[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 28.960100] kauditd_printk_skb: 8 callbacks suppressed [ 28.960112] audit: type=1800 audit(1544480811.975:29): pid=5873 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 28.987045] audit: type=1800 audit(1544480811.975:30): pid=5873 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.10.1' (ECDSA) to the list of known hosts. syzkaller login: [ 40.672632] IPVS: ftp: loaded support on port[0] = 21 [ 40.838963] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.845764] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.853188] device bridge_slave_0 entered promiscuous mode [ 40.871757] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.878245] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.885212] device bridge_slave_1 entered promiscuous mode [ 40.903524] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 40.922316] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 40.974520] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 40.995279] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 41.076768] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 41.084393] team0: Port device team_slave_0 added [ 41.101778] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 41.109055] team0: Port device team_slave_1 added [ 41.126642] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 41.148961] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 41.170271] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 41.191967] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready RTNETLINK answers: Operation not supported RTNETLINK answers: No buffer space available RTNETLINK answers: Operation not supported [ 41.355210] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.361696] bridge0: port 2(bridge_slave_1) entered forwarding state [ 41.368688] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.375036] bridge0: port 1(bridge_slave_0) entered forwarding state RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument [ 41.893550] 8021q: adding VLAN 0 to HW filter on device bond0 [ 41.945884] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 41.996112] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 42.002323] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 42.010324] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 42.059589] 8021q: adding VLAN 0 to HW filter on device team0 executing program [ 42.340915] Started in network mode [ 42.344658] Own node identity ac14141a, cluster identity 4711 [ 42.351781] kasan: CONFIG_KASAN_INLINE enabled [ 42.356416] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 42.364204] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 42.370458] CPU: 0 PID: 6028 Comm: syz-executor761 Not tainted 4.20.0-rc6+ #370 [ 42.377890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 42.387255] RIP: 0010:__ipv6_sock_mc_join+0x24a/0xc10 [ 42.392440] Code: 00 00 e8 a9 31 9b fa 48 8b 85 d0 fe ff ff 48 83 c0 60 48 89 c2 48 89 85 c0 fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 32 09 00 00 48 8b 85 d0 fe ff ff 4c 8d ad 10 ff [ 42.411346] RSP: 0018:ffff8881c10debc8 EFLAGS: 00010206 [ 42.416696] RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff86e459ac [ 42.423957] RDX: 000000000000000c RSI: ffffffff86e452c7 RDI: 0000000000000001 [ 42.431212] RBP: ffff8881c10ded18 R08: ffff8881c17684c0 R09: ffffed103b5c5b5f [ 42.438467] R10: ffffed103b5c5b5f R11: ffff8881dae2dafb R12: 000000000000000f [ 42.445724] R13: ffff8881c10defb4 R14: ffff8881c10defb4 R15: ffff8881c190c7c0 [ 42.452980] FS: 0000000002234880(0000) GS:ffff8881dae00000(0000) knlGS:0000000000000000 [ 