Warning: Permanently added '10.128.10.24' (ECDSA) to the list of known hosts.
[ 18.977811] random: sshd: uninitialized urandom read (32 bytes read)
executing program
[ 19.072945] audit: type=1400 audit(1571074137.319:7): avc: denied { map } for pid=1777 comm="syz-executor999" path="/root/syz-executor999406997" dev="sda1" ino=16482 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[ 21.682367] ==================================================================
[ 21.690359] BUG: KASAN: stack-out-of-bounds in unwind_next_frame+0x169f/0x1810
[ 21.698186] Read of size 8 at addr ffff8881dba076f8 by task syz-executor999/1837
[ 21.706243]
[ 21.707872] CPU: 0 PID: 1837 Comm: syz-executor999 Not tainted 4.14.149+ #0
[ 21.715194] Call Trace:
[ 21.717926]
[ 21.720317] dump_stack+0xca/0x134
[ 21.723866] ? unwind_next_frame+0x169f/0x1810
[ 21.728677] ? unwind_next_frame+0x169f/0x1810
[ 21.733367] print_address_description+0x60/0x226
[ 21.739661] ? unwind_next_frame+0x169f/0x1810
[ 21.744537] ? unwind_next_frame+0x169f/0x1810
[ 21.749299] __kasan_report.cold+0x1a/0x41
[ 21.753542] ? get_callchain_buffers+0x290/0x2e0
[ 21.758443] ? unwind_next_frame+0x169f/0x1810
[ 21.763228] unwind_next_frame+0x169f/0x1810
[ 21.767667] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[ 21.774071] ? deref_stack_reg+0xe0/0xe0
[ 21.778617] ? perf_callchain+0x147/0x190
[ 21.782948] ? perf_callchain+0x150/0x190
[ 21.787315] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[ 21.794408] perf_callchain_kernel+0x3a0/0x540
[ 21.799701] ? perf_event_output_forward+0x12f/0x220
[ 21.805021] ? arch_perf_update_userpage+0x330/0x330
[ 21.811182] ? sk_filter_trim_cap+0x15f/0x7f0
[ 21.819632] ? perf_prepare_sample+0x1360/0x1360
[ 21.824920] ? force_sig_info_fault.constprop.0+0x220/0x220
[ 21.833462] ? deref_stack_reg+0xaa/0xe0
[ 21.837655] get_perf_callchain+0x2f5/0x770
[ 21.842137] ? put_callchain_buffers+0x60/0x60
[ 21.847028] ? kvm_clock_read+0x1f/0x30
[ 21.851397] ? kvm_sched_clock_read+0x5/0x10
[ 21.859340] ? sched_clock+0x5/0x10
[ 21.862988] ? sched_clock_cpu+0x31/0x1c0
[ 21.867138] perf_callchain+0x147/0x190
[ 21.871107] perf_prepare_sample+0x6a8/0x1360
[ 21.875720] ? perf_output_sample+0x1700/0x1700
[ 21.881574] ? perf_output_begin_forward+0x6f0/0xa50
[ 21.886931] ? perf_callchain_user+0x4a7/0xf80
[ 21.892827] perf_event_output_forward+0xdc/0x220
[ 21.897847] ? perf_prepare_sample+0x1360/0x1360
[ 21.902700] ? check_preemption_disabled+0x35/0x1f0
[ 21.907979] __perf_event_overflow+0x12d/0x340
[ 21.912562] perf_swevent_overflow+0x7a/0xf0
[ 21.916967] perf_swevent_event+0x19c/0x270
[ 21.921471] perf_tp_event+0x633/0x7f0
[ 21.925507] ? __lock_acquire+0x5d7/0x4320
[ 21.929783] ? perf_swevent_put_recursion_context+0xa0/0xa0
[ 21.935505] ? HARDIRQ_verbose+0x10/0x10
[ 21.939938] ? __is_insn_slot_addr+0x109/0x1e0
[ 21.944522] ? lock_downgrade+0x630/0x630
[ 21.948905] ? lock_acquire+0x12b/0x360
[ 21.954325] ? __free_insn_slot+0x490/0x490
[ 21.958960] ? check_preemption_disabled+0x35/0x1f0
[ 21.963979] ? __is_insn_slot_addr+0x130/0x1e0
