[ 24.386076] audit: type=1800 audit(1541679473.345:21): pid=5493 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="bootlogs" dev="sda1" ino=2419 res=0 [ 24.413967] audit: type=1800 audit(1541679473.345:22): pid=5493 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="motd" dev="sda1" ino=2447 res=0 [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [ 25.586098] sshd (5559) used greatest stack depth: 16088 bytes left [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 49.253311] sshd (5633) used greatest stack depth: 15744 bytes left Warning: Permanently added '10.128.0.60' (ECDSA) to the list of known hosts. 2018/11/08 12:18:25 parsed 1 programs 2018/11/08 12:18:27 executed programs: 0 [ 58.656493] IPVS: ftp: loaded support on port[0] = 21 [ 58.658348] IPVS: ftp: loaded support on port[0] = 21 [ 58.680074] IPVS: ftp: loaded support on port[0] = 21 [ 58.690903] IPVS: ftp: loaded support on port[0] = 21 [ 58.717510] IPVS: ftp: loaded support on port[0] = 21 [ 58.721533] IPVS: ftp: loaded support on port[0] = 21 [ 59.926404] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.938935] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.947935] device bridge_slave_0 entered promiscuous mode [ 59.956708] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.965921] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.973266] device bridge_slave_0 entered promiscuous mode [ 60.018125] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.029000] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.039686] device bridge_slave_0 entered promiscuous mode [ 60.049109] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.057768] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.066672] device bridge_slave_1 entered promiscuous mode [ 60.075880] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.082353] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.093899] device bridge_slave_1 entered promiscuous mode [ 60.106423] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.113822] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.121174] device bridge_slave_0 entered promiscuous mode [ 60.127881] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.134442] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.141350] device bridge_slave_0 entered promiscuous mode [ 60.150579] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.158014] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.166902] device bridge_slave_0 entered promiscuous mode [ 60.175608] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 60.183627] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 60.191043] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.198175] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.209178] device bridge_slave_1 entered promiscuous mode [ 60.223803] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.230170] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.237941] device bridge_slave_1 entered promiscuous mode [ 60.247325] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.254421] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.261504] device bridge_slave_1 entered promiscuous mode [ 60.273203] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 60.281890] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 60.295544] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 60.304648] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.311078] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.325477] device bridge_slave_1 entered promiscuous mode [ 60.332359] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 60.367021] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 60.390424] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 60.405641] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 60.413713] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 60.442539] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 60.464653] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 60.500713] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 60.579717] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 60.599457] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 60.613847] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 60.651506] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 60.673627] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 60.702425] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 60.713929] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 60.722133] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 60.736049] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 60.748127] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 60.763147] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 60.773613] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 60.781505] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 60.795214] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 60.811061] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 60.828356] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 60.840746] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 60.850657] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 60.861860] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 60.873544] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 60.881552] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 60.904776] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 60.917337] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 60.926815] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 60.947359] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 60.955320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 