[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 11.867970] audit: type=1400 audit(1513611771.775:6): avc: denied { map } for pid=3126 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added 'ci-upstream-kasan-gce-0,10.128.15.235' (ECDSA) to the list of known hosts. 2017/12/18 15:42:57 fuzzer started syzkaller login: [ 17.991821] audit: type=1400 audit(1513611777.899:7): avc: denied { map } for pid=3137 comm="syz-fuzzer" path="/root/syz-fuzzer" dev="sda1" ino=16479 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 2017/12/18 15:42:58 dialing manager at 10.128.0.26:37235 2017/12/18 15:43:00 kcov=true, comps=true [ 20.789687] audit: type=1400 audit(1513611780.697:8): avc: denied { map } for pid=3137 comm="syz-fuzzer" path="/sys/kernel/debug/kcov" dev="debugfs" ino=8892 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:debugfs_t:s0 tclass=file permissive=1 2017/12/18 15:43:01 executing program 0: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x3, 0x32, 0xffffffffffffffff, 0x0) clone(0x0, &(0x7f0000013000)="", &(0x7f0000004000)=0x0, &(0x7f0000012000-0x4)=0x0, &(0x7f0000013000)="") timer_create(0x0, &(0x7f0000001000-0x60)={0x0, 0x0, 0x0, @thr={&(0x7f0000000000)="", &(0x7f0000001000-0xbc)="1f87028b3ec50117470cfb15ac125f84e4552c9149a842a009984b480aeedbe9561b60c35ad4b7663a68078665e4a0333d0d2fd38bff80a4b7f7d082dceec503d70e5c3e1d2a0b686797a3777bd951e4ccb2dc270450aa69edd4827324029a95280948585fd9aa143c"}, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f0000000000)=0x0) 2017/12/18 15:43:01 executing program 4: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0xfffffffffdfffffd, 0x0) ioctl$EVIOCSKEYCODE_V2(r0, 0x40284504, &(0x7f0000473000-0x28)={0x0, 0x2, 0x0, 0x0, "1d0003fe000000000000000a040000008be50000000000f900042608a2a73333"}) 2017/12/18 15:43:01 executing program 1: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, &(0x7f0000b3d000-0x8)={0x0, 0x0}, 0x6) 2017/12/18 15:43:01 executing program 2: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = memfd_create(&(0x7f000003b000-0x6)="706f73fb00000000000000566f6573737b0000", 0x0) pwrite64(r0, &(0x7f000003c000-0x1)='/', 0x1, 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0) lseek(r0, 0x0, 0x2) sendfile(r0, r0, &(0x7f000003c000)=0x0, 0xffc) symlink(&(0x7f0000001000)='./file0\x00', &(0x7f0000004000)='./file0\x00') listxattr(&(0x7f00006db000-0x8)='./file0\x00', &(0x7f000055e000-0x71)=""/0, 0x0) readlink(&(0x7f0000f43000-0xe)='./file0/file0\x00', &(0x7f000017b000)=""/31, 0x1f) 2017/12/18 15:43:01 executing program 3: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) timer_create(0xb, &(0x7f00006f9000-0x60)={0x0, 0x0, 0x1, @tid=0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f00008dd000-0x4)=0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x0}, {0x0, 0x9}}, &(0x7f0000040000)={{0x0, 0x0}, {0x0, 0x0}}) 2017/12/18 15:43:01 executing program 5: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f00003d7000)='/dev/input/event#\x00', 0x0, 0x0) poll(&(0x7f00004e0000-0x10)=[{r0, 0x0, 0x0}], 0x1, 0xff) ioctl$TIOCSBRK(r0, 0x40044591) 2017/12/18 15:43:01 executing program 6: mmap(&(0x7f0000000000/0xde6000)=nil, 0xde6000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$binder(&(0x7f0000001000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_MAX_THREADS(r0, 0x40046205, 0x400000) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000009000-0x30)={0x4, 0x0, &(0x7f000000a000)=[@register_looper={0x630b}], 0x1, 0x0, &(0x7f000000b000-0x4)="d8"}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00004ef000)={0x44, 0x0, &(0x7f00005b5000-0x88)=[@transaction={0x40406300, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00002c5000-0x38)=[], &(0x7f00008d8000-0x10)=[]}}], 0x1, 0x0, &(0x7f0000d69000)="da"}) 2017/12/18 15:43:01 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000632000)='./file0\x00', 0x0) mount(&(0x7f000000a000)='./file0\x00', &(0x7f0000015000-0x8)='./file0\x00', &(0x7f0000014000)='proc\x00', 0x0, &(0x7f0000535000)="") r0 = open(&(0x7f00003bc000+0xe2c)='./file0\x00', 0x0, 0x0) mount(&(0x7f000000a000)='./file0\x00', &(0x7f0000b31000-0x8)='./file0\x00', &(0x7f0000014000)='ramfs\x00', 0x0, &(0x7f000002d000)="") fstat(r0, &(0x7f0000cb1000-0x44)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) [ 22.024138] audit: type=1400 audit(1513611781.931:9): avc: denied { map } for pid=3137 comm="syz-fuzzer" path="/root/syzkaller-shm014039377" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:file_t:s0 tclass=file permissive=1 [ 22.937135] audit: type=1400 audit(1513611782.844:10): avc: denied { sys_admin } for pid=3180 comm="syz-executor0" capability=21 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 [ 23.041590] audit: type=1400 audit(1513611782.949:11): avc: denied { sys_chroot } for pid=3360 comm="syz-executor4" capability=18 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 2017/12/18 15:43:03 executing program 4: mmap(&(0x7f0000000000/0xfab000)=nil, 0xfab000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x6, 0x0) setsockopt$inet_buf(r0, 0x0, 0x29, &(0x7f0000538000-0x1000)="613fb1a03a4dcc07486743d053b8ebf1", 0x10) 2017/12/18 15:43:03 executing program 4: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000fb1000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00005b7000/0x18000)=nil, &(0x7f00008e1000)=[@text32={0x20, &(0x7f0000179000)="66baf80cb88c8c4f89ef66bafc0c66b8f60066ef0f01b300000080c4c3f96ab9c60000005e26670f51148fea00124e0dac000000c4e2510524ef660f3880542c00673e0fc71bf20f0682c000", 0x4c}], 0x1, 0xfffffffffffffffc, &(0x7f0000048000+0x58b)=[], 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2017/12/18 15:43:03 executing program 0: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000276000)={0xa, 0x0, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x0}, 0x1c) listen(r0, 0x2006) r1 = socket$inet_dccp(0x2, 0x6, 0x0) connect$inet(r1, &(0x7f0000ad5000)={0x2, 0x0, @loopback=0x7f000001, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x10) shutdown(r1, 0x1) sendmmsg(r1, &(0x7f0000cb5000-0x258)=[{{&(0x7f0000a74000)=@ethernet={0x0, @remote={[0xbb, 0xbb, 0xbb, 0xbb, 0xbb], 0x0}, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x10, &(0x7f0000140000)=[], 0x0, &(0x7f0000d4f000-0x1368)=[], 0x0, 0x0}, 0x0}], 0x1, 0x0) [ 23.122948] audit: type=1400 audit(1513611783.030:12): avc: denied { name_bind } for pid=3396 comm="syz-executor0" src=20000 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:port_t:s0 tclass=dccp_socket permissive=1 [ 23.149463] audit: type=1400 audit(1513611783.030:13): avc: denied { node_bind } for pid=3396 comm="syz-executor0" src=20000 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:node_t:s0 tclass=dccp_socket permissive=1 [ 23.153540] kvm: KVM_SET_TSS_ADDR need to be called before entering vcpu [ 23.183191] audit: type=1400 audit(1513611783.080:14): avc: denied { name_connect } for pid=3396 comm="syz-executor0" dest=20000 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:port_t:s0 tclass=dccp_socket permissive=1 2017/12/18 15:43:03 executing program 0: mmap(&(0x7f0000000000/0xaff000)=nil, 