[ 28.453068] audit: type=1800 audit(1538724638.255:26): pid=5567 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[ 28.479156] audit: type=1800 audit(1538724638.255:27): pid=5567 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[ 28.504987] audit: type=1800 audit(1538724638.305:28): pid=5567 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0
[....] Starting periodic command scheduler: cron�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[....] Starting OpenBSD Secure Shell server: sshd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[ 28.923558] audit: type=1800 audit(1538724638.755:29): pid=5567 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
Debian GNU/Linux 7 syzkaller ttyS0
Warning: Permanently added '10.128.0.90' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [ 53.175022] IPVS: ftp: loaded support on port[0] = 21
[ 53.197770] netlink: 17 bytes leftover after parsing attributes in process `syz-executor493'.
[ 53.242844] ==================================================================
[ 53.250238] BUG: KASAN: null-ptr-deref in refcount_sub_and_test_checked+0x9d/0x310
[ 53.257923] Read of size 4 at addr 000000000000002e by task swapper/1/0
[ 53.264642]
[ 53.266271] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 4.19.0-rc6+ #245
[ 53.272913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 53.282238] Call Trace:
[ 53.284798]
[ 53.286927] dump_stack+0x1c4/0x2b4
[ 53.290531] ? dump_stack_print_info.cold.2+0x52/0x52
[ 53.295697] ? kasan_check_write+0x14/0x20
[ 53.299912] ? do_raw_spin_lock+0xc1/0x200
[ 53.304123] ? vprintk_func+0x85/0x181
[ 53.308001] kasan_report.cold.9+0x6d/0x309
[ 53.312453] ? refcount_sub_and_test_checked+0x9d/0x310
[ 53.317806] check_memory_region+0x13e/0x1b0
[ 53.322194] kasan_check_read+0x11/0x20
[ 53.326149] refcount_sub_and_test_checked+0x9d/0x310
[ 53.331322] ? refcount_inc_not_zero_checked+0x2f0/0x2f0
[ 53.336777] ? lock_acquire+0x1ed/0x520
[ 53.340763] ? rcu_process_callbacks+0x1012/0x2670
[ 53.345695] ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 53.350693] ? find_next_bit+0x104/0x130
[ 53.354734] refcount_dec_and_test_checked+0x1a/0x20
[ 53.359819] fib6_info_destroy_rcu+0x2ef/0x3e0
[ 53.364380] ? fib6_new_sernum+0x1b0/0x1b0
[ 53.369635] rcu_process_callbacks+0xf23/0x2670
[ 53.374289] ? __rcu_read_unlock+0x2f0/0x2f0
[ 53.378677] ? notifier_call_chain+0x2d4/0x380
[ 53.383264] ? rq_online_fair+0x4d0/0x4d0
[ 53.387400] ? __run_timers+0xa20/0xc70
[ 53.391364] ? rebalance_domains+0x358/0xdc0
[ 53.395754] ? lock_downgrade+0x900/0x900
[ 53.399885] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0
[ 53.405663] ? kasan_check_write+0x14/0x20
[ 53.409882] ? rebalance_domains+0x375/0xdc0
[ 53.414270] ? load_balance+0x3430/0x3430
[ 53.418395] ? enqueue_hrtimer+0x1a5/0x560
[ 53.422604] ? lock_release+0x970/0x970
[ 53.426556] ? hrtimer_update_softirq_timer+0xa0/0xa0
[ 53.431723] ? trace_hardirqs_on+0x310/0x310
[ 53.436129] ? kasan_check_write+0x14/0x20
[ 53.440341] ? do_raw_spin_lock+0xc1/0x200
[ 53.444555] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 53.450069] ? check_preemption_disabled+0x48/0x200
[ 53.455064] ? run_rebalance_domains+0x38d/0x500
[ 53.459797] ? _nohz_idle_balance+0x7a0/0x7a0
[ 53.464273] ? trace_hardirqs_on+0xbd/0x310
[ 53.468573] ? kvm_sched_clock_read+0x9/0x20
[ 53.472971] ? irq_exit+0x17f/0x1c0