60.971531] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 60.987546] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 61.008427] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 61.122513] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 61.137745] team0: Port device team_slave_0 added [ 61.157922] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 61.176459] team0: Port device team_slave_0 added [ 61.189152] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 61.197821] team0: Port device team_slave_0 added [ 61.204918] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 61.212085] team0: Port device team_slave_1 added [ 61.234798] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 61.241994] team0: Port device team_slave_0 added [ 61.252631] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 61.263141] team0: Port device team_slave_1 added [ 61.272320] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 61.282313] team0: Port device team_slave_1 added [ 61.289500] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 61.299180] team0: Port device team_slave_0 added [ 61.322415] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 61.351866] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 61.363568] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 61.370780] team0: Port device team_slave_1 added [ 61.379673] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 61.392021] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 61.401487] team0: Port device team_slave_1 added [ 61.409933] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 61.418207] team0: Port device team_slave_0 added [ 61.429987] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 61.448235] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 61.474092] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 61.488705] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 61.508980] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 61.517336] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 61.525319] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 61.536352] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 61.550649] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 61.561950] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 61.580627] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 61.591341] team0: Port device team_slave_1 added [ 61.597814] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 61.611030] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 61.622554] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 61.630796] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 61.638740] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 61.647005] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 61.656542] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 61.671781] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 61.689349] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 61.698542] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 61.707277] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 61.715939] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 61.724534] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 61.737549] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 61.753023] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 61.763912] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 61.783241] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 61.790126] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 61.798584] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 61.808070] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 61.816403] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 61.824792] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 61.832520] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 61.840137] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 61.848370] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 61.856234] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 61.864021] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 61.871785] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 61.879576] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 61.894817] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 61.904882] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 61.914260] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 61.922170] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 61.933874] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 61.941841] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 61.962090] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 61.978359] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 61.987854] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 62.056452] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 62.071361] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 62.080676] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 62.500694] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.507248] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.514443] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.520830] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.543296] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 62.597480] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.603900] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.610546] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.616971] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.639160] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 62.646792] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 62.655362] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 