[   43.229687][   T26] audit: type=1800 audit(1581563198.488:29): pid=7823 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
[   43.249708][   T26] audit: type=1800 audit(1581563198.488:30): pid=7823 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   53.866652][ T7987] IPVS: ftp: loaded support on port[0] = 21
[   54.151601][  T185] tipc: TX() has been purged, node left!
[   54.431356][ T7974] can: request_module (can-proto-0) failed.
[   57.154680][ T7974] can: request_module (can-proto-0) failed.
[   57.166122][ T7974] can: request_module (can-proto-0) failed.
Warning: Permanently added '10.128.1.55' (ECDSA) to the list of known hosts.
2020/02/13 03:06:59 parsed 1 programs
2020/02/13 03:07:00 executed programs: 0
[   64.848234][ T8063] IPVS: ftp: loaded support on port[0] = 21
[   64.884689][ T8067] IPVS: ftp: loaded support on port[0] = 21
[   64.891155][ T8073] IPVS: ftp: loaded support on port[0] = 21
[   64.897530][ T8071] IPVS: ftp: loaded support on port[0] = 21
[   64.920429][ T8069] IPVS: ftp: loaded support on port[0] = 21
[   64.924060][ T8070] IPVS: ftp: loaded support on port[0] = 21
[   65.006440][ T8063] chnl_net:caif_netlink_parms(): no params data found
[   65.064590][ T8063] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.072231][ T8063] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.079783][ T8063] device bridge_slave_0 entered promiscuous mode
[   65.089317][ T8063] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.096679][ T8063] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.104494][ T8063] device bridge_slave_1 entered promiscuous mode
[   65.137124][ T8063] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   65.195988][ T8063] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   65.242741][ T8067] chnl_net:caif_netlink_parms(): no params data found
[   65.270888][ T8063] team0: Port device team_slave_0 added
[   65.286432][ T8069] chnl_net:caif_netlink_parms(): no params data found
[   65.303184][ T8063] team0: Port device team_slave_1 added
[   65.324291][ T8071] chnl_net:caif_netlink_parms(): no params data found
[   65.344027][ T8073] chnl_net:caif_netlink_parms(): no params data found
[   65.443522][ T8063] device hsr_slave_0 entered promiscuous mode
[   65.482040][ T8063] device hsr_slave_1 entered promiscuous mode
[   65.567798][ T8067] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.575023][ T8067] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.584984][ T8067] device bridge_slave_0 entered promiscuous mode
[   65.597016][ T8067] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.604432][ T8067] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.612269][ T8067] device bridge_slave_1 entered promiscuous mode
[   65.627285][ T8073] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.634614][ T8073] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.644542][ T8073] device bridge_slave_0 entered promiscuous mode
[   65.653079][ T8073] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.660253][ T8073] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.668545][ T8073] device bridge_slave_1 entered promiscuous mode
[   65.699038][ T8071] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.706747][ T8071] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.714956][ T8071] device bridge_slave_0 entered promiscuous mode
[   65.745751][ T8067] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   65.756194][ T8069] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.763542][ T8069] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.771112][ T8069] device bridge_slave_0 entered promiscuous mode
[   65.783636][ T8071] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.790754][ T8071] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.799664][ T8071] device bridge_slave_1 entered promiscuous mode
[   65.817378][ T8073] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   65.827973][ T8067] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   65.843918][ T8069] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.851051][ T8069] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.858913][ T8069] device bridge_slave_1 entered promiscuous mode
[   65.885959][ T8073] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   65.896647][ T8071] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   65.915903][ T8067] team0: Port device team_slave_0 added
[   65.930895][ T8069] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   65.947029][ T8071] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   65.966493][ T8067] team0: Port device team_slave_1 added
[   65.974388][ T8069] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   65.987212][ T8070] chnl_net:caif_netlink_parms(): no params data found
[   66.009240][ T8063] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   66.065121][ T8063] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   66.128862][ T8073] team0: Port device team_slave_0 added
[   66.138955][ T8073] team0: Port device team_slave_1 added
[   66.146606][ T8071] team0: Port device team_slave_0 added
[   66.160853][ T8063] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   66.217148][ T8063] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   66.280354][ T8071] team0: Port device team_slave_1 added
[   66.292852][ T8069] team0: Port device team_slave_0 added
[   66.303189][ T8069] team0: Port device team_slave_1 added
[   66.344628][ T8070] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.352423][ T8070] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.360207][ T8070] device bridge_slave_0 entered promiscuous mode
[   66.413356][ T8071] device hsr_slave_0 entered promiscuous mode
[   66.471860][ T8071] device hsr_slave_1 entered promiscuous mode
[   66.551660][ T8071] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   66.559551][ T8071] Cannot create hsr debugfs directory
[   66.604220][ T8067] device hsr_slave_0 entered promiscuous mode
[   66.661817][ T8067] device hsr_slave_1 entered promiscuous mode
[   66.731730][ T8067] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   66.739361][ T8067] Cannot create hsr debugfs directory
[   66.750599][ T8070] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.758917][ T8070] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.766875][ T8070] device bridge_slave_1 entered promiscuous mode
