
Debian GNU/Linux 9 syzkaller ttyS0

syzkaller login: [   39.097061][   T27] audit: type=1400 audit(1587155853.148:8): avc:  denied  { execmem } for  pid=7000 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[   39.108993][ T7001] IPVS: ftp: loaded support on port[0] = 21
[   39.428265][   T21] tipc: TX() has been purged, node left!
[   39.712023][ T6982] can: request_module (can-proto-0) failed.
[   42.548454][ T6982] can: request_module (can-proto-0) failed.
[   42.559197][ T6982] can: request_module (can-proto-0) failed.
[   42.596056][   T27] audit: type=1400 audit(1587155856.650:9): avc:  denied  { create } for  pid=6977 comm="syz-fuzzer" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dccp_socket permissive=1
Warning: Permanently added '10.128.10.22' (ECDSA) to the list of known hosts.
2020/04/17 20:37:43 parsed 1 programs
2020/04/17 20:37:44 executed programs: 0
[   50.759880][   T27] audit: type=1400 audit(1587155864.824:10): avc:  denied  { execmem } for  pid=7118 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[   50.851080][ T7121] IPVS: ftp: loaded support on port[0] = 21
[   50.873985][ T7120] IPVS: ftp: loaded support on port[0] = 21
[   50.919904][ T7126] IPVS: ftp: loaded support on port[0] = 21
[   50.937228][ T7125] IPVS: ftp: loaded support on port[0] = 21
[   50.938418][ T7150] IPVS: ftp: loaded support on port[0] = 21
[   50.952223][ T7128] IPVS: ftp: loaded support on port[0] = 21
[   51.030986][ T7121] chnl_net:caif_netlink_parms(): no params data found
[   51.180013][ T7121] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.189231][ T7121] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.198348][ T7121] device bridge_slave_0 entered promiscuous mode
[   51.208222][ T7121] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.216224][ T7121] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.224405][ T7121] device bridge_slave_1 entered promiscuous mode
[   51.329467][ T7121] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   51.342243][ T7121] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   51.356161][ T7120] chnl_net:caif_netlink_parms(): no params data found
[   51.391951][ T7126] chnl_net:caif_netlink_parms(): no params data found
[   51.432319][ T7121] team0: Port device team_slave_0 added
[   51.439974][ T7120] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.448709][ T7120] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.457510][ T7120] device bridge_slave_0 entered promiscuous mode
[   51.502624][ T7121] team0: Port device team_slave_1 added
[   51.511660][ T7120] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.519474][ T7120] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.527854][ T7120] device bridge_slave_1 entered promiscuous mode
[   51.666673][ T7121] device hsr_slave_0 entered promiscuous mode
[   51.734441][ T7121] device hsr_slave_1 entered promiscuous mode
[   51.773613][ T7126] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.780703][ T7126] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.789180][ T7126] device bridge_slave_0 entered promiscuous mode
[   51.801093][ T7126] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.808888][ T7126] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.818328][ T7126] device bridge_slave_1 entered promiscuous mode
[   51.831315][ T7128] chnl_net:caif_netlink_parms(): no params data found
[   51.850030][ T7150] chnl_net:caif_netlink_parms(): no params data found
[   51.874907][ T7120] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   51.891322][ T7120] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   51.926731][ T7126] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   51.962127][ T7125] chnl_net:caif_netlink_parms(): no params data found
[   51.972811][ T7120] team0: Port device team_slave_0 added
[   51.984787][ T7126] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   52.018694][ T7120] team0: Port device team_slave_1 added
[   52.045986][ T7128] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.054790][ T7128] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.062744][ T7128] device bridge_slave_0 entered promiscuous mode
[   52.080100][ T7121] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   52.126024][ T7150] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.135087][ T7150] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.142704][ T7150] device bridge_slave_0 entered promiscuous mode
[   52.171416][ T7126] team0: Port device team_slave_0 added
[   52.177791][ T7128] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.186293][ T7128] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.194893][ T7128] device bridge_slave_1 entered promiscuous mode
[   52.212570][ T7121] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   52.255316][ T7150] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.262484][ T7150] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.270722][ T7150] device bridge_slave_1 entered promiscuous mode
[   52.315929][ T7120] device hsr_slave_0 entered promiscuous mode
[   52.373562][ T7120] device hsr_slave_1 entered promiscuous mode
[   52.413009][ T7120] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   52.420750][ T7120] Cannot create hsr debugfs directory
[   52.427864][ T7126] team0: Port device team_slave_1 added
