[   70.273815][   T26] audit: type=1800 audit(1564384798.801:26): pid=10187 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   70.309977][   T26] audit: type=1800 audit(1564384798.811:27): pid=10187 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[   70.342049][   T26] audit: type=1800 audit(1564384798.811:28): pid=10187 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   71.081480][   T26] audit: type=1800 audit(1564384799.641:29): pid=10187 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.71' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [  558.071669][ T1057] INFO: task syz-executor666:10344 can't die for more than 143 seconds.
[  558.080198][ T1057] syz-executor666 D27656 10344  10343 0x00004004
[  558.089312][ T1057] Call Trace:
[  558.092852][ T1057]  __schedule+0x755/0x15b0
[  558.097309][ T1057]  ? __sched_text_start+0x8/0x8
[  558.102493][ T1057]  ? rwlock_bug.part.0+0x90/0x90
[  558.107628][ T1057]  ? rwsem_down_read_slowpath+0x2b8/0xfb0
[  558.113565][ T1057]  schedule+0xa8/0x270
[  558.117721][ T1057]  rwsem_down_read_slowpath+0x4cc/0xfb0
[  558.123499][ T1057]  ? down_write_killable_nested+0x180/0x180
[  558.129484][ T1057]  ? mark_held_locks+0xf0/0xf0
[  558.134473][ T1057]  ? free_object+0x9/0x70
[  558.138915][ T1057]  ? __hrtimer_init+0xe1/0x250
[  558.144055][ T1057]  ? lock_acquire+0x190/0x410
[  558.148820][ T1057]  ? __do_page_fault+0xaa2/0xdd0
[  558.154356][ T1057]  down_read+0x1f4/0x3f0
[  558.158789][ T1057]  ? down_read+0xa3/0x3f0
[  558.163456][ T1057]  ? down_read+0x1f4/0x3f0
[  558.167921][ T1057]  ? down_read_trylock+0x9b/0x1a0
[  558.173183][ T1057]  ? down_read_killable+0x460/0x460
[  558.178410][ T1057]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  558.185047][ T1057]  ? trace_hardirqs_on+0x67/0x240
[  558.193522][ T1057]  __do_page_fault+0xaa2/0xdd0
[  558.198357][ T1057]  ? page_fault+0x16/0x40
[  558.202981][ T1057]  do_page_fault+0x38/0x590
[  558.207492][ T1057]  page_fault+0x39/0x40
[  558.211917][ T1057] RIP: 0033:0x4ab79d
[  558.215886][ T1057] Code: Bad RIP value.
[  558.219933][ T1057] RSP: 002b:00007ffe83f4fa90 EFLAGS: 00010206
[  558.226372][ T1057] RAX: 00000000004ab8c0 RBX: 0000000000000001 RCX: 00000000006e0330
[  558.234646][ T1057] RDX: 0000000000407620 RSI: 0000000000000000 RDI: 00000000004ccb90
[  558.242835][ T1057] RBP: 00007ffe83f4fab0 R08: 000000037ffffa00 R09: 000000037ffffa00
[  558.250794][ T1057] R10: 00007ffe83f4fb20 R11: 0000000000000000 R12: 0000000000000001
[  558.259004][ T1057] R13: 00000000006e0320 R14: 000000000000002d R15: 20c49ba5e353f7cf
[  558.267175][ T1057] INFO: task syz-executor666:10344 blocked for more than 143 seconds.
