binder: 28645:28646 ioctl c0306201 20000fd0 returned -14 BUG: sleeping function called from invalid context at net/core/sock.c:2761 in_atomic(): 1, irqs_disabled(): 0, pid: 1305, name: kworker/1:2 2 locks held by kworker/1:2/1305: #0: ((wq_completion)"%s"name){+.+.}, at: [] __write_once_size include/linux/compiler.h:212 [inline] #0: ((wq_completion)"%s"name){+.+.}, at: [] atomic64_set arch/x86/include/asm/atomic64_64.h:34 [inline] #0: ((wq_completion)"%s"name){+.+.}, at: [] atomic_long_set include/asm-generic/atomic-long.h:57 [inline] #0: ((wq_completion)"%s"name){+.+.}, at: [] set_work_data kernel/workqueue.c:618 [inline] #0: ((wq_completion)"%s"name){+.+.}, at: [] set_work_pool_and_clear_pending kernel/workqueue.c:645 [inline] #0: ((wq_completion)"%s"name){+.+.}, at: [] process_one_work+0xad4/0x1be0 kernel/workqueue.c:2083 #1: ((work_completion)(&squeue->work)){+.+.}, at: [] process_one_work+0xb2f/0x1be0 kernel/workqueue.c:2087 CPU: 1 PID: 1305 Comm: kworker/1:2 Not tainted 4.15.0-rc1+ #198 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Workqueue: pencrypt padata_serial_worker Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x194/0x257 lib/dump_stack.c:53 ___might_sleep+0x2b2/0x470 kernel/sched/core.c:6060 __might_sleep+0x95/0x190 kernel/sched/core.c:6013 lock_sock_nested+0x37/0x110 net/core/sock.c:2761 lock_sock include/net/sock.h:1465 [inline] af_alg_async_cb+0x86/0x1a0 crypto/af_alg.c:1039 aead_request_complete include/crypto/internal/aead.h:75 [inline] pcrypt_aead_serial+0x75/0xa0 crypto/pcrypt.c:123 padata_serial_worker+0x476/0x750 kernel/padata.c:348 process_one_work+0xbfd/0x1be0 kernel/workqueue.c:2112 worker_thread+0x223/0x1990 kernel/workqueue.c:2246 kthread+0x37a/0x440 kernel/kthread.c:238 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:441 binder: 28709 RLIMIT_NICE not set binder: 28704:28709 BC_DEAD_BINDER_DONE 0000000000000000 not found binder: undelivered death notification, 0000000000000000 binder: undelivered death notification, 0000000000000000 binder: 28719:28724 BC_DEAD_BINDER_DONE fffffffffffffffd not found binder: 28719:28724 BC_ACQUIRE_DONE uffffffffffffffff no match nla_parse: 2 callbacks suppressed netlink: 8 bytes leftover after parsing attributes in process `syz-executor5'. binder: 28719:28724 BC_DEAD_BINDER_DONE fffffffffffffffd not found binder: 28719:28724 BC_ACQUIRE_DONE uffffffffffffffff no match binder: BINDER_SET_CONTEXT_MGR already set binder: 28719:28724 ioctl 40046207 0 returned -16 netlink: 8 bytes leftover after parsing attributes in process `syz-executor5'. kauditd_printk_skb: 59 callbacks suppressed audit: type=1326 audit(1511914349.760:5805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=kernel pid=28758 comm="syz-executor7" exe="/root/syz-executor7" sig=31 arch=c000003e syscall=202 compat=0 ip=0x4529d9 code=0xffff0000 netlink: 5 bytes leftover after parsing attributes in process `syz-executor5'. netlink: 5 bytes leftover after parsing attributes in process `syz-executor5'. QAT: Invalid ioctl QAT: Invalid ioctl QAT: Invalid ioctl SELinux: unrecognized netlink message: protocol=4 nlmsg_type=1545 sclass=netlink_tcpdiag_socket pig=28897 comm=syz-executor4 netlink: 9 bytes leftover after parsing attributes in process `syz-executor7'. syz-executor2: vmalloc: allocation failure: 17179386168 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null) syz-executor2 cpuset=/ mems_allowed=0 CPU: 0 PID: 28915 Comm: syz-executor2 Tainted: G W 4.15.0-rc1+ #198 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x194/0x257 lib/dump_stack.c:53 warn_alloc+0x19a/0x2b0 mm/page_alloc.c:3292 __vmalloc_node_range+0x4f0/0x650 mm/vmalloc.c:1775 __vmalloc_node mm/vmalloc.c:1804 [inline] __vmalloc_node_flags_caller+0x50/0x60 