[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   41.017982][   T27] audit: type=1800 audit(1555433244.673:25): pid=7644 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[   41.047862][   T27] audit: type=1800 audit(1555433244.673:26): pid=7644 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   41.084866][   T27] audit: type=1800 audit(1555433244.673:27): pid=7644 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.1.53' (ECDSA) to the list of known hosts.
syzkaller login: [   55.412056][ T7797] IPVS: ftp: loaded support on port[0] = 21
[   55.462146][ T7797] chnl_net:caif_netlink_parms(): no params data found
[   55.492049][ T7797] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.500351][ T7797] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.509374][ T7797] device bridge_slave_0 entered promiscuous mode
[   55.518447][ T7797] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.526112][ T7797] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.535508][ T7797] device bridge_slave_1 entered promiscuous mode
[   55.551985][ T7797] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   55.564021][ T7797] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   55.581757][ T7797] team0: Port device team_slave_0 added
[   55.589630][ T7797] team0: Port device team_slave_1 added
[   55.671711][ T7797] device hsr_slave_0 entered promiscuous mode
[   55.740445][ T7797] device hsr_slave_1 entered promiscuous mode
[   55.788732][ T7797] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.796774][ T7797] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.805561][ T7797] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.812723][ T7797] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.844520][ T7797] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.859201][ T3189] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   55.870829][ T3189] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.890828][ T3189] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.901420][ T3189] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   55.915828][ T7797] 8021q: adding VLAN 0 to HW filter on device team0
[   55.937458][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   55.946537][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.953742][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.977851][ T7797] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   55.990566][ T7797] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   56.004710][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   56.014900][   T22] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.023191][   T22] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.032546][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   56.042197][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   56.051757][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   56.062131][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   56.071975][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   56.080825][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
executing program
[   56.099875][ T7797] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.114770][ T7797] ------------[ cut here ]------------
[   56.121485][ T7797] hsr_addr_subst_dest: Unknown node
[   56.127564][ T7797] WARNING: CPU: 0 PID: 7797 at net/hsr/hsr_framereg.c:313 hsr_addr_subst_dest+0x382/0x460
[   56.138631][ T7797] Kernel panic - not syncing: panic_on_warn set ...
[   56.145367][ T7797] CPU: 0 PID: 7797 Comm: syz-executor710 Not tainted 5.1.0-rc5+ #70
[   56.155213][ T7797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   56.166687][ T7797] Call Trace:
[   56.170061][ T7797]  dump_stack+0x172/0x1f0
[   56.174607][ T7797]  ? hsr_addr_subst_dest+0x380/0x460
[   56.180250][ T7797]  panic+0x2cb/0x65c
[   56.184891][ T7797]  ? __warn_printk+0xf3/0xf3
[   56.189609][ T7797]  ? hsr_addr_subst_dest+0x382/0x460
[   56.196488][ T7797]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   56.203615][ T7797]  ? __warn.cold+0x5/0x45
[   56.208335][ T7797]  ? __warn+0xe8/0x1d0
[   56.212456][ T7797]  ? hsr_addr_subst_dest+0x382/0x460
[   56.218871][ T7797]  __warn.cold+0x20/0x45
[   56.223887][ T7797]  ? vprintk_emit+0x1ce/0x6d0
