[ OK ] Started Getty on tty2. [ OK ] Started Getty on tty1. [ OK ] Started Serial Getty on ttyS0. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.134' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 68.914757][ T8428] ------------[ cut here ]------------ [ 68.920245][ T8428] WARNING: CPU: 0 PID: 8428 at mm/util.c:597 kvmalloc_node+0x111/0x120 [ 68.929153][ T8428] Modules linked in: [ 68.933043][ T8428] CPU: 0 PID: 8428 Comm: syz-executor228 Not tainted 5.14.0-syzkaller #0 [ 68.941642][ T8428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 68.951812][ T8428] RIP: 0010:kvmalloc_node+0x111/0x120 [ 68.957224][ T8428] Code: 01 00 00 00 4c 89 e7 e8 8d 12 0d 00 49 89 c5 e9 69 ff ff ff e8 f0 21 d1 ff 41 89 ed 41 81 cd 00 20 01 00 eb 95 e8 df 21 d1 ff <0f> 0b e9 4c ff ff ff 0f 1f 84 00 00 00 00 00 55 48 89 fd 53 e8 c6 [ 68.976948][ T8428] RSP: 0018:ffffc9000175f280 EFLAGS: 00010293 [ 68.983160][ T8428] RAX: 0000000000000000 RBX: ffffc9000175f3a0 RCX: 0000000000000000 [ 68.991189][ T8428] RDX: ffff888026f98000 RSI: ffffffff81a4f621 RDI: 0000000000000003 [ 68.999209][ T8428] RBP: 0000000000400dc0 R08: 000000007fffffff R09: 00000000ffffffff [ 69.007181][ T8428] R10: ffffffff81a4f5de R11: 000000000000001f R12: 0000000200000018 [ 69.015183][ T8428] R13: 0000000000000000 R14: 00000000ffffffff R15: ffff888020896000 [ 69.023318][ T8428] FS: 0000000001cd1300(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000 [ 69.032353][ T8428] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 69.039085][ T8428] CR2: 00007f65146d8000 CR3: 000000001e741000 CR4: 00000000001506f0 [ 69.047323][ T8428] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 69.055329][ T8428] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 69.063344][ T8428] Call Trace: [ 69.066617][ T8428] hash_ipmark_create+0x4bd/0x1370 [ 69.071749][ T8428] ? __nla_parse+0x3d/0x50 [ 69.076167][ T8428] ? hash_ipmark4_head+0xf60/0xf60 [ 69.081302][ T8428] ip_set_create+0x782/0x15a0 [ 69.085979][ T8428] ? ip_set_sockfn_get+0xe60/0xe60 [ 69.091134][ T8428] ? __nla_parse+0x3d/0x50 [ 69.095569][ T8428] nfnetlink_rcv_msg+0xbc9/0x13f0 [ 69.100631][ T8428] ? nfnetlink_net_init+0x380/0x380 [ 69.106089][ T8428] ? kernel_text_address+0xbd/0xf0 [ 69.111327][ T8428] ? __kernel_text_address+0x9/0x30 [ 69.116528][ T8428] ? stack_trace_save+0x8c/0xc0 [ 69.121432][ T8428] ? stack_trace_consume_entry+0x160/0x160 [ 69.127241][ T8428] ? rcu_read_lock_sched_held+0xd/0x70 [ 69.132720][ T8428] ? kasan_save_stack+0x32/0x40 [ 69.137681][ T8428] ? kasan_save_stack+0x1b/0x40 [ 69.142580][ T8428] ? __kasan_slab_alloc+0x83/0xb0 [ 69.147612][ T8428] ? kmem_cache_alloc_node+0x266/0x3e0 [ 69.153111][ T8428] netlink_rcv_skb+0x153/0x420 [ 69.157945][ T8428] ? nfnetlink_net_init+0x380/0x380 [ 69.163218][ T8428] ? netlink_ack+0xa60/0xa60 [ 69.167840][ T8428] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 