INIT: Entering runlevel: 2 [info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added 'ci-upstream-kasan-gce-7,10.128.0.49' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 26.935793] device syz0 entered promiscuous mode [ 26.943712] ------------[ cut here ]------------ [ 26.948500] syz0: caps=(0x00000800000058c1, 0x0000000000000000) len=392 data_len=0 gso_size=127 gso_type=3 ip_summed=0 [ 26.959439] WARNING: CPU: 0 PID: 3091 at net/core/dev.c:2600 skb_warn_bad_offload+0x2bd/0x3c0 [ 26.968070] Kernel panic - not syncing: panic_on_warn set ... [ 26.968070] [ 26.975415] CPU: 0 PID: 3091 Comm: syzkaller525102 Not tainted 4.15.0-rc2+ #206 [ 26.982831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 26.992156] Call Trace: [ 26.994719] dump_stack+0x194/0x257 [ 26.998321] ? arch_local_irq_restore+0x53/0x53 [ 27.002965] ? vsnprintf+0x1ed/0x1900 [ 27.006745] panic+0x1e4/0x41c [ 27.009911] ? refcount_error_report+0x214/0x214 [ 27.014640] ? show_regs_print_info+0x65/0x65 [ 27.019124] ? __warn+0x1c1/0x200 [ 27.022551] ? skb_warn_bad_offload+0x2bd/0x3c0 [ 27.027189] __warn+0x1dc/0x200 [ 27.030435] ? console_unlock+0x983/0xd80 [ 27.034552] ? skb_warn_bad_offload+0x2bd/0x3c0 [ 27.039207] report_bug+0x211/0x2d0 [ 27.042811] fixup_bug.part.11+0x37/0x80 [ 27.046843] do_error_trap+0x2d7/0x3e0 [ 27.050697] ? __down_trylock_console_sem+0x10d/0x1e0 [ 27.055859] ? math_error+0x400/0x400 [ 27.059626] ? vprintk_emit+0x3ea/0x590 [ 27.063581] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 27.068397] do_invalid_op+0x1b/0x20 [ 27.072087] invalid_op+0x18/0x20 [ 27.075517] RIP: 0010:skb_warn_bad_offload+0x2bd/0x3c0 [ 27.080761] RSP: 0018:ffff8801d30670f8 EFLAGS: 00010286 [ 27.086095] RAX: dffffc0000000008 RBX: ffff8801cc158280 RCX: ffffffff8159c48e [ 27.093334] RDX: 0000000000000000 RSI: 1ffff1003a60cdda RDI: ffff8801d3066e00 [ 27.100572] RBP: ffff8801d3067150 R08: 1ffff1003a60cd9c R09: 0000000000000000 [ 27.107809] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 27.115047] R13: ffff8801cc158280 R14: ffff8801cc047918 R15: 0000000000000003 [ 27.122302] ? vprintk_func+0x5e/0xc0 [ 27.126081] ? skb_warn_bad_offload+0x2bd/0x3c0 [ 27.130730] __skb_gso_segment+0x612/0x800 [ 27.134934] ? skb_mac_gso_segment+0x660/0x660 [ 27.139488] ? lock_downgrade+0x980/0x980 [ 27.143609] validate_xmit_skb+0x4ba/0xb20 [ 27.147815] ? netif_skb_features+0x8e0/0x8e0 [ 27.152281] ? do_raw_spin_trylock+0x190/0x190 [ 27.156837] validate_xmit_skb_list+0xb7/0x120 [ 27.161392] sch_direct_xmit+0x3b6/0x6d0 [ 27.165426] ? dev_deactivate_queue.constprop.27+0x260/0x260 [ 27.171214] __dev_queue_xmit+0x16f4/0x2070 [ 27.175515] ? netdev_pick_tx+0x300/0x300 [ 27.179633] ? lock_release+0xda0/0xda0 [ 27.183575] ? trace_event_raw_event_sched_switch+0x800/0x800 [ 27.189428] ? refcount_add+0x24/0x60 [ 27.193198] ? skb_set_owner_w+0x232/0x330 [ 