[info] Using makefile-style concurrent boot in runlevel 2. [ 25.688593] audit: type=1800 audit(1542188482.884:21): pid=5812 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="bootlogs" dev="sda1" ino=2419 res=0 [ 25.707266] audit: type=1800 audit(1542188482.884:22): pid=5812 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="motd" dev="sda1" ino=2447 res=0 [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.98' (ECDSA) to the list of known hosts. 2018/11/14 09:41:47 parsed 1 programs 2018/11/14 09:41:49 executed programs: 0 syzkaller login: [ 52.439685] IPVS: ftp: loaded support on port[0] = 21 [ 52.447967] IPVS: ftp: loaded support on port[0] = 21 [ 52.450517] IPVS: ftp: loaded support on port[0] = 21 [ 52.517167] IPVS: ftp: loaded support on port[0] = 21 [ 52.518436] IPVS: ftp: loaded support on port[0] = 21 [ 52.533983] IPVS: ftp: loaded support on port[0] = 21 [ 53.179810] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.193311] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.200968] device bridge_slave_0 entered promiscuous mode [ 53.243101] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.249472] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.257635] device bridge_slave_0 entered promiscuous mode [ 53.264994] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.271332] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.280792] device bridge_slave_1 entered promiscuous mode [ 53.307850] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.317263] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.324566] device bridge_slave_1 entered promiscuous mode [ 53.339149] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 53.379568] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 53.395049] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.401450] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.411673] device bridge_slave_0 entered promiscuous mode [ 53.420097] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.430016] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.437139] device bridge_slave_0 entered promiscuous mode [ 53.444218] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 53.454443] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.460791] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.468608] device bridge_slave_0 entered promiscuous mode [ 53.476652] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.484491] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.491419] device bridge_slave_1 entered promiscuous mode [ 53.504465] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.510974] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.520894] device bridge_slave_1 entered promiscuous mode [ 53.534955] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 53.546146] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.556137] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.567201] device bridge_slave_0 entered promiscuous mode [ 53.574101] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.580428] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.588618] device bridge_slave_1 entered promiscuous mode [ 53.606427] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 53.615880] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.624795] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.637258] device bridge_slave_1 entered promiscuous mode [ 53.643954] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 53.654027] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 53.661744] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 53.674835] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 53.706499] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 53.715023] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 53.725434] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 53.757006] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 53.776830] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 53.798204] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 53.874759] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 53.896248] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 53.914487] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 53.986389] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 53.999420] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 54.010315] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 54.020162] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 54.035899] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 54.058066] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 54.081593] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 54.098346] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 54.123129] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 54.130984] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 54.144038] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 54.151477] team0: Port device team_slave_0 added [ 54.161579] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 54.180318] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 54.196817] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 54.213859] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 54.227176] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 54.241455] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 54.259985] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 54.267741] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 54.277814] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 54.287636] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 54.298677] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 54.306824] team0: Port device team_slave_1 added [ 54.312690] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 54.320518] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 54.339196] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 54.348636] team0: Port device team_slave_0 added [ 