[  558.275593][ T1057]       Not tainted 5.3.0-rc1-next-20190726 #53
[  558.282024][ T1057] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  558.290717][ T1057] syz-executor666 D27656 10344  10343 0x00004004
[  558.297315][ T1057] Call Trace:
[  558.300603][ T1057]  __schedule+0x755/0x15b0
[  558.305548][ T1057]  ? __sched_text_start+0x8/0x8
[  558.310496][ T1057]  ? rwlock_bug.part.0+0x90/0x90
[  558.315643][ T1057]  ? rwsem_down_read_slowpath+0x2b8/0xfb0
[  558.321397][ T1057]  schedule+0xa8/0x270
[  558.325882][ T1057]  rwsem_down_read_slowpath+0x4cc/0xfb0
[  558.331814][ T1057]  ? down_write_killable_nested+0x180/0x180
[  558.337789][ T1057]  ? mark_held_locks+0xf0/0xf0
[  558.342907][ T1057]  ? free_object+0x9/0x70
[  558.347312][ T1057]  ? __hrtimer_init+0xe1/0x250
[  558.352547][ T1057]  ? lock_acquire+0x190/0x410
[  558.357269][ T1057]  ? __do_page_fault+0xaa2/0xdd0
[  558.362900][ T1057]  down_read+0x1f4/0x3f0
[  558.367201][ T1057]  ? down_read+0xa3/0x3f0
[  558.371701][ T1057]  ? down_read+0x1f4/0x3f0
[  558.376197][ T1057]  ? down_read_trylock+0x9b/0x1a0
[  558.381213][ T1057]  ? down_read_killable+0x460/0x460
[  558.386739][ T1057]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  558.393226][ T1057]  ? trace_hardirqs_on+0x67/0x240
[  558.398345][ T1057]  __do_page_fault+0xaa2/0xdd0
[  558.403372][ T1057]  ? page_fault+0x16/0x40
[  558.407785][ T1057]  do_page_fault+0x38/0x590
[  558.412571][ T1057]  page_fault+0x39/0x40
[  558.416778][ T1057] RIP: 0033:0x4ab79d
[  558.420675][ T1057] Code: Bad RIP value.
[  558.425207][ T1057] RSP: 002b:00007ffe83f4fa90 EFLAGS: 00010206
[  558.431326][ T1057] RAX: 00000000004ab8c0 RBX: 0000000000000001 RCX: 00000000006e0330
[  558.439554][ T1057] RDX: 0000000000407620 RSI: 0000000000000000 RDI: 00000000004ccb90
[  558.447712][ T1057] RBP: 00007ffe83f4fab0 R08: 000000037ffffa00 R09: 000000037ffffa00
[  558.455846][ T1057] R10: 00007ffe83f4fb20 R11: 0000000000000000 R12: 0000000000000001
[  558.464246][ T1057] R13: 00000000006e0320 R14: 000000000000002d R15: 20c49ba5e353f7cf
[  558.472385][ T1057] INFO: task syz-executor666:10345 blocked for more than 143 seconds.
[  558.480532][ T1057]       Not tainted 5.3.0-rc1-next-20190726 #53
[  558.487095][ T1057] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  558.496027][ T1057] syz-executor666 D28456 10345  10343 0x80004004
[  558.502798][ T1057] Call Trace:
[  558.506099][ T1057]  __schedule+0x755/0x15b0
[  558.510543][ T1057]  ? __sched_text_start+0x8/0x8
[  558.515803][ T1057]  ? rwlock_bug.part.0+0x90/0x90
[  558.520804][ T1057]  ? rwsem_down_read_slowpath+0x647/0xfb0
[  558.526757][ T1057]  schedule+0xa8/0x270
[  558.530815][ T1057]  rwsem_down_read_slowpath+0x4cc/0xfb0
[  558.536759][ T1057]  ? down_write_killable_nested+0x180/0x180
[  558.543012][ T1057]  ? mark_held_locks+0xf0/0xf0
[  558.547843][ T1057]  ? lock_acquire+0x190/0x410
[  558.552831][ T1057]  ? do_exit+0x47b/0x2eb0
[  558.557156][ T1057]  down_read+0x1f4/0x3f0
[  558.561380][ T1057]  ? down_read+0xa3/0x3f0
[  558.565893][ T1057]  ? down_read+0x1f4/0x3f0
[  558.570304][ T1057]  ? down_read_killable+0x460/0x460
[  558.575758][ T1057]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  558.582167][ T1057]  ? sync_mm_rss+0xa4/0x1c0
[  558.586746][ T1057]  do_exit+0x47b/0x2eb0
[  558.590888][ T1057]  ? mm_update_next_owner+0x640/0x640
[  558.596563][ T1057]  ? __kasan_check_write+0x14/0x20
[  558.601840][ T1057]  ? lock_downgrade+0x920/0x920
[  558.606694][ T1057]  ? rwlock_bug.part.0+0x90/0x90
[  558.611797][ T1057]  ? get_signal+0x20e/0x2500
[  558.616437][ T1057]  do_group_exit+0x135/0x360
[  558.621020][ T1057]  get_signal+0x47c/0x2500
