[....] Starting enhanced syslogd: rsyslogd[ 16.252943] audit: type=1400 audit(1521165526.754:5): avc: denied { syslog } for pid=4041 comm="rsyslogd" capability=34 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 19.105507] audit: type=1400 audit(1521165529.607:6): avc: denied { map } for pid=4181 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '10.128.0.6' (ECDSA) to the list of known hosts. 2018/03/16 01:58:56 fuzzer started [ 25.491253] audit: type=1400 audit(1521165535.992:7): avc: denied { map } for pid=4192 comm="syz-fuzzer" path="/root/syz-fuzzer" dev="sda1" ino=16479 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 2018/03/16 01:58:56 dialing manager at 10.128.0.26:39039 [ 30.992979] can: request_module (can-proto-0) failed. [ 31.002339] can: request_module (can-proto-0) failed. 2018/03/16 01:59:02 kcov=true, comps=true [ 31.565518] audit: type=1400 audit(1521165542.067:8): avc: denied { map } for pid=4192 comm="syz-fuzzer" path="/sys/kernel/debug/kcov" dev="debugfs" ino=9461 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:debugfs_t:s0 tclass=file permissive=1 2018/03/16 01:59:05 executing program 0: r0 = socket$inet(0x2, 0x20000000000003, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='bond0\x00', 0x10) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote={0xac, 0x14, 0x14, 0xbb}}, 0x10) 2018/03/16 01:59:05 executing program 7: syz_emit_ethernet(0x32, &(0x7f0000000040)={@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], {@arp={0x806, @generic={0x0, 0x0, 0x6, 0x0, 0x0, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], "", @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, "998ade3b4123614b4d1e451abd536f67"}}}}, &(0x7f0000000080)) 2018/03/16 01:59:05 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = dup3(r2, r0, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f00000001c0)=[@text64={0x40, &(0x7f0000000280)="66430f3880908000c0fe66ba4100b8fc8c0000efb9890900000f3266b825008ec03665460fc73e66b838008ec036670f01b68b0000000f20c035000000400f22c00fc7590066ba2100ec", 0x4a}], 0x1, 0x4c, &(0x7f0000000300), 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 2018/03/16 01:59:05 executing program 2: 2018/03/16 01:59:05 executing program 3: 2018/03/16 01:59:05 executing program 4: r0 = socket(0x40000000015, 0x5, 0x0) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f00006dbffc), 0x4) perf_event_open(&(0x7f000001d000)={0x2, 0x78, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bind$inet(r0, &(0x7f00008a5ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10) sendto$inet(r0, &(0x7f0000f7db7f)="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", 0x481, 0x0, &(0x7f0000000200)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10) setsockopt$RDS_CONG_MONITOR(r0, 0x114, 0x6, &(0x7f0000000000), 0x4) 2018/03/16 01:59:05 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000eb9ff9)="666400000004bb") getdents(r0, &(0x7f0000002fd0)=""/48, 0xffd8) 2018/03/16 01:59:05 executing program 6: perf_event_open(&(0x7f0000aaa000)={0x2, 0x78, 0x47, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f00009f5000)={&(0x7f00000000c0)={0x10}, 0xc, &(0x7f00004ca000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000000c06010000000001d4f3da00000200000000000000000100"], 0x1c}, 0x1}, 0x0) [ 34.711187] audit: type=1400 audit(1521165545.212:9): avc: denied { map } for pid=4192 comm="syz-fuzzer" path="/root/syzkaller-shm508770702" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:file_t:s0 tclass=file permissive=1 [ 34.769387] audit: type=1400 audit(1521165545.271:10): avc: denied { sys_admin } for pid=4239 comm="syz-executor7" capability=21 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 [ 34.792328] IPVS: ftp: loaded support on port[0] = 21 [ 34.855685] audit: type=1400 audit(1521165545.356:11): avc: denied { net_admin } for pid=4243 comm="syz-executor7" capability=12 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 [ 34.857865] IPVS: ftp: loaded support on port[0] = 21 [ 34.920083] IPVS: ftp: loaded support on port[0] = 21 [ 34.963039] IPVS: ftp: loaded support on port[0] = 21 [ 35.027174] IPVS: ftp: loaded support on port[0] = 21 [ 35.100648] IPVS: ftp: loaded support on port[0] = 21 [ 35.181516] IPVS: ftp: loaded support on port[0] = 21 [ 35.290544] IPVS: ftp: loaded support on port[0] = 21 [ 36.333558] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 36.428848] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 36.645047] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 36.704091] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 36.851906] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 36.923396] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 36.954758] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 37.066177] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 39.114442] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 39.120628] 8021q: adding VLAN 0 to HW filter on device bond0 [ 39.270830] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 39.276953] 8021q: adding VLAN 0 to HW filter on device bond0 [ 39.395998] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 39.421189] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 39.427444] 8021q: adding VLAN 0 to HW filter on device bond0 [ 39.481586] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 39.487794] 8021q: adding VLAN 0 to HW filter on device bond0 [ 39.579096] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 39.593217] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 39.599455] 8021q: adding VLAN 0 to HW filter on device bond0 [ 39.633997] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 39.641100] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 39.651900] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready 2018/03/16 01:59:10 executing program 7: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-serpent-sse2\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000), 0x0) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$can_raw(r1, &(0x7f0000477000)={&(0x7f0000000080)={0x1d}, 0x10, &(0x7f0000000240)={&(0x7f00000001c0)=@canfd={{}, 0x0, 0x0, 0x0, 0x0, "b5a419fb5df128c83ad9430362a22a5abf1e4123efccc641602c2da3630b58d04766c58b254ff2a965ccb226c8c7355c33306c99adaa0aa59006f8dc9b01b737"}, 0xff89}, 0x1}, 0x0) readv(r1, &(0x7f0000001700)=[{&(0x7f0000000540)=""/4096, 0x1000}], 0x1) [ 39.683593] audit: type=1400 audit(1521165550.185:12): avc: denied { sys_chroot } for pid=4243 comm="syz-executor7" capability=18 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 [ 39.725589] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 39.731680] 8021q: adding VLAN 0 to HW filter on device bond0 [ 39.743977] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready 2018/03/16 01:59:10 executing program 7: r0 = socket$inet(0x2, 0xa, 0x0) sendto$inet(r0, &(0x7f0000f21ff1), 0xff26, 0x0, &(0x7f00000a8ff0)={0x2, 0x0, @multicast1=0xe0000001}, 0x10) [ 39.771413] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 39.779530] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 