[[0;32m  OK  [0m] Started Update UTMP about System Runlevel Changes.

Debian GNU/Linux 9 syzkaller ttyS0

syzkaller login: [   29.510600] audit: type=1400 audit(1589631177.723:8): avc:  denied  { execmem } for  pid=6130 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[   29.743143] IPVS: ftp: loaded support on port[0] = 21
[   30.910752] can: request_module (can-proto-0) failed.
[   30.919060] can: request_module (can-proto-0) failed.
[   30.943648] audit: type=1400 audit(1589631179.164:9): avc:  denied  { create } for  pid=6107 comm="syz-fuzzer" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dccp_socket permissive=1
Warning: Permanently added '10.128.15.197' (ECDSA) to the list of known hosts.
2020/05/16 12:13:06 parsed 1 programs
2020/05/16 12:13:06 executed programs: 0
[   38.776284] audit: type=1400 audit(1589631186.989:10): avc:  denied  { execmem } for  pid=6253 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[   39.057080] IPVS: ftp: loaded support on port[0] = 21
[   39.825334] IPVS: ftp: loaded support on port[0] = 21
[   39.873304] chnl_net:caif_netlink_parms(): no params data found
[   39.914181] IPVS: ftp: loaded support on port[0] = 21
[   39.924953] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.933779] bridge0: port 1(bridge_slave_0) entered disabled state
[   39.941701] device bridge_slave_0 entered promiscuous mode
[   39.949729] bridge0: port 2(bridge_slave_1) entered blocking state
[   39.956530] bridge0: port 2(bridge_slave_1) entered disabled state
[   39.963450] device bridge_slave_1 entered promiscuous mode
[   39.989315] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   39.999168] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   40.028273] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   40.035660] team0: Port device team_slave_0 added
[   40.044061] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   40.052131] team0: Port device team_slave_1 added
[   40.061907] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   40.086096] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   40.114484] chnl_net:caif_netlink_parms(): no params data found
[   40.122561] IPVS: ftp: loaded support on port[0] = 21
[   40.167940] device hsr_slave_0 entered promiscuous mode
[   40.197504] device hsr_slave_1 entered promiscuous mode
[   40.254311] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[   40.261461] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[   40.289025] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.295581] bridge0: port 1(bridge_slave_0) entered disabled state
[   40.303581] device bridge_slave_0 entered promiscuous mode
[   40.349577] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.356174] bridge0: port 2(bridge_slave_1) entered disabled state
[   40.363390] device bridge_slave_1 entered promiscuous mode
[   40.390038] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.397712] bridge0: port 2(bridge_slave_1) entered forwarding state
[   40.404629] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.411122] bridge0: port 1(bridge_slave_0) entered forwarding state
[   40.422726] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   40.432080] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   40.446743] chnl_net:caif_netlink_parms(): no params data found
[   40.480600] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   40.488938] team0: Port device team_slave_0 added
[   40.498663] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   40.506108] team0: Port device team_slave_1 added
[   40.511493] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   40.523411] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   40.566631] IPVS: ftp: loaded support on port[0] = 21
[   40.578547] device hsr_slave_0 entered promiscuous mode
[   40.615840] device hsr_slave_1 entered promiscuous mode
[   40.660301] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[   40.714248] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[   40.724065] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.731763] bridge0: port 1(bridge_slave_0) entered disabled state
[   40.740847] device bridge_slave_0 entered promiscuous mode
[   40.748257] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.754841] bridge0: port 2(bridge_slave_1) entered disabled state
[   40.762055] device bridge_slave_1 entered promiscuous mode
[   40.789523] chnl_net:caif_netlink_parms(): no params data found
[   40.820664] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   40.831976] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   40.862001] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.868387] bridge0: port 2(bridge_slave_1) entered forwarding state
[   40.875063] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.881480] bridge0: port 1(bridge_slave_0) entered forwarding state
[   40.894984] IPVS: ftp: loaded support on port[0] = 21
[   40.918002] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   40.929452] team0: Port device team_slave_0 added
[   40.942101] bridge0: port 1(bridge_slave_0) entered disabled state
[   40.959353] bridge0: port 2(bridge_slave_1) entered disabled state
[   40.967685] bridge0: port 1(bridge_slave_0) entered disabled state
[   40.974473] bridge0: port 2(bridge_slave_1) entered disabled state
[   40.986450] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.992971] bridge0: port 1(bridge_slave_0) entered disabled state
[   41.000676] device bridge_slave_0 entered promiscuous mode
[   41.008480] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   41.017860] team0: Port device team_slave_1 added
[   41.057567] 8021q: adding VLAN 0 to HW filter on device bond0
[   41.081335] bridge0: port 2(bridge_slave_1) entered blocking state
[   41.089327] bridge0: port 2(bridge_slave_1) entered disabled state
[   41.098936] device bridge_slave_1 entered promiscuous mode
[   41.108044] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   41.126269] 8021q: adding VLAN 0 to HW filter on device bond0
