[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   59.640710][   T26] audit: type=1800 audit(1558498323.024:25): pid=8830 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[   59.687272][   T26] audit: type=1800 audit(1558498323.024:26): pid=8830 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   59.723794][   T26] audit: type=1800 audit(1558498323.024:27): pid=8830 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.209' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [   70.359812][ T8984] FAULT_INJECTION: forcing a failure.
[   70.359812][ T8984] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   70.373779][ T8984] CPU: 1 PID: 8984 Comm: syz-executor562 Not tainted 5.2.0-rc1+ #1
[   70.381670][ T8984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   70.391720][ T8984] Call Trace:
[   70.395005][ T8984]  dump_stack+0x172/0x1f0
[   70.399327][ T8984]  should_fail.cold+0xa/0x15
[   70.403910][ T8984]  ? sock_sendpage+0x8b/0xc0
[   70.408523][ T8984]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[   70.426556][ T8984]  ? do_syscall_64+0xfd/0x680
[   70.431242][ T8984]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   70.437390][ T8984]  ? mark_held_locks+0xf0/0xf0
[   70.442151][ T8984]  should_fail_alloc_page+0x50/0x60
[   70.447341][ T8984]  __alloc_pages_nodemask+0x1a1/0x8d0
[   70.452740][ T8984]  ? cache_grow_end+0xa4/0x190
[   70.457494][ T8984]  ? __alloc_pages_slowpath+0x28f0/0x28f0
[   70.463205][ T8984]  ? kasan_check_write+0x14/0x20
[   70.468148][ T8984]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[   70.475011][ T8984]  alloc_pages_current+0x107/0x210
[   70.480236][ T8984]  skb_page_frag_refill+0x277/0x460
[   70.485426][ T8984]  sk_page_frag_refill+0x55/0x1f0
[   70.490452][ T8984]  sk_msg_alloc+0x10e/0x8d0
[   70.494981][ T8984]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   70.501234][ T8984]  tls_sw_sendpage+0x525/0xf50
[   70.506014][ T8984]  ? tls_sw_sendmsg+0x17a0/0x17a0
[   70.511190][ T8984]  ? tls_sw_sendmsg+0x17a0/0x17a0
[   70.518792][ T8984]  inet_sendpage+0x168/0x630
[   70.523375][ T8984]  kernel_sendpage+0x92/0xf0
[   70.527949][ T8984]  ? inet_sendmsg+0x5d0/0x5d0
[   70.532629][ T8984]  sock_sendpage+0x8b/0xc0
[   70.537031][ T8984]  ? pipe_lock+0x6e/0x80
[   70.541258][ T8984]  pipe_to_sendpage+0x296/0x360
[   70.546098][ T8984]  ? kernel_sendpage+0xf0/0xf0
[   70.550877][ T8984]  ? direct_splice_actor+0x190/0x190
[   70.556153][ T8984]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   70.562400][ T8984]  ? splice_from_pipe_next.part.0+0x255/0x2f0
[   70.568473][ T8984]  __splice_from_pipe+0x38c/0x7d0
[   70.573494][ T8984]  ? direct_splice_actor+0x190/0x190
[   70.578785][ T8984]  ? direct_splice_actor+0x190/0x190
[   70.584144][ T8984]  splice_from_pipe+0x108/0x170
[   70.589000][ T8984]  ? splice_shrink_spd+0xd0/0xd0
[   70.593932][ T8984]  ? apparmor_file_permission+0x25/0x30
[   70.599579][ T8984]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   70.605862][ T8984]  ? security_file_permission+0x8f/0x380
[   70.611694][ T8984]  generic_splice_sendpage+0x3c/0x50
[   70.616971][ T8984]  ? splice_from_pipe+0x170/0x170
[   70.621989][ T8984]  do_splice+0x708/0x1410
[   70.626306][ T8984]  ? __sb_end_write+0xd9/0x110
[   70.631346][ T8984]  ? opipe_prep.part.0+0x2d0/0x2d0
[   70.636639][ T8984]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   70.642870][ T8984]  ? __fget_light+0x1a9/0x230
[   70.647588][ T8984]  __x64_sys_splice+0x2c6/0x330
[   70.652446][ T8984]  do_syscall_64+0xfd/0x680
[   70.656973][ T8984]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   70.662857][ T8984] RIP: 0033:0x441a09
[   70.666758][ T8984] Code: e8 cc ac 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 bb 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   70.686367][ T8984] RSP: 002b:00007ffe1d43dcf8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[   70.694798][ T8984] RAX: ffffffffffffffda RBX: 00007ffe1d43dd10 RCX: 0000000000441a09
[   70.702769][ T8984] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003
[   70.710747][ T8984] RBP: 0000000000000005 R08: 0000000100000000 R09: 0000000000000000
[   70.718803][ T8984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402950
[   70.726768][ T8984] R13: 00000000004029e0 R14: 0000000000000000 R15: 0000000000000000
executing program
[   75.305626][ T9000] FAULT_INJECTION: forcing a failure.
