[   36.187464] audit: type=1800 audit(1551833211.463:27): pid=7516 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[   36.207847] audit: type=1800 audit(1551833211.463:28): pid=7516 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c.
[   37.103485] audit: type=1800 audit(1551833212.433:29): pid=7516 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
[   37.128664] audit: type=1800 audit(1551833212.433:30): pid=7516 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.127' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [   48.282826] kasan: CONFIG_KASAN_INLINE enabled
[   48.287521] kasan: GPF could be caused by NULL-ptr deref or user memory access
[   48.294939] general protection fault: 0000 [#1] PREEMPT SMP KASAN
[   48.301174] CPU: 1 PID: 7669 Comm: syz-executor236 Not tainted 5.0.0+ #7
[   48.307993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   48.317373] RIP: 0010:sctp_sched_rr_dequeue+0xd3/0x170
[   48.322644] Code: ea 03 80 3c 02 00 0f 85 a2 00 00 00 48 8b 5b 08 e8 62 20 ee fa 48 8d 7b 30 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 75 53 4c 8b 6b 30 4c 89 e7 49 83 ed 18 4c 89 ee e8 b4
[   48.341522] RSP: 0018:ffff88809e5f7040 EFLAGS: 00010206
[   48.346861] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffff8679cd9f
[   48.354112] RDX: 0000000000000006 RSI: ffffffff8681c41e RDI: 0000000000000030
[   48.361362] RBP: ffff88809e5f7058 R08: ffff8880908e8100 R09: 0000000000000002
[   48.368609] R10: ffffed1015d25bcf R11: ffff8880ae92de7b R12: ffff88809516ab20
[   48.375858] R13: ffff88809516a400 R14: dffffc0000000000 R15: ffff88809e5f7198
[   48.383125] FS:  0000000000799880(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000
[   48.391328] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   48.397187] CR2: 0000000020000080 CR3: 00000000904e0000 CR4: 00000000001406e0
[   48.404438] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   48.411686] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   48.418930] Call Trace:
[   48.421514]  sctp_outq_flush+0xba2/0x2790
[   48.425644]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[   48.431076]  ? sctp_chunkify+0x4b/0x290
[   48.435034]  ? __sctp_outq_teardown+0xc60/0xc60
[   48.439714]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   48.445249]  ? sctp_outq_tail+0x681/0x930
[   48.449405]  sctp_outq_uncork+0x6c/0x80
[   48.453362]  sctp_do_sm+0x513/0x5390
[   48.457058]  ? __lock_acquire+0x53b/0x4700
[   48.461274]  ? __sys_sendmsg+0x105/0x1d0
[   48.465318]  ? sctp_do_8_2_transport_strike.isra.0+0x940/0x940
[   48.471282]  ? mark_held_locks+0x100/0x100
[   48.475496]  ? sctp_assoc_bh_rcv+0x2fc/0x660
[   48.479881]  ? find_held_lock+0x35/0x130
[   48.483927]  ? sctp_assoc_bh_rcv+0x2fc/0x660
[   48.488364]  ? kvm_clock_read+0x18/0x30
[   48.492407]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[   48.497404]  ? ktime_get+0x208/0x300
[   48.501111]  sctp_assoc_bh_rcv+0x343/0x660
[   48.505343]  sctp_inq_push+0x1ea/0x290
[   48.509211]  sctp_backlog_rcv+0x189/0xbc0
[   48.513357]  ? __local_bh_enable_ip+0x15a/0x270
[   48.518008]  ? sctp_hash_obj+0x5e0/0x5e0
[   48.522049]  ? __release_sock+0xca/0x3a0
[   48.526089]  ? __local_bh_enable_ip+0x15a/0x270
[   48.530748]  __release_sock+0x12e/0x3a0
[   48.534719]  release_sock+0x59/0x1c0
[   48.538416]  sctp_wait_for_connect+0x316/0x540
[   48.542989]  ? sctp_get_port+0x180/0x180
[   48.547040]  ? finish_wait+0x260/0x260
[   48.550917]  ? sctp_datamsg_put+0x36/0x4d0
[   48.555128]  ? sctp_primitive_SEND+0xa0/0xd0
[   48.559531]  sctp_sendmsg_to_asoc+0x13e2/0x17d0
