[   24.386076] audit: type=1800 audit(1541679473.345:21): pid=5493 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="bootlogs" dev="sda1" ino=2419 res=0
[   24.413967] audit: type=1800 audit(1541679473.345:22): pid=5493 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="motd" dev="sda1" ino=2447 res=0
[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c.
[   25.586098] sshd (5559) used greatest stack depth: 16088 bytes left
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   49.253311] sshd (5633) used greatest stack depth: 15744 bytes left
Warning: Permanently added '10.128.0.60' (ECDSA) to the list of known hosts.
2018/11/08 12:18:25 parsed 1 programs
2018/11/08 12:18:27 executed programs: 0
[   58.656493] IPVS: ftp: loaded support on port[0] = 21
[   58.658348] IPVS: ftp: loaded support on port[0] = 21
[   58.680074] IPVS: ftp: loaded support on port[0] = 21
[   58.690903] IPVS: ftp: loaded support on port[0] = 21
[   58.717510] IPVS: ftp: loaded support on port[0] = 21
[   58.721533] IPVS: ftp: loaded support on port[0] = 21
[   59.926404] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.938935] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.947935] device bridge_slave_0 entered promiscuous mode
[   59.956708] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.965921] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.973266] device bridge_slave_0 entered promiscuous mode
[   60.018125] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.029000] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.039686] device bridge_slave_0 entered promiscuous mode
[   60.049109] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.057768] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.066672] device bridge_slave_1 entered promiscuous mode
[   60.075880] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.082353] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.093899] device bridge_slave_1 entered promiscuous mode
[   60.106423] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.113822] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.121174] device bridge_slave_0 entered promiscuous mode
[   60.127881] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.134442] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.141350] device bridge_slave_0 entered promiscuous mode
[   60.150579] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.158014] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.166902] device bridge_slave_0 entered promiscuous mode
[   60.175608] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   60.183627] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   60.191043] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.198175] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.209178] device bridge_slave_1 entered promiscuous mode
[   60.223803] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.230170] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.237941] device bridge_slave_1 entered promiscuous mode
[   60.247325] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.254421] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.261504] device bridge_slave_1 entered promiscuous mode
[   60.273203] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   60.281890] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   60.295544] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   60.304648] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.311078] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.325477] device bridge_slave_1 entered promiscuous mode
[   60.332359] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   60.367021] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   60.390424] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   60.405641] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   60.413713] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   60.442539] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   60.464653] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   60.500713] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   60.579717] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   60.599457] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   60.613847] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   60.651506] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   60.673627] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   60.702425] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   60.713929] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   60.722133] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   60.736049] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   60.748127] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   60.763147] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   60.773613] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   60.781505] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   60.795214] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   60.811061] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   60.828356] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   60.840746] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   60.850657] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   60.861860] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   60.873544] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   60.881552] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   60.904776] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   60.917337] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   60.926815] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   60.947359] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   60.955320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   60.971531] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   60.987546] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   61.008427] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   61.122513] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   61.137745] team0: Port device team_slave_0 added
[   61.157922] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   61.176459] team0: Port device team_slave_0 added
[   61.189152] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   61.197821] team0: Port device team_slave_0 added
[   61.204918] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   61.212085] team0: Port device team_slave_1 added
[   61.234798] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   61.241994] team0: Port device team_slave_0 added