[   75.305626][ T9000] name failslab, interval 1, probability 0, space 0, times 1
[   75.318299][ T9000] CPU: 0 PID: 9000 Comm: syz-executor562 Not tainted 5.2.0-rc1+ #1
[   75.326173][ T9000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   75.336235][ T9000] Call Trace:
[   75.339515][ T9000]  dump_stack+0x172/0x1f0
[   75.343829][ T9000]  should_fail.cold+0xa/0x15
[   75.348577][ T9000]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[   75.354381][ T9000]  ? memcpy+0x46/0x50
[   75.358381][ T9000]  __should_failslab+0x121/0x190
[   75.363320][ T9000]  should_failslab+0x9/0x14
[   75.367812][ T9000]  __kmalloc+0x71/0x740
[   75.371957][ T9000]  ? shash_finup_unaligned+0x41/0x70
[   75.377238][ T9000]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   75.383472][ T9000]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   75.389730][ T9000]  ? skcipher_walk_next+0x529/0x16b0
[   75.395001][ T9000]  ? skcipher_walk_next+0x753/0x16b0
[   75.400420][ T9000]  skcipher_walk_next+0x753/0x16b0
[   75.405529][ T9000]  skcipher_walk_done+0x409/0xd50
[   75.410591][ T9000]  ? __this_cpu_preempt_check+0x3a/0x270
[   75.416247][ T9000]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   75.430744][ T9000]  ctr_crypt+0xfe/0x210
[   75.434886][ T9000]  ? shash_ahash_finup+0x200/0x200
[   75.439983][ T9000]  ? aesni_xts_enc8+0x40/0x40
[   75.444657][ T9000]  ? find_held_lock+0x35/0x130
[   75.449420][ T9000]  simd_skcipher_encrypt+0x210/0x350
[   75.454701][ T9000]  crypto_ccm_encrypt+0x402/0x5b0
[   75.459715][ T9000]  tls_push_record+0x1b1e/0x3580
[   75.464656][ T9000]  ? tls_tx_records+0x750/0x750
[   75.469528][ T9000]  ? lock_downgrade+0x880/0x880
[   75.474394][ T9000]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   75.480626][ T9000]  ? kasan_check_read+0x11/0x20
[   75.485469][ T9000]  bpf_exec_tx_verdict+0xe30/0x1280
[   75.490674][ T9000]  ? stack_trace_save+0xac/0xe0
[   75.495515][ T9000]  ? tls_push_record+0x3580/0x3580
[   75.500614][ T9000]  ? ima_match_policy+0x9e9/0x13b0
[   75.505761][ T9000]  ? __sk_mem_schedule+0xac/0xe0
[   75.510690][ T9000]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   75.516947][ T9000]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   75.523229][ T9000]  ? sk_msg_alloc+0x62d/0x8d0
[   75.527910][ T9000]  tls_sw_sendpage+0xb94/0xf50
[   75.532898][ T9000]  ? tls_sw_sendmsg+0x17a0/0x17a0
[   75.537925][ T9000]  ? tls_sw_sendmsg+0x17a0/0x17a0
[   75.542957][ T9000]  inet_sendpage+0x168/0x630
[   75.547709][ T9000]  kernel_sendpage+0x92/0xf0
[   75.552318][ T9000]  ? inet_sendmsg+0x5d0/0x5d0
[   75.556991][ T9000]  sock_sendpage+0x8b/0xc0
[   75.561445][ T9000]  ? pipe_lock+0x6e/0x80
[   75.565805][ T9000]  pipe_to_sendpage+0x296/0x360
[   75.570650][ T9000]  ? kernel_sendpage+0xf0/0xf0
[   75.575407][ T9000]  ? direct_splice_actor+0x190/0x190
[   75.580685][ T9000]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   75.586920][ T9000]  ? anon_pipe_buf_release+0x1c6/0x270
[   75.592508][ T9000]  __splice_from_pipe+0x38c/0x7d0
[   75.597522][ T9000]  ? direct_splice_actor+0x190/0x190
[   75.603078][ T9000]  ? direct_splice_actor+0x190/0x190
[   75.608518][ T9000]  splice_from_pipe+0x108/0x170
[   75.613400][ T9000]  ? splice_shrink_spd+0xd0/0xd0
[   75.618369][ T9000]  ? apparmor_file_permission+0x25/0x30
