[ 39.095595][ T23] audit: type=1800 audit(1554719676.486:27): pid=7515 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[ 39.123818][ T23] audit: type=1800 audit(1554719676.486:28): pid=7515 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0
[....] Starting periodic command scheduler: cron�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[....] Starting OpenBSD Secure Shell server: sshd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[ 40.027223][ T23] audit: type=1800 audit(1554719677.466:29): pid=7515 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
[ 40.053752][ T23] audit: type=1800 audit(1554719677.476:30): pid=7515 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0
Debian GNU/Linux 7 syzkaller ttyS0
Warning: Permanently added '10.128.0.61' (ECDSA) to the list of known hosts.
2019/04/08 10:34:47 parsed 1 programs
2019/04/08 10:34:50 executed programs: 0
syzkaller login: [ 52.733715][ T7687] IPVS: ftp: loaded support on port[0] = 21
[ 52.734363][ T7690] IPVS: ftp: loaded support on port[0] = 21
[ 52.775409][ T7692] IPVS: ftp: loaded support on port[0] = 21
[ 52.793448][ T7694] IPVS: ftp: loaded support on port[0] = 21
[ 52.802334][ T7697] IPVS: ftp: loaded support on port[0] = 21
[ 52.812602][ T7696] IPVS: ftp: loaded support on port[0] = 21
[ 53.037323][ T7694] chnl_net:caif_netlink_parms(): no params data found
[ 53.086497][ T7687] chnl_net:caif_netlink_parms(): no params data found
[ 53.110153][ T7690] chnl_net:caif_netlink_parms(): no params data found
[ 53.137418][ T7696] chnl_net:caif_netlink_parms(): no params data found
[ 53.243387][ T7694] bridge0: port 1(bridge_slave_0) entered blocking state
[ 53.252798][ T7694] bridge0: port 1(bridge_slave_0) entered disabled state
[ 53.263550][ T7694] device bridge_slave_0 entered promiscuous mode
[ 53.277075][ T7694] bridge0: port 2(bridge_slave_1) entered blocking state
[ 53.284291][ T7694] bridge0: port 2(bridge_slave_1) entered disabled state
[ 53.293288][ T7694] device bridge_slave_1 entered promiscuous mode
[ 53.301679][ T7697] chnl_net:caif_netlink_parms(): no params data found
[ 53.311111][ T7692] chnl_net:caif_netlink_parms(): no params data found
[ 53.345975][ T7690] bridge0: port 1(bridge_slave_0) entered blocking state
[ 53.354469][ T7690] bridge0: port 1(bridge_slave_0) entered disabled state
[ 53.362547][ T7690] device bridge_slave_0 entered promiscuous mode
[ 53.374152][ T7696] bridge0: port 1(bridge_slave_0) entered blocking state
[ 53.382345][ T7696] bridge0: port 1(bridge_slave_0) entered disabled state
[ 53.391207][ T7696] device bridge_slave_0 entered promiscuous mode
[ 53.404357][ T7687] bridge0: port 1(bridge_slave_0) entered blocking state
[ 53.411768][ T7687] bridge0: port 1(bridge_slave_0) entered disabled state
[ 53.419919][ T7687] device bridge_slave_0 entered promiscuous mode
[ 53.431583][ T7687] bridge0: port 2(bridge_slave_1) entered blocking state
[ 53.438923][ T7687] bridge0: port 2(bridge_slave_1) entered disabled state
[ 53.447574][ T7687] device bridge_slave_1 entered promiscuous mode
[ 53.455856][ T7690] bridge0: port 2(bridge_slave_1) entered blocking state
[ 53.463616][ T7690] bridge0: port 2(bridge_slave_1) entered disabled state
[ 53.472240][ T7690] device bridge_slave_1 entered promiscuous mode
[ 53.485963][ T7696] bridge0: port 2(bridge_slave_1) entered blocking state
[ 53.494862][ T7696] bridge0: port 2(bridge_slave_1) entered disabled state
[ 53.503515][ T7696] device bridge_slave_1 entered promiscuous mode
[ 53.518987][ T7694] bond0: Enslaving bond_slave_0 as an active interface with an up link
[ 53.533442][ T7694] bond0: Enslaving bond_slave_1 as an active interface with an up link
[ 53.576426][ T7690] bond0: Enslaving bond_slave_0 as an active interface with an up link
[ 53.591031][ T7696] bond0: Enslaving bond_slave_0 as an active interface with an up link
[ 53.614319][ T7687] bond0: Enslaving bond_slave_0 as an active interface with an up link
[ 53.629238][ T7690] bond0: Enslaving bond_slave_1 as an active interface with an up link
[ 53.639650][ T7696] bond0: Enslaving bond_slave_1 as an active interface with an up link
[ 53.658037][ T7697] bridge0: port 1(bridge_slave_0) entered blocking state
[ 53.666052][ T7697] bridge0: port 1(bridge_slave_0) entered disabled state
[ 53.678324][ T7697] device bridge_slave_0 entered promiscuous mode
