[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   38.566540] audit: type=1800 audit(1549522303.897:25): pid=7648 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[   38.586448] audit: type=1800 audit(1549522303.897:26): pid=7648 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   38.605769] audit: type=1800 audit(1549522303.907:27): pid=7648 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.85' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [   50.502614] Bluetooth: hci0: Frame reassembly failed (-84)
[   52.521439] Bluetooth: hci0: command 0x1003 tx timeout
[   52.527156] Bluetooth: hci0: sending frame failed (-49)
[   54.600856] Bluetooth: hci0: command 0x1001 tx timeout
[   54.606251] Bluetooth: hci0: sending frame failed (-49)
[   56.680881] Bluetooth: hci0: command 0x1009 tx timeout
executing program
[   60.769920] Bluetooth: hci0: Frame reassembly failed (-84)
[   60.776041] BUG: unable to handle kernel paging request at ffffffffffffffd6
[   60.783155] #PF error: [normal kernel read fault]
[   60.787975] PGD 8874067 P4D 8874067 PUD 8876067 PMD 0 
[   60.793317] Oops: 0000 [#1] PREEMPT SMP KASAN
[   60.797806] CPU: 0 PID: 44 Comm: kworker/u4:2 Not tainted 5.0.0-rc5 #60
[   60.804547] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   60.813899] Workqueue: events_unbound flush_to_ldisc
[   60.819122] RIP: 0010:h4_recv_buf+0x1ea/0xda0
[   60.823604] Code: b6 14 10 48 89 c8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 d7 0a 00 00 48 ba 00 00 00 00 00 fc ff df 48 8b 45 d0 4c 8d 60 70 <0f> b7 58 2a 4c 89 e0 48 c1 e8 03 0f b6 04 10 84 c0 74 08 3c 03 0f
[   60.842618] RSP: 0018:ffff8880a9ae7b10 EFLAGS: 00010246
[   60.848089] RAX: ffffffffffffffac RBX: 0000000000000000 RCX: ffffffffffffffd6
[   60.855350] RDX: dffffc0000000000 RSI: ffffffff84ecf372 RDI: 0000000000000005
[   60.862618] RBP: ffff8880a9ae7b98 R08: ffff8880a9af4400 R09: 0000000000000003
[   60.870020] R10: ffffed1015d05bcf R11: ffff8880ae82de7b R12: 000000000000001c
[   60.877541] R13: ffff8880a9ad57c0 R14: ffff88808d4ba020 R15: 0000000000000006
[   60.884916] FS:  0000000000000000(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000
[   60.893132] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   60.899004] CR2: ffffffffffffffd6 CR3: 0000000087309000 CR4: 00000000001406f0
[   60.906265] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   60.913523] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   60.920785] Call Trace:
[   60.923540]  ? __lock_is_held+0xb6/0x140
[   60.927599]  ? check_preemption_disabled+0x48/0x290
[   60.932606]  h4_recv+0xe4/0x200
[   60.935876]  hci_uart_tty_receive+0x22b/0x530
[   60.940360]  ? hci_uart_write_work+0x710/0x710
[   60.944947]  tty_ldisc_receive_buf+0x164/0x1c0
[   60.949668]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   60.955197]  tty_port_default_receive_buf+0x7d/0xb0
[   60.960200]  flush_to_ldisc+0x228/0x390
[   60.964170]  process_one_work+0x98e/0x1790
[   60.968397]  ? pwq_dec_nr_in_flight+0x320/0x320
[   60.973051]  ? lock_acquire+0x16f/0x3f0
[   60.977029]  worker_thread+0x98/0xe40
[   60.980857]  ? trace_hardirqs_on+0x67/0x230
[   60.985167]  kthread+0x357/0x430
[   60.988546]  ? process_one_work+0x1790/0x1790
[   60.993029]  ? kthread_cancel_delayed_work_sync+0x20/0x20
[   60.998683]  ret_from_fork+0x3a/0x50
[   61.002387] Modules linked in:
[   61.005560] CR2: ffffffffffffffd6
[   61.008996] ---[ end trace 7052334c669bd77e ]---
[   61.013743] RIP: 0010:h4_recv_buf+0x1ea/0xda0
[   61.018219] Code: b6 14 10 48 89 c8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 d7 0a 00 00 48 ba 00 00 00 00 00 fc ff df 48 8b 45 d0 4c 8d 60 70 <0f> b7 58 2a 4c 89 e0 48 c1 e8 03 0f b6 04 10 84 c0 74 08 3c 03 0f
[   61.037231] RSP: 0018:ffff8880a9ae7b10 EFLAGS: 00010246
[   61.042579] RAX: ffffffffffffffac RBX: 0000000000000000 RCX: ffffffffffffffd6
[   61.049906] RDX: dffffc0000000000 RSI: ffffffff84ecf372 RDI: 0000000000000005
[   61.057829] RBP: ffff8880a9ae7b98 R08: ffff8880a9af4400 R09: 0000000000000003
[   61.065353] R10: ffffed1015d05bcf R11: ffff8880ae82de7b R12: 000000000000001c
[   61.072649] R13: ffff8880a9ad57c0 R14: ffff88808d4ba020 R15: 0000000000000006
[   61.080222] FS:  0000000000000000(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000
[   61.088443] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   61.094474] CR2: ffffffffffffffd6 CR3: 0000000087309000 CR4: 00000000001406f0
[   61.101890] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   61.109146] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   61.116502] Kernel panic - not syncing: Fatal exception
[   61.123015] Kernel Offset: disabled
[   61.126638] Rebooting in 86400 seconds..