[ 53.476577] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 53.482089] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 53.487609] ? check_preemption_disabled+0x48/0x200
[ 53.492620] __do_softirq+0x30b/0xad8
[ 53.496400] ? __irqentry_text_end+0x1f9618/0x1f9618
[ 53.501476] ? pvclock_read_flags+0x160/0x160
[ 53.506020] ? lapic_next_event+0x5a/0x90
[ 53.510159] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 53.515687] ? clockevents_program_event+0x140/0x370
[ 53.520778] ? kvm_clock_read+0x18/0x30
[ 53.524735] ? kvm_sched_clock_read+0x9/0x20
[ 53.529125] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 53.534640] ? check_preemption_disabled+0x48/0x200
[ 53.539635] irq_exit+0x17f/0x1c0
[ 53.543066] smp_apic_timer_interrupt+0x1cb/0x760
[ 53.547894] ? smp_call_function_single_interrupt+0x650/0x650
[ 53.553755] ? interrupt_entry+0xb5/0xf0
[ 53.557793] ? trace_hardirqs_off_caller+0xbb/0x310
[ 53.562786] ? trace_hardirqs_off_caller+0xbb/0x310
[ 53.567778] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 53.572598] ? trace_hardirqs_on_caller+0x310/0x310
[ 53.577588] ? trace_hardirqs_on_caller+0x310/0x310
[ 53.582583] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 53.588096] ? check_preemption_disabled+0x48/0x200
[ 53.593089] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 53.597913] apic_timer_interrupt+0xf/0x20
[ 53.602120]
[ 53.604336] RIP: 0010:native_safe_halt+0x6/0x10
[ 53.608985] Code: e9 2c ff ff ff 48 89 c7 48 89 45 d8 e8 53 50 10 fa 48 8b 45 d8 e9 ca fe ff ff 48 89 df e8 42 50 10 fa eb 82 55 48 89 e5 fb f4 <5d> c3 0f 1f 84 00 00 00 00 00 55 48 89 e5 f4 5d c3 90 90 90 90 90
[ 53.627860] RSP: 0018:ffff8801d9aefc30 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff13
[ 53.635542] RAX: dffffc0000000000 RBX: 1ffff1003b35df8a RCX: ffffffff8184c1ba
[ 53.642787] RDX: 1ffffffff1263e44 RSI: ffffffff8184c1d4 RDI: ffffffff8931f220
[ 53.650262] RBP: ffff8801d9aefc30 R08: ffff8801d9adc3c0 R09: ffffed003b5e4732
[ 53.657545] R10: ffffed003b5e4732 R11: ffff8801daf23993 R12: ffff8801d9aefcf0
[ 53.664884] R13: ffffffff89f402e0 R14: 0000000000000000 R15: 0000000000000001
[ 53.672392] ? trace_hardirqs_on+0x9a/0x310
[ 53.676713] ? trace_hardirqs_on+0xb4/0x310
[ 53.681017] default_idle+0xbf/0x490
[ 53.684707] ? rcu_dynticks_eqs_enter+0x4c/0x70
[ 53.689352] ? __sched_text_end+0x1/0x1
[ 53.693303] ? rcu_idle_enter+0x329/0x4b0
[ 53.697430] ? rcu_eqs_special_set+0x1b0/0x1b0
[ 53.701985] ? tsc_verify_tsc_adjust+0x137/0x460
[ 53.706717] ? __bpf_trace_preemptirq_template+0x30/0x30
[ 53.712280] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 53.717800] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 53.723329] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 53.728858] arch_cpu_idle+0x10/0x20
[ 53.732552] default_idle_call+0x6d/0x90
[ 53.736588] do_idle+0x3db/0x5b0
[ 53.739933] ? do_raw_spin_lock+0x1a7/0x200
[ 53.744235] ? arch_cpu_idle_exit+0x70/0x70
[ 53.748535] ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[ 53.753613] ? complete+0x62/0x80
[ 53.757047] cpu_startup_entry+0x10c/0x120
[ 53.761260] ? cpu_in_idle+0x20/0x20
[ 53.764957] start_secondary+0x447/0x5f0
[ 53.769056] ? set_cpu_sibling_map+0x1860/0x1860
[ 53.773816] secondary_startup_64+0xa4/0xb0
[ 53.778129] ==================================================================
[ 53.785511] Kernel panic - not syncing: panic_on_warn set ...
