[ 26.103076] audit: type=1800 audit(1545614075.445:21): pid=5852 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="bootlogs" dev="sda1" ino=2419 res=0 [ 26.142865] audit: type=1800 audit(1545614075.445:22): pid=5852 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="motd" dev="sda1" ino=2447 res=0 [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 31.118379] sshd (5991) used greatest stack depth: 16096 bytes left [ 31.171868] sshd (5990) used greatest stack depth: 15728 bytes left Warning: Permanently added '10.128.0.119' (ECDSA) to the list of known hosts. 2018/12/24 01:14:47 fuzzer started 2018/12/24 01:14:48 dialing manager at 10.128.0.26:33943 [ 39.526444] ld (6015) used greatest stack depth: 15200 bytes left 2018/12/24 01:14:49 syscalls: 1 2018/12/24 01:14:49 code coverage: enabled 2018/12/24 01:14:49 comparison tracing: enabled 2018/12/24 01:14:49 setuid sandbox: enabled 2018/12/24 01:14:49 namespace sandbox: enabled 2018/12/24 01:14:49 Android sandbox: /sys/fs/selinux/policy does not exist 2018/12/24 01:14:49 fault injection: enabled 2018/12/24 01:14:49 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2018/12/24 01:14:49 net packet injection: enabled 2018/12/24 01:14:49 net device setup: enabled 01:17:08 executing program 0: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x1, {}, 0x0, 0x1}, 0xe) [ 179.412620] IPVS: ftp: loaded support on port[0] = 21 01:17:08 executing program 1: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r1 = dup(r0) listen(r1, 0x0) [ 179.725840] IPVS: ftp: loaded support on port[0] = 21 01:17:09 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x800000000e004, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = open(&(0x7f0000000080)='./bus\x00', 0x1fe, 0x0) write$binfmt_aout(r1, &(0x7f0000006c40)=ANY=[@ANYBLOB="ff0700c134"], 0x5) r2 = perf_event_open(&(0x7f0000000800)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) unlink(&(0x7f0000001e00)='./bus\x00') ioctl$KVM_SET_MP_STATE(r0, 0x4004ae99, 0x0) setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0x7, 0x0, 0x72) sendfile(r1, r1, &(0x7f0000000000), 0x8080fffffffe) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000300)={{{@in6=@ipv4={[], [], @empty}, @in=@dev}}, {{@in6=@ipv4={[], [], @dev}}, 0x0, @in=@loopback}}, &(0x7f0000000180)=0xe8) ioctl$DRM_IOCTL_ADD_CTX(r0, 0xc0086420, &(0x7f0000000240)={0x0}) ioctl$FICLONERANGE(r2, 0x4020940d, &(0x7f00000006c0)={r0, 0x0, 0x3f, 0xfffffffffffffeff, 0x400000}) ioctl$DRM_IOCTL_DMA(r1, 0xc0406429, &(0x7f00000005c0)={r3, 0x4, &(0x7f0000000440)=[0x3, 0x0, 0x2a42, 0x3f93], &(0x7f0000000480)=[0xffffffffffff0001, 0x0, 0x0, 0x5, 0x6, 0x6, 0x8], 0x42, 0x5, 0x400, &(0x7f00000004c0)=[0x0, 0x2, 0x2, 0xc, 0x200], &(0x7f0000000580)=[0x10000, 0xba, 0x0]}) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, 0x0, 0x0) ioctl$DRM_IOCTL_RM_CTX(0xffffffffffffffff, 0xc0086421, 0x0) getuid() getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000700)) ioctl$SNDRV_TIMER_IOCTL_STATUS(r1, 0x80605414, 0x0) getgid() getgid() fstat(0xffffffffffffffff, 0x0) fstat(0xffffffffffffffff, &(0x7f0000000940)) mkdir(&(0x7f0000001540)='./file0\x00', 0x0) ioctl$DRM_IOCTL_DMA(r0, 0xc0406429, &(0x7f0000000500)={r3, 0x1, &(0x7f00000000c0)=[0x5], &(0x7f0000000100)=[0xa271, 0x100000001, 0xffffffff7fffffff, 0x5], 0x14, 0x3, 0x375e, &(0x7f00000001c0)=[0x8, 0xfff, 0x22], &(0x7f0000000280)=[0xc6, 0x3]}) 01:17:09 executing program 3: perf_event_open(&(0x7f0000000300)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000000000)=@ipx, 0xfe39, 0x0}}], 0x1, 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_PVERSION(0xffffffffffffffff, 0x80045300, &(0x7f00000000c0)) r0 = syz_open_procfs(0x0, &(0x7f0000000200)='net/unix\x00') preadv(r0, &(0x7f00000017c0), 0x1a1, 0x0) [ 180.096697] IPVS: ftp: loaded support on port[0] = 21 [ 180.303622] IPVS: ftp: loaded support on port[0] = 21 01:17:09 executing program 4: bpf$PROG_LOAD(0x5, 0x0, 0xffffffffffffff57) r0 = socket$inet(0x10, 0x4000000003, 0x0) sendmsg(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000140)="24000000220007031dff39d5fd760500000000000000fd21fe1c4095421ba3a20400ff7e", 