
[[36minfo[39;49m] Using makefile-style concurrent boot in runlevel 2.
[   26.990958] audit: type=1800 audit(1542198375.322:21): pid=5854 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="bootlogs" dev="sda1" ino=2419 res=0
[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   31.186503] sshd (5992) used greatest stack depth: 15632 bytes left
Warning: Permanently added '10.128.0.46' (ECDSA) to the list of known hosts.
2018/11/14 12:26:41 parsed 1 programs
2018/11/14 12:26:43 executed programs: 0
[   55.293346] IPVS: ftp: loaded support on port[0] = 21
[   55.296250] IPVS: ftp: loaded support on port[0] = 21
[   55.303542] IPVS: ftp: loaded support on port[0] = 21
[   55.309169] IPVS: ftp: loaded support on port[0] = 21
[   55.314647] IPVS: ftp: loaded support on port[0] = 21
[   55.334996] IPVS: ftp: loaded support on port[0] = 21
[   56.101260] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.108090] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.121188] device bridge_slave_0 entered promiscuous mode
[   56.209769] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.228073] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.236141] device bridge_slave_1 entered promiscuous mode
[   56.285918] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.298032] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.313448] device bridge_slave_0 entered promiscuous mode
[   56.321652] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   56.361257] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   56.373111] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.384706] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.391908] device bridge_slave_0 entered promiscuous mode
[   56.398388] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.405093] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.412238] device bridge_slave_1 entered promiscuous mode
[   56.437394] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.447491] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.455026] device bridge_slave_1 entered promiscuous mode
[   56.466726] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   56.478317] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.486193] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.498335] device bridge_slave_0 entered promiscuous mode
[   56.513462] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   56.521971] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.528318] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.544638] device bridge_slave_0 entered promiscuous mode
[   56.551632] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.557979] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.565735] device bridge_slave_0 entered promiscuous mode
[   56.572802] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   56.581233] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   56.590750] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.597226] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.605506] device bridge_slave_1 entered promiscuous mode
[   56.612714] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.619055] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.630975] device bridge_slave_1 entered promiscuous mode
[   56.639266] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   56.649187] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.656264] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.663568] device bridge_slave_1 entered promiscuous mode
[   56.684295] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   56.694861] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   56.708134] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   56.723522] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   56.734672] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   56.767718] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   56.786338] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   56.820107] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   56.856720] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   56.868516] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   56.884419] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   56.928755] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   56.948052] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   56.964762] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   56.986241] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   56.999519] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   57.014774] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   57.029219] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   57.041906] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   57.051108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   57.064280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   57.091016] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   57.101637] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   57.109648] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   57.118760] team0: Port device team_slave_0 added
[   57.126148] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   57.139692] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   57.151721] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   57.184336] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   57.203072] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   57.226608] team0: Port device team_slave_1 added
[   57.298108] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   57.308173] team0: Port device team_slave_0 added
[   57.350822] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   57.390036] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   57.397431] team0: Port device team_slave_1 added
[   57.432471] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   57.453784] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   57.466091] team0: Port device team_slave_0 added
[   57.472726] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   57.483151] team0: Port device team_slave_0 added
[   57.501817] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   57.523843] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   57.531786] team0: Port device team_slave_0 added
