[ OK ] Started Getty on tty2. [ OK ] Started Serial Getty on ttyS0. [ OK ] Started Getty on tty1. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.189' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 29.436528] FAULT_INJECTION: forcing a failure. [ 29.436528] name failslab, interval 1, probability 0, space 0, times 1 [ 29.447994] CPU: 1 PID: 7990 Comm: syz-executor387 Not tainted 4.14.205-syzkaller #0 [ 29.455873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 29.465212] Call Trace: [ 29.467799] dump_stack+0x1b2/0x283 [ 29.471432] should_fail.cold+0x10a/0x154 [ 29.475588] should_failslab+0xd6/0x130 [ 29.479553] kmem_cache_alloc_node_trace+0x25a/0x400 [ 29.484639] setup_kmem_cache_node+0x25f/0x4e0 [ 29.489211] __do_tune_cpucache+0x151/0x200 [ 29.493521] do_tune_cpucache+0x21/0xc0 [ 29.497496] ? calculate_slab_order+0xc4/0x110 [ 29.502078] enable_cpucache+0x3a/0xd0 [ 29.505968] __kmem_cache_create+0x19d/0x240 [ 29.510360] create_cache+0xab/0x1b0 [ 29.514060] kmem_cache_create+0x1bb/0x260 [ 29.518289] ieee80211_mesh_init_sdata+0x547/0x650 [ 29.523200] ieee80211_setup_sdata+0xb29/0xf40 [ 29.527771] ieee80211_if_add+0xce0/0x16b0 [ 29.532012] ? kmem_cache_alloc_node_trace+0x383/0x400 [ 29.537275] ieee80211_add_iface+0x89/0x110 [ 29.541580] ? ieee80211_del_iface+0x20/0x20 [ 29.545984] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 29.551432] nl80211_new_interface+0x44b/0x1360 [ 29.556103] ? nl80211_prepare_wdev_dump+0x540/0x540 [ 29.561194] ? nl80211_notify_iface+0x190/0x190 [ 29.565855] ? nl80211_pre_doit+0x79/0x510 [ 29.570089] genl_family_rcv_msg+0x572/0xb20 [ 29.574482] ? genl_rcv+0x40/0x40 [ 29.577917] ? __ww_mutex_wakeup_for_backoff+0x210/0x210 [ 29.583362] ? trace_hardirqs_on+0x10/0x10 [ 29.587577] ? sock_sendmsg+0xb5/0x100 [ 29.591451] genl_rcv_msg+0xaf/0x140 [ 29.595145] netlink_rcv_skb+0x125/0x390 [ 29.599198] ? genl_family_rcv_msg+0xb20/0xb20 [ 29.603764] ? netlink_ack+0x9a0/0x9a0 [ 29.607630] ? lock_acquire+0x170/0x3f0 [ 29.611586] genl_rcv+0x24/0x40 [ 29.614844] netlink_unicast+0x437/0x610 [ 29.618902] ? netlink_sendskb+0xd0/0xd0 [ 29.622967] ? __check_object_size+0x179/0x22c [ 29.627545] netlink_sendmsg+0x62e/0xb80 [ 29.631589] ? nlmsg_notify+0x170/0x170 [ 29.635544] ? kernel_recvmsg+0x210/0x210 [ 29.639699] ? security_socket_sendmsg+0x83/0xb0 [ 29.644436] ? nlmsg_notify+0x170/0x170 [ 29.648390] sock_sendmsg+0xb5/0x100 [ 29.652085] ___sys_sendmsg+0x6c8/0x800 [ 29.656040] ? get_pid_task+0x91/0x130 [ 29.659907] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 29.664659] ? lock_downgrade+0x740/0x740 [ 29.668796] ? proc_fail_nth_write+0x7b/0x180 [ 29.673272] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 29.678201] ? fsnotify+0x974/0x11b0 [ 29.681902] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 29.686818] ? debug_check_no_obj_freed+0x2c0/0x674 [ 29.691820] ? vfs_write+0x35d/0x4d0 [ 29.695630] ? __fdget+0x167/0x1f0 [ 29.699170] ? sockfd_lookup_light+0xb2/0x160 [ 29.703733] __sys_sendmsg+0xa3/0x120 [ 29.707518] ? SyS_shutdown+0x160/0x160 [ 29.711483] ? SyS_read+0x210/0x210 [ 29.715103] SyS_sendmsg+0x27/0x40 [ 29.718634] ? __sys_sendmsg+0x120/0x120 [ 29.722678] do_syscall_64+0x1d5/0x640 [ 29.726556] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 29.731763] RIP: 0033:0x441869 [ 29.734936] RSP: 002b:00007ffdad47d758 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 29.742623] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441869 [ 29.749898] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 29.757165] RBP: 00007ffdad47d770 R08: 0000000000000002 R09: 0000000000000000 [ 29.764420] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 29.771685] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 29.779947] enable_cpucache failed for mesh_rmc, error 12 [ 29.785556] kmem_cache_create(mesh_rmc) failed with error -12 [ 29.791609] CPU: 1 PID: 7990 Comm: syz-executor387 Not tainted 4.14.205-syzkaller #0 [ 29.799491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 29.808843] Call Trace: [ 29.811521] dump_stack+0x1b2/0x283 [ 29.815154] kmem_cache_create.cold+0x60/0x82 [ 29.819651] ieee80211_mesh_init_sdata+0x547/0x650 [ 29.824566] ieee80211_setup_sdata+0xb29/0xf40 [ 29.829144] ieee80211_if_add+0xce0/0x16b0 [ 29.833371] ? kmem_cache_alloc_node_trace+0x383/0x400 [ 29.838658] ieee80211_add_iface+0x89/0x110 [ 29.842959] ? ieee80211_del_iface+0x20/0x20 [ 29.847362] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 29.852795] nl80211_new_interface+0x44b/0x1360 [ 29.857449] ? nl80211_prepare_wdev_dump+0x540/0x540 [ 29.862552] ? nl80211_notify_iface+0x190/0x190 [ 29.867218] ? nl80211_pre_doit+0x79/0x510 [ 29.871449] genl_family_rcv_msg+0x572/0xb20 [ 29.875858] ? genl_rcv+0x40/0x40 [ 29.879303] ? __ww_mutex_wakeup_for_backoff+0x210/0x210 [ 29.884742] ? trace_hardirqs_on+0x10/0x10 [ 29.888972] ? sock_sendmsg+0xb5/0x100 [ 29.892847] genl_rcv_msg+0xaf/0x140 [ 29.896543] netlink_rcv_skb+0x125/0x390 [ 29.900596] ? genl_family_rcv_msg+0xb20/0xb20 [ 29.905184] ? netlink_ack+0x9a0/0x9a0 [ 29.909055] ? lock_acquire+0x170/0x3f0 [ 29.913014] genl_rcv+0x24/0x40 [ 29.916274] netlink_unicast+0x437/0x610 [ 29.920315] ? netlink_sendskb+0xd0/0xd0 [ 29.924360] ? __check_object_size+0x179/0x22c [ 29.928931] netlink_sendmsg+0x62e/0xb80 [ 29.932977] ? nlmsg_notify+0x170/0x170 [ 29.936939] ? kernel_recvmsg+0x210/0x210 [ 29.941173] ? security_socket_sendmsg+0x83/0xb0 [ 29.945932] ? nlmsg_notify+0x170/0x170 [ 29.949908] sock_sendmsg+0xb5/0x100 [ 29.953604] ___sys_sendmsg+0x6c8/0x800 [ 29.957564] ? get_pid_task+0x91/0x130 [ 29.961434] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 29.970087] ? lock_downgrade+0x740/0x740 [ 29.974235] ? proc_fail_nth_write+0x7b/0x180 [ 29.978708] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 29.983634] ? fsnotify+0x974/0x11b0 [ 29.987335] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 29.992267] ? debug_check_no_obj_freed+0x2c0/0x674 [ 29.997299] ? vfs_write+0x35d/0x4d0 [ 30.000994] ? __fdget+0x167/0x1f0 [ 30.004517] ? sockfd_lookup_light+0xb2/0x160 [ 30.008999] __sys_sendmsg+0xa3/0x120 [ 30.012792] ? SyS_shutdown+0x160/0x160 [ 30.016761] ? SyS_read+0x210/0x210 [ 30.020386] SyS_sendmsg+0x27/0x40 [ 