[   61.252631] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   61.263141] team0: Port device team_slave_1 added
[   61.272320] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   61.282313] team0: Port device team_slave_1 added
[   61.289500] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   61.299180] team0: Port device team_slave_0 added
[   61.322415] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   61.351866] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   61.363568] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   61.370780] team0: Port device team_slave_1 added
[   61.379673] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   61.392021] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   61.401487] team0: Port device team_slave_1 added
[   61.409933] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   61.418207] team0: Port device team_slave_0 added
[   61.429987] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   61.448235] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   61.474092] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   61.488705] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   61.508980] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   61.517336] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   61.525319] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   61.536352] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   61.550649] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   61.561950] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   61.580627] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   61.591341] team0: Port device team_slave_1 added
[   61.597814] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   61.611030] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   61.622554] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   61.630796] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   61.638740] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   61.647005] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   61.656542] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   61.671781] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   61.689349] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   61.698542] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   61.707277] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   61.715939] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   61.724534] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   61.737549] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   61.753023] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   61.763912] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   61.783241] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   61.790126] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   61.798584] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   61.808070] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   61.816403] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   61.824792] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   61.832520] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   61.840137] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   61.848370] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   61.856234] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   61.864021] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   61.871785] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   61.879576] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   61.894817] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   61.904882] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   61.914260] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   61.922170] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   61.933874] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   61.941841] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   61.962090] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   61.978359] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   61.987854] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   62.056452] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   62.071361] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   62.080676] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   62.500694] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.507248] bridge0: port 2(bridge_slave_1) entered forwarding state
[   62.514443] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.520830] bridge0: port 1(bridge_slave_0) entered forwarding state
[   62.543296] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   62.597480] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.603900] bridge0: port 2(bridge_slave_1) entered forwarding state
[   62.610546] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.616971] bridge0: port 1(bridge_slave_0) entered forwarding state
[   62.639160] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   62.646792] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   62.655362] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   62.718118] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.724549] bridge0: port 2(bridge_slave_1) entered forwarding state
[   62.731191] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.737618] bridge0: port 1(bridge_slave_0) entered forwarding state
[   62.750278] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   62.763899] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.770287] bridge0: port 2(bridge_slave_1) entered forwarding state
[   62.777115] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.783526] bridge0: port 1(bridge_slave_0) entered forwarding state
[   62.795483] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   62.809497] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.815936] bridge0: port 2(bridge_slave_1) entered forwarding state
[   62.822588] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.829008] bridge0: port 1(bridge_slave_0) entered forwarding state
[   62.838604] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   62.889599] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.896088] bridge0: port 2(bridge_slave_1) entered forwarding state
[   62.902698] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.909135] bridge0: port 1(bridge_slave_0) entered forwarding state
