[   40.428998][   T27] audit: type=1800 audit(1555295207.730:26): pid=7747 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   40.457609][   T27] audit: type=1800 audit(1555295207.740:27): pid=7747 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[   40.482087][   T27] audit: type=1800 audit(1555295207.740:28): pid=7747 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] startpar: service(s) returned failure: ssh ...[?25l[?1c7[1G[[31mFAIL[39;49m8[?25h[?0c [31mfailed![39;49m

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.196' (ECDSA) to the list of known hosts.
2019/04/15 02:39:08 parsed 1 programs
2019/04/15 02:39:10 executed programs: 0
syzkaller login: [  783.341635][ T7934] IPVS: ftp: loaded support on port[0] = 21
[  783.416995][ T7934] chnl_net:caif_netlink_parms(): no params data found
[  783.455110][ T7934] bridge0: port 1(bridge_slave_0) entered blocking state
[  783.463437][ T7934] bridge0: port 1(bridge_slave_0) entered disabled state
[  783.471933][ T7934] device bridge_slave_0 entered promiscuous mode
[  783.480239][ T7934] bridge0: port 2(bridge_slave_1) entered blocking state
[  783.487466][ T7934] bridge0: port 2(bridge_slave_1) entered disabled state
[  783.495221][ T7934] device bridge_slave_1 entered promiscuous mode
[  783.511712][ T7934] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  783.521624][ T7934] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  783.539180][ T7934] team0: Port device team_slave_0 added
[  783.546869][ T7934] team0: Port device team_slave_1 added
[  783.603532][ T7934] device hsr_slave_0 entered promiscuous mode
[  783.641318][ T7934] device hsr_slave_1 entered promiscuous mode
[  783.718692][ T7934] bridge0: port 2(bridge_slave_1) entered blocking state
[  783.726069][ T7934] bridge0: port 2(bridge_slave_1) entered forwarding state
[  783.733961][ T7934] bridge0: port 1(bridge_slave_0) entered blocking state
[  783.741099][ T7934] bridge0: port 1(bridge_slave_0) entered forwarding state
[  783.777222][ T7934] 8021q: adding VLAN 0 to HW filter on device bond0
[  783.788856][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  783.809907][    T5] bridge0: port 1(bridge_slave_0) entered disabled state
[  783.818889][    T5] bridge0: port 2(bridge_slave_1) entered disabled state
[  783.828378][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  783.840302][ T7934] 8021q: adding VLAN 0 to HW filter on device team0
[  783.851735][ T3481] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  783.860363][ T3481] bridge0: port 1(bridge_slave_0) entered blocking state
[  783.867508][ T3481] bridge0: port 1(bridge_slave_0) entered forwarding state
[  783.892911][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  783.901785][    T5] bridge0: port 2(bridge_slave_1) entered blocking state
[  783.908835][    T5] bridge0: port 2(bridge_slave_1) entered forwarding state
[  783.917199][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  783.925711][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  783.935002][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  783.943439][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  783.953348][ T7934] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  783.961545][ T7938] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  783.978768][ T7934] 8021q: adding VLAN 0 to HW filter on device batadv0
[  937.701032][ T1043] INFO: task syz-executor.0:7974 blocked for more than 143 seconds.
[  937.709803][ T1043]       Not tainted 5.1.0-rc4-next-20190412 #24
[  937.716945][ T1043] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  937.725879][ T1043] syz-executor.0  D28376  7974   7934 0x00000004
[  937.732454][ T1043] Call Trace:
[  937.735997][ T1043]  __schedule+0x817/0x1cc0
[  937.740498][ T1043]  ? finish_task_switch+0x146/0x780
[  937.745810][ T1043]  ? __sched_text_start+0x8/0x8
