[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   63.487383][   T26] audit: type=1800 audit(1567781444.538:25): pid=8656 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[   63.509787][   T26] audit: type=1800 audit(1567781444.538:26): pid=8656 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   63.540247][   T26] audit: type=1800 audit(1567781444.548:27): pid=8656 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.1.13' (ECDSA) to the list of known hosts.
syzkaller login: [   73.859810][ T8810] IPVS: ftp: loaded support on port[0] = 21
[   73.914415][ T8810] chnl_net:caif_netlink_parms(): no params data found
[   73.942598][ T8810] bridge0: port 1(bridge_slave_0) entered blocking state
[   73.950189][ T8810] bridge0: port 1(bridge_slave_0) entered disabled state
[   73.958100][ T8810] device bridge_slave_0 entered promiscuous mode
[   73.965941][ T8810] bridge0: port 2(bridge_slave_1) entered blocking state
[   73.973291][ T8810] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.981102][ T8810] device bridge_slave_1 entered promiscuous mode
[   73.997860][ T8810] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   74.008147][ T8810] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   74.026935][ T8810] team0: Port device team_slave_0 added
[   74.033901][ T8810] team0: Port device team_slave_1 added
[   74.108977][ T8810] device hsr_slave_0 entered promiscuous mode
[   74.176584][ T8810] device hsr_slave_1 entered promiscuous mode
[   74.243889][ T8810] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.251154][ T8810] bridge0: port 2(bridge_slave_1) entered forwarding state
[   74.259007][ T8810] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.266049][ T8810] bridge0: port 1(bridge_slave_0) entered forwarding state
[   74.300024][ T8810] 8021q: adding VLAN 0 to HW filter on device bond0
[   74.311271][ T3516] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   74.331740][ T3516] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.340106][ T3516] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.349309][ T3516] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   74.361503][ T8810] 8021q: adding VLAN 0 to HW filter on device team0
[   74.372927][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   74.381702][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.388872][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   74.407224][ T8812] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   74.415694][ T8812] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.422790][ T8812] bridge0: port 2(bridge_slave_1) entered forwarding state
[   74.430854][ T8812] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   74.439875][ T8812] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   74.448955][ T8812] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   74.459984][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   74.471542][ T8810] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   74.483765][ T8810] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   74.491815][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
executing program
[   74.510030][ T8810] 8021q: adding VLAN 0 to HW filter on device batadv0
[   74.546966][ T8819] FAULT_INJECTION: forcing a failure.
[   74.546966][ T8819] name failslab, interval 1, probability 0, space 0, times 1
[   74.559923][ T8819] CPU: 0 PID: 8819 Comm: syz-executor554 Not tainted 5.3.0-rc7+ #0
[   74.567795][ T8819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   74.577832][ T8819] Call Trace:
[   74.581121][ T8819]  dump_stack+0x172/0x1f0
[   74.585436][ T8819]  should_fail.cold+0xa/0x15