mm/vmalloc.c:1826 kvmalloc_node+0x82/0xd0 mm/util.c:406 kvmalloc include/linux/mm.h:540 [inline] kvmalloc_array include/linux/mm.h:556 [inline] xt_alloc_entry_offsets+0x21/0x30 net/netfilter/x_tables.c:774 translate_table+0x235/0x1690 net/ipv6/netfilter/ip6_tables.c:705 do_replace net/ipv6/netfilter/ip6_tables.c:1168 [inline] do_ip6t_set_ctl+0x34b/0x5c0 net/ipv6/netfilter/ip6_tables.c:1694 nf_sockopt net/netfilter/nf_sockopt.c:106 [inline] nf_setsockopt+0x67/0xc0 net/netfilter/nf_sockopt.c:115 ipv6_setsockopt+0x115/0x150 net/ipv6/ipv6_sockglue.c:927 tcp_setsockopt+0x82/0xd0 net/ipv4/tcp.c:2871 sock_common_setsockopt+0x95/0xd0 net/core/sock.c:2968 SYSC_setsockopt net/socket.c:1851 [inline] SyS_setsockopt+0x189/0x360 net/socket.c:1830 entry_SYSCALL_64_fastpath+0x1f/0x96 RIP: 0033:0x4529d9 RSP: 002b:00007f231e229c58 EFLAGS: 00000212 ORIG_RAX: 0000000000000036 RAX: ffffffffffffffda RBX: 0000000000758020 RCX: 00000000004529d9 RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000013 RBP: 000000000000039b R08: 0000000000000004 R09: 0000000000000000 R10: 0000000020001fde R11: 0000000000000212 R12: 00000000006f2728 R13: 00000000ffffffff R14: 00007f231e22a6d4 R15: 0000000000000000 warn_alloc_show_mem: 2 callbacks suppressed Mem-Info: active_anon:132827 inactive_anon:43 isolated_anon:0 active_file:4163 inactive_file:7607 isolated_file:0 unevictable:0 dirty:129 writeback:0 unstable:0 slab_reclaimable:8544 slab_unreclaimable:99736 mapped:22915 shmem:69 pagetables:995 bounce:0 free:1350234 free_pcp:530 free_cma:0 Node 0 active_anon:531308kB inactive_anon:172kB active_file:16652kB inactive_file:30428kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:91660kB dirty:516kB writeback:0kB shmem:276kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 51200kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no Node 0 DMA free:15908kB min:160kB low:200kB high:240kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB lowmem_reserve[]: 0 2882 6395 6395 Node 0 DMA32 free:2940284kB min:30384kB low:37980kB high:45576kB active_anon:4096kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2953952kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:1324kB local_pcp:740kB free_cma:0kB lowmem_reserve[]: 0 0 3513 3513 Node 0 Normal free:2444744kB min:37032kB low:46288kB high:55544kB active_anon:527212kB inactive_anon:172kB active_file:16652kB inactive_file:30428kB unevictable:0kB writepending:516kB present:4718592kB managed:3597640kB mlocked:0kB kernel_stack:4736kB pagetables:3980kB bounce:0kB free_pcp:796kB local_pcp:328kB free_cma:0kB lowmem_reserve[]: 0 0 0 0 Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB Node 0 DMA32: 43*4kB (UM) 40*8kB (UM) 45*16kB (UM) 42*32kB (U) 44*64kB (UM) 37*128kB (UM) 46*256kB (UM) 44*512kB (UM) 44*1024kB (UM) 8*2048kB (U) 692*4096kB (UM) = 2940284kB Node 0 Normal: 3430*4kB (UME) 5416*8kB (UME) 2823*16kB (UME) 1562*32kB (UME) 2061*64kB (UME) 244*128kB (ME) 160*256kB (UME) 65*512kB (ME) 63*1024kB (UME) 30*2048kB (UE) 471*4096kB (UM) = 2444744kB Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 11838 total pagecache pages 0 pages in swap cache Swap cache stats: add 0, delete 0, find 0/0 Free swap = 0kB Total swap = 0kB 1965979 pages RAM 0 pages HighMem/MovableOnly 324104 pages reserved syz-executor2: vmalloc: allocation failure: 17179386168 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null) syz-executor2 cpuset=/ mems_allowed=0 CPU: 0 PID: 28915 Comm: syz-executor2 Tainted: G W 4.15.0-rc1+ #198 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x194/0x257 lib/dump_stack.c:53 warn_alloc+0x19a/0x2b0 mm/page_alloc.c:3292 __vmalloc_node_range+0x4f0/0x650 mm/vmalloc.c:1775 __vmalloc_node mm/vmalloc.c:1804 [inline] __vmalloc_node_flags_caller+0x50/0x60 mm/vmalloc.c:1826 kvmalloc_node+0x82/0xd0 mm/util.c:406 kvmalloc include/linux/mm.h:540 [inline] kvmalloc_array include/linux/mm.h:556 [inline] xt_alloc_entry_offsets+0x21/0x30 net/netfilter/x_tables.c:774 translate_table+0x235/0x1690 net/ipv6/netfilter/ip6_tables.c:705 do_replace net/ipv6/netfilter/ip6_tables.c:1168 [inline] do_ip6t_set_ctl+0x34b/0x5c0 net/ipv6/netfilter/ip6_tables.c:1694 nf_sockopt net/netfilter/nf_sockopt.c:106 [inline] nf_setsockopt+0x67/0xc0 net/netfilter/nf_sockopt.c:115 ipv6_setsockopt+0x115/0x150 net/ipv6/ipv6_sockglue.c:927 tcp_setsockopt+0x82/0xd0 net/ipv4/tcp.c:2871 sock_common_setsockopt+0x95/0xd0 net/core/sock.c:2968 SYSC_setsockopt net/socket.c:1851 [inline] SyS_setsockopt+0x189/0x360 net/socket.c:1830 entry_SYSCALL_64_fastpath+0x1f/0x96 RIP: 0033:0x4529d9 RSP: 002b:00007f231e229c58 EFLAGS: 00000212 ORIG_RAX: 0000000000000036 RAX: ffffffffffffffda RBX: 0000000000758020 RCX: 00000000004529d9 RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000014 RBP: 0000000000000499 R08: 0000000000000004 R09: 0000000000000000 R10: 0000000020001fde R11: 0000000000000212 R12: 00000000006f3ef8 R13: 00000000ffffffff R14: 00007f231e22a6d4 R15: 0000000000000000 SELinux: unrecognized netlink message: protocol=4 nlmsg_type=1545 sclass=netlink_tcpdiag_socket pig=28914 comm=syz-executor4 syz-executor2: vmalloc: allocation failure: 17179386168 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null) syz-executor2 cpuset=/ mems_allowed=0 CPU: 1 PID: 28931 Comm: syz-executor2 Tainted: G W 4.15.0-rc1+ #198 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x194/0x257 lib/dump_stack.c:53 warn_alloc+0x19a/0x2b0 mm/page_alloc.c:3292 __vmalloc_node_range+0x4f0/0x650 mm/vmalloc.c:1775 __vmalloc_node mm/vmalloc.c:1804 [inline] __vmalloc_node_flags_caller+0x50/0x60 mm/vmalloc.c:1826 kvmalloc_node+0x82/0xd0 mm/util.c:406 kvmalloc include/linux/mm.h:540 [inline] kvmalloc_array include/linux/mm.h:556 [inline] xt_alloc_entry_offsets+0x21/0x30 net/netfilter/x_tables.c:774 translate_table+0x235/0x1690 net/ipv6/netfilter/ip6_tables.c:705 do_replace net/ipv6/netfilter/ip6_tables.c:1168 [inline] do_ip6t_set_ctl+0x34b/0x5c0 net/ipv6/netfilter/ip6_tables.c:1694 nf_sockopt net/netfilter/nf_sockopt.c:106 [inline] nf_setsockopt+0x67/0xc0 net/netfilter/nf_sockopt.c:115 ipv6_setsockopt+0x115/0x150 net/ipv6/ipv6_sockglue.c:927 tcp_setsockopt+0x82/0xd0 net/ipv4/tcp.c:2871 sock_common_setsockopt+0x95/0xd0 net/core/sock.c:2968 SYSC_setsockopt net/socket.c:1851 [inline] SyS_setsockopt+0x189/0x360 net/socket.c:1830 entry_SYSCALL_64_fastpath+0x1f/0x96 RIP: 0033:0x4529d9 RSP: 002b:00007f231e1e7c58 EFLAGS: 00000212 ORIG_RAX: 0000000000000036 RAX: ffffffffffffffda RBX: 0000000000758190 RCX: 00000000004529d9 RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000013 RBP: 0000000000000493 R08: 0000000000000004 R09: 0000000000000000 R10: 0000000020001fde R11: 0000000000000212 R12: 00000000006f3e68 R13: 00000000ffffffff R14: 00007f231e1e86d4 R15: 0000000000000004 netlink: 9 bytes leftover after parsing attributes in process `syz-executor7'. syz-executor2: vmalloc: allocation failure: 17179386168 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null) syz-executor2 cpuset=/ mems_allowed=0 CPU: 1 PID: 28924 Comm: syz-executor2 Tainted: G W 4.15.0-rc1+ #198 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x194/0x257 lib/dump_stack.c:53 warn_alloc+0x19a/0x2b0 mm/page_alloc.c:3292 __vmalloc_node_range+0x4f0/0x650 mm/vmalloc.c:1775 __vmalloc_node mm/vmalloc.c:1804 [inline] __vmalloc_node_flags_caller+0x50/0x60 mm/vmalloc.c:1826 kvmalloc_node+0x82/0xd0 mm/util.c:406 kvmalloc include/linux/mm.h:540 [inline] kvmalloc_array