[ 34.260942] audit: type=1800 audit(1550969896.313:27): pid=7444 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [ 34.283430] audit: type=1800 audit(1550969896.313:28): pid=7444 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 34.853563] audit: type=1800 audit(1550969896.993:29): pid=7444 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 34.873234] audit: type=1800 audit(1550969896.993:30): pid=7444 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.79' (ECDSA) to the list of known hosts. syzkaller login: [ 46.060797] IPVS: ftp: loaded support on port[0] = 21 [ 46.114971] chnl_net:caif_netlink_parms(): no params data found [ 46.142254] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.150912] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.157992] device bridge_slave_0 entered promiscuous mode [ 46.165841] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.172235] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.179469] device bridge_slave_1 entered promiscuous mode [ 46.193676] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 46.202306] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 46.218003] team0: Port device team_slave_0 added [ 46.225067] team0: Port device team_slave_1 added [ 46.285482] device hsr_slave_0 entered promiscuous mode [ 46.333359] device hsr_slave_1 entered promiscuous mode [ 46.419960] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.426439] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.433353] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.439855] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.468648] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.479721] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 46.499077] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.506850] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.514598] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 46.524186] 8021q: adding VLAN 0 to HW filter on device team0 [ 46.533379] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 46.540860] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.547229] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.554011] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 46.561542] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.567909] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.582607] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 46.590503] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 46.600395] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 46.611122] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready executing program [ 46.621096] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 46.630277] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 46.645864] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 46.656420] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 46.953463] WARNING: CPU: 0 PID: 2980 at net/ipv4/tcp_output.c:2535 tcp_send_loss_probe+0x771/0x8a0 [ 46.962743] Kernel panic - not syncing: panic_on_warn set ... [ 46.968672] CPU: 0 PID: 2980 Comm: kworker/0:2 Not tainted 5.0.0-rc7+ #86 [ 46.975708] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 46.985059] Workqueue: events iterate_cleanup_work [ 46.989969] Call Trace: [ 46.992528] [ 46.994666] dump_stack+0x172/0x1f0 [ 46.998277] ? tcp_send_loss_probe+0x6a0/0x8a0 [ 47.002851] panic+0x2cb/0x65c [ 47.006030] ? __warn_printk+0xf3/0xf3 [ 47.009901] ? tcp_send_loss_probe+0x771/0x8a0 [ 47.014543] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 47.020070] ? __warn.cold+0x5/0x45 [ 47.023682] ? __warn+0xe8/0x1d0 [ 47.027044] ? tcp_send_loss_probe+0x771/0x8a0 [ 47.031609] __warn.cold+0x20/0x45 [ 47.035132] ? tcp_send_loss_probe+0x771/0x8a0 [ 47.039704] report_bug+0x263/0x2b0 [ 47.043318] do_error_trap+0x11b/0x200 [ 47.047196] do_invalid_op+0x37/0x50 [ 47.050901] ? tcp_send_loss_probe+0x771/0x8a0 [ 47.055467] invalid_op+0x14/0x20 [ 47.058901] RIP: 0010:tcp_send_loss_probe+0x771/0x8a0 [ 47.064074] Code: 88 fc ff ff 4c 89 ef e8 1d 76 c9 fb e9 c8 fc ff ff e8 73 76 c9 fb e9 63 fd ff ff e8 09 76 c9 fb e9 94 f9 ff ff e8 af 73 92 fb <0f> 0b e9 7d fa ff ff e8 a3 73 92 fb 0f b6 1d 07 6e 7b 03 31 ff 89 [ 47.082956] RSP: 0018:ffff8880ae807c68 EFLAGS: 00010206 [ 47.088298] RAX: ffff88809e85e5c0 RBX: 0000000000000000 RCX: ffffffff85dd68fb [ 47.095553] RDX: 0000000000000100 RSI: ffffffff85dd6dd1 RDI: 0000000000000005 [ 47.102810] RBP: ffff8880ae807c98 R08: ffff88809e85e5c0 R09: ffffed101419e181 [ 47.110164] R10: ffffed101419e180 R11: ffff8880a0cf0c03 R12: ffff88809f102bc0 [ 47.117413] R13: ffff8880a0cf0a40 R14: 0000000000008000 R15: ffff88809f1033d0 [ 47.124689] ? tcp_send_loss_probe+0x29b/0x8a0 [ 47.129257] ? tcp_send_loss_probe+0x771/0x8a0 [ 47.133822] ? tcp_send_loss_probe+0x771/0x8a0 [ 47.138392] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 47.143454] tcp_write_timer_handler+0x4f8/0x8e0 [ 47.148495] tcp_write_timer+0x10e/0x1d0 [ 47.152543] call_timer_fn+0x190/0x720 [ 47.156510] ? tcp_write_timer_handler+0x8e0/0x8e0 [ 47.161423] ? process_timeout+0x40/0x40 [ 47.165464] ? run_timer_softirq+0x647/0x1700 [ 47.169943] ? trace_hardirqs_on+0x67/0x230 [ 47.174253] ? kasan_check_read+0x11/0x20 [ 47.178395] ? tcp_write_timer_handler+0x8e0/0x8e0 [ 47.183310] run_timer_softirq+0x652/0x1700 [ 47.187619] ? add_timer+0xbe0/0xbe0 [ 47.191324] ? __lock_is_held+0xb6/0x140 [ 47.195419] ? check_preemption_disabled+0x48/0x290 [ 47.200429] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 47.205874] __do_softirq+0x266/0x95a [ 47.209708] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 47.215241] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 47.220766] irq_exit+0x180/0x1d0 [ 47.224202] smp_apic_timer_interrupt+0x14a/0x570 [ 47.229038] apic_timer_interrupt+0xf/0x20 [ 47.233391] [ 47.235626] RIP: 0010:__local_bh_enable_ip+0x18e/0x270 [ 47.240905] Code: 00 00 00 00 fc ff df 48 c1 e8 03 80 3c 10 00 0f 85 df 00 00 00 48 83 3d bf c0 4d 07 00 0f 84 8f 00 00 00 fb 66 0f 1f 44 00 00 <65> 8b 05 7b 2b bd 7e 85 c0 74 7f 5b 41 5c 41 5d 5d c3 80 3d 4e 17 [ 47.259795] RSP: 0018:ffff88809efafbb0 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13 [ 47.267485] RAX: 1ffffffff1125060 RBX: 0000000000000200 RCX: 1ffff11013d0bdd1 [ 47.274740] RDX: dffffc0000000000 RSI: ffff88809e85ee68 RDI: ffff88809e85ee3c [ 47.282033] RBP: ffff88809efafbc8 R08: ffff88809e85e5c0 R09: ffff88809e85ee88 [ 47.289480] R10: 0000000000000000 R11: 0000000000000000 R12: ffffffff85a27ae1 [ 47.296732] R13: ffff88809e85e5c0 R14: 0000000000000001 R15: dffffc0000000000 [ 47.304003] ? nf_ct_iterate_cleanup+0x1f1/0x4e0 [ 47.308757] nf_ct_iterate_cleanup+0x217/0x4e0 [ 47.313324] ? nf_ct_alloc_hashtable+0x150/0x150 [ 47.318061] nf_ct_iterate_cleanup_net+0x133/0x190 [ 47.322985] ? nf_nat_masquerade_ipv6_unregister_notifier+0x70/0x70 [ 47.329373] ? nf_ct_iterate_cleanup+0x4e0/0x4e0 [ 47.334119] ? nf_nat_masquerade_ipv6_unregister_notifier+0x70/0x70 [ 47.340515] ? __lock_is_held+0xb6/0x140 [ 47.344566] ? check_preemption_disabled+0x48/0x290 [ 47.349576] iterate_cleanup_work+0x4a/0xe0 [ 47.353886] process_one_work+0x98e/0x1790 [ 47.358105] ? pwq_dec_nr_in_flight+0x320/0x320 [ 47.362751] ? lock_acquire+0x16f/0x3f0 [ 47.366710] worker_thread+0x98/0xe40 [ 47.370491] ? trace_hardirqs_on+0x67/0x230 [ 47.374851] kthread+0x357/0x430 [ 47.378241] ? process_one_work+0x1790/0x1790 [ 47.382726] ? kthread_cancel_delayed_work_sync+0x20/0x20 [ 47.388313] ret_from_fork+0x3a/0x50 [ 47.393087] Kernel Offset: disabled [ 47.396761] Rebooting in 86400 seconds..