[   39.918692] audit: type=1800 audit(1568421206.412:32): pid=7496 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2450 res=0
Starting mcstransd: 
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting file context maintaining daemon: restorecond[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   45.127883] kauditd_printk_skb: 2 callbacks suppressed
[   45.127897] audit: type=1400 audit(1568421211.702:35): avc:  denied  { map } for  pid=7667 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1
Warning: Permanently added '10.128.0.220' (ECDSA) to the list of known hosts.
[  121.239231] audit: type=1400 audit(1568421287.812:36): avc:  denied  { map } for  pid=7679 comm="syz-executor602" path="/root/syz-executor602847862" dev="sda1" ino=1426 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1
[  121.269457] IPVS: ftp: loaded support on port[0] = 21
[  121.320051] chnl_net:caif_netlink_parms(): no params data found
[  121.351472] bridge0: port 1(bridge_slave_0) entered blocking state
[  121.358397] bridge0: port 1(bridge_slave_0) entered disabled state
[  121.365545] device bridge_slave_0 entered promiscuous mode
[  121.373528] bridge0: port 2(bridge_slave_1) entered blocking state
[  121.379989] bridge0: port 2(bridge_slave_1) entered disabled state
[  121.387773] device bridge_slave_1 entered promiscuous mode
[  121.414769] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  121.424350] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  121.442824] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  121.450770] team0: Port device team_slave_0 added
[  121.456570] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  121.463968] team0: Port device team_slave_1 added
[  121.471006] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  121.478845] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  121.558419] device hsr_slave_0 entered promiscuous mode
[  121.636907] device hsr_slave_1 entered promiscuous mode
[  121.677128] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[  121.685625] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[  121.702072] bridge0: port 2(bridge_slave_1) entered blocking state
[  121.710938] bridge0: port 2(bridge_slave_1) entered forwarding state
[  121.718263] bridge0: port 1(bridge_slave_0) entered blocking state
[  121.724734] bridge0: port 1(bridge_slave_0) entered forwarding state
[  121.764463] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready
[  121.770973] 8021q: adding VLAN 0 to HW filter on device bond0
[  121.780199] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  121.789169] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  121.809252] bridge0: port 1(bridge_slave_0) entered disabled state
[  121.816963] bridge0: port 2(bridge_slave_1) entered disabled state
[  121.824102] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  121.835717] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[  121.843848] 8021q: adding VLAN 0 to HW filter on device team0
[  121.853933] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  121.861712] bridge0: port 1(bridge_slave_0) entered blocking state
[  121.868176] bridge0: port 1(bridge_slave_0) entered forwarding state
[  121.878898] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  121.887389] bridge0: port 2(bridge_slave_1) entered blocking state
[  121.893751] bridge0: port 2(bridge_slave_1) entered forwarding state
[  121.913165] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  121.923112] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  121.934189] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[  121.941661] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  121.949557] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  121.957687] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
