[[0;32m  OK  [0m] Reached target Login Prompts.
[[0;32m  OK  [0m] Reached target Multi-User System.
[[0;32m  OK  [0m] Reached target Graphical Interface.
         Starting Update UTMP about System Runlevel Changes...
[[0;32m  OK  [0m] Started Update UTMP about System Runlevel Changes.

Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '10.128.10.8' (ECDSA) to the list of known hosts.
syzkaller login: [   48.340214][   T25] audit: type=1400 audit(1593596392.537:8): avc:  denied  { execmem } for  pid=6423 comm="syz-executor530" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[   55.551739][ T6424] IPVS: ftp: loaded support on port[0] = 21
[   55.575881][ T6424] chnl_net:caif_netlink_parms(): no params data found
[   55.614089][ T6424] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.621403][ T6424] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.628625][ T6424] device bridge_slave_0 entered promiscuous mode
[   55.635783][ T6424] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.643308][ T6424] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.650754][ T6424] device bridge_slave_1 entered promiscuous mode
[   55.662088][ T6424] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   55.671763][ T6424] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   55.684262][ T6424] team0: Port device team_slave_0 added
[   55.690434][ T6424] team0: Port device team_slave_1 added
[   55.698829][ T6424] batman_adv: batadv0: Adding interface: batadv_slave_0
[   55.706124][ T6424] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.732347][ T6424] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   55.743421][ T6424] batman_adv: batadv0: Adding interface: batadv_slave_1
[   55.750527][ T6424] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.776682][ T6424] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   55.831030][ T6424] device hsr_slave_0 entered promiscuous mode
[   55.890279][ T6424] device hsr_slave_1 entered promiscuous mode
[   55.971401][ T6424] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   56.021127][ T6424] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   56.070940][ T6424] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   56.130862][ T6424] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   56.204584][ T6424] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.211636][ T6424] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.218839][ T6424] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.225849][ T6424] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.241763][ T6424] 8021q: adding VLAN 0 to HW filter on device bond0
[   56.250182][ T3412] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   56.257640][ T3412] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.265852][ T3412] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.273265][ T3412] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   56.281882][ T6424] 8021q: adding VLAN 0 to HW filter on device team0
[   56.289560][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   56.298176][    T5] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.305245][    T5] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.319159][ T6424] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   56.329753][ T6424] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   56.340762][   T44] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   56.348962][   T44] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.355979][   T44] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.363522][   T44] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   56.371885][   T44] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   56.379844][   T44] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   56.387804][   T44] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   56.395721][   T44] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   56.402988][   T44] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   56.414126][ T6424] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.421281][ T3677] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   56.428568][ T3677] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   56.439047][   T44] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   56.451319][ T6424] device veth0_vlan entered promiscuous mode
[   56.458766][ T6424] device veth1_vlan entered promiscuous mode
[   56.465399][ T6626] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   56.473639][ T6626] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   56.481315][ T6626] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   56.488793][ T6626] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   56.501896][ T6424] device veth0_macvtap entered promiscuous mode
[   56.508995][ T6424] device veth1_macvtap entered promiscuous mode
[   56.516107][ T3677] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   56.524184][ T3677] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   56.532387][ T3677] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   56.542841][ T6424] batman_adv: batadv0: Interface activated: batadv_slave_0
executing program
[   56.550228][ T6626] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   56.559573][ T6424] batman_adv: batadv0: Interface activated: batadv_slave_1
[   56.566994][   T44] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   56.605265][ T6645] FAULT_INJECTION: forcing a failure.