42.461190] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 42.467055] CR2: 0000000020000080 CR3: 00000001c19a6000 CR4: 00000000001406f0 [ 42.474323] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 42.481598] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 42.488852] Call Trace: [ 42.491430] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 42.496953] ? __ipv6_dev_mc_inc+0xc50/0xc50 [ 42.501348] ? cpus_read_unlock+0x8b/0xb0 [ 42.505481] ? static_key_enable+0x1f/0x30 [ 42.509709] ? udp_encap_enable+0x15/0x20 [ 42.513841] ? setup_udp_tunnel_sock+0x3ac/0x5e0 [ 42.518583] ? udp_tunnel_xmit_skb+0x320/0x320 [ 42.523149] ipv6_sock_mc_join+0x27/0x30 [ 42.527226] tipc_udp_enable+0x1476/0x1ed0 [ 42.531454] ? tipc_udp_recv+0xe20/0xe20 [ 42.535499] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 42.540592] ? tipc_udp_send_msg+0x670/0x670 [ 42.544990] ? save_stack+0xa9/0xd0 [ 42.548600] ? save_stack+0x43/0xd0 [ 42.552210] ? kasan_kmalloc+0xc7/0xe0 [ 42.556080] ? kmem_cache_alloc_trace+0x152/0x750 [ 42.560909] ? tipc_enable_bearer+0x90d/0xf10 [ 42.565387] ? __tipc_nl_bearer_enable+0x37c/0x4a0 [ 42.570303] ? tipc_nl_bearer_enable+0x22/0x30 [ 42.574871] ? genl_rcv_msg+0xc6/0x168 [ 42.578740] ? netlink_rcv_skb+0x172/0x440 [ 42.582956] ? genl_rcv+0x28/0x40 [ 42.586392] ? netlink_unicast+0x5a5/0x760 [ 42.590620] ? netlink_sendmsg+0xa18/0xfc0 [ 42.594840] ? sock_sendmsg+0xd5/0x120 [ 42.598719] ? ___sys_sendmsg+0x7fd/0x930 [ 42.602873] ? __x64_sys_sendmsg+0x78/0xb0 [ 42.607095] ? do_syscall_64+0x1b9/0x820 [ 42.611142] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 42.616492] ? mark_held_locks+0x130/0x130 [ 42.620767] ? zap_class+0x640/0x640 [ 42.624472] ? check_preemption_disabled+0x48/0x280 [ 42.629478] ? tipc_enable_bearer+0x90d/0xf10 [ 42.633957] ? rcu_read_lock_sched_held+0x14f/0x180 [ 42.638963] tipc_enable_bearer+0x9a6/0xf10 [ 42.643271] ? tipc_udp_recv+0xe20/0xe20 [ 42.647314] ? tipc_enable_bearer+0x9a6/0xf10 [ 42.651800] ? tipc_bearer_xmit_skb+0x350/0x350 [ 42.656472] ? nla_memcmp+0x90/0x90 [ 42.660088] ? lock_release+0xa00/0xa00 [ 42.664046] ? perf_trace_sched_process_exec+0x860/0x860 [ 42.669480] ? mark_held_locks+0x130/0x130 [ 42.673716] ? check_preemption_disabled+0x48/0x280 [ 42.678726] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 42.684252] ? __nla_parse+0x12c/0x3e0 [ 42.688129] ? nla_parse+0x46/0x60 [ 42.691662] __tipc_nl_bearer_enable+0x37c/0x4a0 [ 42.696403] ? __tipc_nl_bearer_enable+0x37c/0x4a0 [ 42.701317] ? tipc_nl_bearer_disable+0x30/0x30 [ 42.705976] tipc_nl_bearer_enable+0x22/0x30 [ 42.710369] genl_family_rcv_msg+0x8a7/0x11a0 [ 42.714853] ? genl_unregister_family+0x8a0/0x8a0 [ 42.719699] ? lock_downgrade+0x900/0x900 [ 42.723835] ? check_preemption_disabled+0x48/0x280 [ 42.728836] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 42.733752] ? kasan_check_read+0x11/0x20 [ 42.737892] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 42.743180] ? rcu_softirq_qs+0x20/0x20 [ 42.747148] genl_rcv_msg+0xc6/0x168 [ 42.750853] netlink_rcv_skb+0x172/0x440 [ 42.754899] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 42.759643] ? netlink_ack+0xb80/0xb80 [ 42.763523] ? down_read+0x8d/0x120 [ 42.767138] genl_rcv+0x28/0x40 [ 42.770404] netlink_unicast+0x5a5/0x760 [ 42.774450] ? netlink_attachskb+0x9a0/0x9a0 [ 42.778849] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 42.784371] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 42.789399] netlink_sendmsg+0xa18/0xfc0 [ 42.793447] ? netlink_unicast+0x760/0x760 [ 42.797682] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 42.802616] ? apparmor_socket_sendmsg+0x29/0x30 [ 42.807358] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 