Debian GNU/Linux 9 syzkaller ttyS0 syzkaller login: [ 30.278768] audit: type=1400 audit(1587033329.346:8): avc: denied { execmem } for pid=6356 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 30.532072] IPVS: ftp: loaded support on port[0] = 21 [ 31.765276] can: request_module (can-proto-0) failed. [ 31.777166] can: request_module (can-proto-0) failed. [ 31.785574] can: request_module (can-proto-0) failed. [ 31.813479] audit: type=1400 audit(1587033330.878:9): avc: denied { create } for pid=6335 comm="syz-fuzzer" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dccp_socket permissive=1 Warning: Permanently added '10.128.0.205' (ECDSA) to the list of known hosts. 2020/04/16 10:35:38 parsed 1 programs 2020/04/16 10:35:38 executed programs: 0 [ 39.596506] audit: type=1400 audit(1587033338.672:10): avc: denied { execmem } for pid=6478 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 39.916897] IPVS: ftp: loaded support on port[0] = 21 [ 40.737592] IPVS: ftp: loaded support on port[0] = 21 [ 40.801208] chnl_net:caif_netlink_parms(): no params data found [ 40.842370] IPVS: ftp: loaded support on port[0] = 21 [ 40.868015] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.875098] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.882883] device bridge_slave_0 entered promiscuous mode [ 40.891355] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.898305] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.905274] device bridge_slave_1 entered promiscuous mode [ 40.946593] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 40.971859] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 40.998508] IPVS: ftp: loaded support on port[0] = 21 [ 41.024532] chnl_net:caif_netlink_parms(): no params data found [ 41.055257] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 41.063667] team0: Port device team_slave_0 added [ 41.072795] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 41.080819] team0: Port device team_slave_1 added [ 41.136624] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 41.162442] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 41.170027] chnl_net:caif_netlink_parms(): no params data found [ 41.238220] device hsr_slave_0 entered promiscuous mode [ 41.275748] device hsr_slave_1 entered promiscuous mode [ 41.309428] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 41.333684] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.341183] bridge0: port 1(bridge_slave_0) entered disabled state [ 41.349493] IPVS: ftp: loaded support on port[0] = 21 [ 41.352649] device bridge_slave_0 entered promiscuous mode [ 41.364259] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 41.388081] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.394520] bridge0: port 2(bridge_slave_1) entered disabled state [ 41.402722] device bridge_slave_1 entered promiscuous mode [ 41.428670] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 41.441048] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 41.492656] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.499425] bridge0: port 1(bridge_slave_0) entered disabled state [ 41.507116] device bridge_slave_0 entered promiscuous mode [ 41.527034] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 41.534267] team0: Port device team_slave_0 added [ 41.540157] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 41.547623] team0: Port device team_slave_1 added [ 41.552673] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.559601] bridge0: port 2(bridge_slave_1) entered disabled state [ 41.567067] device bridge_slave_1 entered promiscuous mode [ 41.609969] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 41.618761] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 41.663393] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 41.674120] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 41.728852] device hsr_slave_0 entered promiscuous mode [ 41.765611] device hsr_slave_1 entered promiscuous mode [ 41.808669] chnl_net:caif_netlink_parms(): no params data found [ 41.830991] IPVS: ftp: loaded support on port[0] = 21 [ 41.831181] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 41.846324] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 41.852945] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 41.898732] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 41.905917] team0: Port device team_slave_0 added [ 41.933747] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 41.941286] team0: Port device team_slave_1 added [ 42.008716] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 42.042540] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 42.063215] chnl_net:caif_netlink_parms(): no params data found [ 42.072034] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.079451] bridge0: port 1(bridge_slave_0) entered disabled state [ 42.087252] device bridge_slave_0 entered promiscuous mode [ 42.094311] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.102939] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.110484] device bridge_slave_1 entered promiscuous mode [ 42.150121] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 42.197927] device hsr_slave_0 entered promiscuous mode [ 42.235408] device hsr_slave_1 entered promiscuous mode [ 42.285972] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 42.301685] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 42.336129] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 42.363295] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 42.372063] team0: Port device team_slave_0 added [ 42.417306] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.423695] bridge0: port 1(bridge_slave_0) entered disabled state [ 42.432152] device bridge_slave_0 entered promiscuous