[  937.750960][ T1043]  ? __lock_acquire+0x548/0x3fb0
[  937.756055][ T1043]  ? __lock_acquire+0x548/0x3fb0
[  937.761113][ T1043]  schedule+0x92/0x180
[  937.765413][ T1043]  schedule_timeout+0x717/0xc50
[  937.770400][ T1043]  ? wait_for_completion+0x294/0x440
[  937.775819][ T1043]  ? find_held_lock+0x35/0x130
[  937.780805][ T1043]  ? usleep_range+0x170/0x170
[  937.785829][ T1043]  ? kasan_check_write+0x14/0x20
[  937.790911][ T1043]  ? _raw_spin_unlock_irq+0x28/0x90
[  937.796312][ T1043]  ? wait_for_completion+0x294/0x440
[  937.802015][ T1043]  ? _raw_spin_unlock_irq+0x28/0x90
[  937.807370][ T1043]  ? lockdep_hardirqs_on+0x418/0x5d0
[  937.812822][ T1043]  ? trace_hardirqs_on+0x67/0x230
[  937.818113][ T1043]  ? kasan_check_read+0x11/0x20
[  937.823065][ T1043]  wait_for_completion+0x29c/0x440
[  937.828453][ T1043]  ? wait_for_completion_interruptible+0x4b0/0x4b0
[  937.835122][ T1043]  ? wake_up_q+0xf0/0xf0
[  937.839427][ T1043]  ? rcu_read_unlock_special+0xf3/0x210
[  937.845250][ T1043]  __flush_work+0x50f/0xa70
[  937.849793][ T1043]  ? wq_calc_node_cpumask+0x3a0/0x3a0
[  937.855348][ T1043]  ? init_pwq+0x360/0x360
[  937.859958][ T1043]  ? __cancel_work_timer+0xc4/0x520
[  937.865342][ T1043]  ? __cancel_work_timer+0x1d3/0x520
[  937.870813][ T1043]  ? cancel_work_sync+0x18/0x20
[  937.875683][ T1043]  ? __cancel_work_timer+0x1d3/0x520
[  937.881174][ T1043]  ? lockdep_hardirqs_on+0x418/0x5d0
[  937.886634][ T1043]  ? trace_hardirqs_on+0x67/0x230
[  937.891885][ T1043]  __cancel_work_timer+0x3bf/0x520
[  937.897554][ T1043]  ? try_to_grab_pending+0x910/0x910
[  937.902927][ T1043]  ? _raw_spin_unlock_irqrestore+0x6b/0xe0
[  937.908922][ T1043]  ? p9_fd_close+0x29e/0x570
[  937.913652][ T1043]  ? _raw_spin_unlock_irqrestore+0x6b/0xe0
[  937.919492][ T1043]  ? lockdep_hardirqs_on+0x418/0x5d0
[  937.925135][ T1043]  ? trace_hardirqs_on+0x67/0x230
[  937.930282][ T1043]  ? kasan_check_read+0x11/0x20
[  937.935249][ T1043]  cancel_work_sync+0x18/0x20
[  937.940158][ T1043]  p9_fd_close+0x2bc/0x570
[  937.944683][ T1043]  p9_client_create+0x998/0x1400
[  937.949718][ T1043]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  937.955833][ T1043]  ? p9_client_zc_rpc.constprop.0+0x10c0/0x10c0
[  937.962324][ T1043]  ? rcu_read_lock_sched_held+0x110/0x130
[  937.968130][ T1043]  ? ksys_mount+0xdb/0x150
[  937.972693][ T1043]  ? lockdep_init_map+0x1be/0x6d0
[  937.977812][ T1043]  v9fs_session_init+0x1e7/0x1960
[  937.983022][ T1043]  ? v9fs_session_init+0x1e7/0x1960
[  937.988599][ T1043]  ? find_held_lock+0x35/0x130
[  937.993793][ T1043]  ? fs_reclaim_acquire.part.0+0x30/0x30
[  937.999626][ T1043]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  938.005993][ T1043]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  938.011944][ T1043]  ? v9fs_show_options+0x7e0/0x7e0
[  938.017072][ T1043]  ? v9fs_mount+0x5e/0x920
[  938.021601][ T1043]  ? rcu_read_lock_sched_held+0x110/0x130
[  938.027574][ T1043]  ? kmem_cache_alloc_trace+0x354/0x760
[  938.033560][ T1043]  ? legacy_init_fs_context+0x48/0xe0
[  938.039399][ T1043]  ? rcu_read_lock_sched_held+0x110/0x130
[  938.045335][ T1043]  v9fs_mount+0x7d/0x920
[  938.049651][ T1043]  ? v9fs_write_inode+0x70/0x70
[  938.054602][ T1043]  legacy_get_tree+0xf2/0x200
[  938.059456][ T1043]  vfs_get_tree+0x123/0x450
[  938.064083][ T1043]  do_mount+0x1436/0x2c40
[  938.068447][ T1043]  ? copy_mount_string+0x40/0x40
[  938.073623][ T1043]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  938.079888][ T1043]  ? copy_mount_options+0x280/0x3a0
[  938.085197][ T1043]  ksys_mount+0xdb/0x150
[  938.089489][ T1043]  __x64_sys_mount+0xbe/0x150
[  938.094397][ T1043]  do_syscall_64+0x103/0x610
[  938.099038][ T1043]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  938.105282][ T1043] RIP: 0033:0x458c29
[  938.109306][ T1043] Code: Bad RIP value.
