[ 38.643413][ T26] audit: type=1800 audit(1555601677.094:27): pid=7536 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [ 38.682951][ T26] audit: type=1800 audit(1555601677.094:28): pid=7536 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 39.397394][ T26] audit: type=1800 audit(1555601677.884:29): pid=7536 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 39.423925][ T26] audit: type=1800 audit(1555601677.884:30): pid=7536 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.96' (ECDSA) to the list of known hosts. 2019/04/18 15:35:26 parsed 1 programs 2019/04/18 15:35:28 executed programs: 0 syzkaller login: [ 89.646600][ T7702] IPVS: ftp: loaded support on port[0] = 21 [ 89.700918][ T7702] chnl_net:caif_netlink_parms(): no params data found [ 89.732689][ T7702] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.747995][ T7702] bridge0: port 1(bridge_slave_0) entered disabled state [ 89.756305][ T7702] device bridge_slave_0 entered promiscuous mode [ 89.765443][ T7702] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.772688][ T7702] bridge0: port 2(bridge_slave_1) entered disabled state [ 89.781021][ T7702] device bridge_slave_1 entered promiscuous mode [ 89.797071][ T7702] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 89.806790][ T7702] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 89.823120][ T7702] team0: Port device team_slave_0 added [ 89.830630][ T7702] team0: Port device team_slave_1 added [ 89.896593][ T7702] device hsr_slave_0 entered promiscuous mode [ 89.945361][ T7702] device hsr_slave_1 entered promiscuous mode [ 90.021759][ T7702] bridge0: port 2(bridge_slave_1) entered blocking state [ 90.029387][ T7702] bridge0: port 2(bridge_slave_1) entered forwarding state [ 90.037373][ T7702] bridge0: port 1(bridge_slave_0) entered blocking state [ 90.044804][ T7702] bridge0: port 1(bridge_slave_0) entered forwarding state [ 90.077607][ T7702] 8021q: adding VLAN 0 to HW filter on device bond0 [ 90.088965][ T2991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 90.099771][ T2991] bridge0: port 1(bridge_slave_0) entered disabled state [ 90.109581][ T2991] bridge0: port 2(bridge_slave_1) entered disabled state [ 90.118488][ T2991] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 90.146814][ T7702] 8021q: adding VLAN 0 to HW filter on device team0 [ 90.157697][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 90.167133][ T22] bridge0: port 1(bridge_slave_0) entered blocking state [ 90.174977][ T22] bridge0: port 1(bridge_slave_0) entered forwarding state [ 90.196719][ T2991] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 90.206140][ T2991] bridge0: port 2(bridge_slave_1) entered blocking state [ 90.213737][ T2991] bridge0: port 2(bridge_slave_1) entered forwarding state [ 90.222307][ T2991] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 90.231239][ T2991] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 90.240075][ T2991] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 90.248466][ T2991] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 90.258068][ T2991] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 90.267212][ T7702] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 90.286259][ T7702] 8021q: adding VLAN 0 to HW filter on device batadv0 2019/04/18 15:35:33 executed programs: 145 2019/04/18 15:35:38 executed programs: 315 2019/04/18 15:35:43 executed programs: 489 2019/04/18 15:35:48 executed programs: 646 2019/04/18 15:35:53 executed programs: 803 2019/04/18 15:35:58 executed programs: 970 2019/04/18 15:36:03 executed programs: 1138 2019/04/18 15:36:08 executed programs: 1304 [ 130.467309][T12999] kasan: CONFIG_KASAN_INLINE enabled [ 130.473013][T12999] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 130.482172][T12999] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 130.489309][T12999] CPU: 1 PID: 12999 Comm: syz-executor.0 Not tainted 5.1.0-rc5+ #73 [ 130.497369][T12999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 130.507421][T12999] RIP: 0010:fanotify_handle_event+0x7d0/0xc40 [ 130.513564][T12999] Code: ff ff 48 8b 18 48 8d 7b 68 48 89 f8 48 c1 e8 03 42 80 3c 38 00 0f 85 47 04 00 00 48 8b 5b 68 48 8d 7b 3c 48 89 fa 48 c1 ea 03 <42> 0f b6 0c 3a 48 89 fa 83 e2 07 83 c2 03 38 ca 7c 08 84 c9 0f 85 [ 130.533543][T12999] RSP: 0018:ffff8880a8947b78 EFLAGS: 00010203 [ 130.539623][T12999] RAX: 1ffff110127b460d RBX: 0000000000000000 RCX: ffffffff81c41e9e [ 130.547755][T12999] RDX: 0000000000000007 RSI: ffffffff81c41eab RDI: 000000000000003c [ 130.555717][T12999] RBP: ffff8880a8947cc0 R08: ffff888087904240 R09: 0000000000000000 [ 130.564128][T12999] R10: ffff888087904b10 R11: ffff888087904240 R12: 0000000000000002 [ 130.572269][T12999] R13: 0000000000000000 R14: 0000000000000001 R15: dffffc0000000000 [ 130.580526][T12999] FS: 00007f9f15bf7700(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 [ 130.589984][T12999] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 130.596982][T12999] CR2: 00007f9f15bb4db8 CR3: 000000008d545000 CR4: 00000000001406e0 [ 130.604943][T12999] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 130.613074][T12999] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 130.621122][T12999] Call Trace: [ 130.624622][T12999] ? fanotify_alloc_event+0xd10/0xd10 [ 130.630267][T12999] ? lock_acquire+0x16f/0x3f0 [ 130.635028][T12999] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 130.641257][T12999] ? iov_iter_init+0xee/0x220 [ 130.646159][T12999] fsnotify+0x725/0xbc0 [ 130.650313][T12999] ? fsnotify_first_mark+0x210/0x210 [ 130.656312][T12999] ? __vfs_write+0x95/0x110 [ 130.660978][T12999] vfs_write+0x4dc/0x580 [ 130.665210][T12999] ksys_write+0x14f/0x2d0 [ 130.669703][T12999] ? __ia32_sys_read+0xb0/0xb0 [ 130.674456][T12999] ? do_syscall_64+0x26/0x610 [ 130.679120][T12999] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 130.685519][T12999] ? do_syscall_64+0x26/0x610 [ 130.690193][T12999] __x64_sys_write+0x73/0xb0 [ 130.694774][T12999] do_syscall_64+0x103/0x610 [ 130.699377][T12999] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 130.705269][T12999] RIP: 0033:0x458c29 [ 130.709253][T12999] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 130.730016][T12999] RSP: 002b:00007f9f15bf6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 130.738680][T12999] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458c29 [ 130.746729][T12999] RDX: 0000000000000007 RSI: 0000000020000080 RDI: 0000000000000005 [ 130.754777][T12999] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 130.762997][T12999] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9f15bf76d4 [ 130.771127][T12999] R13: 00000000004c8386 R14: 00000000004de8b8 R15: 00000000ffffffff [ 130.779191][T12999] Modules linked in: [ 130.783591][T12999] ---[ end trace 026b9c3311d87f36 ]--- [ 130.789772][T12999] RIP: 0010:fanotify_handle_event+0x7d0/0xc40 [ 130.796237][T12999] Code: ff ff 48 8b 18 48 8d 7b 68 48 89 f8 48 c1 e8 03 42 80 3c 38 00 0f 85 47 04 00 00 48 8b 5b 68 48 8d 7b 3c 48 89 fa 48 c1 ea 03 <42> 0f b6 0c 3a 48 89 fa 83 e2 07 83 c2 03 38 ca 7c 08 84 c9 0f 85 [ 130.816690][T12999] RSP: 0018:ffff8880a8947b78 EFLAGS: 00010203 [ 130.822977][T12999] RAX: 1ffff110127b460d RBX: 0000000000000000 RCX: ffffffff81c41e9e [ 130.831243][T12999] RDX: 0000000000000007 RSI: ffffffff81c41eab RDI: 000000000000003c [ 130.840380][T12999] RBP: ffff8880a8947cc0 R08: ffff888087904240 R09: 0000000000000000 [ 130.848618][T12999] R10: ffff888087904b10 R11: ffff888087904240 R12: 0000000000000002 [ 130.857305][T12999] R13: 0000000000000000 R14: 0000000000000001 R15: dffffc0000000000 [ 130.865497][T12999] FS: 00007f9f15bf7700(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 [ 130.874549][T12999] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 130.881978][T12999] CR2: 00007f9f15bb4db8 CR3: 000000008d545000 CR4: 00000000001406e0 [ 130.890282][T12999] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 130.898792][T12999] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 130.907584][T12999] Kernel panic - not syncing: Fatal exception [ 130.915709][T12999] Kernel Offset: disabled [ 130.920255][T12999] Rebooting in 86400 seconds..