0x24}], 0x1}, 0x0) [ 180.793030] IPVS: ftp: loaded support on port[0] = 21 01:17:10 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @loopback}, 0x10) shutdown(r0, 0x1) recvmmsg(r0, &(0x7f0000003540)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0, 0x0) [ 181.241808] bridge0: port 1(bridge_slave_0) entered blocking state [ 181.272082] bridge0: port 1(bridge_slave_0) entered disabled state [ 181.302603] IPVS: ftp: loaded support on port[0] = 21 [ 181.314751] device bridge_slave_0 entered promiscuous mode [ 181.436350] bridge0: port 2(bridge_slave_1) entered blocking state [ 181.443314] bridge0: port 2(bridge_slave_1) entered disabled state [ 181.451971] device bridge_slave_1 entered promiscuous mode [ 181.531075] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 181.592752] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 181.935258] bridge0: port 1(bridge_slave_0) entered blocking state [ 181.945939] bridge0: port 1(bridge_slave_0) entered disabled state [ 181.954724] device bridge_slave_0 entered promiscuous mode [ 182.039076] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 182.123151] bridge0: port 2(bridge_slave_1) entered blocking state [ 182.133504] bridge0: port 2(bridge_slave_1) entered disabled state [ 182.140890] device bridge_slave_1 entered promiscuous mode [ 182.234356] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 182.268635] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 182.404336] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 182.506942] bridge0: port 1(bridge_slave_0) entered blocking state [ 182.521895] bridge0: port 1(bridge_slave_0) entered disabled state [ 182.538672] device bridge_slave_0 entered promiscuous mode [ 182.642101] bridge0: port 2(bridge_slave_1) entered blocking state [ 182.666834] bridge0: port 2(bridge_slave_1) entered disabled state [ 182.674851] device bridge_slave_1 entered promiscuous mode [ 182.811237] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 182.819112] team0: Port device team_slave_0 added [ 182.847057] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 182.857701] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 182.951395] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 182.986740] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 183.008877] team0: Port device team_slave_1 added [ 183.015212] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 183.075195] bridge0: port 1(bridge_slave_0) entered blocking state [ 183.081593] bridge0: port 1(bridge_slave_0) entered disabled state [ 183.095838] device bridge_slave_0 entered promiscuous mode [ 183.113898] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 183.155828] bridge0: port 1(bridge_slave_0) entered blocking state [ 183.162230] bridge0: port 1(bridge_slave_0) entered disabled state [ 183.177022] device bridge_slave_0 entered promiscuous mode [ 183.240463] bridge0: port 2(bridge_slave_1) entered blocking state [ 183.256626] bridge0: port 2(bridge_slave_1) entered disabled state [ 183.275581] device bridge_slave_1 entered promiscuous mode [ 183.287813] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 183.306760] bridge0: port 2(bridge_slave_1) entered blocking state [ 183.330977] bridge0: port 2(bridge_slave_1) entered disabled state [ 183.346655] device bridge_slave_1 entered promiscuous mode [ 183.383168] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 183.399188] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 183.441993] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 183.463985] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 183.504457] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 183.516030] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 183.530853] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 183.547788] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 183.564961] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 183.581088] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 183.667786] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 183.681383] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 