[   52.440588][ T7121] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   52.498847][ T7121] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   52.570818][ T7150] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   52.591960][ T7125] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.599496][ T7125] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.608359][ T7125] device bridge_slave_0 entered promiscuous mode
[   52.618903][ T7125] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.626544][ T7125] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.635096][ T7125] device bridge_slave_1 entered promiscuous mode
[   52.643599][ T7128] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   52.662453][ T7128] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   52.672872][ T7150] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   52.735507][ T7126] device hsr_slave_0 entered promiscuous mode
[   52.786463][ T7126] device hsr_slave_1 entered promiscuous mode
[   52.842884][ T7126] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   52.850487][ T7126] Cannot create hsr debugfs directory
[   52.892276][ T7125] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   52.916051][ T7128] team0: Port device team_slave_0 added
[   52.923856][ T7150] team0: Port device team_slave_0 added
[   52.930781][ T7125] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   52.950335][ T7120] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   52.998913][ T7128] team0: Port device team_slave_1 added
[   53.007691][ T7150] team0: Port device team_slave_1 added
[   53.032224][ T7120] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   53.071242][ T7120] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   53.127247][ T7125] team0: Port device team_slave_0 added
[   53.135636][ T7125] team0: Port device team_slave_1 added
[   53.196812][ T7128] device hsr_slave_0 entered promiscuous mode
[   53.243742][ T7128] device hsr_slave_1 entered promiscuous mode
[   53.282687][ T7128] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   53.290267][ T7128] Cannot create hsr debugfs directory
[   53.305135][ T7120] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   53.425894][ T7150] device hsr_slave_0 entered promiscuous mode
[   53.473160][ T7150] device hsr_slave_1 entered promiscuous mode
[   53.512806][ T7150] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   53.521330][ T7150] Cannot create hsr debugfs directory
[   53.565631][ T7125] device hsr_slave_0 entered promiscuous mode
[   53.602954][ T7125] device hsr_slave_1 entered promiscuous mode
[   53.642667][ T7125] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   53.650254][ T7125] Cannot create hsr debugfs directory
[   53.691739][ T7126] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   53.734889][ T7126] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   53.781582][ T7128] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   53.826061][ T7128] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   53.863755][ T7126] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   53.919320][ T7126] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   53.976319][ T7128] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   54.035059][ T7128] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   54.117877][ T7121] 8021q: adding VLAN 0 to HW filter on device bond0
[   54.157380][ T7150] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   54.215019][ T7150] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   54.241422][ T7120] 8021q: adding VLAN 0 to HW filter on device bond0
[   54.253947][ T7150] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   54.298403][ T7150] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   54.381356][ T7125] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   54.406560][ T7125] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   54.486196][ T3114] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   54.495535][ T3114] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   54.505176][ T3114] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   54.513624][ T3114] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   54.540519][ T7120] 8021q: adding VLAN 0 to HW filter on device team0
[   54.550803][ T7121] 8021q: adding VLAN 0 to HW filter on device team0
[   54.558480][ T7125] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   54.584248][ T7125] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   54.662775][ T7126] 8021q: adding VLAN 0 to HW filter on device bond0
[   54.674436][ T3114] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   54.684692][ T3114] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   54.696764][ T3114] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.705003][ T3114] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.716111][ T3114] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   54.725344][ T3114] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   54.733750][ T3114] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.740797][ T3114] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.748361][ T3114] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   54.757421][ T3114] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   54.766224][ T3114] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.773360][ T3114] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.781982][ T3114] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   54.790695][ T3114] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   54.799216][ T3114] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   54.808873][ T3114] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   54.818491][ T3114] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.825620][ T3114] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.859352][ T7126] 8021q: adding VLAN 0 to HW filter on device team0
