[info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 65.525780][ T9327] IPVS: ftp: loaded support on port[0] = 21 [ 66.547494][ T9314] can: request_module (can-proto-0) failed. [ 66.726208][ T9314] can: request_module (can-proto-0) failed. Warning: Permanently added '10.128.10.55' (ECDSA) to the list of known hosts. 2019/07/29 23:18:33 parsed 1 programs 2019/07/29 23:18:33 executed programs: 0 [ 75.029959][ T9400] IPVS: ftp: loaded support on port[0] = 21 [ 75.037558][ T9402] IPVS: ftp: loaded support on port[0] = 21 [ 75.073118][ T9404] IPVS: ftp: loaded support on port[0] = 21 [ 75.089543][ T9408] IPVS: ftp: loaded support on port[0] = 21 [ 75.104705][ T9407] IPVS: ftp: loaded support on port[0] = 21 [ 75.104758][ T9409] IPVS: ftp: loaded support on port[0] = 21 [ 75.146771][ T9400] chnl_net:caif_netlink_parms(): no params data found [ 75.233442][ T9400] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.240638][ T9400] bridge0: port 1(bridge_slave_0) entered disabled state [ 75.248349][ T9400] device bridge_slave_0 entered promiscuous mode [ 75.258809][ T9400] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.266477][ T9400] bridge0: port 2(bridge_slave_1) entered disabled state [ 75.274068][ T9400] device bridge_slave_1 entered promiscuous mode [ 75.299953][ T9400] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 75.311763][ T9400] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 75.382730][ T9400] team0: Port device team_slave_0 added [ 75.390857][ T9400] team0: Port device team_slave_1 added [ 75.405037][ T9408] chnl_net:caif_netlink_parms(): no params data found [ 75.443622][ T9402] chnl_net:caif_netlink_parms(): no params data found [ 75.452008][ T9404] chnl_net:caif_netlink_parms(): no params data found [ 75.477815][ T9408] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.484986][ T9408] bridge0: port 1(bridge_slave_0) entered disabled state [ 75.492865][ T9408] device bridge_slave_0 entered promiscuous mode [ 75.571437][ T9400] device hsr_slave_0 entered promiscuous mode [ 75.630327][ T9400] device hsr_slave_1 entered promiscuous mode [ 75.712502][ T9407] chnl_net:caif_netlink_parms(): no params data found [ 75.724970][ T9408] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.732283][ T9408] bridge0: port 2(bridge_slave_1) entered disabled state [ 75.739836][ T9408] device bridge_slave_1 entered promiscuous mode [ 75.796582][ T9404] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.807029][ T9404] bridge0: port 1(bridge_slave_0) entered disabled state [ 75.814605][ T9404] device bridge_slave_0 entered promiscuous mode [ 75.826871][ T9404] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.833968][ T9404] bridge0: port 2(bridge_slave_1) entered disabled state [ 75.841847][ T9404] device bridge_slave_1 entered promiscuous mode [ 75.849552][ T9408] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 75.886857][ T9408] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 75.901253][ T9407] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.908409][ T9407] bridge0: port 1(bridge_slave_0) entered disabled state [ 75.916237][ T9407] device bridge_slave_0 entered promiscuous mode [ 75.923541][ T9402] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.931398][ T9402] bridge0: port 1(bridge_slave_0) entered disabled state [ 75.938897][ T9402] device bridge_slave_0 entered promiscuous mode [ 75.947049][ T9404] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 75.957671][ T9404] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 75.978710][ T9404] team0: Port device team_slave_0 added [ 75.988397][ T9407] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.000267][ T9407] bridge0: port 2(bridge_slave_1) entered disabled state [ 76.007771][ T9407] device bridge_slave_1 entered promiscuous mode [ 76.015033][ T9402] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.022518][ T9402] bridge0: port 2(bridge_slave_1) entered disabled state [ 