[ OK ] Started OpenBSD Secure Shell server. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.10.63' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 48.538554][ T8450] IPVS: ftp: loaded support on port[0] = 21 [ 48.586890][ T8450] netlink: 24 bytes leftover after parsing attributes in process `syz-executor586'. [ 48.596628][ T8450] ================================================================================ [ 48.606033][ T8450] UBSAN: shift-out-of-bounds in net/sched/sch_api.c:389:22 [ 48.613535][ T8450] shift exponent 130 is too large for 32-bit type 'int' [ 48.620640][ T8450] CPU: 1 PID: 8450 Comm: syz-executor586 Not tainted 5.11.0-rc3-syzkaller #0 [ 48.629390][ T8450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 48.639428][ T8450] Call Trace: [ 48.642692][ T8450] dump_stack+0x183/0x22e [ 48.647021][ T8450] ? log_buf_vmcoreinfo_setup+0x45d/0x45d [ 48.652720][ T8450] ? show_regs_print_info+0x12/0x12 [ 48.657902][ T8450] ? qdisc_get_rtab+0x1f4/0x410 [ 48.662863][ T8450] __ubsan_handle_shift_out_of_bounds+0x432/0x4d0 [ 48.669614][ T8450] ? qdisc_get_rtab+0x1f4/0x410 [ 48.674447][ T8450] __detect_linklayer+0x2a9/0x330 [ 48.679455][ T8450] qdisc_get_rtab+0x2b5/0x410 [ 48.684112][ T8450] cbq_init+0x28f/0x12c0 [ 48.688338][ T8450] ? lockdep_softirqs_off+0x410/0x410 [ 48.693687][ T8450] ? __kmalloc_node+0x24f/0x3e0 [ 48.698515][ T8450] ? qdisc_alloc+0x93/0x9e0 [ 48.703041][ T8450] ? qdisc_peek_dequeued+0x220/0x220 [ 48.708311][ T8450] ? lockdep_rtnl_is_held+0x22/0x30 [ 48.713486][ T8450] ? qdisc_lookup+0x2cd/0x5a0 [ 48.718144][ T8450] ? qdisc_peek_dequeued+0x220/0x220 [ 48.723405][ T8450] qdisc_create+0x801/0x1470 [ 48.727993][ T8450] ? cap_capable+0x27e/0x2d0 [ 48.732580][ T8450] ? qdisc_notify+0x370/0x370 [ 48.737232][ T8450] ? safesetid_security_capable+0xad/0x1d0 [ 48.743018][ T8450] ? __nla_parse+0x3c/0x50 [ 48.747501][ T8450] tc_modify_qdisc+0x9e3/0x1fc0 [ 48.752343][ T8450] ? rcu_lock_release+0x20/0x20 [ 48.757169][ T8450] ? rtnetlink_rcv_msg+0xad6/0xe60 [ 48.762447][ T8450] ? mutex_lock_io_nested+0x60/0x60 [ 48.767650][ T8450] ? rcu_lock_release+0x20/0x20 [ 48.772493][ T8450] rtnetlink_rcv_msg+0xb1d/0xe60 [ 48.777406][ T8450] ? trace_lock_acquire+0x180/0x180 [ 48.782597][ T8450] ? rtnetlink_bind+0x80/0x80 [ 48.787263][ T8450] ? rcu_read_lock_sched_held+0x87/0x110 [ 48.792886][ T8450] ? __bpf_trace_rcu_utilization+0x10/0x10 [ 48.798670][ T8450] ? rcu_read_lock_sched_held+0x87/0x110 [ 48.804291][ T8450] ? rcu_read_lock_sched_held+0x87/0x110 [ 48.809914][ T8450] ? __bpf_trace_rcu_utilization+0x10/0x10 [ 48.815788][ T8450] ? rcu_lock_release+0x5/0x20 [ 48.820540][ T8450] netlink_rcv_skb+0x1f0/0x460 [ 48.825410][ T8450] ? rtnetlink_bind+0x80/0x80 [ 48.830068][ T8450] ? netlink_ack+0xb90/0xb90 [ 48.834729][ T8450] netlink_unicast+0x7de/0x9b0 [ 48.839479][ T8450] ? netlink_detachskb+0xa0/0xa0 [ 48.844393][ T8450] ? _copy_from_iter_full+0x2f7/0xa40 [ 48.849744][ T8450] ? __phys_addr_symbol+0x2b/0x70 [ 48.854747][ T8450] ? __check_object_size+0x2f3/0x3f0 [ 48.860008][ T8450] ? bpf_lsm_netlink_send+0x5/0x10 [ 48.865099][ T8450] netlink_sendmsg+0xaa6/0xe90 [ 48.869867][ T8450] ? netlink_getsockopt+0xa50/0xa50 [ 48.875046][ T8450] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 48.880323][ T8450] ? security_socket_sendmsg+0x9d/0xb0 [ 48.885774][ T8450] ? netlink_getsockopt+0xa50/0xa50 [ 48.890957][ T8450] ____sys_sendmsg+0x5a2/0x900 [ 48.895716][ T8450] ? iovec_from_user+0x356/0x390 [ 48.900650][ T8450] ? __sys_sendmsg_sock+0xb0/0xb0 [ 48.905668][ T8450] __sys_sendmsg+0x319/0x400 [ 48.910240][ T8450] ? ____sys_sendmsg+0x900/0x900 [ 48.915158][ T8450] ? _copy_to_user+0xef/0x130 [ 48.919817][ T8450] ? sock_do_ioctl+0x2e0/0x300 [ 48.924563][ T8450] ? sock_show_fdinfo+0xb0/0xb0 [ 48.929410][ T8450] ? memset+0x1f/0x40 [ 48.933374][ T8450] ? smack_file_ioctl+0x284/0x390 [ 48.938569][ T8450] ? lockdep_hardirqs_on_prepare+0x3e2/0x750 [ 48.944550][ T8450] ? syscall_enter_from_user_mode+0x24/0x190 [ 48.950520][ T8450] ? syscall_enter_from_user_mode+0x24/0x190 [ 48.956491][ T8450] do_syscall_64+0x2d/0x70 [ 48.960956][ T8450] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 48.966951][ T8450] RIP: 0033:0x441419 [ 48.970828][ T8450] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 0d fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 48.990549][ T8450] RSP: 002b:00007ffd531509c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 48.998947][ T8450] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000441419 [ 49.006912][ T8450] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003 [ 49.014863][ T8450] RBP: 00007ffd531509e0 R08: 00000000bb1414ac R09: 00000000bb1414ac [ 49.022826][ T8450] R10: 00000000bb1414ac R11: 0000000000000246 R12: 0000000000000000 [ 49.030782][ T8450] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 49.039993][ T8450] ================================================================================ [ 49.049431][ T8450] Kernel panic - not syncing: panic_on_warn set ... [ 49.057322][ T8450] CPU: 1 PID: 8450 Comm: syz-executor586 Not tainted 5.11.0-rc3-syzkaller #0 [ 49.066086][ T8450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 49.076140][ T8450] Call Trace: [ 49.079415][ T8450] dump_stack+0x183/0x22e [ 49.083737][ T8450] ? log_buf_vmcoreinfo_setup+0x45d/0x45d [ 49.089544][ T8450] ? show_regs_print_info+0x12/0x12 [ 49.094732][ T8450] panic+0x2e1/0x850 [ 49.098609][ T8450] ? __ubsan_handle_shift_out_of_bounds+0x455/0x4d0 [ 49.105175][ T8450] ? nmi_panic+0x90/0x90 [ 49.109401][ T8450] ? log_buf_vmcoreinfo_setup+0x45d/0x45d [ 49.115108][ T8450] ? qdisc_get_rtab+0x1f4/0x410 [ 49.119945][ T8450] __ubsan_handle_shift_out_of_bounds+0x4cc/0x4d0 [ 49.126355][ T8450] ? qdisc_get_rtab+0x1f4/0x410 [ 49.131195][ T8450] __detect_linklayer+0x2a9/0x330 [ 49.136201][ T8450] qdisc_get_rtab+0x2b5/0x410 [ 49.140857][ T8450] cbq_init+0x28f/0x12c0 [ 49.145079][ T8450] ? lockdep_softirqs_off+0x410/0x410 [ 49.150430][ T8450] ? __kmalloc_node+0x24f/0x3e0 [ 49.155258][ T8450] ? qdisc_alloc+0x93/0x9e0 [ 49.159737][ T8450] ? qdisc_peek_dequeued+0x220/0x220 [ 49.165003][ T8450] ? lockdep_rtnl_is_held+0x22/0x30 [ 49.170180][ T8450] ? qdisc_lookup+0x2cd/0x5a0 [ 49.174834][ T8450] ? qdisc_peek_dequeued+0x220/0x220 [ 49.180094][ T8450] qdisc_create+0x801/0x1470 [ 49.184667][ T8450] ? cap_capable+0x27e/0x2d0 [ 49.189235][ T8450] ? qdisc_notify+0x370/0x370 [ 49.193938][ T8450] ? safesetid_security_capable+0xad/0x1d0 [ 49.199740][ T8450] ? __nla_parse+0x3c/0x50 [ 49.204144][ T8450] tc_modify_qdisc+0x9e3/0x1fc0 [ 49.208992][ T8450] ? rcu_lock_release+0x20/0x20 [ 49.213828][ T8450] ? rtnetlink_rcv_msg+0xad6/0xe60 [ 49.218926][ T8450] ? mutex_lock_io_nested+0x60/0x60 [ 49.224116][ T8450] ? rcu_lock_release+0x20/0x20 [ 49.228947][ T8450] rtnetlink_rcv_msg+0xb1d/0xe60 [ 49.233861][ T8450] ? trace_lock_acquire+0x180/0x180 [ 49.239040][ T8450] ? rtnetlink_bind+0x80/0x80 [ 49.243705][ T8450] ? rcu_read_lock_sched_held+0x87/0x110 [ 49.249316][ T8450] ? __bpf_trace_rcu_utilization+0x10/0x10 [ 49.255102][ T8450] ? rcu_read_lock_sched_held+0x87/0x110 [ 49.260723][ T8450] ? rcu_read_lock_sched_held+0x87/0x110 [ 49.266331][ T8450] ? __bpf_trace_rcu_utilization+0x10/0x10 [ 49.272114][ T8450] ? rcu_lock_release+0x5/0x20 [ 49.276862][ T8450] netlink_rcv_skb+0x1f0/0x460 [ 49.281603][ T8450] ? rtnetlink_bind+0x80/0x80 [ 49.286300][ T8450] ? netlink_ack+0xb90/0xb90 [ 49.290877][ T8450] netlink_unicast+0x7de/0x9b0 [ 49.295625][ T8450] ? netlink_detachskb+0xa0/0xa0 [ 49.300535][ T8450] ? _copy_from_iter_full+0x2f7/0xa40 [ 49.305885][ T8450] ? __phys_addr_symbol+0x2b/0x70 [ 49.310885][ T8450] ? __check_object_size+0x2f3/0x3f0 [ 49.316150][ T8450] ? bpf_lsm_netlink_send+0x5/0x10 [ 49.321245][ T8450] netlink_sendmsg+0xaa6/0xe90 [ 49.325995][ T8450] ? netlink_getsockopt+0xa50/0xa50 [ 49.331174][ T8450] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 49.336435][ T8450] ? security_socket_sendmsg+0x9d/0xb0 [ 49.341869][ T8450] ? netlink_getsockopt+0xa50/0xa50 [ 49.347042][ T8450] ____sys_sendmsg+0x5a2/0x900 [ 49.351780][ T8450] ? iovec_from_user+0x356/0x390 [ 49.356697][ T8450] ? __sys_sendmsg_sock+0xb0/0xb0 [ 49.361709][ T8450] __sys_sendmsg+0x319/0x400 [ 49.366277][ T8450] ? ____sys_sendmsg+0x900/0x900 [ 49.371189][ T8450] ? _copy_to_user+0xef/0x130 [ 49.375845][ T8450] ? sock_do_ioctl+0x2e0/0x300 [ 49.380585][ T8450] ? sock_show_fdinfo+0xb0/0xb0 [ 49.385424][ T8450] ? memset+0x1f/0x40 [ 49.389385][ T8450] ? smack_file_ioctl+0x284/0x390 [ 49.394395][ T8450] ? lockdep_hardirqs_on_prepare+0x3e2/0x750 [ 49.400363][ T8450] ? syscall_enter_from_user_mode+0x24/0x190 [ 49.406323][ T8450] ? syscall_enter_from_user_mode+0x24/0x190 [ 49.412280][ T8450] do_syscall_64+0x2d/0x70 [ 49.416699][ T8450] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 49.422586][ T8450] RIP: 0033:0x441419 [ 49.426463][ T8450] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 0d fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 49.446056][ T8450] RSP: 002b:00007ffd531509c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 49.454457][ T8450] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000441419 [ 49.462541][ T8450] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003 [ 49.470492][ T8450] RBP: 00007ffd531509e0 R08: 00000000bb1414ac R09: 00000000bb1414ac [ 49.478451][ T8450] R10: 00000000bb1414ac R11: 0000000000000246 R12: 0000000000000000 [ 49.486401][ T8450] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 49.495216][ T8450] Kernel Offset: disabled [ 49.499618][ T8450] Rebooting in 86400 seconds..