[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   61.177155][   T27] audit: type=1800 audit(1560251018.157:25): pid=8819 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[   61.221827][   T27] audit: type=1800 audit(1560251018.157:26): pid=8819 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   61.272249][   T27] audit: type=1800 audit(1560251018.157:27): pid=8819 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.188' (ECDSA) to the list of known hosts.
2019/06/11 11:04:25 parsed 1 programs
2019/06/11 11:04:27 executed programs: 0
syzkaller login: [  110.787035][ T8992] IPVS: ftp: loaded support on port[0] = 21
[  110.880736][ T8997] IPVS: ftp: loaded support on port[0] = 21
[  110.895257][ T8995] IPVS: ftp: loaded support on port[0] = 21
[  110.913168][ T8999] IPVS: ftp: loaded support on port[0] = 21
[  110.929946][ T9000] IPVS: ftp: loaded support on port[0] = 21
[  111.046562][ T9002] IPVS: ftp: loaded support on port[0] = 21
[  111.137573][ T8992] chnl_net:caif_netlink_parms(): no params data found
[  111.215358][ T8999] chnl_net:caif_netlink_parms(): no params data found
[  111.243636][ T8992] bridge0: port 1(bridge_slave_0) entered blocking state
[  111.250925][ T8992] bridge0: port 1(bridge_slave_0) entered disabled state
[  111.260090][ T8992] device bridge_slave_0 entered promiscuous mode
[  111.318007][ T8992] bridge0: port 2(bridge_slave_1) entered blocking state
[  111.325689][ T8992] bridge0: port 2(bridge_slave_1) entered disabled state
[  111.333660][ T8992] device bridge_slave_1 entered promiscuous mode
[  111.407670][ T8995] chnl_net:caif_netlink_parms(): no params data found
[  111.426607][ T8992] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  111.440509][ T8999] bridge0: port 1(bridge_slave_0) entered blocking state
[  111.447951][ T8999] bridge0: port 1(bridge_slave_0) entered disabled state
[  111.455991][ T8999] device bridge_slave_0 entered promiscuous mode
[  111.463763][ T8997] chnl_net:caif_netlink_parms(): no params data found
[  111.494054][ T8992] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  111.509194][ T8999] bridge0: port 2(bridge_slave_1) entered blocking state
[  111.516514][ T8999] bridge0: port 2(bridge_slave_1) entered disabled state
[  111.524575][ T8999] device bridge_slave_1 entered promiscuous mode
[  111.589806][ T8999] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  111.609453][ T8992] team0: Port device team_slave_0 added
[  111.635065][ T8999] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  111.659166][ T8992] team0: Port device team_slave_1 added
[  111.665303][ T8997] bridge0: port 1(bridge_slave_0) entered blocking state
[  111.672897][ T8997] bridge0: port 1(bridge_slave_0) entered disabled state
[  111.680617][ T8997] device bridge_slave_0 entered promiscuous mode
[  111.688238][ T9000] chnl_net:caif_netlink_parms(): no params data found
[  111.720565][ T8999] team0: Port device team_slave_0 added
[  111.727309][ T8997] bridge0: port 2(bridge_slave_1) entered blocking state
[  111.735049][ T8997] bridge0: port 2(bridge_slave_1) entered disabled state
[  111.745264][ T8997] device bridge_slave_1 entered promiscuous mode
[  111.767699][ T8995] bridge0: port 1(bridge_slave_0) entered blocking state
[  111.775203][ T8995] bridge0: port 1(bridge_slave_0) entered disabled state
[  111.783651][ T8995] device bridge_slave_0 entered promiscuous mode
[  111.792862][ T8999] team0: Port device team_slave_1 added
[  111.839195][ T8995] bridge0: port 2(bridge_slave_1) entered blocking state
[  111.846506][ T8995] bridge0: port 2(bridge_slave_1) entered disabled state
[  111.860150][ T8995] device bridge_slave_1 entered promiscuous mode
[  111.885252][ T8997] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  111.953723][ T8992] device hsr_slave_0 entered promiscuous mode
[  112.001977][ T8992] device hsr_slave_1 entered promiscuous mode
[  112.046677][ T8997] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  112.063561][ T9000] bridge0: port 1(bridge_slave_0) entered blocking state
[  112.070961][ T9000] bridge0: port 1(bridge_slave_0) entered disabled state
[  112.079027][ T9000] device bridge_slave_0 entered promiscuous mode
[  112.093416][ T9002] chnl_net:caif_netlink_parms(): no params data found
[  112.153448][ T8999] device hsr_slave_0 entered promiscuous mode
[  112.222004][ T8999] device hsr_slave_1 entered promiscuous mode
[  112.292238][ T9000] bridge0: port 2(bridge_slave_1) entered blocking state
[  112.299354][ T9000] bridge0: port 2(bridge_slave_1) entered disabled state
[  112.307386][ T9000] device bridge_slave_1 entered promiscuous mode
[  112.316190][ T8995] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  112.326743][ T8995] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  112.346787][ T8997] team0: Port device team_slave_0 added
[  112.396286][ T8997] team0: Port device team_slave_1 added
[  112.419444][ T9000] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  112.436521][ T9000] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  112.451712][ T8995] team0: Port device team_slave_0 added
