[   51.028441][   T27] audit: type=1800 audit(1563764117.053:26): pid=8253 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   51.064538][   T27] audit: type=1800 audit(1563764117.053:27): pid=8253 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   64.385803][ T8420] IPVS: ftp: loaded support on port[0] = 21
[   66.209463][ T8426] can: request_module (can-proto-0) failed.
[   66.221013][ T8426] can: request_module (can-proto-0) failed.
Warning: Permanently added '10.128.0.223' (ECDSA) to the list of known hosts.
2019/07/22 02:55:39 parsed 1 programs
2019/07/22 02:55:40 executed programs: 0
[   74.839110][ T8496] IPVS: ftp: loaded support on port[0] = 21
[   74.902173][ T8499] IPVS: ftp: loaded support on port[0] = 21
[   74.912074][ T8500] IPVS: ftp: loaded support on port[0] = 21
[   74.975961][ T8505] IPVS: ftp: loaded support on port[0] = 21
[   74.992913][ T8504] IPVS: ftp: loaded support on port[0] = 21
[   75.006948][ T8506] IPVS: ftp: loaded support on port[0] = 21
[   75.129288][ T8496] chnl_net:caif_netlink_parms(): no params data found
[   75.182088][ T8499] chnl_net:caif_netlink_parms(): no params data found
[   75.215264][ T8496] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.222817][ T8496] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.230513][ T8496] device bridge_slave_0 entered promiscuous mode
[   75.259181][ T8496] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.266261][ T8496] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.274887][ T8496] device bridge_slave_1 entered promiscuous mode
[   75.295365][ T8499] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.302647][ T8499] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.310680][ T8499] device bridge_slave_0 entered promiscuous mode
[   75.318031][ T8499] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.325206][ T8499] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.332741][ T8499] device bridge_slave_1 entered promiscuous mode
[   75.368694][ T8500] chnl_net:caif_netlink_parms(): no params data found
[   75.394940][ T8496] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   75.412805][ T8499] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   75.429757][ T8500] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.436835][ T8500] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.444593][ T8500] device bridge_slave_0 entered promiscuous mode
[   75.453033][ T8496] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   75.466942][ T8499] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   75.485216][ T8500] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.492481][ T8500] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.500223][ T8500] device bridge_slave_1 entered promiscuous mode
[   75.559010][ T8496] team0: Port device team_slave_0 added
[   75.577014][ T8500] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   75.587686][ T8500] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   75.599429][ T8499] team0: Port device team_slave_0 added
[   75.607829][ T8499] team0: Port device team_slave_1 added
[   75.614789][ T8496] team0: Port device team_slave_1 added
[   75.665711][ T8505] chnl_net:caif_netlink_parms(): no params data found
[   75.687390][ T8500] team0: Port device team_slave_0 added
[   75.715364][ T8500] team0: Port device team_slave_1 added
[   75.733521][ T8504] chnl_net:caif_netlink_parms(): no params data found
[   75.791268][ T8496] device hsr_slave_0 entered promiscuous mode
[   75.838869][ T8496] device hsr_slave_1 entered promiscuous mode
[   75.940261][ T8500] device hsr_slave_0 entered promiscuous mode
[   75.978711][ T8500] device hsr_slave_1 entered promiscuous mode
[   76.070529][ T8499] device hsr_slave_0 entered promiscuous mode
[   76.128796][ T8499] device hsr_slave_1 entered promiscuous mode
[   76.184745][ T8506] chnl_net:caif_netlink_parms(): no params data found
[   76.218003][ T8505] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.225163][ T8505] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.232976][ T8505] device bridge_slave_0 entered promiscuous mode
[   76.241030][ T8505] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.248074][ T8505] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.257376][ T8505] device bridge_slave_1 entered promiscuous mode
[   76.298149][ T8506] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.306732][ T8506] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.314504][ T8506] device bridge_slave_0 entered promiscuous mode
[   76.325746][ T8506] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.333349][ T8506] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.341019][ T8506] device bridge_slave_1 entered promiscuous mode
[   76.358936][ T8505] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   76.370474][ T8504] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.377523][ T8504] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.385219][ T8504] device bridge_slave_0 entered promiscuous mode