executing program
[  121.965174] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  121.973392] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  121.980863] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  121.992640] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[  122.002304] 8021q: adding VLAN 0 to HW filter on device batadv0
[  227.046411] rcu: INFO: rcu_preempt self-detected stall on CPU
[  227.052565] rcu: 	0-...!: (1 GPs behind) idle=ffe/0/0x3 softirq=13709/13716 fqs=26 
[  227.060550] rcu: 	 (t=10500 jiffies g=5449 q=22)
[  227.065309] rcu: rcu_preempt kthread starved for 10448 jiffies! g5449 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[  227.075695] rcu: RCU grace-period kthread stack dump:
[  227.080882] rcu_preempt     R  running task    29624    10      2 0x80000000
[  227.088088] Call Trace:
[  227.090683]  __schedule+0x866/0x1dc0
[  227.094394]  ? pci_mmcfg_check_reserved+0x170/0x170
[  227.099407]  ? _raw_spin_unlock_irqrestore+0x6b/0xe0
[  227.104506]  ? lockdep_hardirqs_on+0x415/0x5d0
[  227.109084]  ? trace_hardirqs_on+0x67/0x220
[  227.113402]  schedule+0x92/0x1c0
[  227.116759]  schedule_timeout+0x4db/0xfc0
[  227.120900]  ? usleep_range+0x170/0x170
[  227.124862]  ? trace_hardirqs_on+0x67/0x220
[  227.129175]  ? kasan_check_read+0x11/0x20
[  227.133317]  ? __next_timer_interrupt+0x1a0/0x1a0
[  227.138151]  ? prepare_to_swait_exclusive+0x120/0x120
[  227.143344]  rcu_gp_kthread+0xd5c/0x2190
[  227.147411]  ? rcu_blocking_is_gp+0x90/0x90
[  227.151723]  ? trace_hardirqs_on+0x67/0x220
[  227.156033]  ? kasan_check_read+0x11/0x20
[  227.160184]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  227.165279]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  227.170810]  ? __kthread_parkme+0xfb/0x1b0
[  227.175038]  kthread+0x354/0x420
[  227.178392]  ? rcu_blocking_is_gp+0x90/0x90
[  227.182701]  ? kthread_cancel_delayed_work_sync+0x20/0x20
[  227.188244]  ret_from_fork+0x24/0x30
[  227.191967] NMI backtrace for cpu 0
[  227.195585] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 4.19.72 #0
[  227.201728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  227.211079] Call Trace:
[  227.213646]  <IRQ>
[  227.215794]  dump_stack+0x172/0x1f0
[  227.219413]  nmi_cpu_backtrace.cold+0x63/0xa4
[  227.223899]  ? lapic_can_unplug_cpu.cold+0x45/0x45
[  227.228845]  nmi_trigger_cpumask_backtrace+0x1b0/0x1f8
[  227.234113]  arch_trigger_cpumask_backtrace+0x14/0x20
[  227.239292]  rcu_dump_cpu_stacks+0x189/0x1d5
[  227.243687]  ? wake_up_process+0x10/0x20
[  227.247741]  rcu_check_callbacks.cold+0x5e3/0xd90
[  227.252576]  ? trace_hardirqs_off+0x62/0x220
[  227.256983]  update_process_times+0x32/0x80
[  227.261296]  tick_sched_handle+0xa2/0x190
[  227.265443]  tick_sched_timer+0x47/0x130
[  227.269493]  __hrtimer_run_queues+0x33b/0xdc0
[  227.273983]  ? tick_sched_do_timer+0x1b0/0x1b0
[  227.278562]  ? hrtimer_fixup_activate+0x30/0x30
[  227.283223]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  227.288228]  ? ktime_get_update_offsets_now+0x2d3/0x440
[  227.293588]  hrtimer_interrupt+0x314/0x770
[  227.297829]  smp_apic_timer_interrupt+0x111/0x550
[  227.302674]  apic_timer_interrupt+0xf/0x20
[  227.306903] RIP: 0010:__sanitizer_cov_trace_pc+0x8/0x50
[  227.312288] Code: 66 ea ff 48 c7 05 44 22 cd 08 00 00 00 00 e9 ca e9 ff ff 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 55 48 89 e5 48 8b 75 08 <65> 48 8b 04 25 40 ee 01 00 65 8b 15 28 97 96 7e 81 e2 00 01 1f 00
[  227.331186] RSP: 0018:ffff8880ae806ad8 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
