[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   57.723377][   T26] kauditd_printk_skb: 7 callbacks suppressed
[   57.723384][   T26] audit: type=1800 audit(1565710157.422:29): pid=9460 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
[   57.760922][   T26] audit: type=1800 audit(1565710157.422:30): pid=9460 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.145' (ECDSA) to the list of known hosts.
2019/08/13 15:44:41 parsed 1 programs
2019/08/13 15:44:42 executed programs: 0
syzkaller login: [  982.689258][ T9627] IPVS: ftp: loaded support on port[0] = 21
[  982.731140][ T9627] chnl_net:caif_netlink_parms(): no params data found
[  982.751521][ T9627] bridge0: port 1(bridge_slave_0) entered blocking state
[  982.759292][ T9627] bridge0: port 1(bridge_slave_0) entered disabled state
[  982.766895][ T9627] device bridge_slave_0 entered promiscuous mode
[  982.774221][ T9627] bridge0: port 2(bridge_slave_1) entered blocking state
[  982.781472][ T9627] bridge0: port 2(bridge_slave_1) entered disabled state
[  982.788930][ T9627] device bridge_slave_1 entered promiscuous mode
[  982.802206][ T9627] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  982.812622][ T9627] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  982.829164][ T9627] team0: Port device team_slave_0 added
[  982.835561][ T9627] team0: Port device team_slave_1 added
[  982.899046][ T9627] device hsr_slave_0 entered promiscuous mode
[  982.977766][ T9627] device hsr_slave_1 entered promiscuous mode
[  983.032830][ T9627] bridge0: port 2(bridge_slave_1) entered blocking state
[  983.039971][ T9627] bridge0: port 2(bridge_slave_1) entered forwarding state
[  983.047271][ T9627] bridge0: port 1(bridge_slave_0) entered blocking state
[  983.054373][ T9627] bridge0: port 1(bridge_slave_0) entered forwarding state
[  983.075488][ T9627] 8021q: adding VLAN 0 to HW filter on device bond0
[  983.086158][ T9631] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  983.095640][ T9631] bridge0: port 1(bridge_slave_0) entered disabled state
[  983.104113][ T9631] bridge0: port 2(bridge_slave_1) entered disabled state
[  983.112167][ T9631] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  983.122076][ T9627] 8021q: adding VLAN 0 to HW filter on device team0
[  983.131340][ T3517] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  983.139814][ T3517] bridge0: port 1(bridge_slave_0) entered blocking state
[  983.146842][ T3517] bridge0: port 1(bridge_slave_0) entered forwarding state
[  983.165170][ T9627] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  983.181984][ T9627] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  983.194418][ T9634] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  983.203009][ T9634] bridge0: port 2(bridge_slave_1) entered blocking state
[  983.210088][ T9634] bridge0: port 2(bridge_slave_1) entered forwarding state
[  983.220208][ T9634] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  983.228641][ T9634] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  983.236781][ T9634] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  983.245000][ T9634] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  983.259019][ T9629] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  983.266521][ T9629] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  983.275702][ T9627] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1139.177673][ T1057] INFO: task syz-executor.0:9648 blocked for more than 143 seconds.
