[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 26.634037] kauditd_printk_skb: 7 callbacks suppressed [ 26.634050] audit: type=1800 audit(1539747592.245:29): pid=5226 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 26.660707] audit: type=1800 audit(1539747592.245:30): pid=5226 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.42' (ECDSA) to the list of known hosts. syzkaller login: [ 45.333761] IPVS: ftp: loaded support on port[0] = 21 [ 45.496106] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.502834] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.510077] device bridge_slave_0 entered promiscuous mode [ 45.528392] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.535073] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.542486] device bridge_slave_1 entered promiscuous mode [ 45.560467] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 45.578425] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 45.627111] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 45.646834] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 45.720156] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 45.727710] team0: Port device team_slave_0 added [ 45.744786] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 45.752000] team0: Port device team_slave_1 added [ 45.769164] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 45.788640] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 45.806710] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 45.825346] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready RTNETLINK answers: Operation not supported RTNETLINK answers: No buffer space available RTNETLINK answers: Operation not supported [ 45.968143] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.974619] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.981590] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.988009] bridge0: port 1(bridge_slave_0) entered forwarding state RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument [ 46.492541] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.543378] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 46.593143] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 46.599275] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 46.607272] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 46.654383] 8021q: adding VLAN 0 to HW filter on device team0 executing program [ 46.966508] BUG: please report to dccp@vger.kernel.org => prev = 0, last = 0 at net/dccp/ccids/lib/packet_history.c:425/tfrc_rx_hist_sample_rtt() [ 46.979836] CPU: 0 PID: 5623 Comm: syz-executor115 Not tainted 4.19.0-rc8+ #63 [ 46.987190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 46.996538] Call Trace: [ 46.999111] [ 47.001259] dump_stack+0x1c4/0x2b4 [ 47.004882] ? dump_stack_print_info.cold.2+0x52/0x52 [ 47.010063] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 47.015595] ? tfrc_rx_handle_loss+0x67b/0x1eb0 [ 47.020274] tfrc_rx_hist_sample_rtt.cold.3+0x54/0x5c [ 47.025493] ccid3_hc_rx_packet_recv+0x5c4/0xeb0 [ 47.030342] ? dccp_parse_options+0x4a1/0x12f0 [ 47.034933] ? ccid3_hc_tx_send_packet+0x880/0x880 [ 47.039856] dccp_deliver_input_to_ccids+0xf0/0x280 [ 47.044870] dccp_rcv_established+0x87/0xb0 [ 47.049187] dccp_v4_do_rcv+0x153/0x180 [ 47.053155] __sk_receive_skb+0x3e5/0xec0 [ 47.057295] ? sk_free+0x50/0x50 [ 47.060663] ? inet_lhash2_lookup+0x6e0/0x6e0 [ 47.065150] ? reqsk_fastopen_remove+0x660/0x660 [ 47.069901] ? lock_downgrade+0x900/0x900 [ 47.074045] ? check_preemption_disabled+0x48/0x200 [ 47.079121] ? dccp_invalid_packet+0x64/0x880 [ 47.083614] dccp_v4_rcv+0x10f9/0x1f58 [ 47.087506] ? dccp_v4_err+0x18a0/0x18a0 [ 47.091565] ? __lock_is_held+0xb5/0x140 [ 47.095625] ip_local_deliver_finish+0x2e9/0xda0 [ 47.100378] ? ip_sublist_rcv_finish+0x3f0/0x3f0 [ 47.105128] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 