[   57.538076] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   57.546919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   57.563156] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   57.575332] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   57.591684] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   57.599067] team0: Port device team_slave_0 added
[   57.605289] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   57.616793] team0: Port device team_slave_1 added
[   57.623886] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   57.631521] team0: Port device team_slave_1 added
[   57.637556] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   57.651066] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   57.666476] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   57.674591] team0: Port device team_slave_1 added
[   57.686369] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   57.698521] team0: Port device team_slave_1 added
[   57.712782] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   57.731186] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   57.740663] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   57.748701] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   57.765109] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   57.785418] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   57.800685] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   57.808547] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   57.829058] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   57.866246] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   57.876604] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   57.886773] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   57.902765] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   57.911020] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   57.925167] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   57.938917] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   57.956386] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   57.972201] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   57.980044] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   58.006665] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   58.017455] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   58.033606] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   58.049433] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   58.057796] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   58.066302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   58.074606] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   58.082495] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   58.090403] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   58.098093] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   58.112805] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   58.123056] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   58.137067] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   58.150807] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   58.165346] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   58.173829] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   58.183997] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   58.207609] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   58.228472] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   58.240738] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   58.260532] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   58.268575] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   58.735249] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.741799] bridge0: port 2(bridge_slave_1) entered forwarding state
[   58.748856] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.755294] bridge0: port 1(bridge_slave_0) entered forwarding state
[   58.763171] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   58.769865] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.776230] bridge0: port 2(bridge_slave_1) entered forwarding state
[   58.783172] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.789537] bridge0: port 1(bridge_slave_0) entered forwarding state
[   58.798644] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   58.877776] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   58.885884] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   59.025900] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.032335] bridge0: port 2(bridge_slave_1) entered forwarding state
[   59.038993] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.045425] bridge0: port 1(bridge_slave_0) entered forwarding state
[   59.053456] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   59.071187] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.077558] bridge0: port 2(bridge_slave_1) entered forwarding state
[   59.084308] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.090736] bridge0: port 1(bridge_slave_0) entered forwarding state
[   59.114251] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   59.166662] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.173106] bridge0: port 2(bridge_slave_1) entered forwarding state
[   59.179768] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.186228] bridge0: port 1(bridge_slave_0) entered forwarding state
[   59.196254] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   59.238046] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.244473] bridge0: port 2(bridge_slave_1) entered forwarding state
[   59.251210] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.257580] bridge0: port 1(bridge_slave_0) entered forwarding state
[   59.265667] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   59.935684] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   59.948399] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   59.971287] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   59.978527] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   61.886958] 8021q: adding VLAN 0 to HW filter on device bond0
[   61.947977] 8021q: adding VLAN 0 to HW filter on device bond0
[   62.000457] 8021q: adding VLAN 0 to HW filter on device bond0
[   62.051634] 8021q: adding VLAN 0 to HW filter on device bond0