76.030558][ T9402] device bridge_slave_1 entered promiscuous mode [ 76.037374][ T9409] chnl_net:caif_netlink_parms(): no params data found [ 76.047281][ T9404] team0: Port device team_slave_1 added [ 76.058333][ T9408] team0: Port device team_slave_0 added [ 76.065395][ T9408] team0: Port device team_slave_1 added [ 76.091362][ T9407] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 76.118893][ T9400] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.132583][ T9400] bridge0: port 2(bridge_slave_1) entered forwarding state [ 76.153651][ T9400] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.160782][ T9400] bridge0: port 1(bridge_slave_0) entered forwarding state [ 76.174825][ T9407] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 76.189410][ T9402] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 76.252217][ T9408] device hsr_slave_0 entered promiscuous mode [ 76.290459][ T9408] device hsr_slave_1 entered promiscuous mode [ 76.330225][ T9408] debugfs: Directory 'hsr0' with parent '/' already present! [ 76.391384][ T9404] device hsr_slave_0 entered promiscuous mode [ 76.430429][ T9404] device hsr_slave_1 entered promiscuous mode [ 76.470222][ T9404] debugfs: Directory 'hsr0' with parent '/' already present! [ 76.478924][ T9402] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 76.495887][ T2996] bridge0: port 1(bridge_slave_0) entered disabled state [ 76.503621][ T2996] bridge0: port 2(bridge_slave_1) entered disabled state [ 76.517496][ T9409] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.525212][ T9409] bridge0: port 1(bridge_slave_0) entered disabled state [ 76.532976][ T9409] device bridge_slave_0 entered promiscuous mode [ 76.551438][ T9402] team0: Port device team_slave_0 added [ 76.558658][ T9407] team0: Port device team_slave_0 added [ 76.566819][ T9407] team0: Port device team_slave_1 added [ 76.579926][ T9409] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.588294][ T9409] bridge0: port 2(bridge_slave_1) entered disabled state [ 76.595927][ T9409] device bridge_slave_1 entered promiscuous mode [ 76.610267][ T9400] 8021q: adding VLAN 0 to HW filter on device bond0 [ 76.618165][ T9402] team0: Port device team_slave_1 added [ 76.671877][ T9407] device hsr_slave_0 entered promiscuous mode [ 76.730492][ T9407] device hsr_slave_1 entered promiscuous mode [ 76.780242][ T9407] debugfs: Directory 'hsr0' with parent '/' already present! [ 76.800459][ T9409] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 76.812804][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 76.820621][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 76.849801][ T9409] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 76.860721][ T9400] 8021q: adding VLAN 0 to HW filter on device team0 [ 76.870693][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 76.880467][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 76.889729][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.896815][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 76.904958][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 76.913488][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 76.921774][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.929088][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 76.962373][ T9402] device hsr_slave_0 entered promiscuous mode [ 77.041647][ T9402] device hsr_slave_1 entered promiscuous mode [ 77.100292][ T9402] debugfs: Directory 'hsr0' with parent '/' already present! [ 77.139140][ T9400] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 77.153090][ T9400] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 77.183406][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 77.192549][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 77.204856][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 77.213291][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 77.221887][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 