[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 32.347769] random: sshd: uninitialized urandom read (32 bytes read) [ 32.611113] kauditd_printk_skb: 9 callbacks suppressed [ 32.611121] audit: type=1400 audit(1573959344.362:35): avc: denied { map } for pid=6849 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 32.761510] random: sshd: uninitialized urandom read (32 bytes read) [ 33.326082] random: sshd: uninitialized urandom read (32 bytes read) [ 33.532559] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.10.13' (ECDSA) to the list of known hosts. [ 39.205396] random: sshd: uninitialized urandom read (32 bytes read) [ 39.321286] audit: type=1400 audit(1573959351.072:36): avc: denied { map } for pid=6862 comm="syz-executor304" path="/root/syz-executor304160278" dev="sda1" ino=16483 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 39.325843] FAULT_INJECTION: forcing a failure. [ 39.325843] name failslab, interval 1, probability 0, space 0, times 1 [ 39.359801] CPU: 1 PID: 6862 Comm: syz-executor304 Not tainted 4.14.154 #0 [ 39.366909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 39.376626] Call Trace: [ 39.379208] dump_stack+0x142/0x197 [ 39.382823] should_fail.cold+0x10f/0x159 [ 39.387055] should_failslab+0xdb/0x130 [ 39.391007] kmem_cache_alloc_trace+0x2e9/0x790 [ 39.395666] ? kmem_cache_alloc+0x611/0x780 [ 39.399976] ? retire_userns_sysctls+0x90/0x90 [ 39.404541] copy_pid_ns+0x68e/0xa40 [ 39.408250] ? refcount_inc+0x1f/0x40 [ 39.412035] create_new_namespaces+0x267/0x720 [ 39.416600] unshare_nsproxy_namespaces+0xab/0x1e0 [ 39.421509] ? unshare_userns+0x26/0xe0 [ 39.425559] SyS_unshare+0x2f3/0x7e0 [ 39.429251] ? walk_process_tree+0x2b0/0x2b0 [ 39.433643] ? task_work_run+0x155/0x190 [ 39.437704] ? do_syscall_64+0x53/0x640 [ 39.441657] ? walk_process_tree+0x2b0/0x2b0 [ 39.446228] do_syscall_64+0x1e8/0x640 [ 39.450122] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 39.455007] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 39.460452] RIP: 0033:0x444527 [ 39.464213] RSP: 002b:00007ffd6bd2def8 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 39.472004] RAX: ffffffffffffffda RBX: 00000000004a8918 RCX: 0000000000444527 [ 39.479264] RDX: 0000000000000001 RSI: 00007ffd6bd2da10 RDI: 0000000020000000 [ 39.486538] RBP: 00000000006d2018 R08: 0000000000000000 R09: 0000000000000001 [ 39.494745] R10: 0000000000000032 R11: 0000000000000246 R12: 00000000004029d0 [ 39.502012] R13: 0000000000402a60 R14: 0000000000000000 R15: 0000000000000000 [ 39.770904] IPVS: ftp: loaded support on port[0] = 21 executing program [ 40.575256] audit: type=1400 audit(1573959352.322:37): avc: denied { create } for pid=6863 comm="syz-executor304" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 40.582736] FAULT_INJECTION: forcing a failure. [ 40.582736] name failslab, interval 1, probability 0, space 0, times 0 [ 40.599878] audit: type=1400 audit(1573959352.322:38): avc: denied { write } for pid=6863 comm="syz-executor304" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 40.611232] CPU: 0 PID: 6864 Comm: syz-executor304 Not tainted 4.14.154 #0 [ 40.636329] audit: type=1400 audit(1573959352.322:39): avc: denied { read } for pid=6863 comm="syz-executor304" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 40.643138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 40.643143] Call Trace: [ 40.643157] dump_stack+0x142/0x197 [ 40.643174] should_fail.cold+0x10f/0x159 [ 40.687020] should_failslab+0xdb/0x130 [ 40.690990] __kmalloc+0x2f0/0x7a0 [ 40.694946] ? ext4_htree_store_dirent+0x8a/0x5d0 [ 40.699765] ext4_htree_store_dirent+0x8a/0x5d0 [ 40.704416] htree_dirblock_to_tree+0x259/0x560 [ 40.709066] ? dx_probe+0x1080/0x1080 [ 40.712876] ext4_htree_fill_tree+0x215/0x910 [ 40.717369] ? save_trace+0x290/0x290 [ 40.721169] ? do_split+0x1d00/0x1d00 [ 40.725069] ? __lock_is_held+0xb6/0x140 [ 