[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 29.535267] kauditd_printk_skb: 9 callbacks suppressed [ 29.535279] audit: type=1800 audit(1541544706.282:33): pid=5615 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 29.563657] audit: type=1800 audit(1541544706.282:34): pid=5615 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 51.697251] audit: type=1400 audit(1541544728.442:35): avc: denied { map } for pid=5792 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '10.128.0.88' (ECDSA) to the list of known hosts. [ 91.519237] audit: type=1400 audit(1541544768.272:36): avc: denied { map } for pid=5804 comm="syz-execprog" path="/root/syz-execprog" dev="sda1" ino=16482 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 2018/11/06 22:52:48 parsed 1 programs [ 92.077299] audit: type=1400 audit(1541544768.822:37): avc: denied { map } for pid=5804 comm="syz-execprog" path="/sys/kernel/debug/kcov" dev="debugfs" ino=6004 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:debugfs_t:s0 tclass=file permissive=1 2018/11/06 22:52:50 executed programs: 0 [ 93.688444] IPVS: ftp: loaded support on port[0] = 21 [ 93.695386] IPVS: ftp: loaded support on port[0] = 21 [ 93.713543] IPVS: ftp: loaded support on port[0] = 21 [ 93.716997] IPVS: ftp: loaded support on port[0] = 21 [ 93.743989] IPVS: ftp: loaded support on port[0] = 21 [ 93.750683] IPVS: ftp: loaded support on port[0] = 21 [ 94.532797] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.541734] bridge0: port 1(bridge_slave_0) entered disabled state [ 94.549713] device bridge_slave_0 entered promiscuous mode [ 94.581512] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.589569] bridge0: port 2(bridge_slave_1) entered disabled state [ 94.596725] device bridge_slave_1 entered promiscuous mode [ 94.626436] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.636185] bridge0: port 1(bridge_slave_0) entered disabled state [ 94.644007] device bridge_slave_0 entered promiscuous mode [ 94.658864] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 94.667523] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.678791] bridge0: port 2(bridge_slave_1) entered disabled state [ 94.686714] device bridge_slave_1 entered promiscuous mode [ 94.704324] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.713226] bridge0: port 1(bridge_slave_0) entered disabled state [ 94.720939] device bridge_slave_0 entered promiscuous mode [ 94.729379] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 94.739196] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.745771] bridge0: port 1(bridge_slave_0) entered disabled state [ 94.756802] device bridge_slave_0 entered promiscuous mode [ 94.765399] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 94.773346] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.783125] bridge0: port 1(bridge_slave_0) entered disabled state [ 94.790844] device bridge_slave_0 entered promiscuous mode [ 94.804292] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.816024] bridge0: port 2(bridge_slave_1) entered disabled state [ 94.824072] device bridge_slave_1 entered promiscuous mode [ 94.832623] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.840671] bridge0: port 2(bridge_slave_1) entered disabled state [ 94.851869] device bridge_slave_1 entered promiscuous mode [ 94.859427] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.866626] bridge0: port 1(bridge_slave_0) entered disabled state [ 94.874885] device bridge_slave_0 entered promiscuous mode [ 94.884061] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 94.892504] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 94.904263] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.914685] bridge0: port 2(bridge_slave_1) entered disabled state [ 94.923417] device bridge_slave_1 entered promiscuous mode [ 94.931162] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 94.943344] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 94.966674] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.977712] bridge0: port 2(bridge_slave_1) entered disabled state [ 94.985127] device bridge_slave_1 entered promiscuous mode [ 94.997071] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 95.010965] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 95.022063] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 95.033555] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 95.056409] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 95.079757] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 95.097281] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 95.119304] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 95.180708] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 95.196849] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 95.217342] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 95.246487] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 95.271608] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 95.296663] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 95.332336] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 95.349809] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 