[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   54.700167][   T27] audit: type=1800 audit(1582359391.879:25): pid=8953 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[   54.734358][   T27] audit: type=1800 audit(1582359391.879:26): pid=8953 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   54.755782][   T27] audit: type=1800 audit(1582359391.879:27): pid=8953 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.10.38' (ECDSA) to the list of known hosts.
syzkaller login: [   62.608260][ T9107] IPVS: ftp: loaded support on port[0] = 21
[   62.653094][ T9107] chnl_net:caif_netlink_parms(): no params data found
[   62.686093][ T9107] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.693621][ T9107] bridge0: port 1(bridge_slave_0) entered disabled state
[   62.701974][ T9107] device bridge_slave_0 entered promiscuous mode
[   62.711014][ T9107] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.718749][ T9107] bridge0: port 2(bridge_slave_1) entered disabled state
[   62.727864][ T9107] device bridge_slave_1 entered promiscuous mode
[   62.746594][ T9107] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   62.758216][ T9107] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   62.779528][ T9107] team0: Port device team_slave_0 added
[   62.787183][ T9107] team0: Port device team_slave_1 added
[   62.800867][ T9107] batman_adv: batadv0: Adding interface: batadv_slave_0
[   62.807902][ T9107] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   62.833866][ T9107] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   62.847033][ T9107] batman_adv: batadv0: Adding interface: batadv_slave_1
[   62.854062][ T9107] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   62.880907][ T9107] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   62.936552][ T9107] device hsr_slave_0 entered promiscuous mode
[   63.005006][ T9107] device hsr_slave_1 entered promiscuous mode
[   63.137049][ T9107] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   63.207255][ T9107] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   63.246746][ T9107] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   63.287822][ T9107] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   63.359835][ T9107] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.367100][ T9107] bridge0: port 2(bridge_slave_1) entered forwarding state
[   63.375100][ T9107] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.382224][ T9107] bridge0: port 1(bridge_slave_0) entered forwarding state
[   63.421833][ T9107] 8021q: adding VLAN 0 to HW filter on device bond0
[   63.436192][ T2849] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   63.447275][ T2849] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.455572][ T2849] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.463495][ T2849] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   63.477350][ T9107] 8021q: adding VLAN 0 to HW filter on device team0
[   63.488866][ T2729] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   63.497378][ T2729] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.504512][ T2729] bridge0: port 1(bridge_slave_0) entered forwarding state
[   63.516700][ T2706] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   63.525646][ T2706] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.532706][ T2706] bridge0: port 2(bridge_slave_1) entered forwarding state
[   63.556488][ T2705] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   63.565736][ T2705] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   63.573936][ T2705] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   63.586674][ T9107] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   63.597804][ T9107] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   63.606744][ T2705] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   63.614852][ T2705] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   63.632654][ T2729] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   63.640123][ T2729] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   63.653059][ T9107] 8021q: adding VLAN 0 to HW filter on device batadv0
[   63.669366][ T2705] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   63.678454][ T2705] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   63.696633][ T2706] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   63.705551][ T2706] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   63.715602][ T9107] device veth0_vlan entered promiscuous mode
[   63.725472][ T2706] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   63.733435][ T2706] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   63.743961][ T9107] device veth1_vlan entered promiscuous mode
[   63.762405][ T2729] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   63.771149][ T2729] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   63.779294][ T2729] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   63.787791][ T2729] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   63.798765][ T9107] device veth0_macvtap entered promiscuous mode
[   63.809562][ T9107] device veth1_macvtap entered promiscuous mode
[   63.823922][ T9107] batman_adv: batadv0: Interface activated: batadv_slave_0
[   63.832573][ T2729] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   63.842322][ T2729] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   63.850670][ T2729] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   63.859928][ T2729] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   63.871876][ T9107] batman_adv: batadv0: Interface activated: batadv_slave_1