[   56.605265][ T6645] name failslab, interval 1, probability 0, space 0, times 1
[   56.618020][ T6645] CPU: 1 PID: 6645 Comm: syz-executor530 Not tainted 5.8.0-rc3-syzkaller #0
[   56.626682][ T6645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   56.636746][ T6645] Call Trace:
[   56.640008][ T6645]  dump_stack+0xbb/0xe3
[   56.644140][ T6645]  should_fail.cold+0x32/0x42
[   56.648783][ T6645]  should_failslab+0x5/0xf
[   56.653166][ T6645]  kmem_cache_alloc+0x23/0x2c0
[   56.657914][ T6645]  create_object.isra.0+0x36/0x330
[   56.663004][ T6645]  kmem_cache_alloc_trace+0x10f/0x2d0
[   56.668346][ T6645]  tcf_block_get_ext+0x78/0x5e0
[   56.673166][ T6645]  ? fifo_init+0xe2/0x1a0
[   56.677498][ T6645]  tcf_block_get+0x65/0x90
[   56.681902][ T6645]  ? blackhole_dequeue+0x10/0x10
[   56.686811][ T6645]  atm_tc_init+0xcf/0x150
[   56.691155][ T6645]  ? atm_tc_dump_class_stats+0xc0/0xc0
[   56.696583][ T6645]  qdisc_create+0x1ae/0x670
[   56.701058][ T6645]  ? __nla_parse+0x3d/0x4a
[   56.705443][ T6645]  tc_modify_qdisc+0x198/0xb10
[   56.710232][ T6645]  ? tc_get_qdisc+0x4a0/0x4a0
[   56.714881][ T6645]  rtnetlink_rcv_msg+0x17e/0x460
[   56.719789][ T6645]  ? _raw_spin_unlock_irqrestore+0x2f/0x50
[   56.725564][ T6645]  ? kmem_cache_alloc+0x101/0x2c0
[   56.730557][ T6645]  ? rtnl_calcit.isra.0+0x160/0x160
[   56.735720][ T6645]  netlink_rcv_skb+0x5b/0x180
[   56.740381][ T6645]  netlink_unicast+0x2b6/0x3c0
[   56.745129][ T6645]  netlink_sendmsg+0x2ba/0x570
[   56.749860][ T6645]  sock_sendmsg+0x4c/0x60
[   56.754155][ T6645]  ____sys_sendmsg+0x118/0x2f0
[   56.758887][ T6645]  ? sendmsg_copy_msghdr+0x5e/0xe0
[   56.763964][ T6645]  ? mntput_no_expire+0x5c/0x310
[   56.768867][ T6645]  ___sys_sendmsg+0x81/0xc0
[   56.773337][ T6645]  ? path_openat+0x5b9/0x14a0
[   56.777993][ T6645]  ? do_filp_open+0x113/0x190
[   56.782653][ T6645]  ? _parse_integer+0xb0/0xd0
[   56.787295][ T6645]  ? __fget_light+0xbf/0xd0
[   56.791764][ T6645]  __sys_sendmmsg+0xda/0x230
[   56.796321][ T6645]  ? __sb_end_write+0x56/0xb0
[   56.800965][ T6645]  ? vfs_write+0x90/0x200
[   56.805262][ T6645]  __x64_sys_sendmmsg+0x24/0x30
[   56.810077][ T6645]  do_syscall_64+0x4c/0xe0
[   56.814463][ T6645]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   56.820338][ T6645] RIP: 0033:0x4441e9
[   56.824197][ T6645] Code: Bad RIP value.
[   56.828251][ T6645] RSP: 002b:00007ffe13bad2e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   56.836641][ T6645] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000004441e9
[   56.844580][ T6645] RDX: 010efe10675dec16 RSI: 0000000020000200 RDI: 0000000000000006
[   56.852533][ T6645] RBP: ffffffffffffffff R08: 0000000000000002 R09: 00007ffe13bad360
[   56.860471][ T6645] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe13bad360
[   56.868424][ T6645] R13: 0000000000000007 R14: 0000000000000000 R15: 0000000000000000
executing program
[   62.453744][ T6646] FAULT_INJECTION: forcing a failure.
[   62.453744][ T6646] name failslab, interval 1, probability 0, space 0, times 0
[   62.466550][ T6646] CPU: 1 PID: 6646 Comm: syz-executor530 Not tainted 5.8.0-rc3-syzkaller #0
[   62.475188][ T6646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   62.485209][ T6646] Call Trace:
[   62.488469][ T6646]  dump_stack+0xbb/0xe3
[   62.492596][ T6646]  should_fail.cold+0x32/0x42
[   62.497291][ T6646]  should_failslab+0x5/0xf
[   62.501678][ T6646]  kmem_cache_alloc_trace+0x28/0x2d0
[   62.506935][ T6646]  tcf_block_get_ext+0xf5/0x5e0
[   62.511757][ T6646]  ? fifo_init+0xe2/0x1a0
[   62.516053][ T6646]  tcf_block_get+0x65/0x90
[   62.520436][ T6646]  ? blackhole_dequeue+0x10/0x10
[   62.525341][ T6646]  atm_tc_init+0xcf/0x150
[   62.529658][ T6646]  ? atm_tc_dump_class_stats+0xc0/0xc0
[   62.535193][ T6646]  qdisc_create+0x1ae/0x670
[   62.539681][ T6646]  ? __nla_parse+0x3d/0x4a
[   62.544078][ T6646]  tc_modify_qdisc+0x198/0xb10
[   62.548824][ T6646]  ? tc_get_qdisc+0x4a0/0x4a0
[   62.553468][ T6646]  rtnetlink_rcv_msg+0x17e/0x460
