INIT: Entering runlevel: 2

[info] Using makefile-style concurrent boot in runlevel 2.
[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.38' (ECDSA) to the list of known hosts.
2018/04/23 20:39:28 parsed 1 programs
2018/04/23 20:39:28 executed programs: 0
syzkaller login: [   23.712866] IPVS: Creating netns size=2536 id=1
[   23.745371] IPVS: Creating netns size=2536 id=2
[   23.780479] IPVS: Creating netns size=2536 id=3
[   23.818588] IPVS: Creating netns size=2536 id=4
[   23.841942] IPVS: Creating netns size=2536 id=5
[   23.867839] IPVS: Creating netns size=2536 id=6
[   23.896132] IPVS: Creating netns size=2536 id=7
[   23.930066] IPVS: Creating netns size=2536 id=8
[   24.461820] ==================================================================
[   24.469261] BUG: KASAN: use-after-free in disk_unblock_events+0x51/0x60
[   24.476005] Read of size 8 at addr ffff8801d87a4960 by task blkid/3962
[   24.482658] 
[   24.484285] CPU: 1 PID: 3962 Comm: blkid Not tainted 4.9.95-g142d4b5 #4
[   24.491031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   24.500374]  ffff8801d7b476d8 ffffffff81eb0f89 ffffea000761e800 ffff8801d87a4960
[   24.508398]  0000000000000000 ffff8801d87a4960 0000000000000000 ffff8801d7b47710
[   24.516424]  ffffffff815653cb ffff8801d87a4960 0000000000000008 0000000000000000
[   24.524463] Call Trace:
[   24.527035]  [<ffffffff81eb0f89>] dump_stack+0xc1/0x128
[   24.532402]  [<ffffffff815653cb>] print_address_description+0x6c/0x234
[   24.539072]  [<ffffffff815657d5>] kasan_report.cold.6+0x242/0x2fe
[   24.545297]  [<ffffffff81e5cbf1>] ? disk_unblock_events+0x51/0x60
[   24.551518]  [<ffffffff81539454>] __asan_report_load8_noabort+0x14/0x20
[   24.558268]  [<ffffffff81e5cbf1>] disk_unblock_events+0x51/0x60
[   24.564320]  [<ffffffff8162efa6>] __blkdev_get+0x6b6/0xd60
[   24.569931]  [<ffffffff8162e8f0>] ? __blkdev_put+0x840/0x840
[   24.575728]  [<ffffffff8164afa4>] ? fsnotify+0x114/0x1100
[   24.581241]  [<ffffffff81631eea>] blkdev_get+0x2da/0x920
[   24.587184]  [<ffffffff81631c10>] ? bd_may_claim+0xd0/0xd0
[   24.592781]  [<ffffffff81630a17>] ? bd_acquire+0x27/0x250
[   24.598303]  [<ffffffff81630a78>] ? bd_acquire+0x88/0x250
[   24.603818]  [<ffffffff839f294c>] ? _raw_spin_unlock+0x2c/0x50
[   24.609762]  [<ffffffff81632745>] blkdev_open+0x1a5/0x250
[   24.615281]  [<ffffffff81567543>] do_dentry_open+0x703/0xc80
[   24.621052]  [<ffffffff816325a0>] ? blkdev_get_by_dev+0x70/0x70
[   24.627096]  [<ffffffff8156ad2c>] vfs_open+0x11c/0x210
[   24.632355]  [<ffffffff81591b5f>] ? may_open.isra.57+0x14f/0x2a0
[   24.638483]  [<ffffffff815a1e68>] path_openat+0x758/0x3590
[   24.644082]  [<ffffffff81538449>] ? save_stack+0xa9/0xd0
[   24.649516]  [<ffffffff815a1710>] ? path_lookupat.isra.41+0x410/0x410
[   24.656071]  [<ffffffff8122e3c2>] ? __lock_is_held+0xa2/0xf0
[   24.661843]  [<ffffffff815a8f67>] do_filp_open+0x197/0x270
[   24.667441]  [<ffffffff815a8dd0>] ? may_open_dev+0xe0/0xe0
[   24.673042]  [<ffffffff839f294c>] ? _raw_spin_unlock+0x2c/0x50
[   24.678997]  [<ffffffff815d47e7>] ? __alloc_fd+0x1d7/0x4a0
[   24.684593]  [<ffffffff8156b73d>] do_sys_open+0x30d/0x5c0
[   24.690114]  [<ffffffff8156b430>] ? filp_open+0x70/0x70
[   24.695462]  [<ffffffff8122a46a>] ? up_read+0x1a/0x40
[   24.700627]  [<ffffffff810d9593>] ? __do_page_fault+0x183/0xd50