[   66.823254][ T8073] device hsr_slave_0 entered promiscuous mode
[   66.861965][ T8073] device hsr_slave_1 entered promiscuous mode
[   66.911721][ T8073] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   66.919537][ T8073] Cannot create hsr debugfs directory
[   66.984238][ T8069] device hsr_slave_0 entered promiscuous mode
[   67.021914][ T8069] device hsr_slave_1 entered promiscuous mode
[   67.071689][ T8069] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   67.079379][ T8069] Cannot create hsr debugfs directory
[   67.108570][ T8070] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   67.139120][ T8071] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   67.185493][ T8070] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   67.213782][ T8071] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   67.264100][ T8071] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   67.329930][ T8070] team0: Port device team_slave_0 added
[   67.336829][ T8071] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   67.415268][ T8070] team0: Port device team_slave_1 added
[   67.475385][ T8070] device hsr_slave_0 entered promiscuous mode
[   67.521902][ T8070] device hsr_slave_1 entered promiscuous mode
[   67.561675][ T8070] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   67.569274][ T8070] Cannot create hsr debugfs directory
[   67.575197][ T8073] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   67.644578][ T8073] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   67.703319][ T8073] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   67.766582][ T8073] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   67.809789][ T8067] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   67.882540][ T8067] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   67.926050][ T8067] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   67.993866][ T8067] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   68.068837][ T8069] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   68.104820][ T8069] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   68.173387][ T8069] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   68.256066][ T8069] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   68.311582][ T8070] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   68.365973][ T8070] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   68.415205][ T8063] 8021q: adding VLAN 0 to HW filter on device bond0
[   68.434950][ T8070] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   68.475098][ T8070] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   68.548100][ T8071] 8021q: adding VLAN 0 to HW filter on device bond0
[   68.560030][ T2829] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   68.571075][ T2829] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   68.597428][ T8063] 8021q: adding VLAN 0 to HW filter on device team0
[   68.623236][ T8067] 8021q: adding VLAN 0 to HW filter on device bond0
[   68.636012][ T2612] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   68.647133][ T2612] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   68.656610][ T2612] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.663957][ T2612] bridge0: port 1(bridge_slave_0) entered forwarding state
[   68.676914][ T2612] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   68.692188][ T2829] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   68.700786][ T2829] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   68.709812][ T2829] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.717079][ T2829] bridge0: port 2(bridge_slave_1) entered forwarding state
[   68.739098][ T8067] 8021q: adding VLAN 0 to HW filter on device team0
[   68.749697][ T8073] 8021q: adding VLAN 0 to HW filter on device bond0
[   68.760721][ T8071] 8021q: adding VLAN 0 to HW filter on device team0
[   68.770121][ T2612] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   68.779283][ T2612] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   68.787691][ T2612] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   68.795667][ T2612] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   68.823935][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   68.835246][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   68.845531][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   68.853917][ T2797] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.861053][ T2797] bridge0: port 1(bridge_slave_0) entered forwarding state
[   68.868833][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   68.907474][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   68.915577][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   68.925020][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   68.934341][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   68.943756][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   68.952929][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   68.961289][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   68.969618][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   68.978401][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   68.987076][ T2822] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.994175][ T2822] bridge0: port 1(bridge_slave_0) entered forwarding state
[   69.002480][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   69.011024][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   69.019360][ T2822] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.026450][ T2822] bridge0: port 2(bridge_slave_1) entered forwarding state
[   69.034028][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   69.041788][ T2822] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   69.054447][ T8063] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   69.069459][ T8063] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   69.085471][ T8070] 8021q: adding VLAN 0 to HW filter on device bond0
[   69.097991][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   69.108357][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   69.117187][    T5] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.124310][    T5] bridge0: port 2(bridge_slave_1) entered forwarding state