[  558.625713][ T1057]  ? put_ctx+0xd2/0x120
[  558.629925][ T1057]  ? _perf_ioctl+0x1340/0x1340
[  558.634864][ T1057]  ? do_vfs_ioctl+0x120/0x13e0
[  558.639614][ T1057]  do_signal+0x87/0x1700
[  558.644111][ T1057]  ? __fget+0x384/0x560
[  558.648259][ T1057]  ? setup_sigcontext+0x7d0/0x7d0
[  558.653447][ T1057]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  558.659780][ T1057]  ? do_futex+0x1dc0/0x1dc0
[  558.664458][ T1057]  ? trace_hardirqs_on+0x67/0x240
[  558.669472][ T1057]  exit_to_usermode_loop+0x286/0x380
[  558.674974][ T1057]  do_syscall_64+0x65f/0x760
[  558.679565][ T1057]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  558.685738][ T1057] RIP: 0033:0x4468f9
[  558.689624][ T1057] Code: 67 66 69 6c 65 3d 64 65 62 75 67 2e 63 22 0a 00 00 45 52 52 4f 52 3a 20 6f 75 74 20 6f 66 20 6d 65 6d 6f 72 79 20 64 75 72 69 <6e> 67 20 64 65 62 75 67 20 73 65 74 75 70 0a 00 00 00 00 00 00 00
[  558.709728][ T1057] RSP: 002b:00007fa837579db8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  558.718655][ T1057] RAX: fffffffffffffe00 RBX: 00000000006dbc28 RCX: 00000000004468f9
[  558.727290][ T1057] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00000000006dbc28
[  558.735425][ T1057] RBP: 00000000006dbc20 R08: 0000000000000000 R09: 0000000000000000
[  558.743689][ T1057] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc2c
[  558.753973][ T1057] R13: 00007ffe83f4fa8f R14: 00007fa83757a9c0 R15: 20c49ba5e353f7cf
[  558.762222][ T1057] INFO: task syz-executor666:10346 can't die for more than 144 seconds.
[  558.770630][ T1057] syz-executor666 R  running task    29704 10346  10343 0x00004006
[  558.778834][ T1057] Call Trace:
[  558.782307][ T1057]  ? trace_hardirqs_on_thunk+0x1a/0x20
[  558.787773][ T1057]  ? __this_cpu_preempt_check+0x31/0x210
[  558.793612][ T1057]  ? mark_held_locks+0xf0/0xf0
[  558.798374][ T1057]  ? __this_cpu_preempt_check+0x31/0x210
[  558.804660][ T1057]  ? perf_mmap+0x743/0x1920
[  558.809325][ T1057]  ? perf_mmap+0x734/0x1920
[  558.814049][ T1057]  ? perf_mmap+0x743/0x1920
[  558.818638][ T1057]  ? perf_mmap+0x743/0x1920
[  558.823344][ T1057]  ? retint_kernel+0x2b/0x2b
[  558.827922][ T1057]  ? trace_hardirqs_on_caller+0x6a/0x240
[  558.834370][ T1057]  ? mutex_lock_io_nested+0x1260/0x1260
[  558.839913][ T1057]  ? __kasan_check_write+0x14/0x20
[  558.845244][ T1057]  ? __mutex_unlock_slowpath+0x8e/0x6b0
[  558.850782][ T1057]  ? __this_cpu_preempt_check+0x3a/0x210
[  558.856729][ T1057]  ? wait_for_completion+0x440/0x440
[  558.862191][ T1057]  ? perf_mmap+0x80f/0x1920
[  558.866689][ T1057]  ? mutex_unlock+0xd/0x10
[  558.871091][ T1057]  ? perf_mmap+0x734/0x1920
[  558.875808][ T1057]  ? perf_release+0x50/0x50
[  558.880342][ T1057]  ? memset+0x32/0x40
[  558.884505][ T1057]  ? mmap_region+0xc35/0x1760
[  558.889178][ T1057]  ? __x64_sys_brk+0x760/0x760
[  558.894136][ T1057]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  558.900566][ T1057]  ? get_unmapped_area+0x2ad/0x3d0
[  558.905848][ T1057]  ? do_mmap+0x82e/0x1150
[  558.910176][ T1057]  ? vm_mmap_pgoff+0x1c5/0x230
[  558.915251][ T1057]  ? vma_is_stack_for_current+0xd0/0xd0
[  558.920878][ T1057]  ? ksys_dup3+0x3e0/0x3e0
[  558.925496][ T1057]  ? finish_task_switch+0x147/0x720
[  558.930692][ T1057]  ? ksys_mmap_pgoff+0x4aa/0x630
[  558.935896][ T1057]  ? find_mergeable_anon_vma+0x2e0/0x2e0
[  558.941756][ T1057]  ? __kasan_check_write+0x14/0x20
[  558.946954][ T1057]  ? switch_fpu_return+0x1fa/0x4f0
[  558.952238][ T1057]  ? __x64_sys_mmap+0xe9/0x1b0
[  558.957001][ T1057]  ? do_syscall_64+0xfa/0x760
[  558.961862][ T1057]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  558.967911][ T1057] INFO: lockdep is turned off.
