[   36.098493][   T26] audit: type=1800 audit(1552735656.311:27): pid=7481 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[   36.120250][   T26] audit: type=1800 audit(1552735656.311:28): pid=7481 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   36.868848][   T26] audit: type=1800 audit(1552735657.121:29): pid=7481 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
[   36.894774][   T26] audit: type=1800 audit(1552735657.131:30): pid=7481 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.140' (ECDSA) to the list of known hosts.
2019/03/16 11:27:49 parsed 1 programs
2019/03/16 11:27:52 executed programs: 0
syzkaller login: [   52.148261][ T7660] IPVS: ftp: loaded support on port[0] = 21
[   52.148873][ T7657] IPVS: ftp: loaded support on port[0] = 21
[   52.175394][ T7655] IPVS: ftp: loaded support on port[0] = 21
[   52.178696][ T7661] IPVS: ftp: loaded support on port[0] = 21
[   52.184861][ T7656] IPVS: ftp: loaded support on port[0] = 21
[   52.194200][ T7662] IPVS: ftp: loaded support on port[0] = 21
[   52.454951][ T7660] chnl_net:caif_netlink_parms(): no params data found
[   52.532657][ T7662] chnl_net:caif_netlink_parms(): no params data found
[   52.597242][ T7657] chnl_net:caif_netlink_parms(): no params data found
[   52.661098][ T7656] chnl_net:caif_netlink_parms(): no params data found
[   52.708471][ T7660] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.716823][ T7660] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.724621][ T7660] device bridge_slave_0 entered promiscuous mode
[   52.738203][ T7660] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.745357][ T7660] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.753358][ T7660] device bridge_slave_1 entered promiscuous mode
[   52.761201][ T7661] chnl_net:caif_netlink_parms(): no params data found
[   52.769410][ T7655] chnl_net:caif_netlink_parms(): no params data found
[   52.798893][ T7657] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.806165][ T7657] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.814147][ T7657] device bridge_slave_0 entered promiscuous mode
[   52.821650][ T7662] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.828714][ T7662] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.837471][ T7662] device bridge_slave_0 entered promiscuous mode
[   52.848572][ T7662] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.855688][ T7662] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.863373][ T7662] device bridge_slave_1 entered promiscuous mode
[   52.886431][ T7657] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.896857][ T7657] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.905046][ T7657] device bridge_slave_1 entered promiscuous mode
[   52.939757][ T7657] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   52.956560][ T7660] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   52.983984][ T7657] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   53.005180][ T7660] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   53.020652][ T7662] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   53.039107][ T7661] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.047117][ T7661] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.055054][ T7661] device bridge_slave_0 entered promiscuous mode
[   53.063400][ T7656] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.070955][ T7656] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.078445][ T7656] device bridge_slave_0 entered promiscuous mode
[   53.108391][ T7662] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   53.118339][ T7661] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.125982][ T7661] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.133996][ T7661] device bridge_slave_1 entered promiscuous mode
[   53.141307][ T7656] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.148359][ T7656] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.156168][ T7656] device bridge_slave_1 entered promiscuous mode
[   53.164818][ T7657] team0: Port device team_slave_0 added
[   53.176151][ T7655] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.183368][ T7655] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.190959][ T7655] device bridge_slave_0 entered promiscuous mode
[   53.226911][ T7657] team0: Port device team_slave_1 added
[   53.234902][ T7660] team0: Port device team_slave_0 added
[   53.241123][ T7655] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.248162][ T7655] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.255991][ T7655] device bridge_slave_1 entered promiscuous mode
[   53.269204][ T7662] team0: Port device team_slave_0 added
[   53.276546][ T7662] team0: Port device team_slave_1 added
[   53.286047][ T7656] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   53.296349][ T7660] team0: Port device team_slave_1 added
[   53.309319][ T7661] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   53.319579][ T7661] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   53.336858][ T7656] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   53.377591][ T7655] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   53.388058][ T7655] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   53.407900][ T7656] team0: Port device team_slave_0 added
[   53.422896][ T7656] team0: Port device team_slave_1 added
[   53.429675][ T7661] team0: Port device team_slave_0 added
[   53.501875][ T7657] device hsr_slave_0 entered promiscuous mode
[   53.550566][ T7657] device hsr_slave_1 entered promiscuous mode
[   53.632234][ T7662] device hsr_slave_0 entered promiscuous mode
[   53.670470][ T7662] device hsr_slave_1 entered promiscuous mode
[   53.741900][ T7661] team0: Port device team_slave_1 added
[   53.748722][ T7655] team0: Port device team_slave_0 added
