[ 81.275210][ T27] audit: type=1800 audit(1579645934.273:26): pid=9691 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 82.327819][ T27] kauditd_printk_skb: 2 callbacks suppressed [ 82.327831][ T27] audit: type=1800 audit(1579645935.343:29): pid=9691 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 82.354055][ T27] audit: type=1800 audit(1579645935.343:30): pid=9691 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.1.24' (ECDSA) to the list of known hosts. syzkaller login: [ 91.794021][ T9853] IPVS: ftp: loaded support on port[0] = 21 [ 91.795246][ T9851] IPVS: ftp: loaded support on port[0] = 21 [ 91.809788][ T9848] IPVS: ftp: loaded support on port[0] = 21 [ 91.816248][ T9855] IPVS: ftp: loaded support on port[0] = 21 [ 91.830768][ T9856] IPVS: ftp: loaded support on port[0] = 21 [ 91.838199][ T9854] IPVS: ftp: loaded support on port[0] = 21 executing program executing program [ 91.913710][ T9858] netlink: 20 bytes leftover after parsing attributes in process `syz-executor905'. [ 91.946913][ T9861] netlink: 20 bytes leftover after parsing attributes in process `syz-executor905'. executing program executing program executing program [ 91.975227][ T9858] list_del corruption, ffff8880a8860000->prev is LIST_POISON2 (dead000000000122) [ 91.985154][ T9858] ------------[ cut here ]------------ [ 91.990649][ T9858] kernel BUG at lib/list_debug.c:48! [ 91.996769][ T9858] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 91.998707][ T9868] netlink: 20 bytes leftover after parsing attributes in process `syz-executor905'. [ 92.002974][ T9858] CPU: 1 PID: 9858 Comm: syz-executor905 Not tainted 5.5.0-rc7-syzkaller #0 executing program [ 92.002981][ T9858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 92.003001][ T9858] RIP: 0010:__list_del_entry_valid.cold+0x37/0x4f [ 92.003020][ T9858] Code: be fd 0f 0b 4c 89 ea 4c 89 f6 48 c7 c7 60 69 71 88 e8 e0 de be fd 0f 0b 4c 89 e2 4c 89 f6 48 c7 c7 c0 69 71 88 e8 cc de be fd <0f> 0b 4c 89 f6 48 c7 c7 80 6a 71 88 e8 bb de be fd 0f 0b cc cc cc [ 92.013147][ T9867] netlink: 20 bytes leftover after parsing attributes in process `syz-executor905'. [ 92.021139][ T9858] RSP: 0018:ffffc90002067478 EFLAGS: 00010282 [ 92.021149][ T9858] RAX: 000000000000004e RBX: ffff8880a8860000 RCX: 0000000000000000 [ 92.021157][ T9858] RDX: 0000000000000000 RSI: ffffffff815e5326 RDI: fffff5200040ce81 [ 92.021165][ T9858] RBP: ffffc90002067490 R08: 000000000000004e R09: ffffed1015d26621 [ 92.021172][ T9858] R10: ffffed1015d26620 R11: ffff8880ae933107 R12: dead000000000122 [ 92.021179][ T9858] R13: ffff8880a1ef8800 R14: ffff8880a8860000 R15: ffff888099c03400 [ 92.021190][ T9858] FS: 00007fd2082d1700(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 [ 92.021198][ T9858] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 92.021205][ T9858] CR2: 00007fd2082afe78 CR3: 0000000097612000 CR4: 00000000001406e0 [ 92.021219][ T9858] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 92.034422][ T9869] netlink: 20 bytes leftover after parsing attributes in process `syz-executor905'. [ 92.037701][ T9858] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 92.037706][ T9858] Call Trace: [ 92.037727][ T9858] __nf_tables_abort+0x1e53/0x2a50 [ 92.037745][ T9858] ? nfnl_err_del+0x115/0x170 [ 92.037757][ T9858] nf_tables_abort+0x17/0x30 [ 92.037770][ T9858] nfnetlink_rcv_batch+0xa5d/0x17a0 [ 92.037788][ T9858] ? nf_tables_delobj+0x8f0/0x8f0 [ 92.066776][ T9874] netlink: 20 bytes leftover after parsing attributes in process `syz-executor905'. [ 92.072844][ T9858] ? nfnetlink_subsys_register+0x2b0/0x2b0 [ 92.072866][ T9858] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 92.072879][ T9858] ? apparmor_capable+0x497/0x900 [ 92.072901][ T9858] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 