Warning: Permanently added '10.128.0.100' (ECDSA) to the list of known hosts. 2021/07/12 06:01:25 fuzzer started 2021/07/12 06:01:25 connecting to host at 10.128.0.169:42987 2021/07/12 06:01:25 checking machine... 2021/07/12 06:01:25 checking revisions... 2021/07/12 06:01:25 testing simple program... syzkaller login: [ 45.047245][ T8425] chnl_net:caif_netlink_parms(): no params data found [ 45.079211][ T8425] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.086366][ T8425] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.094853][ T8425] device bridge_slave_0 entered promiscuous mode [ 45.104418][ T8425] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.111733][ T8425] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.120440][ T8425] device bridge_slave_1 entered promiscuous mode [ 45.136393][ T8425] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 45.147359][ T8425] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 45.164980][ T8425] team0: Port device team_slave_0 added [ 45.171669][ T8425] team0: Port device team_slave_1 added [ 45.186251][ T8425] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 45.193903][ T8425] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 45.221687][ T8425] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 45.234050][ T8425] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 45.241073][ T8425] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 45.268171][ T8425] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 45.288741][ T8425] device hsr_slave_0 entered promiscuous mode [ 45.295756][ T8425] device hsr_slave_1 entered promiscuous mode [ 45.353920][ T8425] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 45.363542][ T8425] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 45.371831][ T8425] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 45.380933][ T8425] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 45.396171][ T8425] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.404717][ T8425] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.412762][ T8425] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.420103][ T8425] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.448883][ T8425] 8021q: adding VLAN 0 to HW filter on device bond0 [ 45.460104][ T4868] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 45.469048][ T4868] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.477447][ T4868] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.485509][ T4868] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 45.496077][ T8425] 8021q: adding VLAN 0 to HW filter on device team0 [ 45.505870][ T4868] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 45.514929][ T4868] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.521961][ T4868] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.541794][ T8425] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 45.553877][ T8425] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 45.566573][ T3161] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 45.575737][ T3161] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.583407][ T3161] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.592831][ T3161] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 45.601732][ T3161] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 45.610663][ T3161] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 45.619735][ T3161] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 45.635606][ T8425] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 45.645468][ T4868] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 45.653450][ T4868] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 45.660957][ T4868] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 45.668934][ T4868] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 45.693525][ T2950] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 45.703293][ T2950] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 45.711418][ T2950] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 45.719837][ T2950] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 45.727971][ T8425] device veth0_vlan entered promiscuous