[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   26.656891] kauditd_printk_skb: 7 callbacks suppressed
[   26.656901] audit: type=1800 audit(1541773534.177:29): pid=5516 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
[   26.688288] audit: type=1800 audit(1541773534.177:30): pid=5516 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.10.36' (ECDSA) to the list of known hosts.
2018/11/09 14:26:39 parsed 1 programs
2018/11/09 14:26:40 executed programs: 0
syzkaller login: [   92.917689] IPVS: ftp: loaded support on port[0] = 21
[   93.158885] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.166573] bridge0: port 1(bridge_slave_0) entered disabled state
[   93.173613] device bridge_slave_0 entered promiscuous mode
[   93.191812] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.198240] bridge0: port 2(bridge_slave_1) entered disabled state
[   93.205324] device bridge_slave_1 entered promiscuous mode
[   93.222726] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   93.240131] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   93.289835] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   93.309726] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   93.384626] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   93.392107] team0: Port device team_slave_0 added
[   93.411171] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   93.418490] team0: Port device team_slave_1 added
[   93.435622] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   93.456809] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   93.476409] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   93.496492] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   93.640767] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.647235] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.654265] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.660691] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.188884] 8021q: adding VLAN 0 to HW filter on device bond0
[   94.245991] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   94.298425] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   94.304681] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   94.312487] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   94.371185] 8021q: adding VLAN 0 to HW filter on device team0
2018/11/09 14:26:45 executed programs: 32
2018/11/09 14:26:50 executed programs: 84
2018/11/09 14:26:55 executed programs: 133
2018/11/09 14:27:00 executed programs: 183
2018/11/09 14:27:05 executed programs: 234
2018/11/09 14:27:10 executed programs: 284
2018/11/09 14:27:15 executed programs: 327
2018/11/09 14:27:20 executed programs: 375
2018/11/09 14:27:25 executed programs: 424
2018/11/09 14:27:31 executed programs: 470
2018/11/09 14:27:36 executed programs: 516
2018/11/09 14:27:41 executed programs: 563
2018/11/09 14:27:46 executed programs: 611
2018/11/09 14:27:51 executed programs: 658
[  164.779082] ------------[ cut here ]------------
[  164.783988] DEBUG_LOCKS_WARN_ON(depth <= 0)
[  164.784071] WARNING: CPU: 1 PID: 7281 at kernel/locking/lockdep.c:3595 lock_release+0x740/0xa10
[  164.797188] Kernel panic - not syncing: panic_on_warn set ...
[  164.803595] CPU: 1 PID: 7281 Comm: syz-executor0 Not tainted 4.20.0-rc1-next-20181109+ #109
[  164.812584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  164.822037] Call Trace:
[  164.824620]  dump_stack+0x244/0x39d
[  164.828233]  ? dump_stack_print_info.cold.1+0x20/0x20
[  164.833425]  panic+0x2ad/0x55c
[  164.836604]  ? add_taint.cold.5+0x16/0x16
[  164.841030]  ? __warn.cold.8+0x5/0x45
[  164.844830]  ? __warn+0xe8/0x1d0
[  164.848211]  ? lock_release+0x740/0xa10
[  164.852181]  __warn.cold.8+0x20/0x45
[  164.856003]  ? lock_release+0x740/0xa10
[  164.860097]  report_bug+0x254/0x2d0
[  164.863718]  do_error_trap+0x11b/0x200
[  164.867598]  do_invalid_op+0x36/0x40
