[   22.026930] audit: type=1800 audit(1572897560.778:26): pid=5707 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   22.065408] audit: type=1800 audit(1572897560.778:27): pid=5707 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   34.262768] IPVS: ftp: loaded support on port[0] = 21
[   62.314031] can: request_module (can-proto-0) failed.
[   62.323537] can: request_module (can-proto-0) failed.
Warning: Permanently added '10.128.1.51' (ECDSA) to the list of known hosts.
2019/11/04 20:00:10 parsed 1 programs
2019/11/04 20:00:10 executed programs: 0
[   72.231750] IPVS: ftp: loaded support on port[0] = 21
[   72.281145] IPVS: ftp: loaded support on port[0] = 21
[   72.298437] IPVS: ftp: loaded support on port[0] = 21
[   72.322650] IPVS: ftp: loaded support on port[0] = 21
[   72.332878] IPVS: ftp: loaded support on port[0] = 21
[   72.346496] IPVS: ftp: loaded support on port[0] = 21
[   73.178566] bridge0: port 1(bridge_slave_0) entered blocking state
[   73.188933] bridge0: port 1(bridge_slave_0) entered disabled state
[   73.197587] device bridge_slave_0 entered promiscuous mode
[   73.227891] bridge0: port 2(bridge_slave_1) entered blocking state
[   73.234444] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.244762] device bridge_slave_1 entered promiscuous mode
[   73.361626] bridge0: port 1(bridge_slave_0) entered blocking state
[   73.369920] bridge0: port 1(bridge_slave_0) entered disabled state
[   73.379065] device bridge_slave_0 entered promiscuous mode
[   73.386346] bridge0: port 1(bridge_slave_0) entered blocking state
[   73.392708] bridge0: port 1(bridge_slave_0) entered disabled state
[   73.401632] device bridge_slave_0 entered promiscuous mode
[   73.408723] bridge0: port 1(bridge_slave_0) entered blocking state
[   73.416208] bridge0: port 1(bridge_slave_0) entered disabled state
[   73.423261] device bridge_slave_0 entered promiscuous mode
[   73.439809] bridge0: port 1(bridge_slave_0) entered blocking state
[   73.446588] bridge0: port 1(bridge_slave_0) entered disabled state
[   73.453800] device bridge_slave_0 entered promiscuous mode
[   73.461483] bridge0: port 1(bridge_slave_0) entered blocking state
[   73.468744] bridge0: port 1(bridge_slave_0) entered disabled state
[   73.476427] device bridge_slave_0 entered promiscuous mode
[   73.485206] bridge0: port 2(bridge_slave_1) entered blocking state
[   73.491609] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.499408] device bridge_slave_1 entered promiscuous mode
[   73.509944] bridge0: port 2(bridge_slave_1) entered blocking state
[   73.517830] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.525268] device bridge_slave_1 entered promiscuous mode
[   73.540875] bridge0: port 2(bridge_slave_1) entered blocking state
[   73.549564] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.558245] device bridge_slave_1 entered promiscuous mode
[   73.567299] bridge0: port 2(bridge_slave_1) entered blocking state
[   73.573667] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.582264] device bridge_slave_1 entered promiscuous mode
[   73.589076] bridge0: port 2(bridge_slave_1) entered blocking state
[   73.595610] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.602732] device bridge_slave_1 entered promiscuous mode
[   73.612519] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   73.663599] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   73.802082] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   73.852740] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   73.875900] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   73.893107] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   73.906700] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   73.935607] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   73.949009] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   73.963813] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   73.975547] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   73.992764] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   74.015604] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   74.040610] team0: Port device team_slave_0 added
[   74.046707] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   74.066133] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   74.089104] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   74.097788] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   74.114914] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   74.125762] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   74.135034] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   74.148397] team0: Port device team_slave_1 added
[   74.170030] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   74.224682] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   74.236330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   74.252313] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   74.273167] team0: Port device team_slave_0 added
[   74.313605] team0: Port device team_slave_0 added
[   74.333289] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   74.355237] team0: Port device team_slave_0 added
[   74.368969] team0: Port device team_slave_1 added
[   74.377601] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   74.392807] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   74.411092] team0: Port device team_slave_0 added