[ 1139.185716][ T1057]       Not tainted 5.3.0-rc4 #73
[ 1139.191634][ T1057] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1139.200606][ T1057] syz-executor.0  D28624  9648   9627 0x80004004
[ 1139.206957][ T1057] Call Trace:
[ 1139.214082][ T1057]  __schedule+0x877/0xc50
[ 1139.218787][ T1057]  ? _raw_spin_unlock_irq+0x27/0x80
[ 1139.224000][ T1057]  schedule+0x131/0x1e0
[ 1139.228967][ T1057]  rwsem_down_read_slowpath+0x5c5/0xa00
[ 1139.234537][ T1057]  __down_read+0x6e/0x330
[ 1139.239874][ T1057]  down_read+0x45/0x50
[ 1139.243957][ T1057]  exit_mm+0x90/0x590
[ 1139.248756][ T1057]  do_exit+0x565/0x21a0
[ 1139.252925][ T1057]  ? get_signal+0x3aa/0x1d60
[ 1139.257839][ T1057]  ? get_signal+0x3aa/0x1d60
[ 1139.262445][ T1057]  do_group_exit+0x15c/0x2b0
[ 1139.267039][ T1057]  get_signal+0x4ac/0x1d60
[ 1139.272630][ T1057]  do_signal+0x37/0x640
[ 1139.276803][ T1057]  ? vm_mmap_pgoff+0x10a/0x1d0
[ 1139.281884][ T1057]  ? prepare_exit_to_usermode+0x258/0x580
[ 1139.288323][ T1057]  ? trace_irq_enable_rcuidle+0x23/0x1e0
[ 1139.293964][ T1057]  prepare_exit_to_usermode+0x303/0x580
[ 1139.299857][ T1057]  syscall_return_slowpath+0x113/0x4a0
[ 1139.305319][ T1057]  ? __x64_sys_mmap+0x103/0x120
[ 1139.310956][ T1057]  do_syscall_64+0x126/0x140
[ 1139.315681][ T1057]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1139.322084][ T1057] RIP: 0033:0x45987a
[ 1139.325998][ T1057] Code: Bad RIP value.
[ 1139.330795][ T1057] RSP: 002b:00007ffc3f0c90a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1139.339512][ T1057] RAX: fffffffffffffffc RBX: 0000000000000003 RCX: 000000000045987a
[ 1139.348203][ T1057] RDX: 0000000000000003 RSI: 0000000000021000 RDI: 0000000000000000
[ 1139.356186][ T1057] RBP: ffffffffffffffff R08: ffffffffffffffff R09: 0000000000000000
[ 1139.364500][ T1057] R10: 0000000000020022 R11: 0000000000000246 R12: 0000000000000000
[ 1139.373237][ T1057] R13: 0000000000021000 R14: 0000000000020022 R15: 0000000000000000
[ 1139.381484][ T1057] INFO: task syz-executor.0:9649 blocked for more than 143 seconds.
[ 1139.390148][ T1057]       Not tainted 5.3.0-rc4 #73
[ 1139.395165][ T1057] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1139.404442][ T1057] syz-executor.0  D28760  9649   9627 0x80004004
[ 1139.411525][ T1057] Call Trace:
[ 1139.414831][ T1057]  __schedule+0x877/0xc50
[ 1139.419455][ T1057]  ? _raw_spin_unlock_irq+0x27/0x80
[ 1139.424669][ T1057]  schedule+0x131/0x1e0
[ 1139.429656][ T1057]  rwsem_down_read_slowpath+0x5c5/0xa00
[ 1139.435234][ T1057]  __down_read+0x6e/0x330
[ 1139.439933][ T1057]  down_read+0x45/0x50
[ 1139.444014][ T1057]  exit_mm+0x90/0x590
[ 1139.448783][ T1057]  do_exit+0x565/0x21a0
[ 1139.452944][ T1057]  ? get_signal+0x3aa/0x1d60
[ 1139.457818][ T1057]  ? get_signal+0x3aa/0x1d60
[ 1139.462417][ T1057]  do_group_exit+0x15c/0x2b0
[ 1139.467095][ T1057]  get_signal+0x4ac/0x1d60
[ 1139.472329][ T1057]  ? trace_lock_release+0x135/0x1a0
[ 1139.477793][ T1057]  ? __might_fault+0xf9/0x160
[ 1139.482476][ T1057]  do_signal+0x37/0x640
[ 1139.486624][ T1057]  ? check_preemption_disabled+0xb7/0x2a0
[ 1139.493138][ T1057]  ? prepare_exit_to_usermode+0x258/0x580
[ 1139.499466][ T1057]  ? trace_irq_enable_rcuidle+0x23/0x1e0
[ 1139.505109][ T1057]  prepare_exit_to_usermode+0x303/0x580
[ 1139.511442][ T1057]  syscall_return_slowpath+0x113/0x4a0
[ 1139.516908][ T1057]  ? __x64_sys_futex+0xe5/0x100
[ 1139.522080][ T1057]  do_syscall_64+0x126/0x140
[ 1139.526676][ T1057]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1139.533667][ T1057] RIP: 0033:0x459829
[ 1139.537841][ T1057] Code: Bad RIP value.
