[ 88.674940][ T26] audit: type=1800 audit(1580310779.665:26): pid=9540 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 89.718572][ T26] kauditd_printk_skb: 2 callbacks suppressed [ 89.718583][ T26] audit: type=1800 audit(1580310780.725:29): pid=9540 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 89.745356][ T26] audit: type=1800 audit(1580310780.725:30): pid=9540 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.134' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 98.766272][ T9694] general protection fault, probably for non-canonical address 0xdffffc00060e8d2f: 0000 [#1] PREEMPT SMP KASAN [ 98.778006][ T9694] KASAN: probably user-memory-access in range [0x0000000030746978-0x000000003074697f] [ 98.787524][ T9694] CPU: 0 PID: 9694 Comm: syz-executor996 Not tainted 5.5.0-syzkaller #0 [ 98.795819][ T9694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 98.805869][ T9694] RIP: 0010:nf_flow_table_offload_setup+0x4dc/0x6d0 [ 98.812436][ T9694] Code: bc 24 50 ff ff ff 48 ba 00 00 00 00 00 fc ff df 4d 8b ae 00 02 00 00 4d 8b a4 24 58 ff ff ff 49 8d 7f 08 48 89 f9 48 c1 e9 03 <80> 3c 11 00 0f 85 cd 01 00 00 4c 89 e2 49 89 47 08 48 b8 00 00 00 [ 98.832021][ T9694] RSP: 0018:ffffc90001fff228 EFLAGS: 00010202 [ 98.838072][ T9694] RAX: ffff88809f9eda50 RBX: 1ffff920003ffe49 RCX: 00000000060e8d2f [ 98.846029][ T9694] RDX: dffffc0000000000 RSI: ffffffff867501ce RDI: 000000003074697b [ 98.853981][ T9694] RBP: ffffc90001fff370 R08: ffff888091caa500 R09: fffff520003ffe55 [ 98.861932][ T9694] R10: fffff520003ffe54 R11: ffffc90001fff2a6 R12: 0000000000000000 [ 98.869890][ T9694] R13: ffff88809f9eda50 R14: ffff88809f9ed850 R15: 0000000030746973 [ 98.877852][ T9694] FS: 0000000000f5d880(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000 [ 98.886777][ T9694] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 98.893347][ T9694] CR2: 0000000020003e00 CR3: 0000000097d75000 CR4: 00000000001406f0 [ 98.901304][ T9694] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 98.909259][ T9694] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 98.917218][ T9694] Call Trace: [ 98.920489][ T9694] ? flow_offload_queue_work+0x130/0x130 [ 98.926104][ T9694] ? nft_netdev_hook_alloc+0xfb/0x170 [ 98.931459][ T9694] ? nf_tables_init_net+0x1e0/0x1e0 [ 98.936633][ T9694] ? nla_memcpy+0xb0/0xb0 [ 98.940942][ T9694] ? wait_for_completion+0x440/0x440 [ 98.946201][ T9694] ? trace_hardirqs_on+0x67/0x240 [ 98.951225][ T9694] ? nf_tables_parse_netdev_hooks+0x70/0x660 [ 98.957188][ T9694] nf_tables_newflowtable+0x1352/0x1d90 [ 98.962717][ T9694] ? nf_tables_newrule+0x2400/0x2400 [ 98.967984][ T9694] ? __nla_parse+0x43/0x60 [ 98.972389][ T9694] nfnetlink_rcv_batch+0x8c8/0x1790 [ 98.977589][ T9694] ? nf_tables_newrule+0x2400/0x2400 [ 98.982859][ T9694] ? nfnetlink_subsys_register+0x2b0/0x2b0 [ 98.988649][ T9694] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 98.994885][ T9694] ? apparmor_capable+0x497/0x900 [ 98.999892][ T9694] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 99.006112][ T9694] ? __nla_validate_parse+0x2d0/0x1ee0 [ 99.011548][ T9694] ? cap_capable+0x205/0x270 [ 99.016117][ T9694] ? nla_memcpy+0xb0/0xb0 [ 99.020436][ T9694] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 99.026655][ T9694] ? ns_capable_common+0x93/0x100 [ 99.031665][ T9694] ? __nla_parse+0x43/0x60 [ 99.036069][ T9694] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 99.041764][ T9694] nfnetlink_rcv+0x3e7/0x460 [ 99.046343][ T9694] ? nfnetlink_rcv_batch+0x1790/0x1790 [ 99.052045][ T9694] ? netlink_deliver_tap+0x248/0xbf0 [ 99.057318][ T9694] ? __kasan_check_write+0x14/0x20 [ 99.062415][ T9694] netlink_unicast+0x59e/0x7e0 [ 99.067159][ T9694] ? netlink_attachskb+0x870/0x870 [ 99.072249][ T9694] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 