30.023910] ? __sys_sendmsg+0x120/0x120 [ 30.027952] do_syscall_64+0x1d5/0x640 [ 30.031835] entry_SYSCALL_64_after_hwframe+0x46/0xbb executing program [ 30.037008] RIP: 0033:0x441869 [ 30.040283] RSP: 002b:00007ffdad47d758 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 30.048157] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441869 [ 30.055409] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 30.062662] RBP: 00007ffdad47d770 R08: 0000000000000002 R09: 0000000000000000 [ 30.069957] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 30.077225] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 30.092653] FAULT_INJECTION: forcing a failure. [ 30.092653] name failslab, interval 1, probability 0, space 0, times 0 [ 30.104062] CPU: 1 PID: 7991 Comm: syz-executor387 Not tainted 4.14.205-syzkaller #0 [ 30.111958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 30.121295] Call Trace: [ 30.123868] dump_stack+0x1b2/0x283 [ 30.127510] should_fail.cold+0x10a/0x154 [ 30.131638] should_failslab+0xd6/0x130 [ 30.135602] kmem_cache_alloc_node_trace+0x25a/0x400 [ 30.140708] __kmalloc_node+0x38/0x70 [ 30.144515] kvmalloc_node+0x46/0xd0 [ 30.148215] bucket_table_alloc+0x3a5/0x5d0 [ 30.152519] rhashtable_init+0x3e2/0x7a0 [ 30.156569] mesh_pathtbl_init+0x180/0x290 [ 30.160789] ieee80211_mesh_init_sdata+0x2b4/0x650 [ 30.165719] ieee80211_setup_sdata+0xb29/0xf40 [ 30.170283] ieee80211_if_add+0xce0/0x16b0 [ 30.174500] ? kmem_cache_alloc_node_trace+0x383/0x400 [ 30.179756] ieee80211_add_iface+0x89/0x110 [ 30.184073] ? ieee80211_del_iface+0x20/0x20 [ 30.188464] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 30.193892] nl80211_new_interface+0x44b/0x1360 [ 30.198550] ? nl80211_prepare_wdev_dump+0x540/0x540 [ 30.203633] ? nl80211_notify_iface+0x190/0x190 [ 30.208317] ? nl80211_pre_doit+0x79/0x510 [ 30.212535] genl_family_rcv_msg+0x572/0xb20 [ 30.216956] ? genl_rcv+0x40/0x40 [ 30.220570] ? __ww_mutex_wakeup_for_backoff+0x210/0x210 [ 30.226074] ? trace_hardirqs_on+0x10/0x10 [ 30.230299] ? sock_sendmsg+0xb5/0x100 [ 30.234171] genl_rcv_msg+0xaf/0x140 [ 30.238196] netlink_rcv_skb+0x125/0x390 [ 30.242253] ? genl_family_rcv_msg+0xb20/0xb20 [ 30.246814] ? netlink_ack+0x9a0/0x9a0 [ 30.250687] ? lock_acquire+0x170/0x3f0 [ 30.254646] genl_rcv+0x24/0x40 [ 30.257909] netlink_unicast+0x437/0x610 [ 30.261950] ? netlink_sendskb+0xd0/0xd0 [ 30.266003] ? __check_object_size+0x179/0x22c [ 30.270566] netlink_sendmsg+0x62e/0xb80 [ 30.274622] ? nlmsg_notify+0x170/0x170 [ 30.278575] ? kernel_recvmsg+0x210/0x210 [ 30.282707] ? security_socket_sendmsg+0x83/0xb0 [ 30.287456] ? nlmsg_notify+0x170/0x170 [ 30.291411] sock_sendmsg+0xb5/0x100 [ 30.295576] ___sys_sendmsg+0x6c8/0x800 [ 30.299529] ? get_pid_task+0x91/0x130 [ 30.303393] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 30.308142] ? lock_downgrade+0x740/0x740 [ 30.312272] ? proc_fail_nth_write+0x7b/0x180 [ 30.316747] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 30.321744] ? fsnotify+0x974/0x11b0 [ 30.325436] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 30.330360] ? debug_check_no_obj_freed+0x2c0/0x674 [ 30.335378] ? vfs_write+0x35d/0x4d0 [ 30.339072] ? __fdget+0x167/0x1f0 [ 30.342976] ? sockfd_lookup_light+0xb2/0x160 [ 30.347457] __sys_sendmsg+0xa3/0x120 [ 30.351263] ? SyS_shutdown+0x160/0x160 [ 30.355234] ? SyS_read+0x210/0x210 [ 30.358843] SyS_sendmsg+0x27/0x40 [ 30.362361] ? __sys_sendmsg+0x120/0x120 [ 30.366401] do_syscall_64+0x1d5/0x640 [ 30.370271] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 30.375441] RIP: 0033:0x441869 [ 30.378605] RSP: 002b:00007ffdad47d758 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 30.386317] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441869 executing program [ 30.393571] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 30.400822] RBP: 00007ffdad47d770 R08: 0000000000000002 R09: 0000000000000000 [ 30.408077] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 30.415348] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 30.428435] FAULT_INJECTION: forcing a failure. [ 30.428435] name failslab, interval 1, probability 0, space 0, times 0 [ 30.439820] CPU: 1 PID: 7992 Comm: syz-executor387 Not tainted 4.14.205-syzkaller #0 [ 30.447702] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 30.457049] Call Trace: [ 30.459654] dump_stack+0x1b2/0x283 [ 30.463266] should_fail.cold+0x10a/0x154 [ 30.467444] should_failslab+0xd6/0x130 [ 30.471406] kmem_cache_alloc_node_trace+0x25a/0x400 [ 30.476655] __kmalloc_node+0x38/0x70 [ 30.480440] kvmalloc_node+0x46/0xd0 [ 30.484203] bucket_table_alloc+0x3a5/0x5d0 [ 30.488514] rhashtable_init+0x3e2/0x7a0 [ 30.492563] mesh_pathtbl_init+0x180/0x290 [ 30.496783] ieee80211_mesh_init_sdata+0x2b4/0x650 [ 30.501833] ieee80211_setup_sdata+0xb29/0xf40 [ 30.506405] ieee80211_if_add+0xce0/0x16b0 [ 30.510625] ? kmem_cache_alloc_node_trace+0x383/0x400 [ 30.515881] ieee80211_add_iface+0x89/0x110 [ 30.520180] ? ieee80211_del_iface+0x20/0x20 [ 30.524579] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 30.530345] nl80211_new_interface+0x44b/0x1360 [ 30.535001] ? nl80211_prepare_wdev_dump+0x540/0x540 [ 30.540100] ? nl80211_notify_iface+0x190/0x190 [ 30.544804] ? nl80211_pre_doit+0x79/0x510 [ 30.549029] genl_family_rcv_msg+0x572/0xb20 [ 30.553444] ? genl_rcv+0x40/0x40 [ 30.556888] ? __ww_mutex_wakeup_for_backoff+0x210/0x210 [ 30.562332] ? trace_hardirqs_on+0x10/0x10 [ 30.566579] ? sock_sendmsg+0xb5/0x100 [ 30.570563] genl_rcv_msg+0xaf/0x140 [ 30.574381] netlink_rcv_skb+0x125/0x390 [ 30.578424] ? genl_family_rcv_msg+0xb20/0xb20 [ 30.583005] ? netlink_ack+0x9a0/0x9a0 [ 30.586886] ? lock_acquire+0x170/0x3f0 [ 30.590862] genl_rcv+0x24/0x40 [ 30.594141] netlink_unicast+0x437/0x610 [ 30.598365] ? netlink_sendskb+0xd0/0xd0 [ 30.602444] ? __check_object_size+0x179/0x22c [ 30.607091] netlink_sendmsg+0x62e/0xb80 [ 30.611274] ? nlmsg_notify+0x170/0x170 [ 30.615242] ? kernel_recvmsg+0x210/0x210 [ 30.619380] ? security_socket_sendmsg+0x83/0xb0 [ 30.624118] ? nlmsg_notify+0x170/0x170 [ 30.628079] sock_sendmsg+0xb5/0x100 [ 30.631874] ___sys_sendmsg+0x6c8/0x800 [ 30.635850] ? get_pid_task+0x91/0x130 [ 30.639724] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 