[....] Starting enhanced syslogd: rsyslogd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[....] Starting periodic command scheduler: cron�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[....] Starting OpenBSD Secure Shell server: sshd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[ 68.163615][ T26] kauditd_printk_skb: 4 callbacks suppressed
[ 68.163628][ T26] audit: type=1800 audit(1563378806.882:29): pid=9427 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
[ 68.192921][ T26] audit: type=1800 audit(1563378806.892:30): pid=9427 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0
Debian GNU/Linux 7 syzkaller ttyS0
Warning: Permanently added '10.128.0.209' (ECDSA) to the list of known hosts.
2019/07/17 15:53:47 parsed 1 programs
2019/07/17 15:53:50 executed programs: 0
syzkaller login: [ 91.754184][ T9601] IPVS: ftp: loaded support on port[0] = 21
[ 91.766791][ T9603] IPVS: ftp: loaded support on port[0] = 21
[ 91.840541][ T9605] IPVS: ftp: loaded support on port[0] = 21
[ 91.915942][ T9608] IPVS: ftp: loaded support on port[0] = 21
[ 91.981132][ T9610] IPVS: ftp: loaded support on port[0] = 21
[ 91.981640][ T9611] IPVS: ftp: loaded support on port[0] = 21
[ 92.106337][ T9601] chnl_net:caif_netlink_parms(): no params data found
[ 92.161576][ T9603] chnl_net:caif_netlink_parms(): no params data found
[ 92.218051][ T9601] bridge0: port 1(bridge_slave_0) entered blocking state
[ 92.225717][ T9601] bridge0: port 1(bridge_slave_0) entered disabled state
[ 92.233554][ T9601] device bridge_slave_0 entered promiscuous mode
[ 92.297935][ T9601] bridge0: port 2(bridge_slave_1) entered blocking state
[ 92.305333][ T9601] bridge0: port 2(bridge_slave_1) entered disabled state
[ 92.313013][ T9601] device bridge_slave_1 entered promiscuous mode
[ 92.359076][ T9605] chnl_net:caif_netlink_parms(): no params data found
[ 92.381880][ T9601] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 92.435129][ T9601] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 92.444523][ T9603] bridge0: port 1(bridge_slave_0) entered blocking state
[ 92.451585][ T9603] bridge0: port 1(bridge_slave_0) entered disabled state
[ 92.459707][ T9603] device bridge_slave_0 entered promiscuous mode
[ 92.497124][ T9603] bridge0: port 2(bridge_slave_1) entered blocking state
[ 92.504413][ T9603] bridge0: port 2(bridge_slave_1) entered disabled state
[ 92.512162][ T9603] device bridge_slave_1 entered promiscuous mode
[ 92.539277][ T9608] chnl_net:caif_netlink_parms(): no params data found
[ 92.561530][ T9610] chnl_net:caif_netlink_parms(): no params data found
[ 92.581676][ T9601] team0: Port device team_slave_0 added
[ 92.611961][ T9605] bridge0: port 1(bridge_slave_0) entered blocking state
[ 92.619419][ T9605] bridge0: port 1(bridge_slave_0) entered disabled state
[ 92.627950][ T9605] device bridge_slave_0 entered promiscuous mode
[ 92.640207][ T9605] bridge0: port 2(bridge_slave_1) entered blocking state
[ 92.647444][ T9605] bridge0: port 2(bridge_slave_1) entered disabled state
[ 92.656689][ T9605] device bridge_slave_1 entered promiscuous mode
[ 92.671613][ T9601] team0: Port device team_slave_1 added
[ 92.706896][ T9603] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 92.727895][ T9605] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 92.745314][ T9603] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 92.754693][ T9611] chnl_net:caif_netlink_parms(): no params data found
[ 92.792595][ T9605] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 92.847344][ T9601] device hsr_slave_0 entered promiscuous mode
