Warning: Permanently added '10.128.15.192' (ECDSA) to the list of known hosts. 2020/03/07 00:04:58 parsed 1 programs 2020/03/07 00:04:58 executed programs: 0 [ 51.660982] IPVS: ftp: loaded support on port[0] = 21 [ 52.466078] IPVS: ftp: loaded support on port[0] = 21 [ 52.513897] chnl_net:caif_netlink_parms(): no params data found [ 52.554915] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.561658] bridge0: port 1(bridge_slave_0) entered disabled state [ 52.568639] device bridge_slave_0 entered promiscuous mode [ 52.576246] IPVS: ftp: loaded support on port[0] = 21 [ 52.576272] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.587933] bridge0: port 2(bridge_slave_1) entered disabled state [ 52.595663] device bridge_slave_1 entered promiscuous mode [ 52.617687] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 52.627921] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 52.686782] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 52.694347] team0: Port device team_slave_0 added [ 52.701639] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 52.708753] team0: Port device team_slave_1 added [ 52.716091] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 52.725773] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 52.744987] chnl_net:caif_netlink_parms(): no params data found [ 52.759516] IPVS: ftp: loaded support on port[0] = 21 [ 52.792200] device hsr_slave_0 entered promiscuous mode [ 52.830322] device hsr_slave_1 entered promiscuous mode [ 52.921749] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 52.944293] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 52.958854] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.965648] bridge0: port 1(bridge_slave_0) entered disabled state [ 52.972653] device bridge_slave_0 entered promiscuous mode [ 53.009173] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.015646] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.023532] device bridge_slave_1 entered promiscuous mode [ 53.049386] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 53.060850] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 53.068975] chnl_net:caif_netlink_parms(): no params data found [ 53.086654] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.093470] bridge0: port 2(bridge_slave_1) entered forwarding state [ 53.100581] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.106948] bridge0: port 1(bridge_slave_0) entered forwarding state [ 53.127762] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 53.135930] team0: Port device team_slave_0 added [ 53.136247] IPVS: ftp: loaded support on port[0] = 21 [ 53.154472] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 53.163718] team0: Port device team_slave_1 added [ 53.187579] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 53.204258] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 53.234204] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.240874] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.247860] device bridge_slave_0 entered promiscuous mode [ 53.259179] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.265748] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.272720] device bridge_slave_1 entered promiscuous mode [ 53.332984] device hsr_slave_0 entered promiscuous mode [ 53.420353] device hsr_slave_1 entered promiscuous mode [ 53.469300] chnl_net:caif_netlink_parms(): no params data found [ 53.482731] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 53.500662] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 53.509485] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 53.520448] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 53.539573] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.546855] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.588898] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.595407] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.603464] device bridge_slave_0 entered promiscuous mode [ 53.610662] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.617012] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.624122] device bridge_slave_1 entered promiscuous mode [ 53.631059] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 53.639192] team0: Port device team_slave_0 added [ 53.639803] IPVS: ftp: loaded support on port[0] = 21 [ 53.646036] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 53.657334] team0: Port device team_slave_1 added [ 53.688636] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 53.695694] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 53.704548] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 53.721342] 8021q: adding VLAN 0 to HW filter on device bond0 [ 53.729085] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 53.736627] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 53.755713] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 53.798683] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 53.843313] device hsr_slave_0 entered promiscuous mode [ 53.880312] device hsr_slave_1 entered promiscuous mode [ 53.922510] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 53.929492] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 53.936784] team0: Port device team_slave_0 added [ 53.956140] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 53.963593] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 53.975907] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 53.983545] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 53.989699] 8021q: adding VLAN 0 to HW filter on device team0 [ 53.996166] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 54.003394] team0: Port device team_slave_1 