[   40.261426][   T23] audit: type=1800 audit(1575145698.274:27): pid=7866 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[   40.290197][   T23] audit: type=1800 audit(1575145698.274:28): pid=7866 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   40.841242][   T23] audit: type=1800 audit(1575145698.934:29): pid=7866 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
[   40.860787][   T23] audit: type=1800 audit(1575145698.934:30): pid=7866 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.10.33' (ECDSA) to the list of known hosts.
syzkaller login: [  275.239929][ T8025] IPVS: ftp: loaded support on port[0] = 21
[  275.241042][ T8027] IPVS: ftp: loaded support on port[0] = 21
[  275.254469][ T8026] IPVS: ftp: loaded support on port[0] = 21
[  275.255420][ T8024] IPVS: ftp: loaded support on port[0] = 21
[  275.262062][ T8028] IPVS: ftp: loaded support on port[0] = 21
[  275.285034][ T8023] IPVS: ftp: loaded support on port[0] = 21
executing program
executing program
executing program
executing program
executing program
executing program
[  275.576899][ T8032] input: s as /devices/virtual/input/input5
[  275.584859][ T8031] input: s as /devices/virtual/input/input6
[  275.598004][ T8033] input: s as /devices/virtual/input/input8
[  275.607121][ T8030] input: s as /devices/virtual/input/input7
[  275.621416][ T8034] input: s as /devices/virtual/input/input9
[  275.629080][ T8036] input: s as /devices/virtual/input/input10
executing program
executing program
executing program
executing program
[  275.729703][ T8046] input: s as /devices/virtual/input/input11
[  275.756354][ T8049] input: s as /devices/virtual/input/input12
executing program
[  275.806645][ T8053] input: s as /devices/virtual/input/input13
[  275.830364][ T8056] input: s as /devices/virtual/input/input14
executing program
[  275.865602][ T8060] input: s as /devices/virtual/input/input15
executing program
[  275.906438][ T8066] input: s as /devices/virtual/input/input16
executing program
[  275.949495][ T8070] input: s as /devices/virtual/input/input17
executing program
[  275.995181][ T8074] input: s as /devices/virtual/input/input18
executing program
[  276.063272][ T8076] input: s as /devices/virtual/input/input19
executing program
[  276.110223][ T8077] input: s as /devices/virtual/input/input20
executing program
[  276.169973][ T8080] input: s as /devices/virtual/input/input21
executing program
executing program
[  276.241319][ T8082] input: s as /devices/virtual/input/input22
[  276.253412][ T8083] input: s as /devices/virtual/input/input23
executing program
[  276.299357][ T8088] input: s as /devices/virtual/input/input24
executing program
executing program
[  276.349091][ T8092] input: s as /devices/virtual/input/input25
[  276.385669][ T8096] input: s as /devices/virtual/input/input26
executing program
[  276.426088][ T8100] input: s as /devices/virtual/input/input27
executing program
[  276.479816][ T8104] input: s as /devices/virtual/input/input28
executing program
executing program
[  276.541045][ T8105] input: s as /devices/virtual/input/input29
[  276.579656][ T8107] input: s as /devices/virtual/input/input30
executing program
[  276.608986][ T8109] input: s as /devices/virtual/input/input31
executing program
executing program
[  276.669475][ T8114] input: s as /devices/virtual/input/input32
executing program
[  276.729418][ T8115] input: s as /devices/virtual/input/input33
[  276.739648][ T8117] input: s as /devices/virtual/input/input34
executing program
[  276.778251][ T8119] input: s as /devices/virtual/input/input35
executing program
executing program
[  276.822118][ T8124] input: s as /devices/virtual/input/input36
[  276.861964][ T8127] input: s as /devices/virtual/input/input37
executing program
[  276.904878][ T8132] input: s as /devices/virtual/input/input38
executing program
