[ 44.111935] audit: type=1400 audit(1583228631.167:39): avc: denied { create } for pid=6758 comm="syz-fuzzer" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 [ 44.400468] random: sshd: uninitialized urandom read (32 bytes read) [ 45.166770] random: sshd: uninitialized urandom read (32 bytes read) [ 45.366300] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.0.132' (ECDSA) to the list of known hosts. 2020/03/03 09:43:59 parsed 1 programs 2020/03/03 09:43:59 executed programs: 0 [ 52.096209] audit: type=1400 audit(1583228639.197:40): avc: denied { map } for pid=6829 comm="syz-execprog" path="/root/syzkaller-shm742703176" dev="sda1" ino=16495 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:file_t:s0 tclass=file permissive=1 [ 52.370863] IPVS: ftp: loaded support on port[0] = 21 [ 53.135148] IPVS: ftp: loaded support on port[0] = 21 [ 53.178608] chnl_net:caif_netlink_parms(): no params data found [ 53.225212] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.231889] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.239001] device bridge_slave_0 entered promiscuous mode [ 53.248450] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.257199] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.266720] IPVS: ftp: loaded support on port[0] = 21 [ 53.266784] device bridge_slave_1 entered promiscuous mode [ 53.317129] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 53.327775] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 53.348531] chnl_net:caif_netlink_parms(): no params data found [ 53.368966] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 53.376161] team0: Port device team_slave_0 added [ 53.390702] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 53.397822] team0: Port device team_slave_1 added [ 53.407728] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 53.417893] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 53.441725] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.448205] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.456117] IPVS: ftp: loaded support on port[0] = 21 [ 53.460569] device bridge_slave_0 entered promiscuous mode [ 53.512395] device hsr_slave_0 entered promiscuous mode [ 53.580266] device hsr_slave_1 entered promiscuous mode [ 53.640527] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 53.647454] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 53.654521] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.661106] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.667936] device bridge_slave_1 entered promiscuous mode [ 53.696908] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 53.709037] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 53.749474] chnl_net:caif_netlink_parms(): no params data found [ 53.761264] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 53.768321] team0: Port device team_slave_0 added [ 53.782484] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 53.789748] team0: Port device team_slave_1 added [ 53.798027] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 53.808103] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 53.828130] IPVS: ftp: loaded support on port[0] = 21 [ 53.838164] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.844698] bridge0: port 2(bridge_slave_1) entered forwarding state [ 53.851641] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.857995] bridge0: port 1(bridge_slave_0) entered forwarding state [ 53.876432] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.883144] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.891585] device bridge_slave_0 entered promiscuous mode [ 53.898770] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.905675] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.912589] device bridge_slave_1 entered promiscuous mode [ 53.982766] device hsr_slave_0 entered promiscuous mode [ 54.020411] device hsr_slave_1 entered promiscuous mode [ 54.062248] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 54.080895] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 54.104044] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 54.116125] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 54.169520] chnl_net:caif_netlink_parms(): no params data found [ 54.177996] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 54.185281] team0: Port device team_slave_0 added [ 54.206600] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 54.213961] team0: Port device team_slave_1 added [ 54.220541] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 54.227909] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 54.235461] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.241831] bridge0: port 2(bridge_slave_1) entered forwarding state [ 54.248405] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.254915] bridge0: port 1(bridge_slave_0) entered forwarding state [ 54.271745] IPVS: ftp: loaded support on port[0] = 21 [ 54.285300] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.292349] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.299290] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.307685] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.353696] device