[   38.920223] audit: type=1800 audit(1568142439.979:32): pid=7423 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2450 res=0
Starting mcstransd: 
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting file context maintaining daemon: restorecond[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   39.534211] audit: type=1800 audit(1568142440.699:33): pid=7423 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2465 res=0

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.171' (ECDSA) to the list of known hosts.
syzkaller login: [  206.801784] kauditd_printk_skb: 2 callbacks suppressed
[  206.801798] audit: type=1400 audit(1568142607.969:36): avc:  denied  { map } for  pid=7611 comm="syz-executor459" path="/root/syz-executor459051835" dev="sda1" ino=1426 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1
[  206.822569] IPVS: ftp: loaded support on port[0] = 21
[  206.894762] chnl_net:caif_netlink_parms(): no params data found
[  206.926992] bridge0: port 1(bridge_slave_0) entered blocking state
[  206.934662] bridge0: port 1(bridge_slave_0) entered disabled state
[  206.942014] device bridge_slave_0 entered promiscuous mode
[  206.949778] bridge0: port 2(bridge_slave_1) entered blocking state
[  206.956188] bridge0: port 2(bridge_slave_1) entered disabled state
[  206.963272] device bridge_slave_1 entered promiscuous mode
[  206.979466] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  206.988297] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  207.005230] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  207.013011] team0: Port device team_slave_0 added
[  207.019173] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  207.026405] team0: Port device team_slave_1 added
[  207.031797] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  207.039109] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  207.111208] device hsr_slave_0 entered promiscuous mode
[  207.169411] device hsr_slave_1 entered promiscuous mode
[  207.209621] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[  207.216581] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[  207.230425] bridge0: port 2(bridge_slave_1) entered blocking state
[  207.236998] bridge0: port 2(bridge_slave_1) entered forwarding state
[  207.244056] bridge0: port 1(bridge_slave_0) entered blocking state
[  207.250458] bridge0: port 1(bridge_slave_0) entered forwarding state
[  207.280990] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready
[  207.287112] 8021q: adding VLAN 0 to HW filter on device bond0
[  207.295892] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  207.305561] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  207.325204] bridge0: port 1(bridge_slave_0) entered disabled state
[  207.332621] bridge0: port 2(bridge_slave_1) entered disabled state
[  207.341355] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  207.351542] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[  207.357623] 8021q: adding VLAN 0 to HW filter on device team0
[  207.367145] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  207.374863] bridge0: port 1(bridge_slave_0) entered blocking state
[  207.381281] bridge0: port 1(bridge_slave_0) entered forwarding state
[  207.391085] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  207.398649] bridge0: port 2(bridge_slave_1) entered blocking state
[  207.405045] bridge0: port 2(bridge_slave_1) entered forwarding state
[  207.426765] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  207.436800] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  207.448184] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[  207.456392] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  207.464400] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  207.472712] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
executing program
[  207.480453] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  207.487925] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  207.494866] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  207.507133] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[  207.517189] 8021q: adding VLAN 0 to HW filter on device batadv0
[  312.509063] rcu: INFO: rcu_preempt self-detected stall on CPU
[  312.516743] rcu: 	0-...!: (10499 ticks this GP) idle=7b2/0/0x3 softirq=10712/10712 fqs=0 