added [ 54.017191] chnl_net:caif_netlink_parms(): no params data found [ 54.042139] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 54.072419] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 54.079485] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.086186] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.093566] device bridge_slave_0 entered promiscuous mode [ 54.101909] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 54.111572] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 54.130700] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.137083] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.144214] device bridge_slave_1 entered promiscuous mode [ 54.151158] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 54.158926] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 54.166895] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.173387] bridge0: port 1(bridge_slave_0) entered forwarding state [ 54.182523] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 54.209731] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 54.218861] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 54.226597] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.233239] bridge0: port 2(bridge_slave_1) entered forwarding state [ 54.250672] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 54.260808] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 54.312101] device hsr_slave_0 entered promiscuous mode [ 54.350359] device hsr_slave_1 entered promiscuous mode [ 54.391977] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 54.400272] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 54.407892] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 54.433037] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 54.441432] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 54.448858] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 54.457770] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 54.467781] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 54.475912] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 54.483908] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 54.494541] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 54.512998] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 54.520521] team0: Port device team_slave_0 added [ 54.526557] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 54.534804] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 54.556274] 8021q: adding VLAN 0 to HW filter on device bond0 [ 54.564188] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 54.571516] team0: Port device team_slave_1 added [ 54.583910] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 54.617165] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 54.626664] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 54.633727] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 54.641955] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 54.652873] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 54.662317] 8021q: adding VLAN 0 to HW filter on device bond0 [ 54.670186] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 54.679496] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 54.693105] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 54.702120] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 54.711844] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 54.772200] device hsr_slave_0 entered promiscuous mode [ 54.810325] device hsr_slave_1 entered promiscuous mode [ 54.891015] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 54.898992] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 54.908971] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 54.915690] 8021q: adding VLAN 0 to HW filter on device team0 [ 54.924102] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 54.931396] chnl_net:caif_netlink_parms(): no params data found [ 54.950943] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 54.958084] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 54.965259] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 54.972151] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 54.980742] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 54.986781] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 54.994482] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 55.022136] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.028653] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.035780] device bridge_slave_0 entered promiscuous mode [ 55.044840] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 55.053824] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 55.059900] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.073703] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.080412] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.087436] device bridge_slave_1 entered promiscuous mode [ 55.105628] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 55.117885] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 55.125969] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.132727] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.142625] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 55.152909] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 55.162575] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 55.174109] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready [ 55.182365] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 55.189798] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 55.197766] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 55.205652] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 