0xaff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00004e3000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000a71000/0x18000)=nil, &(0x7f0000afb000)=[@text32={0x20, &(0x7f0000afe000-0x76)="b90401004066b84710000000d0ba000000000f3052c76dfef3ab66b8c4e3995c2708000f9e66baf80cb8dc405686ef66bafc0cb874000000efe0e066ba210066ede02ec1e8050f3235001000000d30ef66bafc0cc966e955e96d266767f2a50f20d835080000000f228bb9bebe0f070f01b102000000", 0x76}], 0x1, 0x20, &(0x7f00002c5000-0x20)=[], 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000018000-0x48)={0x3ffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f0000afd000)={0x1, 0x0, [{0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2017/12/18 15:43:03 executing program 4: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x2, 0x78, 0xe3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000040fe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x3000, 0x3, &(0x7f000000b000/0x3000)=nil) r0 = syz_open_dev$sg(&(0x7f0000001000)='/dev/sg#\x00', 0x0, 0x2) write$evdev(r0, &(0x7f0000002000-0x24)=[{{0x0, 0x0}, 0x0, 0x0, 0x0}, {{0x0, 0x2710}, 0x0, 0x0, 0x0}], 0x30) [ 23.206320] audit: type=1400 audit(1513611783.091:15): avc: denied { map } for pid=3398 comm="syz-executor2" path=2F6D656D66643A706F73FB202864656C6574656429 dev="tmpfs" ino=12948 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:tmpfs_t:s0 tclass=file permissive=1 2017/12/18 15:43:03 executing program 2: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) socket(0x2, 0x2, 0x0) socket$inet(0x2, 0x1, 0x0) socketpair$packet(0x11, 0x0, 0x300, &(0x7f00004f3000)={0x0, 0x0}) syz_open_dev$tun(&(0x7f0000635000)='/dev/net/tun\x00', 0x0, 0x0) openat$rtc(0xffffffffffffff9c, &(0x7f0000fe5000-0x9)='/dev/rtc\x00', 0x0, 0x0) openat$cuse(0xffffffffffffff9c, &(0x7f00005d0000-0xa)='/dev/cuse\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x2, 0x78, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000040fe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) unshare(0x28060400) r0 = socket$unix(0x1, 0x5, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000afe000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$unix(r1, &(0x7f0000001000-0x38)={&(0x7f0000239000-0x8)=@abs={0x0, 0x0, 0x0}, 0x8, &(0x7f0000008000)=[], 0x0, &(0x7f0000001000-0x10)=[@rights={0x200, 0x1, 0x1, [r0]}], 0x1, 0x0}, 0x0) recvmsg(r2, &(0x7f000000e000)={0x0, 0x0, &(0x7f000008b000)=[], 0x0, &(0x7f000000c000)=""/0, 0xfc13, 0x0}, 0x0) pselect6(0x40, &(0x7f0000cc9000-0x40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000cc9000-0x40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000de000-0x40)={0xffffffffffffffe1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00008e6000-0x10)={0x0, 0x989680}, &(0x7f0000205000-0x10)={&(0x7f0000cc9000-0x8)={0x0}, 0x8}) 2017/12/18 15:43:03 executing program 0: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000004000-0x10)={&(0x7f0000002000-0x1b0)={0x2, 0xf, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, []}, 0x10}, 0x1, 0x0, 0x0, 0x0}, 0x0) [ 23.306438] audit: type=1400 audit(1513611783.212:16): avc: denied { net_raw } for pid=3409 comm="syz-executor2" capability=13 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 2017/12/18 15:43:03 executing program 0: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x78, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000040fe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$getownex(r0, 0x5, &(0x7f0000555000)={0x0, 0x0}) 2017/12/18 15:43:03 executing program 4: r0 = syz_fuse_mount(&(0x7f0000f9e000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) 2017/12/18 15:43:03 executing program 1: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000818000)={0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x1c) 2017/12/18 15:43:03 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000bfd000-0x12)='/dev/input/event#\x00', 0x0, 0x0) ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f00009ba000)={0x18, 0x0, &(0x7f00005eb000)=""}) 2017/12/18 15:43:03 executing program 4: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) perf_event_open(&(0x7f000001d000)={0x2, 0x78, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000a06000)={0x0, @in6={{0xa, 0x0, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xaa}, 0x81}, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f000026b000)=0xa0) [ 23.348311] audit: type=1400 audit(1513611783.242:17): avc: denied { net_admin } for pid=3411 comm="syz-executor0" capability=12 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 [ 23.400011] audit: type=1400 audit(1513611783.307:18): avc: denied { map_create } for pid=3424 comm="syz-executor1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=bpf permissive=1 2017/12/18 15:43:03 executing program 3: clone(0x0, &(0x7f0000fbf000)="", &(0x7f0000744000)=0x0, &(0x7f0000f8b000)=0x0, &(0x7f0000804000)="") statfs(&(0x7f00005d4000)='./file0\x00', &(0x7f0000dc4000)=""/216) 2017/12/18 15:43:03 executing program 5: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000711000-0x14)={0x2, 0x4, 0x4, 0x9, 0x0, 0x0, 0x0}, 0x14) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000c3c000)={r0, &(0x7f0000cb1000-0x75)="", &(0x7f0000818000)=""/4096}, 0x18) [ 23.541179] binder: 3444:3445 ERROR: BC_REGISTER_LOOPER called without request [ 23.548634] binder: 3445 RLIMIT_NICE not set [ 23.554223] binder: 3444:3445 transaction failed 29189/-22, size 0-0 line 2775 [ 23.564216] binder: 3444:3446 ERROR: BC_REGISTER_LOOPER called without request 2017/12/18 15:43:03 executing program 6: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) seccomp(0x1, 0x0, &(0x7f00007f8000-0x10)={0x1, &(0x7f0000ed2000)=[{0x6, 0x0, 0x0, 0x407ffc0003}]}) mkdir(&(0x7f0000025000-0xa)='./control\x00', 0x0) r0 = open(&(0x7f0000268000-0xa)='./control\x00', 0x0, 0x0) mkdirat(r0, &(0x7f0000018000+0x9a2)='./file0\x00', 0x0) r1 = openat(r0, &(0x7f000001b000-0x8)='./file0\x00', 0x0, 0x0) mkdirat(r1, &(0x7f0000017000)='./file0\x00', 0x0) r2 = openat(r1, &(0x7f0000fb0000-0xe)='./file0/file0\x00', 0x10240, 0x0) getdents(r1, &(0x7f0000cf3000-0xd9)=""/209, 0xd1) r3 = dup2(r0, r2) renameat2(r3, &(0x7f0000ff8000)='./file0/file0\x00', r2, &(0x7f000085d000-0x8)='./file1\x00', 0x0) 2017/12/18 15:43:03 executing program 0: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000c01000-0x78)={0x0, 0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2017/12/18 15:43:03 executing program 1: mmap(&(0x7f0000000000/0xfde000)=nil, 0xfde000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$unix(0x1, 0x1, 0x0) bind$unix(r0, &(0x7f0000c72000)=@abs={0x1, 0x0, 0x0}, 0x8) listen(r0, 0x0) r1 = dup2(r0, r0) accept4(r0, &(0x7f0000fdc000-0x60)=@nfc_llcp={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/63, 0x0}, &(0x7f0000f4d000-0x4)=0x60, 0x0) shutdown(r1, 0x0) 2017/12/18 15:43:03 executing program 4: mmap(&(0x7f0000000000/0x14000)=nil, 0x14000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = epoll_create1(0x0) ioctl$int_in(r0, 0x5452, &(0x7f000000a000)=0x4) 2017/12/18 15:43:03 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = socket(0xa, 0x3, 0x88) setsockopt(r0, 0xff, 0x0, &(0x7f0000000000)="", 0x0) 2017/12/18 15:43:03 executing program 