Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.1.13' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 65.149929][ T8357] general protection fault, probably for non-canonical address 0xe51af2c1f2c7bd20: 0000 [#1] PREEMPT SMP KASAN [ 65.161847][ T8357] KASAN: maybe wild-memory-access in range [0x28d7b60f963de900-0x28d7b60f963de907] [ 65.171108][ T8357] CPU: 1 PID: 8357 Comm: syz-executor113 Not tainted 5.11.0-syzkaller #0 [ 65.179497][ T8357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 65.189529][ T8357] RIP: 0010:xfrm_user_rcv_msg_compat+0x5e5/0x1070 [ 65.195942][ T8357] Code: 3c 38 00 0f 85 50 08 00 00 48 8b 04 24 4c 8b 20 4d 85 e4 0f 84 0b 02 00 00 e8 b7 7f c9 f9 49 8d 7c 24 02 48 89 f8 48 c1 e8 03 <42> 0f b6 14 38 48 89 f8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 [ 65.215530][ T8357] RSP: 0018:ffffc900017ff3d8 EFLAGS: 00010202 [ 65.221575][ T8357] RAX: 051af6c1f2c7bd20 RBX: 0000000000000006 RCX: 0000000000000000 [ 65.229523][ T8357] RDX: ffff88801ac60000 RSI: ffffffff87a9f019 RDI: 28d7b60f963de902 [ 65.237484][ T8357] RBP: ffff888020c9af50 R08: 000000000000001b R09: ffff888020c9af53 [ 65.245454][ T8357] R10: ffffffff87a9f259 R11: 0000000000000024 R12: 28d7b60f963de900 [ 65.253416][ T8357] R13: 0000000000000007 R14: ffff888020c9af40 R15: dffffc0000000000 [ 65.261366][ T8357] FS: 0000000000000000(0000) GS:ffff8880b9d00000(0063) knlGS:0000000009c092c0 [ 65.271057][ T8357] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 65.277622][ T8357] CR2: 0000000020002752 CR3: 000000002d87a000 CR4: 00000000001506e0 [ 65.285574][ T8357] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 65.293534][ T8357] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 65.301483][ T8357] Call Trace: [ 65.304744][ T8357] ? xfrm_alloc_compat+0x10d0/0x10d0 [ 65.310010][ T8357] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 65.315985][ T8357] ? mark_lock+0x954/0x17b0 [ 65.320470][ T8357] ? lock_is_held_type+0xd5/0x130 [ 65.325486][ T8357] ? find_held_lock+0x2d/0x110 [ 65.330227][ T8357] ? lock_release+0x3bb/0x710 [ 65.334881][ T8357] ? xfrm_get_translator+0x11f/0x230 [ 65.340231][ T8357] ? lock_downgrade+0x6d0/0x6d0 [ 65.345061][ T8357] ? security_capable+0x8f/0xc0 [ 65.349894][ T8357] ? xfrm_alloc_compat+0x10d0/0x10d0 [ 65.355208][ T8357] xfrm_user_rcv_msg+0x556/0x8b0 [ 65.360142][ T8357] ? xfrm_do_migrate+0x7f0/0x7f0 [ 65.365058][ T8357] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 65.371024][ T8357] ? lock_acquire+0x1bb/0x730 [ 65.375679][ T8357] ? lock_release+0x710/0x710 [ 65.380362][ T8357] ? lock_is_held_type+0xd5/0x130 [ 65.386421][ T8357] ? __mutex_lock+0x620/0x1120 [ 65.391166][ T8357] netlink_rcv_skb+0x153/0x420 [ 65.395909][ T8357] ? xfrm_do_migrate+0x7f0/0x7f0 [ 65.400830][ T8357] ? netlink_ack+0xaa0/0xaa0 [ 65.405404][ T8357] ? lock_release+0x3bb/0x710 [ 65.410102][ T8357] xfrm_netlink_rcv+0x6b/0x90 [ 65.414761][ T8357] netlink_unicast+0x533/0x7d0 [ 65.419505][ T8357] ? netlink_attachskb+0x870/0x870 [ 65.424593][ T8357] ? _copy_from_iter_full+0x279/0x850 [ 65.429945][ T8357] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 65.436167][ T8357] ? __phys_addr_symbol+0x2c/0x70 [ 65.441175][ T8357] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 65.446873][ T8357] ? __check_object_size+0x171/0x3f0 [ 65.452139][ T8357] netlink_sendmsg+0x856/0xd90 [ 65.456882][ T8357] ? netlink_unicast+0x7d0/0x7d0 [ 65.461798][ T8357] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 65.468034][ T8357] ? netlink_unicast+0x7d0/0x7d0 [ 65.472950][ T8357] sock_sendmsg+0xcf/0x120 [ 65.477362][ T8357] ____sys_sendmsg+0x6e8/0x810 [ 65.482106][ T8357] ? kernel_sendmsg+0x50/0x50 [ 65.486761][ T8357] ? do_recvmmsg+0x6d0/0x6d0 [ 65.491342][ T8357] ? find_held_lock+0x2d/0x110 [ 65.496098][ T8357] ? lock_release+0x3bb/0x710 [ 65.500753][ T8357] ? do_huge_pmd_anonymous_page+0x12d9/0x2360 [ 65.506808][ T8357] ? lock_downgrade+0x6d0/0x6d0 [ 65.511644][ T8357] ___sys_sendmsg+0xf3/0x170 [ 65.516214][ T8357] ? sendmsg_copy_msghdr+0x160/0x160 [ 65.521496][ T8357] ? lock_chain_count+0x20/0x20 [ 65.526326][ T8357] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 65.532548][ T8357] ? __handle_mm_fault+0x93c/0x4e00 [ 65.537729][ T8357] ? lock_is_held_type+0xd5/0x130 [ 65.542783][ T8357] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 65.549013][ T8357] ? __fget_light+0x215/0x280 [ 65.553677][ T8357] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 65.559897][ T8357] __sys_sendmsg+0xe5/0x1b0 [ 65.564385][ T8357] ? __sys_sendmsg_sock+0xb0/0xb0 [ 65.569394][ T8357] ? syscall_enter_from_user_mode_prepare+0x13/0x20 [ 65.575981][ T8357] __do_fast_syscall_32+0x56/0x80 [ 65.580991][ T8357] do_fast_syscall_32+0x2f/0x70 [ 65.585825][ T8357] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 65.592137][ T8357] RIP: 0023:0xf7f48549 [ 65.596185][ T8357] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 65.615775][ T8357] RSP: 002b:00000000ffca8dbc EFLAGS: 00000282 ORIG_RAX: 0000000000000172 [ 65.624514][ T8357] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003c80 [ 65.632478][ T8357] RDX: 0000000000000000 RSI: 00000000ffca8e10 RDI: 00000000080e3000 [ 65.640534][ T8357] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 65.648485][ T8357] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 65.656452][ T8357] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 65.664407][ T8357] Modules linked in: [ 65.670346][ T8357] ---[ end trace 1494ca3373de8f76 ]--- [ 65.675875][ T8357] RIP: 0010:xfrm_user_rcv_msg_compat+0x5e5/0x1070 [ 65.685610][ T8357] Code: 3c 38 00 0f 85 50 08 00 00 48 8b 04 24 4c 8b 20 4d 85 e4 0f 84 0b 02 00 00 e8 b7 7f c9 f9 49 8d 7c 24 02 48 89 f8 48 c1 e8 03 <42> 0f b6 14 38 48 89 f8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 [ 65.709574][ T8357] RSP: 0018:ffffc900017ff3d8 EFLAGS: 00010202 [ 65.717341][ T8357] RAX: 051af6c1f2c7bd20 RBX: 0000000000000006 RCX: 0000000000000000 [ 65.725978][ T8357] RDX: ffff88801ac60000 RSI: ffffffff87a9f019 RDI: 28d7b60f963de902 [ 65.733964][ T8357] RBP: ffff888020c9af50 R08: 000000000000001b R09: ffff888020c9af53 [ 65.742593][ T8357] R10: ffffffff87a9f259 R11: 0000000000000024 R12: 28d7b60f963de900 [ 65.750885][ T8357] R13: 0000000000000007 R14: ffff888020c9af40 R15: dffffc0000000000 [ 65.759192][ T8357] FS: 0000000000000000(0000) GS:ffff8880b9d00000(0063) knlGS:0000000009c092c0 [ 65.768441][ T8357] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 65.775023][ T8357] CR2: 00007efcea642000 CR3: 000000002d87a000 CR4: 00000000001506e0 [ 65.784091][ T8357] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 65.792400][ T8357] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 65.800653][ T8357] Kernel panic - not syncing: Fatal exception [ 65.807504][ T8357] Kernel Offset: disabled [ 65.811814][ T8357] Rebooting in 86400 seconds..