27.197413] ? __might_sleep+0x95/0x190 [ 27.201359] ? kasan_check_write+0x14/0x20 [ 27.205559] ? copyin+0x91/0xb0 [ 27.208812] ? _copy_from_iter+0x367/0xf30 [ 27.213019] ? __check_object_size+0x25d/0x4f0 [ 27.217572] ? check_stack_object+0x140/0x140 [ 27.222040] ? copy_page_to_iter+0xe10/0xe10 [ 27.226418] ? _copy_from_iter_full+0x22b/0xbb0 [ 27.231064] ? skb_copy_datagram_from_iter+0x3a5/0x5a0 [ 27.236306] ? iov_iter_advance+0x13f0/0x13f0 [ 27.240770] ? _cond_resched+0x14/0x30 [ 27.244625] ? clear_huge_page+0x309/0x730 [ 27.248831] dev_queue_xmit+0x17/0x20 [ 27.252600] packet_sendmsg+0x3ab1/0x6060 [ 27.256728] ? debug_check_no_locks_freed+0x3d0/0x3d0 [ 27.261887] ? __thp_get_unmapped_area+0x130/0x130 [ 27.266784] ? __lock_acquire+0x6e9/0x47f0 [ 27.270986] ? __lock_acquire+0x6e9/0x47f0 [ 27.275199] ? print_usage_bug+0x3f0/0x3f0 [ 27.279418] ? packet_cached_dev_get+0x2b0/0x2b0 [ 27.284150] ? check_noncircular+0x20/0x20 [ 27.288352] ? check_noncircular+0x20/0x20 [ 27.292560] ? debug_check_no_locks_freed+0x3d0/0x3d0 [ 27.297733] ? find_held_lock+0x39/0x1d0 [ 27.301771] ? lock_downgrade+0x980/0x980 [ 27.305890] ? avc_has_perm+0xd0/0x680 [ 27.309745] ? check_noncircular+0x20/0x20 [ 27.313949] ? sock_has_perm+0x29c/0x400 [ 27.317985] ? selinux_secmark_relabel_packet+0xc0/0xc0 [ 27.323316] ? find_held_lock+0x39/0x1d0 [ 27.327366] ? security_socket_sendmsg+0x89/0xb0 [ 27.332091] ? packet_cached_dev_get+0x2b0/0x2b0 [ 27.336819] sock_sendmsg+0xca/0x110 [ 27.340506] sock_write_iter+0x320/0x5e0 [ 27.344539] ? sock_sendmsg+0x110/0x110 [ 27.348497] ? iov_iter_init+0xaf/0x1d0 [ 27.352447] __vfs_write+0x68a/0x970 [ 27.356136] ? kernel_read+0x120/0x120 [ 27.359995] ? bpf_fd_pass+0x280/0x280 [ 27.363857] ? _cond_resched+0x14/0x30 [ 27.367718] ? selinux_file_permission+0x82/0x460 [ 27.372539] ? rw_verify_area+0xe5/0x2b0 [ 27.376570] ? __fdget_raw+0x20/0x20 [ 27.380255] vfs_write+0x18f/0x510 [ 27.383769] SyS_write+0xef/0x220 [ 27.387188] ? lockdep_sys_exit+0x47/0xf0 [ 27.391311] ? SyS_read+0x220/0x220 [ 27.394906] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 27.399893] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 27.404626] entry_SYSCALL_64_fastpath+0x1f/0x96 [ 27.409352] RIP: 0033:0x444529 [ 27.412512] RSP: 002b:00007ffe3a5f3ac8 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 27.420190] RAX: ffffffffffffffda RBX: 00000000004002e0 RCX: 0000000000444529 [ 27.427428] RDX: 0000000000000192 RSI: 00000000205c2000 RDI: 0000000000000005 [ 27.434666] RBP: 00000000006cf018 R08: 00007ffe3a5f3c48 R09: 00007ffe000005b8 [ 27.441907] R10: 000000000000000f R11: 0000000000000293 R12: 0000000000402210 [ 27.449394] R13: 00000000004022a0 R14: 0000000000000000 R15: 0000000000000000 [ 27.456846] Dumping ftrace buffer: [ 27.460432] (ftrace buffer empty) [ 27.464116] Kernel Offset: disabled [ 27.467717] Rebooting in 86400 seconds..