[   76.392847][ T8504] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.399961][ T8504] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.407562][ T8504] device bridge_slave_1 entered promiscuous mode
[   76.440537][ T8505] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   76.462941][ T8505] team0: Port device team_slave_0 added
[   76.471699][ T8506] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   76.481447][ T8506] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   76.495368][ T8504] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   76.505252][ T8504] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   76.514608][ T8505] team0: Port device team_slave_1 added
[   76.534418][ T8506] team0: Port device team_slave_0 added
[   76.541778][ T8506] team0: Port device team_slave_1 added
[   76.620367][ T8506] device hsr_slave_0 entered promiscuous mode
[   76.668746][ T8506] device hsr_slave_1 entered promiscuous mode
[   76.716860][ T8504] team0: Port device team_slave_0 added
[   76.780777][ T8505] device hsr_slave_0 entered promiscuous mode
[   76.838827][ T8505] device hsr_slave_1 entered promiscuous mode
[   76.904632][ T8504] team0: Port device team_slave_1 added
[   76.951294][ T8504] device hsr_slave_0 entered promiscuous mode
[   76.998770][ T8504] device hsr_slave_1 entered promiscuous mode
[   77.054854][ T8506] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.061985][ T8506] bridge0: port 2(bridge_slave_1) entered forwarding state
[   77.069612][ T8506] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.076651][ T8506] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.097903][ T8500] 8021q: adding VLAN 0 to HW filter on device bond0
[   77.156339][ T8496] 8021q: adding VLAN 0 to HW filter on device bond0
[   77.170003][ T8500] 8021q: adding VLAN 0 to HW filter on device team0
[   77.183045][    T5] bridge0: port 1(bridge_slave_0) entered disabled state
[   77.193468][    T5] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.204988][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   77.213733][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   77.231820][ T8499] 8021q: adding VLAN 0 to HW filter on device bond0
[   77.247342][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   77.256017][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   77.264448][    T5] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.271510][    T5] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.280970][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   77.289499][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   77.297708][    T5] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.304775][    T5] bridge0: port 2(bridge_slave_1) entered forwarding state
[   77.312768][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   77.331921][ T8506] 8021q: adding VLAN 0 to HW filter on device bond0
[   77.355191][ T8499] 8021q: adding VLAN 0 to HW filter on device team0
[   77.362911][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   77.370984][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   77.379105][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   77.387468][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   77.395343][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   77.404938][ T8506] 8021q: adding VLAN 0 to HW filter on device team0
[   77.419787][ T8496] 8021q: adding VLAN 0 to HW filter on device team0
[   77.435027][ T8500] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   77.446488][ T8500] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   77.469326][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   77.477057][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   77.485018][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   77.493776][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   77.502911][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   77.512267][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   77.520957][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   77.529564][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   77.537689][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   77.546241][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   77.554614][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   77.563089][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   77.571604][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   77.580350][   T17] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.587373][   T17] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.594918][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   77.603351][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   77.611776][   T17] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.618850][   T17] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.626357][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   77.634922][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   77.643191][   T17] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.650272][   T17] bridge0: port 2(bridge_slave_1) entered forwarding state