[   54.870758][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   54.879647][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   54.888880][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   54.896626][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   54.904780][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   54.913794][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   54.950007][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   54.959741][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   54.968634][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   54.978664][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   54.987505][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   54.996618][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   55.005398][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   55.014088][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   55.022396][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   55.031046][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   55.039569][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   55.048024][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   55.067267][ T7120] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   55.079321][ T7120] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   55.103754][ T7150] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.117092][ T7128] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.125245][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   55.134274][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   55.144429][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   55.153521][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   55.161619][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   55.170802][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   55.179755][ T2667] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.187055][ T2667] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.195331][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   55.204032][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   55.212660][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   55.220411][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   55.246292][ T7121] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   55.265518][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   55.274623][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   55.284717][ T3113] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.292041][ T3113] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.300532][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   55.308536][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   55.330239][ T7120] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.347223][ T7128] 8021q: adding VLAN 0 to HW filter on device team0
[   55.356046][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   55.366269][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   55.374160][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   55.383769][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   55.392725][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   55.401164][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   55.430733][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   55.438561][ T2667] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   55.457826][ T7150] 8021q: adding VLAN 0 to HW filter on device team0
[   55.475545][ T7125] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.486015][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   55.496238][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   55.526181][ T7121] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.540914][ T7125] 8021q: adding VLAN 0 to HW filter on device team0
[   55.554802][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   55.568334][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   55.569159][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   55.569573][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   55.569948][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   55.570319][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   55.570696][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   55.570990][ T3113] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.571022][ T3113] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.571247][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   55.571627][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   55.571917][ T3113] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.571939][ T3113] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.577425][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   55.578080][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   