syzkaller login: [ 39.550500][ T26] kauditd_printk_skb: 38 callbacks suppressed
[ 39.550506][ T26] audit: type=1400 audit(1570082803.347:68): avc: denied { map } for pid=7577 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1
[ 45.699357][ T26] audit: type=1400 audit(1570082809.497:69): avc: denied { map } for pid=7587 comm="syz-fuzzer" path="/root/syz-fuzzer" dev="sda1" ino=16502 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1
[ 48.034177][ T7603] IPVS: ftp: loaded support on port[0] = 21
[ 48.483582][ T7610] can: request_module (can-proto-0) failed.
[ 49.683328][ T7610] can: request_module (can-proto-0) failed.
[ 49.893660][ T26] audit: type=1400 audit(1570082813.697:70): avc: denied { create } for pid=7587 comm="syz-fuzzer" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_crypto_socket permissive=1
[ 49.917882][ T26] audit: type=1400 audit(1570082813.697:71): avc: denied { create } for pid=7587 comm="syz-fuzzer" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
[ 49.942167][ T26] audit: type=1400 audit(1570082813.697:72): avc: denied { create } for pid=7587 comm="syz-fuzzer" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1
Warning: Permanently added '10.128.1.13' (ECDSA) to the list of known hosts.
2019/10/03 06:07:01 parsed 1 programs
2019/10/03 06:07:01 executed programs: 0
[ 58.066411][ T7680] IPVS: ftp: loaded support on port[0] = 21
[ 58.089272][ T7686] IPVS: ftp: loaded support on port[0] = 21
[ 58.101590][ T7684] IPVS: ftp: loaded support on port[0] = 21
[ 58.109557][ T7688] IPVS: ftp: loaded support on port[0] = 21
[ 58.113483][ T7682] IPVS: ftp: loaded support on port[0] = 21
[ 58.127957][ T7689] IPVS: ftp: loaded support on port[0] = 21
[ 58.324587][ T7680] chnl_net:caif_netlink_parms(): no params data found
[ 58.373367][ T7688] chnl_net:caif_netlink_parms(): no params data found
[ 58.381606][ T7684] chnl_net:caif_netlink_parms(): no params data found
[ 58.389644][ T7686] chnl_net:caif_netlink_parms(): no params data found
[ 58.408522][ T7682] chnl_net:caif_netlink_parms(): no params data found
[ 58.445602][ T7680] bridge0: port 1(bridge_slave_0) entered blocking state
[ 58.453445][ T7680] bridge0: port 1(bridge_slave_0) entered disabled state
[ 58.461078][ T7680] device bridge_slave_0 entered promiscuous mode
[ 58.484294][ T7680] bridge0: port 2(bridge_slave_1) entered blocking state
[ 58.491358][ T7680] bridge0: port 2(bridge_slave_1) entered disabled state
[ 58.499260][ T7680] device bridge_slave_1 entered promiscuous mode
[ 58.566217][ T7686] bridge0: port 1(bridge_slave_0) entered blocking state
[ 58.573384][ T7686] bridge0: port 1(bridge_slave_0) entered disabled state
[ 58.580813][ T7686] device bridge_slave_0 entered promiscuous mode
[ 58.588059][ T7688] bridge0: port 1(bridge_slave_0) entered blocking state
[ 58.595582][ T7688] bridge0: port 1(bridge_slave_0) entered disabled state
[ 58.603266][ T7688] device bridge_slave_0 entered promiscuous mode
[ 58.611363][ T7680] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 58.626603][ T7682] bridge0: port 1(bridge_slave_0) entered blocking state
[ 58.634019][ T7682] bridge0: port 1(bridge_slave_0) entered disabled state
[ 58.641442][ T7682] device bridge_slave_0 entered promiscuous mode
[ 58.648581][ T7684] bridge0: port 1(bridge_slave_0) entered blocking state
[ 58.656044][ T7684] bridge0: port 1(bridge_slave_0) entered disabled state
[ 58.663975][ T7684] device bridge_slave_0 entered promiscuous mode
[ 58.670983][ T7686] bridge0: port 2(bridge_slave_1) entered blocking state
[ 58.678337][ T7686] bridge0: port 2(bridge_slave_1) entered disabled state