2: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000fe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) move_pages(0x0, 0x3, &(0x7f000077d000)=[&(0x7f0000fb7000/0x3000)=nil, &(0x7f00001af000/0x3000)=nil, &(0x7f00001e9000/0x3000)=nil], 0x0, &(0x7f0000cc3000-0x10)=[0x0, 0x0], 0x0) 2017/12/18 15:43:03 executing program 3: mmap(&(0x7f0000000000/0xfa4000)=nil, 0xfa4000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) getsockopt$sock_int(r0, 0x1, 0x2c, &(0x7f000067d000)=0x0, &(0x7f0000f9f000)=0x4) 2017/12/18 15:43:03 executing program 5: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000bce000-0x30)={0x1, 0x3, &(0x7f00009ba000-0x18)=[@map={0x5, 0x0, 0x1, 0xffffffffffffffff}, @generic={0x0, 0x0, 0x0, 0x0}, @generic={0xd395, 0x0, 0x0, 0x0}], &(0x7f0000efa000)='syseO\x00', 0x1, 0x80, &(0x7f000000a000)=""/128, 0x0, 0x0}, 0x30) 2017/12/18 15:43:03 executing program 0: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000322000-0x40)={0x2, 0x78, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000040fe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000094000)={0x1, 0x2, &(0x7f000000c000-0x18)=[@generic={0xd885, 0x0, 0x0, 0x7}, @generic={0xd395, 0x0, 0x0, 0x0}], &(0x7f0000000000)='system\x00', 0x1, 0x80, &(0x7f000069e000)=""/128, 0x0, 0x0}, 0x30) r1 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_int(r1, 0x1, 0x200000000000f, &(0x7f00008f2000-0x4)=0x163d, 0x4) setsockopt$sock_attach_bpf(r1, 0x1, 0x34, &(0x7f00002c9000-0x4)=r0, 0x4) dup2(r0, r1) 2017/12/18 15:43:03 executing program 7: utimes(&(0x7f0000669000-0x8)='./file0\x00', &(0x7f0000ab6000-0x20)={{0x0, 0x0}, {0x77359400, 0x0}}) 2017/12/18 15:43:03 executing program 4: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tun(&(0x7f00005d3000)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f00003a7000)={@generic="bbc2c7a5fa249cd345af1d9660713774", @ifru_flags=0x400}) [ 23.568266] audit: type=1400 audit(1513611783.472:19): avc: denied { map_read map_write } for pid=3447 comm="syz-executor5" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=bpf permissive=1 [ 23.594785] binder: 3446 RLIMIT_NICE not set [ 23.614064] audit: type=1326 audit(1513611783.519:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=3456 comm="syz-executor6" exe="/root/syz-executor6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x452a09 code=0x7ffc0000 2017/12/18 15:43:03 executing program 5: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000b28000)='./file0\x00', 0x0) mount(&(0x7f0000072000-0x8)='./file0\x00', &(0x7f0000027000-0x8)='./file0\x00', &(0x7f0000d1a000)='mqueue\x00', 0x0, &(0x7f0000b1d000)="") mount(&(0x7f00002be000)='./file0\x00', &(0x7f0000c53000)='./file0\x00', &(0x7f000002f000-0x6)='nfs\x00', 0x140000, &(0x7f0000fce000)="") 2017/12/18 15:43:03 executing program 2: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x7c, &(0x7f0000e11000)=[], 0x0) 2017/12/18 15:43:03 executing program 3: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) clone(0x0, &(0x7f0000000000)="", &(0x7f0000801000-0x4)=0x0, &(0x7f00005d0000)=0x0, &(0x7f0000a67000)="") r0 = inotify_init() perf_event_open(&(0x7f0000001000-0x78)={0x5, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000066a, 0x1d, 0x0, 0x0, 0x0, 0x0, 0x2000000000000003, 0x0, 0x8, 0x40000000100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) inotify_add_watch(r0, &(0x7f0000cac000-0xa)='./control\x00', 0x1000804) clone(0x0, &(0x7f0000de4000)="", &(0x7f0000270000)=0x0, &(0x7f0000cba000-0x4)=0x0, &(0x7f00004e2000-0xef)="") 2017/12/18 15:43:03 executing program 7: mmap(&(0x7f0000000000/0xd19000)=nil, 0xd19000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x3, 0x7f) setsockopt$inet_group_source_req(r0, 0x0, 0x2c, &(0x7f0000000000)={0x0, {{0x2, 0x0, @local={0xac, 0x14, 0x0, 0xaa}, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, {{0x2, 0x0, @loopback=0x7f000001, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, 0x108) 2017/12/18 15:43:03 executing program 4: mmap(&(0x7f0000000000/0xd4d000)=nil, 0xd4d000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008ff000-0x10)={&(0x7f0000d4d000-0x158)={0x2, 0x3, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, [@sadb_key={0x1, 0x0, 0x0, 0x0}]}, 0x18}, 0x1, 0x0, 0x0, 0x0}, 0x0) 2017/12/18 15:43:03 executing program 6: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) connect$ax25(0xffffffffffffffff, &(0x7f0000000000)={0x3, {"d004000600"}, 0xd3e}, 0x10) syz_emit_ethernet(0x66, &(0x7f0000078000-0xcad)={@remote={[0xbb, 0xbb, 0xbb, 0xbb, 0xbb], 0x0}, @remote={[0xbb, 0xbb, 0xbb, 0xbb, 0xbb], 0x0}, [], {{0x86dd, @ipv6={0x0, 0x6, "72f20b", 0x30, 0x11, 0x0, @remote={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xbb}, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xaa}, {[], @icmpv6=@time_exceed={0x3, 0x0, 0x0, 0x9, [0x0, 0x0, 0x0], {0x0, 0x6, "927591", 0x0, 0x0, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @loopback={0x0, 0x1}, [], ""}}}}}}}, 0x0) 2017/12/18 15:43:03 executing program 1: mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) getsockopt$inet6_buf(r0, 0x29, 0x40, &(0x7f000000f000-0x54)=""/84, &(0x7f0000001000-0x4)=0x54) 2017/12/18 15:43:03 executing program 2: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, &(0x7f0000083000-0x20)={@generic="7ffc46424401c6fe5e9ef25daef346be", @ifru_addrs={0x2, 0x0, @multicast1=0xe0000001, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}) 2017/12/18 15:43:03 executing program 0: mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x0, 0x18071, 0xffffffffffffffff, 0x0) remap_file_pages(&(0x7f0000003000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0) mlock(&(0x7f0000006000/0x1000)=nil, 0x1000) remap_file_pages(&(0x7f0000002000/0x5000)=nil, 0x5000, 0x0, 0x0, 0x0) 2017/12/18 15:43:03 executing program 5: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x80000000000001, 0x0, &(0x7f0000f0d000)={0xffffffffffffffff, 0xffffffffffffffff}) perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0, 0x0, 0xffffffffffffffff, 0x0) shutdown(r0, 0x0) 2017/12/18 15:43:03 executing program 3: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x2e, &(0x7f000037c000)={@remote={[0xbb, 0xbb, 0xbb, 0xbb, 0xbb], 0x0}, @remote={[0xbb, 0xbb, 0xbb, 0xbb, 0xbb], 0x0}, [{[], {0x8100, 0x0, 0x0, 0x0}}], {{0x806, @arp=@ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x1, @remote={[0xbb, 0xbb, 0xbb, 0xbb, 0xbb], 0x0}, @remote={0xac, 0x14, 0x0, 0xbb}, @random="b20aa5a224b6", @local={0xac, 0x14, 0x0, 0xaa}}}}}, 0x0) 2017/12/18 15:43:03 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f000070b000-0x10)='/dev/sequencer2\x00', 0x0, 0x0) execveat(r0, &(0x7f0000166000)='./file0\x00', &(0x7f00000d4000-0x8)=[], &(0x7f0000ff8000)=[], 0x0) 2017/12/18 15:43:03 executing program 2: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000305000-0x30)={0x100000001, 0x2, &(0x7f000000c000-0x18)=[@generic={0xf885, 0x0, 0x0, 0x7}, @generic={0xd395, 0x0, 0x0, 0x0}], &(0x7f0000be8000)='\x00', 0x1, 0x80, &(0x7f00009dc000+0x783)=""/128, 0x0, 0x0}, 0x30) bpf$OBJ_PIN_PROG(0x6, &(0x7f0000ef0000)={&(0x7f0000c61000-0xe)='./file0/file0\x00', r0}, 0x10) 2017/12/18 15:43:03 executing program 6: mmap(&(0x7f0000000000/0xce9000)=nil, 0xce9000, 0x3, 