[[36minfo[39;49m] Using makefile-style concurrent boot in runlevel 2.
[   26.359021] audit: type=1800 audit(1544031716.540:21): pid=5836 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="bootlogs" dev="sda1" ino=2419 res=0
[   26.386074] audit: type=1800 audit(1544031716.550:22): pid=5836 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="motd" dev="sda1" ino=2447 res=0
[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.15.203' (ECDSA) to the list of known hosts.
2018/12/05 17:43:00 parsed 1 programs
2018/12/05 17:43:01 executed programs: 0
syzkaller login: [   91.546067] IPVS: ftp: loaded support on port[0] = 21
[   91.794442] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.801803] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.808961] device bridge_slave_0 entered promiscuous mode
[   91.828046] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.834625] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.841757] device bridge_slave_1 entered promiscuous mode
[   91.861027] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   91.879112] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   91.930785] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   91.951069] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   92.029620] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   92.037197] team0: Port device team_slave_0 added
[   92.054527] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   92.061774] team0: Port device team_slave_1 added
[   92.078947] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   92.099184] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   92.118418] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   92.137591] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   92.286260] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.292851] bridge0: port 2(bridge_slave_1) entered forwarding state
[   92.299669] bridge0: port 1(bridge_slave_0) entered blocking state
[   92.306087] bridge0: port 1(bridge_slave_0) entered forwarding state
[   92.845822] 8021q: adding VLAN 0 to HW filter on device bond0
[   92.910720] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   92.963844] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   92.970093] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   92.977940] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   93.031750] 8021q: adding VLAN 0 to HW filter on device team0
2018/12/05 17:43:06 executed programs: 89
2018/12/05 17:43:11 executed programs: 198
2018/12/05 17:43:16 executed programs: 298
2018/12/05 17:43:21 executed programs: 441
2018/12/05 17:43:27 executed programs: 564
2018/12/05 17:43:32 executed programs: 706
2018/12/05 17:43:37 executed programs: 838
[  130.909664] vivid-000: kernel_thread() failed
[  131.726205] ==================================================================
[  131.733721] BUG: KASAN: null-ptr-deref in kthread_stop+0x10d/0x900
[  131.740031] Write of size 4 at addr 000000000000001c by task syz-executor0/10606
[  131.747728] 
[  131.749349] CPU: 0 PID: 10606 Comm: syz-executor0 Not tainted 4.20.0-rc5+ #362
[  131.756690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  131.766025] Call Trace:
[  131.768616]  dump_stack+0x244/0x39d
[  131.772261]  ? dump_stack_print_info.cold.1+0x20/0x20
[  131.777442]  ? vprintk_func+0x85/0x181
[  131.781320]  kasan_report.cold.8+0x6d/0x309
[  131.785631]  ? kthread_stop+0x10d/0x900
[  131.789604]  check_memory_region+0x13e/0x1b0
[  131.794003]  kasan_check_write+0x14/0x20
[  131.798049]  kthread_stop+0x10d/0x900
[  131.801838]  ? kthread_unpark+0x160/0x160
[  131.806027]  ? __lock_is_held+0xb5/0x140
[  131.810093]  vivid_stop_generating_vid_cap+0x2bb/0x9ae
[  131.815364]  ? vivid_start_generating_vid_cap+0x4c0/0x4c0
[  131.820892]  ? _vb2_fop_release+0x3f/0x2b0
[  131.825121]  ? mutex_trylock+0x2b0/0x2b0
[  131.829168]  ? vivid_fop_release+0x66/0x440
[  131.833478]  ? __mutex_lock+0x85e/0x16f0
[  131.837535]  vid_cap_stop_streaming+0x8d/0xe0
[  131.842040]  ? vid_cap_buf_queue+0x310/0x310
[  131.846434]  __vb2_queue_cancel+0x171/0xd20
[  131.850757]  ? lock_downgrade+0x900/0x900
[  131.854936]  ? vb2_buffer_done+0xb90/0xb90
[  131.859184]  ? find_held_lock+0x36/0x1c0
[  131.863244]  ? mark_held_locks+0xc7/0x130
[  131.867385]  ? kasan_check_write+0x14/0x20