hsr_slave_0 entered promiscuous mode [ 54.390441] device hsr_slave_1 entered promiscuous mode [ 54.440887] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 54.472800] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 54.485520] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.492736] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.499716] device bridge_slave_0 entered promiscuous mode [ 54.506507] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.513409] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.520600] device bridge_slave_1 entered promiscuous mode [ 54.559802] chnl_net:caif_netlink_parms(): no params data found [ 54.569999] 8021q: adding VLAN 0 to HW filter on device bond0 [ 54.589310] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 54.623630] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 54.631247] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 54.638710] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 54.648868] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 54.658201] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 54.694302] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.701095] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.707879] device bridge_slave_0 entered promiscuous mode [ 54.716852] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 54.724124] team0: Port device team_slave_0 added [ 54.729628] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 54.738751] team0: Port device team_slave_1 added [ 54.748429] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 54.757858] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 54.765004] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.771525] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.778413] device bridge_slave_1 entered promiscuous mode [ 54.785787] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 54.792647] 8021q: adding VLAN 0 to HW filter on device team0 [ 54.799521] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 54.824796] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 54.882089] device hsr_slave_0 entered promiscuous mode [ 54.920420] device hsr_slave_1 entered promiscuous mode [ 54.979311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 54.987194] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 54.994911] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.001424] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.010131] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 55.019649] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 55.028814] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 55.049897] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 55.058631] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 55.067101] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 55.075026] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.081433] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.090591] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 55.099837] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 55.108828] 8021q: adding VLAN 0 to HW filter on device bond0 [ 55.115816] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 55.144692] chnl_net:caif_netlink_parms(): no params data found [ 55.161423] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 55.169996] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 55.179732] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 55.197802] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 55.205853] team0: Port device team_slave_0 added [ 55.215322] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 55.223595] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 55.232704] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 55.241908] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 55.251514] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 55.261326] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 55.268478] team0: Port device team_slave_1 added [ 55.274232] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 55.283742] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 55.291746] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 55.300152] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 55.307428] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 55.315084] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 55.335412] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 55.345173] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 55.366676] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 55.373758] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 55.380796] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 55.388632] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 55.399365] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 55.405533] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.416264] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.423090] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.430200] device