[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   40.939387][   T26] audit: type=1800 audit(1569060705.032:25): pid=7693 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[   40.968701][   T26] audit: type=1800 audit(1569060705.032:26): pid=7693 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   41.002533][   T26] audit: type=1800 audit(1569060705.032:27): pid=7693 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.74' (ECDSA) to the list of known hosts.
2019/09/21 10:36:36 parsed 1 programs
2019/09/21 10:36:38 executed programs: 0
syzkaller login: [ 1534.853453][ T7873] IPVS: ftp: loaded support on port[0] = 21
[ 1534.864403][ T7877] IPVS: ftp: loaded support on port[0] = 21
[ 1534.875986][ T7878] IPVS: ftp: loaded support on port[0] = 21
[ 1534.876254][ T7871] IPVS: ftp: loaded support on port[0] = 21
[ 1534.897387][ T7874] IPVS: ftp: loaded support on port[0] = 21
[ 1534.962192][ T7880] IPVS: ftp: loaded support on port[0] = 21
[ 1535.073519][ T7877] chnl_net:caif_netlink_parms(): no params data found
[ 1535.174283][ T7873] chnl_net:caif_netlink_parms(): no params data found
[ 1535.200694][ T7874] chnl_net:caif_netlink_parms(): no params data found
[ 1535.217131][ T7877] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1535.224410][ T7877] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1535.234191][ T7877] device bridge_slave_0 entered promiscuous mode
[ 1535.261877][ T7871] chnl_net:caif_netlink_parms(): no params data found
[ 1535.280622][ T7877] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1535.287707][ T7877] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1535.295445][ T7877] device bridge_slave_1 entered promiscuous mode
[ 1535.339744][ T7871] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1535.347052][ T7871] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1535.355418][ T7871] device bridge_slave_0 entered promiscuous mode
[ 1535.375358][ T7877] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1535.385788][ T7877] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1535.395609][ T7873] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1535.403145][ T7873] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1535.411217][ T7873] device bridge_slave_0 entered promiscuous mode
[ 1535.418445][ T7871] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1535.426199][ T7871] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1535.434323][ T7871] device bridge_slave_1 entered promiscuous mode
[ 1535.465126][ T7873] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1535.472844][ T7873] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1535.480499][ T7873] device bridge_slave_1 entered promiscuous mode
[ 1535.505153][ T7873] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1535.516480][ T7877] team0: Port device team_slave_0 added
[ 1535.522404][ T7878] chnl_net:caif_netlink_parms(): no params data found
[ 1535.535220][ T7871] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1535.553900][ T7873] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1535.564080][ T7877] team0: Port device team_slave_1 added
[ 1535.578774][ T7871] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1535.587979][ T7874] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1535.597185][ T7874] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1535.605865][ T7874] device bridge_slave_0 entered promiscuous mode
[ 1535.613717][ T7874] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1535.620894][ T7874] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1535.629642][ T7874] device bridge_slave_1 entered promiscuous mode
[ 1535.644008][ T7880] chnl_net:caif_netlink_parms(): no params data found
[ 1535.678455][ T7873] team0: Port device team_slave_0 added
[ 1535.685267][ T7874] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1535.713983][ T7873] team0: Port device team_slave_1 added
[ 1535.722063][ T7874] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1535.732084][ T7871] team0: Port device team_slave_0 added
[ 1535.742634][ T7878] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1535.750893][ T7878] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1535.759763][ T7878] device bridge_slave_0 entered promiscuous mode
[ 1535.823163][ T7877] device hsr_slave_0 entered promiscuous mode
[ 1535.889576][ T7877] device hsr_slave_1 entered promiscuous mode
[ 1535.933118][ T7871] team0: Port device team_slave_1 added
[ 1535.943188][ T7878] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1535.951396][ T7878] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1535.959337][ T7878] device bridge_slave_1 entered promiscuous mode
[ 1535.966147][ T7880] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1535.973630][ T7880] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1535.981347][ T7880] device bridge_slave_0 entered promiscuous mode
[ 1536.030154][ T7873] device hsr_slave_0 entered promiscuous mode
[ 1536.068711][ T7873] device hsr_slave_1 entered promiscuous mode
[ 1536.128633][ T7873] debugfs: Directory 'hsr0' with parent '/' already present!