[   62.130870] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   62.210116] 8021q: adding VLAN 0 to HW filter on device bond0
[   62.237052] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   62.260906] 8021q: adding VLAN 0 to HW filter on device bond0
[   62.330195] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   62.344857] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   62.431741] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   62.467304] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   62.473988] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   62.482251] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   62.572355] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   62.580299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   62.587410] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   62.613813] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   62.649538] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   62.660530] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   62.667575] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   62.690487] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   62.703434] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   62.714220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   62.726615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   62.752925] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   62.760103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   62.769089] 8021q: adding VLAN 0 to HW filter on device team0
[   62.899539] 8021q: adding VLAN 0 to HW filter on device team0
[   62.921672] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   62.927977] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   62.941430] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   62.970067] 8021q: adding VLAN 0 to HW filter on device team0
[   63.010047] 8021q: adding VLAN 0 to HW filter on device team0
[   63.048242] 8021q: adding VLAN 0 to HW filter on device team0
[   63.237376] 8021q: adding VLAN 0 to HW filter on device team0
2018/11/14 12:26:52 executed programs: 6
[   68.259039] ==================================================================
[   68.266557] BUG: KASAN: user-memory-access in n_tty_set_termios+0x106/0xe80
[   68.273668] Write of size 512 at addr 0000000000001060 by task syz-executor0/8182
[   68.281298] 
[   68.282938] CPU: 1 PID: 8182 Comm: syz-executor0 Not tainted 4.20.0-rc1-next-20181109+ #110
[   68.291430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   68.291441] Call Trace:
[   68.291461]  dump_stack+0x244/0x39d
[   68.291482]  ? dump_stack_print_info.cold.1+0x20/0x20
[   68.291502]  ? vprintk_func+0x85/0x181
[   68.291522]  kasan_report.cold.8+0x6d/0x309
[   68.291537]  ? n_tty_set_termios+0x106/0xe80
[   68.291559]  check_memory_region+0x13e/0x1b0
[   68.329411]  memset+0x23/0x40
[   68.332535]  n_tty_set_termios+0x106/0xe80
[   68.336804]  ? n_tty_receive_signal_char+0x120/0x120
[   68.341922]  tty_set_termios+0x7a0/0xac0
[   68.346015]  ? tty_wait_until_sent+0x5d0/0x5d0
[   68.350621]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   68.356180]  set_termios+0x41e/0x7d0
[   68.359914]  ? tty_perform_flush+0x80/0x80
[   68.364178]  ? drop_futex_key_refs.isra.14+0x6d/0xe0
[   68.369302]  tty_mode_ioctl+0x857/0xb40
[   68.373297]  ? set_termios+0x7d0/0x7d0
[   68.377210]  ? perf_trace_sched_process_exec+0x860/0x860
[   68.382683]  n_tty_ioctl_helper+0x54/0x3b0
[   68.386940]  n_tty_ioctl+0x54/0x360
[   68.390586]  ? ldsem_down_read+0x32/0x40
[   68.394663]  ? ldsem_down_read+0x32/0x40
[   68.398742]  tty_ioctl+0x5c6/0x17d0
[   68.402388]  ? commit_echoes+0x1c0/0x1c0
[   68.406465]  ? tty_vhangup+0x30/0x30
[   68.410193]  ? find_held_lock+0x36/0x1c0
[   68.414279]  ? __fget+0x4aa/0x740
[   68.417747]  ? lock_downgrade+0x900/0x900
[   68.421916]  ? check_preemption_disabled+0x48/0x280
[   68.426948]  ? kasan_check_read+0x11/0x20
[   68.431110]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[   68.436399]  ? rcu_read_unlock_special+0x370/0x370
[   68.441358]  ? __fget+0x4d1/0x740
[   68.444831]  ? ksys_dup3+0x680/0x680
[   68.448566]  ? __might_fault+0x12b/0x1e0
[   68.452652]  ? lock_downgrade+0x900/0x900
[   68.456818]  ? lock_release+0xa10/0xa10
[   68.460810]  ? perf_trace_sched_process_exec+0x860/0x860
[   68.466276]  ? tty_vhangup+0x30/0x30
[   68.470015]  do_vfs_ioctl+0x1de/0x1790
[   68.473931]  ? ioctl_preallocate+0x300/0x300
[   68.478349]  ? __fget_light+0x2e9/0x430
[   68.482335]  ? fget_raw+0x20/0x20
[   68.485810]  ? _copy_to_user+0xc8/0x110
[   68.489809]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   68.495366]  ? put_timespec64+0x10f/0x1b0
[   68.499535]  ? nsecs_to_jiffies+0x30/0x30
[   68.503703]  ? do_syscall_64+0x9a/0x820
[   68.507694]  ? do_syscall_64+0x9a/0x820
[   68.511690]  ? lockdep_hardirqs_on+0x3bb/0x5b0
[   68.516291]  ? security_file_ioctl+0x94/0xc0
[   68.520724]  ksys_ioctl+0xa9/0xd0
[   68.524207]  __x64_sys_ioctl+0x73/0xb0
[   68.528114]  do_syscall_64+0x1b9/0x820
[   68.532027]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[   68.537415]  ? syscall_return_slowpath+0x5e0/0x5e0
[   68.542358]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   68.547220]  ? trace_hardirqs_on_caller+0x310/0x310
[   68.552254]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[   68.557286]  ? prepare_exit_to_usermode+0x291/0x3b0
[   68.562333]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   68.567202]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   68.572400] RIP: 0033:0x457569
[   68.575604] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   68.594524] RSP: 002b:00007f40e3fa7c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   68.602247] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569
[   68.609527] RDX: 0000000020000100 RSI: 0000000000005402 RDI: 0000000000000005
[   68.616803] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[   68.624083] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f40e3fa86d4
[   68.631361] R13: 00000000004c0ffe R14: 00000000004d1d88 R15: 00000000ffffffff
[   68.638652] ==================================================================
[   68.646030] Disabling lock debugging due to kernel taint
[   68.677712] Kernel panic - not syncing: panic_on_warn set ...