mode [ 42.439283] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 42.449081] team0: Port device team_slave_1 added [ 42.461769] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 42.487353] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.493802] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.502472] device bridge_slave_1 entered promiscuous mode [ 42.509241] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 42.522502] 8021q: adding VLAN 0 to HW filter on device bond0 [ 42.541868] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 42.570640] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 42.577043] chnl_net:caif_netlink_parms(): no params data found [ 42.617713] device hsr_slave_0 entered promiscuous mode [ 42.655400] device hsr_slave_1 entered promiscuous mode [ 42.698271] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 42.709969] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 42.721316] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 42.729510] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 42.747066] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 42.755586] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 42.770921] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 42.794731] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 42.803728] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 42.810354] 8021q: adding VLAN 0 to HW filter on device team0 [ 42.846854] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 42.875175] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 42.883004] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 42.892033] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.898727] bridge0: port 1(bridge_slave_0) entered forwarding state [ 42.911649] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 42.927307] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 42.935731] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 42.942962] team0: Port device team_slave_0 added [ 42.950541] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 42.960474] team0: Port device team_slave_1 added [ 42.965986] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 42.973320] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 42.981595] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 42.989277] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.995978] bridge0: port 2(bridge_slave_1) entered forwarding state [ 43.003698] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 43.026603] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.033045] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.040585] device bridge_slave_0 entered promiscuous mode [ 43.047785] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.054147] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.061776] device bridge_slave_1 entered promiscuous mode [ 43.068891] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 43.077128] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 43.128094] device hsr_slave_0 entered promiscuous mode [ 43.165538] device hsr_slave_1 entered promiscuous mode [ 43.212084] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 43.229023] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 43.243727] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 43.252646] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 43.266387] 8021q: adding VLAN 0 to HW filter on device bond0 [ 43.281009] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 43.290680] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 43.309246] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 43.322332] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 43.329932] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 43.339222] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 43.352181] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 43.360626] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 43.379962] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 43.397690] 8021q: adding VLAN 0 to HW filter on device bond0 [ 43.404253] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 43.411620] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 43.419314] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 43.427202] team0: Port device team_slave_0 added [ 43.434541] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 43.442319] 8021q: adding VLAN 0 to HW filter on device team0 [ 43.449963] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 43.467775] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 43.476379] team0: Port device team_slave_1 added [ 43.482221] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 43.492067] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 43.501120] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 43.510948] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 43.519151] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 43.533005] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 43.542629] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 43.552423] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 43.560589] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 43.569413] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 43.577885] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 43.587244] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 43.595625] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.601978] bridge0: port 1(bridge_slave_0) entered forwarding state [ 43.609259] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 43.616472] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 43.623703] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 