INIT: Id "4" respawning too fast: disabled for 5 minutes INIT: Id "1" respawning too fast: disabled for 5 minutes INIT: Id "3" respawning too fast: disabled for 5 minutes INIT: Id "2" respawning too fast: disabled for 5 minutes INIT: Id "5" respawning too fast: disabled for 5 minutes Warning: Permanently added '10.128.0.17' (ECDSA) to the list of known hosts. 2018/01/02 17:25:59 parsed 1 programs 2018/01/02 17:25:59 executed programs: 0 [ 134.689057] IPVS: Creating netns size=2536 id=1 [ 137.314090] ================================================================== [ 137.321478] BUG: KASAN: out-of-bounds in __unwind_start+0x3a7/0x3c0 [ 137.327849] Read of size 8 at addr ffff8801d891f860 by task syz-executor0/5249 [ 137.335171] [ 137.336770] CPU: 0 PID: 5249 Comm: syz-executor0 Not tainted 4.9.73-gf3f3457 #11 [ 137.344280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 137.353613] ffff8801d8d37138 ffffffff81d922b9 ffffea00076247c0 ffff8801d891f860 [ 137.361574] 0000000000000000 ffff8801d891f868 ffff8801d8d37268 ffff8801d8d37170 [ 137.369533] ffffffff8153bab3 ffff8801d891f860 0000000000000008 0000000000000000 [ 137.377488] Call Trace: [ 137.380042] [] dump_stack+0xc1/0x128 [ 137.385386] [] print_address_description+0x73/0x280 [ 137.392017] [] kasan_report+0x275/0x360 [ 137.397609] [] ? __unwind_start+0x3a7/0x3c0 [ 137.403550] [] __asan_report_load8_noabort+0x14/0x20 [ 137.410283] [] __unwind_start+0x3a7/0x3c0 [ 137.416050] [] ? ptrace_may_access+0x24/0x50 [ 137.422078] [] __save_stack_trace+0x59/0xf0 [ 137.428014] [] save_stack_trace_tsk+0x48/0x70 [ 137.434126] [] proc_pid_stack+0x146/0x230 [ 137.439890] [] ? lock_trace+0xc0/0xc0 [ 137.445306] [] proc_single_show+0xf8/0x170 [ 137.451158] [] seq_read+0x32f/0x1290 [ 137.456488] [] ? seq_escape+0x200/0x200 [ 137.462084] [] ? fsnotify+0x86/0xf30 [ 137.467418] [] ? fsnotify+0xf30/0xf30 [ 137.472841] [] ? avc_policy_seqno+0x9/0x20 [ 137.478695] [] do_loop_readv_writev.part.17+0x141/0x1e0 [ 137.485678] [] ? security_file_permission+0x89/0x1e0 [ 137.492410] [] ? seq_escape+0x200/0x200 [ 137.498006] [] ? seq_escape+0x200/0x200 [ 137.503606] [] do_readv_writev+0x520/0x750 [ 137.509457] [] ? vfs_write+0x530/0x530 [ 137.514962] [] ? kasan_unpoison_shadow+0x35/0x50 [ 137.521337] [] ? push_pipe+0x372/0x770 [ 137.526840] [] ? sanity+0x1ff/0x610 [ 137.532087] [] ? iov_iter_get_pages_alloc+0x2c7/0xf10 [ 137.538895] [] ? __unwind_start+0x1e3/0x3c0 [ 137.544835] [] vfs_readv+0x84/0xc0 [ 137.549997] [] default_file_splice_read+0x43f/0x7a0 [ 137.556634] [] ? depot_save_stack+0x122/0x4a0 [ 137.562749] [] ? do_splice_direct+0x270/0x270 [ 137.568861] [] ? save_stack+0x43/0xd0 [ 137.574277] [] ? kasan_kmalloc+0xad/0xe0 [ 137.579952] [] ? __kmalloc+0x11d/0x310 [ 137.585464] [] ? alloc_pipe_info+0x135/0x350 [ 137.591496] [] ? splice_direct_to_actor+0x64a/0x800 [ 137.598135] [] ? do_splice_direct+0x1a7/0x270 [ 137.604247] [] ? do_sendfile+0x54b/0xd30 [ 137.609927] [] ? do_fast_syscall_32+0x2f7/0x890 [ 137.616219] [] ? entry_SYSENTER_compat+0x51/0x60 [ 137.622604] [] ? __fsnotify_parent+0xbc/0x340 [ 137.628715] [] ? fsnotify+0x86/0xf30 [ 