[   41.134040] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   41.150519] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   41.165035] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   41.173640] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   41.190476] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   41.198603] chnl_net:caif_netlink_parms(): no params data found
[   41.215327] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   41.222520] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   41.232491] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   41.244695] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   41.264446] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[   41.271464] 8021q: adding VLAN 0 to HW filter on device team0
[   41.278875] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   41.286381] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   41.328842] device hsr_slave_0 entered promiscuous mode
[   41.365576] device hsr_slave_1 entered promiscuous mode
[   41.424745] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   41.440133] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[   41.452814] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[   41.460860] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   41.468849] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   41.477310] bridge0: port 1(bridge_slave_0) entered blocking state
[   41.483781] bridge0: port 1(bridge_slave_0) entered forwarding state
[   41.491702] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[   41.498116] 8021q: adding VLAN 0 to HW filter on device team0
[   41.509646] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   41.517504] team0: Port device team_slave_0 added
[   41.523067] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   41.530673] team0: Port device team_slave_1 added
[   41.537092] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   41.544474] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   41.553064] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   41.573508] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   41.586948] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   41.594601] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   41.603281] bridge0: port 2(bridge_slave_1) entered blocking state
[   41.609816] bridge0: port 2(bridge_slave_1) entered forwarding state
[   41.617098] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   41.624886] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   41.632586] bridge0: port 1(bridge_slave_0) entered blocking state
[   41.638969] bridge0: port 1(bridge_slave_0) entered forwarding state
[   41.647587] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   41.655482] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   41.669386] bridge0: port 1(bridge_slave_0) entered blocking state
[   41.676227] bridge0: port 1(bridge_slave_0) entered disabled state
[   41.682989] device bridge_slave_0 entered promiscuous mode
[   41.748757] device hsr_slave_0 entered promiscuous mode
[   41.785363] device hsr_slave_1 entered promiscuous mode
[   41.863138] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   41.870661] bridge0: port 2(bridge_slave_1) entered blocking state
[   41.881839] bridge0: port 2(bridge_slave_1) entered disabled state
[   41.889279] device bridge_slave_1 entered promiscuous mode
[   41.896760] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   41.909290] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[   41.917638] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[   41.927321] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   41.935471] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   41.944253] bridge0: port 2(bridge_slave_1) entered blocking state
[   41.950645] bridge0: port 2(bridge_slave_1) entered forwarding state
[   41.957938] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   41.967838] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   41.998485] chnl_net:caif_netlink_parms(): no params data found
[   42.019178] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   42.028767] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   42.039326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   42.049120] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   42.062952] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   42.070825] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   42.090395] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   42.098196] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   42.106817] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   42.115919] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   42.126068] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   42.137932] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   42.145776] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   42.152864] team0: Port device team_slave_0 added
[   42.158490] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   42.166212] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   42.174061] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   42.182632] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   42.190633] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   42.198875] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   42.221428] bridge0: port 1(bridge_slave_0) entered blocking state
[   42.228694] bridge0: port 1(bridge_slave_0) entered disabled state
[   42.236530] device bridge_slave_0 entered promiscuous mode
[   42.243170] bridge0: port 2(bridge_slave_1) entered blocking state
[   42.252295] bridge0: port 2(bridge_slave_1) entered disabled state
[   42.259566] device bridge_slave_1 entered promiscuous mode
[   42.267879] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   42.276149] team0: Port device team_slave_1 added
[   42.282849] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   42.297080] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
