Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.160' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 74.343508][ T8960] ------------[ cut here ]------------ [ 74.349025][ T8960] verifier backtracking bug [ 74.349114][ T8960] WARNING: CPU: 1 PID: 8960 at kernel/bpf/verifier.c:1785 __mark_chain_precision+0x19bb/0x1ee0 [ 74.364120][ T8960] Kernel panic - not syncing: panic_on_warn set ... [ 74.370700][ T8960] CPU: 1 PID: 8960 Comm: syz-executor163 Not tainted 5.2.0-rc5+ #34 [ 74.378845][ T8960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 74.388991][ T8960] Call Trace: [ 74.392280][ T8960] dump_stack+0x172/0x1f0 [ 74.396599][ T8960] ? __mark_chain_precision+0x1970/0x1ee0 [ 74.402317][ T8960] panic+0x2cb/0x744 [ 74.406299][ T8960] ? __warn_printk+0xf3/0xf3 [ 74.410881][ T8960] ? __mark_chain_precision+0x19bb/0x1ee0 [ 74.416595][ T8960] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 74.422837][ T8960] ? __warn.cold+0x5/0x4d [ 74.427338][ T8960] ? __warn+0xe8/0x1d0 [ 74.431421][ T8960] ? __mark_chain_precision+0x19bb/0x1ee0 [ 74.437159][ T8960] __warn.cold+0x20/0x4d [ 74.441566][ T8960] ? vprintk_emit+0x1ea/0x700 [ 74.446237][ T8960] ? __mark_chain_precision+0x19bb/0x1ee0 [ 74.451972][ T8960] report_bug+0x263/0x2b0 [ 74.456301][ T8960] do_error_trap+0x11b/0x200 [ 74.461160][ T8960] do_invalid_op+0x37/0x50 [ 74.465572][ T8960] ? __mark_chain_precision+0x19bb/0x1ee0 [ 74.471299][ T8960] invalid_op+0x14/0x20 [ 74.475475][ T8960] RIP: 0010:__mark_chain_precision+0x19bb/0x1ee0 [ 74.481815][ T8960] Code: 08 31 ff 89 de e8 95 ba f2 ff 84 db 0f 85 ce fe ff ff e8 48 b9 f2 ff 48 c7 c7 e0 44 91 87 c6 05 1c 15 1f 08 01 e8 03 f1 c4 ff <0f> 0b 41 bc f2 ff ff ff e9 af fe ff ff e8 d3 3c 2c 00 e9 c2 e7 ff [ 74.501424][ T8960] RSP: 0018:ffff888093027380 EFLAGS: 00010286 [ 74.507496][ T8960] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 74.515484][ T8960] RDX: 0000000000000000 RSI: ffffffff815ad926 RDI: ffffed1012604e62 [ 74.523450][ T8960] RBP: ffff8880930274d0 R08: ffff88809989c480 R09: 0000000000000000 [ 74.531426][ T8960] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 74.539402][ T8960] R13: ffff88809025a480 R14: 0000000000000001 R15: ffff8880a4255480 [ 74.547388][ T8960] ? vprintk_func+0x86/0x189 [ 74.552005][ T8960] ? print_verifier_state+0x11b0/0x11b0 [ 74.557558][ T8960] ? __x64_sys_bpf+0x73/0xb0 [ 74.562160][ T8960] ? bpf_verifier_log_write+0x240/0x240 [ 74.567707][ T8960] ? check_reg_arg+0x1f1/0x480 [ 74.572492][ T8960] ? apparmor_capable+0x2ed/0x630 [ 74.577528][ T8960] check_cond_jmp_op+0xcd8/0x3c30 [ 74.582548][ T8960] ? fs_reclaim_acquire.part.0+0x30/0x30 [ 74.588185][ T8960] ? find_held_lock+0x35/0x130 [ 74.592958][ T8960] ? fs_reclaim_acquire.part.0+0x30/0x30 [ 74.598608][ T8960] ? check_func_arg+0x11c0/0x11c0 [ 74.603848][ T8960] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 74.610372][ T8960] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 74.616783][ T8960] ? krealloc+0x7b/0xd0 [ 74.620936][ T8960] ? krealloc+0x7b/0xd0 [ 74.625118][ T8960] ? rcu_read_lock_sched_held+0x110/0x130 [ 74.630835][ T8960] ? kfree+0x1f7/0x220 [ 74.634922][ T8960] ? krealloc+0x7b/0xd0 [ 74.639094][ T8960] ? push_jmp_history.isra.0+0x1a9/0x260 [ 74.644745][ T8960] do_check+0x60f4/0x8a20 [ 74.649090][ T8960] ? debug_check_no_obj_freed+0x200/0x464 [ 74.654846][ T8960] ? check_helper_call+0x3210/0x3210 [ 74.660138][ T8960] ? kfree+0x170/0x220 [ 74.664418][ T8960] ? kvfree+0x61/0x70 [ 74.668482][ T8960] ? kfree+0x170/0x220 [ 74.672568][ T8960] ? lockdep_hardirqs_on+0x418/0x5d0 [ 74.677877][ T8960] ? trace_hardirqs_on+0x67/0x220 [ 74.682896][ T8960] ? kvfree+0x61/0x70 [ 74.686875][ T8960] bpf_check+0x6f99/0x9950 [ 74.691291][ T8960] ? do_check+0x8a20/0x8a20 [ 74.695797][ T8960] ? ktime_get_with_offset+0x13a/0x360 [ 74.701909][ T8960] ? bpf_prog_load+0xdce/0x1670 [ 74.706776][ T8960] ? ktime_get_with_offset+0x13a/0x360 [ 74.712236][ T8960] ? lockdep_hardirqs_on+0x418/0x5d0 [ 74.717550][ T8960] ? trace_hardirqs_on+0x67/0x220 [ 74.722587][ T8960] ? memset+0x32/0x40 [ 74.726576][ T8960] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 74.732830][ T8960] ? bpf_obj_name_cpy+0x13f/0x190 [ 74.737953][ T8960] bpf_prog_load+0xe68/0x1670 [ 74.742631][ T8960] ? bpf_prog_new_fd+0x60/0x60 [ 74.747406][ T8960] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 74.753646][ T8960] ? security_bpf+0x8b/0xc0 [ 74.758574][ T8960] __do_sys_bpf+0xa20/0x42d0 [ 74.763166][ T8960] ? bpf_prog_load+0x1670/0x1670 [ 74.778843][ T8960] ? __do_page_fault+0x623/0xda0 [ 74.783816][ T8960] ? find_held_lock+0x35/0x130 [ 74.788581][ T8960] ? __do_page_fault+0x623/0xda0 [ 74.793534][ T8960] ? lock_downgrade+0x880/0x880 [ 74.798396][ T8960] ? kasan_check_read+0x11/0x20 [ 74.803250][ T8960] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 74.808720][ T8960] ? do_syscall_64+0x26/0x680 [ 74.813417][ T8960] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 74.819478][ T8960] ? do_syscall_64+0x26/0x680 [ 74.824171][ T8960] __x64_sys_bpf+0x73/0xb0 [ 74.828590][ T8960] do_syscall_64+0xfd/0x680 [ 74.833096][ T8960] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 74.838981][ T8960] RIP: 0033:0x440369 [ 74.842868][ T8960] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 74.862461][ T8960] RSP: 002b:00007ffd2f3126c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 74.870861][ T8960] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 0000000000440369 [ 74.878846][ T8960] RDX: 0000000000000048 RSI: 0000000020000200 RDI: 0000000000000005 [ 74.886837][ T8960] RBP: 00000000006ca018 R08: 0000000000000000 R09: 0000000000000000 [ 74.898729][ T8960] R10: 00000000ffffffff R11: 0000000000000246 R12: 0000000000401bf0 [ 74.906720][ T8960] R13: 0000000000401c80 R14: 0000000000000000 R15: 0000000000000000 [ 74.915824][ T8960] Kernel Offset: disabled [ 74.920207][ T8960] Rebooting in 86400 seconds..