INIT: Entering runlevel: 2 [info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added 'ci-upstream-mmots-kasan-gce-4,10.128.15.196' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 40.675057] [ 40.675386] ============================= [ 40.675939] WARNING: suspicious RCU usage [ 40.676648] 4.15.0-rc1-mm1+ #29 Not tainted [ 40.677247] ----------------------------- [ 40.677801] ./include/trace/events/kmem.h:142 suspicious rcu_dereference_check() usage! [ 40.678886] [ 40.678886] other info that might help us debug this: [ 40.678886] [ 40.680031] [ 40.680031] rcu_scheduler_active = 2, debug_locks = 1 [ 40.680932] 1 lock held by syzkaller250371/3084: [ 40.681607] #0: (sk_lock-AF_ALG){+.+.}, at: [<000000003c6ecc3b>] af_alg_wait_for_data+0x2f2/0x650 [ 40.682883] [ 40.682883] stack backtrace: [ 40.683534] CPU: 1 PID: 3084 Comm: syzkaller250371 Not tainted 4.15.0-rc1-mm1+ #29 [ 40.684588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 40.685807] Call Trace: [ 40.686167] dump_stack+0x194/0x257 [ 40.686676] ? arch_local_irq_restore+0x53/0x53 [ 40.687312] lockdep_rcu_suspicious+0x123/0x170 [ 40.687936] ? blkcipher_walk_done+0x72b/0xde0 [ 40.688572] kfree+0x20a/0x250 [ 40.689008] blkcipher_walk_done+0x72b/0xde0 [ 40.689665] encrypt+0x50a/0xaf0 [ 40.690127] ? salsa20_encrypt_bytes+0x300/0x300 [ 40.690797] ? salsa20_encrypt_bytes+0x300/0x300 [ 40.691431] skcipher_decrypt_blkcipher+0x213/0x310 [ 40.692099] ? skcipher_decrypt_blkcipher+0x213/0x310 [ 40.692802] ? sock_kmalloc+0x11f/0x190 [ 40.693355] ? skcipher_encrypt_blkcipher+0x310/0x310 [ 40.694043] ? lock_sock_nested+0x91/0x110 [ 40.694611] ? memset+0x31/0x40 [ 40.695059] skcipher_recvmsg+0xa54/0xf20 [ 40.698526] ? skcipher_release+0x50/0x50 [ 40.702644] ? selinux_socket_recvmsg+0x36/0x40 [ 40.707284] ? security_socket_recvmsg+0x91/0xc0 [ 40.712011] ? skcipher_release+0x50/0x50 [ 40.716130] sock_recvmsg+0xc9/0x110 [ 40.719816] ? __sock_recv_wifi_status+0x210/0x210 [ 40.724715] ___sys_recvmsg+0x29b/0x630 [ 40.728667] ? ___sys_sendmsg+0x8a0/0x8a0 [ 40.732803] ? __handle_mm_fault+0x3e60/0x3e60 [ 40.737350] ? vmacache_find+0x5f/0x280 [ 40.741300] ? up_read+0x1a/0x40 [ 40.744639] ? __do_page_fault+0x3d6/0xc90 [ 40.748849] ? fd_install+0x4d/0x60 [ 40.752451] ? __fdget+0x18/0x20 [ 40.755791] __sys_recvmsg+0xe2/0x210 [ 40.759556] ? __sys_recvmsg+0xe2/0x210 [ 40.763498] ? SyS_sendmmsg+0x60/0x60 [ 40.767267] ? __do_page_fault+0xc90/0xc90 [ 40.771474] ? SyS_setsockopt+0x215/0x360 [ 40.775688] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 40.780679] SyS_recvmsg+0x2d/0x50 [ 40.784196] entry_SYSCALL_64_fastpath+0x1f/0x96 [ 40.788918] RIP: 0033:0x43fe99 [ 40.792076] RSP: 002b:00007ffeb42ebd38 EFLAGS: 00000207 ORIG_RAX: 000000000000002f [ 40.799750] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 000000000043fe99 [ 40.806986] RDX: 0000000000000000 RSI: 0000000020d63fc8 RDI: 0000000000000004 [ 40.814225] RBP: 00000000006ca018 R08: 0000000000000000 R09: 0000000000000000 [ 40.821463] R10: 0000000000000000 R11: 0000000000000207 R12: 0000000000401800 [ 40.828701] R13: 0000000000401890 R14: 0000000000000000 R15: 0000000000000000 [ 40.836046] BUG: unable to handle kernel NULL pointer dereference at 000000002fd59d9e [ 40.844000] IP: kfree+0xb2/0x250 [ 40.847333] PGD 1cb6a6067 P4D 1cb6a6067 PUD 1cb689067 PMD 0 [ 40.853104] Oops: 0000 [#1] SMP KASAN [ 40.856869] Dumping ftrace buffer: [ 40.860371] (ftrace buffer empty) [ 40.864062] Modules linked in: [ 40.867228] CPU: 1 PID: 3084 Comm: syzkaller250371 Not tainted 4.15.0-rc1-mm1+ #29 [ 40.874895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 40.884215] task: 00000000b849d719 task.stack: 00000000d989d873 [ 40.890239] RIP: 0010:kfree+0xb2/0x250 [ 40.894088] RSP: 0018:ffff8801cb587780 EFLAGS: 00010046 [ 40.899414] RAX: 0000000000000000 RBX: ffff8801cb587948 RCX: ffffffffffffffff [ 40.906650] RDX: ffffea00072d61c0 RSI: 0000000000000000 RDI: ffff8801cb587948 [ 40.913884] RBP: ffff8801cb5877a0 R08: 1ffff100396b0ea2 R09: 0000000000000000 [ 40.921121] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000282 [ 40.928358] R13: 0000000000000000 R14: ffff8801cb587948 R15: ffff8801cb5878b0 [ 40.935593] FS: 0000000001d0a880(0000) GS:ffff8801db500000(0000) knlGS:0000000000000000 [ 40.943782] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 40.949628] CR2: 0000000000000074 CR3: 00000001cc2b6000 CR4: 00000000001406e0 [ 40.956868] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 40.964112] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 40.971351] Call Trace: [ 40.973917] blkcipher_walk_done+0x72b/0xde0 [ 40.978297] encrypt+0x50a/0xaf0 [ 40.982418] ? salsa20_encrypt_bytes+0x300/0x300 [ 40.987148] ? salsa20_encrypt_bytes+0x300/0x300 [ 40.991870] skcipher_decrypt_blkcipher+0x213/0x310 [ 40.996852] ? skcipher_decrypt_blkcipher+0x213/0x310 [ 41.002024] ? sock_kmalloc+0x11f/0x190 [ 41.005967] ? skcipher_encrypt_blkcipher+0x310/0x310 [ 41.011122] ? lock_sock_nested+0x91/0x110 [ 41.015322] ? memset+0x31/0x40 [ 41.018569] skcipher_recvmsg+0xa54/0xf20 [ 41.022686] ? skcipher_release+0x50/0x50 [ 41.026800] ? selinux_socket_recvmsg+0x36/0x40 [ 41.031432] ? security_socket_recvmsg+0x91/0xc0 [ 41.036153] ? skcipher_release+0x50/0x50 [ 41.040264] sock_recvmsg+0xc9/0x110 [ 41.043940] ? __sock_recv_wifi_status+0x210/0x210 [ 41.048835] ___sys_recvmsg+0x29b/0x630 [ 41.052778] ? ___sys_sendmsg+0x8a0/0x8a0 [ 41.056900] ? __handle_mm_fault+0x3e60/0x3e60 [ 41.061455] ? vmacache_find+0x5f/0x280 [ 41.065397] ? up_read+0x1a/0x40 [ 41.068728] ? __do_page_fault+0x3d6/0xc90 [ 41.072927] ? fd_install+0x4d/0x60 [ 41.076524] ? __fdget+0x18/0x20 [ 41.079855] __sys_recvmsg+0xe2/0x210 [ 41.083618] ? __sys_recvmsg+0xe2/0x210 [ 41.087559] ? SyS_sendmmsg+0x60/0x60 [ 41.091325] ? __do_page_fault+0xc90/0xc90 [ 41.095533] ? SyS_setsockopt+0x215/0x360 [ 41.099650] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 41.104635] SyS_recvmsg+0x2d/0x50 [ 41.108144] entry_SYSCALL_64_fastpath+0x1f/0x96 [ 41.112865] RIP: 0033:0x43fe99 [ 41.116022] RSP: 002b:00007ffeb42ebd38 EFLAGS: 00000207 ORIG_RAX: 000000000000002f [ 41.123696] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 000000000043fe99 [ 41.130932] RDX: 0000000000000000 RSI: 0000000020d63fc8 RDI: 0000000000000004 [ 41.138166] RBP: 00000000006ca018 R08: 0000000000000000 R09: 0000000000000000 [ 41.145402] R10: 0000000000000000 R11: 0000000000000207 R12: 0000000000401800 [ 41.152640] R13: 0000000000401890 R14: 0000000000000000 R15: 0000000000000000 [ 41.159884] Code: c2 48 b8 00 00 00 00 00 ea ff ff 48 89 df 48 c1 ea 0c 48 c1 e2 06 48 01 c2 48 8b 42 20 48 8d 48 ff a8 01 48 0f 45 d1 4c 8b 6a 30 <49> 63 75 74 e8 25 52 af ff 48 89 de 4c 89 ef 4c 8b 75 08 e8 76 [ 41.178951] RIP: kfree+0xb2/0x250 RSP: ffff8801cb587780 [ 41.184287] CR2: 0000000000000074 [ 41.187708] ---[ end trace fab8f246a3feffa1 ]--- [ 41.192428] Kernel panic - not syncing: Fatal exception in interrupt [ 41.198916] Dumping ftrace buffer: [ 41.202421] (ftrace buffer empty) [ 41.206099] Kernel Offset: disabled [ 41.209694] Rebooting in 86400 seconds..