[   41.572119][   T26] audit: type=1800 audit(1569001385.049:26): pid=7775 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   41.610293][   T26] audit: type=1800 audit(1569001385.059:27): pid=7775 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[   41.653562][   T26] audit: type=1800 audit(1569001385.059:28): pid=7775 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   42.260266][   T26] audit: type=1800 audit(1569001385.779:29): pid=7775 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.42' (ECDSA) to the list of known hosts.
2019/09/20 17:43:16 parsed 1 programs
2019/09/20 17:43:18 executed programs: 0
syzkaller login: [   55.189687][ T7943] IPVS: ftp: loaded support on port[0] = 21
[   55.239251][ T7943] chnl_net:caif_netlink_parms(): no params data found
[   55.262848][ T7943] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.271006][ T7943] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.279446][ T7943] device bridge_slave_0 entered promiscuous mode
[   55.287167][ T7943] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.294375][ T7943] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.302704][ T7943] device bridge_slave_1 entered promiscuous mode
[   55.317946][ T7943] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   55.328665][ T7943] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   55.345056][ T7943] team0: Port device team_slave_0 added
[   55.352080][ T7943] team0: Port device team_slave_1 added
[   55.430152][ T7943] device hsr_slave_0 entered promiscuous mode
[   55.499132][ T7943] device hsr_slave_1 entered promiscuous mode
[   55.564854][ T7943] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.572137][ T7943] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.580040][ T7943] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.587230][ T7943] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.615651][ T7943] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.627931][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   55.648036][   T22] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.656198][   T22] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.665043][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   55.676857][ T7943] 8021q: adding VLAN 0 to HW filter on device team0
[   55.687028][ T2836] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   55.695933][ T2836] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.703029][ T2836] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.719177][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   55.728082][   T22] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.735194][   T22] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.743116][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   55.753355][ T7945] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   55.761667][ T7945] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   55.773133][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   55.784848][ T3507] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   55.794479][ T7943] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   55.811922][ T7943] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.920669][ T7953] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[   55.933922][ T7953] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[   55.958255][ T7958] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[   55.969489][ T7958] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[   55.995535][ T7964] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[   56.006704][ T7964] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[   56.032681][ T7968] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[   56.043809][ T7968] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[   56.072136][ T7972] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[   56.083387][ T7972] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[   58.064366][ T8361] ------------[ cut here ]------------
[   58.070373][ T8361] WARNING: CPU: 1 PID: 8361 at net/xfrm/xfrm_policy.c:1543 xfrm_policy_insert_list+0x1034/0x14e0
[   58.080893][ T8361] Kernel panic - not syncing: panic_on_warn set ...
[   58.088079][ T8361] CPU: 1 PID: 8361 Comm: syz-executor.0 Not tainted 5.3.0+ #0
[   58.095507][ T8361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   58.105564][ T8361] Call Trace:
[   58.108935][ T8361]  dump_stack+0x1d8/0x2f8
[   58.113243][ T8361]  panic+0x25c/0x799
[   58.117115][ T8361]  ? __warn+0x126/0x230
[   58.121245][ T8361]  __warn+0x22f/0x230
[   58.125217][ T8361]  ? xfrm_policy_insert_list+0x1034/0x14e0
[   58.131018][ T8361]  report_bug+0x190/0x290
[   58.135334][ T8361]  ? xfrm_policy_insert_list+0x1034/0x14e0
[   58.141121][ T8361]  do_error_trap+0xd7/0x440
[   58.145600][ T8361]  do_invalid_op+0x36/0x40
[   58.149993][ T8361]  ? xfrm_policy_insert_list+0x1034/0x14e0
[   58.156157][ T8361]  invalid_op+0x23/0x30
[   58.160319][ T8361] RIP: 0010:xfrm_policy_insert_list+0x1034/0x14e0
[   58.166714][ T8361] Code: c1 03 38 c1 0f 8c 1f f6 ff ff 48 89 df e8 a4 13 45 fb e9 12 f6 ff ff e8 ba cd 0b fb 48 c7 c7 a2 48 35 88 31 c0 e8 ef f9 f4 fa <0f> 0b e9 85 fc ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 21 f6 ff
[   58.186396][ T8361] RSP: 0018:ffff888089b075d8 EFLAGS: 00010246
[   58.192455][ T8361] RAX: 0000000000000024 RBX: ffff8880a1d706e0 RCX: db752c05cf0bc100
[   58.200413][ T8361] RDX: 0000000000000000 RSI: 0000000080000201 RDI: 0000000000000000
[   58.208378][ T8361] RBP: ffff888089b076d0 R08: ffffffff815c9554 R09: ffffed1015d66090
[   58.216335][ T8361] R10: ffffed1015d66090 R11: 0000000000000000 R12: ffff8880a1d70574
[   58.224462][ T8361] R13: ffff8880a1d706d9 R14: ffff88808526e4c0 R15: 0000000000000000
[   58.232443][ T8361]  ? vprintk_emit+0x2d4/0x3a0
[   58.237124][ T8361]  ? xfrm_policy_insert_list+0x1034/0x14e0
[   58.242945][ T8361]  xfrm_policy_inexact_insert+0x110/0x1540
[   58.248762][ T8361]  ? trace_lock_acquire+0x159/0x1d0
[   58.254046][ T8361]  ? __kasan_check_write+0x14/0x20
[   58.259319][ T8361]  ? policy_hash_bysel+0x100/0xd50
[   58.264447][ T8361]  xfrm_policy_insert+0xdf/0xce0
[   58.269369][ T8361]  ? xfrm_policy_construct+0x870/0x1210
[   58.274913][ T8361]  xfrm_add_policy+0x420/0x8a0
[   58.279678][ T8361]  ? __nla_parse+0x41/0x50
[   58.284101][ T8361]  xfrm_user_rcv_msg+0x3e6/0x650
[   58.289048][ T8361]  netlink_rcv_skb+0x19e/0x3d0
[   58.293808][ T8361]  ? xfrm_netlink_rcv+0x90/0x90
[   58.298678][ T8361]  xfrm_netlink_rcv+0x74/0x90
[   58.303621][ T8361]  netlink_unicast+0x787/0x900
[   58.308374][ T8361]  netlink_sendmsg+0x993/0xc50
[   58.313159][ T8361]  ? netlink_getsockopt+0x9f0/0x9f0
[   58.318388][ T8361]  ___sys_sendmsg+0x60d/0x910
[   58.323062][ T8361]  ? rcu_lock_release+0xd/0x30
[   58.327820][ T8361]  ? rcu_lock_release+0x26/0x30
[   58.332668][ T8361]  ? __fget+0x4e6/0x510
[   58.336817][ T8361]  ? __fdget+0x17c/0x200
[   58.341051][ T8361]  __x64_sys_sendmsg+0x17c/0x200
[   58.345980][ T8361]  do_syscall_64+0xf7/0x1c0
[   58.350465][ T8361]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   58.356335][ T8361] RIP: 0033:0x459a09
[   58.360215][ T8361] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   58.379794][ T8361] RSP: 002b:00007f4f7b231c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   58.388182][ T8361] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000459a09
[   58.396130][ T8361] RDX: 0000000000000000 RSI: 000000002014f000 RDI: 0000000000000004
[   58.404077][ T8361] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000
[   58.412028][ T8361] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f7b2326d4
[   58.419979][ T8361] R13: 00000000004c794a R14: 00000000004dd340 R15: 00000000ffffffff
[   58.429304][ T8361] Kernel Offset: disabled
[   58.433683][ T8361] Rebooting in 86400 seconds..