[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   64.715782][   T26] kauditd_printk_skb: 7 callbacks suppressed
[   64.715790][   T26] audit: type=1800 audit(1568480179.604:29): pid=9563 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
[   64.741949][   T26] audit: type=1800 audit(1568480179.604:30): pid=9563 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.10.28' (ECDSA) to the list of known hosts.
syzkaller login: [  231.299593][ T9717] IPVS: ftp: loaded support on port[0] = 21
[  231.341089][ T9717] chnl_net:caif_netlink_parms(): no params data found
[  231.363363][ T9717] bridge0: port 1(bridge_slave_0) entered blocking state
[  231.370495][ T9717] bridge0: port 1(bridge_slave_0) entered disabled state
[  231.377925][ T9717] device bridge_slave_0 entered promiscuous mode
[  231.385278][ T9717] bridge0: port 2(bridge_slave_1) entered blocking state
[  231.392413][ T9717] bridge0: port 2(bridge_slave_1) entered disabled state
[  231.399883][ T9717] device bridge_slave_1 entered promiscuous mode
[  231.413203][ T9717] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  231.423372][ T9717] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  231.438285][ T9717] team0: Port device team_slave_0 added
[  231.445128][ T9717] team0: Port device team_slave_1 added
[  231.500149][ T9717] device hsr_slave_0 entered promiscuous mode
[  231.538865][ T9717] device hsr_slave_1 entered promiscuous mode
[  231.584068][ T9717] bridge0: port 2(bridge_slave_1) entered blocking state
[  231.591134][ T9717] bridge0: port 2(bridge_slave_1) entered forwarding state
[  231.598406][ T9717] bridge0: port 1(bridge_slave_0) entered blocking state
[  231.605465][ T9717] bridge0: port 1(bridge_slave_0) entered forwarding state
[  231.628887][ T9717] 8021q: adding VLAN 0 to HW filter on device bond0
[  231.638348][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  231.657840][    T5] bridge0: port 1(bridge_slave_0) entered disabled state
[  231.665327][    T5] bridge0: port 2(bridge_slave_1) entered disabled state
[  231.673444][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  231.683035][ T9717] 8021q: adding VLAN 0 to HW filter on device team0
[  231.691811][   T23] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  231.700169][   T23] bridge0: port 1(bridge_slave_0) entered blocking state
[  231.707183][   T23] bridge0: port 1(bridge_slave_0) entered forwarding state
[  231.725276][ T9717] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  231.735745][ T9717] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  231.747347][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  231.755851][    T5] bridge0: port 2(bridge_slave_1) entered blocking state
[  231.762912][    T5] bridge0: port 2(bridge_slave_1) entered forwarding state
[  231.770715][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
executing program
executing program
executing program
executing program
[  231.779728][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  231.787866][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  231.796014][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  231.804156][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  231.811701][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  231.824406][ T9717] 8021q: adding VLAN 0 to HW filter on device batadv0