[ 92.884284][ T9601] device hsr_slave_1 entered promiscuous mode
[ 92.956219][ T9610] bridge0: port 1(bridge_slave_0) entered blocking state
[ 92.963333][ T9610] bridge0: port 1(bridge_slave_0) entered disabled state
[ 92.971833][ T9610] device bridge_slave_0 entered promiscuous mode
[ 92.988169][ T9608] bridge0: port 1(bridge_slave_0) entered blocking state
[ 92.995445][ T9608] bridge0: port 1(bridge_slave_0) entered disabled state
[ 93.003326][ T9608] device bridge_slave_0 entered promiscuous mode
[ 93.027452][ T9603] team0: Port device team_slave_0 added
[ 93.033410][ T9610] bridge0: port 2(bridge_slave_1) entered blocking state
[ 93.042589][ T9610] bridge0: port 2(bridge_slave_1) entered disabled state
[ 93.051535][ T9610] device bridge_slave_1 entered promiscuous mode
[ 93.059112][ T9608] bridge0: port 2(bridge_slave_1) entered blocking state
[ 93.067078][ T9608] bridge0: port 2(bridge_slave_1) entered disabled state
[ 93.075074][ T9608] device bridge_slave_1 entered promiscuous mode
[ 93.083350][ T9605] team0: Port device team_slave_0 added
[ 93.097648][ T9603] team0: Port device team_slave_1 added
[ 93.105926][ T9605] team0: Port device team_slave_1 added
[ 93.133570][ T9611] bridge0: port 1(bridge_slave_0) entered blocking state
[ 93.141423][ T9611] bridge0: port 1(bridge_slave_0) entered disabled state
[ 93.149702][ T9611] device bridge_slave_0 entered promiscuous mode
[ 93.157687][ T9611] bridge0: port 2(bridge_slave_1) entered blocking state
[ 93.164891][ T9611] bridge0: port 2(bridge_slave_1) entered disabled state
[ 93.173181][ T9611] device bridge_slave_1 entered promiscuous mode
[ 93.204903][ T9608] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 93.232901][ T9611] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 93.243841][ T9610] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 93.255936][ T9611] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 93.273100][ T9608] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 93.290862][ T9610] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 93.355769][ T9605] device hsr_slave_0 entered promiscuous mode
[ 93.394191][ T9605] device hsr_slave_1 entered promiscuous mode
[ 93.444297][ T9605] debugfs: Directory 'hsr0' with parent '/' already present!
[ 93.525938][ T9603] device hsr_slave_0 entered promiscuous mode
[ 93.564230][ T9603] device hsr_slave_1 entered promiscuous mode
[ 93.603930][ T9603] debugfs: Directory 'hsr0' with parent '/' already present!
[ 93.627836][ T9611] team0: Port device team_slave_0 added
[ 93.639111][ T9608] team0: Port device team_slave_0 added
[ 93.648003][ T9608] team0: Port device team_slave_1 added
[ 93.656489][ T9610] team0: Port device team_slave_0 added
[ 93.663516][ T9611] team0: Port device team_slave_1 added
[ 93.677365][ T9610] team0: Port device team_slave_1 added
[ 93.755865][ T9610] device hsr_slave_0 entered promiscuous mode
[ 93.804340][ T9610] device hsr_slave_1 entered promiscuous mode
[ 93.854093][ T9610] debugfs: Directory 'hsr0' with parent '/' already present!
[ 93.937392][ T9611] device hsr_slave_0 entered promiscuous mode
[ 94.004161][ T9611] device hsr_slave_1 entered promiscuous mode
[ 94.054040][ T9611] debugfs: Directory 'hsr0' with parent '/' already present!
[ 94.147099][ T9608] device hsr_slave_0 entered promiscuous mode
[ 94.184381][ T9608] device hsr_slave_1 entered promiscuous mode
[ 94.224049][ T9608] debugfs: Directory 'hsr0' with parent '/' already present!
