INIT: Id "4" respawning too fast: disabled for 5 minutes INIT: Id "3" respawning too fast: disabled for 5 minutes INIT: Id "5" respawning too fast: disabled for 5 minutes INIT: Id "6" respawning too fast: disabled for 5 minutes INIT: Id "2" respawning too fast: disabled for 5 minutes [ 837.396082] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.0.246' (ECDSA) to the list of known hosts. [ 842.871633] random: sshd: uninitialized urandom read (32 bytes read) [ 842.986352] audit: type=1400 audit(1565163496.408:7): avc: denied { map } for pid=1924 comm="syz-execprog" path="/root/syz-execprog" dev="sda1" ino=1426 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 2019/08/07 07:38:17 parsed 1 programs [ 843.999047] audit: type=1400 audit(1565163497.418:8): avc: denied { map } for pid=1924 comm="syz-execprog" path="/sys/kernel/debug/kcov" dev="debugfs" ino=5040 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:debugfs_t:s0 tclass=file permissive=1 [ 844.728003] random: cc1: uninitialized urandom read (8 bytes read) 2019/08/07 07:38:19 executed programs: 0 [ 846.059663] audit: type=1400 audit(1565163499.478:9): avc: denied { map } for pid=1924 comm="syz-execprog" path="/root/syzkaller-shm353254676" dev="sda1" ino=16482 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:file_t:s0 tclass=file permissive=1 2019/08/07 07:38:24 executed programs: 73 2019/08/07 07:38:29 executed programs: 398 2019/08/07 07:38:34 executed programs: 729 2019/08/07 07:38:39 executed programs: 1057 2019/08/07 07:38:44 executed programs: 1384 2019/08/07 07:38:49 executed programs: 1716 2019/08/07 07:38:54 executed programs: 2022 2019/08/07 07:38:59 executed programs: 2348 2019/08/07 07:39:04 executed programs: 2667 2019/08/07 07:39:09 executed programs: 2991 2019/08/07 07:39:14 executed programs: 3322 2019/08/07 07:39:19 executed programs: 3634 2019/08/07 07:39:24 executed programs: 3955 2019/08/07 07:39:29 executed programs: 4275 2019/08/07 07:39:34 executed programs: 4596 INIT: Id "1" respawning too fast: disabled for 5 minutes INIT: Id "3" respawning too fast: disabled for 5 minutes INIT: Id "5" respawning too fast: disabled for 5 minutes INIT: Id "4" respawning too fast: disabled for 5 minutes INIT: Id "6" respawning too fast: disabled for 5 minutes INIT: Id "2" respawning too fast: disabled for 5 minutes 2019/08/07 07:39:39 executed programs: 4919 2019/08/07 07:39:44 executed programs: 5238 2019/08/07 07:39:49 executed programs: 5559 2019/08/07 07:39:54 executed programs: 5871 [ 1144.800310] INFO: task syz-executor.1:27798 blocked for more than 140 seconds. [ 1144.807791] Not tainted 4.14.137+ #29 [ 1144.813132] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1144.821821] syz-executor.1 D28624 27798 1955 0x80000000 [ 1144.827460] Call Trace: [ 1144.830657] ? __schedule+0x88c/0x1f80 [ 1144.834558] ? __sched_text_start+0x8/0x8 [ 1144.838730] ? mark_held_locks+0xa6/0xf0 [ 1144.843262] ? rwsem_down_read_failed+0x22a/0x3c0 [ 1144.848115] schedule+0x92/0x1c0 [ 1144.851774] rwsem_down_read_failed+0x22a/0x3c0 [ 1144.856454] ? rt_mutex_futex_unlock+0xe0/0xe0 [ 1144.861325] ? __might_fault+0x104/0x1b0 [ 1144.865401] ? SyS_futex+0x1c5/0x2c3 [ 1144.869103] ? SyS_futex+0x1cf/0x2c3 [ 1144.873220] ? do_futex+0x1980/0x1980 [ 1144.877048] call_rwsem_down_read_failed+0x14/0x30 [ 1144.882264] down_read+0x45/0xa0 [ 1144.885638] ? do_exit+0x575/0x2a20 [ 1144.889294] do_exit+0x575/0x2a20 [ 1144.893110] ? mm_update_next_owner+0x610/0x610 [ 1144.897781] ? do_group_exit+0x26b/0x2e0 [ 1144.902105] ? lock_downgrade+0x5d0/0x5d0 [ 1144.906284] ? kick_process+0xef/0x180 [ 1144.910491] ? _raw_spin_unlock_irq+0x24/0x50 [ 1144.915001] do_group_exit+0x100/0x2e0 [ 1144.918889] SyS_exit_group+0x19/0x20 [ 1144.923112] ? do_group_exit+0x2e0/0x2e0 [ 1144.927184] do_syscall_64+0x19b/0x520 [ 1144.931391] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1144.936581] RIP: 0033:0x459829 [ 1144.939760] RSP: 002b:00007ffe1d2ba748 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 1144.947957] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 0000000000459829 [ 1144.955970] RDX: 0000000000413511 RSI: fffffffffffffff7 RDI: 0000000000000000 [ 1144.963568] RBP: 0000000000000000 R08: ffffffffffffffff R09: 00007ffe1d2ba7a0 [ 1144.970917] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001 [ 1144.978185] R13: 00007ffe1d2ba7a0 R14: 0000000000000000 R15: 00007ffe1d2ba7b0 [ 1144.985892] INFO: task syz-executor.1:27801 blocked for more than 140 seconds. [ 1144.993288] Not tainted 4.14.137+ #29 [ 1144.997602] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1145.006057] syz-executor.1 D28992 27801 1955 0x80000000 [ 1145.011802] Call Trace: [ 1145.014400] ? __schedule+0x88c/0x1f80 [ 1145.018296] ? __sched_text_start+0x8/0x8 [ 1145.022818] ? mark_held_locks+0xa6/0xf0 [ 1145.026890] ? rwsem_down_read_failed+0x22a/0x3c0 [ 1145.032009] schedule+0x92/0x1c0 [ 1145.035387] rwsem_down_read_failed+0x22a/0x3c0 [ 1145.040312] ? rt_mutex_futex_unlock+0xe0/0xe0 [ 1145.044898] ? __might_fault+0x104/0x1b0 [ 1145.048961] ? SyS_futex+0x1c5/0x2c3 [ 1145.052987] ? SyS_futex+0x1cf/0x2c3 [ 1145.056709] ? do_futex+0x1980/0x1980 [ 1145.060910] call_rwsem_down_read_failed+0x14/0x30 [ 1145.065855] down_read+0x45/0xa0 [ 1145.069217] ? do_exit+0x575/0x2a20 [ 1145.073165] do_exit+0x575/0x2a20 [ 1145.076627] ? futex_wake+0x15b/0x440 [ 1145.081324] ? mm_update_next_owner+0x610/0x610 [ 1145.086005] ? get_signal+0x334/0x1cc0 [ 1145.089889] ? lock_downgrade+0x5d0/0x5d0 [ 1145.094398] ? lock_acquire+0x12b/0x360 [ 1145.098381] ? get_signal+0x1e7/0x1cc0 [ 1145.102549] do_group_exit+0x100/0x2e0 [ 1145.106453] get_signal+0x39f/0x1cc0 [ 1145.110438] ? trace_hardirqs_on+0x10/0x10 [ 1145.114735] do_signal+0x96/0x15d0 [ 1145.118286] ? get_unused_fd_flags+0xc0/0xc0 [ 