[�[0;32m OK �[0m] Reached target Login Prompts.
[�[0;32m OK �[0m] Reached target Multi-User System.
[�[0;32m OK �[0m] Reached target Graphical Interface.
Starting Update UTMP about System Runlevel Changes...
[�[0;32m OK �[0m] Started Update UTMP about System Runlevel Changes.
Debian GNU/Linux 9 syzkaller ttyS0
Warning: Permanently added '10.128.0.241' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [ 74.459086][ T6843] ------------[ cut here ]------------
[ 74.464687][ T6843] WARNING: CPU: 0 PID: 6843 at lib/nlattr.c:117 nla_get_range_unsigned+0x157/0x530
[ 74.475333][ T6843] Modules linked in:
[ 74.479738][ T6843] CPU: 0 PID: 6843 Comm: syz-executor189 Not tainted 5.9.0-rc2-next-20200828-syzkaller #0
[ 74.490157][ T6843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 74.501454][ T6843] RIP: 0010:nla_get_range_unsigned+0x157/0x530
[ 74.508508][ T6843] Code: 2a 03 00 00 44 0f b6 3b 48 c7 c6 40 e9 96 88 4c 89 ff e8 6c 93 c2 fd 41 80 ff 0b 77 11 42 ff 24 fd 60 e3 96 88 e8 99 96 c2 fd <0f> 0b eb 8f e8 90 96 c2 fd 0f 0b 5b 41 5c 41 5d 41 5e 41 5f 5d e9
[ 74.528816][ T6843] RSP: 0018:ffffc90003f4f190 EFLAGS: 00010293
[ 74.534901][ T6843] RAX: 0000000000000000 RBX: ffffffff8918a7a0 RCX: ffffffff83b1e584
[ 74.543733][ T6843] RDX: ffff888093e9c140 RSI: ffffffff83b1e5f7 RDI: 0000000000000003
[ 74.552298][ T6843] RBP: ffffc90003f4f1b8 R08: 0000000000000000 R09: ffff888088f08370
[ 74.560788][ T6843] R10: 0000000000000000 R11: 0000000000000000 R12: ffffc90003f4f278
[ 74.569292][ T6843] R13: ffffffff8918a7a1 R14: 000000000000877c R15: ffffffff8918a7a0
[ 74.577870][ T6843] FS: 000000000128e880(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000
[ 74.587615][ T6843] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 74.594199][ T6843] CR2: 00007fb12b089010 CR3: 000000009f54e000 CR4: 00000000001506f0
[ 74.603665][ T6843] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 74.612276][ T6843] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 74.620963][ T6843] Call Trace:
[ 74.624282][ T6843] netlink_policy_dump_write+0x2ae/0xea0
[ 74.631038][ T6843] ? netlink_policy_dump_loop+0x170/0x170
[ 74.637345][ T6843] ? skb_put+0x134/0x180
[ 74.641591][ T6843] ? memset+0x20/0x40
[ 74.646350][ T6843] ? __nla_reserve+0x9a/0xc0
[ 74.652052][ T6843] ? __nla_put+0x23/0x40
[ 74.656386][ T6843] ? memcpy+0x39/0x60
[ 74.661148][ T6843] ctrl_dumppolicy+0x4a8/0x900
[ 74.665990][ T6843] ? genl_start+0x5d0/0x5d0
[ 74.671400][ T6843] ? __kmalloc_node_track_caller+0x38/0x60
[ 74.677792][ T6843] ? rcu_read_lock_sched_held+0x3a/0xb0
[ 74.683350][ T6843] ? __phys_addr+0x9a/0x110
[ 74.688821][ T6843] ? memset+0x20/0x40
[ 74.692830][ T6843] genl_lock_dumpit+0x7f/0xb0
[ 74.698963][ T6843] netlink_dump+0x4cd/0xf60
[ 74.703474][ T6843] ? netlink_insert+0x1670/0x1670
[ 74.709496][ T6843] ? __mutex_unlock_slowpath+0xe2/0x610
[ 74.715045][ T6843] ? kmem_cache_alloc_trace+0x188/0x2c0
[ 74.721455][ T6843] ? genl_start+0x3bb/0x5d0
[ 74.725966][ T6843] __netlink_dump_start+0x643/0x900
[ 74.732077][ T6843] ? genl_rcv_msg+0x980/0x980
[ 74.737278][ T6843] ? genl_start+0x5d0/0x5d0
[ 74.741791][ T6843] genl_family_rcv_msg_dumpit+0x2ac/0x310