[   62.930394] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   63.684526] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   63.693822] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   63.713684] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   63.724767] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   65.101277] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.294815] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.341569] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   65.364653] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.449802] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.524041] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.534393] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   65.586953] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.605770] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   65.619945] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   65.634168] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   65.660675] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   65.731218] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   65.753679] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   65.769960] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   65.780219] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   65.806334] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   65.817902] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   65.924359] 8021q: adding VLAN 0 to HW filter on device team0
[   65.985114] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   65.993540] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   65.999879] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   66.009213] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   66.018055] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   66.026488] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   66.038915] 8021q: adding VLAN 0 to HW filter on device team0
[   66.105503] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   66.120404] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   66.131259] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   66.145306] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   66.153764] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   66.175924] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   66.260326] 8021q: adding VLAN 0 to HW filter on device team0
[   66.294108] 8021q: adding VLAN 0 to HW filter on device team0
[   66.355481] 8021q: adding VLAN 0 to HW filter on device team0
[   66.374593] 8021q: adding VLAN 0 to HW filter on device team0
2018/11/08 12:18:36 executed programs: 6
[   71.061919] vivid-000: kernel_thread() failed
[   71.072060] ==================================================================
[   71.079583] BUG: KASAN: null-ptr-deref in kthread_stop+0x10d/0x900
[   71.085920] Write of size 4 at addr 000000000000001c by task syz-executor5/7836
[   71.093367] 
[   71.095015] CPU: 0 PID: 7836 Comm: syz-executor5 Not tainted 4.20.0-rc1+ #325
[   71.102327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   71.111676] Call Trace:
[   71.114278]  dump_stack+0x244/0x39d
[   71.117921]  ? dump_stack_print_info.cold.1+0x20/0x20
[   71.123107]  ? vprintk_func+0x85/0x181
[   71.126994]  kasan_report.cold.8+0x6d/0x309
[   71.131314]  ? kthread_stop+0x10d/0x900
[   71.135285]  check_memory_region+0x13e/0x1b0
[   71.139695]  kasan_check_write+0x14/0x20
[   71.143752]  kthread_stop+0x10d/0x900
[   71.147549]  ? kthread_unpark+0x160/0x160
[   71.151698]  ? __lock_is_held+0xb5/0x140
[   71.155785]  vivid_stop_generating_vid_cap+0x2bb/0x9ae
[   71.161068]  ? vivid_start_generating_vid_cap+0x4c0/0x4c0
[   71.166604]  ? _vb2_fop_release+0x3f/0x2b0
[   71.170847]  ? mutex_trylock+0x2b0/0x2b0
[   71.174906]  ? vivid_fop_release+0x66/0x440
[   71.179222]  ? __mutex_lock+0x85e/0x16f0
[   71.183286]  vid_cap_stop_streaming+0x8d/0xe0
[   71.187775]  ? vid_cap_buf_queue+0x310/0x310
[   71.192178]  __vb2_queue_cancel+0x171/0xd20
[   71.196493]  ? lock_downgrade+0x900/0x900
[   71.200635]  ? vb2_buffer_done+0xb90/0xb90
[   71.204868]  ? find_held_lock+0x36/0x1c0
[   71.208944]  ? mark_held_locks+0xc7/0x130
[   71.213095]  ? kasan_check_write+0x14/0x20
[   71.217323]  ? __mutex_unlock_slowpath+0x197/0x8c0
[   71.222246]  ? kasan_check_read+0x11/0x20
[   71.226401]  ? wait_for_completion+0x8a0/0x8a0
[   71.230976]  ? trace_hardirqs_off_caller+0x310/0x310
[   71.236073]  ? ep_modify+0xc10/0xc10
[   71.239815]  vb2_core_streamoff+0x60/0x140
[   71.244049]  __vb2_cleanup_fileio+0x73/0x160
[   71.248490]  vb2_core_queue_release+0x1e/0x80
[   71.252983]  _vb2_fop_release+0x1d2/0x2b0
[   71.257151]  vb2_fop_release+0x77/0xc0
[   71.261035]  vivid_fop_release+0x18e/0x440
[   71.265263]  ? vivid_remove+0x460/0x460
[   71.269230]  v4l2_release+0x224/0x3a0
[   71.273022]  ? dev_debug_store+0x140/0x140
[   71.277259]  __fput+0x385/0xa30
[   71.280551]  ? get_max_files+0x20/0x20
[   71.284443]  ? trace_hardirqs_on+0xbd/0x310
[   71.288756]  ? kasan_check_read+0x11/0x20
[   71.292910]  ? task_work_run+0x1af/0x2a0
[   71.296974]  ? trace_hardirqs_off_caller+0x310/0x310
[   71.302076]  ? fput+0x130/0x1a0
[   71.305351]  ____fput+0x15/0x20
[   71.308643]  task_work_run+0x1e8/0x2a0
[   71.312526]  ? task_work_cancel+0x240/0x240
[   71.316845]  ? do_syscall_64+0x9a/0x820
[   71.320819]  exit_to_usermode_loop+0x318/0x380
[   71.325398]  ? __bpf_trace_sys_exit+0x30/0x30
[   71.329894]  do_syscall_64+0x6be/0x820
[   71.333776]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[   71.339147]  ? syscall_return_slowpath+0x5e0/0x5e0
[   71.344089]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   71.348927]  ? trace_hardirqs_on_caller+0x310/0x310
[   71.353947]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[   71.358974]  ? prepare_exit_to_usermode+0x291/0x3b0
[   71.364006]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   71.368877]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   71.374060] RIP: 0033:0x457569
[   71.377254] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   71.396176] RSP: 002b:00007f876efaac78 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[   71.403888] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 0000000000457569
[   71.411157] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000004
[   71.418419] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[   71.425690] R10: 0000000020000280 R11: 0000000000000246 R12: 00007f876efab6d4
[   71.432950] R13: 00000000004bdb6c R14: 00000000004cc9b0 R15: 00000000ffffffff
[   71.440222] ==================================================================
[   71.447570] Disabling lock debugging due to kernel taint
[   71.456405] Kernel panic - not syncing: panic_on_warn set ...