183.718167] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 183.735968] team0: Port device team_slave_0 added [ 183.803313] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 183.810212] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 183.847957] bridge0: port 1(bridge_slave_0) entered blocking state [ 183.861627] bridge0: port 1(bridge_slave_0) entered disabled state [ 183.884271] device bridge_slave_0 entered promiscuous mode [ 183.900972] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 183.910178] team0: Port device team_slave_1 added [ 183.919102] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 183.937663] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 183.977417] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 184.008562] bridge0: port 2(bridge_slave_1) entered blocking state [ 184.042954] bridge0: port 2(bridge_slave_1) entered disabled state [ 184.054896] device bridge_slave_1 entered promiscuous mode [ 184.065101] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 184.095694] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 184.114445] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 184.122415] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 184.181525] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 184.208451] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 184.250225] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 184.285751] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 184.296025] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 184.312612] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 184.337517] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 184.388832] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 184.424124] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 184.431687] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 184.454193] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 184.474345] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 184.481737] team0: Port device team_slave_0 added [ 184.592108] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 184.608265] team0: Port device team_slave_1 added [ 184.669250] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 184.677156] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 184.777490] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 184.787735] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 184.810001] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 184.830655] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 184.838743] team0: Port device team_slave_0 added [ 184.848507] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 184.888389] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 184.913122] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 184.923719] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 184.949244] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 184.973617] team0: Port device team_slave_1 added [ 184.983704] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 185.013062] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 185.035001] team0: Port device team_slave_0 added [ 185.044412] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 185.063119] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 185.080249] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 185.128201] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 185.144208] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 185.163424] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 185.170847] team0: Port device team_slave_1 added [ 185.196244] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 185.222736] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 185.243835] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 185.251799] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 185.283285] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 185.291185] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 185.315163] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 