30.644468] ? lock_downgrade+0x740/0x740 [ 30.648615] ? proc_fail_nth_write+0x7b/0x180 [ 30.653110] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 30.658021] ? fsnotify+0x974/0x11b0 [ 30.661711] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 30.666631] ? debug_check_no_obj_freed+0x2c0/0x674 [ 30.671688] ? vfs_write+0x35d/0x4d0 [ 30.675408] ? __fdget+0x167/0x1f0 [ 30.678932] ? sockfd_lookup_light+0xb2/0x160 [ 30.683427] __sys_sendmsg+0xa3/0x120 [ 30.687210] ? SyS_shutdown+0x160/0x160 [ 30.691185] ? SyS_read+0x210/0x210 [ 30.694812] SyS_sendmsg+0x27/0x40 [ 30.698433] ? __sys_sendmsg+0x120/0x120 [ 30.702487] do_syscall_64+0x1d5/0x640 [ 30.706355] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 30.711537] RIP: 0033:0x441869 [ 30.714714] RSP: 002b:00007ffdad47d758 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 30.722419] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441869 [ 30.729690] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 30.737119] RBP: 00007ffdad47d770 R08: 0000000000000002 R09: 0000000000000000 executing program [ 30.744375] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 30.751628] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 30.764562] FAULT_INJECTION: forcing a failure. [ 30.764562] name failslab, interval 1, probability 0, space 0, times 0 [ 30.776215] CPU: 1 PID: 7993 Comm: syz-executor387 Not tainted 4.14.205-syzkaller #0 [ 30.784105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 30.793451] Call Trace: [ 30.796031] dump_stack+0x1b2/0x283 [ 30.799642] should_fail.cold+0x10a/0x154 [ 30.803784] should_failslab+0xd6/0x130 [ 30.807756] kmem_cache_alloc_trace+0x47/0x3d0 [ 30.812332] mesh_pathtbl_init+0xf5/0x290 [ 30.816460] ieee80211_mesh_init_sdata+0x2b4/0x650 [ 30.821380] ieee80211_setup_sdata+0xb29/0xf40 [ 30.825945] ieee80211_if_add+0xce0/0x16b0 [ 30.830161] ? kmem_cache_alloc_node_trace+0x383/0x400 [ 30.835436] ieee80211_add_iface+0x89/0x110 [ 30.839754] ? ieee80211_del_iface+0x20/0x20 [ 30.844142] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 30.849571] nl80211_new_interface+0x44b/0x1360 [ 30.854221] ? nl80211_prepare_wdev_dump+0x540/0x540 [ 30.859304] ? nl80211_notify_iface+0x190/0x190 [ 30.863952] ? nl80211_pre_doit+0x79/0x510 [ 30.868176] genl_family_rcv_msg+0x572/0xb20 [ 30.872569] ? genl_rcv+0x40/0x40 [ 30.876003] ? __ww_mutex_wakeup_for_backoff+0x210/0x210 [ 30.881440] ? trace_hardirqs_on+0x10/0x10 [ 30.885677] ? sock_sendmsg+0xb5/0x100 [ 30.889569] genl_rcv_msg+0xaf/0x140 [ 30.893286] netlink_rcv_skb+0x125/0x390 [ 30.897330] ? genl_family_rcv_msg+0xb20/0xb20 [ 30.901917] ? netlink_ack+0x9a0/0x9a0 [ 30.905783] ? lock_acquire+0x170/0x3f0 [ 30.909745] genl_rcv+0x24/0x40 [ 30.913018] netlink_unicast+0x437/0x610 [ 30.917059] ? netlink_sendskb+0xd0/0xd0 [ 30.921097] ? __check_object_size+0x179/0x22c [ 30.925660] netlink_sendmsg+0x62e/0xb80 [ 30.929834] ? nlmsg_notify+0x170/0x170 [ 30.933789] ? kernel_recvmsg+0x210/0x210 [ 30.937918] ? security_socket_sendmsg+0x83/0xb0 [ 30.942655] ? nlmsg_notify+0x170/0x170 [ 30.946613] sock_sendmsg+0xb5/0x100 [ 30.950307] ___sys_sendmsg+0x6c8/0x800 [ 30.954259] ? get_pid_task+0x91/0x130 [ 30.958135] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 30.962877] ? lock_downgrade+0x740/0x740 [ 30.967024] ? proc_fail_nth_write+0x7b/0x180 [ 30.971513] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 30.976430] ? fsnotify+0x974/0x11b0 [ 30.980144] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 30.985051] ? debug_check_no_obj_freed+0x2c0/0x674 [ 30.990048] ? vfs_write+0x35d/0x4d0 [ 30.993751] ? __fdget+0x167/0x1f0 [ 30.997270] ? sockfd_lookup_light+0xb2/0x160 [ 31.001755] __sys_sendmsg+0xa3/0x120 [ 31.005543] ? SyS_shutdown+0x160/0x160 [ 31.009501] ? SyS_read+0x210/0x210 [ 31.013107] SyS_sendmsg+0x27/0x40 [ 31.016648] ? __sys_sendmsg+0x120/0x120 [ 31.020715] do_syscall_64+0x1d5/0x640 [ 31.024590] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 31.029787] RIP: 0033:0x441869 [ 31.032955] RSP: 002b:00007ffdad47d758 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 31.040646] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441869 [ 31.047986] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 31.055945] RBP: 00007ffdad47d770 R08: 0000000000000002 R09: 0000000000000000 [ 31.063205] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 31.070462] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 31.079468] kasan: CONFIG_KASAN_INLINE enabled [ 31.084152] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 31.091512] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 31.097734] Modules linked in: [ 31.100921] CPU: 1 PID: 7993 Comm: syz-executor387 Not tainted 4.14.205-syzkaller #0 [ 31.115468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 31.124821] task: ffff8880b1718380 task.stack: ffff888096348000 [ 31.130874] RIP: 0010:get_work_pool+0x9f/0x140 [ 31.135463] RSP: 0018:ffff88809634f370 EFLAGS: 00010006 [ 31.140823] RAX: dffffc0000000000 RBX: 37363d4d554e5000 RCX: 0000000000000000 [ 31.148068] RDX: 06e6c7a9aaa9ca00 RSI: 00000000ffffffff RDI: 0000000000000082 [ 31.155331] RBP: ffff88809634f3f8 R08: 0000000000000000 R09: 0000000000000000 [ 31.162596] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 31.169856] R13: 0000000000000297 R14: ffffed1012da8b19 R15: ffff8880b1718380 [ 31.177109] FS: 0000000002562880(0000) GS:ffff8880ba500000(0000) knlGS:0000000000000000 [ 31.185332] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 31.191202] CR2: 0000000020005540 CR3: 00000000a196b000 CR4: 00000000001406e0 [ 31.198457] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 31.205720] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 31.212977] Call Trace: [ 31.215545] try_to_grab_pending+0xf2/0x610 [ 31.219858] __cancel_work_timer+0x90/0x460 [ 31.224155] ? work_on_cpu_safe+0x70/0x70 [ 31.228331] ? dump_stack+0x26c/0x283 [ 31.232155] rhashtable_free_and_destroy+0x26/0x710 [ 31.237155] ? mesh_path_tbl_expire.constprop.0+0x1d0/0x1d0 [ 31.242852] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 31.247866] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 31.252714] mesh_pathtbl_init+0x223/0x290 [ 31.256937] ieee80211_mesh_init_sdata+0x2b4/0x650 [ 