[  131.871607]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  131.876525]  ? kasan_check_read+0x11/0x20
[  131.880676]  ? wait_for_completion+0x8a0/0x8a0
[  131.885254]  ? trace_hardirqs_off_caller+0x310/0x310
[  131.890368]  vb2_core_streamoff+0x60/0x140
[  131.894616]  __vb2_cleanup_fileio+0x73/0x160
[  131.899019]  vb2_core_queue_release+0x1e/0x80
[  131.903504]  _vb2_fop_release+0x1d2/0x2b0
[  131.907642]  vb2_fop_release+0x77/0xc0
[  131.911527]  vivid_fop_release+0x18e/0x440
[  131.915750]  ? vivid_remove+0x460/0x460
[  131.919713]  v4l2_release+0x224/0x3a0
[  131.923516]  ? dev_debug_store+0x140/0x140
[  131.927753]  __fput+0x385/0xa30
[  131.931024]  ? get_max_files+0x20/0x20
[  131.934900]  ? trace_hardirqs_on+0xbd/0x310
[  131.939210]  ? kasan_check_read+0x11/0x20
[  131.943358]  ? task_work_run+0x1af/0x2a0
[  131.947405]  ? trace_hardirqs_off_caller+0x310/0x310
[  131.952498]  ? check_preemption_disabled+0x48/0x280
[  131.957503]  ____fput+0x15/0x20
[  131.960776]  task_work_run+0x1e8/0x2a0
[  131.964655]  ? task_work_cancel+0x240/0x240
[  131.968997]  get_signal+0x1558/0x1980
[  131.972786]  ? compat_poll_select_copy_remaining+0x6c0/0x6c0
[  131.978592]  ? save_stack+0x43/0xd0
[  131.982243]  ? ptrace_notify+0x130/0x130
[  131.986308]  ? zap_class+0x640/0x640
[  131.990013]  ? find_held_lock+0x36/0x1c0
[  131.994068]  ? __might_fault+0x12b/0x1e0
[  131.998115]  ? poll_select_copy_remaining+0x433/0x6a0
[  132.003307]  do_signal+0x9c/0x21c0
[  132.006838]  ? perf_trace_sched_process_exec+0x860/0x860
[  132.012307]  ? posix_ktime_get_ts+0x15/0x20
[  132.016617]  ? trace_hardirqs_off_caller+0x310/0x310
[  132.021710]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  132.026642]  ? kasan_check_read+0x11/0x20
[  132.030780]  ? setup_sigcontext+0x7d0/0x7d0
[  132.035095]  ? exit_to_usermode_loop+0x8c/0x380
[  132.039749]  ? exit_to_usermode_loop+0x8c/0x380
[  132.044404]  ? lockdep_hardirqs_on+0x3bb/0x5b0
[  132.048989]  ? trace_hardirqs_on+0xbd/0x310
[  132.053298]  ? do_syscall_64+0x6be/0x820
[  132.057346]  ? trace_hardirqs_off_caller+0x310/0x310
[  132.062437]  ? nsecs_to_jiffies+0x30/0x30
[  132.066579]  ? do_syscall_64+0x9a/0x820
[  132.070550]  ? do_syscall_64+0x9a/0x820
[  132.074530]  exit_to_usermode_loop+0x2e5/0x380
[  132.079100]  ? __bpf_trace_sys_exit+0x30/0x30
[  132.083592]  do_syscall_64+0x6be/0x820
[  132.087467]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  132.092836]  ? syscall_return_slowpath+0x5e0/0x5e0
[  132.097763]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  132.102595]  ? trace_hardirqs_on_caller+0x310/0x310
[  132.107610]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  132.112625]  ? prepare_exit_to_usermode+0x291/0x3b0
[  132.117630]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  132.122475]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  132.127672] RIP: 0033:0x457569
[  132.130852] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  132.149739] RSP: 002b:00007fe502997c78 EFLAGS: 00000246 ORIG_RAX: 000000000000010f
[  132.157432] RAX: 0000000000000003 RBX: 0000000000000005 RCX: 0000000000457569
[  132.164684] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000020000000
[  132.171936] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  132.179189] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe5029986d4
[  132.186466] R13: 00000000004c33a8 R14: 00000000004d54c8 R15: 00000000ffffffff
[  132.193731] ==================================================================
[  132.201070] Disabling lock debugging due to kernel taint
[  132.206615] Kernel panic - not syncing: panic_on_warn set ...
[  132.212507] CPU: 0 PID: 10606 Comm: syz-executor0 Tainted: G    B             4.20.0-rc5+ #362
[  132.221242] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  132.230585] Call Trace:
[  132.233161]  dump_stack+0x244/0x39d
[  132.236786]  ? dump_stack_print_info.cold.1+0x20/0x20
[  132.241987]  panic+0x2ad/0x55c
[  132.245181]  ? add_taint.cold.5+0x16/0x16
[  132.249326]  ? preempt_schedule+0x4d/0x60
[  132.253458]  ? ___preempt_schedule+0x16/0x18
[  132.257854]  ? trace_hardirqs_on+0xb4/0x310
[  132.262160]  kasan_end_report+0x47/0x4f
[  132.266118]  kasan_report.cold.8+0x76/0x309
[  132.270431]  ? kthread_stop+0x10d/0x900
[  132.274395]  check_memory_region+0x13e/0x1b0