[ 53.687168][ T7687] bond0: Enslaving bond_slave_1 as an active interface with an up link
[ 53.699569][ T7694] team0: Port device team_slave_0 added
[ 53.723084][ T7692] bridge0: port 1(bridge_slave_0) entered blocking state
[ 53.730865][ T7692] bridge0: port 1(bridge_slave_0) entered disabled state
[ 53.738714][ T7692] device bridge_slave_0 entered promiscuous mode
[ 53.747345][ T7697] bridge0: port 2(bridge_slave_1) entered blocking state
[ 53.756792][ T7697] bridge0: port 2(bridge_slave_1) entered disabled state
[ 53.765625][ T7697] device bridge_slave_1 entered promiscuous mode
[ 53.774396][ T7694] team0: Port device team_slave_1 added
[ 53.787312][ T7687] team0: Port device team_slave_0 added
[ 53.795737][ T7690] team0: Port device team_slave_0 added
[ 53.802643][ T7692] bridge0: port 2(bridge_slave_1) entered blocking state
[ 53.812721][ T7692] bridge0: port 2(bridge_slave_1) entered disabled state
[ 53.821043][ T7692] device bridge_slave_1 entered promiscuous mode
[ 53.832984][ T7696] team0: Port device team_slave_0 added
[ 53.851007][ T7697] bond0: Enslaving bond_slave_0 as an active interface with an up link
[ 53.861284][ T7687] team0: Port device team_slave_1 added
[ 53.867803][ T7690] team0: Port device team_slave_1 added
[ 53.888891][ T7696] team0: Port device team_slave_1 added
[ 53.901512][ T7697] bond0: Enslaving bond_slave_1 as an active interface with an up link
[ 53.962459][ T7690] device hsr_slave_0 entered promiscuous mode
[ 54.002801][ T7690] device hsr_slave_1 entered promiscuous mode
[ 54.132299][ T7694] device hsr_slave_0 entered promiscuous mode
[ 54.169924][ T7694] device hsr_slave_1 entered promiscuous mode
[ 54.215694][ T7692] bond0: Enslaving bond_slave_0 as an active interface with an up link
[ 54.226528][ T7697] team0: Port device team_slave_0 added
[ 54.233364][ T7697] team0: Port device team_slave_1 added
[ 54.302252][ T7687] device hsr_slave_0 entered promiscuous mode
[ 54.349818][ T7687] device hsr_slave_1 entered promiscuous mode
[ 54.390821][ T7692] bond0: Enslaving bond_slave_1 as an active interface with an up link
[ 54.462343][ T7697] device hsr_slave_0 entered promiscuous mode
[ 54.499837][ T7697] device hsr_slave_1 entered promiscuous mode
[ 54.602383][ T7696] device hsr_slave_0 entered promiscuous mode
[ 54.640010][ T7696] device hsr_slave_1 entered promiscuous mode
[ 54.705772][ T7692] team0: Port device team_slave_0 added
[ 54.716924][ T7692] team0: Port device team_slave_1 added
[ 54.791492][ T7692] device hsr_slave_0 entered promiscuous mode
[ 54.840031][ T7692] device hsr_slave_1 entered promiscuous mode
[ 54.944728][ T7694] 8021q: adding VLAN 0 to HW filter on device bond0
[ 54.966706][ T7694] 8021q: adding VLAN 0 to HW filter on device team0
[ 54.975456][ T7690] 8021q: adding VLAN 0 to HW filter on device bond0
[ 54.988761][ T7697] 8021q: adding VLAN 0 to HW filter on device bond0
[ 55.002287][ T7687] 8021q: adding VLAN 0 to HW filter on device bond0
[ 55.013509][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 55.022815][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 55.050027][ T7697] 8021q: adding VLAN 0 to HW filter on device team0
[ 55.057303][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 55.068465][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 55.078552][ T3078] bridge0: port 1(bridge_slave_0) entered blocking state
[ 55.085903][ T3078] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 55.095273][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 55.104488][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 55.113034][ T3078] bridge0: port 2(bridge_slave_1) entered blocking state
[ 55.120368][ T3078] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 55.128008][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 55.137380][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 55.145586][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 55.158439][ T7690] 8021q: adding VLAN 0 to HW filter on device team0
[ 55.180131][ T7687] 8021q: adding VLAN 0 to HW filter on device team0
[ 55.188523][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 55.197526][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 55.205649][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 55.213876][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 55.223631][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 55.231905][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 55.250748][ T7696] 8021q: adding VLAN 0 to HW filter on device bond0