[   42.319332] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   42.326991] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   42.334565] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   42.342447] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   42.350237] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   42.358748] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   42.379058] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
[   42.389019] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[   42.398668] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   42.407667] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   42.417011] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   42.424522] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   42.432402] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   42.439987] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   42.487129] device hsr_slave_0 entered promiscuous mode
[   42.525023] device hsr_slave_1 entered promiscuous mode
[   42.566172] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[   42.576953] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[   42.582970] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   42.602811] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[   42.610212] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[   42.617721] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   42.625412] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   42.633158] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[   42.641028] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   42.652150] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   42.659588] team0: Port device team_slave_0 added
[   42.668704] 8021q: adding VLAN 0 to HW filter on device bond0
[   42.683222] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   42.694564] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[   42.704353] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   42.711707] team0: Port device team_slave_1 added
[   42.717970] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   42.727993] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   42.739228] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[   42.748081] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   42.807216] device hsr_slave_0 entered promiscuous mode
[   42.854953] device hsr_slave_1 entered promiscuous mode
[   42.896209] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[   42.903337] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[   42.916520] 8021q: adding VLAN 0 to HW filter on device batadv0
[   42.924300] 8021q: adding VLAN 0 to HW filter on device bond0
[   42.936479] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   42.949353] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[   42.955584] 8021q: adding VLAN 0 to HW filter on device team0
[   42.970906] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   42.978357] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   42.987023] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   42.995175] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   43.003169] 8021q: adding VLAN 0 to HW filter on device batadv0
[   43.020930] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   43.029934] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   43.041888] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   43.050325] bridge0: port 1(bridge_slave_0) entered blocking state
[   43.057029] bridge0: port 1(bridge_slave_0) entered forwarding state
[   43.070199] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   43.079682] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   43.096674] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   43.103750] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   43.112647] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   43.120831] bridge0: port 2(bridge_slave_1) entered blocking state
[   43.127277] bridge0: port 2(bridge_slave_1) entered forwarding state
[   43.139590] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   43.146626] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   43.161068] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[   43.168564] 8021q: adding VLAN 0 to HW filter on device team0
[   43.201228] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   43.221274] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   43.231996] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   43.244608] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   43.252398] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   43.261282] bridge0: port 1(bridge_slave_0) entered blocking state
[   43.267849] bridge0: port 1(bridge_slave_0) entered forwarding state
[   43.280386] 8021q: adding VLAN 0 to HW filter on device bond0
[   43.290439] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   43.298665] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   43.306161] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   43.321200] 8021q: adding VLAN 0 to HW filter on device bond0
[   43.332261] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   43.341444] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   43.350082] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   43.362802] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   43.370171] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   43.376443] hrtimer: interrupt took 29320 ns
[   43.379479] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   43.393302] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   43.401497] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   43.409922] bridge0: port 2(bridge_slave_1) entered blocking state
[   43.416628] bridge0: port 2(bridge_slave_1) entered forwarding state
[   43.423441] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   43.432921] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   43.442169] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   43.451709] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   43.461835] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   43.474215] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   43.490992] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   43.515799] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   43.526381] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   43.536339] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[   43.543655] 8021q: adding VLAN 0 to HW filter on device team0
