Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.1.57' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 56.989088][ T8439] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN [ 57.001603][ T8439] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 57.010408][ T8439] CPU: 1 PID: 8439 Comm: syz-executor604 Not tainted 5.14.0-rc6-syzkaller #0 [ 57.019340][ T8439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 57.029770][ T8439] RIP: 0010:fq_codel_enqueue+0x83b/0x10c0 [ 57.035486][ T8439] Code: db c5 2c fa 45 39 ec 0f 83 cb 00 00 00 e8 9d bd 2c fa 48 8b 44 24 10 80 38 00 0f 85 9a 06 00 00 49 8b 07 48 89 c2 48 c1 ea 03 <42> 80 3c 32 00 0f 85 6e 06 00 00 48 8b 10 48 8d 78 28 49 89 17 48 [ 57.055280][ T8439] RSP: 0018:ffffc9000185f540 EFLAGS: 00010256 [ 57.061326][ T8439] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 57.069365][ T8439] RDX: 0000000000000000 RSI: ffffffff8748eb63 RDI: 0000000000000003 [ 57.077320][ T8439] RBP: ffffc9000185f718 R08: 0000000000000400 R09: 0000000000000001 [ 57.085277][ T8439] R10: ffffffff8748eac3 R11: 0000000000000000 R12: 0000000000000400 [ 57.093235][ T8439] R13: 0000000000000000 R14: dffffc0000000000 R15: ffff8880326c0000 [ 57.101193][ T8439] FS: 000000000242c300(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000 [ 57.110228][ T8439] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 57.116812][ T8439] CR2: 0000000020000080 CR3: 00000000127ad000 CR4: 0000000000350ee0 [ 57.124777][ T8439] Call Trace: [ 57.128052][ T8439] ? lock_release+0x720/0x720 [ 57.132814][ T8439] ? INET_ECN_set_ce+0x790/0x790 [ 57.137750][ T8439] ? do_raw_spin_lock+0x120/0x2b0 [ 57.142766][ T8439] ? rwlock_bug.part.0+0x90/0x90 [ 57.147697][ T8439] dev_qdisc_enqueue+0x40/0x300 [ 57.152544][ T8439] __dev_queue_xmit+0x1e28/0x3620 [ 57.157567][ T8439] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 57.162936][ T8439] ? skb_release_data+0x129/0x790 [ 57.167953][ T8439] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 57.174186][ T8439] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 57.180419][ T8439] ? __phys_addr+0xc4/0x140 [ 57.184911][ T8439] ? __sanitizer_cov_trace_const_cmp2+0x22/0x80 [ 57.191142][ T8439] ? skb_headers_offset_update+0x12e/0x260 [ 57.196936][ T8439] ? pskb_expand_head+0x5a0/0x1060 [ 57.202045][ T8439] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 57.208281][ T8439] ? is_percpu_thread+0xa4/0xc0 [ 57.213122][ T8439] __bpf_redirect+0x5ba/0xd20 [ 57.217792][ T8439] ? skb_ensure_writable+0xdc/0x450 [ 57.222996][ T8439] bpf_clone_redirect+0x2ae/0x420 [ 57.228039][ T8439] bpf_prog_cc75667d52cf7bb0+0x56/0xe28 [ 57.233566][ T8439] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 57.239538][ T8439] ? find_held_lock+0x2d/0x110 [ 57.244289][ T8439] ? bpf_test_timer_enter+0xa0/0x160 [ 57.249564][ T8439] ? lock_downgrade+0x6e0/0x6e0 [ 57.254398][ T8439] ? ktime_get+0x38a/0x470 [ 57.258794][ T8439] ? lockdep_hardirqs_on+0x79/0x100 [ 57.263979][ T8439] ? __sanitizer_cov_trace_cmp4+0x1c/0x70 [ 57.269681][ T8439] ? ktime_get+0x30b/0x470 [ 57.274082][ T8439] ? bpf_test_timer_enter+0xa0/0x160 [ 57.279354][ T8439] bpf_test_run+0x543/0xa90 [ 57.283840][ T8439] ? bpf_test_timer_continue+0x420/0x420 [ 57.289634][ T8439] ? __phys_addr+0xc4/0x140 [ 57.294128][ T8439] ? eth_type_trans+0x360/0x690 [ 57.298969][ T8439] ? eth_gro_receive+0x870/0x870 [ 57.303921][ T8439] ? __build_skb+0x50/0x60 [ 57.308334][ T8439] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 57.314566][ T8439] bpf_prog_test_run_skb+0xac5/0x1d20 [ 57.319930][ T8439] ? bpf_prog_test_run_raw_tp+0x630/0x630 [ 57.325756][ T8439] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 57.331990][ T8439] ? __fget_light+0x215/0x280 [ 57.336664][ T8439] ? __sys_bpf+0x18f4/0x53b0 [ 57.341241][ T8439] ? bpf_prog_test_run_raw_tp+0x630/0x630 [ 57.346950][ T8439] __sys_bpf+0x1993/0x53b0 [ 57.351363][ T8439] ? bpf_link_get_from_fd+0x110/0x110 [ 57.356730][ T8439] ? find_held_lock+0x2d/0x110 [ 57.361491][ T8439] ? trace_hardirqs_on+0x38/0x1c0 [ 57.366507][ T8439] __x64_sys_bpf+0x75/0xb0 [ 57.370916][ T8439] ? syscall_enter_from_user_mode+0x21/0x70 [ 57.376805][ T8439] do_syscall_64+0x35/0xb0 [ 57.381212][ T8439] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 57.387093][ T8439] RIP: 0033:0x43f349 [ 57.390972][ T8439] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 57.410567][ T8439] RSP: 002b:00007ffe9ac58568 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 57.418971][ T8439] RAX: ffffffffffffffda RBX: 0000000000400488 RCX: 000000000043f349 [ 57.426931][ T8439] RDX: 0000000000000048 RSI: 0000000020000140 RDI: 000000000000000a [ 57.434890][ T8439] RBP: 0000000000403330 R08: 0000000000400488 R09: 0000000000400488 [ 57.442939][ T8439] R10: 0000000000400488 R11: 0000000000000246 R12: 00000000004033c0 [ 57.450899][ T8439] R13: 0000000000000000 R14: 00000000004ad018 R15: 0000000000400488 [ 57.459150][ T8439] Modules linked in: [ 57.463107][ T8439] ---[ end trace 6cbf98220a7b0c3a ]--- [ 57.468583][ T8439] RIP: 0010:fq_codel_enqueue+0x83b/0x10c0 [ 57.474320][ T8439] Code: db c5 2c fa 45 39 ec 0f 83 cb 00 00 00 e8 9d bd 2c fa 48 8b 44 24 10 80 38 00 0f 85 9a 06 00 00 49 8b 07 48 89 c2 48 c1 ea 03 <42> 80 3c 32 00 0f 85 6e 06 00 00 48 8b 10 48 8d 78 28 49 89 17 48 [ 57.494073][ T8439] RSP: 0018:ffffc9000185f540 EFLAGS: 00010256 [ 57.500184][ T8439] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 57.508207][ T8439] RDX: 0000000000000000 RSI: ffffffff8748eb63 RDI: 0000000000000003 [ 57.516431][ T8439] RBP: ffffc9000185f718 R08: 0000000000000400 R09: 0000000000000001 [ 57.524692][ T8439] R10: ffffffff8748eac3 R11: 0000000000000000 R12: 0000000000000400 [ 57.532728][ T8439] R13: 0000000000000000 R14: dffffc0000000000 R15: ffff8880326c0000 [ 57.541045][ T8439] FS: 000000000242c300(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000 [ 57.550351][ T8439] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 57.556933][ T8439] CR2: 0000000020000080 CR3: 00000000127ad000 CR4: 0000000000350ee0 [ 57.564934][ T8439] Kernel panic - not syncing: Fatal exception in interrupt [ 57.578697][ T8439] Kernel Offset: disabled [ 57.583500][ T8439] Rebooting in 86400 seconds..