[[36minfo[39;49m] Using makefile-style concurrent boot in runlevel 2.
[   25.752132] audit: type=1800 audit(1544478436.404:21): pid=5838 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="bootlogs" dev="sda1" ino=2419 res=0
[   25.781926] audit: type=1800 audit(1544478436.414:22): pid=5838 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="motd" dev="sda1" ino=2447 res=0
[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   31.942666] sshd (5977) used greatest stack depth: 15744 bytes left
Warning: Permanently added '10.128.0.90' (ECDSA) to the list of known hosts.
[   38.530111] IPVS: ftp: loaded support on port[0] = 21
[   38.678695] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.685513] bridge0: port 1(bridge_slave_0) entered disabled state
[   38.692408] device bridge_slave_0 entered promiscuous mode
[   38.710182] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.716624] bridge0: port 2(bridge_slave_1) entered disabled state
[   38.723437] device bridge_slave_1 entered promiscuous mode
[   38.740328] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   38.757243] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   38.803688] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   38.822437] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   38.894356] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   38.901563] team0: Port device team_slave_0 added
[   38.918232] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   38.925580] team0: Port device team_slave_1 added
[   38.941460] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   38.963284] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   38.983180] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   39.003201] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
RTNETLINK answers: Operation not supported
RTNETLINK answers: No buffer space available
RTNETLINK answers: Operation not supported
[   39.135388] bridge0: port 2(bridge_slave_1) entered blocking state
[   39.141815] bridge0: port 2(bridge_slave_1) entered forwarding state
[   39.148769] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.155136] bridge0: port 1(bridge_slave_0) entered forwarding state
RTNETLINK answers: Operation not supported
RTNETLINK answers: Operation not supported
RTNETLINK answers: Operation not supported
RTNETLINK answers: Invalid argument
RTNETLINK answers: Invalid argument
RTNETLINK answers: Invalid argument
[   39.645702] 8021q: adding VLAN 0 to HW filter on device bond0
[   39.694873] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   39.746536] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   39.752670] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   39.760980] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   39.808367] 8021q: adding VLAN 0 to HW filter on device team0
executing program
[   40.087337] Started in network mode
[   40.091080] Own node identity ac14141a, cluster identity 4711
[   40.098065] kasan: CONFIG_KASAN_INLINE enabled
[   40.102727] kasan: GPF could be caused by NULL-ptr deref or user memory access
[   40.110782] general protection fault: 0000 [#1] PREEMPT SMP KASAN
[   40.117021] CPU: 1 PID: 5994 Comm: syz-executor846 Not tainted 4.20.0-rc6+ #370
[   40.124447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   40.133790] RIP: 0010:__ipv6_sock_mc_join+0x24a/0xc10
[   40.138963] Code: 00 00 e8 a9 31 9b fa 48 8b 85 d0 fe ff ff 48 83 c0 60 48 89 c2 48 89 85 c0 fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 32 09 00 00 48 8b 85 d0 fe ff ff 4c 8d ad 10 ff
[   40.157847] RSP: 0018:ffff8881c2996bc8 EFLAGS: 00010206
[   40.163386] RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff86e459ac
[   40.170631] RDX: 000000000000000c RSI: ffffffff86e452c7 RDI: 0000000000000001
[   40.177877] RBP: ffff8881c2996d18 R08: ffff8881c1c762c0 R09: ffffed103b5e5b5f