99.077945][ T9694] ? __check_object_size+0x3d/0x437 [ 99.083124][ T9694] netlink_sendmsg+0x91c/0xea0 [ 99.087890][ T9694] ? netlink_unicast+0x7e0/0x7e0 [ 99.092949][ T9694] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 99.098478][ T9694] ? apparmor_socket_sendmsg+0x2a/0x30 [ 99.103913][ T9694] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 99.110151][ T9694] ? security_socket_sendmsg+0x8d/0xc0 [ 99.115589][ T9694] ? netlink_unicast+0x7e0/0x7e0 [ 99.120512][ T9694] sock_sendmsg+0xd7/0x130 [ 99.124960][ T9694] ____sys_sendmsg+0x753/0x880 [ 99.129702][ T9694] ? kernel_sendmsg+0x50/0x50 [ 99.134396][ T9694] ___sys_sendmsg+0x100/0x170 [ 99.139051][ T9694] ? sendmsg_copy_msghdr+0x70/0x70 [ 99.144136][ T9694] ? do_huge_pmd_anonymous_page+0xceb/0x1a50 [ 99.150092][ T9694] ? prep_transhuge_page+0xa0/0xa0 [ 99.155298][ T9694] ? do_page_fault+0x579/0x12e1 [ 99.160131][ T9694] ? find_held_lock+0x35/0x130 [ 99.164876][ T9694] ? do_page_fault+0x579/0x12e1 [ 99.169704][ T9694] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 99.175933][ T9694] ? __fget_light+0x1a9/0x230 [ 99.180596][ T9694] ? __fdget+0x1b/0x20 [ 99.184648][ T9694] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 99.190897][ T9694] __sys_sendmsg+0x105/0x1d0 [ 99.195555][ T9694] ? __sys_sendmsg_sock+0xc0/0xc0 [ 99.200582][ T9694] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 99.206036][ T9694] ? do_syscall_64+0x26/0x790 [ 99.210691][ T9694] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 99.216745][ T9694] ? do_syscall_64+0x26/0x790 [ 99.221411][ T9694] __x64_sys_sendmsg+0x78/0xb0 [ 99.226164][ T9694] do_syscall_64+0xfa/0x790 [ 99.230685][ T9694] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 99.236572][ T9694] RIP: 0033:0x4401b9 [ 99.240459][ T9694] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 99.260039][ T9694] RSP: 002b:00007ffcbce92088 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 99.268426][ T9694] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 00000000004401b9 [ 99.276377][ T9694] RDX: 0000000000000000 RSI: 0000000020003e00 RDI: 0000000000000003 [ 99.284324][ T9694] RBP: 00000000006ca018 R08: 0000000000000000 R09: 00000000004002c8 [ 99.292300][ T9694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000401a40 [ 99.300248][ T9694] R13: 0000000000401ad0 R14: 0000000000000000 R15: 0000000000000000 [ 99.308201][ T9694] Modules linked in: [ 99.312643][ T9694] ---[ end trace d4dfbdc7f24b2cfe ]--- [ 99.318101][ T9694] RIP: 0010:nf_flow_table_offload_setup+0x4dc/0x6d0 [ 99.324724][ T9694] Code: bc 24 50 ff ff ff 48 ba 00 00 00 00 00 fc ff df 4d 8b ae 00 02 00 00 4d 8b a4 24 58 ff ff ff 49 8d 7f 08 48 89 f9 48 c1 e9 03 <80> 3c 11 00 0f 85 cd 01 00 00 4c 89 e2 49 89 47 08 48 b8 00 00 00 [ 99.344453][ T9694] RSP: 0018:ffffc90001fff228 EFLAGS: 00010202 [ 99.350498][ T9694] RAX: ffff88809f9eda50 RBX: 1ffff920003ffe49 RCX: 00000000060e8d2f [ 99.358539][ T9694] RDX: dffffc0000000000 RSI: ffffffff867501ce RDI: 000000003074697b [ 99.366536][ T9694] RBP: ffffc90001fff370 R08: ffff888091caa500 R09: fffff520003ffe55 [ 99.374534][ T9694] R10: fffff520003ffe54 R11: ffffc90001fff2a6 R12: 0000000000000000 [ 99.382531][ T9694] R13: ffff88809f9eda50 R14: ffff88809f9ed850 R15: 0000000030746973 [ 99.390486][ T9694] FS: 0000000000f5d880(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000 [ 99.399454][ T9694] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 99.406111][ T9694] CR2: 0000000020003e00 CR3: 0000000097d75000 CR4: 00000000001406f0 [ 99.414156][ T9694] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 99.422179][ T9694] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 99.430151][ T9694] Kernel panic - not syncing: Fatal exception [ 99.437497][ T9694] Kernel Offset: disabled [ 99.441824][ T9694] Rebooting in 86400 seconds..