[  112.514773][ T8997] device hsr_slave_0 entered promiscuous mode
[  112.581799][ T8997] device hsr_slave_1 entered promiscuous mode
[  112.658161][ T8995] team0: Port device team_slave_1 added
[  112.666726][ T9000] team0: Port device team_slave_0 added
[  112.684614][ T9002] bridge0: port 1(bridge_slave_0) entered blocking state
[  112.692438][ T9002] bridge0: port 1(bridge_slave_0) entered disabled state
[  112.700818][ T9002] device bridge_slave_0 entered promiscuous mode
[  112.709812][ T9000] team0: Port device team_slave_1 added
[  112.784916][ T8995] device hsr_slave_0 entered promiscuous mode
[  112.831881][ T8995] device hsr_slave_1 entered promiscuous mode
[  112.873702][ T9002] bridge0: port 2(bridge_slave_1) entered blocking state
[  112.880828][ T9002] bridge0: port 2(bridge_slave_1) entered disabled state
[  112.888841][ T9002] device bridge_slave_1 entered promiscuous mode
[  112.974115][ T9000] device hsr_slave_0 entered promiscuous mode
[  113.022020][ T9000] device hsr_slave_1 entered promiscuous mode
[  113.094161][ T9002] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  113.118598][ T9002] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  113.164655][ T9002] team0: Port device team_slave_0 added
[  113.187265][ T9002] team0: Port device team_slave_1 added
[  113.276034][ T9002] device hsr_slave_0 entered promiscuous mode
[  113.322046][ T9002] device hsr_slave_1 entered promiscuous mode
[  113.365209][ T8999] 8021q: adding VLAN 0 to HW filter on device bond0
[  113.375102][ T8992] 8021q: adding VLAN 0 to HW filter on device bond0
[  113.410336][ T3486] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  113.419098][ T3486] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  113.442492][ T8999] 8021q: adding VLAN 0 to HW filter on device team0
[  113.455784][ T8992] 8021q: adding VLAN 0 to HW filter on device team0
[  113.468890][ T3486] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  113.477928][ T3486] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  113.490899][ T8997] 8021q: adding VLAN 0 to HW filter on device bond0
[  113.518767][ T3486] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  113.528745][ T3486] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  113.537461][ T3486] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.544678][ T3486] bridge0: port 1(bridge_slave_0) entered forwarding state
[  113.554739][ T3486] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  113.564359][ T3486] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  113.573897][ T3486] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.581942][ T3486] bridge0: port 2(bridge_slave_1) entered forwarding state
[  113.590213][ T3486] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  113.603205][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  113.613196][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  113.622137][    T5] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.629232][    T5] bridge0: port 1(bridge_slave_0) entered forwarding state
[  113.638580][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  113.647372][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  113.671678][ T9010] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  113.679764][ T9010] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  113.688099][ T9010] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  113.697383][ T9010] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  113.707668][ T9010] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.714904][ T9010] bridge0: port 2(bridge_slave_1) entered forwarding state
[  113.723309][ T9010] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  113.757528][ T8997] 8021q: adding VLAN 0 to HW filter on device team0
[  113.770982][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  113.779980][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  113.788802][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  113.797589][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  113.806549][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  113.816026][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  113.832075][ T8995] 8021q: adding VLAN 0 to HW filter on device bond0
[  113.855039][ T9010] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  113.864591][ T9010] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  113.873741][ T9010] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.880909][ T9010] bridge0: port 1(bridge_slave_0) entered forwarding state
[  113.889429][ T9010] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  113.898518][ T9010] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  113.907355][ T9010] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.914479][ T9010] bridge0: port 2(bridge_slave_1) entered forwarding state
