[ 35.100817] IPVS: ftp: loaded support on port[0] = 21 [ 36.232508] can: request_module (can-proto-0) failed. [ 36.241424] can: request_module (can-proto-0) failed. [ 36.250084] can: request_module (can-proto-0) failed. [ 36.392575] audit: type=1400 audit(1576950460.190:38): avc: denied { create } for pid=6693 comm="syz-fuzzer" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_crypto_socket permissive=1 [ 36.417412] audit: type=1400 audit(1576950460.220:39): avc: denied { create } for pid=6693 comm="syz-fuzzer" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 36.441547] audit: type=1400 audit(1576950460.220:40): avc: denied { create } for pid=6693 comm="syz-fuzzer" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 [ 36.605700] random: sshd: uninitialized urandom read (32 bytes read) [ 37.359876] random: sshd: uninitialized urandom read (32 bytes read) [ 37.542613] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.1.58' (ECDSA) to the list of known hosts. 2019/12/21 17:47:47 parsed 1 programs 2019/12/21 17:47:47 executed programs: 0 [ 43.362832] IPVS: ftp: loaded support on port[0] = 21 [ 44.027514] IPVS: ftp: loaded support on port[0] = 21 [ 44.071991] chnl_net:caif_netlink_parms(): no params data found [ 44.115778] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.122333] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.129126] device bridge_slave_0 entered promiscuous mode [ 44.136681] IPVS: ftp: loaded support on port[0] = 21 [ 44.136735] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.148234] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.155311] device bridge_slave_1 entered promiscuous mode [ 44.199823] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 44.215964] chnl_net:caif_netlink_parms(): no params data found [ 44.224631] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 44.265825] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 44.273198] team0: Port device team_slave_0 added [ 44.287075] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 44.294499] team0: Port device team_slave_1 added [ 44.295032] IPVS: ftp: loaded support on port[0] = 21 [ 44.299854] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 44.312932] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.319280] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.326499] device bridge_slave_0 entered promiscuous mode [ 44.334538] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 44.352881] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.359249] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.366113] device bridge_slave_1 entered promiscuous mode [ 44.451765] device hsr_slave_0 entered promiscuous mode [ 44.490190] device hsr_slave_1 entered promiscuous mode [ 44.583189] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 44.591144] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 44.598544] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 44.621981] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 44.629411] audit: type=1400 audit(1576950468.420:41): avc: denied { write } for pid=6796 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 44.655892] audit: type=1400 audit(1576950468.450:42): avc: denied { read } for pid=6796 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 44.707054] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 44.714211] team0: Port device team_slave_0 added [ 44.719723] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 44.727041] team0: Port device team_slave_1 added [ 44.734068] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 44.741446] chnl_net:caif_netlink_parms(): no params data found [ 44.758290] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 44.774144] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.780620] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.787434] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.793792] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.850928] IPVS: ftp: loaded support on port[0] = 21 [ 44.871822] device hsr_slave_0 entered promiscuous mode [ 44.910209] device hsr_slave_1 entered promiscuous mode [ 44.974547] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.981319] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.988095] device bridge_slave_0 entered promiscuous mode [ 44.996216] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.002749] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.009580] device bridge_slave_1 entered promiscuous mode [ 45.023244] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 45.036859] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 45.067473] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 45.079282] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 45.101966] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 45.109082] team0: Port device team_slave_0 added [ 45.123009] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.129972] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.139396] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 45.146479] team0: Port device team_slave_1 added [ 45.152078] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 45.161187] chnl_net:caif_netlink_parms(): no params data found [ 45.180554] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 45.233264] device hsr_slave_0 entered promiscuous mode [ 45.260259] device hsr_slave_1 entered promiscuous mode [ 45.334007] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 45.341798] IPVS: ftp: loaded support on port[0] = 21 [ 45.353831] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 45.367940] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 