[   68.187967][   T27] audit: type=1800 audit(1564458723.976:27): pid=10119 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[   68.208512][   T27] audit: type=1800 audit(1564458723.986:28): pid=10119 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   68.767581][   T27] audit: type=1800 audit(1564458724.626:29): pid=10119 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
[   68.788342][   T27] audit: type=1800 audit(1564458724.626:30): pid=10119 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.79' (ECDSA) to the list of known hosts.
2019/07/30 03:52:14 parsed 1 programs
2019/07/30 03:52:16 executed programs: 0
syzkaller login: [   80.745035][T10290] IPVS: ftp: loaded support on port[0] = 21
[   80.795000][T10290] chnl_net:caif_netlink_parms(): no params data found
[   80.819186][T10290] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.826438][T10290] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.833978][T10290] device bridge_slave_0 entered promiscuous mode
[   80.841331][T10290] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.848488][T10290] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.856414][T10290] device bridge_slave_1 entered promiscuous mode
[   80.870509][T10290] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   80.881020][T10290] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   80.897452][T10290] team0: Port device team_slave_0 added
[   80.904566][T10290] team0: Port device team_slave_1 added
[   80.987285][T10290] device hsr_slave_0 entered promiscuous mode
[   81.056102][T10290] device hsr_slave_1 entered promiscuous mode
[   81.131121][T10290] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.138228][T10290] bridge0: port 2(bridge_slave_1) entered forwarding state
[   81.145499][T10290] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.152602][T10290] bridge0: port 1(bridge_slave_0) entered forwarding state
[   81.179175][T10290] 8021q: adding VLAN 0 to HW filter on device bond0
[   81.190060][ T2991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   81.198685][ T2991] bridge0: port 1(bridge_slave_0) entered disabled state
[   81.206574][ T2991] bridge0: port 2(bridge_slave_1) entered disabled state
[   81.214154][ T2991] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   81.224321][T10290] 8021q: adding VLAN 0 to HW filter on device team0
[   81.233634][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   81.242049][   T22] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.249128][   T22] bridge0: port 1(bridge_slave_0) entered forwarding state
[   81.258906][ T2991] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   81.267519][ T2991] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.274543][ T2991] bridge0: port 2(bridge_slave_1) entered forwarding state
[   81.293549][T10290] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   81.304045][T10290] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   81.317254][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   81.326155][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   81.334454][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   81.342941][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   81.351192][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   81.358774][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   81.373655][T10290] 8021q: adding VLAN 0 to HW filter on device batadv0
[   81.476594][T10301] kasan: CONFIG_KASAN_INLINE enabled
[   81.481987][T10301] kasan: GPF could be caused by NULL-ptr deref or user memory access
[   81.492066][T10301] general protection fault: 0000 [#1] PREEMPT SMP KASAN
[   81.498997][T10301] CPU: 0 PID: 10301 Comm: syz-executor.0 Not tainted 5.3.0-rc2-next-20190729 #54
[   81.508117][T10301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   81.518272][T10301] RIP: 0010:tls_sk_proto_close+0x90/0x4a0
