[   74.039761][   T26] audit: type=1800 audit(1564593611.954:27): pid=10134 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[   74.078641][   T26] audit: type=1800 audit(1564593611.964:28): pid=10134 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   74.709125][   T26] audit: type=1800 audit(1564593612.704:29): pid=10134 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
[   74.746211][   T26] audit: type=1800 audit(1564593612.704:30): pid=10134 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.1.11' (ECDSA) to the list of known hosts.
2019/07/31 17:26:24 parsed 1 programs
2019/07/31 17:26:26 executed programs: 0
syzkaller login: [  448.183754][T10308] IPVS: ftp: loaded support on port[0] = 21
[  448.201368][T10310] IPVS: ftp: loaded support on port[0] = 21
[  448.202866][T10306] IPVS: ftp: loaded support on port[0] = 21
[  448.232382][T10312] IPVS: ftp: loaded support on port[0] = 21
[  448.302851][T10316] IPVS: ftp: loaded support on port[0] = 21
[  448.369097][T10314] IPVS: ftp: loaded support on port[0] = 21
[  448.489865][T10306] chnl_net:caif_netlink_parms(): no params data found
[  448.564074][T10310] chnl_net:caif_netlink_parms(): no params data found
[  448.626628][T10308] chnl_net:caif_netlink_parms(): no params data found
[  448.646220][T10306] bridge0: port 1(bridge_slave_0) entered blocking state
[  448.653447][T10306] bridge0: port 1(bridge_slave_0) entered disabled state
[  448.661148][T10306] device bridge_slave_0 entered promiscuous mode
[  448.668397][T10312] chnl_net:caif_netlink_parms(): no params data found
[  448.682396][T10316] chnl_net:caif_netlink_parms(): no params data found
[  448.697708][T10306] bridge0: port 2(bridge_slave_1) entered blocking state
[  448.704768][T10306] bridge0: port 2(bridge_slave_1) entered disabled state
[  448.713732][T10306] device bridge_slave_1 entered promiscuous mode
[  448.783091][T10306] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  448.792392][T10310] bridge0: port 1(bridge_slave_0) entered blocking state
[  448.799571][T10310] bridge0: port 1(bridge_slave_0) entered disabled state
[  448.807403][T10310] device bridge_slave_0 entered promiscuous mode
[  448.817611][T10310] bridge0: port 2(bridge_slave_1) entered blocking state
[  448.825409][T10310] bridge0: port 2(bridge_slave_1) entered disabled state
[  448.833325][T10310] device bridge_slave_1 entered promiscuous mode
[  448.843238][T10314] chnl_net:caif_netlink_parms(): no params data found
[  448.857128][T10306] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  448.885252][T10308] bridge0: port 1(bridge_slave_0) entered blocking state
[  448.893501][T10308] bridge0: port 1(bridge_slave_0) entered disabled state
[  448.901108][T10308] device bridge_slave_0 entered promiscuous mode
[  448.908441][T10308] bridge0: port 2(bridge_slave_1) entered blocking state
[  448.915535][T10308] bridge0: port 2(bridge_slave_1) entered disabled state
[  448.923352][T10308] device bridge_slave_1 entered promiscuous mode
[  448.940168][T10306] team0: Port device team_slave_0 added
[  448.945959][T10316] bridge0: port 1(bridge_slave_0) entered blocking state
[  448.953867][T10316] bridge0: port 1(bridge_slave_0) entered disabled state
[  448.961723][T10316] device bridge_slave_0 entered promiscuous mode
[  448.972358][T10312] bridge0: port 1(bridge_slave_0) entered blocking state
[  448.979865][T10312] bridge0: port 1(bridge_slave_0) entered disabled state
[  448.987498][T10312] device bridge_slave_0 entered promiscuous mode