137.634044] [] ? fsnotify+0xf30/0xf30 [ 137.639462] [] ? avc_policy_seqno+0x9/0x20 [ 137.645314] [] ? selinux_file_permission+0x82/0x460 [ 137.651948] [] ? security_file_permission+0x89/0x1e0 [ 137.658665] [] ? rw_verify_area+0xe5/0x2b0 [ 137.664515] [] ? do_splice_direct+0x270/0x270 [ 137.670633] [] do_splice_to+0x10a/0x160 [ 137.676227] [] splice_direct_to_actor+0x24d/0x800 [ 137.682684] [] ? generic_pipe_buf_nosteal+0x10/0x10 [ 137.689315] [] ? do_splice_to+0x160/0x160 [ 137.695078] [] ? security_file_permission+0x89/0x1e0 [ 137.701795] [] ? rw_verify_area+0xe5/0x2b0 [ 137.707646] [] do_splice_direct+0x1a7/0x270 [ 137.713590] [] ? splice_direct_to_actor+0x800/0x800 [ 137.720221] [] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 137.726764] [] ? __sb_start_write+0x14a/0x310 [ 137.732874] [] do_sendfile+0x54b/0xd30 [ 137.738384] [] ? do_compat_pwritev64+0x100/0x100 [ 137.744757] [] ? __might_fault+0x114/0x1d0 [ 137.750608] [] compat_SyS_sendfile+0xd1/0x160 [ 137.756719] [] ? SyS_sendfile64+0x160/0x160 [ 137.762669] [] ? do_fast_syscall_32+0xcf/0x890 [ 137.768869] [] ? SyS_sendfile64+0x160/0x160 [ 137.774805] [] do_fast_syscall_32+0x2f7/0x890 [ 137.780913] [] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 137.787545] [] entry_SYSENTER_compat+0x51/0x60 [ 137.793740] [ 137.795334] The buggy address belongs to the page: [ 137.800229] page:ffffea00076247c0 count:0 mapcount:0 mapping: (null) index:0x0 [ 137.808447] flags: 0x8000000000000000() [ 137.812383] page dumped because: kasan: bad access detected [ 137.818054] [ 137.819645] Memory state around the buggy address: [ 137.824541] ffff8801d891f700: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 137.831873] ffff8801d891f780: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 137.839195] >ffff8801d891f800: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 137.846517] ^ [ 137.853231] ffff8801d891f880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 137.860553] ffff8801d891f900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 137.867873] ================================================================== [ 137.875193] Disabling lock debugging due to kernel taint [ 137.882380] Kernel panic - not syncing: panic_on_warn set ... [ 137.882380] [ 137.889732] CPU: 0 PID: 5249 Comm: syz-executor0 Tainted: G B 4.9.73-gf3f3457 #11 [ 137.898460] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 137.907781] ffff8801d8d37090 ffffffff81d922b9 ffffffff841955bf ffff8801d8d37168 [ 137.915731] 0000000000000000 ffff8801d891f868 ffff8801d8d37268 ffff8801d8d37158 [ 137.923678] ffffffff8142d741 0000000041b58ab3 ffffffff84189000 ffffffff8142d585 [ 137.931631] Call Trace: [ 137.934189] [] dump_stack+0xc1/0x128 [ 137.939518] [] panic+0x1bc/0x3a8 [ 137.944502] [] ? percpu_up_read_preempt_enable.constprop.53+0xd7/0xd7 [ 137.952703] [] ? preempt_schedule+0x25/0x30 [ 137.958638] [] ? ___preempt_schedule+0x16/0x18 [ 137.964835] [] kasan_end_report+0x50/0x50 [ 137.970594] [] kasan_report+0x167/0x360 [ 137.976182] [] ? __unwind_start+0x3a7/0x3c0 [ 137.982116] [] __asan_report_load8_noabort+0x14/0x20 [ 137.988832] [] __unwind_start+0x3a7/0x3c0 [ 137.994595] [] ? ptrace_may_access+0x24/0x50 [ 138.000625] [] __save_stack_trace+0x59/0xf0 [ 138.006560] [] save_stack_trace_tsk+0x48/0x70 [ 138.012670] [] proc_pid_stack+0x146/0x230 [ 138.018430] [] ? lock_trace+0xc0/0xc0 [ 138.023845] [] proc_single_show+0xf8/0x170 [ 138.029693] [] seq_read+0x32f/0x1290 [ 138.035021] [] ? seq_escape+0x200/0x200 [ 138.040620] [] ? fsnotify+0x86/0xf30 [ 138.045946] [] ? fsnotify+0xf30/0xf30 [ 138.051361] [] ? avc_policy_seqno+0x9/0x20 [ 138.057210] [] do_loop_readv_writev.part.17+0x141/0x1e0 [ 138.064185] [] ? security_file_permission+0x89/0x1e0 [ 138.070904] [] ? seq_escape+0x200/0x200 [ 138.076495] [] ? seq_escape+0x200/0x200 [ 138.082082] [] do_readv_writev+0x520/0x750 [ 138.087931] [] ? vfs_write+0x530/0x530 [ 138.093432] [] ? kasan_unpoison_shadow+0x35/0x50 [ 138.099802] [] ? push_pipe+0x372/0x770 [ 138.105303] [] ? sanity+0x1ff/0x610 [ 138.110552] [] ? iov_iter_get_pages_alloc+0x2c7/0xf10 [ 138.117356] [] ? __unwind_start+0x1e3/0x3c0 [ 138.123293] [] vfs_readv+0x84/0xc0 [ 138.128449] [] default_file_splice_read+0x43f/0x7a0 [ 138.135080] [] ? depot_save_stack+0x122/0x4a0 [ 138.141190] [] ? do_splice_direct+0x270/0x270 [ 138.147311] [] ? save_stack+0x43/0xd0 [ 138.152723] [] ? kasan_kmalloc+0xad/0xe0 [ 138.158397] [] ? __kmalloc+0x11d/0x310 [ 138.163898] [] ? alloc_pipe_info+0x135/0x350 [ 138.169918] [] ? splice_direct_to_actor+0x64a/0x800 [ 138.176548] [] ? do_splice_direct+0x1a7/0x270 [ 138.182656] [] ? do_sendfile+0x54b/0xd30 [ 138.188332] [] ? do_fast_syscall_32+0x2f7/0x890 [ 138.194619] [] ? entry_SYSENTER_compat+0x51/0x60 [ 138.200988] [] ? __fsnotify_parent+0xbc/0x340 [ 138.207097] [] ? fsnotify+0x86/0xf30 [ 138.212424] [] ? fsnotify+0xf30/0xf30 [ 138.217839] [] ? avc_policy_seqno+0x9/0x20 [ 138.223687] [] ? selinux_file_permission+0x82/0x460 [ 138.230316] [] ? security_file_permission+0x89/0x1e0 [ 138.237029] [] ? rw_verify_area+0xe5/0x2b0 [ 138.242877] [] ? do_splice_direct+0x270/0x270 [ 138.248984] [] do_splice_to+0x10a/0x160 [ 138.254571] [] splice_direct_to_actor+0x24d/0x800 [ 138.261026] [] ? generic_pipe_buf_nosteal+0x10/0x10 [ 138.267654] [] ? do_splice_to+0x160/0x160 [ 138.273413] [] ? security_file_permission+0x89/0x1e0 [ 138.280142] [] ? rw_verify_area+0xe5/0x2b0 [ 138.285997] [] do_splice_direct+0x1a7/0x270 [ 138.291933] [] ? splice_direct_to_actor+0x800/0x800 [ 138.298564] [] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 138.305115] [] ? __sb_start_write+0x14a/0x310 [ 138.311227] [] do_sendfile+0x54b/0xd30 [ 138.316728] [] ? do_compat_pwritev64+0x100/0x100 [ 138.323101] [] ? __might_fault+0x114/0x1d0 [ 138.328949] [] compat_SyS_sendfile+0xd1/0x160 [ 138.335059] [] ? SyS_sendfile64+0x160/0x160 [ 138.340995] [] ? do_fast_syscall_32+0xcf/0x890 [ 138.347190] [] ? SyS_sendfile64+0x160/0x160 [ 138.353123] [] do_fast_syscall_32+0x2f7/0x890 [ 138.359232] [] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 138.365872] [] entry_SYSENTER_compat+0x51/0x60 [ 138.372518] Dumping ftrace buffer: [ 138.376023] (ftrace buffer empty) [ 138.379698] Kernel Offset: disabled [ 138.383291] Rebooting in 86400 seconds..