[  276.945803][ T8136] input: s as /devices/virtual/input/input39
executing program
[  276.990636][ T8140] input: s as /devices/virtual/input/input40
executing program
[  277.051389][ T8142] input: s as /devices/virtual/input/input41
executing program
[  277.100104][ T8144] input: s as /devices/virtual/input/input42
executing program
[  277.141494][ T8145] input: s as /devices/virtual/input/input43
executing program
[  277.185193][ T8150] input: s as /devices/virtual/input/input44
executing program
executing program
[  277.258313][ T8154] input: s as /devices/virtual/input/input45
[  277.287938][ T8156] input: s as /devices/virtual/input/input46
executing program
[  277.329846][ T8160] input: s as /devices/virtual/input/input47
executing program
executing program
[  277.376132][ T8164] input: s as /devices/virtual/input/input48
[  277.414909][ T8167] input: s as /devices/virtual/input/input49
executing program
executing program
[  277.456483][ T8172] input: s as /devices/virtual/input/input50
executing program
[  277.539222][ T8176] input: s as /devices/virtual/input/input51
[  277.561508][ T8179] input: s as /devices/virtual/input/input52
[  277.573085][ T8181] input: s as /devices/virtual/input/input53
executing program
executing program
[  277.672717][ T8184] input: s as /devices/virtual/input/input54
executing program
[  277.730365][ T8186] input: s as /devices/virtual/input/input55
executing program
executing program
[  277.798546][ T8188] input: s as /devices/virtual/input/input56
[  277.830086][ T8189] input: s as /devices/virtual/input/input57
executing program
[  277.889694][ T8191] input: s as /devices/virtual/input/input58
executing program
[  277.959463][ T8193] input: s as /devices/virtual/input/input59
executing program
[  278.009853][ T8195] input: s as /devices/virtual/input/input60
executing program
executing program
[  278.054742][ T8198] input: s as /devices/virtual/input/input61
executing program
executing program
executing program
[  278.150003][ T8202] input: s as /devices/virtual/input/input62
[  278.160055][ T8205] input: s as /devices/virtual/input/input63
[  278.189373][ T8206] input: s as /devices/virtual/input/input64
executing program
[  278.250325][ T8209] input: s as /devices/virtual/input/input65
[  278.274966][ T8211] input: s as /devices/virtual/input/input66
executing program
[  278.311692][ T8212] input: s as /devices/virtual/input/input67
executing program
executing program
[  278.369940][ T8215] input: s as /devices/virtual/input/input68
[  278.405747][ T8217] input: s as /devices/virtual/input/input69
executing program
executing program
[  278.449687][ T8222] input: s as /devices/virtual/input/input70
[  278.489212][ T8226] input: s as /devices/virtual/input/input71
executing program
[  278.529900][ T8230] input: s as /devices/virtual/input/input72
executing program
[  278.573814][ T8234] input: s as /devices/virtual/input/input73
executing program
[  278.616639][ T8238] input: s as /devices/virtual/input/input74
executing program
executing program
executing program
[  278.657826][ T8242] input: s as /devices/virtual/input/input75
executing program
[  278.728248][ T8245] input: s as /devices/virtual/input/input76
[  278.748967][ T8248] input: s as /devices/virtual/input/input77
executing program
[  278.809982][ T8251] input: s as /devices/virtual/input/input78
[  278.824395][ T8257] input: s as /devices/virtual/input/input79
executing program
executing program
[  278.861767][ T8258] input: s as /devices/virtual/input/input80
executing program
[  278.940837][ T8265] input: s as /devices/virtual/input/input81
[  278.956930][ T8266] ------------[ cut here ]------------
[  278.962640][ T8266] refcount_t: addition on 0; use-after-free.
[  278.963004][ T8266] WARNING: CPU: 1 PID: 8266 at lib/refcount.c:25 refcount_warn_saturate+0x147/0x1b0
[  278.978130][ T8266] Kernel panic - not syncing: panic_on_warn set ...