[  448.998279][T10312] bridge0: port 2(bridge_slave_1) entered blocking state
[  449.005328][T10312] bridge0: port 2(bridge_slave_1) entered disabled state
[  449.013007][T10312] device bridge_slave_1 entered promiscuous mode
[  449.021273][T10306] team0: Port device team_slave_1 added
[  449.030659][T10316] bridge0: port 2(bridge_slave_1) entered blocking state
[  449.038020][T10316] bridge0: port 2(bridge_slave_1) entered disabled state
[  449.045628][T10316] device bridge_slave_1 entered promiscuous mode
[  449.059580][T10310] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  449.070951][T10308] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  449.086235][T10308] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  449.121476][T10310] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  449.187967][T10306] device hsr_slave_0 entered promiscuous mode
[  449.246636][T10306] device hsr_slave_1 entered promiscuous mode
[  449.298310][T10316] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  449.307626][T10314] bridge0: port 1(bridge_slave_0) entered blocking state
[  449.314791][T10314] bridge0: port 1(bridge_slave_0) entered disabled state
[  449.322903][T10314] device bridge_slave_0 entered promiscuous mode
[  449.334966][T10314] bridge0: port 2(bridge_slave_1) entered blocking state
[  449.342101][T10314] bridge0: port 2(bridge_slave_1) entered disabled state
[  449.349914][T10314] device bridge_slave_1 entered promiscuous mode
[  449.362004][T10312] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  449.372519][T10316] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  449.389440][T10310] team0: Port device team_slave_0 added
[  449.399860][T10308] team0: Port device team_slave_0 added
[  449.411659][T10312] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  449.426192][T10316] team0: Port device team_slave_0 added
[  449.433580][T10310] team0: Port device team_slave_1 added
[  449.440615][T10308] team0: Port device team_slave_1 added
[  449.449037][T10314] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  449.469064][T10316] team0: Port device team_slave_1 added
[  449.475653][T10312] team0: Port device team_slave_0 added
[  449.482832][T10312] team0: Port device team_slave_1 added
[  449.494975][T10314] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  449.516034][T10314] team0: Port device team_slave_0 added
[  449.588993][T10308] device hsr_slave_0 entered promiscuous mode
[  449.626748][T10308] device hsr_slave_1 entered promiscuous mode
[  449.668023][T10308] debugfs: Directory 'hsr0' with parent '/' already present!
[  449.678154][T10314] team0: Port device team_slave_1 added
[  449.729183][T10312] device hsr_slave_0 entered promiscuous mode
[  449.788019][T10312] device hsr_slave_1 entered promiscuous mode
[  449.836514][T10312] debugfs: Directory 'hsr0' with parent '/' already present!
[  449.898028][T10310] device hsr_slave_0 entered promiscuous mode
[  449.946812][T10310] device hsr_slave_1 entered promiscuous mode
[  449.996494][T10310] debugfs: Directory 'hsr0' with parent '/' already present!
[  450.037899][T10316] device hsr_slave_0 entered promiscuous mode
[  450.086677][T10316] device hsr_slave_1 entered promiscuous mode
[  450.126464][T10316] debugfs: Directory 'hsr0' with parent '/' already present!
[  450.218982][T10314] device hsr_slave_0 entered promiscuous mode
[  450.266774][T10314] device hsr_slave_1 entered promiscuous mode
[  450.306529][T10314] debugfs: Directory 'hsr0' with parent '/' already present!
