[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   26.480881] kauditd_printk_skb: 7 callbacks suppressed
[   26.480894] audit: type=1800 audit(1539743726.782:29): pid=5217 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
[   26.509195] audit: type=1800 audit(1539743726.782:30): pid=5217 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.10.9' (ECDSA) to the list of known hosts.
syzkaller login: [   33.782340] IPVS: ftp: loaded support on port[0] = 21
[   33.950402] bridge0: port 1(bridge_slave_0) entered blocking state
[   33.957066] bridge0: port 1(bridge_slave_0) entered disabled state
[   33.964598] device bridge_slave_0 entered promiscuous mode
[   33.983750] bridge0: port 2(bridge_slave_1) entered blocking state
[   33.990316] bridge0: port 2(bridge_slave_1) entered disabled state
[   33.997750] device bridge_slave_1 entered promiscuous mode
[   34.016867] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   34.035877] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   34.088321] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   34.109809] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   34.188699] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   34.196070] team0: Port device team_slave_0 added
[   34.213094] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   34.220259] team0: Port device team_slave_1 added
[   34.237866] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   34.257740] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   34.276806] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   34.296371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
RTNETLINK answers: Operation not supported
RTNETLINK answers: No buffer space available
RTNETLINK answers: Operation not supported
[   34.443199] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.449717] bridge0: port 2(bridge_slave_1) entered forwarding state
[   34.456675] bridge0: port 1(bridge_slave_0) entered blocking state
[   34.463126] bridge0: port 1(bridge_slave_0) entered forwarding state
RTNETLINK answers: Operation not supported
RTNETLINK answers: Operation not supported
RTNETLINK answers: Operation not supported
RTNETLINK answers: Invalid argument
RTNETLINK answers: Invalid argument
RTNETLINK answers: Invalid argument
[   34.987422] 8021q: adding VLAN 0 to HW filter on device bond0
[   35.039496] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   35.093205] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   35.099659] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   35.106827] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   35.157719] 8021q: adding VLAN 0 to HW filter on device team0
executing program
[   35.474868] BUG: please report to dccp@vger.kernel.org => prev = 0, last = 0 at net/dccp/ccids/lib/packet_history.c:425/tfrc_rx_hist_sample_rtt()
[   35.488278] CPU: 0 PID: 5613 Comm: syz-executor269 Not tainted 4.19.0-rc8+ #286
[   35.495727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   35.505077] Call Trace:
[   35.507648]  <IRQ>
[   35.509795]  dump_stack+0x1c4/0x2b4
[   35.513420]  ? dump_stack_print_info.cold.2+0x52/0x52
[   35.518618]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   35.524147]  ? tfrc_rx_handle_loss+0x67b/0x1eb0
[   35.528812]  tfrc_rx_hist_sample_rtt.cold.3+0x54/0x5c
[   35.533999]  ccid3_hc_rx_packet_recv+0x5c4/0xeb0
[   35.538742]  ? dccp_parse_options+0x4a1/0x12f0
[   35.543315]  ? ccid3_hc_tx_send_packet+0x880/0x880
[   35.548236]  dccp_deliver_input_to_ccids+0xf0/0x280
[   35.553246]  dccp_rcv_established+0x87/0xb0
[   35.557794]  dccp_v4_do_rcv+0x153/0x180
[   35.561757]  __sk_receive_skb+0x3e5/0xec0
[   35.565893]  ? sk_free+0x50/0x50
[   35.569253]  ? inet_lhash2_lookup+0x6e0/0x6e0
[   35.573733]  ? reqsk_fastopen_remove+0x660/0x660
[   35.578501]  ? lock_downgrade+0x900/0x900
[   35.582639]  ? check_preemption_disabled+0x48/0x200
[   35.587662]  ? dccp_invalid_packet+0x64/0x880
[   35.592165]  dccp_v4_rcv+0x10f9/0x1f58
[   35.596044]  ? dccp_v4_err+0x18a0/0x18a0
[   35.600099]  ? __lock_is_held+0xb5/0x140
[   35.604158]  ip_local_deliver_finish+0x2e9/0xda0
[   35.608905]  ? ip_sublist_rcv_finish+0x3f0/0x3f0