92.088088][ T9868] list_del corruption, ffff888096ba2c00->prev is LIST_POISON2 (dead000000000122) [ 92.088948][ T9858] ? __nla_validate_parse+0x2d0/0x1ee0 [ 92.088964][ T9858] ? cap_capable+0x205/0x270 [ 92.088982][ T9858] ? nla_memcpy+0xb0/0xb0 [ 92.099918][ T9868] ------------[ cut here ]------------ [ 92.105052][ T9858] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 92.113133][ T9868] kernel BUG at lib/list_debug.c:48! [ 92.122063][ T9858] ? ns_capable_common+0x93/0x100 [ 92.136762][ T9867] list_del corruption, ffff888096ba2400->prev is LIST_POISON2 (dead000000000122) [ 92.136810][ T9858] ? __nla_parse+0x43/0x60 [ 92.145648][ T9867] ------------[ cut here ]------------ [ 92.154156][ T9858] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 92.162120][ T9867] kernel BUG at lib/list_debug.c:48! [ 92.165425][ T9858] nfnetlink_rcv+0x3e7/0x460 [ 92.178449][ T9869] list_del corruption, ffff88808cbe3c00->prev is LIST_POISON2 (dead000000000122) [ 92.179870][ T9858] ? nfnetlink_rcv_batch+0x17a0/0x17a0 [ 92.185478][ T9869] ------------[ cut here ]------------ [ 92.190076][ T9858] ? netlink_deliver_tap+0x24a/0xbe0 [ 92.199422][ T9869] kernel BUG at lib/list_debug.c:48! [ 92.205232][ T9858] ? __kasan_check_write+0x14/0x20 [ 92.220334][ T9874] list_del corruption, ffff8880970da400->prev is LIST_POISON2 (dead000000000122) [ 92.222914][ T9858] netlink_unicast+0x58c/0x7d0 [ 92.222932][ T9858] ? netlink_attachskb+0x870/0x870 [ 92.222946][ T9858] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 92.222966][ T9858] ? __check_object_size+0x3d/0x437 [ 92.232725][ T9874] ------------[ cut here ]------------ [ 92.237536][ T9858] netlink_sendmsg+0x91c/0xea0 [ 92.242205][ T9874] kernel BUG at lib/list_debug.c:48! [ 92.246530][ T9858] ? netlink_unicast+0x7d0/0x7d0 [ 92.389161][ T9858] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 92.394712][ T9858] ? apparmor_socket_sendmsg+0x2a/0x30 [ 92.400172][ T9858] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 92.406404][ T9858] ? security_socket_sendmsg+0x8d/0xc0 [ 92.411852][ T9858] ? netlink_unicast+0x7d0/0x7d0 [ 92.416904][ T9858] sock_sendmsg+0xd7/0x130 [ 92.421306][ T9858] ____sys_sendmsg+0x753/0x880 [ 92.426056][ T9858] ? kernel_sendmsg+0x50/0x50 [ 92.430730][ T9858] ? __fget+0x35d/0x550 [ 92.435040][ T9858] ? find_held_lock+0x35/0x130 [ 92.439793][ T9858] ___sys_sendmsg+0x100/0x170 [ 92.445047][ T9858] ? sendmsg_copy_msghdr+0x70/0x70 [ 92.450174][ T9858] ? __kasan_check_read+0x11/0x20 [ 92.455184][ T9858] ? __fget+0x37f/0x550 [ 92.459330][ T9858] ? ksys_dup3+0x3e0/0x3e0 [ 92.463842][ T9858] ? __do_page_fault+0x56a/0xd80 [ 92.468774][ T9858] ? __fget_light+0x1a9/0x230 [ 92.473447][ T9858] ? __fdget+0x1b/0x20 [ 92.477534][ T9858] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 92.483765][ T9858] __sys_sendmsg+0x105/0x1d0 [ 92.488349][ T9858] ? __sys_sendmsg_sock+0xc0/0xc0 [ 92.493362][ T9858] ? down_read_non_owner+0x490/0x490 [ 92.498781][ T9858] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 92.504239][ T9858] ? do_syscall_64+0x26/0x790 [ 92.508916][ T9858] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 92.514962][ T9858] ? do_syscall_64+0x26/0x790 [ 92.519626][ T9858] __x64_sys_sendmsg+0x78/0xb0 [ 92.524404][ T9858] do_syscall_64+0xfa/0x790 [ 92.528987][ T9858] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 92.534996][ T9858] RIP: 0033:0x446b79 [ 92.538875][ T9858] Code: e8 8c e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 07 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 92.558468][ T9858] RSP: 002b:00007fd2082d0da8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 92.566915][ T9858] RAX: ffffffffffffffda RBX: 00000000006dbc28 RCX: 0000000000446b79 [ 92.574888][ T9858] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003 [ 