[ OK ] Found device /dev/ttyS0. [ OK ] Started OpenBSD Secure Shell server. [ OK ] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch. [ OK ] Started Serial Getty on ttyS0. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Starting Load/Save RF Kill Switch Status... Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.23' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 27.819530] FAULT_INJECTION: forcing a failure. [ 27.819530] name failslab, interval 1, probability 0, space 0, times 1 [ 27.830818] CPU: 0 PID: 7957 Comm: syz-executor308 Not tainted 4.14.304-syzkaller #0 [ 27.838689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023 [ 27.848022] Call Trace: [ 27.850599] dump_stack+0x1b2/0x281 [ 27.854218] should_fail.cold+0x10a/0x149 [ 27.858347] should_failslab+0xd6/0x130 [ 27.862390] kmem_cache_alloc_trace+0x29a/0x3d0 [ 27.867062] tty_register_device_attr+0x1d2/0x710 [ 27.871887] ? redirected_tty_write+0xb0/0xb0 [ 27.876358] ? __raw_spin_lock_init+0x28/0x100 [ 27.881957] ? tty_port_init+0xa2/0x190 [ 27.885929] ? gsm_dlci_alloc+0x390/0x460 [ 27.890057] gsmld_open+0x548/0x7b0 [ 27.893670] ? gsm_cleanup_mux+0x3f0/0x3f0 [ 27.897881] tty_ldisc_open+0x6c/0xb0 [ 27.901659] tty_set_ldisc+0x287/0x5d0 [ 27.905525] tty_ioctl+0xa2a/0x1430 [ 27.909127] ? tty_fasync+0x2c0/0x2c0 [ 27.912926] ? proc_fail_nth_write+0x7b/0x180 [ 27.917412] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 27.922314] ? _raw_spin_unlock+0x29/0x40 [ 27.926438] ? do_fault_around+0x35e/0x620 [ 27.930651] ? fsnotify+0x974/0x11b0 [ 27.934342] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 27.939265] ? __handle_mm_fault+0x80f/0x4620 [ 27.943752] ? tty_fasync+0x2c0/0x2c0 [ 27.947535] do_vfs_ioctl+0x75a/0xff0 [ 27.951316] ? ioctl_preallocate+0x1a0/0x1a0 [ 27.955814] ? vfs_write+0x319/0x4d0 [ 27.959523] ? SyS_write+0x14d/0x210 [ 27.963212] ? security_file_ioctl+0x83/0xb0 [ 27.967598] SyS_ioctl+0x7f/0xb0 [ 27.970942] ? do_vfs_ioctl+0xff0/0xff0 [ 27.974893] do_syscall_64+0x1d5/0x640 [ 27.978891] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 27.984059] RIP: 0033:0x7f047652f069 [ 27.987746] RSP: 002b:00007ffec2c481b8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 27.995429] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f047652f069 [ 28.002689] RDX: 00000000200000c0 RSI: 0000000000005423 RDI: 0000000000000003 [ 28.009934] RBP: 00007ffec2c481d0 R08: 0000000000000001 R09: 0000000000000001 [ 28.017199] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 28.024444] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 28.106320] kasan: CONFIG_KASAN_INLINE enabled [ 28.115879] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 28.133876] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 28.140113] Modules linked in: [ 28.143299] CPU: 0 PID: 7957 Comm: syz-executor308 Not tainted 4.14.304-syzkaller #0 [ 28.151168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023 [ 28.160511] task: ffff8880b4cb4100 task.stack: ffff88809a3d8000 [ 28.166560] RIP: 0010:cdev_del+0x22/0x90 [ 28.170603] RSP: 0018:ffff88809a3dfb90 EFLAGS: 00010207 [ 28.175980] RAX: dffffc0000000000 RBX: ffff8880af05df00 RCX: 0000000000000000 [ 28.183236] RDX: 000000000000000c RSI: ffff8880b4cb4988 RDI: 0000000000000064 [ 28.190492] RBP: 0000000000000000 R08: ffffffff8b9da690 R09: 0000000000000000 [ 28.197751] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8880af05df08 [ 28.205010] R13: ffff8880af04c9c8 R14: ffff8880a11730c0 R15: ffff8880a1f35818 [ 28.212269] FS: 0000555556685300(0000) GS:ffff8880ba400000(0000) knlGS:0000000000000000 [ 28.220526] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 28.226392] CR2: 0000565140838160 CR3: 0000000008e6a000 CR4: 00000000003406f0 [ 28.233639] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 28.240882] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 28.248124] Call Trace: [ 28.250688] tty_unregister_device+0x101/0x1a0 [ 28.255246] gsmld_close+0xaa/0x1f0 [ 28.258847] ? gsmtty_cleanup+0x150/0x150 [ 28.262976] tty_ldisc_close+0x8c/0xc0 [ 28.266845] tty_ldisc_release+0xe8/0x400 [ 28.271145] tty_release_struct+0x20/0xe0 [ 28.275274] tty_release+0xb3f/0x10d0 [ 28.279052] ? do_tty_hangup+0x30/0x30 [ 28.282915] __fput+0x25f/0x7a0 [ 28.286171] task_work_run+0x11f/0x190 [ 28.290035] do_exit+0xa44/0x2850 [ 28.293481] ? __do_page_fault+0x571/0xad0 [ 28.297692] ? mm_update_next_owner+0x5b0/0x5b0 [ 28.302337] ? lock_downgrade+0x740/0x740 [ 28.306489] do_group_exit+0x100/0x2e0 [ 28.310376] SyS_exit_group+0x19/0x20 [ 28.314151] ? do_group_exit+0x2e0/0x2e0 [ 28.318186] do_syscall_64+0x1d5/0x640 [ 28.322050] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 28.327215] RIP: 0033:0x7f047652dcf9 [ 28.330904] RSP: 002b:00007ffec2c48168 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 28.338589] RAX: ffffffffffffffda RBX: 00007f04765a23f0 RCX: 00007f047652dcf9 [ 28.345852] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000 [ 28.353099] RBP: 0000000000000000 R08: ffffffffffffffc0 R09: 0000000000000001 [ 28.360341] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f04765a23f0 [ 28.367583] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000001 [ 28.374831] Code: c5 3e f7 ff eb d2 0f 1f 00 55 48 89 fd 48 83 ec 08 e8 f3 7b cd ff 48 8d 7d 64 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 04 84 d2 75 4f [ 28.393912] RIP: cdev_del+0x22/0x90 RSP: ffff88809a3dfb90 [ 28.403355] ---[ end trace 5a01e659fa6a90fc ]--- [ 28.409646] Kernel panic - not syncing: Fatal exception [ 28.415162] Kernel Offset: disabled [ 28.418767] Rebooting in 86400 seconds..