include/linux/mm.h:556 [inline] xt_alloc_entry_offsets+0x21/0x30 net/netfilter/x_tables.c:774 translate_table+0x235/0x1690 net/ipv6/netfilter/ip6_tables.c:705 do_replace net/ipv6/netfilter/ip6_tables.c:1168 [inline] do_ip6t_set_ctl+0x34b/0x5c0 net/ipv6/netfilter/ip6_tables.c:1694 nf_sockopt net/netfilter/nf_sockopt.c:106 [inline] nf_setsockopt+0x67/0xc0 net/netfilter/nf_sockopt.c:115 ipv6_setsockopt+0x115/0x150 net/ipv6/ipv6_sockglue.c:927 tcp_setsockopt+0x82/0xd0 net/ipv4/tcp.c:2871 sock_common_setsockopt+0x95/0xd0 net/core/sock.c:2968 SYSC_setsockopt net/socket.c:1851 [inline] SyS_setsockopt+0x189/0x360 net/socket.c:1830 entry_SYSCALL_64_fastpath+0x1f/0x96 RIP: 0033:0x4529d9 RSP: 002b:00007f231e208c58 EFLAGS: 00000212 ORIG_RAX: 0000000000000036 RAX: ffffffffffffffda RBX: 00000000007580d8 RCX: 00000000004529d9 RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000017 RBP: 0000000000000106 R08: 0000000000000004 R09: 0000000000000000 R10: 0000000020001fde R11: 0000000000000212 R12: 00000000006ee930 R13: 00000000ffffffff R14: 00007f231e2096d4 R15: 0000000000000016 syz-executor2: vmalloc: allocation failure: 17179386168 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null) syz-executor2 cpuset=/ mems_allowed=0 CPU: 1 PID: 28947 Comm: syz-executor2 Tainted: G W 4.15.0-rc1+ #198 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x194/0x257 lib/dump_stack.c:53 warn_alloc+0x19a/0x2b0 mm/page_alloc.c:3292 __vmalloc_node_range+0x4f0/0x650 mm/vmalloc.c:1775 __vmalloc_node mm/vmalloc.c:1804 [inline] __vmalloc_node_flags_caller+0x50/0x60 mm/vmalloc.c:1826 kvmalloc_node+0x82/0xd0 mm/util.c:406 kvmalloc include/linux/mm.h:540 [inline] kvmalloc_array include/linux/mm.h:556 [inline] xt_alloc_entry_offsets+0x21/0x30 net/netfilter/x_tables.c:774 translate_table+0x235/0x1690 net/ipv6/netfilter/ip6_tables.c:705 do_replace net/ipv6/netfilter/ip6_tables.c:1168 [inline] do_ip6t_set_ctl+0x34b/0x5c0 net/ipv6/netfilter/ip6_tables.c:1694 nf_sockopt net/netfilter/nf_sockopt.c:106 [inline] nf_setsockopt+0x67/0xc0 net/netfilter/nf_sockopt.c:115 ipv6_setsockopt+0x115/0x150 net/ipv6/ipv6_sockglue.c:927 tcp_setsockopt+0x82/0xd0 net/ipv4/tcp.c:2871 sock_common_setsockopt+0x95/0xd0 net/core/sock.c:2968 SYSC_setsockopt net/socket.c:1851 [inline] SyS_setsockopt+0x189/0x360 net/socket.c:1830 entry_SYSCALL_64_fastpath+0x1f/0x96 RIP: 0033:0x4529d9 RSP: 002b:00007f231e229c58 EFLAGS: 00000212 ORIG_RAX: 0000000000000036 RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 00000000004529d9 RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000013 RBP: 0000000000758020 R08: 0000000000000004 R09: 0000000000000000 R10: 0000000020001fde R11: 0000000000000212 R12: 00000000006f1cc0 R13: 00000000ffffffff R14: 00007f231e22a6d4 R15: 0000000000000000 device lo entered promiscuous mode IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready syz-executor2: vmalloc: allocation failure: 17179386168 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null) syz-executor2 cpuset=/ mems_allowed=0 CPU: 0 PID: 28947 Comm: syz-executor2 Tainted: G W 4.15.0-rc1+ #198 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x194/0x257 lib/dump_stack.c:53 warn_alloc+0x19a/0x2b0 mm/page_alloc.c:3292 __vmalloc_node_range+0x4f0/0x650 mm/vmalloc.c:1775 __vmalloc_node mm/vmalloc.c:1804 [inline] __vmalloc_node_flags_caller+0x50/0x60 mm/vmalloc.c:1826 kvmalloc_node+0x82/0xd0 mm/util.c:406 kvmalloc include/linux/mm.h:540 [inline] kvmalloc_array include/linux/mm.h:556 [inline] xt_alloc_entry_offsets+0x21/0x30 net/netfilter/x_tables.c:774 translate_table+0x235/0x1690 net/ipv6/netfilter/ip6_tables.c:705 do_replace net/ipv6/netfilter/ip6_tables.c:1168 [inline] do_ip6t_set_ctl+0x34b/0x5c0 