INIT: Id "1" respawning too fast: disabled for 5 minutes INIT: Id "2" respawning too fast: disabled for 5 minutes INIT: Id "4" respawning too fast: disabled for 5 minutes INIT: Id "6" respawning too fast: disabled for 5 minutes [ 319.304957] audit: type=1400 audit(1537579021.656:7): avc: denied { map } for pid=1832 comm="sh" path="/bin/dash" dev="sda1" ino=1473 scontext=system_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 382.108501] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.10.36' (ECDSA) to the list of known hosts. [ 387.740611] random: sshd: uninitialized urandom read (32 bytes read) [ 387.832838] audit: type=1400 audit(1537579090.186:8): avc: denied { map } for pid=1839 comm="syz-execprog" path="/root/syz-execprog" dev="sda1" ino=16479 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 2018/09/22 01:18:10 parsed 1 programs [ 388.300685] audit: type=1400 audit(1537579090.656:9): avc: denied { map } for pid=1839 comm="syz-execprog" path="/sys/kernel/debug/kcov" dev="debugfs" ino=4999 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:debugfs_t:s0 tclass=file permissive=1 [ 388.987456] random: cc1: uninitialized urandom read (8 bytes read) 2018/09/22 01:18:12 executed programs: 0 [ 390.303816] audit: type=1400 audit(1537579092.646:10): avc: denied { map } for pid=1839 comm="syz-execprog" path="/root/syzkaller-shm089090093" dev="sda1" ino=16482 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:file_t:s0 tclass=file permissive=1 2018/09/22 01:18:19 executed programs: 6 2018/09/22 01:18:24 executed programs: 117 2018/09/22 01:18:29 executed programs: 270 2018/09/22 01:18:34 executed programs: 431 2018/09/22 01:18:39 executed programs: 597 2018/09/22 01:18:44 executed programs: 746 2018/09/22 01:18:49 executed programs: 904 INIT: Id "3" respawning too fast: disabled for 5 minutes INIT: Id "1" respawning too fast: disabled for 5 minutes INIT: Id "5" respawning too fast: disabled for 5 minutes INIT: Id "2" respawning too fast: disabled for 5 minutes INIT: Id "4" respawning too fast: disabled for 5 minutes INIT: Id "6" respawning too fast: disabled for 5 minutes [ 714.720098] INFO: task syz-executor3:8706 blocked for more than 140 seconds. [ 714.727550] Not tainted 4.14.71+ #8 [ 714.732226] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 714.740400] syz-executor3 D28424 8706 1856 0x80000000 [ 714.746022] Call Trace: [ 714.748723] ? __schedule+0x729/0x1ed0 [ 714.753245] ? __sched_text_start+0x8/0x8 [ 714.757435] ? mark_held_locks+0xc2/0x130 [ 714.761901] schedule+0x7f/0x1b0 [ 714.765255] ? rwsem_down_read_failed+0x21a/0x3d0 [ 714.770352] rwsem_down_read_failed+0x21a/0x3d0 [ 714.775012] ? rt_mutex_futex_unlock+0xd0/0xd0 [ 714.779583] ? lock_downgrade+0x560/0x560 [ 714.783964] call_rwsem_down_read_failed+0x14/0x30 [ 714.788884] down_read+0x45/0xa0 [ 714.792527] ? do_exit+0x512/0x2800 [ 714.796227] do_exit+0x512/0x2800 [ 714.799859] ? try_to_wake_up+0x7bc/0x1230 [ 714.804353] ? mm_update_next_owner+0x670/0x670 [ 714.809013] ? do_group_exit+0x26b/0x2e0 [ 714.813286] ? lock_downgrade+0x560/0x560 [ 714.817422] ? _raw_spin_unlock_irq+0x24/0x50 [ 714.822128] do_group_exit+0x100/0x2e0 [ 714.826073] ? do_group_exit+0x2e0/0x2e0 [ 714.830412] SyS_exit_group+0x19/0x20 [ 714.834226] do_syscall_64+0x19b/0x4b0 [ 714.838207] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 714.843895] RIP: 0033:0x457679 [ 714.847088] RSP: 002b:00007ffdfaf7c938 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 714.855178] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 0000000000457679 [ 714.862907] RDX: 0000000000411151 RSI: fffffffffffffff7 RDI: 0000000000000000 [ 714.870532] RBP: 0000000000000000 R08: ffffffffffffffff R09: 0000000000068ea5 [ 714.877808] R10: 00000000000001e0 R11: 0000000000000246 R12: 000000000000000a [ 714.886180] R13: 0000000000068ea5 R14: 00000000000000a5 R15: badc0ffeebadface [ 714.893836] INFO: task syz-executor3:8708 blocked for more than 140 seconds. [ 714.901297] Not tainted 4.14.71+ #8 [ 714.905440] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 714.913681] syz-executor3 D28320 8708 1856 0x80000000 [ 714.919332] Call Trace: [ 714.922286] ? __schedule+0x729/0x1ed0 [ 714.926186] ? __sched_text_start+0x8/0x8 [ 714.930687] ? mark_held_locks+0xc2/0x130 [ 714.934857] schedule+0x7f/0x1b0 [ 714.938215] ? rwsem_down_read_failed+0x21a/0x3d0 [ 714.943426] rwsem_down_read_failed+0x21a/0x3d0 [ 714.948101] ? rt_mutex_futex_unlock+0xd0/0xd0 [ 714.953137] ? SyS_futex+0x1c0/0x2b5 [ 714.956877] call_rwsem_down_read_failed+0x14/0x30 [ 714.962177] down_read+0x45/0xa0 [ 714.965548] ? do_exit+0x512/0x2800 [ 714.969174] do_exit+0x512/0x2800 [ 714.973005] ? perf_trace_lock_acquire+0x4d0/0x4d0 [ 714.977947] ? mm_update_next_owner+0x670/0x670 [ 714.982995] ? get_signal+0x547/0x1470 [ 714.986889] ? recalc_sigpending+0x5c/0x90 [ 714.991551] ? lock_downgrade+0x560/0x560 [ 714.995702] ? get_signal+0x1da/0x1470 [ 714.999598] do_group_exit+0x100/0x2e0 [ 715.003914] get_signal+0x4e5/0x1470 [ 715.007636] ? lock_acquire+0x10f/0x380 [ 715.012763] do_signal+0x8f/0x1660 [ 715.016343] ? get_unused_fd_flags+0xc0/0xc0 [ 715.021131] ? wait_for_completion_io+0x10/0x10 [ 715.025806] ? setup_sigcontext+0x810/0x810 [ 715.030531] ? SyS_perf_event_open+0x687/0x27d0 [ 715.035231] ? putname+0xcf/0x100 [ 715.038731] ? rcu_read_lock_sched_held+0x102/0x120 [ 715.044223] ? do_futex+0x17b0/0x17b0 [ 715.048040] ? exit_to_usermode_loop+0xc6/0x150 [ 715.053084] exit_to_usermode_loop+0x116/0x150 [ 715.057676] do_syscall_64+0x35d/0x4b0 [ 715.062068] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 715.067258] RIP: 0033:0x457679 [ 715.070815] RSP: 002b:00007f25a3d1fcf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 715.078529] RAX: fffffffffffffe00 RBX: 000000000072bf08 RCX: 0000000000457679 [ 715.086199] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000072bf08 [ 715.093834] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 715.101439] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000072bf0c [ 715.108719] R13: 00007ffdfaf7c72f R14: 00007f25a3d209c0 R15: 0000000000000000 [ 715.116369] INFO: task