[   35.422616][   T26] audit: type=1800 audit(1557280937.988:27): pid=7502 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[   35.453748][   T26] audit: type=1800 audit(1557280937.988:28): pid=7502 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   36.294711][   T26] audit: type=1800 audit(1557280938.918:29): pid=7502 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
[   36.317762][   T26] audit: type=1800 audit(1557280938.928:30): pid=7502 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.68' (ECDSA) to the list of known hosts.
2019/05/08 02:03:02 parsed 1 programs
2019/05/08 02:03:04 executed programs: 0
syzkaller login: [   82.337331][ T7668] IPVS: ftp: loaded support on port[0] = 21
[   82.396356][ T7668] chnl_net:caif_netlink_parms(): no params data found
[   82.426726][ T7668] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.436106][ T7668] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.444388][ T7668] device bridge_slave_0 entered promiscuous mode
[   82.452957][ T7668] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.461032][ T7668] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.468836][ T7668] device bridge_slave_1 entered promiscuous mode
[   82.486099][ T7668] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   82.496283][ T7668] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   82.513595][ T7668] team0: Port device team_slave_0 added
[   82.521170][ T7668] team0: Port device team_slave_1 added
[   82.587772][ T7668] device hsr_slave_0 entered promiscuous mode
[   82.635478][ T7668] device hsr_slave_1 entered promiscuous mode
[   82.682214][ T7668] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.689629][ T7668] bridge0: port 2(bridge_slave_1) entered forwarding state
[   82.697949][ T7668] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.705197][ T7668] bridge0: port 1(bridge_slave_0) entered forwarding state
[   82.736691][ T7668] 8021q: adding VLAN 0 to HW filter on device bond0
[   82.752452][ T7668] 8021q: adding VLAN 0 to HW filter on device team0
[   82.760709][ T7670] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   82.770800][ T7670] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.779361][ T7670] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.789614][ T7670] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   82.813258][ T7668] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   82.824905][ T7668] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   82.838489][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   82.847242][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.854498][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   82.862958][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   82.871820][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.880148][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   82.888674][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   82.898833][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   82.907591][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   82.916928][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   82.925674][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   82.933243][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   82.951298][ T7668] 8021q: adding VLAN 0 to HW filter on device batadv0
[   83.164981][    C0] hrtimer: interrupt took 45757 ns
2019/05/08 02:03:09 executed programs: 145
2019/05/08 02:03:14 executed programs: 318
2019/05/08 02:03:19 executed programs: 495
2019/05/08 02:03:25 executed programs: 673
2019/05/08 02:03:30 executed programs: 852
2019/05/08 02:03:35 executed programs: 1030
[  113.186192][ T7672] WARNING: CPU: 0 PID: 7672 at kernel/bpf/core.c:854 bpf_jit_free+0x20a/0x2c0
[  113.195351][ T7672] Kernel panic - not syncing: panic_on_warn set ...
[  113.201941][ T7672] CPU: 0 PID: 7672 Comm: kworker/0:3 Not tainted 5.1.0-rc6+ #1
[  113.209723][ T7672] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  113.219882][ T7672] Workqueue: events bpf_prog_free_deferred
[  113.225668][ T7672] Call Trace:
[  113.228948][ T7672]  dump_stack+0x172/0x1f0
[  113.233262][ T7672]  ? bpf_jit_free+0x130/0x2c0
[  113.237923][ T7672]  panic+0x2cb/0x65c
[  113.241903][ T7672]  ? __warn_printk+0xf3/0xf3
[  113.246491][ T7672]  ? bpf_jit_free+0x20a/0x2c0
[  113.251150][ T7672]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  113.257390][ T7672]  ? __warn.cold+0x5/0x45
[  113.261806][ T7672]  ? __warn+0xe8/0x1d0
[  113.265859][ T7672]  ? bpf_jit_free+0x20a/0x2c0
[  113.270516][ T7672]  __warn.cold+0x20/0x45
[  113.274739][ T7672]  ? mark_held_locks+0xa4/0xf0
[  113.279499][ T7672]  ? bpf_jit_free+0x20a/0x2c0
[  113.284160][ T7672]  report_bug+0x263/0x2b0
[  113.288479][ T7672]  do_error_trap+0x11b/0x200
[  113.293069][ T7672]  do_invalid_op+0x37/0x50
[  113.297475][ T7672]  ? bpf_jit_free+0x20a/0x2c0
[  113.302132][ T7672]  invalid_op+0x14/0x20
[  113.306274][ T7672] RIP: 0010:bpf_jit_free+0x20a/0x2c0
[  113.311717][ T7672] Code: 38 d0 7f 08 84 c0 0f 85 94 00 00 00 48 b8 00 02 00 00 00 00 ad de 41 0f b6 5c 24 02 49 39 c6 0f 84 58 fe ff ff e8 36 c0 f4 ff <0f> 0b e9 4c fe ff ff e8 2a c0 f4 ff 4c 89 ea 48 b8 00 00 00 00 00
[  113.331303][ T7672] RSP: 0018:ffff88809673fcb0 EFLAGS: 00010293
[  113.337350][ T7672] RAX: ffff8880a9576700 RBX: 000000000000000f RCX: ffffffff817abc3d
[  113.345321][ T7672] RDX: 0000000000000000 RSI: ffffffff817bcdda RDI: ffff88809e8abaf0
[  113.353276][ T7672] RBP: ffff88809673fcd8 R08: 1ffffffff14ba820 R09: fffffbfff14ba821
[  113.361317][ T7672] R10: fffffbfff14ba820 R11: ffffffff8a5d4107 R12: ffffc90001935000
[  113.369360][ T7672] R13: ffffc90001935002 R14: ffffffff889f89a0 R15: 0000000000000001
[  113.377339][ T7672]  ? bpf_jit_uncharge_modmem+0x1d/0x30
[  113.382780][ T7672]  ? bpf_jit_free+0x20a/0x2c0
[  113.387445][ T7672]  bpf_prog_free_deferred+0x2b1/0x3e0
[  113.392809][ T7672]  process_one_work+0x98e/0x1790
[  113.397742][ T7672]  ? pwq_dec_nr_in_flight+0x320/0x320
[  113.403095][ T7672]  ? lock_acquire+0x16f/0x3f0
[  113.407760][ T7672]  worker_thread+0x98/0xe40
[  113.412244][ T7672]  ? trace_hardirqs_on+0x67/0x230
[  113.417258][ T7672]  kthread+0x357/0x430
[  113.421334][ T7672]  ? process_one_work+0x1790/0x1790
[  113.426515][ T7672]  ? kthread_cancel_delayed_work_sync+0x20/0x20
[  113.432742][ T7672]  ret_from_fork+0x3a/0x50
[  113.439083][ T7672] Kernel Offset: disabled
[  113.467625][ T7672] Rebooting in 86400 seconds..