[  450.365390][T10308] 8021q: adding VLAN 0 to HW filter on device bond0
[  450.406173][T10308] 8021q: adding VLAN 0 to HW filter on device team0
[  450.421809][T10316] 8021q: adding VLAN 0 to HW filter on device bond0
[  450.430780][T10318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  450.438398][T10318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  450.454334][T10306] 8021q: adding VLAN 0 to HW filter on device bond0
[  450.478659][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  450.487458][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  450.495752][T10329] bridge0: port 1(bridge_slave_0) entered blocking state
[  450.502867][T10329] bridge0: port 1(bridge_slave_0) entered forwarding state
[  450.511164][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  450.519789][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  450.528154][T10329] bridge0: port 2(bridge_slave_1) entered blocking state
[  450.535180][T10329] bridge0: port 2(bridge_slave_1) entered forwarding state
[  450.543327][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  450.558945][T10312] 8021q: adding VLAN 0 to HW filter on device bond0
[  450.568717][T10318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  450.578897][T10318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  450.599638][T10310] 8021q: adding VLAN 0 to HW filter on device bond0
[  450.614412][T10308] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  450.625223][T10308] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  450.640104][T10316] 8021q: adding VLAN 0 to HW filter on device team0
[  450.652740][T10314] 8021q: adding VLAN 0 to HW filter on device bond0
[  450.660947][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  450.670967][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  450.679808][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  450.688706][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  450.697337][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  450.705866][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  450.714547][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  450.723085][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  450.731616][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  450.739956][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  450.748471][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  450.756091][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  450.776273][T10312] 8021q: adding VLAN 0 to HW filter on device team0
[  450.789878][T10306] 8021q: adding VLAN 0 to HW filter on device team0
[  450.804832][T10310] 8021q: adding VLAN 0 to HW filter on device team0
[  450.815637][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  450.823685][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  450.831352][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  450.839054][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  450.846823][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  450.855283][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  450.864151][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  450.871234][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  450.879313][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  450.888005][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  450.896274][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  450.903387][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  450.910980][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  450.919003][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  450.926781][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  450.934415][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  450.942167][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  450.950895][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  450.959466][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  450.966552][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  450.975766][T10308] 8021q: adding VLAN 0 to HW filter on device batadv0
[  450.998708][T10314] 8021q: adding VLAN 0 to HW filter on device team0
[  451.020240][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  451.028478][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  451.037290][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  451.045053][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  451.053694][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  451.062561][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  451.069674][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  451.077910][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  451.086504][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  451.094823][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  451.101934][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  451.109830][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  451.118496][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  451.126885][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  451.133921][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  451.141766][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  451.150806][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  451.159468][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  451.166572][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  451.174151][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  451.183056][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  451.191647][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  451.200227][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  451.208776][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  451.215818][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  451.223652][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  