[....] Starting enhanced syslogd: rsyslogd[   13.649975] audit: type=1400 audit(1515514898.126:4): avc:  denied  { syslog } for  pid=3174 comm="rsyslogd" capability=34  scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
Starting mcstransd: 
[....] Starting file context maintaining daemon: restorecond[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.15.235' (ECDSA) to the list of known hosts.
2018/01/09 16:21:51 fuzzer started
2018/01/09 16:21:51 dialing manager at 10.128.0.26:39327
2018/01/09 16:21:54 kcov=true, comps=false
2018/01/09 16:21:55 executing program 0:
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$loop(&(0x7f0000c22000)='/dev/loop#\x00', 0x0, 0x5)
fallocate(r0, 0x1, 0x0, 0x2000000000401)

2018/01/09 16:21:55 executing program 7:
mmap(&(0x7f0000000000/0xef5000)=nil, 0xef5000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x2, 0xc)
write(r0, &(0x7f0000621000)="1f0000000101ffd6001effff0401f800000000000100000000000000000000", 0x1f)
r1 = fcntl$dupfd(r0, 0x0, r0)
read(r1, &(0x7f00003c7000)=""/4096, 0x1000)

2018/01/09 16:21:55 executing program 3:

2018/01/09 16:21:55 executing program 4:

2018/01/09 16:21:55 executing program 1:

2018/01/09 16:21:55 executing program 2:

2018/01/09 16:21:55 executing program 5:
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4)
setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f00000b2000)=0xffffffffffffffff, 0x4)
bind$inet(r0, &(0x7f0000630000)={0x2, 0x2, @multicast2=0xe0000002, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x10)
sendto$inet(r0, &(0x7f0000a92000)="", 0x0, 0x800000020000000, &(0x7f0000303000)={0x2, 0x2, @loopback=0x7f000001, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000d3f000-0x38)=[{0x0, 0x0}, {0x0, 0x0}, {0x2, 0x0}, {0x3, 0x3}, {0x0, 0x0}, {0x0, 0x0}, {0x0, 0x0}], 0x122)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000966000-0x14)={0x0, 0x852b, 0xffff, 0x0, 0x0}, 0x14)
writev(r0, &(0x7f0000a77000)=[{&(0x7f0000bc8000-0x66)='1', 0x1}], 0x1)
writev(r0, &(0x7f00000ae000)=[{&(0x7f000059b000-0x1000)="1b", 0x1}], 0x1)
sendmmsg(r0, &(0x7f00006e5000)=[{{&(0x7f0000473000-0x6)=@hci={0x1f, 0x0, 0x0}, 0x6, &(0x7f0000273000-0xa0)=[{&(0x7f000018d000)="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", 0x7af}, {&(0x7f00007b9000-0xcb)="da43", 0x2}], 0x2, &(0x7f000087c000)=[{0x10, 0x0, 0x5, ""}, {0x20, 0x0, 0x0, "311e0a16b9b30d769f"}], 0x30, 0x80}, 0x0}], 0x1, 0x40000)

2018/01/09 16:21:55 executing program 6:
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000d15000)={0x0, 0x0, &(0x7f0000260000-0x10)={&(0x7f00004cf000-0x20)={0x2, 0x7, 0x0, 0x6, 0x2, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, []}, 0x10}, 0x1, 0x0, 0x0, 0x0}, 0x0)
sendto$inet(0xffffffffffffffff, &(0x7f0000dd9000)="", 0x0, 0x0, &(0x7f000075e000-0x10)={0x2, 0xffffffffffffffff, @empty=0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x10)

syzkaller login: [   31.152381] audit: type=1400 audit(1515514915.626:5): avc:  denied  { sys_admin } for  pid=3380 comm="syz-executor3" capability=21  scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1
[   31.293930] IPVS: Creating netns size=2536 id=1
[   31.360760] IPVS: Creating netns size=2536 id=2
2018/01/09 16:21:55 executing program 3:
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000003000)=@abs={0x1, 0x0, 0x0}, 0x8)

[   31.399574] audit: type=1400 audit(1515514915.876:6): avc:  denied  { sys_chroot } for  pid=3537 comm="syz-executor0" capability=18  scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1
[   31.425008] IPVS: Creating netns size=2536 id=3
[   31.438517] random: crng init done
2018/01/09 16:21:55 executing program 3:

2018/01/09 16:21:55 executing program 3:

2018/01/09 16:21:55 executing program 2:

2018/01/09 16:21:55 executing program 3:

2018/01/09 16:21:55 executing program 2:

2018/01/09 16:21:55 executing program 3:

2018/01/09 16:21:55 executing program 2:

[   31.447189] IPVS: Creating netns size=2536 id=4
[   31.481651] IPVS: Creating netns size=2536 id=5
[   31.493861] IPVS: Creating netns size=2536 id=6
[   31.515974] IPVS: Creating netns size=2536 id=7
[   31.531704] audit: type=1400 audit(1515514916.006:7): avc:  denied  { create } for  pid=3615 comm="syz-executor7" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1
[   31.537623] audit: type=1400 audit(1515514916.006:8): avc:  denied  { net_admin } for  pid=3616 comm="syz-executor5" capability=12  scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1
[   31.583129] audit: type=1400 audit(1515514916.056:9): avc:  denied  { write } for  pid=3615 comm="syz-executor7" path="socket:[10181]" dev="sockfs" ino=10181 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1
[   31.592024] IPVS: Creating netns size=2536 id=8
[   31.616704] netlink: 11 bytes leftover after parsing attributes in process `syz-executor7'.
2018/01/09 16:21:56 executing program 0:
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f00008cd000)={0x2, 0x0, @multicast1=0xe0000001, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000d4f000-0x4)=0x1, 0x4)
connect$inet(r0, &(0x7f0000607000-0x10)={0x2, 0x0, @loopback=0x7f000001, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x10)
sendto(r0, &(0x7f0000b11000)="91", 0x1, 0x0, 0x0, 0x0)
sendto$inet(r0, &(0x7f0000e45000-0x101)='*', 0x1, 0x0, &(0x7f0000483000)={0x2, 0xffffffffffffffff, @empty=0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x10)
sendto$inet(r0, &(0x7f0000400000)="8e", 0x1, 0x4040001, &(0x7f0000f2c000-0x10)={0x2, 0xffffffffffffffff, @rand_addr=0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x10)

2018/01/09 16:21:56 executing program 1:

2018/01/09 16:21:56 executing program 5:
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$binder(&(0x7f0000001000)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x20011, r0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000009000-0x30)={0x4c, 0x0, &(0x7f0000452000-0x4c)=[@transaction_sg={0x40486311, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x10, &(0x7f000091b000)=[@ptr={0x70742a85, 0x0, &(0x7f0000802000)=0x0, 0xfffffffffffffee9, 0x0, 0x0}, @fda={0x66646185, 0x0, 0x0, 0x0}], &(0x7f000062b000)=[0x0, 0x0]}, 0x0}}], 0x0, 0x0, &(0x7f0000009000)=""})

2018/01/09 16:21:56 executing program 7:
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x3, 0x1)
setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0xffffffffffffffff, 0x0, @mcast1={0xff, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x1}, 0x0}, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, 0x88)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000904000)={0x1, {{0xa, 0xffffffffffffffff, 0x0, @mcast1={0xff, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x1}, 0x0}, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x800400000001, 0x2, [{{0xa, 0xffffffffffffffff, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0xffffffffffffffff, 0xaa}, 0x0}, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, {{0xa, 0xffffffffffffffff, 0x0, @loopback={0x0, 0x1}, 0x0}, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}, 0x190)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2f, &(0x7f0000da2000-0x108)={0x0, {{0xa, 0xffffffffffffffff, 0x0, @mcast1={0xff, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x1}, 0x0}, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, {{0xa, 0xffffffffffffffff, 0x0, @loopback={0x0, 0x1}, 0x0}, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, 0x108)

2018/01/09 16:21:56 executing program 6:
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000d0a000-0x10)={0x2, 0x1, @empty=0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x10)
sendto$inet(r0, &(0x7f00009ad000)="f1", 0x1, 0x0, &(0x7f000015a000)={0x2, 0x1, @empty=0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x10)
recvmsg(r0, &(0x7f000050d000)={0x0, 0x0, &(0x7f00000f7000)=[], 0x0, &(0x7f0000766000-0x51)=""/0, 0x0, 0x0}, 0x0)