[   74.590125][ T8819]  ? fault_create_debugfs_attr+0x180/0x180
[   74.595914][ T8819]  ? ___might_sleep+0x163/0x280
[   74.600764][ T8819]  __should_failslab+0x121/0x190
[   74.605685][ T8819]  should_failslab+0x9/0x14
[   74.610259][ T8819]  kmem_cache_alloc_trace+0x2d3/0x790
[   74.615704][ T8819]  tcf_block_get_ext+0x886/0x16a0
[   74.620728][ T8819]  ? __kmalloc_node+0x3d/0x70
[   74.625397][ T8819]  tcf_block_get+0xb9/0x100
[   74.630346][ T8819]  ? tcf_block_get_ext+0x16a0/0x16a0
[   74.635627][ T8819]  ? walker_check_empty+0x70/0x70
[   74.640656][ T8819]  sfb_init+0x36/0xa7
[   74.644625][ T8819]  ? sfb_change+0xe90/0xe90
[   74.649123][ T8819]  qdisc_create+0x4ee/0x1210
[   74.653717][ T8819]  ? tc_get_qdisc+0xc10/0xc10
[   74.658403][ T8819]  ? __nla_parse+0x43/0x60
[   74.662916][ T8819]  tc_modify_qdisc+0x524/0x1c50
[   74.667855][ T8819]  ? qdisc_create+0x1210/0x1210
[   74.672813][ T8819]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   74.679036][ T8819]  ? qdisc_create+0x1210/0x1210
[   74.683868][ T8819]  rtnetlink_rcv_msg+0x463/0xb00
[   74.689231][ T8819]  ? rtnetlink_put_metrics+0x580/0x580
[   74.694774][ T8819]  ? netlink_deliver_tap+0x22d/0xbf0
[   74.700046][ T8819]  ? find_held_lock+0x35/0x130
[   74.705081][ T8819]  netlink_rcv_skb+0x177/0x450
[   74.709840][ T8819]  ? rtnetlink_put_metrics+0x580/0x580
[   74.715285][ T8819]  ? netlink_ack+0xb30/0xb30
[   74.719877][ T8819]  ? __kasan_check_read+0x11/0x20
[   74.724895][ T8819]  ? netlink_deliver_tap+0x254/0xbf0
[   74.730183][ T8819]  rtnetlink_rcv+0x1d/0x30
[   74.734583][ T8819]  netlink_unicast+0x531/0x710
[   74.739335][ T8819]  ? netlink_attachskb+0x7c0/0x7c0
[   74.744427][ T8819]  ? _copy_from_iter_full+0x25d/0x8a0
[   74.749783][ T8819]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[   74.755487][ T8819]  ? __check_object_size+0x3d/0x437
[   74.760697][ T8819]  netlink_sendmsg+0x8a5/0xd60
[   74.765463][ T8819]  ? netlink_unicast+0x710/0x710
[   74.770392][ T8819]  ? aa_sock_msg_perm.isra.0+0xba/0x170
[   74.775921][ T8819]  ? apparmor_socket_sendmsg+0x2a/0x30
[   74.781378][ T8819]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   74.787608][ T8819]  ? security_socket_sendmsg+0x8d/0xc0
[   74.793572][ T8819]  ? netlink_unicast+0x710/0x710
[   74.798501][ T8819]  sock_sendmsg+0xd7/0x130
[   74.802913][ T8819]  ___sys_sendmsg+0x803/0x920
[   74.807593][ T8819]  ? copy_msghdr_from_user+0x440/0x440
[   74.813039][ T8819]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   74.819280][ T8819]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   74.825591][ T8819]  ? refcount_sub_and_test_checked+0x154/0x200
[   74.831757][ T8819]  ? vfs_write+0x34c/0x5d0
[   74.836160][ T8819]  ? find_held_lock+0x35/0x130
[   74.840909][ T8819]  ? vfs_write+0x34c/0x5d0
[   74.845487][ T8819]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   74.851817][ T8819]  ? __fget_light+0x1a9/0x230
[   74.856491][ T8819]  ? __fdget+0x1b/0x20
[   74.860661][ T8819]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   74.866918][ T8819]  __sys_sendmsg+0x105/0x1d0
[   74.871529][ T8819]  ? __sys_sendmsg_sock+0xd0/0xd0
[   74.876557][ T8819]  ? trace_hardirqs_on_thunk+0x1a/0x20
[   74.882100][ T8819]  ? do_syscall_64+0x26/0x6a0
[   74.886847][ T8819]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   74.893080][ T8819]  ? do_syscall_64+0x26/0x6a0
[   74.897882][ T8819]  __x64_sys_sendmsg+0x78/0xb0
[   74.902631][ T8819]  do_syscall_64+0xfd/0x6a0
[   74.907128][ T8819]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   74.912997][ T8819] RIP: 0033:0x4424f9
