[[36minfo[39;49m] Using makefile-style concurrent boot in runlevel 2.
[   25.465479] audit: type=1800 audit(1544030918.318:21): pid=5826 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="bootlogs" dev="sda1" ino=2419 res=0
[   25.499232] audit: type=1800 audit(1544030918.318:22): pid=5826 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="motd" dev="sda1" ino=2447 res=0
[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   31.466376] sshd (5963) used greatest stack depth: 15744 bytes left
Warning: Permanently added '10.128.0.75' (ECDSA) to the list of known hosts.
2018/12/05 17:28:51 parsed 1 programs
2018/12/05 17:28:53 executed programs: 0
[   40.759240] IPVS: ftp: loaded support on port[0] = 21
[   40.996327] bridge0: port 1(bridge_slave_0) entered blocking state
[   41.003381] bridge0: port 1(bridge_slave_0) entered disabled state
[   41.010892] device bridge_slave_0 entered promiscuous mode
[   41.029556] bridge0: port 2(bridge_slave_1) entered blocking state
[   41.035947] bridge0: port 2(bridge_slave_1) entered disabled state
[   41.043041] device bridge_slave_1 entered promiscuous mode
[   41.060305] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   41.077885] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   41.125712] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   41.146169] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   41.218881] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   41.226107] team0: Port device team_slave_0 added
[   41.242105] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   41.249395] team0: Port device team_slave_1 added
[   41.266956] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   41.286105] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   41.304106] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   41.322837] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   41.463999] bridge0: port 2(bridge_slave_1) entered blocking state
[   41.470480] bridge0: port 2(bridge_slave_1) entered forwarding state
[   41.477537] bridge0: port 1(bridge_slave_0) entered blocking state
[   41.483875] bridge0: port 1(bridge_slave_0) entered forwarding state
[   41.970815] 8021q: adding VLAN 0 to HW filter on device bond0
[   42.020805] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   42.070146] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   42.076289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   42.084368] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   42.129730] 8021q: adding VLAN 0 to HW filter on device team0
2018/12/05 17:28:58 executed programs: 94
2018/12/05 17:29:03 executed programs: 196
2018/12/05 17:29:09 executed programs: 346
[   58.949962] vivid-000: kernel_thread() failed
[   59.770664] ==================================================================
[   59.778205] BUG: KASAN: null-ptr-deref in kthread_stop+0x10d/0x900
[   59.784513] Write of size 4 at addr 000000000000001c by task syz-executor0/8305
[   59.791942] 
[   59.793564] CPU: 0 PID: 8305 Comm: syz-executor0 Not tainted 4.20.0-rc5+ #265
[   59.800821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   59.810157] Call Trace:
[   59.812734]  dump_stack+0x244/0x39d
[   59.816347]  ? dump_stack_print_info.cold.1+0x20/0x20
[   59.821528]  ? vprintk_func+0x85/0x181
[   59.825822]  kasan_report.cold.8+0x6d/0x309
[   59.830132]  ? kthread_stop+0x10d/0x900
[   59.834094]  check_memory_region+0x13e/0x1b0
[   59.838491]  kasan_check_write+0x14/0x20
[   59.842536]  kthread_stop+0x10d/0x900
[   59.846321]  ? kthread_unpark+0x160/0x160
[   59.850462]  ? __lock_is_held+0xb5/0x140
[   59.854527]  vivid_stop_generating_vid_cap+0x2bb/0x9ae
[   59.859805]  ? vivid_start_generating_vid_cap+0x4c0/0x4c0
[   59.865331]  ? _vb2_fop_release+0x3f/0x2b0
[   59.869555]  ? mutex_trylock+0x2b0/0x2b0
[   59.873602]  ? vivid_fop_release+0x66/0x440
[   59.877907]  ? __mutex_lock+0x85e/0x16f0
[   59.881957]  vid_cap_stop_streaming+0x8d/0xe0
[   59.886436]  ? vid_cap_buf_queue+0x310/0x310