[  558.972804][ T1057] NMI backtrace for cpu 0
[  558.977120][ T1057] CPU: 0 PID: 1057 Comm: khungtaskd Not tainted 5.3.0-rc1-next-20190726 #53
[  558.985885][ T1057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  558.995918][ T1057] Call Trace:
[  558.999263][ T1057]  dump_stack+0x172/0x1f0
[  559.003586][ T1057]  nmi_cpu_backtrace.cold+0x70/0xb2
[  559.008765][ T1057]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  559.014991][ T1057]  ? lapic_can_unplug_cpu.cold+0x45/0x45
[  559.020607][ T1057]  nmi_trigger_cpumask_backtrace+0x23b/0x28b
[  559.026575][ T1057]  arch_trigger_cpumask_backtrace+0x14/0x20
[  559.032456][ T1057]  watchdog+0xc99/0x1360
[  559.036684][ T1057]  kthread+0x361/0x430
[  559.040731][ T1057]  ? reset_hung_task_detector+0x30/0x30
[  559.046311][ T1057]  ? kthread_cancel_delayed_work_sync+0x20/0x20
[  559.052542][ T1057]  ret_from_fork+0x24/0x30
[  559.057019][ T1057] Sending NMI from CPU 0 to CPUs 1:
[  559.062510][    C1] NMI backtrace for cpu 1
[  559.062515][    C1] CPU: 1 PID: 10346 Comm: syz-executor666 Not tainted 5.3.0-rc1-next-20190726 #53
[  559.062520][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  559.062522][    C1] RIP: 0010:__mutex_unlock_slowpath+0x93/0x6b0
[  559.062530][    C1] Code: f3 65 48 8b 04 25 28 00 00 00 48 89 45 d0 31 c0 48 8d 45 98 48 c7 45 98 01 00 00 00 48 89 45 a0 e8 52 3d 1a fa be 08 00 00 00 <4c> 89 ff e8 35 51 6e fa 4c 89 f8 48 c1 e8 03 80 3c 18 00 0f 85 35
[  559.062532][    C1] RSP: 0018:ffff8880a856f9d8 EFLAGS: 00000296
[  559.062537][    C1] RAX: 0000000000000000 RBX: dffffc0000000000 RCX: 1ffffffff134be76
[  559.062540][    C1] RDX: dffffc0000000000 RSI: 0000000000000008 RDI: 0000000000000286
[  559.062543][    C1] RBP: ffff8880a856fa88 R08: 1ffffffff134b838 R09: fffffbfff134b839
[  559.062547][    C1] R10: fffffbfff134b838 R11: ffffffff89a5c1c7 R12: ffff888089c52a80
[  559.062550][    C1] R13: ffff8880a856fb70 R14: 0000000000000000 R15: ffff8880a8b0d730
[  559.062554][    C1] FS:  00007fa837559700(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000
[  559.062556][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  559.062560][    C1] CR2: ffffffffff600400 CR3: 00000000913ce000 CR4: 00000000001406e0
[  559.062561][    C1] Call Trace:
[  559.062563][    C1]  ? __this_cpu_preempt_check+0x3a/0x210
[  559.062565][    C1]  ? retint_kernel+0x2b/0x2b
[  559.062567][    C1]  ? wait_for_completion+0x440/0x440
[  559.062569][    C1]  mutex_unlock+0xd/0x10
[  559.062571][    C1]  perf_mmap+0x734/0x1920
[  559.062573][    C1]  ? perf_release+0x50/0x50
[  559.062575][    C1]  ? memset+0x32/0x40
[  559.062577][    C1]  mmap_region+0xc35/0x1760
[  559.062579][    C1]  ? __x64_sys_brk+0x760/0x760