[ 55.279228][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 55.288197][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 55.297855][ T3078] bridge0: port 1(bridge_slave_0) entered blocking state
[ 55.305151][ T3078] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 55.315307][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 55.324745][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 55.333271][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 55.341955][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 55.350755][ T3078] bridge0: port 2(bridge_slave_1) entered blocking state
[ 55.358163][ T3078] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 55.366171][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 55.375198][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 55.384456][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 55.393209][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 55.403475][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 55.412439][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 55.422674][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 55.431827][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 55.440380][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 55.449939][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 55.458408][ T3078] bridge0: port 1(bridge_slave_0) entered blocking state
[ 55.465735][ T3078] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 55.474077][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 55.482361][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 55.491146][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 55.499094][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 55.509712][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 55.518281][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 55.530118][ T7694] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 55.542897][ T7694] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 55.558965][ T7696] 8021q: adding VLAN 0 to HW filter on device team0
[ 55.575638][ T7697] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 55.587385][ T7697] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 55.599058][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 55.607961][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 55.616700][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 55.625544][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 55.634441][ T3115] bridge0: port 1(bridge_slave_0) entered blocking state
[ 55.641734][ T3115] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 55.650206][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 55.658874][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 55.667985][ T3115] bridge0: port 2(bridge_slave_1) entered blocking state
[ 55.675516][ T3115] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 55.683642][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 55.691792][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 55.699959][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 55.708514][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 55.717118][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 55.726392][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 55.735106][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 55.744277][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 55.752242][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 55.783385][ T7697] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 55.793371][ T7692] 8021q: adding VLAN 0 to HW filter on device bond0
[ 55.802764][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 55.812459][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 55.821626][ T3115] bridge0: port 2(bridge_slave_1) entered blocking state
[ 55.828755][ T3115] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 55.836510][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 55.845250][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 55.854523][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 55.862939][ T3115] bridge0: port 1(bridge_slave_0) entered blocking state