[   75.623916][ T9000]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   75.630294][ T9000]  ? security_file_permission+0x8f/0x380
[   75.635917][ T9000]  generic_splice_sendpage+0x3c/0x50
[   75.641233][ T9000]  ? splice_from_pipe+0x170/0x170
[   75.646257][ T9000]  do_splice+0x708/0x1410
[   75.650580][ T9000]  ? __sb_end_write+0xd9/0x110
[   75.655336][ T9000]  ? opipe_prep.part.0+0x2d0/0x2d0
[   75.660626][ T9000]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   75.666862][ T9000]  ? __fget_light+0x1a9/0x230
[   75.671540][ T9000]  __x64_sys_splice+0x2c6/0x330
[   75.676388][ T9000]  do_syscall_64+0xfd/0x680
[   75.680879][ T9000]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   75.686755][ T9000] RIP: 0033:0x441a09
[   75.690634][ T9000] Code: e8 cc ac 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 bb 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   75.710224][ T9000] RSP: 002b:00007ffe1d43dcf8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[   75.718637][ T9000] RAX: ffffffffffffffda RBX: 00007ffe1d43dd10 RCX: 0000000000441a09
[   75.726598][ T9000] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003
[   75.734596][ T9000] RBP: 0000000000000005 R08: 0000000100000000 R09: 0000000000000000
[   75.742565][ T9000] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402950
[   75.750571][ T9000] R13: 00000000004029e0 R14: 0000000000000000 R15: 0000000000000000
[   75.759362][ T9000] ------------[ cut here ]------------
[   75.764837][ T9000] kernel BUG at include/linux/scatterlist.h:97!
[   75.772242][ T9000] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[   75.778369][ T9000] CPU: 0 PID: 9000 Comm: syz-executor562 Not tainted 5.2.0-rc1+ #1
[   75.786356][ T9000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   75.796444][ T9000] RIP: 0010:tls_sw_sendpage+0xd63/0xf50
[   75.801987][ T9000] Code: c6 c0 38 0d 88 4c 89 ef e8 aa 4c 89 fb 0f 0b e8 73 38 61 fb 4d 8d 6c 24 ff e9 92 f8 ff ff e8 64 38 61 fb 0f 0b e8 5d 38 61 fb <0f> 0b 45 31 ed e9 bc fe ff ff e8 4e 38 61 fb 83 85 c4 fe ff ff 01
[   75.821576][ T9000] RSP: 0018:ffff88808a8d78f8 EFLAGS: 00010293
[   75.827729][ T9000] RAX: ffff8880a3b842c0 RBX: dffffc0000000000 RCX: ffffffff860f65b3
[   75.835781][ T9000] RDX: 0000000000000000 RSI: ffffffff860f6c13 RDI: 0000000000000007
[   75.843804][ T9000] RBP: ffff88808a8d7a48 R08: ffff8880a3b842c0 R09: fffff94000504ba7
[   75.852141][ T9000] R10: fffff94000504ba6 R11: ffffea0002825d37 R12: 0000000000000004
[   75.860427][ T9000] R13: 0000000000000001 R14: ffff88808a64e7c8 R15: ffff88809fa30c80
[   75.868568][ T9000] FS:  000055555659e940(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000
[   75.877478][ T9000] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   75.884043][ T9000] CR2: 0000000000000000 CR3: 000000008aaa4000 CR4: 00000000001406f0
[   75.892080][ T9000] Call Trace:
[   75.895396][ T9000]  ? tls_sw_sendmsg+0x17a0/0x17a0
[   75.900661][ T9000]  ? tls_sw_sendmsg+0x17a0/0x17a0
[   75.905675][ T9000]  inet_sendpage+0x168/0x630
[   75.910256][ T9000]  kernel_sendpage+0x92/0xf0
[   75.914839][ T9000]  ? inet_sendmsg+0x5d0/0x5d0
[   75.919644][ T9000]  sock_sendpage+0x8b/0xc0
[   75.924156][ T9000]  ? pipe_lock+0x6e/0x80
[   75.928768][ T9000]  pipe_to_sendpage+0x296/0x360