[   43.552397] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   43.563622] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   43.572625] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[   43.579806] 8021q: adding VLAN 0 to HW filter on device team0
[   43.588614] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   43.596470] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   43.603563] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   43.612049] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   43.621870] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   43.630490] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   43.638744] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   43.646612] bridge0: port 1(bridge_slave_0) entered blocking state
[   43.652955] bridge0: port 1(bridge_slave_0) entered forwarding state
[   43.659904] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   43.667849] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   43.675459] bridge0: port 2(bridge_slave_1) entered blocking state
[   43.682086] bridge0: port 2(bridge_slave_1) entered forwarding state
[   43.689067] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   43.697648] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   43.706247] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
2020/05/16 12:13:12 executed programs: 7
[   43.715050] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   43.723860] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   43.731391] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   43.739365] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   43.746943] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   43.754976] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   43.762303] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   43.770189] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   43.778375] bridge0: port 1(bridge_slave_0) entered blocking state
[   43.784787] bridge0: port 1(bridge_slave_0) entered forwarding state
[   43.817440] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   43.840070] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   43.854687] bridge0: port 2(bridge_slave_1) entered blocking state
[   43.861052] bridge0: port 2(bridge_slave_1) entered forwarding state
[   43.873513] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   43.885193] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   43.894002] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
[   43.902722] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   43.909971] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   43.917340] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   43.925699] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   43.933381] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   43.941021] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   43.948915] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   43.958531] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   43.967971] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   43.978767] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   43.986539] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   43.999508] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[   44.007260] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[   44.019216] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   44.029078] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   44.036621] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   44.043956] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   44.053641] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   44.061576] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   44.070553] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[   44.077756] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   44.095405] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[   44.120819] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   44.132367] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   44.153950] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
[   44.189994] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[   44.213183] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   44.233585] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   44.248645] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[   44.255927] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   44.265114] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   44.272686] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   44.286532] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   44.298353] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   44.305992] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   44.313677] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   44.326456] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   44.333962] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   44.341615] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   44.359972] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[   44.369780] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   44.379764] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[   44.387785] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   44.395840] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   44.403452] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   44.412304] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   44.421574] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