[  336.848629][    C0] rcu: INFO: rcu_preempt self-detected stall on CPU
[  336.855270][    C0] rcu: 	0-...!: (10500 ticks this GP) idle=006/1/0x4000000000000004 softirq=8684/8684 fqs=0 
[  336.865404][    C0] 	(t=10500 jiffies g=8793 q=195)
[  336.870417][    C0] rcu: rcu_preempt kthread starved for 10500 jiffies! g8793 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=0
[  336.881661][    C0] rcu: RCU grace-period kthread stack dump:
[  336.887526][    C0] rcu_preempt     I29392    10      2 0x80004000
[  336.893847][    C0] Call Trace:
[  336.897193][    C0]  __schedule+0x755/0x1580
[  336.901590][    C0]  ? __sched_text_start+0x8/0x8
[  336.906423][    C0]  schedule+0xd9/0x260
[  336.910472][    C0]  schedule_timeout+0x486/0xc50
[  336.915300][    C0]  ? rwlock_bug.part.0+0x90/0x90
[  336.920213][    C0]  ? usleep_range+0x170/0x170
[  336.924866][    C0]  ? trace_hardirqs_on+0x67/0x240
[  336.929869][    C0]  ? __kasan_check_read+0x11/0x20
[  336.934962][    C0]  ? __next_timer_interrupt+0x1a0/0x1a0
[  336.940504][    C0]  ? swake_up_one+0x60/0x60
[  336.944981][    C0]  ? trace_hardirqs_on+0x67/0x240
[  336.949987][    C0]  rcu_gp_kthread+0x9b2/0x18c0
[  336.954729][    C0]  ? rcu_barrier+0x310/0x310
[  336.959296][    C0]  ? trace_hardirqs_on+0x67/0x240
[  336.964295][    C0]  ? __kasan_check_read+0x11/0x20
[  336.969314][    C0]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  336.975528][    C0]  ? __kthread_parkme+0x108/0x1c0
[  336.980538][    C0]  ? __kasan_check_read+0x11/0x20
[  336.985573][    C0]  kthread+0x361/0x430
[  336.989619][    C0]  ? rcu_barrier+0x310/0x310
[  336.994199][    C0]  ? kthread_cancel_delayed_work_sync+0x20/0x20
[  337.000418][    C0]  ret_from_fork+0x24/0x30
[  337.004843][    C0] NMI backtrace for cpu 0
[  337.009205][    C0] CPU: 0 PID: 9729 Comm: syz-executor331 Not tainted 5.3.0-rc8+ #0
[  337.017076][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  337.027117][    C0] Call Trace:
[  337.030386][    C0]  <IRQ>
[  337.033248][    C0]  dump_stack+0x172/0x1f0
[  337.037558][    C0]  nmi_cpu_backtrace.cold+0x70/0xb2
[  337.042733][    C0]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  337.048953][    C0]  ? lapic_can_unplug_cpu.cold+0x45/0x45
[  337.054563][    C0]  nmi_trigger_cpumask_backtrace+0x23b/0x28b
[  337.060520][    C0]  arch_trigger_cpumask_backtrace+0x14/0x20
[  337.066390][    C0]  rcu_dump_cpu_stacks+0x183/0x1cf
[  337.071481][    C0]  rcu_sched_clock_irq.cold+0x4dd/0xc13
[  337.077006][    C0]  ? raise_softirq+0x138/0x340
[  337.081750][    C0]  update_process_times+0x32/0x80
[  337.086760][    C0]  tick_sched_handle+0xa2/0x190
[  337.091590][    C0]  tick_sched_timer+0x53/0x140
[  337.096334][    C0]  __hrtimer_run_queues+0x364/0xe40
[  337.101512][    C0]  ? tick_sched_do_timer+0x1b0/0x1b0
[  337.106774][    C0]  ? hrtimer_start_range_ns+0xcb0/0xcb0
[  337.112296][    C0]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  337.117992][    C0]  ? ktime_get_update_offsets_now+0x2d3/0x440