[ 94.283979][ T9601] 8021q: adding VLAN 0 to HW filter on device bond0
[ 94.338784][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 94.347502][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 94.359187][ T9601] 8021q: adding VLAN 0 to HW filter on device team0
[ 94.408191][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 94.420570][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 94.429994][ T3370] bridge0: port 1(bridge_slave_0) entered blocking state
[ 94.437274][ T3370] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 94.446598][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 94.455528][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 94.463997][ T3370] bridge0: port 2(bridge_slave_1) entered blocking state
[ 94.471054][ T3370] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 94.480778][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 94.506547][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 94.544119][ T9603] 8021q: adding VLAN 0 to HW filter on device bond0
[ 94.551206][ T9619] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 94.573227][ T9610] 8021q: adding VLAN 0 to HW filter on device bond0
[ 94.599798][ T9605] 8021q: adding VLAN 0 to HW filter on device bond0
[ 94.608511][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 94.618040][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 94.626853][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 94.637525][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 94.646457][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 94.655050][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 94.663319][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 94.671905][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 94.681304][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 94.703318][ T9603] 8021q: adding VLAN 0 to HW filter on device team0
[ 94.721904][ T9601] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 94.735531][ T9611] 8021q: adding VLAN 0 to HW filter on device bond0
[ 94.743155][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 94.752595][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 94.772534][ T9605] 8021q: adding VLAN 0 to HW filter on device team0
[ 94.799663][ T9610] 8021q: adding VLAN 0 to HW filter on device team0
[ 94.809196][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 94.819852][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 94.829227][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 94.837894][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 94.847399][ T5] bridge0: port 1(bridge_slave_0) entered blocking state
[ 94.854539][ T5] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 94.862376][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 94.870660][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 94.878663][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 94.887513][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 94.896530][ T5] bridge0: port 2(bridge_slave_1) entered blocking state
[ 94.903594][ T5] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 94.911529][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 94.919751][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 94.927771][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 94.936402][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 94.945572][ T5] bridge0: port 1(bridge_slave_0) entered blocking state
[ 94.952643][ T5] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 94.960650][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 94.970975][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 94.979262][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 94.990588][ T9611] 8021q: adding VLAN 0 to HW filter on device team0
[ 95.032120][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 95.042117][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 95.051612][ T3370] bridge0: port 2(bridge_slave_1) entered blocking state
[ 95.058789][ T3370] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 95.067238][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 95.076180][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 95.085073][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 95.093646][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 95.102148][ T3370] bridge0: port 1(bridge_slave_0) entered blocking state
