[   56.930324][   T26] audit: type=1800 audit(1567080584.819:21): pid=9372 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="bootlogs" dev="sda1" ino=2419 res=0
[   56.962307][   T26] audit: type=1800 audit(1567080584.819:22): pid=9372 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="motd" dev="sda1" ino=2447 res=0
[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   58.201660][ T9450] sshd (9450) used greatest stack depth: 24584 bytes left
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.109' (ECDSA) to the list of known hosts.
2019/08/29 12:09:58 parsed 1 programs
2019/08/29 12:09:59 executed programs: 0
syzkaller login: [   72.094393][ T9538] IPVS: ftp: loaded support on port[0] = 21
[   72.141211][ T9538] chnl_net:caif_netlink_parms(): no params data found
[   72.164043][ T9538] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.171395][ T9538] bridge0: port 1(bridge_slave_0) entered disabled state
[   72.179291][ T9538] device bridge_slave_0 entered promiscuous mode
[   72.186797][ T9538] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.195133][ T9538] bridge0: port 2(bridge_slave_1) entered disabled state
[   72.202849][ T9538] device bridge_slave_1 entered promiscuous mode
[   72.216007][ T9538] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   72.226742][ T9538] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   72.243853][ T9538] team0: Port device team_slave_0 added
[   72.251119][ T9538] team0: Port device team_slave_1 added
[   72.310826][ T9538] device hsr_slave_0 entered promiscuous mode
[   72.349513][ T9538] device hsr_slave_1 entered promiscuous mode
[   72.405370][ T9538] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.413243][ T9538] bridge0: port 2(bridge_slave_1) entered forwarding state
[   72.421264][ T9538] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.428629][ T9538] bridge0: port 1(bridge_slave_0) entered forwarding state
[   72.456593][ T9538] 8021q: adding VLAN 0 to HW filter on device bond0
[   72.468569][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   72.480115][    T5] bridge0: port 1(bridge_slave_0) entered disabled state
[   72.488774][    T5] bridge0: port 2(bridge_slave_1) entered disabled state
[   72.497299][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   72.508054][ T9538] 8021q: adding VLAN 0 to HW filter on device team0
[   72.518269][ T3516] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   72.527572][ T3516] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.535511][ T3516] bridge0: port 1(bridge_slave_0) entered forwarding state
[   72.551745][ T9540] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   72.563658][ T9540] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.572123][ T9540] bridge0: port 2(bridge_slave_1) entered forwarding state
[   72.581386][ T9540] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   72.593245][ T9540] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   72.601553][ T9540] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   72.613576][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   72.625468][ T9538] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   72.637532][ T9538] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   72.647239][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   72.663762][ T9538] 8021q: adding VLAN 0 to HW filter on device batadv0
[   75.357955][T10080] kasan: CONFIG_KASAN_INLINE enabled
[   75.365997][T10080] kasan: GPF could be caused by NULL-ptr deref or user memory access
[   75.389382][T10080] general protection fault: 0000 [#1] PREEMPT SMP KASAN
[   75.397211][T10080] CPU: 0 PID: 10080 Comm: syz-executor.0 Not tainted 5.3.0-rc6+ #94
[   75.405524][T10080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   75.415843][T10080] RIP: 0010:tls_sk_proto_close+0xa2/0x730
[   75.421726][T10080] Code: 80 3c 08 00 74 08 48 89 df e8 9a 2c 3a fb 4c 8b 33 49 8d 5f 14 48 89 d9 48 c1 e9 03 48 b8 00 00 00 00 00 fc ff df 48 89 4d b0 <8a> 04 01 84 c0 0f 85 62 05 00 00 48 89 5d b8 0f b6 1b 83 e3 07 bf
[   75.441648][T10080] RSP: 0018:ffff88809edbfb90 EFLAGS: 00010203
