[....] Starting enhanced syslogd: rsyslogd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[....] Starting periodic command scheduler: cron�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[....] Starting OpenBSD Secure Shell server: sshd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[ 28.701688] kauditd_printk_skb: 7 callbacks suppressed
[ 28.701703] audit: type=1800 audit(1542388889.740:29): pid=5869 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
[ 28.731987] audit: type=1800 audit(1542388889.740:30): pid=5869 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0
Debian GNU/Linux 7 syzkaller ttyS0
syzkaller login: [ 32.411345] sshd (6009) used greatest stack depth: 15632 bytes left
Warning: Permanently added '10.128.10.28' (ECDSA) to the list of known hosts.
executing program
[ 41.860917] IPVS: ftp: loaded support on port[0] = 21
[ 42.068546] WARNING: CPU: 1 PID: 6029 at fs/fuse/inode.c:119 fuse_destroy_inode+0x251/0x2c0
[ 42.077126] Kernel panic - not syncing: panic_on_warn set ...
[ 42.082997] CPU: 1 PID: 6029 Comm: syz-executor627 Not tainted 4.20.0-rc1-next-20181109+ #110
[ 42.091637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 42.100971] Call Trace:
[ 42.103545] dump_stack+0x244/0x39d
[ 42.107172] ? dump_stack_print_info.cold.1+0x20/0x20
[ 42.112364] panic+0x2ad/0x55c
[ 42.115554] ? add_taint.cold.5+0x16/0x16
[ 42.119692] ? __warn.cold.8+0x5/0x45
[ 42.123492] ? __warn+0xe8/0x1d0
[ 42.126841] ? fuse_destroy_inode+0x251/0x2c0
[ 42.131318] __warn.cold.8+0x20/0x45
[ 42.135033] ? rcu_softirq_qs+0x20/0x20
[ 42.139005] ? fuse_destroy_inode+0x251/0x2c0
[ 42.143482] report_bug+0x254/0x2d0
[ 42.147107] do_error_trap+0x11b/0x200
[ 42.150994] do_invalid_op+0x36/0x40
[ 42.154693] ? fuse_destroy_inode+0x251/0x2c0
[ 42.159175] invalid_op+0x14/0x20
[ 42.162616] RIP: 0010:fuse_destroy_inode+0x251/0x2c0
[ 42.167710] Code: 41 c6 44 15 00 f8 0f 84 8c fe ff ff e8 a8 81 f1 fe 0f 0b e9 80 fe ff ff 48 89 df e8 59 d9 34 ff e9 50 fe ff ff e8 8f 81 f1 fe <0f> 0b e9 6a ff ff ff e8 83 d9 34 ff e9 90 fe ff ff e8 19 b9 ba fe
[ 42.186730] RSP: 0018:ffff8801c15fe858 EFLAGS: 00010293
[ 42.192087] RAX: ffff8801c2e40400 RBX: ffff8801b25ca5c0 RCX: 1ffff100382bfd10
[ 42.199339] RDX: 0000000000000000 RSI: ffffffff828e2721 RDI: 0000000000000003
[ 42.206596] RBP: ffff8801c15fe928 R08: ffff8801c2e40400 R09: 0000000000000008
[ 42.213844] R10: 0000000000000002 R11: ffff8801c2e40400 R12: 1ffff100382bfd0c
[ 42.221096] R13: 1ffff100382bfd10 R14: ffff8801c15fe900 R15: ffff8801b25ca998
[ 42.228357] ? fuse_destroy_inode+0x251/0x2c0
[ 42.232840] ? fuse_destroy_inode+0x251/0x2c0
[ 42.237338] ? fuse_evict_inode+0x1e0/0x1e0
[ 42.241640] ? evict+0x5d8/0x980
[ 42.245003] ? lock_downgrade+0x900/0x900
[ 42.249134] ? fuse_evict_inode+0x1e0/0x1e0
[ 42.253447] destroy_inode+0x159/0x200
[ 42.257318] ? __destroy_inode+0x820/0x820