[  164.871303]  ? lock_release+0x740/0xa10
[  164.875445]  invalid_op+0x14/0x20
[  164.878897] RIP: 0010:lock_release+0x740/0xa10
[  164.883479] Code: 03 38 d0 7c 08 84 d2 0f 85 da 02 00 00 8b 35 a7 82 b3 08 85 f6 75 15 48 c7 c6 20 66 2b 88 48 c7 c7 c0 33 2b 88 e8 10 36 e7 ff <0f> 0b 48 8b 95 e8 fe ff ff 4c 89 f7 48 8b b5 f0 fe ff ff e8 e8 58
[  164.902756] RSP: 0018:ffff8801c415f868 EFLAGS: 00010086
[  164.908291] RAX: 0000000000000000 RBX: 1ffff1003882bf12 RCX: 0000000000000000
[  164.915740] RDX: 0000000000000000 RSI: ffffffff8165ba15 RDI: 0000000000000006
[  164.923018] RBP: ffff8801c415f998 R08: ffff8801ccf64640 R09: fffffbfff12b2254
[  164.930276] R10: fffffbfff12b2254 R11: ffffffff895912a3 R12: ffffffff8b0e17a0
[  164.937647] R13: ffff8801c415f970 R14: ffff8801ccf64640 R15: ffff8801c415f8b0
[  164.945043]  ? vprintk_func+0x85/0x181
[  164.948928]  ? lock_release+0x740/0xa10
[  164.952918]  ? loop_control_ioctl+0xf5/0x4e0
[  164.957432]  ? lock_downgrade+0x900/0x900
[  164.961576]  ? kasan_check_read+0x11/0x20
[  164.965857]  ? do_raw_spin_unlock+0xa7/0x330
[  164.970260]  ? do_raw_spin_trylock+0x270/0x270
[  164.974903]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  164.980590]  ? find_free_cb+0x58/0xa0
[  164.984409]  __mutex_unlock_slowpath+0x102/0x8c0
[  164.989376]  ? wait_for_completion+0x8a0/0x8a0
[  164.994135]  ? graph_lock+0x270/0x270
[  164.997939]  ? graph_lock+0x270/0x270
[  165.001733]  ? graph_lock+0x270/0x270
[  165.005533]  ? graph_lock+0x270/0x270
[  165.009328]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  165.014855]  ? loop_lookup+0x105/0x230
[  165.018744]  ? loop_exit_cb+0x20/0x20
[  165.022556]  mutex_unlock+0xd/0x10
[  165.026108]  loop_control_ioctl+0xf5/0x4e0
[  165.030577]  ? loop_add+0xa20/0xa20
[  165.034285]  ? __might_fault+0x12b/0x1e0
[  165.038345]  ? lock_downgrade+0x900/0x900
[  165.042481]  ? lock_release+0xa10/0xa10
[  165.046444]  ? perf_trace_sched_process_exec+0x860/0x860
[  165.052032]  ? loop_add+0xa20/0xa20
[  165.055862]  do_vfs_ioctl+0x1de/0x1790
[  165.059736]  ? ioctl_preallocate+0x300/0x300
[  165.064152]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  165.069672]  ? __fget_light+0x2e9/0x430
[  165.073631]  ? fget_raw+0x20/0x20
[  165.077068]  ? _copy_to_user+0xc8/0x110
[  165.081040]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  165.086711]  ? put_timespec64+0x10f/0x1b0
[  165.090846]  ? nsecs_to_jiffies+0x30/0x30
[  165.094992]  ? do_syscall_64+0x9a/0x820
[  165.098954]  ? do_syscall_64+0x9a/0x820
[  165.102934]  ? lockdep_hardirqs_on+0x3bb/0x5b0
[  165.107512]  ? security_file_ioctl+0x94/0xc0
[  165.111928]  ksys_ioctl+0xa9/0xd0
[  165.115374]  __x64_sys_ioctl+0x73/0xb0
[  165.119253]  do_syscall_64+0x1b9/0x820
[  165.123135]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  165.128652]  ? syscall_return_slowpath+0x5e0/0x5e0
[  165.133580]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  165.138417]  ? trace_hardirqs_on_caller+0x310/0x310
[  165.143476]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  165.148495]  ? prepare_exit_to_usermode+0x291/0x3b0
[  165.153499]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  165.158454]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  165.163640] RIP: 0033:0x457569
[  165.166822] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  165.185717] RSP: 002b:00007fffe5ab4658 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  165.193411] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569
[  165.200670] RDX: 9999999999999999 RSI: 0000000000004c81 RDI: 0000000000000004
[  165.207937] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  165.215283] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000019e7914
[  165.222654] R13: 00000000004c233f R14: 00000000004d3568 R15: 00000000ffffffff
[  165.231120] Kernel Offset: disabled
[  165.234746] Rebooting in 86400 seconds..