bridge_slave_0 entered promiscuous mode [ 55.440653] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 55.448122] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 55.457856] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 55.464202] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 55.478409] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 55.485760] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.492388] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.499276] device bridge_slave_1 entered promiscuous mode [ 55.517099] 8021q: adding VLAN 0 to HW filter on device bond0 [ 55.525637] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 55.534062] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 55.541638] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.547957] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.563335] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 55.613445] device hsr_slave_0 entered promiscuous mode [ 55.650523] device hsr_slave_1 entered promiscuous mode [ 55.691139] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 55.697677] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 55.706061] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 55.713709] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 55.723497] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 55.731112] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.737445] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.746041] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 55.755697] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 55.762857] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 55.778265] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 55.793929] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 55.801796] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 55.809888] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 55.818605] 8021q: adding VLAN 0 to HW filter on device bond0 [ 55.827719] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 55.841423] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 55.848507] team0: Port device team_slave_0 added [ 55.855014] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 55.863966] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 55.871128] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 55.877919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 55.886527] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 55.896151] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 55.902574] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.913157] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 55.921009] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 55.927856] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 55.935342] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 55.943700] team0: Port device team_slave_1 added [ 55.949335] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 55.960007] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 55.968859] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 55.976603] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 55.984876] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 55.994328] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 56.002346] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 56.009925] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 56.018057] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 56.025647] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 56.033650] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 56.041566] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.047921] bridge0: port 1(bridge_slave_0) entered forwarding state [ 56.055538] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 56.062992] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 56.072547] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 56.078615] 8021q: adding VLAN 0 to HW filter on device team0 [ 56.104697] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 56.113736] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 56.163081] device hsr_slave_0 entered promiscuous mode [ 56.191011] device hsr_slave_1 entered promiscuous mode [ 56.196173] FAULT_INJECTION: forcing a failure. [ 56.196173] name failslab, interval 1, probability 0, space 0, times 1 [ 56.208978] CPU: 1 PID: 6884 Comm: syz-executor.2 Not tainted 4.14.172-syzkaller #0 [ 56.216759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 56.226120] Call Trace: [ 56.228701] dump_stack+0xf7/0x13b [ 56.232258] should_fail.cold.3+0x105/0x14b [ 56.236574] should_failslab+0xba/0xf0 [ 56.240464] kmem_cache_alloc+0x2cf/0x790 [ 56.244603] ? lock_downgrade+0x7f0/0x7f0 [ 56.248793] ? register_shrinker+0xf1/0x1e0 [ 56.253109] alloc_inode+0x86/0x150 [ 56.256728] new_inode_pseudo+0xc/0xd0 [ 56.260595] new_inode+0x14/0x30 [ 56.263948] simple_fill_super+0xf3/0x630 [ 56.268086] ? sget_userns+0x8d6/0xb40 [ 56.271956] ? set_anon_super+0x10/0x10 [ 56.275965] ? nfsd_mount+0xf0/0xf0 [ 56.279584] nfsd_fill_super+0x45/0x50 [ 56.283455] mount_ns+0xd0/0x170 [ 56.286802] nfsd_mount+0x93/0xf0 [ 56.290235] ? lockdep_init_map+0x9/0x10 [ 56.294303] mount_fs+0x7f/0x269 [ 56.297657] ? alloc_vfsmnt+0x470/0x750 [ 56.301682] vfs_kern_mount.part.33+0x58/0x3c0 [ 56.306274] do_mount+0x36b/0x26a0 [ 56.309838] ? __might_fault+0xf1/0x1b0 [ 56.313804] ? copy_mount_string+0x20/0x20 [ 56.318025] ? kasan_check_write+0x14/0x20 [ 56.322247] ? _copy_from_user+0x9c/0xd0 [ 56.326295] ? memdup_user+0x4a/0x80 [ 56.329999] SyS_mount+0xb8/0xd0 [ 56.333366] ? copy_mnt_ns+0xae0/0xae0 [ 56.337235] do_syscall_64+0x1c7/0x5b0 [ 56.341104] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 56.345979] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 56.351152] RIP: 0033:0x459279 [ 56.354321] RSP: 002b:00007f2e67863c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 56.362054] RAX: ffffffffffffffda RBX: 00007f2e67863c90 RCX: 0000000000459279 [ 56.369312] RDX: 0000000020000240 RSI: 0000000020000000 RDI: 0000000000000000 [ 56.377716] RBP: 000000000075bfc0 R08: 0000000000000000 R09: 0000000000000000 [ 56.384975] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2e678646d4 [ 56.392233] R13: 00000000004c56a3 R14: 00000000004d9a20 R15: 0000000000000004 [ 56.410369] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 56.417846] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 56.425433] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 56.432968] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 56.441448] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 56.450972] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 56.459423] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 56.466730] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 56.482127] 8021q: adding VLAN 0 to HW filter on device bond0 [ 56.488420] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 56.495686] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 56.509443] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 56.519166] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 56.529259] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.535620] bridge0: port 1(bridge_slave_0) entered forwarding state [ 56.543140] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 56.551057] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 56.558638] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.565027] bridge0: port 2(bridge_slave_1) entered forwarding state [ 56.572932] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 56.585089] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 56.593121] FAULT_INJECTION: forcing a failure. [ 56.593121] name failslab, interval 1, probability 0, space 0, times 0 [ 56.597517] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 56.608798] CPU: 0 PID: 6888 Comm: syz-executor.2 Not tainted 4.14.172-syzkaller #0 [ 56.613613] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 56.618811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 56.628033] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 56.635183] Call Trace: [ 56.635200] dump_stack+0xf7/0x13b [ 56.635209] should_fail.cold.3+0x105/0x14b [ 56.635231] should_failslab+0xba/0xf0 [ 56.635239] __kmalloc+0x2e8/0x7b0 [ 56.635247] ? __list_lru_init+0x69/0x5f0 [ 56.635254] __list_lru_init+0x69/0x5f0 [ 56.635263] sget_userns+0x3e0/0xb40 [ 56.635266] ? set_anon_super+0x10/0x10 [ 56.635272] ? get_empty_filp.cold.4+0x3a/0x3a [ 56.635280] ? nfsd_mount+0xf0/0xf0 [ 56.635284] mount_ns+0x5d/0x170 [ 56.635291] nfsd_mount+0x93/0xf0 [ 56.644621] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 56.647471] ? lockdep_init_map+0x9/0x10 [ 56.647479] mount_fs+0x7f/0x269 [ 56.647485] ? alloc_vfsmnt+0x470/0x750 [ 56.647492] vfs_kern_mount.part.33+0x58/0x3c0 [ 56.647500] do_mount+0x36b/0x26a0 [ 56.647508] ? __might_fault+0xf1/0x1b0 [ 56.651955] 8021q: adding VLAN 0 to HW filter on device team0 [ 56.655718] ? copy_mount_string+0x20/0x20 [ 56.655730] ? kasan_check_write+0x14/0x20 [ 56.655736] ? _copy_from_user+0x9c/0xd0 [ 56.655744] ? memdup_user+0x4a/0x80 [ 56.662830] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 56.663512] SyS_mount+0xb8/0xd0 [ 56.670478] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 56.671192] ? copy_mnt_ns+0xae0/0xae0 [ 56.671201] do_syscall_64+0x1c7/0x5b0 [ 56.671206] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 56.671217] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 56.671223] RIP: 0033:0x459279 [ 56.677644] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 56.679758] RSP: 002b:00007f2e67863c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 56.679766] RAX: ffffffffffffffda RBX: 00007f2e67863c90 RCX: 0000000000459279 [ 56.679769] RDX: 0000000020000240 RSI: 0000000020000000 RDI: 0000000000000000 [ 56.679771] RBP: 000000000075bfc0 R08: 0000000000000000 R09: 0000000000000000 [ 56.679774] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2e678646d4 [ 56.679777] R13: 