[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 28.700762] kauditd_printk_skb: 7 callbacks suppressed [ 28.700773] audit: type=1800 audit(1544477908.103:29): pid=5852 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 28.727882] audit: type=1800 audit(1544477908.103:30): pid=5852 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.5' (ECDSA) to the list of known hosts. syzkaller login: [ 39.893704] IPVS: ftp: loaded support on port[0] = 21 [ 40.033184] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.040342] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.047308] device bridge_slave_0 entered promiscuous mode [ 40.064663] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.071356] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.078188] device bridge_slave_1 entered promiscuous mode [ 40.094626] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 40.111232] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 40.155353] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 40.173569] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 40.241958] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 40.249317] team0: Port device team_slave_0 added [ 40.264123] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 40.271264] team0: Port device team_slave_1 added [ 40.286825] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 40.304333] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 40.322000] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 40.338644] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready RTNETLINK answers: Operation not supported RTNETLINK answers: No buffer space available RTNETLINK answers: Operation not supported [ 40.464004] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.470465] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.477378] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.483773] bridge0: port 1(bridge_slave_0) entered forwarding state RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument [ 40.931832] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 40.937921] 8021q: adding VLAN 0 to HW filter on device bond0 [ 40.969414] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 40.987297] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 41.031427] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 41.037562] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 41.046016] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 41.087256] 8021q: adding VLAN 0 to HW filter on device team0 executing program [ 41.341950] Started in network mode [ 41.345668] Own node identity ac14141a, cluster identity 4711 [ 41.352032] kasan: CONFIG_KASAN_INLINE enabled [ 41.356653] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 41.364563] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 41.370795] CPU: 0 PID: 6008 Comm: syz-executor946 Not tainted 4.20.0-rc6+ #223 [ 41.378216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 41.387554] RIP: 0010:__ipv6_sock_mc_join+0x24a/0xc10 [ 41.392723] Code: 00 00 e8 a9 31 9b fa 48 8b 85 d0 fe ff ff 48 83 c0 60 48 89 c2 48 89 85 c0 fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 32 09 00 00 48 8b 85 d0 fe ff ff 4c 8d ad 10 ff [ 41.411602] RSP: 0018:ffff8881cd7b6bc8 EFLAGS: 00010206 [ 41.416940] RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff86e459ac [ 41.424195] RDX: 000000000000000c RSI: ffffffff86e452c7 RDI: 0000000000000001 [ 41.431441] RBP: ffff8881cd7b6d18 R08: ffff8881ccad8300 R09: ffffed103b5c5b5f [ 41.438687] R10: ffffed103b5c5b5f R11: ffff8881dae2dafb R12: 000000000000000f [ 41.445934] R13: ffff8881cd7b6fb4 R14: ffff8881cd7b6fb4 R15: ffff8881bb9c9540 [ 41.453182] FS: 