[ 58.686284][ T7686] device bridge_slave_1 entered promiscuous mode
[ 58.698644][ T7688] bridge0: port 2(bridge_slave_1) entered blocking state
[ 58.706838][ T7688] bridge0: port 2(bridge_slave_1) entered disabled state
[ 58.714688][ T7688] device bridge_slave_1 entered promiscuous mode
[ 58.722567][ T7680] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 58.731701][ T7682] bridge0: port 2(bridge_slave_1) entered blocking state
[ 58.738861][ T7682] bridge0: port 2(bridge_slave_1) entered disabled state
[ 58.746701][ T7682] device bridge_slave_1 entered promiscuous mode
[ 58.753758][ T7684] bridge0: port 2(bridge_slave_1) entered blocking state
[ 58.760788][ T7684] bridge0: port 2(bridge_slave_1) entered disabled state
[ 58.768866][ T7684] device bridge_slave_1 entered promiscuous mode
[ 58.775926][ T7689] chnl_net:caif_netlink_parms(): no params data found
[ 58.800584][ T7688] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 58.824493][ T7682] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 58.834832][ T7682] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 58.845230][ T7686] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 58.861580][ T7688] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 58.887735][ T7688] team0: Port device team_slave_0 added
[ 58.895388][ T7686] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 58.905538][ T7680] team0: Port device team_slave_0 added
[ 58.912974][ T7684] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 58.926350][ T7684] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 58.936873][ T7688] team0: Port device team_slave_1 added
[ 58.949699][ T7680] team0: Port device team_slave_1 added
[ 58.956475][ T7682] team0: Port device team_slave_0 added
[ 58.963662][ T7682] team0: Port device team_slave_1 added
[ 58.979921][ T7684] team0: Port device team_slave_0 added
[ 59.044488][ T7688] device hsr_slave_0 entered promiscuous mode
[ 59.112214][ T7688] device hsr_slave_1 entered promiscuous mode
[ 59.153008][ T7686] team0: Port device team_slave_0 added
[ 59.159501][ T7684] team0: Port device team_slave_1 added
[ 59.244293][ T7680] device hsr_slave_0 entered promiscuous mode
[ 59.312091][ T7680] device hsr_slave_1 entered promiscuous mode
[ 59.362186][ T7680] debugfs: Directory 'hsr0' with parent '/' already present!
[ 59.372455][ T7686] team0: Port device team_slave_1 added
[ 59.444232][ T7682] device hsr_slave_0 entered promiscuous mode
[ 59.502217][ T7682] device hsr_slave_1 entered promiscuous mode
[ 59.561960][ T7682] debugfs: Directory 'hsr0' with parent '/' already present!
[ 59.569707][ T7689] bridge0: port 1(bridge_slave_0) entered blocking state
[ 59.576968][ T7689] bridge0: port 1(bridge_slave_0) entered disabled state
[ 59.584612][ T7689] device bridge_slave_0 entered promiscuous mode
[ 59.683714][ T7684] device hsr_slave_0 entered promiscuous mode
[ 59.732327][ T7684] device hsr_slave_1 entered promiscuous mode
[ 59.771970][ T7684] debugfs: Directory 'hsr0' with parent '/' already present!
[ 59.779683][ T7689] bridge0: port 2(bridge_slave_1) entered blocking state
[ 59.786978][ T7689] bridge0: port 2(bridge_slave_1) entered disabled state
[ 59.794593][ T7689] device bridge_slave_1 entered promiscuous mode
[ 59.812330][ T7689] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 59.828430][ T7689] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 59.883420][ T7686] device hsr_slave_0 entered promiscuous mode
[ 59.932447][ T7686] device hsr_slave_1 entered promiscuous mode
[ 59.972039][ T7686] debugfs: Directory 'hsr0' with parent '/' already present!