[   62.558389][ T6646]  ? _raw_spin_unlock_irqrestore+0x2f/0x50
[   62.564161][ T6646]  ? kmem_cache_alloc+0x101/0x2c0
[   62.569152][ T6646]  ? rtnl_calcit.isra.0+0x160/0x160
[   62.574330][ T6646]  netlink_rcv_skb+0x5b/0x180
[   62.578986][ T6646]  netlink_unicast+0x2b6/0x3c0
[   62.583733][ T6646]  netlink_sendmsg+0x2ba/0x570
[   62.588465][ T6646]  sock_sendmsg+0x4c/0x60
[   62.592778][ T6646]  ____sys_sendmsg+0x118/0x2f0
[   62.597508][ T6646]  ? sendmsg_copy_msghdr+0x5e/0xe0
[   62.602584][ T6646]  ? mntput_no_expire+0x5c/0x310
[   62.607511][ T6646]  ___sys_sendmsg+0x81/0xc0
[   62.612001][ T6646]  ? path_openat+0x5b9/0x14a0
[   62.616644][ T6646]  ? do_filp_open+0x113/0x190
[   62.621392][ T6646]  ? _parse_integer+0xb0/0xd0
[   62.626033][ T6646]  ? __fget_light+0xbf/0xd0
[   62.630501][ T6646]  __sys_sendmmsg+0xda/0x230
[   62.635058][ T6646]  ? __sb_end_write+0x56/0xb0
[   62.639715][ T6646]  ? vfs_write+0x90/0x200
[   62.644027][ T6646]  __x64_sys_sendmmsg+0x24/0x30
[   62.648931][ T6646]  do_syscall_64+0x4c/0xe0
[   62.653329][ T6646]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   62.659187][ T6646] RIP: 0033:0x4441e9
[   62.663062][ T6646] Code: Bad RIP value.
[   62.667095][ T6646] RSP: 002b:00007ffe13bad2e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   62.675473][ T6646] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000004441e9
[   62.683440][ T6646] RDX: 010efe10675dec16 RSI: 0000000020000200 RDI: 0000000000000006
[   62.691377][ T6646] RBP: ffffffffffffffff R08: 0000000000000002 R09: 00007ffe13bad360
[   62.699334][ T6646] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe13bad360
[   62.707273][ T6646] R13: 0000000000000007 R14: 0000000000000000 R15: 0000000000000000
executing program
[   68.279258][ T6647] FAULT_INJECTION: forcing a failure.
[   68.279258][ T6647] name failslab, interval 1, probability 0, space 0, times 0
[   68.292001][ T6647] CPU: 1 PID: 6647 Comm: syz-executor530 Not tainted 5.8.0-rc3-syzkaller #0
[   68.300836][ T6647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   68.310856][ T6647] Call Trace:
[   68.314114][ T6647]  dump_stack+0xbb/0xe3
[   68.318235][ T6647]  should_fail.cold+0x32/0x42
[   68.322880][ T6647]  should_failslab+0x5/0xf
[   68.327279][ T6647]  kmem_cache_alloc_trace+0x28/0x2d0
[   68.332552][ T6647]  tcf_block_get_ext+0xf5/0x5e0
[   68.337369][ T6647]  ? fifo_init+0xe2/0x1a0
[   68.341681][ T6647]  tcf_block_get+0x65/0x90
[   68.346081][ T6647]  ? blackhole_dequeue+0x10/0x10
[   68.351006][ T6647]  atm_tc_init+0xcf/0x150
[   68.355300][ T6647]  ? atm_tc_dump_class_stats+0xc0/0xc0
[   68.360723][ T6647]  qdisc_create+0x1ae/0x670
[   68.365217][ T6647]  ? __nla_parse+0x3d/0x4a
[   68.369599][ T6647]  tc_modify_qdisc+0x198/0xb10
[   68.374329][ T6647]  ? tc_get_qdisc+0x4a0/0x4a0
[   68.378979][ T6647]  rtnetlink_rcv_msg+0x17e/0x460
[   68.383885][ T6647]  ? _raw_spin_unlock_irqrestore+0x2f/0x50
[   68.389655][ T6647]  ? kmem_cache_alloc+0x101/0x2c0
[   68.394644][ T6647]  ? rtnl_calcit.isra.0+0x160/0x160
[   68.399808][ T6647]  netlink_rcv_skb+0x5b/0x180
[   68.404480][ T6647]  netlink_unicast+0x2b6/0x3c0
[   68.409259][ T6647]  netlink_sendmsg+0x2ba/0x570
[   68.413992][ T6647]  sock_sendmsg+0x4c/0x60
[   68.418287][ T6647]  ____sys_sendmsg+0x118/0x2f0
[   68.423016][ T6647]  ? sendmsg_copy_msghdr+0x5e/0xe0
[   68.428109][ T6647]  ? mntput_no_expire+0x5c/0x310
[   68.433045][ T6647]  ___sys_sendmsg+0x81/0xc0
[   68.437604][ T6647]  ? path_openat+0x5b9/0x14a0
[   68.442246][ T6647]  ? do_filp_open+0x113/0x190
[   68.446905][ T6647]  ? _parse_integer+0xb0/0xd0
[   68.451549][ T6647]  ? __fget_light+0xbf/0xd0
[   68.456017][ T6647]  __sys_sendmmsg+0xda/0x230
[   68.460574][ T6647]  ? __sb_end_write+0x56/0xb0
[   68.465216][ T6647]  ? vfs_write+0x90/0x200
[   68.469511][ T6647]  __x64_sys_sendmmsg+0x24/0x30
[   68.474328][ T6647]  do_syscall_64+0x4c/0xe0
[   68.478708][ T6647]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   68.484564][ T6647] RIP: 0033:0x4441e9
[   68.488421][ T6647] Code: Bad RIP value.