55.213403] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.219733] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.226838] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 55.234799] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 55.242535] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.248916] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.257901] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 55.268113] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 55.276611] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 55.288591] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 55.296866] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 55.304361] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 55.312141] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 55.318863] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 55.325993] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 55.334031] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 55.342025] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.348387] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.361048] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 55.376348] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 55.395546] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 55.402917] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 55.411310] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 55.424645] 8021q: adding VLAN 0 to HW filter on device bond0 [ 55.438527] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 55.451592] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 55.464390] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 55.472486] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 55.479629] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 55.487397] team0: Port device team_slave_0 added [ 55.494903] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 55.506672] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 55.513755] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 55.523340] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 55.534442] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 55.542234] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 55.549969] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 55.558000] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 55.565730] team0: Port device team_slave_1 added [ 55.573348] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 55.583509] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 55.592763] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 55.607942] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 55.615827] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 55.624081] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 55.632022] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 55.638901] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 55.647831] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 55.655526] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 55.666751] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 55.673208] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.687266] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 55.694970] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 55.702857] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 55.711272] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 55.723270] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 55.734508] 8021q: adding VLAN 0 to HW filter on device bond0 [ 55.743236] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 55.758357] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 55.766526] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 55.774536] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 55.782180] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 55.789723] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 55.797294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 55.805022] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 55.812896] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.819482] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.827025] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 55.834952] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 55.844118] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 55.870670] ================================================================== [ 55.870701] BUG: KASAN: global-out-of-bounds in fb_pad_aligned_buffer+0xd3/0x130 [ 55.870706] Read of size 1 at addr ffffffff87060936 by task syz-executor.0/7266 [ 55.870708] [ 55.870713] CPU: 1 PID: 7266 Comm: syz-executor.0 Not tainted 4.14.172-syzkaller #0 [ 55.870717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 55.870720] Call Trace: [ 55.870729] dump_stack+0xf7/0x13b [ 55.870735] ? fb_pad_aligned_buffer+0xd3/0x130 [ 55.870743] print_address_description.cold.7+0x135/0x1c9 [ 55.870748] ? fb_pad_aligned_buffer+0xd3/0x130 [ 55.870753] kasan_report.cold.8+0x11a/0x2d3 [ 55.870760] __asan_report_load1_noabort+0x14/0x20 [ 55.870765] fb_pad_aligned_buffer+0xd3/0x130 [ 55.870776] bit_putcs+0x7fd/0xee0 [ 55.870793] ? update_attr.isra.1+0x170/0x170 [ 55.870803] ? fb_get_color_depth+0x49/0x60 [ 55.870811] fbcon_putcs+0x2fb/0x5b0 [ 55.870817] ? update_attr.isra.1+0x170/0x170 [ 55.870825] do_update_region+0x304/0x630 [ 55.870829] ? fb_set_cmap+0x34e/0x550 [ 55.870837] ? con_get_trans_old+0x200/0x200 [ 55.870851] redraw_screen+0x50d/0x7f0 [ 55.870856] ? bit_bmove+0x200/0x200 [ 55.870862] ? con_flush_chars+0x60/0x60 [ 