[   71.462322] CPU: 0 PID: 7836 Comm: syz-executor5 Tainted: G    B             4.20.0-rc1+ #325
[   71.471007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   71.480435] Call Trace:
[   71.483020]  dump_stack+0x244/0x39d
[   71.486639]  ? dump_stack_print_info.cold.1+0x20/0x20
[   71.491822]  panic+0x2ad/0x55c
[   71.495040]  ? add_taint.cold.5+0x16/0x16
[   71.499178]  ? preempt_schedule+0x4d/0x60
[   71.503323]  ? ___preempt_schedule+0x16/0x18
[   71.507739]  ? trace_hardirqs_on+0xb4/0x310
[   71.512059]  kasan_end_report+0x47/0x4f
[   71.516024]  kasan_report.cold.8+0x76/0x309
[   71.520358]  ? kthread_stop+0x10d/0x900
[   71.524327]  check_memory_region+0x13e/0x1b0
[   71.528742]  kasan_check_write+0x14/0x20
[   71.532808]  kthread_stop+0x10d/0x900
[   71.536638]  ? kthread_unpark+0x160/0x160
[   71.540780]  ? __lock_is_held+0xb5/0x140
[   71.544851]  vivid_stop_generating_vid_cap+0x2bb/0x9ae
[   71.550121]  ? vivid_start_generating_vid_cap+0x4c0/0x4c0
[   71.555647]  ? _vb2_fop_release+0x3f/0x2b0
[   71.559876]  ? mutex_trylock+0x2b0/0x2b0
[   71.563942]  ? vivid_fop_release+0x66/0x440
[   71.568267]  ? __mutex_lock+0x85e/0x16f0
[   71.572322]  vid_cap_stop_streaming+0x8d/0xe0
[   71.576825]  ? vid_cap_buf_queue+0x310/0x310
[   71.581223]  __vb2_queue_cancel+0x171/0xd20
[   71.585537]  ? lock_downgrade+0x900/0x900
[   71.589676]  ? vb2_buffer_done+0xb90/0xb90
[   71.593908]  ? find_held_lock+0x36/0x1c0
[   71.597971]  ? mark_held_locks+0xc7/0x130
[   71.602115]  ? kasan_check_write+0x14/0x20
[   71.606357]  ? __mutex_unlock_slowpath+0x197/0x8c0
[   71.611276]  ? kasan_check_read+0x11/0x20
[   71.615415]  ? wait_for_completion+0x8a0/0x8a0
[   71.619987]  ? trace_hardirqs_off_caller+0x310/0x310
[   71.625087]  ? ep_modify+0xc10/0xc10
[   71.628802]  vb2_core_streamoff+0x60/0x140
[   71.633058]  __vb2_cleanup_fileio+0x73/0x160
[   71.637464]  vb2_core_queue_release+0x1e/0x80
[   71.641951]  _vb2_fop_release+0x1d2/0x2b0
[   71.646087]  vb2_fop_release+0x77/0xc0
[   71.649966]  vivid_fop_release+0x18e/0x440
[   71.654190]  ? vivid_remove+0x460/0x460
[   71.658155]  v4l2_release+0x224/0x3a0
[   71.661952]  ? dev_debug_store+0x140/0x140
[   71.666185]  __fput+0x385/0xa30
[   71.669471]  ? get_max_files+0x20/0x20
[   71.673364]  ? trace_hardirqs_on+0xbd/0x310
[   71.677677]  ? kasan_check_read+0x11/0x20
[   71.681826]  ? task_work_run+0x1af/0x2a0
[   71.685887]  ? trace_hardirqs_off_caller+0x310/0x310
[   71.690984]  ? fput+0x130/0x1a0
[   71.694259]  ____fput+0x15/0x20
[   71.697534]  task_work_run+0x1e8/0x2a0
[   71.701416]  ? task_work_cancel+0x240/0x240
[   71.705733]  ? do_syscall_64+0x9a/0x820
[   71.709701]  exit_to_usermode_loop+0x318/0x380
[   71.714272]  ? __bpf_trace_sys_exit+0x30/0x30
[   71.718759]  do_syscall_64+0x6be/0x820
[   71.722648]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[   71.728012]  ? syscall_return_slowpath+0x5e0/0x5e0
[   71.732940]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   71.737785]  ? trace_hardirqs_on_caller+0x310/0x310
[   71.742796]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[   71.747811]  ? prepare_exit_to_usermode+0x291/0x3b0
[   71.752827]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   71.757666]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   71.762847] RIP: 0033:0x457569
[   71.766035] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   71.784925] RSP: 002b:00007f876efaac78 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[   71.792629] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 0000000000457569
[   71.799887] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000004
[   71.807147] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[   71.814418] R10: 0000000020000280 R11: 0000000000000246 R12: 00007f876efab6d4
[   71.821683] R13: 00000000004bdb6c R14: 00000000004cc9b0 R15: 00000000ffffffff
[   71.830121] Kernel Offset: disabled
[   71.833748] Rebooting in 86400 seconds..