[  938.113448][ T1043] RSP: 002b:00007fafa0787c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  938.122084][ T1043] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000458c29
[  938.130061][ T1043] RDX: 0000000020000100 RSI: 00000000200000c0 RDI: 0000000000000000
[  938.138337][ T1043] RBP: 000000000073bf00 R08: 0000000020000140 R09: 0000000000000000
[  938.146459][ T1043] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fafa07886d4
[  938.154538][ T1043] R13: 00000000004c4c14 R14: 00000000004d88a0 R15: 00000000ffffffff
[  938.162805][ T1043] 
[  938.162805][ T1043] Showing all locks held in the system:
[  938.170615][ T1043] 1 lock held by khungtaskd/1043:
[  938.175769][ T1043]  #0: 00000000de7c5212 (rcu_read_lock){....}, at: debug_show_all_locks+0x5f/0x27e
[  938.185312][ T1043] 2 locks held by kworker/1:2/3481:
[  938.190636][ T1043]  #0: 0000000023bb5d25 ((wq_completion)events){+.+.}, at: process_one_work+0x87e/0x1790
[  938.200640][ T1043]  #1: 00000000825f5a39 ((work_completion)(&m->rq)){+.+.}, at: process_one_work+0x8b4/0x1790
[  938.211143][ T1043] 1 lock held by rsyslogd/7785:
[  938.215990][ T1043]  #0: 00000000dd7ef3ea (&f->f_pos_lock){+.+.}, at: __fdget_pos+0xee/0x110
[  938.224756][ T1043] 2 locks held by getty/7898:
[  938.229441][ T1043]  #0: 00000000f88cd8a4 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  938.248675][ T1043]  #1: 00000000750b2080 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70
[  938.258549][ T1043] 2 locks held by getty/7899:
[  938.263893][ T1043]  #0: 000000009e9c223f (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  938.273203][ T1043]  #1: 00000000dc30446d (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70
[  938.282925][ T1043] 2 locks held by getty/7900:
[  938.287765][ T1043]  #0: 00000000660225fd (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  938.296979][ T1043]  #1: 000000004a0926c6 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70
[  938.306912][ T1043] 2 locks held by getty/7901:
[  938.311675][ T1043]  #0: 00000000b71af8ad (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  938.320925][ T1043]  #1: 00000000020e6b1a (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70
[  938.330863][ T1043] 2 locks held by getty/7902:
[  938.335644][ T1043]  #0: 00000000482bee85 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  938.345015][ T1043]  #1: 00000000125693af (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70
[  938.354788][ T1043] 2 locks held by getty/7903:
[  938.359527][ T1043]  #0: 0000000048415891 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  938.368765][ T1043]  #1: 000000006dcbbe09 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70
[  938.378432][ T1043] 2 locks held by getty/7904:
[  938.383450][ T1043]  #0: 00000000d6a69937 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  938.392756][ T1043]  #1: 0000000088a2352d (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70
[  938.402515][ T1043] 
[  938.404843][ T1043] =============================================
[  938.404843][ T1043] 
[  938.413630][ T1043] NMI backtrace for cpu 0
[  938.418170][ T1043] CPU: 0 PID: 1043 Comm: khungtaskd Not tainted 5.1.0-rc4-next-20190412 #24
[  938.427068][ T1043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  938.438203][ T1043] Call Trace:
[  938.441538][ T1043]  dump_stack+0x172/0x1f0
[  938.445990][ T1043]  nmi_cpu_backtrace.cold+0x63/0xa4
[  938.451297][ T1043]  ? lapic_can_unplug_cpu.cold+0x38/0x38
[  938.457179][ T1043]  nmi_trigger_cpumask_backtrace+0x1be/0x236
[  938.463177][ T1043]  arch_trigger_cpumask_backtrace+0x14/0x20
[  938.469184][ T1043]  watchdog+0x9b7/0xec0
[  938.473400][ T1043]  kthread+0x357/0x430
[  938.477586][ T1043]  ? reset_hung_task_detector+0x30/0x30
[  938.483266][ T1043]  ? kthread_cancel_delayed_work_sync+0x20/0x20
[  938.489515][ T1043]  ret_from_fork+0x3a/0x50
[  938.494100][ T1043] Sending NMI from CPU 0 to CPUs 1:
[  938.499712][    C1] NMI backtrace for cpu 1 skipped: idling at native_safe_halt+0x2/0x10
[  938.500485][ T1043] Kernel panic - not syncing: hung_task: blocked tasks
[  938.514884][ T1043] CPU: 0 PID: 1043 Comm: khungtaskd Not tainted 5.1.0-rc4-next-20190412 #24
[  938.523934][ T1043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  938.533995][ T1043] Call Trace:
[  938.537315][ T1043]  dump_stack+0x172/0x1f0
[  938.541879][ T1043]  panic+0x2cb/0x72b
[  938.545953][ T1043]  ? __warn_printk+0xf3/0xf3
[  938.550547][ T1043]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  938.556490][ T1043]  ? printk_safe_flush+0xf2/0x140
[  938.561653][ T1043]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  938.567917][ T1043]  ? lapic_can_unplug_cpu.cold+0x38/0x38
[  938.573567][ T1043]  ? nmi_trigger_cpumask_backtrace+0x1a7/0x236
[  938.579902][ T1043]  ? nmi_trigger_cpumask_backtrace+0x19e/0x236
[  938.587062][ T1043]  watchdog+0x9c8/0xec0
[  938.591337][ T1043]  kthread+0x357/0x430
[  938.595443][ T1043]  ? reset_hung_task_detector+0x30/0x30
[  938.601010][ T1043]  ? kthread_cancel_delayed_work_sync+0x20/0x20
[  938.607265][ T1043]  ret_from_fork+0x3a/0x50
[  938.613164][ T1043] Kernel Offset: disabled
[  938.617599][ T1043] Rebooting in 86400 seconds..