[  227.338894] RAX: 0000000000000302 RBX: ffff88808aec4738 RCX: ffffffff858e78e9
[  227.346159] RDX: 0000000000000000 RSI: ffffffff858e7d4c RDI: 0000000000000005
[  227.353427] RBP: ffff8880ae806ad8 R08: ffffffff88679ec0 R09: 0000000000000006
[  227.360693] R10: ffffffff8867a830 R11: 00000000d238e287 R12: dffffc0000000000
[  227.367953] R13: ffff88808aec4480 R14: ffff88808aec47d0 R15: 0000000000000000
[  227.375872]  ? apic_timer_interrupt+0xa/0x20
[  227.380342]  ? hhf_dequeue+0xb9/0xa00
[  227.384754]  ? hhf_dequeue+0x51c/0xa00
[  227.389186]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  227.394973]  hhf_dequeue+0x51c/0xa00
[  227.398881]  __qdisc_run+0x1e7/0x1960
[  227.402679]  __dev_queue_xmit+0x165c/0x2fe0
[  227.406986]  ? deliver_clone+0x61/0xc0
[  227.410886]  ? br_flood+0x5fa/0x710
[  227.414525]  ? br_handle_frame_finish+0xf72/0x1510
[  227.419463]  ? netdev_pick_tx+0x300/0x300
[  227.423610]  ? irq_exit+0x180/0x1d0
[  227.427241]  ? smp_apic_timer_interrupt+0x13b/0x550
[  227.432274]  ? apic_timer_interrupt+0xf/0x20
[  227.436686]  ? acpi_processor_ffh_cstate_enter+0x200/0x2a0
[  227.442310]  ? arch_cpu_idle+0xa/0x10
[  227.446105]  ? do_idle+0x377/0x560
[  227.449683]  ? cpu_startup_entry+0xc8/0xe0
[  227.453991]  ? rest_init+0x219/0x222
[  227.457798]  ? x86_64_start_reservations+0x29/0x2b
[  227.462726]  ? x86_64_start_kernel+0x77/0x7b
[  227.467135]  ? secondary_startup_64+0xa4/0xb0
[  227.471639]  ? __lock_is_held+0xb6/0x140
[  227.475723]  dev_queue_xmit+0x18/0x20
[  227.479527]  ? dev_queue_xmit+0x18/0x20
[  227.483561]  br_dev_queue_push_xmit+0x405/0x5d0
[  227.488307]  ? br_nf_dev_queue_xmit+0x38c/0x1610
[  227.493096]  br_nf_dev_queue_xmit+0x365/0x1610
[  227.497689]  br_nf_post_routing+0x76f/0x12f0
[  227.502095]  ? find_inlist_lock.constprop.0+0x22a/0x230
[  227.507450]  ? br_nf_dev_queue_xmit+0x1610/0x1610
[  227.512291]  ? ipv6_skip_exthdr+0x5b0/0x5c0
[  227.516601]  ? br_nf_pre_routing_finish_bridge+0xaa0/0xaa0
[  227.522216]  nf_hook_slow+0xbc/0x1e0
[  227.525921]  br_forward_finish+0x215/0x400
[  227.530143]  ? br_dev_queue_push_xmit+0x5d0/0x5d0
[  227.535067]  ? br_fdb_add.cold+0x8a/0x8a
[  227.539181]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  227.544211]  ? nf_hook_slow+0xf0/0x1e0
[  227.548108]  br_nf_hook_thresh+0x2e9/0x370
[  227.552354]  ? br_dev_queue_push_xmit+0x5d0/0x5d0
[  227.557216]  ? setup_pre_routing+0x470/0x470
[  227.561628]  ? find_held_lock+0x35/0x130
[  227.565718]  ? br_dev_queue_push_xmit+0x5d0/0x5d0
[  227.570607]  br_nf_forward_finish+0x356/0x700
[  227.575099]  ? br_dev_queue_push_xmit+0x5d0/0x5d0
[  227.579962]  br_nf_forward_ip+0x6b4/0x17c0
[  227.584224]  ? br_nf_forward_finish+0x700/0x700
[  227.588929]  ? refcount_inc_not_zero_checked+0x147/0x200
[  227.594401]  ? br_nf_hook_thresh+0x370/0x370
[  227.598830]  nf_hook_slow+0xbc/0x1e0
[  227.602885]  __br_forward+0x393/0xb30
[  227.606732]  ? br_forward_finish+0x400/0x400
[  227.611149]  ? br_dev_queue_push_xmit+0x5d0/0x5d0
[  227.615998]  deliver_clone+0x61/0xc0
[  227.619706]  br_flood+0x5fa/0x710
[  227.623159]  br_handle_frame_finish+0xf72/0x1510
[  227.627912]  ? br_handle_local_finish+0x20/0x20
[  227.632575]  ? __lock_is_held+0xb6/0x140
[  227.636633]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  227.641641]  ? nf_hook_slow+0xf0/0x1e0
[  227.645543]  br_nf_hook_thresh+0x2e9/0x370
[  227.649784]  ? br_handle_local_finish+0x20/0x20
[  227.654462]  ? setup_pre_routing+0x470/0x470
[  227.658866]  ? br_handle_local_finish+0x20/0x20
[  227.663535]  ? __sanitizer_cov_trace_switch+0x49/0x80
[  227.668724]  br_nf_pre_routing_finish_ipv6+0x6ed/0xd70