[ 1139.541910][ T1057] RSP: 002b:00007f2b4b0b0cf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1139.551112][ T1057] RAX: fffffffffffffe00 RBX: 000000000075bf28 RCX: 0000000000459829
[ 1139.559293][ T1057] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000075bf28
[ 1139.567266][ T1057] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1139.576137][ T1057] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000075bf2c
[ 1139.584478][ T1057] R13: 00007ffc3f0c914f R14: 00007f2b4b0b19c0 R15: 000000000075bf2c
[ 1139.593229][ T1057] INFO: task syz-executor.0:9651 blocked for more than 143 seconds.
[ 1139.601453][ T1057]       Not tainted 5.3.0-rc4 #73
[ 1139.606564][ T1057] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1139.616009][ T1057] syz-executor.0  D28888  9651   9627 0x80004004
[ 1139.622650][ T1057] Call Trace:
[ 1139.625958][ T1057]  __schedule+0x877/0xc50
[ 1139.631097][ T1057]  ? _raw_spin_unlock_irq+0x27/0x80
[ 1139.636308][ T1057]  schedule+0x131/0x1e0
[ 1139.640828][ T1057]  rwsem_down_read_slowpath+0x5c5/0xa00
[ 1139.646401][ T1057]  __down_read+0x6e/0x330
[ 1139.651533][ T1057]  down_read+0x45/0x50
[ 1139.655614][ T1057]  acct_collect+0xa3/0x5f0
[ 1139.660810][ T1057]  ? exit_itimers+0x435/0x450
[ 1139.665500][ T1057]  do_exit+0x4fa/0x21a0
[ 1139.670472][ T1057]  ? get_signal+0x3aa/0x1d60
[ 1139.675074][ T1057]  ? get_signal+0x3aa/0x1d60
[ 1139.680041][ T1057]  do_group_exit+0x15c/0x2b0
[ 1139.684643][ T1057]  get_signal+0x4ac/0x1d60
[ 1139.689892][ T1057]  ? trace_lock_release+0x135/0x1a0
[ 1139.695097][ T1057]  ? __might_fault+0xf9/0x160
[ 1139.700094][ T1057]  do_signal+0x37/0x640
[ 1139.704263][ T1057]  ? check_preemption_disabled+0xb7/0x2a0
[ 1139.710890][ T1057]  ? prepare_exit_to_usermode+0x258/0x580
[ 1139.716631][ T1057]  ? trace_irq_enable_rcuidle+0x23/0x1e0
[ 1139.722633][ T1057]  prepare_exit_to_usermode+0x303/0x580
[ 1139.728990][ T1057]  syscall_return_slowpath+0x113/0x4a0
[ 1139.734466][ T1057]  ? __x64_sys_futex+0xe5/0x100
[ 1139.739697][ T1057]  do_syscall_64+0x126/0x140
[ 1139.744313][ T1057]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1139.751094][ T1057] RIP: 0033:0x459829
[ 1139.755008][ T1057] Code: Bad RIP value.
[ 1139.759404][ T1057] RSP: 002b:00007f2b4b08fcf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1139.768662][ T1057] RAX: fffffffffffffe00 RBX: 000000000075bfd0 RCX: 0000000000459829
[ 1139.776666][ T1057] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000075bfd0
[ 1139.785043][ T1057] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000
[ 1139.794171][ T1057] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000075bfd4
[ 1139.802589][ T1057] R13: 00007ffc3f0c914f R14: 00007f2b4b0909c0 R15: 000000000075bfd4
[ 1139.811395][ T1057] INFO: task syz-executor.0:9652 blocked for more than 143 seconds.