62.718118] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.724549] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.731191] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.737618] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.750278] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 62.763899] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.770287] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.777115] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.783526] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.795483] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 62.809497] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.815936] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.822588] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.829008] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.838604] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 62.889599] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.896088] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.902698] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.909135] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.930394] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 63.684526] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 63.693822] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 63.713684] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 63.724767] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 65.101277] 8021q: adding VLAN 0 to HW filter on device bond0 [ 65.294815] 8021q: adding VLAN 0 to HW filter on device bond0 [ 65.341569] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 65.364653] 8021q: adding VLAN 0 to HW filter on device bond0 [ 65.449802] 8021q: adding VLAN 0 to HW filter on device bond0 [ 65.524041] 8021q: adding VLAN 0 to HW filter on device bond0 [ 65.534393] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 65.586953] 8021q: adding VLAN 0 to HW filter on device bond0 [ 65.605770] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 65.619945] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 65.634168] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 65.660675] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 65.731218] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 65.753679] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 65.769960] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 65.780219] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 65.806334] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 65.817902] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 65.924359] 8021q: adding VLAN 0 to HW filter on device team0 [ 65.985114] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 65.993540] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 65.999879] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 66.009213] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 66.018055] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 66.026488] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 66.038915] 8021q: adding VLAN 0 to HW filter on device team0 [ 66.105503] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 66.120404] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 66.131259] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 66.145306] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 66.153764] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 66.175924] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 66.260326] 8021q: adding VLAN 0 to HW filter on device team0 [ 66.294108] 8021q: adding VLAN 0 to HW filter on device team0 [ 66.355481] 8021q: adding VLAN 0 to HW filter on device team0 [ 66.374593] 8021q: adding VLAN 0 to HW filter on device team0 2018/11/08 12:18:36 executed programs: 6 [ 71.061919] vivid-000: kernel_thread() failed [ 71.072060] ================================================================== [ 71.079583] BUG: KASAN: null-ptr-deref in kthread_stop+0x10d/0x900 [ 71.085920] Write of size 4 at addr 000000000000001c by task syz-executor5/7836 [ 71.093367] [ 71.095015] CPU: 0 PID: 7836 Comm: syz-executor5 Not tainted 4.20.0-rc1+ #325 [ 71.102327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 71.111676] Call Trace: [ 71.114278] dump_stack+0x244/0x39d [ 71.117921] ? dump_stack_print_info.cold.1+0x20/0x20 [ 71.123107] ? vprintk_func+0x85/0x181 [ 71.126994] kasan_report.cold.8+0x6d/0x309 [ 71.131314] ? kthread_stop+0x10d/0x900 [ 71.135285] check_memory_region+0x13e/0x1b0 [ 71.139695] kasan_check_write+0x14/0x20 [ 71.143752] kthread_stop+0x10d/0x900 [ 71.147549] ? kthread_unpark+0x160/0x160 [ 71.151698] ? __lock_is_held+0xb5/0x140 [ 71.155785] vivid_stop_generating_vid_cap+0x2bb/0x9ae [ 71.161068] ? vivid_start_generating_vid_cap+0x4c0/0x4c0 [ 71.166604] ? _vb2_fop_release+0x3f/0x2b0 [ 71.170847] ? mutex_trylock+0x2b0/0x2b0 [ 71.174906] ? vivid_fop_release+0x66/0x440 [ 71.179222] ? __mutex_lock+0x85e/0x16f0 [ 71.183286] vid_cap_stop_streaming+0x8d/0xe0 [ 71.187775] ? vid_cap_buf_queue+0x310/0x310 [ 71.192178] __vb2_queue_cancel+0x171/0xd20 [ 71.196493] ? lock_downgrade+0x900/0x900 [ 71.200635] ? vb2_buffer_done+0xb90/0xb90 [ 71.204868] ? find_held_lock+0x36/0x1c0 [ 71.208944] ? mark_held_locks+0xc7/0x130 [ 71.213095] ? kasan_check_write+0x14/0x20 [ 71.217323] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 71.222246] ? kasan_check_read+0x11/0x20 [ 71.226401] ? wait_for_completion+0x8a0/0x8a0 [ 71.230976] ? trace_hardirqs_off_caller+0x310/0x310 [ 71.236073] ? ep_modify+0xc10/0xc10 [ 71.239815] vb2_core_streamoff+0x60/0x140 [ 71.244049] __vb2_cleanup_fileio+0x73/0x160 [ 71.248490] vb2_core_queue_release+0x1e/0x80 [ 71.252983] _vb2_fop_release+0x1d2/0x2b0 [ 71.257151] vb2_fop_release+0x77/0xc0 [ 71.261035] vivid_fop_release+0x18e/0x440 [ 71.265263] ? vivid_remove+0x460/0x460 [ 71.269230] v4l2_release+0x224/0x3a0 [ 71.273022] ? dev_debug_store+0x140/0x140 [ 71.277259] __fput+0x385/0xa30 [ 71.280551] ? get_max_files+0x20/0x20 [ 71.284443] ? trace_hardirqs_on+0xbd/0x310 [ 71.288756] ? kasan_check_read+0x11/0x20 [ 71.292910] ? task_work_run+0x1af/0x2a0 [ 71.296974] ? trace_hardirqs_off_caller+0x310/0x310 [ 71.302076] ? fput+0x130/0x1a0 [ 71.305351] ____fput+0x15/0x20 [ 71.308643] task_work_run+0x1e8/0x2a0 [ 71.312526] ? task_work_cancel+0x240/0x240 [ 71.316845] ? do_syscall_64+0x9a/0x820 [ 71.320819] exit_to_usermode_loop+0x318/0x380 [ 71.325398] ? __bpf_trace_sys_exit+0x30/0x30 [ 71.329894] do_syscall_64+0x6be/0x820 [ 71.333776] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 71.339147] ? syscall_return_slowpath+0x5e0/0x5e0 [ 71.344089] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 71.348927] ? trace_hardirqs_on_caller+0x310/0x310 [ 71.353947] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 71.358974] ? prepare_exit_to_usermode+0x291/0x3b0 [ 71.364006] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 71.368877] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 71.374060] RIP: 0033:0x457569 [ 71.377254] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 71.396176] RSP: 002b:00007f876efaac78 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 71.403888] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 0000000000457569 [ 71.411157] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000004 [ 71.418419] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 71.425690] R10: 0000000020000280 R11: 0000000000000246 R12: 00007f876efab6d4 [ 71.432950] R13: 00000000004bdb6c R14: 00000000004cc9b0 R15: 00000000ffffffff [ 71.440222] ================================================================== [ 71.447570] Disabling lock debugging due to kernel taint [ 71.456405] Kernel panic - not syncing: panic_on_warn set ... [ 71.462322] CPU: 0 PID: 7836 Comm: syz-executor5 Tainted: G B 4.20.0-rc1+ #325 [ 71.471007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 71.480435] Call Trace: [ 71.483020] dump_stack+0x244/0x39d [ 71.486639] ? dump_stack_print_info.cold.1+0x20/0x20 [ 71.491822] panic+0x2ad/0x55c [ 71.495040] ? add_taint.cold.5+0x16/0x16 [ 71.499178] ? preempt_schedule+0x4d/0x60 [ 71.503323] ? ___preempt_schedule+0x16/0x18 [ 71.507739] ? trace_hardirqs_on+0xb4/0x310 [ 71.512059] kasan_end_report+0x47/0x4f [ 71.516024] kasan_report.cold.8+0x76/0x309 [ 71.520358] ? kthread_stop+0x10d/0x900 [ 71.524327] check_memory_region+0x13e/0x1b0 [ 71.528742] kasan_check_write+0x14/0x20 [ 71.532808] kthread_stop+0x10d/0x900 [ 71.536638] ? kthread_unpark+0x160/0x160 [ 71.540780] ? __lock_is_held+0xb5/0x140 [ 71.544851] vivid_stop_generating_vid_cap+0x2bb/0x9ae [ 71.550121] ? vivid_start_generating_vid_cap+0x4c0/0x4c0 [ 71.555647] ? _vb2_fop_release+0x3f/0x2b0 [ 71.559876] ? mutex_trylock+0x2b0/0x2b0 [ 71.563942] ? vivid_fop_release+0x66/0x440 [ 71.568267] ? __mutex_lock+0x85e/0x16f0 [ 71.572322] vid_cap_stop_streaming+0x8d/0xe0 [ 71.576825] ? vid_cap_buf_queue+0x310/0x310 [ 71.581223] __vb2_queue_cancel+0x171/0xd20 [ 71.585537] ? lock_downgrade+0x900/0x900 [ 71.589676] ? vb2_buffer_done+0xb90/0xb90 [ 71.593908] ? find_held_lock+0x36/0x1c0 [ 71.597971] ? mark_held_locks+0xc7/0x130 [ 71.602115] ? kasan_check_write+0x14/0x20 [ 71.606357] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 71.611276] ? kasan_check_read+0x11/0x20 [ 71.615415] ? wait_for_completion+0x8a0/0x8a0 [ 71.619987] ? trace_hardirqs_off_caller+0x310/0x310 [ 71.625087] ? ep_modify+0xc10/0xc10 [ 71.628802] vb2_core_streamoff+0x60/0x140 [ 71.633058] __vb2_cleanup_fileio+0x73/0x160 [ 71.637464] vb2_core_queue_release+0x1e/0x80 [ 71.641951] _vb2_fop_release+0x1d2/0x2b0 [ 71.646087] vb2_fop_release+0x77/0xc0 [ 71.649966] vivid_fop_release+0x18e/0x440 [ 71.654190] ? vivid_remove+0x460/0x460 [ 71.658155] v4l2_release+0x224/0x3a0 [ 71.661952] ? dev_debug_store+0x140/0x140 [ 71.666185] __fput+0x385/0xa30 [ 71.669471] ? get_max_files+0x20/0x20 [ 71.673364] ? trace_hardirqs_on+0xbd/0x310 [ 71.677677] ? kasan_check_read+0x11/0x20 [ 71.681826] ? task_work_run+0x1af/0x2a0 [ 71.685887] ? trace_hardirqs_off_caller+0x310/0x310 [ 71.690984] ? fput+0x130/0x1a0 [ 71.694259] ____fput+0x15/0x20 [ 71.697534] task_work_run+0x1e8/0x2a0 [ 71.701416] ? task_work_cancel+0x240/0x240 [ 71.705733] ? do_syscall_64+0x9a/0x820 [ 71.709701] exit_to_usermode_loop+0x318/0x380 [ 71.714272] ? __bpf_trace_sys_exit+0x30/0x30 [ 71.718759] do_syscall_64+0x6be/0x820 [ 71.722648] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 71.728012] ? syscall_return_slowpath+0x5e0/0x5e0 [ 71.732940] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 71.737785] ? trace_hardirqs_on_caller+0x310/0x310 [ 71.742796] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 71.747811] ? prepare_exit_to_usermode+0x291/0x3b0 [ 71.752827] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 71.757666] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 71.762847] RIP: 0033:0x457569 [ 71.766035] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 71.784925] RSP: 002b:00007f876efaac78 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 71.792629] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 0000000000457569 [ 71.799887] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000004 [ 71.807147] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 71.814418] R10: 0000000020000280 R11: 0000000000000246 R12: 00007f876efab6d4 [ 71.821683] R13: 00000000004bdb6c R14: 00000000004cc9b0 R15: 00000000ffffffff [ 71.830121] Kernel Offset: disabled [ 71.833748] Rebooting in 86400 seconds..