[   40.185125] R10: ffffed103b5e5b5f R11: ffff8881daf2dafb R12: 000000000000000f
[   40.192389] R13: ffff8881c2996fb4 R14: ffff8881c2996fb4 R15: ffff8881c1c64e80
[   40.199643] FS:  0000000001e9d880(0000) GS:ffff8881daf00000(0000) knlGS:0000000000000000
[   40.207848] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   40.213710] CR2: 0000000020000080 CR3: 00000001c21d9000 CR4: 00000000001406e0
[   40.220957] Call Trace:
[   40.223536]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   40.229062]  ? __ipv6_dev_mc_inc+0xc50/0xc50
[   40.233453]  ? cpus_read_unlock+0x8b/0xb0
[   40.237597]  ? static_key_enable+0x1f/0x30
[   40.241813]  ? udp_encap_enable+0x15/0x20
[   40.245942]  ? setup_udp_tunnel_sock+0x3ac/0x5e0
[   40.250677]  ? udp_tunnel_xmit_skb+0x320/0x320
[   40.255241]  ipv6_sock_mc_join+0x27/0x30
[   40.259297]  tipc_udp_enable+0x1476/0x1ed0
[   40.263529]  ? tipc_udp_recv+0xe20/0xe20
[   40.267574]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[   40.272657]  ? tipc_udp_send_msg+0x670/0x670
[   40.277055]  ? save_stack+0xa9/0xd0
[   40.280662]  ? save_stack+0x43/0xd0
[   40.284269]  ? kasan_kmalloc+0xc7/0xe0
[   40.288137]  ? kmem_cache_alloc_trace+0x152/0x750
[   40.292956]  ? tipc_enable_bearer+0x90d/0xf10
[   40.297430]  ? __tipc_nl_bearer_enable+0x37c/0x4a0
[   40.302337]  ? tipc_nl_bearer_enable+0x22/0x30
[   40.306919]  ? genl_rcv_msg+0xc6/0x168
[   40.310786]  ? netlink_rcv_skb+0x172/0x440
[   40.314999]  ? genl_rcv+0x28/0x40
[   40.318456]  ? netlink_unicast+0x5a5/0x760
[   40.322669]  ? netlink_sendmsg+0xa18/0xfc0
[   40.326898]  ? sock_sendmsg+0xd5/0x120
[   40.330763]  ? ___sys_sendmsg+0x7fd/0x930
[   40.334886]  ? __x64_sys_sendmsg+0x78/0xb0
[   40.339121]  ? do_syscall_64+0x1b9/0x820
[   40.343186]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   40.348527]  ? mark_held_locks+0x130/0x130
[   40.352745]  ? zap_class+0x640/0x640
[   40.356455]  ? check_preemption_disabled+0x48/0x280
[   40.361464]  ? tipc_enable_bearer+0x90d/0xf10
[   40.365941]  ? rcu_read_lock_sched_held+0x14f/0x180
[   40.370936]  tipc_enable_bearer+0x9a6/0xf10
[   40.375235]  ? tipc_udp_recv+0xe20/0xe20
[   40.379272]  ? tipc_enable_bearer+0x9a6/0xf10
[   40.383759]  ? tipc_bearer_xmit_skb+0x350/0x350
[   40.388406]  ? nla_memcmp+0x90/0x90
[   40.392012]  ? lock_release+0xa00/0xa00
[   40.395964]  ? perf_trace_sched_process_exec+0x860/0x860
[   40.401390]  ? mark_held_locks+0x130/0x130
[   40.405605]  ? check_preemption_disabled+0x48/0x280
[   40.410606]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   40.416122]  ? __nla_parse+0x12c/0x3e0
[   40.419987]  ? nla_parse+0x46/0x60
[   40.423503]  __tipc_nl_bearer_enable+0x37c/0x4a0
[   40.428234]  ? __tipc_nl_bearer_enable+0x37c/0x4a0
[   40.433140]  ? tipc_nl_bearer_disable+0x30/0x30
[   40.437793]  tipc_nl_bearer_enable+0x22/0x30
[   40.442185]  genl_family_rcv_msg+0x8a7/0x11a0
[   40.446667]  ? genl_unregister_family+0x8a0/0x8a0
[   40.451489]  ? lock_downgrade+0x900/0x900
[   40.455619]  ? check_preemption_disabled+0x48/0x280
[   40.460628]  ? rcu_read_unlock_special+0x1c0/0x1c0
[   40.465552]  ? kasan_check_read+0x11/0x20
[   40.469680]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[   40.474949]  ? rcu_softirq_qs+0x20/0x20
[   40.478908]  genl_rcv_msg+0xc6/0x168
[   40.482604]  netlink_rcv_skb+0x172/0x440
[   40.486643]  ? genl_family_rcv_msg+0x11a0/0x11a0
[   40.491377]  ? netlink_ack+0xb80/0xb80
[   40.495259]  ? down_read+0x8d/0x120
[   40.498868]  genl_rcv+0x28/0x40
[   40.502125]  netlink_unicast+0x5a5/0x760
[   40.506167]  ? netlink_attachskb+0x9a0/0x9a0
[   40.510559]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   40.516071]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[   40.521064]  netlink_sendmsg+0xa18/0xfc0
[   40.525115]  ? netlink_unicast+0x760/0x760