[ 60.009438][ T7689] team0: Port device team_slave_0 added
[ 60.016509][ T7689] team0: Port device team_slave_1 added
[ 60.058560][ T7688] 8021q: adding VLAN 0 to HW filter on device bond0
[ 60.104457][ T7689] device hsr_slave_0 entered promiscuous mode
[ 60.152418][ T7689] device hsr_slave_1 entered promiscuous mode
[ 60.192074][ T7689] debugfs: Directory 'hsr0' with parent '/' already present!
[ 60.207079][ T7688] 8021q: adding VLAN 0 to HW filter on device team0
[ 60.225181][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 60.235926][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 60.261540][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 60.270169][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 60.278723][ T2822] bridge0: port 1(bridge_slave_0) entered blocking state
[ 60.285883][ T2822] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 60.293924][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 60.302628][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 60.310814][ T2822] bridge0: port 2(bridge_slave_1) entered blocking state
[ 60.317874][ T2822] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 60.325500][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 60.335006][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 60.343464][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 60.351799][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 60.360341][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 60.368081][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 60.390658][ T7684] 8021q: adding VLAN 0 to HW filter on device bond0
[ 60.403097][ T7696] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 60.414249][ T7696] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 60.425881][ T7696] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 60.434651][ T7696] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 60.445259][ T7686] 8021q: adding VLAN 0 to HW filter on device bond0
[ 60.455024][ T7688] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 60.477822][ T7680] 8021q: adding VLAN 0 to HW filter on device bond0
[ 60.484899][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 60.493194][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 60.506849][ T7686] 8021q: adding VLAN 0 to HW filter on device team0
[ 60.516537][ T7684] 8021q: adding VLAN 0 to HW filter on device team0
[ 60.530171][ T7696] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 60.537965][ T7696] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 60.546051][ T7696] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 60.555002][ T7696] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 60.563463][ T7696] bridge0: port 1(bridge_slave_0) entered blocking state
[ 60.570499][ T7696] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 60.578142][ T7696] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 60.586540][ T7696] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 60.594965][ T7696] bridge0: port 2(bridge_slave_1) entered blocking state
[ 60.602012][ T7696] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 60.610855][ T7696] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 60.648559][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 60.657672][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 60.666469][ T7608] bridge0: port 1(bridge_slave_0) entered blocking state
[ 60.673564][ T7608] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 60.682429][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 60.690847][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 60.699171][ T7608] bridge0: port 2(bridge_slave_1) entered blocking state