69.174139][ T8428] ? ns_capable+0xd9/0x100 [ 69.178638][ T8428] nfnetlink_rcv+0x1ac/0x420 [ 69.183256][ T8428] ? nfnetlink_rcv_batch+0x25f0/0x25f0 [ 69.188863][ T8428] ? netlink_deliver_tap+0x1b1/0xc30 [ 69.194161][ T8428] ? _copy_from_iter+0x12b/0x1320 [ 69.199246][ T8428] netlink_unicast+0x533/0x7d0 [ 69.204018][ T8428] ? netlink_attachskb+0x890/0x890 [ 69.209268][ T8428] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 69.215546][ T8428] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 69.221830][ T8428] ? __phys_addr_symbol+0x2c/0x70 [ 69.226877][ T8428] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 69.232630][ T8428] ? __check_object_size+0x16e/0x3f0 [ 69.237922][ T8428] netlink_sendmsg+0x86d/0xdb0 [ 69.242755][ T8428] ? netlink_unicast+0x7d0/0x7d0 [ 69.247705][ T8428] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 69.253986][ T8428] ? netlink_unicast+0x7d0/0x7d0 [ 69.258973][ T8428] sock_sendmsg+0xcf/0x120 [ 69.263388][ T8428] ____sys_sendmsg+0x6e8/0x810 [ 69.268223][ T8428] ? kernel_sendmsg+0x50/0x50 [ 69.272905][ T8428] ? do_recvmmsg+0x6d0/0x6d0 [ 69.277514][ T8428] ? rcu_read_lock_sched_held+0xd/0x70 [ 69.283017][ T8428] ? do_huge_pmd_anonymous_page+0x1259/0x2740 [ 69.289128][ T8428] ? lock_downgrade+0x6e0/0x6e0 [ 69.293979][ T8428] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 69.300266][ T8428] ___sys_sendmsg+0xf3/0x170 [ 69.304863][ T8428] ? sendmsg_copy_msghdr+0x160/0x160 [ 69.310244][ T8428] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 69.316509][ T8428] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 69.322795][ T8428] ? __handle_mm_fault+0x621/0x5320 [ 69.328000][ T8428] ? vm_iomap_memory+0x190/0x190 [ 69.333020][ T8428] ? lock_release+0x720/0x720 [ 69.337687][ T8428] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 69.343980][ T8428] ? __fget_light+0x215/0x280 [ 69.348722][ T8428] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 69.355059][ T8428] __sys_sendmsg+0xe5/0x1b0 [ 69.359595][ T8428] ? __sys_sendmsg_sock+0x30/0x30 [ 69.364645][ T8428] ? syscall_enter_from_user_mode+0x21/0x70 [ 69.370576][ T8428] ? trace_hardirqs_on+0x5b/0x1c0 [ 69.375599][ T8428] do_syscall_64+0x35/0xb0 [ 69.380050][ T8428] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 69.386036][ T8428] RIP: 0033:0x43f039 [ 69.389967][ T8428] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 69.409622][ T8428] RSP: 002b:00007ffcb64e1228 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 69.418080][ T8428] RAX: ffffffffffffffda RBX: 0000000000400488 RCX: 000000000043f039 [ 69.426060][ T8428] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 69.434210][ T8428] RBP: 0000000000403020 R08: 0000000000000005 R09: 0000000000400488 [ 69.442237][ T8428] R10: 0000000000000001 R11: 0000000000000246 R12: 00000000004030b0 [ 69.450242][ T8428] R13: 0000000000000000 R14: 00000000004ac018 R15: 