[   59.890829]  __vb2_queue_cancel+0x171/0xd20
[   59.895338]  ? lock_downgrade+0x900/0x900
[   59.899581]  ? vb2_buffer_done+0xb90/0xb90
[   59.903810]  ? find_held_lock+0x36/0x1c0
[   59.907865]  ? mark_held_locks+0xc7/0x130
[   59.912001]  ? kasan_check_write+0x14/0x20
[   59.916225]  ? __mutex_unlock_slowpath+0x197/0x8c0
[   59.921141]  ? kasan_check_read+0x11/0x20
[   59.925272]  ? wait_for_completion+0x8a0/0x8a0
[   59.929973]  ? trace_hardirqs_off_caller+0x310/0x310
[   59.935066]  vb2_core_streamoff+0x60/0x140
[   59.939287]  __vb2_cleanup_fileio+0x73/0x160
[   59.943683]  vb2_core_queue_release+0x1e/0x80
[   59.948166]  _vb2_fop_release+0x1d2/0x2b0
[   59.952301]  vb2_fop_release+0x77/0xc0
[   59.956174]  vivid_fop_release+0x18e/0x440
[   59.960395]  ? vivid_remove+0x460/0x460
[   59.964356]  v4l2_release+0x224/0x3a0
[   59.968140]  ? dev_debug_store+0x140/0x140
[   59.972358]  __fput+0x385/0xa30
[   59.975623]  ? get_max_files+0x20/0x20
[   59.979496]  ? trace_hardirqs_on+0xbd/0x310
[   59.983810]  ? kasan_check_read+0x11/0x20
[   59.987941]  ? task_work_run+0x1af/0x2a0
[   59.991992]  ? trace_hardirqs_off_caller+0x310/0x310
[   59.997090]  ____fput+0x15/0x20
[   60.000353]  task_work_run+0x1e8/0x2a0
[   60.004358]  ? task_work_cancel+0x240/0x240
[   60.008664]  ? __fget+0x4aa/0x740
[   60.012107]  get_signal+0x1558/0x1980
[   60.015901]  ? compat_poll_select_copy_remaining+0x6c0/0x6c0
[   60.021683]  ? rcu_softirq_qs+0x20/0x20
[   60.025642]  ? ptrace_notify+0x130/0x130
[   60.029698]  ? find_held_lock+0x36/0x1c0
[   60.033747]  ? __might_fault+0x12b/0x1e0
[   60.037802]  ? compat_poll_select_copy_remaining+0x462/0x6c0
[   60.043598]  ? lock_downgrade+0x900/0x900
[   60.047738]  do_signal+0x9c/0x21c0
[   60.051265]  ? pvclock_read_flags+0x160/0x160
[   60.055741]  ? posix_ktime_get_ts+0x15/0x20
[   60.060048]  ? trace_hardirqs_off_caller+0x310/0x310
[   60.065140]  ? setup_sigcontext+0x7d0/0x7d0
[   60.069451]  ? exit_to_usermode_loop+0x8c/0x380
[   60.074105]  ? exit_to_usermode_loop+0x8c/0x380
[   60.078762]  ? lockdep_hardirqs_on+0x3bb/0x5b0
[   60.083348]  ? trace_hardirqs_on+0xbd/0x310
[   60.087656]  ? do_fast_syscall_32+0xcd5/0xfb2
[   60.092148]  ? trace_hardirqs_off_caller+0x310/0x310
[   60.097241]  ? get_old_timespec32+0x2a0/0x2a0
[   60.101722]  ? do_fast_syscall_32+0x150/0xfb2
[   60.106199]  ? do_fast_syscall_32+0x150/0xfb2
[   60.110697]  exit_to_usermode_loop+0x2e5/0x380
[   60.115266]  ? __bpf_trace_sys_exit+0x30/0x30
[   60.119750]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   60.125303]  do_fast_syscall_32+0xcd5/0xfb2
[   60.129614]  ? do_int80_syscall_32+0x890/0x890
[   60.134181]  ? entry_SYSENTER_compat+0x68/0x7f
[   60.138755]  ? trace_hardirqs_off_caller+0xbb/0x310
[   60.143776]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   60.148608]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   60.153437]  ? trace_hardirqs_on_caller+0x310/0x310
[   60.158437]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[   60.163448]  ? prepare_exit_to_usermode+0x291/0x3b0
[   60.168461]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   60.173292]  entry_SYSENTER_compat+0x70/0x7f
[   60.177683] RIP: 0023:0xf7f61a29
[   60.181058] Code: 85 d2 74 02 89 0a 5b 5d c3 8b 04 24 c3 8b 14 24 c3 8b 3c 24 c3 90 90 90 90 90 90 90 90 90 90 90 90 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[   60.199960] RSP: 002b:00000000f7f5d0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000135
[   60.207667] RAX: 0000000000000003 RBX: 0000000020000000 RCX: 0000000000000003
[   60.214919] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   60.222172] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   60.229438] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[   60.236699] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   60.243968] ==================================================================
[   60.251308] Disabling lock debugging due to kernel taint
[   60.257215] Kernel panic - not syncing: panic_on_warn set ...