0000000001a6e880(0000) GS:ffff8881dae00000(0000) knlGS:0000000000000000 [ 41.461383] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 41.467239] CR2: 0000000020000080 CR3: 00000001c21ac000 CR4: 00000000001406f0 [ 41.474496] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 41.481744] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 41.488990] Call Trace: [ 41.491563] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 41.497077] ? __ipv6_dev_mc_inc+0xc50/0xc50 [ 41.501467] ? cpus_read_unlock+0x8b/0xb0 [ 41.505592] ? static_key_enable+0x1f/0x30 [ 41.509809] ? udp_encap_enable+0x15/0x20 [ 41.513938] ? setup_udp_tunnel_sock+0x3ac/0x5e0 [ 41.518669] ? udp_tunnel_xmit_skb+0x320/0x320 [ 41.523232] ipv6_sock_mc_join+0x27/0x30 [ 41.527275] tipc_udp_enable+0x1476/0x1ed0 [ 41.531493] ? tipc_udp_recv+0xe20/0xe20 [ 41.535537] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 41.540628] ? tipc_udp_send_msg+0x670/0x670 [ 41.545017] ? save_stack+0xa9/0xd0 [ 41.548621] ? save_stack+0x43/0xd0 [ 41.552225] ? kasan_kmalloc+0xc7/0xe0 [ 41.556105] ? kmem_cache_alloc_trace+0x152/0x750 [ 41.560931] ? tipc_enable_bearer+0x90d/0xf10 [ 41.565406] ? __tipc_nl_bearer_enable+0x37c/0x4a0 [ 41.570315] ? tipc_nl_bearer_enable+0x22/0x30 [ 41.574878] ? genl_rcv_msg+0xc6/0x168 [ 41.578741] ? netlink_rcv_skb+0x172/0x440 [ 41.582956] ? genl_rcv+0x28/0x40 [ 41.586385] ? netlink_unicast+0x5a5/0x760 [ 41.590604] ? netlink_sendmsg+0xa18/0xfc0 [ 41.594827] ? sock_sendmsg+0xd5/0x120 [ 41.598704] ? ___sys_sendmsg+0x7fd/0x930 [ 41.602832] ? __x64_sys_sendmsg+0x78/0xb0 [ 41.607047] ? do_syscall_64+0x1b9/0x820 [ 41.611087] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 41.616429] ? mark_held_locks+0x130/0x130 [ 41.620647] ? zap_class+0x640/0x640 [ 41.624361] ? check_preemption_disabled+0x48/0x280 [ 41.629361] ? tipc_enable_bearer+0x90d/0xf10 [ 41.633836] ? rcu_read_lock_sched_held+0x14f/0x180 [ 41.638843] tipc_enable_bearer+0x9a6/0xf10 [ 41.643143] ? tipc_udp_recv+0xe20/0xe20 [ 41.647179] ? tipc_enable_bearer+0x9a6/0xf10 [ 41.651919] ? tipc_bearer_xmit_skb+0x350/0x350 [ 41.656567] ? nla_memcmp+0x90/0x90 [ 41.660177] ? lock_release+0xa00/0xa00 [ 41.664133] ? perf_trace_sched_process_exec+0x860/0x860 [ 41.669576] ? mark_held_locks+0x130/0x130 [ 41.673794] ? check_preemption_disabled+0x48/0x280 [ 41.678811] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 41.684333] ? __nla_parse+0x12c/0x3e0 [ 41.688199] ? nla_parse+0x46/0x60 [ 41.691721] __tipc_nl_bearer_enable+0x37c/0x4a0 [ 41.696456] ? __tipc_nl_bearer_enable+0x37c/0x4a0 [ 41.701362] ? tipc_nl_bearer_disable+0x30/0x30 [ 41.706014] tipc_nl_bearer_enable+0x22/0x30 [ 41.710402] genl_family_rcv_msg+0x8a7/0x11a0 [ 41.714891] ? genl_unregister_family+0x8a0/0x8a0 [ 41.719711] ? lock_downgrade+0x900/0x900 [ 41.723851] ? check_preemption_disabled+0x48/0x280 [ 41.728859] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 41.733781] ? kasan_check_read+0x11/0x20 [ 41.737909] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 41.743165] ? rcu_softirq_qs+0x20/0x20 [ 41.747128] genl_rcv_msg+0xc6/0x168 [ 41.750822] netlink_rcv_skb+0x172/0x440 [ 41.754863] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 41.759597] ? netlink_ack+0xb80/0xb80 [ 41.763473] ? down_read+0x8d/0x120 [ 41.767084] genl_rcv+0x28/0x40 [ 41.770348] netlink_unicast+0x5a5/0x760 [ 41.774387] ? netlink_attachskb+0x9a0/0x9a0 [ 41.778775] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 41.784296] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 41.789311] netlink_sendmsg+0xa18/0xfc0 [ 41.793364] ? netlink_unicast+0x760/0x760 [ 41.797579] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 41.802493] ? apparmor_socket_sendmsg+0x29/0x30 [ 