[ 55.870118][ T3115] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 55.877776][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 55.886461][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 55.895755][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 55.904323][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 55.917373][ T7690] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 55.931643][ T7690] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 55.959230][ T7692] 8021q: adding VLAN 0 to HW filter on device team0
[ 55.980692][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 55.990486][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 55.999963][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 56.008343][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 56.017967][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 56.026842][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 56.035327][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 56.043225][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 56.052018][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 56.060714][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 56.069061][ T3078] bridge0: port 2(bridge_slave_1) entered blocking state
[ 56.076311][ T3078] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 56.084302][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 56.093934][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 56.102842][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 56.111478][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 56.120357][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 56.128830][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 56.137381][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 56.145209][ T3078] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 56.160426][ T7694] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 56.186251][ T7690] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 56.216605][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 56.235822][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 56.246546][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 56.258540][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 56.267152][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 56.276703][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 56.286960][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 56.296671][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 56.305521][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 56.314333][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 56.319359][ C0] hrtimer: interrupt took 54357 ns
[ 56.323015][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 56.336460][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 56.345238][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 56.354402][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 56.363345][ T3115] bridge0: port 1(bridge_slave_0) entered blocking state
[ 56.370551][ T3115] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 56.378399][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 56.388147][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 56.397305][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 56.412083][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 56.423943][ T3115] bridge0: port 2(bridge_slave_1) entered blocking state
[ 56.431209][ T3115] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 56.439969][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 56.448634][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 56.457523][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 56.467387][ T3115] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 56.477683][ T7687] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 56.524017][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 56.565763][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 56.623251][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 56.708140][ T7692] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 56.799165][ T7692] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 56.893081][ T7696] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 56.928205][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 56.969865][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 56.978880][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 57.030147][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 57.074744][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 57.138239][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 57.205090][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 57.219256][ T7687] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 57.243248][ T7692] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 57.307897][ T7696] 8021q: adding VLAN 0 to HW filter on device batadv0
