[[0;32m  OK  [0m] Reached target Multi-User System.
[[0;32m  OK  [0m] Reached target Graphical Interface.
         Starting Update UTMP about System Runlevel Changes...
[[0;32m  OK  [0m] Started Update UTMP about System Runlevel Changes.
         Starting Load/Save RF Kill Switch Status...

Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '10.128.0.51' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [   67.742666][ T6529] ================================================================================
[   67.752282][ T6529] UBSAN: shift-out-of-bounds in net/ieee802154/nl802154.c:919:44
[   67.760414][ T6529] shift exponent -1627389953 is negative
[   67.766308][ T6529] CPU: 1 PID: 6529 Comm: syz-executor333 Not tainted 5.15.0-rc4-next-20211011-syzkaller #0
[   67.776288][ T6529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   67.786329][ T6529] Call Trace:
[   67.789593][ T6529]  <TASK>
[   67.792531][ T6529]  dump_stack_lvl+0xcd/0x134
[   67.797215][ T6529]  ubsan_epilogue+0xb/0x5a
[   67.801619][ T6529]  __ubsan_handle_shift_out_of_bounds.cold+0xb1/0x181
[   67.808374][ T6529]  ? __nla_parse+0x3d/0x50
[   67.812780][ T6529]  ? nl802154_get_llsec_params+0x390/0x390
[   67.818595][ T6529]  nl802154_new_interface.cold+0x19/0x1e
[   67.824230][ T6529]  genl_family_rcv_msg_doit+0x228/0x320
[   67.829780][ T6529]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290
[   67.837236][ T6529]  ? mutex_lock_io_nested+0x1150/0x1150
[   67.842785][ T6529]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   67.849020][ T6529]  ? ns_capable+0xd9/0x100
[   67.853433][ T6529]  genl_rcv_msg+0x328/0x580
[   67.857938][ T6529]  ? genl_get_cmd+0x480/0x480
[   67.862608][ T6529]  ? nl802154_set_short_addr+0x5c0/0x5c0
[   67.868240][ T6529]  ? lock_release+0x720/0x720
[   67.872914][ T6529]  netlink_rcv_skb+0x153/0x420
[   67.877675][ T6529]  ? genl_get_cmd+0x480/0x480
[   67.882348][ T6529]  ? netlink_ack+0xa60/0xa60
[   67.886940][ T6529]  ? netlink_deliver_tap+0x1b1/0xc30
[   67.892220][ T6529]  ? _copy_from_iter+0x12b/0x1320
[   67.897244][ T6529]  genl_rcv+0x24/0x40
[   67.901223][ T6529]  netlink_unicast+0x533/0x7d0
[   67.905986][ T6529]  ? netlink_attachskb+0x880/0x880
[   67.911094][ T6529]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   67.917334][ T6529]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   67.923569][ T6529]  ? __phys_addr_symbol+0x2c/0x70
[   67.928593][ T6529]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[   67.934394][ T6529]  ? __check_object_size+0x16e/0x3f0
[   67.939697][ T6529]  netlink_sendmsg+0x86d/0xda0
[   67.944469][ T6529]  ? netlink_unicast+0x7d0/0x7d0
[   67.949413][ T6529]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   67.955651][ T6529]  ? netlink_unicast+0x7d0/0x7d0
[   67.960590][ T6529]  sock_sendmsg+0xcf/0x120
[   67.965001][ T6529]  ____sys_sendmsg+0x6e8/0x810
[   67.969758][ T6529]  ? kernel_sendmsg+0x50/0x50
[   67.974424][ T6529]  ? do_recvmmsg+0x6d0/0x6d0
[   67.979014][ T6529]  ? lock_chain_count+0x20/0x20
[   67.983866][ T6529]  ___sys_sendmsg+0xf3/0x170
[   67.988482][ T6529]  ? sendmsg_copy_msghdr+0x160/0x160
[   67.993777][ T6529]  ? __lock_acquire+0x162f/0x54a0
[   67.998819][ T6529]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   68.004802][ T6529]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   68.010789][ T6529]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   68.017030][ T6529]  ? __fget_light+0x215/0x280
[   68.021699][ T6529]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   68.027944][ T6529]  __sys_sendmsg+0xe5/0x1b0
[   68.032453][ T6529]  ? __sys_sendmsg_sock+0x30/0x30
[   68.037481][ T6529]  ? syscall_enter_from_user_mode+0x21/0x70
[   68.043375][ T6529]  do_syscall_64+0x35/0xb0
[   68.047784][ T6529]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[   68.053821][ T6529] RIP: 0033:0x7f6fe7230bb9
[   68.058233][ T6529] Code: 28 c3 e8 5a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   68.078027][ T6529] RSP: 002b:00007ffcd1178ee8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   68.086431][ T6529] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f6fe7230bb9
[   68.094487][ T6529] RDX: 0000000000000000 RSI: 0000000020000ac0 RDI: 0000000000000003
[   68.102445][ T6529] RBP: 00007f6fe71f4620 R08: 0000000000000001 R09: 0000000000000000
[   68.110402][ T6529] R10: 0000000000000008 R11: 0000000000000246 R12: 00007f6fe71f46b0
[   68.118363][ T6529] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   68.126343][ T6529]  </TASK>
[   68.129593][ T6529] ================================================================================
[   68.138912][ T6529] Kernel panic - not syncing: panic_on_warn set ...
