[ 42.076373] audit: type=1800 audit(1546643539.191:25): pid=8044 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 42.112798] audit: type=1800 audit(1546643539.191:26): pid=8044 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 42.132392] audit: type=1800 audit(1546643539.191:27): pid=8044 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [....] startpar: service(s) returned failure: ssh ...[?25l[?1c7[FAIL8[?25h[?0c failed! Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.110' (ECDSA) to the list of known hosts. 2019/01/04 23:12:32 parsed 1 programs 2019/01/04 23:12:33 executed programs: 0 syzkaller login: [ 56.552985] IPVS: ftp: loaded support on port[0] = 21 [ 56.610003] chnl_net:caif_netlink_parms(): no params data found [ 56.640246] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.647021] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.654104] device bridge_slave_0 entered promiscuous mode [ 56.661469] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.667907] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.674919] device bridge_slave_1 entered promiscuous mode [ 56.690409] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 56.699030] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 56.714933] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 56.722473] team0: Port device team_slave_0 added [ 56.727898] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 56.735080] team0: Port device team_slave_1 added [ 56.740257] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 56.747565] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 56.815798] device hsr_slave_0 entered promiscuous mode [ 56.864286] device hsr_slave_1 entered promiscuous mode [ 56.944244] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 56.951214] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 56.965216] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.971747] bridge0: port 2(bridge_slave_1) entered forwarding state [ 56.978558] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.984911] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.013547] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 57.020764] 8021q: adding VLAN 0 to HW filter on device bond0 [ 57.029023] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 57.037609] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 57.057690] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.065404] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.072578] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 57.083457] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 57.089914] 8021q: adding VLAN 0 to HW filter on device team0 [ 57.098121] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.105909] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.112240] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.132923] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 57.144565] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 57.155445] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 57.162803] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 57.170890] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.177265] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.184932] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 57.192552] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 57.200128] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 57.207860] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 57.215418] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 57.222185] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 57.235415] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 57.245571] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 57.328314] kasan: CONFIG_KASAN_INLINE enabled [ 57.333007] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 57.340666] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 57.346889] CPU: 0 PID: 8247 Comm: syz-executor0 Not tainted 4.20.0+ #9 [ 57.353689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 57.363095] RIP: 0010:__smc_diag_dump.isra.0+0x32a/0x2ba0 [ 57.369298] Code: 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 26 25 00 00 48 b8 00 00 00 00 00 fc ff df 4d 8b 7f 20 49 8d 7f 0e 48 89 fa 48 c1 ea 03 <0f> b6 14 02 48 89 f8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 d2 [ 57.388211] RSP: 0018:ffff8880986f7120 EFLAGS: 00010203 [ 57.393556] RAX: dffffc0000000000 RBX: ffff8880a41f89c0 RCX: 0000000000000000 [ 57.400804] RDX: 0000000000000001 RSI: ffffffff87b6b452 RDI: 000000000000000e [ 57.408056] RBP: ffff8880986f73e8 R08: ffff8880a38ae280 R09: ffff888088900f50 [ 57.415357] R10: fffffbfff14a1128 R11: ffffffff8a508943 R12: ffff88808446c520 [ 57.422625] R13: ffff888088900f00 R14: ffff8880a41f8e20 R15: 0000000000000000 [ 57.429899] FS: 00007f25d9a8f700(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000 [ 57.438124] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 57.444000] CR2: 00007fb060950000 CR3: 0000000097735000 CR4: 00000000001406f0 [ 57.451260] Call Trace: [ 57.453846] ? __kmalloc_node_track_caller+0x4e/0x70 [ 57.458948] ? __alloc_skb+0x12d/0x730 [ 57.462855] ? smc_diag_handler_dump+0x350/0x350 [ 57.467606] ? sock_sendmsg+0xdd/0x130 [ 57.471489] ? ___sys_sendmsg+0x7ec/0x910 [ 57.475631] ? __sys_sendmsg+0x112/0x270 [ 57.479690] ? __x64_sys_sendmsg+0x78/0xb0 [ 57.483921] ? do_syscall_64+0x1a3/0x800 [ 57.487975] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 57.493334] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 57.498866] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 57.504401] ? check_preemption_disabled+0x48/0x290 [ 57.509416] ? __lock_is_held+0xb6/0x140 [ 57.513478] ? __kmalloc_node_track_caller+0x3d/0x70 [ 57.518581] ? lock_acquire+0x1db/0x570 [ 57.522553] ? smc_diag_dump_proto.isra.0+0xfb/0x3c0 [ 57.527658] ? lock_release+0xc40/0xc40 [ 57.531637] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 57.537171] ? kasan_check_write+0x14/0x20 [ 57.541408] smc_diag_dump_proto.isra.0+0x2e7/0x3c0 [ 57.546423] ? __smc_diag_dump.isra.0+0x2ba0/0x2ba0 [ 57.551438] ? find_held_lock+0x35/0x120 [ 57.555495] smc_diag_dump+0x27/0x80 [ 57.559210] netlink_dump+0x5f2/0x1070 [ 57.563098] ? netlink_broadcast+0x50/0x50 [ 57.567341] __netlink_dump_start+0x5b4/0x7e0 [ 57.571833] smc_diag_handler_dump+0x2a7/0x350 [ 57.576414] ? smc_gid_be16_convert+0x2c0/0x2c0 [ 57.581076] ? lock_downgrade+0x910/0x910 [ 57.585218] ? smc_diag_dump_proto.isra.0+0x3c0/0x3c0 [ 57.590407] ? rcu_read_unlock_special+0x380/0x380 [ 57.595336] sock_diag_rcv_msg+0x322/0x410 [ 57.599572] netlink_rcv_skb+0x17d/0x410 [ 57.603630] ? sock_diag_bind+0x80/0x80 [ 57.607605] ? netlink_ack+0xba0/0xba0 [ 57.611491] sock_diag_rcv+0x2b/0x40 [ 57.615204] netlink_unicast+0x574/0x770 [ 57.619266] ? netlink_attachskb+0x980/0x980 [ 57.623674] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 57.629205] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 57.634234] netlink_sendmsg+0xa05/0xf90 [ 57.638291] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 57.643825] ? netlink_unicast+0x770/0x770 [ 57.648059] ? smack_socket_sendmsg+0xb1/0x1a0 [ 57.652636] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 57.658168] ? security_socket_sendmsg+0x93/0xc0 [ 57.662920] ? netlink_unicast+0x770/0x770 [ 57.667150] sock_sendmsg+0xdd/0x130 [ 57.670859] ___sys_sendmsg+0x7ec/0x910 [ 57.674833] ? copy_msghdr_from_user+0x570/0x570 [ 57.679582] ? iterate_fd+0x4b0/0x4b0 [ 57.683380] ? __might_fault+0x12b/0x1e0 [ 57.687438] ? find_held_lock+0x35/0x120 [ 57.691492] ? __might_fault+0x12b/0x1e0 [ 57.695549] ? __fget_light+0x2db/0x420 [ 57.699521] ? fget_raw+0x20/0x20 [ 57.702972] ? lock_release+0xc40/0xc40 [ 57.706941] ? trace_hardirqs_off_caller+0x300/0x300 [ 57.712036] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 57.717574] ? __fdget+0x1b/0x20 [ 57.720967] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 57.726497] ? sockfd_lookup_light+0xc2/0x160 [ 57.730986] __sys_sendmsg+0x112/0x270 [ 57.734874] ? __ia32_sys_shutdown+0x80/0x80 [ 57.739281] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 57.744642] ? trace_hardirqs_off_caller+0x300/0x300 [ 57.749747] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 57.754502] __x64_sys_sendmsg+0x78/0xb0 [ 57.758562] do_syscall_64+0x1a3/0x800 [ 57.762550] ? syscall_return_slowpath+0x5f0/0x5f0 [ 57.767467] ? prepare_exit_to_usermode+0x232/0x3b0 [ 57.772486] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 57.777328] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 57.782496] RIP: 0033:0x457ec9 [ 57.785672] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 57.804675] RSP: 002b:00007f25d9a8ec78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 57.812398] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 57.819658] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000008 [ 57.826931] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 57.834206] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f25d9a8f6d4 [ 57.841479] R13: 00000000004c5188 R14: 00000000004d8a10 R15: 00000000ffffffff [ 57.848743] Modules linked in: [ 57.851973] ---[ end trace b7ca284c1695bc57 ]--- [ 57.856754] RIP: 0010:__smc_diag_dump.isra.0+0x32a/0x2ba0 [ 57.862289] Code: 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 26 25 00 00 48 b8 00 00 00 00 00 fc ff df 4d 8b 7f 20 49 8d 7f 0e 48 89 fa 48 c1 ea 03 <0f> b6 14 02 48 89 f8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 d2 [ 57.881374] RSP: 0018:ffff8880986f7120 EFLAGS: 00010203 [ 57.886757] RAX: dffffc0000000000 RBX: ffff8880a41f89c0 RCX: 0000000000000000 [ 57.894047] RDX: 0000000000000001 RSI: ffffffff87b6b452 RDI: 000000000000000e [ 57.901309] RBP: ffff8880986f73e8 R08: ffff8880a38ae280 R09: ffff888088900f50 [ 57.908605] R10: fffffbfff14a1128 R11: ffffffff8a508943 R12: ffff88808446c520 [ 57.915887] R13: ffff888088900f00 R14: ffff8880a41f8e20 R15: 0000000000000000 [ 57.923159] FS: 00007f25d9a8f700(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000 [ 57.931402] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 57.937301] CR2: 00007fb060950000 CR3: 0000000097735000 CR4: 00000000001406f0 [ 57.944590] Kernel panic - not syncing: Fatal exception [ 57.950797] Kernel Offset: disabled [ 57.954420] Rebooting in 86400 seconds..