[....] Starting enhanced syslogd: rsyslogd[ 13.209138] audit: type=1400 audit(1546652167.229:4): avc: denied { syslog } for pid=1918 comm="rsyslogd" capability=34 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c. Starting mcstransd: [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.15.209' (ECDSA) to the list of known hosts. 2019/01/05 01:37:27 parsed 1 programs 2019/01/05 01:37:29 executed programs: 0 syzkaller login: [ 100.038014] BUG: sleeping function called from invalid context at kernel/locking/mutex.c:620 [ 100.046659] in_atomic(): 1, irqs_disabled(): 0, pid: 3090, name: syz-executor3 [ 100.054018] 3 locks held by syz-executor3/3090: [ 100.058705] #0: (sb_writers#4){.+.+.+}, at: [] mnt_want_write+0x3f/0xb0 [ 100.068047] #1: (&sb->s_type->i_mutex_key#9){+.+.+.}, at: [] do_truncate2+0x132/0x210 [ 100.078593] #2: (&ei->i_mmap_sem){++++.+}, at: [] ext4_setattr+0x1109/0x2090 [ 100.088310] Preemption disabled at:[] debug_check_no_obj_freed+0x159/0x6e0 [ 100.097038] [ 100.098663] CPU: 0 PID: 3090 Comm: syz-executor3 Not tainted 4.4.169+ #2 [ 100.105495] 0000000000000000 3b52a39b0ad055f1 ffff8801db607870 ffffffff81aab9c1 [ 100.113586] ffff8800b91417c0 0000000000000102 ffff8800b91417c0 0000000000000102 [ 100.121668] ffff8800b91417c0 ffff8801db6078a8 ffffffff813a6d4d ffff8800b91417c0 [ 100.129733] Call Trace: [ 100.132309] [] dump_stack+0xc1/0x120 [ 100.138439] [] ___might_sleep.cold+0x1c6/0x1dc [ 100.144670] [] __might_sleep+0x90/0x1a0 [ 100.150293] [] ? blk_done_softirq+0x258/0x3a0 [ 100.156434] [] mutex_lock_nested+0x8d/0xb80 [ 100.162408] [] ? __filemap_fdatawrite_range+0x1b5/0x260 [ 100.169420] [] ? replace_page_cache_page+0x420/0x420 [ 100.176174] [] ? do_sys_open+0x2f8/0x600 [ 100.181890] [] ? SyS_creat+0x27/0x30 [ 100.187251] [] ? entry_SYSCALL_64_fastpath+0x1e/0x9a [ 100.193999] [] ? mutex_trylock+0x500/0x500 [ 100.199888] [] ? filemap_check_errors+0x9d/0xe0 [ 100.206211] [] ? filemap_fdatawait_range+0x3d/0x50 [ 100.212785] [] __generic_file_fsync+0xcf/0x1c0 [ 100.219013] [] generic_file_fsync+0x78/0x120 [ 100.225070] [] ext4_sync_file+0x772/0xf10 [ 100.230858] [] ? ext4_llseek+0x970/0x970 [ 100.236600] [] vfs_fsync_range+0x111/0x260 [ 100.242491] [] dio_complete+0x3e6/0x720 [ 100.248112] [] dio_bio_end_aio+0x176/0x3f0 [ 100.253995] [] ? dio_complete+0x720/0x720 [ 100.259792] [] bio_endio+0x187/0x1e0 [ 100.265155] [] blk_update_request+0x267/0xa50 [ 100.271299] [] scsi_end_request+0x9c/0x5d0 [ 100.277180] [] scsi_io_completion+0x275/0x1810 [ 100.283410] [] ? trace_hardirqs_on+0x10/0x10 [ 100.289500] [] ? scsi_unblock_requests+0x50/0x50 [ 100.295908] [] ? virtscsi_complete_cmd+0x800/0x800 [ 100.302572] [] ? kvm_clock_get_cycles+0x9/0x10 [ 