Warning: Permanently added '10.128.0.131' (ECDSA) to the list of known hosts. [ 51.990557] random: sshd: uninitialized urandom read (32 bytes read) [ 52.188464] audit: type=1400 audit(1566760005.980:36): avc: denied { map } for pid=6898 comm="syz-execprog" path="/root/syz-execprog" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 2019/08/25 19:06:46 parsed 1 programs [ 53.079330] audit: type=1400 audit(1566760006.870:37): avc: denied { map } for pid=6898 comm="syz-execprog" path="/sys/kernel/debug/kcov" dev="debugfs" ino=13496 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:debugfs_t:s0 tclass=file permissive=1 [ 53.531027] random: cc1: uninitialized urandom read (8 bytes read) 2019/08/25 19:06:47 executed programs: 0 [ 54.133659] audit: type=1400 audit(1566760007.930:38): avc: denied { map } for pid=6898 comm="syz-execprog" path="/root/syzkaller-shm996031161" dev="sda1" ino=16485 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:file_t:s0 tclass=file permissive=1 [ 54.440986] IPVS: ftp: loaded support on port[0] = 21 [ 55.223062] chnl_net:caif_netlink_parms(): no params data found [ 55.253289] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.260179] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.267581] device bridge_slave_0 entered promiscuous mode [ 55.275532] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.282190] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.289213] device bridge_slave_1 entered promiscuous mode [ 55.303109] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 55.312423] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 55.328719] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 55.336621] team0: Port device team_slave_0 added [ 55.342341] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 55.349802] team0: Port device team_slave_1 added [ 55.355624] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 55.362931] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 55.412018] device hsr_slave_0 entered promiscuous mode [ 55.460458] device hsr_slave_1 entered promiscuous mode [ 55.510596] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 55.517530] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 55.532815] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.539619] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.546716] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.553130] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.581991] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 55.588091] 8021q: adding VLAN 0 to HW filter on device bond0 [ 55.597961] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 55.607136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 55.626680] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.634095] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.645451] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 55.652224] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.662185] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 55.669983] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.676426] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.685867] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 55.694168] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.700602] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.715569] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 55.723411] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 55.737346] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 55.748121] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 55.759217] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 55.766082] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 55.773798] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 55.781775] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 55.789700] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 55.803751] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 55.814543] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 56.231049] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 57.140402] audit: type=1400 audit(1566760010.940:39): avc: denied { map } for pid=6928 comm="syz-executor.0" path="/root/syzkaller-testdir650403524/syzkaller.CrfENC/0/file0/mem" dev="devtmpfs" ino=13397 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file permissive=1 [ 57.141496] FAULT_INJECTION: forcing a failure. [ 57.141496] name failslab, interval 1, probability 0, space 0, times 1 [ 57.182295] CPU: 1 PID: 6928 Comm: syz-executor.0 Not tainted 4.14.140 #36 [ 57.189323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 57.198868] Call Trace: [ 57.201463] dump_stack+0x138/0x197 [ 57.205107] should_fail.cold+0x10f/0x159 [ 57.209254] should_failslab+0xdb/0x130 [ 57.213442] kmem_cache_alloc_trace+0x2e9/0x790 [ 57.218353] ? pat_pagerange_is_ram+0x90/0xf0 [ 57.222992] ? __init_cache_modes+0x240/0x240 [ 57.227510] reserve_memtype+0x164/0x640 [ 