1145.123111] ? __might_fault+0x104/0x1b0 [ 1145.127181] ? setup_sigcontext+0x810/0x810 [ 1145.131795] ? lock_acquire+0x12b/0x360 [ 1145.135778] ? __might_fault+0xd4/0x1b0 [ 1145.139789] ? _copy_to_user+0x82/0xd0 [ 1145.143979] ? SyS_futex+0x1c5/0x2c3 [ 1145.147692] ? SyS_futex+0x1cf/0x2c3 [ 1145.151656] ? do_futex+0x1980/0x1980 [ 1145.155466] ? exit_to_usermode_loop+0xcd/0x160 [ 1145.160479] exit_to_usermode_loop+0x11d/0x160 [ 1145.165072] do_syscall_64+0x3a3/0x520 [ 1145.168970] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1145.174559] RIP: 0033:0x459829 [ 1145.177753] RSP: 002b:00007f84d257fcf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1145.185751] RAX: fffffffffffffe00 RBX: 000000000075bf28 RCX: 0000000000459829 [ 1145.193079] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000075bf28 [ 1145.200643] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1145.207946] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000075bf2c [ 1145.216205] R13: 00007ffe1d2ba53f R14: 00007f84d25809c0 R15: 000000000075bf2c [ 1145.223566] [ 1145.223566] Showing all locks held in the system: [ 1145.229890] 1 lock held by khungtaskd/23: [ 1145.234149] #0: (tasklist_lock){.+.+}, at: [< (ptrval)>] debug_show_all_locks+0x7c/0x21a [ 1145.243246] 2 locks held by getty/1783: [ 1145.247213] #0: (&tty->ldisc_sem){++++}, at: [< (ptrval)>] tty_ldisc_ref_wait+0x22/0x80 [ 1145.256222] #1: (&ldata->atomic_read_lock){+.+.}, at: [< (ptrval)>] n_tty_read+0x1f7/0x1700 [ 1145.265596] 1 lock held by syz-executor.1/27798: [ 1145.270373] #0: (&mm->mmap_sem){++++}, at: [< (ptrval)>] do_exit+0x575/0x2a20 [ 1145.278554] 1 lock held by syz-executor.1/27801: [ 1145.283334] #0: (&mm->mmap_sem){++++}, at: [< (ptrval)>] do_exit+0x575/0x2a20 [ 1145.291443] [ 1145.293067] ============================================= [ 1145.293067] [ 1145.300782] NMI backtrace for cpu 0 [ 1145.304430] CPU: 0 PID: 23 Comm: khungtaskd Not tainted 4.14.137+ #29 [ 1145.311001] Call Trace: [ 1145.313616] dump_stack+0xca/0x134 [ 1145.317174] ? irq_force_complete_move+0x2d1/0x2e5 [ 1145.322129] nmi_cpu_backtrace.cold+0x47/0x86 [ 1145.326629] ? irq_force_complete_move.cold+0x7b/0x7b [ 1145.331823] nmi_trigger_cpumask_backtrace+0x119/0x147 [ 1145.337138] watchdog+0x629/0xbe0 [ 1145.340600] ? reset_hung_task_detector+0x30/0x30 [ 1145.345452] kthread+0x31f/0x430 [ 1145.348821] ? kthread_create_on_node+0xf0/0xf0 [ 1145.353510] ret_from_fork+0x3a/0x50 [ 1145.357358] Sending NMI from CPU 0 to CPUs 1: [ 1145.362339] NMI backtrace for cpu 1 [ 1145.362343] CPU: 1 PID: 27813 Comm: syz-executor.1 Not tainted 4.14.137+ #29 [ 1145.362347] task: (ptrval) task.stack: (ptrval) [ 1145.362349] RIP: 0010:preempt_count_add+0xb8/0x180 [ 1145.362352] RSP: 0018:ffff8881c809fac0 EFLAGS: 00000297 [ 1145.362358] RAX: 0000000000000000 RBX: ffffffffa068c442 RCX: 0000000000000000 [ 1145.362361] RDX: 0000000000000000 RSI: 00000000ffffffff