[ 74.748380][ T6843] ? genl_rcv+0x40/0x40
[ 74.752535][ T6843] ? mutex_lock_io_nested+0xf60/0xf60
[ 74.758743][ T6843] ? mark_lock+0xbc/0x1710
[ 74.763164][ T6843] ? genl_rcv_msg+0x980/0x980
[ 74.768678][ T6843] ? genl_unlock+0x20/0x20
[ 74.773103][ T6843] ? genl_parallel_done+0xf0/0xf0
[ 74.779023][ T6843] ? __radix_tree_lookup+0x1f3/0x290
[ 74.784312][ T6843] genl_rcv_msg+0x75f/0x980
[ 74.789752][ T6843] ? genl_family_rcv_msg_attrs_parse.isra.0+0x250/0x250
[ 74.797295][ T6843] ? lock_acquire+0x1f1/0xad0
[ 74.801979][ T6843] ? genl_rcv+0x15/0x40
[ 74.806138][ T6843] ? lock_release+0x8e0/0x8e0
[ 74.812077][ T6843] netlink_rcv_skb+0x15a/0x430
[ 74.817374][ T6843] ? genl_family_rcv_msg_attrs_parse.isra.0+0x250/0x250
[ 74.824332][ T6843] ? netlink_ack+0xa10/0xa10
[ 74.829871][ T6843] ? lock_is_held_type+0xbb/0xf0
[ 74.834816][ T6843] genl_rcv+0x24/0x40
[ 74.839677][ T6843] netlink_unicast+0x533/0x7d0
[ 74.844442][ T6843] ? netlink_attachskb+0x810/0x810
[ 74.850475][ T6843] ? _copy_from_iter_full+0x247/0x890
[ 74.855869][ T6843] ? __phys_addr+0x9a/0x110
[ 74.861428][ T6843] ? __phys_addr_symbol+0x2c/0x70
[ 74.866475][ T6843] ? __check_object_size+0x171/0x3e4
[ 74.872703][ T6843] netlink_sendmsg+0x856/0xd90
[ 74.877986][ T6843] ? netlink_unicast+0x7d0/0x7d0
[ 74.882930][ T6843] ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 74.889074][ T6843] ? netlink_unicast+0x7d0/0x7d0
[ 74.894019][ T6843] sock_sendmsg+0xcf/0x120
[ 74.899337][ T6843] ____sys_sendmsg+0x6e8/0x810
[ 74.904115][ T6843] ? kernel_sendmsg+0x50/0x50
[ 74.909571][ T6843] ? do_recvmmsg+0x6d0/0x6d0
[ 74.914161][ T6843] ? lock_acquire+0x1f1/0xad0
[ 74.919597][ T6843] ? do_huge_pmd_anonymous_page+0x120d/0x2230
[ 74.925658][ T6843] ? find_held_lock+0x2d/0x110
[ 74.931432][ T6843] ___sys_sendmsg+0xf3/0x170
[ 74.936029][ T6843] ? sendmsg_copy_msghdr+0x160/0x160
[ 74.942142][ T6843] ? do_huge_pmd_anonymous_page+0x1b94/0x2230
[ 74.948763][ T6843] ? do_huge_pmd_anonymous_page+0x8ef/0x2230
[ 74.954788][ T6843] ? handle_mm_fault+0xb78/0x4530
[ 74.960658][ T6843] ? find_held_lock+0x2d/0x110
[ 74.965429][ T6843] ? __fget_light+0x215/0x280
[ 74.970921][ T6843] __sys_sendmsg+0xe5/0x1b0
[ 74.975431][ T6843] ? __sys_sendmsg_sock+0xb0/0xb0
[ 74.981313][ T6843] ? trace_hardirqs_on+0x5f/0x220
[ 74.986337][ T6843] ? lockdep_hardirqs_on+0x76/0xf0
[ 74.992430][ T6843] do_syscall_64+0x2d/0x70
[ 74.997354][ T6843] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 75.003239][ T6843] RIP: 0033:0x4402a9
[ 75.008047][ T6843] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[ 75.028903][ T6843] RSP: 002b:00007ffffda7bb58 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 75.038033][ T6843] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 00000000004402a9
[ 75.046468][ T6843] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 75.055436][ T6843] RBP: 00000000006ca018 R08: 0000000000000000 R09: 00000000004002c8
[ 75.064117][ T6843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000401ab0
[ 75.073096][ T6843] R13: 0000000000401b40 R14: 0000000000000000 R15: 0000000000000000
[ 75.081655][ T6843] Kernel panic - not syncing: panic_on_warn set ...