[ 60.706225][ T7608] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 60.714467][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 60.722973][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 60.731299][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 60.739680][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 60.747971][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 60.756594][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 60.764862][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 60.773579][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 60.781734][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 60.790159][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 60.798382][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 60.807292][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 60.815606][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 60.823905][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 60.832217][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 60.840313][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 60.849467][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 60.857296][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 60.864992][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 60.875727][ T7686] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 60.888756][ T7686] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 60.904218][ T7684] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 60.916042][ T7684] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 60.925000][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 60.933866][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 60.942335][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 60.950473][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 60.964458][ T7680] 8021q: adding VLAN 0 to HW filter on device team0
[ 60.973958][ T7682] 8021q: adding VLAN 0 to HW filter on device bond0
[ 60.988950][ T7686] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 61.002772][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 61.010641][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 61.034638][ T7684] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 61.042209][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 61.050616][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 61.071388][ T7608] bridge0: port 1(bridge_slave_0) entered blocking state
[ 61.078588][ T7608] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 61.087162][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 61.095749][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 61.104110][ T7608] bridge0: port 2(bridge_slave_1) entered blocking state
[ 61.111121][ T7608] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 61.118763][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 61.127547][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 61.136161][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 61.144628][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 61.153092][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 61.160569][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 61.168320][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 61.176296][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 61.187292][ T7682] 8021q: adding VLAN 0 to HW filter on device team0
[ 61.196570][ T26] audit: type=1400 audit(1570082824.997:73): avc: denied { associate } for pid=7686 comm="syz-executor.5" name="syz5" scontext=unconfined_u:object_r:unlabeled_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=filesystem permissive=1
[ 61.239503][ T7680] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 61.253081][ T7680] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 61.268440][ T7688] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 61.277282][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 61.286979][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 61.296438][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 61.305046][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 61.314429][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 61.323040][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 61.331407][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 61.342814][ T7689] 8021q: adding VLAN 0 to HW filter on device bond0