mode [ 45.738138][ T8425] device veth1_vlan entered promiscuous mode [ 45.752580][ T2950] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 45.760670][ T2950] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 45.769182][ T2950] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 45.779495][ T8425] device veth0_macvtap entered promiscuous mode [ 45.788096][ T8425] device veth1_macvtap entered promiscuous mode [ 45.800651][ T8425] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 45.809280][ T4868] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 45.819261][ T4868] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 45.829952][ T8425] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 45.838677][ T4868] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 45.850260][ T8425] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.859486][ T8425] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.868707][ T8425] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.878039][ T8425] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.917988][ T28] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.928772][ T28] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.948937][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 45.961037][ T28] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.969534][ T28] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.979586][ T4868] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 2021/07/12 06:01:27 building call list... [ 46.256592][ T127] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 executing program [ 47.917047][ T8414] BUG: sleeping function called from invalid context at mm/page_alloc.c:5167 [ 47.926062][ T8414] in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 8414, name: syz-fuzzer [ 47.935418][ T8414] INFO: lockdep is turned off. [ 47.940703][ T8414] irq event stamp: 0 [ 47.944769][ T8414] hardirqs last enabled at (0): [<0000000000000000>] 0x0 [ 47.952392][ T8414] hardirqs last disabled at (0): [<ffffffff814b18c7>] copy_process+0x1457/0x5b00 [ 47.962371][ T8414] softirqs last enabled at (0): [<ffffffff814b18eb>] copy_process+0x147b/0x5b00 [ 47.971660][ T8414] softirqs last disabled at (0): [<0000000000000000>] 0x0 [ 47.979249][ T8414] CPU: 0 PID: 8414 Comm: syz-fuzzer Tainted: G W 5.14.0-rc1-syzkaller #0 [ 47.989497][ T8414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 47.999829][ T8414] Call Trace: [ 48.003196][ T8414] dump_stack_lvl+0x1ae/0x29f [ 48.007872][ T8414] ? copy_process+0x147b/0x5b00 [ 48.012922][ T8414] ? show_regs_print_info+0x12/0x12 [ 48.018103][ T8414] ? log_buf_vmcoreinfo_setup+0x498/0x498 [ 48.024079][ T8414] ___might_sleep+0x4e5/0x6b0 [ 48.028840][ T8414] ? is_module_text_address+0x16/0x130 [ 48.034372][ T8414] ? __might_sleep+0x100/0x100 [ 48.039407][ T8414] ? __lock_acquire+0x6100/0x6100 [ 48.044687][ T8414] ? __rcu_read_lock+0x60/0x60 [ 48.050080][ T8414] prepare_alloc_pages+0x1c0/0x5a0 [ 48.055392][ T8414] __alloc_pages+0x14d/0x5f0 [ 48.060241][ T8414] ? __rmqueue_pcplist+0x2030/0x2030 [ 48.065694][ T8414] ? arch_stack_walk+0x98/0xe0 [ 48.070711][ T8414] ? alloc_pages+0x3f3/0x500 [ 48.075400][ T8414] stack_depot_save+0x361/0x490 [ 48.080364][ T8414] save_stack+0xf9/0x1f0 [ 48.084608][ T8414] ? __reset_page_owner+0x1a0/0x1a0 [ 48.089787][ T8414] ? __alloc_pages_bulk+0x9f2/0x1090 [ 48.095060][ T8414] ? __vmalloc_node_range+0x3ad/0x7f0 [ 48.101642][ T8414] ? vzalloc+0x75/0x80 [ 48.105715][ T8414] ? n_tty_open+0x19/0x150 [ 48.110116][ T8414] ? tty_ldisc_setup+0xcf/0x3c0 [ 48.115137][ T8414] ? tty_init_dev+0x271/0x4c0 [ 48.120405][ T8414] ? tty_open+0x89a/0xdd0 [ 48.124816][ T8414] ? chrdev_open+0x53b/0x5f0 [ 48.129591][ T8414] ? do_dentry_open+0x7cb/0x1020 [ 48.134519][ T8414] ? path_openat+0x27e7/0x36b0 [ 48.139862][ T8414] ? do_filp_open+0x253/0x4d0 [ 48.145063][ T8414] ? do_sys_openat2+0x124/0x460 [ 48.150523][ T8414] ? __x64_sys_openat+0x243/0x290 [ 48.155880][ T8414] ? do_syscall_64+0x3d/0xb0 [ 48.160564][ T8414] ? entry_SYSCALL_64_after_hwframe+0x44/0xae [ 48.166627][ T8414] ? preempt_count_add+0x66/0x130 [ 48.171902][ T8414] __set_page_owner+0x42/0x2f0 [ 48.177345][ T8414] ? post_alloc_hook+0x102/0x220 [ 48.182312][ T8414] __alloc_pages_bulk+0x9f2/0x1090 [ 48.187806][ T8414] ? gfp_pfmemalloc_allowed+0x120/0x120 [ 48.193566][ T8414] ? do_raw_spin_lock+0x151/0x8e0 [ 48.198953][ T8414] ? __might_sleep+0x100/0x100 [ 48.204289][ T8414] ? rcu_read_lock_sched_held+0x5d/0x110 [ 48.210541][ T8414] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 48.217195][ T8414] ? n_tty_open+0x19/0x150 [ 48.221885][ T8414] ? __vmalloc_node_range+0x2c5/0x7f0 [ 48.227290][ T8414] ? __kmalloc_node+0x29b/0x430 [ 48.232187][ T8414] ? __get_vm_area_node+0x2bd/0x2f0 [ 48.237793][ T8414] __vmalloc_node_range+0x3ad/0x7f0 [ 48.243330][ T8414] ? __wake_up+0x153/0x210 [ 48.248556][ T8414] ? n_tty_open+0x19/0x150 [ 48.252979][ T8414] vzalloc+0x75/0x80 [ 48.256866][ T8414] ? n_tty_open+0x19/0x150 [ 48.261268][ T8414] n_tty_open+0x19/0x150 [ 48.265497][ T8414] tty_ldisc_setup+0xcf/0x3c0 [ 48.270473][ T8414] tty_init_dev+0x271/0x4c0 [ 48.275335][ T8414] tty_open+0x89a/0xdd0 [ 48.280359][ T8414] ? tty_compat_ioctl+0xc80/0xc80 [ 48.285637][ T8414] ? do_raw_spin_unlock+0x134/0x8a0 [ 48.291104][ T8414] chrdev_open+0x53b/0x5f0 [ 48.295513][ T8414] ? cd_forget+0x160/0x160 [ 48.300367][ T8414] ? hook_file_open+0xed/0x220 [ 48.305314][ T8414] ? tomoyo_file_open+0xe6/0x170 [ 48.310433][ T8414] ? fsnotify_perm+0x2fd/0x4d0 [ 48.315313][ T8414] ? cd_forget+0x160/0x160 [ 48.319819][ T8414] do_dentry_open+0x7cb/0x1020 [ 48.324748][ T8414] path_openat+0x27e7/0x36b0 [ 48.329496][ T8414] ? stack_trace_snprint+0xe0/0xe0 [ 48.334675][ T8414] ? unwind_get_return_address+0x48/0x80 [ 48.340469][ T8414] ? arch_stack_walk+0x98/0xe0 [ 48.345391][ T8414] ? do_filp_open+0x4d0/0x4d0 [ 48.350067][ T8414] ? rcu_read_lock_sched_held+0x5d/0x110 [ 48.355786][ T8414] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 48.362201][ T8414] ? __kasan_slab_alloc+0xad/0xd0 [ 48.367829][ T8414] ? __kasan_slab_alloc+0x96/0xd0 [ 48.373349][ T8414] ? rcu_read_lock_sched_held+0x5d/0x110 [ 48.379337][ T8414] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 48.385490][ T8414] ? do_syscall_64+0x3d/0xb0 [ 48.390254][ T8414] ? entry_SYSCALL_64_after_hwframe+0x44/0xae [ 48.396804][ T8414] ? rcu_read_lock_sched_held+0x5d/0x110 [ 48.402604][ T8414] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 48.408671][ T8414] do_filp_open+0x253/0x4d0 [ 48.413159][ T8414] ? vfs_tmpfile+0x230/0x230 [ 48.418103][ T8414] ? do_raw_spin_unlock+0x134/0x8a0 [ 48.423389][ T8414] ? __check_object_size+0x2f3/0x3f0 [ 48.428789][ T8414] ? _raw_spin_unlock+0x24/0x40 [ 48.433729][ T8414] ? alloc_fd+0x5e1/0x680 [ 48.438362][ T8414] do_sys_openat2+0x124/0x460 [ 48.443572][ T8414] ? read_lock_is_recursive+0x10/0x10 [ 48.449040][ T8414] ? read_lock_is_recursive+0x10/0x10 [ 48.454839][ T8414] ? do_sys_open+0x220/0x220 [ 48.459431][ T8414] ? __lock_acquire+0x6100/0x6100 [ 48.464650][ T8414] __x64_sys_openat+0x243/0x290 [ 48.469490][ T8414] ? __ia32_sys_open+0x270/0x270 [ 48.474594][ T8414] ? syscall_enter_from_user_mode+0x2e/0x1b0 [ 48.482382][ T8414] ? syscall_enter_from_user_mode+0x2e/0x1b0 [ 48.488934][ T8414] do_syscall_64+0x3d/0xb0 [ 48.493847][ T8414] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 48.500847][ T8414] RIP: 0033:0x4af20a [ 48.505143][ T8414] Code: e8 3b 82 fb ff 48 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 4c 8b 54 24 28 4c 8b 44 24 30 4c 8b 4c 24 38 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 40 ff ff ff ff 48 c7 44 24 48 [ 48.525239][ T8414] RSP: 002b:000000c0001db3f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000101 [ 48.533836][ T8414] RAX: ffffffffffffffda RBX: 000000c00001c000 RCX: 00000000004af20a [ 48.542446][ T8414] RDX: 0000000000000000 RSI: 000000c000173aa0 RDI: ffffffffffffff9c [ 48.550779][ T8414] RBP: 000000c0001db470 R08: 0000000000000000 R09: 0000000000000000 [ 48.559028][ T8414] R10: 0000000000000000 R11: 0000000000000216 R12: 00000000000001ab [ 48.567717][ T8414] R13: 00000000000001aa R14: 0000000000000200 R15: 000000c00029c3c0 [ 48.610620][ T8414] can: request_module (can-proto-0) failed. [ 48.624406][ T8414] can: request_module (can-proto-0) failed. [ 48.635428][ T8414] can: request_module (can-proto-0) failed.