2018/01/09 16:21:56 executing program 4:
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000fba000)='./control\x00', 0x0)
creat(&(0x7f000001d000-0x10)='./control/file0\x00', 0x0)
perf_event_open(&(0x7f0000223000)={0x2, 0x78, 0xe3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000)=0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount(&(0x7f00004ec000-0xa)='./control\x00', &(0x7f00005c4000)='./control/file0\x00', &(0x7f0000b16000-0x3)='v7\x00', 0x1000, &(0x7f0000a2d000-0x34)="")

2018/01/09 16:21:56 executing program 3:

2018/01/09 16:21:56 executing program 2:
getcwd(&(0x7f00004c5000+0x753)=""/20, 0x1461f38c30c33243)

2018/01/09 16:21:56 executing program 2:
mmap(&(0x7f0000000000/0xfe5000)=nil, 0xfe5000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = socket(0x100000000000010, 0x802, 0x10)
write(r0, &(0x7f0000fe5000-0x26)="2600000024001900fee2130001f88d400300002501ec08fc0e000300ffff227ff50000000035", 0x26)

2018/01/09 16:21:56 executing program 3:

2018/01/09 16:21:56 executing program 1:

2018/01/09 16:21:56 executing program 7:

2018/01/09 16:21:56 executing program 1:

2018/01/09 16:21:56 executing program 7:

2018/01/09 16:21:56 executing program 1:

[   31.736862] audit: type=1400 audit(1515514916.206:10): avc:  denied  { create } for  pid=3702 comm="syz-executor2" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
[   31.744194] audit: type=1400 audit(1515514916.226:11): avc:  denied  { set_context_mgr } for  pid=3692 comm="syz-executor5" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=binder permissive=1
[   31.749962] audit: type=1400 audit(1515514916.226:12): avc:  denied  { call } for  pid=3692 comm="syz-executor5" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=binder permissive=1
[   31.750133] binder: 3692:3705 got transaction with too large buffer
[   31.750162] binder: 3692:3705 transaction failed 29201/-22, size 72-16 line 3286
[   31.763187] binder_alloc: binder_alloc_mmap_handler: 3692 20000000-20002000 already mapped failed -16
[   31.771251] binder: BINDER_SET_CONTEXT_MGR already set
[   31.771258] binder: 3692:3705 ioctl 40046207 0 returned -16
[   31.771305] binder_alloc: 3692: binder_alloc_buf, no vma
[   31.771321] binder: 3692:3712 transaction failed 29189/-3, size 72-16 line 3127
2018/01/09 16:21:56 executing program 0:
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$keychord(0xffffffffffffff9c, &(0x7f0000001000-0xe)='/dev/keychord\x00', 0x80001, 0x0)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000001000-0xc)={<r1=>0x0, 0x30, &(0x7f0000000000)=[@in={0x2, 0x0, @rand_addr=0x10000, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @in={0x2, 0x2, @rand_addr=0x4, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @in={0x2, 0x3, @local={0xac, 0x14, 0x0, 0xaa}, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}, &(0x7f0000001000-0x4)=0xc)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f0000000000)={r1, @in={{0x2, 0x0, @multicast1=0xe0000001, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, [0x2, 0x7ff, 0x1f40, 0xc1, 0x570, 0x5, 0x0, 0x6, 0x101, 0x0, 0x8, 0x40, 0x401, 0xd7, 0x7fff]}, &(0x7f0000063000)=0x108)
mmap(&(0x7f0000000000/0xf7d000)=nil, 0xf7d000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
socket(0x10, 0x802, 0x0)
write(r0, &(0x7f0000d4e000)="24000000190025d0471c1f24fffffc0e0000000400100000000040ea0800070000002ae0", 0xfffffffffffffebe)

2018/01/09 16:21:56 executing program 3:
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x2)
connect$netlink(r0, &(0x7f0000497000-0xc)=@kern={0x10, 0x0, 0x0, 0x40}, 0xc)

2018/01/09 16:21:56 executing program 7:
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x2, 0x78, 0xda, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000)=0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000ee4000)='/dev/vga_arbiter\x00', 0x0)
write(r0, &(0x7f0000bcf000-0x2f)='#!', 0x2)
execveat(r0, &(0x7f0000ff7000)='./file0\x00', &(0x7f000038d000-0x10)=[], &(0x7f000034c000-0x8)=[&(0x7f0000ff7000)="00000000000000060804002000fffc0c6565643b799365005f1b76"], 0x1000)

