[info] Using makefile-style concurrent boot in runlevel 2. [ 23.434871] audit: type=1800 audit(1542179800.679:21): pid=5749 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="bootlogs" dev="sda1" ino=2419 res=0 [ 23.463354] audit: type=1800 audit(1542179800.689:22): pid=5749 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="motd" dev="sda1" ino=2447 res=0 [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.10.1' (ECDSA) to the list of known hosts. 2018/11/14 07:17:04 parsed 1 programs 2018/11/14 07:17:06 executed programs: 0 syzkaller login: [ 49.289383] IPVS: ftp: loaded support on port[0] = 21 [ 49.292953] IPVS: ftp: loaded support on port[0] = 21 [ 49.304459] IPVS: ftp: loaded support on port[0] = 21 [ 49.310028] IPVS: ftp: loaded support on port[0] = 21 [ 49.348019] IPVS: ftp: loaded support on port[0] = 21 [ 49.361942] IPVS: ftp: loaded support on port[0] = 21 [ 50.095251] bridge0: port 1(bridge_slave_0) entered blocking state [ 50.106219] bridge0: port 1(bridge_slave_0) entered disabled state [ 50.118048] device bridge_slave_0 entered promiscuous mode [ 50.127273] bridge0: port 1(bridge_slave_0) entered blocking state [ 50.133665] bridge0: port 1(bridge_slave_0) entered disabled state [ 50.140754] device bridge_slave_0 entered promiscuous mode [ 50.160004] bridge0: port 1(bridge_slave_0) entered blocking state [ 50.168759] bridge0: port 1(bridge_slave_0) entered disabled state [ 50.176368] device bridge_slave_0 entered promiscuous mode [ 50.182840] bridge0: port 1(bridge_slave_0) entered blocking state [ 50.189668] bridge0: port 1(bridge_slave_0) entered disabled state [ 50.196597] device bridge_slave_0 entered promiscuous mode [ 50.204124] bridge0: port 1(bridge_slave_0) entered blocking state [ 50.211802] bridge0: port 1(bridge_slave_0) entered disabled state [ 50.218876] device bridge_slave_0 entered promiscuous mode [ 50.226229] bridge0: port 2(bridge_slave_1) entered blocking state [ 50.232546] bridge0: port 2(bridge_slave_1) entered disabled state [ 50.240393] device bridge_slave_1 entered promiscuous mode [ 50.248196] bridge0: port 2(bridge_slave_1) entered blocking state [ 50.254524] bridge0: port 2(bridge_slave_1) entered disabled state [ 50.261850] device bridge_slave_1 entered promiscuous mode [ 50.268993] bridge0: port 1(bridge_slave_0) entered blocking state [ 50.275357] bridge0: port 1(bridge_slave_0) entered disabled state [ 50.282431] device bridge_slave_0 entered promiscuous mode [ 50.290195] bridge0: port 2(bridge_slave_1) entered blocking state [ 50.297734] bridge0: port 2(bridge_slave_1) entered disabled state [ 50.304608] device bridge_slave_1 entered promiscuous mode [ 50.311103] bridge0: port 2(bridge_slave_1) entered blocking state [ 50.321435] bridge0: port 2(bridge_slave_1) entered disabled state [ 50.328604] device bridge_slave_1 entered promiscuous mode [ 50.336368] bridge0: port 2(bridge_slave_1) entered blocking state [ 50.342693] bridge0: port 2(bridge_slave_1) entered disabled state [ 50.349861] device bridge_slave_1 entered promiscuous mode [ 50.357481] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 50.364762] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 50.375230] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 50.383518] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 50.392267] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 50.402814] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 50.415333] bridge0: port 2(bridge_slave_1) entered blocking state [ 50.422053] bridge0: port 2(bridge_slave_1) entered disabled state [ 50.432013] device bridge_slave_1 entered promiscuous mode [ 50.440074] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 50.448560] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 50.465010] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 50.495547] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 50.539645] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 50.552552] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 50.566350] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 50.575918] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 50.603911] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 50.614922] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 50.628409] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 50.648648] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 50.681608] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 50.691406] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 50.703947] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 50.724845] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 50.741624] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 50.786814] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 50.863853] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 50.877575] team0: Port device team_slave_0 added [ 50.894330] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 50.910098] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 50.928700] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 50.936207] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 50.954954] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 50.962794] team0: Port device team_slave_1 added [ 50.997845] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 51.004996] team0: Port device team_slave_0 added [ 51.032571] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 51.045599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 51.053625] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 51.068900] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 