net/ipv6/netfilter/ip6_tables.c:1694 nf_sockopt net/netfilter/nf_sockopt.c:106 [inline] nf_setsockopt+0x67/0xc0 net/netfilter/nf_sockopt.c:115 ipv6_setsockopt+0x115/0x150 net/ipv6/ipv6_sockglue.c:927 tcp_setsockopt+0x82/0xd0 net/ipv4/tcp.c:2871 sock_common_setsockopt+0x95/0xd0 net/core/sock.c:2968 SYSC_setsockopt net/socket.c:1851 [inline] SyS_setsockopt+0x189/0x360 net/socket.c:1830 entry_SYSCALL_64_fastpath+0x1f/0x96 RIP: 0033:0x4529d9 RSP: 002b:00007f231e229c58 EFLAGS: 00000212 ORIG_RAX: 0000000000000036 RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 00000000004529d9 RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000014 RBP: 0000000000758020 R08: 0000000000000004 R09: 0000000000000000 R10: 0000000020001fde R11: 0000000000000212 R12: 00000000006f1cc0 R13: 00000000ffffffff R14: 00007f231e22a6d4 R15: 0000000000000000 syz-executor2: vmalloc: allocation failure: 17179386168 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null) syz-executor2 cpuset=/ mems_allowed=0 CPU: 1 PID: 28963 Comm: syz-executor2 Tainted: G W 4.15.0-rc1+ #198 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x194/0x257 lib/dump_stack.c:53 warn_alloc+0x19a/0x2b0 mm/page_alloc.c:3292 __vmalloc_node_range+0x4f0/0x650 mm/vmalloc.c:1775 __vmalloc_node mm/vmalloc.c:1804 [inline] __vmalloc_node_flags_caller+0x50/0x60 mm/vmalloc.c:1826 kvmalloc_node+0x82/0xd0 mm/util.c:406 kvmalloc include/linux/mm.h:540 [inline] kvmalloc_array include/linux/mm.h:556 [inline] xt_alloc_entry_offsets+0x21/0x30 net/netfilter/x_tables.c:774 translate_table+0x235/0x1690 net/ipv6/netfilter/ip6_tables.c:705 do_replace net/ipv6/netfilter/ip6_tables.c:1168 [inline] do_ip6t_set_ctl+0x34b/0x5c0 net/ipv6/netfilter/ip6_tables.c:1694 nf_sockopt net/netfilter/nf_sockopt.c:106 [inline] nf_setsockopt+0x67/0xc0 net/netfilter/nf_sockopt.c:115 ipv6_setsockopt+0x115/0x150 net/ipv6/ipv6_sockglue.c:927 tcp_setsockopt+0x82/0xd0 net/ipv4/tcp.c:2871 sock_common_setsockopt+0x95/0xd0 net/core/sock.c:2968 SYSC_setsockopt net/socket.c:1851 [inline] SyS_setsockopt+0x189/0x360 net/socket.c:1830 entry_SYSCALL_64_fastpath+0x1f/0x96 RIP: 0033:0x4529d9 RSP: 002b:00007f231e1e7c58 EFLAGS: 00000212 ORIG_RAX: 0000000000000036 RAX: ffffffffffffffda RBX: 0000000000758190 RCX: 00000000004529d9 RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000013 RBP: 0000000000000493 R08: 0000000000000004 R09: 0000000000000000 R10: 0000000020001fde R11: 0000000000000212 R12: 00000000006f3e68 R13: 00000000ffffffff R14: 00007f231e1e86d4 R15: 0000000000000004 syz-executor2: vmalloc: allocation failure: 17179386168 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null) syz-executor2 cpuset=/ mems_allowed=0 CPU: 1 PID: 28963 Comm: syz-executor2 Tainted: G W 4.15.0-rc1+ #198 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x194/0x257 lib/dump_stack.c:53 warn_alloc+0x19a/0x2b0 mm/page_alloc.c:3292 __vmalloc_node_range+0x4f0/0x650 mm/vmalloc.c:1775 __vmalloc_node mm/vmalloc.c:1804 [inline] __vmalloc_node_flags_caller+0x50/0x60 mm/vmalloc.c:1826 kvmalloc_node+0x82/0xd0 mm/util.c:406 kvmalloc include/linux/mm.h:540 [inline] kvmalloc_array include/linux/mm.h:556 [inline] xt_alloc_entry_offsets+0x21/0x30 net/netfilter/x_tables.c:774 translate_table+0x235/0x1690 net/ipv6/netfilter/ip6_tables.c:705 do_replace net/ipv6/netfilter/ip6_tables.c:1168 [inline] do_ip6t_set_ctl+0x34b/0x5c0 net/ipv6/netfilter/ip6_tables.c:1694 nf_sockopt net/netfilter/nf_sockopt.c:106 [inline] nf_setsockopt+0x67/0xc0 net/netfilter/nf_sockopt.c:115 ipv6_setsockopt+0x115/0x150 net/ipv6/ipv6_sockglue.c:927 tcp_setsockopt+0x82/0xd0 net/ipv4/tcp.c:2871 sock_common_setsockopt+0x95/0xd0 net/core/sock.c:2968 SYSC_setsockopt net/socket.c:1851 [inline] SyS_setsockopt+0x189/0x360 