[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 78.693727][ T27] audit: type=1800 audit(1582622299.776:25): pid=9628 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 78.713497][ T27] audit: type=1800 audit(1582622299.776:26): pid=9628 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 78.771383][ T27] audit: type=1800 audit(1582622299.776:27): pid=9628 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.1.2' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 89.854930][ T9779] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 89.865994][ T9779] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 89.879329][ T9779] netlink: 'syz-executor964': attribute type 1 has an invalid length. [ 89.888224][ T9779] netlink: 21 bytes leftover after parsing attributes in process `syz-executor964'. [ 89.898516][ T9779] general protection fault, probably for non-canonical address 0xdffffc0000000001: 0000 [#1] PREEMPT SMP KASAN [ 89.910365][ T9779] KASAN: null-ptr-deref in range [0x0000000000000008-0x000000000000000f] [ 89.918800][ T9779] CPU: 1 PID: 9779 Comm: syz-executor964 Not tainted 5.6.0-rc3-syzkaller #0 [ 89.927546][ T9779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 89.937642][ T9779] RIP: 0010:__list_del_entry_valid+0x22/0xf5 [ 89.943635][ T9779] Code: 0d fe 48 8b 75 e8 eb b2 48 b8 00 00 00 00 00 fc ff df 55 48 89 e5 41 56 49 89 fe 48 83 c7 08 48 89 fa 41 55 48 c1 ea 03 41 54 <80> 3c 02 00 0f 85 a1 00 00 00 4c 89 f2 4d 8b 66 08 48 b8 00 00 00 [ 89.963218][ T9779] RSP: 0018:ffffc90005717440 EFLAGS: 00010202 [ 89.969329][ T9779] RAX: dffffc0000000000 RBX: ffffffff87b57410 RCX: ffffffff815c1ec9 [ 89.977300][ T9779] RDX: 0000000000000001 RSI: 0000000000000004 RDI: 0000000000000008 [ 89.985251][ T9779] RBP: ffffc90005717458 R08: 0000000000000004 R09: fffff52000ae2e7b [ 89.993201][ T9779] R10: fffff52000ae2e7a R11: 0000000000000003 R12: 0000000000000000 [ 90.001167][ T9779] R13: 0000000000000008 R14: 0000000000000000 R15: ffffffff8a98c200 [ 90.009120][ T9779] FS: 000000000149c880(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 [ 90.018040][ T9779] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 90.024619][ T9779] CR2: 0000000020003028 CR3: 00000000a9785000 CR4: 00000000001406e0 [ 90.032572][ T9779] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 90.040524][ T9779] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 90.048490][ T9779] Call Trace: [ 90.051765][ T9779] smc_ib_remove_dev+0x52/0x2e0 [ 90.056608][ T9779] ? smc_pnet_find_ism_resource+0x630/0x630 [ 90.062496][ T9779] remove_client_context+0xc7/0x120 [ 90.067683][ T9779] disable_device+0x14c/0x230 [ 90.072341][ T9779] ? remove_client_context+0x120/0x120 [ 90.077803][ T9779] __ib_unregister_device+0x9c/0x190 [ 90.083085][ T9779] ib_unregister_device_and_put+0x5f/0x80 [ 90.088791][ T9779] nldev_dellink+0x222/0x340 [ 90.093364][ T9779] ? nldev_set_sys_set_doit+0x240/0x240 [ 90.098890][ T9779] ? is_bpf_image_address+0x1b8/0x290 [ 90.104285][ T9779] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 90.110567][ T9779] ? ns_capable_common+0x93/0x100 [ 90.115610][ T9779] ? ns_capable+0x20/0x30 [ 90.119940][ T9779] ? __netlink_ns_capable+0x104/0x140 [ 90.125430][ T9779] ? nldev_set_sys_set_doit+0x240/0x240 [ 90.131027][ T9779] rdma_nl_rcv+0x5d9/0x980 [ 90.135440][ T9779] ? rdma_nl_multicast+0x330/0x330 [ 90.140536][ T9779] ? __kasan_check_read+0x11/0x20 [ 90.145689][ T9779] ? netlink_deliver_tap+0x248/0xbf0 [ 90.151078][ T9779] ? __kasan_check_write+0x14/0x20 [ 90.156177][ T9779] netlink_unicast+0x59e/0x7e0 [ 90.160971][ T9779] ? netlink_attachskb+0x870/0x870 [ 90.166076][ T9779] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 90.171790][ T9779] ? __check_object_size+0x3d/0x437 [ 90.176969][ T9779] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 90.182671][ T9779] netlink_sendmsg+0x91c/0xea0 [ 90.187418][ T9779] ? netlink_unicast+0x7e0/0x7e0 [ 90.192336][ T9779] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 90.197875][ T9779] ? apparmor_socket_sendmsg+0x2a/0x30 [ 90.203393][ T9779] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 90.209639][ T9779] ? security_socket_sendmsg+0x8d/0xc0 [ 90.215157][ T9779] ? netlink_unicast+0x7e0/0x7e0 [ 90.220087][ T9779] sock_sendmsg+0xd7/0x130 [ 90.224498][ T9779] __sys_sendto+0x262/0x380 [ 90.228996][ T9779] ? __ia32_sys_getpeername+0xb0/0xb0 [ 90.234358][ T9779] ? lock_downgrade+0x920/0x920 [ 90.239318][ T9779] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 90.245552][ T9779] ? __fd_install+0x1fb/0x640 [ 90.250212][ T9779] ? fd_install+0x4d/0x60 [ 90.254528][ T9779] ? __sys_socket+0x180/0x220 [ 90.259366][ T9779] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 90.264809][ T9779] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 90.270361][ T9779] ? do_syscall_64+0x26/0x790 [ 90.275023][ T9779] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 90.281106][ T9779] __x64_sys_sendto+0xe1/0x1a0 [ 90.285897][ T9779] do_syscall_64+0xfa/0x790 [ 90.290383][ T9779] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 90.296253][ T9779] RIP: 0033:0x4404d9 [ 90.300221][ T9779] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 90.319817][ T9779] RSP: 002b:00007ffc01dca558 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 90.328209][ T9779] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 00000000004404d9 [ 90.336159][ T9779] RDX: 0000000000010a73 RSI: 0000000020000000 RDI: 0000000000000004 [ 90.344157][ T9779] RBP: 00000000006ca018 R08: 0000000000000000 R09: 4b6ae4f95a5de35b [ 90.352135][ T9779] R10: 00000000000008c0 R11: 0000000000000246 R12: 0000000000401d60 [ 90.360096][ T9779] R13: 0000000000401df0 R14: 0000000000000000 R15: 0000000000000000 [ 90.368094][ T9779] Modules linked in: [ 90.372089][ T9779] ---[ end trace 13bea09f778d318f ]--- [ 90.377595][ T9779] RIP: 0010:__list_del_entry_valid+0x22/0xf5 [ 90.383560][ T9779] Code: 0d fe 48 8b 75 e8 eb b2 48 b8 00 00 00 00 00 fc ff df 55 48 89 e5 41 56 49 89 fe 48 83 c7 08 48 89 fa 41 55 48 c1 ea 03 41 54 <80> 3c 02 00 0f 85 a1 00 00 00 4c 89 f2 4d 8b 66 08 48 b8 00 00 00 [ 90.403210][ T9779] RSP: 0018:ffffc90005717440 EFLAGS: 00010202 [ 90.409409][ T9779] RAX: dffffc0000000000 RBX: ffffffff87b57410 RCX: ffffffff815c1ec9 [ 90.417574][ T9779] RDX: 0000000000000001 RSI: 0000000000000004 RDI: 0000000000000008 [ 90.425605][ T9779] RBP: ffffc90005717458 R08: 0000000000000004 R09: fffff52000ae2e7b [ 90.433579][ T9779] R10: fffff52000ae2e7a R11: 0000000000000003 R12: 0000000000000000 [ 90.441589][ T9779] R13: 0000000000000008 R14: 0000000000000000 R15: ffffffff8a98c200 [ 90.449630][ T9779] FS: 000000000149c880(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 [ 90.458640][ T9779] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 90.465236][ T9779] CR2: 0000000020003028 CR3: 00000000a9785000 CR4: 00000000001406e0 [ 90.473700][ T9779] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 90.481749][ T9779] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 90.489740][ T9779] Kernel panic - not syncing: Fatal exception [ 90.497071][ T9779] Kernel Offset: disabled [ 90.501399][ T9779] Rebooting in 86400 seconds..