[   77.659293][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   77.667081][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   77.674942][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   77.690317][ T8505] 8021q: adding VLAN 0 to HW filter on device bond0
[   77.707714][ T8500] 8021q: adding VLAN 0 to HW filter on device batadv0
[   77.720101][ T2408] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   77.729420][ T2408] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   77.737803][ T2408] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.744875][ T2408] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.754520][ T2408] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   77.763058][ T2408] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   77.797405][ T8505] 8021q: adding VLAN 0 to HW filter on device team0
[   77.814669][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   77.826993][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   77.836940][   T22] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.844019][   T22] bridge0: port 2(bridge_slave_1) entered forwarding state
[   77.852584][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   77.861134][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   77.869403][   T22] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.876419][   T22] bridge0: port 2(bridge_slave_1) entered forwarding state
[   77.884164][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   77.892861][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   77.901501][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   77.909881][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   77.918030][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   77.926653][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   77.935351][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   77.943896][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   77.952657][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   77.961246][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   77.969867][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   77.977894][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   77.986743][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   77.995366][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   78.003325][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   78.011092][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   78.019901][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   78.028098][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   78.036892][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   78.045366][   T22] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.052475][   T22] bridge0: port 1(bridge_slave_0) entered forwarding state
[   78.059984][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   78.068436][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   78.077230][   T22] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.085157][   T22] bridge0: port 2(bridge_slave_1) entered forwarding state
[   78.093401][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   78.101517][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   78.109425][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   78.117035][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   78.129592][ T8499] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   78.141296][ T8499] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   78.160481][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   78.169283][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   78.177586][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   78.187136][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   78.198713][ T2408] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   78.206917][ T2408] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   78.247151][ T8499] 8021q: adding VLAN 0 to HW filter on device batadv0
[   78.270456][ T8496] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   78.295929][ T8496] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   78.314167][ T8513] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   78.323292][ T8513] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   78.333216][ T8513] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   78.343050][ T8513] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   78.351944][ T8513] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   78.360855][ T8513] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   78.369377][ T8513] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   78.377491][ T8513] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   78.385752][ T8513] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   78.394200][ T8513] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   78.408113][ T8506] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   78.420771][ T8506] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   78.433150][ T8504] 8021q: adding VLAN 0 to HW filter on device bond0