42.812881] ? security_socket_sendmsg+0x94/0xc0 [ 42.817636] ? netlink_unicast+0x760/0x760 [ 42.821886] sock_sendmsg+0xd5/0x120 [ 42.825584] ___sys_sendmsg+0x7fd/0x930 [ 42.829547] ? copy_msghdr_from_user+0x580/0x580 [ 42.834314] ? blkcg_maybe_throttle_current+0xa38/0x1080 [ 42.839757] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 42.845296] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 42.850818] ? __fget_light+0x2e9/0x430 [ 42.854776] ? fget_raw+0x20/0x20 [ 42.858216] ? task_work_run+0x1af/0x2a0 [ 42.862277] ? _raw_spin_unlock_irq+0x27/0x80 [ 42.866754] ? _raw_spin_unlock_irq+0x27/0x80 [ 42.871238] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 42.875806] ? trace_hardirqs_on+0xbd/0x310 [ 42.880115] ? kasan_check_read+0x11/0x20 [ 42.884254] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 42.889797] ? sockfd_lookup_light+0xc5/0x160 [ 42.894279] __sys_sendmsg+0x11d/0x280 [ 42.898153] ? __ia32_sys_shutdown+0x80/0x80 [ 42.902547] ? do_syscall_64+0x6be/0x820 [ 42.906610] ? trace_hardirqs_on+0x310/0x310 [ 42.911009] ? do_syscall_64+0x9a/0x820 [ 42.914966] ? do_syscall_64+0x9a/0x820 [ 42.918929] ? trace_hardirqs_off_caller+0x310/0x310 [ 42.924018] __x64_sys_sendmsg+0x78/0xb0 [ 42.928067] do_syscall_64+0x1b9/0x820 [ 42.931941] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 42.937422] ? syscall_return_slowpath+0x5e0/0x5e0 [ 42.942341] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 42.947172] ? trace_hardirqs_on_caller+0x310/0x310 [ 42.952179] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 42.957195] ? prepare_exit_to_usermode+0x291/0x3b0 [ 42.962204] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 42.967053] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 42.972232] RIP: 0033:0x445d49 [ 42.975414] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb ce fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 42.994306] RSP: 002b:00007ffd0bbd8288 EFLAGS: 00000213 ORIG_RAX: 000000000000002e [ 43.002000] RAX: ffffffffffffffda RBX: 00000000004002e0 RCX: 0000000000445d49 [ 43.009268] RDX: 000000000000c000 RSI: 0000000020000c00 RDI: 0000000000000003 [ 43.016518] RBP: 00000000006d1018 R08: 0000000000000000 R09: 0000000000000100 [ 43.023771] R10: 0000000000000000 R11: 0000000000000213 R12: 00000000004030d0 [ 43.031043] R13: 0000000000403160 R14: 0000000000000000 R15: 0000000000000000 [ 43.038304] Modules linked in: [ 43.042335] ---[ end trace 08d0aec737384633 ]--- [ 43.047115] RIP: 0010:__ipv6_sock_mc_join+0x24a/0xc10 [ 43.052555] Code: 00 00 e8 a9 31 9b fa 48 8b 85 d0 fe ff ff 48 83 c0 60 48 89 c2 48 89 85 c0 fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 32 09 00 00 48 8b 85 d0 fe ff ff 4c 8d ad 10 ff [ 43.071523] RSP: 0018:ffff8881c10debc8 EFLAGS: 00010206 [ 43.076906] RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff86e459ac [ 43.084233] RDX: 000000000000000c RSI: ffffffff86e452c7 RDI: 0000000000000001 [ 43.091539] RBP: ffff8881c10ded18 R08: ffff8881c17684c0 R09: ffffed103b5c5b5f [ 43.098843] R10: ffffed103b5c5b5f R11: ffff8881dae2dafb R12: 000000000000000f [ 43.106122] R13: ffff8881c10defb4 R14: ffff8881c10defb4 R15: ffff8881c190c7c0 [ 43.113442] FS: 0000000002234880(0000) GS:ffff8881dae00000(0000) knlGS:0000000000000000 [ 43.121719] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 43.127598] CR2: 0000000020000080 CR3: 00000001c19a6000 CR4: 00000000001406f0 [ 43.134959] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 43.142284] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 43.149594] Kernel panic - not syncing: Fatal exception [ 43.156062] Kernel Offset: disabled [ 43.159696] Rebooting in 86400 seconds..