185.384283] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 185.425503] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 185.461976] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 185.486391] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 185.511763] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 185.543929] bridge0: port 2(bridge_slave_1) entered blocking state [ 185.550442] bridge0: port 2(bridge_slave_1) entered forwarding state [ 185.557530] bridge0: port 1(bridge_slave_0) entered blocking state [ 185.563942] bridge0: port 1(bridge_slave_0) entered forwarding state [ 185.575704] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 185.584712] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 185.599630] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 185.629740] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 185.642640] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 185.664663] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 185.683746] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 185.691501] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 185.733196] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 185.740579] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 185.749097] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 185.813796] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 185.822416] team0: Port device team_slave_0 added [ 185.967894] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 185.985195] team0: Port device team_slave_1 added [ 186.099230] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 186.108494] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 186.124926] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 186.177856] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 186.206147] bridge0: port 2(bridge_slave_1) entered blocking state [ 186.212546] bridge0: port 2(bridge_slave_1) entered forwarding state [ 186.219293] bridge0: port 1(bridge_slave_0) entered blocking state [ 186.225730] bridge0: port 1(bridge_slave_0) entered forwarding state [ 186.236307] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 186.325491] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 186.332684] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 186.349628] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 186.455202] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 186.462377] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 186.473630] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 186.632942] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 186.810109] bridge0: port 2(bridge_slave_1) entered blocking state [ 186.816558] bridge0: port 2(bridge_slave_1) entered forwarding state [ 186.823278] bridge0: port 1(bridge_slave_0) entered blocking state [ 186.829647] bridge0: port 1(bridge_slave_0) entered forwarding state [ 186.858849] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 187.046351] bridge0: port 2(bridge_slave_1) entered blocking state [ 187.052748] bridge0: port 2(bridge_slave_1) entered forwarding state [ 187.059459] bridge0: port 1(bridge_slave_0) entered blocking state [ 187.065872] bridge0: port 1(bridge_slave_0) entered forwarding state [ 187.108078] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 187.253279] bridge0: port 2(bridge_slave_1) entered blocking state [ 187.259685] bridge0: port 2(bridge_slave_1) entered forwarding state [ 187.266416] bridge0: port 1(bridge_slave_0) entered blocking state [ 187.272797] bridge0: port 1(bridge_slave_0) entered forwarding state [ 187.330773] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 187.659398] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 187.667095] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 187.693423] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 187.983263] bridge0: port 2(bridge_slave_1) entered blocking state [ 187.989671] bridge0: port 2(bridge_slave_1) entered forwarding state [ 187.996392] bridge0: port 1(bridge_slave_0) entered blocking state [ 188.002771] bridge0: port 1(bridge_slave_0) entered forwarding state [ 