[[0;32m  OK  [0m] Reached target Login Prompts.
[[0;32m  OK  [0m] Reached target Multi-User System.
[[0;32m  OK  [0m] Reached target Graphical Interface.
         Starting Update UTMP about System Runlevel Changes...
[[0;32m  OK  [0m] Started Update UTMP about System Runlevel Changes.

Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '10.128.0.241' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [   74.459086][ T6843] ------------[ cut here ]------------
[   74.464687][ T6843] WARNING: CPU: 0 PID: 6843 at lib/nlattr.c:117 nla_get_range_unsigned+0x157/0x530
[   74.475333][ T6843] Modules linked in:
[   74.479738][ T6843] CPU: 0 PID: 6843 Comm: syz-executor189 Not tainted 5.9.0-rc2-next-20200828-syzkaller #0
[   74.490157][ T6843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   74.501454][ T6843] RIP: 0010:nla_get_range_unsigned+0x157/0x530
[   74.508508][ T6843] Code: 2a 03 00 00 44 0f b6 3b 48 c7 c6 40 e9 96 88 4c 89 ff e8 6c 93 c2 fd 41 80 ff 0b 77 11 42 ff 24 fd 60 e3 96 88 e8 99 96 c2 fd <0f> 0b eb 8f e8 90 96 c2 fd 0f 0b 5b 41 5c 41 5d 41 5e 41 5f 5d e9
[   74.528816][ T6843] RSP: 0018:ffffc90003f4f190 EFLAGS: 00010293
[   74.534901][ T6843] RAX: 0000000000000000 RBX: ffffffff8918a7a0 RCX: ffffffff83b1e584
[   74.543733][ T6843] RDX: ffff888093e9c140 RSI: ffffffff83b1e5f7 RDI: 0000000000000003
[   74.552298][ T6843] RBP: ffffc90003f4f1b8 R08: 0000000000000000 R09: ffff888088f08370
[   74.560788][ T6843] R10: 0000000000000000 R11: 0000000000000000 R12: ffffc90003f4f278
[   74.569292][ T6843] R13: ffffffff8918a7a1 R14: 000000000000877c R15: ffffffff8918a7a0
[   74.577870][ T6843] FS:  000000000128e880(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000
[   74.587615][ T6843] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   74.594199][ T6843] CR2: 00007fb12b089010 CR3: 000000009f54e000 CR4: 00000000001506f0
[   74.603665][ T6843] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   74.612276][ T6843] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   74.620963][ T6843] Call Trace:
[   74.624282][ T6843]  netlink_policy_dump_write+0x2ae/0xea0
[   74.631038][ T6843]  ? netlink_policy_dump_loop+0x170/0x170
[   74.637345][ T6843]  ? skb_put+0x134/0x180
[   74.641591][ T6843]  ? memset+0x20/0x40
[   74.646350][ T6843]  ? __nla_reserve+0x9a/0xc0
[   74.652052][ T6843]  ? __nla_put+0x23/0x40
[   74.656386][ T6843]  ? memcpy+0x39/0x60
[   74.661148][ T6843]  ctrl_dumppolicy+0x4a8/0x900
[   74.665990][ T6843]  ? genl_start+0x5d0/0x5d0
[   74.671400][ T6843]  ? __kmalloc_node_track_caller+0x38/0x60
[   74.677792][ T6843]  ? rcu_read_lock_sched_held+0x3a/0xb0
[   74.683350][ T6843]  ? __phys_addr+0x9a/0x110
[   74.688821][ T6843]  ? memset+0x20/0x40
[   74.692830][ T6843]  genl_lock_dumpit+0x7f/0xb0
[   74.698963][ T6843]  netlink_dump+0x4cd/0xf60
[   74.703474][ T6843]  ? netlink_insert+0x1670/0x1670
[   74.709496][ T6843]  ? __mutex_unlock_slowpath+0xe2/0x610
[   74.715045][ T6843]  ? kmem_cache_alloc_trace+0x188/0x2c0
[   74.721455][ T6843]  ? genl_start+0x3bb/0x5d0
[   74.725966][ T6843]  __netlink_dump_start+0x643/0x900
[   74.732077][ T6843]  ? genl_rcv_msg+0x980/0x980
[   74.737278][ T6843]  ? genl_start+0x5d0/0x5d0
[   74.741791][ T6843]  genl_family_rcv_msg_dumpit+0x2ac/0x310
[   74.748380][ T6843]  ? genl_rcv+0x40/0x40