[   63.880453][ T2705] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   63.890511][ T2705] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
executing program
[   64.092347][ T9107] infiniband syz1: set active
[   64.097767][ T9107] infiniband syz1: added vlan0
[   64.129799][ T9107] general protection fault, probably for non-canonical address 0xdffffc0000000086: 0000 [#1] PREEMPT SMP KASAN
[   64.141567][ T9107] KASAN: null-ptr-deref in range [0x0000000000000430-0x0000000000000437]
[   64.149981][ T9107] CPU: 1 PID: 9107 Comm: syz-executor723 Not tainted 5.6.0-rc2-syzkaller #0
[   64.158627][ T9107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   64.168673][ T9107] RIP: 0010:rds_ib_add_one+0x81/0xe50
[   64.174021][ T9107] Code: b7 a8 06 00 00 4c 89 f0 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 0e e4 1d fa bb 30 04 00 00 49 03 1e 48 89 d8 48 c1 e8 03 <42> 8a 04 28 84 c0 0f 85 f0 0a 00 00 8b 1b 48 c7 c0 28 0c 09 89 48
[   64.193620][ T9107] RSP: 0018:ffffc90001fc7298 EFLAGS: 00010202
[   64.199663][ T9107] RAX: 0000000000000086 RBX: 0000000000000430 RCX: 0000000000000000
[   64.207635][ T9107] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001
[   64.215593][ T9107] RBP: ffffc90001fc72f0 R08: ffffffff87964c3c R09: ffffed10144f889c
[   64.223549][ T9107] R10: ffffed10144f889c R11: 0000000000000000 R12: 0000000000000000
[   64.231499][ T9107] R13: dffffc0000000000 R14: ffff8880a27c46a8 R15: ffff8880a27c4000
[   64.239489][ T9107] FS:  0000000002178880(0000) GS:ffff8880aeb00000(0000) knlGS:0000000000000000
[   64.248399][ T9107] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   64.254957][ T9107] CR2: 00005610c35650d0 CR3: 000000009f8e7000 CR4: 00000000001406e0
[   64.262910][ T9107] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   64.270863][ T9107] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   64.278822][ T9107] Call Trace:
[   64.282091][ T9107]  ? _raw_spin_unlock+0x27/0x40
[   64.286927][ T9107]  ? rds_ib_get_client_data+0x1a0/0x1a0
[   64.292446][ T9107]  add_client_context+0x482/0x660
[   64.297460][ T9107]  enable_device_and_get+0x15b/0x370
[   64.302766][ T9107]  ib_register_device+0x124d/0x15b0
[   64.307975][ T9107]  ? crypto_alloc_tfm+0x335/0x360
[   64.313000][ T9107]  rxe_register_device+0x3f6/0x530
[   64.318088][ T9107]  rxe_add+0x1373/0x14f0
[   64.322457][ T9107]  rxe_net_add+0x79/0xe0
[   64.326685][ T9107]  rxe_newlink+0x31/0x90
[   64.330942][ T9107]  nldev_newlink+0x403/0x4a0
[   64.335565][ T9107]  ? nldev_set_doit+0x340/0x340
[   64.340402][ T9107]  rdma_nl_rcv+0x701/0xa20
[   64.344819][ T9107]  netlink_unicast+0x766/0x920
[   64.349579][ T9107]  netlink_sendmsg+0xa2b/0xd40
[   64.354334][ T9107]  ? netlink_getsockopt+0x9f0/0x9f0
[   64.359508][ T9107]  ____sys_sendmsg+0x4f7/0x7f0
[   64.364271][ T9107]  __sys_sendmsg+0x1ed/0x290
[   64.368868][ T9107]  ? handle_mm_fault+0x173a/0x2900
[   64.373967][ T9107]  ? __kasan_check_write+0x14/0x20
[   64.379055][ T9107]  ? __up_read+0x231/0x740
[   64.383450][ T9107]  ? check_preemption_disabled+0xb4/0x260
[   64.389144][ T9107]  ? debug_smp_processor_id+0x9/0x20
[   64.394409][ T9107]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   64.399841][ T9107]  ? trace_irq_disable_rcuidle+0x23/0x1e0
[   64.405578][ T9107]  ? do_syscall_64+0x1d/0x1c0
[   64.410284][ T9107]  __x64_sys_sendmsg+0x7f/0x90
[   64.415083][ T9107]  do_syscall_64+0xf7/0x1c0
[   64.419631][ T9107]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   64.425643][ T9107] RIP: 0033:0x443499
[   64.429543][ T9107] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   64.449177][ T9107] RSP: 002b:00007ffdadbd9c98 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   64.457605][ T9107] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000443499
[   64.465600][ T9107] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[   64.473595][ T9107] RBP: 00007ffdadbd9cb0 R08: 0000000001bbbbbb R09: 0000000001bbbbbb
[   64.481577][ T9107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   64.489657][ T9107] R13: 0000000000404a30 R14: 0000000000000000 R15: 0000000000000000
[   64.497658][ T9107] Modules linked in:
[   64.504634][ T9107] ---[ end trace 571da670887168e8 ]---
[   64.510127][ T9107] RIP: 0010:rds_ib_add_one+0x81/0xe50
[   64.515567][ T9107] Code: b7 a8 06 00 00 4c 89 f0 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 0e e4 1d fa bb 30 04 00 00 49 03 1e 48 89 d8 48 c1 e8 03 <42> 8a 04 28 84 c0 0f 85 f0 0a 00 00 8b 1b 48 c7 c0 28 0c 09 89 48
[   64.535447][ T9107] RSP: 0018:ffffc90001fc7298 EFLAGS: 00010202
[   64.541524][ T9107] RAX: 0000000000000086 RBX: 0000000000000430 RCX: 0000000000000000
[   64.549583][ T9107] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001
[   64.557928][ T9107] RBP: ffffc90001fc72f0 R08: ffffffff87964c3c R09: ffffed10144f889c
[   64.565961][ T9107] R10: ffffed10144f889c R11: 0000000000000000 R12: 0000000000000000
[   64.573937][ T9107] R13: dffffc0000000000 R14: ffff8880a27c46a8 R15: ffff8880a27c4000
[   64.581981][ T9107] FS:  0000000002178880(0000) GS:ffff8880aeb00000(0000) knlGS:0000000000000000
[   64.590998][ T9107] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   64.597649][ T9107] CR2: 00005610c35650d0 CR3: 000000009f8e7000 CR4: 00000000001406e0
[   64.606237][ T9107] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   64.614334][ T9107] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   64.622321][ T9107] Kernel panic - not syncing: Fatal exception
[   64.629604][ T9107] Kernel Offset: disabled
[   64.633940][ T9107] Rebooting in 86400 seconds..