[ 34.109590] audit: type=1800 audit(1561785420.046:34): pid=6912 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op="collect_data" cause="failed(directio)" comm="startpar" name="rmnologin" dev="sda1" ino=2456 res=0
Debian GNU/Linux 7 syzkaller ttyS0
syzkaller login: [ 35.504625] audit: type=1400 audit(1561785421.456:35): avc: denied { map } for pid=7083 comm="sh" path="/bin/dash" dev="sda1" ino=1473 scontext=system_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1
[ 35.586594] random: sshd: uninitialized urandom read (32 bytes read)
[ 35.846764] audit: type=1400 audit(1561785421.796:36): avc: denied { map } for pid=7087 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1
[ 35.921717] random: sshd: uninitialized urandom read (32 bytes read)
[ 36.536718] random: sshd: uninitialized urandom read (32 bytes read)
[ 652.585471] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.10.37' (ECDSA) to the list of known hosts.
[ 658.285044] random: sshd: uninitialized urandom read (32 bytes read)
[ 658.408606] audit: type=1400 audit(1561786044.356:37): avc: denied { map } for pid=7099 comm="syz-executor232" path="/root/syz-executor232886150" dev="sda1" ino=1426 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1
[ 763.430045] INFO: rcu_sched self-detected stall on CPU
[ 763.435608] 0-...: (10499 ticks this GP) idle=6e6/140000000000001/0 softirq=23189/23194 fqs=0
[ 763.445100] (t=10500 jiffies g=925 c=924 q=4)
[ 763.449797] rcu_sched kthread starved for 10500 jiffies! g925 c924 f0x0 RCU_GP_WAIT_FQS(3) ->state=0x0 ->cpu=0
[ 763.459946] rcu_sched R running task 29824 9 2 0x80000000
[ 763.467256] Call Trace:
[ 763.469928] __schedule+0x7b8/0x1cd0
[ 763.473656] ? pci_mmcfg_check_reserved+0x150/0x150
[ 763.478732] ? _raw_spin_unlock_irqrestore+0x6b/0xe0
[ 763.483868] schedule+0x92/0x1c0
[ 763.487243] schedule_timeout+0x43e/0xe10
[ 763.491400] ? usleep_range+0x130/0x130
[ 763.497758] ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 763.507008] ? prepare_to_swait+0xcc/0x100
[ 763.520948] ? call_timer_fn+0x670/0x670
[ 763.525945] rcu_gp_kthread+0xbf4/0x1ec0
[ 763.530029] ? force_qs_rnp+0x4d0/0x4d0
[ 763.534035] kthread+0x319/0x430
[ 763.537411] ? force_qs_rnp+0x4d0/0x4d0
[ 763.541423] ? kthread_create_on_node+0xd0/0xd0
[ 763.546114] ret_from_fork+0x24/0x30
[ 763.550140] NMI backtrace for cpu 0
[ 763.554196] CPU: 0 PID: 7107 Comm: syz-executor232 Not tainted 4.14.131 #25
[ 763.561303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 763.570952] Call Trace:
[ 763.573558]
[ 763.575806] dump_stack+0x138/0x19c
[ 763.579455] nmi_cpu_backtrace.cold+0x57/0x94
[ 763.583966] ? irq_force_complete_move.cold+0x7d/0x7d
[ 763.589454] nmi_trigger_cpumask_backtrace+0x141/0x189
[ 763.594835] arch_trigger_cpumask_backtrace+0x14/0x20
[ 763.600264] rcu_dump_cpu_stacks+0x186/0x1d2
[ 763.604705] rcu_check_callbacks.cold+0x43d/0xd0a
[ 763.609576] ? rcu_lockdep_current_cpu_online+0xf2/0x140
