[ 37.072764] audit: type=1800 audit(1538233630.142:22): pid=5913 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="motd" dev="sda1" ino=2447 res=0 [ 37.102497] audit: type=1800 audit(1538233630.142:23): pid=5913 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rsyslog" dev="sda1" ino=2442 res=0 [ 37.122757] audit: type=1800 audit(1538233630.142:24): pid=5913 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="sudo" dev="sda1" ino=2454 res=0 [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.119' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 48.642206] WARNING: CPU: 0 PID: 6065 at mm/slab_common.c:473 kmem_cache_create_usercopy+0xad/0x240 [ 48.651663] Kernel panic - not syncing: panic_on_warn set ... [ 48.651663] [ 48.659012] CPU: 0 PID: 6065 Comm: syz-executor140 Not tainted 4.19.0-rc5-next-20180928+ #84 [ 48.667573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 48.676910] Call Trace: [ 48.679483] dump_stack+0x1d3/0x2c4 [ 48.683115] ? dump_stack_print_info.cold.2+0x52/0x52 [ 48.688297] panic+0x238/0x4e7 [ 48.691475] ? add_taint.cold.5+0x16/0x16 [ 48.695608] ? __warn.cold.8+0x148/0x1ba [ 48.699653] ? __warn.cold.8+0x117/0x1ba [ 48.703705] ? kmem_cache_create_usercopy+0xad/0x240 [ 48.708797] __warn.cold.8+0x163/0x1ba [ 48.712679] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 48.717514] ? kmem_cache_create_usercopy+0xad/0x240 [ 48.722622] report_bug+0x254/0x2d0 [ 48.726234] do_error_trap+0x11b/0x200 [ 48.730106] do_invalid_op+0x36/0x40 [ 48.733806] ? kmem_cache_create_usercopy+0xad/0x240 [ 48.739182] invalid_op+0x14/0x20 [ 48.743142] RIP: 0010:kmem_cache_create_usercopy+0xad/0x240 [ 48.748837] Code: 44 89 f0 25 00 60 de 04 45 85 ed 89 45 cc 75 0b 8b 45 d0 85 c0 0f 85 8e 01 00 00 44 39 eb 72 0a 89 d8 44 29 e8 3b 45 d0 73 7e <0f> 0b c7 45 d0 00 00 00 00 4c 8b 45 10 44 89 fa 89 de 4c 89 e7 8b [ 48.767744] RSP: 0018:ffff8801bc23f5d0 EFLAGS: 00010213 [ 48.773092] RAX: 0000000000000000 RBX: 0000000000000008 RCX: 0000000000000006 [ 48.781026] RDX: 0000000000000000 RSI: 0000000000000020 RDI: ffffffff88b04b20 [ 48.788630] RBP: ffff8801bc23f608 R08: fffffbfff1283a2d R09: fffffbfff1283a2c [ 48.795882] R10: ffff8801bc23f5c0 R11: ffffffff8941d167 R12: ffffffff88b04b20 [ 48.803136] R13: 00000000fffffffd R14: 0000000000000000 R15: 0000000000000000 [ 48.810407] p9_client_create+0xa58/0x1769 [ 48.814630] ? p9_client_read+0xb50/0xb50 [ 48.818768] ? fs_reclaim_acquire+0x20/0x20 [ 48.823080] ? lock_downgrade+0x900/0x900 [ 48.827215] ? __lockdep_init_map+0x105/0x590 [ 48.831691] ? depot_save_stack+0x292/0x470 [ 48.835994] ? lockdep_init_map+0x9/0x10 [ 48.840052] ? kasan_check_write+0x14/0x20 [ 48.844287] ? __init_rwsem+0x1cc/0x2a0 [ 48.848244] ? do_raw_write_unlock.cold.8+0x49/0x49 [ 48.853243] ? kasan_kmalloc+0xc7/0xe0 [ 48.857118] ? save_stack+0xa9/0xd0 [ 48.860733] v9fs_session_init+0x217/0x1bb0 [ 48.865045] ? v9fs_session_init+0x217/0x1bb0 [ 48.869524] ? save_stack+0x43/0xd0 [ 48.873699] ? v9fs_show_options+0x7e0/0x7e0 [ 48.878092] ? lock_downgrade+0x900/0x900 [ 48.882226] ? trace_hardirqs_on+0xbd/0x310 [ 48.887141] ? lock_downgrade+0x900/0x900 [ 48.891274] ? v9fs_mount+0x61/0x8f0 [ 48.894971] ? kasan_unpoison_shadow+0x35/0x50 [ 48.899540] ? kasan_kmalloc+0xc7/0xe0 [ 48.903429] ? kmem_cache_alloc_trace+0x31f/0x750 [ 48.908256] ? kasan_unpoison_shadow+0x35/0x50 [ 48.912841] v9fs_mount+0x7c/0x8f0 [ 48.916369] ? v9fs_drop_inode+0x150/0x150 [ 48.920589] legacy_get_tree+0x131/0x460 [ 48.924639] vfs_get_tree+0x1cb/0x5c0 [ 48.928426] ? legacy_fs_context_dup+0x1d0/0x1d0 [ 48.933169] do_mount+0x70c/0x1d90 [ 48.936714] ? copy_mount_string+0x40/0x40 [ 48.940936] ? kasan_unpoison_shadow+0x35/0x50 [ 48.945502] ? kasan_kmalloc+0xc7/0xe0 [ 48.949375] ? kmem_cache_alloc_trace+0x31f/0x750 [ 48.954210] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 48.959734] ? copy_mount_options+0x315/0x430 [ 48.964217] ksys_mount+0x12d/0x140 [ 48.967829] __x64_sys_mount+0xbe/0x150 [ 48.971812] do_syscall_64+0x1b9/0x820 [ 48.975703] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 48.981062] ? syscall_return_slowpath+0x5e0/0x5e0 [ 48.985985] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 48.990819] ? trace_hardirqs_on_caller+0x310/0x310 [ 48.996011] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 49.001719] ? prepare_exit_to_usermode+0x291/0x3b0 [ 49.006903] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 49.011739] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 49.016913] RIP: 0033:0x440189 [ 49.020092] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 49.039170] RSP: 002b:00007ffdd30ec3c8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 49.046865] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 0000000000440189 [ 49.054125] RDX: 00000000200008c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 49.061378] RBP: 00000000006ca018 R08: 0000000020000a80 R09: 00000000004002c8 [ 49.068630] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000401a10 [ 49.075880] R13: 0000000000401aa0 R14: 0000000000000000 R15: 0000000000000000 [ 49.084062] Kernel Offset: disabled [ 49.087700] Rebooting in 86400 seconds..