[   53.756133][ T7655] team0: Port device team_slave_1 added
[   53.812839][ T7660] device hsr_slave_0 entered promiscuous mode
[   53.880272][ T7660] device hsr_slave_1 entered promiscuous mode
[   54.042034][ T7656] device hsr_slave_0 entered promiscuous mode
[   54.090366][ T7656] device hsr_slave_1 entered promiscuous mode
[   54.222652][ T7661] device hsr_slave_0 entered promiscuous mode
[   54.270500][ T7661] device hsr_slave_1 entered promiscuous mode
[   54.394324][ T7655] device hsr_slave_0 entered promiscuous mode
[   54.450415][ T7655] device hsr_slave_1 entered promiscuous mode
[   54.596685][ T7662] 8021q: adding VLAN 0 to HW filter on device bond0
[   54.660499][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   54.668860][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   54.678866][ T7662] 8021q: adding VLAN 0 to HW filter on device team0
[   54.693115][ T7657] 8021q: adding VLAN 0 to HW filter on device bond0
[   54.706073][ T7656] 8021q: adding VLAN 0 to HW filter on device bond0
[   54.720369][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   54.729386][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   54.738370][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.745579][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.753947][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   54.762674][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   54.771303][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.778339][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.785881][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   54.794266][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   54.805321][ T7660] 8021q: adding VLAN 0 to HW filter on device bond0
[   54.828289][ T7657] 8021q: adding VLAN 0 to HW filter on device team0
[   54.837574][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   54.845828][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   54.853553][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   54.861843][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   54.869340][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   54.878055][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   54.885875][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   54.896477][ T7660] 8021q: adding VLAN 0 to HW filter on device team0
[   54.923815][ T7655] 8021q: adding VLAN 0 to HW filter on device bond0
[   54.935944][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   54.944748][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   54.953231][   T17] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.960345][   T17] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.968172][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   54.976696][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   54.985363][   T17] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.992463][   T17] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.999870][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   55.008368][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   55.016649][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   55.024590][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   55.034213][ T7656] 8021q: adding VLAN 0 to HW filter on device team0
[   55.054080][ T7661] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.072473][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   55.081573][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   55.089935][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   55.101415][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   55.109671][   T17] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.116753][   T17] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.124781][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   55.133459][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   55.141754][   T17] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.148766][   T17] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.157452][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   55.165329][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   55.173911][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   55.198315][ T7661] 8021q: adding VLAN 0 to HW filter on device team0
[   55.206842][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   55.215540][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   55.224168][   T17] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.231261][   T17] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.238832][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   55.247348][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   55.255615][   T17] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.262715][   T17] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.270460][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   55.277979][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   55.285843][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   55.293489][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   55.301462][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   55.312741][ T2801] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   55.324619][ T7655] 8021q: adding VLAN 0 to HW filter on device team0