2019/04/08 10:34:55 executed programs: 18
[ 58.029911][ C1] ==================================================================
[ 58.039124][ C1] BUG: KASAN: use-after-free in ccid_hc_tx_delete+0xde/0x100
[ 58.046515][ C1] Read of size 8 at addr ffff8880897dec80 by task udevd/7809
[ 58.054064][ C1]
[ 58.056498][ C1] CPU: 1 PID: 7809 Comm: udevd Not tainted 5.1.0-rc3-next-20190408 #20
[ 58.064744][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 58.075245][ C1] Call Trace:
[ 58.078536][ C1]
[ 58.081406][ C1] dump_stack+0x172/0x1f0
[ 58.085761][ C1] ? ccid_hc_tx_delete+0xde/0x100
[ 58.090832][ C1] print_address_description.cold+0x7c/0x20d
[ 58.096996][ C1] ? ccid_hc_tx_delete+0xde/0x100
[ 58.102033][ C1] ? ccid_hc_tx_delete+0xde/0x100
[ 58.107157][ C1] kasan_report.cold+0x1b/0x40
[ 58.111937][ C1] ? ccid_hc_tx_delete+0xde/0x100
[ 58.117000][ C1] __asan_report_load8_noabort+0x14/0x20
[ 58.122643][ C1] ccid_hc_tx_delete+0xde/0x100
[ 58.127530][ C1] dccp_sk_destruct+0x3f/0x90
[ 58.132209][ C1] ? dccp_init_sock+0x3f0/0x3f0
[ 58.137069][ C1] __sk_destruct+0x55/0x6d0
[ 58.141573][ C1] ? proto_unregister+0x4e0/0x4e0
[ 58.146594][ C1] rcu_core+0x985/0x1410
[ 58.150943][ C1] ? rcu_note_context_switch+0x1750/0x1750
[ 58.156773][ C1] __do_softirq+0x266/0x95a
[ 58.161277][ C1] ? sched_clock_cpu+0x1b/0x1b0
[ 58.166233][ C1] irq_exit+0x180/0x1d0
[ 58.170403][ C1] smp_apic_timer_interrupt+0x14a/0x570
[ 58.176084][ C1] apic_timer_interrupt+0xf/0x20
[ 58.181269][ C1]
[ 58.184217][ C1] RIP: 0010:lock_acquire+0x93/0x3f0
[ 58.189429][ C1] Code: 01 00 00 48 c7 c0 68 9b 92 88 48 ba 00 00 00 00 00 fc ff df 48 c1 e8 03 80 3c 10 00 0f 85 f9 02 00 00 48 83 3d 55 0e 3b 07 00 <0f> 84 82 02 00 00 9c 58 0f 1f 44 00 00 48 ba 00 00 00 00 00 fc ff
[ 58.209387][ C1] RSP: 0018:ffff88809879f8c0 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff13
[ 58.217814][ C1] RAX: 1ffffffff112536d RBX: ffff888085fe4280 RCX: 0000000000000000
[ 58.226122][ C1] RDX: dffffc0000000000 RSI: 0000000000000000 RDI: ffff888085fe4afc
[ 58.234381][ C1] RBP: ffff88809879f908 R08: 0000000000000001 R09: 0000000000000000
[ 58.242438][ C1] R10: ffff888085fe4b28 R11: 0000000000000001 R12: ffff8880a31d7af8
[ 58.250401][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 58.250446][ C1] down_write+0x38/0x90
[ 58.250461][ C1] ? unlink_file_vma+0x76/0xb0
[ 58.250474][ C1] unlink_file_vma+0x76/0xb0
[ 58.250492][ C1] free_pgtables+0x1b7/0x2f0
[ 58.250508][ C1] exit_mmap+0x2d1/0x530
[ 58.250521][ C1] ? __ia32_sys_munmap+0x80/0x80
[ 58.250543][ C1] ? exit_aio+0x2cc/0x3a0
[ 58.250558][ C1] ? __mutex_unlock_slowpath+0xfd/0x6b0
[ 58.250580][ C1] ? mutex_unlock+0xd/0x10
[ 58.250596][ C1] mmput+0x15f/0x4c0
[ 58.250611][ C1] flush_old_exec+0x8d9/0x1c20
[ 58.250621][ C1] ? writenote+0x2d0/0x2d0
[ 58.309881][ C1] load_elf_binary+0x9dd/0x5240
[ 58.309906][ C1] ? search_binary_handler+0x130/0x570
[ 58.309923][ C1] ? find_held_lock+0x35/0x130
[ 58.309936][ C1] ? search_binary_handler+0x130/0x570
[ 58.309951][ C1] ? notesize.isra.0+0x80/0x80
[ 58.309962][ C1] ? lock_downgrade+0x880/0x880
[ 58.309983][ C1] ? kasan_check_write+0x14/0x20
[ 58.309998][ C1] search_binary_handler+0x17f/0x570
[ 58.310015][ C1] __do_execve_file.isra.0+0x1394/0x23f0
[ 58.310035][ C1] ? copy_strings_kernel+0x110/0x110
[ 58.310050][ C1] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 58.310068][ C1] ? getname_flags+0x277/0x5b0
[ 58.378138][ C1] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 58.384230][ C1] __x64_sys_execve+0x8f/0xc0
[ 58.389196][ C1] do_syscall_64+0x103/0x610
[ 58.393808][ C1] entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 58.400134][ C1] RIP: 0033:0x7fd5bc6ec207
[ 58.400161][ C1] Code: Bad RIP value.