[   81.523979][T10301] Code: 3c 02 00 0f 85 dd 03 00 00 49 8b 84 24 c0 02 00 00 4d 8d 75 14 4c 89 f2 48 c1 ea 03 48 89 45 b8 48 b8 00 00 00 00 00 fc ff df <0f> b6 04 02 4c 89 f2 83 e2 07 38 d0 7f 08 84 c0 0f 85 67 03 00 00
[   81.543566][T10301] RSP: 0018:ffff88808ebdfc70 EFLAGS: 00010203
[   81.549616][T10301] RAX: dffffc0000000000 RBX: 00000000fffffff0 RCX: ffffffff862d3f3c
[   81.557587][T10301] RDX: 0000000000000002 RSI: ffffffff862d3ced RDI: ffff88808fb6af00
[   81.565538][T10301] RBP: ffff88808ebdfcb8 R08: ffff888096ea2100 R09: ffffed1011f6d59a
[   81.573487][T10301] R10: ffffed1011f6d599 R11: ffff88808fb6accb R12: ffff88808fb6ac40
[   81.581435][T10301] R13: 0000000000000000 R14: 0000000000000014 R15: 0000000000000001
[   81.589386][T10301] FS:  00005555567ab940(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000
[   81.598295][T10301] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   81.604860][T10301] CR2: 0000000000780000 CR3: 00000000a4a0f000 CR4: 00000000001406f0
[   81.612824][T10301] Call Trace:
[   81.616105][T10301]  ? _raw_spin_unlock_bh+0x31/0x40
[   81.621199][T10301]  tls_sk_proto_close+0x2a9/0x4a0
[   81.626207][T10301]  ? _raw_spin_unlock+0x20/0x50
[   81.631039][T10301]  ? tls_sk_proto_unhash+0x3f0/0x3f0
[   81.636300][T10301]  tcp_bpf_close+0x17c/0x390
[   81.640870][T10301]  inet_release+0xed/0x200
[   81.645271][T10301]  inet6_release+0x53/0x80
[   81.649754][T10301]  __sock_release+0xce/0x280
[   81.654321][T10301]  sock_close+0x1e/0x30
[   81.658455][T10301]  __fput+0x2ff/0x890
[   81.662419][T10301]  ? __sock_release+0x280/0x280
[   81.667250][T10301]  ____fput+0x16/0x20
[   81.671214][T10301]  task_work_run+0x145/0x1c0
[   81.675787][T10301]  exit_to_usermode_loop+0x316/0x380
[   81.681055][T10301]  do_syscall_64+0x65f/0x760
[   81.685640][T10301]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   81.691515][T10301] RIP: 0033:0x4134f0
[   81.695406][T10301] Code: 01 f0 ff ff 0f 83 30 1b 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 3d 9d 2d 66 00 00 75 14 b8 03 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 04 1b 00 00 c3 48 83 ec 08 e8 0a fc ff ff
[   81.714996][T10301] RSP: 002b:00007fff7333dd38 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[   81.723392][T10301] RAX: 0000000000000000 RBX: 0000000000000006 RCX: 00000000004134f0
[   81.731349][T10301] RDX: 0000001b2ed20000 RSI: 0000000000000000 RDI: 0000000000000005
[   81.739367][T10301] RBP: 0000000000000001 R08: 0000000000000000 R09: ffffffffffffffff
[   81.747327][T10301] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000075bf20
[   81.755279][T10301] R13: 0000000000000003 R14: 0000000000761178 R15: ffffffffffffffff
[   81.763237][T10301] Modules linked in:
[   81.768905][T10301] ---[ end trace 26716b142d527168 ]---
[   81.774389][T10301] RIP: 0010:tls_sk_proto_close+0x90/0x4a0
[   81.780184][T10301] Code: 3c 02 00 0f 85 dd 03 00 00 49 8b 84 24 c0 02 00 00 4d 8d 75 14 4c 89 f2 48 c1 ea 03 48 89 45 b8 48 b8 00 00 00 00 00 fc ff df <0f> b6 04 02 4c 89 f2 83 e2 07 38 d0 7f 08 84 c0 0f 85 67 03 00 00
[   81.799857][T10301] RSP: 0018:ffff88808ebdfc70 EFLAGS: 00010203
[   81.806020][T10301] RAX: dffffc0000000000 RBX: 00000000fffffff0 RCX: ffffffff862d3f3c
[   81.814052][T10301] RDX: 0000000000000002 RSI: ffffffff862d3ced RDI: ffff88808fb6af00
[   81.822665][T10301] RBP: ffff88808ebdfcb8 R08: ffff888096ea2100 R09: ffffed1011f6d59a
[   81.830774][T10301] R10: ffffed1011f6d599 R11: ffff88808fb6accb R12: ffff88808fb6ac40
[   81.838924][T10301] R13: 0000000000000000 R14: 0000000000000014 R15: 0000000000000001
[   81.846975][T10301] FS:  00005555567ab940(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000
[   81.855988][T10301] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   81.862588][T10301] CR2: 0000000000780000 CR3: 00000000a4a0f000 CR4: 00000000001406f0
[   81.870602][T10301] Kernel panic - not syncing: Fatal exception
[   81.877646][T10301] Kernel Offset: disabled
[   81.889308][T10301] Rebooting in 86400 seconds..