[ OK ] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch. [ OK ] Started Getty on tty6. [ OK ] Started Getty on tty5. [ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty1. [ OK ] Started Serial Getty on ttyS0. [ OK ] Started Getty on tty2. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.69' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 71.066260][ T8441] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN [ 71.078121][ T8441] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 71.086512][ T8441] CPU: 1 PID: 8441 Comm: syz-executor107 Not tainted 5.13.0-rc6-syzkaller #0 [ 71.095259][ T8441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 71.105300][ T8441] RIP: 0010:hwsim_set_edge_lqi+0xf4/0x7d0 [ 71.111035][ T8441] Code: 00 0f 85 9c 06 00 00 4d 85 ed 48 8b 5b 10 0f 84 6e 05 00 00 e8 dd 92 4a fc 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <0f> b6 14 02 48 89 d8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 c2 [ 71.130630][ T8441] RSP: 0018:ffffc9000189f568 EFLAGS: 00010246 [ 71.136689][ T8441] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 71.146746][ T8441] RDX: 0000000000000000 RSI: ffffffff852a4913 RDI: ffff888027a8a390 [ 71.155150][ T8441] RBP: ffffc9000189f678 R08: 0000000000000001 R09: ffffc9000189f6a8 [ 71.163116][ T8441] R10: fffff52000313ed6 R11: 0000000000000000 R12: ffffc9000189f698 [ 71.171085][ T8441] R13: ffff88801d199814 R14: ffff8880127a8140 R15: 0000000000000000 [ 71.179054][ T8441] FS: 0000000001607300(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000 [ 71.187988][ T8441] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 71.194571][ T8441] CR2: 00005628469f7768 CR3: 0000000017282000 CR4: 00000000001506e0 [ 71.202541][ T8441] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 71.210510][ T8441] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 71.218489][ T8441] Call Trace: [ 71.221766][ T8441] ? hwsim_del_edge_nl+0x7c0/0x7c0 [ 71.226886][ T8441] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 71.233149][ T8441] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 71.240549][ T8441] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 71.247845][ T8441] genl_family_rcv_msg_doit+0x228/0x320 [ 71.253397][ T8441] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 71.260774][ T8441] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 71.267026][ T8441] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 71.273271][ T8441] ? ns_capable+0xde/0x100 [ 71.277706][ T8441] genl_rcv_msg+0x328/0x580 [ 71.282225][ T8441] ? genl_get_cmd+0x480/0x480 [ 71.286907][ T8441] ? hwsim_del_edge_nl+0x7c0/0x7c0 [ 71.292028][ T8441] ? lock_release+0x720/0x720 [ 71.296725][ T8441] netlink_rcv_skb+0x153/0x420 [ 71.301497][ T8441] ? genl_get_cmd+0x480/0x480 [ 71.306175][ T8441] ? netlink_ack+0xaa0/0xaa0 [ 71.310784][ T8441] genl_rcv+0x24/0x40 [ 71.314769][ T8441] netlink_unicast+0x533/0x7d0 [ 71.319537][ T8441] ? netlink_attachskb+0x870/0x870 [ 71.324651][ T8441] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 71.330898][ T8441] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 71.337155][ T8441] ? __phys_addr_symbol+0x2c/0x70 [ 71.342186][ T8441] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 71.347910][ T8441] ? __check_object_size+0x171/0x3f0 [ 71.353208][ T8441] netlink_sendmsg+0x856/0xd90 [ 71.357982][ T8441] ? netlink_unicast+0x7d0/0x7d0 [ 71.362925][ T8441] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 71.369191][ T8441] ? netlink_unicast+0x7d0/0x7d0 [ 71.374133][ T8441] sock_sendmsg+0xcf/0x120 [ 71.378562][ T8441] ____sys_sendmsg+0x6e8/0x810 [ 71.383329][ T8441] ? kernel_sendmsg+0x50/0x50 [ 71.388002][ T8441] ? do_recvmmsg+0x6d0/0x6d0 [ 71.392592][ T8441] ? do_huge_pmd_anonymous_page+0x1245/0x2570 [ 71.398665][ T8441] ? lock_downgrade+0x6e0/0x6e0 [ 71.403541][ T8441] ___sys_sendmsg+0xf3/0x170 [ 71.408232][ T8441] ? sendmsg_copy_msghdr+0x160/0x160 [ 71.413521][ T8441] ? __lock_acquire+0x16a7/0x5230 [ 71.418553][ T8441] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 71.424537][ T8441] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 71.430627][ T8441] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 71.436876][ T8441] ? __fget_light+0x215/0x280 [ 71.441566][ T8441] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 71.447816][ T8441] __sys_sendmsg+0xe5/0x1b0 [ 71.452321][ T8441] ? __sys_sendmsg_sock+0x30/0x30 [ 71.457352][ T8441] ? syscall_enter_from_user_mode+0x27/0x70 [ 71.463245][ T8441] do_syscall_64+0x3a/0xb0 [ 71.467663][ T8441] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 71.473556][ T8441] RIP: 0033:0x43eec9 [ 71.477447][ T8441] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 71.497055][ T8441] RSP: 002b:00007fffb3ec3868 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 71.505475][ T8441] RAX: ffffffffffffffda RBX: 0000000000400488 RCX: 000000000043eec9 [ 71.513445][ T8441] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 71.521416][ T8441] RBP: 0000000000402eb0 R08: 0000000000000000 R09: 0000000000400488 [ 71.529384][ T8441] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402f40 [ 71.537372][ T8441] R13: 0000000000000000 R14: 00000000004ac018 R15: 0000000000400488 [ 71.545347][ T8441] Modules linked in: [ 71.549951][ T8441] ---[ end trace d874a40c8997745a ]--- [ 71.555757][ T8441] RIP: 0010:hwsim_set_edge_lqi+0xf4/0x7d0 [ 71.561504][ T8441] Code: 00 0f 85 9c 06 00 00 4d 85 ed 48 8b 5b 10 0f 84 6e 05 00 00 e8 dd 92 4a fc 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <0f> b6 14 02 48 89 d8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 c2 [ 71.581403][ T8441] RSP: 0018:ffffc9000189f568 EFLAGS: 00010246 [ 71.587529][ T8441] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 71.595546][ T8441] RDX: 0000000000000000 RSI: ffffffff852a4913 RDI: ffff888027a8a390 [ 71.603522][ T8441] RBP: ffffc9000189f678 R08: 0000000000000001 R09: ffffc9000189f6a8 [ 71.611556][ T8441] R10: fffff52000313ed6 R11: 0000000000000000 R12: ffffc9000189f698 [ 71.619636][ T8441] R13: ffff88801d199814 R14: ffff8880127a8140 R15: 0000000000000000 [ 71.644886][ T8441] FS: 0000000001607300(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000 [ 71.653853][ T8441] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 71.661202][ T8441] CR2: 00007fe281024000 CR3: 0000000017282000 CR4: 00000000001506e0 [ 71.669561][ T8441] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 71.677820][ T8441] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 71.686199][ T8441] Kernel panic - not syncing: Fatal exception [ 71.693235][ T8441] Kernel Offset: disabled [ 71.697559][ T8441] Rebooting in 86400 seconds..