[   74.752535][ T6843]  ? mutex_lock_io_nested+0xf60/0xf60
[   74.758743][ T6843]  ? mark_lock+0xbc/0x1710
[   74.763164][ T6843]  ? genl_rcv_msg+0x980/0x980
[   74.768678][ T6843]  ? genl_unlock+0x20/0x20
[   74.773103][ T6843]  ? genl_parallel_done+0xf0/0xf0
[   74.779023][ T6843]  ? __radix_tree_lookup+0x1f3/0x290
[   74.784312][ T6843]  genl_rcv_msg+0x75f/0x980
[   74.789752][ T6843]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x250/0x250
[   74.797295][ T6843]  ? lock_acquire+0x1f1/0xad0
[   74.801979][ T6843]  ? genl_rcv+0x15/0x40
[   74.806138][ T6843]  ? lock_release+0x8e0/0x8e0
[   74.812077][ T6843]  netlink_rcv_skb+0x15a/0x430
[   74.817374][ T6843]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x250/0x250
[   74.824332][ T6843]  ? netlink_ack+0xa10/0xa10
[   74.829871][ T6843]  ? lock_is_held_type+0xbb/0xf0
[   74.834816][ T6843]  genl_rcv+0x24/0x40
[   74.839677][ T6843]  netlink_unicast+0x533/0x7d0
[   74.844442][ T6843]  ? netlink_attachskb+0x810/0x810
[   74.850475][ T6843]  ? _copy_from_iter_full+0x247/0x890
[   74.855869][ T6843]  ? __phys_addr+0x9a/0x110
[   74.861428][ T6843]  ? __phys_addr_symbol+0x2c/0x70
[   74.866475][ T6843]  ? __check_object_size+0x171/0x3e4
[   74.872703][ T6843]  netlink_sendmsg+0x856/0xd90
[   74.877986][ T6843]  ? netlink_unicast+0x7d0/0x7d0
[   74.882930][ T6843]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[   74.889074][ T6843]  ? netlink_unicast+0x7d0/0x7d0
[   74.894019][ T6843]  sock_sendmsg+0xcf/0x120
[   74.899337][ T6843]  ____sys_sendmsg+0x6e8/0x810
[   74.904115][ T6843]  ? kernel_sendmsg+0x50/0x50
[   74.909571][ T6843]  ? do_recvmmsg+0x6d0/0x6d0
[   74.914161][ T6843]  ? lock_acquire+0x1f1/0xad0
[   74.919597][ T6843]  ? do_huge_pmd_anonymous_page+0x120d/0x2230
[   74.925658][ T6843]  ? find_held_lock+0x2d/0x110
[   74.931432][ T6843]  ___sys_sendmsg+0xf3/0x170
[   74.936029][ T6843]  ? sendmsg_copy_msghdr+0x160/0x160
[   74.942142][ T6843]  ? do_huge_pmd_anonymous_page+0x1b94/0x2230
[   74.948763][ T6843]  ? do_huge_pmd_anonymous_page+0x8ef/0x2230
[   74.954788][ T6843]  ? handle_mm_fault+0xb78/0x4530
[   74.960658][ T6843]  ? find_held_lock+0x2d/0x110
[   74.965429][ T6843]  ? __fget_light+0x215/0x280
[   74.970921][ T6843]  __sys_sendmsg+0xe5/0x1b0
[   74.975431][ T6843]  ? __sys_sendmsg_sock+0xb0/0xb0
[   74.981313][ T6843]  ? trace_hardirqs_on+0x5f/0x220
[   74.986337][ T6843]  ? lockdep_hardirqs_on+0x76/0xf0
[   74.992430][ T6843]  do_syscall_64+0x2d/0x70
[   74.997354][ T6843]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   75.003239][ T6843] RIP: 0033:0x4402a9
[   75.008047][ T6843] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   75.028903][ T6843] RSP: 002b:00007ffffda7bb58 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   75.038033][ T6843] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 00000000004402a9
[   75.046468][ T6843] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[   75.055436][ T6843] RBP: 00000000006ca018 R08: 0000000000000000 R09: 00000000004002c8
[   75.064117][ T6843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000401ab0
[   75.073096][ T6843] R13: 0000000000401b40 R14: 0000000000000000 R15: 0000000000000000
[   75.081655][ T6843] Kernel panic - not syncing: panic_on_warn set ...