syz-executor3:8713 blocked for more than 140 seconds. [ 715.123925] Not tainted 4.14.71+ #8 [ 715.128076] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 715.136354] syz-executor3 D28024 8713 1856 0x80000000 [ 715.143048] Call Trace: [ 715.145660] ? __schedule+0x729/0x1ed0 [ 715.149552] ? __sched_text_start+0x8/0x8 [ 715.154087] ? mark_held_locks+0xc2/0x130 [ 715.158247] schedule+0x7f/0x1b0 [ 715.161972] ? rwsem_down_read_failed+0x21a/0x3d0 [ 715.166815] rwsem_down_read_failed+0x21a/0x3d0 [ 715.171855] ? rt_mutex_futex_unlock+0xd0/0xd0 [ 715.176451] ? SyS_futex+0x1c0/0x2b5 [ 715.180529] call_rwsem_down_read_failed+0x14/0x30 [ 715.185468] down_read+0x45/0xa0 [ 715.188834] ? do_exit+0x512/0x2800 [ 715.192868] do_exit+0x512/0x2800 [ 715.196334] ? perf_trace_lock_acquire+0x4d0/0x4d0 [ 715.201615] ? mm_update_next_owner+0x670/0x670 [ 715.206327] ? get_signal+0x547/0x1470 [ 715.210555] ? recalc_sigpending+0x5c/0x90 [ 715.214792] ? lock_downgrade+0x560/0x560 [ 715.218938] ? get_signal+0x1da/0x1470 [ 715.223202] do_group_exit+0x100/0x2e0 [ 715.227101] get_signal+0x4e5/0x1470 [ 715.231260] do_signal+0x8f/0x1660 [ 715.234807] ? perf_event_set_output+0x450/0x450 [ 715.239561] ? do_vfs_ioctl+0x1a0/0x1030 [ 715.244005] ? perf_event_set_output+0x450/0x450 [ 715.248769] ? do_vfs_ioctl+0x1b2/0x1030 [ 715.253189] ? setup_sigcontext+0x810/0x810 [ 715.257518] ? ioctl_preallocate+0x1d0/0x1d0 [ 715.262393] ? selinux_parse_skb.constprop.42+0x1a90/0x1a90 [ 715.268126] ? do_futex+0x17b0/0x17b0 [ 715.272960] ? exit_to_usermode_loop+0xc6/0x150 [ 715.277641] exit_to_usermode_loop+0x116/0x150 [ 715.282568] do_syscall_64+0x35d/0x4b0 [ 715.286468] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 715.292013] RIP: 0033:0x457679 [ 715.295202] RSP: 002b:00007f25a3cddcf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 715.303271] RAX: fffffffffffffe00 RBX: 000000000072c048 RCX: 0000000000457679 [ 715.310904] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000072c048 [ 715.318207] RBP: 000000000072c040 R08: 0000000000000000 R09: 0000000000000000 [ 715.325935] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000072c04c [ 715.333543] R13: 00007ffdfaf7c72f R14: 00007f25a3cde9c0 R15: 0000000000000002 [ 715.341188] INFO: task syz-executor3:8714 blocked for more than 140 seconds. [ 715.348371] Not tainted 4.14.71+ #8 [ 715.352821] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 715.361089] syz-executor3 D29160 8714 1856 0x80000000 [ 715.366738] Call Trace: [ 715.369331] ? __schedule+0x729/0x1ed0 [ 715.373678] ? __sched_text_start+0x8/0x8 [ 715.377845] ? mark_held_locks+0xc2/0x130 [ 715.382386] schedule+0x7f/0x1b0 [ 715.385770] ? rwsem_down_read_failed+0x21a/0x3d0 [ 715.390980] rwsem_down_read_failed+0x21a/0x3d0 [ 715.395657] ? rt_mutex_futex_unlock+0xd0/0xd0 [ 715.401347] ? SyS_futex+0x1c0/0x2b5 [ 715.405091] call_rwsem_down_read_failed+0x14/0x30 [ 715.410397] down_read+0x45/0xa0 [ 715.413768] ? do_exit+0x512/0x2800 [ 715.417387] do_exit+0x512/0x2800 [ 715.421220] ? perf_trace_lock_acquire+0x4d0/0x4d0 [ 