[   74.420125] team0: Port device team_slave_1 added
[   74.437127] team0: Port device team_slave_0 added
[   74.443945] team0: Port device team_slave_1 added
[   74.460455] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   74.478665] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   74.490854] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   74.502564] team0: Port device team_slave_1 added
[   74.517041] team0: Port device team_slave_1 added
[   74.535413] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   74.543609] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   74.572539] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   74.598817] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   74.617938] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   74.626253] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   74.635608] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   74.645084] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   74.660820] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   74.677612] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   74.717604] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   74.732160] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   74.757775] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   74.766033] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   74.774208] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   74.782489] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   74.790640] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   74.798567] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   74.807053] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   74.817466] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   74.830176] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   74.844585] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   74.852573] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   74.865956] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   74.873868] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   74.900422] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   74.908908] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   74.936237] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   74.950434] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   75.286618] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.293393] bridge0: port 2(bridge_slave_1) entered forwarding state
[   75.300962] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.307668] bridge0: port 1(bridge_slave_0) entered forwarding state
[   75.403383] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.410389] bridge0: port 2(bridge_slave_1) entered forwarding state
[   75.417109] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.423632] bridge0: port 1(bridge_slave_0) entered forwarding state
[   75.450547] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.457160] bridge0: port 2(bridge_slave_1) entered forwarding state
[   75.464074] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.470509] bridge0: port 1(bridge_slave_0) entered forwarding state
[   75.528984] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.535696] bridge0: port 2(bridge_slave_1) entered forwarding state
[   75.542916] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.549569] bridge0: port 1(bridge_slave_0) entered forwarding state
[   75.565717] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.572320] bridge0: port 2(bridge_slave_1) entered forwarding state
[   75.579005] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.585642] bridge0: port 1(bridge_slave_0) entered forwarding state
[   75.602688] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.609302] bridge0: port 2(bridge_slave_1) entered forwarding state
[   75.616124] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.623211] bridge0: port 1(bridge_slave_0) entered forwarding state
[   75.955060] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   75.976826] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   75.984047] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   75.993072] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   76.000781] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   76.008686] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   77.502419] 8021q: adding VLAN 0 to HW filter on device bond0
[   77.603320] 8021q: adding VLAN 0 to HW filter on device bond0
[   77.623558] 8021q: adding VLAN 0 to HW filter on device bond0
[   77.650676] 8021q: adding VLAN 0 to HW filter on device bond0
[   77.695434] 8021q: adding VLAN 0 to HW filter on device bond0
[   77.725384] 8021q: adding VLAN 0 to HW filter on device bond0
[   77.891904] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   77.900915] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   77.999336] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   78.012980] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   78.043099] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   78.052305] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   78.060346] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   78.068684] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   78.096336] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   78.103634] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   78.132424] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   78.155543] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   78.167140] 8021q: adding VLAN 0 to HW filter on device team0