[ 53.785511]
[ 53.792988] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B 4.19.0-rc6+ #245
[ 53.801190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 53.810534] Call Trace:
[ 53.813097]
[ 53.815235] dump_stack+0x1c4/0x2b4
[ 53.818842] ? dump_stack_print_info.cold.2+0x52/0x52
[ 53.824012] ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 53.828749] panic+0x238/0x4e7
[ 53.831920] ? add_taint.cold.5+0x16/0x16
[ 53.836108] ? trace_hardirqs_on+0x9a/0x310
[ 53.840761] ? trace_hardirqs_on+0xb4/0x310
[ 53.845078] ? trace_hardirqs_on+0xb4/0x310
[ 53.849394] kasan_end_report+0x47/0x4f
[ 53.853355] kasan_report.cold.9+0x76/0x309
[ 53.857663] ? refcount_sub_and_test_checked+0x9d/0x310
[ 53.863011] check_memory_region+0x13e/0x1b0
[ 53.867404] kasan_check_read+0x11/0x20
[ 53.871759] refcount_sub_and_test_checked+0x9d/0x310
[ 53.876937] ? refcount_inc_not_zero_checked+0x2f0/0x2f0
[ 53.882374] ? lock_acquire+0x1ed/0x520
[ 53.886335] ? rcu_process_callbacks+0x1012/0x2670
[ 53.891249] ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 53.896247] ? find_next_bit+0x104/0x130
[ 53.900288] refcount_dec_and_test_checked+0x1a/0x20
[ 53.905377] fib6_info_destroy_rcu+0x2ef/0x3e0
[ 53.909938] ? fib6_new_sernum+0x1b0/0x1b0
[ 53.914157] rcu_process_callbacks+0xf23/0x2670
[ 53.918809] ? __rcu_read_unlock+0x2f0/0x2f0
[ 53.923194] ? notifier_call_chain+0x2d4/0x380
[ 53.927846] ? rq_online_fair+0x4d0/0x4d0
[ 53.931978] ? __run_timers+0xa20/0xc70
[ 53.935929] ? rebalance_domains+0x358/0xdc0
[ 53.940324] ? lock_downgrade+0x900/0x900
[ 53.944457] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0
[ 53.950228] ? kasan_check_write+0x14/0x20
[ 53.954466] ? rebalance_domains+0x375/0xdc0
[ 53.958859] ? load_balance+0x3430/0x3430
[ 53.962984] ? enqueue_hrtimer+0x1a5/0x560
[ 53.967202] ? lock_release+0x970/0x970
[ 53.971155] ? hrtimer_update_softirq_timer+0xa0/0xa0
[ 53.976322] ? trace_hardirqs_on+0x310/0x310
[ 53.980708] ? kasan_check_write+0x14/0x20
[ 53.984918] ? do_raw_spin_lock+0xc1/0x200
[ 53.989131] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 53.994656] ? check_preemption_disabled+0x48/0x200
[ 53.999678] ? run_rebalance_domains+0x38d/0x500
[ 54.004417] ? _nohz_idle_balance+0x7a0/0x7a0
[ 54.008895] ? trace_hardirqs_on+0xbd/0x310
[ 54.013198] ? kvm_sched_clock_read+0x9/0x20
[ 54.017586] ? irq_exit+0x17f/0x1c0
[ 54.021198] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 54.026713] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 54.032431] ? check_preemption_disabled+0x48/0x200
[ 54.037455] __do_softirq+0x30b/0xad8
[ 54.041243] ? __irqentry_text_end+0x1f9618/0x1f9618
[ 54.046328] ? pvclock_read_flags+0x160/0x160
[ 54.050802] ? lapic_next_event+0x5a/0x90
[ 54.054935] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 54.060457] ? clockevents_program_event+0x140/0x370