[ 61.370783][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 61.399453][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 61.421122][ T17] bridge0: port 1(bridge_slave_0) entered blocking state
[ 61.428283][ T17] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 61.443324][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 61.474138][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 61.494142][ T17] bridge0: port 2(bridge_slave_1) entered blocking state
[ 61.501204][ T17] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 61.530625][ T7680] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 61.557398][ T7689] 8021q: adding VLAN 0 to HW filter on device team0
[ 61.570416][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 61.593809][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 61.612829][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 61.621348][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 61.635852][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 61.644645][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 61.652548][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 61.660821][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 61.693675][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 61.702438][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 61.725391][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 61.758650][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 61.771531][ T7608] bridge0: port 1(bridge_slave_0) entered blocking state
[ 61.778729][ T7608] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 61.792321][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 61.801376][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 61.815613][ T7608] bridge0: port 2(bridge_slave_1) entered blocking state
[ 61.822725][ T7608] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 61.835891][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 61.845338][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 61.864488][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 61.876997][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 61.887059][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 61.901811][ T7608] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 61.912801][ T7682] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 61.985910][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 62.011213][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 62.031035][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 62.041438][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 62.053268][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 62.063428][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 62.083731][ T7682] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 62.096051][ T7689] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 62.116015][ T7689] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 62.127887][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 62.143365][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 62.152506][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 62.160804][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 62.169341][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 62.198610][ T7689] 8021q: adding VLAN 0 to HW filter on device batadv0
2019/10/03 06:07:06 executed programs: 28
2019/10/03 06:07:11 executed programs: 158
2019/10/03 06:07:16 executed programs: 293
2019/10/03 06:07:21 executed programs: 422
2019/10/03 06:07:26 executed programs: 558
2019/10/03 06:07:31 executed programs: 696
2019/10/03 06:07:36 executed programs: 832
2019/10/03 06:07:41 executed programs: 963
2019/10/03 06:07:46 executed programs: 1100