[   78.453208][ T8496] 8021q: adding VLAN 0 to HW filter on device batadv0
[   78.462552][ T8513] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   78.471212][ T8513] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   78.480449][ T8513] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   78.489315][ T8513] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   78.497738][ T8513] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   78.506496][ T8513] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   78.514843][ T8513] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   78.526455][ T8505] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   78.538918][ T8505] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   78.559226][ T8518] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   78.584992][ T8518] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   78.600838][ T8518] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   78.612406][ T8518] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   78.634288][ T8504] 8021q: adding VLAN 0 to HW filter on device team0
[   78.667252][ T8505] 8021q: adding VLAN 0 to HW filter on device batadv0
[   78.679697][ T8506] 8021q: adding VLAN 0 to HW filter on device batadv0
[   78.700123][ T8518] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   78.710573][ T8518] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   78.720693][ T8518] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.727784][ T8518] bridge0: port 1(bridge_slave_0) entered forwarding state
[   78.743447][ T8518] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   78.752619][ T8518] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   78.761203][ T8518] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.768261][ T8518] bridge0: port 2(bridge_slave_1) entered forwarding state
[   78.776707][ T8518] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   78.794366][ T2408] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   78.827476][ T8513] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   78.839729][ T8513] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   78.848225][ T8513] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   78.857982][ T8513] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   78.867101][ T8513] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   78.876036][ T8513] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   78.884562][ T8513] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   78.893107][ T8513] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   78.901703][ T8513] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   78.910322][ T8513] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   78.925625][ T8504] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   79.014826][ T8504] 8021q: adding VLAN 0 to HW filter on device batadv0
2019/07/22 02:55:45 executed programs: 9
2019/07/22 02:55:50 executed programs: 40
[   85.578673][ T8505] BUG: Bad rss-counter state mm:000000001e045fe2 idx:0 val:241
[   85.586289][ T8505] BUG: Bad rss-counter state mm:000000001e045fe2 idx:1 val:546
[   85.593886][ T8505] BUG: non-zero pgtables_bytes on freeing mm: 73728
[   85.601433][ T8775] ==================================================================
[   85.609623][ T8775] BUG: KASAN: use-after-free in exit_mmap+0x47e/0x510
[   85.616359][ T8775] Read of size 8 at addr ffff888099a46be8 by task syz-executor.4/8775
[   85.624488][ T8775] 
[   85.626817][ T8775] CPU: 1 PID: 8775 Comm: syz-executor.4 Not tainted 5.2.0-rc2+ #1
[   85.634602][ T8775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   85.644634][ T8775] Call Trace:
[   85.647913][ T8775]  dump_stack+0x172/0x1f0
[   85.652224][ T8775]  ? exit_mmap+0x47e/0x510
[   85.656621][ T8775]  print_address_description.cold+0x7c/0x20d
[   85.662584][ T8775]  ? exit_mmap+0x47e/0x510
[   85.666984][ T8775]  ? exit_mmap+0x47e/0x510
[   85.671378][ T8775]  __kasan_report.cold+0x1b/0x40
[   85.676291][ T8775]  ? exit_mmap+0x47e/0x510
[   85.680713][ T8775]  kasan_report+0x12/0x20
[   85.685041][ T8775]  __asan_report_load8_noabort+0x14/0x20
[   85.690651][ T8775]  exit_mmap+0x47e/0x510
[   85.694871][ T8775]  ? __ia32_sys_munmap+0x80/0x80
[   85.699804][ T8775]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   85.706044][ T8775]  ? __khugepaged_exit+0x2da/0x400
[   85.711146][ T8775]  ? __khugepaged_exit+0x2da/0x400
[   85.716231][ T8775]  ? __khugepaged_exit+0x2da/0x400
[   85.721335][ T8775]  ? rcu_read_lock_sched_held+0x110/0x130
[   85.727060][ T8775]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   85.733288][ T8775]  ? __khugepaged_exit+0xcf/0x400
[   85.738293][ T8775]  mmput+0x15f/0x4c0
[   85.742181][ T8775]  do_exit+0x816/0x2fa0
[   85.746325][ T8775]  ? find_held_lock+0x35/0x130
[   85.751068][ T8775]  ? get_signal+0x334/0x2240
