[ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.10.56' (ECDSA) to the list of known hosts. syzkaller login: [ 91.506302][ T35] audit: type=1400 audit(1608689056.776:8): avc: denied { execmem } for pid=8479 comm="syz-executor805" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 92.637104][ T8480] IPVS: ftp: loaded support on port[0] = 21 executing program [ 92.783718][ T3191] BUG: kernel NULL pointer dereference, address: 0000000000000008 [ 92.791639][ T3191] #PF: supervisor read access in kernel mode [ 92.797603][ T3191] #PF: error_code(0x0000) - not-present page [ 92.803570][ T3191] PGD 0 P4D 0 [ 92.806929][ T3191] Oops: 0000 [#1] PREEMPT SMP KASAN [ 92.812126][ T3191] CPU: 0 PID: 3191 Comm: kworker/0:3 Not tainted 5.10.0-syzkaller #0 [ 92.820172][ T3191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 92.830215][ T3191] Workqueue: events free_ipc [ 92.834822][ T3191] RIP: 0010:kasan_record_aux_stack+0x77/0xb0 [ 92.840790][ T3191] Code: 48 f7 fe 8b 47 24 49 89 f0 48 29 d3 8d 70 ff 41 0f af f0 48 01 ce 48 39 f3 48 0f 46 f3 e8 81 e9 ff ff bf 00 08 00 00 48 89 c3 <8b> 40 08 89 43 0c e8 1e e6 ff ff 89 43 08 5b c3 48 8b 50 08 48 c7 [ 92.860384][ T3191] RSP: 0018:ffffc90001e77ae8 EFLAGS: 00010046 [ 92.866454][ T3191] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff888039000000 [ 92.874425][ T3191] RDX: 0000000000000078 RSI: ffff888039000000 RDI: 0000000000000800 [ 92.882434][ T3191] RBP: ffffffff837ef3a0 R08: 0000000000400000 R09: 000000000000002e [ 92.890392][ T3191] R10: ffffffff8132b7ea R11: 000000000000003f R12: 0000000000035b40 [ 92.898461][ T3191] R13: ffff888039000088 R14: ffffc90001e77c08 R15: 0000000000000200 [ 92.906428][ T3191] FS: 0000000000000000(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000 [ 92.915345][ T3191] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 92.921929][ T3191] CR2: 0000000000000008 CR3: 000000000b48e000 CR4: 00000000001506f0 [ 92.929901][ T3191] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 92.938126][ T3191] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 92.946102][ T3191] Call Trace: [ 92.949366][ T3191] call_rcu+0xbb/0x710 [ 92.953439][ T3191] ? sem_more_checks+0xa0/0xa0 [ 92.958199][ T3191] ipc_rcu_putref+0x83/0xb0 [ 92.962686][ T3191] freeary+0x139c/0x1b30 [ 92.966914][ T3191] ? newary+0xc60/0xc60 [ 92.971051][ T3191] ? rwlock_bug.part.0+0x90/0x90 [ 92.976018][ T3191] ? __radix_tree_lookup+0x211/0x2a0 [ 92.981295][ T3191] free_ipcs+0x98/0x1e0 [ 92.985436][ T3191] ? newary+0xc60/0xc60 [ 92.989584][ T3191] sem_exit_ns+0x1b/0x40 [ 92.993810][ T3191] free_ipc+0xf8/0x200 [ 92.997873][ T3191] process_one_work+0x98d/0x1630 [ 93.002806][ T3191] ? pwq_dec_nr_in_flight+0x320/0x320 [ 93.008178][ T3191] ? rwlock_bug.part.0+0x90/0x90 [ 93.013109][ T3191] ? _raw_spin_lock_irq+0x41/0x50 [ 93.018149][ T3191] worker_thread+0x64c/0x1120 [ 93.022813][ T3191] ? __kthread_parkme+0x13f/0x1e0 [ 93.027830][ T3191] ? process_one_work+0x1630/0x1630 [ 93.033012][ T3191] kthread+0x3b1/0x4a0 [ 93.037067][ T3191] ? kthread_create_worker_on_cpu+0xf0/0xf0 [ 93.042942][ T3191] ret_from_fork+0x1f/0x30 [ 93.047358][ T3191] Modules linked in: [ 93.051250][ T3191] CR2: 0000000000000008 [ 93.055387][ T3191] ---[ end trace 138d9cb70a283661 ]--- [ 93.060819][ T3191] RIP: 0010:kasan_record_aux_stack+0x77/0xb0 [ 93.066812][ T3191] Code: 48 f7 fe 8b 47 24 49 89 f0 48 29 d3 8d 70 ff 41 0f af f0 48 01 ce 48 39 f3 48 0f 46 f3 e8 81 e9 ff ff bf 00 08 00 00 48 89 c3 <8b> 40 08 89 43 0c e8 1e e6 ff ff 89 43 08 5b c3 48 8b 50 08 48 c7 [ 93.086523][ T3191] RSP: 0018:ffffc90001e77ae8 EFLAGS: 00010046 [ 93.092598][ T3191] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff888039000000 [ 93.100572][ T3191] RDX: 0000000000000078 RSI: ffff888039000000 RDI: 0000000000000800 [ 93.108526][ T3191] RBP: ffffffff837ef3a0 R08: 0000000000400000 R09: 000000000000002e [ 93.116499][ T3191] R10: ffffffff8132b7ea R11: 000000000000003f R12: 0000000000035b40 [ 93.124553][ T3191] R13: ffff888039000088 R14: ffffc90001e77c08 R15: 0000000000000200 [ 93.132509][ T3191] FS: 0000000000000000(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000 [ 93.141434][ T3191] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 93.148017][ T3191] CR2: 0000000000000008 CR3: 000000000b48e000 CR4: 00000000001506f0 [ 93.155992][ T3191] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 93.163959][ T3191] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 93.171914][ T3191] Kernel panic - not syncing: Fatal exception [ 93.178523][ T3191] Kernel Offset: disabled [ 93.182865][ T3191] Rebooting in 86400 seconds..