[ 75.088873][ T6843] CPU: 0 PID: 6843 Comm: syz-executor189 Not tainted 5.9.0-rc2-next-20200828-syzkaller #0
[ 75.098750][ T6843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 75.110117][ T6843] Call Trace:
[ 75.113441][ T6843] dump_stack+0x18f/0x20d
[ 75.117818][ T6843] panic+0x2e3/0x75c
[ 75.121869][ T6843] ? __warn_printk+0xf3/0xf3
[ 75.126473][ T6843] ? __warn.cold+0x1d/0xc1
[ 75.130898][ T6843] ? __warn.cold+0x14/0xc1
[ 75.135300][ T6843] ? nla_get_range_unsigned+0x157/0x530
[ 75.140940][ T6843] __warn.cold+0x38/0xc1
[ 75.145174][ T6843] ? nla_get_range_unsigned+0x157/0x530
[ 75.150708][ T6843] report_bug+0x1bd/0x210
[ 75.155045][ T6843] handle_bug+0x38/0x90
[ 75.159187][ T6843] ? mark_lock+0xbc/0x1710
[ 75.163604][ T6843] exc_invalid_op+0x14/0x40
[ 75.168090][ T6843] asm_exc_invalid_op+0x12/0x20
[ 75.172982][ T6843] RIP: 0010:nla_get_range_unsigned+0x157/0x530
[ 75.180205][ T6843] Code: 2a 03 00 00 44 0f b6 3b 48 c7 c6 40 e9 96 88 4c 89 ff e8 6c 93 c2 fd 41 80 ff 0b 77 11 42 ff 24 fd 60 e3 96 88 e8 99 96 c2 fd <0f> 0b eb 8f e8 90 96 c2 fd 0f 0b 5b 41 5c 41 5d 41 5e 41 5f 5d e9
[ 75.199803][ T6843] RSP: 0018:ffffc90003f4f190 EFLAGS: 00010293
[ 75.206040][ T6843] RAX: 0000000000000000 RBX: ffffffff8918a7a0 RCX: ffffffff83b1e584
[ 75.214005][ T6843] RDX: ffff888093e9c140 RSI: ffffffff83b1e5f7 RDI: 0000000000000003
[ 75.221968][ T6843] RBP: ffffc90003f4f1b8 R08: 0000000000000000 R09: ffff888088f08370
[ 75.229934][ T6843] R10: 0000000000000000 R11: 0000000000000000 R12: ffffc90003f4f278
[ 75.237995][ T6843] R13: ffffffff8918a7a1 R14: 000000000000877c R15: ffffffff8918a7a0
[ 75.246003][ T6843] ? nla_get_range_unsigned+0xe4/0x530
[ 75.251465][ T6843] ? nla_get_range_unsigned+0x157/0x530
[ 75.257454][ T6843] netlink_policy_dump_write+0x2ae/0xea0
[ 75.263101][ T6843] ? netlink_policy_dump_loop+0x170/0x170
[ 75.268810][ T6843] ? skb_put+0x134/0x180
[ 75.273048][ T6843] ? memset+0x20/0x40
[ 75.277037][ T6843] ? __nla_reserve+0x9a/0xc0
[ 75.281613][ T6843] ? __nla_put+0x23/0x40
[ 75.285836][ T6843] ? memcpy+0x39/0x60
[ 75.289924][ T6843] ctrl_dumppolicy+0x4a8/0x900
[ 75.294685][ T6843] ? genl_start+0x5d0/0x5d0
[ 75.299195][ T6843] ? __kmalloc_node_track_caller+0x38/0x60
[ 75.305219][ T6843] ? rcu_read_lock_sched_held+0x3a/0xb0
[ 75.310773][ T6843] ? __phys_addr+0x9a/0x110
[ 75.316398][ T6843] ? memset+0x20/0x40
[ 75.320401][ T6843] genl_lock_dumpit+0x7f/0xb0
[ 75.325177][ T6843] netlink_dump+0x4cd/0xf60
[ 75.329944][ T6843] ? netlink_insert+0x1670/0x1670
[ 75.334976][ T6843] ? __mutex_unlock_slowpath+0xe2/0x610
[ 75.340622][ T6843] ? kmem_cache_alloc_trace+0x188/0x2c0
[ 75.346167][ T6843] ? genl_start+0x3bb/0x5d0
[ 75.350674][ T6843] __netlink_dump_start+0x643/0x900
[ 75.355960][ T6843] ? genl_rcv_msg+0x980/0x980
[ 75.360632][ T6843] ? genl_start+0x5d0/0x5d0
[ 75.365138][ T6843] genl_family_rcv_msg_dumpit+0x2ac/0x310
[ 75.370850][ T6843] ? genl_rcv+0x40/0x40
[ 75.375013][ T6843] ? mutex_lock_io_nested+0xf60/0xf60
[ 75.380381][ T6843] ? mark_lock+0xbc/0x1710