[ 1536.138164][ T7874] team0: Port device team_slave_0 added
[ 1536.202290][ T7871] device hsr_slave_0 entered promiscuous mode
[ 1536.238798][ T7871] device hsr_slave_1 entered promiscuous mode
[ 1536.278545][ T7871] debugfs: Directory 'hsr0' with parent '/' already present!
[ 1536.286295][ T7880] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1536.293915][ T7880] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1536.302760][ T7880] device bridge_slave_1 entered promiscuous mode
[ 1536.319943][ T7874] team0: Port device team_slave_1 added
[ 1536.330274][ T7878] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1536.349079][ T7878] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1536.380332][ T7878] team0: Port device team_slave_0 added
[ 1536.399119][ T7880] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1536.415003][ T7878] team0: Port device team_slave_1 added
[ 1536.473627][ T7874] device hsr_slave_0 entered promiscuous mode
[ 1536.528841][ T7874] device hsr_slave_1 entered promiscuous mode
[ 1536.598538][ T7874] debugfs: Directory 'hsr0' with parent '/' already present!
[ 1536.607154][ T7880] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1536.691292][ T7878] device hsr_slave_0 entered promiscuous mode
[ 1536.738691][ T7878] device hsr_slave_1 entered promiscuous mode
[ 1536.808707][ T7878] debugfs: Directory 'hsr0' with parent '/' already present!
[ 1536.818141][ T7880] team0: Port device team_slave_0 added
[ 1536.826629][ T7880] team0: Port device team_slave_1 added
[ 1536.880480][ T7880] device hsr_slave_0 entered promiscuous mode
[ 1536.929791][ T7880] device hsr_slave_1 entered promiscuous mode
[ 1536.968751][ T7880] debugfs: Directory 'hsr0' with parent '/' already present!
[ 1537.034722][ T7873] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1537.058120][ T7878] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1537.067931][ T7877] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1537.090465][ T7878] 8021q: adding VLAN 0 to HW filter on device team0
[ 1537.110278][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 1537.122750][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1537.130813][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1537.139131][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1537.149459][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1537.157862][ T7892] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1537.165064][ T7892] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1537.173105][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1537.181245][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1537.189570][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1537.197488][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1537.205233][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1537.224798][ T7873] 8021q: adding VLAN 0 to HW filter on device team0
[ 1537.244063][ T7877] 8021q: adding VLAN 0 to HW filter on device team0
[ 1537.251736][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1537.261706][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1537.272379][ T7892] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1537.279513][ T7892] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1537.287236][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1537.296119][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1537.304484][ T7892] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1537.311553][ T7892] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1537.333209][ T7874] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1537.344572][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1537.353210][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1537.362608][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1537.371143][ T7892] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1537.378188][ T7892] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1537.386124][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1537.394643][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1537.403273][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1537.411747][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1537.422554][ T7871] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1537.439536][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1537.451810][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1537.460560][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1537.469371][ T7892] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1537.476411][ T7892] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1537.484124][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1537.492976][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1537.501609][ T7892] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1537.508714][ T7892] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1537.516308][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1537.524482][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1537.553863][ T7880] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1537.573940][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1537.581961][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1537.591249][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1537.600760][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1537.609638][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1537.617878][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1537.626577][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1537.635733][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1537.644445][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1537.652882][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1537.661360][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1537.671338][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1537.679988][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1537.688590][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1537.697564][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1537.711270][ T7874] 8021q: adding VLAN 0 to HW filter on device team0