715.426162] ? mm_update_next_owner+0x670/0x670 [ 715.431189] ? __mutex_unlock_slowpath+0x8d/0x770 [ 715.436079] ? get_signal+0x547/0x1470 [ 715.439957] ? recalc_sigpending+0x5c/0x90 [ 715.444563] ? lock_downgrade+0x560/0x560 [ 715.448722] ? get_signal+0x1da/0x1470 [ 715.452978] do_group_exit+0x100/0x2e0 [ 715.456872] get_signal+0x4e5/0x1470 [ 715.460989] do_signal+0x8f/0x1660 [ 715.464637] ? ppp_write+0x250/0x250 [ 715.468356] ? do_vfs_ioctl+0x1b2/0x1030 [ 715.472885] ? setup_sigcontext+0x810/0x810 [ 715.477216] ? ioctl_preallocate+0x1d0/0x1d0 [ 715.481992] ? selinux_parse_skb.constprop.42+0x1a90/0x1a90 [ 715.487731] ? do_futex+0x17b0/0x17b0 [ 715.491928] ? exit_to_usermode_loop+0xc6/0x150 [ 715.496605] exit_to_usermode_loop+0x116/0x150 [ 715.501533] do_syscall_64+0x35d/0x4b0 [ 715.505435] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 715.510989] RIP: 0033:0x457679 [ 715.514184] RSP: 002b:00007f25a3cbccf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 715.525335] RAX: fffffffffffffe00 RBX: 000000000072c0e8 RCX: 0000000000457679 [ 715.533613] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000072c0e8 [ 715.541229] RBP: 000000000072c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 715.548501] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000072c0ec [ 715.556175] R13: 00007ffdfaf7c72f R14: 00007f25a3cbd9c0 R15: 0000000000000003 [ 715.563814] [ 715.563814] Showing all locks held in the system: [ 715.570474] 1 lock held by khungtaskd/23: [ 715.574632] #0: (tasklist_lock){.+.+}, at: [] debug_show_all_locks+0x74/0x20f [ 715.583719] 2 locks held by getty/1767: [ 715.587686] #0: (&tty->ldisc_sem){++++}, at: [] tty_ldisc_ref_wait+0x20/0x80 [ 715.596749] #1: (&ldata->atomic_read_lock){+.+.}, at: [] n_tty_read+0x1ff/0x15e0 [ 715.606078] 1 lock held by syz-executor3/8706: [ 715.610676] #0: (&mm->mmap_sem){++++}, at: [] do_exit+0x512/0x2800 [ 715.618759] 1 lock held by syz-executor3/8708: [ 715.623354] #0: (&mm->mmap_sem){++++}, at: [] do_exit+0x512/0x2800 [ 715.631457] 1 lock held by syz-executor3/8713: [ 715.636025] #0: (&mm->mmap_sem){++++}, at: [] do_exit+0x512/0x2800 [ 715.644125] 1 lock held by syz-executor3/8714: [ 715.649099] #0: (&mm->mmap_sem){++++}, at: [] do_exit+0x512/0x2800 [ 715.657205] [ 715.658825] ============================================= [ 715.658825] [ 715.667378] NMI backtrace for cpu 1 [ 715.671052] CPU: 1 PID: 23 Comm: khungtaskd Not tainted 4.14.71+ #8 [ 715.677451] Call Trace: [ 715.680037] dump_stack+0xb9/0x11b [ 715.683637] ? irq_force_complete_move.cold.3+0x64/0x64 [ 715.689042] nmi_cpu_backtrace.cold.0+0x47/0x85 [ 715.693720] ? irq_force_complete_move.cold.3+0x64/0x64 [ 715.699079] nmi_trigger_cpumask_backtrace+0x121/0x146 [ 715.704398] watchdog+0x574/0xa70 [ 715.707859] ? reset_hung_task_detector+0x10/0x10 [ 715.712727] kthread+0x348/0x420 [ 715.716090] ? kthread_create_on_node+0xe0/0xe0 [ 715.720754] ret_from_fork+0x3a/0x50 [ 715.724526] Sending NMI from CPU 1 to CPUs 0: [ 715.729470] NMI backtrace for cpu 0 [ 715.729474] CPU: 0 PID: 8712 Comm: syz-executor3 Not tainted 