[ OK ] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch. [ OK ] Started Getty on tty6. [ OK ] Started Getty on tty5. [ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. [ OK ] Started Serial Getty on ttyS0. [ OK ] Started Getty on tty1. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.1.7' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 71.628225][ T28] audit: type=1400 audit(1593403804.259:8): avc: denied { execmem } for pid=6814 comm="syz-executor445" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 71.642192][ T6815] IPVS: ftp: loaded support on port[0] = 21 [ 71.690695][ T6815] netlink: 24 bytes leftover after parsing attributes in process `syz-executor445'. [ 71.741988][ T6815] device veth1 entered promiscuous mode [ 71.782722][ C0] ------------[ cut here ]------------ [ 71.782728][ C0] WARNING: CPU: 0 PID: 6815 at net/core/dev.c:8992 rollback_registered_many+0xbdb/0xf60 [ 71.782733][ C0] Kernel panic - not syncing: panic_on_warn set ... [ 71.782736][ C0] CPU: 0 PID: 6815 Comm: syz-executor445 Not tainted 5.8.0-rc2-syzkaller #0 [ 71.782740][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 71.782742][ C0] Call Trace: [ 71.782743][ C0] dump_stack+0x18f/0x20d [ 71.782745][ C0] panic+0x2e3/0x75c [ 71.782747][ C0] ? __warn_printk+0xf3/0xf3 [ 71.782749][ C0] ? printk+0xba/0xed [ 71.782751][ C0] ? log_store.cold+0x16/0x16 [ 71.782753][ C0] ? __warn.cold+0x5/0x45 [ 71.782754][ C0] ? __warn+0xd6/0x1f2 [ 71.782757][ C0] ? rollback_registered_many+0xbdb/0xf60 [ 71.782759][ C0] __warn.cold+0x20/0x45 [ 71.782761][ C0] ? rollback_registered_many+0xbdb/0xf60 [ 71.782763][ C0] report_bug+0x1bd/0x210 [ 71.782765][ C0] exc_invalid_op+0x24d/0x400 [ 71.782767][ C0] ? exc_overflow+0x40/0x40 [ 71.782769][ C0] ? mark_lock+0xbc/0x1710 [ 71.782771][ C0] asm_exc_invalid_op+0x12/0x20 [ 71.782773][ C0] RIP: 0010:rollback_registered_many+0xbdb/0xf60 [ 71.782781][ C0] Code: 00 00 31 f6 4c 89 f7 e8 f3 d9 fc ff e9 4f fe ff ff 4c 89 e7 e9 48 fd ff ff e8 e1 56 3e fb 0f 0b e9 da fd ff ff e8 d5 56 3e fb <0f> 0b e9 18 fe ff ff e8 c9 56 3e fb 0f b6 2d 2e 58 74 04 31 ff 89 [ 71.782783][ C0] RSP: 0018:ffffc90001986f60 EFLAGS: 00010293 [ 71.782788][ C0] RAX: 0000000000000000 RBX: dffffc0000000000 RCX: ffffffff8634f805 [ 71.782791][ C0] RDX: ffff88808e4fa180 RSI: ffffffff8634fa1b RDI: 0000000000000005 [ 71.782795][ C0] RBP: ffff8880a32a20b8 R08: 0000000000000000 R09: ffffffff8a7b0407 [ 71.782798][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88809f810780 [ 71.782801][ C0] R13: 0000000000034960 R14: ffff8880a32a2000 R15: 0000000000000000 [ 71.782803][ C0] ? rollback_registered_many+0x9c5/0xf60 [ 71.782806][ C0] ? rollback_registered_many+0xbdb/0xf60 [ 71.782808][ C0] ? dev_xdp_uninstall+0x3f0/0x3f0 [ 71.782810][ C0] ? dev_set_mtu_ext+0x590/0x590 [ 71.782812][ C0] unregister_netdevice_queue+0x2dd/0x570 [ 71.782815][ C0] ? unregister_netdevice_many+0x50/0x50 [ 71.782817][ C0] ? hsr_add_port+0x4f3/0x790 [ 71.782819][ C0] hsr_dev_finalize+0x5ce/0x746 [ 71.782820][ C0] hsr_newlink+0x27c/0x520 [ 71.782822][ C0] ? hsr_dellink+0x70/0x70 [ 71.782824][ C0] ? rtnl_create_link+0x184/0xad0 [ 71.782826][ C0] ? hsr_dellink+0x70/0x70 [ 71.782828][ C0] __rtnl_newlink+0x1090/0x1730 [ 71.782830][ C0] ? rtnl_setlink+0x3c0/0x3c0 [ 71.782832][ C0] ? lock_downgrade+0x820/0x820 [ 71.782835][ C0] ? check_preemption_disabled+0x38/0x220 [ 71.782837][ C0] ? is_bpf_text_address+0xcb/0x160 [ 71.782839][ C0] ? kernel_text_address+0xbd/0xf0 [ 71.782841][ C0] ? __kernel_text_address+0x9/0x30 [ 71.782843][ C0] ? unwind_get_return_address+0x51/0x90 [ 71.782853][ C0] ? profile_setup.cold+0xc1/0xc1 [ 71.782855][ C0] ? arch_stack_walk+0x97/0xf0 [ 71.782857][ C0] ? stack_trace_save+0x8c/0xc0 [ 71.782859][ C0] ? stack_trace_consume_entry+0x160/0x160 [ 71.782861][ C0] ? mark_lock+0xbc/0x1710 [ 71.782863][ C0] ? trace_kmalloc+0xfd/0x130 [ 71.782865][ C0] ? kmem_cache_alloc_trace+0x168/0x2d0 [ 71.782867][ C0] rtnl_newlink+0x64/0xa0 [ 71.782869][ C0] ? __rtnl_newlink+0x1730/0x1730 [ 71.782871][ C0] rtnetlink_rcv_msg+0x44e/0xad0 [ 71.782873][ C0] ? rtnetlink_put_metrics+0x510/0x510 [ 71.782875][ C0] ? lock_acquire+0x1f1/0xad0 [ 71.782877][ C0] ? netlink_deliver_tap+0x146/0xb70 [ 71.782879][ C0] netlink_rcv_skb+0x15a/0x430 [ 71.782882][ C0] ? rtnetlink_put_metrics+0x510/0x510 [ 71.782884][ C0] ? netlink_ack+0xa10/0xa10 [ 71.782886][ C0] netlink_unicast+0x533/0x7d0 [ 71.782888][ C0] ? netlink_attachskb+0x810/0x810 [ 71.782890][ C0] ? _copy_from_iter_full+0x247/0x890 [ 71.782892][ C0] netlink_sendmsg+0x856/0xd90 [ 71.782894][ C0] ? netlink_unicast+0x7d0/0x7d0 [ 71.782896][ C0] ? netlink_unicast+0x7d0/0x7d0 [ 71.782898][ C0] sock_sendmsg+0xcf/0x120 [ 71.782900][ C0] ____sys_sendmsg+0x6e8/0x810 [ 71.782902][ C0] ? kernel_sendmsg+0x50/0x50 [ 71.782904][ C0] ? do_recvmmsg+0x6d0/0x6d0 [ 71.782906][ C0] ? find_held_lock+0x2d/0x110 [ 71.782908][ C0] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 71.782910][ C0] ? __wake_up_common_lock+0xde/0x130 [ 71.782912][ C0] ___sys_sendmsg+0xf3/0x170 [ 71.782915][ C0] ? sendmsg_copy_msghdr+0x160/0x160 [ 71.782917][ C0] ? lock_downgrade+0x820/0x820 [ 71.782918][ C0] ? __might_fault+0x190/0x1d0 [ 71.782920][ C0] ? _copy_to_user+0x126/0x160 [ 71.782923][ C0] ? move_addr_to_user+0xb5/0x200 [ 71.782925][ C0] ? __fget_light+0x215/0x280 [ 71.782926][ C0] __sys_sendmsg+0xe5/0x1b0 [ 71.782928][ C0] ? __sys_sendmsg_sock+0xb0/0xb0 [ 71.782930][ C0] ? do_syscall_64+0x1c/0xe0 [ 71.782933][ C0] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 71.782935][ C0] do_syscall_64+0x60/0xe0 [ 71.782937][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 71.782939][ C0] RIP: 0033:0x440e29 [ 71.782940][ C0] Code: Bad RIP value. [ 71.782943][ C0] RSP: 002b:00007ffda77f8348 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 71.782948][ C0] RAX: ffffffffffffffda RBX: 00000000004a25f0 RCX: 0000000000440e29 [ 71.782951][ C0] RDX: 0000000000000000 RSI: 0000000020000240 RDI: 0000000000000003 [ 71.782955][ C0] RBP: 00007ffda77f8350 R08: 0000000120080522 R09: 0000000120080522 [ 71.782958][ C0] R10: 0000000120080522 R11: 0000000000000246 R12: 00000000004a25f0 [ 71.782961][ C0] R13: 00000000004023c0 R14: 0000000000000000 R15: 0000000000000000 [ 71.784765][ C0] Kernel Offset: disabled