[  278.984694][ T8266] CPU: 1 PID: 8266 Comm: syz-executor922 Not tainted 5.4.0-syzkaller #0
[  278.992988][ T8266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  279.003107][ T8266] Call Trace:
[  279.006420][ T8266]  dump_stack+0x1fb/0x318
[  279.010766][ T8266]  panic+0x264/0x7a9
[  279.014636][ T8266]  ? __warn+0x105/0x210
[  279.018772][ T8266]  ? refcount_warn_saturate+0x147/0x1b0
[  279.024311][ T8266]  __warn+0x20e/0x210
[  279.028292][ T8266]  ? refcount_warn_saturate+0x147/0x1b0
[  279.033899][ T8266]  report_bug+0x1b6/0x2f0
[  279.038200][ T8266]  ? refcount_warn_saturate+0x147/0x1b0
[  279.043774][ T8266]  do_error_trap+0xd7/0x440
[  279.048253][ T8266]  do_invalid_op+0x36/0x40
[  279.052658][ T8266]  ? refcount_warn_saturate+0x147/0x1b0
[  279.058179][ T8266]  invalid_op+0x23/0x30
[  279.062307][ T8266] RIP: 0010:refcount_warn_saturate+0x147/0x1b0
[  279.068440][ T8266] Code: c7 11 65 c8 88 31 c0 e8 37 3c bb fd 0f 0b eb a1 e8 de 22 e9 fd c6 05 25 54 b2 05 01 48 c7 c7 48 65 c8 88 31 c0 e8 19 3c bb fd <0f> 0b eb 83 e8 c0 22 e9 fd c6 05 08 54 b2 05 01 48 c7 c7 74 65 c8
[  279.088026][ T8266] RSP: 0018:ffff88808a52f998 EFLAGS: 00010246
[  279.094064][ T8266] RAX: 7079bd3142f4ac00 RBX: 0000000000000002 RCX: ffff888099424340
[  279.102008][ T8266] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  279.109953][ T8266] RBP: ffff88808a52f9a8 R08: ffffffff815fa274 R09: fffffbfff13c7f29
[  279.117899][ T8266] R10: fffffbfff13c7f29 R11: 0000000000000000 R12: dffffc0000000000
[  279.125857][ T8266] R13: ffff8880a01ea628 R14: 0000000000000002 R15: ffff8880a01ea628
[  279.133918][ T8266]  ? vprintk_emit+0x2d4/0x3a0
[  279.138583][ T8266]  ? refcount_warn_saturate+0x147/0x1b0
[  279.144106][ T8266]  kobject_get+0xfb/0x120
[  279.148474][ T8266]  chrdev_open+0x17e/0x590
[  279.152900][ T8266]  ? security_file_open+0x236/0x2f0
[  279.158073][ T8266]  ? cd_forget+0x160/0x160
[  279.162481][ T8266]  do_dentry_open+0x740/0x10c0
[  279.167236][ T8266]  vfs_open+0x73/0x80
[  279.171191][ T8266]  path_openat+0x1397/0x4420
[  279.175786][ T8266]  do_filp_open+0x192/0x3d0
[  279.180278][ T8266]  do_sys_open+0x29f/0x560
[  279.184800][ T8266]  __x64_sys_open+0x87/0x90
[  279.189324][ T8266]  do_syscall_64+0xf7/0x1c0
[  279.193815][ T8266]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  279.199686][ T8266] RIP: 0033:0x4033f0
[  279.203559][ T8266] Code: 48 83 c4 08 48 3d 01 f0 ff ff 0f 83 3a 0e 00 00 c3 66 0f 1f 84 00 00 00 00 00 83 3d 5d 09 2e 00 00 75 14 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 14 0e 00 00 c3 48 83 ec 08 e8 7a 03 00 00
[  279.223141][ T8266] RSP: 002b:00007ffe74514048 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  279.231525][ T8266] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000004033f0
[  279.239483][ T8266] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007ffe74514060
[  279.247436][ T8266] RBP: 0000000000000000 R08: 000000000000000f R09: 0000000000000004
[  279.255422][ T8266] R10: 0000000000000075 R11: 0000000000000246 R12: 000000000000000d
[  279.263389][ T8266] R13: 0000000000000003 R14: 0000000000000004 R15: 00007ffe74514760
[  279.272991][ T8266] Kernel Offset: disabled
[  279.277405][ T8266] Rebooting in 86400 seconds..