[ 1537.721038][ T7873] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1537.732091][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1537.741195][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1537.750142][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1537.759418][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1537.767808][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1537.775951][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1537.784119][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1537.795203][ T7871] 8021q: adding VLAN 0 to HW filter on device team0
[ 1537.811288][ T7880] 8021q: adding VLAN 0 to HW filter on device team0
[ 1537.821386][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1537.829371][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1537.836928][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1537.846263][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1537.854482][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1537.863647][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1537.872658][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1537.881300][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1537.890096][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1537.897139][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1537.904991][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1537.913526][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1537.922287][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1537.929397][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1537.937843][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1537.954087][ T7877] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1537.966518][ T7877] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1537.991482][ T7878] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1538.003383][ T7878] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1538.011847][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1538.021960][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1538.032187][   T22] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1538.039531][   T22] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1538.047560][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1538.056159][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1538.064899][   T22] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1538.071981][   T22] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1538.079886][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1538.088138][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1538.096407][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1538.105170][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1538.113977][   T22] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1538.121330][   T22] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1538.129203][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1538.137780][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1538.146510][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1538.154841][   T22] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1538.162090][   T22] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1538.170434][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1538.179883][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1538.188895][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1538.197323][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1538.206071][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1538.215547][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1538.224350][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1538.232308][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1538.240448][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1538.253669][ T7873] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1538.284493][ T7877] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1538.312479][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1538.330073][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1538.340023][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1538.348878][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1538.357427][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1538.366126][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1538.374378][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1538.383880][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1538.392575][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1538.401272][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1538.410015][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1538.418157][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1538.426486][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1538.434847][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1538.446549][ T7880] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1538.457592][ T7880] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1538.469609][ T7874] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1538.487364][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1538.496388][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1538.505354][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1538.513918][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1538.532382][ T7880] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1538.567401][ T7878] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1538.588595][ T7881] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1538.597560][ T7881] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1538.613363][ T7881] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1538.626923][ T7881] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1538.635838][ T7881] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1538.644179][ T7881] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1538.652553][ T7881] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1538.661395][ T7881] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1538.671876][ T7871] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1538.684557][ T7881] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1538.764193][ T7874] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1538.788110][ T7871] 8021q: adding VLAN 0 to HW filter on device batadv0