[ 42.261555] ? fuse_queue_forget+0x138/0x190
[ 42.265951] evict+0x5e0/0x980
[ 42.269128] ? destroy_inode+0x200/0x200
[ 42.273174] ? iput+0x66c/0xa90
[ 42.276443] ? lock_downgrade+0x900/0x900
[ 42.280581] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 42.286106] ? kasan_check_read+0x11/0x20
[ 42.290275] ? do_raw_spin_trylock+0x270/0x270
[ 42.294859] ? find_held_lock+0x36/0x1c0
[ 42.298910] iput+0x674/0xa90
[ 42.302016] ? inode_add_lru+0x2a0/0x2a0
[ 42.306061] ? d_walk+0x797/0xc70
[ 42.309500] ? kasan_check_read+0x11/0x20
[ 42.313628] ? do_raw_spin_unlock+0xa7/0x330
[ 42.318020] ? do_raw_spin_trylock+0x270/0x270
[ 42.322587] ? print_usage_bug+0xc0/0xc0
[ 42.326631] ? do_raw_spin_unlock+0xa7/0x330
[ 42.331028] dentry_unlink_inode+0x461/0x5e0
[ 42.335419] ? d_lru_del+0x130/0x130
[ 42.339128] ? graph_lock+0x270/0x270
[ 42.342912] ? d_walk+0x797/0xc70
[ 42.346352] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 42.351877] ? lockref_mark_dead+0xef/0x170
[ 42.356191] ? lockref_get_not_dead+0x90/0x90
[ 42.360694] ? lock_acquire+0x1ed/0x520
[ 42.364659] __dentry_kill+0x44c/0x7a0
[ 42.368538] ? d_drop+0x70/0x70
[ 42.371816] ? lock_downgrade+0x900/0x900
[ 42.375953] ? kasan_check_read+0x11/0x20
[ 42.380089] dentry_kill+0xc9/0x680
[ 42.383707] dput.part.25+0x660/0x860
[ 42.387499] ? shrink_dcache_sb+0x350/0x350
[ 42.391813] do_one_tree+0x37/0x40
[ 42.395342] shrink_dcache_for_umount+0xc7/0x2b0
[ 42.400099] ? lock_downgrade+0x900/0x900
[ 42.404234] ? d_set_mounted+0x2e0/0x2e0
[ 42.408278] ? lock_release+0xa10/0xa10
[ 42.412236] ? perf_trace_sched_process_exec+0x860/0x860
[ 42.417690] ? unregister_shrinker+0x270/0x460
[ 42.422259] generic_shutdown_super+0xd5/0x530
[ 42.426823] ? destroy_super_rcu+0x210/0x210
[ 42.431216] ? up_write+0x7b/0x220
[ 42.434738] ? down_write_nested+0x130/0x130
[ 42.439146] ? down_read+0x120/0x120
[ 42.442845] ? prepare_kswapd_sleep+0x220/0x220
[ 42.447518] kill_anon_super+0x3e/0x60
[ 42.451389] fuse_kill_sb_anon+0x1d/0x20
[ 42.455438] deactivate_locked_super+0x97/0x100
[ 42.460108] deactivate_super+0x2bb/0x320
[ 42.464241] ? get_super_exclusive_thawed+0x20/0x20
[ 42.469249] ? fsnotify_destroy_marks+0x1d2/0x270
[ 42.474076] ? shrink_dcache_sb+0x350/0x350
[ 42.478384] ? cpumask_next+0x41/0x50
[ 42.482171] ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 42.487173] ? mnt_get_writers.isra.27+0xf8/0x150
[ 42.492018] cleanup_mnt+0xbf/0x160
[ 42.495628] __cleanup_mnt+0x16/0x20
[ 42.499329] task_work_run+0x1e8/0x2a0
[ 42.503224] ? task_work_cancel+0x240/0x240
[ 42.507532] ? switch_task_namespaces+0xb8/0xd0
[ 42.512193] do_exit+0x1a48/0x2620
[ 42.515718] ? do_raw_spin_unlock+0xa7/0x330
[ 42.520115] ? mm_update_next_owner+0x990/0x990
[ 42.524782] ? graph_lock+0x270/0x270
[ 42.528568] ? find_held_lock+0x36/0x1c0
[ 42.532619] ? __lock_acquire+0x62f/0x4c20
