ? static_obj+0x50/0x50 [ 51.538488] ? resched_curr+0xc7/0x360 [ 51.542353] __lock_acquire+0x167/0x3f20 [ 51.546407] ? lock_downgrade+0x740/0x740 [ 51.550540] ? lock_downgrade+0x740/0x740 [ 51.554661] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 51.559680] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 51.564768] ? trace_hardirqs_on+0x10/0x10 [ 51.568991] ? __queue_work+0x517/0xf70 [ 51.572940] ? ___preempt_schedule+0x16/0x18 [ 51.577324] lock_acquire+0x170/0x3f0 [ 51.581100] ? skb_dequeue+0x1c/0x180 [ 51.584883] _raw_spin_lock_irqsave+0x8c/0xc0 [ 51.589376] ? skb_dequeue+0x1c/0x180 [ 51.593153] skb_dequeue+0x1c/0x180 [ 51.596773] skb_queue_purge+0x21/0x30 [ 51.600651] l2cap_chan_del+0x56d/0x950 [ 51.604613] l2cap_chan_close+0x103/0x870 [ 51.608752] ? __set_monitor_timer+0x1d0/0x1d0 [ 51.613319] ? wait_for_completion_io+0x10/0x10 [ 51.617974] ? __local_bh_enable_ip+0xc1/0x170 [ 51.622547] l2cap_sock_shutdown+0x2e7/0xc20 [ 51.627057] ? l2cap_skb_msg_name+0x120/0x120 [ 51.631534] ? l2cap_sock_release+0x6a/0x280 [ 51.635938] ? lock_downgrade+0x740/0x740 [ 51.640068] l2cap_sock_release+0x77/0x280 [ 51.644297] __sock_release+0xcd/0x2b0 [ 51.648158] ? __sock_release+0x2b0/0x2b0 [ 51.652292] sock_close+0x15/0x20 [ 51.655735] __fput+0x25f/0x7a0 [ 51.658993] task_work_run+0x11f/0x190 [ 51.662856] get_signal+0x18a3/0x1ca0 [ 51.666649] ? l2cap_sock_connect+0x30b/0x520 [ 51.671129] do_signal+0x7c/0x1550 [ 51.674645] ? __local_bh_enable_ip+0xc1/0x170 [ 51.679231] ? check_preemption_disabled+0x35/0x240 [ 51.684222] ? setup_sigcontext+0x820/0x820 [ 51.688519] ? kick_process+0xe4/0x170 [ 51.692379] ? task_work_add+0x87/0xe0 [ 51.696241] ? l2cap_sock_accept+0x4d0/0x4d0 [ 51.700627] ? fput+0xaa/0x140 [ 51.703795] ? SyS_connect+0xf6/0x240 [ 51.707569] ? SyS_accept+0x30/0x30 [ 51.711169] ? put_timespec64+0xaa/0xf0 [ 51.715119] ? jiffies64_to_nsecs+0x20/0x20 [ 51.719432] ? exit_to_usermode_loop+0x41/0x200 [ 51.724095] exit_to_usermode_loop+0x160/0x200 [ 51.728662] do_syscall_64+0x4a3/0x640 2020/11/04 07:39:04 executed programs: 1954 [ 51.732541] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 51.737716] RIP: 0033:0x45deb9 [ 51.740893] RSP: 002b:00007f23d6b69c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 51.748589] RAX: fffffffffffffffc RBX: 0000000000002200 RCX: 000000000045deb9 [ 51.755846] RDX: 000000000000000e RSI: 0000000020000040 RDI: 0000000000000007 [ 51.763090] RBP: 000000000118c008 R08: 0000000000000000 R09: 0000000000000000 [ 51.770343] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bfd4 [ 51.777598] R13: 00007ffc1e62a21f R14: 00007f23d6b6a9c0 R15: 000000000118bfd4