[   55.350566][ T2801] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   55.359068][ T2801] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   55.372357][ T2801] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   55.381368][ T2801] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   55.389697][ T2801] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   55.398153][ T2801] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   55.406414][ T2801] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   55.414867][ T2801] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   55.423124][ T2801] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   55.431649][ T2801] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   55.439693][ T2801] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   55.448105][ T2801] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   55.456279][ T2801] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   55.465479][ T2801] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   55.473368][ T2801] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   55.486379][ T7662] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   55.504648][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   55.513398][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   55.522275][ T2996] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.529310][ T2996] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.536952][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   55.547641][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   55.555986][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   55.564266][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   55.572719][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   55.581417][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   55.589594][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   55.598315][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   55.607249][ T2996] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.614323][ T2996] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.643161][ T7656] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   55.655339][ T7656] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   55.664805][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   55.675678][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   55.683406][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   55.691476][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   55.699827][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   55.709033][    T5] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.716130][    T5] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.724028][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   55.732731][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   55.741226][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   55.749408][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   55.757699][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   55.766170][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   55.774510][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   55.783108][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   55.791486][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   55.799603][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   55.808055][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   55.835878][ T7656] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.849857][ T7665] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   55.859015][ T7665] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   55.868853][ T7665] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   55.877444][ T7665] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   55.885905][ T7665] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   55.894217][ T7665] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   55.902560][ T7665] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   55.911157][ T7665] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   55.922776][ T7660] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   55.977895][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   55.987367][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   55.996440][ T2996] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.003544][ T2996] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.013406][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   56.022281][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   56.031059][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   56.039383][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   56.047998][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   56.056440][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   56.064729][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   56.073082][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   56.082850][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   56.090792][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   56.098909][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   56.114489][ T7662] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.124900][ T7657] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.135704][ T7655] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   56.154691][ T7655] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   56.166382][ T7661] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   56.178749][ T7661] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   56.193801][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   56.202693][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   56.214322][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   56.229662][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   56.243633][ T7660] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.316424][ T7655] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.404246][ T7661] 8021q: adding VLAN 0 to HW filter on device batadv0
2019/03/16 11:27:57 executed programs: 17
