[ OK ] Started Getty on tty2. [ OK ] Started Getty on tty1. [ OK ] Started Serial Getty on ttyS0. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.42' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 70.578292][ T8463] BUG: kernel NULL pointer dereference, address: 0000000000000000 [ 70.578303][ T8463] #PF: supervisor instruction fetch in kernel mode [ 70.578310][ T8463] #PF: error_code(0x0010) - not-present page [ 70.578318][ T8463] PGD 12267067 P4D 12267067 PUD 11841067 PMD 0 [ 70.578338][ T8463] Oops: 0010 [#1] PREEMPT SMP KASAN [ 70.578349][ T8463] CPU: 1 PID: 8463 Comm: syz-executor088 Not tainted 5.11.0-rc3-next-20210115-syzkaller #0 [ 70.578363][ T8463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 70.578371][ T8463] RIP: 0010:0x0 [ 70.578383][ T8463] Code: Unable to access opcode bytes at RIP 0xffffffffffffffd6. [ 70.578389][ T8463] RSP: 0018:ffffc9000132f850 EFLAGS: 00010292 [ 70.578400][ T8463] RAX: 0000000000000007 RBX: 0000000000000000 RCX: 0000000000000007 [ 70.578408][ T8463] RDX: 0000000000000002 RSI: ffff88814394b000 RDI: ffff888010071000 [ 70.578417][ T8463] RBP: ffff888010071000 R08: 0000000000000000 R09: ffffffff83ed87ea [ 70.578426][ T8463] R10: 0000000000000003 R11: 0000000000000018 R12: ffff88814394b000 [ 70.578434][ T8463] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000720 [ 70.578442][ T8463] FS: 0000000000db8880(0000) GS:ffff8880b9f00000(0000) knlGS:0000000000000000 [ 70.578457][ T8463] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 70.578466][ T8463] CR2: ffffffffffffffd6 CR3: 0000000020cd8000 CR4: 00000000001506e0 [ 70.578475][ T8463] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 70.578483][ T8463] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 70.578491][ T8463] Call Trace: [ 70.578495][ T8463] fbcon_cursor+0x50e/0x620 [ 70.578526][ T8463] hide_cursor+0x85/0x280 [ 70.578544][ T8463] redraw_screen+0x5b4/0x740 [ 70.578559][ T8463] ? wait_for_completion_io+0x260/0x260 [ 70.578580][ T8463] ? csi_J+0xab0/0xab0 [ 70.578598][ T8463] vc_do_resize+0xed8/0x1150 [ 70.578618][ T8463] ? vc_init+0x5a0/0x5a0 [ 70.578634][ T8463] ? __sanitizer_cov_trace_cmp4+0x1c/0x70 [ 70.578651][ T8463] fbcon_set_disp+0x7a8/0xe10 [ 70.578665][ T8463] set_con2fb_map+0x7a6/0xf80 [ 70.578679][ T8463] ? drm_fb_helper_blank+0x250/0x250 [ 70.578696][ T8463] fbcon_set_con2fb_map_ioctl+0x165/0x220 [ 70.578711][ T8463] ? fbcon_get_requirement+0x7a0/0x7a0 [ 70.578726][ T8463] ? __sanitizer_cov_trace_switch+0x63/0xf0 [ 70.578742][ T8463] do_fb_ioctl+0x5b6/0x690 [ 70.578758][ T8463] ? fb_getput_cmap+0x270/0x270 [ 70.578773][ T8463] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 70.578793][ T8463] ? kmem_cache_free+0x643/0x740 [ 70.578807][ T8463] ? __sanitizer_cov_trace_switch+0x63/0xf0 [ 70.578822][ T8463] ? __sanitizer_cov_trace_const_cmp2+0x22/0x80 [ 70.578837][ T8463] ? do_vfs_ioctl+0x27d/0x1090 [ 70.578851][ T8463] ? generic_block_fiemap+0x60/0x60 [ 70.578864][ T8463] ? build_open_flags+0x6f0/0x6f0 [ 70.578879][ T8463] ? _down_write_nest_lock+0x150/0x150 [ 70.578893][ T8463] ? __x64_sys_openat+0x13f/0x1f0 [ 70.578907][ T8463] fb_ioctl+0xe7/0x150 [ 70.578922][ T8463] ? do_fb_ioctl+0x690/0x690 [ 70.578937][ T8463] __x64_sys_ioctl+0x193/0x200 [ 70.578951][ T8463] do_syscall_64+0x2d/0x70 [ 70.578965][ T8463] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 70.578983][ T8463] RIP: 0033:0x4402b9 [ 70.578992][ T8463] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 70.579004][ T8463] RSP: 002b:00007ffffae24f88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 70.579017][ T8463] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 00000000004402b9 [ 70.579026][ T8463] RDX: 0000000020000080 RSI: 0000000000004610 RDI: 0000000000000004 [ 70.579034][ T8463] RBP: 00000000006ca018 R08: 00000000004002c8 R09: 00000000004002c8 [ 70.579042][ T8463] R10: 00000000004002c8 R11: 0000000000000246 R12: 0000000000401ac0 [ 70.579050][ T8463] R13: 0000000000401b50 R14: 0000000000000000 R15: 0000000000000000 [ 70.579061][ T8463] Modules linked in: [ 70.579068][ T8463] CR2: 0000000000000000 [ 70.579077][ T8463] ---[ end trace 5adb9f198fe5efa6 ]--- [ 70.579083][ T8463] RIP: 0010:0x0 [ 70.579095][ T8463] Code: Unable to access opcode bytes at RIP 0xffffffffffffffd6. [ 70.579102][ T8463] RSP: 0018:ffffc9000132f850 EFLAGS: 00010292 [ 70.579114][ T8463] RAX: 0000000000000007 RBX: 0000000000000000 RCX: 0000000000000007 [ 70.579123][ T8463] RDX: 0000000000000002 RSI: ffff88814394b000 RDI: ffff888010071000 [ 70.579132][ T8463] RBP: ffff888010071000 R08: 0000000000000000 R09: ffffffff83ed87ea [ 70.579141][ T8463] R10: 0000000000000003 R11: 0000000000000018 R12: ffff88814394b000 [ 70.579149][ T8463] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000720 [ 70.579157][ T8463] FS: 0000000000db8880(0000) GS:ffff8880b9f00000(0000) knlGS:0000000000000000 [ 70.579172][ T8463] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 70.579181][ T8463] CR2: ffffffffffffffd6 CR3: 0000000020cd8000 CR4: 00000000001506e0 [ 70.579190][ T8463] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 70.579198][ T8463] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 70.579207][ T8463] Kernel panic - not syncing: Fatal exception [ 70.579830][ T8463] Kernel Offset: disabled [ 71.072564][ T8463] Rebooting in 86400 seconds..