[ 21.969017] ? kernel_text_address+0xfe/0x120
[ 21.973515] ? __kernel_text_address+0x9/0x30
[ 21.978017] ? unwind_get_return_address+0x51/0x90
[ 21.983642] ? perf_trace_run_bpf_submit+0x113/0x170
[ 21.988747] ? depot_save_stack+0x11d/0x418
[ 21.993605] ? check_preemption_disabled+0x35/0x1f0
[ 21.999635] perf_trace_run_bpf_submit+0x113/0x170
[ 22.004872] perf_trace_lock_acquire+0x341/0x4e0
[ 22.009631] ? receive_buf+0x503/0x4310
[ 22.013841] ? HARDIRQ_verbose+0x10/0x10
[ 22.017917] ? do_syscall_64+0x19b/0x520
[ 22.021977] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[ 22.027777] lock_acquire+0x279/0x360
[ 22.031877] ? sk_filter_trim_cap+0x15f/0x7f0
[ 22.036527] sk_filter_trim_cap+0x18e/0x7f0
[ 22.040849] ? sk_filter_trim_cap+0x15f/0x7f0
[ 22.045515] ? sk_skb_prologue+0xa40/0xa40
[ 22.049792] ? refcount_inc+0x40/0x40
[ 22.053757] ? __skb_clone+0x5d4/0x7d0
[ 22.057733] ? kmem_cache_alloc+0x2c0/0x360
[ 22.062054] sock_queue_rcv_skb+0x20/0x50
[ 22.066497] packet_rcv_spkt+0x39e/0x4d0
[ 22.070647] __netif_receive_skb_core+0xa71/0x2cf0
[ 22.075906] ? trace_hardirqs_on+0x10/0x10
[ 22.080603] ? perf_trace_lock_acquire+0x2c0/0x4e0
[ 22.086027] ? flush_backlog+0x580/0x580
[ 22.090259] ? HARDIRQ_verbose+0x10/0x10
[ 22.094324] ? netif_receive_skb_internal+0x3dd/0x5f0
[ 22.099511] ? mark_held_locks+0xa6/0xf0
[ 22.103698] ? __netif_receive_skb+0x66/0x210
[ 22.108763] __netif_receive_skb+0x66/0x210
[ 22.113641] netif_receive_skb_internal+0x11f/0x5f0
[ 22.118684] ? dev_cpu_dead+0x810/0x810
[ 22.122886] ? dev_gro_receive+0x157/0x16d0
[ 22.127450] ? check_preemption_disabled+0x35/0x1f0
[ 22.132682] napi_gro_receive+0x206/0x410
[ 22.136979] receive_buf+0x503/0x4310
[ 22.140792] ? virtnet_xdp_xmit.isra.0+0x780/0x780
[ 22.145872] ? vring_unmap_one+0x15/0x3e0
[ 22.150753] ? detach_buf+0x422/0x580
[ 22.154551] ? virtqueue_get_buf_ctx+0x3df/0x690
[ 22.159470] virtnet_poll+0x4e6/0x9f0
[ 22.163281] ? virtnet_restore+0x8d0/0x8d0
[ 22.167517] ? mark_held_locks+0xa6/0xf0
[ 22.171884] ? net_rx_action+0x213/0xcd0
[ 22.176031] net_rx_action+0x366/0xcd0
[ 22.180134] ? napi_complete_done+0x3b0/0x3b0
[ 22.184810] __do_softirq+0x234/0x9ec
[ 22.188638] ? check_preemption_disabled+0x35/0x1f0
[ 22.193960] irq_exit+0x114/0x150
[ 22.197414] do_IRQ+0x104/0x1c0
[ 22.200930] common_interrupt+0x8c/0x8c
[ 22.204985]
[ 22.207219] RIP: 0010:lock_acquire+0x170/0x360
[ 22.212086] RSP: 0018:ffff8881cf5e7ba8 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff6e
[ 22.219789] RAX: 0000000000000007 RBX: ffff8881cfe41780 RCX: 1ffff11039fc83fa
[ 22.228458] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000246
[ 22.236316] RBP: ffff8881cfe42878 R08: 0000000000003c49 R09: 0000000000000000
[ 22.244714] R10: ffff8881cfe41fb0 R11: b014e9afc0b10c96 R12: 0000000000000000
[ 22.252387] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 22.259815] ? SyS_perf_event_open+0x1a4d/0x2560
[ 22.264578] __mutex_lock+0xf7/0x13e0
[ 22.268384] ? SyS_perf_event_open+0x1a4d/0x2560
[ 22.273293] ? SyS_perf_event_open+0x1a4d/0x2560