45.382987] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.389377] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.396296] device bridge_slave_0 entered promiscuous mode [ 45.408737] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.415497] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.422844] device bridge_slave_1 entered promiscuous mode [ 45.442247] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 45.464880] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 45.475027] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 45.538457] 8021q: adding VLAN 0 to HW filter on device bond0 [ 45.547368] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 45.554977] team0: Port device team_slave_0 added [ 45.560628] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 45.567591] team0: Port device team_slave_1 added [ 45.579628] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 45.587662] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 45.608239] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 45.615057] chnl_net:caif_netlink_parms(): no params data found [ 45.682097] device hsr_slave_0 entered promiscuous mode [ 45.740352] device hsr_slave_1 entered promiscuous mode [ 45.792126] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 45.801447] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 45.807533] 8021q: adding VLAN 0 to HW filter on device team0 [ 45.822209] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 45.829533] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 45.836831] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 45.865338] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 45.873884] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 45.884646] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.891144] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.897899] device bridge_slave_0 entered promiscuous mode [ 45.911789] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 45.919486] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 45.927559] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.933918] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.943418] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 45.953876] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.960399] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.967116] device bridge_slave_1 entered promiscuous mode [ 46.002113] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 46.009765] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 46.017431] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.023794] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.033390] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 46.042643] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 46.069105] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 46.077376] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 46.086711] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 46.100321] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 46.109794] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 46.123046] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 46.133836] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 46.143390] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.152116] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 46.172123] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 46.179676] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 46.187166] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 46.194978] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 46.202609] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 46.211858] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 46.222381] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 46.228999] chnl_net:caif_netlink_parms(): no params data found [ 46.238248] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 46.245490] team0: Port device team_slave_0 added [ 46.252907] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 46.259881] team0: Port device team_slave_1 added [ 46.265298] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 46.274409] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 46.281861] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 46.288540] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 46.297826] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 46.304161] 8021q: adding VLAN 0 to HW filter on device team0 [ 46.312844] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 46.326209] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.333563] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 46.341114] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 46.354117] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 46.362092] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 46.376663] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 46.392452] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 46.398527] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 46.407676] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 46.415541] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 46.423411] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.429736] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.437742] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 46.493576] device hsr_slave_0 entered promiscuous mode [ 46.530442] device hsr_slave_1 entered promiscuous mode [ 46.576474] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 46.585157] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 46.592729] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 