2019/10/03 06:07:52 executed programs: 1241
2019/10/03 06:07:57 executed programs: 1373
2019/10/03 06:08:02 executed programs: 1512
2019/10/03 06:08:07 executed programs: 1646
2019/10/03 06:08:12 executed programs: 1778
2019/10/03 06:08:17 executed programs: 1913
2019/10/03 06:08:22 executed programs: 2046
2019/10/03 06:08:27 executed programs: 2182
2019/10/03 06:08:32 executed programs: 2315
2019/10/03 06:08:37 executed programs: 2452
2019/10/03 06:08:42 executed programs: 2589
2019/10/03 06:08:47 executed programs: 2720
2019/10/03 06:08:52 executed programs: 2852
2019/10/03 06:08:57 executed programs: 2986
2019/10/03 06:09:02 executed programs: 3119
2019/10/03 06:09:07 executed programs: 3253
2019/10/03 06:09:12 executed programs: 3388
2019/10/03 06:09:17 executed programs: 3520
2019/10/03 06:09:22 executed programs: 3653
2019/10/03 06:09:27 executed programs: 3784
2019/10/03 06:09:32 executed programs: 3913
2019/10/03 06:09:37 executed programs: 4044
2019/10/03 06:09:42 executed programs: 4175
2019/10/03 06:09:47 executed programs: 4309
2019/10/03 06:09:52 executed programs: 4440
2019/10/03 06:09:57 executed programs: 4571
2019/10/03 06:10:02 executed programs: 4702
2019/10/03 06:10:07 executed programs: 4834
2019/10/03 06:10:12 executed programs: 4968
2019/10/03 06:10:17 executed programs: 5102
2019/10/03 06:10:22 executed programs: 5235
2019/10/03 06:10:27 executed programs: 5365
2019/10/03 06:10:32 executed programs: 5497
2019/10/03 06:10:37 executed programs: 5627
2019/10/03 06:10:42 executed programs: 5759
2019/10/03 06:10:47 executed programs: 5893
2019/10/03 06:10:52 executed programs: 6025
2019/10/03 06:10:57 executed programs: 6155
2019/10/03 06:11:02 executed programs: 6286
2019/10/03 06:11:07 executed programs: 6418
2019/10/03 06:11:12 executed programs: 6552
2019/10/03 06:11:18 executed programs: 6686
2019/10/03 06:11:23 executed programs: 6814
2019/10/03 06:11:28 executed programs: 6945
2019/10/03 06:11:33 executed programs: 7078
2019/10/03 06:11:38 executed programs: 7208
2019/10/03 06:11:43 executed programs: 7340
2019/10/03 06:11:48 executed programs: 7474
2019/10/03 06:11:53 executed programs: 7606
2019/10/03 06:11:58 executed programs: 7737
2019/10/03 06:12:03 executed programs: 7868
2019/10/03 06:12:08 executed programs: 7998
2019/10/03 06:12:13 executed programs: 8130
2019/10/03 06:12:18 executed programs: 8262
2019/10/03 06:12:23 executed programs: 8398
2019/10/03 06:12:28 executed programs: 8533
2019/10/03 06:12:33 executed programs: 8671
2019/10/03 06:12:38 executed programs: 8805
2019/10/03 06:12:43 executed programs: 8943
2019/10/03 06:12:48 executed programs: 9080
2019/10/03 06:12:53 executed programs: 9215
2019/10/03 06:12:58 executed programs: 9345
2019/10/03 06:13:03 executed programs: 9478
2019/10/03 06:13:08 executed programs: 9606
2019/10/03 06:13:13 executed programs: 9745
2019/10/03 06:13:18 executed programs: 9877
2019/10/03 06:13:23 executed programs: 10010
2019/10/03 06:13:28 executed programs: 10145
[ 445.872732][ C1] ==================================================================
[ 445.881205][ C1] BUG: KASAN: use-after-free in sock_def_write_space+0x486/0x4b0
[ 445.888916][ C1] Read of size 8 at addr ffff88809aeb1578 by task kworker/1:3/7608
[ 445.896781][ C1]
[ 445.896806][ C1] CPU: 1 PID: 7608 Comm: kworker/1:3 Not tainted 5.4.0-rc1+ #0
[ 445.896809][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 445.896891][ C1] Workqueue: rcu_gp srcu_invoke_callbacks
[ 445.896924][ C1] Call Trace:
[ 445.906858][ C1]
[ 445.906922][ C1] dump_stack+0x113/0x167
[ 445.906961][ C1] print_address_description.constprop.8.cold.10+0x9/0x31d
[ 445.925930][ C1] ? sock_def_write_space+0x486/0x4b0
[ 445.933054][ C1] __kasan_report.cold.11+0x1b/0x3a
[ 445.933059][ C1] ? sock_def_write_space+0x486/0x4b0
[ 445.933067][ C1] ? sock_def_write_space+0x486/0x4b0
[ 445.933075][ C1] kasan_report+0x12/0x20
