Starting mcstransd: [ 10.035685] random: sshd: uninitialized urandom read (32 bytes read) [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 12.707201] random: sshd: uninitialized urandom read (32 bytes read) [ 12.926568] random: sshd: uninitialized urandom read (32 bytes read) [ 13.223423] random: crng init done Warning: Permanently added '10.128.10.49' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program [ 27.137714] lowmemorykiller: Killing 'syz-executor757' (2045) (tgid 2045), adj 1000, [ 27.137714] to free 40kB on behalf of 'kswapd0' (33) because [ 27.137714] cache 37184kB is below limit 65536kB for oom_score_adj 12 [ 27.137714] Free memory is -13212kB above reserved [ 27.143173] [ 27.143725] ================================= [ 27.144774] [ INFO: inconsistent lock state ] [ 27.146194] 4.9.194+ #0 Not tainted [ 27.147469] --------------------------------- [ 27.148640] inconsistent {RECLAIM_FS-ON-W} -> {IN-RECLAIM_FS-R} usage. [ 27.150807] kswapd0/33 [HC0[0]:SC0[0]:HE1:SE1] takes: [ 27.152592] (&mm->mmap_sem){+++++?}, at: [<00000000ff3435b4>] get_cmdline+0xa3/0x2d0 {RECLAIM_FS-ON-W} state was registered at: [ 27.156372] mark_held_locks+0xb1/0x100 [ 27.157683] lockdep_trace_alloc+0x18c/0x2b0 [ 27.161932] __alloc_pages_nodemask+0x143/0x1a80 [ 27.166851] __pmd_alloc+0x4a/0x330 [ 27.170558] move_page_tables+0xadb/0xd60 [ 27.174781] shift_arg_pages+0x1ae/0x470 [ 27.178916] setup_arg_pages+0x60d/0x7c0 [ 27.183052] load_elf_binary+0xa84/0x4a90 [ 27.187278] search_binary_handler+0x14f/0x700 [ 27.191933] do_execveat_common.isra.0+0xf81/0x1db0 [ 27.197023] do_execve+0x3a/0x50 [ 27.200468] run_init_process+0x33/0x37 [ 27.204524] try_to_run_init_process+0x18/0x48 [ 27.209182] kernel_init+0xf2/0x163 [ 27.212892] ret_from_fork+0x5c/0x70 [ 27.216679] irq event stamp: 4343 [ 27.220146] hardirqs last enabled at (4343): [<000000006a09e641>] vprintk_emit+0x25c/0x6f0 [ 27.228624] hardirqs last disabled at (4342): [<00000000fd7cb527>] vprintk_emit+0x6d/0x6f0 [ 27.237030] softirqs last enabled at (0): [<00000000467b6b03>] copy_process.part.0+0x118f/0x6690 [ 27.246032] softirqs last disabled at (0): [< (null)>] (null) [ 27.253554] [ 27.253554] other info that might help us debug this: [ 27.260211] Possible unsafe locking scenario: [ 27.260211] [ 27.266256] CPU0 [ 27.268826] ---- [ 27.271396] lock(&mm->mmap_sem); [ 27.275194] [ 27.277936] lock(&mm->mmap_sem); [ 27.281893] [ 27.281893] *** DEADLOCK *** [ 27.281893] [ 27.287957] 1 lock held by kswapd0/33: [ 27.291831] #0: (shrinker_rwsem){++++..}, at: [<00000000c41817a2>] shrink_slab.part.0+0xb2/0xa20 [ 27.301471] [ 27.301471] stack backtrace: [ 27.305959] CPU: 1 PID: 33 Comm: kswapd0 Not tainted 4.9.194+ #0 [ 27.312099] ffff8801d8df7420 ffffffff81b67001 00000000000000f0 ffff8801d9942f80 [ 27.320234] ffffffff83cb0630 ffff8801d9943878[ 27.324093] oom_reaper: reaped process 2045 (syz-executor757), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB [ 27.334706] ffffffff84252000 ffff8801d8df7498 [ 27.339574] ffffffff81408710 0000000000000000 ffffffff00000001 0000000000000001 [ 27.347614] Call Trace: [ 27.350202] [<00000000fbd0f17f>] dump_stack+0xc1/0x120 [ 27.355560] [<00000000147effa6>] print_usage_bug.cold+0x452/0x5a2 [ 27.361868] [<00000000ae93827c>] mark_lock+0x6c7/0x12e0 [ 27.367319] [<0000000085c1b3d0>] ? print_irq_inversion_bug+0xa0/0xa0 [ 27.373898] [<000000008ade407d>] __lock_acquire+0x5be/0x4390 [ 27.379782] [<0000000062d52a45>] ? serial8250_console_write+0x3d4/0x860 [ 27.382280] syz-executor757: vmalloc: allocation failure, allocated 1176580096 of 2983755776 bytes, mode:0x24000c2(GFP_KERNEL|__GFP_HIGHMEM) [ 27.385647] syz-executor757 invoked oom-killer: gfp_mask=0x24002c2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_NOWARN), nodemask=0, order=0, oom_score_adj=1000 [ 27.412655] [<0000000002ed358e>] ? trace_hardirqs_on+0x10/0x10 [ 27.418713] [<0000000002ed358e>] ? trace_hardirqs_on+0x10/0x10 [ 27.424807] [<0000000045c8039c>] ? check_preemption_disabled+0x3c/0x200 [ 27.431633] [<0000000045c8039c>] ? check_preemption_disabled+0x3c/0x200 [ 27.438472] [<0000000057038893>] ? debug_lockdep_rcu_enabled+0x71/0xa0 [ 27.445209] [<000000002b0540e7>] lock_acquire+0x133/0x3d0 [ 27.450829] [<00000000ff3435b4>] ? get_cmdline+0xa3/0x2d0 [ 27.456442] [<0000000027045a5a>] down_read+0x44/0xb0 [ 27.461617] [<00000000ff3435b4>] ? get_cmdline+0xa3/0x2d0 [ 27.467317] [<00000000ff3435b4>] get_cmdline+0xa3/0x2d0 [ 27.472752] [<0000000017f7f3a9>] handle_lmk_event+0x169/0x920 [ 27.478715] [<00000000e1245160>] ? lmk_event_show+0x390/0x390 [ 27.484673] [<000000001dc2df53>] ? vprintk+0x28/0x30 [ 27.492275] [<0000000057038893>] ? debug_lockdep_rcu_enabled+0x71/0xa0 [ 27.499011] [<0000000046c88a5d>] ? kill_pid_info_as_cred+0x540/0x540 [ 27.505575] [<0000000045c8039c>] ? check_preemption_disabled+0x3c/0x200 [ 27.512409] [<0000000045c8039c>] ? check_preemption_disabled+0x3c/0x200 [ 27.519231] [<0000000045c8039c>] ? check_preemption_disabled+0x3c/0x200 [ 27.526068] [<0000000079da0264>] ? lowmem_scan+0x6ae/0xb70 [ 27.531765] [<0000000074108784>] lowmem_scan+0x6f3/0xb70 [ 27.537290] [<00000000fdf21533>] shrink_slab.part.0+0x3cf/0xa20 [ 27.543419] [<00000000643fb4fd>] ? unregister_shrinker+0x230/0x230 [ 27.549807] [<000000005300e2a2>] ? _raw_spin_unlock_irq+0x39/0x60 [ 27.556110] [<00000000baac4c3e>] ? finish_task_switch+0x1e5/0x660 [ 27.562410] [<00000000f502a6fe>] ? finish_task_switch+0x1b7/0x660 [ 27.569318] [<00000000c7d9886f>] ? __switch_to_asm+0x41/0x70 [ 27.575194] [<0000000055dce182>] shrink_node+0x1ed/0x750 [ 27.580715] [<0000000007d2bb17>] ? shrink_node_memcg.isra.0+0x1360/0x1360 [ 27.587799] [<00000000075413da>] kswapd+0x7f8/0x13b0 [ 27.592973] [<00000000de0cc6ce>] ? try_to_free_pages+0xbd0/0xbd0 [ 27.599289] [<00000000b1f7843b>] ? autoremove_wake_function.part.0+0x130/0x130 [ 27.606720] [<000000003a48f9da>] ? __kthread_parkme+0x173/0x240 [ 27.612853] [<00000000de0cc6ce>] ? try_to_free_pages+0xbd0/0xbd0 [ 27.619068] [<00000000596ee0c5>] kthread+0x278/0x310 [ 27.624240] [<000000003f0d3d84>] ? kthread_park+0xa0/0xa0 [ 27.629932] [<0000000057038893>] ? debug_lockdep_rcu_enabled+0x71/0xa0 [ 27.636668] [<000000005300e2a2>] ? _raw_spin_unlock_irq+0x39/0x60 [ 27.643054] [<00000000baac4c3e>] ? finish_task_switch+0x1e5/0x660 [ 27.649359] [<00000000f502a6fe>] ? finish_task_switch+0x1b7/0x660 [ 27.655755] [<00000000c7d9886f>] ? __switch_to_asm+0x41/0x70 [ 27.661619] [<0000000046641bd6>] ? __switch_to_asm+0x35/0x70 [ 27.667500] [<00000000c7d9886f>] ? __switch_to_asm+0x41/0x70 [ 27.673889] [<000000003f0d3d84>] ? kthread_park+0xa0/0xa0 [ 27.679495] [<000000003f0d3d84>] ? kthread_park+0xa0/0xa0 [ 27.685113] [<00000000b7a2aa08>] ret_from_fork+0x5c/0x70 [ 27.690636] CPU: 0 PID: 2045 Comm: syz-executor757 Not tainted 4.9.194+ #0 [ 27.697667] ffff8801cf22fa10 ffffffff81b67001 1ffff10039e45f44 dffffc0000000000 [ 27.705723] ffffffff82aab480 0000000000000000 0000000000400000 ffff8801cf22fb38 [ 27.713772] ffffffff815080fc 0000000041b58ab3 ffffffff82e3bc80 ffffffff81431d00 [ 27.721847] Call Trace: [ 27.724427] [<00000000fbd0f17f>] dump_stack+0xc1/0x120 [ 27.729786] [<0000000004c2140f>] warn_alloc.cold+0x76/0x93 [ 27.735485] [<000000001c60fd4b>] ? zone_watermark_ok_safe+0x260/0x260 [ 27.742139] [<0000000010c2f5f7>] __vmalloc_node_range+0x404/0x610 [ 27.748450] [<000000004ff975ab>] ? xt_alloc_table_info+0xc8/0x100 [ 27.754761] [<00000000beb80ad9>] vmalloc+0x5c/0x70 [ 27.759765] [<000000004ff975ab>] ? xt_alloc_table_info+0xc8/0x100 [ 27.766077] [<000000004ff975ab>] xt_alloc_table_info+0xc8/0x100 [ 27.772383] [<00000000fc89798c>] do_ip6t_set_ctl+0x231/0x480 [ 27.778255] [<0000000057271891>] ? compat_do_ip6t_set_ctl+0x150/0x150 [ 27.784928] [<00000000ff2c6930>] ? mutex_unlock+0x9/0x10 [ 27.790462] [<00000000ed9ff261>] ? nf_sockopt_find.constprop.0+0x1b7/0x230 [ 27.797549] [<00000000942ac798>] nf_setsockopt+0x6d/0xc0 [ 27.803073] [<000000008112e31d>] ipv6_setsockopt+0x10b/0x140 [ 27.808962] [<00000000497ff0ac>] udpv6_setsockopt+0x4e/0x90 [ 27.814738] [<00000000840df2b7>] sock_common_setsockopt+0x9a/0xe0 [ 27.821033] [<0000000099fc6a86>] SyS_setsockopt+0x159/0x240 [ 27.827065] [<0000000020759724>] ? SyS_recv+0x40/0x40 [ 27.832317] [<00000000631790a5>] ? __do_page_fault+0x545/0xa60 [ 27.838370] [<00000000cb1c9f69>] ? do_syscall_64+0x4a/0x5c0 [ 27.844141] [<0000000020759724>] ? SyS_recv+0x40/0x40 [ 27.849394] [<0000000007101d1d>] do_syscall_64+0x1ad/0x5c0 [ 27.855157] [<000000004f9a92e6>] entry_SYSCALL_64_after_swapgs+0x5d/0xdb [ 27.865482] Mem-Info: [ 27.867925] active_anon:3202 inactive_anon:40 isolated_anon:0 [ 27.867925] active_file:18 inactive_file:22 isolated_file:0 [ 27.867925] unevictable:0 dirty:0 writeback:0 unstable:0 [ 27.867925] slab_reclaimable:4260 slab_unreclaimable:56654 [ 27.867925] mapped:43 shmem:48 pagetables:356 bounce:0 [ 27.867925] free:1225 free_pcp:8 free_cma:0 [ 27.872471] CPU: 1 PID: 2054 Comm: syz-executor757 Not tainted 4.9.194+ #0 [ 27.872484] ffff8801c3f97738 ffffffff81b67001 ffff8801c3f97a90 ffffffff833f1c30 [ 27.872492] 00000000000003e8 ffff8801c3f97aa8 0000000000000000 ffff8801c3f977b8 [ 27.872502] ffffffff81506e44 0000000000000000 00000000000003e8 ffffffff8282ac45 [ 27.872503] Call Trace: [ 27.872519] [<00000000fbd0f17f>] dump_stack+0xc1/0x120 [ 27.872528] [<00000000c12f9d0b>] dump_header.isra.0+0x142/0x74c [ 27.872537] [<000000002d3bed6b>] ? _raw_spin_unlock_irqrestore+0x45/0x70 [ 27.872544] [<00000000841660ea>] ? ___ratelimit+0x55/0x413 [ 27.872552] [<000000009ffaf50e>] oom_kill_process.cold+0xd/0xa74 Connection to 10.128.10.49 closed by remote host. [