31.261847] ieee80211_setup_sdata+0xb29/0xf40 [ 31.266427] ieee80211_if_add+0xce0/0x16b0 [ 31.270658] ? kmem_cache_alloc_node_trace+0x383/0x400 [ 31.275911] ieee80211_add_iface+0x89/0x110 [ 31.280211] ? ieee80211_del_iface+0x20/0x20 [ 31.284727] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 31.290190] nl80211_new_interface+0x44b/0x1360 [ 31.294855] ? nl80211_prepare_wdev_dump+0x540/0x540 [ 31.300045] ? nl80211_notify_iface+0x190/0x190 [ 31.304711] ? nl80211_pre_doit+0x79/0x510 [ 31.309710] genl_family_rcv_msg+0x572/0xb20 [ 31.314101] ? genl_rcv+0x40/0x40 [ 31.317535] ? __ww_mutex_wakeup_for_backoff+0x210/0x210 [ 31.322966] ? trace_hardirqs_on+0x10/0x10 [ 31.327196] ? sock_sendmsg+0xb5/0x100 [ 31.331078] genl_rcv_msg+0xaf/0x140 [ 31.334778] netlink_rcv_skb+0x125/0x390 [ 31.338838] ? genl_family_rcv_msg+0xb20/0xb20 [ 31.343412] ? netlink_ack+0x9a0/0x9a0 [ 31.347284] ? lock_acquire+0x170/0x3f0 [ 31.351245] genl_rcv+0x24/0x40 [ 31.354510] netlink_unicast+0x437/0x610 [ 31.358549] ? netlink_sendskb+0xd0/0xd0 [ 31.362588] ? __check_object_size+0x179/0x22c [ 31.367147] netlink_sendmsg+0x62e/0xb80 [ 31.371193] ? nlmsg_notify+0x170/0x170 [ 31.375162] ? kernel_recvmsg+0x210/0x210 [ 31.379297] ? security_socket_sendmsg+0x83/0xb0 [ 31.384030] ? nlmsg_notify+0x170/0x170 [ 31.387983] sock_sendmsg+0xb5/0x100 [ 31.391678] ___sys_sendmsg+0x6c8/0x800 [ 31.395629] ? get_pid_task+0x91/0x130 [ 31.399493] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 31.404241] ? lock_downgrade+0x740/0x740 [ 31.408382] ? proc_fail_nth_write+0x7b/0x180 [ 31.412869] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 31.417776] ? fsnotify+0x974/0x11b0 [ 31.421465] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 31.426414] ? debug_check_no_obj_freed+0x2c0/0x674 [ 31.431426] ? vfs_write+0x35d/0x4d0 [ 31.435123] ? __fdget+0x167/0x1f0 [ 31.438643] ? sockfd_lookup_light+0xb2/0x160 [ 31.443115] __sys_sendmsg+0xa3/0x120 [ 31.446894] ? SyS_shutdown+0x160/0x160 [ 31.450871] ? SyS_read+0x210/0x210 [ 31.454496] SyS_sendmsg+0x27/0x40 [ 31.458013] ? __sys_sendmsg+0x120/0x120 [ 31.462051] do_syscall_64+0x1d5/0x640 [ 31.465917] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 31.471085] RIP: 0033:0x441869 [ 31.474271] RSP: 002b:00007ffdad47d758 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 31.481974] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441869 [ 31.489397] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 31.496648] RBP: 00007ffdad47d770 R08: 0000000000000002 R09: 0000000000000000 [ 31.503906] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 31.511159] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 31.518510] Code: 89 c4 e8 f5 87 20 00 4c 89 e0 5b 41 5c c3 e8 e9 87 20 00 48 81 e3 00 fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 <80> 3c 02 00 0f 85 84 00 00 00 4c 8b 23 e8 bf 87 20 00 5b 4c 89 [ 31.537597] RIP: get_work_pool+0x9f/0x140 RSP: ffff88809634f370 [ 31.543657] ---[ end trace d391c17cfdc57a84 ]--- [ 31.548399] Kernel panic - not syncing: Fatal exception [ 31.554352] Kernel Offset: disabled [ 31.557984] Rebooting in 86400 seconds..