39.785628] 8021q: adding VLAN 0 to HW filter on device bond0 [ 39.840950] syz-executor7 uses obsolete (PF_INET,SOCK_PACKET) [ 39.865949] audit: type=1400 audit(1521165550.367:13): avc: denied { net_raw } for pid=5452 comm="syz-executor7" capability=13 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 2018/03/16 01:59:10 executing program 7: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000a94ffb)='auxv\x00') bind$alg(r0, &(0x7f0000466000)={0x26, 'hash\x00', 0x0, 0x0, 'sha256-generic\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) accept$alg(r1, 0x0, 0x0) setsockopt$inet_dccp_buf(r1, 0x21, 0x80, &(0x7f0000000000)="8d01483d7bfc6f2027a1d5bb1ce5960470172f13066a1502a4ac6e9529b558cd8033eea255aaca113501c00dfcc79f3888df34284a9c81128bd9d250744d6756a07f95b24e074b330bed70bf7788819b643febdd56414c013feb7a92803f4742fc6191cd8906bf12a145fe970e337492d0c8fa82303ad75a390547ffc73eeaee58c5767332cb02304504067539fbb7a8b5ba68e11b2df47007e65cb3885c6ebfb192fae12867947377a5a9493fe49c24875ce024be8008c4fd348f3fdf45817a9fd2a73bdec687", 0xc7) ioctl$TTUNGETFILTER(r1, 0x801054db, &(0x7f0000000100)=""/98) sendfile(r2, r1, &(0x7f0000450000), 0xffff) [ 39.894224] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 39.900921] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 39.909374] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 39.961577] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 39.970231] audit: type=1400 audit(1521165550.471:14): avc: denied { dac_override } for pid=5475 comm="syz-executor7" capability=1 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 [ 39.980498] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 40.002421] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready 2018/03/16 01:59:10 executing program 7: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={&(0x7f0000de2ff4)={0x10}, 0xc, &(0x7f0000023000)={&(0x7f000011adf8)={0x14, 0x800000000000003, 0x2, 0x101, 0xffffffffffffffff, 0xffffffffffffffff}, 0x14}, 0x1}, 0x0) recvmsg(r0, &(0x7f00008e5000)={&(0x7f0000e91000)=@ethernet={0x0, @remote}, 0x10, &(0x7f00007c0f70), 0x0, &(0x7f000021a000)=""/4096, 0x1000}, 0x0) ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000000)={0x2, r0}) write$fuse(r1, &(0x7f0000000040)={0x7a, 0x1, 0x9, @random="a3007fecedff5de972f91919cf69b9049b247dedab1e78de26454d3dfc3324fbb8853cbbd0174fa36cc6c470f7442f27e5164029c46d368c6bba2c66d88656b7deeedad3030e6d4f4573bafa7b53be2d70c405fc45e352b28fca15dd36f9d5dc512a7e002cb0855f1a94"}, 0x7a) [ 40.010567] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 40.028104] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 40.034278] 8021q: adding VLAN 0 to HW filter on device bond0 [ 40.074797] audit: type=1400 audit(1521165550.576:15): avc: denied { create } for pid=5491 comm="syz-executor7" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 [ 40.097055] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 40.098833] audit: type=1400 audit(1521165550.576:16): avc: denied { write } for pid=5491 comm="syz-executor7" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 [ 40.128775] audit: type=1400 audit(1521165550.576:17): avc: denied { read } for pid=5491 comm="syz-executor7" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 [ 40.168525] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 40.174675] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 40.181580] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 40.191230] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 40.200640] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 