[   69.132807][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   69.141140][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   69.149470][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   69.157417][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   69.165376][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   69.176705][ T8073] 8021q: adding VLAN 0 to HW filter on device team0
[   69.195726][ T8069] 8021q: adding VLAN 0 to HW filter on device bond0
[   69.208612][ T2829] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   69.217602][ T2829] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   69.225716][ T2829] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   69.233698][ T2829] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   69.243132][ T2829] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   69.251407][ T2829] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   69.260354][ T2829] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   69.269106][ T2829] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   69.294584][ T8070] 8021q: adding VLAN 0 to HW filter on device team0
[   69.311186][ T8069] 8021q: adding VLAN 0 to HW filter on device team0
[   69.324440][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   69.332433][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   69.339882][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   69.349432][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   69.359288][ T2673] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.366426][ T2673] bridge0: port 1(bridge_slave_0) entered forwarding state
[   69.374226][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   69.383312][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   69.393880][ T2673] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.400922][ T2673] bridge0: port 2(bridge_slave_1) entered forwarding state
[   69.408935][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   69.417830][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   69.426368][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   69.434791][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   69.443436][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   69.451005][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   69.460427][ T8063] 8021q: adding VLAN 0 to HW filter on device batadv0
[   69.495643][ T8071] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   69.506205][ T8071] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   69.519339][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   69.528049][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   69.535836][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   69.544507][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   69.553467][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   69.562417][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   69.570670][ T2673] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.577773][ T2673] bridge0: port 1(bridge_slave_0) entered forwarding state
[   69.585390][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   69.594018][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   69.602454][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   69.610903][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   69.619541][ T2673] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.626663][ T2673] bridge0: port 2(bridge_slave_1) entered forwarding state
[   69.634300][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   69.643088][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   69.651826][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   69.660249][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   69.668555][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   69.677127][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   69.685813][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   69.694075][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   69.702413][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   69.710913][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   69.719302][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   69.727451][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   69.736149][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   69.744507][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   69.752528][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   69.760382][ T2673] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   69.774135][ T8073] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   69.817194][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   69.825955][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   69.835724][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   69.844366][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   69.857680][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   69.866138][ T2797] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.873212][ T2797] bridge0: port 1(bridge_slave_0) entered forwarding state
[   69.881445][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   69.890801][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   69.899523][ T2797] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.906692][ T2797] bridge0: port 2(bridge_slave_1) entered forwarding state
[   69.914572][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   69.922471][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   69.929905][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   69.938495][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   69.946104][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   69.960121][ T8067] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   69.974362][ T8067] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   69.998990][ T8071] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.017965][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   70.026280][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   70.036980][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   70.046514][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   70.056100][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   70.065395][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   70.074375][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   70.083034][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   70.102746][ T8073] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.119280][ T8069] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   70.131666][ T8069] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   70.165385][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   70.173606][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   70.181320][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   70.190383][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   70.199339][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