95.369249] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 95.376284] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 95.388768] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 95.398725] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 95.407003] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 95.415443] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 95.448295] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 95.460469] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 95.470147] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 95.480739] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 95.494174] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 95.508545] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 95.520594] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 95.530105] team0: Port device team_slave_0 added [ 95.549502] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 95.561911] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 95.580146] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 95.589596] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 95.602094] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 95.618675] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 95.625935] team0: Port device team_slave_1 added [ 95.679487] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 95.686835] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 95.703363] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 95.717427] team0: Port device team_slave_0 added [ 95.751180] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 95.762674] team0: Port device team_slave_0 added [ 95.778359] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 95.809633] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 95.817323] team0: Port device team_slave_1 added [ 95.836750] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 95.851947] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 95.860420] team0: Port device team_slave_0 added [ 95.876250] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 95.891135] team0: Port device team_slave_0 added [ 95.897641] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 95.905190] team0: Port device team_slave_1 added [ 95.918599] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 95.926006] team0: Port device team_slave_1 added [ 95.944152] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 95.953545] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 95.965000] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 95.974341] team0: Port device team_slave_0 added [ 95.987007] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 95.998849] team0: Port device team_slave_1 added [ 96.005277] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 96.014652] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 96.032033] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 96.048814] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 96.056194] team0: Port device team_slave_1 added [ 96.075828] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 96.093645] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 96.105164] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 96.113594] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 96.121914] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 96.135348] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 96.154596] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 96.178190] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 96.186493] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 96.196001] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 96.208516] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 96.216261] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 96.229372] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 96.239587] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 96.251604] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 96.271503] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 96.294047] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 96.308601] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 96.316679] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 96.339759] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 96.352734] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 96.361391] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 96.378295] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 96.389923] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 96.398073] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 96.406123] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 96.427339] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 96.439316] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 96.446578] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 96.462983] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 96.476639] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 96.487767] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 96.502549] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 