[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   28.701688] kauditd_printk_skb: 7 callbacks suppressed
[   28.701703] audit: type=1800 audit(1542388889.740:29): pid=5869 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
[   28.731987] audit: type=1800 audit(1542388889.740:30): pid=5869 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   32.411345] sshd (6009) used greatest stack depth: 15632 bytes left
Warning: Permanently added '10.128.10.28' (ECDSA) to the list of known hosts.
executing program
[   41.860917] IPVS: ftp: loaded support on port[0] = 21
[   42.068546] WARNING: CPU: 1 PID: 6029 at fs/fuse/inode.c:119 fuse_destroy_inode+0x251/0x2c0
[   42.077126] Kernel panic - not syncing: panic_on_warn set ...
[   42.082997] CPU: 1 PID: 6029 Comm: syz-executor627 Not tainted 4.20.0-rc1-next-20181109+ #110
[   42.091637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   42.100971] Call Trace:
[   42.103545]  dump_stack+0x244/0x39d
[   42.107172]  ? dump_stack_print_info.cold.1+0x20/0x20
[   42.112364]  panic+0x2ad/0x55c
[   42.115554]  ? add_taint.cold.5+0x16/0x16
[   42.119692]  ? __warn.cold.8+0x5/0x45
[   42.123492]  ? __warn+0xe8/0x1d0
[   42.126841]  ? fuse_destroy_inode+0x251/0x2c0
[   42.131318]  __warn.cold.8+0x20/0x45
[   42.135033]  ? rcu_softirq_qs+0x20/0x20
[   42.139005]  ? fuse_destroy_inode+0x251/0x2c0
[   42.143482]  report_bug+0x254/0x2d0
[   42.147107]  do_error_trap+0x11b/0x200
[   42.150994]  do_invalid_op+0x36/0x40
[   42.154693]  ? fuse_destroy_inode+0x251/0x2c0
[   42.159175]  invalid_op+0x14/0x20
[   42.162616] RIP: 0010:fuse_destroy_inode+0x251/0x2c0
[   42.167710] Code: 41 c6 44 15 00 f8 0f 84 8c fe ff ff e8 a8 81 f1 fe 0f 0b e9 80 fe ff ff 48 89 df e8 59 d9 34 ff e9 50 fe ff ff e8 8f 81 f1 fe <0f> 0b e9 6a ff ff ff e8 83 d9 34 ff e9 90 fe ff ff e8 19 b9 ba fe
[   42.186730] RSP: 0018:ffff8801c15fe858 EFLAGS: 00010293
[   42.192087] RAX: ffff8801c2e40400 RBX: ffff8801b25ca5c0 RCX: 1ffff100382bfd10
[   42.199339] RDX: 0000000000000000 RSI: ffffffff828e2721 RDI: 0000000000000003
[   42.206596] RBP: ffff8801c15fe928 R08: ffff8801c2e40400 R09: 0000000000000008
[   42.213844] R10: 0000000000000002 R11: ffff8801c2e40400 R12: 1ffff100382bfd0c
[   42.221096] R13: 1ffff100382bfd10 R14: ffff8801c15fe900 R15: ffff8801b25ca998
[   42.228357]  ? fuse_destroy_inode+0x251/0x2c0
[   42.232840]  ? fuse_destroy_inode+0x251/0x2c0
[   42.237338]  ? fuse_evict_inode+0x1e0/0x1e0
[   42.241640]  ? evict+0x5d8/0x980
[   42.245003]  ? lock_downgrade+0x900/0x900
[   42.249134]  ? fuse_evict_inode+0x1e0/0x1e0
[   42.253447]  destroy_inode+0x159/0x200
[   42.257318]  ? __destroy_inode+0x820/0x820
[   42.261555]  ? fuse_queue_forget+0x138/0x190
[   42.265951]  evict+0x5e0/0x980
[   42.269128]  ? destroy_inode+0x200/0x200
[   42.273174]  ? iput+0x66c/0xa90
[   42.276443]  ? lock_downgrade+0x900/0x900