46.600485] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 46.607992] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.614343] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.623448] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 46.639301] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 46.647129] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 46.656735] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 46.664445] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 46.671255] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 46.677946] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 46.695676] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 46.701934] 8021q: adding VLAN 0 to HW filter on device team0 [ 46.713474] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 46.722658] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.728996] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.736240] device bridge_slave_0 entered promiscuous mode [ 46.743602] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready [ 46.749794] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.758959] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.765751] device bridge_slave_1 entered promiscuous mode [ 46.776711] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 46.784325] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 46.792039] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 46.799574] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 46.807189] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.813546] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.820334] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 46.829385] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.847025] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 46.859260] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 46.867119] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 46.874598] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 46.883440] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 46.892101] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 46.903822] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 46.911889] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 46.919527] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.925951] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.932849] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 46.940448] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 46.947798] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 46.954514] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 46.961315] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 46.969843] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 46.980825] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 46.995740] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 47.007291] team0: Port device team_slave_0 added [ 47.015092] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 47.023598] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 47.032774] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 47.041173] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 47.048210] team0: Port device team_slave_1 added [ 47.053862] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 47.061424] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 47.068729] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 47.076440] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 47.083388] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 47.092967] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 47.101482] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 47.110641] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 47.116693] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.128084] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 47.139554] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 47.147151] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 47.154964] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 47.165065] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 47.174197] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 47.182678] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 47.189696] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 47.201360] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 47.215112] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 47.222738] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 47.230139] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 47.237453] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 47.244868] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 47.252747] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 47.260398] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.266729] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.274112] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 47.281379] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 47.290148] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 47.300753] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 47.347829] ================================================================== [ 47.355268] BUG: KASAN: slab-out-of-bounds in bpf_clone_redirect+0x27b/0x2b0 [ 47.362430] Read of size 8 at addr ffff88809159b3d0 by task syz-executor.1/6826 [ 47.369848] [ 47.371453] CPU: 0 PID: 6826 Comm: syz-executor.1 Not tainted 4.14.160-syzkaller #0 [ 47.379217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 47.388545] Call Trace: [ 47.391146] dump_stack+0xf7/0x13b [ 