[  113.923407][ T9010] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  113.932472][ T9010] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  113.970947][ T8992] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  113.984699][ T8992] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  113.997049][ T3486] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  114.007657][ T3486] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  114.016530][ T3486] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  114.025226][ T3486] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  114.033346][ T3486] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  114.042552][ T3486] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  114.050957][ T3486] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  114.059816][ T3486] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  114.068360][ T3486] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  114.076813][ T3486] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  114.085743][ T3486] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  114.094134][ T3486] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  114.102735][ T3486] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  114.111268][ T3486] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  114.120100][ T3486] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  114.128159][ T3486] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  114.142598][ T8995] 8021q: adding VLAN 0 to HW filter on device team0
[  114.159453][ T9000] 8021q: adding VLAN 0 to HW filter on device bond0
[  114.177163][ T8999] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  114.188720][ T8999] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  114.219935][ T8999] 8021q: adding VLAN 0 to HW filter on device batadv0
[  114.228463][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  114.238528][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  114.247883][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  114.256987][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  114.282483][ T9000] 8021q: adding VLAN 0 to HW filter on device team0
[  114.294992][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  114.304235][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  114.312201][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  114.320092][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  114.329462][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  114.338121][    T5] bridge0: port 1(bridge_slave_0) entered blocking state
[  114.345341][    T5] bridge0: port 1(bridge_slave_0) entered forwarding state
[  114.353279][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  114.362300][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  114.370732][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  114.380138][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  114.388693][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  114.397530][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  114.438594][ T8997] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  114.465876][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  114.474464][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  114.483567][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  114.492358][    T5] bridge0: port 1(bridge_slave_0) entered blocking state
[  114.499474][    T5] bridge0: port 1(bridge_slave_0) entered forwarding state
[  114.508835][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  114.517837][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  114.527018][    T5] bridge0: port 2(bridge_slave_1) entered blocking state
[  114.534152][    T5] bridge0: port 2(bridge_slave_1) entered forwarding state
[  114.542242][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  114.550843][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  114.559410][    T5] bridge0: port 2(bridge_slave_1) entered blocking state
[  114.566860][    T5] bridge0: port 2(bridge_slave_1) entered forwarding state
[  114.574602][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  114.583274][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  114.592460][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  114.601044][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  114.609946][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  114.619280][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  114.628618][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  114.641193][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  114.650088][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  114.658293][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  114.712565][ T9000] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  114.729769][ T9000] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  114.743932][ T9010] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  114.755696][ T9010] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  114.764643][ T9010] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  114.774991][ T9010] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  114.783972][ T9010] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  114.792851][ T9010] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  114.801105][ T9010] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  114.810364][ T9010] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  114.819116][ T9010] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  114.837695][ T9010] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  114.846775][ T9010] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  114.855128][ T9010] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  114.867471][ T9002] 8021q: adding VLAN 0 to HW filter on device bond0
[  114.904330][ T8992] 8021q: adding VLAN 0 to HW filter on device batadv0
[  114.932971][ T9002] 8021q: adding VLAN 0 to HW filter on device team0
[  114.941212][ T9010] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  114.951050][ T9010] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  114.970527][ T9010] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  114.979335][ T9010] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  114.995604][ T8995] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  115.043783][ T8997] 8021q: adding VLAN 0 to HW filter on device batadv0
[  115.104496][ T9000] 8021q: adding VLAN 0 to HW filter on device batadv0
[  115.122513][ T9023] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  115.138180][ T9023] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  115.156674][ T9023] bridge0: port 1(bridge_slave_0) entered blocking state
[  115.163934][ T9023] bridge0: port 1(bridge_slave_0) entered forwarding state
[  115.190788][ T9023] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  115.200645][ T9023] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  115.217619][ T9023] bridge0: port 2(bridge_slave_1) entered blocking state
[  115.224977][ T9023] bridge0: port 2(bridge_slave_1) entered forwarding state
[  115.233485][ T9023] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  115.242358][ T9023] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  115.278953][ T9005] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  115.304349][ T9005] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  115.332582][ T9005] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  115.341145][ T9005] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  115.368431][ T9005] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  115.390369][ T8995] 8021q: adding VLAN 0 to HW filter on device batadv0
[  115.447044][ T9005] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  115.475066][ T9005] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  115.492554][ T9005] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  115.501022][ T9005] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  115.521277][ T9005] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
2019/06/11 11:04:32 executed programs: 15
[  115.621869][ T9002] 8021q: adding VLAN 0 to HW filter on device batadv0
2019/06/11 11:04:37 executed programs: 188
2019/06/11 11:04:42 executed programs: 359
2019/06/11 11:04:47 executed programs: 529
2019/06/11 11:04:52 executed programs: 705
2019/06/11 11:04:57 executed programs: 879
2019/06/11 11:05:02 executed programs: 1041
2019/06/11 11:05:07 executed programs: 1210
2019/06/11 11:05:12 executed programs: 1377
2019/06/11 11:05:17 executed programs: 1540
2019/06/11 11:05:22 executed programs: 1707
2019/06/11 11:05:27 executed programs: 1873
2019/06/11 11:05:32 executed programs: 2034
2019/06/11 11:05:37 executed programs: 2197
2019/06/11 11:05:42 executed programs: 2357
2019/06/11 11:05:47 executed programs: 2518
2019/06/11 11:05:52 executed programs: 2673
2019/06/11 11:05:57 executed programs: 2826
2019/06/11 11:06:03 executed programs: 2976
2019/06/11 11:06:08 executed programs: 3130
2019/06/11 11:06:13 executed programs: 3292
2019/06/11 11:06:18 executed programs: 3453
2019/06/11 11:06:23 executed programs: 3607
2019/06/11 11:06:28 executed programs: 3764
2019/06/11 11:06:33 executed programs: 3917
2019/06/11 11:06:38 executed programs: 4060
2019/06/11 11:06:43 executed programs: 4222
2019/06/11 11:06:48 executed programs: 4386
2019/06/11 11:06:53 executed programs: 4538
2019/06/11 11:06:58 executed programs: 4688
2019/06/11 11:07:03 executed programs: 4832
[  271.282925][T28438] ==================================================================
[  271.291514][T28438] BUG: KASAN: use-after-free in sk_psock_unlink+0x3dd/0x4b0
[  271.298824][T28438] Read of size 4 at addr ffff8880a7e36018 by task syz-executor.2/28438
[  271.307196][T28438] 
[  271.309541][T28438] CPU: 0 PID: 28438 Comm: syz-executor.2 Not tainted 5.2.0-rc3+ #47
[  271.317542][T28438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  271.327642][T28438] Call Trace:
[  271.331046][T28438]  dump_stack+0x172/0x1f0