43.649826] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 43.656564] 8021q: adding VLAN 0 to HW filter on device team0 [ 43.663528] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 43.672856] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 43.693362] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 43.702301] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 43.710494] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 43.718909] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 43.727119] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.733605] bridge0: port 2(bridge_slave_1) entered forwarding state [ 43.742449] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 43.751106] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 43.769334] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 43.827343] device hsr_slave_0 entered promiscuous mode [ 43.865106] device hsr_slave_1 entered promiscuous mode [ 43.905524] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 43.913018] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 43.935950] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 43.945687] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 43.953062] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 43.971737] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 43.985581] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 43.993436] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 44.001730] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.008174] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.015867] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 44.025882] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 44.035130] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 44.049087] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 44.058340] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 44.066508] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 44.073547] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 44.082568] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 44.090244] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.096677] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.103850] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 44.112175] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 44.120028] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 44.128779] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 44.137158] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 44.148627] 8021q: adding VLAN 0 to HW filter on device bond0 [ 44.156313] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 44.178682] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 44.185730] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 44.196816] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 44.205844] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 44.213481] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 44.221811] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 44.237387] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready [ 44.250721] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 44.260838] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 44.269987] 8021q: adding VLAN 0 to HW filter on device bond0 [ 44.280906] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 44.288471] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 44.309752] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 44.317705] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 44.327348] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 44.339450] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 44.349782] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 44.358559] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 44.367190] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 44.374890] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 44.382478] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 44.390192] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 44.399677] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 44.409130] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 44.417779] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 44.427069] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 44.438650] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 44.446536] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 44.454806] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 44.462431] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 44.470397] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 44.478320] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 44.488212] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 44.497373] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 44.503591] 8021q: adding VLAN 0 to HW filter on device team0 [ 44.515123] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 44.529773] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 44.537562] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 44.547432] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 44.556178] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 44.563715] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.570145] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.577715] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 44.586714] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 44.595845] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 44.601953] 8021q: adding VLAN 0 to HW filter on device team0 [ 44.615205] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 44.625522] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 