55.578555][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   55.579123][ T3113] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.579150][ T3113] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.579410][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   55.579969][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   55.580389][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   55.580764][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   55.581154][ T3113] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   55.581446][ T3113] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.581470][ T3113] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.585472][ T7126] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   55.586102][ T7126] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   55.657356][ T3107] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   55.657831][ T3107] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   55.658246][ T3107] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   55.658668][ T3107] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   55.659070][ T3107] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   55.659604][ T3107] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   55.660726][ T3107] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   55.661157][ T3107] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   55.661549][ T3107] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   55.661902][ T3107] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.661927][ T3107] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.662789][ T3107] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   55.663205][ T3107] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   55.663496][ T3107] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.663519][ T3107] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.663774][ T3107] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   55.664351][ T3107] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   55.665690][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   55.666116][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   55.685223][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   55.685773][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   55.686405][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   55.686841][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   55.687445][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   55.687882][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   55.687975][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   55.688050][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   55.688653][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   55.689346][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   56.102820][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   56.126004][ T7126] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.134829][ T3107] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   56.135278][ T3107] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   56.135664][ T3107] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   56.136841][ T3107] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   56.137280][ T3107] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   56.137712][ T3107] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   56.138088][ T3107] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   56.138456][ T3107] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   56.139652][ T3107] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   56.140219][ T3107] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   56.140642][ T3107] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   56.141035][ T3107] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   56.147292][ T7128] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   56.156669][ T7150] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   56.157161][ T7150] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   56.172835][ T7125] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   56.173371][ T7125] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   56.179774][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   56.180269][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   56.180558][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   56.180940][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   56.181301][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   56.181392][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   56.195765][ T7150] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.252564][ T7125] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.259780][ T7128] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.267426][ T3114] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   56.267526][ T3114] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   56.267583][ T3114] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   56.267667][ T3114] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   56.273101][ T8058] ==================================================================
[   56.273130][ T8058] BUG: KASAN: slab-out-of-bounds in soft_cursor+0x430/0xc70