[  132.278792]  kasan_check_write+0x14/0x20
[  132.282850]  kthread_stop+0x10d/0x900
[  132.286634]  ? kthread_unpark+0x160/0x160
[  132.290773]  ? __lock_is_held+0xb5/0x140
[  132.294828]  vivid_stop_generating_vid_cap+0x2bb/0x9ae
[  132.300098]  ? vivid_start_generating_vid_cap+0x4c0/0x4c0
[  132.305624]  ? _vb2_fop_release+0x3f/0x2b0
[  132.309847]  ? mutex_trylock+0x2b0/0x2b0
[  132.313896]  ? vivid_fop_release+0x66/0x440
[  132.318200]  ? __mutex_lock+0x85e/0x16f0
[  132.322285]  vid_cap_stop_streaming+0x8d/0xe0
[  132.326776]  ? vid_cap_buf_queue+0x310/0x310
[  132.331169]  __vb2_queue_cancel+0x171/0xd20
[  132.335507]  ? lock_downgrade+0x900/0x900
[  132.339644]  ? vb2_buffer_done+0xb90/0xb90
[  132.343861]  ? find_held_lock+0x36/0x1c0
[  132.347912]  ? mark_held_locks+0xc7/0x130
[  132.352049]  ? kasan_check_write+0x14/0x20
[  132.356316]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  132.361240]  ? kasan_check_read+0x11/0x20
[  132.365374]  ? wait_for_completion+0x8a0/0x8a0
[  132.369950]  ? trace_hardirqs_off_caller+0x310/0x310
[  132.375044]  vb2_core_streamoff+0x60/0x140
[  132.379274]  __vb2_cleanup_fileio+0x73/0x160
[  132.383668]  vb2_core_queue_release+0x1e/0x80
[  132.388150]  _vb2_fop_release+0x1d2/0x2b0
[  132.392284]  vb2_fop_release+0x77/0xc0
[  132.396167]  vivid_fop_release+0x18e/0x440
[  132.400390]  ? vivid_remove+0x460/0x460
[  132.404377]  v4l2_release+0x224/0x3a0
[  132.408177]  ? dev_debug_store+0x140/0x140
[  132.412396]  __fput+0x385/0xa30
[  132.415661]  ? get_max_files+0x20/0x20
[  132.419533]  ? trace_hardirqs_on+0xbd/0x310
[  132.423836]  ? kasan_check_read+0x11/0x20
[  132.427971]  ? task_work_run+0x1af/0x2a0
[  132.432051]  ? trace_hardirqs_off_caller+0x310/0x310
[  132.437143]  ? check_preemption_disabled+0x48/0x280
[  132.442145]  ____fput+0x15/0x20
[  132.445408]  task_work_run+0x1e8/0x2a0
[  132.449280]  ? task_work_cancel+0x240/0x240
[  132.453603]  get_signal+0x1558/0x1980
[  132.457393]  ? compat_poll_select_copy_remaining+0x6c0/0x6c0
[  132.463176]  ? save_stack+0x43/0xd0
[  132.466787]  ? ptrace_notify+0x130/0x130
[  132.470846]  ? zap_class+0x640/0x640
[  132.474546]  ? find_held_lock+0x36/0x1c0
[  132.478597]  ? __might_fault+0x12b/0x1e0
[  132.482642]  ? poll_select_copy_remaining+0x433/0x6a0
[  132.487816]  do_signal+0x9c/0x21c0
[  132.491340]  ? perf_trace_sched_process_exec+0x860/0x860
[  132.496783]  ? posix_ktime_get_ts+0x15/0x20
[  132.501100]  ? trace_hardirqs_off_caller+0x310/0x310
[  132.506204]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  132.511139]  ? kasan_check_read+0x11/0x20
[  132.515271]  ? setup_sigcontext+0x7d0/0x7d0
[  132.519586]  ? exit_to_usermode_loop+0x8c/0x380
[  132.524248]  ? exit_to_usermode_loop+0x8c/0x380
[  132.528902]  ? lockdep_hardirqs_on+0x3bb/0x5b0
[  132.533472]  ? trace_hardirqs_on+0xbd/0x310
[  132.537777]  ? do_syscall_64+0x6be/0x820
[  132.541841]  ? trace_hardirqs_off_caller+0x310/0x310
[  132.546962]  ? nsecs_to_jiffies+0x30/0x30
[  132.551154]  ? do_syscall_64+0x9a/0x820
[  132.555112]  ? do_syscall_64+0x9a/0x820
[  132.559070]  exit_to_usermode_loop+0x2e5/0x380
[  132.563647]  ? __bpf_trace_sys_exit+0x30/0x30
[  132.568158]  do_syscall_64+0x6be/0x820
[  132.572031]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  132.577379]  ? syscall_return_slowpath+0x5e0/0x5e0
[  132.582301]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  132.587134]  ? trace_hardirqs_on_caller+0x310/0x310
[  132.592142]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  132.597185]  ? prepare_exit_to_usermode+0x291/0x3b0
[  132.602187]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  132.607019]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  132.612191] RIP: 0033:0x457569
[  132.615368] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  132.634253] RSP: 002b:00007fe502997c78 EFLAGS: 00000246 ORIG_RAX: 000000000000010f
[  132.641952] RAX: 0000000000000003 RBX: 0000000000000005 RCX: 0000000000457569
[  132.649216] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000020000000
[  132.656476] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  132.663742] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe5029986d4
[  132.670991] R13: 00000000004c33a8 R14: 00000000004d54c8 R15: 00000000ffffffff
[  132.679202] Kernel Offset: disabled
[  132.682832] Rebooting in 86400 seconds..