[ 66.640094][ T26] audit: type=1800 audit(1567792514.607:27): pid=9710 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [ 66.660975][ T26] audit: type=1800 audit(1567792514.607:28): pid=9710 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 67.493576][ T26] audit: type=1800 audit(1567792515.537:29): pid=9710 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 67.514931][ T26] audit: type=1800 audit(1567792515.537:30): pid=9710 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.1.16' (ECDSA) to the list of known hosts. syzkaller login: [ 77.040808][ T9864] IPVS: ftp: loaded support on port[0] = 21 [ 77.082673][ T9864] chnl_net:caif_netlink_parms(): no params data found [ 77.104016][ T9864] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.111331][ T9864] bridge0: port 1(bridge_slave_0) entered disabled state [ 77.118958][ T9864] device bridge_slave_0 entered promiscuous mode [ 77.126228][ T9864] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.133294][ T9864] bridge0: port 2(bridge_slave_1) entered disabled state [ 77.140975][ T9864] device bridge_slave_1 entered promiscuous mode [ 77.153979][ T9864] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 77.165156][ T9864] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 77.180399][ T9864] team0: Port device team_slave_0 added [ 77.187270][ T9864] team0: Port device team_slave_1 added [ 77.266567][ T9864] device hsr_slave_0 entered promiscuous mode [ 77.315406][ T9864] device hsr_slave_1 entered promiscuous mode [ 77.380145][ T9864] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.387369][ T9864] bridge0: port 2(bridge_slave_1) entered forwarding state [ 77.394654][ T9864] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.401741][ T9864] bridge0: port 1(bridge_slave_0) entered forwarding state [ 77.425554][ T9864] 8021q: adding VLAN 0 to HW filter on device bond0 [ 77.435338][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 77.454192][ T17] bridge0: port 1(bridge_slave_0) entered disabled state [ 77.463299][ T17] bridge0: port 2(bridge_slave_1) entered disabled state [ 77.471378][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 77.481012][ T9864] 8021q: adding VLAN 0 to HW filter on device team0 [ 77.490110][ T2992] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 77.498555][ T2992] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.505727][ T2992] bridge0: port 1(bridge_slave_0) entered forwarding state [ 77.515372][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 77.523708][ T17] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.530797][ T17] bridge0: port 2(bridge_slave_1) entered forwarding state [ 77.545047][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 77.554849][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 77.564233][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready executing program [ 77.575655][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 77.586604][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 77.596424][ T9864] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 77.610689][ T9864] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 77.638781][ T9873] FAULT_INJECTION: forcing a failure. [ 77.638781][ T9873] name failslab, interval 1, probability 0, space 0, times 1 [ 77.651650][ T9873] CPU: 1 PID: 9873 Comm: syz-executor288 Not tainted 5.3.0-rc7+ #0 [ 77.659519][ T9873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 77.669554][ T9873] Call Trace: [ 77.672834][ T9873] dump_stack+0x172/0x1f0 [ 77.677145][ T9873] should_fail.cold+0xa/0x15 [ 77.681723][ T9873] ? qdisc_alloc+0xbb/0xa90 [ 77.686215][ T9873] ? fault_create_debugfs_attr+0x180/0x180 [ 77.692017][ T9873] ? page_to_nid.part.0+0x20/0x20 [ 77.697036][ T9873] ? ___might_sleep+0x163/0x280 [ 77.701867][ T9873] __should_failslab+0x121/0x190 [ 77.706788][ T9873] should_failslab+0x9/0x14 [ 77.711274][ T9873] kmem_cache_alloc_trace+0x2d3/0x790 [ 77.716625][ T9873] ? fault_create_debugfs_attr+0x180/0x180 [ 77.722421][ T9873] ? page_to_nid.part.0+0x20/0x20 [ 77.727426][ T9873] tcf_block_get_ext+0x882/0x1610 [ 77.732429][ T9873] tcf_block_get+0xb9/0x100 [ 77.736921][ T9873] ? tcf_block_get_ext+0x1610/0x1610 [ 77.742194][ T9873] ? walker_check_empty+0x70/0x70 [ 77.747203][ T9873] ? lockdep_init_map+0x1be/0x6d0 [ 77.752206][ T9873] ? dsmark_dump.cold+0x40/0x40 [ 77.757210][ T9873] ? __kasan_check_write+0x14/0x20 [ 77.762305][ T9873] sfb_init+0x36/0xa7 [ 77.766265][ T9873] ? sfb_change+0xe90/0xe90 [ 77.770746][ T9873] qdisc_create+0x4ee/0x1210 [ 77.775313][ T9873] ? tc_get_qdisc+0xc10/0xc10 [ 77.779968][ T9873] ? __nla_parse+0x43/0x60 [ 77.784630][ T9873] tc_modify_qdisc+0x524/0x1c50 [ 77.789471][ T9873] ? qdisc_create+0x1210/0x1210 [ 77.794321][ T9873] ? rtnetlink_rcv_msg+0x1ea/0xb00 [ 77.799434][ T9873] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 77.805743][ T9873] ? qdisc_create+0x1210/0x1210 [ 77.810581][ T9873] rtnetlink_rcv_msg+0x463/0xb00 [ 77.815514][ T9873] ? rtnetlink_put_metrics+0x580/0x580 [ 77.820963][ T9873] ? netdev_core_pick_tx+0x2f0/0x2f0 [ 77.826239][ T9873] ? __copy_skb_header+0x250/0x550 [ 77.831334][ T9873] netlink_rcv_skb+0x177/0x450 [ 77.836175][ T9873] ? rtnetlink_put_metrics+0x580/0x580 [ 77.841631][ T9873] ? netlink_ack+0xb30/0xb30 [ 77.846203][ T9873] ? netlink_deliver_tap+0x254/0xbf0 [ 77.851466][ T9873] rtnetlink_rcv+0x1d/0x30 [ 77.855866][ T9873] netlink_unicast+0x531/0x710 [ 77.860605][ T9873] ? netlink_attachskb+0x7c0/0x7c0 [ 77.865708][ T9873] ? _copy_from_iter_full+0x25d/0x8a0 [ 77.871060][ T9873] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 77.876769][ T9873] ? __check_object_size+0x3d/0x437 [ 77.881956][ T9873] netlink_sendmsg+0x8a5/0xd60 [ 77.886714][ T9873] ? netlink_unicast+0x710/0x710 [ 77.891895][ T9873] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 77.897434][ T9873] ? apparmor_socket_sendmsg+0x2a/0x30 [ 77.902875][ T9873] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 77.909097][ T9873] ? security_socket_sendmsg+0x8d/0xc0 [ 77.914535][ T9873] ? netlink_unicast+0x710/0x710 [ 77.919454][ T9873] sock_sendmsg+0xd7/0x130 [ 77.923848][ T9873] ___sys_sendmsg+0x803/0x920 [ 77.928518][ T9873] ? copy_msghdr_from_user+0x440/0x440 [ 77.933961][ T9873] ? __kasan_check_read+0x11/0x20 [ 77.938972][ T9873] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 77.945199][ T9873] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 77.951421][ T9873] ? refcount_sub_and_test_checked+0x154/0x200 [ 77.957553][ T9873] ? refcount_dec_not_one+0x1f0/0x1f0 [ 77.962906][ T9873] ? vfs_write+0x34c/0x5d0 [ 77.967296][ T9873] ? __kasan_check_read+0x11/0x20 [ 77.972314][ T9873] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 77.978531][ T9873] ? __fget_light+0x1a9/0x230 [ 77.983272][ T9873] ? __fdget+0x1b/0x20 [ 77.987319][ T9873] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 77.993538][ T9873] __sys_sendmsg+0x105/0x1d0 [ 77.998109][ T9873] ? __sys_sendmsg_sock+0xd0/0xd0 [ 78.003130][ T9873] ? entry_SYSENTER_compat+0x68/0x7f [ 78.008394][ T9873] __ia32_compat_sys_sendmsg+0x7a/0xb0 [ 78.013832][ T9873] do_fast_syscall_32+0x27b/0xdb3 [ 78.018835][ T9873] entry_SYSENTER_compat+0x70/0x7f [ 