Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 syzkaller login: [ 47.345372] audit: type=1400 audit(1592586421.027:8): avc: denied { execmem } for pid=5739 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 47.381578] IPVS: Creating netns size=2712 id=1 [ 47.386503] IPVS: ftp: loaded support on port[0] = 21 [ 48.016506] audit: type=1400 audit(1592586421.708:9): avc: denied { create } for pid=5726 comm="syz-fuzzer" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dccp_socket permissive=1 Warning: Permanently added '10.128.10.36' (ECDSA) to the list of known hosts. 2020/06/19 17:07:09 parsed 1 programs 2020/06/19 17:07:09 executed programs: 0 [ 55.841653] audit: type=1400 audit(1592586429.534:10): avc: denied { execmem } for pid=5877 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 55.936518] IPv6: ADDRCONF(NETDEV_CHANGE): nr0: link becomes ready [ 55.948814] IPv6: ADDRCONF(NETDEV_CHANGE): nr1: link becomes ready [ 55.957434] IPv6: ADDRCONF(NETDEV_CHANGE): nr4: link becomes ready [ 55.965384] IPv6: ADDRCONF(NETDEV_CHANGE): nr3: link becomes ready [ 55.974034] IPv6: ADDRCONF(NETDEV_CHANGE): nr2: link becomes ready [ 55.982255] IPv6: ADDRCONF(NETDEV_CHANGE): nr5: link becomes ready [ 56.001069] IPVS: Creating netns size=2712 id=2 [ 56.005824] IPVS: ftp: loaded support on port[0] = 21 [ 56.080903] IPVS: Creating netns size=2712 id=3 [ 56.085767] IPVS: ftp: loaded support on port[0] = 21 [ 56.241867] chnl_net:caif_netlink_parms(): no params data found [ 56.291479] IPVS: Creating netns size=2712 id=4 [ 56.296309] IPVS: ftp: loaded support on port[0] = 21 [ 56.503024] chnl_net:caif_netlink_parms(): no params data found [ 56.531593] IPVS: Creating netns size=2712 id=5 [ 56.537248] IPVS: ftp: loaded support on port[0] = 21 [ 56.761051] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.768738] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.779046] device bridge_slave_0 entered promiscuous mode [ 56.806681] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.813223] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.823306] device bridge_slave_1 entered promiscuous mode [ 56.892849] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 56.906741] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 56.918907] IPVS: Creating netns size=2712 id=6 [ 56.933549] IPVS: ftp: loaded support on port[0] = 21 [ 56.934182] chnl_net:caif_netlink_parms(): no params data found [ 57.126945] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.134227] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.143887] device bridge_slave_0 entered promiscuous mode [ 57.183590] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.190698] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.200447] device bridge_slave_1 entered promiscuous mode [ 57.373760] batman_adv: Unable to register the batman interface 'batadv0': -12 [ 57.401513] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 57.410670] batman_adv: Unable to register the batman interface 'batadv0': -12 [ 57.431480] chnl_net:caif_netlink_parms(): no params data found [ 57.449321] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 57.458585] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 57.478946] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 57.504059] IPVS: Creating netns size=2712 id=7 [ 57.509871] IPVS: ftp: loaded support on port[0] = 21 [ 57.776451] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.783297] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.792957] device bridge_slave_0 entered promiscuous mode [ 57.863867] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 57.903461] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.911642] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.921934] device bridge_slave_1 entered promiscuous mode [ 57.971950] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 58.021467] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 58.077400] chnl_net:caif_netlink_parms(): no params data found [ 58.095191] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 58.104401] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 58.182969] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 58.383048] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.389936] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.399944] device bridge_slave_0 entered promiscuous mode [ 58.478378] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.485108] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.495294] device bridge_slave_1 entered promiscuous mode [ 58.550200] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 58.654044] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 58.663475] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 58.694143] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 58.728363] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 58.773356] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 58.859388] chnl_net:caif_netlink_parms(): no params data found [ 59.089281] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.095792] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.105696] device