[   44.429763] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   44.437741] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   44.445728] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   44.453199] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   44.463873] 8021q: adding VLAN 0 to HW filter on device batadv0
[   44.472971] 8021q: adding VLAN 0 to HW filter on device batadv0
[   44.488925] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[   44.506448] 8021q: adding VLAN 0 to HW filter on device batadv0
[   44.513174] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   44.520992] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   44.531428] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[   44.538516] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   44.575809] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[   44.679509] 8021q: adding VLAN 0 to HW filter on device batadv0
2020/05/16 12:13:17 executed programs: 60
[   49.606994] ==================================================================
[   49.614562] BUG: KASAN: use-after-free in __vb2_perform_fileio+0x10fd/0x12b0
[   49.621730] Read of size 4 at addr ffff88809f98a35c by task syz-executor.0/7600
[   49.629164] 
[   49.630783] CPU: 1 PID: 7600 Comm: syz-executor.0 Not tainted 4.14.180-syzkaller #0
[   49.638564] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   49.647908] Call Trace:
[   49.650486]  dump_stack+0xf7/0x13b
[   49.654026]  ? __vb2_perform_fileio+0x10fd/0x12b0
[   49.658865]  print_address_description.cold.7+0x9/0x1c9
[   49.664221]  ? __vb2_perform_fileio+0x10fd/0x12b0
[   49.669052]  kasan_report.cold.8+0x11a/0x2d3
[   49.673435]  __asan_report_load4_noabort+0x14/0x20
[   49.678424]  __vb2_perform_fileio+0x10fd/0x12b0
[   49.683070]  ? vb2_core_poll+0x730/0x730
[   49.687115]  vb2_read+0xf/0x20
[   49.690285]  vb2_fop_read+0x1b6/0x390
[   49.694115]  ? vb2_fop_write+0x390/0x390
[   49.698154]  v4l2_read+0x133/0x240
[   49.701713]  do_iter_read+0x35e/0x570
[   49.705488]  ? dup_iter+0x250/0x250
[   49.709130]  ? trace_hardirqs_off+0x10/0x10
[   49.713441]  vfs_readv+0xb6/0x110
[   49.716929]  ? find_held_lock+0x36/0x1d0
[   49.720973]  ? compat_rw_copy_check_uvector+0x310/0x310
[   49.726310]  ? __fget+0x1ad/0x2f0
[   49.729803]  ? __fget_light+0x166/0x200
[   49.733864]  do_preadv+0x158/0x250
[   49.737378]  ? do_readv+0x320/0x320
[   49.740979]  ? do_syscall_64+0x4c/0x5b0
[   49.744926]  ? SyS_writev+0x10/0x10
[   49.748526]  SyS_preadv+0xc/0x10
[   49.751864]  do_syscall_64+0x1c7/0x5b0
[   49.755725]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   49.760546]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[   49.765711] RIP: 0033:0x459a29
[   49.768881] RSP: 002b:00007fe6b78bac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[   49.776584] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000459a29
[   49.783827] RDX: 0000000000000006 RSI: 00000000200018c0 RDI: 0000000000000004
[   49.791088] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[   49.798330] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe6b78bb6d4
[   49.805574] R13: 00000000004c6d3d R14: 00000000004dc0b8 R15: 00000000ffffffff
[   49.812822] 
[   49.814424] Allocated by task 7600:
[   49.818031]  save_stack_trace+0x16/0x20
[   49.821985]  save_stack+0x43/0xd0
[   49.825408]  kasan_kmalloc+0xc7/0xe0
[   49.829094]  kmem_cache_alloc_trace+0x152/0x7a0
[   49.833763]  __vb2_init_fileio+0x160/0xaf0
[   49.837970]  __vb2_perform_fileio+0xa9f/0x12b0
[   49.842525]  vb2_read+0xf/0x20
[   49.845694]  vb2_fop_read+0x1b6/0x390
[   49.849478]  v4l2_read+0x133/0x240
[   49.853009]  do_iter_read+0x35e/0x570
[   49.856792]  vfs_readv+0xb6/0x110
[   49.860219]  do_preadv+0x158/0x250
[   49.863738]  SyS_preadv+0xc/0x10
[   49.867077]  do_syscall_64+0x1c7/0x5b0
[   49.870936]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[   49.876095] 
[   49.877694] Freed by task 7601:
[   49.880944]  save_stack_trace+0x16/0x20
[   49.884888]  save_stack+0x43/0xd0
[   49.888315]  kasan_slab_free+0x71/0xc0
[   49.892174]  kfree+0xcc/0x270
[   49.895262]  __vb2_cleanup_fileio+0xee/0x140
[   49.899660]  vb2_core_queue_release+0xf/0x70
[   49.904051]  _vb2_fop_release+0x1ac/0x280
[   49.908171]  vb2_fop_release+0x66/0xd0
[   49.912035]  vivid_fop_release+0x15f/0x3a0
[   49.916242]  v4l2_release+0xeb/0x1a0
[   49.919928]  __fput+0x232/0x750
[   49.923181]  ____fput+0x9/0x10
[   49.926352]  task_work_run+0xe5/0x170
[   49.930127]  get_signal+0x148c/0x1b30
[   49.933908]  do_signal+0x7f/0x19a0
[   49.937430]  exit_to_usermode_loop+0x114/0x1b0
[   49.941983]  do_syscall_64+0x416/0x5b0
[   49.945848]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[   49.951024] 
[   49.952628] The buggy address belongs to the object at ffff88809f98a040
[   49.952628]  which belongs to the cache kmalloc-1024 of size 1024
[   49.965428] The buggy address is located 796 bytes inside of
[   49.965428]  1024-byte region [ffff88809f98a040, ffff88809f98a440)
[   49.977358] The buggy address belongs to the page:
[   49.982259] page:ffffea00027e6280 count:1 mapcount:0 mapping:ffff88809f98a040 index:0x0 compound_mapcount: 0
[   49.992208] flags: 0x1fffc0000008100(slab|head)
[   49.996868] raw: 01fffc0000008100 ffff88809f98a040 0000000000000000 0000000100000007
[   50.004722] raw: ffffea00029022a0 ffffea00021cb320 ffff8880aa800ac0 0000000000000000
[   50.012599] page dumped because: kasan: bad access detected
[   50.018285] 
[   50.019904] Memory state around the buggy address:
[   50.024807]  ffff88809f98a200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   50.032139]  ffff88809f98a280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   50.039484] >ffff88809f98a300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   50.046823]                                                     ^
[   50.053027]  ffff88809f98a380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   50.060374]  ffff88809f98a400: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[   50.067751] ==================================================================
[   50.075138] Disabling lock debugging due to kernel taint
[   50.108843] Kernel panic - not syncing: panic_on_warn set ...
