[   44.681511][   T26] audit: type=1800 audit(1555532948.969:26): pid=7817 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   44.712344][   T26] audit: type=1800 audit(1555532948.969:27): pid=7817 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[   44.732970][   T26] audit: type=1800 audit(1555532948.979:28): pid=7817 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   45.383087][   T26] audit: type=1800 audit(1555532949.709:29): pid=7817 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.10.27' (ECDSA) to the list of known hosts.
syzkaller login: [   66.766443][ T7969] IPVS: ftp: loaded support on port[0] = 21
[   66.820070][ T7969] chnl_net:caif_netlink_parms(): no params data found
[   66.853210][ T7969] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.860864][ T7969] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.869100][ T7969] device bridge_slave_0 entered promiscuous mode
[   66.877619][ T7969] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.884913][ T7969] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.892815][ T7969] device bridge_slave_1 entered promiscuous mode
[   66.910127][ T7969] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   66.920413][ T7969] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   66.938870][ T7969] team0: Port device team_slave_0 added
[   66.946343][ T7969] team0: Port device team_slave_1 added
[   67.013326][ T7969] device hsr_slave_0 entered promiscuous mode
[   67.062715][ T7969] device hsr_slave_1 entered promiscuous mode
[   67.138837][ T7969] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.146105][ T7969] bridge0: port 2(bridge_slave_1) entered forwarding state
[   67.153833][ T7969] bridge0: port 1(bridge_slave_0) entered blocking state
[   67.160973][ T7969] bridge0: port 1(bridge_slave_0) entered forwarding state
[   67.196194][ T7969] 8021q: adding VLAN 0 to HW filter on device bond0
[   67.207278][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   67.228204][   T22] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.236630][   T22] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.245810][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   67.257157][ T7969] 8021q: adding VLAN 0 to HW filter on device team0
[   67.267337][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   67.276129][ T2832] bridge0: port 1(bridge_slave_0) entered blocking state
[   67.283402][ T2832] bridge0: port 1(bridge_slave_0) entered forwarding state
[   67.303365][ T7971] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   67.311960][ T7971] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.319196][ T7971] bridge0: port 2(bridge_slave_1) entered forwarding state
[   67.327976][ T7971] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   67.336579][ T7971] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   67.346355][ T7971] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   67.356729][ T2832] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   67.368942][ T7969] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   67.380911][ T7969] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   67.391774][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
executing program
[   67.411250][ T7969] 8021q: adding VLAN 0 to HW filter on device batadv0
[   67.427931][ T7969] ------------[ cut here ]------------
[   67.433561][ T7969] hsr_addr_subst_dest: Unknown node
[   67.439388][ T7969] WARNING: CPU: 0 PID: 7969 at net/hsr/hsr_framereg.c:313 hsr_addr_subst_dest+0x382/0x460
[   67.449274][ T7969] Kernel panic - not syncing: panic_on_warn set ...
[   67.455867][ T7969] CPU: 0 PID: 7969 Comm: syz-executor837 Not tainted 5.1.0-rc5+ #74
[   67.463844][ T7969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   67.473912][ T7969] Call Trace:
[   67.477227][ T7969]  dump_stack+0x172/0x1f0
[   67.481674][ T7969]  ? hsr_addr_subst_dest+0x320/0x460
[   67.487016][ T7969]  panic+0x2cb/0x65c
[   67.490931][ T7969]  ? __warn_printk+0xf3/0xf3
[   67.495532][ T7969]  ? hsr_addr_subst_dest+0x382/0x460
[   67.500826][ T7969]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   67.507232][ T7969]  ? __warn.cold+0x5/0x45
[   67.511564][ T7969]  ? __warn+0xe8/0x1d0
[   67.515629][ T7969]  ? hsr_addr_subst_dest+0x382/0x460
[   67.521066][ T7969]  __warn.cold+0x20/0x45
