[ 55.694234][ T27] audit: type=1800 audit(1579962533.694:25): pid=8616 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 55.713346][ T27] audit: type=1800 audit(1579962533.694:26): pid=8616 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 55.771868][ T27] audit: type=1800 audit(1579962533.704:27): pid=8616 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [ 56.248104][ T8685] sshd (8685) used greatest stack depth: 23744 bytes left [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.226' (ECDSA) to the list of known hosts. executing program executing program syzkaller login: [ 66.045096][ T8769] netlink: 40803 bytes leftover after parsing attributes in process `syz-executor613'. [ 66.057022][ T8769] netlink: 40543 bytes leftover after parsing attributes in process `syz-executor613'. [ 66.078244][ T8772] netlink: 40803 bytes leftover after parsing attributes in process `syz-executor613'. executing program executing program [ 66.089983][ T8772] netlink: 40543 bytes leftover after parsing attributes in process `syz-executor613'. [ 66.106203][ T8775] netlink: 40803 bytes leftover after parsing attributes in process `syz-executor613'. [ 66.117287][ T8775] netlink: 40543 bytes leftover after parsing attributes in process `syz-executor613'. [ 66.133782][ T8778] netlink: 40803 bytes leftover after parsing attributes in process `syz-executor613'. executing program [ 66.144980][ T8778] netlink: 40543 bytes leftover after parsing attributes in process `syz-executor613'. [ 66.160701][ T8781] netlink: 40803 bytes leftover after parsing attributes in process `syz-executor613'. [ 66.171956][ T8781] netlink: 40543 bytes leftover after parsing attributes in process `syz-executor613'. [ 66.182293][ T8781] ------------[ cut here ]------------ [ 66.187864][ T8781] WARNING: CPU: 0 PID: 8781 at net/xfrm/xfrm_policy.c:1543 xfrm_policy_insert_list+0x1025/0x14d0 [ 66.198577][ T8781] Kernel panic - not syncing: panic_on_warn set ... [ 66.205216][ T8781] CPU: 0 PID: 8781 Comm: syz-executor613 Not tainted 5.5.0-rc7-syzkaller #0 [ 66.214064][ T8781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 66.224109][ T8781] Call Trace: [ 66.227387][ T8781] dump_stack+0x1fb/0x318 [ 66.231699][ T8781] panic+0x264/0x7a9 [ 66.235579][ T8781] ? __warn+0x105/0x210 [ 66.241248][ T8781] ? xfrm_policy_insert_list+0x1025/0x14d0 [ 66.247235][ T8781] __warn+0x209/0x210 [ 66.251206][ T8781] ? xfrm_policy_insert_list+0x1025/0x14d0 [ 66.257622][ T8781] report_bug+0x1b6/0x2f0 [ 66.261938][ T8781] ? xfrm_policy_insert_list+0x1025/0x14d0 [ 66.267727][ T8781] do_error_trap+0xda/0x440 [ 66.272232][ T8781] do_invalid_op+0x36/0x40 [ 66.276646][ T8781] ? xfrm_policy_insert_list+0x1025/0x14d0 [ 66.282447][ T8781] invalid_op+0x23/0x30 [ 66.286615][ T8781] RIP: 0010:xfrm_policy_insert_list+0x1025/0x14d0 [ 66.293021][ T8781] Code: fc ff df e9 04 f6 ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 11 f6 ff ff 48 89 df e8 75 75 c7 fa e9 04 f6 ff ff e8 fb 36 8b fa <0f> 0b e9 84 fc ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 21 f6 ff [ 66.312878][ T8781] RSP: 0018:ffffc90001fb76d0 EFLAGS: 00010293 [ 66.318934][ T8781] RAX: ffffffff86eb48f5 RBX: ffff88809e783a20 RCX: ffff8880a6b34380 [ 66.326897][ T8781] RDX: 0000000000000000 RSI: 000000000088fe10 RDI: 000000000088fe10 [ 66.335080][ T8781] RBP: ffffc90001fb77c8 R08: ffffffff86eb4240 R09: ffffffff86eced4b [ 66.343112][ T8781] R10: ffff8880a6b34380 R11: 0000000000000002 R12: ffff88809e7838b4 [ 66.351069][ T8781] R13: ffff88809e783a19 R14: ffff8880a7f89000 R15: 0000000000000000 [ 66.359145][ T8781] ? xfrm_policy_inexact_alloc_chain+0x10b/0xbc0 [ 66.365456][ T8781] ? xfrm_policy_insert_list+0x970/0x14d0 [ 66.371386][ T8781] ? xfrm_policy_insert_list+0x1025/0x14d0 [ 66.377220][ T8781] xfrm_policy_inexact_insert+0x110/0x1530 [ 66.383091][ T8781] ? __kasan_check_write+0x14/0x20 [ 66.388197][ T8781] ? do_raw_spin_lock+0x103/0x7b0 [ 66.393614][ T8781] ? xfrm_policy_insert+0x52/0xd70 [ 66.398714][ T8781] ? policy_hash_bysel+0x186/0xd50 [ 66.403932][ T8781] xfrm_policy_insert+0xe0/0xd70 [ 66.408911][ T8781] xfrm_add_policy+0x420/0x900 [ 66.413670][ T8781] ? __nla_parse+0x41/0x50 [ 66.419302][ T8781] xfrm_user_rcv_msg+0x3e6/0x650 [ 66.424264][ T8781] netlink_rcv_skb+0x19e/0x3e0 [ 66.429037][ T8781] ? xfrm_netlink_rcv+0x90/0x90 [ 66.433884][ T8781] xfrm_netlink_rcv+0x74/0x90 [ 66.438550][ T8781] netlink_unicast+0x767/0x920 [ 66.443410][ T8781] netlink_sendmsg+0xa2c/0xd50 [ 66.448171][ T8781] ? netlink_getsockopt+0x9f0/0x9f0 [ 66.453624][ T8781] __sys_sendto+0x43c/0x5e0 [ 66.458129][ T8781] ? switch_fpu_return+0xe/0x10 [ 66.463073][ T8781] ? prepare_exit_to_usermode+0x221/0x5b0 [ 66.468788][ T8781] ? trace_irq_disable_rcuidle+0x23/0x1e0 [ 66.474676][ T8781] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 66.480185][ T8781] __x64_sys_sendto+0xe5/0x100 [ 66.484948][ T8781] do_syscall_64+0xf7/0x1c0 [ 66.489467][ T8781] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 66.495453][ T8781] RIP: 0033:0x446ad9 [ 66.499340][ T8781] Code: e8 5c b3 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 08 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 66.518928][ T8781] RSP: 002b:00007f4603984d88 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 66.527551][ T8781] RAX: ffffffffffffffda RBX: 00000000006dbc48 RCX: 0000000000446ad9 [ 66.535652][ T8781] RDX: 000000000000ff3b RSI: 0000000020000000 RDI: 0000000000000008 [ 66.543666][ T8781] RBP: 00000000006dbc40 R08: 0000000000000000 R09: 00000000000002e2 [ 66.551637][ T8781] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc4c [ 66.559696][ T8781] R13: 96a714ca4ded7b70 R14: 985704ddcbc5fd89 R15: 0d1d00190000a01b [ 66.568531][ T8781] Kernel Offset: disabled [ 66.573023][ T8781] Rebooting in 86400 seconds..