0x32, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000ce1000-0x8)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup2(r0, r1) fallocate(r2, 0x0, 0x0, 0x1ff) 2017/12/18 15:43:03 executing program 1: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) ioctl$EVIOCSREP(r0, 0x40084503, &(0x7f0000b31000-0x8)=[0x0, 0x0]) 2017/12/18 15:43:03 executing program 4: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000e5b000-0x4)=0x0, 0x4) 2017/12/18 15:43:03 executing program 5: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000751000-0x8)='./file0\x00', 0x0) mount(&(0x7f0000018000)='./file0\x00', &(0x7f000001c000)='./file0\x00', &(0x7f0000019000-0x6)='ramfs\x00', 0x0, &(0x7f0000701000-0x1)="") mount(&(0x7f00006ac000-0x8)='./file0\x00', &(0x7f0000032000)='./file0\x00', &(0x7f0000017000-0xb)='openpromfs\x00', 0x7ffbf, &(0x7f0000030000-0xe9)="") statfs(&(0x7f0000d9a000-0x8)='./file0\x00', &(0x7f0000302000)=""/32) 2017/12/18 15:43:03 executing program 3: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) close(r0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000002000-0xc6)="ad56b6c5", 0x4) r2 = accept$alg(r0, 0x0, 0x0) io_setup(0x7, &(0x7f0000e4b000)=0x0) io_submit(r3, 0x1, &(0x7f0000bda000-0x20)=[&(0x7f0000618000-0x40)={0x0, 0x0, 0x0, 0x0, 0x0, r2, &(0x7f000007d000)="b3", 0x1, 0x0, 0x0, 0x0, 0xffffffffffffffff}]) 2017/12/18 15:43:03 executing program 4: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000d1a000)={0xa, 0x0, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x0}, 0x1c) sendto$inet6(r0, &(0x7f00007a9000-0x1)="", 0x0, 0xfffffefffffffffe, &(0x7f0000f63000-0x1c)={0xa, 0x0, 0x0, @loopback={0x0, 0x1}, 0x0}, 0x1c) [ 23.747549] mmap: syz-executor0 (3506) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.txt. 2017/12/18 15:43:03 executing program 6: mmap(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x3, 0x1b071, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000004000/0x3000)=nil, 0x3000, 0x3) 2017/12/18 15:43:03 executing program 0: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00003d6000)={0x26, 'aead\x00', 0x0, 0x0, 'rfc4543(gcm(aes))\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000891000-0x14)="79733976d8c30a4aead960f2bd08cfe62785ce10", 0x14) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg$alg(r1, &(0x7f0000944000)=[{0x0, 0x0, &(0x7f0000a7c000)=[{&(0x7f0000edf000-0x83)="52e534adc2db518c39bd9924e31adc9c36", 0x11}], 0x1, &(0x7f0000125000-0x100)=[], 0x0, 0x0}], 0x1, 0x0) readv(r1, &(0x7f0000fe4000)=[{&(0x7f000013d000)=""/189, 0xbd}], 0x1) 2017/12/18 15:43:03 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$loop(&(0x7f0000d3d000)='/dev/loop#\x00', 0x0, 0x0) fadvise64(r0, 0x0, 0x0, 0x3) 2017/12/18 15:43:03 executing program 6: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = syz_open_dev$tun(&(0x7f00006e3000-0xd)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00006b0000-0x28)={@common='gre0\x00', @ifru_map={0x2, 0x0, 0x0, 0x0, 0x0, 0x0}}) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000769000-0x20)={@common='gre0\x00', @ifru_addrs={0x2, 0x0, @local={0xac, 0x14, 0x0, 0xaa}, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}) connect$inet(r0, &(0x7f0000561000)={0x2, 0x0, @local={0xac, 0x14, 0x0, 0xaa}, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x10) sendto$inet(r0, &(0x7f0000191000-0xad)="c0", 0x1, 0x20008000, &(0x7f00006e2000-0x10)={0x2, 0x0, @multicast1=0xe0000001, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x10) dup2(r0, r1) writev(r1, &(0x7f0000d9c000)=[{&(0x7f0000b28000-0x5b)="", 0x0}, {&(0x7f00005ed000-0x9a)='o', 0x1}], 0x2) 2017/12/18 15:43:03 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) preadv(r0, &(0x7f0000001000-0x10)=[], 0x0, 0x0) 2017/12/18 15:43:03 executing program 5: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f00003b2000)=[{&(0x7f0000849000+0xcf2)="3900000010000904690000008000000006fa00400100000002e7f3060000001419000400040001fcb600000000000608100300ff00001ee404", 0x39}], 0x1) 2017/12/18 15:43:03 executing program 2: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000a99000)={0x0, 0x0}) vmsplice(r1, &(0x7f0000f19000)=[{&(0x7f00001c1000-0x9c)="b9", 0x1}], 0x1, 0x0) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f00007a5000)={0x26, 'hash\x00', 0x0, 0x0, 'crct10dif-generic\x00'}, 0x58) write(r1, &(0x7f0000c33000)="4ca29df6727b9b38", 0x8) r3 = accept$alg(r2, 0x0, 0x0) splice(r0, 0x0, r3, 0x0, 0x8, 0x0) 2017/12/18 15:43:03 executing program 4: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x2, 0x78, 0xe3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000040fe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3e, &(0x7f0000bc2000)={@remote={[0xbb, 0xbb, 0xbb, 0xbb, 0xbb], 0x0}, @remote={[0xbb, 0xbb, 0xbb, 0xbb, 0xbb], 0x0}, [], {{0x86dd, @ipv6={0x0, 0x6, "43f087", 0x8, 0x2c, 0x0, @remote={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xbb}, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xaa}, {[], @icmpv6=@echo_reply={0x81, 0x0, 0x0, 0x0, 0x0, ""}}}}}}, 0x0) 2017/12/18 15:43:03 executing program 7: mmap(&(0x7f0000000000/0xaf3000)=nil, 0xaf3000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000056000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000aef000)={0x7ffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000084f000/0x18000)=nil, &(0x7f0000aef000-0x18)=[@text32={0x20, &(0x7f00002ea000)="0f8306000000d935000000000f213666baf80cb870aeef87ef66bafc0cb8a0d50000eff20f060f01c966ba6100edc74424000a000000c7442402329a0000c7442406000000000f011424b8010000000f01c1260f01cb", 0x56}], 0x1, 0x0, &(0x7f0000af0000)=[], 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2017/12/18 15:43:03 executing program 1: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000835000)='/dev/sequencer\x00', 0xa02, 0x0) write$sndseq(r0, &(0x7f00007a0000-0x1b0)=[{0x0, 0x0, 0x0, 0x0, @tick=0x0, {0x2, 0x0}, {0x0, 0x0}, @ext={0x0, &(0x7f0000f11000-0x55)=""}}], 0x30) 2017/12/18 15:43:03 executing program 3: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x802, 0x0) connect$inet6(r0, &(0x7f00002a6000)={0xa, 0x0, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x0}, 0x1c) getsockopt$inet6_int(r0, 0x29, 0x1, &(0x7f0000f70000)=0x0, &(0x7f0000f70000)=0x4) [ 23.844695] netlink: 'syz-executor5': attribute type 4 has an invalid length. [ 23.859329] lo: Invalid MTU -67043324 requested, hw min 0 2017/12/18 15:43:03 executing program 0: mmap(&(0x7f0000000000/0x66000)=nil, 0x66000, 0x3, 0x32, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000062000)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000048000-0xc)={0x0, 0x0, 0x0}, &(0x7f0000046000+0x5f8)=0xc) sched_setaffinity(r2, 0x8, &(0x7f0000060000)=0x86b2) pipe(&(0x7f0000060000-0x8)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r1, 0x0, r4, 0x0, 0x58, 0x0) r5 = dup2(r0, r0) writev(r4, &(0x7f000000b000)=[{&(0x7f0000067000-0x1000)=',', 0x1}], 0x1) dup2(r0, r3) writev(r5, &(0x7f0000051000)=[{&(0x7f0000058000-0xe9d)="ad", 0x1}], 0x1) 2017/12/18 15:43:03 executing program 4: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = socket(0x10, 0x2, 0x10) write(r0, &(0x7f0000bad000-0x25)="240000001d0001000d00fa07f000000f0439000410000100080f010040004aff00000000", 0x24) 2017/12/18 