[ 95.109460][ T3370] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 95.118398][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 95.127464][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 95.137493][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 95.146237][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 95.155906][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 95.181955][ T9603] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 95.193414][ T9603] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 95.209599][ T9608] 8021q: adding VLAN 0 to HW filter on device bond0
[ 95.236502][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 95.248088][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 95.256551][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 95.265821][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 95.275074][ T3370] bridge0: port 1(bridge_slave_0) entered blocking state
[ 95.282271][ T3370] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 95.291129][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 95.299943][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 95.308710][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 95.317404][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 95.326136][ T3370] bridge0: port 2(bridge_slave_1) entered blocking state
[ 95.333230][ T3370] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 95.341029][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 95.350769][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 95.359861][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 95.368717][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 95.377459][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 95.386161][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 95.394506][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 95.403196][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 95.411779][ T3370] bridge0: port 2(bridge_slave_1) entered blocking state
[ 95.418850][ T3370] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 95.426614][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 95.435315][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 95.444146][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 95.452711][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 95.463135][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 95.471738][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 95.480311][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 95.489532][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 95.498461][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 95.506609][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 95.515630][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 95.523487][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 95.531611][ T3370] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 95.553465][ T9605] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 95.566037][ T9605] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 95.591896][ T9603] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 95.603567][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 95.613641][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 95.629624][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 95.638650][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 95.647137][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 95.655712][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 95.664910][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 95.685423][ T9601] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 95.712108][ T9605] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 95.735409][ T9608] 8021q: adding VLAN 0 to HW filter on device team0