96.520341] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 96.532089] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 96.548259] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 96.575696] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 96.583750] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 96.593387] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 96.616917] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 96.626228] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 97.023652] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.030451] bridge0: port 2(bridge_slave_1) entered forwarding state [ 97.038690] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.045081] bridge0: port 1(bridge_slave_0) entered forwarding state [ 97.054245] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 97.071670] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.078179] bridge0: port 2(bridge_slave_1) entered forwarding state [ 97.084818] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.091332] bridge0: port 1(bridge_slave_0) entered forwarding state [ 97.102423] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 97.302582] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.309054] bridge0: port 2(bridge_slave_1) entered forwarding state [ 97.315705] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.322142] bridge0: port 1(bridge_slave_0) entered forwarding state [ 97.339156] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 97.348816] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.355242] bridge0: port 2(bridge_slave_1) entered forwarding state [ 97.362001] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.368433] bridge0: port 1(bridge_slave_0) entered forwarding state [ 97.378106] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 97.391220] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.397720] bridge0: port 2(bridge_slave_1) entered forwarding state [ 97.404370] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.410862] bridge0: port 1(bridge_slave_0) entered forwarding state [ 97.421131] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 97.437077] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 97.451852] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 97.467376] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 97.475928] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 97.485727] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 97.503976] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.510675] bridge0: port 2(bridge_slave_1) entered forwarding state [ 97.517406] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.523898] bridge0: port 1(bridge_slave_0) entered forwarding state [ 97.532980] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 98.437765] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 99.961438] 8021q: adding VLAN 0 to HW filter on device bond0 [ 99.999812] 8021q: adding VLAN 0 to HW filter on device bond0 [ 100.125283] 8021q: adding VLAN 0 to HW filter on device bond0 [ 100.136994] 8021q: adding VLAN 0 to HW filter on device bond0 [ 100.168126] 8021q: adding VLAN 0 to HW filter on device bond0 [ 100.258698] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 100.266606] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 100.369785] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 100.404975] 8021q: adding VLAN 0 to HW filter on device bond0 [ 100.428462] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 100.455616] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 100.536970] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 100.549655] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 100.558982] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 100.566191] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 100.580354] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 100.594470] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 100.678766] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 100.685026] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 100.704391] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 100.714848] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 100.744818] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 100.763235] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 100.773590] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 100.792429] 8021q: adding VLAN 0 to HW filter on device team0 [ 100.826006] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 100.837998] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 100.852865] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 100.923202] 8021q: adding VLAN 0 to HW filter on device team0 [ 100.958857] 8021q: adding VLAN 0 to HW filter on device team0 [ 100.988920] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 101.006958] 8021q: adding VLAN 0 to HW filter on device team0 [ 101.022356] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 101.036187] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 101.160214] 8021q: adding VLAN 0 to HW filter on device team0 [ 101.263418] 8021q: adding