[   57.593703][ T7877] ==================================================================
[   57.602013][ T7877] BUG: KASAN: slab-out-of-bounds in linear_transfer+0x6de/0x970
[   57.609650][ T7877] Read of size 1 at addr ffff88809899f0b8 by task syz-executor.2/7877
[   57.617822][ T7877] 
[   57.620157][ T7877] CPU: 1 PID: 7877 Comm: syz-executor.2 Not tainted 5.0.0+ #24
[   57.627699][ T7877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   57.637751][ T7877] Call Trace:
[   57.641080][ T7877]  dump_stack+0x172/0x1f0
[   57.645424][ T7877]  ? linear_transfer+0x6de/0x970
[   57.650389][ T7877]  print_address_description.cold+0x7c/0x20d
[   57.656372][ T7877]  ? linear_transfer+0x6de/0x970
[   57.661317][ T7877]  ? linear_transfer+0x6de/0x970
[   57.666270][ T7877]  kasan_report.cold+0x1b/0x40
[   57.671045][ T7877]  ? linear_transfer+0x6de/0x970
[   57.675997][ T7877]  check_memory_region+0x123/0x190
[   57.681108][ T7877]  memcpy+0x24/0x50
[   57.684908][ T7877]  linear_transfer+0x6de/0x970
[   57.689662][ T7877]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   57.695901][ T7877]  ? snd_pcm_plugin_build_copy+0x410/0x410
[   57.701702][ T7877]  ? io_capture_transfer+0x1fd/0x330
[   57.706973][ T7877]  ? rate_dst_frames+0x2e0/0x2e0
[   57.711906][ T7877]  snd_pcm_plug_read_transfer+0x1a1/0x2f0
[   57.717636][ T7877]  ? snd_pcm_plug_write_transfer+0x400/0x400
[   57.723593][ T7877]  ? snd_pcm_format_physical_width+0x75/0x90
[   57.729555][ T7877]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[   57.735253][ T7877]  ? snd_pcm_plug_client_channels_buf+0x212/0x450
[   57.741660][ T7877]  snd_pcm_oss_read2+0x1f0/0x3f0
[   57.746588][ T7877]  ? snd_pcm_oss_read3+0x420/0x420
[   57.751695][ T7877]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   57.757940][ T7877]  snd_pcm_oss_read+0x53a/0x6a0
[   57.762791][ T7877]  __vfs_read+0x8d/0x110
[   57.767043][ T7877]  ? snd_pcm_oss_read2+0x3f0/0x3f0
[   57.772135][ T7877]  vfs_read+0x194/0x3e0
[   57.776278][ T7877]  ksys_read+0xea/0x1f0
[   57.780416][ T7877]  ? kernel_write+0x120/0x120
[   57.785086][ T7877]  ? do_fast_syscall_32+0xd1/0xc98
[   57.790189][ T7877]  ? entry_SYSENTER_compat+0x70/0x7f
[   57.795463][ T7877]  ? do_fast_syscall_32+0xd1/0xc98
[   57.800557][ T7877]  __ia32_sys_read+0x71/0xb0
[   57.805128][ T7877]  do_fast_syscall_32+0x281/0xc98
[   57.810167][ T7877]  entry_SYSENTER_compat+0x70/0x7f
[   57.815267][ T7877] RIP: 0023:0xf7f66869
[   57.819329][ T7877] Code: 85 d2 74 02 89 0a 5b 5d c3 8b 04 24 c3 8b 14 24 c3 8b 3c 24 c3 90 90 90 90 90 90 90 90 90 90 90 90 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[   57.838945][ T7877] RSP: 002b:00000000f7f620cc EFLAGS: 00000296 ORIG_RAX: 0000000000000003
[   57.847335][ T7877] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200012c0
[   57.855282][ T7877] RDX: 0000000000001000 RSI: 0000000000000000 RDI: 0000000000000000
[   57.863238][ T7877] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   57.871202][ T7877] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[   57.879150][ T7877] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   57.887122][ T7877] 
[   57.889693][ T7877] Allocated by task 7877:
[   57.894016][ T7877]  save_stack+0x45/0xd0
[   57.898150][ T7877]  __kasan_kmalloc.constprop.0+0xcf/0xe0
[   57.903852][ T7877]  kasan_kmalloc+0x9/0x10
[   57.908176][ T7877]  __kmalloc_node+0x4e/0x70
[   57.912658][ T7877]  kvmalloc_node+0x68/0x100
[   57.917139][ T7877]  snd_pcm_plugin_alloc+0x585/0x770
[   57.922322][ T7877]  snd_pcm_plug_alloc+0x148/0x330
[   57.927336][ T7877]  snd_pcm_oss_change_params_locked+0x2118/0x3750
[   57.933728][ T7877]  snd_pcm_oss_change_params+0x7b/0xd0
[   57.939163][ T7877]  snd_pcm_oss_get_active_substream+0x136/0x190
[   57.945380][ T7877]  snd_pcm_oss_ioctl+0x8f7/0x3430
[   57.950383][ T7877]  snd_pcm_oss_ioctl_compat+0x24/0x30
[   57.955736][ T7877]  __ia32_compat_sys_ioctl+0x197/0x620
[   57.961184][ T7877]  do_fast_syscall_32+0x281/0xc98
[   57.966198][ T7877]  entry_SYSENTER_compat+0x70/0x7f
[   57.971282][ T7877] 
[   57.973589][ T7877] Freed by task 0:
[   57.977279][ T7877] (stack is not available)
[   57.981682][ T7877] 
[   57.983992][ T7877] The buggy address belongs to the object at ffff88809899e500
[   57.983992][ T7877]  which belongs to the cache kmalloc-4k of size 4096
[   57.998020][ T7877] The buggy address is located 3000 bytes inside of
[   57.998020][ T7877]  4096-byte region [ffff88809899e500, ffff88809899f500)
[   58.011449][ T7877] The buggy address belongs to the page:
[   58.017086][ T7877] page:ffffea0002626780 count:1 mapcount:0 mapping:ffff88812c3f0dc0 index:0x0 compound_mapcount: 0
[   58.027751][ T7877] flags: 0x1fffc0000010200(slab|head)
[   58.033104][ T7877] raw: 01fffc0000010200 ffffea00022bc088 ffffea0002841208 ffff88812c3f0dc0
[   58.041665][ T7877] raw: 0000000000000000 ffff88809899e500 0000000100000001 0000000000000000
[   58.050240][ T7877] page dumped because: kasan: bad access detected
[   58.056644][ T7877] 
[   58.058961][ T7877] Memory state around the buggy address:
[   58.064582][ T7877]  ffff88809899ef80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   58.072617][ T7877]  ffff88809899f000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   58.080655][ T7877] >ffff88809899f080: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc
[   58.088689][ T7877]                                         ^
[   58.094560][ T7877]  ffff88809899f100: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   58.102600][ T7877]  ffff88809899f180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   58.110650][ T7877] ==================================================================
[   58.118686][ T7877] Disabling lock debugging due to kernel taint
[   58.200186][ T7877] Kernel panic - not syncing: panic_on_warn set ...