15:43:03 executing program 2: mmap(&(0x7f0000000000/0x2ee000)=nil, 0x2ee000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00002e9000-0x58)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58) r1 = accept$alg(r0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000001000)="a23364fd", 0x4) sendmmsg$alg(r1, &(0x7f000025c000-0x150)=[{0x0, 0x0, &(0x7f00001d7000)=[], 0x0, &(0x7f00002eb000)=[@iv={0x80, 0x117, 0x2, 0x65, "fafb074c6fe447272d1506f6dd52f7a233bc41079cd9be8d661162d453264e9050b24d4c1da824b5efb04726ff175760d3430116cae13f71d04b8271ef3e76847d41502e9f574f9a4f65a8e08e31711627bc88f172b08755495d11d7c8e267f67d46f86eea"}], 0x80, 0x0}, {0x0, 0x0, &(0x7f00002eb000)=[], 0x0, &(0x7f00002eb000)=[@iv={0x18, 0x117, 0x2, 0x0, ""}], 0x18, 0x0}], 0x2, 0x0) 2017/12/18 15:43:03 executing program 3: mmap(&(0x7f0000000000/0x903000)=nil, 0x903000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008ff000-0x10)={&(0x7f00008fe000)={0x2, 0x5, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1=0xe0000001, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @loopback=0x7f000001, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}]}, 0x50}, 0x1, 0x0, 0x0, 0x0}, 0x0) [ 23.886540] netlink: 'syz-executor5': attribute type 4 has an invalid length. [ 23.914113] lo: Invalid MTU -67043324 requested, hw min 0 2017/12/18 15:43:03 executing program 5: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) prlimit64(0x0, 0x7, 0x0, &(0x7f000087f000-0x10)={0x0, 0x0}) memfd_create(&(0x7f00001ac000-0x2)=']\x00', 0x0) 2017/12/18 15:43:03 executing program 1: mmap(&(0x7f0000000000/0x5000)=nil, 0x5000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000004000)=[@in={0x2, 0x3, @empty=0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @in={0x2, 0x3, @empty=0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}], 0x20) 2017/12/18 15:43:03 executing program 4: futex(&(0x7f00005b4000)=0x0, 0x85, 0x0, &(0x7f0000d5f000-0x10)={0x0, 0x0}, &(0x7f0000001000-0x1)=0x0, 0x0) 2017/12/18 15:43:03 executing program 4: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000002f000-0x78)={0x0, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 23.931194] netlink: 12 bytes leftover after parsing attributes in process `syz-executor4'. [ 23.949820] netlink: 12 bytes leftover after parsing attributes in process `syz-executor4'. 2017/12/18 15:43:03 executing program 6: mmap(&(0x7f0000000000/0x1a000)=nil, 0x1a000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f000000d000)={0x26, 'hash\x00', 0x0, 0x0, 'wp256\x00'}, 0x58) r1 = accept$alg(r0, 0x0, 0x0) recvmsg(r1, &(0x7f000000e000)={&(0x7f000000b000)=@ethernet={0x0, @random=""/6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x10, &(0x7f0000015000-0x70)=[], 0x0, &(0x7f0000015000-0xe1)=""/225, 0xe1, 0x0}, 0x0) 2017/12/18 15:43:03 executing program 5: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000d6f000)='/dev/rtc\x00', 0x800, 0x0) clone(0x0, &(0x7f00003d6000)="", &(0x7f00003e8000-0x4)=0x0, &(0x7f000068e000)=0x0, &(0x7f00000b6000)="") pread64(r0, &(0x7f00006a8000-0xaf)=""/175, 0xaf, 0x0) 2017/12/18 15:43:03 executing program 2: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000271000-0x9)='/dev/sg#\x00', 0x1f, 0x10000000100002) write$tun(r0, &(0x7f0000029000)=@hdr={0x0, 0x0, 0x0, 0xc0, 0x0, 0x0, @ipv6={0x0, 0x6, '\'\tS', 0x30, 0x0, 0x0, @remote={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xbb}, @empty={[0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, {[], @icmpv6=@dest_unreach={0x1, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0], {0x0, 0x6, "88dc7b", 0x0, 0x0, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xaa}, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, [], ""}}}}}, 0x62) panic: executor 0: failed: net.ipv6.conf.syz0.accept_dad = 0 net.ipv6.conf.syz0.router_solicitations = 0 command has bad number of arguments 18446744073709551615 (errno 110) child failed (errno 1) loop failed (errno 0) goroutine 28 [running]: main.(*Proc).executeRaw(0xc4297a8120, 0xc4223c5eb8, 0xc421fea8e0, 0x2, 0x0, 0x0, 0x0) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:315 +0xd83 main.(*Proc).execute(0xc4297a8120, 0xc42a4e2960, 0xc421fea8e0, 0x1000000, 0x2, 0xc4210c8600, 0x7, 0x7) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:242 +0xcf main.(*Proc).loop(0xc4297a8120) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:64 +0x19b created by main.main /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:251 +0xdc6 INIT: PANIC: segmentation violation! sleeping for 30 seconds. [ 24.075125] Kernel panic - not syncing: Attempted to kill init! exitcode=0x0000000b [ 24.075125] [ 24.084430] CPU: 1 PID: 1 Comm: init Not tainted 4.15.0-rc4+ #227 [ 24.091026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 24.100358] Call Trace: [ 24.102920] dump_stack+0x194/0x257 [ 24.106519] ? arch_local_irq_restore+0x53/0x53 [ 24.111163] ? vsnprintf+0x1ed/0x1900 [ 24.114937] panic+0x1e4/0x41c [ 24.118098] ? refcount_error_report+0x214/0x214 [ 24.122826] ? _raw_write_unlock_irq+0x27/0x70 [ 24.127380] ? forget_original_parent+0x1324/0x1b90 [ 24.132370] forget_original_parent+0x1337/0x1b90 [ 24.137179] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 24.142338] ? perf_lock_task_context+0x44f/0x9e0 [ 24.147156] ? kill_orphaned_pgrp+0x540/0x540 [ 24.151622] ? __lock_is_held+0xb6/0x140 [ 24.155656] ? perf_lock_task_context+0x75c/0x9e0 [ 24.160470] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 24.165454] ? trace_hardirqs_on+0xd/0x10 [ 24.169569] ? perf_lock_task_context+0x486/0x9e0 [ 24.174386] ? event_function_local.constprop.102+0x560/0x560 [ 24.180240] ? __mutex_unlock_slowpath+0xe9/0xac0 [ 24.185053] ? perf_event_task+0x297/0x3b0 [ 24.189258] ? perf_iterate_sb+0xa80/0xa80 [ 24.193465] ? __kernel_text_address+0xd/0x40 [ 24.197932] ? __save_stack_trace+0x7e/0xd0 [ 24.202232] ? perf_pin_task_context+0xd7/0x120 [ 24.206870] ? perf_lock_task_context+0x9e0/0x9e0 [ 24.211683] ? lock_acquire+0x1d5/0x580 [ 24.215623] ? lock_acquire+0x1d5/0x580 [ 24.219565] ? exit_notify+0x114/0xb10 [ 24.223423] ? perf_event_exit_task+0xaa7/0xed0 [ 24.228062] ? lock_release+0xa40/0xa40 [ 24.232007] ? check_noncircular+0x20/0x20 [ 24.236219] ? free_modinfo_version+0x70/0x70 [ 24.240686] ? SyS_perf_event_open+0x50/0x50 [ 24.245070] exit_notify+0x11f/0xb10 [ 24.248763] ? refcount_inc_not_zero+0xfe/0x180 [ 24.253401] ? release_task+0x1a40/0x1a40 [ 24.257515] ? rcu_read_lock_sched_held+0x108/0x120 [ 24.262500] ? fpu__drop+0x118/0x630 [ 24.266186] ? find_first_bit+0x8d/0xd0 [ 24.270133] ? cgroup_exit+0x280/0x410 [ 24.273989] ? cgroup_post_fork+0x420/0x420 [ 24.278279] ? trace_hardirqs_on+0xd/0x10 [ 24.282395] ? _raw_spin_unlock_irq+0x27/0x70 [ 24.286858] ? task_work_run+0x1f4/0x270 [ 24.290893] ? task_work_cancel+0x210/0x210 [ 24.295186] ? unregister_hw_breakpoint+0x24/0x30 [ 24.300002] do_exit+0x9f2/0x1ad0 [ 24.303431] ? dump_align+0x80/0x80 [ 24.307035] ? mm_update_next_owner+0x930/0x930 [ 24.311676] ? save_stack+0x43/0xd0 [ 24.315268] ? kasan_slab_free+0x71/0xc0 [ 24.319297] ? kmem_cache_free+0x77/0x280 [ 24.323411] ? __sigqueue_free.part.16+0x51/0x60 [ 24.328131] ? __dequeue_signal+0x46a/0x7b0 [ 24.332418] ? dequeue_signal+0xb8/0x550 [ 24.336444] ? get_signal+0x385/0x16c0 [ 24.340298] ? do_signal+0x94/0x1ee0 [ 24.343979] ? exit_to_usermode_loop+0x214/0x310 [ 24.348701] ? prepare_exit_to_usermode+0x2e1/0x340 [ 24.353684] ? retint_user+0x8/0x18 [ 24.357280] ? kmem_cache_alloc+0x466/0x760 [ 24.361578] ? check_noncircular+0x20/0x20 [ 24.365782] ? signal_wake_up_state+0x3a/0x40 [ 24.370248] ? _atomic_dec_and_lock+0xe8/0x196 [ 24.374800] ? cpumask_local_spread+0x250/0x250 [ 24.379447] ? check_noncircular+0x20/0x20 [ 24.383660] ? __sigqueue_free.part.16+0x51/0x60 [ 24.388392] ? kmem_cache_free+0x249/0x280 [ 24.392596] ? __sigqueue_free.part.16+0x51/0x60 [ 24.397323] ? find_held_lock+0x35/0x1d0 [ 24.401367] ? proc_coredump_connector+0xe3/0x4a0 [ 24.406182] do_group_exit+0x149/0x400 [ 24.410041] ? SyS_exit+0x30/0x30 [ 24.413462] ? _raw_spin_unlock_irq+0x27/0x70 [ 24.417926] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 24.422914] get_signal+0x73f/0x16c0 [ 24.426606] ? ptrace_notify+0x130/0x130 [ 24.430637] ? trace_hardirqs_on+0xd/0x10 [ 24.434759] ? force_sig_info+0x276/0x340 [ 24.438886] ? force_sig_info_fault.constprop.32+0x289/0x450 [ 24.444656] ? is_prefetch.isra.29+0x420/0x420 [ 24.449215] do_signal+0x94/0x1ee0 [ 24.452736] ? setup_sigcontext+0x7d0/0x7d0 [ 24.457030] ? rcu_note_context_switch+0x710/0x710 [ 24.461933] ? bad_area+0x69/0x80 [ 24.465358] ? __do_page_fault+0x3d6/0xc90 [ 24.469563] ? lock_downgrade+0x980/0x980 [ 24.473679] ? mm_fault_error+0x2c0/0x2c0 [ 24.477797] ? trace_event_raw_event_sys_exit+0x260/0x260 [ 24.483306] ? exit_to_usermode_loop+0x8c/0x310 [ 24.487949] exit_to_usermode_loop+0x214/0x310 [ 24.492497] ? __do_page_fault+0xc90/0xc90 [ 24.496701] ? trace_event_raw_event_sys_exit+0x260/0x260 [ 24.502215] ? syscall_return_slowpath+0x550/0x550 [ 24.507114] ? syscall_return_slowpath+0x2ad/0x550 [ 24.512023] prepare_exit_to_usermode+0x2e1/0x340 [ 24.516839] ? perf_trace_sys_enter+0xcb0/0xcb0 [ 24.521477] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 24.526295] retint_user+0x8/0x18 [ 24.529714] RIP: 0033: (null) [ 24.533566] RSP: 002b:00007ffcde40a0f0 EFLAGS: 00010286 [ 24.538896] RAX: ffffffffffffffff RBX: 00007fe4d95366a0 RCX: ffffffffffffff00 [ 24.546134] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000000 [ 24.553370] RBP: 0000000000000004 R08: 00007ffcde40a0f0 R09: 0000000000000001 [ 24.560608] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 24.567845] R13: 00007ffcde40ae90 R14: 0000000000000000 R15: 0000000000000000 [ 24.575294] kasan: CONFIG_KASAN_INLINE enabled [ 24.579872] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 24.587201] general protection fault: 0000 [#1] SMP KASAN [ 24.592702] Dumping ftrace buffer: [ 24.596205] (ftrace buffer empty) [ 24.599882] Modules linked in: [ 24.603043] CPU: 0 PID: 3559 Comm: syz-executor7 Not tainted 4.15.0-rc4+ #227 [ 24.610280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 24.619608] RIP: 0010:native_write_cr4+0x4/0x10 [ 24.624239] RSP: 0018:ffff8801db407e88 EFLAGS: 00010082 [ 24.629569] RAX: dffffc0000000000 RBX: 00000000001606f0 RCX: 0000000000000001 [ 24.636805] RDX: 1ffffffff0bd9034 RSI: 0000000000000000 RDI: 00000000001606f0 [ 24.644040] RBP: ffff8801db407e88 R08: ffff8801db407f40 R09: ffff8801db407f80 [ 24.651275] R10: ffff8801c0edea38 R11: 0000000000000000 R12: 0000000000000082 [ 24.658516] R13: 1ffff1003b680fd4 R14: ffff8801c0594480 R15: ffff8801db407fc0 [ 24.665758] FS: 00007efefbfa5700(0000) GS:ffff8801db400000(0000) knlGS:0000000000000000 [ 24.673952] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 24.679801] CR2: 0000000000625208 CR3: 0000000005e22005 CR4: 00000000001626f0 [ 24.687038] Call Trace: [ 24.689586] [ 24.691707] smp_reboot_interrupt+0x3ea/0x510 [ 24.696172] ? native_stop_other_cpus+0x3d0/0x3d0 [ 24.700983] ? _raw_spin_lock+0x32/0x40 [ 24.704927] ? handle_edge_irq+0x2b4/0x7c0 [ 24.709131] ? task_prio+0x40/0x40 [ 24.712647] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 24.717459] reboot_interrupt+0x9d/0xb0 [ 24.721400] [ 24.723608] RIP: 0010:smp_call_function_single+0x364/0x560 [ 24.729195] RSP: 0018:ffff8801c0ede8c0 EFLAGS: 00000293 ORIG_RAX: ffffffffffffff07 [ 24.736868] RAX: ffff8801c0594480 RBX: 1ffff100381dbd20 RCX: ffffffff8164b222 [ 24.744106] RDX: 0000000000000000 RSI: 1ffff100381dbce8 RDI: ffff8801c0ede9b8 [ 24.751341] RBP: ffff8801c0edea10 R08: 1ffff100381dbd37 R09: 0000000000000001 [ 24.758578] R10: ffff8801c0edea38 R11: 0000000000000000 R12: ffff8801c0ede9b8 [ 24.765814] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffed00381dbd2c [ 24.773058] ? smp_call_function_single+0x362/0x560 [ 24.778047] ? add_nops+0x90/0x90 [ 24.781469] ? generic_exec_single+0x5b0/0x5b0 [ 24.786017] ? __mutex_lock+0x16f/0x1a80 [ 24.790043] ? arch_jump_label_transform+0x1b/0x40 [ 24.794939] ? lock_downgrade+0x980/0x980 [ 24.799059] ? _find_next_bit+0xee/0x120 [ 24.803085] ? add_nops+0x90/0x90 [ 24.806505] ? find_next_bit+0x27/0x30 [ 24.810368] smp_call_function_many+0x773/0x930 [ 24.815002] ? smp_call_function_many+0x773/0x930 [ 24.819811] ? add_nops+0x90/0x90 [ 24.823234] ? smp_call_function_single_async+0x2d0/0x2d0 [ 24.828739] ? mark_held_locks+0xaf/0x100 [ 24.832856] ? text_poke+0x336/0x530 [ 24.836537] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 24.841525] ? kvm_set_lapic_tscdeadline_msr+0x3b/0x100 [ 24.846853] ? trace_hardirqs_on+0xd/0x10 [ 24.850965] ? add_nops+0x90/0x90 [ 24.854385] ? kvm_set_lapic_tscdeadline_msr+0x3c/0x100 [ 24.859715] on_each_cpu+0x3d/0x1b0 [ 24.863308] ? kvm_set_lapic_tscdeadline_msr+0x3b/0x100 [ 24.868637] text_poke_bp+0xbb/0x170 [ 24.872318] ? poke_int3_handler+0x90/0x90 [ 24.876524] ? free_unref_page+0x3cb/0x9d0 [ 24.880725] ? kvm_set_lapic_tscdeadline_msr+0x3b/0x100 [ 24.886059] __jump_label_transform.isra.0+0x6a5/0x8a0 [ 24.891302] ? trace_hardirqs_on+0xd/0x10 [ 24.895418] ? kmem_cache_free+0x77/0x280 [ 24.899531] ? bug_at+0x20/0x20 [ 24.902778] ? kvm_put_kvm+0x695/0xdf0 [ 24.906632] ? kvm_vm_release+0x42/0x50 [ 24.910571] ? __fput+0x327/0x7e0 [ 24.913990] ? ____fput+0x15/0x20 [ 24.917409] ? task_work_run+0x199/0x270 [ 24.921436] ? do_exit+0x9bb/0x1ad0 [ 24.925029] ? modules_open+0xa0/0xa0 [ 24.928801] arch_jump_label_transform+0x2f/0x40 [ 24.933529] __jump_label_update+0x207/0x2d0 [ 24.937908] ? static_key_count+0x110/0x110 [ 24.942195] ? atomic_dec_and_mutex_lock+0x112/0x150 [ 24.947264] ? mutex_spin_on_owner+0xb50/0xb50 [ 24.951814] jump_label_update+0x22c/0x2b0 [ 24.956020] static_key_slow_dec_cpuslocked+0x176/0x1d0 [ 24.961349] ? static_key_slow_inc+0x3c0/0x3c0 [ 24.965899] ? rcu_read_lock_sched_held+0x108/0x120 [ 24.970883] static_key_slow_dec+0x56/0x90 [ 24.975084] kvm_arch_vcpu_uninit+0x18e/0x1d0 [ 24.979550] kvm_vcpu_uninit+0x44/0x90 [ 24.983404] vmx_free_vcpu+0x1ce/0x280 [ 24.987260] kvm_arch_destroy_vm+0x4b4/0x990 [ 24.991638] ? kvm_arch_sync_events+0x30/0x30 [ 24.996102] ? mmu_notifier_unregister+0x433/0x5d0 [ 25.000997] ? kvm_put_kvm+0x47a/0xdf0 [ 25.004861] ? __mmu_notifier_register+0x30/0x30 [ 25.009585] ? __free_pages+0x107/0x150 [ 25.013528] ? free_unref_page+0x9d0/0x9d0 [ 25.017733] ? quarantine_put+0xeb/0x190 [ 25.021761] ? kfree+0xe4/0x250 [ 