bridge_slave_0 entered promiscuous mode [ 59.115457] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 59.184031] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.190625] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.199951] device bridge_slave_1 entered promiscuous mode [ 59.229713] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 59.335874] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 59.372200] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 59.382622] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 59.437251] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 59.445898] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 59.687445] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.693810] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.703528] device bridge_slave_0 entered promiscuous mode [ 59.756684] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.763075] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.772875] device bridge_slave_1 entered promiscuous mode [ 59.801841] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 59.898259] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 59.915959] ------------[ cut here ]------------ [ 59.920758] WARNING: CPU: 0 PID: 5888 at fs/sysfs/dir.c:31 sysfs_warn_dup+0x7b/0xa0 [ 59.930113] sysfs: cannot create duplicate filename '/class/macvtap/tap50' [ 59.937170] Kernel panic - not syncing: panic_on_warn set ... [ 59.937170] [ 59.944518] CPU: 0 PID: 5888 Comm: syz-executor.4 Not tainted 4.6.0-syzkaller #0 [ 59.952026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 59.961366] 0000000000000000 ffff8800b1d96fc8 ffffffff82c65e52 ffffffff85c81040 [ 59.969397] ffff8800b1d970a0 ffffffff85d2bb80 ffffffff8191bd7b 0000000000000009 [ 59.977490] ffff8800b1d97090 ffffffff8160d884 0000000041b58ab3 ffffffff868f05e2 [ 59.985588] Call Trace: [ 59.988157] [] dump_stack+0x136/0x1d4 [ 59.993597] [] ? sysfs_warn_dup+0x7b/0xa0 [ 59.999375] [] panic+0x1af/0x348 [ 60.004367] [] ? to_vmem_altmap+0x125/0x125 [ 60.010335] [] ? sysfs_warn_dup+0x7b/0xa0 [ 60.016110] [] __warn+0x18d/0x1b0 [ 60.021201] [] warn_slowpath_fmt+0x92/0xb0 [ 60.027062] [] ? __warn+0x1b0/0x1b0 [ 60.032330] [] ? kernfs_path_from_node+0x4a/0x60 [ 60.038728] [] sysfs_warn_dup+0x7b/0xa0 [ 60.044329] [] sysfs_do_create_link_sd.isra.0+0xd1/0xf0 [ 60.051330] [] sysfs_create_link+0x43/0xb0 [ 60.057240] [] device_add+0x677/0x1350 [ 60.063010] [] ? device_private_init+0x180/0x180 [ 60.069407] [] ? kfree_const+0x1d/0x20 [ 60.074927] [] ? kobject_set_name_vargs+0xb4/0x130 [ 60.081494] [] device_create_groups_vargs+0x1c8/0x220 [ 60.088325] [] device_create+0x88/0xa0 [ 60.093844] [] ? device_create_vargs+0x20/0x20 [ 60.100052] [] ? macvlan_set_mac_address+0x150/0x150 [ 60.106968] [] macvtap_device_event+0x1c4/0x2a0 [ 60.113356] [] notifier_call_chain+0x8b/0x170 [ 60.119478] [] raw_notifier_call_chain+0x11/0x20 [ 60.125926] [] call_netdevice_notifiers_info+0x47/0x80 [ 60.132839] [] register_netdevice+0x8e8/0xd00 [ 60.138980] [] ? netdev_change_features+0x80/0x80 [ 60.145456] [] ? dev_get_nest_level+0x10c/0x1a0 [ 60.151755] [] macvlan_common_newlink+0x8b9/0x1090 [ 60.158309] [] macvtap_newlink+0xbf/0x110 [ 60.164109] [] ? __netlink_ns_capable+0xc7/0xf0 [ 60.170425] [] rtnl_newlink+0xd4b/0x1230 [ 60.176114] [] ? rtnl_link_ops_get+0x5d/0x90 [ 60.182165] [] ? rtnl_newlink+0x319/0x1230 [ 60.188028] [] ? debug_lockdep_rcu_enabled+0x77/0x90 [ 60.194757] [] ? rtnl_setlink+0x2f0/0x2f0 [ 60.200537] [] ? avc_has_perm_noaudit+0x148/0x270 [ 60.207025] [] ? avc_has_perm_noaudit+0x165/0x270 [ 60.213494] [] ? avc_has_perm_noaudit+0x69/0x270 [ 60.219885] [] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 60.226906] [] ? cred_has_capability.isra.35+0xe9/0x1d0 [ 60.233985] [] ? __netlink_ns_capable+0xc7/0xf0 [ 60.240370] [] rtnetlink_rcv_msg+0x222/0x680 [ 60.247079] [] ? trace_hardirqs_on_caller+0x49e/0x5c0 [ 60.253914] [] ? rtnetlink_rcv+0x30/0x30 [ 60.259898] [] ? mutex_lock_nested+0x5fd/0xb30 [ 60.266232] [] ? rtnetlink_rcv+0x16/0x30 [ 60.271949] [] ? netlink_seq_start+0xe0/0xe0 [ 60.278251] [] netlink_rcv_skb+0x242/0x350 [ 60.284118] [] ? rtnetlink_rcv+0x30/0x30 [ 60.289994] [] rtnetlink_rcv+0x25/0x30 [ 60.295868] [] netlink_unicast+0x3da/0x560 [ 60.302032] [] ? netlink_sendskb+0x40/0x40 [ 60.307902] [] netlink_sendmsg+0x9bb/0xb40 [ 60.313778] [] ? nlmsg_notify+0xf0/0xf0 [ 60.319552] [] ? selinux_socket_sendmsg+0x3a/0x50 [ 60.326637] [] ? security_socket_sendmsg+0x6a/0xa0 [ 60.333643] [] ? nlmsg_notify+0xf0/0xf0 [ 60.339278] [] sock_sendmsg+0xb5/0xf0 [ 60.344705] [] SyS_sendto+0x1ca/0x290 [ 60.350481] [] ? SyS_getpeername+0x240/0x240 [ 60.356537] [] ? mntput_no_expire+0xce/0x600 [ 60.362587] [] ? mnt_get_count+0x1c0/0x1c0 [ 60.368997] [] ? mntput+0x52/0x70 [ 60.374105] [] ? task_work_run+0x14a/0x200 [ 60.380386] [] ? trace_hardirqs_on_caller+0x49e/0x5c0 [ 60.387216] [] ? trace_hardirqs_on_thunk+0x1b/0x1d [ 60.393889] [] entry_SYSCALL_64_fastpath+0x23/0xc1 [ 60.401989] Kernel Offset: disabled