RDI: ffffffffa068c442 [ 1145.362365] RBP: ffff8881c809fad0 R08: ffffffff9f2098cd R09: ffffed103a5bdafd [ 1145.362368] R10: ffff8881c809fc68 R11: ffff8881d2ded7e7 R12: 0000000000000001 [ 1145.362371] R13: ffff8881d2ded7e0 R14: 0000000000000000 R15: ffffffff9f2098cd [ 1145.362375] FS: 00007f84d255f700(0000) GS:ffff8881db900000(0000) knlGS:0000000000000000 [ 1145.362378] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1145.362382] CR2: 00007f804926a330 CR3: 00000001c9a0c005 CR4: 00000000001606a0 [ 1145.362385] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1145.362389] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1145.362391] Call Trace: [ 1145.362393] __mutex_lock+0xd2/0x13e0 [ 1145.362395] ? perf_mmap+0x50d/0x1480 [ 1145.362398] ? lock_downgrade+0x5d0/0x5d0 [ 1145.362401] ? __ww_mutex_wakeup_for_backoff+0x210/0x210 [ 1145.362403] ? __mutex_unlock_slowpath+0xff/0x690 [ 1145.362406] ? wait_for_completion_io+0x10/0x10 [ 1145.362408] ? perf_mmap+0x50d/0x1480 [ 1145.362411] perf_mmap+0x50d/0x1480 [ 1145.362413] mmap_region+0x7d9/0xfb0 [ 1145.362415] do_mmap+0x548/0xb80 [ 1145.362418] vm_mmap_pgoff+0x177/0x1c0 [ 1145.362421] ? vma_is_stack_for_current+0xb0/0xb0 [ 1145.362423] ? __fget+0x237/0x370 [ 1145.362425] SyS_mmap_pgoff+0xf4/0x1b0 [ 1145.362428] ? align_vdso_addr+0x60/0x60 [ 1145.362430] do_syscall_64+0x19b/0x520 [ 1145.362433] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1145.362435] RIP: 0033:0x459829 [ 1145.362438] RSP: 002b:00007f84d255ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1145.362444] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000459829 [ 1145.362447] RDX: 0000000000000000 RSI: 0000000000003000 RDI: 0000000020ffd000 [ 1145.362450] RBP: 000000000075bfc8 R08: 0000000000000003 R09: 0000000000000000 [ 1145.362454] R10: 0000000000001011 R11: 0000000000000246 R12: 00007f84d255f6d4 [ 1145.362457] R13: 00000000004c5d71 R14: 00000000004da748 R15: 00000000ffffffff [ 1145.362459] Code: b6 c0 3d f4 00 00 00 7f 66 65 8b 05 53 95 0b 61 25 ff ff ff 7f 41 39 c4 74 05 5b 41 5c 5d c3 48 8b 5d 08 48 89 df e8 d8 3c 0a 00 <85> c0 75 35 65 4c 8b 24 25 c0 de 01 00 49 8d bc 24 28 11 00 00 [ 1145.368404] Kernel panic - not syncing: hung_task: blocked tasks [ 1145.607221] CPU: 0 PID: 23 Comm: khungtaskd Not tainted 4.14.137+ #29 [ 1145.613802] Call Trace: [ 1145.616401] dump_stack+0xca/0x134 [ 1145.619943] panic+0x1ea/0x3d3 [ 1145.623137] ? add_taint.cold+0x16/0x16 [ 1145.627122] ? irq_force_complete_move.cold+0x7b/0x7b [ 1145.632326] ? ___preempt_schedule+0x16/0x18 [ 1145.636759] watchdog+0x63a/0xbe0 [ 1145.640225] ? reset_hung_task_detector+0x30/0x30 [ 1145.645080] kthread+0x31f/0x430 [ 1145.648458] ? kthread_create_on_node+0xf0/0xf0 [ 1145.653141] ret_from_fork+0x3a/0x50 [ 1145.657198] Kernel Offset: 0x1de00000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff) [ 1145.668243] Rebooting in 86400 seconds..