[ 22.278071] ? lock_downgrade+0x630/0x630
[ 22.282972] ? __ww_mutex_wakeup_for_backoff+0x210/0x210
[ 22.282980] ? __mutex_unlock_slowpath+0xff/0x690
[ 22.282990] ? SyS_perf_event_open+0x19c3/0x2560
[ 22.282996] ? wait_for_completion_io+0x10/0x10
[ 22.283004] ? mark_held_locks+0xa6/0xf0
[ 22.283014] ? do_raw_spin_lock+0xb4/0x1d0
[ 22.312231] ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 22.312244] ? SyS_perf_event_open+0x1a4d/0x2560
[ 22.312250] SyS_perf_event_open+0x1a4d/0x2560
[ 22.312260] ? perf_bp_event+0x1a0/0x1a0
[ 22.312272] ? do_syscall_64+0x43/0x520
[ 22.334903] ? perf_bp_event+0x1a0/0x1a0
[ 22.334913] do_syscall_64+0x19b/0x520
[ 22.334923] entry_SYSCALL_64_after_hwframe+0x42/0xb7
[ 22.334929] RIP: 0033:0x441229
[ 22.334932] RSP: 002b:00007fff79347088 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[ 22.359688] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441229
[ 22.359692] RDX: 00000000ffffffff RSI: 0000000000000000 RDI: 0000000020000140
[ 22.359696] RBP: 0000000000005489 R08: 0000000000000000 R09: 00000000004002c8
[ 22.359699] R10: 00000000ffffffff R11: 0000000000000246 R12: 0000000000402050
[ 22.359703] R13: 00000000004020e0 R14: 0000000000000000 R15: 0000000000000000
[ 22.359711]
[ 22.359714] The buggy address belongs to the page:
[ 22.359721] page:ffffea00076e81c0 count:1 mapcount:0 mapping: (null) index:0x0
[ 22.359726] flags: 0x4000000000001000(reserved)
[ 22.359735] raw: 4000000000001000 0000000000000000 0000000000000000 00000001ffffffff
[ 22.425108] raw: ffffea00076e81e0 ffffea00076e81e0 0000000000000000 0000000000000000
[ 22.433218] page dumped because: kasan: bad access detected
[ 22.439186]
[ 22.440905] Memory state around the buggy address:
[ 22.446024] ffff8881dba07580: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 22.453970] ffff8881dba07600: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 22.461951] >ffff8881dba07680: 00 00 00 00 00 00 f1 f1 f1 f1 f1 f1 04 f2 00 f3
[ 22.469431] ^
[ 22.477239] ffff8881dba07700: f3 f3 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 22.485341] ffff8881dba07780: 00 00 00 00 00 00 00 00 00 00 00 00 00 f1 f1 f1
[ 22.493486] ==================================================================
[ 22.500954] Disabling lock debugging due to kernel taint
[ 22.506688] Kernel panic - not syncing: panic_on_warn set ...
[ 22.506688]
[ 22.514442] CPU: 0 PID: 1837 Comm: syz-executor999 Tainted: G B 4.14.149+ #0
[ 22.523083] Call Trace:
[ 22.525892]
[ 22.528168] dump_stack+0xca/0x134
[ 22.531709] panic+0x1ea/0x3d3
[ 22.535209] ? add_taint.cold+0x16/0x16
[ 22.539456] ? lock_downgrade+0x630/0x630
[ 22.543627] ? unwind_next_frame+0x169f/0x1810
[ 22.548292] end_report+0x43/0x49
[ 22.551922] ? unwind_next_frame+0x169f/0x1810
[ 22.556510] __kasan_report.cold+0xd/0x41
[ 22.561033] ? get_callchain_buffers+0x290/0x2e0
[ 22.566030] ? unwind_next_frame+0x169f/0x1810
[ 22.570759] unwind_next_frame+0x169f/0x1810
[ 22.575320] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[ 22.580905] ? deref_stack_reg+0xe0/0xe0
[ 22.585099] ? perf_callchain+0x147/0x190