[  227.674006]  ? br_handle_local_finish+0x20/0x20
[  227.678694]  ? kasan_check_read+0x11/0x20
[  227.682841]  br_nf_pre_routing_ipv6+0x4a5/0x8ca
[  227.687512]  ? br_validate_ipv6+0xb90/0xb90
[  227.691841]  ? br_nf_pre_routing_finish.cold+0x11d/0x11d
[  227.697294]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  227.702820]  ? skb_pull_rcsum+0x164/0x340
[  227.706982]  br_nf_pre_routing+0x1016/0x159c
[  227.711383]  ? br_nf_pre_routing_finish+0x1960/0x1960
[  227.716566]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  227.722094]  ? ebt_broute+0x127/0x190
[  227.725895]  nf_hook_slow+0xbc/0x1e0
[  227.729617]  br_handle_frame+0x985/0x1480
[  227.733774]  ? br_handle_frame_finish+0x1510/0x1510
[  227.738804]  ? br_handle_local_finish+0x20/0x20
[  227.744003]  ? br_handle_frame_finish+0x1510/0x1510
[  227.749013]  __netif_receive_skb_core+0xac1/0x3570
[  227.753991]  ? __lock_acquire+0x6ee/0x49c0
[  227.758235]  ? lock_downgrade+0x810/0x810
[  227.762399]  ? netif_receive_skb+0x2d0/0x2d0
[  227.766803]  ? mark_held_locks+0x100/0x100
[  227.771032]  ? find_held_lock+0x35/0x130
[  227.775102]  ? swake_up_one+0x4d/0x60
[  227.778915]  ? process_backlog+0x482/0x7a0
[  227.783149]  __netif_receive_skb_one_core+0xa8/0x1a0
[  227.788276]  ? __netif_receive_skb_one_core+0xa8/0x1a0
[  227.793586]  ? __netif_receive_skb_core+0x3570/0x3570
[  227.798786]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  227.804317]  ? check_preemption_disabled+0x48/0x290
[  227.809321]  ? lock_acquire+0x16f/0x3f0
[  227.813290]  __netif_receive_skb+0x2c/0x1d0
[  227.817742]  process_backlog+0x23a/0x7a0
[  227.821796]  ? net_rx_action+0x27b/0x1070
[  227.825942]  ? lockdep_hardirqs_on+0x19b/0x5d0
[  227.830521]  net_rx_action+0x4f5/0x1070
[  227.834511]  ? napi_complete_done+0x500/0x500
[  227.839005]  __do_softirq+0x25c/0x921
[  227.842809]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  227.848336]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  227.854400]  irq_exit+0x180/0x1d0
[  227.857853]  smp_apic_timer_interrupt+0x13b/0x550
[  227.862708]  apic_timer_interrupt+0xf/0x20
[  227.866947]  </IRQ>
[  227.869179] RIP: 0010:native_safe_halt+0xe/0x10
[  227.874105] Code: ff ff 48 89 df e8 72 12 ae fa eb 82 e9 07 00 00 00 0f 00 2d 94 03 54 00 f4 c3 66 90 e9 07 00 00 00 0f 00 2d 84 03 54 00 fb f4 <c3> 90 55 48 89 e5 41 57 41 56 41 55 41 54 53 e8 be f4 65 fa e8 69
[  227.893092] RSP: 0018:ffffffff88607ca8 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff13
[  227.900812] RAX: 1ffffffff10e48c4 RBX: ffffffff88679ec0 RCX: 0000000000000000
[  227.908075] RDX: dffffc0000000000 RSI: 0000000000000001 RDI: ffffffff8867a73c
[  227.915336] RBP: ffffffff88607cd8 R08: ffffffff88679ec0 R09: 0000000000000000
[  227.922599] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  227.929876] R13: ffffffff88724610 R14: 0000000000000000 R15: 0000000000000000
[  227.937159]  ? default_idle+0x4e/0x320
[  227.941055]  arch_cpu_idle+0xa/0x10
[  227.944669]  default_idle_call+0x36/0x90
[  227.948717]  do_idle+0x377/0x560
[  227.952072]  ? arch_cpu_idle_exit+0x80/0x80
[  227.956398]  ? check_preemption_disabled+0x48/0x290
[  227.961409]  cpu_startup_entry+0xc8/0xe0
[  227.965459]  ? cpu_in_idle+0x20/0x20
[  227.969167]  rest_init+0x219/0x222
[  227.972697]  start_kernel+0x88c/0x8c5
[  227.976498]  ? mem_encrypt_init+0xb/0xb
[  227.980465]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  227.985991]  ? x86_family+0x41/0x50
[  227.989608]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  227.995148]  x86_64_start_reservations+0x29/0x2b
[  227.999895]  x86_64_start_kernel+0x77/0x7b
[  228.004136]  secondary_startup_64+0xa4/0xb0