[   39.178185] audit: type=1800 audit(1568451946.365:32): pid=7445 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2450 res=0
Starting mcstransd: 
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting file context maintaining daemon: restorecond[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   39.899264] audit: type=1800 audit(1568451947.175:33): pid=7445 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2465 res=0

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.104' (ECDSA) to the list of known hosts.
syzkaller login: [  332.908385] kauditd_printk_skb: 2 callbacks suppressed
[  332.908406] audit: type=1400 audit(1568452240.185:36): avc:  denied  { map } for  pid=7630 comm="syz-executor749" path="/root/syz-executor749648848" dev="sda1" ino=1426 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1
[  332.928889] IPVS: ftp: loaded support on port[0] = 21
[  333.002774] chnl_net:caif_netlink_parms(): no params data found
[  333.035810] bridge0: port 1(bridge_slave_0) entered blocking state
[  333.042575] bridge0: port 1(bridge_slave_0) entered disabled state
[  333.050112] device bridge_slave_0 entered promiscuous mode
[  333.057540] bridge0: port 2(bridge_slave_1) entered blocking state
[  333.064034] bridge0: port 2(bridge_slave_1) entered disabled state
[  333.070957] device bridge_slave_1 entered promiscuous mode
[  333.086779] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  333.095903] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  333.112321] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  333.120171] team0: Port device team_slave_0 added
[  333.125689] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  333.133078] team0: Port device team_slave_1 added
[  333.138504] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  333.145819] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  333.225863] device hsr_slave_0 entered promiscuous mode
[  333.294562] device hsr_slave_1 entered promiscuous mode
[  333.344634] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[  333.351651] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[  333.365521] bridge0: port 2(bridge_slave_1) entered blocking state
[  333.371939] bridge0: port 2(bridge_slave_1) entered forwarding state
[  333.378903] bridge0: port 1(bridge_slave_0) entered blocking state
[  333.385312] bridge0: port 1(bridge_slave_0) entered forwarding state
[  333.416712] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready
[  333.423426] 8021q: adding VLAN 0 to HW filter on device bond0
[  333.433164] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  333.441999] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  333.460903] bridge0: port 1(bridge_slave_0) entered disabled state
[  333.468350] bridge0: port 2(bridge_slave_1) entered disabled state
[  333.476494] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  333.486533] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[  333.492704] 8021q: adding VLAN 0 to HW filter on device team0
[  333.502311] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  333.510327] bridge0: port 1(bridge_slave_0) entered blocking state
[  333.516843] bridge0: port 1(bridge_slave_0) entered forwarding state
[  333.526791] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  333.534483] bridge0: port 2(bridge_slave_1) entered blocking state
[  333.540832] bridge0: port 2(bridge_slave_1) entered forwarding state
[  333.554347] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  333.562850] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  333.572144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  333.582782] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  333.592737] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  333.603556] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[  333.609804] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
executing program
[  333.622229] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[  333.632652] 8021q: adding VLAN 0 to HW filter on device batadv0
[  438.683930] rcu: INFO: rcu_preempt self-detected stall on CPU
[  438.690263] rcu: 	1-...!: (1 GPs behind) idle=4a2/0/0x3 softirq=11814/11815 fqs=23 