[   56.273135][ T8058] Read of size 9 at addr ffff8880a1d08051 by task syz-executor.3/8058
[   56.273137][ T8058] 
[   56.273145][ T8058] CPU: 0 PID: 8058 Comm: syz-executor.3 Not tainted 5.7.0-rc1-syzkaller #0
[   56.273149][ T8058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   56.273152][ T8058] Call Trace:
[   56.273161][ T8058]  dump_stack+0x12d/0x187
[   56.273169][ T8058]  ? soft_cursor+0x430/0xc70
[   56.273174][ T8058]  ? soft_cursor+0x430/0xc70
[   56.273183][ T8058]  print_address_description.constprop.8.cold.10+0x9/0x31d
[   56.273188][ T8058]  ? soft_cursor+0x430/0xc70
[   56.273193][ T8058]  ? soft_cursor+0x430/0xc70
[   56.273199][ T8058]  __kasan_report.cold.11+0x37/0x4e
[   56.273207][ T8058]  ? soft_cursor+0x430/0xc70
[   56.273216][ T8058]  kasan_report+0x38/0x50
[   56.273225][ T8058]  check_memory_region+0x1cc/0x1f0
[   56.273232][ T8058]  memcpy+0x23/0x60
[   56.273238][ T8058]  soft_cursor+0x430/0xc70
[   56.273246][ T8058]  ? lockdep_hardirqs_on+0x481/0x620
[   56.273250][ T8058]  ? kfree+0x224/0x2c0
[   56.273264][ T8058]  bit_cursor+0xce1/0x22e0
[   56.273280][ T8058]  ? bit_clear+0x630/0x630
[   56.273302][ T8058]  ? fb_get_color_depth+0x49/0x60
[   56.273309][ T8058]  ? get_color+0x30/0x340
[   56.273318][ T8058]  fbcon_cursor+0x3db/0x570
[   56.273322][ T8058]  ? bit_clear+0x630/0x630
[   56.273335][ T8058]  hide_cursor+0x75/0x230
[   56.273344][ T8058]  redraw_screen+0x4ec/0x730
[   56.273350][ T8058]  ? __kasan_check_write+0x14/0x20
[   56.273357][ T8058]  ? respond_string+0x260/0x260
[   56.273370][ T8058]  vc_do_resize+0xeec/0x12b0
[   56.273377][ T8058]  ? mark_held_locks+0x130/0x130
[   56.273396][ T8058]  ? vc_uniscr_alloc+0xa0/0xa0
[   56.273403][ T8058]  ? lock_release+0x960/0x960
[   56.273408][ T8058]  ? lockdep_hardirqs_on+0x481/0x620
[   56.273415][ T8058]  ? _raw_spin_unlock_irqrestore+0x7d/0xd0
[   56.273422][ T8058]  ? trace_hardirqs_on+0x28/0x1a0
[   56.273435][ T8058]  vc_resize+0x3d/0x60
[   56.273440][ T8058]  ? console_lock+0x41/0x70
[   56.273446][ T8058]  vt_ioctl+0x1010/0x24c0
[   56.273456][ T8058]  ? complete_change_console+0x310/0x310
[   56.273465][ T8058]  ? tomoyo_path_number_perm+0x1e8/0x4c0
[   56.273471][ T8058]  ? lock_downgrade+0x960/0x960
[   56.273475][ T8058]  ? kfree+0x224/0x2c0
[   56.273481][ T8058]  ? tomoyo_path_number_perm+0x3e6/0x4c0
[   56.273488][ T8058]  ? lockdep_hardirqs_on+0x481/0x620
[   56.273492][ T8058]  ? kfree+0x224/0x2c0
[   56.273502][ T8058]  ? tomoyo_path_number_perm+0x3e6/0x4c0
[   56.273512][ T8058]  ? tomoyo_path_number_perm+0x213/0x4c0
[   56.273520][ T8058]  ? tomoyo_execute_permission+0x460/0x460
[   56.273533][ T8058]  tty_ioctl+0x45b/0x12f0
[   56.273538][ T8058]  ? find_held_lock+0x36/0x1d0
[   56.273545][ T8058]  ? tty_vhangup+0x20/0x20
[   56.273555][ T8058]  ? ___might_sleep+0x16b/0x2b0
[   56.273574][ T8058]  ? ioctl_file_clone+0x120/0x120
[   56.273590][ T8058]  ? ksys_dup3+0x2e0/0x2e0
[   56.273598][ T8058]  ? put_timespec64+0xa9/0x100
[   56.273612][ T8058]  ? nsecs_to_jiffies+0x20/0x20
[   56.273624][ T8058]  ? tomoyo_file_ioctl+0x14/0x20
[   56.273634][ T8058]  ksys_ioctl+0xc1/0x110
[   56.273639][ T8058]  ? lockdep_hardirqs_on+0x481/0x620
[   56.273648][ T8058]  __x64_sys_ioctl+0x6e/0xb0
[   56.273658][ T8058]  do_syscall_64+0xca/0x630
[   56.273668][ T8058]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[   56.273674][ T8058] RIP: 0033:0x45a679
[   56.273681][ T8058] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   56.273685][ T8058] RSP: 002b:00007f87e0dd8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   56.273691][ T8058] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a679
[   56.273694][ T8058] RDX: 00000000200002c0 RSI: 000000000000560a RDI: 0000000000000004
[   56.273696][ T8058] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000
[   56.273699][ T8058] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f87e0dd96d4
[   56.273702][ T8058] R13: 00000000004c6ce2 R14: 00000000004dd2d0 R15: 00000000ffffffff
[   56.273716][ T8058] 
[   56.273719][ T8058] Allocated by task 1:
[   56.273724][ T8058]  save_stack+0x21/0x50
[   56.273728][ T8058]  __kasan_kmalloc.constprop.17+0xc7/0xd0
[   56.273733][ T8058]  kasan_slab_alloc+0x12/0x20
[   56.273737][ T8058]  kmem_cache_alloc+0x121/0x760
[   56.273744][ T8058]  mempool_alloc_slab+0x3a/0x50
[   56.273748][ T8058]  mempool_init_node+0x28b/0x530
[   56.273753][ T8058]  mempool_init+0x11/0x20
[   56.273761][ T8058]  bioset_init+0x451/0x650
[   56.273766][ T8058]  __blk_alloc_queue+0xc2/0x6c0
[   56.273770][ T8058]  blk_alloc_queue+0x18/0x90
[   56.273775][ T8058]  brd_alloc+0x128/0x4e0
[   56.273781][ T8058]  brd_init+0xb0/0x3c7
[   56.273786][ T8058]  do_one_initcall+0xd8/0x5c0
[   56.273791][ T8058]  kernel_init_freeable+0x492/0x508
[   56.273797][ T8058]  kernel_init+0xc/0x111
[   56.273801][ T8058]  ret_from_fork+0x24/0x30
[   56.273804][ T8058] 
[   56.273807][ T8058] Freed by task 0:
[   56.273810][ T8058] (stack is not available)
[   56.273813][ T8058] 
[   56.273818][ T8058] The buggy address belongs to the object at ffff8880a1d08800
[   56.273818][ T8058]  which belongs to the cache biovec-max of size 4096
[   56.273823][ T8058] The buggy address is located 1967 bytes to the left of
[   56.273823][ T8058]  4096-byte region [ffff8880a1d08800, ffff8880a1d09800)
[   56.273826][ T8058] The buggy address belongs to the page:
[   56.273833][ T8058] page:ffffea0002874200 refcount:1 mapcount:0 mapping:000000003e82e272 index:0x0 head:ffffea0002874200 order:1 compound_mapcount:0
[   56.273838][ T8058] flags: 0xfffe0000010200(slab|head)
[   56.273846][ T8058] raw: 00fffe0000010200 ffffea0002873f88 ffffea0002874308 ffff88821ae17380
[   56.273851][ T8058] raw: 0000000000000000 ffff8880a1d08800 0000000100000001 0000000000000000
[   56.273855][ T8058] page dumped because: kasan: bad access detected
[   56.273857][ T8058] 
[   56.273860][ T8058] Memory state around the buggy address:
[   56.273865][ T8058]  ffff8880a1d07f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   56.273870][ T8058]  ffff8880a1d07f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   56.273874][ T8058] >ffff8880a1d08000: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   56.273877][ T8058]                                                  ^
[   56.273882][ T8058]  ffff8880a1d08080: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   56.273886][ T8058]  ffff8880a1d08100: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   56.273889][ T8058] ==================================================================
[   56.273892][ T8058] Disabling lock debugging due to kernel taint
[   56.275111][ T8058] Kernel panic - not syncing: panic_on_warn set ...
[   56.275119][ T8058] CPU: 0 PID: 8058 Comm: syz-executor.3 Tainted: G    B             5.7.0-rc1-syzkaller #0
[   56.275122][ T8058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   56.275123][ T8058] Call Trace:
[   56.275132][ T8058]  dump_stack+0x12d/0x187
[   56.275139][ T8058]  ? soft_cursor+0x400/0xc70
[   56.275143][ T8058]  ? soft_cursor+0x430/0xc70
[   56.275149][ T8058]  panic+0x22a/0x4e3
[   56.275153][ T8058]  ? add_taint.cold.7+0x11/0x11
[   56.275161][ T8058]  ? preempt_schedule_thunk+0x16/0x18
[   56.275168][ T8058]  ? soft_cursor+0x430/0xc70
[   56.275171][ T8058]  ? soft_cursor+0x430/0xc70
[   56.275177][ T8058]  end_report+0x51/0x59
[   56.275182][ T8058]  __kasan_report.cold.11+0xe/0x4e
[   56.275187][ T8058]  ? soft_cursor+0x430/0xc70
[   56.275192][ T8058]  kasan_report+0x38/0x50
[   56.275197][ T8058]  check_memory_region+0x1cc/0x1f0
[   56.275202][ T8058]  memcpy+0x23/0x60
[   56.275207][ T8058]  soft_cursor+0x430/0xc70
[   56.275212][ T8058]  ? lockdep_hardirqs_on+0x481/0x620
[   56.275215][ T8058]  ? kfree+0x224/0x2c0
[   56.275224][ T8058]  bit_cursor+0xce1/0x22e0
[   56.275232][ T8058]  ? bit_clear+0x630/0x630
[   56.275241][ T8058]  ? fb_get_color_depth+0x49/0x60
[   56.275245][ T8058]  ? get_color+0x30/0x340
[   56.275251][ T8058]  fbcon_cursor+0x3db/0x570
[   56.275255][ T8058]  ? bit_clear+0x630/0x630
[   56.275264][ T8058]  hide_cursor+0x75/0x230
[   56.275270][ T8058]  redraw_screen+0x4ec/0x730
[   56.275274][ T8058]  ? __kasan_check_write+0x14/0x20
[   56.275279][ T8058]  ? respond_string+0x260/0x260
[   56.275286][ T8058]  vc_do_resize+0xeec/0x12b0
[   56.275291][ T8058]  ? mark_held_locks+0x130/0x130
[   56.275301][ T8058]  ? vc_uniscr_alloc+0xa0/0xa0
[   56.275306][ T8058]  ? lock_release+0x960/0x960
[   56.275310][ T8058]  ? lockdep_hardirqs_on+0x481/0x620
[   56.275315][ T8058]  ? _raw_spin_unlock_irqrestore+0x7d/0xd0
[   56.275321][ T8058]  ? trace_hardirqs_on+0x28/0x1a0
[   56.275328][ T8058]  vc_resize+0x3d/0x60
[   56.275331][ T8058]  ? console_lock+0x41/0x70
[   56.275336][ T8058]  vt_ioctl+0x1010/0x24c0
[   56.275342][ T8058]  ? complete_change_console+0x310/0x310
[   56.275349][ T8058]  ? tomoyo_path_number_perm+0x1e8/0x4c0
[   56.275353][ T8058]  ? lock_downgrade+0x960/0x960
[   56.275356][ T8058]  ? kfree+0x224/0x2c0
[   56.275361][ T8058]  ? tomoyo_path_number_perm+0x3e6/0x4c0
[   56.275365][ T8058]  ? lockdep_hardirqs_on+0x481/0x620
[   56.275368][ T8058]  ? kfree+0x224/0x2c0
[   56.275374][ T8058]  ? tomoyo_path_number_perm+0x3e6/0x4c0
[   56.275380][ T8058]  ? tomoyo_path_number_perm+0x213/0x4c0
[   56.275386][ T8058]  ? tomoyo_execute_permission+0x460/0x460
[   56.275393][ T8058]  tty_ioctl+0x45b/0x12f0
[   56.275397][ T8058]  ? find_held_lock+0x36/0x1d0
[   56.275402][ T8058]  ? tty_vhangup+0x20/0x20
[   56.275409][ T8058]  ? ___might_sleep+0x16b/0x2b0
[   56.275418][ T8058]  ? ioctl_file_clone+0x120/0x120
[   56.275425][ T8058]  ? ksys_dup3+0x2e0/0x2e0
[   56.275431][ T8058]  ? put_timespec64+0xa9/0x100
[   56.275436][ T8058]  ? nsecs_to_jiffies+0x20/0x20
[   56.275443][ T8058]  ? tomoyo_file_ioctl+0x14/0x20
[   56.275448][ T8058]  ksys_ioctl+0xc1/0x110
[   56.275454][ T8058]  ? lockdep_hardirqs_on+0x481/0x620
[   56.275459][ T8058]  __x64_sys_ioctl+0x6e/0xb0
[   56.275464][ T8058]  do_syscall_64+0xca/0x630
[   56.275471][ T8058]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[   56.275475][ T8058] RIP: 0033:0x45a679
[   56.275480][ T8058] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   56.275483][ T8058] RSP: 002b:00007f87e0dd8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   56.275488][ T8058] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a679
[   56.275490][ T8058] RDX: 00000000200002c0 RSI: 000000000000560a RDI: 0000000000000004
[   56.275493][ T8058] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000
[   56.275495][ T8058] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f87e0dd96d4
[   56.275498][ T8058] R13: 00000000004c6ce2 R14: 00000000004dd2d0 R15: 00000000ffffffff
[   56.276944][ T8058] Kernel Offset: disabled