net/socket.c:1830 entry_SYSCALL_64_fastpath+0x1f/0x96 RIP: 0033:0x4529d9 RSP: 002b:00007f231e1e7c58 EFLAGS: 00000212 ORIG_RAX: 0000000000000036 RAX: ffffffffffffffda RBX: 0000000000758190 RCX: 00000000004529d9 RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000017 RBP: 00000000000000fc R08: 0000000000000004 R09: 0000000000000000 R10: 0000000020001fde R11: 0000000000000212 R12: 00000000006ee840 R13: 00000000ffffffff R14: 00007f231e1e86d4 R15: 0000000000000004 syz-executor2: vmalloc: allocation failure: 17179386168 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null) syz-executor2 cpuset=/ mems_allowed=0 CPU: 1 PID: 29001 Comm: syz-executor2 Tainted: G W 4.15.0-rc1+ #198 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x194/0x257 lib/dump_stack.c:53 warn_alloc+0x19a/0x2b0 mm/page_alloc.c:3292 __vmalloc_node_range+0x4f0/0x650 mm/vmalloc.c:1775 __vmalloc_node mm/vmalloc.c:1804 [inline] __vmalloc_node_flags_caller+0x50/0x60 mm/vmalloc.c:1826 kvmalloc_node+0x82/0xd0 mm/util.c:406 kvmalloc include/linux/mm.h:540 [inline] kvmalloc_array include/linux/mm.h:556 [inline] xt_alloc_entry_offsets+0x21/0x30 net/netfilter/x_tables.c:774 translate_table+0x235/0x1690 net/ipv6/netfilter/ip6_tables.c:705 do_replace net/ipv6/netfilter/ip6_tables.c:1168 [inline] do_ip6t_set_ctl+0x34b/0x5c0 net/ipv6/netfilter/ip6_tables.c:1694 nf_sockopt net/netfilter/nf_sockopt.c:106 [inline] nf_setsockopt+0x67/0xc0 net/netfilter/nf_sockopt.c:115 ipv6_setsockopt+0x115/0x150 net/ipv6/ipv6_sockglue.c:927 tcp_setsockopt+0x82/0xd0 net/ipv4/tcp.c:2871 sock_common_setsockopt+0x95/0xd0 net/core/sock.c:2968 SYSC_setsockopt net/socket.c:1851 [inline] SyS_setsockopt+0x189/0x360 net/socket.c:1830 entry_SYSCALL_64_fastpath+0x1f/0x96 RIP: 0033:0x4529d9 RSP: 002b:00007f231e229c58 EFLAGS: 00000212 ORIG_RAX: 0000000000000036 RAX: ffffffffffffffda RBX: 0000000000758020 RCX: 00000000004529d9 RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000013 RBP: 000000000000039b R08: 0000000000000004 R09: 0000000000000000 R10: 0000000020001fde R11: 0000000000000212 R12: 00000000006f2728 R13: 00000000ffffffff R14: 00007f231e22a6d4 R15: 0000000000000000 warn_alloc_show_mem: 7 callbacks suppressed Mem-Info: netlink: 8 bytes leftover after parsing attributes in process `syz-executor6'. netlink: 8 bytes leftover after parsing attributes in process `syz-executor6'. syz-executor2: vmalloc: allocation failure: 17179386168 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null) syz-executor2 cpuset=/ mems_allowed=0 CPU: 0 PID: 29026 Comm: syz-executor2 Tainted: G W 4.15.0-rc1+ #198 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x194/0x257 lib/dump_stack.c:53 warn_alloc+0x19a/0x2b0 mm/page_alloc.c:3292 __vmalloc_node_range+0x4f0/0x650 mm/vmalloc.c:1775 __vmalloc_node mm/vmalloc.c:1804 [inline] __vmalloc_node_flags_caller+0x50/0x60 mm/vmalloc.c:1826 kvmalloc_node+0x82/0xd0 mm/util.c:406 kvmalloc include/linux/mm.h:540 [inline] kvmalloc_array include/linux/mm.h:556 [inline] xt_alloc_entry_offsets+0x21/0x30 net/netfilter/x_tables.c:774 translate_table+0x235/0x1690 net/ipv6/netfilter/ip6_tables.c:705 do_replace net/ipv6/netfilter/ip6_tables.c:1168 [inline] do_ip6t_set_ctl+0x34b/0x5c0 net/ipv6/netfilter/ip6_tables.c:1694 nf_sockopt net/netfilter/nf_sockopt.c:106 [inline] nf_setsockopt+0x67/0xc0 net/netfilter/nf_sockopt.c:115 ipv6_setsockopt+0x115/0x150 net/ipv6/ipv6_sockglue.c:927 tcp_setsockopt+0x82/0xd0 net/ipv4/tcp.c:2871 sock_common_setsockopt+0x95/0xd0 net/core/sock.c:2968 SYSC_setsockopt net/socket.c:1851 [inline] SyS_setsockopt+0x189/0x360 net/socket.c:1830 entry_SYSCALL_64_fastpath+0x1f/0x96 RIP: 0033:0x4529d9 RSP: 002b:00007f231e1e7c58 EFLAGS: 00000212 ORIG_RAX: 0000000000000036 