100.308807] [] ? scsi_handle_queue_ramp_up+0x32a/0x430 [ 100.315732] [] ? clockevents_program_event+0x1c4/0x3f0 [ 100.322658] [] ? sd_completed_bytes+0x3e0/0x3e0 [ 100.328975] [] scsi_finish_command+0x3a4/0x520 [ 100.335202] [] scsi_softirq_done+0x259/0x370 [ 100.341254] [] ? trace_hardirqs_on_caller+0x260/0x5a0 [ 100.348092] [] blk_done_softirq+0x258/0x3a0 [ 100.354059] [] ? trigger_softirq+0x210/0x210 [ 100.360114] [] __do_softirq+0x226/0xa3f [ 100.365736] [] irq_exit+0x10a/0x150 [ 100.371237] [] do_IRQ+0x111/0x1d0 [ 100.376336] [] common_interrupt+0x9d/0x9d [ 100.382124] [] ? check_preemption_disabled+0x3c/0x200 [ 100.389709] [] ? preempt_count_add+0x6b/0x1d0 [ 100.395853] [] rcu_lockdep_current_cpu_online+0x35/0x140 [ 100.402953] [] ? rcu_is_watching+0x15/0xb0 [ 100.408827] [] rcu_read_lock_sched_held+0x97/0x130 [ 100.415385] [] free_hot_cold_page_list+0x254/0x3c0 [ 100.421945] [] ? trace_hardirqs_on_caller+0x385/0x5a0 [ 100.428777] [] release_pages+0x158/0x680 [ 100.434478] [] ? put_compound_page+0x8a0/0x8a0 [ 100.440691] [] ? check_preemption_disabled+0x3c/0x200 [ 100.447513] [] ? put_page+0xc6/0x120 [ 100.452871] [] __pagevec_release+0x5d/0xb0 [ 100.458741] [] truncate_inode_pages_range+0x50e/0xde0 [ 100.465569] [] ? generic_error_remove_page+0xb0/0xb0 [ 100.472302] [] ? ext4_setattr+0x1109/0x2090 [ 100.478251] [] truncate_pagecache+0x69/0x90 [ 100.484201] [] ext4_setattr+0x1132/0x2090 [ 100.489983] [] ? trace_hardirqs_on_caller+0x385/0x5a0 [ 100.496811] [] ? ext4_evict_inode+0x13f0/0x13f0 [ 100.503112] [] notify_change2+0x871/0xb70 [ 100.508893] [] do_truncate2+0x14a/0x210 [ 100.514497] [] ? finish_open+0x180/0x180 [ 100.520188] [] ? do_dentry_open+0x53f/0xbd0 [ 100.526170] [] ? vfs_open+0x113/0x210 [ 100.531617] [] path_openat+0x2cf6/0x4470 [ 100.537326] [] ? may_open.isra.0+0x210/0x210 [ 100.543468] [] ? trace_hardirqs_on+0x10/0x10 [ 100.549520] [] do_filp_open+0x1a1/0x270 [ 100.555146] [] ? user_path_mountpoint_at+0x50/0x50 [ 100.561702] [] ? do_dup2+0x3d0/0x3d0 [ 100.567044] [] ? __alloc_fd+0x36/0x490 [ 100.572559] [] ? _raw_spin_unlock+0x2d/0x50 [ 100.578506] [] do_sys_open+0x2f8/0x600 [ 100.584021] [] ? __might_fault+0x117/0x1d0 [ 100.589887] [] ? filp_open+0x70/0x70 [ 100.595230] [] ? __might_fault+0x191/0x1d0 [ 100.601093] [] ? __might_fault+0xe7/0x1d0 [ 100.606885] [] ? SyS_clock_gettime+0x118/0x1e0 [ 100.613103] [] ? SyS_clock_settime+0x220/0x220 [ 100.619312] [] SyS_creat+0x27/0x30 [ 100.624482] [] entry_SYSCALL_64_fastpath+0x1e/0x9a [ 100.631378] [ 100.633005] ================================= [ 100.637491] [ INFO: inconsistent lock state ] [ 100.641960] 4.4.169+ #2 Not tainted [ 100.645558] --------------------------------- [ 100.650027] inconsistent {SOFTIRQ-ON-W} -> {IN-SOFTIRQ-W} usage. [ 100.656150] syz-executor3/3090 [HC0[0]:SC1[1]:HE1:SE0] takes: [ 100.662016] (&sb->s_type->i_mutex_key#9){+.?.