[   35.613651]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[   35.618660]  ? nf_hook_slow+0x11e/0x1c0
[   35.622635]  ip_local_deliver+0x1e9/0x750
[   35.626783]  ? ip_call_ra_chain+0x730/0x730
[   35.631115]  ? ip_sublist_rcv_finish+0x3f0/0x3f0
[   35.635879]  ? rcu_read_unlock_special.part.39+0x11f0/0x11f0
[   35.641664]  ? kasan_check_read+0x11/0x20
[   35.645807]  ? rcu_bh_qs+0xc0/0xc0
[   35.649341]  ip_rcv_finish+0x1f9/0x300
[   35.653220]  ip_rcv+0xed/0x600
[   35.656402]  ? ip_local_deliver+0x750/0x750
[   35.660715]  ? ip_rcv_finish_core.isra.15+0x1f40/0x1f40
[   35.666083]  ? lock_acquire+0x1ed/0x520
[   35.670050]  ? process_backlog+0x1a7/0x6f0
[   35.674277]  __netif_receive_skb_one_core+0x14d/0x200
[   35.679455]  ? __netif_receive_skb_core+0x3b60/0x3b60
[   35.684675]  ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160
[   35.689981]  ? rcu_bh_qs+0xc0/0xc0
[   35.693538]  ? __bpf_trace_preemptirq_template+0x30/0x30
[   35.698984]  __netif_receive_skb+0x2c/0x1e0
[   35.703297]  process_backlog+0x218/0x6f0
[   35.707364]  net_rx_action+0x7c5/0x1950
[   35.711353]  ? napi_complete_done+0x6d0/0x6d0
[   35.715835]  ? graph_lock+0x170/0x170
[   35.719623]  ? do_raw_spin_lock+0xc1/0x200
[   35.723845]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   35.729381]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[   35.734386]  ? graph_lock+0x170/0x170
[   35.738205]  ? print_usage_bug+0xc0/0xc0
[   35.742256]  ? lock_release+0x970/0x970
[   35.746221]  ? find_held_lock+0x36/0x1c0
[   35.750275]  ? pvclock_read_flags+0x160/0x160
[   35.754758]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   35.760308]  ? check_preemption_disabled+0x48/0x200
[   35.765310]  ? check_preemption_disabled+0x48/0x200
[   35.770318]  ? print_usage_bug+0xc0/0xc0
[   35.774386]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   35.779914]  ? check_preemption_disabled+0x48/0x200
[   35.784916]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   35.790446]  ? __local_bh_enable+0xef/0x130
[   35.794758]  ? graph_lock+0x170/0x170
[   35.798546]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   35.804072]  ? check_preemption_disabled+0x48/0x200
[   35.809075]  ? check_preemption_disabled+0x48/0x200
[   35.814084]  ? __lock_is_held+0xb5/0x140
[   35.818146]  __do_softirq+0x30b/0xad8
[   35.821937]  ? __irqentry_text_end+0x1f9618/0x1f9618
[   35.827040]  ? smp_reschedule_interrupt+0x109/0x650
[   35.832062]  ? smp_thermal_interrupt+0x850/0x850
[   35.836802]  ? ret_from_intr+0xb/0x1e
[   35.840591]  ? trace_hardirqs_off_caller+0xbb/0x310
[   35.845599]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   35.850428]  ? trace_hardirqs_on_caller+0x310/0x310
[   35.855431]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   35.860983]  ? check_preemption_disabled+0x48/0x200
[   35.865996]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   35.871548]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   35.876393]  ? ip_finish_output2+0xa83/0x1860
[   35.880902]  do_softirq_own_stack+0x2a/0x40
[   35.885205]  </IRQ>
[   35.887450]  do_softirq.part.13+0x126/0x160
[   35.891761]  __local_bh_enable_ip+0x21d/0x260
[   35.896243]  ip_finish_output2+0xab6/0x1860
[   35.900555]  ? rcu_read_unlock_special.part.39+0x11f0/0x11f0
[   35.906338]  ? ip_copy_metadata+0xe10/0xe10
[   35.910650]  ? graph_lock+0x170/0x170
[   35.914451]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   35.920003]  ? check_preemption_disabled+0x48/0x200
[   35.925020]  ? check_preemption_disabled+0x48/0x200
[   35.930037]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   35.935563]  ? ipv4_mtu+0x37d/0x590
[   35.939181]  ? __lock_is_held+0xb5/0x140
[   35.943256]  ip_finish_output+0x7fd/0xf60
[   35.947394]  ? ip_finish_output+0x7fd/0xf60
[   35.951725]  ? ip_fragment.constprop.49+0x240/0x240
[   35.956726]  ? kasan_check_read+0x11/0x20
[   35.960866]  ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160
[   35.966156]  ? rcu_bh_qs+0xc0/0xc0
[   35.969689]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[   35.974693]  ? nf_hook_slow+0x11e/0x1c0
[   35.978674]  ip_output+0x21d/0x8d0
[   35.982212]  ? ip_mc_output+0x15b0/0x15b0
