[ 69.107006][ T27] audit: type=1800 audit(1565594028.437:30): pid=10064 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.1.3' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 95.585162][T10219] ================================================================== [ 95.593353][T10219] BUG: KASAN: null-ptr-deref in rxrpc_unuse_local+0x23/0x70 [ 95.600607][T10219] Write of size 4 at addr 0000000000000010 by task syz-executor422/10219 [ 95.608988][T10219] [ 95.611298][T10219] CPU: 0 PID: 10219 Comm: syz-executor422 Not tainted 5.3.0-rc3+ #158 [ 95.619419][T10219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 95.629457][T10219] Call Trace: [ 95.632731][T10219] dump_stack+0x172/0x1f0 [ 95.637038][T10219] ? rxrpc_unuse_local+0x23/0x70 [ 95.642013][T10219] ? rxrpc_unuse_local+0x23/0x70 [ 95.646941][T10219] __kasan_report.cold+0x5/0x36 [ 95.651773][T10219] ? _raw_read_unlock_irqrestore+0xc1/0xe0 [ 95.657560][T10219] ? rxrpc_unuse_local+0x23/0x70 [ 95.662486][T10219] kasan_report+0x12/0x17 [ 95.666795][T10219] check_memory_region+0x134/0x1a0 [ 95.671889][T10219] __kasan_check_write+0x14/0x20 [ 95.676811][T10219] rxrpc_unuse_local+0x23/0x70 [ 95.681551][T10219] rxrpc_release+0x47d/0x840 [ 95.686117][T10219] __sock_release+0xce/0x280 [ 95.690687][T10219] sock_close+0x1e/0x30 [ 95.694821][T10219] __fput+0x2ff/0x890 [ 95.698783][T10219] ? __sock_release+0x280/0x280 [ 95.703611][T10219] ____fput+0x16/0x20 [ 95.707730][T10219] task_work_run+0x145/0x1c0 [ 95.712300][T10219] do_exit+0x92f/0x2e50 [ 95.716440][T10219] ? __sanitizer_cov_trace_const_cmp4+0x11/0x20 [ 95.722662][T10219] ? mm_update_next_owner+0x640/0x640 [ 95.728185][T10219] ? fd_install+0x4d/0x60 [ 95.732490][T10219] ? __sys_socket+0x180/0x220 [ 95.737150][T10219] ? move_addr_to_kernel+0x80/0x80 [ 95.742238][T10219] ? __ia32_sys_fallocate+0xf0/0xf0 [ 95.747454][T10219] do_group_exit+0x135/0x360 [ 95.752030][T10219] __x64_sys_exit_group+0x44/0x50 [ 95.757049][T10219] do_syscall_64+0xfd/0x6a0 [ 95.761532][T10219] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 95.767404][T10219] RIP: 0033:0x43ed68 [ 95.771280][T10219] Code: Bad RIP value. [ 95.775317][T10219] RSP: 002b:00007ffc60935ce8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 95.783702][T10219] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000043ed68 [ 95.791654][T10219] RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000 [ 95.799606][T10219] RBP: 00000000004be568 R08: 00000000000000e7 R09: ffffffffffffffd0 [ 95.807596][T10219] R10: 00000000ffffffff R11: 0000000000000246 R12: 0000000000000001 [ 95.815547][T10219] R13: 00000000006d0180 R14: 0000000000000000 R15: 0000000000000000 [ 95.823498][T10219] ================================================================== [ 95.831886][T10219] Kernel panic - not syncing: panic_on_warn set ... [ 95.838465][T10219] CPU: 0 PID: 10219 Comm: syz-executor422 Tainted: G B 5.3.0-rc3+ #158 [ 95.848017][T10219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 95.858054][T10219] Call Trace: [ 95.861347][T10219] dump_stack+0x172/0x1f0 [ 95.865672][T10219] panic+0x2dc/0x755 [ 95.869544][T10219] ? add_taint.cold+0x16/0x16 [ 95.874207][T10219] ? rxrpc_unuse_local+0x23/0x70 [ 95.879136][T10219] ? preempt_schedule+0x4b/0x60 [ 95.884036][T10219] ? ___preempt_schedule+0x16/0x20 [ 95.889129][T10219] ? trace_hardirqs_on+0x5e/0x240 [ 95.894135][T10219] ? rxrpc_unuse_local+0x23/0x70 [ 95.899059][T10219] end_report+0x47/0x4f [ 95.903194][T10219] ? rxrpc_unuse_local+0x23/0x70 [ 95.908107][T10219] __kasan_report.cold+0xe/0x36 [ 95.912934][T10219] ? _raw_read_unlock_irqrestore+0xc1/0xe0 [ 95.918814][T10219] ? rxrpc_unuse_local+0x23/0x70 [ 95.923774][T10219] kasan_report+0x12/0x17 [ 95.928092][T10219] check_memory_region+0x134/0x1a0 [ 95.933196][T10219] __kasan_check_write+0x14/0x20 [ 95.938119][T10219] rxrpc_unuse_local+0x23/0x70 [ 95.942874][T10219] rxrpc_release+0x47d/0x840 [ 95.947539][T10219] __sock_release+0xce/0x280 [ 95.952125][T10219] sock_close+0x1e/0x30 [ 95.956266][T10219] __fput+0x2ff/0x890 [ 95.960229][T10219] ? __sock_release+0x280/0x280 [ 95.965060][T10219] ____fput+0x16/0x20 [ 95.969017][T10219] task_work_run+0x145/0x1c0 [ 95.973583][T10219] do_exit+0x92f/0x2e50 [ 95.977727][T10219] ? __sanitizer_cov_trace_const_cmp4+0x11/0x20 [ 95.983949][T10219] ? mm_update_next_owner+0x640/0x640 [ 95.989310][T10219] ? fd_install+0x4d/0x60 [ 95.993633][T10219] ? __sys_socket+0x180/0x220 [ 95.998367][T10219] ? move_addr_to_kernel+0x80/0x80 [ 96.003466][T10219] ? __ia32_sys_fallocate+0xf0/0xf0 [ 96.008656][T10219] do_group_exit+0x135/0x360 [ 96.013230][T10219] __x64_sys_exit_group+0x44/0x50 [ 96.018241][T10219] do_syscall_64+0xfd/0x6a0 [ 96.022731][T10219] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 96.028610][T10219] RIP: 0033:0x43ed68 [ 96.032492][T10219] Code: Bad RIP value. [ 96.036538][T10219] RSP: 002b:00007ffc60935ce8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 96.044986][T10219] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000043ed68 [ 96.052939][T10219] RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000 [ 96.060892][T10219] RBP: 00000000004be568 R08: 00000000000000e7 R09: ffffffffffffffd0 [ 96.068846][T10219] R10: 00000000ffffffff R11: 0000000000000246 R12: 0000000000000001 [ 96.076860][T10219] R13: 00000000006d0180 R14: 0000000000000000 R15: 0000000000000000 [ 96.085795][T10219] Kernel Offset: disabled [ 96.090114][T10219] Rebooting in 86400 seconds..