Warning: Permanently added '10.128.0.183' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 81.949290][ T9059] ================================================================== [ 81.957390][ T9059] BUG: KASAN: slab-out-of-bounds in __lock_acquire+0x3ba2/0x5490 [ 81.965092][ T9059] Read of size 8 at addr ffff88821671d440 by task syz-executor336/9059 [ 81.973304][ T9059] [ 81.975688][ T9059] CPU: 1 PID: 9059 Comm: syz-executor336 Not tainted 5.2.0-rc1+ #20 [ 81.983715][ T9059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 81.993941][ T9059] Call Trace: [ 81.997219][ T9059] dump_stack+0x172/0x1f0 [ 82.001539][ T9059] ? __lock_acquire+0x3ba2/0x5490 [ 82.006664][ T9059] print_address_description.cold+0x7c/0x20d [ 82.012627][ T9059] ? __lock_acquire+0x3ba2/0x5490 [ 82.017638][ T9059] ? __lock_acquire+0x3ba2/0x5490 [ 82.022661][ T9059] __kasan_report.cold+0x1b/0x40 [ 82.027697][ T9059] ? __lock_acquire+0x3ba2/0x5490 [ 82.032716][ T9059] kasan_report+0x12/0x20 [ 82.037041][ T9059] __asan_report_load8_noabort+0x14/0x20 [ 82.042736][ T9059] __lock_acquire+0x3ba2/0x5490 [ 82.047571][ T9059] ? sock_diag_rcv+0x2b/0x40 [ 82.052151][ T9059] ? netlink_unicast+0x531/0x710 [ 82.057078][ T9059] ? netlink_sendmsg+0x8ae/0xd70 [ 82.062048][ T9059] ? sock_sendmsg+0xd7/0x130 [ 82.066637][ T9059] ? ___sys_sendmsg+0x803/0x920 [ 82.071473][ T9059] ? __sys_sendmsg+0x105/0x1d0 [ 82.076274][ T9059] ? __x64_sys_sendmsg+0x78/0xb0 [ 82.081205][ T9059] ? do_syscall_64+0xfd/0x680 [ 82.085876][ T9059] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 82.091950][ T9059] ? mark_held_locks+0xf0/0xf0 [ 82.096715][ T9059] ? mark_held_locks+0xf0/0xf0 [ 82.101474][ T9059] ? fs_reclaim_acquire.part.0+0x30/0x30 [ 82.107185][ T9059] ? find_held_lock+0x35/0x130 [ 82.111937][ T9059] ? fs_reclaim_acquire.part.0+0x30/0x30 [ 82.117595][ T9059] lock_acquire+0x16f/0x3f0 [ 82.122093][ T9059] ? rhashtable_walk_enter+0xf9/0x390 [ 82.127548][ T9059] _raw_spin_lock+0x2f/0x40 [ 82.132039][ T9059] ? rhashtable_walk_enter+0xf9/0x390 [ 82.137563][ T9059] rhashtable_walk_enter+0xf9/0x390 [ 82.142793][ T9059] __tipc_dump_start+0x1fa/0x3c0 [ 82.147734][ T9059] tipc_dump_start+0x70/0x90 [ 82.152360][ T9059] __netlink_dump_start+0x4f8/0x7d0 [ 82.157571][ T9059] ? __tipc_dump_start+0x3c0/0x3c0 [ 82.162674][ T9059] tipc_sock_diag_handler_dump+0x1d9/0x270 [ 82.168586][ T9059] ? __tipc_diag_gen_cookie+0x90/0x90 [ 82.173948][ T9059] ? sock_diag_rcv+0x1c/0x40 [ 82.178540][ T9059] ? __tipc_dump_start+0x3c0/0x3c0 [ 82.183653][ T9059] ? tipc_unregister_sysctl+0x20/0x20 [ 82.189136][ T9059] ? tipc_ioctl+0x2e0/0x2e0 [ 82.193639][ T9059] sock_diag_rcv_msg+0x319/0x410 [ 82.198571][ T9059] netlink_rcv_skb+0x177/0x450 [ 82.203325][ T9059] ? sock_diag_bind+0x80/0x80 [ 82.207991][ T9059] ? netlink_ack+0xb50/0xb50 [ 82.212581][ T9059] ? kasan_check_read+0x11/0x20 [ 82.217530][ T9059] ? netlink_deliver_tap+0x254/0xbf0 [ 82.222807][ T9059] sock_diag_rcv+0x2b/0x40 [ 82.227214][ T9059] netlink_unicast+0x531/0x710 [ 82.232011][ T9059] ? netlink_attachskb+0x770/0x770 [ 82.237132][ T9059] ? _copy_from_iter_full+0x25d/0x8c0 [ 82.242504][ T9059] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 82.248223][ T9059] ? __check_object_size+0x3d/0x42f [ 82.253419][ T9059] netlink_sendmsg+0x8ae/0xd70 [ 82.258186][ T9059] ? netlink_unicast+0x710/0x710 [ 82.263311][ T9059] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 82.268940][ T9059] ? apparmor_socket_sendmsg+0x2a/0x30 [ 82.274426][ T9059] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 82.280718][ T9059] ? security_socket_sendmsg+0x8d/0xc0 [ 82.286169][ T9059] ? netlink_unicast+0x710/0x710 [ 82.291133][ T9059] sock_sendmsg+0xd7/0x130 [ 82.295542][ T9059] ___sys_sendmsg+0x803/0x920 [ 82.300211][ T9059] ? copy_msghdr_from_user+0x430/0x430 [ 82.305681][ T9059] ? prep_transhuge_page+0xa0/0xa0 [ 82.310799][ T9059] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 82.317041][ T9059] ? __handle_mm_fault+0x7cb/0x3eb0 [ 82.322505][ T9059] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 82.328780][ T9059] ? __fget_light+0x1a9/0x230 [ 82.333465][ T9059] ? __fdget+0x1b/0x20 [ 82.337520][ T9059] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 82.343819][ T9059] __sys_sendmsg+0x105/0x1d0 [ 82.348545][ T9059] ? __ia32_sys_shutdown+0x80/0x80 [ 82.353651][ T9059] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 82.359102][ T9059] ? do_syscall_64+0x26/0x680 [ 82.363764][ T9059] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 82.369912][ T9059] ? do_syscall_64+0x26/0x680 [ 82.374575][ T9059] __x64_sys_sendmsg+0x78/0xb0 [ 82.379332][ T9059] do_syscall_64+0xfd/0x680 [ 82.383830][ T9059] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 82.389760][ T9059] RIP: 0033:0x440219 [ 82.393682][ T9059] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 82.413414][ T9059] RSP: 002b:00007ffe780ec658 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 82.421818][ T9059] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 0000000000440219 [ 82.429778][ T9059] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003 [ 82.437747][ T9059] RBP: 00000000006ca018 R08: 0000000000000000 R09: 00000000004002c8 [ 82.445762][ T9059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000401aa0 [ 82.453876][ T9059] R13: 0000000000401b30 R14: 0000000000000000 R15: 0000000000000000 [ 82.461839][ T9059] [ 82.464219][ T9059] Allocated by task 1: [ 82.468429][ T9059] save_stack+0x23/0x90 [ 82.472610][ T9059] __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 82.478236][ T9059] kasan_slab_alloc+0xf/0x20 [ 82.482858][ T9059] kmem_cache_alloc+0x11a/0x6f0 [ 82.487709][ T9059] __kernfs_new_node+0xf0/0x6c0 [ 82.492547][ T9059] kernfs_new_node+0x96/0x120 [ 82.497221][ T9059] __kernfs_create_file+0x51/0x340 [ 82.502319][ T9059] sysfs_add_file_mode_ns+0x222/0x560 [ 82.507796][ T9059] internal_create_group+0x359/0xc40 [ 82.513113][ T9059] sysfs_create_groups+0x9b/0x141 [ 82.518128][ T9059] device_add+0x80f/0x17a0 [ 82.522531][ T9059] netdev_register_kobject+0x183/0x3b0 [ 82.527973][ T9059] register_netdevice+0x875/0xff0 [ 82.532982][ T9059] register_netdev+0x30/0x50 [ 82.537554][ T9059] rose_proto_init+0x30d/0x61e [ 82.542387][ T9059] do_one_initcall+0x107/0x7ba [ 82.547145][ T9059] kernel_init_freeable+0x4d4/0x5c3 [ 82.552333][ T9059] kernel_init+0x12/0x1c5 [ 82.556769][ T9059] ret_from_fork+0x24/0x30 [ 82.561165][ T9059] [ 82.563472][ T9059] Freed by task 0: [ 82.567167][ T9059] (stack is not available) [ 82.571558][ T9059] [ 82.573871][ T9059] The buggy address belongs to the object at ffff88821671d380 [ 82.573871][ T9059] which belongs to the cache kernfs_node_cache of size 160 [ 82.588444][ T9059] The buggy address is located 32 bytes to the right of [ 82.588444][ T9059] 160-byte region [ffff88821671d380, ffff88821671d420) [ 82.602348][ T9059] The buggy address belongs to the page: [ 82.607977][ T9059] page:ffffea000859c740 refcount:1 mapcount:0 mapping:ffff88821bc48500 index:0xffff88821671dfee [ 82.618502][ T9059] flags: 0x6fffc0000000200(slab) [ 82.623464][ T9059] raw: 06fffc0000000200 ffffea000859c6c8 ffffea000859c788 ffff88821bc48500 [ 82.632147][ T9059] raw: ffff88821671dfee ffff88821671d000 0000000100000012 0000000000000000 [ 82.640716][ T9059] page dumped because: kasan: bad access detected [ 82.647109][ T9059] [ 82.649418][ T9059] Memory state around the buggy address: [ 82.655043][ T9059] ffff88821671d300: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc [ 82.663095][ T9059] ffff88821671d380: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 82.671195][ T9059] >ffff88821671d400: 00 00 00 00 fc fc fc fc fc fc fc fc 00 00 00 00 [ 82.679345][ T9059] ^ [ 82.685724][ T9059] ffff88821671d480: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 82.693803][ T9059] ffff88821671d500: fc fc fc fc fc fc fc fc 00 00 00 00 00 00 00 00 [ 82.701841][ T9059] ================================================================== [ 82.710138][ T9059] Disabling lock debugging due to kernel taint [ 82.716398][ T9059] Kernel panic - not syncing: panic_on_warn set ... [ 82.723066][ T9059] CPU: 1 PID: 9059 Comm: syz-executor336 Tainted: G B 5.2.0-rc1+ #20 [ 82.732410][ T9059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 82.742451][ T9059] Call Trace: [ 82.745733][ T9059] dump_stack+0x172/0x1f0 [ 82.750045][ T9059] panic+0x2cb/0x744 [ 82.753927][ T9059] ? __warn_printk+0xf3/0xf3 [ 82.758839][ T9059] ? lock_downgrade+0x880/0x880 [ 82.763683][ T9059] ? __lock_acquire+0x3ba2/0x5490 [ 82.768700][ T9059] ? trace_hardirqs_off+0x62/0x220 [ 82.774029][ T9059] ? trace_hardirqs_off+0x59/0x220 [ 82.779136][ T9059] ? __lock_acquire+0x3ba2/0x5490 [ 82.784155][ T9059] end_report+0x47/0x4f [ 82.788352][ T9059] ? __lock_acquire+0x3ba2/0x5490 [ 82.793493][ T9059] __kasan_report.cold+0xe/0x40 [ 82.798390][ T9059] ? __lock_acquire+0x3ba2/0x5490 [ 82.803427][ T9059] kasan_report+0x12/0x20 [ 82.807768][ T9059] __asan_report_load8_noabort+0x14/0x20 [ 82.813430][ T9059] __lock_acquire+0x3ba2/0x5490 [ 82.819136][ T9059] ? sock_diag_rcv+0x2b/0x40 [ 82.823721][ T9059] ? netlink_unicast+0x531/0x710 [ 82.828732][ T9059] ? netlink_sendmsg+0x8ae/0xd70 [ 82.833833][ T9059] ? sock_sendmsg+0xd7/0x130 [ 82.838406][ T9059] ? ___sys_sendmsg+0x803/0x920 [ 82.843247][ T9059] ? __sys_sendmsg+0x105/0x1d0 [ 82.847995][ T9059] ? __x64_sys_sendmsg+0x78/0xb0 [ 82.852913][ T9059] ? do_syscall_64+0xfd/0x680 [ 82.857670][ T9059] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 82.863727][ T9059] ? mark_held_locks+0xf0/0xf0 [ 82.868595][ T9059] ? mark_held_locks+0xf0/0xf0 [ 82.873745][ T9059] ? fs_reclaim_acquire.part.0+0x30/0x30 [ 82.879438][ T9059] ? find_held_lock+0x35/0x130 [ 82.884194][ T9059] ? fs_reclaim_acquire.part.0+0x30/0x30 [ 82.889815][ T9059] lock_acquire+0x16f/0x3f0 [ 82.894304][ T9059] ? rhashtable_walk_enter+0xf9/0x390 [ 82.899666][ T9059] _raw_spin_lock+0x2f/0x40 [ 82.904329][ T9059] ? rhashtable_walk_enter+0xf9/0x390 [ 82.909691][ T9059] rhashtable_walk_enter+0xf9/0x390 [ 82.914876][ T9059] __tipc_dump_start+0x1fa/0x3c0 [ 82.919953][ T9059] tipc_dump_start+0x70/0x90 [ 82.924533][ T9059] __netlink_dump_start+0x4f8/0x7d0 [ 82.929718][ T9059] ? __tipc_dump_start+0x3c0/0x3c0 [ 82.934824][ T9059] tipc_sock_diag_handler_dump+0x1d9/0x270 [ 82.940619][ T9059] ? __tipc_diag_gen_cookie+0x90/0x90 [ 82.946172][ T9059] ? sock_diag_rcv+0x1c/0x40 [ 82.950830][ T9059] ? __tipc_dump_start+0x3c0/0x3c0 [ 82.956004][ T9059] ? tipc_unregister_sysctl+0x20/0x20 [ 82.961372][ T9059] ? tipc_ioctl+0x2e0/0x2e0 [ 82.965901][ T9059] sock_diag_rcv_msg+0x319/0x410 [ 82.970832][ T9059] netlink_rcv_skb+0x177/0x450 [ 82.975806][ T9059] ? sock_diag_bind+0x80/0x80 [ 82.980472][ T9059] ? netlink_ack+0xb50/0xb50 [ 82.985055][ T9059] ? kasan_check_read+0x11/0x20 [ 82.989894][ T9059] ? netlink_deliver_tap+0x254/0xbf0 [ 82.995171][ T9059] sock_diag_rcv+0x2b/0x40 [ 82.999679][ T9059] netlink_unicast+0x531/0x710 [ 83.004474][ T9059] ? netlink_attachskb+0x770/0x770 [ 83.009578][ T9059] ? _copy_from_iter_full+0x25d/0x8c0 [ 83.014936][ T9059] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 83.020639][ T9059] ? __check_object_size+0x3d/0x42f [ 83.026115][ T9059] netlink_sendmsg+0x8ae/0xd70 [ 83.030938][ T9059] ? netlink_unicast+0x710/0x710 [ 83.036010][ T9059] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 83.041550][ T9059] ? apparmor_socket_sendmsg+0x2a/0x30 [ 83.047116][ T9059] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 83.053335][ T9059] ? security_socket_sendmsg+0x8d/0xc0 [ 83.058781][ T9059] ? netlink_unicast+0x710/0x710 [ 83.063754][ T9059] sock_sendmsg+0xd7/0x130 [ 83.068206][ T9059] ___sys_sendmsg+0x803/0x920 [ 83.072873][ T9059] ? copy_msghdr_from_user+0x430/0x430 [ 83.078341][ T9059] ? prep_transhuge_page+0xa0/0xa0 [ 83.083457][ T9059] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 83.089696][ T9059] ? __handle_mm_fault+0x7cb/0x3eb0 [ 83.094922][ T9059] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 83.101152][ T9059] ? __fget_light+0x1a9/0x230 [ 83.105878][ T9059] ? __fdget+0x1b/0x20 [ 83.109947][ T9059] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 83.116177][ T9059] __sys_sendmsg+0x105/0x1d0 [ 83.120759][ T9059] ? __ia32_sys_shutdown+0x80/0x80 [ 83.125914][ T9059] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 83.131507][ T9059] ? do_syscall_64+0x26/0x680 [ 83.136258][ T9059] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 83.142311][ T9059] ? do_syscall_64+0x26/0x680 [ 83.146975][ T9059] __x64_sys_sendmsg+0x78/0xb0 [ 83.151735][ T9059] do_syscall_64+0xfd/0x680 [ 83.156230][ T9059] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 83.162126][ T9059] RIP: 0033:0x440219 [ 83.166011][ T9059] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 83.185607][ T9059] RSP: 002b:00007ffe780ec658 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 83.194120][ T9059] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 0000000000440219 [ 83.202229][ T9059] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003 [ 83.210186][ T9059] RBP: 00000000006ca018 R08: 0000000000000000 R09: 00000000004002c8 [ 83.218143][ T9059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000401aa0 [ 83.226188][ T9059] R13: 0000000000401b30 R14: 0000000000000000 R15: 0000000000000000 [ 83.235593][ T9059] Kernel Offset: disabled [ 83.239931][ T9059] Rebooting in 86400 seconds..