[ 58.400167][ C1] RSP: 002b:00007fffcbfc08f8 EFLAGS: 00000202 ORIG_RAX: 000000000000003b
[ 58.400178][ C1] RAX: ffffffffffffffda RBX: 00000000ffffffff RCX: 00007fd5bc6ec207
[ 58.400185][ C1] RDX: 0000000001ee98a0 RSI: 00007fffcbfc09f0 RDI: 00007fffcbfc1a00
[ 58.400192][ C1] RBP: 0000000000625500 R08: 0000000000001cab R09: 0000000000001cab
[ 58.400200][ C1] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000001ee98a0
[ 58.400206][ C1] R13: 0000000000000007 R14: 0000000001ed1250 R15: 0000000000000005
[ 58.400223][ C1]
[ 58.400229][ C1] Allocated by task 7787:
[ 58.400245][ C1] save_stack+0x45/0xd0
[ 58.400257][ C1] __kasan_kmalloc.constprop.0+0xcf/0xe0
[ 58.400273][ C1] kasan_slab_alloc+0xf/0x20
[ 58.478408][ C1] kmem_cache_alloc+0x11a/0x6f0
[ 58.483273][ C1] ccid_new+0x256/0x3f0
[ 58.487438][ C1] dccp_hdlr_ccid+0x27/0x150
[ 58.492038][ C1] __dccp_feat_activate+0x17a/0x270
[ 58.497429][ C1] dccp_feat_activate_values+0x33a/0x766
[ 58.503063][ C1] dccp_rcv_state_process+0x116f/0x1935
[ 58.508693][ C1] dccp_v6_do_rcv+0x269/0xbf0
[ 58.513373][ C1] __release_sock+0x12e/0x3a0
[ 58.518294][ C1] release_sock+0x59/0x1c0
[ 58.522719][ C1] __inet_stream_connect+0x59f/0xea0
[ 58.528003][ C1] inet_stream_connect+0x58/0xa0
[ 58.532950][ C1] __sys_connect+0x266/0x330
[ 58.537545][ C1] __x64_sys_connect+0x73/0xb0
[ 58.543266][ C1] do_syscall_64+0x103/0x610
[ 58.547868][ C1] entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 58.553752][ C1]
[ 58.556087][ C1] Freed by task 7800:
[ 58.560084][ C1] save_stack+0x45/0xd0
[ 58.564560][ C1] __kasan_slab_free+0x102/0x150
[ 58.569897][ C1] kasan_slab_free+0xe/0x10
[ 58.574992][ C1] kmem_cache_free+0x86/0x260
[ 58.579849][ C1] ccid_hc_tx_delete+0xc1/0x100
[ 58.584721][ C1] dccp_hdlr_ccid+0x7d/0x150
[ 58.589330][ C1] __dccp_feat_activate+0x17a/0x270
[ 58.594540][ C1] dccp_feat_activate_values+0x33a/0x766
[ 58.600188][ C1] dccp_create_openreq_child+0x40c/0x570
[ 58.605834][ C1] dccp_v6_request_recv_sock+0x214/0x1e80
[ 58.611854][ C1] dccp_check_req+0x35c/0x6f0
[ 58.616627][ C1] dccp_v6_rcv+0x6d7/0x191e
[ 58.621151][ C1] ip6_protocol_deliver_rcu+0x303/0x16c0
[ 58.627065][ C1] ip6_input_finish+0x84/0x170
[ 58.632192][ C1] ip6_input+0xe4/0x3f0
[ 58.636349][ C1] ip6_rcv_finish+0x1e7/0x320
[ 58.641040][ C1] ipv6_rcv+0x10e/0x420
[ 58.645320][ C1] __netif_receive_skb_one_core+0x115/0x1a0
[ 58.653231][ C1] __netif_receive_skb+0x2c/0x1d0
[ 58.662901][ C1] process_backlog+0x206/0x750
[ 58.667681][ C1] net_rx_action+0x4fa/0x1070
[ 58.672414][ C1] __do_softirq+0x266/0x95a
[ 58.676932][ C1]
[ 58.679278][ C1] The buggy address belongs to the object at ffff8880897dec80
[ 58.679278][ C1] which belongs to the cache ccid2_hc_tx_sock of size 1240
[ 58.694948][ C1] The buggy address is located 0 bytes inside of