[   24.706669]  [<ffffffff8156ba1d>] SyS_open+0x2d/0x40
[   24.711754]  [<ffffffff8156b9f0>] ? do_sys_open+0x5c0/0x5c0
[   24.717439]  [<ffffffff81006316>] do_syscall_64+0x1a6/0x490
[   24.723124]  [<ffffffff839f3313>] entry_SYSCALL_64_after_swapgs+0x5d/0xdb
[   24.730021] 
[   24.731621] Allocated by task 3789:
[   24.735233]  save_stack_trace+0x16/0x20
[   24.739181]  save_stack+0x43/0xd0
[   24.742611]  kasan_kmalloc+0xc7/0xe0
[   24.746306]  kmem_cache_alloc_trace+0xfd/0x2b0
[   24.750863]  alloc_disk_node+0x54/0x3a0
[   24.754810]  alloc_disk+0x18/0x20
[   24.758235]  loop_add+0x33b/0x770
[   24.761661]  loop_probe+0x14f/0x180
[   24.765262]  kobj_lookup+0x223/0x410
[   24.768948]  get_gendisk+0x39/0x2d0
[   24.772552]  __blkdev_get+0x351/0xd60
[   24.776327]  blkdev_get+0x2da/0x920
[   24.779932]  blkdev_open+0x1a5/0x250
[   24.783617]  do_dentry_open+0x703/0xc80
[   24.787663]  vfs_open+0x11c/0x210
[   24.791092]  path_openat+0x758/0x3590
[   24.794867]  do_filp_open+0x197/0x270
[   24.798637]  do_sys_open+0x30d/0x5c0
[   24.802322]  SyS_open+0x2d/0x40
[   24.805575]  do_syscall_64+0x1a6/0x490
[   24.809437]  entry_SYSCALL_64_after_swapgs+0x5d/0xdb
[   24.814519] 
[   24.816119] Freed by task 3962:
[   24.819373]  save_stack_trace+0x16/0x20
[   24.823318]  save_stack+0x43/0xd0
[   24.826753]  kasan_slab_free+0x72/0xc0
[   24.830612]  kfree+0xfb/0x310
[   24.833692]  disk_release+0x259/0x330
[   24.837466]  device_release+0x7e/0x220
[   24.841325]  kobject_release+0x103/0x1b0
[   24.845358]  kobject_put+0x6d/0xd0
[   24.848870]  put_disk+0x23/0x30
[   24.852123]  __blkdev_get+0x616/0xd60
[   24.855909]  blkdev_get+0x2da/0x920
[   24.859509]  blkdev_open+0x1a5/0x250
[   24.863196]  do_dentry_open+0x703/0xc80
[   24.867144]  vfs_open+0x11c/0x210
[   24.870570]  path_openat+0x758/0x3590
[   24.874353]  do_filp_open+0x197/0x270
[   24.878133]  do_sys_open+0x30d/0x5c0
[   24.881818]  SyS_open+0x2d/0x40
[   24.885075]  do_syscall_64+0x1a6/0x490
[   24.888949]  entry_SYSCALL_64_after_swapgs+0x5d/0xdb
[   24.894030] 
[   24.895632] The buggy address belongs to the object at ffff8801d87a4400
[   24.895632]  which belongs to the cache kmalloc-2048 of size 2048
[   24.908436] The buggy address is located 1376 bytes inside of
[   24.908436]  2048-byte region [ffff8801d87a4400, ffff8801d87a4c00)
[   24.920984] The buggy address belongs to the page:
[   24.925890] page:ffffea000761e800 count:1 mapcount:0 mapping:          (null) index:0x0 compound_mapcount: 0
[   24.936125] flags: 0x8000000000004080(slab|head)
[   24.940858] page dumped because: kasan: bad access detected
[   24.946541] 
[   24.948142] Memory state around the buggy address:
[   24.953048]  ffff8801d87a4800: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   24.960391]  ffff8801d87a4880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   24.967727] >ffff8801d87a4900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   24.975069]                                                        ^
[   24.981537]  ffff8801d87a4980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   24.988878]  ffff8801d87a4a00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   24.996220] ==================================================================
[   25.003560] Disabling lock debugging due to kernel taint
[   25.011278] Kernel panic - not syncing: panic_on_warn set ...