[ 75.384868][ T6843] ? genl_rcv_msg+0x980/0x980
[ 75.389545][ T6843] ? genl_unlock+0x20/0x20
[ 75.393939][ T6843] ? genl_parallel_done+0xf0/0xf0
[ 75.398969][ T6843] ? __radix_tree_lookup+0x1f3/0x290
[ 75.404262][ T6843] genl_rcv_msg+0x75f/0x980
[ 75.408773][ T6843] ? genl_family_rcv_msg_attrs_parse.isra.0+0x250/0x250
[ 75.415734][ T6843] ? lock_acquire+0x1f1/0xad0
[ 75.420409][ T6843] ? genl_rcv+0x15/0x40
[ 75.424552][ T6843] ? lock_release+0x8e0/0x8e0
[ 75.429230][ T6843] netlink_rcv_skb+0x15a/0x430
[ 75.433985][ T6843] ? genl_family_rcv_msg_attrs_parse.isra.0+0x250/0x250
[ 75.441197][ T6843] ? netlink_ack+0xa10/0xa10
[ 75.445798][ T6843] ? lock_is_held_type+0xbb/0xf0
[ 75.450726][ T6843] genl_rcv+0x24/0x40
[ 75.454704][ T6843] netlink_unicast+0x533/0x7d0
[ 75.459470][ T6843] ? netlink_attachskb+0x810/0x810
[ 75.464576][ T6843] ? _copy_from_iter_full+0x247/0x890
[ 75.469933][ T6843] ? __phys_addr+0x9a/0x110
[ 75.474531][ T6843] ? __phys_addr_symbol+0x2c/0x70
[ 75.479561][ T6843] ? __check_object_size+0x171/0x3e4
[ 75.484906][ T6843] netlink_sendmsg+0x856/0xd90
[ 75.489912][ T6843] ? netlink_unicast+0x7d0/0x7d0
[ 75.494871][ T6843] ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 75.500147][ T6843] ? netlink_unicast+0x7d0/0x7d0
[ 75.505082][ T6843] sock_sendmsg+0xcf/0x120
[ 75.509494][ T6843] ____sys_sendmsg+0x6e8/0x810
[ 75.514251][ T6843] ? kernel_sendmsg+0x50/0x50
[ 75.518955][ T6843] ? do_recvmmsg+0x6d0/0x6d0
[ 75.523534][ T6843] ? lock_acquire+0x1f1/0xad0
[ 75.528209][ T6843] ? do_huge_pmd_anonymous_page+0x120d/0x2230
[ 75.534278][ T6843] ? find_held_lock+0x2d/0x110
[ 75.539054][ T6843] ___sys_sendmsg+0xf3/0x170
[ 75.543644][ T6843] ? sendmsg_copy_msghdr+0x160/0x160
[ 75.548916][ T6843] ? do_huge_pmd_anonymous_page+0x1b94/0x2230
[ 75.554989][ T6843] ? do_huge_pmd_anonymous_page+0x8ef/0x2230
[ 75.560983][ T6843] ? handle_mm_fault+0xb78/0x4530
[ 75.565990][ T6843] ? find_held_lock+0x2d/0x110
[ 75.570738][ T6843] ? __fget_light+0x215/0x280
[ 75.575440][ T6843] __sys_sendmsg+0xe5/0x1b0
[ 75.579957][ T6843] ? __sys_sendmsg_sock+0xb0/0xb0
[ 75.585012][ T6843] ? trace_hardirqs_on+0x5f/0x220
[ 75.590022][ T6843] ? lockdep_hardirqs_on+0x76/0xf0
[ 75.595118][ T6843] do_syscall_64+0x2d/0x70
[ 75.599517][ T6843] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 75.605398][ T6843] RIP: 0033:0x4402a9
[ 75.609279][ T6843] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[ 75.629412][ T6843] RSP: 002b:00007ffffda7bb58 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 75.637841][ T6843] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 00000000004402a9
[ 75.645824][ T6843] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 75.653816][ T6843] RBP: 00000000006ca018 R08: 0000000000000000 R09: 00000000004002c8
[ 75.661801][ T6843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000401ab0
[ 75.669773][ T6843] R13: 0000000000401b40 R14: 0000000000000000 R15: 0000000000000000
[ 75.678645][ T6843] Kernel Offset: disabled
[ 75.683044][ T6843] Rebooting in 86400 seconds..