47.110135] ? nf_hook_slow+0x11e/0x1c0 [ 47.114108] ip_local_deliver+0x1e9/0x750 [ 47.118250] ? ip_call_ra_chain+0x730/0x730 [ 47.122573] ? ip_sublist_rcv_finish+0x3f0/0x3f0 [ 47.127327] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 47.133118] ? kasan_check_read+0x11/0x20 [ 47.137260] ? rcu_bh_qs+0xc0/0xc0 [ 47.140850] ip_rcv_finish+0x1f9/0x300 [ 47.144736] ip_rcv+0xed/0x600 [ 47.147921] ? ip_local_deliver+0x750/0x750 [ 47.152240] ? ip_rcv_finish_core.isra.15+0x1f40/0x1f40 [ 47.157605] ? lock_acquire+0x1ed/0x520 [ 47.161575] ? process_backlog+0x1a7/0x6f0 [ 47.165805] __netif_receive_skb_one_core+0x14d/0x200 [ 47.170993] ? __netif_receive_skb_core+0x3b60/0x3b60 [ 47.176178] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 47.181466] ? rcu_bh_qs+0xc0/0xc0 [ 47.185045] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 47.190499] __netif_receive_skb+0x2c/0x1e0 [ 47.194814] process_backlog+0x218/0x6f0 [ 47.198871] net_rx_action+0x7c5/0x1950 [ 47.202849] ? napi_complete_done+0x6d0/0x6d0 [ 47.207334] ? kasan_check_write+0x14/0x20 [ 47.211568] ? __run_timers+0xa4a/0xc70 [ 47.215545] ? __bpf_trace_timer_expire_entry+0x30/0x30 [ 47.221011] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 47.226026] ? graph_lock+0x170/0x170 [ 47.229820] ? enqueue_hrtimer+0x1a5/0x560 [ 47.234048] ? lock_release+0x970/0x970 [ 47.238134] ? find_held_lock+0x36/0x1c0 [ 47.242230] ? pvclock_read_flags+0x160/0x160 [ 47.246721] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 47.252296] ? check_preemption_disabled+0x48/0x200 [ 47.257306] ? check_preemption_disabled+0x48/0x200 [ 47.262323] ? print_usage_bug+0xc0/0xc0 [ 47.266379] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 47.271910] ? check_preemption_disabled+0x48/0x200 [ 47.276919] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 47.282513] ? __local_bh_enable+0xef/0x130 [ 47.286836] ? graph_lock+0x170/0x170 [ 47.290633] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 47.296166] ? check_preemption_disabled+0x48/0x200 [ 47.301182] ? check_preemption_disabled+0x48/0x200 [ 47.306199] ? __lock_is_held+0xb5/0x140 [ 47.310275] __do_softirq+0x30b/0xad8 [ 47.314086] ? __irqentry_text_end+0x1f9618/0x1f9618 [ 47.319224] ? smp_reschedule_interrupt+0x109/0x650 [ 47.324277] ? smp_thermal_interrupt+0x850/0x850 [ 47.329028] ? ret_from_intr+0xb/0x1e [ 47.332822] ? trace_hardirqs_off_caller+0xbb/0x310 [ 47.337963] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 47.342806] ? trace_hardirqs_on_caller+0x310/0x310 [ 47.347814] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 47.353345] ? check_preemption_disabled+0x48/0x200 [ 47.358396] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 47.363932] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 47.368773] ? ip_finish_output2+0xa83/0x1860 [ 47.373264] do_softirq_own_stack+0x2a/0x40 [ 47.377572] [ 47.379801] do_softirq.part.13+0x126/0x160 [ 47.384162] __local_bh_enable_ip+0x21d/0x260 [ 47.388654] ip_finish_output2+0xab6/0x1860 [ 47.392978] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 47.398770] ? ip_copy_metadata+0xe10/0xe10 [ 47.403085] ? graph_lock+0x170/0x170 [ 47.406879] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 47.412412] ? check_preemption_disabled+0x48/0x200 [ 47.417422] ? check_preemption_disabled+0x48/0x200 [ 47.422473] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 47.428010] ? ipv4_mtu+0x37d/0x590 [ 47.431638] ? __lock_is_held+0xb5/0x140 [ 47.435698] ip_finish_output+0x7fd/0xf60 [ 47.439834] ? ip_finish_output+0x7fd/0xf60 [ 47.444150] ? ip_fragment.constprop.49+0x240/0x240 [ 47.449157] ? kasan_check_read+0x11/0x20 [ 47.453302] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 47.458573] ? rcu_bh_qs+0xc0/0xc0 [ 47.462109] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 47.467117] ? nf_hook_slow+0x11e/0x1c0 [ 