57.231569] ? lock_downgrade+0x6e0/0x6e0 [ 57.235710] ? pat_init+0x420/0x420 [ 57.239322] ? __init_cache_modes+0x240/0x240 [ 57.243839] reserve_pfn_range+0x11c/0x390 [ 57.248069] ? arch_io_reserve_memtype_wc+0x80/0x80 [ 57.253082] ? copy_process.part.0+0x444f/0x6a00 [ 57.257917] ? SyS_clone+0x37/0x50 [ 57.261450] ? do_syscall_64+0x1e8/0x640 [ 57.265764] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 57.271329] track_pfn_copy+0x14a/0x190 [ 57.275296] ? reserve_pfn_range+0x390/0x390 [ 57.279695] ? trace_hardirqs_on+0x10/0x10 [ 57.283937] copy_page_range+0x1255/0x1bd0 [ 57.288399] ? save_trace+0x290/0x290 [ 57.292377] ? copy_process.part.0+0x41de/0x6a00 [ 57.297209] ? find_held_lock+0x35/0x130 [ 57.301372] ? vma_compute_subtree_gap+0x190/0x1f0 [ 57.306569] ? vma_gap_callbacks_rotate+0x62/0x80 [ 57.311414] ? __rb_insert_augmented+0x22f/0xdf0 [ 57.316485] ? __pmd_alloc+0x410/0x410 [ 57.320369] ? __vma_link_rb+0x247/0x340 [ 57.324626] copy_process.part.0+0x4764/0x6a00 [ 57.329231] ? __cleanup_sighand+0x50/0x50 [ 57.333470] ? vfs_write+0x25f/0x500 [ 57.337182] _do_fork+0x19e/0xce0 [ 57.340818] ? fork_idle+0x280/0x280 [ 57.344561] ? vfs_write+0x104/0x500 [ 57.348268] ? SyS_write+0x15e/0x230 [ 57.351973] SyS_clone+0x37/0x50 [ 57.355386] ? sys_vfork+0x30/0x30 [ 57.359189] do_syscall_64+0x1e8/0x640 [ 57.363142] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 57.368068] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 57.373428] RIP: 0033:0x459879 [ 57.376623] RSP: 002b:00007ffc51d541a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 57.384318] RAX: ffffffffffffffda RBX: 00007ffc51d541c0 RCX: 0000000000459879 [ 57.391799] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 57.399058] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 57.406315] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000023ee914 [ 57.413587] R13: 00000000004bfd46 R14: 00000000004d1af8 R15: 0000000000000004 [ 57.422267] ------------[ cut here ]------------ [ 57.427078] WARNING: CPU: 0 PID: 6928 at arch/x86/mm/pat.c:1020 untrack_pfn+0x1dc/0x220 [ 57.435503] Kernel panic - not syncing: panic_on_warn set ... [ 57.435503] [ 57.442938] CPU: 0 PID: 6928 Comm: syz-executor.0 Not tainted 4.14.140 #36 [ 57.449954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 57.459536] Call Trace: [ 57.462123] dump_stack+0x138/0x197 [ 57.465738] panic+0x1f2/0x426 [ 57.468911] ? add_taint.cold+0x16/0x16 [ 57.472877] ? untrack_pfn+0x1dc/0x220 [ 57.476749] ? untrack_pfn+0x1dc/0x220 [ 57.480623] __warn.cold+0x2f/0x36 [ 57.484180] ? ist_end_non_atomic+0x10/0x10 [ 57.488503] ? untrack_pfn+0x1dc/0x220 [ 57.492383] report_bug+0x216/0x254 [ 57.496228] do_error_trap+0x1bb/0x310 [ 57.500119] ? math_error+0x360/0x360 [ 57.503912] ? lock_downgrade+0x6e0/0x6e0 [ 57.508336] ? unmap_page_range+0xbe7/0x1770 [ 57.512754] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 57.517621] do_invalid_op+0x1b/0x20 [ 57.521504] invalid_op+0x1b/0x40 [ 57.525068] RIP: 0010:untrack_pfn+0x1dc/0x220 [ 57.529568] RSP: 0018:ffff888084e3f948 EFLAGS: 00010297 [ 57.535111] RAX: ffff8880a506e1c0 RBX: ffff888097333420 RCX: 0000000000000000 [ 57.542744] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001 [ 57.550004] RBP: ffff888084e3f9d8 R08: ffff8880a506e1c0 R09: 0000000000000000 [ 57.557293] R10: 0000000000000000 R11: ffff8880a506e1c0 R12: 1ffff110109c7f2a [ 57.564554] R13: 0000000000000000 R14: 0000000000000000 R15: ffff888084e3f9b0 [ 57.571838] ? untrack_pfn+0x1dc/0x220 [ 57.575706] ? track_pfn_insert+0x150/0x150 [ 57.580052] ? vm_normal_page_pmd+0x360/0x360 [ 57.584551] ? uprobe_munmap+0x94/0x210 [ 57.588620] unmap_single_vma+0x182/0x2c0 [ 57.592758] unmap_vmas+0xac/0x170 [ 57.596489] exit_mmap+0x285/0x4e0 [ 57.600154] ? SyS_munmap+0x30/0x30 [ 57.603787] ? kmem_cache_free+0x244/0x2b0 [ 57.608182] ? __khugepaged_exit+0xcf/0x3d0 [ 57.612636] ? lock_downgrade+0x6e0/0x6e0 [ 57.616779] mmput+0x114/0x440 [ 57.619966] copy_process.part.0+0x4743/0x6a00 [ 57.624644] ? __cleanup_sighand+0x50/0x50 [ 57.628885] ? vfs_write+0x25f/0x500 [ 57.632585] _do_fork+0x19e/0xce0 [ 57.636026] ? fork_idle+0x280/0x280 [ 57.639874] ? vfs_write+0x104/0x500 [ 57.643603] ? SyS_write+0x15e/0x230 [ 57.647322] SyS_clone+0x37/0x50 [ 57.650672] ? sys_vfork+0x30/0x30 [ 57.654424] do_syscall_64+0x1e8/0x640 [ 57.658304] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 57.663293] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 57.668502] RIP: 0033:0x459879 [ 57.671681] RSP: 002b:00007ffc51d541a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 57.679375] RAX: ffffffffffffffda RBX: 00007ffc51d541c0 RCX: 0000000000459879 [ 57.686831] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 57.694477] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 57.706541] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000023ee914 [ 57.713802] R13: 00000000004bfd46 R14: 00000000004d1af8 R15: 0000000000000004 [ 57.723878] Kernel Offset: disabled [ 57.727631] Rebooting in 86400 seconds..