2019/09/21 10:36:43 executed programs: 43
2019/09/21 10:36:48 executed programs: 280
2019/09/21 10:36:53 executed programs: 519
2019/09/21 10:36:58 executed programs: 771
2019/09/21 10:37:03 executed programs: 1021
2019/09/21 10:37:09 executed programs: 1266
2019/09/21 10:37:14 executed programs: 1515
2019/09/21 10:37:19 executed programs: 1756
[ 1577.942157][T15263] ==================================================================
[ 1577.950522][T15263] BUG: KASAN: use-after-free in rxrpc_release_call+0x3f3/0x540
[ 1577.950535][T15263] Read of size 8 at addr ffff88809cea9450 by task syz-executor.2/15263
[ 1577.950538][T15263] 
[ 1577.968948][T15263] CPU: 1 PID: 15263 Comm: syz-executor.2 Not tainted 5.3.0+ #0
[ 1577.976484][T15263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1577.986629][T15263] Call Trace:
[ 1577.990027][T15263]  dump_stack+0x1d8/0x2f8
[ 1577.994515][T15263]  print_address_description+0x75/0x5b0
[ 1578.000902][T15263]  ? vprintk_func+0x158/0x170
[ 1578.005764][T15263]  ? printk+0x62/0x8d
[ 1578.009842][T15263]  ? vprintk_emit+0x2d4/0x3a0
[ 1578.014826][T15263]  __kasan_report+0x14b/0x1c0
[ 1578.019599][T15263]  ? rxrpc_release_call+0x3f3/0x540
[ 1578.024980][T15263]  kasan_report+0x26/0x50
[ 1578.029317][T15263]  __asan_report_load8_noabort+0x14/0x20
[ 1578.034980][T15263]  rxrpc_release_call+0x3f3/0x540
[ 1578.040028][T15263]  rxrpc_release_calls_on_socket+0x6b7/0x7e0
[ 1578.046290][T15263]  ? rxrpc_release+0x2dc/0x460
[ 1578.051065][T15263]  rxrpc_release+0x2dc/0x460
[ 1578.055756][T15263]  sock_close+0xe1/0x260
[ 1578.060031][T15263]  ? sock_mmap+0xa0/0xa0
[ 1578.060126][T15263]  __fput+0x2e4/0x740
[ 1578.060145][T15263]  ____fput+0x15/0x20
[ 1578.060173][T15263]  task_work_run+0x17e/0x1b0
[ 1578.060204][T15263]  prepare_exit_to_usermode+0x459/0x580
[ 1578.068507][T15263]  syscall_return_slowpath+0x113/0x4a0
[ 1578.068521][T15263]  do_syscall_64+0x11f/0x1c0
[ 1578.068610][T15263]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1578.068622][T15263] RIP: 0033:0x4136f1
[ 1578.082791][T15263] Code: 75 14 b8 03 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 04 1b 00 00 c3 48 83 ec 08 e8 0a fc ff ff 48 89 04 24 b8 03 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 53 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01
[ 1578.092806][T15263] RSP: 002b:00007ffe548af320 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 1578.092815][T15263] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 00000000004136f1
[ 1578.092819][T15263] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000003
[ 1578.092824][T15263] RBP: 0000000000000000 R08: ffffffffffffffff R09: ffffffffffffffff
[ 1578.092829][T15263] R10: 00007ffe548af400 R11: 0000000000000293 R12: 000000000075bfc8
[ 1578.092834][T15263] R13: 000000000018139a R14: 00000000007608b0 R15: 000000000075bfd4
[ 1578.092849][T15263] 
[ 1578.092855][T15263] Allocated by task 15276:
[ 1578.092869][T15263]  __kasan_kmalloc+0x11c/0x1b0
[ 1578.092876][T15263]  kasan_kmalloc+0x9/0x10
[ 1578.092949][T15263]  kmem_cache_alloc_trace+0x221/0x2f0
[ 1578.092963][T15263]  rxrpc_alloc_connection+0x79/0x490
[ 1578.147095][T15263]  rxrpc_connect_call+0xb30/0x2c40
[ 1578.147103][T15263]  rxrpc_new_client_call+0x6d5/0xb60
[ 1578.147183][T15263]  rxrpc_do_sendmsg+0xf2b/0x19b0
[ 1578.147195][T15263]  rxrpc_sendmsg+0x5eb/0x8b0
[ 1578.187508][T15263]  ___sys_sendmsg+0x60d/0x910
[ 1578.187517][T15263]  __sys_sendmmsg+0x239/0x470
[ 1578.187524][T15263]  __x64_sys_sendmmsg+0xa0/0xb0
[ 1578.187534][T15263]  do_syscall_64+0xf7/0x1c0
[ 1578.187544][T15263]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1578.187548][T15263] 
[ 1578.187553][T15263] Freed by task 9:
[ 1578.187561][T15263]  __kasan_slab_free+0x12a/0x1e0
[ 1578.187571][T15263]  kasan_slab_free+0xe/0x10
[ 1578.218096][T15263]  kfree+0x115/0x200
[ 1578.242928][T15263]  rxrpc_destroy_connection+0x1ec/0x240
[ 1578.243010][T15263]  rcu_core+0x843/0x1050
[ 1578.243021][T15263]  rcu_core_si+0x9/0x10
[ 1578.276315][T15263]  __do_softirq+0x333/0x7c4
[ 1578.280818][T15263] 
[ 1578.283159][T15263] The buggy address belongs to the object at ffff88809cea9200
[ 1578.283159][T15263]  which belongs to the cache kmalloc-1k of size 1024
[ 1578.297209][T15263] The buggy address is located 592 bytes inside of
[ 1578.297209][T15263]  1024-byte region [ffff88809cea9200, ffff88809cea9600)
[ 1578.310562][T15263] The buggy address belongs to the page:
[ 1578.310575][T15263] page:ffffea000273aa00 refcount:1 mapcount:0 mapping:ffff8880aa400c40 index:0x0 compound_mapcount: 0
[ 1578.310586][T15263] flags: 0x1fffc0000010200(slab|head)
[ 1578.310598][T15263] raw: 01fffc0000010200 ffffea00026b4908 ffffea0002a64588 ffff8880aa400c40
[ 1578.310608][T15263] raw: 0000000000000000 ffff88809cea8000 0000000100000007 0000000000000000
[ 1578.310612][T15263] page dumped because: kasan: bad access detected
[ 1578.310616][T15263] 
[ 1578.310619][T15263] Memory state around the buggy address:
[ 1578.310626][T15263]  ffff88809cea9300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1578.310632][T15263]  ffff88809cea9380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1578.310637][T15263] >ffff88809cea9400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1578.310641][T15263]                                                  ^
[ 1578.310646][T15263]  ffff88809cea9480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1578.310652][T15263]  ffff88809cea9500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1578.310655][T15263] ==================================================================
[ 1578.310658][T15263] Disabling lock debugging due to kernel taint
[ 1578.438160][T15263] Kernel panic - not syncing: panic_on_warn set ...
