[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   67.046234][   T26] audit: type=1800 audit(1559645567.968:25): pid=9045 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[   67.085069][   T26] audit: type=1800 audit(1559645567.968:26): pid=9045 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   67.123568][   T26] audit: type=1800 audit(1559645567.968:27): pid=9045 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.101' (ECDSA) to the list of known hosts.
syzkaller login: [   79.221099][ T9202] IPVS: ftp: loaded support on port[0] = 21
[   79.278539][ T9202] chnl_net:caif_netlink_parms(): no params data found
[   79.304490][ T9202] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.312441][ T9202] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.320184][ T9202] device bridge_slave_0 entered promiscuous mode
[   79.328146][ T9202] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.335335][ T9202] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.342911][ T9202] device bridge_slave_1 entered promiscuous mode
[   79.360867][ T9202] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   79.370619][ T9202] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   79.388485][ T9202] team0: Port device team_slave_0 added
[   79.395434][ T9202] team0: Port device team_slave_1 added
[   79.447525][ T9202] device hsr_slave_0 entered promiscuous mode
[   79.515354][ T9202] device hsr_slave_1 entered promiscuous mode
[   79.563098][ T9202] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.570308][ T9202] bridge0: port 2(bridge_slave_1) entered forwarding state
[   79.578039][ T9202] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.585146][ T9202] bridge0: port 1(bridge_slave_0) entered forwarding state
[   79.620250][ T9202] 8021q: adding VLAN 0 to HW filter on device bond0
[   79.631732][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   79.652519][ T2993] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.661462][ T2993] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.670925][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   79.681934][ T9202] 8021q: adding VLAN 0 to HW filter on device team0
[   79.692583][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   79.701093][   T22] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.708151][   T22] bridge0: port 1(bridge_slave_0) entered forwarding state
[   79.727730][ T9204] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   79.736251][ T9204] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.743275][ T9204] bridge0: port 2(bridge_slave_1) entered forwarding state
[   79.751427][ T9204] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   79.761266][ T9204] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   79.776748][ T9202] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   79.787542][ T9202] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   79.800234][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   79.808785][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   79.817373][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
executing program
[   79.826217][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   79.844109][ T9202] 8021q: adding VLAN 0 to HW filter on device batadv0
[   79.879311][ T9202] ------------[ cut here ]------------
[   79.884842][ T9202] hsr_addr_subst_dest: Unknown node
[   79.890868][ T9202] WARNING: CPU: 0 PID: 9202 at net/hsr/hsr_framereg.c:294 hsr_addr_subst_dest+0x382/0x460
[   79.900765][ T9202] Kernel panic - not syncing: panic_on_warn set ...
[   79.907373][ T9202] CPU: 0 PID: 9202 Comm: syz-executor074 Not tainted 5.2.0-rc3+ #19
[   79.915327][ T9202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   79.925377][ T9202] Call Trace:
[   79.928669][ T9202]  dump_stack+0x172/0x1f0
[   79.932980][ T9202]  ? hsr_addr_subst_dest+0x380/0x460
[   79.938273][ T9202]  panic+0x2cb/0x744
[   79.942151][ T9202]  ? __warn_printk+0xf3/0xf3
[   79.946727][ T9202]  ? hsr_addr_subst_dest+0x382/0x460
[   79.952001][ T9202]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   79.958222][ T9202]  ? __warn.cold+0x5/0x4d
[   79.962535][ T9202]  ? __warn+0xe8/0x1d0
[   79.966589][ T9202]  ? hsr_addr_subst_dest+0x382/0x460
[   79.971856][ T9202]  __warn.cold+0x20/0x4d
[   79.976094][ T9202]  ? vprintk_emit+0x1ea/0x700
[   79.980752][ T9202]  ? hsr_addr_subst_dest+0x382/0x460
[   79.986019][ T9202]  report_bug+0x263/0x2b0