VLAN 0 to HW filter on device team0 [ 102.288969] audit: type=1400 audit(1541544779.042:38): avc: denied { associate } for pid=5825 comm="syz-executor0" name="syz0" scontext=unconfined_u:object_r:unlabeled_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=filesystem permissive=1 2018/11/06 22:52:59 executed programs: 6 2018/11/06 22:53:04 executed programs: 182 2018/11/06 22:53:09 executed programs: 403 [ 116.908328] vivid-000: kernel_thread() failed 2018/11/06 22:53:14 executed programs: 561 [ 117.732041] ================================================================== [ 117.739594] BUG: KASAN: null-ptr-deref in kthread_stop+0x10d/0x900 [ 117.745910] Write of size 4 at addr 000000000000001c by task syz-executor4/9055 [ 117.753434] [ 117.755058] CPU: 1 PID: 9055 Comm: syz-executor4 Not tainted 4.20.0-rc1+ #102 [ 117.762330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 117.771685] Call Trace: [ 117.774283] dump_stack+0x244/0x39d [ 117.777912] ? dump_stack_print_info.cold.1+0x20/0x20 [ 117.783115] ? vprintk_func+0x85/0x181 [ 117.787031] kasan_report.cold.8+0x6d/0x309 [ 117.791366] ? kthread_stop+0x10d/0x900 [ 117.795350] check_memory_region+0x13e/0x1b0 [ 117.799763] kasan_check_write+0x14/0x20 [ 117.803844] kthread_stop+0x10d/0x900 [ 117.807643] ? kthread_unpark+0x160/0x160 [ 117.811819] ? __lock_is_held+0xb5/0x140 [ 117.815885] vivid_stop_generating_vid_cap+0x2bb/0x9ae [ 117.821165] ? vivid_start_generating_vid_cap+0x4c0/0x4c0 [ 117.826703] ? _vb2_fop_release+0x3f/0x2b0 [ 117.830981] ? mutex_trylock+0x2b0/0x2b0 [ 117.835038] ? vivid_fop_release+0x66/0x440 [ 117.839366] ? __mutex_lock+0x85e/0x16f0 [ 117.843449] vid_cap_stop_streaming+0x8d/0xe0 [ 117.847943] ? vid_cap_buf_queue+0x310/0x310 [ 117.852355] __vb2_queue_cancel+0x171/0xd20 [ 117.856681] ? lock_downgrade+0x900/0x900 [ 117.860824] ? vb2_buffer_done+0xb90/0xb90 [ 117.865047] ? find_held_lock+0x36/0x1c0 [ 117.869118] ? mark_held_locks+0xc7/0x130 [ 117.873269] ? kasan_check_write+0x14/0x20 [ 117.877496] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 117.882443] ? kasan_check_read+0x11/0x20 [ 117.886601] ? wait_for_completion+0x8a0/0x8a0 [ 117.891182] ? trace_hardirqs_off_caller+0x310/0x310 [ 117.896291] vb2_core_streamoff+0x60/0x140 [ 117.900523] __vb2_cleanup_fileio+0x73/0x160 [ 117.904933] vb2_core_queue_release+0x1e/0x80 [ 117.909428] _vb2_fop_release+0x1d2/0x2b0 [ 117.913589] vb2_fop_release+0x77/0xc0 [ 117.917490] vivid_fop_release+0x18e/0x440 [ 117.921723] ? vivid_remove+0x460/0x460 [ 117.925685] v4l2_release+0x224/0x3a0 [ 117.929507] ? dev_debug_store+0x140/0x140 [ 117.933765] __fput+0x385/0xa30 [ 117.937051] ? get_max_files+0x20/0x20 [ 117.940940] ? trace_hardirqs_on+0xbd/0x310 [ 117.945258] ? kasan_check_read+0x11/0x20 [ 117.949401] ? task_work_run+0x1af/0x2a0 [ 117.953457] ? trace_hardirqs_off_caller+0x310/0x310 [ 117.958569] ? rcu_softirq_qs+0x20/0x20 [ 117.962547] ? unwind_dump+0x190/0x190 [ 117.966456] ____fput+0x15/0x20 [ 117.969746] task_work_run+0x1e8/0x2a0 [ 117.973637] ? task_work_cancel+0x240/0x240 [ 117.977947] ? unwind_get_return_address+0x61/0xa0 [ 117.982872] get_signal+0x1558/0x1980 [ 117.986668] ? find_held_lock+0x36/0x1c0 [ 117.990727] ? ptrace_notify+0x130/0x130 [ 117.994795] ? compat_poll_select_copy_remaining+0x6c0/0x6c0 [ 118.000587] ? pvclock_read_flags+0x160/0x160 [ 118.005072] ? poll_select_set_timeout+0x19a/0x240 [ 118.010027] ? trace_hardirqs_off_caller+0x310/0x310 [ 118.015140] do_signal+0x9c/0x21c0 [ 118.018693] ? timespec64_add_safe+0x204/0x2f0 [ 118.023307] ? nsec_to_clock_t+0x30/0x30 [ 118.027377] ? setup_sigcontext+0x7d0/0x7d0 [ 118.031694] ? exit_to_usermode_loop+0x8c/0x380 [ 118.036370] ? exit_to_usermode_loop+0x8c/0x380 [ 118.041043] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 118.045616] ? trace_hardirqs_on+0xbd/0x310 [ 118.049937] ? do_syscall_64+0x6be/0x820 [ 118.053997] ? trace_hardirqs_off_caller+0x310/0x310 [ 118.059097] ? do_restart_poll+0x2e0/0x2e0 [ 118.063332] ? nsecs_to_jiffies+0x30/0x30 [ 118.067477] ? do_syscall_64+0x9a/0x820 [ 118.071443] ? do_syscall_64+0x9a/0x820 [ 118.075415] exit_to_usermode_loop+0x2e5/0x380 [ 118.079989] ? __bpf_trace_sys_exit+0x30/0x30 [ 118.084491] do_syscall_64+0x6be/0x820 [ 118.088435] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 118.093806] ? syscall_return_slowpath+0x5e0/0x5e0 [ 118.098760] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 118.103612] ? trace_hardirqs_on_caller+0x310/0x310 [ 118.108656] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 118.113675] ? prepare_exit_to_usermode+0x291/0x3b0 [ 118.118721] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 118.123570] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 118.128757] RIP: 0033:0x457569 [ 118.131946] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 118.150861] RSP: 002b:00007f5eecfc7c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000007 [ 118.158562] RAX: 0000000000000001 RBX: 0000000000000003 RCX: 0000000000457569 [ 118.165822] RDX: 0000000000000d90 RSI: 0000000000000001 RDI: 0000000020000180 [ 118.173082] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 