2018/01/09 16:21:56 executing program 6:
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = socket(0x40000000015, 0x5, 0x0)
bind$inet(r0, &(0x7f000032b000-0x10)={0x2, 0xffffffffffffffff, @local={0xac, 0x14, 0x0, 0xaa}, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x10)
close(r0)

2018/01/09 16:21:56 executing program 1:
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = open(&(0x7f0000521000-0x8)='./file0\x00', 0x141042, 0x0)
ftruncate(r0, 0x7fff)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f000051c000-0xa)='/dev/ptmx\x00', 0x802, 0x0)
sendfile(r1, r0, &(0x7f0000336000-0x8)=0x0, 0xffffffff)
writev(r1, &(0x7f000038f000)=[{&(0x7f0000f42000-0x66)='E', 0x1}], 0x1)

2018/01/09 16:21:56 executing program 5:
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000ee4000)='/dev/vga_arbiter\x00', 0x0)
write(r0, &(0x7f0000bcf000-0x2f)='#!', 0x2)
execveat(r0, &(0x7f0000ff7000)='./file0\x00', &(0x7f000038d000-0x10)=[], &(0x7f000034c000-0x8)=[&(0x7f0000ff7000)="00000000000000060804002000fffc0c6565643b799365005f1b76"], 0x1000)

2018/01/09 16:21:56 executing program 2:
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000305000-0x28)={@syzn={0x73, 0x79, 0x7a, 0x0, 0x0}, &(0x7f00006a6000-0x18)=@ethtool_rxfh_indir={0x19, 0x0, []}, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})

2018/01/09 16:21:56 executing program 4:
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$loop(&(0x7f0000b2b000)='/dev/loop#\x00', 0x0, 0x5)
fallocate(r0, 0x1, 0x0, 0x2000000000401)

2018/01/09 16:21:56 executing program 5:
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f000067f000)='gid_map\x00')
recvmsg(r0, &(0x7f0000276000-0x1c)={0x0, 0x0, &(0x7f0000793000-0x10)=[{&(0x7f000083e000)=""/14, 0xe}, {&(0x7f000077d000-0xda)=""/218, 0xda}], 0x2, &(0x7f0000966000-0x1000)=""/4096, 0x1000, 0x3}, 0x2143)
sendfile(r0, r0, &(0x7f00000f9000)=0x0, 0x401)