[ 95.742413][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 95.760530][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 95.778647][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 95.787471][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 95.795974][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 95.804827][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 95.816886][ T9611] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 95.829111][ T9611] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 95.860672][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 95.885936][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 95.894703][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 95.916513][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 95.937095][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 95.946474][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 95.954962][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 95.963564][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 95.972117][ T22] bridge0: port 1(bridge_slave_0) entered blocking state
[ 95.979459][ T22] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 95.987224][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 95.996308][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 96.005584][ T22] bridge0: port 2(bridge_slave_1) entered blocking state
[ 96.012623][ T22] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 96.020430][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 96.030814][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 96.086016][ T9608] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 96.096774][ T9608] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 96.114169][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 96.123055][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 96.142198][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 96.163413][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 96.172572][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 96.181479][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 96.191104][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 96.200109][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 96.208907][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 96.218287][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 96.226469][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 96.326859][ T9611] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 96.363406][ T9610] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 96.410820][ T9608] 8021q: adding VLAN 0 to HW filter on device batadv0
2019/07/17 15:53:55 executed programs: 8
2019/07/17 15:54:00 executed programs: 64
2019/07/17 15:54:05 executed programs: 127
2019/07/17 15:54:10 executed programs: 187
2019/07/17 15:54:15 executed programs: 247
2019/07/17 15:54:20 executed programs: 309
2019/07/17 15:54:25 executed programs: 371
[ 128.184090][ C1] ------------[ cut here ]------------
[ 128.185604][T11548] ==================================================================
[ 128.189951][ C1] refcount_t: increment on 0; use-after-free.
[ 128.198089][T11548] BUG: KASAN: use-after-free in refcount_inc_not_zero_checked+0x81/0x200
[ 128.198101][T11548] Read of size 4 at addr ffff88807be6b6c0 by task syz-executor.0/11548
[ 128.198105][T11548]
[ 128.198120][T11548] CPU: 0 PID: 11548 Comm: syz-executor.0 Not tainted 5.2.0+ #66
[ 128.198128][T11548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 128.198134][T11548] Call Trace:
[ 128.198159][T11548] dump_stack+0x172/0x1f0
[ 128.204559][ C1] WARNING: CPU: 1 PID: 0 at lib/refcount.c:156 refcount_inc_checked+0x61/0x70
[ 128.212640][T11548] ? refcount_inc_not_zero_checked+0x81/0x200
[ 128.220872][ C1] Kernel panic - not syncing: panic_on_warn set ...
[ 128.223213][T11548] print_address_description.cold+0xd4/0x306
[ 128.276026][T11548] ? refcount_inc_not_zero_checked+0x81/0x200
[ 128.282119][T11548] ? refcount_inc_not_zero_checked+0x81/0x200
[ 128.288189][T11548] __kasan_report.cold+0x1b/0x36
[ 128.293134][T11548] ? refcount_inc_not_zero_checked+0x81/0x200
[ 128.299206][T11548] kasan_report+0x12/0x20
[ 128.303721][T11548] check_memory_region+0x134/0x1a0
[ 128.308839][T11548] __kasan_check_read+0x11/0x20
[ 128.313700][T11548] refcount_inc_not_zero_checked+0x81/0x200
[ 128.319598][T11548] ? refcount_dec_and_mutex_lock+0x90/0x90