RAX: ffffffffffffffda RBX: 0000000000758190 RCX: 00000000004529d9 RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000014 RBP: 00000000000004e4 R08: 0000000000000004 R09: 0000000000000000 R10: 0000000020001fde R11: 0000000000000212 R12: 00000000006f4600 R13: 00000000ffffffff R14: 00007f231e1e86d4 R15: 000000000000000e QAT: Invalid ioctl QAT: Invalid ioctl QAT: Invalid ioctl QAT: Invalid ioctl binder: 29003:29008 transaction failed 29189/-22, size 0-0 line 2755 Started in network mode Own node address <64.2289.2267>, network identity 4711 binder: 29003:29008 transaction failed 29189/-22, size 0-0 line 2755 binder: undelivered TRANSACTION_ERROR: 29189 binder: undelivered TRANSACTION_ERROR: 29189 active_anon:119685 inactive_anon:49 isolated_anon:0 active_file:4165 inactive_file:7654 isolated_file:0 unevictable:0 dirty:178 writeback:0 unstable:0 slab_reclaimable:8953 slab_unreclaimable:102383 mapped:22917 shmem:75 pagetables:835 bounce:0 free:1362088 free_pcp:636 free_cma:0 Node 0 active_anon:478740kB inactive_anon:196kB active_file:16660kB inactive_file:30616kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:91668kB dirty:712kB writeback:0kB shmem:300kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 69632kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no Node 0 DMA free:15908kB min:160kB low:200kB high:240kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB lowmem_reserve[]: 0 2882 6395 6395 Node 0 DMA32 free:2940284kB min:30384kB low:37980kB high:45576kB active_anon:4096kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2953952kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:1320kB local_pcp:600kB free_cma:0kB lowmem_reserve[]: 0 0 3513 3513 Node 0 Normal free:2492160kB min:37032kB low:46288kB high:55544kB active_anon:474644kB inactive_anon:196kB active_file:16660kB inactive_file:30616kB unevictable:0kB writepending:712kB present:4718592kB managed:3597640kB mlocked:0kB kernel_stack:4128kB pagetables:3340kB bounce:0kB free_pcp:1208kB local_pcp:572kB free_cma:0kB lowmem_reserve[]: 0 0 0 0 Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB Node 0 DMA32: 43*4kB (UM) 40*8kB (UM) 45*16kB (UM) 42*32kB (U) 44*64kB (UM) 37*128kB (UM) 46*256kB (UM) 44*512kB (UM) 44*1024kB (UM) 8*2048kB (U) 692*4096kB (UM) = 2940284kB Node 0 Normal: 3416*4kB (UME) 3708*8kB (UME) 3159*16kB (UME) 1472*32kB (UME) 2073*64kB (UME) 346*128kB (UME) 161*256kB (UME) 66*512kB (UME) 46*1024kB (UME) 38*2048kB (UME) 482*4096kB (UM) = 2492144kB Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 11886 total pagecache pages 0 pages in swap cache Swap cache stats: add 0, delete 0, find 0/0 Free swap = 0kB Total swap = 0kB 1965979 pages RAM 0 pages HighMem/MovableOnly 324104 pages reserved netlink: 16 bytes leftover after parsing attributes in process `syz-executor7'. netlink: 8 bytes leftover after parsing attributes in process `syz-executor3'. netlink: 16 bytes leftover after parsing attributes in process `syz-executor7'. netlink: 8 bytes leftover after parsing attributes in process `syz-executor3'. SELinux: unrecognized netlink message: protocol=0 nlmsg_type=63699 sclass=netlink_route_socket pig=29108 comm=syz-executor2 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=63699 sclass=netlink_route_socket pig=29108 comm=syz-executor2 device gre0 entered promiscuous mode device gre0 entered promiscuous mode device gre0 entered promiscuous mode audit: type=1326 audit(1511914355.523:5806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=kernel pid=29254 comm="syz-executor7" exe="/root/syz-executor7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x4529d9 code=0x7ffc0000 audit: type=1326 audit(1511914355.537:5807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=kernel