[   68.681804] ------------[ cut here ]------------
[   68.683653] CPU: 1 PID: 8182 Comm: syz-executor0 Tainted: G    B             4.20.0-rc1-next-20181109+ #110
[   68.688397] downgrading a read lock
[   68.688503] WARNING: CPU: 0 PID: 8232 at kernel/locking/lockdep.c:3556 lock_downgrade+0x4d7/0x900
[   68.698267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   68.720242] Call Trace:
[   68.722861]  dump_stack+0x244/0x39d
[   68.726491]  ? dump_stack_print_info.cold.1+0x20/0x20
[   68.731697]  panic+0x2ad/0x55c
[   68.734888]  ? add_taint.cold.5+0x16/0x16
[   68.739042]  ? preempt_schedule+0x4d/0x60
[   68.743198]  ? ___preempt_schedule+0x16/0x18
[   68.747615]  ? trace_hardirqs_on+0xb4/0x310
[   68.751942]  kasan_end_report+0x47/0x4f
[   68.755918]  kasan_report.cold.8+0x76/0x309
[   68.760239]  ? n_tty_set_termios+0x106/0xe80
[   68.764653]  check_memory_region+0x13e/0x1b0
[   68.769066]  memset+0x23/0x40
[   68.772175]  n_tty_set_termios+0x106/0xe80
[   68.776417]  ? n_tty_receive_signal_char+0x120/0x120
[   68.781521]  tty_set_termios+0x7a0/0xac0
[   68.785590]  ? tty_wait_until_sent+0x5d0/0x5d0
[   68.790180]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   68.795723]  set_termios+0x41e/0x7d0
[   68.799440]  ? tty_perform_flush+0x80/0x80
[   68.803684]  ? drop_futex_key_refs.isra.14+0x6d/0xe0
[   68.808792]  tty_mode_ioctl+0x857/0xb40
[   68.813218]  ? set_termios+0x7d0/0x7d0
[   68.817112]  ? perf_trace_sched_process_exec+0x860/0x860
[   68.822566]  n_tty_ioctl_helper+0x54/0x3b0
[   68.826808]  n_tty_ioctl+0x54/0x360
[   68.830438]  ? ldsem_down_read+0x32/0x40
[   68.834496]  ? ldsem_down_read+0x32/0x40
[   68.838562]  tty_ioctl+0x5c6/0x17d0
[   68.842189]  ? commit_echoes+0x1c0/0x1c0
[   68.846251]  ? tty_vhangup+0x30/0x30
[   68.849965]  ? find_held_lock+0x36/0x1c0
[   68.854035]  ? __fget+0x4aa/0x740
[   68.857489]  ? lock_downgrade+0x900/0x900
[   68.861637]  ? check_preemption_disabled+0x48/0x280
[   68.866661]  ? kasan_check_read+0x11/0x20
[   68.870826]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[   68.876104]  ? rcu_read_unlock_special+0x370/0x370
[   68.881043]  ? __fget+0x4d1/0x740
[   68.884498]  ? ksys_dup3+0x680/0x680
[   68.888215]  ? __might_fault+0x12b/0x1e0
[   68.892277]  ? lock_downgrade+0x900/0x900
[   68.896435]  ? lock_release+0xa10/0xa10
[   68.900580]  ? perf_trace_sched_process_exec+0x860/0x860
[   68.906039]  ? tty_vhangup+0x30/0x30
[   68.909751]  do_vfs_ioctl+0x1de/0x1790
[   68.913645]  ? ioctl_preallocate+0x300/0x300
[   68.918050]  ? __fget_light+0x2e9/0x430
[   68.922026]  ? fget_raw+0x20/0x20
[   68.925479]  ? _copy_to_user+0xc8/0x110
[   68.929455]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   68.934990]  ? put_timespec64+0x10f/0x1b0
[   68.939148]  ? nsecs_to_jiffies+0x30/0x30
[   68.943299]  ? do_syscall_64+0x9a/0x820
[   68.947271]  ? do_syscall_64+0x9a/0x820
[   68.951245]  ? lockdep_hardirqs_on+0x3bb/0x5b0
[   68.955829]  ? security_file_ioctl+0x94/0xc0
[   68.960236]  ksys_ioctl+0xa9/0xd0
[   68.963690]  __x64_sys_ioctl+0x73/0xb0
[   68.967580]  do_syscall_64+0x1b9/0x820
[   68.971484]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[   68.976872]  ? syscall_return_slowpath+0x5e0/0x5e0
[   68.981800]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   68.986641]  ? trace_hardirqs_on_caller+0x310/0x310
[   68.991660]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[   68.996674]  ? prepare_exit_to_usermode+0x291/0x3b0
[   69.001692]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   69.006540]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   69.011725] RIP: 0033:0x457569
[   69.014919] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   69.033821] RSP: 002b:00007f40e3fa7c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   69.041526] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569
[   69.048795] RDX: 0000000020000100 RSI: 0000000000005402 RDI: 0000000000000005
[   69.056077] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[   69.063341] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f40e3fa86d4
[   69.070606] R13: 00000000004c0ffe R14: 00000000004d1d88 R15: 00000000ffffffff
[   70.241505] Shutting down cpus with NMI
[   70.246353] Kernel Offset: disabled
[   70.249977] Rebooting in 86400 seconds..