[ 128.325517][T11548] ? __kasan_check_write+0x14/0x20
[ 128.330643][T11548] refcount_inc_checked+0x17/0x70
[ 128.335676][T11548] nr_release+0x62/0x3e0
[ 128.340358][T11548] __sock_release+0xce/0x280
[ 128.344979][T11548] sock_close+0x1e/0x30
[ 128.349139][T11548] __fput+0x2ff/0x890
[ 128.353125][T11548] ? __sock_release+0x280/0x280
[ 128.357991][T11548] ____fput+0x16/0x20
[ 128.361973][T11548] task_work_run+0x145/0x1c0
[ 128.366575][T11548] exit_to_usermode_loop+0x316/0x380
[ 128.371864][T11548] do_syscall_64+0x5a9/0x6a0
[ 128.376550][T11548] entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 128.382621][T11548] RIP: 0033:0x413501
[ 128.386517][T11548] Code: 75 14 b8 03 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 04 1b 00 00 c3 48 83 ec 08 e8 0a fc ff ff 48 89 04 24 b8 03 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 53 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01
[ 128.406135][T11548] RSP: 002b:00007ffe5eb40550 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 128.414817][T11548] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 0000000000413501
[ 128.422874][T11548] RDX: 0000001b2be20000 RSI: 0000000000000000 RDI: 0000000000000003
[ 128.430901][T11548] RBP: 0000000000000001 R08: ffffffffffffffff R09: ffffffffffffffff
[ 128.438973][T11548] R10: 00007ffe5eb40630 R11: 0000000000000293 R12: 000000000075c9a0
[ 128.446965][T11548] R13: 000000000075c9a0 R14: 0000000000760a68 R15: ffffffffffffffff
[ 128.454966][T11548]
[ 128.454981][ C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 5.2.0+ #66
[ 128.454996][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 128.457315][T11548] Allocated by task 0:
[ 128.464258][ C1] Call Trace:
[ 128.474417][T11548] save_stack+0x23/0x90
[ 128.478468][ C1]
[ 128.481745][T11548] __kasan_kmalloc.constprop.0+0xcf/0xe0
[ 128.481762][T11548] kasan_kmalloc+0x9/0x10
[ 128.485911][ C1] dump_stack+0x172/0x1f0
[ 128.488746][T11548] __kmalloc+0x163/0x780
[ 128.488766][T11548] sk_prot_alloc+0x23a/0x310
[ 128.494400][ C1] ? refcount_inc_not_zero_checked+0x1e0/0x200
[ 128.498724][T11548] sk_alloc+0x39/0xf70
[ 128.503045][ C1] panic+0x2dc/0x755
[ 128.507371][T11548] nr_rx_frame+0x733/0x1e80
[ 128.507397][T11548] nr_loopback_timer+0x7b/0x170
[ 128.511983][ C1] ? add_taint.cold+0x16/0x16
[ 128.518137][T11548] call_timer_fn+0x1ac/0x780
[ 128.522211][ C1] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 128.526101][T11548] run_timer_softirq+0x697/0x17a0
[ 128.526120][T11548] __do_softirq+0x262/0x98c
[ 128.530617][ C1] ? __warn.cold+0x5/0x4c
[ 128.535448][T11548]
[ 128.540180][ C1] ? __warn+0xe7/0x1e0
[ 128.544761][T11548] Freed by task 11551:
[ 128.551005][ C1] ? refcount_inc_checked+0x61/0x70
[ 128.556032][T11548] save_stack+0x23/0x90
[ 128.560518][ C1] __warn.cold+0x20/0x4c
[ 128.564844][T11548] __kasan_slab_free+0x102/0x150
[ 128.567167][ C1] ? vprintk_emit+0x1ea/0x700
[ 128.571251][T11548] kasan_slab_free+0xe/0x10
[ 128.571271][T11548] kfree+0x10a/0x2c0
[ 128.575372][ C1] ? refcount_inc_checked+0x61/0x70
[ 128.580559][T11548] __sk_destruct+0x4f7/0x6e0
[ 128.580579][T11548] sk_destruct+0x86/0xa0
[ 128.584730][ C1] report_bug+0x263/0x2b0
[ 128.588959][T11548] __sk_free+0xfb/0x360
[ 128.593918][ C1] do_error_trap+0x11b/0x200
[ 128.598579][T11548] sk_free+0x42/0x50
[ 128.598597][T11548] sock_efree+0x61/0x80
[ 128.603104][ C1] do_invalid_op+0x37/0x50
[ 128.606991][T11548] skb_release_head_state+0xeb/0x260
[ 128.612269][ C1] ? refcount_inc_checked+0x61/0x70
[ 128.616844][T11548] skb_release_all+0x16/0x60
[ 128.616861][T11548] kfree_skb+0x101/0x3c0
[ 128.621107][ C1] invalid_op+0x14/0x20
[ 128.625421][T11548] nr_accept+0x570/0x720
[ 128.625440][T11548] __sys_accept4+0x34e/0x6a0
[ 128.629593][ C1] RIP: 0010:refcount_inc_checked+0x61/0x70
[ 128.634162][T11548] __x64_sys_accept4+0x97/0xf0
[ 128.634182][T11548] do_syscall_64+0xfd/0x6a0
[ 128.638073][ C1] Code: 1d 50 c5 63 06 31 ff 89 de e8 4b 4a 37 fe 84 db 75 dd e8 02 49 37 fe 48 c7 c7 a0 1b c5 87 c6 05 30 c5 63 06 01 e8 e7 f2 08 fe <0f> 0b eb c1 90 90 90 90 90 90 90 90 90 90 90 55 48 89 e5 41 57 41
[ 128.642219][T11548] entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 128.646633][ C1] RSP: 0018:ffff8880ae909bf0 EFLAGS: 00010282