[  271.335399][T28438]  ? sk_psock_unlink+0x3dd/0x4b0
[  271.340413][T28438]  ? tcp_check_oom+0x560/0x560
[  271.345238][T28438]  print_address_description.cold+0x7c/0x20d
[  271.351246][T28438]  ? sk_psock_unlink+0x3dd/0x4b0
[  271.356204][T28438]  ? sk_psock_unlink+0x3dd/0x4b0
[  271.361163][T28438]  ? tcp_check_oom+0x560/0x560
[  271.365983][T28438]  __kasan_report.cold+0x1b/0x40
[  271.371162][T28438]  ? retint_user+0x13/0x18
[  271.375609][T28438]  ? sk_psock_unlink+0x3dd/0x4b0
[  271.380561][T28438]  kasan_report+0x12/0x20
[  271.384938][T28438]  __asan_report_load4_noabort+0x14/0x20
[  271.390589][T28438]  sk_psock_unlink+0x3dd/0x4b0
[  271.395543][T28438]  ? tcp_check_oom+0x560/0x560
[  271.400379][T28438]  tcp_bpf_remove+0x21/0x50
[  271.404905][T28438]  tcp_bpf_close+0x130/0x390
[  271.409587][T28438]  inet_release+0xe0/0x1f0
[  271.414065][T28438]  inet6_release+0x53/0x80
[  271.418538][T28438]  __sock_release+0xce/0x2a0
[  271.423143][T28438]  sock_close+0x1b/0x30
[  271.427313][T28438]  __fput+0x2ff/0x890
[  271.431312][T28438]  ? __sock_release+0x2a0/0x2a0
[  271.436177][T28438]  ____fput+0x16/0x20
[  271.440170][T28438]  task_work_run+0x145/0x1c0
[  271.444783][T28438]  exit_to_usermode_loop+0x273/0x2c0
[  271.450083][T28438]  do_syscall_64+0x58e/0x680
[  271.454695][T28438]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  271.460599][T28438] RIP: 0033:0x412f61
[  271.464499][T28438] Code: 75 14 b8 03 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 04 1b 00 00 c3 48 83 ec 08 e8 0a fc ff ff 48 89 04 24 b8 03 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 53 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01
[  271.484116][T28438] RSP: 002b:00007ffe837949d0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  271.492548][T28438] RAX: 0000000000000000 RBX: 0000000000000006 RCX: 0000000000412f61
[  271.500539][T28438] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[  271.508528][T28438] RBP: 0000000000000000 R08: ffffffffffffffff R09: ffffffffffffffff
[  271.516511][T28438] R10: 00007ffe83794ab0 R11: 0000000000000293 R12: 00000000007610a8
[  271.524559][T28438] R13: 000000000004238a R14: 00000000000423b7 R15: 000000000075bfcc
[  271.532559][T28438] 
[  271.534901][T28438] Allocated by task 28442:
[  271.539330][T28438]  save_stack+0x23/0x90
[  271.543495][T28438]  __kasan_kmalloc.constprop.0+0xcf/0xe0
[  271.549136][T28438]  kasan_kmalloc+0x9/0x10
[  271.553478][T28438]  kmem_cache_alloc_trace+0x151/0x750
[  271.558858][T28438]  sock_map_alloc+0x1b9/0x3f0
[  271.563565][T28438]  __do_sys_bpf+0x730/0x43d0
[  271.563586][T28438]  __x64_sys_bpf+0x73/0xb0
[  271.563599][T28438]  do_syscall_64+0xfd/0x680
[  271.563612][T28438]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  271.563616][T28438] 
[  271.563630][T28438] Freed by task 12:
[  271.563641][T28438]  save_stack+0x23/0x90
[  271.563650][T28438]  __kasan_slab_free+0x102/0x150
[  271.563659][T28438]  kasan_slab_free+0xe/0x10
[  271.563667][T28438]  kfree+0xcf/0x220
[  271.563675][T28438]  sock_map_free+0x22a/0x310
[  271.563684][T28438]  bpf_map_free_deferred+0xb4/0xe0
[  271.563697][T28438]  process_one_work+0x989/0x1790
[  271.598524][T28438]  worker_thread+0x98/0xe40
[  271.598537][T28438]  kthread+0x354/0x420
[  271.598550][T28438]  ret_from_fork+0x24/0x30
[  271.598554][T28438] 
[  271.598565][T28438] The buggy address belongs to the object at ffff8880a7e36000
[  271.598565][T28438]  which belongs to the cache kmalloc-512 of size 512
[  271.598583][T28438] The buggy address is located 24 bytes inside of
[  271.598583][T28438]  512-byte region [ffff8880a7e36000, ffff8880a7e36200)
[  271.630044][T28438] The buggy address belongs to the page:
[  271.630061][T28438] page:ffffea00029f8d80 refcount:1 mapcount:0 mapping:ffff8880aa400940 index:0xffff8880a7e36c80
[  271.630073][T28438] flags: 0x1fffc0000000200(slab)
2019/06/11 11:07:08 executed programs: 4973
[  271.630092][T28438] raw: 01fffc0000000200 ffffea00025dff08 ffffea00028e35c8 ffff8880aa400940
[  271.630109][T28438] raw: ffff8880a7e36c80 ffff8880a7e36000 0000000100000005 0000000000000000
[  271.702339][T28438] page dumped because: kasan: bad access detected
[  271.708749][T28438] 
[  271.711075][T28438] Memory state around the buggy address:
[  271.716698][T28438]  ffff8880a7e35f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  271.724763][T28438]  ffff8880a7e35f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  271.724774][T28438] >ffff8880a7e36000: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  271.724779][T28438]                             ^
[  271.724788][T28438]  ffff8880a7e36080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  271.724797][T28438]  ffff8880a7e36100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  271.724802][T28438] ==================================================================
[  271.724806][T28438] Disabling lock debugging due to kernel taint
[  271.753278][T28438] Kernel panic - not syncing: panic_on_warn set ...