40.220218] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 40.240000] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 40.281368] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 40.319667] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 40.326323] ------------[ cut here ]------------ [ 40.331229] Bad or missing usercopy whitelist? Kernel memory exposure attempt detected from SLAB object 'kvm_vcpu' (offset 23192, size 8)! [ 40.343983] WARNING: CPU: 0 PID: 5529 at mm/usercopy.c:81 usercopy_warn+0xdb/0x100 [ 40.351687] Kernel panic - not syncing: panic_on_warn set ... [ 40.351687] [ 40.356707] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 40.359049] CPU: 0 PID: 5529 Comm: syz-executor1 Not tainted 4.16.0-rc5+ #355 [ 40.359057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 40.359063] Call Trace: [ 40.384266] dump_stack+0x194/0x24d [ 40.387899] ? arch_local_irq_restore+0x53/0x53 [ 40.392575] ? vsnprintf+0x1ed/0x1900 [ 40.396383] panic+0x1e4/0x41c [ 40.399576] ? refcount_error_report+0x214/0x214 [ 40.404326] ? show_regs_print_info+0x18/0x18 [ 40.408825] ? __warn+0x1c1/0x200 [ 40.412284] ? usercopy_warn+0xdb/0x100 [ 40.416250] __warn+0x1dc/0x200 [ 40.416904] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 40.419516] ? kvm_largepages_enabled+0x20/0x20 [ 40.419528] ? usercopy_warn+0xdb/0x100 [ 40.419540] report_bug+0x1f4/0x2b0 [ 40.437767] fixup_bug.part.11+0x37/0x80 [ 40.441802] do_error_trap+0x2d7/0x3e0 [ 40.445664] ? vprintk_default+0x28/0x30 [ 40.449697] ? math_error+0x400/0x400 [ 40.453468] ? printk+0xaa/0xca [ 40.456720] ? show_regs_print_info+0x18/0x18 [ 40.461198] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 40.466025] do_invalid_op+0x1b/0x20 [ 40.469717] invalid_op+0x1b/0x40 [ 40.473141] RIP: 0010:usercopy_warn+0xdb/0x100 [ 40.477691] RSP: 0018:ffff8801bbc7f108 EFLAGS: 00010282 [ 40.483029] RAX: dffffc0000000008 RBX: ffffffff86c67f7f RCX: ffffffff815acd3e [ 40.490270] RDX: 0000000000005d74 RSI: ffffc90002536000 RDI: 1ffff1003778fda6 [ 40.497513] RBP: ffff8801bbc7f160 R08: 1ffff1003778fd68 R09: 0000000000000000 [ 40.504753] R10: 0000000000002070 R11: 0000000000000000 R12: ffffffff86217a40 [ 40.511996] R13: ffffffff86321f80 R14: 0000000000005a98 R15: 0000000000000008 [ 40.519257] ? vprintk_func+0x5e/0xc0 [ 40.523047] ? usercopy_warn+0xdb/0x100 [ 40.527003] __check_heap_object+0x89/0xc0 [ 40.531226] __check_object_size+0x272/0x530 [ 40.535617] ? lock_release+0xa40/0xa40 [ 40.539569] ? usercopy_abort+0xd0/0xd0 [ 40.543524] ? __might_sleep+0x95/0x190 [ 40.547481] __kvm_write_guest_page+0x7f/0x130 [ 40.552044] kvm_vcpu_write_guest+0x65/0xc0 [ 40.556342] kvm_write_guest_virt_system+0x7f/0x150 [ 40.561340] handle_vmptrst+0x188/0x200 [ 40.565290] ? handle_vmclear+0x4e0/0x4e0 [ 40.569411] ? __lock_is_held+0xb6/0x140 [ 40.573464] ? handle_vmclear+0x4e0/0x4e0 [ 40.577595] vmx_handle_exit+0x25d/0x1ce0 [ 40.581718] ? handle_vmlaunch+0x20/0x20 [ 40.585754] ? handle_vmfunc+0x850/0x850 [ 40.589798] ? kvm_arch_vcpu_ioctl_run+0x1aef/0x5c80 [ 40.594883] kvm_arch_vcpu_ioctl_run+0x1c93/0x5c80 [ 40.599802] ? kvm_arch_vcpu_runnable+0x560/0x560 [ 40.604618] ? _raw_spin_unlock_irqrestore+0x31/0xc0 [ 40.609695] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 40.614691] ? debug_object_free+0x2f1/0x5a0 [ 40.619070] ? lockdep_init_map+0x9/0x10 [ 40.623106] ? debug_object_destroy+0x2b0/0x2b0 [ 40.627757] ? __wait_rcu_gp+0x230/0x340 [ 40.631799] ? synchronize_sched.part.64+0xac/0x100 [ 40.636787] ? synchronize_sched_expedited+0xf0/0xf0 [ 40.641863] ? call_rcu_bh+0x20/0x20 [ 40.645550] ? check_same_owner+0x320/0x320 [ 40.649848] ? put_pid+0x183/0x1f0 [ 40.653360] ? task_active_pid_ns+0xd0/0xd0 [ 40.657654] ? __might_sleep+0x95/0x190 [ 40.661609] kvm_vcpu_ioctl+0x6f1/0xff0 [ 40.665560] ? kvm_vcpu_ioctl+0x6f1/0xff0 [ 40.669681] ? kvm_vcpu_fault+0x520/0x520 [ 40.673810] ? find_held_lock+0x35/0x1d0 [ 40.677853] ? __fget+0x342/0x5b0 [ 40.681282] ? lock_downgrade+0x980/0x980 [ 40.685408] ? lock_release+0xa40/0xa40 [ 40.689372] ? __lock_is_held+0xb6/0x140 [ 40.693420] ? __fget+0x36b/0x5b0 [ 40.696851] ? iterate_fd+0x3f0/0x3f0 [ 40.700622] ? mntput+0x66/0x90 [ 40.703882] ? user_return_notifier_unregister+0x23d/0x360 [ 40.709484] ? kvm_vcpu_fault+0x520/0x520 [ 40.713609] do_vfs_ioctl+0x1b1/0x1520 [ 40.717472] ? debug_lockdep_rcu_enabled+0x77/0x90 [ 40.722376] ? ioctl_preallocate+0x2b0/0x2b0 [ 40.726759] ? selinux_capable+0x40/0x40 [ 40.730801] ? SyS_futex+0x24b/0x390 [ 40.734501] ? security_file_ioctl+0x7d/0xb0 [ 40.738881] ? security_file_ioctl+0x89/0xb0 [ 40.743266] SyS_ioctl+0x8f/0xc0 [ 40.746609] ? do_vfs_ioctl+0x1520/0x1520 [ 40.750732] do_syscall_64+0x281/0x940 [ 40.754596] ? __do_page_fault+0xc90/0xc90 [ 40.758801] ? _raw_spin_unlock_irq+0x27/0x70 [ 40.763267] ? finish_task_switch+0x1c1/0x7e0 [ 40.767734] ? syscall_return_slowpath+0x550/0x550 [ 40.772635] ? syscall_return_slowpath+0x2ac/0x550 [ 40.777538] ? prepare_exit_to_usermode+0x350/0x350 [ 40.782536] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 40.787881] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 40.792701] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 40.797860] RIP: 0033:0x453e69 [ 40.801028] RSP: 002b:00007f66930dac68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 40.808714] RAX: ffffffffffffffda RBX: 00007f66930db6d4 RCX: 0000000000453e69 [ 40.815955] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000016 [ 40.823197] RBP: 000000000072c010 R08: 0000000000000000 R09: 0000000000000000 [ 40.830441] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 40.837685] R13: 000000000000024a R14: 00000000006f3790 R15: 0000000000000002 [ 40.845120] kasan: CONFIG_KASAN_INLINE enabled [ 40.849728] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 40.857059] general protection fault: 0000 [#1] SMP KASAN [ 40.862566] Dumping ftrace buffer: [ 40.866076] (ftrace buffer empty) [ 40.869758] Modules linked in: [ 40.872925] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 4.16.0-rc5+ #355 [ 40.879557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 40.888884] RIP: 0010:native_write_cr4+0x4/0x10 [ 40.893522] RSP: 0018:ffff8801db307e88 EFLAGS: 00010086 [ 40.898857] RAX: dffffc0000000000 RBX: 00000000001606e0 RCX: 0000000000000001 [ 40.906100] RDX: 1ffffffff0dd935c RSI: 0000000000000000 RDI: 00000000001606e0 [ 40.913341] RBP: ffff8801db307e88 R08: ffff8801db307f40 R09: ffff8801db307f80 [ 40.920586] R10: ffff88021fff8050 R11: ffff88021fff805d R12: 0000000000000082 [ 40.927825] R13: 1ffff1003b660fd4 R14: ffff8801d9b12300 R15: ffff8801db307fc0 [ 40.935065] FS: 0000000000000000(0000) GS:ffff8801db300000(0000) knlGS:0000000000000000 [ 40.943262] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 40.949114] CR2: 0000000000a44a40 CR3: 0000000006e22006 CR4: 00000000001626e0 [ 40.956357] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 40.963597] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 40.970834] Call Trace: [ 40.973388] [ 40.975511] smp_reboot_interrupt+0x3ea/0x510 [ 40.979976] ? native_stop_other_cpus+0x3d0/0x3d0 [ 40.984792] ? _raw_spin_unlock+0x22/0x30 [ 40.988911] ? handle_edge_irq+0x2b4/0x7c0 [ 40.993119] ? task_prio+0x50/0x50 [ 40.996636] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 41.001453] reboot_interrupt+0xf/0x20 [ 41.005307] [ 41.007514] RIP: 0010:native_safe_halt+0x6/0x10 [ 41.012149] RSP: 0018:ffff8801d9b1fcb0 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff07 [ 41.019827] RAX: dffffc0000000000 RBX: 1ffff1003b363f99 RCX: ffffffff840fd025 [ 41.027071] RDX: 1ffffffff0dd9380 RSI: 0000000000000001 RDI: ffffffff86ec9c00 [ 41.034311] RBP: ffff8801d9b1fcb0 R08: 0000000000000000 R09: 0000000000000001 [ 41.041549] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000001 [ 41.048790] R13: ffff8801d9b1fd68 R14: ffffffff876e7e20 R15: 0000000000000000 [ 41.056040] ? cpuidle_not_available+0x75/0xa0 [ 41.060599] default_idle+0xbf/0x430 [ 41.064282] ? __sched_text_end+0x4/0x4 [ 41.068229] ? rcu_eqs_special_set+0x1e0/0x1e0 [ 41.072779] ? tsc_verify_tsc_adjust+0xf6/0x3e0 [ 41.077416] ? set_cpu_sd_state_idle+0x1dc/0x2d0 [ 41.082144] ? mark_tsc_async_resets+0x30/0x30 [ 41.086702] arch_cpu_idle+0xa/0x10 [ 41.090297] default_idle_call+0x36/0x90 [ 41.094331] do_idle+0x24a/0x3b0 [ 41.097669] ? complete+0x62/0x80 [ 41.101094] cpu_startup_entry+0x104/0x120 [ 41.105300] ? cpu_in_idle+0x20/0x20 [ 41.108993] start_secondary+0x40a/0x590 [ 41.113024] ? set_cpu_sibling_map+0x1660/0x1660 [ 41.117756] secondary_startup_64+0xa5/0xb0 [ 41.122054] Code: 0f 1f 80 00 00 00 00 55 48 89 e5 0f 20 d8 5d c3 0f 1f 80 00 00 00 00 55 48 89 e5 0f 22 df 5d c3 0f 1f 80 00 00 00 00 55 48 89 e5 <0f> 22 e7 5d c3 0f 1f 80 00 00 00 00 55 48 89 e5 44 0f 20 c0 5d [ 41.141161] RIP: native_write_cr4+0x4/0x10 RSP: ffff8801db307e88 [ 41.147275] ---[ end trace 09711cabb03cb058 ]--- [ 41.896946] Shutting down cpus with NMI [ 41.900944] invalid opcode: 0000 [#2] SMP KASAN [ 41.900948] Dumping ftrace buffer: [ 41.900951] (ftrace buffer empty) [ 41.900953] Modules linked in: [ 41.900960] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G D 4.16.0-rc5+ #355 [ 41.900963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 41.900975] RIP: 0010:smp_stop_nmi_callback+0x279/0x560 [ 41.900977] RSP: 0018:fffffe000003bb40 EFLAGS: 00010002 [ 41.900981] RAX: 00000000001626e0 RBX: 1fffffc000007769 RCX: 0000000000000020 [ 41.900984] RDX: dffffc0000000000 RSI: fffffe000003bbe8 RDI: fffffe000003bba8 [ 41.900987] RBP: fffffe000003bcd0 R08: fffffe000003bc28 R09: fffffe000003bc68 [ 41.900990] R10: ffff88021fff8050 R11: ffff88021fff805d R12: 1fffffc000007785 [ 41.900993] R13: fffffe000003bca8 R14: 1fffffc000007775 R15: 1fffffc00000777d [ 41.900996] FS: 0000000000000000(0000) GS:ffff8801db300000(0000) knlGS:0000000000000000 [ 41.900999] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 41.901002] CR2: 0000000000a44a40 CR3: 0000000006e22006 CR4: 00000000001626e0 [ 41.901011] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 41.901014] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 41.901015] Call Trace: [ 41.901018] [ 41.901025] ? native_smp_send_reschedule+0x90/0x90 [ 41.901038] ? pvclock_read_flags+0x160/0x160 [ 41.901048] nmi_handle+0x23b/0x5f0 [ 41.901056] ? trace_raw_output_nmi_handler+0x120/0x120 [ 41.901068] ? rcu_idle_exit+0x410/0x410 [ 41.901074] ? printk_nmi_enter+0xe5/0x140 [ 41.901079] ? printk_safe_flush_on_panic+0x190/0x190 [ 41.901086] default_do_nmi+0x6d/0x150 [ 41.901090] do_nmi+0x205/0x2c0 [ 41.901099] end_repeat_nmi+0x16/0x1a [ 41.901105] RIP: 0010:panic_smp_self_stop+0xb/0x80 [ 41.901108] RSP: 