2020/02/13 03:07:05 executed programs: 6
[   70.215090][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   70.224135][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   70.232876][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   70.241303][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   70.249946][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   70.260741][ T2797] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   70.316683][ T2829] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   70.330153][ T2829] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   70.340454][ T2829] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   70.353712][ T2829] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   70.376436][ T8067] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.398182][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   70.407567][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   70.419115][ T8070] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   70.436563][ T8070] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   70.453795][ T8069] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.466573][ T2612] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   70.476442][ T2612] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   70.527672][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   70.546343][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   70.571382][ T8070] 8021q: adding VLAN 0 to HW filter on device batadv0
2020/02/13 03:07:10 executed programs: 134
2020/02/13 03:07:15 executed programs: 271
2020/02/13 03:07:20 executed programs: 407
[   89.825993][T11852] ==================================================================
[   89.834239][T11852] BUG: KASAN: stack-out-of-bounds in ax25_getname+0x4d/0x7b0
[   89.841612][T11852] Write of size 72 at addr ffff88807d117e20 by task syz-executor.2/11852
[   89.850013][T11852] 
[   89.852331][T11852] CPU: 0 PID: 11852 Comm: syz-executor.2 Not tainted 5.6.0-rc1-syzkaller #0
[   89.860984][T11852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   89.871051][T11852] Call Trace:
[   89.874340][T11852]  dump_stack+0x12d/0x187
[   89.878677][T11852]  print_address_description.constprop.8.cold.10+0x9/0x31d
[   89.885915][T11852]  ? ax25_getname+0x4d/0x7b0
[   89.890503][T11852]  __kasan_report.cold.11+0x1b/0x32
[   89.895690][T11852]  ? ax25_getname+0x4d/0x7b0
[   89.900271][T11852]  ? ax25_getname+0x4d/0x7b0
[   89.904902][T11852]  kasan_report+0x12/0x20
[   89.909212][T11852]  check_memory_region+0x153/0x1d0
[   89.914320][T11852]  memset+0x23/0x40
[   89.918128][T11852]  ax25_getname+0x4d/0x7b0
[   89.922523][T11852]  ? fget+0x48/0x60
[   89.926315][T11852]  vhost_net_ioctl+0xe7e/0x1530
[   89.931325][T11852]  ? ioctl_file_clone+0x120/0x120
[   89.936383][T11852]  ? handle_tx_kick+0x40/0x40
[   89.941035][T11852]  ? smack_file_ioctl+0x24c/0x2c0
[   89.946051][T11852]  ? nsecs_to_jiffies+0x20/0x20
[   89.950905][T11852]  ? tomoyo_file_ioctl+0x14/0x20
[   89.955827][T11852]  ksys_ioctl+0xc1/0x110
[   89.960040][T11852]  ? lockdep_hardirqs_on+0x42d/0x5d0
[   89.965310][T11852]  __x64_sys_ioctl+0x6e/0xb0
[   89.969880][T11852]  do_syscall_64+0xca/0x5f0
[   89.974371][T11852]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   89.980240][T11852] RIP: 0033:0x45a639
[   89.984108][T11852] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   90.003726][T11852] RSP: 002b:00007f37dcb45c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   90.012112][T11852] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a639
[   90.020059][T11852] RDX: 0000000020d7c000 RSI: 000000004008af30 RDI: 0000000000000003
[   90.028003][T11852] RBP: 000000000075c118 R08: 0000000000000000 R09: 0000000000000000
[   90.035949][T11852] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f37dcb466d4
[   90.043895][T11852] R13: 00000000004c5b18 R14: 00000000004dab78 R15: 00000000ffffffff
[   90.051873][T11852] 
[   90.054172][T11852] The buggy address belongs to the page:
[   90.059782][T11852] page:ffffea0001f445c0 refcount:0 mapcount:0 mapping:0000000000000000 index:0x0
[   90.068898][T11852] flags: 0x1fffc0000000000()
[   90.073475][T11852] raw: 01fffc0000000000 0000000000000000 ffffea0001f445c8 0000000000000000
[   90.082031][T11852] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[   90.090584][T11852] page dumped because: kasan: bad access detected
[   90.096973][T11852] 
[   90.099342][T11852] addr ffff88807d117e20 is located in stack of task syz-executor.2/11852 at offset 160 in frame:
[   90.109838][T11852]  vhost_net_ioctl+0x0/0x1530
[   90.114497][T11852] 
[   90.116839][T11852] this frame has 3 objects:
[   90.121310][T11852]  [32, 36) 'r'
[   90.121312][T11852]  [96, 104) 'backend'
[   90.124740][T11852]  [160, 212) 'uaddr'
[   90.128781][T11852] 
[   90.135817][T11852] Memory state around the buggy address:
[   90.141438][T11852]  ffff88807d117d00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   90.149477][T11852]  ffff88807d117d80: f1 f1 f1 f1 04 f2 f2 f2 f2 f2 f2 f2 00 f2 f2 f2
[   90.157510][T11852] >ffff88807d117e00: f2 f2 f2 f2 00 00 00 00 00 00 04 f2 00 00 00 00
[   90.165563][T11852]                                                  ^
[   90.172220][T11852]  ffff88807d117e80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   90.180269][T11852]  ffff88807d117f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   90.188311][T11852] ==================================================================
[   90.196341][T11852] Disabling lock debugging due to kernel taint
[   90.208836][T11852] Kernel panic - not syncing: panic_on_warn set ...