92.582847][ T9858] RBP: 00000000006dbc20 R08: 0000000000000000 R09: 0000000000000000 [ 92.590852][ T9858] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc2c [ 92.598808][ T9858] R13: 00000000200002c0 R14: 00000000004aeb60 R15: 0000000000000000 [ 92.606769][ T9858] Modules linked in: [ 92.610688][ T9868] invalid opcode: 0000 [#2] PREEMPT SMP KASAN [ 92.616839][ T9868] CPU: 0 PID: 9868 Comm: syz-executor905 Tainted: G D 5.5.0-rc7-syzkaller #0 [ 92.626927][ T9868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 92.636971][ T9868] RIP: 0010:__list_del_entry_valid.cold+0x37/0x4f [ 92.643426][ T9868] Code: be fd 0f 0b 4c 89 ea 4c 89 f6 48 c7 c7 60 69 71 88 e8 e0 de be fd 0f 0b 4c 89 e2 4c 89 f6 48 c7 c7 c0 69 71 88 e8 cc de be fd <0f> 0b 4c 89 f6 48 c7 c7 80 6a 71 88 e8 bb de be fd 0f 0b cc cc cc [ 92.663144][ T9868] RSP: 0018:ffffc90002117478 EFLAGS: 00010282 [ 92.669195][ T9868] RAX: 000000000000004e RBX: ffff888096ba2c00 RCX: 0000000000000000 [ 92.677157][ T9868] RDX: 0000000000000000 RSI: ffffffff815e5326 RDI: fffff52000422e81 [ 92.685111][ T9868] RBP: ffffc90002117490 R08: 000000000000004e R09: ffffed1015d045c9 [ 92.693091][ T9868] R10: ffffed1015d045c8 R11: ffff8880ae822e43 R12: dead000000000122 [ 92.701054][ T9868] R13: ffff888096826400 R14: ffff888096ba2c00 R15: ffff8880a2b72900 [ 92.709016][ T9868] FS: 00007fd2082d1700(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000 [ 92.718081][ T9868] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 92.724654][ T9868] CR2: 00007ffcd970ff30 CR3: 00000000a78f9000 CR4: 00000000001406f0 [ 92.732656][ T9868] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 92.740620][ T9868] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 92.748573][ T9868] Call Trace: [ 92.751849][ T9868] __nf_tables_abort+0x1e53/0x2a50 [ 92.756935][ T9868] ? nfnl_err_del+0x115/0x170 [ 92.761588][ T9868] nf_tables_abort+0x17/0x30 [ 92.766174][ T9868] nfnetlink_rcv_batch+0xa5d/0x17a0 [ 92.771368][ T9868] ? nf_tables_delobj+0x8f0/0x8f0 [ 92.776420][ T9868] ? nfnetlink_subsys_register+0x2b0/0x2b0 [ 92.782308][ T9868] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 92.788090][ T9868] ? kasan_kmalloc+0x9/0x10 [ 92.792590][ T9868] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 92.798816][ T9868] ? apparmor_capable+0x497/0x900 [ 92.803820][ T9868] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 92.810042][ T9868] ? __nla_validate_parse+0x2d0/0x1ee0 [ 92.815484][ T9868] ? cap_capable+0x205/0x270 [ 92.820093][ T9868] ? nla_memcpy+0xb0/0xb0 [ 92.824446][ T9868] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 92.830680][ T9868] ? ns_capable_common+0x93/0x100 [ 92.835692][ T9868] ? __nla_parse+0x43/0x60 [ 92.840086][ T9868] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 92.846209][ T9868] nfnetlink_rcv+0x3e7/0x460 [ 92.850779][ T9868] ? nfnetlink_rcv_batch+0x17a0/0x17a0 [ 92.856227][ T9868] ? netlink_deliver_tap+0x24a/0xbe0 [ 92.861492][ T9868] ? __kasan_check_write+0x14/0x20 [ 92.866605][ T9868] netlink_unicast+0x58c/0x7d0 [ 92.871411][ T9868] ? netlink_attachskb+0x870/0x870 [ 92.876509][ T9868] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 92.882252][ T9868] ? __check_object_size+0x3d/0x437 [ 92.887446][ T9868] netlink_sendmsg+0x91c/0xea0 [ 92.892292][ T9868] ? netlink_unicast+0x7d0/0x7d0 [ 92.897218][ T9868] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 92.902750][ T9868] ? apparmor_socket_sendmsg+0x2a/0x30 [ 92.908209][ T9868] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 92.914633][ T9868] ? security_socket_sendmsg+0x8d/0xc0 [ 92.920122][ T9868] ? netlink_unicast+0x7d0/0x7d0 [ 92.925059][ T9868] sock_sendmsg+0xd7/0x130 [ 92.929472][ T9868] ____sys_sendmsg+0x753/0x880 [ 92.936325][ T9868] ? kernel_sendmsg+0x50/0x50 [ 92.940995][ T9868] ___sys_sendmsg+0x100/0x170 [ 92.945704][ T9868] ? sendmsg_copy_msghdr+0x70/0x70 [ 92.950803][ T9868] ? __fget+0x37f/0x550 [ 92.954952][ T9868] ? ksys_dup3+0x3e0/0x3e0 [ 92.959358][ T9868] ? __do_page_fault+0x56a/0xd80 [ 92.964334][ T9868] ? __kasan_check_read+0x11/0x20 [ 92.969380][ T9868] ? __fget_light+0x1a9/0x230 [ 92.974036][ T9868] ? __fdget+0x1b/0x20 [ 92.978113][ T9868] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 92.984340][ T9868] __sys_sendmsg+0x105/0x1d0 [ 92.988918][ T9868] ? __sys_sendmsg_sock+0xc0/0xc0 [ 92.993930][ T9868] ? down_read_non_owner+0x490/0x490 [ 92.999204][ T9868] ? switch_fpu_return+0x1f9/0x4f0 [ 93.004404][ T9868] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 93.010467][ T9868] __x64_sys_sendmsg+0x78/0xb0 [ 93.015213][ T9868] do_syscall_64+0xfa/0x790 [ 93.019709][ T9868] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 93.025581][ T9868] RIP: 0033:0x446b79 [ 93.029459][ T9868] Code: e8 8c e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 07 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 93.049149][ T9868] RSP: 002b:00007fd2082d0da8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 93.057548][ T9868] RAX: ffffffffffffffda RBX: 00000000006dbc28 RCX: 0000000000446b79 [ 93.065550][ T9868] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003 [ 93.073549][ T9868] RBP: 00000000006dbc20 R08: 0000000000000000 R09: 0000000000000000 [ 93.081516][ T9868] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc2c [ 93.089477][ T9868] R13: 00000000200002c0 R14: 00000000004aeb60 R15: 0000000000000000 [ 93.097443][ T9868] Modules linked in: [ 93.101368][ T9867] invalid opcode: 0000 [#3] PREEMPT SMP KASAN [ 93.107613][ T9867] CPU: 1 PID: 9867 Comm: syz-executor905 Tainted: G D 5.5.0-rc7-syzkaller #0 [ 93.117653][ T9867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 93.127820][ T9867] RIP: 0010:__list_del_entry_valid.cold+0x37/0x4f [ 93.134216][ T9867] Code: be fd 0f 0b 4c 89 ea 4c 89 f6 48 c7 c7 60 69 71 88 e8 e0 de be fd 0f 0b 4c 89 e2 4c 89 f6 48 c7 c7 c0 69 71 88 e8 cc de be fd <0f> 0b 4c 89 f6 48 c7 c7 80 6a 71 88 e8 bb de be fd 0f 0b cc cc cc [ 93.153807][ T9867] RSP: 0018:ffffc90002107478 EFLAGS: 00010282 [ 93.159857][ T9867] RAX: 000000000000004e RBX: ffff888096ba2400 RCX: 0000000000000000 [ 93.167875][ T9867] RDX: 0000000000000000 RSI: ffffffff815e5326 RDI: fffff52000420e81 [ 93.176022][ T9867] RBP: ffffc90002107490 R08: 000000000000004e R09: ffffed1015d06621 [ 93.184103][ T9867] R10: ffffed1015d06620 R11: ffff8880ae833107 R12: dead000000000122 [ 93.192061][ T9867] R13: ffff8880970dac00 R14: ffff888096ba2400 R15: ffff8880a2b72880 [ 93.200051][ T9867] FS: 00007fd2082d1700(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 [ 93.208967][ T9867] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 93.215634][ T9867] CR2: ffffffffff600400 CR3: 0000000094559000 CR4: 00000000001406e0 [ 93.223590][ T9867] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 93.231546][ T9867] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 93.239525][ T9867] Call Trace: [ 93.242981][ T9867] __nf_tables_abort+0x1e53/0x2a50 [ 93.248887][ T9867] ? nfnl_err_del+0x115/0x170 [ 93.253552][ T9867] nf_tables_abort+0x17/0x30 [ 93.258136][ T9867] nfnetlink_rcv_batch+0xa5d/0x17a0 [ 93.263324][ T9867] ? nf_tables_delobj+0x8f0/0x8f0 [ 93.268341][ T9867] ? nfnetlink_subsys_register+0x2b0/0x2b0 [ 93.274147][ T9867] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 93.279942][ T9867] ? kasan_kmalloc+0x9/0x10 [ 93.284475][ T9867] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 93.290702][ T9867] ? apparmor_capable+0x497/0x900 [ 93.295715][ T9867] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 93.301934][ T9867] ? __nla_validate_parse+0x2d0/0x1ee0 [ 93.307380][ T9867] ? cap_capable+0x205/0x270 [ 93.311961][ T9867] ? nla_memcpy+0xb0/0xb0 [ 93.316280][ T9867] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 93.322498][ T9867] ? ns_capable_common+0x93/0x100 [ 93.327509][ T9867] ? __nla_parse+0x43/0x60 [ 93.331923][ T9867] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 93.337652][ T9867] nfnetlink_rcv+0x3e7/0x460 [ 93.342247][ T9867] ? nfnetlink_rcv_batch+0x17a0/0x17a0 [ 93.348366][ T9867] ? netlink_deliver_tap+0x24a/0xbe0 [ 93.353637][ T9867] ? __kasan_check_write+0x14/0x20 [ 93.358725][ T9867] netlink_unicast+0x58c/0x7d0 [ 93.363480][ T9867] ? netlink_attachskb+0x870/0x870 [ 93.368599][ T9867] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 93.374306][ T9867] ? __check_object_size+0x3d/0x437 [ 93.379492][ T9867] netlink_sendmsg+0x91c/0xea0 [ 93.384236][ T9867] ? netlink_unicast+0x7d0/0x7d0 [ 93.389159][ T9867] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 93.394715][ T9867] ? apparmor_socket_sendmsg+0x2a/0x30 [ 93.400168][ T9867] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 93.406401][ T9867] ? security_socket_sendmsg+0x8d/0xc0 [ 93.412004][ T9867] ? netlink_unicast+0x7d0/0x7d0 [ 93.416926][ T9867] sock_sendmsg+0xd7/0x130 [ 93.421345][ T9867] ____sys_sendmsg+0x753/0x880 [ 93.426092][ T9867] ? kernel_sendmsg+0x50/0x50 [ 93.430845][ T9867] ___sys_sendmsg+0x100/0x170 [ 93.435527][ T9867] ? sendmsg_copy_msghdr+0x70/0x70 [ 93.440733][ T9867] ? __fget+0x37f/0x550 [ 93.444876][ T9867] ? ksys_dup3+0x3e0/0x3e0 [ 93.449318][ T9867] ? __do_page_fault+0x56a/0xd80 [ 93.454232][ T9867] ? __kasan_check_read+0x11/0x20 [ 93.459278][ T9867] ? __fget_light+0x1a9/0x230 [ 93.463932][ T9867] ? __fdget+0x1b/0x20 [ 93.467991][ T9867] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 93.474219][ T9867] __sys_sendmsg+0x105/0x1d0 [ 93.478895][ T9867] ? __sys_sendmsg_sock+0xc0/0xc0 [ 93.483960][ T9867] ? down_read_non_owner+0x490/0x490 [ 93.489236][ T9867] ? switch_fpu_return+0x1f9/0x4f0 [ 93.494334][ T9867] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 93.500380][ T9867] __x64_sys_sendmsg+0x78/0xb0 [ 93.505176][ T9867] do_syscall_64+0xfa/0x790 [ 93.509676][ T9867] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 93.515590][ T9867] RIP: 0033:0x446b79 [ 93.519470][ T9867] Code: e8 8c e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 07 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 93.539086][ T9867] RSP: 002b:00007fd2082d0da8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 93.547877][ T9867] RAX: ffffffffffffffda RBX: 00000000006dbc28 RCX: 0000000000446b79 [ 93.555885][ T9867] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003 [ 93.563864][ T9867] RBP: 00000000006dbc20 R08: 0000000000000000 R09: 0000000000000000 [ 93.571824][ T9867] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc2c [ 93.579783][ T9867] R13: 00000000200002c0 R14: 00000000004aeb60 R15: 0000000000000000 [ 93.587747][ T9867] Modules linked in: [ 93.591723][ T9869] invalid opcode: 0000 [#4] PREEMPT SMP KASAN [ 93.597793][ T9869] CPU: 0 PID: 9869 Comm: syz-executor905 Tainted: G D 5.5.0-rc7-syzkaller #0 [ 93.607835][ T9869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 93.617939][ T9869] RIP: 0010:__list_del_entry_valid.cold+0x37/0x4f [ 93.624333][ T9869] Code: be fd 0f 0b 4c 89 ea 4c 89 f6 48 c7 c7 60 69 71 88 e8 e0 de be fd 0f 0b 4c 89 e2 4c 89 f6 48 c7 c7 c0 69 71 88 e8 cc de be fd <0f> 0b 4c 89 f6 48 c7 c7 80 6a 71 88 e8 bb de be fd 0f 0b cc cc cc [ 93.643923][ T9869] RSP: 0018:ffffc90002127478 EFLAGS: 00010282 [ 93.649968][ T9869] RAX: 000000000000004e RBX: ffff88808cbe3c00 RCX: 0000000000000000 [ 93.657921][ T9869] RDX: 0000000000000000 RSI: ffffffff815e5326 RDI: fffff52000424e81 [ 93.665975][ T9869] RBP: ffffc90002127490 R08: 000000000000004e R09: ffffed1015d06621 [ 93.674284][ T9869] R10: ffffed1015d06620 R11: ffff8880ae833107 R12: dead000000000122 [ 93.682248][ T9869] R13: ffff88808fe5fc00 R14: ffff88808cbe3c00 R15: ffff8880a2b72800 [ 93.690238][ T9869] FS: 00007fd2082d1700(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000 [ 93.699158][ T9869] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 93.705724][ T9869] CR2: 00007ffcd970ff30 CR3: 0000000094619000 CR4: 00000000001406f0 [ 93.713686][ T9869] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 93.721658][ T9869] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 93.729614][ T9869] Call Trace: [ 93.734363][ T9869] __nf_tables_abort+0x1e53/0x2a50 [ 93.739506][ T9869] ? nfnl_err_del+0x115/0x170 [ 93.744172][ T9869] nf_tables_abort+0x17/0x30 [ 93.748750][ T9869] nfnetlink_rcv_batch+0xa5d/0x17a0 [ 93.753943][ T9869] ? nf_tables_delobj+0x8f0/0x8f0 [ 93.758958][ T9869] ? nfnetlink_subsys_register+0x2b0/0x2b0 [ 93.764754][ T9869] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 93.770550][ T9869] ? kasan_kmalloc+0x9/0x10 [ 93.775043][ T9869] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 93.781320][ T9869] ? apparmor_capable+0x497/0x900 [ 93.786448][ T9869] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 93.792665][ T9869] ? __nla_validate_parse+0x2d0/0x1ee0 [ 93.798113][ T9869] ? cap_capable+0x205/0x270 [ 93.802737][ T9869] ? nla_memcpy+0xb0/0xb0 [ 93.807060][ T9869] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 93.813278][ T9869] ? ns_capable_common+0x93/0x100 [ 93.818288][ T9869] ? __nla_parse+0x43/0x60 [ 93.822690][ T9869] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 93.828435][ T9869] nfnetlink_rcv+0x3e7/0x460 [ 93.833079][ T9869] ? nfnetlink_rcv_batch+0x17a0/0x17a0 [ 93.838524][ T9869] ? netlink_deliver_tap+0x24a/0xbe0 [ 93.844184][ T9869] ? __kasan_check_write+0x14/0x20 [ 93.849284][ T9869] netlink_unicast+0x58c/0x7d0 [ 93.854144][ T9869] ? netlink_attachskb+0x870/0x870 [ 93.860038][ T9869] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 93.865743][ T9869] ? __check_object_size+0x3d/0x437 [ 93.870920][ T9869] netlink_sendmsg+0x91c/0xea0 [ 93.875672][ T9869] ? netlink_unicast+0x7d0/0x7d0 [ 93.880637][ T9869] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 93.886172][ T9869] ? apparmor_socket_sendmsg+0x2a/0x30 [ 93.891748][ T9869] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 93.897977][ T9869] ? security_socket_sendmsg+0x8d/0xc0 [ 93.903462][ T9869] ? netlink_unicast+0x7d0/0x7d0 [ 93.908394][ T9869] sock_sendmsg+0xd7/0x130 [ 93.912798][ T9869] ____sys_sendmsg+0x753/0x880 [ 93.917551][ T9869] ? kernel_sendmsg+0x50/0x50 [ 93.922218][ T9869] ___sys_sendmsg+0x100/0x170 [ 93.926893][ T9869] ? sendmsg_copy_msghdr+0x70/0x70 [ 93.932040][ T9869] ? __fget+0x37f/0x550 [ 93.936184][ T9869] ? ksys_dup3+0x3e0/0x3e0 [ 93.940613][ T9869] ? __do_page_fault+0x56a/0xd80 [ 93.945976][ T9869] ? __kasan_check_read+0x11/0x20 [ 93.950987][ T9869] ? __fget_light+0x1a9/0x230 [ 93.955655][ T9869] ? __fdget+0x1b/0x20 [ 93.959716][ T9869] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 93.965957][ T9869] __sys_sendmsg+0x105/0x1d0 [ 93.970530][ T9869] ? __sys_sendmsg_sock+0xc0/0xc0 [ 93.975539][ T9869] ? down_read_non_owner+0x490/0x490 [ 93.980813][ T9869] ? switch_fpu_return+0x1f9/0x4f0 [ 93.985912][ T9869] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 93.991957][ T9869] __x64_sys_sendmsg+0x78/0xb0 [ 93.996711][ T9869] do_syscall_64+0xfa/0x790 [ 94.001202][ T9869] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 94.007078][ T9869] RIP: 0033:0x446b79 [ 94.010959][ T9869] Code: e8 8c e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 07 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 94.030550][ T9869] RSP: 002b:00007fd2082d0da8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 94.039061][ T9869] RAX: ffffffffffffffda RBX: 00000000006dbc28 RCX: 0000000000446b79 [ 94.047020][ T9869] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003 [ 94.055213][ T9869] RBP: 00000000006dbc20 R08: 0000000000000000 R09: 0000000000000000 [ 94.063166][ T9869] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc2c [ 94.071125][ T9869] R13: 00000000200002c0 R14: 00000000004aeb60 R15: 0000000000000000 [ 94.079089][ T9869] Modules linked in: [ 94.083029][ T9874] invalid opcode: 0000 [#5] PREEMPT SMP KASAN [ 94.088461][ T9858] ---[ end trace f800595a91f96600 ]--- [ 94.089104][ T9874] CPU: 1 PID: 9874 Comm: syz-executor905 Tainted: G D 5.5.0-rc7-syzkaller #0 [ 94.094754][ T9858] RIP: 0010:__list_del_entry_valid.cold+0x37/0x4f [ 94.104690][ T9874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 94.104711][ T9874] RIP: 0010:__list_del_entry_valid.cold+0x37/0x4f [ 94.104725][ T9874] Code: be fd 0f 0b 4c 89 ea 4c 89 f6 48 c7 c7 60 69 71 88 e8 e0 de be fd 0f 0b 4c 89 e2 4c 89 f6 48 c7 c7 c0 69 71 88 e8 cc de be fd <0f> 0b 4c 89 f6 48 c7 c7 80 6a 71 88 e8 bb de be fd 0f 0b cc cc cc [ 94.104733][ T9874] RSP: 0018:ffffc90002167478 EFLAGS: 00010282 [ 94.104744][ T9874] RAX: 000000000000004e RBX: ffff8880970da400 RCX: 0000000000000000 [ 94.104752][ T9874] RDX: 0000000000000000 RSI: ffffffff815e5326 RDI: fffff5200042ce81 [ 94.104758][ T9874] RBP: ffffc90002167490 R08: 000000000000004e R09: ffffed1015d06621 [ 94.104765][ T9874] R10: ffffed1015d06620 R11: ffff8880ae833107 R12: dead000000000122 [ 94.104773][ T9874] R13: ffff8880a2aa6800 R14: ffff8880970da400 R15: ffff88809a30d200 [ 94.104782][ T9874] FS: 00007fd2082d1700(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 [ 94.104789][ T9874] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 94.104796][ T9874] CR2: ffffffffff600400 CR3: 000000008fe9d000 CR4: 00000000001406e0 [ 94.104806][ T9874] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 94.104813][ T9874] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 executing program [ 94.104817][ T9874] Call Trace: [ 94.104837][ T9874] __nf_tables_abort+0x1e53/0x2a50 [ 94.112196][ T9858] Code: be fd 0f 0b 4c 89 ea 4c 89 f6 48 c7 c7 60 69 71 88 e8 e0 de be fd 0f 0b 4c 89 e2 4c 89 f6 48 c7 c7 c0 69 71 88 e8 cc de be fd <0f> 0b 4c 89 f6 48 c7 c7 80 6a 71 88 e8 bb de be fd 0f 0b cc cc cc [ 94.121633][ T9874] ? nfnl_err_del+0x115/0x170 [ 94.121650][ T9874] nf_tables_abort+0x17/0x30 [ 94.121667][ T9874] nfnetlink_rcv_batch+0xa5d/0x17a0 [ 94.121683][ T9874] ? nf_tables_delobj+0x8f0/0x8f0 [ 94.121700][ T9874] ? nfnetlink_subsys_register+0x2b0/0x2b0 [ 94.121716][ T9874] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 94.121726][ T9874] ? kasan_kmalloc+0x9/0x10 [ 94.121740][ T9874] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 94.121765][ T9874] ? apparmor_capable+0x497/0x900 [ 94.128996][ T9858] RSP: 0018:ffffc90002067478 EFLAGS: 00010282 [ 94.147998][ T9874] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 94.148013][ T9874] ? __nla_validate_parse+0x2d0/0x1ee0 [ 94.148028][ T9874] ? cap_capable+0x205/0x270 [ 94.148045][ T9874] ? nla_memcpy+0xb0/0xb0 [ 94.148058][ T9874] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 94.148071][ T9874] ? ns_capable_common+0x93/0x100 [ 94.148084][ T9874] ? __nla_parse+0x43/0x60 [ 94.148096][ T9874] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 94.148111][ T9874] nfnetlink_rcv+0x3e7/0x460 [ 94.148133][ T9874] ? nfnetlink_rcv_batch+0x17a0/0x17a0 [ 94.154685][ T9858] RAX: 000000000000004e RBX: ffff8880a8860000 RCX: 0000000000000000 [ 94.162151][ T9874] ? netlink_deliver_tap+0x24a/0xbe0 [ 94.162168][ T9874] ? __kasan_check_write+0x14/0x20 [ 94.162184][ T9874] netlink_unicast+0x58c/0x7d0 [ 94.162201][ T9874] ? netlink_attachskb+0x870/0x870 [ 94.162215][ T9874] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 94.162229][ T9874] ? __check_object_size+0x3d/0x437 [ 94.162242][ T9874] netlink_sendmsg+0x91c/0xea0 [ 94.162265][ T9874] ? netlink_unicast+0x7d0/0x7d0 [ 94.170851][ T9858] RDX: 0000000000000000 RSI: ffffffff815e5326 RDI: fffff5200040ce81 [ 94.178266][ T9874] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 94.178284][ T9874] ? apparmor_socket_sendmsg+0x2a/0x30 [ 94.178300][ T9874] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 94.178315][ T9874] ? security_socket_sendmsg+0x8d/0xc0 [ 94.178330][ T9874] ? netlink_unicast+0x7d0/0x7d0 [ 94.178342][ T9874] sock_sendmsg+0xd7/0x130 [ 94.178354][ T9874] ____sys_sendmsg+0x753/0x880 [ 94.178365][ T9874] ? kernel_sendmsg+0x50/0x50 [ 94.178384][ T9874] ___sys_sendmsg+0x100/0x170 [ 94.178397][ T9874] ? sendmsg_copy_msghdr+0x70/0x70 [ 94.178415][ T9874] ? __fget+0x37f/0x550 [ 94.187100][ T9858] RBP: ffffc90002067490 R08: 000000000000004e R09: ffffed1015d26621 [ 94.194493][ T9874] ? ksys_dup3+0x3e0/0x3e0 [ 94.194510][ T9874] ? __do_page_fault+0x56a/0xd80 [ 94.194523][ T9874] ? __kasan_check_read+0x11/0x20 [ 94.194539][ T9874] ? __fget_light+0x1a9/0x230 [ 94.194550][ T9874] ? __fdget+0x1b/0x20 [ 94.194571][ T9874] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 94.204238][ T9858] R10: ffffed1015d26620 R11: ffff8880ae933107 R12: dead000000000122 [ 94.210270][ T9874] __sys_sendmsg+0x105/0x1d0 [ 94.210286][ T9874] ? __sys_sendmsg_sock+0xc0/0xc0 [ 94.210304][ T9874] ? down_read_non_owner+0x490/0x490 [ 94.210321][ T9874] ? switch_fpu_return+0x1f9/0x4f0 [ 94.210337][ T9874] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 94.210351][ T9874] __x64_sys_sendmsg+0x78/0xb0 [ 94.210366][ T9874] do_syscall_64+0xfa/0x790 [ 94.210381][ T9874] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 94.210402][ T9874] RIP: 0033:0x446b79 [ 94.218987][ T9858] R13: ffff8880a1ef8800 R14: ffff8880a8860000 R15: ffff888099c03400 [ 94.226534][ T9874] Code: e8 8c e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 07 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 94.226541][ T9874] RSP: 002b:00007fd2082d0da8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 94.226553][ T9874] RAX: ffffffffffffffda RBX: 00000000006dbc28 RCX: 0000000000446b79 [ 94.226561][ T9874] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003 [ 94.226569][ T9874] RBP: 00000000006dbc20 R08: 0000000000000000 R09: 0000000000000000 [ 94.226577][ T9874] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc2c [ 94.226586][ T9874] R13: 00000000200002c0 R14: 00000000004aeb60 R15: 0000000000000000 [ 94.226609][ T9874] Modules linked in: [ 94.235207][ T9858] FS: 00007fd2082d1700(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000 [ 94.240301][ T9874] ---[ end trace f800595a91f96601 ]--- [ 94.244550][ T9858] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 94.266283][ T9883] netlink: 20 bytes leftover after parsing attributes in process `syz-executor905'. [ 94.270114][ T9858] CR2: 00007ffcd970ff30 CR3: 0000000097612000 CR4: 00000000001406f0 [ 94.280922][ T9874] RIP: 0010:__list_del_entry_valid.cold+0x37/0x4f [ 94.284409][ T9858] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 94.289976][ T9874] Code: be fd 0f 0b 4c 89 ea 4c 89 f6 48 c7 c7 60 69 71 88 e8 e0 de be fd 0f 0b 4c 89 e2 4c 89 f6 48 c7 c7 c0 69 71 88 e8 cc de be fd <0f> 0b 4c 89 f6 48 c7 c7 80 6a 71 88 e8 bb de be fd 0f 0b cc cc cc [ 94.296299][ T9858] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 94.300584][ T9874] RSP: 0018:ffffc90002067478 EFLAGS: 00010282 [ 94.307341][ T9858] Kernel panic - not syncing: Fatal exception [ 94.312441][ T9874] RAX: 000000000000004e RBX: ffff8880a8860000 RCX: 0000000000000000 [ 94.319624][ T9858] Kernel Offset: disabled [ 94.762204][ T9858] Rebooting in 86400 seconds..