[ OK ] Started OpenBSD Secure Shell server. [ OK ] Started Getty on tty2. [ OK ] Started Serial Getty on ttyS0. [ OK ] Started Getty on tty1. [ OK ] Started getty on tty2-tty6 if dbus and logind are not available. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.1.16' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 63.172151][ T27] audit: type=1400 audit(1593839969.873:8): avc: denied { execmem } for pid=6809 comm="syz-executor114" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 63.251686][ T6809] general protection fault, probably for non-canonical address 0xdffffc0020000001: 0000 [#1] PREEMPT SMP KASAN [ 63.251697][ T6809] KASAN: probably user-memory-access in range [0x0000000100000008-0x000000010000000f] [ 63.251720][ T6809] CPU: 0 PID: 6809 Comm: syz-executor114 Not tainted 5.8.0-rc3-syzkaller #0 [ 63.251727][ T6809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 63.251743][ T6809] RIP: 0010:do_con_write+0x979/0x7400 [ 63.251755][ T6809] Code: a4 24 ca 00 00 00 44 01 e5 e8 33 19 86 fd 48 8b 44 24 50 80 38 00 0f 85 28 27 00 00 4d 8b a6 f0 03 00 00 4c 89 e0 48 c1 e8 03 <0f> b6 14 18 4c 89 e0 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 13 [ 63.251762][ T6809] RSP: 0018:ffffc900015b7a10 EFLAGS: 00010203 [ 63.251772][ T6809] RAX: 0000000020000001 RBX: dffffc0000000000 RCX: ffffffff83ed9dea [ 63.251780][ T6809] RDX: ffff8880a6670340 RSI: ffffffff83ed9e2d RDI: 0000000000000003 [ 63.251788][ T6809] RBP: 00000000000007fe R08: ffffffff83ec9ab0 R09: ffff8880a6670c08 [ 63.251795][ T6809] R10: 0000000000000000 R11: 0000000000000000 R12: 000000010000000c [ 63.251802][ T6809] R13: 0000000000000000 R14: ffff8880a0fc2000 R15: ffff8880a0fc23dc [ 63.251813][ T6809] FS: 00000000019e2880(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000 [ 63.251820][ T6809] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 63.251827][ T6809] CR2: 00000000004553a0 CR3: 00000000a719c000 CR4: 00000000001406f0 [ 63.251838][ T6809] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 63.251845][ T6809] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 63.251849][ T6809] Call Trace: [ 63.251867][ T6809] ? match_held_lock+0x160/0x170 [ 63.251884][ T6809] ? reset_palette+0x180/0x180 [ 63.251898][ T6809] ? mark_lock+0xbc/0x1710 [ 63.251913][ T6809] ? mark_held_locks+0x9f/0xe0 [ 63.251926][ T6809] ? _raw_spin_unlock_irqrestore+0x62/0xe0 [ 63.251938][ T6809] con_write+0x22/0xb0 [ 63.251950][ T6809] n_tty_write+0x3ce/0xf80 [ 63.251969][ T6809] ? n_tty_receive_char_lnext+0x700/0x700 [ 63.251983][ T6809] ? __init_waitqueue_head+0x110/0x110 [ 63.251996][ T6809] ? __might_fault+0x190/0x1d0 [ 63.252012][ T6809] tty_write+0x4d9/0x870 [ 63.252024][ T6809] ? n_tty_receive_char_lnext+0x700/0x700 [ 63.252038][ T6809] ? tty_read+0x290/0x290 [ 63.252050][ T6809] __vfs_write+0x76/0x100 [ 63.252062][ T6809] vfs_write+0x268/0x5d0 [ 63.252076][ T6809] ksys_write+0x12d/0x250 [ 63.252088][ T6809] ? __ia32_sys_read+0xb0/0xb0 [ 63.252100][ T6809] ? lock_is_held_type+0xb0/0xe0 [ 63.252113][ T6809] ? do_syscall_64+0x1c/0xe0 [ 63.252125][ T6809] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 63.252139][ T6809] do_syscall_64+0x60/0xe0 [ 63.252152][ T6809] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 63.252161][ T6809] RIP: 0033:0x440459 [ 63.252164][ T6809] Code: Bad RIP value. [ 63.252171][ T6809] RSP: 002b:00007fff90c82ed8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 63.252182][ T6809] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 0000000000440459 [ 63.252190][ T6809] RDX: 0000000000001006 RSI: 0000000020000240 RDI: 0000000000000004 [ 63.252197][ T6809] RBP: 00000000006cb018 R08: 000000000000000e R09: 00000000004002c8 [ 63.252204][ T6809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000401d40 [ 63.252210][ T6809] R13: 0000000000401dd0 R14: 0000000000000000 R15: 0000000000000000 [ 63.252219][ T6809] Modules linked in: [ 63.252235][ T6809] ---[ end trace 6919ddc96f69345e ]--- [ 63.252247][ T6809] RIP: 0010:do_con_write+0x979/0x7400 [ 63.252259][ T6809] Code: a4 24 ca 00 00 00 44 01 e5 e8 33 19 86 fd 48 8b 44 24 50 80 38 00 0f 85 28 27 00 00 4d 8b a6 f0 03 00 00 4c 89 e0 48 c1 e8 03 <0f> b6 14 18 4c 89 e0 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 13 [ 63.252265][ T6809] RSP: 0018:ffffc900015b7a10 EFLAGS: 00010203 [ 63.252275][ T6809] RAX: 0000000020000001 RBX: dffffc0000000000 RCX: ffffffff83ed9dea [ 63.252283][ T6809] RDX: ffff8880a6670340 RSI: ffffffff83ed9e2d RDI: 0000000000000003 [ 63.252291][ T6809] RBP: 00000000000007fe R08: ffffffff83ec9ab0 R09: ffff8880a6670c08 [ 63.252298][ T6809] R10: 0000000000000000 R11: 0000000000000000 R12: 000000010000000c [ 63.252306][ T6809] R13: 0000000000000000 R14: ffff8880a0fc2000 R15: ffff8880a0fc23dc [ 63.252316][ T6809] FS: 00000000019e2880(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000 [ 63.252324][ T6809] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 63.252332][ T6809] CR2: 00000000004553a0 CR3: 00000000a719c000 CR4: 00000000001406f0 [ 63.252339][ T6809] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 63.252346][ T6809] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 63.252353][ T6809] Kernel panic - not syncing: Fatal exception [ 63.253374][ T6809] Kernel Offset: disabled [ 63.705338][ T6809] Rebooting in 86400 seconds..