[   40.529332]  ? aa_sock_msg_perm.isra.14+0xba/0x160
[   40.534236]  ? apparmor_socket_sendmsg+0x29/0x30
[   40.538985]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   40.544506]  ? security_socket_sendmsg+0x94/0xc0
[   40.549262]  ? netlink_unicast+0x760/0x760
[   40.553478]  sock_sendmsg+0xd5/0x120
[   40.557185]  ___sys_sendmsg+0x7fd/0x930
[   40.561141]  ? copy_msghdr_from_user+0x580/0x580
[   40.565886]  ? blkcg_maybe_throttle_current+0xa38/0x1080
[   40.571318]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   40.576833]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   40.582348]  ? __fget_light+0x2e9/0x430
[   40.586307]  ? fget_raw+0x20/0x20
[   40.589740]  ? task_work_run+0x1af/0x2a0
[   40.593776]  ? _raw_spin_unlock_irq+0x27/0x80
[   40.598251]  ? _raw_spin_unlock_irq+0x27/0x80
[   40.602738]  ? lockdep_hardirqs_on+0x3bb/0x5b0
[   40.607301]  ? trace_hardirqs_on+0xbd/0x310
[   40.611603]  ? kasan_check_read+0x11/0x20
[   40.615729]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   40.621257]  ? sockfd_lookup_light+0xc5/0x160
[   40.625744]  __sys_sendmsg+0x11d/0x280
[   40.629613]  ? __ia32_sys_shutdown+0x80/0x80
[   40.634011]  ? do_syscall_64+0x6be/0x820
[   40.638063]  ? trace_hardirqs_on+0x310/0x310
[   40.642445]  ? do_syscall_64+0x9a/0x820
[   40.646398]  ? do_syscall_64+0x9a/0x820
[   40.650352]  ? trace_hardirqs_off_caller+0x310/0x310
[   40.655432]  __x64_sys_sendmsg+0x78/0xb0
[   40.659469]  do_syscall_64+0x1b9/0x820
[   40.663334]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[   40.668706]  ? syscall_return_slowpath+0x5e0/0x5e0
[   40.673617]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   40.678450]  ? trace_hardirqs_on_caller+0x310/0x310
[   40.683442]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[   40.688434]  ? prepare_exit_to_usermode+0x291/0x3b0
[   40.693442]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   40.698264]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   40.703441] RIP: 0033:0x445d49
[   40.706615] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb ce fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   40.725520] RSP: 002b:00007ffe3b1b3488 EFLAGS: 00000213 ORIG_RAX: 000000000000002e
[   40.733213] RAX: ffffffffffffffda RBX: 00000000004002e0 RCX: 0000000000445d49
[   40.740458] RDX: 000000000000c000 RSI: 0000000020000c00 RDI: 0000000000000003
[   40.747705] RBP: 00000000006d1018 R08: 0000000000000000 R09: 0000000000000100
[   40.754953] R10: 0000000000000000 R11: 0000000000000213 R12: 00000000004030d0
[   40.762199] R13: 0000000000403160 R14: 0000000000000000 R15: 0000000000000000
[   40.769446] Modules linked in:
[   40.774448] ---[ end trace 6f7ce0ea823d4680 ]---
[   40.779227] RIP: 0010:__ipv6_sock_mc_join+0x24a/0xc10
[   40.784454] Code: 00 00 e8 a9 31 9b fa 48 8b 85 d0 fe ff ff 48 83 c0 60 48 89 c2 48 89 85 c0 fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 32 09 00 00 48 8b 85 d0 fe ff ff 4c 8d ad 10 ff
[   40.803375] RSP: 0018:ffff8881c2996bc8 EFLAGS: 00010206
[   40.808756] RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff86e459ac
[   40.816039] RDX: 000000000000000c RSI: ffffffff86e452c7 RDI: 0000000000000001
[   40.823288] RBP: ffff8881c2996d18 R08: ffff8881c1c762c0 R09: ffffed103b5e5b5f
[   40.830576] R10: ffffed103b5e5b5f R11: ffff8881daf2dafb R12: 000000000000000f
[   40.837859] R13: ffff8881c2996fb4 R14: ffff8881c2996fb4 R15: ffff8881c1c64e80
[   40.845178] FS:  0000000001e9d880(0000) GS:ffff8881daf00000(0000) knlGS:0000000000000000
[   40.853410] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   40.859313] CR2: 0000000020000080 CR3: 00000001c21d9000 CR4: 00000000001406e0
[   40.866619] Kernel panic - not syncing: Fatal exception
[   40.872945] Kernel Offset: disabled
[   40.876571] Rebooting in 86400 seconds..