[ 1578.441666][ T3891] kobject: 'loop1' (00000000d85f15c7): fill_kobj_path: path = '/devices/virtual/block/loop1'
[ 1578.444780][T15263] CPU: 1 PID: 15263 Comm: syz-executor.2 Tainted: G    B             5.3.0+ #0
[ 1578.444785][T15263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1578.444792][T15263] Call Trace:
[ 1578.460656][ T3891] kobject: 'loop3' (00000000861772c5): kobject_uevent_env
[ 1578.463844][T15263]  dump_stack+0x1d8/0x2f8
[ 1578.463943][T15263]  panic+0x25c/0x799
[ 1578.474128][ T3891] kobject: 'loop3' (00000000861772c5): fill_kobj_path: path = '/devices/virtual/block/loop3'
[ 1578.477269][T15263]  ? __kasan_report+0x195/0x1c0
[ 1578.477339][T15263]  ? trace_hardirqs_on+0x34/0x80
[ 1578.477350][T15263]  ? __kasan_report+0x195/0x1c0
[ 1578.485524][ T3891] kobject: 'loop0' (0000000047b4bc3d): kobject_uevent_env
[ 1578.488841][T15263]  __kasan_report+0x1bb/0x1c0
[ 1578.488852][T15263]  ? rxrpc_release_call+0x3f3/0x540
[ 1578.488860][T15263]  kasan_report+0x26/0x50
[ 1578.488869][T15263]  __asan_report_load8_noabort+0x14/0x20
[ 1578.488876][T15263]  rxrpc_release_call+0x3f3/0x540
[ 1578.488886][T15263]  rxrpc_release_calls_on_socket+0x6b7/0x7e0
[ 1578.488899][T15263]  ? rxrpc_release+0x2dc/0x460
[ 1578.493638][ T3891] kobject: 'loop0' (0000000047b4bc3d): fill_kobj_path: path = '/devices/virtual/block/loop0'
[ 1578.502908][T15263]  rxrpc_release+0x2dc/0x460
[ 1578.502919][T15263]  sock_close+0xe1/0x260
[ 1578.502926][T15263]  ? sock_mmap+0xa0/0xa0
[ 1578.502937][T15263]  __fput+0x2e4/0x740
[ 1578.502948][T15263]  ____fput+0x15/0x20
[ 1578.502956][T15263]  task_work_run+0x17e/0x1b0
[ 1578.502970][T15263]  prepare_exit_to_usermode+0x459/0x580
[ 1578.526551][ T3891] kobject: 'loop5' (0000000010d750a7): kobject_uevent_env
[ 1578.529524][T15263]  syscall_return_slowpath+0x113/0x4a0
[ 1578.529534][T15263]  do_syscall_64+0x11f/0x1c0
[ 1578.529545][T15263]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1578.529553][T15263] RIP: 0033:0x4136f1
[ 1578.529562][T15263] Code: 75 14 b8 03 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 04 1b 00 00 c3 48 83 ec 08 e8 0a fc ff ff 48 89 04 24 b8 03 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 53 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01
[ 1578.529565][T15263] RSP: 002b:00007ffe548af320 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 1578.529572][T15263] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 00000000004136f1
[ 1578.529576][T15263] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000003
[ 1578.529580][T15263] RBP: 0000000000000000 R08: ffffffffffffffff R09: ffffffffffffffff
[ 1578.529584][T15263] R10: 00007ffe548af400 R11: 0000000000000293 R12: 000000000075bfc8
[ 1578.529589][T15263] R13: 000000000018139a R14: 00000000007608b0 R15: 000000000075bfd4
[ 1578.536918][T15263] Kernel Offset: disabled
[ 1578.704303][T15263] Rebooting in 86400 seconds..