[ 73.237780][ T26] audit: type=1800 audit(1565572789.423:26): pid=10372 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 73.269501][ T26] audit: type=1800 audit(1565572789.423:27): pid=10372 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [ 73.291911][ T26] audit: type=1800 audit(1565572789.423:28): pid=10372 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 74.071985][ T26] audit: type=1800 audit(1565572790.293:29): pid=10372 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.1.18' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 84.996856][T10526] ================================================================== [ 85.005089][T10526] BUG: KASAN: null-ptr-deref in rxrpc_unuse_local+0x23/0x70 [ 85.012362][T10526] Write of size 4 at addr 0000000000000010 by task syz-executor084/10526 [ 85.020750][T10526] [ 85.023072][T10526] CPU: 0 PID: 10526 Comm: syz-executor084 Not tainted 5.3.0-rc3+ #158 [ 85.031202][T10526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 85.041246][T10526] Call Trace: [ 85.044534][T10526] dump_stack+0x172/0x1f0 [ 85.048856][T10526] ? rxrpc_unuse_local+0x23/0x70 [ 85.053777][T10526] ? rxrpc_unuse_local+0x23/0x70 [ 85.058709][T10526] __kasan_report.cold+0x5/0x36 [ 85.063558][T10526] ? _raw_read_unlock_irqrestore+0xc1/0xe0 [ 85.069355][T10526] ? rxrpc_unuse_local+0x23/0x70 [ 85.074289][T10526] kasan_report+0x12/0x17 [ 85.078604][T10526] check_memory_region+0x134/0x1a0 [ 85.083698][T10526] __kasan_check_write+0x14/0x20 [ 85.088623][T10526] rxrpc_unuse_local+0x23/0x70 [ 85.093365][T10526] rxrpc_release+0x47d/0x840 [ 85.097938][T10526] __sock_release+0xce/0x280 [ 85.102508][T10526] sock_close+0x1e/0x30 [ 85.106647][T10526] __fput+0x2ff/0x890 [ 85.110616][T10526] ? __sock_release+0x280/0x280 [ 85.115453][T10526] ____fput+0x16/0x20 [ 85.119419][T10526] task_work_run+0x145/0x1c0 [ 85.123993][T10526] do_exit+0x92f/0x2e50 [ 85.128136][T10526] ? __sanitizer_cov_trace_const_cmp4+0x11/0x20 [ 85.134359][T10526] ? mm_update_next_owner+0x640/0x640 [ 85.139712][T10526] ? fd_install+0x4d/0x60 [ 85.144024][T10526] ? __sys_socket+0x180/0x220 [ 85.148683][T10526] ? move_addr_to_kernel+0x80/0x80 [ 85.153773][T10526] ? __ia32_sys_fallocate+0xf0/0xf0 [ 85.158957][T10526] do_group_exit+0x135/0x360 [ 85.163530][T10526] __x64_sys_exit_group+0x44/0x50 [ 85.168541][T10526] do_syscall_64+0xfd/0x6a0 [ 85.173024][T10526] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 85.178894][T10526] RIP: 0033:0x43ed68 [ 85.182777][T10526] Code: Bad RIP value. [ 85.186818][T10526] RSP: 002b:00007fff1a164418 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 85.195210][T10526] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000043ed68 [ 85.203167][T10526] RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000 [ 85.211125][T10526] RBP: 00000000004be568 R08: 00000000000000e7 R09: ffffffffffffffd0 [ 85.219084][T10526] R10: 00000000ffffffff R11: 0000000000000246 R12: 0000000000000001 [ 85.227035][T10526] R13: 00000000006d0180 R14: 0000000000000000 R15: 0000000000000000 [ 85.234998][T10526] ================================================================== [ 85.243464][T10526] Kernel panic - not syncing: panic_on_warn set ... [ 85.250089][T10526] CPU: 0 PID: 10526 Comm: syz-executor084 Tainted: G B 5.3.0-rc3+ #158 [ 85.259614][T10526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 85.269649][T10526] Call Trace: [ 85.272929][T10526] dump_stack+0x172/0x1f0 [ 85.277244][T10526] panic+0x2dc/0x755 [ 85.281127][T10526] ? add_taint.cold+0x16/0x16 [ 85.285790][T10526] ? rxrpc_unuse_local+0x23/0x70 [ 85.290718][T10526] ? preempt_schedule+0x4b/0x60 [ 85.295553][T10526] ? ___preempt_schedule+0x16/0x20 [ 85.300652][T10526] ? trace_hardirqs_on+0x5e/0x240 [ 85.305679][T10526] ? rxrpc_unuse_local+0x23/0x70 [ 85.310604][T10526] end_report+0x47/0x4f [ 85.314744][T10526] ? rxrpc_unuse_local+0x23/0x70 [ 85.319665][T10526] __kasan_report.cold+0xe/0x36 [ 85.324500][T10526] ? _raw_read_unlock_irqrestore+0xc1/0xe0 [ 85.330291][T10526] ? rxrpc_unuse_local+0x23/0x70 [ 85.335212][T10526] kasan_report+0x12/0x17 [ 85.339530][T10526] check_memory_region+0x134/0x1a0 [ 85.344628][T10526] __kasan_check_write+0x14/0x20 [ 85.349558][T10526] rxrpc_unuse_local+0x23/0x70 [ 85.354307][T10526] rxrpc_release+0x47d/0x840 [ 85.358886][T10526] __sock_release+0xce/0x280 [ 85.363461][T10526] sock_close+0x1e/0x30 [ 85.367605][T10526] __fput+0x2ff/0x890 [ 85.371567][T10526] ? __sock_release+0x280/0x280 [ 85.376401][T10526] ____fput+0x16/0x20 [ 85.380365][T10526] task_work_run+0x145/0x1c0 [ 85.384934][T10526] do_exit+0x92f/0x2e50 [ 85.389075][T10526] ? __sanitizer_cov_trace_const_cmp4+0x11/0x20 [ 85.395297][T10526] ? mm_update_next_owner+0x640/0x640 [ 85.400656][T10526] ? fd_install+0x4d/0x60 [ 85.404965][T10526] ? __sys_socket+0x180/0x220 [ 85.409627][T10526] ? move_addr_to_kernel+0x80/0x80 [ 85.414717][T10526] ? __ia32_sys_fallocate+0xf0/0xf0 [ 85.419898][T10526] do_group_exit+0x135/0x360 [ 85.424466][T10526] __x64_sys_exit_group+0x44/0x50 [ 85.429478][T10526] do_syscall_64+0xfd/0x6a0 [ 85.433967][T10526] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 85.439837][T10526] RIP: 0033:0x43ed68 [ 85.443719][T10526] Code: Bad RIP value. [ 85.447760][T10526] RSP: 002b:00007fff1a164418 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 85.456149][T10526] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000043ed68 [ 85.464104][T10526] RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000 [ 85.472056][T10526] RBP: 00000000004be568 R08: 00000000000000e7 R09: ffffffffffffffd0 [ 85.480012][T10526] R10: 00000000ffffffff R11: 0000000000000246 R12: 0000000000000001 [ 85.487969][T10526] R13: 00000000006d0180 R14: 0000000000000000 R15: 0000000000000000 [ 85.496961][T10526] Kernel Offset: disabled [ 85.501308][T10526] Rebooting in 86400 seconds..