Starting Load/Save RF Kill Switch Status... Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.10.20' (ECDSA) to the list of known hosts. 2021/05/03 07:19:50 fuzzer started 2021/05/03 07:19:51 dialing manager at 10.128.0.169:44661 2021/05/03 07:19:51 syscalls: 3571 2021/05/03 07:19:51 code coverage: enabled 2021/05/03 07:19:51 comparison tracing: enabled 2021/05/03 07:19:51 extra coverage: enabled 2021/05/03 07:19:51 setuid sandbox: enabled 2021/05/03 07:19:51 namespace sandbox: enabled 2021/05/03 07:19:51 Android sandbox: /sys/fs/selinux/policy does not exist 2021/05/03 07:19:51 fault injection: enabled 2021/05/03 07:19:51 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2021/05/03 07:19:51 net packet injection: enabled 2021/05/03 07:19:51 net device setup: enabled 2021/05/03 07:19:51 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2021/05/03 07:19:51 devlink PCI setup: PCI device 0000:00:10.0 is not available 2021/05/03 07:19:51 USB emulation: enabled 2021/05/03 07:19:51 hci packet injection: enabled 2021/05/03 07:19:51 wifi device emulation: enabled 2021/05/03 07:19:51 802.15.4 emulation: enabled 2021/05/03 07:19:51 fetching corpus: 0, signal 0/2000 (executing program) 2021/05/03 07:19:51 fetching corpus: 50, signal 43491/47250 (executing program) 2021/05/03 07:19:51 fetching corpus: 100, signal 68877/74327 (executing program) 2021/05/03 07:19:52 fetching corpus: 150, signal 101403/108338 (executing program) 2021/05/03 07:19:52 fetching corpus: 200, signal 117517/125959 (executing program) syzkaller login: [ 68.733939][ T8450] general protection fault, probably for non-canonical address 0xdffffd861ffffd45: 0000 [#1] PREEMPT SMP KASAN [ 68.745697][ T8450] KASAN: probably user-memory-access in range [0x00000c30ffffea28-0x00000c30ffffea2f] [ 68.755258][ T8450] CPU: 0 PID: 8450 Comm: syz-fuzzer Not tainted 5.12.0-rc8-next-20210423-syzkaller #0 [ 68.764828][ T8450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 68.774867][ T8450] RIP: 0010:pfifo_fast_dequeue+0x355/0xb30 [ 68.780678][ T8450] Code: df 0f b6 04 02 84 c0 74 08 3c 03 0f 8e 10 07 00 00 4d 8d 6c 24 28 8b 6b 10 48 b8 00 00 00 00 00 fc ff df 4c 89 ea 48 c1 ea 03 <0f> b6 14 02 4c 89 e8 83 e0 07 83 e5 20 83 c0 03 38 d0 7c 08 84 d2 [ 68.800308][ T8450] RSP: 0018:ffffc9000169f1d8 EFLAGS: 00010202 [ 68.806366][ T8450] RAX: dffffc0000000000 RBX: ffff88801630e000 RCX: 0000000000000001 [ 68.814327][ T8450] RDX: 000001861ffffd45 RSI: ffffffff87258b64 RDI: ffff88801630e010 [ 68.822283][ T8450] RBP: 0000000000000174 R08: 0000000000000001 R09: 0000000000000000 [ 68.830236][ T8450] R10: ffffffff87258b56 R11: 0000000000000000 R12: 00000c30ffffea00 [ 68.838186][ T8450] R13: 00000c30ffffea28 R14: 0000000000000001 R15: 00000000000003e8 [ 68.846135][ T8450] FS: 000000c000265490(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000 [ 68.855044][ T8450] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 68.861610][ T8450] CR2: 000000c0012b9000 CR3: 00000000155ca000 CR4: 00000000001506f0 [ 68.869798][ T8450] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 68.877888][ T8450] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 68.885861][ T8450] Call Trace: [ 68.889141][ T8450] __qdisc_run+0x1ae/0x15f0 [ 68.893631][ T8450] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 68.899870][ T8450] __dev_queue_xmit+0x1390/0x2e50 [ 68.904880][ T8450] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 68.910143][ T8450] ? __ip_finish_output+0x396/0x640 [ 68.915330][ T8450] ? mark_held_locks+0x9f/0xe0 [ 68.920084][ T8450] ? ip_finish_output2+0x15ac/0x2220 [ 68.925351][ T8450] ip_finish_output2+0xef0/0x2220 [ 68.930368][ T8450] ? ip_fragment.constprop.0+0x240/0x240 [ 68.935992][ T8450] ? __ip_finish_output+0x640/0x640 [ 68.941170][ T8450] __ip_finish_output+0x396/0x640 [ 68.946289][ T8450] ip_finish_output+0x35/0x200 [ 68.951029][ T8450] ip_output+0x196/0x310 [ 68.955247][ T8450] __ip_queue_xmit+0x8d3/0x1a30 [ 68.960078][ T8450] __tcp_transmit_skb+0x1889/0x38f0 [ 68.965274][ T8450] ? __tcp_select_window+0xad0/0xad0 [ 68.970535][ T8450] ? find_held_lock+0x2d/0x110 [ 68.975283][ T8450] ? __build_skb_around+0x23e/0x2f0 [ 68.980460][ T8450] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 68.986682][ T8450] ? __alloc_skb+0x17c/0x340 [ 68.991260][ T8450] __tcp_send_ack.part.0+0x3d6/0x7a0 [ 68.996522][ T8450] tcp_send_ack+0x7d/0xa0 [ 69.001175][ T8450] tcp_cleanup_rbuf+0x46c/0x5b0 [ 69.006017][ T8450] tcp_recvmsg_locked+0x7aa/0x22f0 [ 69.011110][ T8450] ? tcp_splice_read+0x8b0/0x8b0 [ 69.016033][ T8450] ? mark_held_locks+0x9f/0xe0 [ 69.020803][ T8450] ? __local_bh_enable_ip+0xa0/0x120 [ 69.026069][ T8450] tcp_recvmsg+0x134/0x550 [ 69.030478][ T8450] ? tcp_recvmsg_locked+0x22f0/0x22f0 [ 69.035831][ T8450] ? aa_sk_perm+0x311/0xab0 [ 69.040311][ T8450] inet_recvmsg+0x11b/0x5e0 [ 69.044799][ T8450] ? inet_sendpage+0x140/0x140 [ 69.049544][ T8450] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 69.055779][ T8450] ? security_socket_recvmsg+0x8f/0xc0 [ 69.061242][ T8450] sock_read_iter+0x33c/0x470 [ 69.065900][ T8450] ? ____sys_recvmsg+0x600/0x600 [ 69.070818][ T8450] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 69.077039][ T8450] ? fsnotify+0xa58/0x1060 [ 69.081433][ T8450] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 69.088183][ T8450] new_sync_read+0x5b7/0x6e0 [ 69.092757][ T8450] ? ksys_lseek+0x1b0/0x1b0 [ 69.097244][ T8450] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 69.103211][ T8450] vfs_read+0x35c/0x570 [ 69.107344][ T8450] ksys_read+0x1ee/0x250 [ 69.111565][ T8450] ? vfs_write+0xa40/0xa40 [ 69.115972][ T8450] ? syscall_enter_from_user_mode+0x27/0x70 [ 69.121845][ T8450] do_syscall_64+0x3a/0xb0 [ 69.126330][ T8450] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 69.132203][ T8450] RIP: 0033:0x4af19b [ 69.136074][ T8450] Code: fb ff eb bd e8 a6 b6 fb ff e9 61 ff ff ff cc e8 9b 82 fb ff 48 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 69.155660][ T8450] RSP: 002b:000000c000307828 EFLAGS: 00000212 ORIG_RAX: 0000000000000000 [ 69.164051][ T8450] RAX: ffffffffffffffda RBX: 000000c00001e800 RCX: 00000000004af19b [ 69.172000][ T8450] RDX: 0000000000001000 RSI: 000000c0000de000 RDI: 0000000000000006 [ 69.180041][ T8450] RBP: 000000c000307878 R08: 0000000000000001 R09: 0000000000000002 [ 69.188004][ T8450] R10: 0000000000003294 R11: 0000000000000212 R12: 0000000000003290 [ 69.195951][ T8450] R13: 0000000000000200 R14: 0000000000000020 R15: 0000000000000020 [ 69.203903][ T8450] Modules linked in: [ 69.207849][ T8450] ---[ end trace bfd8b5142dbaf749 ]--- [ 69.213334][ T8450] RIP: 0010:pfifo_fast_dequeue+0x355/0xb30 [ 69.219202][ T8450] Code: df 0f b6 04 02 84 c0 74 08 3c 03 0f 8e 10 07 00 00 4d 8d 6c 24 28 8b 6b 10 48 b8 00 00 00 00 00 fc ff df 4c 89 ea 48 c1 ea 03 <0f> b6 14 02 4c 89 e8 83 e0 07 83 e5 20 83 c0 03 38 d0 7c 08 84 d2 [ 69.238880][ T8450] RSP: 0018:ffffc9000169f1d8 EFLAGS: 00010202 [ 69.245118][ T8450] RAX: dffffc0000000000 RBX: ffff88801630e000 RCX: 0000000000000001 [ 69.253105][ T8450] RDX: 000001861ffffd45 RSI: ffffffff87258b64 RDI: ffff88801630e010 [ 69.261112][ T8450] RBP: 0000000000000174 R08: 0000000000000001 R09: 0000000000000000 [ 69.269108][ T8450] R10: ffffffff87258b56 R11: 0000000000000000 R12: 00000c30ffffea00 [ 69.277092][ T8450] R13: 00000c30ffffea28 R14: 0000000000000001 R15: 00000000000003e8 [ 69.285091][ T8450] FS: 000000c000265490(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000 [ 69.294082][ T8450] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 69.300694][ T8450] CR2: 000000c0012b9000 CR3: 00000000155ca000 CR4: 00000000001506f0 [ 69.308748][ T8450] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 69.316722][ T8450] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 69.324719][ T8450] Kernel panic - not syncing: Fatal exception in interrupt [ 69.332469][ T8450] Kernel Offset: disabled [ 69.336781][ T8450] Rebooting in 86400 seconds..