[  438.698257] rcu: 	 (t=10500 jiffies g=5381 q=21)
[  438.703188] rcu: rcu_preempt kthread starved for 10454 jiffies! g5381 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[  438.713576] rcu: RCU grace-period kthread stack dump:
[  438.718746] rcu_preempt     R  running task    29424    10      2 0x80000000
[  438.726024] Call Trace:
[  438.728720]  __schedule+0x866/0x1dc0
[  438.732437]  ? pci_mmcfg_check_reserved+0x170/0x170
[  438.737438]  ? _raw_spin_unlock_irqrestore+0x6b/0xe0
[  438.742572]  ? lockdep_hardirqs_on+0x415/0x5d0
[  438.747272]  ? trace_hardirqs_on+0x67/0x220
[  438.751583]  schedule+0x92/0x1c0
[  438.754934]  schedule_timeout+0x4db/0xfc0
[  438.759075]  ? usleep_range+0x170/0x170
[  438.763209]  ? trace_hardirqs_on+0x67/0x220
[  438.767566]  ? kasan_check_read+0x11/0x20
[  438.771725]  ? __next_timer_interrupt+0x1a0/0x1a0
[  438.776688]  ? prepare_to_swait_exclusive+0x120/0x120
[  438.781896]  rcu_gp_kthread+0xd5c/0x2190
[  438.785974]  ? rcu_blocking_is_gp+0x90/0x90
[  438.790284]  ? trace_hardirqs_on+0x67/0x220
[  438.794601]  ? kasan_check_read+0x11/0x20
[  438.798767]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  438.805289]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  438.810964]  ? __kthread_parkme+0xfb/0x1b0
[  438.815297]  kthread+0x354/0x420
[  438.818660]  ? rcu_blocking_is_gp+0x90/0x90
[  438.822976]  ? kthread_cancel_delayed_work_sync+0x20/0x20
[  438.830709]  ret_from_fork+0x24/0x30
[  438.834428] NMI backtrace for cpu 1
[  438.838482] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 4.19.72 #0
[  438.844940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  438.854288] Call Trace:
[  438.856866]  <IRQ>
[  438.859084]  dump_stack+0x172/0x1f0
[  438.862803]  nmi_cpu_backtrace.cold+0x63/0xa4
[  438.867340]  ? lapic_can_unplug_cpu.cold+0x45/0x45
[  438.872268]  nmi_trigger_cpumask_backtrace+0x1b0/0x1f8
[  438.877536]  arch_trigger_cpumask_backtrace+0x14/0x20
[  438.882901]  rcu_dump_cpu_stacks+0x189/0x1d5
[  438.887343]  ? wake_up_process+0x10/0x20
[  438.891408]  rcu_check_callbacks.cold+0x5e3/0xd90
[  438.896242]  ? trace_hardirqs_off+0x62/0x220
[  438.900683]  update_process_times+0x32/0x80
[  438.905025]  tick_sched_handle+0xa2/0x190
[  438.909165]  tick_sched_timer+0x47/0x130
[  438.913218]  __hrtimer_run_queues+0x33b/0xdc0
[  438.917704]  ? tick_sched_do_timer+0x1b0/0x1b0
[  438.922278]  ? hrtimer_fixup_activate+0x30/0x30
[  438.926937]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  438.932550]  ? ktime_get_update_offsets_now+0x2d3/0x440
[  438.937906]  hrtimer_interrupt+0x314/0x770
[  438.942140]  smp_apic_timer_interrupt+0x111/0x550
[  438.947069]  apic_timer_interrupt+0xf/0x20
[  438.951294] RIP: 0010:write_comp_data+0x10/0x70
[  438.955952] Code: 00 00 48 8b 11 48 83 c2 01 48 39 d0 76 07 48 89 34 d1 48 89 11 5d c3 0f 1f 00 65 4c 8b 04 25 40 ee 01 00 65 8b 05 e0 96 96 7e <a9> 00 01 1f 00 75 51 41 8b 80 d0 12 00 00 83 f8 03 75 45 49 8b 80
[  438.974841] RSP: 0018:ffff8880ae906fb0 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
[  438.982541] RAX: 0000000000000702 RBX: ffff8880a6859df8 RCX: ffffffff858e78e9
[  438.989806] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[  438.997157] RBP: ffff8880ae906fb8 R08: ffff8880aa2703c0 R09: 0000000000000007
[  439.004414] R10: ffff8880aa270d58 R11: 000000006028c30c R12: dffffc0000000000
[  439.011692] R13: ffff8880a6859b40 R14: ffff8880a6859e90 R15: 0000000000000000
[  439.018975]  ? apic_timer_interrupt+0xa/0x20
[  439.023502]  ? hhf_dequeue+0xb9/0xa00
[  439.027302]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  439.032830]  hhf_dequeue+0xb9/0xa00
[  439.036502]  __qdisc_run+0x1e7/0x1960
[  439.040353]  __dev_queue_xmit+0x165c/0x2fe0
[  439.044669]  ? netdev_pick_tx+0x300/0x300
[  439.048810]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  439.054395]  ? br_nf_post_routing+0x780/0x12f0
[  439.058993]  ? br_forward_finish+0x235/0x400
[  439.063415]  ? find_held_lock+0x35/0x130
[  439.067495]  ? br_forward_finish+0x235/0x400
[  439.071895]  dev_queue_xmit+0x18/0x20
[  439.075738]  ? dev_queue_xmit+0x18/0x20