451.232301][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  451.240982][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  451.249559][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  451.258133][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  451.266765][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  451.275674][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  451.283700][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  451.301120][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  451.314495][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  451.323975][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  451.333485][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  451.342008][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  451.350563][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  451.386580][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  451.395223][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  451.404439][T10329] bridge0: port 1(bridge_slave_0) entered blocking state
[  451.411566][T10329] bridge0: port 1(bridge_slave_0) entered forwarding state
[  451.419840][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  451.428414][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  451.436802][T10329] bridge0: port 2(bridge_slave_1) entered blocking state
[  451.443892][T10329] bridge0: port 2(bridge_slave_1) entered forwarding state
[  451.451608][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  451.460103][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  451.468803][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  451.477050][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  451.485238][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  451.493794][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  451.502253][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  451.510761][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  451.519192][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  451.527865][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  451.536422][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  451.544921][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  451.553352][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  451.561904][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  451.570233][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  451.578209][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  451.586101][T10329] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  451.598905][T10310] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  451.619011][T10312] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  451.629612][T10312] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  451.644453][T10314] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  451.683836][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  451.692627][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  451.702183][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  451.712728][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  451.726847][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  451.735324][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  451.744364][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  451.753386][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  451.761827][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  451.770407][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  451.778909][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  451.788232][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  451.796472][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  451.804727][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  451.813950][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  451.850559][T10314] 8021q: adding VLAN 0 to HW filter on device batadv0
[  451.867683][T10318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  451.880076][T10318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  451.896902][T10318] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  451.905451][T10318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  451.914207][T10318] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  451.922575][T10318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  451.930772][T10318] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  451.939032][T10318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  451.947742][T10318] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  451.956962][T10318] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  451.965620][T10316] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  451.981219][T10306] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  452.005175][T10312] 8021q: adding VLAN 0 to HW filter on device batadv0
[  452.050269][T10316] 8021q: adding VLAN 0 to HW filter on device batadv0
[  452.068520][T10310] 8021q: adding VLAN 0 to HW filter on device batadv0
[  452.083083][T10306] 8021q: adding VLAN 0 to HW filter on device batadv0
2019/07/31 17:26:31 executed programs: 44
2019/07/31 17:26:36 executed programs: 271
2019/07/31 17:26:41 executed programs: 496
2019/07/31 17:26:46 executed programs: 717
2019/07/31 17:26:51 executed programs: 948
2019/07/31 17:26:56 executed programs: 1171
2019/07/31 17:27:01 executed programs: 1390
2019/07/31 17:27:06 executed programs: 1609
2019/07/31 17:27:11 executed programs: 1830
2019/07/31 17:27:16 executed programs: 2045
2019/07/31 17:27:21 executed programs: 2259
2019/07/31 17:27:26 executed programs: 2477
2019/07/31 17:27:31 executed programs: 2678
2019/07/31 17:27:36 executed programs: 2887
2019/07/31 17:27:41 executed programs: 3097
2019/07/31 17:27:46 executed programs: 3303
2019/07/31 17:27:51 executed programs: 3522
2019/07/31 17:27:56 executed programs: 3740
2019/07/31 17:28:01 executed programs: 3949