[   90.215448][T11852] CPU: 0 PID: 11852 Comm: syz-executor.2 Tainted: G    B             5.6.0-rc1-syzkaller #0
[   90.225486][T11852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   90.235527][T11852] Call Trace:
[   90.238810][T11852]  dump_stack+0x12d/0x187
[   90.243113][T11852]  ? ax25_getname+0x20/0x7b0
[   90.247672][T11852]  panic+0x22a/0x4e3
[   90.251559][T11852]  ? add_taint.cold.7+0x11/0x11
[   90.256380][T11852]  ? ___preempt_schedule+0x16/0x18
[   90.261465][T11852]  ? ax25_getname+0x4d/0x7b0
[   90.266117][T11852]  end_report+0x47/0x4f
[   90.270247][T11852]  __kasan_report.cold.11+0xe/0x32
[   90.275335][T11852]  ? ax25_getname+0x4d/0x7b0
[   90.279914][T11852]  ? ax25_getname+0x4d/0x7b0
[   90.284486][T11852]  kasan_report+0x12/0x20
[   90.288795][T11852]  check_memory_region+0x153/0x1d0
[   90.293875][T11852]  memset+0x23/0x40
[   90.297658][T11852]  ax25_getname+0x4d/0x7b0
[   90.302061][T11852]  ? fget+0x48/0x60
[   90.305857][T11852]  vhost_net_ioctl+0xe7e/0x1530
[   90.310677][T11852]  ? ioctl_file_clone+0x120/0x120
[   90.315678][T11852]  ? handle_tx_kick+0x40/0x40
[   90.320326][T11852]  ? smack_file_ioctl+0x24c/0x2c0
[   90.325336][T11852]  ? nsecs_to_jiffies+0x20/0x20
[   90.330160][T11852]  ? tomoyo_file_ioctl+0x14/0x20
[   90.335078][T11852]  ksys_ioctl+0xc1/0x110
[   90.339288][T11852]  ? lockdep_hardirqs_on+0x42d/0x5d0
[   90.344542][T11852]  __x64_sys_ioctl+0x6e/0xb0
[   90.349112][T11852]  do_syscall_64+0xca/0x5f0
[   90.353585][T11852]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   90.359457][T11852] RIP: 0033:0x45a639
[   90.363338][T11852] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   90.383271][T11852] RSP: 002b:00007f37dcb45c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   90.391651][T11852] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a639
[   90.399594][T11852] RDX: 0000000020d7c000 RSI: 000000004008af30 RDI: 0000000000000003
[   90.407544][T11852] RBP: 000000000075c118 R08: 0000000000000000 R09: 0000000000000000
[   90.415515][T11852] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f37dcb466d4
[   90.423554][T11852] R13: 00000000004c5b18 R14: 00000000004dab78 R15: 00000000ffffffff
[   90.432946][T11852] Kernel Offset: disabled
[   90.437261][T11852] Rebooting in 86400 seconds..