[   50.108843] 
[   50.116224] CPU: 1 PID: 7600 Comm: syz-executor.0 Tainted: G    B           4.14.180-syzkaller #0
[   50.125738] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   50.135081] Call Trace:
[   50.137660]  dump_stack+0xf7/0x13b
[   50.141173]  ? __vb2_perform_fileio+0x10fd/0x12b0
[   50.146003]  panic+0x1b0/0x358
[   50.149200]  ? add_taint.cold.5+0x11/0x11
[   50.153926]  ? ___preempt_schedule+0x16/0x18
[   50.158307]  ? __vb2_perform_fileio+0x10fd/0x12b0
[   50.163148]  kasan_end_report+0x47/0x4f
[   50.167100]  kasan_report.cold.8+0x76/0x2d3
[   50.171409]  __asan_report_load4_noabort+0x14/0x20
[   50.176313]  __vb2_perform_fileio+0x10fd/0x12b0
[   50.180982]  ? vb2_core_poll+0x730/0x730
[   50.185029]  vb2_read+0xf/0x20
[   50.188283]  vb2_fop_read+0x1b6/0x390
[   50.192066]  ? vb2_fop_write+0x390/0x390
[   50.196151]  v4l2_read+0x133/0x240
[   50.199672]  do_iter_read+0x35e/0x570
[   50.203446]  ? dup_iter+0x250/0x250
[   50.207060]  ? trace_hardirqs_off+0x10/0x10
[   50.211452]  vfs_readv+0xb6/0x110
[   50.214903]  ? find_held_lock+0x36/0x1d0
[   50.218990]  ? compat_rw_copy_check_uvector+0x310/0x310
[   50.224327]  ? __fget+0x1ad/0x2f0
[   50.227755]  ? __fget_light+0x166/0x200
[   50.231701]  do_preadv+0x158/0x250
[   50.235226]  ? do_readv+0x320/0x320
[   50.238825]  ? do_syscall_64+0x4c/0x5b0
[   50.242773]  ? SyS_writev+0x10/0x10
[   50.246369]  SyS_preadv+0xc/0x10
[   50.249729]  do_syscall_64+0x1c7/0x5b0
[   50.253588]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   50.258402]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[   50.263564] RIP: 0033:0x459a29
[   50.266727] RSP: 002b:00007fe6b78bac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[   50.274418] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000459a29
[   50.281659] RDX: 0000000000000006 RSI: 00000000200018c0 RDI: 0000000000000004
[   50.288901] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[   50.296143] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe6b78bb6d4
[   50.303473] R13: 00000000004c6d3d R14: 00000000004dc0b8 R15: 00000000ffffffff
[   50.311440] Kernel Offset: disabled
[   50.315056] Rebooting in 86400 seconds..