77.230637][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 77.239856][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 77.249166][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 77.258351][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 77.267035][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 77.277048][ T9404] 8021q: adding VLAN 0 to HW filter on device bond0 [ 77.287229][ T9409] team0: Port device team_slave_0 added [ 77.296346][ T9400] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 77.306830][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 77.314997][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 77.334258][ T9404] 8021q: adding VLAN 0 to HW filter on device team0 [ 77.346877][ T9409] team0: Port device team_slave_1 added [ 77.353933][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 77.369496][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 77.396108][ T9408] 8021q: adding VLAN 0 to HW filter on device bond0 [ 77.428715][ T9423] page:ffffea0001e90000 refcount:2 mapcount:1 mapping:ffff8880901badd9 index:0x20000 compound_mapcount: 1 [ 77.441655][ T9423] anon [ 77.441667][ T9423] flags: 0x1fffc0000090025(locked|uptodate|active|head|swapbacked) [ 77.452517][ T9423] raw: 01fffc0000090025 dead000000000100 dead000000000122 ffff8880901badd9 [ 77.461197][ T9423] raw: 0000000000020000 0000000000000000 00000002ffffffff ffff8880a5ca6440 [ 77.471550][ T9423] page dumped because: VM_BUG_ON_PAGE(PageActive(page)) [ 77.479120][ T9423] page->mem_cgroup:ffff8880a5ca6440 [ 77.485354][ T9423] ------------[ cut here ]------------ [ 77.490818][ T9423] kernel BUG at mm/vmscan.c:1156! [ 77.491319][ T9423] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 77.496135][ T9409] kobject: 'tx-0' (00000000772740ba): fill_kobj_path: path = '/devices/virtual/net/hsr0/queues/tx-0' [ 77.502015][ T9423] CPU: 1 PID: 9423 Comm: syz-executor.3 Not tainted 5.3.0-rc1+ #1 [ 77.502019][ T9423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 77.502037][ T9423] RIP: 0010:shrink_page_list+0x195e/0x3810 [ 77.502044][ T9423] Code: 48 c7 c6 40 51 12 87 48 8d 50 ff a8 01 48 0f 44 d3 48 89 d7 e8 03 ff 05 00 0f 0b 48 c7 c6 00 5a 12 87 48 89 df e8 f2 fe 05 00 <0f> 0b 49 8b 45 00 48 c7 c6 40 51 12 87 48 8d 50 ff a8 01 48 0f 44 [ 77.502046][ T9423] RSP: 0018:ffff88807a8df5a8 EFLAGS: 00010286 [ 77.502051][ T9423] RAX: 0000000000000021 RBX: ffffea0001e90000 RCX: 0000000000000000 [ 77.502053][ T9423] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff89da6040 [ 77.502055][ T9423] RBP: ffff88807a8df7b8 R08: fffffbfff11f50a0 R09: fffffbfff11f50a0 [ 77.502058][ T9423] R10: fffffbfff11f509f R11: ffffffff88fa84ff R12: ffff88807a8df828 [ 77.502060][ T9423] R13: ffffea0001e90008 R14: ffffea0001e90000 R15: dffffc0000000000 [ 77.502064][ T9423] FS: 00007fc4f961f700(0000) GS:ffff8880aeb00000(0000) knlGS:0000000000000000 [ 77.502067][ T9423] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 77.502069][ T9423] CR2: 000000000075c091 CR3: 0000000090b88000 CR4: 00000000001406e0 [ 77.502075][ T9423] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 77.502077][ T9423] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 77.502079][ T9423] Call Trace: [ 77.502089][ T9423] ? __kasan_check_read+0x11/0x20 [ 77.502098][ T9423] ? page_evictable+0x270/0x270 [ 77.502101][ T9423] ? __kasan_check_read+0x11/0x20 [ 77.502106][ T9423] ? __kasan_check_read+0x11/0x20 [ 77.502114][ T9423] ? finish_task_switch+0x14b/0x680 [ 77.502119][ T9423] ? lock_downgrade+0x900/0x900 [ 77.502125][ T9423] ? lock_acquire+0x194/0x410 [ 77.502133][ T9423] ? _raw_spin_unlock_irq+0x27/0x80 [ 77.502141][ T9423] ? trace_hardirqs_on+0x28/0x1a0 [ 77.502148][ T9423] reclaim_pages+0x4a4/0x9b0 [ 77.502156][ T9423] ? reclaim_clean_pages_from_list+0x9b0/0x9b0 [ 77.516198][ T9409] kobject: 'batman_adv' (0000000040377459): kobject_add_internal: parent: 'hsr0', set: '' [ 77.520928][ T9423] ? __kasan_check_read+0x11/0x20 [ 77.520938][ T9423] ? trace_hardirqs_on+0x28/0x1a0 [ 77.520941][ T9423] ? __kasan_check_read+0x11/0x20 [ 77.520946][ T9423] ? __kasan_check_read+0x11/0x20 [ 77.520951][ T9423] ? do_raw_spin_unlock+0x54/0x260 [ 77.520958][ T9423] madvise_pageout_pte_range+0x1157/0x2040 [ 77.520961][ T9423] ? __kasan_check_write+0x14/0x20 [ 77.520968][ T9423] ? refcount_sub_and_test_checked+0xdc/0x170 [ 77.520974][ T9423] ? swapin_walk_pmd_entry+0x540/0x540 [ 77.520977][ T9423] ? trace_hardirqs_on+0x28/0x1a0 [ 77.520984][ T9423] __walk_page_range+0xa3f/0x1600 [ 77.520993][ T9423] walk_page_range+0x14d/0x340 [ 77.533538][ T9409] device hsr_slave_0 entered promiscuous mode [ 77.536856][ T9423] madvise_pageout_page_range.isra.18+0x9b/0xd0 [ 77.804737][ T9423] ? madvise_cold+0x220/0x220 [ 77.809401][ T9423] ? swapin_walk_pmd_entry+0x540/0x540 [ 77.814850][ T9423] ? tlb_gather_mmu+0x201/0x3e0 [ 77.819679][ T9423] madvise_pageout+0x1df/0x340 [ 77.824435][ T9423] ? madvise_pageout_page_range.isra.18+0xd0/0xd0 [ 77.832318][ T9423] ? __kasan_check_write+0x14/0x20 [ 77.837406][ T9423] ? down_read+0x10f/0x3f0 [ 77.841812][ T9423] ? find_vma+0xe2/0x150 [ 77.846035][ T9423] __x64_sys_madvise+0x30e/0x1160 [ 77.851046][ T9423] ? madvise_free_pte_range+0x1a30/0x1a30 [ 77.856979][ T9423] ? put_timespec64+0xa9/0x100 [ 77.861732][ T9423] ? nsecs_to_jiffies+0x20/0x20 [ 77.866562][ T9423] ? trace_hardirqs_off_thunk+0x1a/0x20 [ 77.872097][ T9423] ? trace_hardirqs_off_caller+0x49/0x190 [ 77.877810][ T9423] ? do_syscall_64+0x21/0x540 [ 77.882465][ T9423] do_syscall_64+0xd0/0x540 [ 77.887494][ T9423] ? do_syscall_64+0xd0/0x540 [ 77.892158][ T9423] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 77.898040][ T9423] RIP: 0033:0x459829 [ 77.902217][ T9423] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 77.931565][ T9423] RSP: 002b:00007fc4f961ec78 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 77.940462][ T9423] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000459829 [ 77.951554][ T9423] RDX: 0000000000000015 RSI: 0000000000600003 RDI: 0000000020000000 [ 77.959519][ T9423] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 77.987050][ T9423] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc4f961f6d4 [ 77.995050][ T9423] R13: 00000000004c5c6d R14: 00000000004da4d8 R15: 00000000ffffffff [ 78.004667][ T9423] Modules linked in: [ 78.010666][ T9423] ---[ end trace 4848a571efe4f940 ]--- [ 78.016193][ T9423] RIP: 0010:shrink_page_list+0x195e/0x3810 [ 78.022359][ T9423] Code: 48 c7 c6 40 51 12 87 48 8d 50 ff a8 01 48 0f 44 d3 48 89 d7 e8 03 ff 05 00 0f 0b 48 c7 c6 00 5a 12 87 48 89 df e8 f2 fe 05 00 <0f> 0b 49 8b 45 00 48 c7 c6 40 51 12 87 48 8d 50 ff a8 01 48 0f 44 [ 78.030625][ T9409] device hsr_slave_1 entered promiscuous mode [ 78.042318][ T9423] RSP: 0018:ffff88807a8df5a8 EFLAGS: 00010286 [ 78.056050][ T9423] RAX: 0000000000000021 RBX: ffffea0001e90000 RCX: 0000000000000000 [ 78.064265][ T9423] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff89da6040 [ 78.073073][ T9423] RBP: ffff88807a8df7b8 R08: fffffbfff11f50a0 R09: fffffbfff11f50a0 [ 78.084089][ T9423] R10: fffffbfff11f509f R11: ffffffff88fa84ff R12: ffff88807a8df828 [ 78.112394][ T9423] R13: ffffea0001e90008 R14: ffffea0001e90000 R15: dffffc0000000000 [ 78.120532][ T9409] debugfs: Directory 'hsr0' with parent '/' already present! [ 78.138581][ T9423] FS: 00007fc4f961f700(0000) GS:ffff8880aeb00000(0000) knlGS:0000000000000000 [ 78.138586][ T9423] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 78.138588][ T9423] CR2: 000000000075c091 CR3: 0000000090b88000 CR4: 00000000001406e0 [ 78.138602][ T9423] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 78.193676][ T9423] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 78.206838][ T9423] Kernel panic - not syncing: Fatal exception [ 78.207145][ T3597] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 78.214144][ T9423] Kernel Offset: disabled [ 78.226549][ T9423] Rebooting in 86400 seconds..