[  559.062581][    C1]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  559.062584][    C1]  ? get_unmapped_area+0x2ad/0x3d0
[  559.062585][    C1]  do_mmap+0x82e/0x1150
[  559.062587][    C1]  vm_mmap_pgoff+0x1c5/0x230
[  559.062590][    C1]  ? vma_is_stack_for_current+0xd0/0xd0
[  559.062591][    C1]  ? ksys_dup3+0x3e0/0x3e0
[  559.062594][    C1]  ? finish_task_switch+0x147/0x720
[  559.062596][    C1]  ksys_mmap_pgoff+0x4aa/0x630
[  559.062598][    C1]  ? find_mergeable_anon_vma+0x2e0/0x2e0
[  559.062600][    C1]  ? __kasan_check_write+0x14/0x20
[  559.062602][    C1]  ? switch_fpu_return+0x1fa/0x4f0
[  559.062604][    C1]  __x64_sys_mmap+0xe9/0x1b0
[  559.062606][    C1]  do_syscall_64+0xfa/0x760
[  559.062609][    C1]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  559.062610][    C1] RIP: 0033:0x4468f9
[  559.062618][    C1] Code: e8 5c b3 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 08 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[  559.062620][    C1] RSP: 002b:00007fa837558da8 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  559.062626][    C1] RAX: ffffffffffffffda RBX: 00000000006dbc38 RCX: 00000000004468f9
[  559.062629][    C1] RDX: 0000000003000001 RSI: 0000000000003000 RDI: 0000000020ffd000
[  559.062632][    C1] RBP: 00000000006dbc30 R08: 0000000000000003 R09: 0000000000000000
[  559.062635][    C1] R10: 0000000000001011 R11: 0000000000000246 R12: 00000000006dbc3c
[  559.062638][    C1] R13: 00007ffe83f4fa8f R14: 00007fa8375599c0 R15: 20c49ba5e353f7cf
[  559.064400][ T1057] Kernel panic - not syncing: hung_task: blocked tasks
[  559.378900][ T1057] CPU: 0 PID: 1057 Comm: khungtaskd Not tainted 5.3.0-rc1-next-20190726 #53
[  559.387654][ T1057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  559.397704][ T1057] Call Trace:
[  559.401004][ T1057]  dump_stack+0x172/0x1f0
[  559.405345][ T1057]  panic+0x2dc/0x755
[  559.409241][ T1057]  ? add_taint.cold+0x16/0x16
[  559.413914][ T1057]  ? lapic_can_unplug_cpu.cold+0x45/0x45
[  559.419545][ T1057]  ? ___preempt_schedule+0x16/0x20
[  559.424659][ T1057]  ? nmi_trigger_cpumask_backtrace+0x21b/0x28b
[  559.430812][ T1057]  ? nmi_trigger_cpumask_backtrace+0x24c/0x28b
[  559.436969][ T1057]  ? nmi_trigger_cpumask_backtrace+0x256/0x28b
[  559.443119][ T1057]  ? nmi_trigger_cpumask_backtrace+0x21b/0x28b
[  559.449273][ T1057]  watchdog+0xcaa/0x1360
[  559.453701][ T1057]  kthread+0x361/0x430
[  559.457788][ T1057]  ? reset_hung_task_detector+0x30/0x30
[  559.463330][ T1057]  ? kthread_cancel_delayed_work_sync+0x20/0x20
[  559.469569][ T1057]  ret_from_fork+0x24/0x30
[  559.474910][ T1057] Kernel Offset: disabled
[  559.479236][ T1057] Rebooting in 86400 seconds..