[ 128.651913][T11548]
[ 128.657133][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 128.661730][T11548] The buggy address belongs to the object at ffff88807be6b640
[ 128.661730][T11548] which belongs to the cache kmalloc-2k of size 2048
[ 128.666077][ C1] RDX: 0000000000000100 RSI: ffffffff815c1016 RDI: ffffed1015d21370
[ 128.670234][T11548] The buggy address is located 128 bytes inside of
[ 128.670234][T11548] 2048-byte region [ffff88807be6b640, ffff88807be6be40)
[ 128.674462][ C1] RBP: ffff8880ae909c00 R08: ffff8880a98ce340 R09: fffffbfff14a276f
[ 128.679048][T11548] The buggy address belongs to the page:
[ 128.684866][ C1] R10: fffffbfff14a276e R11: ffffffff8a513b77 R12: ffff88807be6b6c0
[ 128.689735][T11548] page:ffffea0001ef9a80 refcount:1 mapcount:0 mapping:ffff8880aa400e00 index:0x0 compound_mapcount: 0
[ 128.694237][ C1] R13: ffff88807be6b6a8 R14: ffff88807c32c248 R15: ffff88807c32c220
[ 128.713856][T11548] flags: 0x1fffc0000010200(slab|head)
[ 128.719781][ C1] ? vprintk_func+0x86/0x189
[ 128.725853][T11548] raw: 01fffc0000010200 ffffea0001ef9708 ffffea0002453708 ffff8880aa400e00
[ 128.728188][ C1] nr_insert_socket+0x2d/0xe0
[ 128.736168][T11548] raw: 0000000000000000 ffff88807be6a540 0000000100000003 0000000000000000
[ 128.750238][ C1] nr_rx_frame+0x1605/0x1e80
[ 128.758202][T11548] page dumped because: kasan: bad access detected
[ 128.771581][ C1] nr_loopback_timer+0x7b/0x170
[ 128.779540][T11548]
[ 128.785185][ C1] call_timer_fn+0x1ac/0x780
[ 128.793145][T11548] Memory state around the buggy address:
[ 128.793165][T11548] ffff88807be6b580: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 128.804113][ C1] ? nr_process_rx_frame+0x1540/0x1540
[ 128.812096][T11548] ffff88807be6b600: fc fc fc fc fc fc fc fc fb fb fb fb fb fb fb fb
[ 128.817490][ C1] ? msleep_interruptible+0x150/0x150
[ 128.822076][T11548] >ffff88807be6b680: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 128.830675][ C1] ? run_timer_softirq+0x685/0x17a0
[ 128.835351][T11548] ^
[ 128.844032][ C1] ? trace_hardirqs_on+0x67/0x240
[ 128.848614][T11548] ffff88807be6b700: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 128.855124][ C1] ? __kasan_check_read+0x11/0x20
[ 128.859960][T11548] ffff88807be6b780: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 128.862477][ C1] ? nr_process_rx_frame+0x1540/0x1540
[ 128.867063][T11548] ==================================================================
[ 128.872716][ C1] ? nr_process_rx_frame+0x1540/0x1540
[ 128.880772][T11548] Disabling lock debugging due to kernel taint
[ 128.886267][ C1] run_timer_softirq+0x697/0x17a0
[ 128.902668][T11548] ------------[ cut here ]------------
[ 128.907736][ C1] ? add_timer+0x930/0x930
[ 128.913032][T11548] ODEBUG: activate not available (active state 0) object type: timer_list hint: nr_t1timer_expiry+0x0/0x340
[ 128.919163][ C1] ? kvm_clock_read+0x18/0x30
[ 128.924570][T11548] WARNING: CPU: 0 PID: 11548 at lib/debugobjects.c:481 debug_print_object+0x168/0x250
[ 128.932336][ C1] ? kvm_sched_clock_read+0x9/0x20
[ 128.937353][T11548] Modules linked in:
[ 128.945422][ C1] ? sched_clock+0x2e/0x50
[ 128.950869][T11548] CPU: 0 PID: 11548 Comm: syz-executor.0 Tainted: G B 5.2.0+ #66
[ 128.958932][ C1] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 128.964359][T11548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 128.970506][ C1] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 128.975509][T11548] RIP: 0010:debug_print_object+0x168/0x250
[ 128.980963][ C1] __do_softirq+0x262/0x98c
[ 128.985362][T11548] Code: dd a0 48 c5 87 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 b5 00 00 00 48 8b 14 dd a0 48 c5 87 48 c7 c7 00 3e c5 87 e8 f0 b1 07 fe <0f> 0b 83 05 13 86 66 06 01 48 83 c4 20 5b 41 5c 41 5d 41 5e 5d c3
[ 128.996929][ C1] ? sched_clock_cpu+0x1b/0x1b0
[ 129.001597][T11548] RSP: 0018:ffff88809151faf0 EFLAGS: 00010082
[ 129.011159][ C1] irq_exit+0x19b/0x1e0
[ 129.016254][T11548] RAX: 0000000000000000 RBX: 0000000000000005 RCX: 0000000000000000
[ 129.020152][ C1] smp_apic_timer_interrupt+0x1a3/0x610
[ 129.024541][T11548] RDX: 0000000000000000 RSI: ffffffff815c1016 RDI: ffffed10122a3f50
[ 129.033557][ C1] apic_timer_interrupt+0xf/0x20
