[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 63.249812][ T26] audit: type=1800 audit(1572742165.323:25): pid=8614 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 63.294345][ T26] audit: type=1800 audit(1572742165.323:26): pid=8614 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 63.327158][ T26] audit: type=1800 audit(1572742165.333:27): pid=8614 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.243' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 74.659398][ T8769] kasan: CONFIG_KASAN_INLINE enabled [ 74.664937][ T8769] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 74.673000][ T8769] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 74.679918][ T8769] CPU: 0 PID: 8769 Comm: syz-executor448 Not tainted 5.4.0-rc3+ #0 [ 74.687779][ T8769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 74.697835][ T8769] RIP: 0010:j1939_priv_get_by_ndev_locked+0xf5/0x190 [ 74.704507][ T8769] Code: 03 80 3c 02 00 0f 85 ae 00 00 00 48 8b 9b 88 05 00 00 48 b8 00 00 00 00 00 fc ff df 48 8d bb 28 60 00 00 48 89 fa 48 c1 ea 03 <80> 3c 02 00 75 7f 4c 8b a3 28 60 00 00 4d 85 e4 74 12 e8 e4 9c f4 [ 74.724134][ T8769] RSP: 0018:ffff8880949bf8e8 EFLAGS: 00010206 [ 74.730197][ T8769] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffff867e77c7 [ 74.738165][ T8769] RDX: 0000000000000c05 RSI: ffffffff867e77d4 RDI: 0000000000006028 [ 74.746133][ T8769] RBP: ffff8880949bf900 R08: ffff8880a879c340 R09: ffffed1012937f10 [ 74.754101][ T8769] R10: ffffed1012937f0f R11: 0000000000000003 R12: 0000000000000000 [ 74.762065][ T8769] R13: 0000000000000118 R14: dffffc0000000000 R15: 0000000000000000 [ 74.770039][ T8769] FS: 0000000000789880(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000 [ 74.778962][ T8769] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 74.785542][ T8769] CR2: 00007f8c146c1518 CR3: 000000009fc92000 CR4: 00000000001406f0 [ 74.793508][ T8769] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 74.801477][ T8769] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 74.809583][ T8769] Call Trace: [ 74.812873][ T8769] j1939_netdev_notify+0x47/0x120 [ 74.817900][ T8769] notifier_call_chain+0xc2/0x230 [ 74.822928][ T8769] raw_notifier_call_chain+0x2e/0x40 [ 74.828211][ T8769] call_netdevice_notifiers_info+0x3f/0x90 [ 74.834010][ T8769] ? tun_show_group+0x180/0x180 [ 74.838855][ T8769] rollback_registered_many+0x9b9/0xfc0 [ 74.844394][ T8769] ? generic_xdp_install+0x4a0/0x4a0 [ 74.849681][ T8769] ? mark_held_locks+0xa4/0xf0 [ 74.854447][ T8769] ? queue_delayed_work_on+0xf3/0x210 [ 74.859825][ T8769] ? lockdep_hardirqs_on+0x421/0x5e0 [ 74.865112][ T8769] rollback_registered+0x109/0x1d0 [ 74.870228][ T8769] ? rollback_registered_many+0xfc0/0xfc0 [ 74.875926][ T8769] unregister_netdevice_queue+0x1ee/0x2c0 [ 74.881622][ T8769] __tun_detach+0xd8a/0x1040 [ 74.886187][ T8769] tun_chr_close+0xe0/0x180 [ 74.890667][ T8769] __fput+0x2ff/0x890 [ 74.894623][ T8769] ? __tun_detach+0x1040/0x1040 [ 74.899447][ T8769] ____fput+0x16/0x20 [ 74.903405][ T8769] task_work_run+0x145/0x1c0 [ 74.907992][ T8769] do_exit+0x904/0x2e60 [ 74.912123][ T8769] ? mm_update_next_owner+0x640/0x640 [ 74.917471][ T8769] ? do_sys_open+0x31d/0x5d0 [ 74.922061][ T8769] ? tomoyo_file_ioctl+0x23/0x30 [ 74.926976][ T8769] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 74.933200][ T8769] ? trace_hardirqs_on_thunk+0x1a/0x20 [ 74.938632][ T8769] ? trace_hardirqs_on_thunk+0x1a/0x20 [ 74.944074][ T8769] do_group_exit+0x135/0x360 [ 74.948653][ T8769] __x64_sys_exit_group+0x44/0x50 [ 74.953651][ T8769] do_syscall_64+0xfa/0x760 [ 74.958132][ T8769] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 74.964005][ T8769] RIP: 0033:0x43ee08 [ 74.967883][ T8769] Code: Bad RIP value. [ 74.971933][ T8769] RSP: 002b:00007fff3faf5578 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 74.980316][ T8769] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000043ee08 [ 74.988271][ T8769] RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000 [ 74.996217][ T8769] RBP: 00000000004be608 R08: 00000000000000e7 R09: ffffffffffffffd0 [ 75.004162][ T8769] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 75.012106][ T8769] R13: 00000000006d0180 R14: 0000000000000000 R15: 0000000000000000 [ 75.020055][ T8769] Modules linked in: [ 75.024025][ T8769] ---[ end trace 78c1c985ae8b77ec ]--- [ 75.029514][ T8769] RIP: 0010:j1939_priv_get_by_ndev_locked+0xf5/0x190 [ 75.036199][ T8769] Code: 03 80 3c 02 00 0f 85 ae 00 00 00 48 8b 9b 88 05 00 00 48 b8 00 00 00 00 00 fc ff df 48 8d bb 28 60 00 00 48 89 fa 48 c1 ea 03 <80> 3c 02 00 75 7f 4c 8b a3 28 60 00 00 4d 85 e4 74 12 e8 e4 9c f4 [ 75.055812][ T8769] RSP: 0018:ffff8880949bf8e8 EFLAGS: 00010206 [ 75.061854][ T8769] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffff867e77c7 [ 75.069826][ T8769] RDX: 0000000000000c05 RSI: ffffffff867e77d4 RDI: 0000000000006028 [ 75.077808][ T8769] RBP: ffff8880949bf900 R08: ffff8880a879c340 R09: ffffed1012937f10 [ 75.085791][ T8769] R10: ffffed1012937f0f R11: 0000000000000003 R12: 0000000000000000 [ 75.093747][ T8769] R13: 0000000000000118 R14: dffffc0000000000 R15: 0000000000000000 [ 75.101748][ T8769] FS: 0000000000789880(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000 [ 75.110682][ T8769] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 75.117276][ T8769] CR2: 000000000043edde CR3: 000000009fc92000 CR4: 00000000001406f0 [ 75.125255][ T8769] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 75.133204][ T8769] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 75.141187][ T8769] Kernel panic - not syncing: Fatal exception [ 75.148489][ T8769] Kernel Offset: disabled [ 75.152807][ T8769] Rebooting in 86400 seconds..