40.729110] ? check_preemption_disabled+0x3c/0x250 [ 40.734170] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 40.739611] ? ext4_readdir+0x18d9/0x2a40 [ 40.743741] ? rcu_read_lock_sched_held+0x110/0x130 [ 40.748747] ? kmem_cache_alloc_trace+0x623/0x790 [ 40.753573] ? free_rb_tree_fname+0xa0/0xe0 [ 40.757886] ext4_readdir+0x130c/0x2a40 [ 40.761848] ? __ext4_check_dir_entry+0x310/0x310 [ 40.766669] ? iterate_dir+0xc3/0x5f0 [ 40.770549] iterate_dir+0x1a2/0x5f0 [ 40.774244] get_name+0x2fe/0x410 [ 40.777676] ? d_find_any_alias+0x92/0xc0 [ 40.781811] ? bl_resolve_deviceid.cold+0x2d/0x2d [ 40.786641] ? d_find_any_alias+0x92/0xc0 [ 40.790770] ? exportfs_encode_fh+0x100/0x100 [ 40.795254] ? find_held_lock+0x35/0x130 [ 40.799313] ? reconnect_path+0x1cd/0x630 [ 40.803453] exportfs_get_name+0x12b/0x160 [ 40.807677] ? get_name+0x410/0x410 [ 40.811286] reconnect_path+0x1f3/0x630 [ 40.815242] exportfs_decode_fh+0x3cc/0x5e2 [ 40.819543] ? drop_caches_sysctl_handler.cold+0x7c/0x7c [ 40.827405] ? ext4_fh_to_parent+0x40/0x40 [ 40.831621] ? find_acceptable_alias.part.0+0x1e0/0x1e0 [ 40.836975] ? save_trace+0x290/0x290 [ 40.840755] ? find_held_lock+0x35/0x130 [ 40.844802] ? do_handle_open+0x4a4/0x640 [ 40.848938] ? find_held_lock+0x35/0x130 [ 40.852979] ? do_handle_open+0x4a4/0x640 [ 40.857377] ? lock_downgrade+0x740/0x740 [ 40.861508] ? do_raw_spin_unlock+0x16b/0x260 [ 40.865983] do_handle_open+0x285/0x640 [ 40.869940] ? vfs_write+0x104/0x500 [ 40.873659] ? SyS_name_to_handle_at+0x430/0x430 [ 40.878396] ? SyS_write+0x15e/0x230 [ 40.882106] SyS_open_by_handle_at+0x27/0x30 [ 40.886490] ? do_handle_open+0x640/0x640 [ 40.890631] do_syscall_64+0x1e8/0x640 [ 40.894499] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 40.899323] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 40.904490] RIP: 0033:0x441b29 [ 40.907661] RSP: 002b:00007ffd6bd2def8 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 40.915348] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000441b29 executing program [ 40.922601] RDX: 0000000000400000 RSI: 0000000020000000 RDI: 00000000ffffff9c [ 40.929859] RBP: 0000000000000000 R08: 0000000000000002 R09: 0000000000000000 [ 40.937117] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 40.944367] R13: 0000000000000005 R14: 00007ffd6bd2df50 R15: 0000000000000000 [ 40.955841] FAULT_INJECTION: forcing a failure. [ 40.955841] name failslab, interval 1, probability 0, space 0, times 0 [ 40.968132] CPU: 0 PID: 6865 Comm: syz-executor304 Not tainted 4.14.154 #0 [ 40.975505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 40.985040] Call Trace: [ 40.987622] dump_stack+0x142/0x197 [ 40.991368] should_fail.cold+0x10f/0x159 [ 40.995519] should_failslab+0xdb/0x130 [ 40.999501] kmem_cache_alloc+0x2d7/0x780 [ 41.003636] ? __lock_acquire+0x5f7/0x4620 [ 41.007858] __d_alloc+0x2d/0x9f0 [ 41.011294] d_alloc+0x4d/0x270 [ 41.014556] d_alloc_parallel+0xe5/0x1800 [ 41.018694] ? trace_hardirqs_on+0x10/0x10 [ 41.022911] ? __d_lookup_rcu+0x630/0x630 [ 41.027064] ? lock_acquire+0x16f/0x430 [ 41.031017] ? lookup_slow+0x138/0x440 [ 41.034983] lookup_slow+0x188/0x440 [ 41.038696] ? vfs_unlink+0x480/0x480 [ 41.042522] lookup_one_len_unlocked+0x2dc/0x340 [ 41.047269] ? lookup_slow+0x440/0x440 [ 41.051140] reconnect_path+0x229/0x630 [ 41.055097] exportfs_decode_fh+0x3cc/0x5e2 [ 41.064710] ? drop_caches_sysctl_handler.cold+0x7c/0x7c [ 41.070317] ? ext4_fh_to_parent+0x40/0x40 [ 41.074637] ? find_acceptable_alias.part.0+0x1e0/0x1e0 [ 41.080007] ? save_trace+0x290/0x290 [ 41.083794] ? find_held_lock+0x35/0x130 [ 41.087848] ? do_handle_open+0x4a4/0x640 [ 41.091977] ? find_held_lock+0x35/0x130 [ 41.096034] ? do_handle_open+0x4a4/0x640 [ 41.100168] ? lock_downgrade+0x740/0x740 [ 41.104296] ? do_raw_spin_unlock+0x16b/0x260 [ 41.108773] do_handle_open+0x285/0x640 [ 41.112744] ? vfs_write+0x104/0x500 [ 41.116440] ? SyS_name_to_handle_at+0x430/0x430 [ 41.121234] ? SyS_write+0x15e/0x230 [ 41.124934] SyS_open_by_handle_at+0x27/0x30 [ 41.129328] ? do_handle_open+0x640/0x640 [ 41.133458] do_syscall_64+0x1e8/0x640 [ 41.137327] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 41.142160] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 41.147333] RIP: 0033:0x441b29 [ 41.150500] RSP: 002b:00007ffd6bd2def8 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 41.158188] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000441b29 [ 41.165623] RDX: 0000000000400000 RSI: 0000000020000000 RDI: 00000000ffffff9c [ 41.173746] RBP: 0000000000000000 R08: 0000000000000002 R09: 0000000000000000 [ 41.180996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000009e82 [ 41.188247] R13: 0000000000000005 R14: 00007ffd6bd2df50 R15: 0000000000000000 [ 41.195786] ------------[ cut here ]------------ [ 41.200559] WARNING: CPU: 0 PID: 6865 at fs/exportfs/expfs.c:96 reconnect_path+0x4a6/0x630 [ 41.208954] Kernel panic - not syncing: panic_on_warn set ... [ 41.208954] [ 41.216311] CPU: 0 PID: 6865 Comm: syz-executor304 Not tainted 4.14.154 #0 [ 41.223389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 41.232990] Call Trace: [ 41.235566] dump_stack+0x142/0x197 [ 41.239179] panic+0x1f9/0x42d [ 41.242385] ? add_taint.cold+0x16/0x16 [ 41.246343] ? reconnect_path+0x4a6/0x630 [ 41.250476] ? reconnect_path+0x4a6/0x630 [ 41.254710] __warn.cold+0x2f/0x2f [ 41.258300] ? ist_end_non_atomic+0x10/0x10 [ 41.262711] ? reconnect_path+0x4a6/0x630 [ 41.267630] report_bug+0x216/0x254 [ 41.271244] do_error_trap+0x1bb/0x310 [ 41.275113] ? math_error+0x360/0x360 [ 41.278902] ? save_trace+0x290/0x290 [ 41.282683] ? find_held_lock+0x35/0x130 [ 41.286742] ? dget_parent+0xaa/0x430 [ 41.290541] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 41.295382] do_invalid_op+0x1b/0x20 [ 41.299087] invalid_op+0x1b/0x40 [ 41.302521] RIP: 0010:reconnect_path+0x4a6/0x630 [ 41.307260] RSP: 0018:ffff888092807bf0 EFLAGS: 00010297 [ 41.312627] RAX: ffff8880935a41c0 RBX: dffffc0000000000 RCX: 1ffff110126b4946 [ 41.321356] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffff8880941b3e00 [ 41.328632] RBP: ffff888092807c40 R08: ffff8880935a41c0 R09: 0000000000000000 [ 41.335892] R10: 0000000000000000 R11: ffff8880935a41c0 R12: ffff8880941b3dc0 [ 41.343150] R13: dffffc0000000000 R14: ffff8880941b3dc0 R15: ffff8880991e1820 [ 41.350610] exportfs_decode_fh+0x3cc/0x5e2 [ 41.354917] ? drop_caches_sysctl_handler.cold+0x7c/0x7c [ 41.360452] ? ext4_fh_to_parent+0x40/0x40 [ 41.364745] ? find_acceptable_alias.part.0+0x1e0/0x1e0 [ 41.370144] ? save_trace+0x290/0x290 [ 41.373945] ? find_held_lock+0x35/0x130 [ 41.378008] ? do_handle_open+0x4a4/0x640 [ 41.382376] ? find_held_lock+0x35/0x130 [ 41.386433] ? do_handle_open+0x4a4/0x640 [ 41.390571] ? lock_downgrade+0x740/0x740 [ 41.394704] ? do_raw_spin_unlock+0x16b/0x260 [ 41.399298] do_handle_open+0x285/0x640 [ 41.403255] ? vfs_write+0x104/0x500 [ 41.406952] ? SyS_name_to_handle_at+0x430/0x430 [ 41.411689] ? SyS_write+0x15e/0x230 [ 41.415387] SyS_open_by_handle_at+0x27/0x30 [ 41.419774] ? do_handle_open+0x640/0x640 [ 41.423924] do_syscall_64+0x1e8/0x640 [ 41.427791] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 41.432634] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 41.437819] RIP: 0033:0x441b29 [ 41.440987] RSP: 002b:00007ffd6bd2def8 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 41.448704] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000441b29 [ 41.456107] RDX: 0000000000400000 RSI: 0000000020000000 RDI: 00000000ffffff9c [ 41.463365] RBP: 0000000000000000 R08: 0000000000000002 R09: 0000000000000000 [ 41.470621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000009e82 [ 41.477874] R13: 0000000000000005 R14: 00007ffd6bd2df50 R15: 0000000000000000 [ 41.486537] Kernel Offset: disabled [ 41.490255] Rebooting in 86400 seconds..