[   60.263103] CPU: 0 PID: 8305 Comm: syz-executor0 Tainted: G    B             4.20.0-rc5+ #265
[   60.271752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   60.281120] Call Trace:
[   60.283700]  dump_stack+0x244/0x39d
[   60.287315]  ? dump_stack_print_info.cold.1+0x20/0x20
[   60.292515]  panic+0x2ad/0x55c
[   60.295696]  ? add_taint.cold.5+0x16/0x16
[   60.299827]  ? preempt_schedule+0x4d/0x60
[   60.303959]  ? ___preempt_schedule+0x16/0x18
[   60.308354]  ? trace_hardirqs_on+0xb4/0x310
[   60.312676]  kasan_end_report+0x47/0x4f
[   60.316633]  kasan_report.cold.8+0x76/0x309
[   60.320942]  ? kthread_stop+0x10d/0x900
[   60.324906]  check_memory_region+0x13e/0x1b0
[   60.329304]  kasan_check_write+0x14/0x20
[   60.333358]  kthread_stop+0x10d/0x900
[   60.337143]  ? kthread_unpark+0x160/0x160
[   60.341284]  ? __lock_is_held+0xb5/0x140
[   60.345336]  vivid_stop_generating_vid_cap+0x2bb/0x9ae
[   60.350600]  ? vivid_start_generating_vid_cap+0x4c0/0x4c0
[   60.356123]  ? _vb2_fop_release+0x3f/0x2b0
[   60.360343]  ? mutex_trylock+0x2b0/0x2b0
[   60.364387]  ? vivid_fop_release+0x66/0x440
[   60.368695]  ? __mutex_lock+0x85e/0x16f0
[   60.372850]  vid_cap_stop_streaming+0x8d/0xe0
[   60.377329]  ? vid_cap_buf_queue+0x310/0x310
[   60.381736]  __vb2_queue_cancel+0x171/0xd20
[   60.386054]  ? lock_downgrade+0x900/0x900
[   60.390185]  ? vb2_buffer_done+0xb90/0xb90
[   60.394402]  ? find_held_lock+0x36/0x1c0
[   60.398448]  ? mark_held_locks+0xc7/0x130
[   60.402583]  ? kasan_check_write+0x14/0x20
[   60.406807]  ? __mutex_unlock_slowpath+0x197/0x8c0
[   60.411735]  ? kasan_check_read+0x11/0x20
[   60.415890]  ? wait_for_completion+0x8a0/0x8a0
[   60.420457]  ? trace_hardirqs_off_caller+0x310/0x310
[   60.425549]  vb2_core_streamoff+0x60/0x140
[   60.429782]  __vb2_cleanup_fileio+0x73/0x160
[   60.434172]  vb2_core_queue_release+0x1e/0x80
[   60.438651]  _vb2_fop_release+0x1d2/0x2b0
[   60.442786]  vb2_fop_release+0x77/0xc0
[   60.446659]  vivid_fop_release+0x18e/0x440
[   60.450893]  ? vivid_remove+0x460/0x460
[   60.454870]  v4l2_release+0x224/0x3a0
[   60.458671]  ? dev_debug_store+0x140/0x140
[   60.462893]  __fput+0x385/0xa30
[   60.466158]  ? get_max_files+0x20/0x20
[   60.470027]  ? trace_hardirqs_on+0xbd/0x310
[   60.474331]  ? kasan_check_read+0x11/0x20
[   60.478462]  ? task_work_run+0x1af/0x2a0
[   60.482509]  ? trace_hardirqs_off_caller+0x310/0x310
[   60.487596]  ____fput+0x15/0x20
[   60.490861]  task_work_run+0x1e8/0x2a0
[   60.494734]  ? task_work_cancel+0x240/0x240
[   60.499083]  ? __fget+0x4aa/0x740