78.023920][ T9873] RIP: 0023:0xf7fbca29 [ 78.027966][ T9873] Code: b8 80 96 98 00 eb cc 8b 04 24 c3 8b 1c 24 c3 8b 34 24 c3 8b 3c 24 c3 90 90 90 90 90 90 90 90 90 90 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 78.047559][ T9873] RSP: 002b:00000000ffc40cbc EFLAGS: 00000246 ORIG_RAX: 0000000000000172 [ 78.055950][ T9873] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000240 [ 78.063897][ T9873] RDX: 0000000000000000 RSI: 00000000f7fbc28c RDI: 0000000000000000 [ 78.071853][ T9873] RBP: 0000000000000005 R08: 0000000000000000 R09: 0000000000000000 [ 78.079800][ T9873] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 78.087751][ T9873] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 78.097731][ T9873] kasan: CONFIG_KASAN_INLINE enabled [ 78.103004][ T9873] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 78.111096][ T9873] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 78.118031][ T9873] CPU: 1 PID: 9873 Comm: syz-executor288 Not tainted 5.3.0-rc7+ #0 [ 78.125890][ T9873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 78.135931][ T9873] RIP: 0010:qdisc_put+0x25/0x90 [ 78.140810][ T9873] Code: 00 00 00 00 00 55 48 89 e5 41 54 49 89 fc 53 e8 c1 52 bf fb 49 8d 7c 24 10 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 04 02 84 c0 74 04 3c 03 7e 54 41 8b 5c 24 10 31 ff 83 e3 01 [ 78.161367][ T9873] RSP: 0018:ffff8880a3df7478 EFLAGS: 00010202 [ 78.167509][ T9873] RAX: dffffc0000000000 RBX: ffff88809108cb40 RCX: ffffffff85b49e8a [ 78.175466][ T9873] RDX: 0000000000000002 RSI: ffffffff85b3228f RDI: 0000000000000010 [ 78.183412][ T9873] RBP: ffff8880a3df7488 R08: ffff88809768e580 R09: ffffed10147bee43 [ 78.191374][ T9873] R10: ffffed10147bee42 R11: 0000000000000003 R12: 0000000000000000 [ 78.199319][ T9873] R13: ffff88809108cb40 R14: ffff888091ed0a00 R15: ffff88809108cb7c [ 78.207275][ T9873] FS: 0000000000000000(0000) GS:ffff8880ae900000(0063) knlGS:0000000058137840 [ 78.216184][ T9873] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 78.222767][ T9873] CR2: 0000000020000600 CR3: 000000008f192000 CR4: 00000000001406e0 [ 78.230728][ T9873] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 78.238686][ T9873] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 78.246634][ T9873] Call Trace: [ 78.249914][ T9873] sfb_destroy+0x61/0x80 [ 78.254141][ T9873] ? sfb_zero_all_buckets+0x20/0x20 [ 78.259316][ T9873] qdisc_create+0xbc6/0x1210 [ 78.263884][ T9873] ? tc_get_qdisc+0xc10/0xc10 [ 78.268538][ T9873] ? __nla_parse+0x43/0x60 [ 78.272945][ T9873] tc_modify_qdisc+0x524/0x1c50 [ 78.277775][ T9873] ? qdisc_create+0x1210/0x1210 [ 78.282624][ T9873] ? rtnetlink_rcv_msg+0x1ea/0xb00 [ 78.287736][ T9873] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 78.293951][ T9873] ? qdisc_create+0x1210/0x1210 [ 78.298779][ T9873] rtnetlink_rcv_msg+0x463/0xb00 [ 78.303695][ T9873] ? rtnetlink_put_metrics+0x580/0x580 [ 78.309130][ T9873] ? netdev_core_pick_tx+0x2f0/0x2f0 [ 78.314391][ T9873] ? __copy_skb_header+0x250/0x550 [ 78.319484][ T9873] netlink_rcv_skb+0x177/0x450 [ 78.324228][ T9873] ? rtnetlink_put_metrics+0x580/0x580 [ 78.329672][ T9873] ? netlink_ack+0xb30/0xb30 [ 78.334242][ T9873] ? netlink_deliver_tap+0x254/0xbf0 [ 78.339955][ T9873] rtnetlink_rcv+0x1d/0x30 [ 78.344351][ T9873] netlink_unicast+0x531/0x710 [ 78.349094][ T9873] ? netlink_attachskb+0x7c0/0x7c0 [ 78.354211][ T9873] ? _copy_from_iter_full+0x25d/0x8a0 [ 78.359588][ T9873] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 78.365297][ T9873] ? __check_object_size+0x3d/0x437 [ 78.370487][ T9873] netlink_sendmsg+0x8a5/0xd60 [ 78.375243][ T9873] ? netlink_unicast+0x710/0x710 [ 78.380166][ T9873] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 78.385690][ T9873] ? apparmor_socket_sendmsg+0x2a/0x30 [ 78.391128][ T9873] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 78.397364][ T9873] ? security_socket_sendmsg+0x8d/0xc0 [ 78.402804][ T9873] ? netlink_unicast+0x710/0x710 [ 78.408685][ T9873] sock_sendmsg+0xd7/0x130 [ 78.413092][ T9873] ___sys_sendmsg+0x803/0x920 [ 78.418454][ T9873] ? copy_msghdr_from_user+0x440/0x440 [ 78.423893][ T9873] ? __kasan_check_read+0x11/0x20 [ 78.428904][ T9873] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 78.435132][ T9873] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 78.441359][ T9873] ? refcount_sub_and_test_checked+0x154/0x200 [ 78.447575][ T9873] ? refcount_dec_not_one+0x1f0/0x1f0 [ 78.452942][ T9873] ? vfs_write+0x34c/0x5d0 [ 78.457337][ T9873] ? __kasan_check_read+0x11/0x20 [ 78.462341][ T9873] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 78.468578][ T9873] ? __fget_light+0x1a9/0x230 [ 78.473232][ T9873] ? __fdget+0x1b/0x20 [ 78.477290][ T9873] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 78.483510][ T9873] __sys_sendmsg+0x105/0x1d0 [ 78.488077][ T9873] ? __sys_sendmsg_sock+0xd0/0xd0 [ 78.493083][ T9873] ? entry_SYSENTER_compat+0x68/0x7f [ 78.498346][ T9873] __ia32_compat_sys_sendmsg+0x7a/0xb0 [ 78.503813][ T9873] do_fast_syscall_32+0x27b/0xdb3 [ 78.509520][ T9873] entry_SYSENTER_compat+0x70/0x7f [ 78.514614][ T9873] RIP: 0023:0xf7fbca29 [ 78.518780][ T9873] Code: b8 80 96 98 00 eb cc 8b 04 24 c3 8b 1c 24 c3 8b 34 24 c3 8b 3c 24 c3 90 90 90 90 90 90 90 90 90 90 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 78.538830][ T9873] RSP: 002b:00000000ffc40cbc EFLAGS: 00000246 ORIG_RAX: 0000000000000172 [ 78.547384][ T9873] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000240 [ 78.555479][ T9873] RDX: 0000000000000000 RSI: 00000000f7fbc28c RDI: 0000000000000000 [ 78.564864][ T9873] RBP: 0000000000000005 R08: 0000000000000000 R09: 0000000000000000 [ 78.572854][ T9873] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 78.580888][ T9873] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 78.588862][ T9873] Modules linked in: [ 78.594226][ T9873] ---[ end trace 73612f19e71fbca6 ]--- [ 78.599872][ T9873] RIP: 0010:qdisc_put+0x25/0x90 [ 78.604715][ T9873] Code: 00 00 00 00 00 55 48 89 e5 41 54 49 89 fc 53 e8 c1 52 bf fb 49 8d 7c 24 10 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 04 02 84 c0 74 04 3c 03 7e 54 41 8b 5c 24 10 31 ff 83 e3 01 [ 78.626144][ T9873] RSP: 0018:ffff8880a3df7478 EFLAGS: 00010202 [ 78.632250][ T9873] RAX: dffffc0000000000 RBX: ffff88809108cb40 RCX: ffffffff85b49e8a [ 78.640283][ T9873] RDX: 0000000000000002 RSI: ffffffff85b3228f RDI: 0000000000000010 [ 78.648374][ T9873] RBP: ffff8880a3df7488 R08: ffff88809768e580 R09: ffffed10147bee43 [ 78.656643][ T9873] R10: ffffed10147bee42 R11: 0000000000000003 R12: 0000000000000000 [ 78.664612][ T9873] R13: ffff88809108cb40 R14: ffff888091ed0a00 R15: ffff88809108cb7c [ 78.672648][ T9873] FS: 0000000000000000(0000) GS:ffff8880ae900000(0063) knlGS:0000000058137840 [ 78.681718][ T9873] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 78.688940][ T9873] CR2: 0000000020000600 CR3: 000000008f192000 CR4: 00000000001406e0 [ 78.696976][ T9873] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 78.704931][ T9873] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 78.712994][ T9873] Kernel panic - not syncing: Fatal exception [ 78.720494][ T9873] Kernel Offset: disabled [ 78.724862][ T9873] Rebooting in 86400 seconds..