[ 445.933081][ C1] __asan_report_load8_noabort+0x14/0x20
[ 445.933086][ C1] sock_def_write_space+0x486/0x4b0
[ 445.933095][ C1] sock_wfree+0x100/0x130
[ 445.933103][ C1] skb_release_head_state+0x9f/0x1a0
[ 445.933108][ C1] skb_release_all+0xd/0x50
[ 445.933115][ C1] napi_consume_skb+0x129/0x430
[ 445.933179][ C1] free_old_xmit_skbs+0xbc/0x1f0
[ 445.933187][ C1] ? virtnet_get_link_ksettings+0x150/0x150
[ 446.006319][ C1] virtnet_poll_tx+0x1e5/0x360
[ 446.011105][ C1] net_rx_action+0x458/0xe40
[ 446.015765][ C1] ? mark_lock+0xc5/0x11d0
[ 446.020181][ C1] ? napi_busy_loop+0x740/0x740
[ 446.025022][ C1] ? rcu_read_lock_sched_held+0x9c/0xd0
[ 446.030558][ C1] ? rcu_read_lock_any_held.part.10+0x50/0x50
[ 446.036669][ C1] ? __do_softirq+0x1f9/0x9a8
[ 446.041335][ C1] ? srcu_invoke_callbacks+0x222/0x360
[ 446.046822][ C1] ? trace_hardirqs_on+0x28/0x1a0
[ 446.051839][ C1] __do_softirq+0x262/0x9a8
[ 446.056333][ C1] ? srcu_invoke_callbacks+0x222/0x360
[ 446.061782][ C1] do_softirq_own_stack+0x2a/0x40
[ 446.066792][ C1]
[ 446.069769][ C1] do_softirq.part.12+0x126/0x160
[ 446.074780][ C1] __local_bh_enable_ip+0x21d/0x260
[ 446.079963][ C1] srcu_invoke_callbacks+0x23a/0x360
[ 446.079974][ C1] ? check_init_srcu_struct.part.8+0x70/0x70
[ 446.079983][ C1] ? rcu_read_lock_any_held.part.10+0x50/0x50
[ 446.079989][ C1] ? trace_hardirqs_on+0x28/0x1a0
[ 446.080075][ C1] process_one_work+0x856/0x1630
[ 446.080092][ C1] ? __schedule+0x8cc/0x19d0
[ 446.091304][ C1] ? pwq_dec_nr_in_flight+0x2c0/0x2c0
[ 446.091312][ C1] ? lock_acquire+0x194/0x410
[ 446.091328][ C1] worker_thread+0x85/0xb60
[ 446.091334][ C1] ? __kthread_parkme+0x47/0x1a0
[ 446.091384][ C1] kthread+0x331/0x3f0
[ 446.091391][ C1] ? process_one_work+0x1630/0x1630
[ 446.131303][ C1] ? kthread_cancel_delayed_work_sync+0x10/0x10
[ 446.131314][ C1] ret_from_fork+0x24/0x30
[ 446.131329][ C1]
[ 446.131389][ C1] Allocated by task 22762:
[ 446.131397][ C1] save_stack+0x21/0x90
[ 446.162151][ C1] __kasan_kmalloc.constprop.9+0xc7/0xd0
[ 446.162156][ C1] kasan_slab_alloc+0x12/0x20
[ 446.162161][ C1] kmem_cache_alloc+0x121/0x750
[ 446.162168][ C1] sock_alloc_inode+0x16/0x1a0
[ 446.162227][ C1] alloc_inode+0x5c/0x1a0
[ 446.162255][ C1] new_inode_pseudo+0xc/0xd0
[ 446.162261][ C1] sock_alloc+0x3c/0x270
[ 446.190951][ C1] __sock_create+0x7a/0x540
[ 446.190957][ C1] __sys_socket+0xd7/0x1c0
[ 446.190962][ C1] __x64_sys_socket+0x6e/0xb0
[ 446.191026][ C1] do_syscall_64+0xca/0x5d0
[ 446.191034][ C1] entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 446.219229][ C1]
[ 446.219233][ C1] Freed by task 16:
[ 446.219244][ C1] save_stack+0x21/0x90
[ 446.219249][ C1] __kasan_slab_free+0x102/0x150
[ 446.219254][ C1] kasan_slab_free+0xe/0x10
[ 446.219258][ C1] kmem_cache_free+0x83/0x320
[ 446.219264][ C1] sock_free_inode+0x17/0x20
[ 446.219270][ C1] i_callback+0x3c/0x70
[ 446.219276][ C1] rcu_core+0x557/0x14b0
[ 446.219280][ C1] rcu_core_si+0x9/0x10
[ 446.219287][ C1] __do_softirq+0x262/0x9a8
[ 446.219290][ C1]
[ 446.219294][ C1] The buggy address belongs to the object at ffff88809aeb1500
[ 446.219294][ C1] which belongs to the cache sock_inode_cache(33:syz0) of size 1152
[ 446.219299][ C1] The buggy address is located 120 bytes inside of
[ 446.219299][ C1] 1152-byte region [ffff88809aeb1500, ffff88809aeb1980)
[ 446.219302][ C1] The buggy address belongs to the page:
[ 446.219307][ C1] page:ffffea00026bac40 refcount:1 mapcount:0 mapping:ffff888090ac0a80 index:0xffff88809aeb1ffd
[ 446.219315][ C1] flags: 0x1fffc0000000200(slab)
[ 446.316992][ C1] raw: 01fffc0000000200 ffffea0002454948 ffffea00026bf808 ffff888090ac0a80
[ 446.325567][ C1] raw: ffff88809aeb1ffd ffff88809aeb1000 0000000100000003 0000000000000000
[ 446.334133][ C1] page dumped because: kasan: bad access detected
[ 446.340531][ C1]
[ 446.342847][ C1] Memory state around the buggy address:
[ 446.348455][ C1] ffff88809aeb1400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 446.348477][ T3888] kobject: 'loop4' (0000000088c4188d): fill_kobj_path: path = '/devices/virtual/block/loop4'