[ 129.042298][T11548] RBP: ffff88809151fb30 R08: ffff8880943fe300 R09: ffffed1015d040f1
[ 129.053316][ C1]
[ 129.059544][T11548] R10: ffffed1015d040f0 R11: ffff8880ae820787 R12: 0000000000000001
[ 129.065345][ C1] RIP: 0010:native_safe_halt+0xe/0x10
[ 129.069829][T11548] R13: ffffffff88db4ca0 R14: ffffffff8161a860 R15: 1ffff110122a3f6c
[ 129.089438][ C1] Code: 58 2d 7b fa eb 8a 90 90 90 90 90 90 e9 07 00 00 00 0f 00 2d 44 10 57 00 f4 c3 66 90 e9 07 00 00 00 0f 00 2d 34 10 57 00 fb f4 90 55 48 89 e5 41 57 41 56 41 55 41 54 53 e8 ee 28 2f fa e8 c9
[ 129.094275][T11548] FS: 0000555555737940(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000
[ 129.100320][ C1] RSP: 0018:ffff8880a98e7d68 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff13
[ 129.104464][T11548] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 129.113945][ C1] RAX: 1ffffffff11a5ca5 RBX: ffff8880a98ce340 RCX: 0000000000000000
[ 129.119489][T11548] CR2: 00007fada90cddb8 CR3: 00000000a7f80000 CR4: 00000000001406f0
[ 129.127483][ C1] RDX: dffffc0000000000 RSI: 0000000000000006 RDI: ffff8880a98cebcc
[ 129.132412][T11548] Call Trace:
[ 129.140392][ C1] RBP: ffff8880a98e7d98 R08: ffff8880a98ce340 R09: 0000000000000000
[ 129.143795][T11548] ? kasan_report+0x12/0x20
[ 129.152017][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 129.157402][T11548] debug_object_activate+0x2e5/0x470
[ 129.165368][ C1] R13: ffffffff89a29778 R14: 0000000000000000 R15: 0000000000000001
[ 129.185338][T11548] ? debug_object_init_on_stack+0x20/0x20
[ 129.194277][ C1] ? default_idle+0x4e/0x360
[ 129.202701][T11548] ? do_raw_spin_lock+0x12a/0x2e0
[ 129.209553][ C1] arch_cpu_idle+0xa/0x10
[ 129.217617][T11548] mod_timer+0x452/0xc10
[ 129.225590][ C1] default_idle_call+0x84/0xb0
[ 129.233561][T11548] ? call_timer_fn+0x780/0x780
[ 129.236831][ C1] do_idle+0x413/0x760
[ 129.244805][T11548] ? check_memory_region+0x134/0x1a0
[ 129.249292][ C1] ? retint_kernel+0x2b/0x2b
[ 129.257348][T11548] sk_reset_timer+0x24/0x60
[ 129.262643][ C1] ? arch_cpu_idle_exit+0x80/0x80
[ 129.270608][T11548] nr_start_t1timer+0x6e/0xa0
[ 129.276321][ C1] ? do_idle+0x387/0x760
[ 129.280897][T11548] nr_release+0x1de/0x3e0
[ 129.285920][ C1] cpu_startup_entry+0x1b/0x20
[ 129.290239][T11548] __sock_release+0xce/0x280
[ 129.294463][ C1] start_secondary+0x315/0x430
[ 129.299203][T11548] sock_close+0x1e/0x30
[ 129.303967][ C1] ? set_cpu_sibling_map+0x2180/0x2180
[ 129.308023][T11548] __fput+0x2ff/0x890
[ 129.313312][ C1] secondary_startup_64+0xa4/0xb0
[ 129.317909][T11548] ? __sock_release+0x280/0x280
[ 129.378352][T11548] ____fput+0x16/0x20
[ 129.382772][T11548] task_work_run+0x145/0x1c0
[ 129.387363][T11548] exit_to_usermode_loop+0x316/0x380
[ 129.392654][T11548] do_syscall_64+0x5a9/0x6a0
[ 129.397241][T11548] entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 129.403137][T11548] RIP: 0033:0x413501
[ 129.407036][T11548] Code: 75 14 b8 03 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 04 1b 00 00 c3 48 83 ec 08 e8 0a fc ff ff 48 89 04 24 b8 03 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 53 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01
[ 129.426728][T11548] RSP: 002b:00007ffe5eb40550 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 129.435148][T11548] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 0000000000413501
[ 129.443117][T11548] RDX: 0000001b2be20000 RSI: 0000000000000000 RDI: 0000000000000003
[ 129.451111][T11548] RBP: 0000000000000001 R08: ffffffffffffffff R09: ffffffffffffffff
[ 129.459342][T11548] R10: 00007ffe5eb40630 R11: 0000000000000293 R12: 000000000075c9a0
[ 129.467314][T11548] R13: 000000000075c9a0 R14: 0000000000760a68 R15: ffffffffffffffff
[ 129.475291][T11548] irq event stamp: 1316
[ 129.479448][T11548] hardirqs last enabled at (1315): [] _raw_spin_unlock_irq+0x28/0x90
[ 129.489170][T11548] hardirqs last disabled at (1316): [] _raw_spin_lock_irqsave+0x6f/0xcd
[ 129.499583][T11548] softirqs last enabled at (1168): [] fpu__copy+0x17e/0x8c0
[ 129.508522][T11548] softirqs last disabled at (1166): [] fpu__copy+0xa7/0x8c0
[ 129.517788][T11548] ---[ end trace c9359faa0df5eab0 ]---
[ 129.524171][ C1] Kernel Offset: disabled
[ 129.528511][ C1] Rebooting in 86400 seconds..