[   68.492471][ T6647] RSP: 002b:00007ffe13bad2e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   68.500865][ T6647] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000004441e9
[   68.508802][ T6647] RDX: 010efe10675dec16 RSI: 0000000020000200 RDI: 0000000000000006
[   68.516740][ T6647] RBP: ffffffffffffffff R08: 0000000000000002 R09: 00007ffe13bad360
[   68.524698][ T6647] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe13bad360
[   68.532634][ T6647] R13: 0000000000000007 R14: 0000000000000000 R15: 0000000000000000
[   69.815325][ T6424] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
[   76.240793][ T6424] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
BUG: memory leak
unreferenced object 0xffff888115aa8c00 (size 512):
  comm "syz-executor530", pid 6646, jiffies 4294943517 (age 13.870s)
  hex dump (first 32 bytes):
    a0 0c be 82 ff ff ff ff f0 0b be 82 ff ff ff ff  ................
    04 00 00 00 e8 03 00 00 40 c6 72 84 ff ff ff ff  ........@.r.....
  backtrace:
    [<00000000ead56edd>] qdisc_alloc+0x45/0x260
    [<000000002852d256>] qdisc_create_dflt+0x3d/0x170
    [<000000002108f663>] atm_tc_init+0x96/0x150
    [<000000000988e5f0>] qdisc_create+0x1ae/0x670
    [<00000000c8befd49>] tc_modify_qdisc+0x198/0xb10
    [<00000000b014fe08>] rtnetlink_rcv_msg+0x17e/0x460
    [<00000000da7a0de1>] netlink_rcv_skb+0x5b/0x180
    [<0000000069fa5fbe>] netlink_unicast+0x2b6/0x3c0
    [<0000000049c303c5>] netlink_sendmsg+0x2ba/0x570
    [<0000000017755dda>] sock_sendmsg+0x4c/0x60
    [<00000000294b696a>] ____sys_sendmsg+0x118/0x2f0
    [<00000000eb7a1f59>] ___sys_sendmsg+0x81/0xc0
    [<00000000ba1066c9>] __sys_sendmmsg+0xda/0x230
    [<0000000082fdecc3>] __x64_sys_sendmmsg+0x24/0x30
    [<000000009da3552a>] do_syscall_64+0x4c/0xe0
    [<00000000b46d0fac>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff888115aa8a00 (size 512):
  comm "syz-executor530", pid 6647, jiffies 4294944100 (age 8.040s)
  hex dump (first 32 bytes):
    a0 0c be 82 ff ff ff ff f0 0b be 82 ff ff ff ff  ................
    04 00 00 00 e8 03 00 00 40 c6 72 84 ff ff ff ff  ........@.r.....
  backtrace:
    [<00000000ead56edd>] qdisc_alloc+0x45/0x260
    [<000000002852d256>] qdisc_create_dflt+0x3d/0x170
    [<000000002108f663>] atm_tc_init+0x96/0x150
    [<000000000988e5f0>] qdisc_create+0x1ae/0x670
    [<00000000c8befd49>] tc_modify_qdisc+0x198/0xb10
    [<00000000b014fe08>] rtnetlink_rcv_msg+0x17e/0x460
    [<00000000da7a0de1>] netlink_rcv_skb+0x5b/0x180
    [<0000000069fa5fbe>] netlink_unicast+0x2b6/0x3c0
    [<0000000049c303c5>] netlink_sendmsg+0x2ba/0x570
    [<0000000017755dda>] sock_sendmsg+0x4c/0x60
    [<00000000294b696a>] ____sys_sendmsg+0x118/0x2f0
    [<00000000eb7a1f59>] ___sys_sendmsg+0x81/0xc0
    [<00000000ba1066c9>] __sys_sendmmsg+0xda/0x230
    [<0000000082fdecc3>] __x64_sys_sendmmsg+0x24/0x30
    [<000000009da3552a>] do_syscall_64+0x4c/0xe0
    [<00000000b46d0fac>] entry_SYSCALL_64_after_hwframe+0x44/0xa9