[   74.916885][ T8819] Code: e8 9c 07 03 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   74.936839][ T8819] RSP: 002b:00007ffc68eb8e58 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   74.945436][ T8819] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000004424f9
[   74.953392][ T8819] RDX: 0000000000000000 RSI: 0000000020000240 RDI: 0000000000000003
[   74.961350][ T8819] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000001bbbbbb
[   74.969307][ T8819] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff
[   74.977272][ T8819] R13: 0000000000000005 R14: 0000000000000000 R15: 0000000000000000
[   74.990212][ T8819] kasan: CONFIG_KASAN_INLINE enabled
[   74.995507][ T8819] kasan: GPF could be caused by NULL-ptr deref or user memory access
[   75.006656][ T8819] general protection fault: 0000 [#1] PREEMPT SMP KASAN
[   75.013750][ T8819] CPU: 1 PID: 8819 Comm: syz-executor554 Not tainted 5.3.0-rc7+ #0
[   75.021629][ T8819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   75.031674][ T8819] RIP: 0010:qdisc_put+0x25/0x90
[   75.036513][ T8819] Code: 00 00 00 00 00 55 48 89 e5 41 54 49 89 fc 53 e8 a1 f8 bd fb 49 8d 7c 24 10 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 04 02 84 c0 74 04 3c 03 7e 54 41 8b 5c 24 10 31 ff 83 e3 01
[   75.056441][ T8819] RSP: 0018:ffff88809a76f488 EFLAGS: 00010202
[   75.062491][ T8819] RAX: dffffc0000000000 RBX: ffff8880a9376bc0 RCX: ffffffff85b5f8aa
[   75.070439][ T8819] RDX: 0000000000000002 RSI: ffffffff85b47caf RDI: 0000000000000010
[   75.078401][ T8819] RBP: ffff88809a76f498 R08: ffff888084eda3c0 R09: ffffed1015d06cd4
[   75.086347][ T8819] R10: ffffed1015d06cd3 R11: ffff8880ae83669b R12: 0000000000000000
[   75.094305][ T8819] R13: ffff8880a9376bc0 R14: ffff88808126e000 R15: ffff8880a9376bfc
[   75.102256][ T8819] FS:  0000555557052880(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000
[   75.111161][ T8819] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   75.117730][ T8819] CR2: 0000557b7c2860d0 CR3: 00000000924f0000 CR4: 00000000001406e0
[   75.125688][ T8819] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   75.133635][ T8819] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   75.141582][ T8819] Call Trace:
[   75.144855][ T8819]  sfb_destroy+0x61/0x80
[   75.149075][ T8819]  ? sfb_zero_all_buckets+0x20/0x20
[   75.154249][ T8819]  qdisc_create+0xbc6/0x1210
[   75.160513][ T8819]  ? tc_get_qdisc+0xc10/0xc10
[   75.165172][ T8819]  ? __nla_parse+0x43/0x60
[   75.169569][ T8819]  tc_modify_qdisc+0x524/0x1c50
[   75.174399][ T8819]  ? qdisc_create+0x1210/0x1210
[   75.179247][ T8819]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   75.185497][ T8819]  ? qdisc_create+0x1210/0x1210
[   75.190342][ T8819]  rtnetlink_rcv_msg+0x463/0xb00
[   75.195295][ T8819]  ? rtnetlink_put_metrics+0x580/0x580
[   75.200854][ T8819]  ? netlink_deliver_tap+0x22d/0xbf0
[   75.206254][ T8819]  ? find_held_lock+0x35/0x130
[   75.211021][ T8819]  netlink_rcv_skb+0x177/0x450
[   75.215790][ T8819]  ? rtnetlink_put_metrics+0x580/0x580
[   75.221230][ T8819]  ? netlink_ack+0xb30/0xb30
[   75.225831][ T8819]  ? __kasan_check_read+0x11/0x20
[   75.230844][ T8819]  ? netlink_deliver_tap+0x254/0xbf0
[   75.236156][ T8819]  rtnetlink_rcv+0x1d/0x30
[   75.240573][ T8819]  netlink_unicast+0x531/0x710
[   75.245335][ T8819]  ? netlink_attachskb+0x7c0/0x7c0
[   75.250440][ T8819]  ? _copy_from_iter_full+0x25d/0x8a0
[   75.255792][ T8819]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[   75.261503][ T8819]  ? __check_object_size+0x3d/0x437
[   75.266680][ T8819]  netlink_sendmsg+0x8a5/0xd60
[   75.271422][ T8819]  ? netlink_unicast+0x710/0x710
[   75.276441][ T8819]  ? aa_sock_msg_perm.isra.0+0xba/0x170