00000000004c56a3 R14: 00000000004d9a20 R15: 0000000000000004 [ 56.838181] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 56.850277] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 56.858681] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 56.870895] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 56.877701] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 56.885207] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 56.893093] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 56.900732] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.907075] bridge0: port 1(bridge_slave_0) entered forwarding state [ 56.913957] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 56.922313] FAULT_INJECTION: forcing a failure. [ 56.922313] name failslab, interval 1, probability 0, space 0, times 0 [ 56.925186] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 56.933982] CPU: 1 PID: 6892 Comm: syz-executor.2 Not tainted 4.14.172-syzkaller #0 [ 56.941664] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.948658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 56.948662] Call Trace: [ 56.948677] dump_stack+0xf7/0x13b [ 56.948687] should_fail.cold.3+0x105/0x14b [ 56.948696] should_failslab+0xba/0xf0 [ 56.948705] __kmalloc+0x2e8/0x7b0 [ 56.955110] bridge0: port 2(bridge_slave_1) entered forwarding state [ 56.964391] ? sget_userns+0x8c2/0xb40 [ 56.964402] ? lock_downgrade+0x7f0/0x7f0 [ 56.964410] ? register_shrinker+0xb5/0x1e0 [ 56.964417] register_shrinker+0xb5/0x1e0 [ 56.964422] sget_userns+0x8d6/0xb40 [ 56.964429] ? set_anon_super+0x10/0x10 [ 56.967413] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 56.970541] ? get_empty_filp.cold.4+0x3a/0x3a [ 56.970549] ? nfsd_mount+0xf0/0xf0 [ 56.970554] mount_ns+0x5d/0x170 [ 56.970561] nfsd_mount+0x93/0xf0 [ 56.970568] ? lockdep_init_map+0x9/0x10 [ 56.970574] mount_fs+0x7f/0x269 [ 56.970581] ? alloc_vfsmnt+0x470/0x750 [ 56.976733] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 56.978767] vfs_kern_mount.part.33+0x58/0x3c0 [ 56.988381] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 56.988794] do_mount+0x36b/0x26a0 [ 56.995165] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 56.996806] ? __might_fault+0xf1/0x1b0 [ 56.996818] ? copy_mount_string+0x20/0x20 [ 57.003506] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 57.005375] ? kasan_check_write+0x14/0x20 [ 57.005383] ? _copy_from_user+0x9c/0xd0 [ 57.005390] ? memdup_user+0x4a/0x80 [ 57.011258] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 57.013089] SyS_mount+0xb8/0xd0 [ 57.013097] ? copy_mnt_ns+0xae0/0xae0 [ 57.013105] do_syscall_64+0x1c7/0x5b0 [ 57.013110] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 57.013120] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 57.013126] RIP: 0033:0x459279 [ 57.013131] RSP: 002b:00007f2e67863c78 EFLAGS: 00000246 [ 57.022952] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 57.025112] ORIG_RAX: 00000000000000a5 [ 57.025117] RAX: ffffffffffffffda RBX: 00007f2e67863c90 RCX: 0000000000459279 [ 57.025119] RDX: 0000000020000240 RSI: 0000000020000000 RDI: 0000000000000000 [ 57.025122] RBP: 000000000075bfc0 R08: 0000000000000000 R09: 0000000000000000 [ 57.025125] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2e678646d4 [ 57.025127] R13: 00000000004c56a3 R14: 00000000004d9a20 R15: 0000000000000004 [ 57.197353] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 57.205779] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 57.216382] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready 2020/03/03 09:44:04 executed programs: 8 [ 57.224693] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 57.233576] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 57.241366] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.248672] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.255846] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 57.263763] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 57.271509] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 57.279068] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 57.286612] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 57.294195] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 57.302120] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 57.306655] FAULT_INJECTION: forcing a failure. [ 57.306655] name failslab, interval 1, probability 0, space 0, times 0 [ 57.309622] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 57.321390] CPU: 1 PID: 6896 Comm: syz-executor.2 Not tainted 4.14.172-syzkaller #0 [ 57.330519] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 57.335981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 57.335984] Call Trace: [ 57.335997] dump_stack+0xf7/0x13b [ 57.345114] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 57.352533] should_fail.cold.3+0x105/0x14b [ 57.352543] should_failslab+0xba/0xf0 [ 57.352550] __kmalloc+0x2e8/0x7b0 [ 57.352555] ? sget_userns+0x8c2/0xb40 [ 57.352563] ? lock_downgrade+0x7f0/0x7f0 [ 57.355739] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 