[   25.011278] 
[   25.018659] CPU: 1 PID: 3962 Comm: blkid Tainted: G    B           4.9.95-g142d4b5 #4
[   25.026614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   25.035963]  ffff8801d7b47638 ffffffff81eb0f89 ffffffff841c4735 00000000ffffffff
[   25.044025]  0000000000000000 0000000000000001 0000000000000000 ffff8801d7b476f8
[   25.052109]  ffffffff8141f945 0000000041b58ab3 ffffffff841b7e38 ffffffff8141f786
[   25.060164] Call Trace:
[   25.062755]  [<ffffffff81eb0f89>] dump_stack+0xc1/0x128
[   25.068126]  [<ffffffff8141f945>] panic+0x1bf/0x3bc
[   25.073139]  [<ffffffff8141f786>] ? add_taint.cold.6+0x16/0x16
[   25.079107]  [<ffffffff81003066>] ? ___preempt_schedule+0x16/0x18
[   25.085339]  [<ffffffff815652e8>] kasan_end_report+0x47/0x4f
[   25.091134]  [<ffffffff81565609>] kasan_report.cold.6+0x76/0x2fe
[   25.097277]  [<ffffffff81e5cbf1>] ? disk_unblock_events+0x51/0x60
[   25.103504]  [<ffffffff81539454>] __asan_report_load8_noabort+0x14/0x20
[   25.110260]  [<ffffffff81e5cbf1>] disk_unblock_events+0x51/0x60
[   25.116317]  [<ffffffff8162efa6>] __blkdev_get+0x6b6/0xd60
[   25.121939]  [<ffffffff8162e8f0>] ? __blkdev_put+0x840/0x840
[   25.127732]  [<ffffffff8164afa4>] ? fsnotify+0x114/0x1100
[   25.133261]  [<ffffffff81631eea>] blkdev_get+0x2da/0x920
[   25.138714]  [<ffffffff81631c10>] ? bd_may_claim+0xd0/0xd0
[   25.144342]  [<ffffffff81630a17>] ? bd_acquire+0x27/0x250
[   25.149873]  [<ffffffff81630a78>] ? bd_acquire+0x88/0x250
[   25.155402]  [<ffffffff839f294c>] ? _raw_spin_unlock+0x2c/0x50
[   25.161369]  [<ffffffff81632745>] blkdev_open+0x1a5/0x250
[   25.166902]  [<ffffffff81567543>] do_dentry_open+0x703/0xc80
[   25.172694]  [<ffffffff816325a0>] ? blkdev_get_by_dev+0x70/0x70
[   25.178743]  [<ffffffff8156ad2c>] vfs_open+0x11c/0x210
[   25.184017]  [<ffffffff81591b5f>] ? may_open.isra.57+0x14f/0x2a0
[   25.190155]  [<ffffffff815a1e68>] path_openat+0x758/0x3590
[   25.195772]  [<ffffffff81538449>] ? save_stack+0xa9/0xd0
[   25.201216]  [<ffffffff815a1710>] ? path_lookupat.isra.41+0x410/0x410
[   25.207793]  [<ffffffff8122e3c2>] ? __lock_is_held+0xa2/0xf0
[   25.213585]  [<ffffffff815a8f67>] do_filp_open+0x197/0x270
[   25.219203]  [<ffffffff815a8dd0>] ? may_open_dev+0xe0/0xe0
[   25.224821]  [<ffffffff839f294c>] ? _raw_spin_unlock+0x2c/0x50
[   25.230810]  [<ffffffff815d47e7>] ? __alloc_fd+0x1d7/0x4a0
[   25.236426]  [<ffffffff8156b73d>] do_sys_open+0x30d/0x5c0
[   25.241953]  [<ffffffff8156b430>] ? filp_open+0x70/0x70
[   25.247312]  [<ffffffff8122a46a>] ? up_read+0x1a/0x40
[   25.252509]  [<ffffffff810d9593>] ? __do_page_fault+0x183/0xd50
[   25.258563]  [<ffffffff8156ba1d>] SyS_open+0x2d/0x40
[   25.263695]  [<ffffffff8156b9f0>] ? do_sys_open+0x5c0/0x5c0
[   25.269399]  [<ffffffff81006316>] do_syscall_64+0x1a6/0x490
[   25.275106]  [<ffffffff839f3313>] entry_SYSCALL_64_after_swapgs+0x5d/0xdb
[   25.282507] Dumping ftrace buffer:
[   25.286029]    (ftrace buffer empty)
[   25.289722] Kernel Offset: disabled
[   25.293321] Rebooting in 86400 seconds..