+.}, at: [] __generic_file_fsync+0xcf/0x1c0 [ 100.672494] {SOFTIRQ-ON-W} state was registered at: [ 100.677489] [] __lock_acquire+0xe73/0x4f50 [ 100.683569] [] lock_acquire+0x15e/0x450 [ 100.689396] [] mutex_lock_nested+0xc1/0xb80 [ 100.695579] [] prepare_binprm+0x2bf/0x770 [ 100.701564] [] do_execveat_common.isra.0+0xd86/0x1e90 [ 100.708590] [] SyS_execve+0x42/0x50 [ 100.714061] [] return_from_execve+0x0/0x23 [ 100.720132] irq event stamp: 1470 [ 100.723556] hardirqs last enabled at (1470): [] restore_regs_and_iret+0x0/0x1d [ 100.732676] hardirqs last disabled at (1469): [] common_interrupt+0x98/0x9d [ 100.741467] softirqs last enabled at (0): [] copy_process+0x127b/0x68c0 [ 100.750002] softirqs last disabled at (1387): [] irq_exit+0x10a/0x150 [ 100.758247] [ 100.758247] other info that might help us debug this: [ 100.764889] Possible unsafe locking scenario: [ 100.764889] [ 100.770925] CPU0 [ 100.773488] ---- [ 100.776046] lock(&sb->s_type->i_mutex_key#9); [ 100.781082] [ 100.783822] lock(&sb->s_type->i_mutex_key#9); [ 100.789022] [ 100.789022] *** DEADLOCK *** [ 100.789022] [ 100.795058] 3 locks held by syz-executor3/3090: [ 100.799715] #0: (sb_writers#4){.+.+.+}, at: [] mnt_want_write+0x3f/0xb0 [ 100.808965] #1: (&sb->s_type->i_mutex_key#9){+.?.+.}, at: [] do_truncate2+0x132/0x210 [ 100.819413] #2: (&ei->i_mmap_sem){++++.+}, at: [] ext4_setattr+0x1109/0x2090 [ 100.828946] [ 100.828946] stack backtrace: [ 100.833420] CPU: 0 PID: 3090 Comm: syz-executor3 Not tainted 4.4.169+ #2 [ 100.840232] 0000000000000000 3b52a39b0ad055f1 ffff8801db607610 ffffffff81aab9c1 [ 100.848262] 0000000000000090 ffff8800b91417c0 ffffffff83abd470 ffffffff84055ac0 [ 100.856260] ffff8800b9142120 ffff8801db607688 ffffffff813ad270 0000000000000001 [ 100.864266] Call Trace: [ 100.866826] [] dump_stack+0xc1/0x120 [ 100.872940] [] print_usage_bug.cold+0x454/0x592 [ 100.879247] [] ? save_stack_trace+0x26/0x50 [ 100.885196] [] mark_lock+0x6fd/0x1440 [ 100.890641] [] ? print_irq_inversion_bug+0x110/0x110 [ 100.897385] [] __lock_acquire+0x145e/0x4f50 [ 100.903335] [] ? retint_kernel+0x2d/0x2d [ 100.909023] [] ? trace_hardirqs_on_caller+0x260/0x5a0 [ 100.915855] [] ? trace_hardirqs_on+0x10/0x10 [ 100.921898] [] ? dump_stack+0x105/0x120 [ 100.927497] [] lock_acquire+0x15e/0x450 [ 100.933101] [] ? __generic_file_fsync+0xcf/0x1c0 [ 100.939482] [] ? __generic_file_fsync+0xcf/0x1c0 [ 100.945882] [] mutex_lock_nested+0xc1/0xb80 [ 100.951848] [] ? __generic_file_fsync+0xcf/0x1c0 [ 100.958235] [] ? __filemap_fdatawrite_range+0x1b5/0x260 [ 100.965228] [] ? replace_page_cache_page+0x420/0x420 [ 100.971955] [] ? do_sys_open+0x2f8/0x600 [ 100.977645] [] ? SyS_creat+0x27/0x30 [ 100.982995] [] ? entry_SYSCALL_64_fastpath+0x1e/0x9a [ 100.989725] [] ? mutex_trylock+0x500/0x500 [ 100.995588] [] ? filemap_check_errors+0x9d/0xe0 [ 101.001895] [] ? filemap_fdatawait_range+0x3d/0x50 [ 101.008451] [] __generic_file_fsync+0xcf/0x1c0 [ 101.014661] [] generic_file_fsync+0x78/0x120 [ 101.020699] [] ext4_sync_file+0x772/0xf10 [ 101.026472] [] ? ext4_llseek+0x970/0x970 [ 101.032162] [] vfs_fsync_range+0x111/0x260 [ 101.038025] [] dio_complete+0x3e6/0x720 [ 101.043630] [] dio_bio_end_aio+0x176/0x3f0 [ 101.049493] [] ? dio_complete+0x720/0x720 [ 101.055272] [] bio_endio+0x187/0x1e0 [ 101.060625] [] blk_update_request+0x267/0xa50 [ 101.066766] [] scsi_end_request+0x9c/0x5d0 [ 101.072641] [] scsi_io_completion+0x275/0x1810 [ 101.078857] [] ? trace_hardirqs_on+0x10/0x10 [ 101.084898] [] ? scsi_unblock_requests+0x50/0x50 [ 101.091288] [] ? virtscsi_complete_cmd+0x800/0x800 [ 101.097855] [] ? kvm_clock_get_cycles+0x9/0x10 [ 101.104082] [] ? scsi_handle_queue_ramp_up+0x32a/0x430 [ 101.111001] [] ? clockevents_program_event+0x1c4/0x3f0 [ 101.117905] [] ? sd_completed_bytes+0x3e0/0x3e0 [ 101.124203] [] scsi_finish_command+0x3a4/0x520 [ 101.130425] [] scsi_softirq_done+0x259/0x370 [ 101.136546] [] ? trace_hardirqs_on_caller+0x260/0x5a0 [ 101.143400] [] blk_done_softirq+0x258/0x3a0 [ 101.149365] [] ? trigger_softirq+0x210/0x210 [ 101.155404] [] __do_softirq+0x226/0xa3f [ 101.161012] [] irq_exit+0x10a/0x150 [ 101.166277] [] do_IRQ+0x111/0x1d0 [ 101.171356] [] common_interrupt+0x9d/0x9d [ 101.177129] [] ? check_preemption_disabled+0x3c/0x200 [ 101.184684] [] ? preempt_count_add+0x6b/0x1d0 [ 101.190814] [] rcu_lockdep_current_cpu_online+0x35/0x140 [ 101.197900] [] ? rcu_is_watching+0x15/0xb0 [ 101.203762] [] rcu_read_lock_sched_held+0x97/0x130 [ 101.210318] [] free_hot_cold_page_list+0x254/0x3c0 [ 101.216879] [] ? trace_hardirqs_on_caller+0x385/0x5a0 [ 101.223695] [] release_pages+0x158/0x680 [ 101.229386] [] ? put_compound_page+0x8a0/0x8a0 [ 101.235596] [] ? check_preemption_disabled+0x3c/0x200 [ 101.242420] [] ? put_page+0xc6/0x120 [ 101.247762] [] __pagevec_release+0x5d/0xb0 [ 101.253627] [] truncate_inode_pages_range+0x50e/0xde0 [ 101.260452] [] ? generic_error_remove_page+0xb0/0xb0 [ 101.267195] [] ? ext4_setattr+0x1109/0x2090 [ 101.273144] [] truncate_pagecache+0x69/0x90 [ 101.279095] [] ext4_setattr+0x1132/0x2090 [ 101.284879] [] ? trace_hardirqs_on_caller+0x385/0x5a0 [ 101.291699] [] ? ext4_evict_inode+0x13f0/0x13f0 [ 101.298024] [] notify_change2+0x871/0xb70 [ 101.303810] [] do_truncate2+0x14a/0x210 [ 101.309429] [] ? finish_open+0x180/0x180 [ 