[   58.206847][ T7877] CPU: 0 PID: 7877 Comm: syz-executor.2 Tainted: G    B             5.0.0+ #24
[   58.215816][ T7877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   58.225868][ T7877] Call Trace:
[   58.229177][ T7877]  dump_stack+0x172/0x1f0
[   58.233517][ T7877]  panic+0x2cb/0x65c
[   58.237417][ T7877]  ? __warn_printk+0xf3/0xf3
[   58.242017][ T7877]  ? linear_transfer+0x6de/0x970
[   58.246979][ T7877]  ? preempt_schedule+0x4b/0x60
[   58.251835][ T7877]  ? ___preempt_schedule+0x16/0x18
[   58.256964][ T7877]  ? trace_hardirqs_on+0x5e/0x230
[   58.261993][ T7877]  ? linear_transfer+0x6de/0x970
[   58.266953][ T7877]  end_report+0x47/0x4f
[   58.271115][ T7877]  ? linear_transfer+0x6de/0x970
[   58.273634][ T3875] kobject: 'loop5' (0000000039902424): kobject_uevent_env
[   58.276048][ T7877]  kasan_report.cold+0xe/0x40
[   58.276066][ T7877]  ? linear_transfer+0x6de/0x970
[   58.276080][ T7877]  check_memory_region+0x123/0x190
[   58.276100][ T7877]  memcpy+0x24/0x50
[   58.294496][ T3875] kobject: 'loop5' (0000000039902424): fill_kobj_path: path = '/devices/virtual/block/loop5'
[   58.297934][ T7877]  linear_transfer+0x6de/0x970
[   58.297955][ T7877]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   58.297978][ T7877]  ? snd_pcm_plugin_build_copy+0x410/0x410
[   58.297998][ T7877]  ? io_capture_transfer+0x1fd/0x330
[   58.319371][ T3875] kobject: 'loop4' (00000000b6879e8f): kobject_uevent_env
[   58.324276][ T7877]  ? rate_dst_frames+0x2e0/0x2e0
[   58.324293][ T7877]  snd_pcm_plug_read_transfer+0x1a1/0x2f0
[   58.324307][ T7877]  ? snd_pcm_plug_write_transfer+0x400/0x400
[   58.324318][ T7877]  ? snd_pcm_format_physical_width+0x75/0x90
[   58.324330][ T7877]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[   58.324343][ T7877]  ? snd_pcm_plug_client_channels_buf+0x212/0x450
[   58.324359][ T7877]  snd_pcm_oss_read2+0x1f0/0x3f0
[   58.353643][ T3875] kobject: 'loop4' (00000000b6879e8f): fill_kobj_path: path = '/devices/virtual/block/loop4'
[   58.359085][ T7877]  ? snd_pcm_oss_read3+0x420/0x420
[   58.359101][ T7877]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   58.359121][ T7877]  snd_pcm_oss_read+0x53a/0x6a0
[   58.408614][ T7877]  __vfs_read+0x8d/0x110
[   58.412860][ T7877]  ? snd_pcm_oss_read2+0x3f0/0x3f0
[   58.417981][ T7877]  vfs_read+0x194/0x3e0
[   58.422153][ T7877]  ksys_read+0xea/0x1f0
[   58.426316][ T7877]  ? kernel_write+0x120/0x120
[   58.427076][ T3875] kobject: 'loop0' (000000009b77e6fc): kobject_uevent_env
[   58.431001][ T7877]  ? do_fast_syscall_32+0xd1/0xc98
[   58.431016][ T7877]  ? entry_SYSENTER_compat+0x70/0x7f
[   58.431029][ T7877]  ? do_fast_syscall_32+0xd1/0xc98
[   58.431044][ T7877]  __ia32_sys_read+0x71/0xb0
[   58.431060][ T7877]  do_fast_syscall_32+0x281/0xc98
[   58.431075][ T7877]  entry_SYSENTER_compat+0x70/0x7f
[   58.431092][ T7877] RIP: 0023:0xf7f66869
[   58.443406][ T3875] kobject: 'loop0' (000000009b77e6fc): fill_kobj_path: path = '/devices/virtual/block/loop0'
[   58.448557][ T7877] Code: 85 d2 74 02 89 0a 5b 5d c3 8b 04 24 c3 8b 14 24 c3 8b 3c 24 c3 90 90 90 90 90 90 90 90 90 90 90 90 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[   58.448564][ T7877] RSP: 002b:00000000f7f620cc EFLAGS: 00000296 ORIG_RAX: 0000000000000003
[   58.510905][ T7877] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200012c0
[   58.518891][ T7877] RDX: 0000000000001000 RSI: 0000000000000000 RDI: 0000000000000000
[   58.526876][ T7877] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   58.534846][ T7877] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[   58.542819][ T7877] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   58.551499][ T7877] Kernel Offset: disabled
[   58.555816][ T7877] Rebooting in 86400 seconds..