[   78.213537] 8021q: adding VLAN 0 to HW filter on device team0
[   78.244377] 8021q: adding VLAN 0 to HW filter on device team0
[   78.279466] 8021q: adding VLAN 0 to HW filter on device team0
[   78.342528] 8021q: adding VLAN 0 to HW filter on device team0
[   78.361770] 8021q: adding VLAN 0 to HW filter on device team0
2019/11/04 20:00:18 executed programs: 6
[   79.468562] kasan: CONFIG_KASAN_INLINE enabled
[   79.475808] kasan: GPF could be caused by NULL-ptr deref or user memory access
[   79.492542] general protection fault: 0000 [#1] PREEMPT SMP KASAN
[   79.499859] CPU: 0 PID: 7537 Comm: syz-executor0 Not tainted 5.4.0-rc6 #0
[   79.508365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   79.518230] RIP: 0010:rdma_listen+0x24a/0x7f0
[   79.523161] Code: 8b a3 c8 01 00 00 31 f6 48 c7 c7 20 2e bc 88 e8 0c 25 cb 01 48 b8 00 00 00 00 00 fc ff df 49 8d 7c 24 08 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 11 05 00 00 48 b8 00 00 00 00 00 fc ff df 4d 8b
[   79.542876] RSP: 0018:ffff8881d73efc48 EFLAGS: 00010202
[   79.548241] RAX: dffffc0000000000 RBX: ffff8881c4693000 RCX: 0000000000000000
[   79.555509] RDX: 0000000000000001 RSI: 0000000000000004 RDI: 0000000000000008
[   79.562791] RBP: ffff8881d73efc78 R08: fffffbfff11785cd R09: fffffbfff11785cd
[   79.570140] R10: ffff8881d73efc38 R11: ffffffff88bc2e63 R12: 0000000000000000
[   79.577984] R13: 0000000000000400 R14: ffff8881d73efd90 R15: ffff8881c803a100
[   79.585248] FS:  00007fd541eca700(0000) GS:ffff8881db000000(0000) knlGS:0000000000000000
[   79.593565] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   79.599507] CR2: ffffffffff600400 CR3: 00000001aa946000 CR4: 00000000001406f0
[   79.606814] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   79.614435] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   79.622229] Call Trace:
[   79.624829]  ? _raw_spin_unlock+0x2c/0x50
[   79.629152]  ucma_listen+0xe1/0x150
[   79.633480]  ? ucma_notify+0x140/0x140
[   79.637590]  ? __kasan_check_write+0x14/0x20
[   79.642699]  ? _copy_from_user+0xd6/0x110
[   79.647349]  ucma_write+0x206/0x2e0
[   79.651700]  ? ucma_open+0x250/0x250
[   79.655522]  ? apparmor_file_permission+0x15/0x20
[   79.660895]  ? security_file_permission+0x52/0x2a0
[   79.666353]  __vfs_write+0x61/0x110
[   79.670254]  vfs_write+0x18a/0x520
[   79.673870]  ksys_write+0x197/0x220
[   79.677651]  ? __ia32_sys_read+0xa0/0xa0
[   79.681851]  ? do_syscall_64+0x21/0x5e0
[   79.686126]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   79.691923]  __x64_sys_write+0x6e/0xb0
[   79.695911]  do_syscall_64+0xd0/0x5e0
[   79.699870]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   79.705144] RIP: 0033:0x4576b9
[   79.708334] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   79.729225] RSP: 002b:00007fd541ec9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   79.737424] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000004576b9
[   79.744855] RDX: 0000000000000010 RSI: 0000000020000200 RDI: 0000000000000005
[   79.752914] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000
[   79.760756] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd541eca6d4
[   79.768768] R13: 00000000004c57bf R14: 00000000004d9400 R15: 00000000ffffffff
[   79.776299] Modules linked in:
[   79.798269] ---[ end trace 17b8cfeb73472c96 ]---
[   79.803501] kobject: 'loop4' (00000000e1995677): kobject_uevent_env
[   79.811980] kobject: 'loop4' (00000000e1995677): fill_kobj_path: path = '/devices/virtual/block/loop4'
[   79.825859] RIP: 0010:rdma_listen+0x24a/0x7f0
[   79.831006] Code: 8b a3 c8 01 00 00 31 f6 48 c7 c7 20 2e bc 88 e8 0c 25 cb 01 48 b8 00 00 00 00 00 fc ff df 49 8d 7c 24 08 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 11 05 00 00 48 b8 00 00 00 00 00 fc ff df 4d 8b
[   79.849529] kobject: 'loop1' (000000009cd06998): kobject_uevent_env
[   79.851189] RSP: 0018:ffff8881d73efc48 EFLAGS: 00010202
[   79.863665] kobject: 'loop1' (000000009cd06998): fill_kobj_path: path = '/devices/virtual/block/loop1'
[   79.868661] RAX: dffffc0000000000 RBX: ffff8881c4693000 RCX: 0000000000000000
[   79.882089] RDX: 0000000000000001 RSI: 0000000000000004 RDI: 0000000000000008
[   79.889811] RBP: ffff8881d73efc78 R08: fffffbfff11785cd R09: fffffbfff11785cd
[   79.897225] R10: ffff8881d73efc38 R11: ffffffff88bc2e63 R12: 0000000000000000
[   79.900409] kobject: 'loop2' (000000006933d6a5): kobject_uevent_env
[   79.904782] R13: 0000000000000400 R14: ffff8881d73efd90 R15: ffff8881c803a100
[   79.914712] kobject: 'loop2' (000000006933d6a5): fill_kobj_path: path = '/devices/virtual/block/loop2'
[   79.922741] FS:  00007fd541eca700(0000) GS:ffff8881db000000(0000) knlGS:0000000000000000
[   79.938735] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   79.944874] CR2: 00000000004d4ae0 CR3: 00000001aa946000 CR4: 00000000001406f0
[   79.952980] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   79.961822] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   79.969597] Kernel panic - not syncing: Fatal exception
[   79.976991] Kernel Offset: disabled
[   79.981008] Rebooting in 86400 seconds..