54.379333] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 54.393519] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 54.407344] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 54.435962] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 54.448760] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 54.463530] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 54.470710] team0: Port device team_slave_1 added [ 54.504707] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 54.520899] team0: Port device team_slave_0 added [ 54.530501] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 54.547862] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 54.575460] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 54.587189] team0: Port device team_slave_0 added [ 54.595264] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 54.605492] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 54.618671] team0: Port device team_slave_0 added [ 54.628259] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 54.641186] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 54.659894] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 54.668975] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 54.676744] team0: Port device team_slave_1 added [ 54.684923] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 54.692310] team0: Port device team_slave_0 added [ 54.699522] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 54.714551] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 54.721664] team0: Port device team_slave_1 added [ 54.737155] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 54.747724] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 54.759040] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 54.769249] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 54.778046] team0: Port device team_slave_1 added [ 54.787102] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 54.798405] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 54.807197] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 54.817082] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 54.829861] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 54.842883] team0: Port device team_slave_1 added [ 54.848435] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 54.862706] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 54.875252] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 54.887829] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 54.918541] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 54.929387] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 54.954603] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 54.962783] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 54.970312] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 54.981770] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 55.009714] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 55.023078] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 55.034315] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 55.049270] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 55.065487] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 55.079385] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 55.087544] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 55.095632] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 55.103607] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 55.114062] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 55.122390] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 55.130233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 55.147613] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 55.164322] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 55.174677] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 55.183006] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 55.190774] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 55.205302] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 55.214124] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 55.222304] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 55.230030] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 55.249746] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 55.268094] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 55.282032] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 55.298698] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 55.307971] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 55.317210] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 55.741411] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.747966] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.755116] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.761485] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.776080] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 55.795170] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.801555] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.808259] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.814635] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.824722] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 55.885103] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.891510] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.898188] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.904565] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.911987] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 55.959748] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.966168] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.972868] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.979219] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.990458] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 56.012105] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 56.020031] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 56.037197] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 