44.638907] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 44.645439] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 44.655184] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 44.662669] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 44.672902] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 44.680839] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.687276] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.696115] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 44.703141] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready [ 44.718043] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 44.726686] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 44.744793] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 44.752876] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 44.761432] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 44.769849] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.776307] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.783938] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 44.791974] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 44.805740] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 44.820898] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 44.829072] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 44.838628] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 44.845882] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 44.853787] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 44.861939] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 44.869606] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.876107] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.884796] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 44.895688] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 44.906398] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready [ 44.913838] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 44.920528] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 44.928957] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 44.937616] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 44.946867] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 44.956981] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready [ 44.967901] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 44.977575] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 44.986436] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 44.998912] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 45.007458] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 45.017689] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 45.026656] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 45.034468] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 45.044508] IPv6: ADDRCONF(NETDEV_UP): veth1_virt_wifi: link is not ready [ 45.053083] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 45.065356] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 45.076373] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 45.089579] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 45.103849] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 45.111398] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 45.120067] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 45.129741] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 45.138534] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 45.148950] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 45.159799] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 45.167312] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 45.175726] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 45.186286] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 45.197761] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 45.208535] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 45.222367] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 45.235027] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 45.250671] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 45.262026] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready [ 45.270380] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready [ 45.278054] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready [ 45.291466] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready [ 45.299328] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 45.307909] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 45.318642] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 45.331869] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready [ 45.339486] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 45.347933] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 45.357617] 8021q: adding VLAN 0 to HW filter on device bond0 [ 45.365078] IPv6: ADDRCONF(NETDEV_UP): veth1_vlan: link is not ready [ 45.374510] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 45.380598] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 45.391471] IPv6: ADDRCONF(NETDEV_UP): veth1_virt_wifi: link is not ready [ 45.399329] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 45.408402] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 45.416882] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 45.425718] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 45.433586] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 45.443290] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 45.455614] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 45.462078] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 45.470399] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 