57.358666] ? register_shrinker+0xb5/0x1e0 [ 57.371351] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 57.373876] register_shrinker+0xb5/0x1e0 [ 57.406375] sget_userns+0x8d6/0xb40 [ 57.410071] ? set_anon_super+0x10/0x10 [ 57.414101] ? get_empty_filp.cold.4+0x3a/0x3a [ 57.418681] ? nfsd_mount+0xf0/0xf0 [ 57.422288] mount_ns+0x5d/0x170 [ 57.425646] nfsd_mount+0x93/0xf0 [ 57.429081] ? lockdep_init_map+0x9/0x10 [ 57.433125] mount_fs+0x7f/0x269 [ 57.436487] ? alloc_vfsmnt+0x470/0x750 [ 57.440443] vfs_kern_mount.part.33+0x58/0x3c0 [ 57.445018] do_mount+0x36b/0x26a0 [ 57.448538] ? __might_fault+0xf1/0x1b0 [ 57.452493] ? copy_mount_string+0x20/0x20 [ 57.456734] ? kasan_check_write+0x14/0x20 [ 57.460959] ? _copy_from_user+0x9c/0xd0 [ 57.465056] ? memdup_user+0x4a/0x80 [ 57.468788] SyS_mount+0xb8/0xd0 [ 57.472147] ? copy_mnt_ns+0xae0/0xae0 [ 57.476108] do_syscall_64+0x1c7/0x5b0 [ 57.480006] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 57.484909] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 57.490090] RIP: 0033:0x459279 [ 57.493297] RSP: 002b:00007f2e67863c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 57.501162] RAX: ffffffffffffffda RBX: 00007f2e67863c90 RCX: 0000000000459279 [ 57.508421] RDX: 0000000020000240 RSI: 0000000020000000 RDI: 0000000000000000 [ 57.515711] RBP: 000000000075bfc0 R08: 0000000000000000 R09: 0000000000000000 [ 57.522968] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2e678646d4 [ 57.530265] R13: 00000000004c56a3 R14: 00000000004d9a20 R15: 0000000000000004 [ 57.539879] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 57.553980] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 57.564105] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 57.572562] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 57.581293] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 57.589008] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 57.599113] list_add double add: new=ffff88808ddc00e0, prev=ffffffff88220240, next=ffff88808ddc00e0. [ 57.609549] ------------[ cut here ]------------ [ 57.614305] kernel BUG at lib/list_debug.c:31! [ 57.618888] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 57.624234] Modules linked in: [ 57.627426] CPU: 0 PID: 6855 Comm: syz-executor.2 Not tainted 4.14.172-syzkaller #0 [ 57.635201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 57.644543] task: ffff88808d2ec100 task.stack: ffff888095f00000 [ 57.650593] RIP: 0010:__list_add_valid+0xaa/0xb0 [ 57.655788] RSP: 0018:ffff888095f07c08 EFLAGS: 00010086 [ 57.661134] RAX: 0000000000000058 RBX: ffff88808ddc00e0 RCX: 0000000000000000 [ 57.668391] RDX: 0000000000000058 RSI: ffffffff868cf0a0 RDI: ffffed1012be0f78 [ 57.675708] RBP: ffff888095f07c20 R08: 0000000000000001 R09: 0000000000000000 [ 57.682962] R10: 0000000000000050 R11: dffffc0000000000 R12: ffff88808ddc00e0 [ 57.690216] R13: ffff88808ddc00e0 R14: 0000000000000282 R15: ffff8880a6e5a000 [ 57.697471] FS: 00000000014d9940(0000) GS:ffff8880aee00000(0000) knlGS:0000000000000000 [ 57.705720] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 57.711626] CR2: 000000000070e158 CR3: 000000009953d000 CR4: 00000000001406f0 [ 57.718981] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 57.726231] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 57.733480] Call Trace: [ 57.736114] ? __put_net+0x1f/0x100 [ 57.739742] __put_net+0x3b/0x100 [ 57.743308] __sk_destruct+0x3eb/0x4e0 [ 57.747184] sk_destruct+0x83/0xb0 [ 57.750703] __sk_free+0x47/0x1f0 [ 57.754129] sk_free+0x23/0x30 [ 57.757310] tcp_close+0x94a/0xf00 [ 57.760841] ? __sock_release+0x7d/0x2a0 [ 57.764894] inet_release+0xd9/0x1c0 [ 57.768627] __sock_release+0xc2/0x2a0 [ 57.772500] sock_close+0x10/0x20 [ 57.776048] __fput+0x232/0x750 [ 57.779315] ? _raw_spin_unlock_irq+0x27/0x80 [ 57.783796] ____fput+0x9/0x10 [ 57.786966] task_work_run+0xe5/0x170 [ 57.790752] exit_to_usermode_loop+0x16a/0x1b0 [ 57.795313] do_syscall_64+0x416/0x5b0 [ 57.799186] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 57.804057] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 57.814181] RIP: 0033:0x412f40 [ 57.817433] RSP: 002b:00007fffb74c0788 EFLAGS: 00000246 ORIG_RAX: 0000000000000003 [ 57.825225] RAX: 0000000000000000 RBX: 00007fffb74c0890 RCX: 0000000000412f40 [ 57.832591] RDX: 00000000000000e0 RSI: 00007fffb74c0c70 RDI: 0000000000000003 [ 57.839858] RBP: 0000000000000003 R08: 0000000000006000 R09: 0000000000004000 [ 57.847123] R10: 00007fffb74c0890 R11: 0000000000000246 R12: 0000000000000000 [ 57.854384] R13: 00007fffb74c0f10 R14: 000000000000df96 R15: 00007fffb74c0f20 [ 57.861644] Code: 75 e8 eb a9 48 89 f7 48 89 75 e8 e8 a1 bc af fe 48 8b 75 e8 eb bb 48 89 f2 48 89 d9 4c 89 e6 48 c7 c7 40 db bc 86 e8 53 1e 76 fe <0f> 0b 0f 1f 40 00 48 b8 00 00 00 00 00 fc ff df 55 48 89 e5 41 [ 57.880708] RIP: __list_add_valid+0xaa/0xb0 RSP: ffff888095f07c08 [ 57.886979] ---[ end trace 7454dededd48037e ]--- [ 57.891717] Kernel panic - not syncing: Fatal exception [ 57.899102] Kernel Offset: disabled [ 57.902740] Rebooting in 86400 seconds..