56.045470] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 56.057609] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.064000] bridge0: port 2(bridge_slave_1) entered forwarding state [ 56.070606] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.076999] bridge0: port 1(bridge_slave_0) entered forwarding state [ 56.085722] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 56.216585] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.223001] bridge0: port 2(bridge_slave_1) entered forwarding state [ 56.229594] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.236003] bridge0: port 1(bridge_slave_0) entered forwarding state [ 56.251397] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 57.042973] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 57.052868] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 58.398882] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.416152] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.493117] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.557056] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.617414] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 58.645992] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 58.718970] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.746483] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 58.807479] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 58.821229] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 58.838357] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 58.853227] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 58.880881] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 58.892314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 58.903580] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 58.943363] 8021q: adding VLAN 0 to HW filter on device bond0 [ 59.020109] 8021q: adding VLAN 0 to HW filter on device team0 [ 59.040805] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 59.080389] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 59.089309] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 59.103195] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 59.118646] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 59.134672] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 59.146309] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 59.166056] 8021q: adding VLAN 0 to HW filter on device team0 [ 59.261126] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 59.300593] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 59.316442] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 59.324462] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 59.354350] 8021q: adding VLAN 0 to HW filter on device team0 [ 59.392793] 8021q: adding VLAN 0 to HW filter on device team0 [ 59.493491] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 59.499676] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 59.509443] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 59.544455] 8021q: adding VLAN 0 to HW filter on device team0 [ 59.756208] 8021q: adding VLAN 0 to HW filter on device team0 2018/11/14 09:41:57 executed programs: 6 [ 62.463180] ================================================================== [ 62.470683] BUG: KASAN: user-memory-access in n_tty_set_termios+0x106/0xe80 [ 62.477782] Write of size 512 at addr 0000000000001060 by task syz-executor0/7850 [ 62.477790] [ 62.477805] CPU: 1 PID: 7850 Comm: syz-executor0 Not tainted 4.20.0-rc2+ #111 [ 62.477812] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 62.477820] Call Trace: [ 62.477840] dump_stack+0x244/0x39d [ 62.510449] ? dump_stack_print_info.cold.1+0x20/0x20 [ 62.515668] ? vprintk_func+0x85/0x181 [ 62.515689] kasan_report.cold.8+0x6d/0x309 [ 62.515704] ? n_tty_set_termios+0x106/0xe80 [ 62.515725] check_memory_region+0x13e/0x1b0 [ 62.515742] memset+0x23/0x40 [ 62.515755] n_tty_set_termios+0x106/0xe80 [ 62.515771] ? n_tty_receive_signal_char+0x120/0x120 [ 62.545223] tty_set_termios+0x7a0/0xac0 [ 62.549300] ? tty_wait_until_sent+0x5d0/0x5d0 [ 62.553906] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 62.559460] set_termios+0x41e/0x7d0 [ 62.563189] ? tty_perform_flush+0x80/0x80 [ 62.567453] ? drop_futex_key_refs.isra.14+0x6d/0xe0 [ 62.572559] tty_mode_ioctl+0x857/0xb40 [ 62.572577] ? set_termios+0x7d0/0x7d0 [ 62.572596] ? tty_kref_put.part.13+0x88/0x260 [ 62.572614] ? perf_trace_sched_process_exec+0x860/0x860 [ 62.572634] n_tty_ioctl_helper+0x54/0x3b0 [ 62.594725] n_tty_ioctl+0x54/0x360 [ 62.598361] ? ldsem_down_read+0x32/0x40 [ 62.602435] ? ldsem_down_read+0x32/0x40 [ 62.606512] tty_ioctl+0x5c6/0x17d0 [ 62.610157] ? commit_echoes+0x1c0/0x1c0 [ 62.614227] ? tty_vhangup+0x30/0x30 [ 62.617951] ? find_held_lock+0x36/0x1c0 [ 62.622029] ? __fget+0x4aa/0x740 [ 62.625494] ? lock_downgrade+0x900/0x900 [ 62.629654] ? check_preemption_disabled+0x48/0x280 [ 62.634950] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 62.639920] ? kasan_check_read+0x11/0x20 [ 62.644081] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 62.649377] ? rcu_softirq_qs+0x20/0x20 [ 62.653372] ? __fget+0x4d1/0x740 [ 62.656841] ? ksys_dup3+0x680/0x680 [ 62.660571] ? __might_fault+0x12b/0x1e0 [ 62.664654] ? lock_downgrade+0x900/0x900 [ 62.668817] ? lock_release+0xa00/0xa00 [ 62.672800] ? perf_trace_sched_process_exec+0x860/0x860 [ 62.678262] ? tty_vhangup+0x30/0x30 [ 62.682073] do_vfs_ioctl+0x1de/0x1790 [ 62.685986] ? ioctl_preallocate+0x300/0x300 [ 62.690404] ? memset+0x31/0x40 [ 62.693694] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 62.699236] ? smack_file_ioctl+0x210/0x3c0 [ 62.699251] ? fget_raw+0x20/0x20 [ 62.699267] ? smack_file_lock+0x2e0/0x2e0 [ 62.699292] ? do_syscall_64+0x9a/0x820 [ 62.699308] ? do_syscall_64+0x9a/0x820 [ 62.707073] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 62.707090] ? security_file_ioctl+0x94/0xc0 [ 62.707119] ksys_ioctl+0xa9/0xd0 [ 62.707138] __x64_sys_ioctl+0x73/0xb0 [ 62.707155] do_syscall_64+0x1b9/0x820 [ 