[   79.990340][ T9202]  do_error_trap+0x11b/0x200
[   79.994930][ T9202]  do_invalid_op+0x37/0x50
[   79.999326][ T9202]  ? hsr_addr_subst_dest+0x382/0x460
[   80.004615][ T9202]  invalid_op+0x14/0x20
[   80.008753][ T9202] RIP: 0010:hsr_addr_subst_dest+0x382/0x460
[   80.014623][ T9202] Code: 89 de e8 11 89 5e fa 84 db 75 d3 e8 c8 87 5e fa 48 c7 c6 e0 95 21 88 48 c7 c7 a0 95 21 88 c6 05 26 a4 6a 02 01 e8 0c cb 30 fa <0f> 0b eb b0 e8 a5 87 5e fa 0f b6 1d 12 a4 6a 02 31 ff 89 de e8 d5
[   80.034206][ T9202] RSP: 0018:ffff8880898bf5e0 EFLAGS: 00010286
[   80.040257][ T9202] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[   80.048215][ T9202] RDX: 0000000000000000 RSI: ffffffff815ac936 RDI: ffffed1011317eae
[   80.056165][ T9202] RBP: ffff8880898bf620 R08: ffff88808bba04c0 R09: ffff88808bba0d60
[   80.064225][ T9202] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88808adf4fa0
[   80.072196][ T9202] R13: 00000000aaaaaaaa R14: 00000000d88d6efd R15: 00000000000024aa
[   80.080180][ T9202]  ? vprintk_func+0x86/0x189
[   80.084759][ T9202]  hsr_forward_skb+0x138b/0x1d30
[   80.089704][ T9202]  hsr_dev_xmit+0x72/0xa0
[   80.094046][ T9202]  dev_hard_start_xmit+0x18a/0x950
[   80.099144][ T9202]  __dev_queue_xmit+0x2a8e/0x36b0
[   80.104187][ T9202]  ? __might_fault+0x12b/0x1e0
[   80.108936][ T9202]  ? find_held_lock+0x35/0x130
[   80.113680][ T9202]  ? netdev_core_pick_tx+0x2f0/0x2f0
[   80.118950][ T9202]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   80.125189][ T9202]  ? iov_iter_advance+0x295/0xf70
[   80.130205][ T9202]  dev_queue_xmit+0x18/0x20
[   80.134690][ T9202]  ? dev_queue_xmit+0x18/0x20
[   80.139367][ T9202]  pppoe_sendmsg+0x654/0x7e0
[   80.143961][ T9202]  ? ether_setup+0x2d0/0x2d0
[   80.148531][ T9202]  ? pppoe_getname+0x120/0x120
[   80.153288][ T9202]  ? tomoyo_socket_sendmsg+0x26/0x30
[   80.158555][ T9202]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   80.164788][ T9202]  ? security_socket_sendmsg+0x8d/0xc0
[   80.170225][ T9202]  ? pppoe_getname+0x120/0x120
[   80.174974][ T9202]  sock_sendmsg+0xd7/0x130
[   80.179388][ T9202]  ___sys_sendmsg+0x3e2/0x920
[   80.184045][ T9202]  ? copy_msghdr_from_user+0x430/0x430
[   80.189509][ T9202]  ? mark_held_locks+0xf0/0xf0
[   80.194251][ T9202]  ? reacquire_held_locks+0xfa/0x520
[   80.199544][ T9202]  ? release_sock+0x156/0x1c0
[   80.204203][ T9202]  ? find_held_lock+0x35/0x130
[   80.208969][ T9202]  ? release_sock+0x156/0x1c0
[   80.213631][ T9202]  ? __local_bh_enable_ip+0x15a/0x270
[   80.218986][ T9202]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   80.225219][ T9202]  ? __fget_light+0x1a9/0x230
[   80.229886][ T9202]  ? __fdget+0x1b/0x20
[   80.233936][ T9202]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   80.240158][ T9202]  ? sockfd_lookup_light+0xcb/0x180
[   80.245340][ T9202]  __sys_sendmmsg+0x1bf/0x4d0
[   80.250028][ T9202]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   80.255048][ T9202]  ? __sys_connect+0x12d/0x330
[   80.259793][ T9202]  ? __ia32_sys_accept+0xb0/0xb0
[   80.264718][ T9202]  ? kasan_check_write+0x14/0x20
[   80.269643][ T9202]  ? up_read+0xc4/0x200
[   80.273810][ T9202]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   80.279253][ T9202]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   80.284698][ T9202]  ? do_syscall_64+0x26/0x680
[   80.289364][ T9202]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   80.295428][ T9202]  ? do_syscall_64+0x26/0x680
[   80.300089][ T9202]  __x64_sys_sendmmsg+0x9d/0x100
[   80.305018][ T9202]  do_syscall_64+0xfd/0x680
[   80.309526][ T9202]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   80.315400][ T9202] RIP: 0033:0x441a39
[   80.319277][ T9202] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 bb 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   80.338890][ T9202] RSP: 002b:00007ffe5e9f1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   80.347308][ T9202] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000441a39
[   80.355357][ T9202] RDX: 0000000000000003 RSI: 00000000200035c0 RDI: 0000000000000003
[   80.363341][ T9202] RBP: 00000000004a90d0 R08: 0000000001bbbbbb R09: 0000000001bbbbbb
[   80.371312][ T9202] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402f80
[   80.379290][ T9202] R13: 0000000000403010 R14: 0000000000000000 R15: 0000000000000000
[   80.388544][ T9202] Kernel Offset: disabled
[   80.393096][ T9202] Rebooting in 86400 seconds..