[   56.229732][ T7797]  ? hsr_addr_subst_dest+0x382/0x460
[   56.235111][ T7797]  report_bug+0x263/0x2b0
[   56.239839][ T7797]  do_error_trap+0x11b/0x200
[   56.244751][ T7797]  do_invalid_op+0x37/0x50
[   56.249391][ T7797]  ? hsr_addr_subst_dest+0x382/0x460
[   56.254779][ T7797]  invalid_op+0x14/0x20
[   56.259147][ T7797] RIP: 0010:hsr_addr_subst_dest+0x382/0x460
[   56.265054][ T7797] Code: 89 de e8 11 a9 6a fa 84 db 75 d3 e8 c8 a7 6a fa 48 c7 c6 c0 4e 19 88 48 c7 c7 80 4e 19 88 c6 05 32 a2 54 02 01 e8 ac 55 3d fa <0f> 0b eb b0 e8 a5 a7 6a fa 0f b6 1d 1e a2 54 02 31 ff 89 de e8 d5
[   56.286107][ T7797] RSP: 0018:ffff8880a85375f0 EFLAGS: 00010282
[   56.292361][ T7797] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[   56.300977][ T7797] RDX: 0000000000000000 RSI: ffffffff815afcb6 RDI: ffffed10150a6eb0
[   56.309736][ T7797] RBP: ffff8880a8537630 R08: ffff8880902400c0 R09: ffffed1015d03ef1
[   56.318517][ T7797] R10: ffffed1015d03ef0 R11: ffff8880ae81f787 R12: ffff8880a9212be0
[   56.327262][ T7797] R13: 0000000000000000 R14: 00000000642ffb5f R15: 0000000000000000
[   56.336264][ T7797]  ? vprintk_func+0x86/0x189
[   56.341199][ T7797]  hsr_forward_skb+0x123c/0x1bd0
[   56.346480][ T7797]  hsr_dev_xmit+0x72/0xa0
[   56.351371][ T7797]  dev_hard_start_xmit+0x1b2/0x980
[   56.358295][ T7797]  __dev_queue_xmit+0x271d/0x3060
[   56.363931][ T7797]  ? __might_fault+0x12b/0x1e0
[   56.368715][ T7797]  ? find_held_lock+0x35/0x130
[   56.374233][ T7797]  ? netdev_pick_tx+0x300/0x300
[   56.379659][ T7797]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   56.386814][ T7797]  ? iov_iter_advance+0x295/0xf70
[   56.392803][ T7797]  dev_queue_xmit+0x18/0x20
[   56.397767][ T7797]  ? dev_queue_xmit+0x18/0x20
[   56.402907][ T7797]  pppoe_sendmsg+0x657/0x7e0
[   56.407749][ T7797]  ? ether_setup+0x2d0/0x2d0
[   56.412970][ T7797]  ? pppoe_getname+0x120/0x120
[   56.418473][ T7797]  ? apparmor_socket_sendmsg+0x2a/0x30
[   56.431509][ T7797]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   56.439670][ T7797]  ? security_socket_sendmsg+0x93/0xc0
[   56.445823][ T7797]  ? pppoe_getname+0x120/0x120
[   56.451174][ T7797]  sock_sendmsg+0xdd/0x130
[   56.455955][ T7797]  ___sys_sendmsg+0x3e2/0x930
[   56.460812][ T7797]  ? copy_msghdr_from_user+0x430/0x430
[   56.466770][ T7797]  ? __lock_acquire+0x548/0x3fb0
[   56.471857][ T7797]  ? mark_held_locks+0xf0/0xf0
[   56.477035][ T7797]  ? kasan_check_read+0x11/0x20
[   56.482178][ T7797]  ? __lock_acquire+0x242a/0x3fb0
[   56.487509][ T7797]  ? __might_fault+0x12b/0x1e0
[   56.492447][ T7797]  ? find_held_lock+0x35/0x130
[   56.497591][ T7797]  ? __might_fault+0x12b/0x1e0
[   56.502668][ T7797]  ? lock_downgrade+0x880/0x880
[   56.509184][ T7797]  ? ___might_sleep+0x163/0x280
[   56.514414][ T7797]  __sys_sendmmsg+0x1bf/0x4d0
[   56.519606][ T7797]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   56.524959][ T7797]  ? __sys_connect+0x12d/0x330
[   56.531261][ T7797]  ? __ia32_sys_accept+0xb0/0xb0
[   56.537331][ T7797]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   56.543441][ T7797]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   56.549444][ T7797]  ? do_syscall_64+0x26/0x610
[   56.555170][ T7797]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   56.563261][ T7797]  ? do_syscall_64+0x26/0x610
[   56.568268][ T7797]  __x64_sys_sendmmsg+0x9d/0x100
[   56.573781][ T7797]  do_syscall_64+0x103/0x610
[   56.579071][ T7797]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   56.585562][ T7797] RIP: 0033:0x441929
[   56.590246][ T7797] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 bb 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   56.613599][ T7797] RSP: 002b:00007ffc0e82df58 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   56.622951][ T7797] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000441929
[   56.631660][ T7797] RDX: 0400000000000191 RSI: 000000002000d180 RDI: 0000000000000003
[   56.641057][ T7797] RBP: 00000000004a8fd0 R08: 0000000001bbbbbb R09: 0000000001bbbbbb
[   56.649394][ T7797] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402e70
[   56.658469][ T7797] R13: 0000000000402f00 R14: 0000000000000000 R15: 0000000000000000
[   56.669929][ T7797] Kernel Offset: disabled
[   56.674725][ T7797] Rebooting in 86400 seconds..