45.478573] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 45.490364] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready [ 45.500267] device veth0_vlan entered promiscuous mode [ 45.512353] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 45.522107] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 45.536694] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready [ 45.547155] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 45.553251] 8021q: adding VLAN 0 to HW filter on device team0 [ 45.562037] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 45.569610] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 45.577766] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 45.586212] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 45.592960] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 45.602120] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready [ 45.610207] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready [ 45.617391] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready [ 45.626161] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 45.634677] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 45.642434] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 45.654105] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.660675] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.671086] device veth1_vlan entered promiscuous mode [ 45.677482] IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready [ 45.689316] IPv6: ADDRCONF(NETDEV_UP): veth1_virt_wifi: link is not ready [ 45.701868] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 45.712425] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 45.720433] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 45.728775] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 45.739150] IPv6: ADDRCONF(NETDEV_UP): macvlan1: link is not ready [ 45.748791] IPv6: ADDRCONF(NETDEV_UP): veth1_vlan: link is not ready [ 45.759390] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 45.780065] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 45.791798] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 45.802138] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 45.813162] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 45.821808] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 45.830915] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 45.839199] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.845891] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.853394] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 45.861242] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 45.868646] device veth0_vlan entered promiscuous mode [ 45.891934] device veth1_vlan entered promiscuous mode [ 45.902277] IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready [ 45.912504] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 45.927907] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 45.941772] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready [ 45.960877] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready [ 45.982611] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready [ 45.997529] ================================================================== [ 46.005621] BUG: KASAN: stack-out-of-bounds in update_stack_state+0x561/0x5d0 [ 46.013099] Read of size 8 at addr ffff8880829a71b8 by task syz-executor.3/7564 [ 46.020547] [ 46.022163] CPU: 0 PID: 7564 Comm: syz-executor.3 Not tainted 4.14.176-syzkaller #0 [ 46.029935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 46.039279] Call Trace: [ 46.041868] dump_stack+0xf7/0x13b [ 46.045396] ? update_stack_state+0x561/0x5d0 [ 46.049890] print_address_description.cold.7+0x9/0x1c9 [ 46.055251] ? update_stack_state+0x561/0x5d0 [ 46.059734] kasan_report.cold.8+0x11a/0x2d3 [ 46.064135] __asan_report_load8_noabort+0x14/0x20 [ 46.069058] update_stack_state+0x561/0x5d0 [ 46.073374] ? __read_once_size_nocheck.constprop.9+0x10/0x10 [ 46.079247] ? perf_trace_run_bpf_submit+0xea/0x160 [ 46.084244] ? perf_trace_run_bpf_submit+0xea/0x160 [ 46.089241] __unwind_start+0x189/0x410 [ 46.093209] perf_callchain_kernel+0x23d/0x540 [ 46.097782] ? trace_hardirqs_off+0x10/0x10 [ 46.102166] ? SOFTIRQ_verbose+0x10/0x10 [ 46.106275] ? arch_perf_update_userpage+0x380/0x380 [ 46.111494] get_perf_callchain+0x2c8/0x7d0 [ 46.115826] ? put_callchain_buffers+0x50/0x50 [ 46.120397] ? kvm_sched_clock_read+0x9/0x20 [ 46.124806] ? sched_clock_cpu+0x1b/0x1c0 [ 46.128938] perf_callchain+0x125/0x170 [ 46.133067] ? kvm_is_in_guest+0x10/0x30 [ 46.137282] perf_prepare_sample+0xc90/0x1350 [ 46.141789] ? perf_output_sample+0x1920/0x1920 [ 46.146647] ? perf_prepare_sample+0x1350/0x1350 [ 46.151444] perf_event_output_forward+0xdd/0x1d0 [ 46.156272] ? perf_prepare_sample+0x1350/0x1350 [ 46.161153] ? perf_tp_event+0x42d/0x700 [ 46.165226] ? __this_cpu_preempt_check+0x13/0x20 [ 46.170064] ? __perf_event_account_interrupt+0x21/0x270 [ 46.175594] __perf_event_overflow+0x107/0x300 [ 46.180185] perf_swevent_overflow+0x165/0x210 [ 46.184754] perf_swevent_event+0x1f5/0x2f0 [ 46.189058] ___perf_sw_event+0x26b/0x3f0 [ 46.193185] ? trace_hardirqs_off+0x10/0x10 [ 46.197487] ? perf_pending_event+0xc0/0xc0 [ 46.201793] ? lock_release+0x518/0x830 [ 46.206296] ? set_next_entity+0x261/0x940 [ 46.210521] ? pick_next_entity+0x197/0x390 [ 46.214835] ? trace_hardirqs_off+0x10/0x10 [ 46.219137] ? trace_hardirqs_off+0x10/0x10 [ 46.223456] ? __lock_is_held+0xb5/0x140 [ 46.227514] __schedule+0xf9c/0x1d20 [ 46.231211] ? debug_smp_processor_id+0x17/0x20 [ 46.236476] ? __schedule+0xf9c/0x1d20 [ 46.240345] ? firmware_map_remove+0x177/0x177 [ 46.244906] ? lock_downgrade+0x7f0/0x7f0 [ 46.249036] ? plist_add+0x254/0x4f0 [ 46.252738] schedule+0x7f/0x1b0 [ 46.256089] futex_wait_queue_me+0x2d5/0x580 [ 46.260490] ? __unqueue_futex+0xd0/0xd0 [ 46.265251] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 46.270347] futex_wait+0x253/0x520 [ 46.273962] ? futex_wait_setup+0x2d0/0x2d0 [ 46.278261] ? lock_downgrade+0x7f0/0x7f0 [ 46.282491] ? wake_up_q+0x9c/0xe0 [ 46.286034] ? futex_wake+0x10d/0x570 [ 46.289865] do_futex+0x591/0x17f0 [ 46.293410] ? perf_trace_run_bpf_submit+0xea/0x160 [ 46.298431] ? perf_trace_lock+0x30e/0x500 [ 46.302797] ? futex_exit_release+0x60/0x60 [ 46.307129] ? trace_hardirqs_off+0x10/0x10 [ 46.311437] ? SOFTIRQ_verbose+0x10/0x10 [ 46.315483] ? perf_trace_lock+0x30e/0x500 [ 46.319760] ? __might_fault+0xf1/0x1b0 [ 46.323715] ? lock_downgrade+0x7f0/0x7f0 [ 46.327856] ? kasan_check_read+0x11/0x20 [ 46.331988] ? _copy_to_user+0x91/0xb0 [ 46.335855] ? do_futex+0x17f0/0x17f0 [ 46.339632] SyS_futex+0xf1/0x250 [ 46.343087] ? do_futex+0x17f0/0x17f0 [ 46.346886] ? SyS_clock_gettime+0x115/0x160 [ 46.351275] ? SyS_clock_settime+0x1a0/0x1a0 [ 46.355695] ? do_syscall_64+0x4c/0x5b0 [ 46.359656] ? do_futex+0x17f0/0x17f0 [ 46.363523] do_syscall_64+0x1c7/0x5b0 [ 46.367462] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 46.372314] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 46.377563] RIP: 0033:0x45aff9 [ 46.380739] RSP: 002b:00007f8c0b1e9cf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 46.388438] RAX: ffffffffffffffda RBX: 000000000075bf28 RCX: 000000000045aff9 [ 46.395698] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000075bf28 [ 46.402950] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 46.410214] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000075bf2c [ 46.417572] R13: 00007ffc9d49d02f R14: 00007f8c0b1ea9c0 R15: 000000000075bf2c [ 46.424844] [ 46.426462] The buggy address belongs to the page: [ 46.431376] page:ffffea00020a69c0 count:0 mapcount:0 mapping: (null) index:0x0 [ 46.439500] flags: 0xfffe0000000000() [ 46.443280] raw: 00fffe0000000000 0000000000000000 0000000000000000 00000000ffffffff [ 46.451137] raw: 0000000000000000 0000000100000001 0000000000000000 0000000000000000 [ 46.459007] page dumped because: kasan: bad access detected [ 46.464712] [ 46.466318] Memory state around the buggy address: [ 46.471224] ffff8880829a7080: f1 f1 00 00 00 00 00 00 00 00 00 00 00 00 f3 f3 [ 46.478564] ffff8880829a7100: f3 f3 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 46.485904] >ffff8880829a7180: f1 f1 f1 f1 00 00 00 f2 f3 f3 f3 f3 00 00 00 00 [ 46.493254] ^ [ 46.498432] ffff8880829a7200: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 46.505772] ffff8880829a7280: 00 00 00 00 f1 f1 f1 f1 00 f2 f2 f2 f3 f3 f3 f3 [ 46.513109] ================================================================== [ 46.520446] Kernel panic - not syncing: panic_on_warn set ... [ 46.520446] [ 46.527786] CPU: 0 PID: 7564 Comm: syz-executor.3 Tainted: G B 4.14.176-syzkaller #0 [ 46.536774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 46.546127] Call Trace: [ 46.548709] dump_stack+0xf7/0x13b [ 46.552276] ? update_stack_state+0x561/0x5d0 [ 46.556779] panic+0x1b0/0x358 [ 46.559975] ? add_taint.cold.5+0x11/0x11 [ 46.564109] ? lock_downgrade+0x7f0/0x7f0 [ 46.568342] ? update_stack_state+0x561/0x5d0 [ 46.572839] kasan_end_report+0x47/0x4f [ 46.576900] kasan_report.cold.8+0x76/0x2d3 [ 46.581348] __asan_report_load8_noabort+0x14/0x20 [ 46.586282] update_stack_state+0x561/0x5d0 [ 46.590599] ? __read_once_size_nocheck.constprop.9+0x10/0x10 [ 46.596464] ? perf_trace_run_bpf_submit+0xea/0x160 [ 46.601464] ? perf_trace_run_bpf_submit+0xea/0x160 [ 46.606564] __unwind_start+0x189/0x410 [ 46.610559] perf_callchain_kernel+0x23d/0x540 [ 46.615134] ? trace_hardirqs_off+0x10/0x10 [ 46.619434] ? SOFTIRQ_verbose+0x10/0x10 [ 46.623476] ? arch_perf_update_userpage+0x380/0x380 [ 46.628568] get_perf_callchain+0x2c8/0x7d0 [ 46.632909] ? put_callchain_buffers+0x50/0x50 [ 46.637479] ? kvm_sched_clock_read+0x9/0x20 [ 46.641873] ? sched_clock_cpu+0x1b/0x1c0 [ 46.646004] perf_callchain+0x125/0x170 [ 46.649980] ? kvm_is_in_guest+0x10/0x30 [ 46.654031] perf_prepare_sample+0xc90/0x1350 [ 46.658526] ? perf_output_sample+0x1920/0x1920 [ 46.663183] ? perf_prepare_sample+0x1350/0x1350 [ 46.667934] perf_event_output_forward+0xdd/0x1d0 [ 46.672765] ? perf_prepare_sample+0x1350/0x1350 [ 46.677502] ? perf_tp_event+0x42d/0x700 [ 46.681547] ? __this_cpu_preempt_check+0x13/0x20 [ 46.686370] ? __perf_event_account_interrupt+0x21/0x270 [ 46.691804] __perf_event_overflow+0x107/0x300 [ 46.696380] perf_swevent_overflow+0x165/0x210 [ 46.700946] perf_swevent_event+0x1f5/0x2f0 [ 46.705384] ___perf_sw_event+0x26b/0x3f0 [ 46.709572] ? trace_hardirqs_off+0x10/0x10 [ 46.714061] ? perf_pending_event+0xc0/0xc0 [ 46.718564] ? lock_release+0x518/0x830 [ 46.722570] ? set_next_entity+0x261/0x940 [ 46.726806] ? pick_next_entity+0x197/0x390 [ 46.731134] ? trace_hardirqs_off+0x10/0x10 [ 46.735449] ? trace_hardirqs_off+0x10/0x10 [ 46.739848] ? __lock_is_held+0xb5/0x140 [ 46.743892] __schedule+0xf9c/0x1d20 [ 46.747593] ? debug_smp_processor_id+0x17/0x20 [ 46.752251] ? __schedule+0xf9c/0x1d20 [ 46.756131] ? firmware_map_remove+0x177/0x177 [ 46.760693] ? lock_downgrade+0x7f0/0x7f0 [ 46.764825] ? plist_add+0x254/0x4f0 [ 46.768543] schedule+0x7f/0x1b0 [ 46.771901] futex_wait_queue_me+0x2d5/0x580 [ 46.776301] ? __unqueue_futex+0xd0/0xd0 [ 46.780409] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 46.785510] futex_wait+0x253/0x520 [ 46.789443] ? futex_wait_setup+0x2d0/0x2d0 [ 46.794101] ? lock_downgrade+0x7f0/0x7f0 [ 46.798285] ? wake_up_q+0x9c/0xe0 [ 46.801818] ? futex_wake+0x10d/0x570 [ 46.805616] do_futex+0x591/0x17f0 [ 46.809156] ? perf_trace_run_bpf_submit+0xea/0x160 [ 46.814157] ? perf_trace_lock+0x30e/0x500 [ 46.818397] ? futex_exit_release+0x60/0x60 [ 46.822738] ? trace_hardirqs_off+0x10/0x10 [ 46.827040] ? SOFTIRQ_verbose+0x10/0x10 [ 46.831081] ? perf_trace_lock+0x30e/0x500 [ 46.835323] ? __might_fault+0xf1/0x1b0 [ 46.839281] ? lock_downgrade+0x7f0/0x7f0 [ 46.843426] ? kasan_check_read+0x11/0x20 [ 46.847627] ? _copy_to_user+0x91/0xb0 [ 46.851541] ? do_futex+0x17f0/0x17f0 [ 46.855466] SyS_futex+0xf1/0x250 [ 46.858933] ? do_futex+0x17f0/0x17f0 [ 46.862743] ? SyS_clock_gettime+0x115/0x160 [ 46.867154] ? SyS_clock_settime+0x1a0/0x1a0 [ 46.871562] ? do_syscall_64+0x4c/0x5b0 [ 46.875533] ? do_futex+0x17f0/0x17f0 [ 46.879385] do_syscall_64+0x1c7/0x5b0 [ 46.883297] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 46.888146] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 46.893357] RIP: 0033:0x45aff9 [ 46.896532] RSP: 002b:00007f8c0b1e9cf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 46.904253] RAX: ffffffffffffffda RBX: 000000000075bf28 RCX: 000000000045aff9 [ 46.911546] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000075bf28 [ 46.918915] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 46.926168] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000075bf2c [ 46.933419] R13: 00007ffc9d49d02f R14: 00007f8c0b1ea9c0 R15: 000000000075bf2c [ 46.940686] [ 46.940687] ====================================================== [ 46.940689] WARNING: possible circular locking dependency detected [ 46.940690] 4.14.176-syzkaller #0 Not tainted [ 46.940691] ------------------------------------------------------ [ 46.940692] syz-executor.3/7564 is trying to acquire lock: [ 46.940693] ((console_sem).lock){-...}, at: [] down_trylock+0x13/0x70 [ 46.940696] [ 46.940697] but task is already holding lock: [ 46.940698] (report_lock){....}, at: [] kasan_report+0x6b/0xe0 [ 46.940701] [ 46.940702] which lock already depends on the new lock. [ 46.940703] [ 46.940703] [ 46.940705] the existing dependency chain (in reverse order) is: [ 46.940705] [ 46.940706] -> #3 (report_lock){....}: [ 46.940709] lock_acquire+0x173/0x400 [ 46.940710] _raw_spin_lock_irqsave+0x99/0xd0 [ 46.940711] kasan_report+0x6b/0xe0 [ 46.940712] __asan_report_load8_noabort+0x14/0x20 [ 46.940713] update_stack_state+0x561/0x5d0 [ 46.940714] __unwind_start+0x189/0x410 [ 46.940715] perf_callchain_kernel+0x23d/0x540 [ 46.940716] get_perf_callchain+0x2c8/0x7d0 [ 46.940717] perf_callchain+0x125/0x170 [ 46.940718] perf_prepare_sample+0xc90/0x1350 [ 46.940719] perf_event_output_forward+0xdd/0x1d0 [ 46.940720] __perf_event_overflow+0x107/0x300 [ 46.940720] perf_swevent_overflow+0x165/0x210 [ 46.940721] perf_swevent_event+0x1f5/0x2f0 [ 46.940722] ___perf_sw_event+0x26b/0x3f0 [ 46.940723] __schedule+0xf9c/0x1d20 [ 46.940724] schedule+0x7f/0x1b0 [ 46.940725] futex_wait_queue_me+0x2d5/0x580 [ 46.940726] futex_wait+0x253/0x520 [ 46.940726] do_futex+0x591/0x17f0 [ 46.940727] SyS_futex+0xf1/0x250 [ 46.940728] do_syscall_64+0x1c7/0x5b0 [ 46.940729] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 46.940730] [ 46.940731] -> #2 (&rq->lock){-.-.}: [ 46.940734] lock_acquire+0x173/0x400 [ 46.940735] _raw_spin_lock+0x2d/0x40 [ 46.940736] task_fork_fair+0x62/0x5b0 [ 46.940737] sched_fork+0x3a6/0xbd0 [ 46.940738] copy_process.part.37+0x1656/0x66e0 [ 46.940739] _do_fork+0x155/0xbb0 [ 46.940740] kernel_thread+0x24/0x30 [ 46.940740] rest_init+0x1d/0x199 [ 46.940741] start_kernel+0x61d/0x642 [ 46.940742] x86_64_start_reservations+0x29/0x2b [ 46.940743] x86_64_start_kernel+0x76/0x79 [ 46.940744] secondary_startup_64+0xa5/0xb0 [ 46.940745] [ 46.940745] -> #1 (&p->pi_lock){-.-.}: [ 46.940749] lock_acquire+0x173/0x400 [ 46.940750] _raw_spin_lock_irqsave+0x99/0xd0 [ 46.940751] try_to_wake_up+0x82/0xf80 [ 46.940751] wake_up_process+0x10/0x20 [ 46.940752] __up.isra.1+0x136/0x1a0 [ 46.940753] up+0x95/0xe0 [ 46.940754] __up_console_sem+0xa0/0x150 [ 46.940755] console_unlock+0x569/0xe30 [ 46.940756] vt_ioctl+0x1ddb/0x21f0 [ 46.940756] tty_ioctl+0x434/0x1260 [ 46.940757] do_vfs_ioctl+0x180/0xfb0 [ 46.940758] SyS_ioctl+0x74/0x80 [ 46.940759] do_syscall_64+0x1c7/0x5b0 [ 46.940760] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 46.940761] [ 46.940761] -> #0 ((console_sem).lock){-...}: [ 46.940765] __lock_acquire+0x2e94/0x4500 [ 46.940766] lock_acquire+0x173/0x400 [ 46.940767] _raw_spin_lock_irqsave+0x99/0xd0 [ 46.940768] down_trylock+0x13/0x70 [ 46.940769] __down_trylock_console_sem+0x93/0x190 [ 46.940769] console_trylock+0x11/0x50 [ 46.940770] vprintk_emit+0x1ab/0x4e0 [ 46.940771] vprintk_default+0x1a/0x20 [ 46.940772] vprintk_func+0x49/0x12c [ 46.940773] printk+0x91/0xab [ 46.940774] kasan_report+0x7b/0xe0 [ 46.940775] __asan_report_load8_noabort+0x14/0x20 [ 46.940776] update_stack_state+0x561/0x5d0 [ 46.940777] __unwind_start+0x189/0x410 [ 46.940778] perf_callchain_kernel+0x23d/0x540 [ 46.940779] get_perf_callchain+0x2c8/0x7d0 [ 46.940780] perf_callchain+0x125/0x170 [ 46.940781] perf_prepare_sample+0xc90/0x1350 [ 46.940782] perf_event_output_forward+0xdd/0x1d0 [ 46.940782] __perf_event_overflow+0x107/0x300 [ 46.940783] perf_swevent_overflow+0x165/0x210 [ 46.940784] perf_swevent_event+0x1f5/0x2f0 [ 46.940785] ___perf_sw_event+0x26b/0x3f0 [ 46.940786] __schedule+0xf9c/0x1d20 [ 46.940787] schedule+0x7f/0x1b0 [ 46.940788] futex_wait_queue_me+0x2d5/0x580 [ 46.940789] futex_wait+0x253/0x520 [ 46.940789] do_futex+0x591/0x17f0 [ 46.940791] SyS_futex+0xf1/0x250 [ 46.940791] do_syscall_64+0x1c7/0x5b0 [ 46.940792] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 46.940793] [ 46.940794] other info that might help us debug this: [ 46.940795] [ 46.940795] Chain exists of: [ 46.940796] (console_sem).lock --> &rq->lock --> report_lock [ 46.940801] [ 46.940801] Possible unsafe locking scenario: [ 46.940802] [ 46.940803] CPU0 CPU1 [ 46.940804] ---- ---- [ 46.940804] lock(report_lock); [ 46.940807] lock(&rq->lock); [ 46.940809] lock(report_lock); [ 46.940811] lock((console_sem).lock); [ 46.940813] [ 46.940814] *** DEADLOCK *** [ 46.940814] [ 46.940815] 4 locks held by syz-executor.3/7564: [ 46.940816] #0: (&rq->lock){-.