pid=29254 comm="syz-executor7" exe="/root/syz-executor7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x4529d9 code=0x7ffc0000 encrypted_key: insufficient parameters specified netlink: 2 bytes leftover after parsing attributes in process `syz-executor1'. encrypted_key: insufficient parameters specified netlink: 8 bytes leftover after parsing attributes in process `syz-executor3'. netlink: 2 bytes leftover after parsing attributes in process `syz-executor1'. netlink: 8 bytes leftover after parsing attributes in process `syz-executor3'. audit: type=1326 audit(1511914355.553:5808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=kernel pid=29254 comm="syz-executor7" exe="/root/syz-executor7" sig=0 arch=c000003e syscall=83 compat=0 ip=0x4529d9 code=0x7ffc0000 audit: type=1326 audit(1511914355.554:5809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=kernel pid=29254 comm="syz-executor7" exe="/root/syz-executor7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x4529d9 code=0x7ffc0000 audit: type=1326 audit(1511914355.554:5810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=kernel pid=29254 comm="syz-executor7" exe="/root/syz-executor7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x4529d9 code=0x7ffc0000 audit: type=1326 audit(1511914355.554:5811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=kernel pid=29254 comm="syz-executor7" exe="/root/syz-executor7" sig=0 arch=c000003e syscall=32 compat=0 ip=0x4529d9 code=0x7ffc0000 audit: type=1326 audit(1511914355.554:5812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=kernel pid=29254 comm="syz-executor7" exe="/root/syz-executor7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x4529d9 code=0x7ffc0000 audit: type=1326 audit(1511914355.554:5813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=kernel pid=29254 comm="syz-executor7" exe="/root/syz-executor7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x4529d9 code=0x7ffc0000 audit: type=1326 audit(1511914355.555:5814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=kernel pid=29254 comm="syz-executor7" exe="/root/syz-executor7" sig=0 arch=c000003e syscall=248 compat=0 ip=0x4529d9 code=0x7ffc0000 audit: type=1326 audit(1511914355.556:5815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=kernel pid=29254 comm="syz-executor7" exe="/root/syz-executor7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x4529d9 code=0x7ffc0000 sg_write: data in/out 327650/154 bytes for SCSI command 0x51-- guessing data in; program syz-executor5 not setting count and/or reply_len properly could not allocate digest TFM handle cCc½ could not allocate digest TFM handle cCc½ binder: BINDER_SET_CONTEXT_MGR already set binder: 29476:29485 ioctl 40046207 0 returned -16 loop_reread_partitions: partition scan of loop4 () failed (rc=-13) binder: 29589:29592 BC_ACQUIRE_DONE uffffffffffffffff no match binder: 29589:29603 transaction failed 29201/-22, size 0--5600748883833474425 line 2870 binder: 29589:29603 ioctl c0306201 2000afd0 returned -14 binder: 29589:29626 ioctl c0306201 20005fd0 returned -14 binder: 29589:29626 BC_FREE_BUFFER u0000000000000000 no match device gre0 entered promiscuous mode binder: 29589:29592 BC_ACQUIRE_DONE uffffffffffffffff no match device gre0 entered promiscuous mode binder: undelivered TRANSACTION_ERROR: 29201 binder: 29589:29626 transaction failed 29189/-22, size 0--5600748883833474425 line 2755 binder: 29589:29592 ioctl c0306201 2000afd0 returned -14 binder: 29589:29603 BC_FREE_BUFFER u0000000000000000 no match binder: undelivered TRANSACTION_ERROR: 29189 netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. syz-executor6 (29759) used greatest stack depth: 15456 bytes left