101.315118] [] ? do_dentry_open+0x53f/0xbd0 [ 101.321067] [] ? vfs_open+0x113/0x210 [ 101.326494] [] path_openat+0x2cf6/0x4470 [ 101.332200] [] ? may_open.isra.0+0x210/0x210 [ 101.338240] [] ? trace_hardirqs_on+0x10/0x10 [ 101.344291] [] do_filp_open+0x1a1/0x270 [ 101.349893] [] ? user_path_mountpoint_at+0x50/0x50 [ 101.356449] [] ? do_dup2+0x3d0/0x3d0 [ 101.361791] [] ? __alloc_fd+0x36/0x490 [ 101.367325] [] ? _raw_spin_unlock+0x2d/0x50 [ 101.373277] [] do_sys_open+0x2f8/0x600 [ 101.378811] [] ? __might_fault+0x117/0x1d0 [ 101.384673] [] ? filp_open+0x70/0x70 [ 101.390012] [] ? __might_fault+0x191/0x1d0 [ 101.395898] [] ? __might_fault+0xe7/0x1d0 [ 101.401675] [] ? SyS_clock_gettime+0x118/0x1e0 [ 101.407889] [] ? SyS_clock_settime+0x220/0x220 [ 101.414105] [] SyS_creat+0x27/0x30 [ 101.419286] [] entry_SYSCALL_64_fastpath+0x1e/0x9a [ 101.425888] BUG: scheduling while atomic: syz-executor3/3090/0x00000103 [ 101.432630] INFO: lockdep is turned off. [ 101.436684] Modules linked in: [ 101.439980] Preemption disabled at:[] debug_check_no_obj_freed+0x159/0x6e0 [ 101.448676] [ 101.450297] CPU: 0 PID: 3090 Comm: syz-executor3 Not tainted 4.4.169+ #2 [ 101.457108] 0000000000000000 3b52a39b0ad055f1 ffff8801db607800 ffffffff81aab9c1 [ 101.465151] 0000000000000000 ffff8800b91417c0 0000000000000103 0000000000000000 [ 101.473168] 000000000001e880 ffff8801db607820 ffffffff813a6dc3 ffff8801db61e880 [ 101.481179] Call Trace: [ 101.483742] [] dump_stack+0xc1/0x120 [ 101.489852] [] __schedule_bug.cold+0x60/0x71 [ 101.495901] [] __schedule+0x118b/0x1ee0 [ 101.501731] [] ? dump_stack+0x10f/0x120 [ 101.507355] [] ? lock_acquire+0x19f/0x450 [ 101.513139] [] schedule+0x99/0x1d0 [ 101.518313] [] schedule_preempt_disabled+0x13/0x20 [ 101.524886] [] mutex_lock_nested+0x3c2/0xb80 [ 101.530928] [] ? __generic_file_fsync+0xcf/0x1c0 [ 101.537330] [] ? __filemap_fdatawrite_range+0x1b5/0x260 [ 101.544339] [] ? do_sys_open+0x2f8/0x600 [ 101.550027] [] ? SyS_creat+0x23/0x30 [ 101.555370] [] ? mutex_trylock+0x500/0x500 [ 101.561237] [] ? filemap_fdatawait_range+0x3d/0x50 [ 101.567798] [] __generic_file_fsync+0xcf/0x1c0 [ 101.574006] [] generic_file_fsync+0x78/0x120 [ 101.580045] [] ext4_sync_file+0x772/0xf10 [ 101.585820] [] ? ext4_llseek+0x970/0x970 [ 101.591508] [] vfs_fsync_range+0x111/0x260 [ 101.597367] [] dio_complete+0x3e6/0x720 [ 101.602972] [] dio_bio_end_aio+0x176/0x3f0 [ 101.608849] [] ? dio_complete+0x720/0x720 [ 101.614631] [] bio_endio+0x187/0x1e0 [ 101.619971] [] blk_update_request+0x267/0xa50 [ 101.626095] [] scsi_end_request+0x9c/0x5d0 [ 101.631954] [] scsi_io_completion+0x275/0x1810 [ 101.638170] [] ? trace_hardirqs_on+0x10/0x10 [ 101.644209] [] ? scsi_unblock_requests+0x50/0x50 [ 