[ 42.536837] ? lock_downgrade+0x900/0x900
[ 42.540977] ? mark_held_locks+0x130/0x130
[ 42.545198] ? __sanitizer_cov_trace_switch+0x53/0x90
[ 42.550373] ? drop_futex_key_refs.isra.14+0x6d/0xe0
[ 42.555459] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 42.560978] ? futex_wait+0x5ec/0xa50
[ 42.564769] ? futex_wait_setup+0x3e0/0x3e0
[ 42.569080] ? drop_futex_key_refs.isra.14+0x6d/0xe0
[ 42.574164] ? futex_wake+0x304/0x760
[ 42.577955] ? graph_lock+0x270/0x270
[ 42.581744] ? memset+0x31/0x40
[ 42.585017] ? find_held_lock+0x36/0x1c0
[ 42.589064] ? get_signal+0x953/0x1970
[ 42.592966] ? _raw_spin_unlock_irq+0x27/0x80
[ 42.597453] ? _raw_spin_unlock_irq+0x27/0x80
[ 42.601952] do_group_exit+0x177/0x440
[ 42.605827] ? trace_hardirqs_off_caller+0x300/0x300
[ 42.610914] ? __ia32_sys_exit+0x50/0x50
[ 42.614962] get_signal+0x8a8/0x1970
[ 42.618662] ? ptrace_notify+0x130/0x130
[ 42.622707] ? filename_lookup+0x39f/0x520
[ 42.626932] ? nd_jump_link+0x1d0/0x1d0
[ 42.630886] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 42.636409] ? digsig_verify+0x1530/0x1530
[ 42.640636] do_signal+0x9c/0x21c0
[ 42.644158] ? getname_flags+0x26e/0x590
[ 42.648221] ? user_path_at_empty+0x40/0x50
[ 42.652540] ? setup_sigcontext+0x7d0/0x7d0
[ 42.656839] ? vfs_statx+0x17a/0x210
[ 42.660538] ? exit_to_usermode_loop+0x8c/0x380
[ 42.665192] ? exit_to_usermode_loop+0x8c/0x380
[ 42.669845] ? lockdep_hardirqs_on+0x3bb/0x5b0
[ 42.674408] ? trace_hardirqs_on+0xbd/0x310
[ 42.678720] ? do_syscall_64+0x6be/0x820
[ 42.682764] ? __x64_sys_futex+0x47f/0x6a0
[ 42.686984] exit_to_usermode_loop+0x2e5/0x380
[ 42.691550] ? __bpf_trace_sys_exit+0x30/0x30
[ 42.696025] ? trace_hardirqs_off+0xb8/0x310
[ 42.700439] do_syscall_64+0x6be/0x820
[ 42.704318] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[ 42.709664] ? syscall_return_slowpath+0x5e0/0x5e0
[ 42.714596] ? trace_hardirqs_on_caller+0x310/0x310
[ 42.719612] ? prepare_exit_to_usermode+0x3b0/0x3b0
[ 42.724616] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250
[ 42.731265] ? __switch_to_asm+0x40/0x70
[ 42.735308] ? __switch_to_asm+0x34/0x70
[ 42.739356] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 42.744193] entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 42.749368] RIP: 0033:0x445f79
[ 42.752551] Code: Bad RIP value.
[ 42.755897] RSP: 002b:00007f2c0449ada8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 42.763593] RAX: fffffffffffffe00 RBX: 00000000006dbc38 RCX: 0000000000445f79
[ 42.770846] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00000000006dbc38
[ 42.778101] RBP: 00000000006dbc30 R08: 0000000000000000 R09: 0000000000000000
[ 42.785361] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc3c
[ 42.792626] R13: 2f30656c69662f2e R14: 0000000100000001 R15: 0000000000000001
[ 42.800955] Kernel Offset: disabled
[ 42.804621] Rebooting in 86400 seconds..