[   42.280581]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   42.286106]  ? kasan_check_read+0x11/0x20
[   42.290275]  ? do_raw_spin_trylock+0x270/0x270
[   42.294859]  ? find_held_lock+0x36/0x1c0
[   42.298910]  iput+0x674/0xa90
[   42.302016]  ? inode_add_lru+0x2a0/0x2a0
[   42.306061]  ? d_walk+0x797/0xc70
[   42.309500]  ? kasan_check_read+0x11/0x20
[   42.313628]  ? do_raw_spin_unlock+0xa7/0x330
[   42.318020]  ? do_raw_spin_trylock+0x270/0x270
[   42.322587]  ? print_usage_bug+0xc0/0xc0
[   42.326631]  ? do_raw_spin_unlock+0xa7/0x330
[   42.331028]  dentry_unlink_inode+0x461/0x5e0
[   42.335419]  ? d_lru_del+0x130/0x130
[   42.339128]  ? graph_lock+0x270/0x270
[   42.342912]  ? d_walk+0x797/0xc70
[   42.346352]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   42.351877]  ? lockref_mark_dead+0xef/0x170
[   42.356191]  ? lockref_get_not_dead+0x90/0x90
[   42.360694]  ? lock_acquire+0x1ed/0x520
[   42.364659]  __dentry_kill+0x44c/0x7a0
[   42.368538]  ? d_drop+0x70/0x70
[   42.371816]  ? lock_downgrade+0x900/0x900
[   42.375953]  ? kasan_check_read+0x11/0x20
[   42.380089]  dentry_kill+0xc9/0x680
[   42.383707]  dput.part.25+0x660/0x860
[   42.387499]  ? shrink_dcache_sb+0x350/0x350
[   42.391813]  do_one_tree+0x37/0x40
[   42.395342]  shrink_dcache_for_umount+0xc7/0x2b0
[   42.400099]  ? lock_downgrade+0x900/0x900
[   42.404234]  ? d_set_mounted+0x2e0/0x2e0
[   42.408278]  ? lock_release+0xa10/0xa10
[   42.412236]  ? perf_trace_sched_process_exec+0x860/0x860
[   42.417690]  ? unregister_shrinker+0x270/0x460
[   42.422259]  generic_shutdown_super+0xd5/0x530
[   42.426823]  ? destroy_super_rcu+0x210/0x210
[   42.431216]  ? up_write+0x7b/0x220
[   42.434738]  ? down_write_nested+0x130/0x130
[   42.439146]  ? down_read+0x120/0x120
[   42.442845]  ? prepare_kswapd_sleep+0x220/0x220
[   42.447518]  kill_anon_super+0x3e/0x60
[   42.451389]  fuse_kill_sb_anon+0x1d/0x20
[   42.455438]  deactivate_locked_super+0x97/0x100
[   42.460108]  deactivate_super+0x2bb/0x320
[   42.464241]  ? get_super_exclusive_thawed+0x20/0x20
[   42.469249]  ? fsnotify_destroy_marks+0x1d2/0x270
[   42.474076]  ? shrink_dcache_sb+0x350/0x350
[   42.478384]  ? cpumask_next+0x41/0x50
[   42.482171]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[   42.487173]  ? mnt_get_writers.isra.27+0xf8/0x150
[   42.492018]  cleanup_mnt+0xbf/0x160
[   42.495628]  __cleanup_mnt+0x16/0x20
[   42.499329]  task_work_run+0x1e8/0x2a0
[   42.503224]  ? task_work_cancel+0x240/0x240
[   42.507532]  ? switch_task_namespaces+0xb8/0xd0
[   42.512193]  do_exit+0x1a48/0x2620
[   42.515718]  ? do_raw_spin_unlock+0xa7/0x330
[   42.520115]  ? mm_update_next_owner+0x990/0x990
[   42.524782]  ? graph_lock+0x270/0x270
[   42.528568]  ? find_held_lock+0x36/0x1c0
[   42.532619]  ? __lock_acquire+0x62f/0x4c20
[   42.536837]  ? lock_downgrade+0x900/0x900
[   42.540977]  ? mark_held_locks+0x130/0x130