4.14.71+ #8 [ 715.729477] task: ffff8801c30dc680 task.stack: ffff8801c2680000 [ 715.729480] RIP: 0010:lock_acquire+0x0/0x380 [ 715.729483] RSP: 0018:ffff8801c2687a90 EFLAGS: 00000246 [ 715.729489] RAX: ffff8801c291cfc0 RBX: 0000000000000000 RCX: 0000000000000000 [ 715.729492] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8801c291cfc0 [ 715.729495] RBP: ffff8801c2687c20 R08: 0000000000000001 R09: 0000000000000000 [ 715.729499] R10: ffff8801c2687c40 R11: 0000000000000000 R12: dffffc0000000000 [ 715.729503] R13: 0000000000000000 R14: ffff8801c291cf60 R15: ffffffff957ffea4 [ 715.729506] FS: 00007f25a3cff700(0000) GS:ffff8801d7600000(0000) knlGS:0000000000000000 [ 715.729509] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 715.729513] CR2: 00007ffd6577cee8 CR3: 00000001c42a6005 CR4: 00000000001606b0 [ 715.729515] Call Trace: [ 715.729517] __mutex_lock+0xf5/0x1480 [ 715.729520] ? perf_mmap+0x514/0x1370 [ 715.729522] ? perf_mmap+0x514/0x1370 [ 715.729525] ? __ww_mutex_wakeup_for_backoff+0x240/0x240 [ 715.729527] ? lock_downgrade+0x560/0x560 [ 715.729530] ? perf_mmap+0x645/0x1370 [ 715.729532] ? lock_release+0x13/0x720 [ 715.729535] ? __mutex_unlock_slowpath+0x8d/0x770 [ 715.729538] ? wait_for_completion_io+0x10/0x10 [ 715.729540] ? perf_mmap+0x514/0x1370 [ 715.729542] perf_mmap+0x514/0x1370 [ 715.729545] mmap_region+0x836/0xfb0 [ 715.729547] do_mmap+0x551/0xb80 [ 715.729549] vm_mmap_pgoff+0x180/0x1d0 [ 715.729552] ? vma_is_stack_for_current+0xb0/0xb0 [ 715.729562] ? __fget+0x22b/0x3a0 [ 715.729564] SyS_mmap_pgoff+0xf8/0x1a0 [ 715.729567] ? align_vdso_addr+0x50/0x50 [ 715.729569] do_syscall_64+0x19b/0x4b0 [ 715.729572] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 715.729574] RIP: 0033:0x457679 [ 715.729577] RSP: 002b:00007f25a3cfec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 715.729583] RAX: ffffffffffffffda RBX: 00007f25a3cff6d4 RCX: 0000000000457679 [ 715.729587] RDX: 0000000000000000 RSI: 0000000000002000 RDI: 0000000020941000 [ 715.729590] RBP: 000000000072bfa0 R08: 0000000000000005 R09: 0000000000000000 [ 715.729593] R10: 0000000000004011 R11: 0000000000000246 R12: 00000000ffffffff [ 715.729597] R13: 00000000004d3ab0 R14: 00000000004c2915 R15: 0000000000000001 [ 715.729599] Code: b5 32 00 e9 78 fc ff ff 4c 89 e7 e8 0b b5 32 00 e9 99 fd ff ff e8 f1 b4 32 00 e9 49 fe ff ff e8 e7 b4 32 00 e9 b2 fe ff ff 66 90 <48> b8 00 00 00 00 00 fc ff df 41 57 4d 89 ca 45 89 c7 41 56 41 [ 715.731691] Kernel panic - not syncing: hung_task: blocked tasks [ 715.731699] CPU: 1 PID: 23 Comm: khungtaskd Not tainted 4.14.71+ #8 [ 715.731702] Call Trace: [ 715.731723] dump_stack+0xb9/0x11b [ 715.731736] panic+0x1bf/0x3a4 [ 715.731744] ? add_taint.cold.4+0x16/0x16 [ 715.731768] watchdog+0x585/0xa70 [ 715.731785] ? reset_hung_task_detector+0x10/0x10 [ 715.731792] kthread+0x348/0x420 [ 715.731800] ? kthread_create_on_node+0xe0/0xe0 [ 715.731810] ret_from_fork+0x3a/0x50 [ 716.015001] Kernel Offset: 0x14400000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff) [ 716.025942] Rebooting in 86400 seconds..