[ 763.615051] update_process_times+0x31/0x70
[ 763.619387] tick_sched_handle+0x85/0x160
[ 763.623549] tick_sched_timer+0x43/0x130
[ 763.627644] __hrtimer_run_queues+0x270/0xbc0
[ 763.632152] ? tick_sched_do_timer+0xe0/0xe0
[ 763.636577] ? hrtimer_start_range_ns+0x10d0/0x10d0
[ 763.641619] hrtimer_interrupt+0x1d8/0x5d0
[ 763.645925] smp_apic_timer_interrupt+0x11c/0x5e0
[ 763.650779] apic_timer_interrupt+0x8e/0xa0
[ 763.655107]
[ 763.657349] RIP: 0010:debug_smp_processor_id+0x1c/0x20
[ 763.662713] RSP: 0018:ffff88808fb7f470 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff10
[ 763.670436] RAX: 0000000000000000 RBX: ffffffff87ab2740 RCX: 0000000000000000
[ 763.678077] RDX: 0000000000000000 RSI: ffffffff869d29a0 RDI: ffffffff869d29e0
[ 763.688482] RBP: ffff88808fb7f470 R08: 000000000000001c R09: ffffea00021c8a40
[ 763.695759] R10: ffff8880a5849a40 R11: ffff8880872297e3 R12: 0000000000000001
[ 763.703037] R13: 0000000000000000 R14: ffff888095f255f0 R15: 000000000000001c
[ 763.710343] rcu_lockdep_current_cpu_online+0x3a/0x140
[ 763.715626] ? rcu_is_watching+0x15/0xb0
[ 763.719692] rcu_read_lock_sched_held+0x97/0x130
[ 763.724467] __mark_inode_dirty+0x8f4/0x1040
[ 763.729323] ? block_write_end+0x4d/0x100
[ 763.733486] generic_write_end+0x1b7/0x290
[ 763.737742] ext4_da_write_end+0x344/0x8e0
[ 763.741992] generic_perform_write+0x29f/0x480
[ 763.746586] ? page_endio+0x530/0x530
[ 763.750394] ? current_time+0xb0/0xb0
[ 763.754203] ? ext4_file_write_iter+0x1f4/0xe90
[ 763.759062] __generic_file_write_iter+0x239/0x5b0
[ 763.764012] ext4_file_write_iter+0x2ac/0xe90
[ 763.768521] ? splice_direct_to_actor+0x29e/0x7b0
[ 763.773386] ? ext4_file_mmap+0x2c0/0x2c0
[ 763.777553] ? __might_sleep+0x93/0xb0
[ 763.781583] do_iter_readv_writev+0x418/0x670
[ 763.786107] ? vfs_dedupe_file_range+0x8f0/0x8f0
[ 763.790883] ? rw_verify_area+0xea/0x2b0
[ 763.794951] do_iter_write+0x154/0x540
[ 763.798846] ? rcu_lockdep_current_cpu_online+0xf2/0x140
[ 763.804306] ? __kmalloc+0x376/0x7a0
[ 763.808032] vfs_iter_write+0x77/0xb0
[ 763.811845] iter_file_splice_write+0x572/0xad0
[ 763.816520] ? touch_atime+0xce/0x250
[ 763.820328] ? page_cache_pipe_buf_steal+0x2f0/0x2f0
[ 763.825458] ? rw_verify_area+0xea/0x2b0
[ 763.829524] ? page_cache_pipe_buf_steal+0x2f0/0x2f0
[ 763.834642] direct_splice_actor+0x123/0x190
[ 763.839150] splice_direct_to_actor+0x29e/0x7b0
[ 763.843831] ? generic_pipe_buf_nosteal+0x10/0x10
[ 763.848699] ? do_splice_to+0x170/0x170
[ 763.852682] ? rw_verify_area+0xea/0x2b0
[ 763.856753] do_splice_direct+0x18d/0x230
[ 763.860925] ? splice_direct_to_actor+0x7b0/0x7b0
[ 763.865777] ? rcu_sync_lockdep_assert+0x6d/0xb0
[ 763.870653] ? __sb_start_write+0x153/0x2f0
[ 763.878132] do_sendfile+0x4db/0xbd0
[ 763.882756] ? do_compat_pwritev64+0x140/0x140
[ 763.887348] ? kasan_check_write+0x14/0x20
[ 763.891590] ? _copy_from_user+0x99/0x110
[ 763.895746] SyS_sendfile64+0x9d/0x110
