[ 72.540213][ T26] audit: type=1800 audit(1565580573.258:30): pid=10056 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.156' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 81.254226][T10209] ================================================================== [ 81.262321][T10209] BUG: KASAN: null-ptr-deref in rxrpc_unuse_local+0x23/0x70 [ 81.269589][T10209] Write of size 4 at addr 0000000000000010 by task syz-executor228/10209 [ 81.277976][T10209] [ 81.280295][T10209] CPU: 1 PID: 10209 Comm: syz-executor228 Not tainted 5.3.0-rc3+ #158 [ 81.288420][T10209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 81.298473][T10209] Call Trace: [ 81.301754][T10209] dump_stack+0x172/0x1f0 [ 81.306067][T10209] ? rxrpc_unuse_local+0x23/0x70 [ 81.310989][T10209] ? rxrpc_unuse_local+0x23/0x70 [ 81.315906][T10209] __kasan_report.cold+0x5/0x36 [ 81.320738][T10209] ? _raw_read_unlock_irqrestore+0xc1/0xe0 [ 81.326529][T10209] ? rxrpc_unuse_local+0x23/0x70 [ 81.331473][T10209] kasan_report+0x12/0x17 [ 81.335787][T10209] check_memory_region+0x134/0x1a0 [ 81.340877][T10209] __kasan_check_write+0x14/0x20 [ 81.345797][T10209] rxrpc_unuse_local+0x23/0x70 [ 81.350551][T10209] rxrpc_release+0x47d/0x840 [ 81.355121][T10209] __sock_release+0xce/0x280 [ 81.359687][T10209] sock_close+0x1e/0x30 [ 81.363821][T10209] __fput+0x2ff/0x890 [ 81.367834][T10209] ? __sock_release+0x280/0x280 [ 81.372837][T10209] ____fput+0x16/0x20 [ 81.376797][T10209] task_work_run+0x145/0x1c0 [ 81.381370][T10209] do_exit+0x92f/0x2e50 [ 81.385508][T10209] ? __sanitizer_cov_trace_const_cmp4+0x11/0x20 [ 81.391751][T10209] ? mm_update_next_owner+0x640/0x640 [ 81.397281][T10209] ? fd_install+0x4d/0x60 [ 81.401615][T10209] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 81.407844][T10209] ? __kasan_check_write+0x14/0x20 [ 81.412939][T10209] ? switch_fpu_return+0x1fa/0x4f0 [ 81.418042][T10209] do_group_exit+0x135/0x360 [ 81.422614][T10209] __x64_sys_exit_group+0x44/0x50 [ 81.427623][T10209] do_syscall_64+0xfd/0x6a0 [ 81.432107][T10209] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 81.437980][T10209] RIP: 0033:0x43ed68 [ 81.441859][T10209] Code: Bad RIP value. [ 81.445924][T10209] RSP: 002b:00007ffd797107e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 81.454326][T10209] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000043ed68 [ 81.462281][T10209] RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000 [ 81.470233][T10209] RBP: 00000000004be568 R08: 00000000000000e7 R09: ffffffffffffffd0 [ 81.478183][T10209] R10: 00000000ffffffff R11: 0000000000000246 R12: 0000000000000001 [ 81.486136][T10209] R13: 00000000006d0180 R14: 0000000000000000 R15: 0000000000000000 [ 81.494091][T10209] ================================================================== [ 81.502717][T10209] Kernel panic - not syncing: panic_on_warn set ... [ 81.509343][T10209] CPU: 1 PID: 10209 Comm: syz-executor228 Tainted: G B 5.3.0-rc3+ #158 [ 81.518868][T10209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 81.528922][T10209] Call Trace: [ 81.532292][T10209] dump_stack+0x172/0x1f0 [ 81.536610][T10209] panic+0x2dc/0x755 [ 81.540517][T10209] ? add_taint.cold+0x16/0x16 [ 81.545209][T10209] ? rxrpc_unuse_local+0x23/0x70 [ 81.550132][T10209] ? preempt_schedule+0x4b/0x60 [ 81.555258][T10209] ? ___preempt_schedule+0x16/0x20 [ 81.560353][T10209] ? trace_hardirqs_on+0x5e/0x240 [ 81.565361][T10209] ? rxrpc_unuse_local+0x23/0x70 [ 81.570285][T10209] end_report+0x47/0x4f [ 81.574419][T10209] ? rxrpc_unuse_local+0x23/0x70 [ 81.579335][T10209] __kasan_report.cold+0xe/0x36 [ 81.584167][T10209] ? _raw_read_unlock_irqrestore+0xc1/0xe0 [ 81.589999][T10209] ? rxrpc_unuse_local+0x23/0x70 [ 81.595022][T10209] kasan_report+0x12/0x17 [ 81.599332][T10209] check_memory_region+0x134/0x1a0 [ 81.604457][T10209] __kasan_check_write+0x14/0x20 [ 81.609392][T10209] rxrpc_unuse_local+0x23/0x70 [ 81.614139][T10209] rxrpc_release+0x47d/0x840 [ 81.618713][T10209] __sock_release+0xce/0x280 [ 81.623285][T10209] sock_close+0x1e/0x30 [ 81.627423][T10209] __fput+0x2ff/0x890 [ 81.631385][T10209] ? __sock_release+0x280/0x280 [ 81.636217][T10209] ____fput+0x16/0x20 [ 81.640180][T10209] task_work_run+0x145/0x1c0 [ 81.644755][T10209] do_exit+0x92f/0x2e50 [ 81.648893][T10209] ? __sanitizer_cov_trace_const_cmp4+0x11/0x20 [ 81.655313][T10209] ? mm_update_next_owner+0x640/0x640 [ 81.660674][T10209] ? fd_install+0x4d/0x60 [ 81.664988][T10209] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 81.671561][T10209] ? __kasan_check_write+0x14/0x20 [ 81.676663][T10209] ? switch_fpu_return+0x1fa/0x4f0 [ 81.681764][T10209] do_group_exit+0x135/0x360 [ 81.686443][T10209] __x64_sys_exit_group+0x44/0x50 [ 81.691561][T10209] do_syscall_64+0xfd/0x6a0 [ 81.696055][T10209] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 81.701950][T10209] RIP: 0033:0x43ed68 [ 81.705831][T10209] Code: Bad RIP value. [ 81.709881][T10209] RSP: 002b:00007ffd797107e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 81.718280][T10209] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000043ed68 [ 81.726237][T10209] RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000 [ 81.734311][T10209] RBP: 00000000004be568 R08: 00000000000000e7 R09: ffffffffffffffd0 [ 81.742548][T10209] R10: 00000000ffffffff R11: 0000000000000246 R12: 0000000000000001 [ 81.750509][T10209] R13: 00000000006d0180 R14: 0000000000000000 R15: 0000000000000000 [ 81.759656][T10209] Kernel Offset: disabled [ 81.763999][T10209] Rebooting in 86400 seconds..