188.013613] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 188.694784] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 191.030709] 8021q: adding VLAN 0 to HW filter on device bond0 [ 191.413784] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 191.488679] 8021q: adding VLAN 0 to HW filter on device bond0 [ 191.888914] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 191.900403] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 191.923759] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 192.081149] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 192.111644] 8021q: adding VLAN 0 to HW filter on device bond0 [ 192.233812] 8021q: adding VLAN 0 to HW filter on device bond0 [ 192.358832] 8021q: adding VLAN 0 to HW filter on device bond0 [ 192.443556] 8021q: adding VLAN 0 to HW filter on device team0 [ 192.456612] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 192.724007] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 192.731327] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 192.743550] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 192.811403] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 192.840552] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 192.982708] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 192.999840] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 193.010732] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 193.137681] 8021q: adding VLAN 0 to HW filter on device team0 [ 193.225964] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 193.232163] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 193.258044] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 193.414496] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 193.420690] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 193.444553] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 193.552990] 8021q: adding VLAN 0 to HW filter on device team0 [ 193.703191] 8021q: adding VLAN 0 to HW filter on device team0 [ 193.717026] 8021q: adding VLAN 0 to HW filter on device bond0 [ 193.971288] 8021q: adding VLAN 0 to HW filter on device team0 [ 194.074179] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 194.524145] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 194.530426] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 194.544798] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 194.953628] 8021q: adding VLAN 0 to HW filter on device team0 01:17:24 executing program 0: r0 = syz_open_dev$dri(&(0x7f0000000180)='/dev/dri/card#\x00', 0x1, 0x0) ioctl(r0, 0xffffffffffffffb9, &(0x7f00000000c0)) 01:17:25 executing program 0: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f00000008c0)="8da4363ac0ed0000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 195.718017] BTRFS: device fsid ecf6f2a2-2997-48ae-b81e-1b00920efd9a devid 0 transid 0 /dev/loop0 01:17:25 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$l2tp(0x18, 0x1, 0x1) ioctl(r3, 0x1000008912, &(0x7f00000000c0)="0a5c2d023c126285718070") syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000480)=[@text64={0x40, &(0x7f00000002c0)="b8010000000f01c166b8e2000f00d8b9800000c00f3235004000000f304a0fc75f20c44379608d00000100f22e0f01ca67440ff6143f66ba4000b846c95182ef0f01cf400f01df", 0x47}], 0x1, 0x40, 0x0, 0xfffffffffffffebf) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 195.948066] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details. [ 195.975149] ================================================================== [ 195.982624] BUG: KASAN: slab-out-of-bounds in fpstate_init+0x50/0x160 [ 195.989232] Write of size 832 at addr ffff8881d24febc0 by task syz-executor0/7507 [ 195.996860] [ 195.998503] CPU: 1 PID: 7507 Comm: syz-executor0 Not tainted 4.20.0-rc6-next-20181217+ #172 [ 196.007018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 196.016389] Call Trace: [ 196.018984] dump_stack+0x244/0x39d [ 196.022631] ? dump_stack_print_info.cold.1+0x20/0x20 [ 196.027825] ? printk+0xa7/0xcf [ 196.031113] ? kmsg_dump_rewind_nolock+0xe4/0xe4 [ 196.035940] print_address_description.cold.4+0x9/0x1ff [ 