51.076098] team0: Port device team_slave_0 added [ 51.083272] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 51.090747] team0: Port device team_slave_0 added [ 51.108589] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 51.115886] team0: Port device team_slave_1 added [ 51.122853] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 51.130198] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 51.141055] team0: Port device team_slave_0 added [ 51.155077] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 51.164491] team0: Port device team_slave_1 added [ 51.171878] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 51.184881] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 51.195387] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 51.202725] team0: Port device team_slave_1 added [ 51.210106] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 51.219284] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 51.227380] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 51.234560] team0: Port device team_slave_0 added [ 51.241579] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 51.250816] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 51.261169] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 51.272939] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 51.280842] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 51.288500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 51.296116] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 51.303783] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 51.311215] team0: Port device team_slave_1 added [ 51.318397] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 51.328399] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 51.335784] team0: Port device team_slave_1 added [ 51.356748] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 51.364590] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 51.383150] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 51.391166] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 51.399185] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 51.412338] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 51.422519] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 51.438100] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 51.445307] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 51.456180] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 51.465418] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 51.474469] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 51.483417] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 51.498620] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 51.507137] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 51.525740] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 51.537685] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 51.544916] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 51.559777] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 51.568240] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 51.580800] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 51.589078] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 51.597087] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 51.604677] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 51.612415] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 51.627994] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 51.639430] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 51.653814] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 51.665750] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 51.683210] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 51.691620] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 51.702084] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 51.713006] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 51.721788] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 51.731284] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 51.739613] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 51.748408] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 51.762044] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 51.782871] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 51.792898] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 52.124169] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.130762] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.137745] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.144085] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.151690] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 52.219142] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.225619] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.232210] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.238570] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.255650] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 52.301648] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.308125] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.314722] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.321087] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.333766] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 52.407076] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.413425] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.420064] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.426440] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.434544] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 