[  271.783019][T28438] CPU: 0 PID: 28438 Comm: syz-executor.2 Tainted: G    B             5.2.0-rc3+ #47
[  271.792430][T28438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  271.802515][T28438] Call Trace:
[  271.805821][T28438]  dump_stack+0x172/0x1f0
[  271.810170][T28438]  ? tcp_check_oom+0x560/0x560
[  271.814493][ T3879] kobject: 'loop0' (00000000d08e5e23): kobject_uevent_env
[  271.814947][T28438]  panic+0x2cb/0x744
[  271.825967][T28438]  ? __warn_printk+0xf3/0xf3
[  271.827831][ T3879] kobject: 'loop0' (00000000d08e5e23): fill_kobj_path: path = '/devices/virtual/block/loop0'
[  271.830667][T28438]  ? sk_psock_unlink+0x3dd/0x4b0
[  271.830683][T28438]  ? tcp_check_oom+0x560/0x560
[  271.830739][T28438]  ? preempt_schedule+0x4b/0x60
[  271.857915][T28438]  ? ___preempt_schedule+0x16/0x18
[  271.863044][T28438]  ? trace_hardirqs_on+0x5e/0x220
[  271.868087][T28438]  ? sk_psock_unlink+0x3dd/0x4b0
[  271.873046][T28438]  ? tcp_check_oom+0x560/0x560
[  271.877824][T28438]  end_report+0x47/0x4f
[  271.882026][T28438]  ? sk_psock_unlink+0x3dd/0x4b0
[  271.886975][T28438]  __kasan_report.cold+0xe/0x40
[  271.891839][T28438]  ? retint_user+0x13/0x18
[  271.896415][T28438]  ? sk_psock_unlink+0x3dd/0x4b0
[  271.901351][T28438]  kasan_report+0x12/0x20
[  271.905684][T28438]  __asan_report_load4_noabort+0x14/0x20
[  271.911400][T28438]  sk_psock_unlink+0x3dd/0x4b0
[  271.916153][T28438]  ? tcp_check_oom+0x560/0x560
[  271.920908][T28438]  tcp_bpf_remove+0x21/0x50
[  271.925405][T28438]  tcp_bpf_close+0x130/0x390
[  271.929986][T28438]  inet_release+0xe0/0x1f0
[  271.934389][T28438]  inet6_release+0x53/0x80
[  271.938810][T28438]  __sock_release+0xce/0x2a0
[  271.943388][T28438]  sock_close+0x1b/0x30
[  271.947539][T28438]  __fput+0x2ff/0x890
[  271.951526][T28438]  ? __sock_release+0x2a0/0x2a0
[  271.956403][T28438]  ____fput+0x16/0x20
[  271.960378][T28438]  task_work_run+0x145/0x1c0
[  271.964955][T28438]  exit_to_usermode_loop+0x273/0x2c0
[  271.970238][T28438]  do_syscall_64+0x58e/0x680
[  271.974840][T28438]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  271.980724][T28438] RIP: 0033:0x412f61
[  271.984621][T28438] Code: 75 14 b8 03 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 04 1b 00 00 c3 48 83 ec 08 e8 0a fc ff ff 48 89 04 24 b8 03 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 53 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01
[  271.991890][ T3879] kobject: 'loop5' (000000005c1c4a03): kobject_uevent_env
[  272.004235][T28438] RSP: 002b:00007ffe837949d0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  272.004248][T28438] RAX: 0000000000000000 RBX: 0000000000000006 RCX: 0000000000412f61
[  272.004253][T28438] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[  272.004260][T28438] RBP: 0000000000000000 R08: ffffffffffffffff R09: ffffffffffffffff
[  272.004267][T28438] R10: 00007ffe83794ab0 R11: 0000000000000293 R12: 00000000007610a8
[  272.004273][T28438] R13: 000000000004238a R14: 00000000000423b7 R15: 000000000075bfcc
[  272.012514][T28438] Kernel Offset: disabled
[  272.065034][T28438] Rebooting in 86400 seconds..