[   42.545198]  ? __sanitizer_cov_trace_switch+0x53/0x90
[   42.550373]  ? drop_futex_key_refs.isra.14+0x6d/0xe0
[   42.555459]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   42.560978]  ? futex_wait+0x5ec/0xa50
[   42.564769]  ? futex_wait_setup+0x3e0/0x3e0
[   42.569080]  ? drop_futex_key_refs.isra.14+0x6d/0xe0
[   42.574164]  ? futex_wake+0x304/0x760
[   42.577955]  ? graph_lock+0x270/0x270
[   42.581744]  ? memset+0x31/0x40
[   42.585017]  ? find_held_lock+0x36/0x1c0
[   42.589064]  ? get_signal+0x953/0x1970
[   42.592966]  ? _raw_spin_unlock_irq+0x27/0x80
[   42.597453]  ? _raw_spin_unlock_irq+0x27/0x80
[   42.601952]  do_group_exit+0x177/0x440
[   42.605827]  ? trace_hardirqs_off_caller+0x300/0x300
[   42.610914]  ? __ia32_sys_exit+0x50/0x50
[   42.614962]  get_signal+0x8a8/0x1970
[   42.618662]  ? ptrace_notify+0x130/0x130
[   42.622707]  ? filename_lookup+0x39f/0x520
[   42.626932]  ? nd_jump_link+0x1d0/0x1d0
[   42.630886]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   42.636409]  ? digsig_verify+0x1530/0x1530
[   42.640636]  do_signal+0x9c/0x21c0
[   42.644158]  ? getname_flags+0x26e/0x590
[   42.648221]  ? user_path_at_empty+0x40/0x50
[   42.652540]  ? setup_sigcontext+0x7d0/0x7d0
[   42.656839]  ? vfs_statx+0x17a/0x210
[   42.660538]  ? exit_to_usermode_loop+0x8c/0x380
[   42.665192]  ? exit_to_usermode_loop+0x8c/0x380
[   42.669845]  ? lockdep_hardirqs_on+0x3bb/0x5b0
[   42.674408]  ? trace_hardirqs_on+0xbd/0x310
[   42.678720]  ? do_syscall_64+0x6be/0x820
[   42.682764]  ? __x64_sys_futex+0x47f/0x6a0
[   42.686984]  exit_to_usermode_loop+0x2e5/0x380
[   42.691550]  ? __bpf_trace_sys_exit+0x30/0x30
[   42.696025]  ? trace_hardirqs_off+0xb8/0x310
[   42.700439]  do_syscall_64+0x6be/0x820
[   42.704318]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[   42.709664]  ? syscall_return_slowpath+0x5e0/0x5e0
[   42.714596]  ? trace_hardirqs_on_caller+0x310/0x310
[   42.719612]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[   42.724616]  ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250
[   42.731265]  ? __switch_to_asm+0x40/0x70
[   42.735308]  ? __switch_to_asm+0x34/0x70
[   42.739356]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   42.744193]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   42.749368] RIP: 0033:0x445f79
[   42.752551] Code: Bad RIP value.
[   42.755897] RSP: 002b:00007f2c0449ada8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[   42.763593] RAX: fffffffffffffe00 RBX: 00000000006dbc38 RCX: 0000000000445f79
[   42.770846] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00000000006dbc38
[   42.778101] RBP: 00000000006dbc30 R08: 0000000000000000 R09: 0000000000000000
[   42.785361] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc3c
[   42.792626] R13: 2f30656c69662f2e R14: 0000000100000001 R15: 0000000000000001
[   42.800955] Kernel Offset: disabled
[   42.804621] Rebooting in 86400 seconds..