[ 22.589524] ? perf_callchain+0x150/0x190
[ 22.593804] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[ 22.599180] perf_callchain_kernel+0x3a0/0x540
[ 22.603992] ? perf_event_output_forward+0x12f/0x220
[ 22.609460] ? arch_perf_update_userpage+0x330/0x330
[ 22.614579] ? sk_filter_trim_cap+0x15f/0x7f0
[ 22.619100] ? perf_prepare_sample+0x1360/0x1360
[ 22.624186] ? force_sig_info_fault.constprop.0+0x220/0x220
[ 22.629937] ? deref_stack_reg+0xaa/0xe0
[ 22.634004] get_perf_callchain+0x2f5/0x770
[ 22.638570] ? put_callchain_buffers+0x60/0x60
[ 22.643145] ? kvm_clock_read+0x1f/0x30
[ 22.647107] ? kvm_sched_clock_read+0x5/0x10
[ 22.651507] ? sched_clock+0x5/0x10
[ 22.655134] ? sched_clock_cpu+0x31/0x1c0
[ 22.659465] perf_callchain+0x147/0x190
[ 22.663909] perf_prepare_sample+0x6a8/0x1360
[ 22.668407] ? perf_output_sample+0x1700/0x1700
[ 22.673212] ? perf_output_begin_forward+0x6f0/0xa50
[ 22.678310] ? perf_callchain_user+0x4a7/0xf80
[ 22.682889] perf_event_output_forward+0xdc/0x220
[ 22.687799] ? perf_prepare_sample+0x1360/0x1360
[ 22.692558] ? check_preemption_disabled+0x35/0x1f0
[ 22.697571] __perf_event_overflow+0x12d/0x340
[ 22.702350] perf_swevent_overflow+0x7a/0xf0
[ 22.710547] perf_swevent_event+0x19c/0x270
[ 22.715077] perf_tp_event+0x633/0x7f0
[ 22.719084] ? __lock_acquire+0x5d7/0x4320
[ 22.723462] ? perf_swevent_put_recursion_context+0xa0/0xa0
[ 22.729440] ? HARDIRQ_verbose+0x10/0x10
[ 22.733501] ? __is_insn_slot_addr+0x109/0x1e0
[ 22.738689] ? lock_downgrade+0x630/0x630
[ 22.742840] ? lock_acquire+0x12b/0x360
[ 22.746983] ? __free_insn_slot+0x490/0x490
[ 22.751444] ? check_preemption_disabled+0x35/0x1f0
[ 22.756588] ? __is_insn_slot_addr+0x130/0x1e0
[ 22.761172] ? kernel_text_address+0xfe/0x120
[ 22.765661] ? __kernel_text_address+0x9/0x30
[ 22.770153] ? unwind_get_return_address+0x51/0x90
[ 22.775188] ? perf_trace_run_bpf_submit+0x113/0x170
[ 22.780298] ? depot_save_stack+0x11d/0x418
[ 22.784855] ? check_preemption_disabled+0x35/0x1f0
[ 22.790008] perf_trace_run_bpf_submit+0x113/0x170
[ 22.794983] perf_trace_lock_acquire+0x341/0x4e0
[ 22.799738] ? receive_buf+0x503/0x4310
[ 22.803708] ? HARDIRQ_verbose+0x10/0x10
[ 22.807941] ? do_syscall_64+0x19b/0x520
[ 22.812111] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[ 22.817620] lock_acquire+0x279/0x360
[ 22.821652] ? sk_filter_trim_cap+0x15f/0x7f0
[ 22.826306] sk_filter_trim_cap+0x18e/0x7f0
[ 22.830804] ? sk_filter_trim_cap+0x15f/0x7f0
[ 22.835609] ? sk_skb_prologue+0xa40/0xa40
[ 22.839987] ? refcount_inc+0x40/0x40
[ 22.843800] ? __skb_clone+0x5d4/0x7d0
[ 22.847836] ? kmem_cache_alloc+0x2c0/0x360
[ 22.852291] sock_queue_rcv_skb+0x20/0x50
[ 22.856610] packet_rcv_spkt+0x39e/0x4d0
[ 22.860769] __netif_receive_skb_core+0xa71/0x2cf0
[ 22.865829] ? trace_hardirqs_on+0x10/0x10
[ 22.870175] ? perf_trace_lock_acquire+0x2c0/0x4e0
[ 22.875277] ? flush_backlog+0x580/0x580
[ 22.879334] ? HARDIRQ_verbose+0x10/0x10
[ 22.883681] ? netif_receive_skb_internal+0x3dd/0x5f0
[ 22.888874] ? mark_held_locks+0xa6/0xf0
