[[36minfo[39;49m] Using makefile-style concurrent boot in runlevel 2.
[   25.646056] audit: type=1800 audit(1543340615.273:21): pid=5831 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="bootlogs" dev="sda1" ino=2419 res=0
[   25.665781] audit: type=1800 audit(1543340615.273:22): pid=5831 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="motd" dev="sda1" ino=2447 res=0
[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   33.378368] sshd (5971) used greatest stack depth: 15744 bytes left
Warning: Permanently added '10.128.0.69' (ECDSA) to the list of known hosts.
executing program
[   39.956592] 
[   39.958266] ====================================
[   39.962993] WARNING: syz-executor232/5988 still has locks held!
[   39.969117] 4.20.0-rc4+ #255 Not tainted
[   39.973172] ------------------------------------
[   39.978200] 1 lock held by syz-executor232/5988:
[   39.982932]  #0: 000000002240c750 (&sig->cred_guard_mutex){+.+.}, at: prepare_bprm_creds+0x53/0x120
[   39.992218] 
[   39.992218] stack backtrace:
[   39.996758] CPU: 1 PID: 5988 Comm: syz-executor232 Not tainted 4.20.0-rc4+ #255
[   40.004229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   40.013556] Call Trace:
[   40.016121]  dump_stack+0x244/0x39d
[   40.019727]  ? dump_stack_print_info.cold.1+0x20/0x20
[   40.024917]  ? vprintk_func+0x85/0x181
[   40.028782]  debug_check_no_locks_held.cold.49+0x93/0x9f
[   40.034273]  flush_old_exec+0x1ea2/0x2480
[   40.038456]  ? save_stack+0x43/0xd0
[   40.042060]  ? __kmalloc+0x15b/0x760
[   40.045748]  ? copy_strings_kernel+0x110/0x110
[   40.050306]  ? iov_iter_init+0xe5/0x210
[   40.054260]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   40.059776]  ? __vfs_read+0x11f/0x9b0
[   40.063550]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   40.069062]  ? fsnotify+0x50e/0xef0
[   40.072697]  ? fsnotify+0xef0/0xef0
[   40.076302]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   40.081828]  ? fsnotify_first_mark+0x350/0x350
[   40.086384]  ? __fsnotify_parent+0xcc/0x430
[   40.090703]  ? fsnotify+0xef0/0xef0
[   40.094311]  ? rw_verify_area+0x118/0x360
[   40.098439]  ? vfs_read+0x1ce/0x3c0
[   40.102042]  ? kernel_read+0xab/0x120
[   40.105835]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[   40.110829]  ? load_elf_phdrs+0x1e4/0x270
[   40.114953]  ? writenote+0x3d0/0x3d0
[   40.118659]  ? __kasan_slab_free+0x119/0x150
[   40.123044]  load_elf_binary+0xa9a/0x5cf0
[   40.127232]  ? find_held_lock+0x36/0x1c0
[   40.131273]  ? notesize.isra.6+0x80/0x80
[   40.135310]  ? ima_file_mmap+0x160/0x160
[   40.139362]  ? lock_downgrade+0x900/0x900
[   40.143486]  ? kasan_check_write+0x14/0x20
[   40.147695]  search_binary_handler+0x17d/0x570
[   40.152263]  __do_execve_file.isra.33+0x1661/0x25d0
[   40.157273]  ? prepare_bprm_creds+0x120/0x120
[   40.161770]  ? usercopy_warn+0x110/0x110
[   40.165814]  ? check_preemption_disabled+0x48/0x280
[   40.170808]  ? rcu_lockdep_current_cpu_online+0x1a4/0x210
[   40.176348]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   40.181878]  ? strncpy_from_user+0x411/0x5a0
[   40.186279]  ? digsig_verify+0x1530/0x1530
[   40.190485]  ? kmem_cache_alloc+0x33a/0x730
[   40.194817]  ? lockdep_hardirqs_on+0x3bb/0x5b0
[   40.199391]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   40.204907]  __ia32_compat_sys_execveat+0xf3/0x140
[   40.209831]  do_fast_syscall_32+0x34d/0xfb2
[   40.214129]  ? do_int80_syscall_32+0x890/0x890
[   40.218691]  ? entry_SYSENTER_compat+0x68/0x7f
[   40.223248]  ? trace_hardirqs_off_caller+0xbb/0x310
[   40.228239]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   40.233055]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   40.237879]  ? trace_hardirqs_on_caller+0x310/0x310
[   40.242885]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[   40.247929]  ? prepare_exit_to_usermode+0x291/0x3b0
[   40.252938]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   40.257759]  entry_SYSENTER_compat+0x70/0x7f
[   40.262184] RIP: 0023:0xf7fe8a29
[   40.265525] Code: 85 d2 74 02 89 0a 5b 5d c3 8b 04 24 c3 8b 14 24 c3 8b 3c 24 c3 90 90 90 90 90 90 90 90 90 90 90 90 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[   40.284413] RSP: 002b:00000000f7fe41cc EFLAGS: 00000292 ORIG_RAX: 0000000000000166
[   40.292107] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000040
[   40.299368] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000001000
[   40.306628] RBP