[   75.088873][ T6843] CPU: 0 PID: 6843 Comm: syz-executor189 Not tainted 5.9.0-rc2-next-20200828-syzkaller #0
[   75.098750][ T6843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   75.110117][ T6843] Call Trace:
[   75.113441][ T6843]  dump_stack+0x18f/0x20d
[   75.117818][ T6843]  panic+0x2e3/0x75c
[   75.121869][ T6843]  ? __warn_printk+0xf3/0xf3
[   75.126473][ T6843]  ? __warn.cold+0x1d/0xc1
[   75.130898][ T6843]  ? __warn.cold+0x14/0xc1
[   75.135300][ T6843]  ? nla_get_range_unsigned+0x157/0x530
[   75.140940][ T6843]  __warn.cold+0x38/0xc1
[   75.145174][ T6843]  ? nla_get_range_unsigned+0x157/0x530
[   75.150708][ T6843]  report_bug+0x1bd/0x210
[   75.155045][ T6843]  handle_bug+0x38/0x90
[   75.159187][ T6843]  ? mark_lock+0xbc/0x1710
[   75.163604][ T6843]  exc_invalid_op+0x14/0x40
[   75.168090][ T6843]  asm_exc_invalid_op+0x12/0x20
[   75.172982][ T6843] RIP: 0010:nla_get_range_unsigned+0x157/0x530
[   75.180205][ T6843] Code: 2a 03 00 00 44 0f b6 3b 48 c7 c6 40 e9 96 88 4c 89 ff e8 6c 93 c2 fd 41 80 ff 0b 77 11 42 ff 24 fd 60 e3 96 88 e8 99 96 c2 fd <0f> 0b eb 8f e8 90 96 c2 fd 0f 0b 5b 41 5c 41 5d 41 5e 41 5f 5d e9
[   75.199803][ T6843] RSP: 0018:ffffc90003f4f190 EFLAGS: 00010293
[   75.206040][ T6843] RAX: 0000000000000000 RBX: ffffffff8918a7a0 RCX: ffffffff83b1e584
[   75.214005][ T6843] RDX: ffff888093e9c140 RSI: ffffffff83b1e5f7 RDI: 0000000000000003
[   75.221968][ T6843] RBP: ffffc90003f4f1b8 R08: 0000000000000000 R09: ffff888088f08370
[   75.229934][ T6843] R10: 0000000000000000 R11: 0000000000000000 R12: ffffc90003f4f278
[   75.237995][ T6843] R13: ffffffff8918a7a1 R14: 000000000000877c R15: ffffffff8918a7a0
[   75.246003][ T6843]  ? nla_get_range_unsigned+0xe4/0x530
[   75.251465][ T6843]  ? nla_get_range_unsigned+0x157/0x530
[   75.257454][ T6843]  netlink_policy_dump_write+0x2ae/0xea0
[   75.263101][ T6843]  ? netlink_policy_dump_loop+0x170/0x170
[   75.268810][ T6843]  ? skb_put+0x134/0x180
[   75.273048][ T6843]  ? memset+0x20/0x40
[   75.277037][ T6843]  ? __nla_reserve+0x9a/0xc0
[   75.281613][ T6843]  ? __nla_put+0x23/0x40
[   75.285836][ T6843]  ? memcpy+0x39/0x60
[   75.289924][ T6843]  ctrl_dumppolicy+0x4a8/0x900
[   75.294685][ T6843]  ? genl_start+0x5d0/0x5d0
[   75.299195][ T6843]  ? __kmalloc_node_track_caller+0x38/0x60
[   75.305219][ T6843]  ? rcu_read_lock_sched_held+0x3a/0xb0
[   75.310773][ T6843]  ? __phys_addr+0x9a/0x110
[   75.316398][ T6843]  ? memset+0x20/0x40
[   75.320401][ T6843]  genl_lock_dumpit+0x7f/0xb0
[   75.325177][ T6843]  netlink_dump+0x4cd/0xf60
[   75.329944][ T6843]  ? netlink_insert+0x1670/0x1670
[   75.334976][ T6843]  ? __mutex_unlock_slowpath+0xe2/0x610
[   75.340622][ T6843]  ? kmem_cache_alloc_trace+0x188/0x2c0
[   75.346167][ T6843]  ? genl_start+0x3bb/0x5d0
[   75.350674][ T6843]  __netlink_dump_start+0x643/0x900
[   75.355960][ T6843]  ? genl_rcv_msg+0x980/0x980
[   75.360632][ T6843]  ? genl_start+0x5d0/0x5d0
[   75.365138][ T6843]  genl_family_rcv_msg_dumpit+0x2ac/0x310
[   75.370850][ T6843]  ? genl_rcv+0x40/0x40
[   75.375013][ T6843]  ? mutex_lock_io_nested+0xf60/0xf60
[   75.380381][ T6843]  ? mark_lock+0xbc/0x1710