196.041537] ? fpstate_init+0x50/0x160 [ 196.045436] kasan_report.cold.5+0x1b/0x39 [ 196.049682] ? fpstate_init+0x50/0x160 [ 196.053585] ? fpstate_init+0x50/0x160 [ 196.057510] check_memory_region+0x13e/0x1b0 [ 196.061963] memset+0x23/0x40 [ 196.065083] fpstate_init+0x50/0x160 [ 196.068829] kvm_arch_vcpu_init+0x3e9/0x870 [ 196.073170] kvm_vcpu_init+0x2fa/0x420 [ 196.077062] ? vcpu_stat_get+0x300/0x300 [ 196.081139] ? kmem_cache_alloc+0x33f/0x730 [ 196.085479] vmx_create_vcpu+0x1b7/0x2695 [ 196.089660] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 196.094783] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 196.099394] ? preempt_schedule+0x4d/0x60 [ 196.103583] ? preempt_schedule_common+0x1f/0xe0 [ 196.108346] ? vmx_exec_control+0x210/0x210 [ 196.112674] ? ___preempt_schedule+0x16/0x18 [ 196.117094] ? kasan_check_write+0x14/0x20 [ 196.121333] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 196.126320] ? wait_for_completion+0x8a0/0x8a0 [ 196.130925] ? print_usage_bug+0xc0/0xc0 [ 196.135011] ? migrate_swap_stop+0x8a0/0x8a0 [ 196.139440] kvm_arch_vcpu_create+0xe5/0x220 [ 196.143858] ? kvm_arch_vcpu_free+0x90/0x90 [ 196.148197] kvm_vm_ioctl+0x526/0x2030 [ 196.152095] ? kvm_unregister_device_ops+0x70/0x70 [ 196.157045] ? mark_held_locks+0x130/0x130 [ 196.161315] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 196.166517] ? drop_futex_key_refs.isra.14+0x6d/0xe0 [ 196.171632] ? futex_wake+0x304/0x760 [ 196.175965] ? __lock_acquire+0x62f/0x4c20 [ 196.180232] ? mark_held_locks+0x130/0x130 [ 196.184476] ? graph_lock+0x270/0x270 [ 196.188276] ? do_futex+0x249/0x26d0 [ 196.192006] ? rcu_read_unlock_special+0x370/0x370 [ 196.196945] ? rcu_softirq_qs+0x20/0x20 [ 196.200923] ? unwind_dump+0x190/0x190 [ 196.204822] ? find_held_lock+0x36/0x1c0 [ 196.208923] ? __fget+0x4aa/0x740 [ 196.212398] ? lock_downgrade+0x900/0x900 [ 196.216579] ? check_preemption_disabled+0x48/0x280 [ 196.221661] ? kasan_check_read+0x11/0x20 [ 196.225822] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 196.231098] ? rcu_read_unlock_special+0x370/0x370 [ 196.236047] ? __fget+0x4d1/0x740 [ 196.239556] ? ksys_dup3+0x680/0x680 [ 196.243292] ? __might_fault+0x12b/0x1e0 [ 196.247394] ? lock_downgrade+0x900/0x900 [ 196.251557] ? lock_release+0xa00/0xa00 [ 196.255542] ? perf_trace_sched_process_exec+0x860/0x860 [ 196.261002] ? kvm_unregister_device_ops+0x70/0x70 [ 196.265939] do_vfs_ioctl+0x1de/0x1790 [ 196.269842] ? ioctl_preallocate+0x300/0x300 [ 196.274260] ? __fget_light+0x2e9/0x430 [ 196.278241] ? fget_raw+0x20/0x20 [ 196.281726] ? _copy_to_user+0xc8/0x110 [ 196.285769] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 196.291344] ? put_timespec64+0x10f/0x1b0 [ 196.295502] ? nsecs_to_jiffies+0x30/0x30 [ 196.299702] ? do_syscall_64+0x9a/0x820 [ 196.303710] ? do_syscall_64+0x9a/0x820 [ 196.307687] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 196.312279] ? security_file_ioctl+0x94/0xc0 [ 196.316697] ksys_ioctl+0xa9/0xd0 [ 196.320176] __x64_sys_ioctl+0x73/0xb0 [ 196.324070] do_syscall_64+0x1b9/0x820 [ 196.327957] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 196.333377] ? syscall_return_slowpath+0x5e0/0x5e0 [ 196.338325] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 196.343178] ? trace_hardirqs_on_caller+0x310/0x310 [ 196.348199] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 196.353215] ? prepare_exit_to_usermode+0x291/0x3b0 [ 196.358249] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 196.363115] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 196.368316] RIP: 0033:0x457669 [ 196.371512] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 196.390558] RSP: 002b:00007f5763733c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 196.398262] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457669 [ 196.405543] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 196.412826] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 196.420114] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f57637346d4 [ 196.427389] R13: 00000000004c00ff R14: 00000000004d1170 R15: 00000000ffffffff [ 196.434709] [ 196.436347] Allocated by task 7507: [ 196.440009] save_stack+0x43/0xd0 [ 196.443473] kasan_kmalloc+0xcb/0xd0 [ 196.447192] kasan_slab_alloc+0x12/0x20 [ 196.451185] kmem_cache_alloc+0x130/0x730 [ 196.455338] vmx_create_vcpu+0x110/0x2695 [ 196.459486] kvm_arch_vcpu_create+0xe5/0x220 [ 196.463892] kvm_vm_ioctl+0x526/0x2030 [ 196.467784] do_vfs_ioctl+0x1de/0x1790 [ 196.471677] ksys_ioctl+0xa9/0xd0 [ 196.475151] __x64_sys_ioctl+0x73/0xb0 [ 196.479042] do_syscall_64+0x1b9/0x820 [ 196.482936] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 196.488116] [ 196.489752] Freed by task 0: [ 196.492772] (stack is not available) [ 196.496477] [ 196.498105] The buggy address belongs to the object at ffff8881d24feb80 [ 196.498105] which belongs to the cache x86_fpu of size 832 [ 196.510434] The buggy address is located 64 bytes inside of [ 196.510434] 832-byte region [ffff8881d24feb80, ffff8881d24feec0) [ 196.522226] The buggy address belongs to the page: [ 196.527162] page:ffffea0007493f80 count:1 mapcount:0 mapping:ffff8881d78a4800 index:0x0 [ 196.535327] flags: 0x2fffc0000000200(slab) [ 196.539578] raw: 02fffc0000000200 ffff8881d50dd848 ffff8881d50dd848 ffff8881d78a4800 01:17:25 executing program 1: socketpair$unix(0x1, 0x100000000002, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x100000004e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f0000f40ff8)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @loopback}, 0x10) sendmmsg(r1, &(0x7f0000004040)=[{{0x0, 0x0, &(0x7f00000026c0)=[{&(0x7f00000007c0)="606e4e59be899542e7d36ac17957d7150942a440b9b3a513dfe4b8e2676415672c4bbc76e920ca0d6507559f955a547af09380d022d074350ff402415ab7f1ab8655197f0e9537ac63a6a8afa63c007d7ceac2a955d2f1d18148294e58061549442a31fb25c7c45c1e47ec41a7fe7a63f293cc152d6642464b89e5d8dd9c17f9469062925118236d72494f4df79acc65f1f865e95ec68fc47cc4ebfb1bdf52482b7f9cdeb934081f50c4067287571752050fb387967f81138337ed11c3a8b86405f4ce1e41e58bf4d4", 0xc9}], 0x1}}], 0x1, 0x0) ioctl$sock_SIOCBRDELBR(r0, 0x89a1, &(0x7f0000000040)='team_slave_1\x00') shutdown(r1, 0x1) r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x200000, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(r2, 0x10e, 0x5, &(0x7f0000000080)=0x80000001, 0x4) mmap$perf(&(0x7f0000bfd000/0x400000)=nil, 0x400000, 0x80000000000002, 0x3010, r2, 0x0) recvmmsg(r1, &(0x7f0000003a00), 0x3a1, 0x0, 0x0) ioctl$PIO_UNISCRNMAP(r2, 0x4b6a, &(0x7f00000000c0)) [ 196.547468] raw: 0000000000000000 ffff8881d24fe040 0000000100000004 0000000000000000 [ 196.555360] page dumped because: kasan: bad access detected [ 196.561063] [ 196.562694] Memory state around the buggy address: [ 196.567635] ffff8881d24fed80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 196.575014] ffff8881d24fee00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 196.575028] >ffff8881d24fee80: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc [ 196.575035] ^ [ 196.575046] ffff8881d24fef00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 196.575057] ffff8881d24fef80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 196.575068] ================================================================== [ 196.575073] Disabling lock debugging due to kernel taint 01:17:26 executing program 4: bpf$PROG_LOAD(0x5, 0x0, 0xffffffffffffff57) r0 = socket$inet(0x10, 0x4000000003, 0x0) sendmsg(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000140)="24000000220007031dff39d5fd760500000000000000fd21fe1c4095421ba3a20400ff7e", 0x24}], 0x1}, 0x0) [ 196.713218] Kernel panic - not syncing: panic_on_warn set ... [ 196.719156] CPU: 0 PID: 7507 Comm: syz-executor0 Tainted: G B 4.20.0-rc6-next-20181217+ #172 [ 196.729032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 196.738384] Call Trace: [ 196.740976] dump_stack+0x244/0x39d [ 196.744610] ? dump_stack_print_info.cold.1+0x20/0x20 [ 196.749835] ? fpstate_init+0x30/0x160 [ 196.753725] panic+0x2ad/0x632 [ 196.756919] ? add_taint.cold.5+0x16/0x16 [ 196.761071] ? preempt_schedule+0x4d/0x60 [ 196.765243] ? ___preempt_schedule+0x16/0x18 [ 196.769667] ? trace_hardirqs_on+0xb4/0x310 [ 196.773998] ? fpstate_init+0x50/0x160 [ 196.777895] end_report+0x47/0x4f [ 