47.471091] ip_output+0x21d/0x8d0 [ 47.474629] ? ip_mc_output+0x15b0/0x15b0 [ 47.478769] ? ip_fragment.constprop.49+0x240/0x240 [ 47.483779] ? __lock_is_held+0xb5/0x140 [ 47.487838] ip_local_out+0xc5/0x1b0 [ 47.491549] __ip_queue_xmit+0x9af/0x1f30 [ 47.495702] ? ip_build_and_send_pkt+0xc80/0xc80 [ 47.500481] ? __skb_checksum+0x920/0x920 [ 47.504621] ? skb_send_sock+0x50/0x50 [ 47.508503] ? reqsk_fastopen_remove+0x660/0x660 [ 47.513253] ? dccp_insert_option_padding+0xbc/0xe0 [ 47.518268] ip_queue_xmit+0x56/0x70 [ 47.522018] dccp_transmit_skb+0x98c/0x12e0 [ 47.526358] dccp_xmit_packet+0x25e/0x7d0 [ 47.530502] ? kasan_check_write+0x14/0x20 [ 47.534772] ? do_raw_spin_lock+0xc1/0x200 [ 47.539039] ? dccp_send_sync+0x270/0x270 [ 47.543183] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 47.548194] ? ccid3_hc_tx_send_packet+0x358/0x880 [ 47.553169] dccp_write_xmit+0x190/0x1f0 [ 47.557228] dccp_sendmsg+0xdc8/0x1020 [ 47.561117] ? dccp_getsockopt+0xf0/0xf0 [ 47.565213] ? find_held_lock+0x36/0x1c0 [ 47.569273] ? __might_fault+0x12b/0x1e0 [ 47.573371] ? lock_downgrade+0x900/0x900 [ 47.577514] ? lock_release+0x970/0x970 [ 47.581493] ? arch_local_save_flags+0x40/0x40 [ 47.586070] inet_sendmsg+0x1a1/0x690 [ 47.589901] ? ipip_gro_receive+0x100/0x100 [ 47.594220] ? smack_socket_sendmsg+0xb0/0x190 [ 47.598795] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 47.604329] ? security_socket_sendmsg+0x94/0xc0 [ 47.609078] ? ipip_gro_receive+0x100/0x100 [ 47.613398] sock_sendmsg+0xd5/0x120 [ 47.617106] ___sys_sendmsg+0x51d/0x930 [ 47.621076] ? copy_msghdr_from_user+0x580/0x580 [ 47.626066] ? save_stack+0xa9/0xd0 [ 47.629687] ? __kasan_slab_free+0x102/0x150 [ 47.634089] ? kasan_slab_free+0xe/0x10 [ 47.638058] ? kfree+0xcf/0x230 [ 47.641374] ? __fget_light+0x2e9/0x430 [ 47.645342] ? fget_raw+0x20/0x20 [ 47.648822] ? kasan_check_read+0x11/0x20 [ 47.652965] ? do_raw_spin_unlock+0xa7/0x2f0 [ 47.657368] ? trace_hardirqs_on+0x310/0x310 [ 47.661770] ? kasan_check_write+0x14/0x20 [ 47.666000] ? trace_hardirqs_off+0xb8/0x310 [ 47.670413] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 47.675967] ? sockfd_lookup_light+0xc5/0x160 [ 47.680481] __sys_sendmmsg+0x246/0x6d0 [ 47.684472] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 47.688793] ? do_dccp_setsockopt.isra.10+0xd1/0x7b0 [ 47.693928] ? dccp_setsockopt+0x9d/0xf0 [ 47.698039] ? __x64_sys_futex+0x47f/0x6a0 [ 47.702271] ? do_syscall_64+0x9a/0x820 [ 47.706239] ? do_syscall_64+0x9a/0x820 [ 47.710205] ? lockdep_hardirqs_on+0x421/0x5c0 [ 47.714784] ? trace_hardirqs_on+0xbd/0x310 [ 47.719099] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 47.724477] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 47.729922] __x64_sys_sendmmsg+0x9d/0x100 [ 47.734154] do_syscall_64+0x1b9/0x820 [ 47.738035] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 47.743524] ? syscall_return_slowpath+0x5e0/0x5e0 [ 47.748464] ? trace_hardirqs_on_caller+0x310/0x310 [ 47.753491] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 47.758505] ? recalc_sigpending_tsk+0x180/0x180 [ 47.763253] ? kasan_check_write+0x14/0x20 [ 47.767499] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 47.772340] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 47.777521] RIP: 0033:0x446cb9 [ 47.780708] Code: e8 cc b8 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 09 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 47.799747] RSP: 002b:00007ff2a3c4cda8 EFLAGS: 00000297 ORIG_RAX: 0000000000000133 [ 47.807469] RAX: ffffffffffffffda RBX: 00000000006dcc58 RCX: 0000000000446cb9 [ 47.814731] RDX: 0000000000000003 RSI: 00000000200037c0 RDI: 0000000000000005 [ 47.822095] RBP: 00000000006dcc50 R08: 0000000000000000 R09: 0000000000000000 [ 47.829356] R10: 0000000000000080 R11: 0000000000000297 R12: 00000000006dcc5c [ 47.836746] R13: cdef9a1cfd2198c8 R14: d5f212e95c33dd08 R15: 0000000000000001