0018:ffff8801db307c68 EFLAGS: 00000006 [ 41.901111] RAX: ffff8801d9b12300 RBX: ffffffff86c4488b RCX: ffffffff8141a0e9 [ 41.901114] RDX: 0000000000010000 RSI: 0000000000000001 RDI: 0000000000000000 [ 41.901116] RBP: ffff8801db307c68 R08: 0000000000000000 R09: 1ffff1003b660f68 [ 41.901119] R10: ffff8801db307d40 R11: ffffffff86f42dc0 R12: ffff8801db307d40 [ 41.901122] R13: ffff8801db307d00 R14: dffffc0000000000 R15: 0000000000000000 [ 41.901129] ? panic_smp_self_stop+0x9/0x80 [ 41.901136] ? panic_smp_self_stop+0xb/0x80 [ 41.901141] ? panic_smp_self_stop+0xb/0x80 [ 41.901144] [ 41.901145] [ 41.901149] panic+0xec/0x41c [ 41.901154] ? refcount_error_report+0x214/0x214 [ 41.901161] ? bust_spinlocks+0x60/0xc0 [ 41.901166] ? print_oops_end_marker+0x2b/0x60 [ 41.901170] ? kmsg_dump+0x415/0x5f0 [ 41.901176] oops_end+0xd2/0xe0 [ 41.901181] die+0x3d/0x50 [ 41.901186] do_general_protection+0x34e/0x3e0 [ 41.901192] general_protection+0x25/0x50 [ 41.901197] RIP: 0010:native_write_cr4+0x4/0x10 [ 41.901199] RSP: 0018:ffff8801db307e88 EFLAGS: 00010086 [ 41.901202] RAX: dffffc0000000000 RBX: 00000000001606e0 RCX: 0000000000000001 [ 41.901205] RDX: 1ffffffff0dd935c RSI: 0000000000000000 RDI: 00000000001606e0 [ 41.901207] RBP: ffff8801db307e88 R08: ffff8801db307f40 R09: ffff8801db307f80 [ 41.901210] R10: ffff88021fff8050 R11: ffff88021fff805d R12: 0000000000000082 [ 41.901213] R13: 1ffff1003b660fd4 R14: ffff8801d9b12300 R15: ffff8801db307fc0 [ 41.901224] ? trace_hardirqs_off+0xd/0x10 [ 41.901229] smp_reboot_interrupt+0x3ea/0x510 [ 41.901234] ? native_stop_other_cpus+0x3d0/0x3d0 [ 41.901240] ? _raw_spin_unlock+0x22/0x30 [ 41.901246] ? handle_edge_irq+0x2b4/0x7c0 [ 41.901253] ? task_prio+0x50/0x50 [ 41.901262] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 41.901269] reboot_interrupt+0xf/0x20 [ 41.901271] [ 41.901275] RIP: 0010:native_safe_halt+0x6/0x10 [ 41.901277] RSP: 0018:ffff8801d9b1fcb0 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff07 [ 41.901282] RAX: dffffc0000000000 RBX: 1ffff1003b363f99 RCX: ffffffff840fd025 [ 41.901284] RDX: 1ffffffff0dd9380 RSI: 0000000000000001 RDI: ffffffff86ec9c00 [ 41.901287] RBP: ffff8801d9b1fcb0 R08: 0000000000000000 R09: 0000000000000001 [ 41.901289] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000001 [ 41.901292] R13: ffff8801d9b1fd68 R14: ffffffff876e7e20 R15: 0000000000000000 [ 41.901300] ? cpuidle_not_available+0x75/0xa0 [ 41.901306] default_idle+0xbf/0x430 [ 41.901310] ? __sched_text_end+0x4/0x4 [ 41.901316] ? rcu_eqs_special_set+0x1e0/0x1e0 [ 41.901320] ? tsc_verify_tsc_adjust+0xf6/0x3e0 [ 41.901326] ? set_cpu_sd_state_idle+0x1dc/0x2d0 [ 41.901331] ? mark_tsc_async_resets+0x30/0x30 [ 41.901339] arch_cpu_idle+0xa/0x10 [ 41.901343] default_idle_call+0x36/0x90 [ 41.901348] do_idle+0x24a/0x3b0 [ 41.901351] ? complete+0x62/0x80 [ 41.901357] cpu_startup_entry+0x104/0x120 [ 41.901362] ? cpu_in_idle+0x20/0x20 [ 41.901369] start_secondary+0x40a/0x590 [ 41.901375] ? set_cpu_sibling_map+0x1660/0x1660 [ 41.901382] secondary_startup_64+0xa5/0xb0 [ 41.901388] Code: 00 00 00 00 48 83 e7 f8 48 29 fb 8d 4b 2c c1 e9 03 f3 48 ab 48 81 c4 68 01 00 00 b8 01 00 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 <0f> 01 c4 48 c7 c7 e0 9b ec 86 48 89 f8 48 c1 e8 03 80 3c 10 00 [ 41.901456] RIP: smp_stop_nmi_callback+0x279/0x560 RSP: fffffe000003bb40 [ 41.912011] Dumping ftrace buffer: [ 41.913281] ---[ end trace 09711cabb03cb059 ]--- [ 42.392576] (ftrace buffer empty) [ 42.396261] Kernel Offset: disabled [ 42.399865] Rebooting in 86400 seconds..