[   68.145499][ T6529] CPU: 1 PID: 6529 Comm: syz-executor333 Not tainted 5.15.0-rc4-next-20211011-syzkaller #0
[   68.155918][ T6529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   68.165974][ T6529] Call Trace:
[   68.169238][ T6529]  <TASK>
[   68.172271][ T6529]  dump_stack_lvl+0xcd/0x134
[   68.176874][ T6529]  panic+0x2b0/0x6dd
[   68.180771][ T6529]  ? __warn_printk+0xf3/0xf3
[   68.185371][ T6529]  ? dump_stack_lvl+0x120/0x134
[   68.190232][ T6529]  ? ubsan_epilogue+0x3e/0x5a
[   68.194900][ T6529]  ubsan_epilogue+0x54/0x5a
[   68.199405][ T6529]  __ubsan_handle_shift_out_of_bounds.cold+0xb1/0x181
[   68.206158][ T6529]  ? __nla_parse+0x3d/0x50
[   68.210569][ T6529]  ? nl802154_get_llsec_params+0x390/0x390
[   68.216383][ T6529]  nl802154_new_interface.cold+0x19/0x1e
[   68.222187][ T6529]  genl_family_rcv_msg_doit+0x228/0x320
[   68.227738][ T6529]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290
[   68.235096][ T6529]  ? mutex_lock_io_nested+0x1150/0x1150
[   68.240646][ T6529]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   68.246886][ T6529]  ? ns_capable+0xd9/0x100
[   68.251298][ T6529]  genl_rcv_msg+0x328/0x580
[   68.255802][ T6529]  ? genl_get_cmd+0x480/0x480
[   68.260473][ T6529]  ? nl802154_set_short_addr+0x5c0/0x5c0
[   68.266108][ T6529]  ? lock_release+0x720/0x720
[   68.270780][ T6529]  netlink_rcv_skb+0x153/0x420
[   68.275540][ T6529]  ? genl_get_cmd+0x480/0x480
[   68.280211][ T6529]  ? netlink_ack+0xa60/0xa60
[   68.284798][ T6529]  ? netlink_deliver_tap+0x1b1/0xc30
[   68.290077][ T6529]  ? _copy_from_iter+0x12b/0x1320
[   68.295109][ T6529]  genl_rcv+0x24/0x40
[   68.299084][ T6529]  netlink_unicast+0x533/0x7d0
[   68.303860][ T6529]  ? netlink_attachskb+0x880/0x880
[   68.308964][ T6529]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   68.315203][ T6529]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   68.321434][ T6529]  ? __phys_addr_symbol+0x2c/0x70
[   68.326450][ T6529]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[   68.332161][ T6529]  ? __check_object_size+0x16e/0x3f0
[   68.337454][ T6529]  netlink_sendmsg+0x86d/0xda0
[   68.342324][ T6529]  ? netlink_unicast+0x7d0/0x7d0
[   68.347263][ T6529]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   68.353499][ T6529]  ? netlink_unicast+0x7d0/0x7d0
[   68.358440][ T6529]  sock_sendmsg+0xcf/0x120
[   68.362859][ T6529]  ____sys_sendmsg+0x6e8/0x810
[   68.367632][ T6529]  ? kernel_sendmsg+0x50/0x50
[   68.372300][ T6529]  ? do_recvmmsg+0x6d0/0x6d0
[   68.376886][ T6529]  ? lock_chain_count+0x20/0x20
[   68.381739][ T6529]  ___sys_sendmsg+0xf3/0x170
[   68.386322][ T6529]  ? sendmsg_copy_msghdr+0x160/0x160
[   68.391694][ T6529]  ? __lock_acquire+0x162f/0x54a0
[   68.396731][ T6529]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   68.402713][ T6529]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   68.408696][ T6529]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   68.415365][ T6529]  ? __fget_light+0x215/0x280
[   68.420033][ T6529]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   68.426359][ T6529]  __sys_sendmsg+0xe5/0x1b0
[   68.430855][ T6529]  ? __sys_sendmsg_sock+0x30/0x30
[   68.435886][ T6529]  ? syscall_enter_from_user_mode+0x21/0x70
[   68.441780][ T6529]  do_syscall_64+0x35/0xb0
[   68.446190][ T6529]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[   68.452081][ T6529] RIP: 0033:0x7f6fe7230bb9
[   68.456486][ T6529] Code: 28 c3 e8 5a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   68.476080][ T6529] RSP: 002b:00007ffcd1178ee8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   68.484482][ T6529] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f6fe7230bb9
[   68.492451][ T6529] RDX: 0000000000000000 RSI: 0000000020000ac0 RDI: 0000000000000003
[   68.500421][ T6529] RBP: 00007f6fe71f4620 R08: 0000000000000001 R09: 0000000000000000
[   68.508382][ T6529] R10: 0000000000000008 R11: 0000000000000246 R12: 00007f6fe71f46b0
[   68.516346][ T6529] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   68.524318][ T6529]  </TASK>
[   68.527510][ T6529] Kernel Offset: disabled
[   68.531900][ T6529] Rebooting in 86400 seconds..