[  337.124035][    C0]  hrtimer_interrupt+0x314/0x770
[  337.129009][    C0]  smp_apic_timer_interrupt+0x160/0x610
[  337.134536][    C0]  apic_timer_interrupt+0xf/0x20
[  337.139450][    C0] RIP: 0010:__sanitizer_cov_trace_const_cmp1+0x0/0x20
[  337.146194][    C0] Code: 5d c3 0f 1f 84 00 00 00 00 00 55 48 89 f2 48 89 fe bf 06 00 00 00 48 89 e5 48 8b 4d 08 e8 18 ff ff ff 5d c3 66 0f 1f 44 00 00 <55> 40 0f b6 d6 40 0f b6 f7 bf 01 00 00 00 48 89 e5 48 8b 4d 08 e8
[  337.165785][    C0] RSP: 0000:ffff8880ae809530 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
[  337.174177][    C0] RAX: 0000000000000001 RBX: ffff88809306ec38 RCX: ffffffff85c66b39
[  337.182126][    C0] RDX: ffff88809306ec38 RSI: 0000000000000001 RDI: 0000000000000000
[  337.190077][    C0] RBP: ffff8880ae809588 R08: ffff8880969ea280 R09: 0000000000000000
[  337.198048][    C0] R10: fffffbfff134afaf R11: ffff8880969ea280 R12: dffffc0000000000
[  337.206003][    C0] R13: ffff88809306e940 R14: 0000000000000001 R15: 0000000000000000
[  337.213957][    C0]  ? apic_timer_interrupt+0xa/0x20
[  337.219093][    C0]  ? hhf_dequeue+0xb9/0xa20
[  337.223576][    C0]  ? hhf_dequeue+0x5d1/0xa20
[  337.228194][    C0]  __qdisc_run+0x1e7/0x19d0
[  337.232701][    C0]  ? dev_queue_xmit+0x18/0x20
[  337.237356][    C0]  __dev_queue_xmit+0x16f1/0x3650
[  337.242431][    C0]  ? ndisc_constructor+0x1a5/0xb40
[  337.247524][    C0]  ? netdev_core_pick_tx+0x2f0/0x2f0
[  337.252827][    C0]  ? ip6_finish_output2+0x1034/0x2520
[  337.258179][    C0]  ? __kasan_check_read+0x11/0x20
[  337.263185][    C0]  ? lock_downgrade+0x920/0x920
[  337.268014][    C0]  dev_queue_xmit+0x18/0x20
[  337.272493][    C0]  ? dev_queue_xmit+0x18/0x20
[  337.277214][    C0]  neigh_resolve_output+0x5a5/0x970
[  337.282407][    C0]  ip6_finish_output2+0x1034/0x2520
[  337.287605][    C0]  ? ip6_mtu+0x2e6/0x460
[  337.291845][    C0]  ? ip6_forward_finish+0x530/0x530
[  337.297026][    C0]  ? ip6_mtu+0x16f/0x460
[  337.301250][    C0]  __ip6_finish_output+0x444/0xa50
[  337.306339][    C0]  ? __ip6_finish_output+0x444/0xa50
[  337.311607][    C0]  ip6_finish_output+0x38/0x1f0
[  337.316442][    C0]  ip6_output+0x235/0x7c0
[  337.320753][    C0]  ? ip6_finish_output+0x1f0/0x1f0
[  337.325839][    C0]  ? __ip6_finish_output+0xa50/0xa50
[  337.331101][    C0]  ? icmp6_dst_alloc+0x432/0x660
[  337.336017][    C0]  mld_sendpack+0x9c7/0xea0
[  337.340511][    C0]  ? nf_hook.constprop.0+0x560/0x560
[  337.345774][    C0]  ? mld_ifc_timer_expire+0x437/0x8a0
[  337.351125][    C0]  ? __local_bh_enable_ip+0x15a/0x270
[  337.356473][    C0]  mld_ifc_timer_expire+0x449/0x8a0
[  337.361654][    C0]  call_timer_fn+0x1ac/0x780
[  337.366220][    C0]  ? mld_dad_timer_expire+0x1c0/0x1c0
[  337.371569][    C0]  ? msleep_interruptible+0x150/0x150
[  337.376918][    C0]  ? trace_hardirqs_on+0x67/0x240
[  337.381917][    C0]  ? __kasan_check_read+0x11/0x20
[  337.386918][    C0]  ? mld_dad_timer_expire+0x1c0/0x1c0
[  337.392268][    C0]  ? mld_dad_timer_expire+0x1c0/0x1c0
[  337.397620][    C0]  run_timer_softirq+0x697/0x17a0