[ 54.065552] ? kvm_clock_read+0x18/0x30
[ 54.069518] ? kvm_sched_clock_read+0x9/0x20
[ 54.073914] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 54.079439] ? check_preemption_disabled+0x48/0x200
[ 54.084446] irq_exit+0x17f/0x1c0
[ 54.088019] smp_apic_timer_interrupt+0x1cb/0x760
[ 54.092855] ? smp_call_function_single_interrupt+0x650/0x650
[ 54.098725] ? interrupt_entry+0xb5/0xf0
[ 54.102768] ? trace_hardirqs_off_caller+0xbb/0x310
[ 54.107779] ? trace_hardirqs_off_caller+0xbb/0x310
[ 54.112778] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 54.117601] ? trace_hardirqs_on_caller+0x310/0x310
[ 54.122596] ? trace_hardirqs_on_caller+0x310/0x310
[ 54.127593] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 54.133111] ? check_preemption_disabled+0x48/0x200
[ 54.138108] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 54.142930] apic_timer_interrupt+0xf/0x20
[ 54.147140]
[ 54.149359] RIP: 0010:native_safe_halt+0x6/0x10
[ 54.154006] Code: e9 2c ff ff ff 48 89 c7 48 89 45 d8 e8 53 50 10 fa 48 8b 45 d8 e9 ca fe ff ff 48 89 df e8 42 50 10 fa eb 82 55 48 89 e5 fb f4 <5d> c3 0f 1f 84 00 00 00 00 00 55 48 89 e5 f4 5d c3 90 90 90 90 90
[ 54.172980] RSP: 0018:ffff8801d9aefc30 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff13
[ 54.180668] RAX: dffffc0000000000 RBX: 1ffff1003b35df8a RCX: ffffffff8184c1ba
[ 54.187979] RDX: 1ffffffff1263e44 RSI: ffffffff8184c1d4 RDI: ffffffff8931f220
[ 54.195241] RBP: ffff8801d9aefc30 R08: ffff8801d9adc3c0 R09: ffffed003b5e4732
[ 54.202649] R10: ffffed003b5e4732 R11: ffff8801daf23993 R12: ffff8801d9aefcf0
[ 54.209907] R13: ffffffff89f402e0 R14: 0000000000000000 R15: 0000000000000001
[ 54.217173] ? trace_hardirqs_on+0x9a/0x310
[ 54.221535] ? trace_hardirqs_on+0xb4/0x310
[ 54.225854] default_idle+0xbf/0x490
[ 54.229559] ? rcu_dynticks_eqs_enter+0x4c/0x70
[ 54.234218] ? __sched_text_end+0x1/0x1
[ 54.238177] ? rcu_idle_enter+0x329/0x4b0
[ 54.242307] ? rcu_eqs_special_set+0x1b0/0x1b0
[ 54.246865] ? tsc_verify_tsc_adjust+0x137/0x460
[ 54.251601] ? __bpf_trace_preemptirq_template+0x30/0x30
[ 54.257031] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 54.262547] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 54.268063] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 54.273582] arch_cpu_idle+0x10/0x20
[ 54.277273] default_idle_call+0x6d/0x90
[ 54.281310] do_idle+0x3db/0x5b0
[ 54.284655] ? do_raw_spin_lock+0x1a7/0x200
[ 54.288952] ? arch_cpu_idle_exit+0x70/0x70
[ 54.293249] ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[ 54.298548] ? complete+0x62/0x80
[ 54.302000] cpu_startup_entry+0x10c/0x120
[ 54.306225] ? cpu_in_idle+0x20/0x20
[ 54.309928] start_secondary+0x447/0x5f0
[ 54.313969] ? set_cpu_sibling_map+0x1860/0x1860
[ 54.318709] secondary_startup_64+0xa4/0xb0
[ 54.324085] Kernel Offset: disabled
[ 54.327703] Rebooting in 86400 seconds..