[   75.447828][T10080] RAX: dffffc0000000000 RBX: 0000000000000014 RCX: 0000000000000002
[   75.456426][T10080] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8880a5ee42c0
[   75.464605][T10080] RBP: ffff88809edbfc00 R08: ffffffff86725aa1 R09: ffffed1014bdc86a
[   75.473351][T10080] R10: ffffed1014bdc86a R11: 0000000000000000 R12: ffff8880a038f840
[   75.481675][T10080] R13: ffff8880a5ee42c0 R14: 7fffffffffffffff R15: 0000000000000000
[   75.490022][T10080] FS:  00005555562da940(0000) GS:ffff8880aea00000(0000) knlGS:0000000000000000
[   75.499302][T10080] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   75.506111][T10080] CR2: 00007f95d8d05000 CR3: 000000008f3f8000 CR4: 00000000001406f0
[   75.514376][T10080] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   75.522612][T10080] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   75.530692][T10080] Call Trace:
[   75.534028][T10080]  ? _raw_spin_unlock_bh+0x34/0x40
[   75.539152][T10080]  ? release_sock+0x179/0x1d0
[   75.543828][T10080]  tls_sk_proto_close+0x4f4/0x730
[   75.549168][T10080]  ? release_sock+0x179/0x1d0
[   75.553940][T10080]  ? tls_getsockopt+0x740/0x740
[   75.559915][T10080]  tcp_bpf_close+0x225/0x2f0
[   75.564832][T10080]  inet_release+0x165/0x1c0
[   75.569337][T10080]  inet6_release+0x57/0x70
[   75.574140][T10080]  sock_close+0xe1/0x260
[   75.578478][T10080]  ? sock_mmap+0xa0/0xa0
[   75.582815][T10080]  __fput+0x2e4/0x740
[   75.586837][T10080]  ____fput+0x15/0x20
[   75.590908][T10080]  task_work_run+0x17e/0x1b0
[   75.595600][T10080]  prepare_exit_to_usermode+0x459/0x580
[   75.601419][T10080]  syscall_return_slowpath+0x113/0x4a0
[   75.612189][T10080]  do_syscall_64+0x126/0x140
[   75.617131][T10080]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   75.623052][T10080] RIP: 0033:0x413561
[   75.627562][T10080] Code: 75 14 b8 03 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 04 1b 00 00 c3 48 83 ec 08 e8 0a fc ff ff 48 89 04 24 b8 03 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 53 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01
[   75.653515][T10080] RSP: 002b:00007ffc40f16020 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[   75.662143][T10080] RAX: 0000000000000000 RBX: 0000000000000006 RCX: 0000000000413561
[   75.670490][T10080] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[   75.678459][T10080] RBP: 0000000000000000 R08: ffffffffffffffff R09: ffffffffffffffff
[   75.686547][T10080] R10: 00007ffc40f16100 R11: 0000000000000293 R12: 000000000075bfc8
[   75.694666][T10080] R13: 0000000000012634 R14: 0000000000761430 R15: ffffffffffffffff
[   75.702798][T10080] Modules linked in:
[   75.707305][T10080] ---[ end trace 08a6184c51db2485 ]---
[   75.713536][T10080] RIP: 0010:tls_sk_proto_close+0xa2/0x730
[   75.719474][T10080] Code: 80 3c 08 00 74 08 48 89 df e8 9a 2c 3a fb 4c 8b 33 49 8d 5f 14 48 89 d9 48 c1 e9 03 48 b8 00 00 00 00 00 fc ff df 48 89 4d b0 <8a> 04 01 84 c0 0f 85 62 05 00 00 48 89 5d b8 0f b6 1b 83 e3 07 bf
[   75.739677][T10080] RSP: 0018:ffff88809edbfb90 EFLAGS: 00010203
[   75.745743][T10080] RAX: dffffc0000000000 RBX: 0000000000000014 RCX: 0000000000000002
[   75.753968][T10080] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8880a5ee42c0
[   75.762391][T10080] RBP: ffff88809edbfc00 R08: ffffffff86725aa1 R09: ffffed1014bdc86a
[   75.770406][T10080] R10: ffffed1014bdc86a R11: 0000000000000000 R12: ffff8880a038f840
[   75.778572][T10080] R13: ffff8880a5ee42c0 R14: 7fffffffffffffff R15: 0000000000000000
[   75.786685][T10080] FS:  00005555562da940(0000) GS:ffff8880aea00000(0000) knlGS:0000000000000000
[   75.795937][T10080] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   75.802591][T10080] CR2: 00007f95d8d05000 CR3: 000000008f3f8000 CR4: 00000000001406f0
[   75.810998][T10080] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   75.819485][T10080] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   75.828089][T10080] Kernel panic - not syncing: Fatal exception
[   75.836530][T10080] Kernel Offset: disabled
[   75.841034][T10080] Rebooting in 86400 seconds..