[ 1139.820231][ T1057]       Not tainted 5.3.0-rc4 #73
[ 1139.825262][ T1057] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1139.834842][ T1057] syz-executor.0  D30200  9652   9651 0x80004000
[ 1139.841434][ T1057] Call Trace:
[ 1139.844736][ T1057]  __schedule+0x877/0xc50
[ 1139.849860][ T1057]  ? _raw_spin_unlock_irq+0x27/0x80
[ 1139.855068][ T1057]  schedule+0x131/0x1e0
[ 1139.859489][ T1057]  rwsem_down_read_slowpath+0x5c5/0xa00
[ 1139.865049][ T1057]  __down_read+0x6e/0x330
[ 1139.870139][ T1057]  down_read+0x45/0x50
[ 1139.874212][ T1057]  acct_collect+0xa3/0x5f0
[ 1139.878865][ T1057]  ? exit_itimers+0x435/0x450
[ 1139.883550][ T1057]  do_exit+0x4fa/0x21a0
[ 1139.888453][ T1057]  do_group_exit+0x15c/0x2b0
[ 1139.893054][ T1057]  __do_sys_exit_group+0x17/0x20
[ 1139.898272][ T1057]  __se_sys_exit_group+0x14/0x20
[ 1139.903220][ T1057]  __x64_sys_exit_group+0x3b/0x40
[ 1139.909099][ T1057]  do_syscall_64+0xfe/0x140
[ 1139.913611][ T1057]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1139.920144][ T1057] RIP: 0033:0x459829
[ 1139.924051][ T1057] Code: Bad RIP value.
[ 1139.928871][ T1057] RSP: 002b:00007f2b4b08f688 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 1139.937294][ T1057] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 0000000000459829
[ 1139.945676][ T1057] RDX: 0000000000459829 RSI: 00007f2b4b08f6c0 RDI: 000000000000000b
[ 1139.954481][ T1057] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000
[ 1139.962843][ T1057] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f2b4b0906d4
[ 1139.971533][ T1057] R13: 00000000004bfce6 R14: 00000000004d1a38 R15: 00000000ffffffff
[ 1139.979777][ T1057] INFO: lockdep is turned off.
[ 1139.984557][ T1057] NMI backtrace for cpu 0
[ 1139.988933][ T1057] CPU: 0 PID: 1057 Comm: khungtaskd Not tainted 5.3.0-rc4 #73
[ 1139.996380][ T1057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1140.006425][ T1057] Call Trace:
[ 1140.009721][ T1057]  dump_stack+0x1d8/0x2f8
[ 1140.014044][ T1057]  nmi_cpu_backtrace+0xaf/0x1a0
[ 1140.018894][ T1057]  ? nmi_trigger_cpumask_backtrace+0x16d/0x290
[ 1140.025044][ T1057]  ? arch_trigger_cpumask_backtrace+0x20/0x20
[ 1140.031105][ T1057]  nmi_trigger_cpumask_backtrace+0x174/0x290
[ 1140.037082][ T1057]  arch_trigger_cpumask_backtrace+0x10/0x20
[ 1140.042976][ T1057]  trigger_all_cpu_backtrace+0x17/0x20
[ 1140.048435][ T1057]  watchdog+0xbb9/0xbd0
[ 1140.052595][ T1057]  kthread+0x332/0x350
[ 1140.056660][ T1057]  ? hungtask_pm_notify+0x50/0x50
[ 1140.061690][ T1057]  ? kthread_blkcg+0xe0/0xe0
[ 1140.066809][ T1057]  ret_from_fork+0x24/0x30
[ 1140.071309][ T1057] Sending NMI from CPU 0 to CPUs 1:
[ 1140.076732][    C1] NMI backtrace for cpu 1
[ 1140.076736][    C1] CPU: 1 PID: 9650 Comm: syz-executor.0 Not tainted 5.3.0-rc4 #73
[ 1140.076740][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1140.076742][    C1] RIP: 0010:perf_mmap+0x5d5/0x1530
