Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.168' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 57.469377][ T6550] general protection fault, probably for non-canonical address 0xdffffc0000000003: 0000 [#1] PREEMPT SMP KASAN [ 57.481124][ T6550] KASAN: null-ptr-deref in range [0x0000000000000018-0x000000000000001f] [ 57.489518][ T6550] CPU: 1 PID: 6550 Comm: syz-executor122 Not tainted 5.16.0-rc4-syzkaller #0 [ 57.498264][ T6550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 57.508300][ T6550] RIP: 0010:__lock_acquire+0xd7d/0x54a0 [ 57.513863][ T6550] Code: 0f 0e 41 be 01 00 00 00 0f 86 c8 00 00 00 89 05 69 cc 0f 0e e9 bd 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 <80> 3c 02 00 0f 85 f3 2f 00 00 48 81 3b 20 75 17 8f 0f 84 52 f3 ff [ 57.533474][ T6550] RSP: 0018:ffffc90001f2f818 EFLAGS: 00010016 [ 57.539523][ T6550] RAX: dffffc0000000000 RBX: 0000000000000018 RCX: 0000000000000000 [ 57.547481][ T6550] RDX: 0000000000000003 RSI: 0000000000000000 RDI: 0000000000000001 [ 57.555431][ T6550] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000001 [ 57.563472][ T6550] R10: 0000000000000000 R11: 000000000000000a R12: 0000000000000000 [ 57.571426][ T6550] R13: ffff88801b98d700 R14: 0000000000000000 R15: 0000000000000001 [ 57.579382][ T6550] FS: 00007f177cd3d700(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000 [ 57.588526][ T6550] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 57.595096][ T6550] CR2: 00007f177cd1b268 CR3: 000000001dd55000 CR4: 0000000000350ee0 [ 57.603139][ T6550] Call Trace: [ 57.606401][ T6550] [ 57.609318][ T6550] ? __lock_acquire+0x162f/0x54a0 [ 57.614352][ T6550] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 57.620322][ T6550] ? mark_lock+0xef/0x17b0 [ 57.624733][ T6550] lock_acquire+0x1ab/0x510 [ 57.629240][ T6550] ? finish_wait+0xc0/0x270 [ 57.633837][ T6550] ? lock_release+0x720/0x720 [ 57.638499][ T6550] ? find_held_lock+0x2d/0x110 [ 57.643266][ T6550] ? inet_csk_accept+0x3e1/0x9d0 [ 57.648204][ T6550] ? _raw_spin_lock_irqsave+0x4e/0x50 [ 57.653567][ T6550] _raw_spin_lock_irqsave+0x39/0x50 [ 57.658752][ T6550] ? finish_wait+0xc0/0x270 [ 57.663240][ T6550] finish_wait+0xc0/0x270 [ 57.667575][ T6550] inet_csk_accept+0x7de/0x9d0 [ 57.672348][ T6550] ? reqsk_put+0x2f0/0x2f0 [ 57.676770][ T6550] ? release_sock+0x1b/0x1b0 [ 57.681345][ T6550] ? finish_wait+0x270/0x270 [ 57.685922][ T6550] mptcp_accept+0xe5/0x500 [ 57.690321][ T6550] inet_accept+0xe4/0x7b0 [ 57.694809][ T6550] ? rwlock_bug.part.0+0x90/0x90 [ 57.699734][ T6550] ? ipv4_mib_init_net+0x560/0x560 [ 57.704830][ T6550] ? __local_bh_enable_ip+0xa0/0x120 [ 57.710101][ T6550] mptcp_stream_accept+0x2e7/0x10e0 [ 57.715311][ T6550] ? do_raw_spin_unlock+0x171/0x230 [ 57.720512][ T6550] ? mptcp_subflow_delegate.constprop.0+0x440/0x440 [ 57.727264][ T6550] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 57.733517][ T6550] do_accept+0x382/0x510 [ 57.737773][ T6550] ? __ia32_sys_listen+0x70/0x70 [ 57.742697][ T6550] ? rwlock_bug.part.0+0x90/0x90 [ 57.747638][ T6550] ? lock_downgrade+0x6e0/0x6e0 [ 57.752473][ T6550] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 57.758699][ T6550] ? _find_next_bit+0x1e3/0x260 [ 57.763537][ T6550] ? do_raw_spin_unlock+0x171/0x230 [ 57.768816][ T6550] ? _raw_spin_unlock+0x24/0x40 [ 57.773651][ T6550] ? alloc_fd+0x2f0/0x670 [ 57.777969][ T6550] __sys_accept4_file+0x7e/0xe0 [ 57.782807][ T6550] __sys_accept4+0xb0/0x100 [ 57.787300][ T6550] __x64_sys_accept+0x71/0xb0 [ 57.791967][ T6550] ? syscall_enter_from_user_mode+0x21/0x70 [ 57.797845][ T6550] do_syscall_64+0x35/0xb0 [ 57.802250][ T6550] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 57.808129][ T6550] RIP: 0033:0x7f177cd8b8e9 [ 57.812619][ T6550] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 57.832227][ T6550] RSP: 002b:00007f177cd3d308 EFLAGS: 00000246 ORIG_RAX: 000000000000002b [ 57.840660][ T6550] RAX: ffffffffffffffda RBX: 00007f177ce13408 RCX: 00007f177cd8b8e9 [ 57.848651][ T6550] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 57.856605][ T6550] RBP: 00007f177ce13400 R08: 0000000000000000 R09: 0000000000000000 [ 57.864561][ T6550] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f177ce1340c [ 57.872515][ T6550] R13: 00007f177cde1004 R14: 6d705f706374706d R15: 0000000000022000 [ 57.880480][ T6550] [ 57.883481][ T6550] Modules linked in: [ 57.887359][ T6550] ---[ end trace 77ed64e4985d56c9 ]--- [ 57.892816][ T6550] RIP: 0010:__lock_acquire+0xd7d/0x54a0 [ 57.898378][ T6550] Code: 0f 0e 41 be 01 00 00 00 0f 86 c8 00 00 00 89 05 69 cc 0f 0e e9 bd 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 <80> 3c 02 00 0f 85 f3 2f 00 00 48 81 3b 20 75 17 8f 0f 84 52 f3 ff [ 57.918219][ T6550] RSP: 0018:ffffc90001f2f818 EFLAGS: 00010016 [ 57.924277][ T6550] RAX: dffffc0000000000 RBX: 0000000000000018 RCX: 0000000000000000 [ 57.932233][ T6550] RDX: 0000000000000003 RSI: 0000000000000000 RDI: 0000000000000001 [ 57.940189][ T6550] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000001 [ 57.948143][ T6550] R10: 0000000000000000 R11: 000000000000000a R12: 0000000000000000 [ 57.956183][ T6550] R13: ffff88801b98d700 R14: 0000000000000000 R15: 0000000000000001 [ 57.964139][ T6550] FS: 00007f177cd3d700(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000 [ 57.973092][ T6550] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 57.979664][ T6550] CR2: 00007f177cd1b268 CR3: 000000001dd55000 CR4: 0000000000350ee0 [ 57.987711][ T6550] Kernel panic - not syncing: Fatal exception [ 57.994576][ T6550] Kernel Offset: disabled [ 57.999474][ T6550] Rebooting in 86400 seconds..