41.807248] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 41.812769] ? security_socket_sendmsg+0x94/0xc0 [ 41.817503] ? netlink_unicast+0x760/0x760 [ 41.821720] sock_sendmsg+0xd5/0x120 [ 41.825417] ___sys_sendmsg+0x7fd/0x930 [ 41.829376] ? copy_msghdr_from_user+0x580/0x580 [ 41.834122] ? blkcg_maybe_throttle_current+0xa38/0x1080 [ 41.839552] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 41.845067] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 41.850587] ? __fget_light+0x2e9/0x430 [ 41.854539] ? fget_raw+0x20/0x20 [ 41.857973] ? task_work_run+0x1af/0x2a0 [ 41.862012] ? _raw_spin_unlock_irq+0x27/0x80 [ 41.866492] ? _raw_spin_unlock_irq+0x27/0x80 [ 41.870965] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 41.875525] ? trace_hardirqs_on+0xbd/0x310 [ 41.879826] ? kasan_check_read+0x11/0x20 [ 41.883953] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 41.889465] ? sockfd_lookup_light+0xc5/0x160 [ 41.893937] __sys_sendmsg+0x11d/0x280 [ 41.897817] ? __ia32_sys_shutdown+0x80/0x80 [ 41.902211] ? do_syscall_64+0x6be/0x820 [ 41.906251] ? trace_hardirqs_on+0x310/0x310 [ 41.910639] ? do_syscall_64+0x9a/0x820 [ 41.914587] ? do_syscall_64+0x9a/0x820 [ 41.918539] ? trace_hardirqs_off_caller+0x310/0x310 [ 41.923623] __x64_sys_sendmsg+0x78/0xb0 [ 41.927677] do_syscall_64+0x1b9/0x820 [ 41.931544] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 41.936975] ? syscall_return_slowpath+0x5e0/0x5e0 [ 41.941882] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 41.946726] ? trace_hardirqs_on_caller+0x310/0x310 [ 41.951730] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 41.956724] ? prepare_exit_to_usermode+0x291/0x3b0 [ 41.961728] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 41.966557] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 41.971753] RIP: 0033:0x445d49 [ 41.974930] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb ce fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 41.993808] RSP: 002b:00007ffe64b73768 EFLAGS: 00000213 ORIG_RAX: 000000000000002e [ 42.001491] RAX: ffffffffffffffda RBX: 00000000004002e0 RCX: 0000000000445d49 [ 42.008737] RDX: 000000000000c000 RSI: 0000000020000c00 RDI: 0000000000000003 [ 42.015997] RBP: 00000000006d1018 R08: 0000000000000000 R09: 0000000000000100 [ 42.023242] R10: 0000000000000000 R11: 0000000000000213 R12: 00000000004030d0 [ 42.030490] R13: 0000000000403160 R14: 0000000000000000 R15: 0000000000000000 [ 42.037738] Modules linked in: [ 42.042619] ---[ end trace c6ae3b4cfb2b9359 ]--- [ 42.047417] RIP: 0010:__ipv6_sock_mc_join+0x24a/0xc10 [ 42.052630] Code: 00 00 e8 a9 31 9b fa 48 8b 85 d0 fe ff ff 48 83 c0 60 48 89 c2 48 89 85 c0 fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 32 09 00 00 48 8b 85 d0 fe ff ff 4c 8d ad 10 ff [ 42.071794] RSP: 0018:ffff8881cd7b6bc8 EFLAGS: 00010206 [ 42.077137] RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff86e459ac [ 42.084410] RDX: 000000000000000c RSI: ffffffff86e452c7 RDI: 0000000000000001 [ 42.091683] RBP: ffff8881cd7b6d18 R08: ffff8881ccad8300 R09: ffffed103b5c5b5f [ 42.098968] R10: ffffed103b5c5b5f R11: ffff8881dae2dafb R12: 000000000000000f [ 42.106227] R13: ffff8881cd7b6fb4 R14: ffff8881cd7b6fb4 R15: ffff8881bb9c9540 [ 42.113514] FS: 0000000001a6e880(0000) GS:ffff8881dae00000(0000) knlGS:0000000000000000 [ 42.121738] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 42.127602] CR2: 0000000020000080 CR3: 00000001c21ac000 CR4: 00000000001406f0 [ 42.134882] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 42.142172] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 42.149768] Kernel panic - not syncing: Fatal exception [ 42.156360] Kernel Offset: disabled [ 42.159982] Rebooting in 86400 seconds..