Warning: Permanently added '10.128.1.7' (ECDSA) to the list of known hosts. [ 33.387136] audit: type=1400 audit(1596683835.658:8): avc: denied { execmem } for pid=6349 comm="syz-executor042" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 33.632027] IPVS: ftp: loaded support on port[0] = 21 [ 34.472521] chnl_net:caif_netlink_parms(): no params data found [ 34.525890] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.532812] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.539791] device bridge_slave_0 entered promiscuous mode [ 34.547211] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.554012] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.561796] device bridge_slave_1 entered promiscuous mode [ 34.577932] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 34.586691] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 34.605111] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 34.612293] team0: Port device team_slave_0 added [ 34.617691] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 34.625237] team0: Port device team_slave_1 added [ 34.640117] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 34.646563] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 34.674338] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 34.686083] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 34.692632] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 34.718066] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 34.728857] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 34.736604] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 34.802337] device hsr_slave_0 entered promiscuous mode [ 34.840364] device hsr_slave_1 entered promiscuous mode [ 34.900680] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 34.907776] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 34.968038] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.974481] bridge0: port 2(bridge_slave_1) entered forwarding state [ 34.981407] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.987761] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.017492] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 35.024761] 8021q: adding VLAN 0 to HW filter on device bond0 [ 35.034340] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 35.043075] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 35.051592] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.058544] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.068109] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 35.074677] 8021q: adding VLAN 0 to HW filter on device team0 [ 35.083294] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 35.091206] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.097530] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.110813] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 35.118522] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.124925] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.135141] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 35.143257] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 35.152546] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 35.165505] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 35.175316] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 35.186202] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 35.193175] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 35.201179] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 35.209064] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 35.221491] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready [ 35.228811] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 35.235869] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 35.246014] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 35.299430] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready [ 35.309510] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 35.336565] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready [ 35.344367] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready [ 35.351787] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready [ 35.361349] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 35.369210] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 35.376711] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 35.386253] device veth0_vlan entered promiscuous mode [ 35.395470] device veth1_vlan entered promiscuous mode [ 35.401764] IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready [ 35.411359] IPv6: ADDRCONF(NETDEV_UP): macvlan1: link is not ready [ 35.422835] IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready [ 35.432093] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 35.439222] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 35.446879] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 35.454717] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 35.463772] device veth0_macvtap entered promiscuous mode [ 35.473350] device veth1_macvtap entered promiscuous mode [ 35.482210] IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready [ 35.492188] IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready [ 35.502591] IPv6: ADDRCONF(NETDEV_UP): batadv_slave_0: link is not ready [ 35.510015] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 35.516833] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 35.524878] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 35.534993] IPv6: ADDRCONF(NETDEV_UP): batadv_slave_1: link is not ready [ 35.542541] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 35.549080] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 35.557363] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready executing program [ 36.725507] kasan: CONFIG_KASAN_INLINE enabled [ 36.730229] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 36.740440] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 36.746692] Modules linked in: [ 36.749890] CPU: 0 PID: 6588 Comm: kworker/u5:2 Not tainted 4.14.192-syzkaller #0 [ 36.757504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 36.766869] Workqueue: hci0 hci_rx_work [ 36.770934] task: ffff888095b38340 task.stack: ffff888097408000 [ 36.776977] RIP: 0010:hci_phy_link_complete_evt.isra.0+0x1f3/0x6c0 [ 36.783350] RSP: 0018:ffff88809740fad0 EFLAGS: 00010202 [ 36.788691] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 1ffff11012b67188 [ 36.795983] RDX: 0000000000000002 RSI: 0000000000000004 RDI: 0000000000000010 [ 36.803237] RBP: ffff888095866d40 R08: 0000000000000000 R09: 0000000000000003 [ 36.810573] R10: 0000000000000000 R11: ffff888095b38340 R12: ffff888095b99ae8 [ 36.817846] R13: 0000000000000000 R14: ffff888097b947cb R15: ffff888095b98b90 [ 36.825197] FS: 0000000000000000(0000) GS:ffff8880aea00000(0000) knlGS:0000000000000000 [ 36.833408] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 36.839284] CR2: 0000555bce9c4948 CR3: 000000009533f000 CR4: 00000000001406f0 [ 36.846891] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 36.854139] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 36.861479] Call Trace: [ 36.864060] hci_event_packet+0x2592/0x7c7a [ 36.868370] ? trace_hardirqs_on+0x10/0x10 [ 36.872593] ? hci_cmd_complete_evt+0x9590/0x9590 [ 36.877433] ? trace_hardirqs_on+0x10/0x10 [ 36.881651] ? debug_object_deactivate+0x1da/0x2e0 [ 36.886644] ? skb_dequeue+0x120/0x170 [ 36.890524] ? mark_held_locks+0xa6/0xf0 [ 36.894655] ? _raw_spin_unlock_irqrestore+0x79/0xe0 [ 36.899753] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 36.904745] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 36.909824] hci_rx_work+0x3e6/0x970 [ 36.913668] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 36.919108] process_one_work+0x793/0x14a0 [ 36.923320] ? work_busy+0x320/0x320 [ 36.927022] ? worker_thread+0x158/0xff0 [ 36.931073] ? _raw_spin_unlock_irq+0x24/0x80 [ 36.935566] worker_thread+0x5cc/0xff0 [ 36.939441] ? rescuer_thread+0xc80/0xc80 [ 36.943594] kthread+0x30d/0x420 [ 36.946949] ? kthread_create_on_node+0xd0/0xd0 [ 36.951616] ret_from_fork+0x24/0x30 [ 36.955338] Code: fa 48 c1 ea 03 80 3c 02 00 0f 85 dd 04 00 00 48 8b 9d 40 08 00 00 48 b8 00 00 00 00 00 fc ff df 48 8d 7b 10 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 a0 04 00 00 48 b8 00 00 00 00 00 fc ff df 48 [ 36.975363] RIP: hci_phy_link_complete_evt.isra.0+0x1f3/0x6c0 RSP: ffff88809740fad0 [ 36.998745] ---[ end trace 3d7945743fed2f16 ]--- [ 37.003530] Kernel panic - not syncing: Fatal exception [ 37.010188] Kernel Offset: disabled [ 37.013808] Rebooting in 86400 seconds..