[  337.402624][    C0]  ? add_timer+0x930/0x930
[  337.407017][    C0]  ? kvm_clock_read+0x18/0x30
[  337.411670][    C0]  ? kvm_sched_clock_read+0x9/0x20
[  337.416757][    C0]  ? sched_clock+0x2e/0x50
[  337.421153][    C0]  ? sched_clock_cpu+0x1b/0x1b0
[  337.425980][    C0]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  337.432203][    C0]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  337.438422][    C0]  __do_softirq+0x262/0x98c
[  337.442921][    C0]  ? sched_clock_cpu+0x1b/0x1b0
[  337.447774][    C0]  irq_exit+0x19b/0x1e0
[  337.451922][    C0]  smp_apic_timer_interrupt+0x1a3/0x610
[  337.457450][    C0]  apic_timer_interrupt+0xf/0x20
[  337.462359][    C0]  </IRQ>
[  337.465286][    C0] RIP: 0010:clear_page_erms+0x7/0x10
[  337.470573][    C0] Code: 48 89 47 18 48 89 47 20 48 89 47 28 48 89 47 30 48 89 47 38 48 8d 7f 40 75 d9 90 c3 0f 1f 80 00 00 00 00 b9 00 10 00 00 31 c0 <f3> aa c3 90 90 90 90 90 90 55 48 89 e5 41 57 41 56 41 55 41 54 53
[  337.490162][    C0] RSP: 0000:ffff88808663fb78 EFLAGS: 00010246 ORIG_RAX: ffffffffffffff13
[  337.498554][    C0] RAX: 0000000000000000 RBX: ffff888000000000 RCX: 0000000000000f00
[  337.506502][    C0] RDX: 1ffff11012d3d6b9 RSI: ffffffff819cc686 RDI: ffff888086207100
[  337.514452][    C0] RBP: ffff88808663fb90 R08: ffff8880969ea280 R09: fffffbfff134afb0
[  337.522405][    C0] R10: fffffbfff134afaf R11: ffffffff89a57d7f R12: ffff8880969ea280
[  337.530354][    C0] R13: 0000000000000007 R14: 0000000000000000 R15: 0000000000000000
[  337.538327][    C0]  ? clear_subpage+0x16/0x110
[  337.542986][    C0]  ? clear_subpage+0x85/0x110
[  337.547639][    C0]  clear_huge_page+0xb5/0x3e0
[  337.552298][    C0]  do_huge_pmd_anonymous_page+0x776/0x1ad0
[  337.558081][    C0]  ? lockdep_init_map+0x1be/0x6d0
[  337.563081][    C0]  ? prep_transhuge_page+0xa0/0xa0
[  337.568173][    C0]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  337.574403][    C0]  ? percpu_counter_add_batch+0x13c/0x190
[  337.580111][    C0]  __handle_mm_fault+0x2d35/0x3f20
[  337.585213][    C0]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  337.590736][    C0]  ? __kasan_check_read+0x11/0x20
[  337.595739][    C0]  ? trace_hardirqs_on+0x67/0x240
[  337.600750][    C0]  handle_mm_fault+0x1b5/0x6b0
[  337.605496][    C0]  __do_page_fault+0x536/0xdd0
[  337.610241][    C0]  do_page_fault+0x38/0x590
[  337.614722][    C0]  page_fault+0x39/0x40
[  337.618853][    C0] RIP: 0033:0x401a4f
[  337.622727][    C0] Code: bf 29 00 00 00 e8 51 09 04 00 48 83 f8 ff 74 07 48 89 05 5c 16 2d 00 48 8b 05 9d 7a 0a 00 48 8b 35 4e 16 2d 00 b9 00 06 00 20 <c7> 04 25 10 06 00 20 00 00 00 00 ba 33 89 00 00 bf 10 00 00 00 48
[  337.642305][    C0] RSP: 002b:00007ffcf9266dd0 EFLAGS: 00010217
[  337.648358][    C0] RAX: 735f656764697262 RBX: 0000000000000000 RCX: 0000000020000600
[  337.656305][    C0] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000002
[  337.664261][    C0] RBP: 00000000000389a4 R08: 0000000000000000 R09: 0000000000000000
[  337.672207][    C0] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000
[  337.680163][    C0] R13: 00000000004032f0 R14: 0000000000000000 R15: 0000000000000000