[ 58.694948][ C1] 1240-byte region [ffff8880897dec80, ffff8880897df158)
[ 58.709100][ C1] The buggy address belongs to the page:
[ 58.714743][ C1] page:ffffea000225f780 count:1 mapcount:0 mapping:ffff8882166a4940 index:0x0 compound_mapcount: 0
[ 58.725408][ C1] flags: 0x1fffc0000010200(slab|head)
[ 58.730794][ C1] raw: 01fffc0000010200 ffffea00022ca588 ffffea00022d3788 ffff8882166a4940
[ 58.739564][ C1] raw: 0000000000000000 ffff8880897de180 0000000100000005 0000000000000000
[ 58.748160][ C1] page dumped because: kasan: bad access detected
[ 58.755453][ C1]
[ 58.757785][ C1] Memory state around the buggy address:
[ 58.767176][ C1] ffff8880897deb80: fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc fc
[ 58.775640][ C1] ffff8880897dec00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 58.784584][ C1] >ffff8880897dec80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 58.792679][ C1] ^
[ 58.796761][ C1] ffff8880897ded00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 58.805167][ C1] ffff8880897ded80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 58.813321][ C1] ==================================================================
[ 58.821485][ C1] Disabling lock debugging due to kernel taint
[ 58.827714][ C1] Kernel panic - not syncing: panic_on_warn set ...
[ 58.834309][ C1] CPU: 1 PID: 7809 Comm: udevd Tainted: G B 5.1.0-rc3-next-20190408 #20
[ 58.843928][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 58.854151][ C1] Call Trace:
[ 58.857437][ C1]
[ 58.860312][ C1] dump_stack+0x172/0x1f0
[ 58.864640][ C1] panic+0x2cb/0x72b
[ 58.868525][ C1] ? __warn_printk+0xf3/0xf3
[ 58.873119][ C1] ? retint_kernel+0x2d/0x2d
[ 58.877723][ C1] ? trace_hardirqs_on+0x5e/0x230
[ 58.881288][ T3881] kobject: 'loop4' (000000008fab32a1): kobject_uevent_env
[ 58.882840][ C1] ? ccid_hc_tx_delete+0xde/0x100
[ 58.895029][ C1] end_report+0x47/0x4f
[ 58.899364][ C1] ? ccid_hc_tx_delete+0xde/0x100
[ 58.904389][ C1] kasan_report.cold+0xe/0x40
[ 58.909102][ C1] ? ccid_hc_tx_delete+0xde/0x100
[ 58.914422][ C1] __asan_report_load8_noabort+0x14/0x20
[ 58.920056][ C1] ccid_hc_tx_delete+0xde/0x100
[ 58.924901][ C1] dccp_sk_destruct+0x3f/0x90
[ 58.929570][ C1] ? dccp_init_sock+0x3f0/0x3f0
[ 58.934513][ C1] __sk_destruct+0x55/0x6d0
[ 58.939027][ C1] ? proto_unregister+0x4e0/0x4e0
[ 58.941592][ T3881] kobject: 'loop4' (000000008fab32a1): fill_kobj_path: path = '/devices/virtual/block/loop4'
[ 58.944056][ C1] rcu_core+0x985/0x1410
[ 58.944074][ C1] ? rcu_note_context_switch+0x1750/0x1750
[ 58.944098][ C1] __do_softirq+0x266/0x95a
[ 58.969274][ C1] ? sched_clock_cpu+0x1b/0x1b0
[ 58.974147][ C1] irq_exit+0x180/0x1d0
[ 58.978405][ C1] smp_apic_timer_interrupt+0x14a/0x570
[ 58.984015][ C1] apic_timer_interrupt+0xf/0x20
[ 58.988961][ C1]
[ 58.991931][ C1] RIP: 0010:lock_acquire+0x93/0x3f0