[   85.755641][ T8775]  ? mm_update_next_owner+0x640/0x640
[   85.761005][ T8775]  ? kasan_check_write+0x14/0x20
[   85.765943][ T8775]  ? _raw_spin_unlock_irq+0x28/0x90
[   85.771129][ T8775]  ? get_signal+0x334/0x2240
[   85.775698][ T8775]  ? _raw_spin_unlock_irq+0x28/0x90
[   85.780891][ T8775]  do_group_exit+0x135/0x370
[   85.785471][ T8775]  get_signal+0x41e/0x2240
[   85.789888][ T8775]  ? vhost_zerocopy_callback+0x300/0x300
[   85.795515][ T8775]  ? do_vfs_ioctl+0x120/0x1380
[   85.800281][ T8775]  do_signal+0x87/0x1900
[   85.804510][ T8775]  ? ioctl_preallocate+0x210/0x210
[   85.809596][ T8775]  ? __fget+0x381/0x550
[   85.813743][ T8775]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   85.819981][ T8775]  ? setup_sigcontext+0x7d0/0x7d0
[   85.824994][ T8775]  ? kick_process+0xef/0x180
[   85.829566][ T8775]  ? exit_to_usermode_loop+0x43/0x2c0
[   85.834927][ T8775]  ? do_syscall_64+0x58e/0x680
[   85.839787][ T8775]  ? exit_to_usermode_loop+0x43/0x2c0
[   85.845162][ T8775]  ? lockdep_hardirqs_on+0x418/0x5d0
[   85.850435][ T8775]  ? trace_hardirqs_on+0x67/0x220
[   85.855438][ T8775]  exit_to_usermode_loop+0x244/0x2c0
[   85.860717][ T8775]  do_syscall_64+0x58e/0x680
[   85.865300][ T8775]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   85.871168][ T8775] RIP: 0033:0x459819
[   85.875040][ T8775] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   85.894619][ T8775] RSP: 002b:00007ff1d2e0bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   85.903011][ T8775] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000459819
[   85.910973][ T8775] RDX: 00000000200023c0 RSI: 000000004028af11 RDI: 0000000000000003
[   85.918936][ T8775] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000
[   85.926900][ T8775] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff1d2e0c6d4
[   85.934859][ T8775] R13: 00000000004c4722 R14: 00000000004d87d0 R15: 00000000ffffffff
[   85.942825][ T8775] 
[   85.945144][ T8775] Allocated by task 8505:
[   85.949456][ T8775]  save_stack+0x23/0x90
[   85.953606][ T8775]  __kasan_kmalloc.constprop.0+0xcf/0xe0
[   85.959230][ T8775]  kasan_slab_alloc+0xf/0x20
[   85.963813][ T8775]  kmem_cache_alloc+0x11a/0x6f0
[   85.968649][ T8775]  dup_mm+0x8a/0x13b0
[   85.972622][ T8775]  copy_process.part.0+0x2cde/0x6790
[   85.977891][ T8775]  _do_fork+0x25d/0xfe0
[   85.982050][ T8775]  __x64_sys_clone+0xbf/0x150
[   85.986726][ T8775]  do_syscall_64+0xfd/0x680
[   85.991230][ T8775]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   85.997100][ T8775] 
[   85.999408][ T8775] Freed by task 8505:
[   86.003393][ T8775]  save_stack+0x23/0x90
[   86.007533][ T8775]  __kasan_slab_free+0x102/0x150
[   86.012445][ T8775]  kasan_slab_free+0xe/0x10
[   86.016922][ T8775]  kmem_cache_free+0x86/0x260
[   86.021581][ T8775]  __mmdrop+0x238/0x320
[   86.025724][ T8775]  finish_task_switch+0x456/0x730
[   86.030727][ T8775]  __schedule+0x7d3/0x1560
[   86.035121][ T8775]  schedule+0xa8/0x260
[   86.039171][ T8775]  do_nanosleep+0x201/0x690
[   86.043671][ T8775]  hrtimer_nanosleep+0x2a6/0x570
[   86.048599][ T8775]  __x64_sys_nanosleep+0x1a6/0x220
[   86.053692][ T8775]  do_syscall_64+0xfd/0x680
[   86.058190][ T8775]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   86.064051][ T8775] 
[   86.066359][ T8775] The buggy address belongs to the object at ffff888099a46700
[   86.066359][ T8775]  which belongs to the cache mm_struct(65:syz4) of size 1496
[   86.081602][ T8775] The buggy address is located 1256 bytes inside of
[   86.081602][ T8775]  1496-byte region [ffff888099a46700, ffff888099a46cd8)
[   86.095027][ T8775] The buggy address belongs to the page:
[   86.100649][ T8775] page:ffffea0002669180 refcount:1 mapcount:0 mapping:ffff88809ce2b640 index:0x0 compound_mapcount: 0
[   86.111571][ T8775] flags: 0x1fffc0000010200(slab|head)
[   86.116923][ T8775] raw: 01fffc0000010200 ffff888089bfee48 ffff888089bfee48 ffff88809ce2b640
[   86.125497][ T8775] raw: 0000000000000000 ffff888099a46080 0000000100000004 ffff888089ab9740
[   86.134068][ T8775] page dumped because: kasan: bad access detected
[   86.140470][ T8775] page->mem_cgroup:ffff888089ab9740
[   86.145646][ T8775] 
[   86.147948][ T8775] Memory state around the buggy address:
[   86.153560][ T8775]  ffff888099a46a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   86.161601][ T8775]  ffff888099a46b00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   86.169647][ T8775] >ffff888099a46b80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   86.177811][ T8775]                                                           ^
[   86.185262][ T8775]  ffff888099a46c00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   86.193299][ T8775]  ffff888099a46c80: fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc fc
[   86.201338][ T8775] ==================================================================
[   86.209381][ T8775] Disabling lock debugging due to kernel taint
[   86.215775][ T8775] Kernel panic - not syncing: panic_on_warn set ...