[  439.079744]  br_dev_queue_push_xmit+0x405/0x5d0
[  439.084417]  ? kasan_check_read+0x11/0x20
[  439.088556]  br_forward_finish+0xfa/0x400
[  439.092694]  ? br_dev_queue_push_xmit+0x5d0/0x5d0
[  439.097529]  ? br_fdb_add.cold+0x8a/0x8a
[  439.101591]  ? kasan_check_read+0x11/0x20
[  439.105740]  __br_forward+0x647/0xb30
[  439.109536]  ? br_forward_finish+0x400/0x400
[  439.113940]  ? br_dev_queue_push_xmit+0x5d0/0x5d0
[  439.118778]  deliver_clone+0x61/0xc0
[  439.122482]  br_flood+0x4da/0x710
[  439.125934]  br_dev_xmit+0xeeb/0x1490
[  439.129735]  ? br_poll_controller+0x10/0x10
[  439.134051]  ? __lock_is_held+0xb6/0x140
[  439.138209]  dev_hard_start_xmit+0x1a5/0x980
[  439.142693]  ? check_preemption_disabled+0x48/0x290
[  439.147714]  __dev_queue_xmit+0x2704/0x2fe0
[  439.152024]  ? mark_held_locks+0x100/0x100
[  439.156258]  ? netdev_pick_tx+0x300/0x300
[  439.160452]  ? ip6_finish_output+0x574/0xbe0
[  439.164851]  ? find_held_lock+0x35/0x130
[  439.168904]  ? ip6_finish_output+0x574/0xbe0
[  439.173303]  ? mark_held_locks+0xb1/0x100
[  439.177445]  ? ip6_finish_output2+0x1784/0x2550
[  439.182186]  ? ip6_finish_output+0x574/0xbe0
[  439.186592]  ? ip6_finish_output2+0x1784/0x2550
[  439.191259]  dev_queue_xmit+0x18/0x20
[  439.195048]  ? dev_queue_xmit+0x18/0x20
[  439.199020]  ip6_finish_output2+0x12fd/0x2550
[  439.203565]  ? ip6_mtu+0x2e6/0x460
[  439.207110]  ? ip6_forward_finish+0x4d0/0x4d0
[  439.211595]  ? lock_downgrade+0x810/0x810
[  439.215734]  ? kasan_check_read+0x11/0x20
[  439.219876]  ip6_finish_output+0x574/0xbe0
[  439.224099]  ? ip6_finish_output+0x574/0xbe0
[  439.228584]  ip6_output+0x235/0x7c0
[  439.232201]  ? ip6_finish_output+0xbe0/0xbe0
[  439.236601]  ? ip6_fragment+0x3770/0x3770
[  439.240738]  ? icmp6_dst_alloc+0x432/0x660
[  439.245009]  mld_sendpack+0x9d3/0xeb0
[  439.248802]  ? nf_hook.constprop.0+0x560/0x560
[  439.253374]  ? mld_ifc_timer_expire+0x437/0x8a0
[  439.258080]  ? __local_bh_enable_ip+0x15a/0x270
[  439.262740]  mld_ifc_timer_expire+0x449/0x8a0
[  439.267319]  call_timer_fn+0x18d/0x720
[  439.271193]  ? mld_dad_timer_expire+0x1c0/0x1c0
[  439.275850]  ? process_timeout+0x40/0x40
[  439.279922]  ? run_timer_softirq+0x647/0x1700
[  439.284408]  ? trace_hardirqs_on+0x67/0x220
[  439.290364]  ? kasan_check_read+0x11/0x20
[  439.294517]  ? mld_dad_timer_expire+0x1c0/0x1c0
[  439.299209]  run_timer_softirq+0x652/0x1700
[  439.303541]  ? add_timer+0xbe0/0xbe0
[  439.307336]  ? kvm_clock_read+0x18/0x30
[  439.311312]  ? check_preemption_disabled+0x48/0x290
[  439.316364]  ? sched_clock+0x2e/0x50
[  439.320080]  __do_softirq+0x25c/0x921
[  439.323875]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  439.329411]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  439.334953]  irq_exit+0x180/0x1d0
[  439.338417]  smp_apic_timer_interrupt+0x13b/0x550
[  439.343267]  apic_timer_interrupt+0xf/0x20
[  439.347496]  </IRQ>
[  439.349730] RIP: 0010:native_safe_halt+0xe/0x10
[  439.354493] Code: ff ff 48 89 df e8 72 12 ae fa eb 82 e9 07 00 00 00 0f 00 2d 94 03 54 00 f4 c3 66 90 e9 07 00 00 00 0f 00 2d 84 03 54 00 fb f4 <c3> 90 55 48 89 e5 41 57 41 56 41 55 41 54 53 e8 be f4 65 fa e8 69
[  439.373380] RSP: 0018:ffff8880aa27fd00 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff13
[  439.381085] RAX: 1ffffffff10e48c4 RBX: ffff8880aa2703c0 RCX: 0000000000000000
[  439.388349] RDX: dffffc0000000000 RSI: 0000000000000001 RDI: ffff8880aa270c3c
[  439.395615] RBP: ffff8880aa27fd30 R08: ffff8880aa2703c0 R09: 0000000000000000
[  439.402869] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000001
[  439.410133] R13: ffffffff88724610 R14: 0000000000000001 R15: 0000000000000000
[  439.417407]  ? default_idle+0x4e/0x320
[  439.421291]  arch_cpu_idle+0xa/0x10
[  439.424905]  default_idle_call+0x36/0x90
[  439.429020]  do_idle+0x377/0x560
[  439.432387]  ? arch_cpu_idle_exit+0x80/0x80
[  439.436713]  cpu_startup_entry+0xc8/0xe0
[  439.440759]  ? cpu_in_idle+0x20/0x20
[  439.444511]  ? setup_APIC_timer+0x1aa/0x200
[  439.448830]  start_secondary+0x3e8/0x5b0
[  439.452886]  ? set_cpu_sibling_map+0x1860/0x1860
[  439.457659]  secondary_startup_64+0xa4/0xb0