[  312.525302] rcu: 	 (t=10501 jiffies g=5245 q=94)
[  312.530070] rcu: rcu_preempt kthread starved for 10502 jiffies! g5245 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=0
[  312.540644] rcu: RCU grace-period kthread stack dump:
[  312.545845] rcu_preempt     I29024    10      2 0x80000000
[  312.551480] Call Trace:
[  312.554161]  __schedule+0x866/0x1dc0
[  312.557870]  ? pci_mmcfg_check_reserved+0x170/0x170
[  312.562875]  ? _raw_spin_unlock_irqrestore+0x6b/0xe0
[  312.568019]  ? lockdep_hardirqs_on+0x415/0x5d0
[  312.572613]  ? trace_hardirqs_on+0x67/0x220
[  312.576929]  schedule+0x92/0x1c0
[  312.580291]  schedule_timeout+0x4db/0xfc0
[  312.584429]  ? usleep_range+0x170/0x170
[  312.588398]  ? trace_hardirqs_on+0x67/0x220
[  312.592748]  ? kasan_check_read+0x11/0x20
[  312.596919]  ? __next_timer_interrupt+0x1a0/0x1a0
[  312.601785]  ? prepare_to_swait_exclusive+0x120/0x120
[  312.606993]  rcu_gp_kthread+0xd5c/0x2190
[  312.611057]  ? rcu_blocking_is_gp+0x90/0x90
[  312.615364]  ? trace_hardirqs_on+0x67/0x220
[  312.619675]  ? kasan_check_read+0x11/0x20
[  312.623816]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  312.628943]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  312.634519]  ? __kthread_parkme+0xfb/0x1b0
[  312.638748]  kthread+0x354/0x420
[  312.642114]  ? rcu_blocking_is_gp+0x90/0x90
[  312.646433]  ? kthread_cancel_delayed_work_sync+0x20/0x20
[  312.651960]  ret_from_fork+0x24/0x30
[  312.655693] NMI backtrace for cpu 0
[  312.659311] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 4.19.72 #0
[  312.665439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  312.674873] Call Trace:
[  312.677445]  <IRQ>
[  312.679616]  dump_stack+0x172/0x1f0
[  312.683245]  nmi_cpu_backtrace.cold+0x63/0xa4
[  312.687792]  ? lapic_can_unplug_cpu.cold+0x45/0x45
[  312.692713]  nmi_trigger_cpumask_backtrace+0x1b0/0x1f8
[  312.697985]  arch_trigger_cpumask_backtrace+0x14/0x20
[  312.703174]  rcu_dump_cpu_stacks+0x189/0x1d5
[  312.707609]  ? wake_up_process+0x10/0x20
[  312.711662]  rcu_check_callbacks.cold+0x5e3/0xd90
[  312.716494]  ? trace_hardirqs_off+0x62/0x220
[  312.720935]  update_process_times+0x32/0x80
[  312.725289]  tick_sched_handle+0xa2/0x190
[  312.729426]  tick_sched_timer+0x47/0x130
[  312.733476]  __hrtimer_run_queues+0x33b/0xdc0
[  312.737960]  ? tick_sched_do_timer+0x1b0/0x1b0
[  312.742533]  ? hrtimer_fixup_activate+0x30/0x30
[  312.747190]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  312.752204]  ? ktime_get_update_offsets_now+0x2d3/0x440
[  312.757563]  hrtimer_interrupt+0x314/0x770
[  312.761796]  smp_apic_timer_interrupt+0x111/0x550
[  312.766804]  apic_timer_interrupt+0xf/0x20
[  312.771102] RIP: 0010:__list_del_entry_valid+0x98/0xf5
[  312.776379] Code: 0f 84 e2 00 00 00 48 b8 00 00 00 00 00 fc ff df 4c 89 e2 48 c1 ea 03 80 3c 02 00 75 53 49 8b 14 24 4c 39 f2 0f 85 99 00 00 00 <49> 8d 7d 08 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80
[  312.795371] RSP: 0018:ffff8880ae806fa0 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
[  312.803087] RAX: dffffc0000000000 RBX: ffff8880899a94f8 RCX: ffffffff858e78e9
[  312.810350] RDX: ffff8880899a94f8 RSI: ffffffff858e7d9b RDI: ffff8880899a9500
[  312.817604] RBP: ffff8880ae806fb8 R08: ffffffff88679ec0 R09: 0000000000000007
[  312.824875] R10: ffffffff8867a858 R11: 000000005b7027c1 R12: ffff8880899a9590
[  312.832162] R13: ffff8880899a9590 R14: ffff8880899a94f8 R15: 0000000000000000
[  312.839461]  ? apic_timer_interrupt+0xa/0x20
[  312.843945]  ? hhf_dequeue+0xb9/0xa00
[  312.847733]  ? hhf_dequeue+0x56b/0xa00
[  312.851612]  hhf_dequeue+0x5aa/0xa00
[  312.855372]  __qdisc_run+0x1e7/0x1960
[  312.859218]  __dev_queue_xmit+0x165c/0x2fe0
[  312.863534]  ? netdev_pick_tx+0x300/0x300
[  312.867699]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  312.873336]  ? br_nf_post_routing+0x780/0x12f0
[  312.877952]  ? br_forward_finish+0x235/0x400
[  312.882373]  ? find_held_lock+0x35/0x130
[  312.886425]  ? br_forward_finish+0x235/0x400
[  312.891263]  dev_queue_xmit+0x18/0x20
[  312.895053]  ? dev_queue_xmit+0x18/0x20
[  312.899016]  br_dev_queue_push_xmit+0x405/0x5d0
[  312.903676]  ? kasan_check_read+0x11/0x20
[  312.907826]  br_forward_finish+0xfa/0x400