[   75.284154][ T8819]  ? apparmor_socket_sendmsg+0x2a/0x30
[   75.289595][ T8819]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   75.295816][ T8819]  ? security_socket_sendmsg+0x8d/0xc0
[   75.301275][ T8819]  ? netlink_unicast+0x710/0x710
[   75.306209][ T8819]  sock_sendmsg+0xd7/0x130
[   75.310619][ T8819]  ___sys_sendmsg+0x803/0x920
[   75.315279][ T8819]  ? copy_msghdr_from_user+0x440/0x440
[   75.320732][ T8819]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   75.327589][ T8819]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   75.333814][ T8819]  ? refcount_sub_and_test_checked+0x154/0x200
[   75.339946][ T8819]  ? vfs_write+0x34c/0x5d0
[   75.344341][ T8819]  ? find_held_lock+0x35/0x130
[   75.349103][ T8819]  ? vfs_write+0x34c/0x5d0
[   75.353512][ T8819]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   75.359745][ T8819]  ? __fget_light+0x1a9/0x230
[   75.364422][ T8819]  ? __fdget+0x1b/0x20
[   75.368481][ T8819]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   75.374978][ T8819]  __sys_sendmsg+0x105/0x1d0
[   75.379552][ T8819]  ? __sys_sendmsg_sock+0xd0/0xd0
[   75.384565][ T8819]  ? trace_hardirqs_on_thunk+0x1a/0x20
[   75.390006][ T8819]  ? do_syscall_64+0x26/0x6a0
[   75.394661][ T8819]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   75.400878][ T8819]  ? do_syscall_64+0x26/0x6a0
[   75.405632][ T8819]  __x64_sys_sendmsg+0x78/0xb0
[   75.410373][ T8819]  do_syscall_64+0xfd/0x6a0
[   75.414851][ T8819]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   75.420718][ T8819] RIP: 0033:0x4424f9
[   75.424592][ T8819] Code: e8 9c 07 03 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   75.444544][ T8819] RSP: 002b:00007ffc68eb8e58 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   75.452942][ T8819] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000004424f9
[   75.460913][ T8819] RDX: 0000000000000000 RSI: 0000000020000240 RDI: 0000000000000003
[   75.469208][ T8819] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000001bbbbbb
[   75.477156][ T8819] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff
[   75.485103][ T8819] R13: 0000000000000005 R14: 0000000000000000 R15: 0000000000000000
[   75.493180][ T8819] Modules linked in:
[   75.499681][ T8819] ---[ end trace 8e7179d1f8ac7be9 ]---
[   75.505702][ T8819] RIP: 0010:qdisc_put+0x25/0x90
[   75.510603][ T8819] Code: 00 00 00 00 00 55 48 89 e5 41 54 49 89 fc 53 e8 a1 f8 bd fb 49 8d 7c 24 10 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 04 02 84 c0 74 04 3c 03 7e 54 41 8b 5c 24 10 31 ff 83 e3 01
[   75.530340][ T8819] RSP: 0018:ffff88809a76f488 EFLAGS: 00010202
[   75.536831][ T8819] RAX: dffffc0000000000 RBX: ffff8880a9376bc0 RCX: ffffffff85b5f8aa
[   75.544805][ T8819] RDX: 0000000000000002 RSI: ffffffff85b47caf RDI: 0000000000000010
[   75.552826][ T8819] RBP: ffff88809a76f498 R08: ffff888084eda3c0 R09: ffffed1015d06cd4
[   75.561155][ T8819] R10: ffffed1015d06cd3 R11: ffff8880ae83669b R12: 0000000000000000
[   75.569472][ T8819] R13: ffff8880a9376bc0 R14: ffff88808126e000 R15: ffff8880a9376bfc
[   75.577485][ T8819] FS:  0000555557052880(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000
[   75.586619][ T8819] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   75.593249][ T8819] CR2: 0000557b7c2860d0 CR3: 00000000924f0000 CR4: 00000000001406e0
[   75.601252][ T8819] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   75.609330][ T8819] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   75.617340][ T8819] Kernel panic - not syncing: Fatal exception
[   75.625025][ T8819] Kernel Offset: disabled
[   75.629372][ T8819] Rebooting in 86400 seconds..