[ 58.997133][ C1] Code: 01 00 00 48 c7 c0 68 9b 92 88 48 ba 00 00 00 00 00 fc ff df 48 c1 e8 03 80 3c 10 00 0f 85 f9 02 00 00 48 83 3d 55 0e 3b 07 00 <0f> 84 82 02 00 00 9c 58 0f 1f 44 00 00 48 ba 00 00 00 00 00 fc ff
[ 59.017016][ C1] RSP: 0018:ffff88809879f8c0 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff13
[ 59.025512][ C1] RAX: 1ffffffff112536d RBX: ffff888085fe4280 RCX: 0000000000000000
[ 59.033561][ C1] RDX: dffffc0000000000 RSI: 0000000000000000 RDI: ffff888085fe4afc
[ 59.042133][ C1] RBP: ffff88809879f908 R08: 0000000000000001 R09: 0000000000000000
[ 59.050194][ C1] R10: ffff888085fe4b28 R11: 0000000000000001 R12: ffff8880a31d7af8
[ 59.058172][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 59.066563][ C1] down_write+0x38/0x90
[ 59.070719][ C1] ? unlink_file_vma+0x76/0xb0
[ 59.075655][ C1] unlink_file_vma+0x76/0xb0
[ 59.080364][ C1] free_pgtables+0x1b7/0x2f0
[ 59.085066][ C1] exit_mmap+0x2d1/0x530
[ 59.089320][ C1] ? __ia32_sys_munmap+0x80/0x80
[ 59.094260][ C1] ? exit_aio+0x2cc/0x3a0
[ 59.098599][ C1] ? __mutex_unlock_slowpath+0xfd/0x6b0
[ 59.104269][ C1] ? mutex_unlock+0xd/0x10
[ 59.110706][ C1] mmput+0x15f/0x4c0
[ 59.114636][ C1] flush_old_exec+0x8d9/0x1c20
[ 59.119758][ C1] ? writenote+0x2d0/0x2d0
[ 59.124191][ C1] load_elf_binary+0x9dd/0x5240
[ 59.129076][ C1] ? search_binary_handler+0x130/0x570
[ 59.134559][ C1] ? find_held_lock+0x35/0x130
[ 59.139477][ C1] ? search_binary_handler+0x130/0x570
[ 59.145053][ C1] ? notesize.isra.0+0x80/0x80
[ 59.149820][ C1] ? lock_downgrade+0x880/0x880
[ 59.154668][ C1] ? kasan_check_write+0x14/0x20
[ 59.159603][ C1] search_binary_handler+0x17f/0x570
[ 59.164967][ C1] __do_execve_file.isra.0+0x1394/0x23f0
[ 59.170597][ C1] ? copy_strings_kernel+0x110/0x110
[ 59.176086][ C1] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 59.182411][ C1] ? getname_flags+0x277/0x5b0
[ 59.187415][ C1] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 59.194118][ C1] __x64_sys_execve+0x8f/0xc0
[ 59.199752][ C1] do_syscall_64+0x103/0x610
[ 59.204334][ C1] entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 59.210650][ C1] RIP: 0033:0x7fd5bc6ec207
[ 59.215068][ C1] Code: Bad RIP value.
[ 59.219118][ C1] RSP: 002b:00007fffcbfc08f8 EFLAGS: 00000202 ORIG_RAX: 000000000000003b
[ 59.227640][ C1] RAX: ffffffffffffffda RBX: 00000000ffffffff RCX: 00007fd5bc6ec207
[ 59.235983][ C1] RDX: 0000000001ee98a0 RSI: 00007fffcbfc09f0 RDI: 00007fffcbfc1a00
[ 59.243957][ C1] RBP: 0000000000625500 R08: 0000000000001cab R09: 0000000000001cab
[ 59.251933][ C1] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000001ee98a0
[ 59.259998][ C1] R13: 0000000000000007 R14: 0000000001ed1250 R15: 0000000000000005
[ 59.269263][ C1] Kernel Offset: disabled
[ 59.273757][ C1] Rebooting in 86400 seconds..