[   86.222365][ T8775] CPU: 1 PID: 8775 Comm: syz-executor.4 Tainted: G    B             5.2.0-rc2+ #1
[   86.231537][ T8775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   86.241573][ T8775] Call Trace:
[   86.244858][ T8775]  dump_stack+0x172/0x1f0
[   86.249276][ T8775]  panic+0x2cb/0x744
[   86.253158][ T8775]  ? __warn_printk+0xf3/0xf3
[   86.257815][ T8775]  ? exit_mmap+0x47e/0x510
[   86.262210][ T8775]  ? preempt_schedule+0x4b/0x60
[   86.267038][ T8775]  ? ___preempt_schedule+0x16/0x18
[   86.272125][ T8775]  ? trace_hardirqs_on+0x5e/0x220
[   86.277125][ T8775]  ? exit_mmap+0x47e/0x510
[   86.281518][ T8775]  end_report+0x47/0x4f
[   86.285653][ T8775]  ? exit_mmap+0x47e/0x510
[   86.290070][ T8775]  __kasan_report.cold+0xe/0x40
[   86.294908][ T8775]  ? exit_mmap+0x47e/0x510
[   86.299317][ T8775]  kasan_report+0x12/0x20
[   86.303632][ T8775]  __asan_report_load8_noabort+0x14/0x20
[   86.309238][ T8775]  exit_mmap+0x47e/0x510
[   86.313455][ T8775]  ? __ia32_sys_munmap+0x80/0x80
[   86.318376][ T8775]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   86.324605][ T8775]  ? __khugepaged_exit+0x2da/0x400
[   86.329712][ T8775]  ? __khugepaged_exit+0x2da/0x400
[   86.334805][ T8775]  ? __khugepaged_exit+0x2da/0x400
[   86.339901][ T8775]  ? rcu_read_lock_sched_held+0x110/0x130
[   86.345606][ T8775]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   86.351820][ T8775]  ? __khugepaged_exit+0xcf/0x400
[   86.356819][ T8775]  mmput+0x15f/0x4c0
[   86.360690][ T8775]  do_exit+0x816/0x2fa0
[   86.364823][ T8775]  ? find_held_lock+0x35/0x130
[   86.369570][ T8775]  ? get_signal+0x334/0x2240
[   86.374135][ T8775]  ? mm_update_next_owner+0x640/0x640
[   86.379488][ T8775]  ? kasan_check_write+0x14/0x20
[   86.384409][ T8775]  ? _raw_spin_unlock_irq+0x28/0x90
[   86.389580][ T8775]  ? get_signal+0x334/0x2240
[   86.394143][ T8775]  ? _raw_spin_unlock_irq+0x28/0x90
[   86.399324][ T8775]  do_group_exit+0x135/0x370
[   86.403899][ T8775]  get_signal+0x41e/0x2240
[   86.408296][ T8775]  ? vhost_zerocopy_callback+0x300/0x300
[   86.413903][ T8775]  ? do_vfs_ioctl+0x120/0x1380
[   86.418656][ T8775]  do_signal+0x87/0x1900
[   86.422884][ T8775]  ? ioctl_preallocate+0x210/0x210
[   86.427970][ T8775]  ? __fget+0x381/0x550
[   86.432115][ T8775]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   86.438339][ T8775]  ? setup_sigcontext+0x7d0/0x7d0
[   86.443343][ T8775]  ? kick_process+0xef/0x180
[   86.448035][ T8775]  ? exit_to_usermode_loop+0x43/0x2c0
[   86.453382][ T8775]  ? do_syscall_64+0x58e/0x680
[   86.458126][ T8775]  ? exit_to_usermode_loop+0x43/0x2c0
[   86.463473][ T8775]  ? lockdep_hardirqs_on+0x418/0x5d0
[   86.468733][ T8775]  ? trace_hardirqs_on+0x67/0x220
[   86.473733][ T8775]  exit_to_usermode_loop+0x244/0x2c0
[   86.479088][ T8775]  do_syscall_64+0x58e/0x680
[   86.483671][ T8775]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   86.489537][ T8775] RIP: 0033:0x459819
[   86.493406][ T8775] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   86.512985][ T8775] RSP: 002b:00007ff1d2e0bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   86.521376][ T8775] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000459819
[   86.529333][ T8775] RDX: 00000000200023c0 RSI: 000000004028af11 RDI: 0000000000000003
[   86.537277][ T8775] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000
[   86.545222][ T8775] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff1d2e0c6d4
[   86.553167][ T8775] R13: 00000000004c4722 R14: 00000000004d87d0 R15: 00000000ffffffff
[   86.562277][ T8775] Kernel Offset: disabled
[   86.566593][ T8775] Rebooting in 86400 seconds..