0000000000400488 [ 69.458255][ T8428] Kernel panic - not syncing: panic_on_warn set ... [ 69.464827][ T8428] CPU: 1 PID: 8428 Comm: syz-executor228 Not tainted 5.14.0-syzkaller #0 [ 69.473223][ T8428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 69.483268][ T8428] Call Trace: [ 69.486530][ T8428] dump_stack_lvl+0xcd/0x134 [ 69.491108][ T8428] panic+0x2b0/0x6dd [ 69.494991][ T8428] ? __warn_printk+0xf3/0xf3 [ 69.499586][ T8428] ? __warn.cold+0x1a/0x44 [ 69.504083][ T8428] ? kvmalloc_node+0x111/0x120 [ 69.508828][ T8428] __warn.cold+0x35/0x44 [ 69.513137][ T8428] ? kvmalloc_node+0x111/0x120 [ 69.517905][ T8428] report_bug+0x1bd/0x210 [ 69.522233][ T8428] handle_bug+0x3c/0x60 [ 69.526835][ T8428] exc_invalid_op+0x14/0x40 [ 69.531333][ T8428] asm_exc_invalid_op+0x12/0x20 [ 69.536181][ T8428] RIP: 0010:kvmalloc_node+0x111/0x120 [ 69.541536][ T8428] Code: 01 00 00 00 4c 89 e7 e8 8d 12 0d 00 49 89 c5 e9 69 ff ff ff e8 f0 21 d1 ff 41 89 ed 41 81 cd 00 20 01 00 eb 95 e8 df 21 d1 ff <0f> 0b e9 4c ff ff ff 0f 1f 84 00 00 00 00 00 55 48 89 fd 53 e8 c6 [ 69.561121][ T8428] RSP: 0018:ffffc9000175f280 EFLAGS: 00010293 [ 69.567169][ T8428] RAX: 0000000000000000 RBX: ffffc9000175f3a0 RCX: 0000000000000000 [ 69.575144][ T8428] RDX: ffff888026f98000 RSI: ffffffff81a4f621 RDI: 0000000000000003 [ 69.583093][ T8428] RBP: 0000000000400dc0 R08: 000000007fffffff R09: 00000000ffffffff [ 69.591042][ T8428] R10: ffffffff81a4f5de R11: 000000000000001f R12: 0000000200000018 [ 69.598996][ T8428] R13: 0000000000000000 R14: 00000000ffffffff R15: ffff888020896000 [ 69.606958][ T8428] ? kvmalloc_node+0xce/0x120 [ 69.611625][ T8428] ? kvmalloc_node+0x111/0x120 [ 69.616377][ T8428] hash_ipmark_create+0x4bd/0x1370 [ 69.621491][ T8428] ? __nla_parse+0x3d/0x50 [ 69.625889][ T8428] ? hash_ipmark4_head+0xf60/0xf60 [ 69.631076][ T8428] ip_set_create+0x782/0x15a0 [ 69.635736][ T8428] ? ip_set_sockfn_get+0xe60/0xe60 [ 69.640840][ T8428] ? __nla_parse+0x3d/0x50 [ 69.645249][ T8428] nfnetlink_rcv_msg+0xbc9/0x13f0 [ 69.650288][ T8428] ? nfnetlink_net_init+0x380/0x380 [ 69.655493][ T8428] ? kernel_text_address+0xbd/0xf0 [ 69.660591][ T8428] ? __kernel_text_address+0x9/0x30 [ 69.665779][ T8428] ? stack_trace_save+0x8c/0xc0 [ 69.670623][ T8428] ? stack_trace_consume_entry+0x160/0x160 [ 69.676411][ T8428] ? rcu_read_lock_sched_held+0xd/0x70 [ 69.681851][ T8428] ? kasan_save_stack+0x32/0x40 [ 69.686685][ T8428] ? kasan_save_stack+0x1b/0x40 [ 69.691516][ T8428] ? __kasan_slab_alloc+0x83/0xb0 [ 69.696633][ T8428] ? kmem_cache_alloc_node+0x266/0x3e0 [ 69.702246][ T8428] netlink_rcv_skb+0x153/0x420 [ 69.707082][ T8428] ? nfnetlink_net_init+0x380/0x380 [ 69.712262][ T8428] ? netlink_ack+0xa60/0xa60 [ 69.716841][ T8428] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 69.723075][ T8428] ? ns_capable+0xd9/0x100 [ 69.727473][ T8428] nfnetlink_rcv+0x1ac/0x420 [ 69.732071][ T8428] ? nfnetlink_rcv_batch+0x25f0/0x25f0 [ 69.737595][ T8428] ? netlink_deliver_tap+0x1b1/0xc30 [ 69.742861][ T8428] ? _copy_from_iter+0x12b/0x1320 [ 69.748057][ T8428] netlink_unicast+0x533/0x7d0 [ 69.752813][ T8428] ? netlink_attachskb+0x890/0x890 [ 69.757910][ T8428] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 69.764144][ T8428] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 69.770362][ T8428] ? __phys_addr_symbol+0x2c/0x70 [ 69.775366][ T8428] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 69.781061][ T8428] ? __check_object_size+0x16e/0x3f0 [ 69.786408][ T8428] netlink_sendmsg+0x86d/0xdb0 [ 69.791179][ T8428] ? netlink_unicast+0x7d0/0x7d0 [ 69.796127][ T8428] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 69.802383][ T8428] ? netlink_unicast+0x7d0/0x7d0 [ 69.807404][ T8428] sock_sendmsg+0xcf/0x120 [ 69.811819][ T8428] ____sys_sendmsg+0x6e8/0x810 [ 69.816568][ T8428] ? kernel_sendmsg+0x50/0x50 [ 69.821315][ T8428] ? do_recvmmsg+0x6d0/0x6d0 [ 69.825891][ T8428] ? rcu_read_lock_sched_held+0xd/0x70 [ 69.831450][ T8428] ? do_huge_pmd_anonymous_page+0x1259/0x2740 [ 69.837568][ T8428] ? lock_downgrade+0x6e0/0x6e0 [ 69.842410][ T8428] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 69.848641][ T8428] ___sys_sendmsg+0xf3/0x170 [ 69.853237][ T8428] ? sendmsg_copy_msghdr+0x160/0x160 [ 69.858643][ T8428] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 69.864868][ T8428] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 69.871106][ T8428] ? __handle_mm_fault+0x621/0x5320 [ 69.876392][ T8428] ? vm_iomap_memory+0x190/0x190 [ 69.881310][ T8428] ? lock_release+0x720/0x720 [ 69.885978][ T8428] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 69.892199][ T8428] ? __fget_light+0x215/0x280 [ 69.896879][ T8428] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 69.903110][ T8428] __sys_sendmsg+0xe5/0x1b0 [ 69.907595][ T8428] ? __sys_sendmsg_sock+0x30/0x30 [ 69.912603][ T8428] ? syscall_enter_from_user_mode+0x21/0x70 [ 69.918477][ T8428] ? trace_hardirqs_on+0x5b/0x1c0 [ 69.923483][ T8428] do_syscall_64+0x35/0xb0 [ 69.927880][ T8428] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 69.933754][ T8428] RIP: 0033:0x43f039 [ 69.937746][ T8428] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 69.957337][ T8428] RSP: 002b:00007ffcb64e1228 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 69.965728][ T8428] RAX: ffffffffffffffda RBX: 0000000000400488 RCX: 000000000043f039 [ 69.973892][ T8428] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 69.981853][ T8428] RBP: 0000000000403020 R08: 0000000000000005 R09: 0000000000400488 [ 69.989856][ T8428] R10: 0000000000000001 R11: 0000000000000246 R12: 00000000004030b0 [ 69.997807][ T8428] R13: 0000000000000000 R14: 00000000004ac018 R15: 0000000000400488 [ 70.007204][ T8428] Kernel Offset: disabled [ 70.011515][ T8428] Rebooting in 86400 seconds..