[   35.986348]  ? ip_fragment.constprop.49+0x240/0x240
[   35.991370]  ? __lock_is_held+0xb5/0x140
[   35.995433]  ip_local_out+0xc5/0x1b0
[   35.999137]  __ip_queue_xmit+0x9af/0x1f30
[   36.003296]  ? ip_build_and_send_pkt+0xc80/0xc80
[   36.008041]  ? __skb_checksum+0x920/0x920
[   36.012190]  ? skb_send_sock+0x50/0x50
[   36.016064]  ? reqsk_fastopen_remove+0x660/0x660
[   36.020806]  ? dccp_insert_option_padding+0xbc/0xe0
[   36.025814]  ip_queue_xmit+0x56/0x70
[   36.029520]  dccp_transmit_skb+0x98c/0x12e0
[   36.033842]  dccp_xmit_packet+0x25e/0x7d0
[   36.037980]  ? kasan_check_write+0x14/0x20
[   36.042202]  ? do_raw_spin_lock+0xc1/0x200
[   36.046420]  ? dccp_send_sync+0x270/0x270
[   36.050553]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[   36.055570]  ? ccid3_hc_tx_send_packet+0x358/0x880
[   36.060491]  dccp_write_xmit+0x190/0x1f0
[   36.064541]  dccp_sendmsg+0xdc8/0x1020
[   36.068421]  ? dccp_getsockopt+0xf0/0xf0
[   36.072472]  ? find_held_lock+0x36/0x1c0
[   36.076526]  ? debug_lockdep_rcu_enabled+0x77/0x90
[   36.081443]  ? aa_sk_perm+0x218/0x8b0
[   36.085235]  ? __might_fault+0x12b/0x1e0
[   36.089283]  ? aa_af_perm+0x5a0/0x5a0
[   36.093070]  ? lock_release+0x970/0x970
[   36.097041]  ? arch_local_save_flags+0x40/0x40
[   36.101622]  inet_sendmsg+0x1a1/0x690
[   36.105413]  ? ipip_gro_receive+0x100/0x100
[   36.109744]  ? apparmor_socket_sendmsg+0x29/0x30
[   36.114491]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   36.120035]  ? security_socket_sendmsg+0x94/0xc0
[   36.124775]  ? ipip_gro_receive+0x100/0x100
[   36.129087]  sock_sendmsg+0xd5/0x120
[   36.132788]  ___sys_sendmsg+0x51d/0x930
[   36.136752]  ? copy_msghdr_from_user+0x580/0x580
[   36.141505]  ? __fget_light+0x2e9/0x430
[   36.145482]  ? fget_raw+0x20/0x20
[   36.148932]  ? lockdep_hardirqs_on+0x421/0x5c0
[   36.153529]  ? trace_hardirqs_on+0xbd/0x310
[   36.157852]  ? _raw_spin_unlock_bh+0x30/0x40
[   36.162258]  ? __bpf_trace_preemptirq_template+0x30/0x30
[   36.167718]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   36.173245]  ? check_preemption_disabled+0x48/0x200
[   36.178286]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   36.183808]  ? sockfd_lookup_light+0xc5/0x160
[   36.188312]  __sys_sendmmsg+0x246/0x6d0
[   36.192279]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   36.196593]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   36.202139]  ? fput+0x130/0x1a0
[   36.205407]  ? __sys_connect+0x1d1/0x4c0
[   36.209453]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   36.215005]  ? __ia32_sys_accept+0xb0/0xb0
[   36.219239]  ? __x64_sys_futex+0x47f/0x6a0
[   36.223478]  ? do_syscall_64+0x9a/0x820
[   36.227444]  ? do_syscall_64+0x9a/0x820
[   36.231417]  ? lockdep_hardirqs_on+0x421/0x5c0
[   36.235997]  ? trace_hardirqs_on+0xbd/0x310
[   36.240304]  ? find_held_lock+0x36/0x1c0
[   36.244374]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   36.249756]  ? __bpf_trace_preemptirq_template+0x30/0x30
[   36.255196]  __x64_sys_sendmmsg+0x9d/0x100
[   36.259420]  do_syscall_64+0x1b9/0x820
[   36.263292]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[   36.268655]  ? syscall_return_slowpath+0x5e0/0x5e0
[   36.273573]  ? trace_hardirqs_on_caller+0x310/0x310
[   36.278589]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[   36.283606]  ? recalc_sigpending_tsk+0x180/0x180
[   36.288347]  ? kasan_check_write+0x14/0x20
[   36.292574]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   36.297406]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   36.302593] RIP: 0033:0x446cb9
[   36.305775] Code: e8 cc b8 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 09 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   36.324663] RSP: 002b:00007ff415e1ada8 EFLAGS: 00000297 ORIG_RAX: 0000000000000133
[   36.332365] RAX: ffffffffffffffda RBX: 00000000006dcc68 RCX: 0000000000446cb9
[   36.339642] RDX: 0000000000000003 RSI: 00000000200037c0 RDI: 0000000000000005
[   36.346895] RBP: 00000000006dcc60 R08: 0000000000000000 R09: 0000000000000000
[   36.354164] R10: 0000000000000080 R11: 0000000000000297 R12: 00000000006dcc6c
[   36.361421] R13: cdef9a1cfd2198c8 R14: d5f212e95c33dd08 R15: 0000000000000005