196.781354] kasan_report.cold.5+0xe/0x39 [ 196.785522] ? fpstate_init+0x50/0x160 [ 196.789426] ? fpstate_init+0x50/0x160 [ 196.793320] check_memory_region+0x13e/0x1b0 [ 196.797732] memset+0x23/0x40 [ 196.800846] fpstate_init+0x50/0x160 [ 196.804567] kvm_arch_vcpu_init+0x3e9/0x870 [ 196.808897] kvm_vcpu_init+0x2fa/0x420 [ 196.812804] ? vcpu_stat_get+0x300/0x300 [ 196.816884] ? kmem_cache_alloc+0x33f/0x730 [ 196.821223] vmx_create_vcpu+0x1b7/0x2695 [ 196.825386] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 196.830502] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 196.835121] ? preempt_schedule+0x4d/0x60 [ 196.839289] ? preempt_schedule_common+0x1f/0xe0 [ 196.844042] ? vmx_exec_control+0x210/0x210 [ 196.848368] ? ___preempt_schedule+0x16/0x18 [ 196.852795] ? kasan_check_write+0x14/0x20 [ 196.857031] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 196.861963] ? wait_for_completion+0x8a0/0x8a0 [ 196.866557] ? print_usage_bug+0xc0/0xc0 [ 196.870632] ? migrate_swap_stop+0x8a0/0x8a0 [ 196.875052] kvm_arch_vcpu_create+0xe5/0x220 [ 196.879467] ? kvm_arch_vcpu_free+0x90/0x90 [ 196.883797] kvm_vm_ioctl+0x526/0x2030 [ 196.887686] ? kvm_unregister_device_ops+0x70/0x70 [ 196.892623] ? mark_held_locks+0x130/0x130 [ 196.896872] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 196.902067] ? drop_futex_key_refs.isra.14+0x6d/0xe0 [ 196.907181] ? futex_wake+0x304/0x760 [ 196.910980] ? __lock_acquire+0x62f/0x4c20 [ 196.915236] ? mark_held_locks+0x130/0x130 [ 196.919483] ? graph_lock+0x270/0x270 [ 196.923287] ? do_futex+0x249/0x26d0 [ 196.926995] ? rcu_read_unlock_special+0x370/0x370 [ 196.931929] ? rcu_softirq_qs+0x20/0x20 [ 196.935912] ? unwind_dump+0x190/0x190 [ 196.939793] ? find_held_lock+0x36/0x1c0 [ 196.943848] ? __fget+0x4aa/0x740 [ 196.947314] ? lock_downgrade+0x900/0x900 [ 196.951451] ? check_preemption_disabled+0x48/0x280 [ 196.956458] ? kasan_check_read+0x11/0x20 [ 196.960594] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 196.965862] ? rcu_read_unlock_special+0x370/0x370 [ 196.970822] ? __fget+0x4d1/0x740 [ 196.974269] ? ksys_dup3+0x680/0x680 [ 196.977993] ? __might_fault+0x12b/0x1e0 [ 196.982101] ? lock_downgrade+0x900/0x900 [ 196.986276] ? lock_release+0xa00/0xa00 [ 196.990255] ? perf_trace_sched_process_exec+0x860/0x860 [ 196.995702] ? kvm_unregister_device_ops+0x70/0x70 [ 197.000627] do_vfs_ioctl+0x1de/0x1790 [ 197.004559] ? ioctl_preallocate+0x300/0x300 [ 197.008975] ? __fget_light+0x2e9/0x430 [ 197.012940] ? fget_raw+0x20/0x20 [ 197.016394] ? _copy_to_user+0xc8/0x110 [ 197.020369] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 197.025903] ? put_timespec64+0x10f/0x1b0 [ 197.030052] ? nsecs_to_jiffies+0x30/0x30 [ 197.034197] ? do_syscall_64+0x9a/0x820 [ 197.038172] ? do_syscall_64+0x9a/0x820 [ 197.042149] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 197.046730] ? security_file_ioctl+0x94/0xc0 [ 197.051159] ksys_ioctl+0xa9/0xd0 [ 197.054615] __x64_sys_ioctl+0x73/0xb0 [ 197.058532] do_syscall_64+0x1b9/0x820 [ 197.062414] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 197.067780] ? syscall_return_slowpath+0x5e0/0x5e0 [ 197.072709] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 197.077578] ? trace_hardirqs_on_caller+0x310/0x310 [ 197.082627] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 197.087641] ? prepare_exit_to_usermode+0x291/0x3b0 [ 197.092674] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 197.097560] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 197.102742] RIP: 0033:0x457669 [ 197.105928] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 197.124819] RSP: 002b:00007f5763733c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 197.132549] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457669 [ 197.139814] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 197.147073] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 197.154336] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f57637346d4 [ 197.161592] R13: 00000000004c00ff R14: 00000000004d1170 R15: 00000000ffffffff [ 197.169808] Kernel Offset: disabled [ 197.173432] Rebooting in 86400 seconds..