[ 763.899640] ? SyS_sendfile+0x130/0x130
[ 763.903619] ? do_syscall_64+0x53/0x640
[ 763.908232] ? SyS_sendfile+0x130/0x130
[ 763.912220] do_syscall_64+0x1e8/0x640
[ 763.916112] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 763.920997] entry_SYSCALL_64_after_hwframe+0x42/0xb7
[ 763.926184] RIP: 0033:0x4417a9
[ 763.929636] RSP: 002b:00007fff5f5841a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 763.937408] RAX: ffffffffffffffda RBX: 00007fff5f584350 RCX: 00000000004417a9
[ 763.944808] RDX: 0000000020000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 763.952209] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 763.960363] R10: 00008080fffffffe R11: 0000000000000246 R12: 0000000000000000
[ 763.969488] R13: 0000000000402480 R14: 0000000000000000 R15: 0000000000000000
[ 763.977158] INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 763.984106] (detected by 0, t=10554 jiffies, g=1220, c=1219, q=23)
[ 763.992146] All QSes seen, last rcu_preempt kthread activity 10554 (4295013694-4295003140), jiffies_till_next_fqs=1, root ->qsmask 0x0
[ 764.004376] syz-executor232 R running task 26976 7107 7103 0x00000008
[ 764.011594] Call Trace:
[ 764.014179]
[ 764.016393] sched_show_task.cold+0x294/0x2ff
[ 764.020903] rcu_check_callbacks.cold+0xcb1/0xd0a
[ 764.025764] update_process_times+0x31/0x70
[ 764.030180] tick_sched_handle+0x85/0x160
[ 764.034338] tick_sched_timer+0x43/0x130
[ 764.038421] __hrtimer_run_queues+0x270/0xbc0
[ 764.043019] ? tick_sched_do_timer+0xe0/0xe0
[ 764.047440] ? hrtimer_start_range_ns+0x10d0/0x10d0
[ 764.052481] hrtimer_interrupt+0x1d8/0x5d0
[ 764.056741] smp_apic_timer_interrupt+0x11c/0x5e0
[ 764.061839] apic_timer_interrupt+0x8e/0xa0
[ 764.067332]
[ 764.069757] RIP: 0010:debug_smp_processor_id+0x1c/0x20
[ 764.075479] RSP: 0018:ffff88808fb7f470 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff10
[ 764.083291] RAX: 0000000000000000 RBX: ffffffff87ab2740 RCX: 0000000000000000
[ 764.090572] RDX: 0000000000000000 RSI: ffffffff869d29a0 RDI: ffffffff869d29e0
[ 764.098111] RBP: ffff88808fb7f470 R08: 000000000000001c R09: ffffea00021c8a40
[ 764.105480] R10: ffff8880a5849a40 R11: ffff8880872297e3 R12: 0000000000000001
[ 764.112755] R13: 0000000000000000 R14: ffff888095f255f0 R15: 000000000000001c
[ 764.120050] rcu_lockdep_current_cpu_online+0x3a/0x140
[ 764.125362] ? rcu_is_watching+0x15/0xb0
[ 764.129431] rcu_read_lock_sched_held+0x97/0x130
[ 764.134199] __mark_inode_dirty+0x8f4/0x1040
[ 764.138613] ? block_write_end+0x4d/0x100
[ 764.142940] generic_write_end+0x1b7/0x290
[ 764.147191] ext4_da_write_end+0x344/0x8e0
[ 764.151457] generic_perform_write+0x29f/0x480
[ 764.156054] ? page_endio+0x530/0x530
[ 764.159883] ? current_time+0xb0/0xb0
[ 764.163747] ? ext4_file_write_iter+0x1f4/0xe90
[ 764.168441] __generic_file_write_iter+0x239/0x5b0
[ 764.173573] ext4_file_write_iter+0x2ac/0xe90
[ 764.178069] ? splice_direct_to_actor+0x29e/0x7b0