[   67.525311][ T7969]  ? vprintk_emit+0x1ce/0x6d0
[   67.530325][ T7969]  ? hsr_addr_subst_dest+0x382/0x460
[   67.535639][ T7969]  report_bug+0x263/0x2b0
[   67.540026][ T7969]  do_error_trap+0x11b/0x200
[   67.544718][ T7969]  do_invalid_op+0x37/0x50
[   67.549155][ T7969]  ? hsr_addr_subst_dest+0x382/0x460
[   67.554498][ T7969]  invalid_op+0x14/0x20
[   67.558649][ T7969] RIP: 0010:hsr_addr_subst_dest+0x382/0x460
[   67.564526][ T7969] Code: 89 de e8 b1 80 6a fa 84 db 75 d3 e8 68 7f 6a fa 48 c7 c6 e0 4d 19 88 48 c7 c7 a0 4d 19 88 c6 05 93 7a 54 02 01 e8 4c 2d 3d fa <0f> 0b eb b0 e8 45 7f 6a fa 0f b6 1d 7f 7a 54 02 31 ff 89 de e8 75
[   67.584346][ T7969] RSP: 0018:ffff8880a81df5f0 EFLAGS: 00010282
[   67.590408][ T7969] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[   67.598371][ T7969] RDX: 0000000000000000 RSI: ffffffff815afcb6 RDI: ffffed101503beb0
[   67.606335][ T7969] RBP: ffff8880a81df630 R08: ffff88808dc36000 R09: ffffed1015d03ef1
[   67.614305][ T7969] R10: ffffed1015d03ef0 R11: ffff8880ae81f787 R12: ffff888099d2b920
[   67.622272][ T7969] R13: 00000000aaaaaaaa R14: 0000000075daffbe R15: 000000000000aaaa
[   67.630258][ T7969]  ? vprintk_func+0x86/0x189
[   67.634854][ T7969]  hsr_forward_skb+0x123c/0x1bd0
[   67.639898][ T7969]  hsr_dev_xmit+0x72/0xa0
[   67.644539][ T7969]  dev_hard_start_xmit+0x1b2/0x980
[   67.649644][ T7969]  __dev_queue_xmit+0x271d/0x3060
[   67.654676][ T7969]  ? __might_fault+0x12b/0x1e0
[   67.659597][ T7969]  ? find_held_lock+0x35/0x130
[   67.664358][ T7969]  ? netdev_pick_tx+0x300/0x300
[   67.669198][ T7969]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   67.675451][ T7969]  ? iov_iter_advance+0x295/0xf70
[   67.680477][ T7969]  dev_queue_xmit+0x18/0x20
[   67.684967][ T7969]  ? dev_queue_xmit+0x18/0x20
[   67.689742][ T7969]  pppoe_sendmsg+0x657/0x7e0
[   67.694444][ T7969]  ? ether_setup+0x2d0/0x2d0
[   67.699323][ T7969]  ? pppoe_getname+0x120/0x120
[   67.704156][ T7969]  ? apparmor_socket_sendmsg+0x2a/0x30
[   67.709609][ T7969]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   67.715875][ T7969]  ? security_socket_sendmsg+0x93/0xc0
[   67.721320][ T7969]  ? pppoe_getname+0x120/0x120
[   67.726074][ T7969]  sock_sendmsg+0xdd/0x130
[   67.730488][ T7969]  ___sys_sendmsg+0x3e2/0x930
[   67.735163][ T7969]  ? copy_msghdr_from_user+0x430/0x430
[   67.740719][ T7969]  ? __lock_acquire+0x548/0x3fb0
[   67.745649][ T7969]  ? mark_held_locks+0xf0/0xf0
[   67.750416][ T7969]  ? kasan_check_read+0x11/0x20
[   67.755380][ T7969]  ? __lock_acquire+0x242a/0x3fb0
[   67.760536][ T7969]  ? __might_fault+0x12b/0x1e0
[   67.765332][ T7969]  ? find_held_lock+0x35/0x130
[   67.770192][ T7969]  ? __might_fault+0x12b/0x1e0
[   67.774960][ T7969]  ? lock_downgrade+0x880/0x880
[   67.779864][ T7969]  ? ___might_sleep+0x163/0x280
[   67.784840][ T7969]  __sys_sendmmsg+0x1bf/0x4d0
[   67.789521][ T7969]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   67.794540][ T7969]  ? __sys_connect+0x12d/0x330
[   67.799395][ T7969]  ? __ia32_sys_accept+0xb0/0xb0
[   67.804432][ T7969]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   67.809889][ T7969]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   67.815371][ T7969]  ? do_syscall_64+0x26/0x610
[   67.820042][ T7969]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   67.826098][ T7969]  ? do_syscall_64+0x26/0x610
[   67.830778][ T7969]  __x64_sys_sendmmsg+0x9d/0x100
[   67.835710][ T7969]  do_syscall_64+0x103/0x610
[   67.840287][ T7969]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   67.846160][ T7969] RIP: 0033:0x441929
[   67.850038][ T7969] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 bb 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   67.869819][ T7969] RSP: 002b:00007ffd123b0398 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   67.878230][ T7969] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000441929
[   67.886190][ T7969] RDX: 04000000000000eb RSI: 000000002000d180 RDI: 0000000000000003
[   67.894151][ T7969] RBP: 00000000004a8fd0 R08: 0000000001bbbbbb R09: 0000000001bbbbbb
[   67.902319][ T7969] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402e70
[   67.910322][ T7969] R13: 0000000000402f00 R14: 0000000000000000 R15: 0000000000000000
[   67.919417][ T7969] Kernel Offset: disabled
[   67.923814][ T7969] Rebooting in 86400 seconds..