2019/07/31 17:28:06 executed programs: 4149
2019/07/31 17:28:11 executed programs: 4349
2019/07/31 17:28:16 executed programs: 4548
[  559.528129][T27994] ==================================================================
[  559.536377][T27994] BUG: KASAN: use-after-free in sk_psock_unlink+0x3e0/0x440
[  559.543680][T27994] Read of size 8 at addr ffff88809ca36400 by task syz-executor.1/27994
[  559.551915][T27994] 
[  559.554260][T27994] CPU: 1 PID: 27994 Comm: syz-executor.1 Not tainted 5.3.0-rc2-next-20190731 #56
[  559.563377][T27994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  559.573443][T27994] Call Trace:
[  559.576819][T27994]  dump_stack+0x172/0x1f0
[  559.581167][T27994]  ? sk_psock_unlink+0x3e0/0x440
[  559.586190][T27994]  ? tcp_check_oom+0x560/0x560
[  559.590978][T27994]  print_address_description.cold+0xd4/0x306
[  559.596977][T27994]  ? sk_psock_unlink+0x3e0/0x440
[  559.601930][T27994]  ? sk_psock_unlink+0x3e0/0x440
[  559.606933][T27994]  ? tcp_check_oom+0x560/0x560
[  559.611720][T27994]  __kasan_report.cold+0x1b/0x36
[  559.616681][T27994]  ? sk_psock_unlink+0x3e0/0x440
[  559.621637][T27994]  kasan_report+0x12/0x17
[  559.625984][T27994]  __asan_report_load8_noabort+0x14/0x20
[  559.631640][T27994]  sk_psock_unlink+0x3e0/0x440
[  559.636482][T27994]  ? sk_psock_link_pop+0x186/0x1f0
[  559.641710][T27994]  ? tcp_check_oom+0x560/0x560
[  559.646550][T27994]  tcp_bpf_remove+0x21/0x50
[  559.651065][T27994]  tcp_bpf_close+0x130/0x390
[  559.655736][T27994]  inet_release+0xed/0x200
[  559.660237][T27994]  inet6_release+0x53/0x80
[  559.664829][T27994]  __sock_release+0xce/0x280
[  559.669431][T27994]  sock_close+0x1e/0x30
[  559.673599][T27994]  __fput+0x2ff/0x890
[  559.678543][T27994]  ? __sock_release+0x280/0x280
[  559.683405][T27994]  ____fput+0x16/0x20
[  559.687395][T27994]  task_work_run+0x145/0x1c0
[  559.692000][T27994]  exit_to_usermode_loop+0x316/0x380
[  559.697309][T27994]  do_syscall_64+0x65f/0x760
[  559.701984][T27994]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  559.707891][T27994] RIP: 0033:0x413511
[  559.711795][T27994] Code: 75 14 b8 03 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 04 1b 00 00 c3 48 83 ec 08 e8 0a fc ff ff 48 89 04 24 b8 03 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 53 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01
[  559.731408][T27994] RSP: 002b:00007ffeb1e25350 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  559.739825][T27994] RAX: 0000000000000000 RBX: 0000000000000006 RCX: 0000000000413511
[  559.747803][T27994] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[  559.755780][T27994] RBP: 0000000000000001 R08: ffffffffffffffff R09: ffffffffffffffff
[  559.755788][T27994] R10: 00007ffeb1e25430 R11: 0000000000000293 R12: 000000000075bf20
[  559.755797][T27994] R13: 000000000008897f R14: 00000000007610a8 R15: ffffffffffffffff
[  559.755818][T27994] 
[  559.771771][T27994] Allocated by task 28004:
[  559.771790][T27994]  save_stack+0x23/0x90
[  559.771801][T27994]  __kasan_kmalloc.constprop.0+0xcf/0xe0
[  559.771810][T27994]  kasan_kmalloc+0x9/0x10
[  559.771820][T27994]  kmem_cache_alloc_trace+0x158/0x790
[  559.771833][T27994]  sock_hash_alloc+0x1e3/0x5b0
[  559.771855][T27994]  __do_sys_bpf+0x475/0x3460
[  559.792286][T27994]  __x64_sys_bpf+0x73/0xb0
[  559.792301][T27994]  do_syscall_64+0xfa/0x760
[  559.792323][T27994]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  559.802633][T27994] 
[  559.802642][T27994] Freed by task 3060:
[  559.802658][T27994]  save_stack+0x23/0x90
[  559.802669][T27994]  __kasan_slab_free+0x102/0x150
[  559.802687][T27994]  kasan_slab_free+0xe/0x10
[  559.812819][T27994]  kfree+0x10a/0x2c0
[  559.812834][T27994]  sock_hash_free+0x327/0x4a0
[  559.812848][T27994]  bpf_map_free_deferred+0xb3/0x100
[  559.812868][T27994]  process_one_work+0x9af/0x1740
[  559.821860][T27994]  worker_thread+0x98/0xe40
[  559.821870][T27994]  kthread+0x361/0x430
[  559.821889][T27994]  ret_from_fork+0x24/0x30
[  559.827981][ T3877] kobject: 'loop2' (000000007e34d184): kobject_uevent_env
[  559.832248][T27994] 
[  559.832260][T27994] The buggy address belongs to the object at ffff88809ca36300
[  559.832260][T27994]  which belongs to the cache kmalloc-512 of size 512
[  559.832271][T27994] The buggy address is located 256 bytes inside of
[  559.832271][T27994]  512-byte region [ffff88809ca36300, ffff88809ca36500)
[  559.832283][T27994] The buggy address belongs to the page:
[  559.834700][ T3877] kobject: 'loop2' (000000007e34d184): fill_kobj_path: path = '/devices/virtual/block/loop2'
[  559.838585][T27994] page:ffffea0002728d80 refcount:1 mapcount:0 mapping:ffff8880aa400a80 index:0x0
[  559.838597][T27994] flags: 0x1fffc0000000200(slab)
[  559.838613][T27994] raw: 01fffc0000000200 ffffea000245d448 ffffea0002441c48 ffff8880aa400a80
[  559.838627][T27994] raw: 0000000000000000 ffff88809ca36080 0000000100000006 0000000000000000
[  559.838632][T27994] page dumped because: kasan: bad access detected
[  559.838635][T27994] 
[  559.838647][T27994] Memory state around the buggy address:
[  559.844445][ T3877] kobject: 'loop0' (000000007474ef54): kobject_uevent_env
[  559.847723][T27994]  ffff88809ca36300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  559.847733][T27994]  ffff88809ca36380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  559.847741][T27994] >ffff88809ca36400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  559.847746][T27994]                    ^
[  559.847754][T27994]  ffff88809ca36480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  559.847773][T27994]  ffff88809ca36500: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  559.852542][ T3877] kobject: 'loop0' (000000007474ef54): fill_kobj_path: path = '/devices/virtual/block/loop0'
[  559.856167][T27994] ==================================================================
[  559.872784][T27994] Kernel panic - not syncing: panic_on_warn set ...