101.650591] [] ? virtscsi_complete_cmd+0x800/0x800 [ 101.657158] [] ? kvm_clock_get_cycles+0x9/0x10 [ 101.663386] [] ? scsi_handle_queue_ramp_up+0x32a/0x430 [ 101.670290] [] ? clockevents_program_event+0x1c4/0x3f0 [ 101.677218] [] ? sd_completed_bytes+0x3e0/0x3e0 [ 101.683522] [] scsi_finish_command+0x3a4/0x520 [ 101.689735] [] scsi_softirq_done+0x259/0x370 [ 101.695770] [] ? trace_hardirqs_on_caller+0x260/0x5a0 [ 101.702674] [] blk_done_softirq+0x258/0x3a0 [ 101.708638] [] ? trigger_softirq+0x210/0x210 [ 101.714768] [] __do_softirq+0x226/0xa3f [ 101.720409] [] irq_exit+0x10a/0x150 [ 101.725674] [] do_IRQ+0x111/0x1d0 [ 101.730774] [] common_interrupt+0x9d/0x9d [ 101.736558] [] ? check_preemption_disabled+0x3c/0x200 [ 101.744139] [] ? preempt_count_add+0x6b/0x1d0 [ 101.750263] [] rcu_lockdep_current_cpu_online+0x35/0x140 [ 101.757434] [] ? rcu_is_watching+0x15/0xb0 [ 101.763316] [] rcu_read_lock_sched_held+0x97/0x130 [ 101.769911] [] free_hot_cold_page_list+0x254/0x3c0 [ 101.776478] [] ? trace_hardirqs_on_caller+0x385/0x5a0 [ 101.783293] [] release_pages+0x158/0x680 [ 101.788981] [] ? put_compound_page+0x8a0/0x8a0 [ 101.795191] [] ? check_preemption_disabled+0x3c/0x200 [ 101.802032] [] ? put_page+0xc6/0x120 [ 101.807385] [] __pagevec_release+0x5d/0xb0 [ 101.813262] [] truncate_inode_pages_range+0x50e/0xde0 [ 101.820078] [] ? generic_error_remove_page+0xb0/0xb0 [ 101.826828] [] ? ext4_setattr+0x1109/0x2090 [ 101.832784] [] truncate_pagecache+0x69/0x90 [ 101.838731] [] ext4_setattr+0x1132/0x2090 [ 101.844507] [] ? trace_hardirqs_on_caller+0x385/0x5a0 [ 101.851326] [] ? ext4_evict_inode+0x13f0/0x13f0 [ 101.857654] [] notify_change2+0x871/0xb70 [ 101.863429] [] do_truncate2+0x14a/0x210 [ 101.869029] [] ? finish_open+0x180/0x180 [ 101.874716] [] ? do_dentry_open+0x53f/0xbd0 [ 101.880669] [] ? vfs_open+0x113/0x210 [ 101.886111] [] path_openat+0x2cf6/0x4470 [ 101.891814] [] ? may_open.isra.0+0x210/0x210 [ 101.897851] [] ? trace_hardirqs_on+0x10/0x10 [ 101.903900] [] do_filp_open+0x1a1/0x270 [ 101.909512] [] ? user_path_mountpoint_at+0x50/0x50 [ 101.916071] [] ? do_dup2+0x3d0/0x3d0 [ 101.921421] [] ? __alloc_fd+0x36/0x490 [ 101.926952] [] ? _raw_spin_unlock+0x2d/0x50 [ 101.932905] [] do_sys_open+0x2f8/0x600 [ 101.938435] [] ? __might_fault+0x117/0x1d0 [ 101.944306] [] ? filp_open+0x70/0x70 [ 101.949657] [] ? __might_fault+0x191/0x1d0 [ 101.955542] [] ? __might_fault+0xe7/0x1d0 [ 101.961336] [] ? SyS_clock_gettime+0x118/0x1e0 [ 101.967544] [] ? SyS_clock_settime+0x220/0x220 [ 101.973755] [] SyS_creat+0x27/0x30 [ 101.978938] [] entry_SYSCALL_64_fastpath+0x1e/0x9a [ 101.985722] NOHZ: local_softirq_pending 292 [ 101.990050] NOHZ: local_softirq_pending 292 2019/01/05 01:37:36 executed programs: 13