55.870873] fbcon_do_set_font+0x656/0xa20 [ 55.870882] ? lock_acquire+0x173/0x400 [ 55.870891] fbcon_copy_font+0x116/0x1a0 [ 55.870898] con_font_op+0x219/0x1020 [ 55.870904] ? __might_fault+0xf1/0x1b0 [ 55.870909] ? lock_downgrade+0x7f0/0x7f0 [ 55.870914] ? con_write+0x80/0x80 [ 55.870926] ? kasan_check_write+0x14/0x20 [ 55.870935] vt_ioctl+0x9d7/0x2090 [ 55.870940] ? find_held_lock+0x36/0x1d0 [ 55.870946] ? complete_change_console+0x300/0x300 [ 55.870954] ? avc_has_extended_perms+0x477/0x1100 [ 55.870959] ? lock_downgrade+0x7f0/0x7f0 [ 55.870974] ? do_futex+0x573/0x1760 [ 55.870981] tty_ioctl+0x434/0x1260 [ 55.870986] ? avc_ss_reset+0xd0/0xd0 [ 55.870991] ? tty_vhangup+0x20/0x20 [ 55.870996] ? __lock_acquire+0x6a4/0x4500 [ 55.871001] ? trace_hardirqs_on+0x10/0x10 [ 55.871007] ? trace_hardirqs_off+0x10/0x10 [ 55.871026] ? __might_sleep+0x93/0xb0 [ 55.871036] do_vfs_ioctl+0x180/0xfb0 [ 55.871041] ? __fget+0x1ad/0x2f0 [ 55.871048] ? ioctl_preallocate+0x1a0/0x1a0 [ 55.871056] ? __fget+0x1ca/0x2f0 [ 55.871064] ? security_file_ioctl+0x6a/0xa0 [ 55.871068] ? SyS_clock_settime+0x1a0/0x1a0 [ 55.871073] ? security_file_ioctl+0x6a/0xa0 [ 55.871079] SyS_ioctl+0x74/0x80 [ 55.871085] ? do_vfs_ioctl+0xfb0/0xfb0 [ 55.871091] do_syscall_64+0x1c7/0x5b0 [ 55.871096] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 55.871106] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 55.871111] RIP: 0033:0x45a6f9 [ 55.871114] RSP: 002b:00007fc08ad7dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 55.871121] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 55.871123] RDX: 0000000020000000 RSI: 0000000000004b72 RDI: 0000000000000004 [ 55.871127] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 55.871130] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc08ad7e6d4 [ 55.871133] R13: 00000000004c382b R14: 00000000004d8d78 R15: 00000000ffffffff [ 55.871145] [ 55.871147] The buggy address belongs to the variable: [ 55.871153] oid_index+0x76/0x9a0 [ 55.871155] [ 55.871157] Memory state around the buggy address: [ 55.871161] ffffffff87060800: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 55.871165] ffffffff87060880: 00 00 00 05 fa fa fa fa 00 00 00 00 00 00 00 00 [ 55.871168] >ffffffff87060900: 00 00 00 00 00 00 06 fa fa fa fa fa 00 02 fa fa [ 55.871171] ^ [ 55.871174] ffffffff87060980: fa fa fa fa 00 01 fa fa fa fa fa fa 00 00 02 fa [ 55.871177] ffffffff87060a00: fa fa fa fa 00 03 fa fa fa fa fa fa 07 fa fa fa [ 55.871180] ================================================================== [ 55.871182] Disabling lock debugging due to kernel taint [ 55.871185] Kernel panic - not syncing: panic_on_warn set ... [ 55.871185] [ 55.871190] CPU: 1 PID: 7266 Comm: syz-executor.0 Tainted: G B 4.14.172-syzkaller #0 [ 55.871192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 55.871193] Call Trace: [ 55.871198] dump_stack+0xf7/0x13b [ 55.871202] ? fb_pad_aligned_buffer+0xd3/0x130 [ 55.871207] panic+0x1b0/0x358 [ 55.871210] ? add_taint.cold.5+0x11/0x11 [ 55.871213] ? lock_downgrade+0x7f0/0x7f0 [ 55.871221] ? fb_pad_aligned_buffer+0xd3/0x130 [ 55.871224] kasan_end_report+0x47/0x4f [ 55.871227] kasan_report.cold.8+0x76/0x2d3 [ 55.871232] __asan_report_load1_noabort+0x14/0x20 [ 55.871235] fb_pad_aligned_buffer+0xd3/0x130 [ 55.871240] bit_putcs+0x7fd/0xee0 [ 55.871249] ? update_attr.isra.1+0x170/0x170 [ 55.871256] ? fb_get_color_depth+0x49/0x60 [ 55.871260] fbcon_putcs+0x2fb/0x5b0 [ 55.871265] ? update_attr.isra.1+0x170/0x170 [ 55.871270] do_update_region+0x304/0x630 [ 55.871274] ? fb_set_cmap+0x34e/0x550 [ 55.871278] ? con_get_trans_old+0x200/0x200 [ 55.871287] redraw_screen+0x50d/0x7f0 [ 55.871291] ? bit_bmove+0x200/0x200 [ 55.871295] ? con_flush_chars+0x60/0x60 [ 55.871308] fbcon_do_set_font+0x656/0xa20 [ 55.871313] ? lock_acquire+0x173/0x400 [ 55.871319] fbcon_copy_font+0x116/0x1a0 [ 55.871323] con_font_op+0x219/0x1020 [ 55.871433] ? __might_fault+0xf1/0x1b0 [ 55.871446] ? lock_downgrade+0x7f0/0x7f0 [ 55.871451] ? con_write+0x80/0x80 [ 55.871459] ? kasan_check_write+0x14/0x20 [ 55.871466] vt_ioctl+0x9d7/0x2090 [ 55.871469] ? find_held_lock+0x36/0x1d0 [ 55.871473] ? complete_change_console+0x300/0x300 [ 55.871479] ? avc_has_extended_perms+0x477/0x1100 [ 55.871482] ? lock_downgrade+0x7f0/0x7f0 [ 55.871492] ? do_futex+0x573/0x1760 [ 55.871497] tty_ioctl+0x434/0x1260 [ 55.871500] ? avc_ss_reset+0xd0/0xd0 [ 55.871504] ? tty_vhangup+0x20/0x20 [ 55.871507] ? __lock_acquire+0x6a4/0x4500 [ 55.871511] ? trace_hardirqs_on+0x10/0x10 [ 55.871515] ? trace_hardirqs_off+0x10/0x10 [ 55.871526] ? __might_sleep+0x93/0xb0 [ 55.871534] do_vfs_ioctl+0x180/0xfb0 [ 55.871538] ? __fget+0x1ad/0x2f0 [ 55.871543] ? ioctl_preallocate+0x1a0/0x1a0 [ 55.871549] ? __fget+0x1ca/0x2f0 [ 55.871555] ? security_file_ioctl+0x6a/0xa0 [ 55.871557] ? SyS_clock_settime+0x1a0/0x1a0 [ 55.871560] ? security_file_ioctl+0x6a/0xa0 [ 55.871565] SyS_ioctl+0x74/0x80 [ 55.871569] ? do_vfs_ioctl+0xfb0/0xfb0 [ 55.871574] do_syscall_64+0x1c7/0x5b0 [ 55.871578] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 55.871584] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 55.871588] RIP: 0033:0x45a6f9 [ 55.871590] RSP: 002b:00007fc08ad7dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 55.871594] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 55.871597] RDX: 0000000020000000 RSI: 0000000000004b72 RDI: 0000000000000004 [ 55.871599] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 55.871601] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc08ad7e6d4 [ 55.871603] R13: 00000000004c382b R14: 00000000004d8d78 R15: 00000000ffffffff [ 55.873305] Kernel Offset: disabled [ 56.552677] Rebooting in 86400 seconds..