[  559.882394][ T3877] kobject: 'loop4' (00000000a0b40d5a): kobject_uevent_env
[  559.884340][T27994] CPU: 1 PID: 27994 Comm: syz-executor.1 Tainted: G    B             5.3.0-rc2-next-20190731 #56
[  559.891681][ T3877] kobject: 'loop4' (00000000a0b40d5a): fill_kobj_path: path = '/devices/virtual/block/loop4'
[  559.893764][T27994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  560.096528][T27994] Call Trace:
[  560.099820][T27994]  dump_stack+0x172/0x1f0
[  560.104147][T27994]  ? tcp_check_oom+0x560/0x560
[  560.108955][T27994]  panic+0x2dc/0x755
[  560.112836][T27994]  ? add_taint.cold+0x16/0x16
[  560.117516][T27994]  ? sk_psock_unlink+0x3e0/0x440
[  560.122559][T27994]  ? tcp_check_oom+0x560/0x560
[  560.127643][T27994]  ? preempt_schedule+0x4b/0x60
[  560.132486][T27994]  ? ___preempt_schedule+0x16/0x20
[  560.137581][T27994]  ? trace_hardirqs_on+0x5e/0x240
[  560.142594][T27994]  ? sk_psock_unlink+0x3e0/0x440
[  560.147520][T27994]  ? tcp_check_oom+0x560/0x560
[  560.152269][T27994]  end_report+0x47/0x4f
[  560.156413][T27994]  ? sk_psock_unlink+0x3e0/0x440
[  560.161336][T27994]  __kasan_report.cold+0xe/0x36
[  560.166192][T27994]  ? sk_psock_unlink+0x3e0/0x440
[  560.171125][T27994]  kasan_report+0x12/0x17
[  560.175447][T27994]  __asan_report_load8_noabort+0x14/0x20
[  560.181088][T27994]  sk_psock_unlink+0x3e0/0x440
[  560.185945][T27994]  ? sk_psock_link_pop+0x186/0x1f0
[  560.191043][T27994]  ? tcp_check_oom+0x560/0x560
[  560.195794][T27994]  tcp_bpf_remove+0x21/0x50
[  560.200285][T27994]  tcp_bpf_close+0x130/0x390
[  560.204867][T27994]  inet_release+0xed/0x200
[  560.209276][T27994]  inet6_release+0x53/0x80
[  560.213679][T27994]  __sock_release+0xce/0x280
[  560.218258][T27994]  sock_close+0x1e/0x30
[  560.222485][T27994]  __fput+0x2ff/0x890
[  560.226452][T27994]  ? __sock_release+0x280/0x280
[  560.231295][T27994]  ____fput+0x16/0x20
[  560.235267][T27994]  task_work_run+0x145/0x1c0
[  560.239848][T27994]  exit_to_usermode_loop+0x316/0x380
[  560.245124][T27994]  do_syscall_64+0x65f/0x760
[  560.249701][T27994]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  560.255589][T27994] RIP: 0033:0x413511
[  560.259475][T27994] Code: 75 14 b8 03 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 04 1b 00 00 c3 48 83 ec 08 e8 0a fc ff ff 48 89 04 24 b8 03 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 53 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01
[  560.279068][T27994] RSP: 002b:00007ffeb1e25350 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  560.287487][T27994] RAX: 0000000000000000 RBX: 0000000000000006 RCX: 0000000000413511
[  560.295443][T27994] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[  560.303404][T27994] RBP: 0000000000000001 R08: ffffffffffffffff R09: ffffffffffffffff
[  560.311363][T27994] R10: 00007ffeb1e25430 R11: 0000000000000293 R12: 000000000075bf20
[  560.319339][T27994] R13: 000000000008897f R14: 00000000007610a8 R15: ffffffffffffffff
[  560.328462][T27994] Kernel Offset: disabled
[  560.332789][T27994] Rebooting in 86400 seconds..