[ 22.892939] ? __netif_receive_skb+0x66/0x210
[ 22.897449] __netif_receive_skb+0x66/0x210
[ 22.901943] netif_receive_skb_internal+0x11f/0x5f0
[ 22.907096] ? dev_cpu_dead+0x810/0x810
[ 22.911353] ? dev_gro_receive+0x157/0x16d0
[ 22.915673] ? check_preemption_disabled+0x35/0x1f0
[ 22.920932] napi_gro_receive+0x206/0x410
[ 22.925086] receive_buf+0x503/0x4310
[ 22.928895] ? virtnet_xdp_xmit.isra.0+0x780/0x780
[ 22.933977] ? vring_unmap_one+0x15/0x3e0
[ 22.938242] ? detach_buf+0x422/0x580
[ 22.942637] ? virtqueue_get_buf_ctx+0x3df/0x690
[ 22.947628] virtnet_poll+0x4e6/0x9f0
[ 22.951430] ? virtnet_restore+0x8d0/0x8d0
[ 22.955666] ? mark_held_locks+0xa6/0xf0
[ 22.959958] ? net_rx_action+0x213/0xcd0
[ 22.964014] net_rx_action+0x366/0xcd0
[ 22.968047] ? napi_complete_done+0x3b0/0x3b0
[ 22.972975] __do_softirq+0x234/0x9ec
[ 22.976778] ? check_preemption_disabled+0x35/0x1f0
[ 22.981926] irq_exit+0x114/0x150
[ 22.985388] do_IRQ+0x104/0x1c0
[ 22.988666] common_interrupt+0x8c/0x8c
[ 22.992635]
[ 22.995041] RIP: 0010:lock_acquire+0x170/0x360
[ 22.999769] RSP: 0018:ffff8881cf5e7ba8 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff6e
[ 23.007476] RAX: 0000000000000007 RBX: ffff8881cfe41780 RCX: 1ffff11039fc83fa
[ 23.014748] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000246
[ 23.022520] RBP: ffff8881cfe42878 R08: 0000000000003c49 R09: 0000000000000000
[ 23.029918] R10: ffff8881cfe41fb0 R11: b014e9afc0b10c96 R12: 0000000000000000
[ 23.037192] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 23.044468] ? SyS_perf_event_open+0x1a4d/0x2560
[ 23.049235] __mutex_lock+0xf7/0x13e0
[ 23.053038] ? SyS_perf_event_open+0x1a4d/0x2560
[ 23.058000] ? SyS_perf_event_open+0x1a4d/0x2560
[ 23.062915] ? lock_downgrade+0x630/0x630
[ 23.067811] ? __ww_mutex_wakeup_for_backoff+0x210/0x210
[ 23.073724] ? __mutex_unlock_slowpath+0xff/0x690
[ 23.078935] ? SyS_perf_event_open+0x19c3/0x2560
[ 23.083719] ? wait_for_completion_io+0x10/0x10
[ 23.088576] ? mark_held_locks+0xa6/0xf0
[ 23.093399] ? do_raw_spin_lock+0xb4/0x1d0
[ 23.097726] ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 23.103795] ? SyS_perf_event_open+0x1a4d/0x2560
[ 23.109000] SyS_perf_event_open+0x1a4d/0x2560
[ 23.114715] ? perf_bp_event+0x1a0/0x1a0
[ 23.118778] ? do_syscall_64+0x43/0x520
[ 23.123143] ? perf_bp_event+0x1a0/0x1a0
[ 23.127307] do_syscall_64+0x19b/0x520
[ 23.131483] entry_SYSCALL_64_after_hwframe+0x42/0xb7
[ 23.136829] RIP: 0033:0x441229
[ 23.140025] RSP: 002b:00007fff79347088 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[ 23.147861] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441229
[ 23.155259] RDX: 00000000ffffffff RSI: 0000000000000000 RDI: 0000000020000140
[ 23.162716] RBP: 0000000000005489 R08: 0000000000000000 R09: 00000000004002c8
[ 23.170329] R10: 00000000ffffffff R11: 0000000000000246 R12: 0000000000402050
[ 23.177762] R13: 00000000004020e0 R14: 0000000000000000 R15: 0000000000000000
[ 23.186102] Kernel Offset: 0xaa00000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff)
[ 23.198764] Rebooting in 86400 seconds..