Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.1.91' (ECDSA) to the list of known hosts. 2021/05/01 11:22:39 fuzzer started 2021/05/01 11:22:40 dialing manager at 10.128.0.169:44661 2021/05/01 11:22:40 syscalls: 3571 2021/05/01 11:22:40 code coverage: enabled 2021/05/01 11:22:40 comparison tracing: enabled 2021/05/01 11:22:40 extra coverage: enabled 2021/05/01 11:22:40 setuid sandbox: enabled 2021/05/01 11:22:40 namespace sandbox: enabled 2021/05/01 11:22:40 Android sandbox: /sys/fs/selinux/policy does not exist 2021/05/01 11:22:40 fault injection: enabled 2021/05/01 11:22:40 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2021/05/01 11:22:40 net packet injection: enabled 2021/05/01 11:22:40 net device setup: enabled 2021/05/01 11:22:40 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2021/05/01 11:22:40 devlink PCI setup: PCI device 0000:00:10.0 is not available 2021/05/01 11:22:40 USB emulation: enabled 2021/05/01 11:22:40 hci packet injection: enabled 2021/05/01 11:22:40 wifi device emulation: enabled 2021/05/01 11:22:40 802.15.4 emulation: enabled 2021/05/01 11:22:40 fetching corpus: 0, signal 0/2000 (executing program) 2021/05/01 11:22:40 fetching corpus: 50, signal 50000/53743 (executing program) 2021/05/01 11:22:41 fetching corpus: 100, signal 79996/85409 (executing program) 2021/05/01 11:22:41 fetching corpus: 150, signal 105843/112780 (executing program) syzkaller login: [ 71.172685][ T3256] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.180782][ T3256] ieee802154 phy1 wpan1: encryption failed: -22 2021/05/01 11:22:41 fetching corpus: 200, signal 124473/132888 (executing program) 2021/05/01 11:22:42 fetching corpus: 250, signal 135751/145667 (executing program) 2021/05/01 11:22:42 fetching corpus: 300, signal 151392/162704 (executing program) 2021/05/01 11:22:42 fetching corpus: 350, signal 164741/177431 (executing program) 2021/05/01 11:22:42 fetching corpus: 400, signal 178551/192498 (executing program) 2021/05/01 11:22:43 fetching corpus: 450, signal 197939/212923 (executing program) 2021/05/01 11:22:43 Manager.Poll call failed: reading body read tcp 10.128.1.91:33024->10.128.0.169:44661: read: bad address [ 72.750009][ T8432] general protection fault, probably for non-canonical address 0xdffffc00400d1b41: 0000 [#1] PREEMPT SMP KASAN [ 72.762194][ T8432] KASAN: probably user-memory-access in range [0x000000020068da08-0x000000020068da0f] [ 72.771887][ T8432] CPU: 0 PID: 8432 Comm: syz-fuzzer Not tainted 5.12.0-rc8-next-20210423-syzkaller #0 [ 72.783731][ T8432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 72.794419][ T8432] RIP: 0010:skb_release_data+0x3a0/0x750 [ 72.800542][ T8432] Code: 48 8b 04 24 48 c1 e8 03 42 80 3c 30 00 0f 85 d3 02 00 00 49 63 c4 48 c1 e0 04 4a 8b 6c 28 30 48 8d 7d 08 48 89 f8 48 c1 e8 03 <42> 80 3c 30 00 0f 85 a7 02 00 00 48 8b 45 08 31 ff 48 89 c3 48 89 [ 72.820260][ T8432] RSP: 0018:ffffc9000169f960 EFLAGS: 00010206 [ 72.826441][ T8432] RAX: 00000000400d1b41 RBX: 0000000000000011 RCX: 0000000000000000 [ 72.834426][ T8432] RDX: ffff88801c9dd580 RSI: ffffffff8703c746 RDI: 000000020068da08 [ 72.843608][ T8432] RBP: 000000020068da00 R08: 0000000000000011 R09: 000000000068da00 [ 72.852934][ T8432] R10: ffffffff8703c733 R11: 0000000000000000 R12: 0000000000000010 [ 72.863612][ T8432] R13: ffff88802ef97ecc R14: dffffc0000000000 R15: ffff888013572640 [ 72.873182][ T8432] FS: 0000000000000000(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000 [ 72.882658][ T8432] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 72.889361][ T8432] CR2: 0000563a0864bb28 CR3: 000000000bc8e000 CR4: 00000000001506f0 [ 72.898481][ T8432] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 72.906450][ T8432] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 72.914422][ T8432] Call Trace: [ 72.918131][ T8432] __kfree_skb+0x46/0x60 [ 72.922371][ T8432] __tcp_close+0x230/0x1170 [ 72.926880][ T8432] tcp_close+0x29/0xc0 [ 72.930938][ T8432] inet_release+0x12e/0x280 [ 72.935442][ T8432] __sock_release+0xcd/0x280 [ 72.940022][ T8432] sock_close+0x18/0x20 [ 72.944193][ T8432] __fput+0x288/0x920 [ 72.948158][ T8432] ? __sock_release+0x280/0x280 [ 72.953004][ T8432] task_work_run+0xdd/0x1a0 [ 72.957493][ T8432] do_exit+0xbfc/0x2a70 [ 72.961995][ T8432] ? find_held_lock+0x2d/0x110 [ 72.968326][ T8432] ? mm_update_next_owner+0x7a0/0x7a0 [ 72.973797][ T8432] ? get_signal+0x337/0x2150 [ 72.978504][ T8432] ? lock_downgrade+0x6e0/0x6e0 [ 72.985782][ T8432] do_group_exit+0x125/0x310 [ 72.990384][ T8432] get_signal+0x47f/0x2150 [ 72.994806][ T8432] arch_do_signal_or_restart+0x2a8/0x1eb0 [ 73.001079][ T8432] ? find_held_lock+0x2d/0x110 [ 73.006217][ T8432] ? copy_siginfo_to_user32+0xa0/0xa0 [ 73.012816][ T8432] ? __do_sys_futex+0x2ab/0x470 [ 73.018860][ T8432] ? do_futex+0x1780/0x1780 [ 73.023986][ T8432] exit_to_user_mode_prepare+0x171/0x280 [ 73.030185][ T8432] syscall_exit_to_user_mode+0x19/0x60 [ 73.036467][ T8432] do_syscall_64+0x47/0xb0 [ 73.041181][ T8432] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 73.047187][ T8432] RIP: 0033:0x46e163 [ 73.051309][ T8432] Code: Unable to access opcode bytes at RIP 0x46e139. [ 73.060090][ T8432] RSP: 002b:000000c000039ee0 EFLAGS: 00000286 ORIG_RAX: 00000000000000ca [ 73.069072][ T8432] RAX: fffffffffffffe00 RBX: 000000c00002e800 RCX: 000000000046e163 [ 73.077381][ T8432] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000c00002e948 [ 73.086544][ T8432] RBP: 000000c000039f28 R08: 0000000000000000 R09: 0000000000000000 [ 73.094951][ T8432] R10: 0000000000000000 R11: 0000000000000286 R12: 000000000000613b [ 73.103520][ T8432] R13: 0000000000002000 R14: 0000000000000008 R15: 0000000000000008 [ 73.111757][ T8432] Modules linked in: [ 73.116520][ T8432] ---[ end trace 03fe56d6cf85d633 ]--- [ 73.123081][ T8432] RIP: 0010:skb_release_data+0x3a0/0x750 [ 73.129016][ T8432] Code: 48 8b 04 24 48 c1 e8 03 42 80 3c 30 00 0f 85 d3 02 00 00 49 63 c4 48 c1 e0 04 4a 8b 6c 28 30 48 8d 7d 08 48 89 f8 48 c1 e8 03 <42> 80 3c 30 00 0f 85 a7 02 00 00 48 8b 45 08 31 ff 48 89 c3 48 89 [ 73.150043][ T8432] RSP: 0018:ffffc9000169f960 EFLAGS: 00010206 [ 73.156238][ T8432] RAX: 00000000400d1b41 RBX: 0000000000000011 RCX: 0000000000000000 [ 73.164368][ T8432] RDX: ffff88801c9dd580 RSI: ffffffff8703c746 RDI: 000000020068da08 [ 73.172771][ T8432] RBP: 000000020068da00 R08: 0000000000000011 R09: 000000000068da00 [ 73.180824][ T8432] R10: ffffffff8703c733 R11: 0000000000000000 R12: 0000000000000010 [ 73.189345][ T8432] R13: ffff88802ef97ecc R14: dffffc0000000000 R15: ffff888013572640 [ 73.197833][ T8432] FS: 0000000000000000(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000 [ 73.208209][ T8432] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 73.215838][ T8432] CR2: 0000563a0864bb28 CR3: 000000000bc8e000 CR4: 00000000001506f0 [ 73.223969][ T8432] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 73.232210][ T8432] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 73.240878][ T8432] Kernel panic - not syncing: Fatal exception [ 73.247657][ T8432] Kernel Offset: disabled [ 73.252422][ T8432] Rebooting in 86400 seconds..