[   75.933679][ T9000]  ? kernel_sendpage+0xf0/0xf0
[   75.938434][ T9000]  ? direct_splice_actor+0x190/0x190
[   75.943709][ T9000]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   75.949941][ T9000]  ? anon_pipe_buf_release+0x1c6/0x270
[   75.955475][ T9000]  __splice_from_pipe+0x38c/0x7d0
[   75.960599][ T9000]  ? direct_splice_actor+0x190/0x190
[   75.966052][ T9000]  ? direct_splice_actor+0x190/0x190
[   75.971337][ T9000]  splice_from_pipe+0x108/0x170
[   75.976190][ T9000]  ? splice_shrink_spd+0xd0/0xd0
[   75.981119][ T9000]  ? apparmor_file_permission+0x25/0x30
[   75.986708][ T9000]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   75.992987][ T9000]  ? security_file_permission+0x8f/0x380
[   75.998888][ T9000]  generic_splice_sendpage+0x3c/0x50
[   76.004165][ T9000]  ? splice_from_pipe+0x170/0x170
[   76.009180][ T9000]  do_splice+0x708/0x1410
[   76.013506][ T9000]  ? __sb_end_write+0xd9/0x110
[   76.018632][ T9000]  ? opipe_prep.part.0+0x2d0/0x2d0
[   76.024268][ T9000]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   76.030503][ T9000]  ? __fget_light+0x1a9/0x230
[   76.035169][ T9000]  __x64_sys_splice+0x2c6/0x330
[   76.040024][ T9000]  do_syscall_64+0xfd/0x680
[   76.044518][ T9000]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   76.050391][ T9000] RIP: 0033:0x441a09
[   76.054270][ T9000] Code: e8 cc ac 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 bb 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   76.073994][ T9000] RSP: 002b:00007ffe1d43dcf8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[   76.082567][ T9000] RAX: ffffffffffffffda RBX: 00007ffe1d43dd10 RCX: 0000000000441a09
[   76.090619][ T9000] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003
[   76.098818][ T9000] RBP: 0000000000000005 R08: 0000000100000000 R09: 0000000000000000
[   76.106918][ T9000] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402950
[   76.114886][ T9000] R13: 00000000004029e0 R14: 0000000000000000 R15: 0000000000000000
[   76.122934][ T9000] Modules linked in:
[   76.127277][ T9000] ---[ end trace 2b2316f949266f97 ]---
[   76.133268][ T9000] RIP: 0010:tls_sw_sendpage+0xd63/0xf50
[   76.138889][ T9000] Code: c6 c0 38 0d 88 4c 89 ef e8 aa 4c 89 fb 0f 0b e8 73 38 61 fb 4d 8d 6c 24 ff e9 92 f8 ff ff e8 64 38 61 fb 0f 0b e8 5d 38 61 fb <0f> 0b 45 31 ed e9 bc fe ff ff e8 4e 38 61 fb 83 85 c4 fe ff ff 01
[   76.159364][ T9000] RSP: 0018:ffff88808a8d78f8 EFLAGS: 00010293
[   76.165429][ T9000] RAX: ffff8880a3b842c0 RBX: dffffc0000000000 RCX: ffffffff860f65b3
[   76.173578][ T9000] RDX: 0000000000000000 RSI: ffffffff860f6c13 RDI: 0000000000000007
[   76.181621][ T9000] RBP: ffff88808a8d7a48 R08: ffff8880a3b842c0 R09: fffff94000504ba7
[   76.189654][ T9000] R10: fffff94000504ba6 R11: ffffea0002825d37 R12: 0000000000000004
[   76.197732][ T9000] R13: 0000000000000001 R14: ffff88808a64e7c8 R15: ffff88809fa30c80
[   76.205716][ T9000] FS:  000055555659e940(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000
[   76.214685][ T9000] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   76.221298][ T9000] CR2: 0000000000000000 CR3: 000000008aaa4000 CR4: 00000000001406f0
[   76.229310][ T9000] Kernel panic - not syncing: Fatal exception
[   76.236466][ T9000] Kernel Offset: disabled
[   76.240906][ T9000] Rebooting in 86400 seconds..