[   31.771690] audit: type=1400 audit(1515514916.246:13): avc:  denied  { dac_override } for  pid=3695 comm="syz-executor4" capability=1  scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1
[   31.798142] binder: undelivered TRANSACTION_ERROR: 29189
[   31.798456] binder: undelivered TRANSACTION_ERROR: 29201
[   31.926528] ------------[ cut here ]------------
[   31.933797] WARNING: CPU: 0 PID: 3736 at mm/page_alloc.c:3550 __alloc_pages_slowpath+0x1136/0x1d90
[   31.962253] Kernel panic - not syncing: panic_on_warn set ...
[   31.962253] 
[   31.969640] CPU: 0 PID: 3736 Comm: syz-executor0 Not tainted 4.9.75-g8910fa5 #19
[   31.977151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   31.986475]  ffff8801b4b6f668 ffffffff81d93049 ffffffff83a47180 ffff8801b4b6f740
[   31.994428]  ffffffff83aa4400 ffffffff81451c26 0000000000000009 ffff8801b4b6f730
[   32.002451]  ffffffff8142e281 0000000041b58ab3 ffffffff84189648 ffffffff8142e0c5
[   32.010405] Call Trace:
[   32.012963]  [<ffffffff81d93049>] dump_stack+0xc1/0x128
[   32.018296]  [<ffffffff81451c26>] ? __alloc_pages_slowpath+0x1136/0x1d90
[   32.025106]  [<ffffffff8142e281>] panic+0x1bc/0x3a8
[   32.030091]  [<ffffffff8142e0c5>] ? percpu_up_read_preempt_enable.constprop.53+0xd7/0xd7
[   32.038285]  [<ffffffff8142eee5>] ? load_image_and_restore+0xf9/0xf9
[   32.044744]  [<ffffffff81449ed5>] ? __free_pages_ok+0xbe5/0x16c0
[   32.050858]  [<ffffffff81130039>] ? __warn+0x1a9/0x1e0
[   32.056101]  [<ffffffff81451c26>] ? __alloc_pages_slowpath+0x1136/0x1d90
[   32.062905]  [<ffffffff81130054>] __warn+0x1c4/0x1e0
[   32.067981]  [<ffffffff811302bc>] warn_slowpath_null+0x2c/0x40
[   32.073918]  [<ffffffff81451c26>] __alloc_pages_slowpath+0x1136/0x1d90
[   32.081186]  [<ffffffff8144dbef>] ? __free_pages+0x4f/0x80
[   32.086777]  [<ffffffff81127399>] ? put_task_stack+0x149/0x2d0
[   32.092731]  [<ffffffff811b8043>] ? finish_task_switch+0x293/0x630
[   32.099016]  [<ffffffff811b7f71>] ? finish_task_switch+0x1c1/0x630
[   32.105301]  [<ffffffff8389f9cd>] ? __schedule+0x64d/0x1ba0
[   32.110982]  [<ffffffff81450af0>] ? gfp_pfmemalloc_allowed+0x110/0x110
[   32.117612]  [<ffffffff8144f18f>] ? get_page_from_freelist+0xcff/0x19f0
[   32.124333]  [<ffffffff811b8c05>] ? __might_sleep+0x95/0x1a0
[   32.130096]  [<ffffffff81452bbb>] __alloc_pages_nodemask+0x33b/0x6b0
[   32.136562]  [<ffffffff81452880>] ? __alloc_pages_slowpath+0x1d90/0x1d90
[   32.143371]  [<ffffffff814a5f8a>] kmalloc_order+0x2a/0x70
[   32.148873]  [<ffffffff814a5fef>] kmalloc_order_trace+0x1f/0x190
[   32.154983]  [<ffffffff8153816d>] __kmalloc+0x19d/0x310
[   32.160313]  [<ffffffff82a7a5be>] keychord_write+0xce/0xbc0
[   32.165989]  [<ffffffff82a7a4f0>] ? keychord_read+0x510/0x510
[   32.171843]  [<ffffffff8123ac70>] ? debug_check_no_locks_freed+0x2c0/0x2c0
[   32.178823]  [<ffffffff82a7a4f0>] ? keychord_read+0x510/0x510
[   32.184672]  [<ffffffff8156cd43>] __vfs_write+0x103/0x680
[   32.190177]  [<ffffffff8156cc40>] ? do_iter_readv_writev+0x400/0x400
[   32.196636]  [<ffffffff811b8c05>] ? __might_sleep+0x95/0x1a0
[   32.202408]  [<ffffffff81be0c59>] ? __inode_security_revalidate+0xd9/0x130
[   32.209386]  [<ffffffff81bda799>] ? avc_policy_seqno+0x9/0x20
[   32.215237]  [<ffffffff81beb0e2>] ? selinux_file_permission+0x82/0x460
[   32.221871]  [<ffffffff81bd1859>] ? security_file_permission+0x89/0x1e0
[   32.228593]  [<ffffffff8156e355>] ? rw_verify_area+0xe5/0x2b0
[   32.234445]  [<ffffffff8156ea29>] vfs_write+0x189/0x530
[   32.239775]  [<ffffffff81572519>] SyS_write+0xd9/0x1b0
[   32.245016]  [<ffffffff81572440>] ? SyS_read+0x1b0/0x1b0
[   32.250433]  [<ffffffff8167b65c>] ? compat_SyS_ioctl+0x8c/0x2050
[   32.256543]  [<ffffffff81006d9f>] ? do_fast_syscall_32+0xcf/0x890
[   32.262746]  [<ffffffff81572440>] ? SyS_read+0x1b0/0x1b0
[   32.268161]  [<ffffffff81006fc7>] do_fast_syscall_32+0x2f7/0x890
[   32.274364]  [<ffffffff81003036>] ? trace_hardirqs_off_thunk+0x1a/0x1c
[   32.280999]  [<ffffffff838b2334>] entry_SYSENTER_compat+0x74/0x83
[   32.287730] Dumping ftrace buffer:
[   32.291275]    (ftrace buffer empty)
[   32.294950] Kernel Offset: disabled
[   32.298544] Rebooting in 86400 seconds..