-.}, at: [] __schedule+0x1ed/0x1d20 [ 46.940819] #1: (rcu_read_lock){....}, at: [] ___perf_sw_event+0x10a/0x3f0 [ 46.940823] #2: (rcu_read_lock){....}, at: [] perf_event_output_forward+0x0/0x1d0 [ 46.940827] #3: (report_lock){....}, at: [] kasan_report+0x6b/0xe0 [ 46.940830] [ 46.940831] stack backtrace: [ 46.940832] CPU: 0 PID: 7564 Comm: syz-executor.3 Not tainted 4.14.176-syzkaller #0 [ 46.940833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 46.940834] Call Trace: [ 46.940835] dump_stack+0xf7/0x13b [ 46.940836] print_circular_bug.isra.40.cold.67+0x1bd/0x27d [ 46.940837] ? save_trace+0xe0/0x290 [ 46.940838] __lock_acquire+0x2e94/0x4500 [ 46.940839] ? add_lock_to_list.isra.32+0x193/0x340 [ 46.940840] ? trace_hardirqs_on+0x10/0x10 [ 46.940841] ? perf_trace_lock+0x30e/0x500 [ 46.940842] ? trace_hardirqs_off+0x10/0x10 [ 46.940843] ? kvm_clock_read+0x23/0x40 [ 46.940843] lock_acquire+0x173/0x400 [ 46.940844] ? down_trylock+0x13/0x70 [ 46.940845] ? vprintk_emit+0x1ab/0x4e0 [ 46.940846] _raw_spin_lock_irqsave+0x99/0xd0 [ 46.940847] ? down_trylock+0x13/0x70 [ 46.940848] down_trylock+0x13/0x70 [ 46.940848] ? vprintk_emit+0x1ab/0x4e0 [ 46.940849] __down_trylock_console_sem+0x93/0x190 [ 46.940850] console_trylock+0x11/0x50 [ 46.940851] vprintk_emit+0x1ab/0x4e0 [ 46.940852] ? update_stack_state+0x561/0x5d0 [ 46.940853] vprintk_default+0x1a/0x20 [ 46.940853] vprintk_func+0x49/0x12c [ 46.940854] ? update_stack_state+0x561/0x5d0 [ 46.940855] printk+0x91/0xab [ 46.940856] ? show_regs_print_info+0x5d/0x5d [ 46.940857] ? update_stack_state+0x561/0x5d0 [ 46.940858] kasan_report+0x7b/0xe0 [ 46.940859] __asan_report_load8_noabort+0x14/0x20 [ 46.940860] update_stack_state+0x561/0x5d0 [ 46.940861] ? __read_once_size_nocheck.constprop.9+0x10/0x10 [ 46.940862] ? perf_trace_run_bpf_submit+0xea/0x160 [ 46.940863] ? perf_trace_run_bpf_submit+0xea/0x160 [ 46.940863] __unwind_start+0x189/0x410 [ 46.940864] perf_callchain_kernel+0x23d/0x540 [ 46.940865] ? trace_hardirqs_off+0x10/0x10 [ 46.940866] ? SOFTIRQ_verbose+0x10/0x10 [ 46.940867] ? arch_perf_update_userpage+0x380/0x380 [ 46.940868] get_perf_callchain+0x2c8/0x7d0 [ 46.940869] ? put_callchain_buffers+0x50/0x50 [ 46.940870] ? kvm_sched_clock_read+0x9/0x20 [ 46.940871] ? sched_clock_cpu+0x1b/0x1c0 [ 46.940871] perf_callchain+0x125/0x170 [ 46.940872] ? kvm_is_in_guest+0x10/0x30 [ 46.940873] perf_prepare_sample+0xc90/0x1350 [ 46.940874] ? perf_output_sample+0x1920/0x1920 [ 46.940875] ? perf_prepare_sample+0x1350/0x1350 [ 46.940876] perf_event_output_forward+0xdd/0x1d0 [ 46.940877] ? perf_prepare_sample+0x1350/0x1350 [ 46.940878] ? perf_tp_event+0x42d/0x700 [ 46.940879] ? __this_cpu_preempt_check+0x13/0x20 [ 46.940880] ? __perf_event_account_interrupt+0x21/0x270 [ 46.940880] __perf_event_overflow+0x107/0x300 [ 46.940881] perf_swevent_overflow+0x165/0x210 [ 46.940882] perf_swevent_event+0x1f5/0x2f0 [ 46.940883] ___perf_sw_event+0x26b/0x3f0 [ 46.940884] ? trace_hardirqs_off+0x10/0x10 [ 46.940885] ? perf_pending_event+0xc0/0xc0 [ 46.940886] ? lock_release+0x518/0x830 [ 46.940887] ? set_next_entity+0x261/0x940 [ 46.940888] ? pick_next_entity+0x197/0x390 [ 46.940889] ? trace_hardirqs_off+0x10/0x10 [ 46.940889] ? trace_hardirqs_off+0x10/0x10 [ 46.940890] ? __lock_is_held+0xb5/0x140 [ 46.940891] __schedule+0xf9c/0x1d20 [ 46.940892] ? debug_smp_processor_id+0x17/0x20 [ 46.940893] ? __schedule+0xf9c/0x1d20 [ 46.940894] ? firmware_map_remove+0x177/0x177 [ 46.940895] ? lock_downgrade+0x7f0/0x7f0 [ 46.940896] ? plist_add+0x254/0x4f0 [ 46.940897] schedule+0x7f/0x1b0 [ 46.940897] futex_wait_queue_me+0x2d5/0x580 [ 46.940898] ? __unqueue_futex+0xd0/0xd0 [ 46.940899] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 46.940900] futex_wait+0x253/0x520 [ 46.940901] ? futex_wait_setup+0x2d0/0x2d0 [ 46.940902] ? lock_downgrade+0x7f0/0x7f0 [ 46.940903] ? wake_up_q+0x9c/0xe0 [ 46.940903] ? futex_wake+0x10d/0x570 [ 46.940904] do_futex+0x591/0x17f0 [ 46.940905] ? perf_trace_run_bpf_submit+0xea/0x160 [ 46.940906] ? perf_trace_lock+0x30e/0x500 [ 46.940907] ? futex_exit_release+0x60/0x60 [ 46.940908] ? trace_hardirqs_off+0x10/0x10 [ 46.940909] ? SOFTIRQ_verbose+0x10/0x10 [ 46.940910] ? perf_trace_lock+0x30e/0x500 [ 46.940911] ? __might_fault+0xf1/0x1b0 [ 46.940912] ? lock_downgrade+0x7f0/0x7f0 [ 46.940913] ? kasan_check_read+0x11/0x20 [ 46.940914] ? _copy_to_user+0x91/0xb0 [ 46.940914] ? do_futex+0x17f0/0x17f0 [ 46.940915] SyS_futex+0xf1/0x250 [ 46.940916] ? do_futex+0x17f0/0x17f0 [ 46.940917] ? SyS_clock_gettime+0x115/0x160 [ 46.940918] ? SyS_clock_settime+0x1a0/0x1a0 [ 46.940919] ? do_syscall_64+0x4c/0x5b0 [ 46.940920] ? do_futex+0x17f0/0x17f0 [ 46.940920] do_syscall_64+0x1c7/0x5b0 [ 46.940921] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 46.940922] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 46.940923] RIP: 0033:0x45aff9 [ 46.940924] RSP: 002b:00007f8c0b1e9cf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 46.940926] RAX: ffffffffffffffda RBX: 000000000075bf28 RCX: 000000000045aff9 [ 46.940927] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000075bf28 [ 46.940928] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 46.940929] R10: 0000000000000000 R11: 000000000000024 [ 46.940932] Lost 1 message(s)! [ 48.043272] Shutting down cpus with NMI [ 49.095882] Kernel Offset: disabled [ 49.099516] Rebooting in 86400 seconds..