[   75.384868][ T6843]  ? genl_rcv_msg+0x980/0x980
[   75.389545][ T6843]  ? genl_unlock+0x20/0x20
[   75.393939][ T6843]  ? genl_parallel_done+0xf0/0xf0
[   75.398969][ T6843]  ? __radix_tree_lookup+0x1f3/0x290
[   75.404262][ T6843]  genl_rcv_msg+0x75f/0x980
[   75.408773][ T6843]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x250/0x250
[   75.415734][ T6843]  ? lock_acquire+0x1f1/0xad0
[   75.420409][ T6843]  ? genl_rcv+0x15/0x40
[   75.424552][ T6843]  ? lock_release+0x8e0/0x8e0
[   75.429230][ T6843]  netlink_rcv_skb+0x15a/0x430
[   75.433985][ T6843]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x250/0x250
[   75.441197][ T6843]  ? netlink_ack+0xa10/0xa10
[   75.445798][ T6843]  ? lock_is_held_type+0xbb/0xf0
[   75.450726][ T6843]  genl_rcv+0x24/0x40
[   75.454704][ T6843]  netlink_unicast+0x533/0x7d0
[   75.459470][ T6843]  ? netlink_attachskb+0x810/0x810
[   75.464576][ T6843]  ? _copy_from_iter_full+0x247/0x890
[   75.469933][ T6843]  ? __phys_addr+0x9a/0x110
[   75.474531][ T6843]  ? __phys_addr_symbol+0x2c/0x70
[   75.479561][ T6843]  ? __check_object_size+0x171/0x3e4
[   75.484906][ T6843]  netlink_sendmsg+0x856/0xd90
[   75.489912][ T6843]  ? netlink_unicast+0x7d0/0x7d0
[   75.494871][ T6843]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[   75.500147][ T6843]  ? netlink_unicast+0x7d0/0x7d0
[   75.505082][ T6843]  sock_sendmsg+0xcf/0x120
[   75.509494][ T6843]  ____sys_sendmsg+0x6e8/0x810
[   75.514251][ T6843]  ? kernel_sendmsg+0x50/0x50
[   75.518955][ T6843]  ? do_recvmmsg+0x6d0/0x6d0
[   75.523534][ T6843]  ? lock_acquire+0x1f1/0xad0
[   75.528209][ T6843]  ? do_huge_pmd_anonymous_page+0x120d/0x2230
[   75.534278][ T6843]  ? find_held_lock+0x2d/0x110
[   75.539054][ T6843]  ___sys_sendmsg+0xf3/0x170
[   75.543644][ T6843]  ? sendmsg_copy_msghdr+0x160/0x160
[   75.548916][ T6843]  ? do_huge_pmd_anonymous_page+0x1b94/0x2230
[   75.554989][ T6843]  ? do_huge_pmd_anonymous_page+0x8ef/0x2230
[   75.560983][ T6843]  ? handle_mm_fault+0xb78/0x4530
[   75.565990][ T6843]  ? find_held_lock+0x2d/0x110
[   75.570738][ T6843]  ? __fget_light+0x215/0x280
[   75.575440][ T6843]  __sys_sendmsg+0xe5/0x1b0
[   75.579957][ T6843]  ? __sys_sendmsg_sock+0xb0/0xb0
[   75.585012][ T6843]  ? trace_hardirqs_on+0x5f/0x220
[   75.590022][ T6843]  ? lockdep_hardirqs_on+0x76/0xf0
[   75.595118][ T6843]  do_syscall_64+0x2d/0x70
[   75.599517][ T6843]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   75.605398][ T6843] RIP: 0033:0x4402a9
[   75.609279][ T6843] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   75.629412][ T6843] RSP: 002b:00007ffffda7bb58 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   75.637841][ T6843] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 00000000004402a9
[   75.645824][ T6843] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[   75.653816][ T6843] RBP: 00000000006ca018 R08: 0000000000000000 R09: 00000000004002c8
[   75.661801][ T6843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000401ab0
[   75.669773][ T6843] R13: 0000000000401b40 R14: 0000000000000000 R15: 0000000000000000
[   75.678645][ T6843] Kernel Offset: disabled
[   75.683044][ T6843] Rebooting in 86400 seconds..