52.452885] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.459277] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.465929] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.472265] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.481490] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 52.495618] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.502040] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.508623] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.514941] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.542577] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 52.906198] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 52.913569] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 52.939285] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 52.947681] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 52.954583] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 52.961734] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 54.503895] 8021q: adding VLAN 0 to HW filter on device bond0 [ 54.597243] 8021q: adding VLAN 0 to HW filter on device bond0 [ 54.674204] 8021q: adding VLAN 0 to HW filter on device bond0 [ 54.684291] 8021q: adding VLAN 0 to HW filter on device bond0 [ 54.724274] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 54.743350] 8021q: adding VLAN 0 to HW filter on device bond0 [ 54.808805] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 54.842495] 8021q: adding VLAN 0 to HW filter on device bond0 [ 54.865232] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 54.936617] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 54.961642] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 54.974509] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 54.991146] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 55.002715] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 55.044695] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 55.055145] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 55.065096] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 55.112376] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 55.126320] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 55.136582] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 55.152888] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 55.167228] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 55.176597] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 55.183529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 55.215852] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.262018] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 55.268706] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 55.277339] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 55.292943] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.353014] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.418560] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.437993] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 55.444305] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 55.453433] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 55.468523] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.665348] 8021q: adding VLAN 0 to HW filter on device team0 2018/11/14 07:17:14 executed programs: 6 2018/11/14 07:17:19 executed programs: 198 2018/11/14 07:17:24 executed programs: 389 [ 67.132570] ================================================================== [ 67.140173] BUG: KASAN: user-memory-access in n_tty_set_termios+0x106/0xe80 [ 67.147268] Write of size 512 at addr 0000000000001060 by task syz-executor3/9897 [ 67.154871] [ 67.156498] CPU: 0 PID: 9897 Comm: syz-executor3 Not tainted 4.20.0-rc2+ #333 [ 67.163762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 67.173108] Call Trace: [ 67.175695] dump_stack+0x244/0x39d [ 67.179332] ? dump_stack_print_info.cold.1+0x20/0x20 [ 67.184535] ? vprintk_func+0x85/0x181 [ 67.188421] kasan_report.cold.8+0x6d/0x309 [ 67.192739] ? n_tty_set_termios+0x106/0xe80 [ 67.197151] check_memory_region+0x13e/0x1b0 [ 67.201556] memset+0x23/0x40 [ 67.201573] n_tty_set_termios+0x106/0xe80 [ 67.201589] ? n_tty_receive_signal_char+0x120/0x120 [ 67.201610] tty_set_termios+0x7a0/0xac0 [ 67.208987] ? tty_wait_until_sent+0x5d0/0x5d0 [ 67.209007] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 67.209022] set_termios+0x41e/0x7d0 [ 67.209037] ? tty_perform_flush+0x80/0x80 [ 67.236254] ? drop_futex_key_refs.isra.14+0x6d/0xe0 [ 67.241368] tty_mode_ioctl+0x857/0xb40 [ 67.245360] ? set_termios+0x7d0/0x7d0 [ 67.249253] ? perf_trace_sched_process_exec+0x860/0x860 [ 67.254704] n_tty_ioctl_helper+0x54/0x3b0 [ 67.258937] n_tty_ioctl+0x54/0x360 [ 67.262656] ? ldsem_down_read+0x32/0x40 [ 67.266714] ? ldsem_down_read+0x32/0x40 [ 67.270766] tty_ioctl+0x5c6/0x17d0 [ 67.274377] ? commit_echoes+0x1c0/0x1c0 [ 67.278441] ? tty_vhangup+0x30/0x30 [ 67.282149] ? find_held_lock+0x36/0x1c0 [ 67.286208] ? __fget+0x4aa/0x740 [ 67.289665] ? lock_downgrade+0x900/0x900 [ 67.293821] ? check_preemption_disabled+0x48/0x280 [ 67.298843] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 67.303774] ? kasan_check_read+0x11/0x20 [ 67.307929] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 67.313214] ? rcu_softirq_qs+0x20/0x20 [ 67.317195] ? __fget+0x4d1/0x740 [ 67.320655] ? ksys_dup3+0x680/0x680 [ 67.324372] ? __might_fault+0x12b/0x1e0 [ 67.328430] ? lock_downgrade+0x900/0x900 [ 67.332569] ? lock_release+0xa00/0xa00 [ 67.336540] ? perf_trace_sched_process_exec+0x860/0x860 [ 67.341982] ? tty_vhangup+0x30/0x30 [ 67.345690] do_vfs_ioctl+0x1de/0x1790 [ 67.349599] ? ioctl_preallocate+0x300/0x300 [ 