[  312.911964]  ? br_dev_queue_push_xmit+0x5d0/0x5d0
[  312.916796]  ? br_fdb_add.cold+0x8a/0x8a
[  312.920848]  ? kasan_check_read+0x11/0x20
[  312.924986]  __br_forward+0x647/0xb30
[  312.928775]  ? br_forward_finish+0x400/0x400
[  312.933181]  ? br_dev_queue_push_xmit+0x5d0/0x5d0
[  312.938016]  deliver_clone+0x61/0xc0
[  312.941729]  br_flood+0x4da/0x710
[  312.945180]  br_dev_xmit+0xeeb/0x1490
[  312.948980]  ? br_poll_controller+0x10/0x10
[  312.953307]  ? __lock_is_held+0xb6/0x140
[  312.957363]  dev_hard_start_xmit+0x1a5/0x980
[  312.961763]  ? check_preemption_disabled+0x48/0x290
[  312.966869]  __dev_queue_xmit+0x2704/0x2fe0
[  312.971193]  ? mark_held_locks+0x100/0x100
[  312.975419]  ? netdev_pick_tx+0x300/0x300
[  312.979638]  ? ip6_finish_output+0x574/0xbe0
[  312.984035]  ? find_held_lock+0x35/0x130
[  312.988093]  ? ip6_finish_output+0x574/0xbe0
[  312.992494]  ? mark_held_locks+0xb1/0x100
[  312.996634]  ? ip6_finish_output2+0x1784/0x2550
[  313.001289]  ? ip6_finish_output+0x574/0xbe0
[  313.005858]  ? ip6_finish_output2+0x1784/0x2550
[  313.010519]  dev_queue_xmit+0x18/0x20
[  313.014304]  ? dev_queue_xmit+0x18/0x20
[  313.018269]  ip6_finish_output2+0x12fd/0x2550
[  313.022791]  ? ip6_mtu+0x2e6/0x460
[  313.026336]  ? ip6_forward_finish+0x4d0/0x4d0
[  313.030819]  ? lock_downgrade+0x810/0x810
[  313.034955]  ? kasan_check_read+0x11/0x20
[  313.039097]  ip6_finish_output+0x574/0xbe0
[  313.043317]  ? ip6_finish_output+0x574/0xbe0
[  313.047716]  ip6_output+0x235/0x7c0
[  313.051333]  ? ip6_finish_output+0xbe0/0xbe0
[  313.055733]  ? ip6_fragment+0x3770/0x3770
[  313.059870]  ? icmp6_dst_alloc+0x432/0x660
[  313.064173]  mld_sendpack+0x9d3/0xeb0
[  313.068007]  ? nf_hook.constprop.0+0x560/0x560
[  313.072593]  ? mld_ifc_timer_expire+0x437/0x8a0
[  313.077314]  ? __local_bh_enable_ip+0x15a/0x270
[  313.081977]  mld_ifc_timer_expire+0x449/0x8a0
[  313.086469]  call_timer_fn+0x18d/0x720
[  313.090344]  ? mld_dad_timer_expire+0x1c0/0x1c0
[  313.094999]  ? process_timeout+0x40/0x40
[  313.099062]  ? run_timer_softirq+0x647/0x1700
[  313.103548]  ? trace_hardirqs_on+0x67/0x220
[  313.107857]  ? kasan_check_read+0x11/0x20
[  313.111994]  ? mld_dad_timer_expire+0x1c0/0x1c0
[  313.116655]  run_timer_softirq+0x652/0x1700
[  313.120968]  ? add_timer+0xbe0/0xbe0
[  313.124712]  ? kvm_clock_read+0x18/0x30
[  313.128678]  ? check_preemption_disabled+0x48/0x290
[  313.133724]  ? sched_clock+0x2e/0x50
[  313.137457]  __do_softirq+0x25c/0x921
[  313.141246]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  313.146768]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  313.152301]  irq_exit+0x180/0x1d0
[  313.155741]  smp_apic_timer_interrupt+0x13b/0x550
[  313.160573]  apic_timer_interrupt+0xf/0x20
[  313.164788]  </IRQ>
[  313.167012] RIP: 0010:native_safe_halt+0xe/0x10
[  313.171669] Code: ff ff 48 89 df e8 72 12 ae fa eb 82 e9 07 00 00 00 0f 00 2d 94 03 54 00 f4 c3 66 90 e9 07 00 00 00 0f 00 2d 84 03 54 00 fb f4 <c3> 90 55 48 89 e5 41 57 41 56 41 55 41 54 53 e8 be f4 65 fa e8 69
[  313.190561] RSP: 0018:ffffffff88607ca8 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff13
[  313.198259] RAX: 1ffffffff10e48c4 RBX: ffffffff88679ec0 RCX: 0000000000000000
[  313.205527] RDX: dffffc0000000000 RSI: 0000000000000001 RDI: ffffffff8867a73c
[  313.212794] RBP: ffffffff88607cd8 R08: ffffffff88679ec0 R09: 0000000000000000
[  313.220052] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  313.227331] R13: ffffffff88724610 R14: 0000000000000000 R15: 0000000000000000
[  313.234621]  ? default_idle+0x4e/0x320
[  313.238514]  arch_cpu_idle+0xa/0x10
[  313.242139]  default_idle_call+0x36/0x90
[  313.246244]  do_idle+0x377/0x560
[  313.249612]  ? arch_cpu_idle_exit+0x80/0x80
[  313.253928]  ? check_preemption_disabled+0x48/0x290
[  313.259213]  cpu_startup_entry+0xc8/0xe0
[  313.263347]  ? cpu_in_idle+0x20/0x20
[  313.267067]  rest_init+0x219/0x222
[  313.270637]  start_kernel+0x88c/0x8c5
[  313.274444]  ? mem_encrypt_init+0xb/0xb
[  313.278417]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  313.283943]  ? x86_family+0x41/0x50
[  313.287557]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  313.293084]  x86_64_start_reservations+0x29/0x2b
[  313.297825]  x86_64_start_kernel+0x77/0x7b
[  313.302067]  secondary_startup_64+0xa4/0xb0