[   48.564185]  ? sctp_clear_owner_w+0x120/0x120
[   48.568679]  ? sctp_autobind+0x1f0/0x1f0
[   48.572721]  ? lock_downgrade+0x810/0x810
[   48.576878]  ? kasan_check_read+0x11/0x20
[   48.581008]  sctp_sendmsg+0x10a9/0x17e0
[   48.584959]  ? sctp_id2assoc+0x2c0/0x2c0
[   48.588998]  ? _copy_from_user+0xdd/0x150
[   48.593128]  inet_sendmsg+0x147/0x5d0
[   48.596906]  ? ipip_gro_receive+0x100/0x100
[   48.601207]  sock_sendmsg+0xdd/0x130
[   48.604897]  ___sys_sendmsg+0x806/0x930
[   48.608851]  ? copy_msghdr_from_user+0x430/0x430
[   48.613586]  ? _raw_spin_unlock_bh+0x31/0x40
[   48.617989]  ? release_sock+0x158/0x1c0
[   48.621945]  ? sctp_setsockopt+0x165/0x68a0
[   48.626249]  ? sctp_setsockopt_paddr_thresholds+0x540/0x540
[   48.631938]  ? __local_bh_enable_ip+0x15a/0x270
[   48.636585]  ? _raw_spin_unlock_bh+0x31/0x40
[   48.640971]  ? __local_bh_enable_ip+0x15a/0x270
[   48.645633]  ? lockdep_hardirqs_on+0x415/0x5d0
[   48.650211]  ? _raw_spin_unlock_bh+0x31/0x40
[   48.654604]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   48.660120]  ? __fget_light+0x1a9/0x230
[   48.664079]  ? __fdget+0x1b/0x20
[   48.667423]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   48.672944]  __sys_sendmsg+0x105/0x1d0
[   48.676810]  ? __ia32_sys_shutdown+0x80/0x80
[   48.681217]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   48.685949]  ? do_syscall_64+0x26/0x610
[   48.689904]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   48.695248]  ? do_syscall_64+0x26/0x610
[   48.699205]  __x64_sys_sendmsg+0x78/0xb0
[   48.703278]  do_syscall_64+0x103/0x610
[   48.707147]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   48.712329] RIP: 0033:0x440159
[   48.715504] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   48.734398] RSP: 002b:00007ffc4be52b58 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   48.742084] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 0000000000440159
[   48.749332] RDX: 0000000000000000 RSI: 000000002001afc8 RDI: 0000000000000003
[   48.756582] RBP: 00000000006ca018 R08: 0000000000000002 R09: 00000000004002c8
[   48.763831] R10: 0000000000000008 R11: 0000000000000246 R12: 00000000004019e0
[   48.771081] R13: 0000000000401a70 R14: 0000000000000000 R15: 0000000000000000
[   48.778328] Modules linked in:
[   48.782333] ---[ end trace 9ceb54d76f76b284 ]---
[   48.787116] RIP: 0010:sctp_sched_rr_dequeue+0xd3/0x170
[   48.792447] Code: ea 03 80 3c 02 00 0f 85 a2 00 00 00 48 8b 5b 08 e8 62 20 ee fa 48 8d 7b 30 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 75 53 4c 8b 6b 30 4c 89 e7 49 83 ed 18 4c 89 ee e8 b4
[   48.811400] RSP: 0018:ffff88809e5f7040 EFLAGS: 00010206
[   48.816756] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffff8679cd9f
[   48.824031] RDX: 0000000000000006 RSI: ffffffff8681c41e RDI: 0000000000000030
[   48.831312] RBP: ffff88809e5f7058 R08: ffff8880908e8100 R09: 0000000000000002
[   48.838576] R10: ffffed1015d25bcf R11: ffff8880ae92de7b R12: ffff88809516ab20
[   48.845854] R13: ffff88809516a400 R14: dffffc0000000000 R15: ffff88809e5f7198
[   48.853153] FS:  0000000000799880(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000
[   48.861408] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   48.867284] CR2: 0000000020000080 CR3: 00000000904e0000 CR4: 00000000001406e0
[   48.874569] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   48.881864] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   48.889134] Kernel panic - not syncing: Fatal exception
[   48.895163] Kernel Offset: disabled
[   48.898781] Rebooting in 86400 seconds..