118.180342] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5eecfc86d4 [ 118.187609] R13: 00000000004c325e R14: 00000000004d4e10 R15: 00000000ffffffff [ 118.194905] ================================================================== [ 118.202258] Disabling lock debugging due to kernel taint [ 118.208283] Kernel panic - not syncing: panic_on_warn set ... [ 118.214209] CPU: 1 PID: 9055 Comm: syz-executor4 Tainted: G B 4.20.0-rc1+ #102 [ 118.222888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 118.232241] Call Trace: [ 118.234830] dump_stack+0x244/0x39d [ 118.238447] ? dump_stack_print_info.cold.1+0x20/0x20 [ 118.243634] panic+0x2ad/0x55c [ 118.246815] ? add_taint.cold.5+0x16/0x16 [ 118.250953] ? preempt_schedule+0x4d/0x60 [ 118.255095] ? ___preempt_schedule+0x16/0x18 [ 118.259496] ? trace_hardirqs_on+0xb4/0x310 [ 118.263828] kasan_end_report+0x47/0x4f [ 118.267794] kasan_report.cold.8+0x76/0x309 [ 118.272104] ? kthread_stop+0x10d/0x900 [ 118.276073] check_memory_region+0x13e/0x1b0 [ 118.280469] kasan_check_write+0x14/0x20 [ 118.284530] kthread_stop+0x10d/0x900 [ 118.288323] ? kthread_unpark+0x160/0x160 [ 118.292459] ? __lock_is_held+0xb5/0x140 [ 118.296528] vivid_stop_generating_vid_cap+0x2bb/0x9ae [ 118.301819] ? vivid_start_generating_vid_cap+0x4c0/0x4c0 [ 118.307351] ? _vb2_fop_release+0x3f/0x2b0 [ 118.311580] ? mutex_trylock+0x2b0/0x2b0 [ 118.315628] ? vivid_fop_release+0x66/0x440 [ 118.319942] ? __mutex_lock+0x85e/0x16f0 [ 118.323999] vid_cap_stop_streaming+0x8d/0xe0 [ 118.328495] ? vid_cap_buf_queue+0x310/0x310 [ 118.332909] __vb2_queue_cancel+0x171/0xd20 [ 118.337232] ? lock_downgrade+0x900/0x900 [ 118.341380] ? vb2_buffer_done+0xb90/0xb90 [ 118.345606] ? find_held_lock+0x36/0x1c0 [ 118.349657] ? mark_held_locks+0xc7/0x130 [ 118.353795] ? kasan_check_write+0x14/0x20 [ 118.358021] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 118.362943] ? kasan_check_read+0x11/0x20 [ 118.367087] ? wait_for_completion+0x8a0/0x8a0 [ 118.371675] ? trace_hardirqs_off_caller+0x310/0x310 [ 118.376794] vb2_core_streamoff+0x60/0x140 [ 118.381024] __vb2_cleanup_fileio+0x73/0x160 [ 118.385427] vb2_core_queue_release+0x1e/0x80 [ 118.389915] _vb2_fop_release+0x1d2/0x2b0 [ 118.394052] vb2_fop_release+0x77/0xc0 [ 118.397933] vivid_fop_release+0x18e/0x440 [ 118.402162] ? vivid_remove+0x460/0x460 [ 118.406127] v4l2_release+0x224/0x3a0 [ 118.409916] ? dev_debug_store+0x140/0x140 [ 118.414141] __fput+0x385/0xa30 [ 118.417416] ? get_max_files+0x20/0x20 [ 118.421292] ? trace_hardirqs_on+0xbd/0x310 [ 118.425614] ? kasan_check_read+0x11/0x20 [ 118.429763] ? task_work_run+0x1af/0x2a0 [ 118.433815] ? trace_hardirqs_off_caller+0x310/0x310 [ 118.438935] ? rcu_softirq_qs+0x20/0x20 [ 118.442917] ? unwind_dump+0x190/0x190 [ 118.446818] ____fput+0x15/0x20 [ 118.450094] task_work_run+0x1e8/0x2a0 [ 118.453969] ? task_work_cancel+0x240/0x240 [ 118.458281] ? unwind_get_return_address+0x61/0xa0 [ 118.463206] get_signal+0x1558/0x1980 [ 118.467003] ? find_held_lock+0x36/0x1c0 [ 118.471051] ? ptrace_notify+0x130/0x130 [ 118.475105] ? compat_poll_select_copy_remaining+0x6c0/0x6c0 [ 118.480894] ? pvclock_read_flags+0x160/0x160 [ 118.485393] ? poll_select_set_timeout+0x19a/0x240 [ 118.490323] ? trace_hardirqs_off_caller+0x310/0x310 [ 118.495416] do_signal+0x9c/0x21c0 [ 118.498955] ? timespec64_add_safe+0x204/0x2f0 [ 118.503533] ? nsec_to_clock_t+0x30/0x30 [ 118.507588] ? setup_sigcontext+0x7d0/0x7d0 [ 118.511901] ? exit_to_usermode_loop+0x8c/0x380 [ 118.516557] ? exit_to_usermode_loop+0x8c/0x380 [ 118.521219] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 118.525809] ? trace_hardirqs_on+0xbd/0x310 [ 118.530151] ? do_syscall_64+0x6be/0x820 [ 118.534210] ? trace_hardirqs_off_caller+0x310/0x310 [ 118.539304] ? do_restart_poll+0x2e0/0x2e0 [ 118.543532] ? nsecs_to_jiffies+0x30/0x30 [ 118.547673] ? do_syscall_64+0x9a/0x820 [ 118.551634] ? do_syscall_64+0x9a/0x820 [ 118.555606] exit_to_usermode_loop+0x2e5/0x380 [ 118.560206] ? __bpf_trace_sys_exit+0x30/0x30 [ 118.564712] do_syscall_64+0x6be/0x820 [ 118.568595] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 118.573950] ? syscall_return_slowpath+0x5e0/0x5e0 [ 118.578870] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 118.583706] ? trace_hardirqs_on_caller+0x310/0x310 [ 118.588720] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 118.593732] ? prepare_exit_to_usermode+0x291/0x3b0 [ 118.598757] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 118.603595] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 118.608771] RIP: 0033:0x457569 [ 118.611968] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 118.630964] RSP: 002b:00007f5eecfc7c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000007 [ 118.638667] RAX: 0000000000000001 RBX: 0000000000000003 RCX: 0000000000457569 [ 118.645929] RDX: 0000000000000d90 RSI: 0000000000000001 RDI: 0000000020000180 [ 118.653307] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 118.660565] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5eecfc86d4 [ 118.667829] R13: 00000000004c325e R14: 00000000004d4e10 R15: 00000000ffffffff [ 118.676379] Kernel Offset: disabled [ 118.680014] Rebooting in 86400 seconds..