62.707171] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 62.724843] ? syscall_return_slowpath+0x5e0/0x5e0 [ 62.724862] ? trace_hardirqs_on_caller+0x310/0x310 [ 62.724896] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 62.724912] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 62.724930] ? __switch_to_asm+0x40/0x70 [ 62.745879] ? __switch_to_asm+0x34/0x70 [ 62.745903] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 62.745925] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 62.745936] RIP: 0033:0x457569 [ 62.745951] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 62.745959] RSP: 002b:00007fec443b6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 62.745972] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 62.745979] RDX: 0000000020000100 RSI: 0000000000005402 RDI: 0000000000000005 [ 62.745990] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 62.830019] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fec443b76d4 [ 62.844567] R13: 00000000004c0ffe R14: 00000000004d1d88 R15: 00000000ffffffff [ 62.851850] ================================================================== [ 62.851861] Disabling lock debugging due to kernel taint [ 62.866497] Kernel panic - not syncing: panic_on_warn set ... [ 62.872409] CPU: 1 PID: 7850 Comm: syz-executor0 Tainted: G B 4.20.0-rc2+ #111 [ 62.881067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 62.890427] Call Trace: [ 62.893020] dump_stack+0x244/0x39d [ 62.896661] ? dump_stack_print_info.cold.1+0x20/0x20 [ 62.898881] kobject: 'loop1' (00000000a2fe560d): kobject_uevent_env [ 62.901863] panic+0x2ad/0x55c [ 62.901876] ? add_taint.cold.5+0x16/0x16 [ 62.901893] ? preempt_schedule+0x4d/0x60 [ 62.918423] kobject: 'loop1' (00000000a2fe560d): fill_kobj_path: path = '/devices/virtual/block/loop1' [ 62.919743] ? ___preempt_schedule+0x16/0x18 [ 62.919760] ? trace_hardirqs_on+0xb4/0x310 [ 62.919776] kasan_end_report+0x47/0x4f [ 62.930468] kobject: 'loop3' (0000000042142d47): kobject_uevent_env [ 62.934061] kasan_report.cold.8+0x76/0x309 [ 62.934075] ? n_tty_set_termios+0x106/0xe80 [ 62.934101] check_memory_region+0x13e/0x1b0 [ 62.934113] memset+0x23/0x40 [ 62.934128] n_tty_set_termios+0x106/0xe80 [ 62.938759] kobject: 'loop3' (0000000042142d47): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 62.942407] ? n_tty_receive_signal_char+0x120/0x120 [ 62.942422] tty_set_termios+0x7a0/0xac0 [ 62.942438] ? tty_wait_until_sent+0x5d0/0x5d0 [ 62.942455] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 62.942470] set_termios+0x41e/0x7d0 [ 62.949488] kobject: 'loop4' (000000000c48cc5d): kobject_uevent_env [ 62.953166] ? tty_perform_flush+0x80/0x80 [ 62.953187] ? drop_futex_key_refs.isra.14+0x6d/0xe0 [ 62.953203] tty_mode_ioctl+0x857/0xb40 [ 62.953219] ? set_termios+0x7d0/0x7d0 [ 62.957892] kobject: 'loop4' (000000000c48cc5d): fill_kobj_path: path = '/devices/virtual/block/loop4' [ 62.962003] ? tty_kref_put.part.13+0x88/0x260 [ 62.962020] ? perf_trace_sched_process_exec+0x860/0x860 [ 62.962040] n_tty_ioctl_helper+0x54/0x3b0 [ 63.024851] kobject: 'loop5' (000000008fe47d6d): kobject_uevent_env [ 63.025271] n_tty_ioctl+0x54/0x360 [ 63.036318] kobject: 'loop5' (000000008fe47d6d): fill_kobj_path: path = '/devices/virtual/block/loop5' [ 63.039276] ? ldsem_down_read+0x32/0x40 [ 63.039289] ? ldsem_down_read+0x32/0x40 [ 63.039305] tty_ioctl+0x5c6/0x17d0 [ 63.080228] ? commit_echoes+0x1c0/0x1c0 [ 63.081228] kobject: 'loop3' (0000000042142d47): kobject_uevent_env [ 63.084292] ? tty_vhangup+0x30/0x30 [ 63.084304] ? find_held_lock+0x36/0x1c0 [ 63.084321] ? __fget+0x4aa/0x740 [ 63.092304] kobject: 'loop3' (0000000042142d47): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 63.094445] ? lock_downgrade+0x900/0x900 [ 63.094459] ? check_preemption_disabled+0x48/0x280 [ 63.094475] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 63.125432] ? kasan_check_read+0x11/0x20 [ 63.129566] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 63.134837] ? rcu_softirq_qs+0x20/0x20 [ 63.138814] ? __fget+0x4d1/0x740 [ 63.142259] ? ksys_dup3+0x680/0x680 [ 63.145956] ? __might_fault+0x12b/0x1e0 [ 63.150002] ? lock_downgrade+0x900/0x900 [ 63.154165] ? lock_release+0xa00/0xa00 [ 63.158130] ? perf_trace_sched_process_exec+0x860/0x860 [ 63.163565] ? tty_vhangup+0x30/0x30 [ 63.167265] do_vfs_ioctl+0x1de/0x1790 [ 63.171140] ? ioctl_preallocate+0x300/0x300 [ 63.175534] ? memset+0x31/0x40 [ 63.178802] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 63.184342] ? smack_file_ioctl+0x210/0x3c0 [ 63.188645] ? fget_raw+0x20/0x20 [ 63.192090] ? smack_file_lock+0x2e0/0x2e0 [ 63.196315] ? do_syscall_64+0x9a/0x820 [ 63.200290] ? do_syscall_64+0x9a/0x820 [ 63.204250] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 63.209773] ? security_file_ioctl+0x94/0xc0 [ 63.214366] ksys_ioctl+0xa9/0xd0 [ 63.217819] __x64_sys_ioctl+0x73/0xb0 [ 63.221698] do_syscall_64+0x1b9/0x820 [ 63.225570] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 63.230931] ? syscall_return_slowpath+0x5e0/0x5e0 [ 63.235850] ? trace_hardirqs_on_caller+0x310/0x310 [ 63.240861] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 63.245873] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 63.252537] ? __switch_to_asm+0x40/0x70 [ 63.256578] ? __switch_to_asm+0x34/0x70 [ 63.260622] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 63.265452] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 63.270622] RIP: 0033:0x457569 [ 63.273804] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 63.292699] RSP: 002b:00007fec443b6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 63.300390] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 63.307643] RDX: 0000000020000100 RSI: 0000000000005402 RDI: 0000000000000005 [ 63.314895] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 63.322147] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fec443b76d4 [ 63.329400] R13: 00000000004c0ffe R14: 00000000004d1d88 R15: 00000000ffffffff [ 63.337807] Kernel Offset: disabled [ 63.341440] Rebooting in 86400 seconds..