[ 446.356489][ C1] ffff88809aeb1480: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 446.356493][ C1] >ffff88809aeb1500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 446.356496][ C1] ^
[ 446.356500][ C1] ffff88809aeb1580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 446.356503][ C1] ffff88809aeb1600: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 446.356506][ C1] ==================================================================
[ 446.356508][ C1] Disabling lock debugging due to kernel taint
[ 446.356547][ C1] Kernel panic - not syncing: panic_on_warn set ...
[ 446.356553][ C1] CPU: 1 PID: 7608 Comm: kworker/1:3 Tainted: G B 5.4.0-rc1+ #0
[ 446.356555][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 446.356566][ C1] Workqueue: rcu_gp srcu_invoke_callbacks
[ 446.356569][ C1] Call Trace:
[ 446.356572][ C1]
[ 446.356581][ C1] dump_stack+0x113/0x167
[ 446.356588][ C1] ? sock_def_write_space+0x3e0/0x4b0
[ 446.356593][ C1] panic+0x223/0x4dc
[ 446.356597][ C1] ? add_taint.cold.8+0x11/0x11
[ 446.356603][ C1] ? do_raw_spin_unlock+0x54/0x260
[ 446.356608][ C1] ? sock_def_write_space+0x486/0x4b0
[ 446.356613][ C1] end_report+0x47/0x4f
[ 446.356617][ C1] __kasan_report.cold.11+0xe/0x3a
[ 446.356620][ C1] ? sock_def_write_space+0x486/0x4b0
[ 446.356630][ C1] ? sock_def_write_space+0x486/0x4b0
[ 446.356634][ C1] kasan_report+0x12/0x20
[ 446.356638][ C1] __asan_report_load8_noabort+0x14/0x20
[ 446.356641][ C1] sock_def_write_space+0x486/0x4b0
[ 446.356645][ C1] sock_wfree+0x100/0x130
[ 446.356651][ C1] skb_release_head_state+0x9f/0x1a0
[ 446.356655][ C1] skb_release_all+0xd/0x50
[ 446.356659][ C1] napi_consume_skb+0x129/0x430
[ 446.356666][ C1] free_old_xmit_skbs+0xbc/0x1f0
[ 446.356672][ C1] ? virtnet_get_link_ksettings+0x150/0x150
[ 446.412226][ T3888] kobject: 'loop0' (000000007befdd03): kobject_uevent_env
[ 446.415163][ C1] virtnet_poll_tx+0x1e5/0x360
[ 446.415171][ C1] net_rx_action+0x458/0xe40
[ 446.415179][ C1] ? mark_lock+0xc5/0x11d0
[ 446.415186][ C1] ? napi_busy_loop+0x740/0x740
[ 446.415192][ C1] ? rcu_read_lock_sched_held+0x9c/0xd0
[ 446.415197][ C1] ? rcu_read_lock_any_held.part.10+0x50/0x50
[ 446.415202][ C1] ? __do_softirq+0x1f9/0x9a8
[ 446.415206][ C1] ? srcu_invoke_callbacks+0x222/0x360
[ 446.415211][ C1] ? trace_hardirqs_on+0x28/0x1a0
[ 446.415217][ C1] __do_softirq+0x262/0x9a8
[ 446.426909][ T3888] kobject: 'loop0' (000000007befdd03): fill_kobj_path: path = '/devices/virtual/block/loop0'
[ 446.427914][ C1] ? srcu_invoke_callbacks+0x222/0x360
[ 446.427921][ C1] do_softirq_own_stack+0x2a/0x40
[ 446.427926][ C1]
[ 446.455472][ T3888] kobject: 'loop1' (00000000077d18ef): kobject_uevent_env
[ 446.455815][ C1] do_softirq.part.12+0x126/0x160
[ 446.462198][ T3888] kobject: 'loop1' (00000000077d18ef): fill_kobj_path: path = '/devices/virtual/block/loop1'
[ 446.462937][ C1] __local_bh_enable_ip+0x21d/0x260
[ 446.462944][ C1] srcu_invoke_callbacks+0x23a/0x360
[ 446.462950][ C1] ? check_init_srcu_struct.part.8+0x70/0x70
[ 446.462956][ C1] ? rcu_read_lock_any_held.part.10+0x50/0x50
[ 446.479245][ T3888] kobject: 'loop4' (0000000088c4188d): kobject_uevent_env
[ 446.482190][ C1] ? trace_hardirqs_on+0x28/0x1a0
[ 446.482200][ C1] process_one_work+0x856/0x1630
[ 446.482207][ C1] ? __schedule+0x8cc/0x19d0
[ 446.482215][ C1] ? pwq_dec_nr_in_flight+0x2c0/0x2c0
[ 446.482219][ C1] ? lock_acquire+0x194/0x410
[ 446.482227][ C1] worker_thread+0x85/0xb60
[ 446.482231][ C1] ? __kthread_parkme+0x47/0x1a0
[ 446.482239][ C1] kthread+0x331/0x3f0
[ 446.492038][ T3888] kobject: 'loop4' (0000000088c4188d): fill_kobj_path: path = '/devices/virtual/block/loop4'
[ 446.496793][ C1] ? process_one_work+0x1630/0x1630
[ 446.496799][ C1] ? kthread_cancel_delayed_work_sync+0x10/0x10
[ 446.496805][ C1] ret_from_fork+0x24/0x30
[ 446.503325][ C1] Kernel Offset: disabled
[ 446.753190][ C1] Rebooting in 86400 seconds..