67.354005] ? __fget_light+0x2e9/0x430 [ 67.357973] ? fget_raw+0x20/0x20 [ 67.361434] ? _copy_to_user+0xc8/0x110 [ 67.365414] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 67.370952] ? put_timespec64+0x10f/0x1b0 [ 67.375102] ? nsecs_to_jiffies+0x30/0x30 [ 67.379250] ? do_syscall_64+0x9a/0x820 [ 67.383224] ? do_syscall_64+0x9a/0x820 [ 67.387192] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 67.387209] ? security_file_ioctl+0x94/0xc0 [ 67.387229] ksys_ioctl+0xa9/0xd0 [ 67.399626] __x64_sys_ioctl+0x73/0xb0 [ 67.403529] do_syscall_64+0x1b9/0x820 [ 67.407409] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 67.407423] ? syscall_return_slowpath+0x5e0/0x5e0 [ 67.407437] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 67.422519] ? trace_hardirqs_on_caller+0x310/0x310 [ 67.427533] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 67.432550] ? prepare_exit_to_usermode+0x291/0x3b0 [ 67.437564] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 67.442409] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 67.442418] RIP: 0033:0x457569 [ 67.442432] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 67.450852] RSP: 002b:00007f14c2e7cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 67.450865] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 67.450871] RDX: 0000000020000100 RSI: 0000000000005402 RDI: 0000000000000005 [ 67.450881] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 67.499290] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f14c2e7d6d4 [ 67.506557] R13: 00000000004c0ffe R14: 00000000004d1d88 R15: 00000000ffffffff [ 67.513833] ================================================================== [ 67.521176] Disabling lock debugging due to kernel taint [ 67.562110] Kernel panic - not syncing: panic_on_warn set ... [ 67.568018] CPU: 0 PID: 9897 Comm: syz-executor3 Tainted: G B 4.20.0-rc2+ #333 [ 67.576663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 67.585990] Call Trace: [ 67.588559] dump_stack+0x244/0x39d [ 67.592170] ? dump_stack_print_info.cold.1+0x20/0x20 [ 67.597343] panic+0x2ad/0x55c [ 67.600515] ? add_taint.cold.5+0x16/0x16 [ 67.604640] ? preempt_schedule+0x4d/0x60 [ 67.608768] ? ___preempt_schedule+0x16/0x18 [ 67.613151] ? trace_hardirqs_on+0xb4/0x310 [ 67.617455] kasan_end_report+0x47/0x4f [ 67.621407] kasan_report.cold.8+0x76/0x309 [ 67.625703] ? n_tty_set_termios+0x106/0xe80 [ 67.630101] check_memory_region+0x13e/0x1b0 [ 67.634489] memset+0x23/0x40 [ 67.637569] n_tty_set_termios+0x106/0xe80 [ 67.641780] ? n_tty_receive_signal_char+0x120/0x120 [ 67.646857] tty_set_termios+0x7a0/0xac0 [ 67.650892] ? tty_wait_until_sent+0x5d0/0x5d0 [ 67.655451] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 67.660964] set_termios+0x41e/0x7d0 [ 67.664654] ? tty_perform_flush+0x80/0x80 [ 67.668868] ? drop_futex_key_refs.isra.14+0x6d/0xe0 [ 67.673946] tty_mode_ioctl+0x857/0xb40 [ 67.677895] ? set_termios+0x7d0/0x7d0 [ 67.681762] ? perf_trace_sched_process_exec+0x860/0x860 [ 67.687193] n_tty_ioctl_helper+0x54/0x3b0 [ 67.691406] n_tty_ioctl+0x54/0x360 [ 67.695010] ? ldsem_down_read+0x32/0x40 [ 67.699044] ? ldsem_down_read+0x32/0x40 [ 67.703084] tty_ioctl+0x5c6/0x17d0 [ 67.706684] ? commit_echoes+0x1c0/0x1c0 [ 67.710868] ? tty_vhangup+0x30/0x30 [ 67.714579] ? find_held_lock+0x36/0x1c0 [ 67.718619] ? __fget+0x4aa/0x740 [ 67.722059] ? lock_downgrade+0x900/0x900 [ 67.726190] ? check_preemption_disabled+0x48/0x280 [ 67.731180] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 67.736084] ? kasan_check_read+0x11/0x20 [ 67.740208] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 67.745459] ? rcu_softirq_qs+0x20/0x20 [ 67.749413] ? __fget+0x4d1/0x740 [ 67.752843] ? ksys_dup3+0x680/0x680 [ 67.756533] ? __might_fault+0x12b/0x1e0 [ 67.760574] ? lock_downgrade+0x900/0x900 [ 67.764696] ? lock_release+0xa00/0xa00 [ 67.768644] ? perf_trace_sched_process_exec+0x860/0x860 [ 67.774500] ? tty_vhangup+0x30/0x30 [ 67.778187] do_vfs_ioctl+0x1de/0x1790 [ 67.782139] ? ioctl_preallocate+0x300/0x300 [ 67.786522] ? __fget_light+0x2e9/0x430 [ 67.790487] ? fget_raw+0x20/0x20 [ 67.793916] ? _copy_to_user+0xc8/0x110 [ 67.797867] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 67.803378] ? put_timespec64+0x10f/0x1b0 [ 67.807501] ? nsecs_to_jiffies+0x30/0x30 [ 67.811624] ? do_syscall_64+0x9a/0x820 [ 67.815574] ? do_syscall_64+0x9a/0x820 [ 67.819523] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 67.824083] ? security_file_ioctl+0x94/0xc0 [ 67.828467] ksys_ioctl+0xa9/0xd0 [ 67.831894] __x64_sys_ioctl+0x73/0xb0 [ 67.835755] do_syscall_64+0x1b9/0x820 [ 67.839619] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 67.844956] ? syscall_return_slowpath+0x5e0/0x5e0 [ 67.849861] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 67.854686] ? trace_hardirqs_on_caller+0x310/0x310 [ 67.859679] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 67.864671] ? prepare_exit_to_usermode+0x291/0x3b0 [ 67.869664] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 67.874483] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 67.879646] RIP: 0033:0x457569 [ 67.882821] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 67.901697] RSP: 002b:00007f14c2e7cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 67.909377] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 67.916643] RDX: 0000000020000100 RSI: 0000000000005402 RDI: 0000000000000005 [ 67.923896] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 67.931141] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f14c2e7d6d4 [ 67.938391] R13: 00000000004c0ffe R14: 00000000004d1d88 R15: 00000000ffffffff [ 67.946721] Kernel Offset: disabled [ 67.950341] Rebooting in 86400 seconds..