47.394663] ? bpf_clone_redirect+0x27b/0x2b0 [ 47.399140] print_address_description.cold.7+0x9/0x1c9 [ 47.404475] ? bpf_clone_redirect+0x27b/0x2b0 [ 47.408946] kasan_report.cold.8+0x11a/0x2d3 [ 47.413332] __asan_report_load8_noabort+0x14/0x20 [ 47.418237] bpf_clone_redirect+0x27b/0x2b0 [ 47.422571] bpf_prog_3c8dfff8b3098609+0x748/0x1000 [ 47.427568] ? trace_hardirqs_on+0x10/0x10 [ 47.431776] ? trace_hardirqs_off+0x10/0x10 [ 47.436080] ? find_held_lock+0x36/0x1d0 [ 47.440116] ? bpf_test_run+0x32/0x2d0 [ 47.443975] ? lock_downgrade+0x7f0/0x7f0 [ 47.448095] ? lock_acquire+0x173/0x400 [ 47.452043] ? bpf_test_run+0x159/0x2d0 [ 47.455992] ? bpf_test_run+0x8a/0x2d0 [ 47.459851] ? eth_gro_receive+0x880/0x880 [ 47.464063] ? bpf_prog_test_run_skb+0x58a/0xbc0 [ 47.468793] ? bpf_test_init.isra.6+0xa0/0xa0 [ 47.473261] ? __bpf_prog_get+0x128/0x170 [ 47.477381] ? SyS_bpf+0x97e/0x28d3 [ 47.481087] ? bpf_prog_get+0x10/0x10 [ 47.484865] ? kasan_check_read+0x11/0x20 [ 47.488988] ? _copy_to_user+0x91/0xb0 [ 47.492857] ? put_timespec64+0xa4/0xf0 [ 47.496809] ? nsecs_to_jiffies+0x20/0x20 [ 47.500928] ? SyS_clock_gettime+0x115/0x160 [ 47.505312] ? do_syscall_64+0x4c/0x5b0 [ 47.509263] ? bpf_prog_get+0x10/0x10 [ 47.513040] ? do_syscall_64+0x1c7/0x5b0 [ 47.517073] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 47.521893] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 47.527234] [ 47.528835] Allocated by task 0: [ 47.532182] (stack is not available) [ 47.535869] [ 47.537474] Freed by task 0: [ 47.540477] (stack is not available) [ 47.544162] [ 47.545768] The buggy address belongs to the object at ffff88809159b340 [ 47.545768] which belongs to the cache skbuff_head_cache of size 232 [ 47.558933] The buggy address is located 144 bytes inside of [ 47.558933] 232-byte region [ffff88809159b340, ffff88809159b428) [ 47.570782] The buggy address belongs to the page: [ 47.575697] page:ffffea00024566c0 count:1 mapcount:0 mapping:ffff88809159b0c0 index:0x0 [ 47.583825] flags: 0x1fffc0000000100(slab) [ 47.588039] raw: 01fffc0000000100 ffff88809159b0c0 0000000000000000 000000010000000c [ 47.595980] raw: ffffea00023fc6e0 ffff8880a9e13c48 ffff88821b75e540 0000000000000000 [ 47.603834] page dumped because: kasan: bad access detected [ 47.609514] [ 47.611117] Memory state around the buggy address: [ 47.616018] ffff88809159b280: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 47.623395] ffff88809159b300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 47.630737] >ffff88809159b380: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 47.638075] ^ [ 47.644061] ffff88809159b400: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 47.651502] ffff88809159b480: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 47.658836] ================================================================== [ 47.666167] Disabling lock debugging due to kernel taint [ 47.672421] Kernel panic - not syncing: panic_on_warn set ... [ 47.672421] [ 47.673866] kobject: 'hsr0' (ffff888090bbc9f0): kobject_add_internal: parent: 'net', set: 'devices' [ 47.679798] CPU: 0 PID: 6826 Comm: syz-executor.1 Tainted: G B 4.14.160-syzkaller #0 [ 47.679801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 47.679803] Call Trace: [ 47.679813] dump_stack+0xf7/0x13b [ 47.679820] ? bpf_clone_redirect+0x27b/0x2b0 [ 47.695293] kobject: 'hsr0' (ffff888090bbc9f0): kobject_uevent_env [ 47.697973] panic+0x1b0/0x358 [ 47.697979] ? add_taint.cold.5+0x11/0x11 [ 47.707377] kobject: 'hsr0' (ffff888090bbc9f0): fill_kobj_path: path = '/devices/virtual/net/hsr0' [ 47.709883] ? bpf_clone_redirect+0x27b/0x2b0 [ 47.709887] kasan_end_report+0x47/0x4f [ 47.709891] kasan_report.cold.8+0x76/0x2d3 [ 47.713874] kobject: 'queues' (ffff8880825b7f48): kobject_add_internal: parent: 'hsr0', set: '' [ 47.717880] __asan_report_load8_noabort+0x14/0x20 [ 47.717885] bpf_clone_redirect+0x27b/0x2b0 [ 47.717891] bpf_prog_3c8dfff8b3098609+0x748/0x1000 [ 47.724261] kobject: 'queues' (ffff8880825b7f48): kobject_uevent_env [ 47.727392] ? trace_hardirqs_on+0x10/0x10 [ 47.727396] ? trace_hardirqs_off+0x10/0x10 [ 47.727401] ? find_held_lock+0x36/0x1d0 [ 47.731696] kobject: 'queues' (ffff8880825b7f48): kobject_uevent_env: filter function caused the event to drop! [ 47.740602] ? bpf_test_run+0x32/0x2d0 [ 47.740607] ? lock_downgrade+0x7f0/0x7f0 [ 47.740612] ? lock_acquire+0x173/0x400 [ 47.740616] ? bpf_test_run+0x159/0x2d0 [ 47.745124] kobject: 'rx-0' (ffff88808fa23e50): kobject_add_internal: parent: 'queues', set: 'queues' [ 47.749044] ? bpf_test_run+0x8a/0x2d0 [ 47.749048] ? eth_gro_receive+0x880/0x880 [ 47.749054] ? bpf_prog_test_run_skb+0x58a/0xbc0 [ 47.753590] kobject: 'rx-0' (ffff88808fa23e50): kobject_uevent_env [ 47.762685] ? bpf_test_init.isra.6+0xa0/0xa0 [ 47.762692] ? __bpf_prog_get+0x128/0x170 [ 47.762696] ? SyS_bpf+0x97e/0x28d3 [ 47.762701] ? bpf_prog_get+0x10/0x10 [ 47.767675] kobject: 'rx-0' (ffff88808fa23e50): fill_kobj_path: path = '/devices/virtual/net/hsr0/queues/rx-0' [ 47.771930] ? kasan_check_read+0x11/0x20 [ 47.771935] ? _copy_to_user+0x91/0xb0 [ 47.771941] ? put_timespec64+0xa4/0xf0 [ 47.771944] ? nsecs_to_jiffies+0x20/0x20 [ 47.771950] ? SyS_clock_gettime+0x115/0x160 [ 47.777380] kobject: 'tx-0' (ffff888092d000d8): kobject_add_internal: parent: 'queues', set: 'queues' [ 47.783410] ? do_syscall_64+0x4c/0x5b0 [ 47.783416] ? bpf_prog_get+0x10/0x10 [ 47.783419] ? do_syscall_64+0x1c7/0x5b0 [ 47.783424] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 47.787794] kobject: 'tx-0' (ffff888092d000d8): kobject_uevent_env [ 47.791937] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 47.797237] Kernel Offset: disabled [ 47.939443] Rebooting in 86400 seconds..