[ 764.182922] ? ext4_file_mmap+0x2c0/0x2c0
[ 764.187078] ? __might_sleep+0x93/0xb0
[ 764.190973] do_iter_readv_writev+0x418/0x670
[ 764.195485] ? vfs_dedupe_file_range+0x8f0/0x8f0
[ 764.200249] ? rw_verify_area+0xea/0x2b0
[ 764.204313] do_iter_write+0x154/0x540
[ 764.208201] ? rcu_lockdep_current_cpu_online+0xf2/0x140
[ 764.213660] ? __kmalloc+0x376/0x7a0
[ 764.217383] vfs_iter_write+0x77/0xb0
[ 764.221190] iter_file_splice_write+0x572/0xad0
[ 764.225947] ? touch_atime+0xce/0x250
[ 764.229762] ? page_cache_pipe_buf_steal+0x2f0/0x2f0
[ 764.234887] ? rw_verify_area+0xea/0x2b0
[ 764.238953] ? page_cache_pipe_buf_steal+0x2f0/0x2f0
[ 764.244061] direct_splice_actor+0x123/0x190
[ 764.248483] splice_direct_to_actor+0x29e/0x7b0
[ 764.253157] ? generic_pipe_buf_nosteal+0x10/0x10
[ 764.258187] ? do_splice_to+0x170/0x170
[ 764.262188] ? rw_verify_area+0xea/0x2b0
[ 764.266286] do_splice_direct+0x18d/0x230
[ 764.270440] ? splice_direct_to_actor+0x7b0/0x7b0
[ 764.275304] ? rcu_sync_lockdep_assert+0x6d/0xb0
[ 764.280417] ? __sb_start_write+0x153/0x2f0
[ 764.284796] do_sendfile+0x4db/0xbd0
[ 764.288529] ? do_compat_pwritev64+0x140/0x140
[ 764.293127] ? kasan_check_write+0x14/0x20
[ 764.297378] ? _copy_from_user+0x99/0x110
[ 764.301712] SyS_sendfile64+0x9d/0x110
[ 764.305607] ? SyS_sendfile+0x130/0x130
[ 764.309592] ? do_syscall_64+0x53/0x640
[ 764.313580] ? SyS_sendfile+0x130/0x130
[ 764.317652] do_syscall_64+0x1e8/0x640
[ 764.321550] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 764.326553] entry_SYSCALL_64_after_hwframe+0x42/0xb7
[ 764.331749] RIP: 0033:0x4417a9
[ 764.334939] RSP: 002b:00007fff5f5841a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 764.342655] RAX: ffffffffffffffda RBX: 00007fff5f584350 RCX: 00000000004417a9
[ 764.350374] RDX: 0000000020000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 764.358012] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 764.365298] R10: 00008080fffffffe R11: 0000000000000246 R12: 0000000000000000
[ 764.372579] R13: 0000000000402480 R14: 0000000000000000 R15: 0000000000000000
[ 764.379879] rcu_preempt kthread starved for 10554 jiffies! g1220 c1219 f0x2 RCU_GP_WAIT_FQS(3) ->state=0x0 ->cpu=0
[ 764.390370] rcu_preempt R running task 29776 8 2 0x80000000
[ 764.397587] Call Trace:
[ 764.400191] __schedule+0x7b8/0x1cd0
[ 764.404000] ? pci_mmcfg_check_reserved+0x150/0x150
[ 764.409026] ? _raw_spin_unlock_irqrestore+0x6b/0xe0
[ 764.414142] schedule+0x92/0x1c0
[ 764.417515] schedule_timeout+0x43e/0xe10
[ 764.421672] ? usleep_range+0x130/0x130
[ 764.425649] ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 764.430768] ? prepare_to_swait+0xcc/0x100
[ 764.435010] ? call_timer_fn+0x670/0x670
[ 764.439081] rcu_gp_kthread+0xbf4/0x1ec0
[ 764.443163] ? force_qs_rnp+0x4d0/0x4d0
[ 764.447324] kthread+0x319/0x430
[ 764.450699] ? force_qs_rnp+0x4d0/0x4d0
[ 764.454765] ? kthread_create_on_node+0xd0/0xd0
[ 764.459499] ret_from_fork+0x24/0x30