[   60.502527]  get_signal+0x1558/0x1980
[   60.506313]  ? compat_poll_select_copy_remaining+0x6c0/0x6c0
[   60.512094]  ? rcu_softirq_qs+0x20/0x20
[   60.516050]  ? ptrace_notify+0x130/0x130
[   60.520099]  ? find_held_lock+0x36/0x1c0
[   60.524147]  ? __might_fault+0x12b/0x1e0
[   60.528195]  ? compat_poll_select_copy_remaining+0x462/0x6c0
[   60.533974]  ? lock_downgrade+0x900/0x900
[   60.538106]  do_signal+0x9c/0x21c0
[   60.541635]  ? pvclock_read_flags+0x160/0x160
[   60.546548]  ? posix_ktime_get_ts+0x15/0x20
[   60.550858]  ? trace_hardirqs_off_caller+0x310/0x310
[   60.555946]  ? setup_sigcontext+0x7d0/0x7d0
[   60.560258]  ? exit_to_usermode_loop+0x8c/0x380
[   60.564923]  ? exit_to_usermode_loop+0x8c/0x380
[   60.569582]  ? lockdep_hardirqs_on+0x3bb/0x5b0
[   60.574148]  ? trace_hardirqs_on+0xbd/0x310
[   60.578462]  ? do_fast_syscall_32+0xcd5/0xfb2
[   60.582941]  ? trace_hardirqs_off_caller+0x310/0x310
[   60.588028]  ? get_old_timespec32+0x2a0/0x2a0
[   60.592505]  ? do_fast_syscall_32+0x150/0xfb2
[   60.596983]  ? do_fast_syscall_32+0x150/0xfb2
[   60.601473]  exit_to_usermode_loop+0x2e5/0x380
[   60.606046]  ? __bpf_trace_sys_exit+0x30/0x30
[   60.610527]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   60.616053]  do_fast_syscall_32+0xcd5/0xfb2
[   60.620359]  ? do_int80_syscall_32+0x890/0x890
[   60.624924]  ? entry_SYSENTER_compat+0x68/0x7f
[   60.629494]  ? trace_hardirqs_off_caller+0xbb/0x310
[   60.634492]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   60.639405]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   60.644580]  ? trace_hardirqs_on_caller+0x310/0x310
[   60.649582]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[   60.654677]  ? prepare_exit_to_usermode+0x291/0x3b0
[   60.659684]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   60.664512]  entry_SYSENTER_compat+0x70/0x7f
[   60.668919] RIP: 0023:0xf7f61a29
[   60.672285] Code: 85 d2 74 02 89 0a 5b 5d c3 8b 04 24 c3 8b 14 24 c3 8b 3c 24 c3 90 90 90 90 90 90 90 90 90 90 90 90 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[   60.691171] RSP: 002b:00000000f7f5d0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000135
[   60.698866] RAX: 0000000000000003 RBX: 0000000020000000 RCX: 0000000000000003
[   60.706117] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   60.713377] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   60.720630] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[   60.727884] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   60.736304] Kernel Offset: disabled
[   60.739930] Rebooting in 86400 seconds..