[ 43.339857][ T26] audit: type=1800 audit(1569909251.691:27): pid=7826 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [ 43.363120][ T26] audit: type=1800 audit(1569909251.691:28): pid=7826 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 43.975127][ T26] audit: type=1800 audit(1569909252.381:29): pid=7826 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 43.994646][ T26] audit: type=1800 audit(1569909252.381:30): pid=7826 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.183' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program syzkaller login: [ 60.024969][ T7988] [ 60.025107][ T7994] ------------[ cut here ]------------ [ 60.027332][ T7988] ================================================ [ 60.032778][ T7994] WARNING: CPU: 1 PID: 7994 at kernel/rcu/tree_plugin.h:293 rcu_note_context_switch+0xdde/0xee0 [ 60.039231][ T7988] WARNING: lock held when returning to user space! [ 60.049606][ T7994] Kernel panic - not syncing: panic_on_warn set ... [ 60.056073][ T7988] 5.4.0-rc1 #0 Not tainted [ 60.062628][ T7994] CPU: 1 PID: 7994 Comm: syz-executor640 Not tainted 5.4.0-rc1 #0 [ 60.067006][ T7988] ------------------------------------------------ [ 60.074774][ T7994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 60.081252][ T7988] syz-executor640/7988 is leaving the kernel with locks still held! [ 60.091275][ T7994] Call Trace: [ 60.099219][ T7988] 1 lock held by syz-executor640/7988: [ 60.102481][ T7994] dump_stack+0x1d8/0x2f8 [ 60.107898][ T7988] #0: ffffffff888d3cc0 (rcu_read_lock){....}, at: rcu_lock_acquire+0x4/0x30 [ 60.112213][ T7994] panic+0x25c/0x799 executing program executing program executing program executing program [ 60.124814][ T7994] ? __warn+0x105/0x210 [ 60.128958][ T7994] ? rcu_note_context_switch+0xdde/0xee0 [ 60.134568][ T7994] __warn+0x20e/0x210 [ 60.138535][ T7994] ? rcu_note_context_switch+0xdde/0xee0 [ 60.144145][ T7994] report_bug+0x1b6/0x2f0 [ 60.148451][ T7994] ? rcu_note_context_switch+0xdde/0xee0 [ 60.154106][ T7994] do_error_trap+0xd7/0x440 [ 60.158606][ T7994] do_invalid_op+0x36/0x40 [ 60.163055][ T7994] ? rcu_note_context_switch+0xdde/0xee0 [ 60.168674][ T7994] invalid_op+0x23/0x30 [ 60.172804][ T7994] RIP: 0010:rcu_note_context_switch+0xdde/0xee0 [ 60.179025][ T7994] Code: c8 73 4b 00 e9 b8 f3 ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 22 f3 ff ff 48 89 df e8 4b 73 4b 00 83 3b 00 0f 8e 1a f3 ff ff <0f> 0b e9 13 f3 ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c c9 f2 ff [ 60.198618][ T7994] RSP: 0018:ffff8880a929f838 EFLAGS: 00010002 [ 60.204661][ T7994] RAX: 1ffff110126bc800 RBX: ffff8880935e46f8 RCX: ffffffff81608604 [ 60.212611][ T7994] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff88be39a0 [ 60.220564][ T7994] RBP: ffff8880a929f918 R08: dffffc0000000000 R09: fffffbfff117c735 [ 60.228526][ T7994] R10: fffffbfff117c735 R11: 0000000000000000 R12: dffffc0000000000 [ 60.236468][ T7994] R13: ffff8880935e4380 R14: 0000000000000000 R15: ffff8880aeb35740 [ 60.244438][ T7994] ? trace_rcu_utilization+0x124/0x1d0 [ 60.249888][ T7994] ? rcu_note_context_switch+0x65/0xee0 [ 60.255415][ T7994] ? update_load_avg+0x155/0xbe0 [ 60.260331][ T7994] ? trace_irq_disable_rcuidle+0x23/0x1e0 [ 60.266025][ T7994] __schedule+0xce/0xb80 [ 60.270242][ T7994] ? futex_wait_queue_me+0x1f8/0x4b0 [ 60.275499][ T7994] schedule+0x131/0x1e0 [ 60.279626][ T7994] futex_wait_queue_me+0x2a3/0x4b0 [ 60.284738][ T7994] futex_wait+0x252/0x770 [ 60.289057][ T7994] do_futex+0x42a/0x3de0 [ 60.293281][ T7994] ? trace_lock_release+0x135/0x1a0 [ 60.298466][ T7994] ? debug_object_free+0x419/0x4e0 [ 60.303553][ T7994] ? _raw_spin_unlock_irqrestore+0x77/0xe0 [ 60.309336][ T7994] ? debug_object_free+0x421/0x4e0 [ 60.314419][ T7994] ? membarrier_private_expedited+0x488/0x4c0 [ 60.320472][ T7994] ? trace_lock_release+0x135/0x1a0 [ 60.325650][ T7994] ? membarrier_private_expedited+0x488/0x4c0 [ 60.331691][ T7994] ? check_preemption_disabled+0xb7/0x2a0 [ 60.337385][ T7994] ? smp_call_function_many+0x23f/0x8c0 [ 60.342900][ T7994] __se_sys_futex+0x28c/0x360 [ 60.347569][ T7994] ? prepare_exit_to_usermode+0x1f7/0x580 [ 60.353268][ T7994] ? trace_irq_disable_rcuidle+0x23/0x1e0 [ 60.358969][ T7994] ? trace_hardirqs_on_thunk+0x1a/0x20 [ 60.364415][ T7994] __x64_sys_futex+0xe5/0x100 [ 60.369073][ T7994] do_syscall_64+0xf7/0x1c0 [ 60.373555][ T7994] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 60.379427][ T7994] RIP: 0033:0x446709 [ 60.383299][ T7994] Code: e8 0c e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 5b 07 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 60.402896][ T7994] RSP: 002b:00007ff032150db8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 60.411283][ T7994] RAX: ffffffffffffffda RBX: 00000000006dbc28 RCX: 0000000000446709 [ 60.419242][ T7994] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00000000006dbc28 [ 60.427187][ T7994] RBP: 00000000006dbc20 R08: 0000000000000000 R09: 0000000000000000 [ 60.435143][ T7994] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc2c [ 60.443102][ T7994] R13: 00007ffcc4d0fa9f R14: 00007ff0321519c0 R15: 000000000000002d [ 60.452353][ T7994] Kernel Offset: disabled [ 60.456676][ T7994] Rebooting in 86400 seconds..