[ 1140.076749][    C1] Code: 04 30 84 c0 0f 85 66 01 00 00 45 8b 3c 24 49 89 dd 4c 8b 75 a0 41 8a 04 1e 84 c0 0f 85 6d 01 00 00 44 89 7d cc 31 ff 44 89 fe <e8> c6 81 e5 ff 45 85 ff 75 21 e8 1c 7e e5 ff 4c 8b 7d c0 e9 d0 00
[ 1140.076751][    C1] RSP: 0018:ffff8880a7cb7b78 EFLAGS: 00000246
[ 1140.076757][    C1] RAX: 1ffff11012c43b00 RBX: dffffc0000000000 RCX: ffffffff818e0622
[ 1140.076760][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1140.076764][    C1] RBP: ffff8880a7cb7c40 R08: dffffc0000000000 R09: ffffed1012c43bb6
[ 1140.076767][    C1] R10: ffffed1012c43bb6 R11: 0000000000000000 R12: ffff88809621dda8
[ 1140.076770][    C1] R13: dffffc0000000000 R14: 1ffff11014f96f81 R15: 0000000000000000
[ 1140.076773][    C1] FS:  00007f2b4b0b1700(0000) GS:ffff8880aeb00000(0000) knlGS:0000000000000000
[ 1140.076776][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1140.076779][    C1] CR2: ffffffffff600400 CR3: 0000000091061000 CR4: 00000000001406e0
[ 1140.076781][    C1] Call Trace:
[ 1140.076783][    C1]  mmap_region+0x17a4/0x1cb0
[ 1140.076785][    C1]  do_mmap+0x9ef/0x1020
[ 1140.076787][    C1]  vm_mmap_pgoff+0x13d/0x1d0
[ 1140.076790][    C1]  ksys_mmap_pgoff+0x46b/0x560
[ 1140.076792][    C1]  __x64_sys_mmap+0x103/0x120
[ 1140.076794][    C1]  do_syscall_64+0xfe/0x140
[ 1140.076797][    C1]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1140.076799][    C1] RIP: 0033:0x459829
[ 1140.076805][    C1] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1140.076808][    C1] RSP: 002b:00007f2b4b0b0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1140.076813][    C1] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000459829
[ 1140.076816][    C1] RDX: 0000000000000000 RSI: 0000000000003000 RDI: 0000000020ffd000
[ 1140.076819][    C1] RBP: 000000000075bf20 R08: 0000000000000003 R09: 0000000000000000
[ 1140.076823][    C1] R10: 0000000000000011 R11: 0000000000000246 R12: 00007f2b4b0b16d4
[ 1140.076826][    C1] R13: 00000000004c5d1b R14: 00000000004da750 R15: 00000000ffffffff
[ 1140.079489][ T1057] Kernel panic - not syncing: hung_task: blocked tasks
[ 1140.309681][ T1057] CPU: 0 PID: 1057 Comm: khungtaskd Not tainted 5.3.0-rc4 #73
[ 1140.317129][ T1057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1140.327174][ T1057] Call Trace:
[ 1140.330459][ T1057]  dump_stack+0x1d8/0x2f8
[ 1140.334780][ T1057]  panic+0x25c/0x799
[ 1140.338664][ T1057]  ? nmi_trigger_cpumask_backtrace+0x21a/0x290
[ 1140.344812][ T1057]  watchdog+0xbcc/0xbd0
[ 1140.348981][ T1057]  kthread+0x332/0x350
[ 1140.353039][ T1057]  ? hungtask_pm_notify+0x50/0x50
[ 1140.358060][ T1057]  ? kthread_blkcg+0xe0/0xe0
[ 1140.362648][ T1057]  ret_from_fork+0x24/0x30
[ 1140.368029][ T1057] Kernel Offset: disabled
[ 1140.372355][ T1057] Rebooting in 86400 seconds..