25.025009] ? kvm_put_kvm+0x614/0xdf0 [ 25.028864] ? free_pages+0x51/0x90 [ 25.032462] kvm_put_kvm+0x695/0xdf0 [ 25.036147] ? kvm_clear_guest+0xb0/0xb0 [ 25.040178] ? kvm_irqfd_release+0xd1/0x120 [ 25.044467] ? lock_downgrade+0x980/0x980 [ 25.048591] ? _raw_spin_unlock_irq+0x27/0x70 [ 25.053057] ? kvm_irqfd_release+0xdd/0x120 [ 25.057344] ? kvm_irqfd_release+0xdd/0x120 [ 25.061634] ? kvm_put_kvm+0xdf0/0xdf0 [ 25.065488] kvm_vm_release+0x42/0x50 [ 25.069253] __fput+0x327/0x7e0 [ 25.072503] ? fput+0x140/0x140 [ 25.075751] ? trace_event_raw_event_sched_switch+0x800/0x800 [ 25.081600] ? _raw_spin_unlock_irq+0x27/0x70 [ 25.086066] ____fput+0x15/0x20 [ 25.089312] task_work_run+0x199/0x270 [ 25.093166] ? task_work_cancel+0x210/0x210 [ 25.097453] ? _raw_spin_unlock+0x22/0x30 [ 25.101570] ? switch_task_namespaces+0x87/0xc0 [ 25.106209] do_exit+0x9bb/0x1ad0 [ 25.109627] ? find_held_lock+0x35/0x1d0 [ 25.113660] ? mm_update_next_owner+0x930/0x930 [ 25.118296] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 25.123450] ? lock_downgrade+0x980/0x980 [ 25.127567] ? lock_release+0xa40/0xa40 [ 25.131514] ? __free_insn_slot+0x5c0/0x5c0 [ 25.135803] ? check_noncircular+0x20/0x20 [ 25.140009] ? rcutorture_record_progress+0x10/0x10 [ 25.144996] ? is_bpf_text_address+0xa4/0x120 [ 25.149460] ? kernel_text_address+0x102/0x140 [ 25.154012] ? __kernel_text_address+0xd/0x40 [ 25.158478] ? __save_stack_trace+0x7e/0xd0 [ 25.162766] ? check_noncircular+0x20/0x20 [ 25.166967] ? depot_save_stack+0x12c/0x490 [ 25.171256] ? kvm_vcpu_ioctl+0x2be/0x1010 [ 25.175458] ? save_stack+0xa3/0xd0 [ 25.179053] ? save_stack+0x43/0xd0 [ 25.182647] ? kasan_slab_free+0x71/0xc0 [ 25.186676] ? kfree+0xca/0x250 [ 25.189922] ? kvm_vcpu_ioctl+0x2be/0x1010 [ 25.194121] ? do_vfs_ioctl+0x1b1/0x1520 [ 25.198149] ? SyS_ioctl+0x8f/0xc0 [ 25.201656] ? entry_SYSCALL_64_fastpath+0x1f/0x96 [ 25.206553] ? find_held_lock+0x35/0x1d0 [ 25.210587] ? get_signal+0x7ae/0x16c0 [ 25.214440] ? lock_downgrade+0x980/0x980 [ 25.218560] do_group_exit+0x149/0x400 [ 25.222417] ? do_raw_spin_trylock+0x190/0x190 [ 25.226964] ? SyS_exit+0x30/0x30 [ 25.230384] ? _raw_spin_unlock_irq+0x27/0x70 [ 25.234847] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 25.239834] get_signal+0x73f/0x16c0 [ 25.243524] ? ptrace_notify+0x130/0x130 [ 25.247553] ? __kvm_gfn_to_hva_cache_init+0xbb0/0xbb0 [ 25.253260] ? find_held_lock+0x35/0x1d0 [ 25.257294] ? __fget+0x333/0x570 [ 25.260714] ? lock_downgrade+0x980/0x980 [ 25.264835] do_signal+0x94/0x1ee0 [ 25.268343] ? __lock_is_held+0xb6/0x140 [ 25.272376] ? setup_sigcontext+0x7d0/0x7d0 [ 25.276667] ? __fget+0x35c/0x570 [ 25.280092] ? iterate_fd+0x3f0/0x3f0 [ 25.283859] ? get_unused_fd_flags+0x190/0x190 [ 25.288407] ? may_open_dev+0xe0/0xe0 [ 25.292182] ? exit_to_usermode_loop+0x8c/0x310 [ 25.296821] exit_to_usermode_loop+0x214/0x310 [ 25.301369] ? ioctl_preallocate+0x2b0/0x2b0 [ 25.305745] ? trace_event_raw_event_sys_exit+0x260/0x260 [ 25.311247] ? selinux_capable+0x40/0x40 [ 25.315281] syscall_return_slowpath+0x490/0x550 [ 25.320004] ? prepare_exit_to_usermode+0x340/0x340 [ 25.324990] ? entry_SYSCALL_64_fastpath+0x69/0x96 [ 25.329886] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 25.334869] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 25.339596] entry_SYSCALL_64_fastpath+0x94/0x96 [ 25.344316] RIP: 0033:0x452897 [ 25.347475] RSP: 002b:00007efefbfa3078 EFLAGS: 00000217 ORIG_RAX: 0000000000000010 [ 25.355237] RAX: 0000000000000000 RBX: 0000000000000018 RCX: 0000000000452897 [ 25.362473] RDX: 00007efefbfa36d0 RSI: 000000008138ae83 RDI: 0000000000000018 [ 25.369710] RBP: 0000000020866000 R08: 0000000000000001 R09: 0000000000000000 [ 25.376947] R10: 0000000000000017 R11: 0000000000000217 R12: 00000000fec00000 [ 25.384182] R13: 0000000000000017 R14: 00007efefbfa56d4 R15: 0000000000000000 [ 25.391430] Code: 0f 1f 80 00 00 00 00 55 48 89 e5 0f 20 d8 5d c3 0f 1f 80 00 00 00 00 55 48 89 e5 0f 22 df 5d c3 0f 1f 80 00 00 00 00 55 48 89 e5 <0f> 22 e7 5d c3 0f 1f 80 00 00 00 00 55 48 89 e5 44 0f 20 c0 5d [ 25.410539] RIP: native_write_cr4+0x4/0x10 RSP: ffff8801db407e88 [ 25.416651] ---[ end trace 6211427412f57937 ]--- [ 25.634917] Shutting down cpus with NMI [ 25.638909] invalid opcode: 0000 [#2] SMP KASAN [ 25.638913] Dumping ftrace buffer: [ 25.638916] (ft[r l i2n5ke.d63 i8n91: 7] mMpotdyu)l e s linked in: [[ 2255..663388992277]] HHaarrddwwaarree nnaammee:: GGooooggllee GGooogogllee CCoommppuuttee EEnnggiinnee//GGooooggllee CCoommppuuttee EEnnggiinnee,, BBIIOOSS GGooooggllee 0011/01/2011 [[ 2255..66338899363]6] RRSSP:P :0 000181:8f:ffffff8f880810d1db4b040bbb4b040 EEFFLLAAGGSS:: 0000001100000022 [[ 2255..663388994433]] RRDDXX:: ddffffffffcc00000000000000000000 RRSIS:I : ffffffff8888010d1bd4b040bbbbe8e 8 RRDDII:: ffffffff8880801d1bdb4040bbbbaa88 [[ 2255..663388994499]] RR110:0: ffffffff888082012f1ffff8f8010100 R1R11:1 :f fffffff8888002211ffffff880011dd RR1122:: 1f1ffffff1f010030b368b61781875 8 5 [[ 2 255..663388995555]] FFSS:: 0000000077eeffeeffbbffaa55770000((00000000)) GGSS::ffffffff88880011ddbb440000000000((00000000)) kknnllGGSS::0000000000000000000000 [[ 2255..663388996611]] CCRR22:: 00000000000000000000662255220088 CCRR33: :0 0000000000000000055ee222200050 5C CR4R4: :0 00000000001626f0 [ [ 2 52.5.66383986976]7 ] < N> a ce: [[ 2255..663388998855]] ?? ppvvcclloocckk__rreeaadd__ffllaaggss++00xx116600//00xx116600 /0x90 [[ 2255..663399000022]] ?? ttrarcacee_r_arwaw__oouuttppuutt__nnmmii__handler+0x120/0x120 [[ 2255..663399002211]] ?? pprriinnttkk__ssaaffee__fflluusshh__oonn__ppaanniicc++00xx119900//0x190 [[ 2255..663399003322]] ddoo__nnmmii++00xx220055//00x2xc2c00 /0x150 [[ 2255..663399004444]] RRIIPP:: 00001100::ppaanniicc__ssmmpp__sseellff__sstop+0xb/0x80 [[ 2255..663399004499]] RRAAXX:: ffffffff88880011cc00559944448800 RRBBXX: : ffffffffffffffff8855bb11ee007799 RCX: ffffffff8140de69 [[ 2255..663399005544]] RRBBPP:: fffffff8f888001d1dbb40407c768c6 R80 R8:0 8:0 000000000000000000000000000000 R00 R9:0 91:f f1ffff1f0f0130b0683b06f8680 f6 8 [[ 225.5.63693096006] 0]R 13R:13 f:f fffff8f80818d0b410d7bd40007 dR0104 :R1 4d:ff dfffcff00f0c00000000000000 0R0015 :R 1ff5:f ff88f0f1fd8b840017dfbc400 7 fc0 [[ 2255..663399007733]] ?? ppaanniicc__ssmmpp_s_eselfl_f_ssttopo+p0+xb0/x0bx/800x 80 [[ 2255..663399008800]] <> _smp_self_stop+0xb/0x80 [[ 2255..663399008855]] ppaanniicc++0xec/0x41c [[ 252.5.663399009977]] ?? bbuusstt__ssppiinnlloocckkss++00xx6600//00xxcc00 14/0x214 [[ 2255..636939101606] ] ? ? kkmmsgs_gd_duumpmp+0+x04x1451/05x/50xf05f 0 0 x 2b/0x60 [[ 2255..663399111166]] ddiiee+0+x03xd3/d0/x0x5050 0xe0 [[ 2255..663399112288]] gegneenrearal_lp_prortoetecctitoinon++00x2x22/20/x03x300 x3e0 [[ 2 255.6.6393191335]5] RSPRS: P:0 00108:1f8:fffff8f8f0188db0140d7b4e8087e E8F8L AEFGSL:A 0G0S0:1 00082 [[ 2255..663399114411]] RRDDXX:: 11ffffffffffffffff00bbdd99003344 RRSSII:: 00000000000000000000000000000000 RRDDII:: 000000000000000000010616006f6f00 [[ 2255..663399114466]] RR1100:: ffffffff88880011cc00eeddeeaa3388 RR1111:: 0000000000000000000000000000000 0 RR112:2 :0 0000000000000000000000000008822 [[ 2255..663399115599]] ?? ttrraaccee__hhaarrddiirrqqss__ooffff++00xxdd//00xx1100 8801c0594480 R15: ffff8801db407fc0 [[ 2 255..663399116677]] ?? nnaattiivvee__sstotop_p_ootthheerr__ccppuuss++00xx33dd00//00xx3d0 [[ 2255..663399117788]] ?? hhaannddllee__eedgdgee_i_riqr+q0+x0x2b2b44/0/0x7x7c0 [[ 225.5.66393199109]0] ? ? t rtaraccee_h_ahrdairdriqrsq_osf_of_fft_thunk+0x1a/0x1c [[ 2255..663399119988]] <> i nterrupt+0x9d/0xb0 [[ 2 25.56.6393292070]7] RRSPS:P :0 001081:8f:ffffff8f880810c10ce0deed8ec08 cE0F LEFALGSA:GS :0 0000000209032 9OR3I ORIG_RAX: ffffffffffffff07 [[ 2255..663399221144]] RRDDXX:: 00000000000000000000000000000000 RRSSII:: 1 f1ffffff1f0100308318d1bdcbece88 RDRIDI: :f fffffff8880810c1c00edeede9b98b8 [[ 2255..663399221199]] RR1100:: ffffffff88880011cc00edeedae3a83 8R 1R11: 10: 00000000000000000000000000000 R010 2:R 1f2f:f ff8f8f0f18c800e1dc0e9ebde8 9 b8 [[ 2255..663399223300]] ? ? ssmmpp_c_aclall_lf_ufunnctcitoinon__sisinnglgel+e0+0x3x63622/0/x05x5606 0 000 R15: ffffed00381dbd2c [[ 2 52.56.6339292443]3 ] ? ?g egenenrerici_ce_xeexce_cs_isninglgele+0x5b0/0x5b0 [[ 2255..663399225544]] ?? aarrcchh__jjuummpp__llaabbeell__ttrraannssffoorrmm++0x1b/0x40 [[ 2255..663399226655]] ?? __ffiinndd__nneexxtt__bbiitt++00xxeeee//00xx112200 [[ 2255..63693922757]5 ] ? ? fifnidnd_n_enexxt_t_bibti+t0+x207x/270x/30 [[ 2255..663399228855]] ?? ssmmp_pc_aclalll__ffuunnccttiioonn__mmaannyy++00xx777733//00xx93930 [[ 2255.6.3639922996]6] ? ? s msmp_pc_acallll__ffuunnccttiioonn__ssingle_async+0x2d0/0x2d0 [[ 2255..663399330066]] ?? tteexxtt__ppookkee++00xx333366//00xx553300 x100 [[ 2255..663399331188]] ?? kkvvmm__sseett__llaapipic_ct_tsscdcedeadadllininee__mmssrr+0+x0x3b3b//00xx100 [[ 225.56.6393329362] 6] ? a? dadd_nd_opnos+ps0x+90x09/00/x09x09 0 xd /0x10 [[ 2255..663399333355]] oonn__eeaacchh__ccppuu++00xx33d/d0/0xx1b1b00 l ine_msr+0x3c/0x100 [[ 252.65.3963394534] 5 ]t extte_xpto_pkoe_kbe_pb+0p+xb0bxb/0bx/017x01 7 0 ine_msr+0x3b/0x100 [[ 2255.6.63399335577]] ?? ffrreeee__uunnrreeff__ppaaggee++00xx33ccbb//0x0x99dd00 [[ 2255..663399336688]] ____jjuummpp__llaabbeell__ttrraannssffoorrmm..iissrraa..00++00xx66aa55//00xx88aa00 [[ 2255..663399337777]] ?? kkmmeemm__ccaacchhee__ffrreeee++00xx7777//00xx228800 [[ 2255..66339933886]6] ? ?k vkmv_pmu_tp_utkv_mk+v0xm6+905x/6095xdf0 [[ 2255..63693933995]5] ?? ____fpfpuutt+0+0xx32372/70/x0x7e70e0 /0x50 [[ 2255..663399440033]] ?? ttaasskk__wwoorrkk__rruunn++00xx119999/0x270 [[ 2255..66339941412]2] ?? momoddululees_so_popeenn++0x0ax0a/0/00xxa0a [[ 2255..663399442244]] ____jjuummpp__llaabbele_lu_pudpdataete+0+x0x202077//0x0x2d20d 0 x 40 [[ 2255..663399443355]] ?? aattoommiicc__ddeecc__aanndd__mmutuetxe_xl_olocckk++00xx1112/0x150 [[ 2255..663399444455]] jjuummpp__llaabbeell__uupdpdatate+e+0x02x222c/c0/x02x2bb00 b 50 [[ 2255..663399445566]] ?? ssttaattiicc__kkeye_ys_lsloow_wi_nicn+c0+0x3xc3c0/0/0x03xc30c 0 76/0x1d0 [[ 2255..663399446688]] ssttaattiicc__kkeeyy__ssllooww__ddeecc++00xx5566//00xx9900 0 8/0x120 [[ 2255..663399447799]] kkvvmm__vvccppuu__ununiinniit+t0x+04x44/04x/90x0 9 0 /0 x1d0 [[ 2255..663399448888]] kkvvmm__ararchc_dh_edsterstoryo_yv_mv+m0+x40xb44/b4/0x990 [[ 2255..663399550044]] ?? mmmmuu__nnoottiiffiieerr__uunnrreeggiisstteerr++00xx443333/0/0x5d0 [[ 2255..663399551144]] ?? ____mmmmuu__nnoottiiffiieerr__rreeggiisstteerr++0x30/0x30 [[ 2255..663399552233]] ?? ffrreeee__uunnrreeff__ppaaggee++00xx99dd00//00xx99d0 [[ 2255..663399553322]] ?? kfkfrreee+e0+x0xe4e/40x/02x502 50 eb/0x190 [[ 2255..663399554422]] ?? ffrreeee_p_paaggees+s+00x5x15/10/0x9x090 f0 [[ 2255..663399555544]] ?? kvkvm_m_cclleeaarr__gguueesstt++00xxbb00//00xb0 [[ 2255..663399556666]] ?? lloocckk__ddoowwnnggrraaddee++00xx998800//0x09x89800 0 [[ 2255..663399558822]] ? ? kvkmv_m_iirrqfqfdd__rreleeleasaese++00xxdddd/0/x0x112020 0 [[ 252.56.3693959592]2 ] ?? k kvmvm_p_putut_k_vkvm+m0+0xdxfd0f/00/x0dfx0d f 0 x120 [[ 2255..663396906000] ] _ ___ffpputut++00xx332277//0x70ex7e00 /0x50 [[ 2255..663399661111]] ?? ttrraaccee__eevveenntt__rraaww__eevent_sched_switch+0x800/0x800 [[ 2255..66339966212]1] ________ffpuptut+0+x01x515//00x2x20 0 irq+0x27/0x70 [[ 2255..663399663311]] ?? ttaasskk__wwoorrkk__ccaanncceell++00xx221100//00x210 [[ 2255..663399664400]] ?? sswwiittcchh_t_atassk_kn_naamemsespapaccees+s+00x8x87/70xc0 [[ 2255..663399665500]] ?? ffiinndd__hheelldd__llocokc+k+0x03x355/0x1d0 [[ 2255..663399666622]] ?? ddeebbuugg__cchheecckk__nnoo__lloocckkss__ffrreeeedd++00xx33cc00//0x3c0 [[ 2255..66339697671]1 ] ?? l loocck_kr_releleaeasse+e+0x0axa440/0/0x0axa4040 0 [[ 2525.6.6339968681]1 ] ? ?c hecchk_encko_ncniornccuirlacru+0lxar20+0/x02x020/0 x20 [[ 2255..663399669966]] ?? iiss__bbppf_ft_etxetx_ta_adddrdresess+s0+x0xa4a4//00xx12120 0 /0x10 [[ 2255..6639379077]07 ] ? ?__ __kkeernrnelel__tetxetxt__aadddrdersess+s+0x0dx/d/00x4x04 0 [[ 2255..663399771188]] ?? cchheecckk__nnoonncciirrccuullaarr++00xx2200//00x2x200 [[ 2255..663399772299]] ?? kkvvmm__vvccppuu__iiooccttll++00xx22bbee//00xx11001100 [[ 2255..663399773377]] ? ? sasavve_es_tsatacckk++0x04x343/0/0xdx0d0 [[ 2255..663399774444]] ?? kkffrreeee++00xxccaa//00xx225500 x71/0xc0 [[ 2525.6.36937975533]] ?? dodo_v_vfsf_si_oioccttl+l0x+01bx11/0bx1/1520x01 5 20 0 [[ 2255..663399776611]] ?? eennttrryy__SSYYSSCCAALLLL__6644__ffaasstpath+0x1f/0x96 [[ 2255..663399777755]] ?? ggeett_s_isgignnala+l+00xx77aae/e/0x01x616cc0 0 0 [[ 2255..663399778877]] ddoo__ggrroouupp__eexxiitt++00xx114499//00xx440000 80 [[ 2255..663399779966]] ?? SSyySS_e_exxitit++0x0x303/00/0xx3300 +0x190/0x190 [[ 2255..663399880066]] ?? ttrraaccee__hhaarrddiirrqqss__oonn__ccaalllelre+r+0x04x4212/10/x5c0 [[ 2255..663399881199]] ?? ppttrraaccee__nnoottiiffyy++00xx131300//00xx130 [[ 2255..663399883311]] ?? ffiinndd__hheelldd__lloocckk++00xx3355//00xx11dd00 t+0xbb0/0xbb0 [[ 2255..663399884422]] ?? l loockc_k_ddoowwnngrgraadede++0x0x98980/0x980 [[ 2255..663399885533]] ?? ____lloocckk__iiss__hehledl+d0+x0bxb66//0x140 [[ 2255..663399886655] ] ? ? ___f_fgegtet++0x0x335c5/c/0x05x57700 7 d0/0x7d0 [[ 2255..663399887777]] ?? ggeett__uunnuusseedd__ffdd__ffllaaggss++00xx1190/0x190 [[ 2255..663399888899]] ?? eexxiitt__ttoo__uusseerrmmooddee__lloooopp++00x8c/0x310 [[ 2525..63963990090]0 ] ? i?o citocl_tlp_rperalelaollcaotcaet+e0+x02xb02/b00/x02xb02 b0 0 [[ 2255..663399991100]] ?? sseelliinnuuxx__ccaappaabbllee++00xx4400//00xx4400 exit+0x260/0x260 [[ 2255..663399992233]] ?? pprreeppaarree__exeixtit__tot_ou_usseremromdoed+e+0x03x430/400x/304x03 [[ 2255..663399993333]] ?? ttrraaccee__hhaarrddiirrqqss__oonn__ccaalllleerr++00xx442211//00xx55cc00 [[ 2255..663399994444] ] e netntrry_yS_YSSYSCACLALL_L6_644_f_faassttppaatthh++00xx9944//00xx9966 [[ 2255..663399995500]] RRSSPP:: 000022bb::0000000077eeffeeffbfa3078 EFLAGS: 00000217 ORIG_RAX: 0000000000000010 [[ 2255..663399995566]] RRDDXX:: 0000000077eeffeeffbbffaa3366dd00 RRSSII:: 000000000000000088113388aaee8833 RRDDII:: 00000000000000000000000000001188 [[ 2255..663399996611]] RR1100:: 00000000000000000000000000001177 RR111:1 : 0000000000000000000000000201271 7 RR112:2: 000000000000000f0efec0c00000000 0 [[ 2255..663399997700]] CCooddee:: 0000 0000 0000 0000 4488 8833 ee77 ff8 8 484 82 929 f fbb 8 d8 d4 b4 b 2c2 cc 1c1 e 9e9 003 3f f3 34 48 8a abb 4 8 81 c4 68 01 00 00 b8 01 00 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 <0f> 01 c4 48 c7 c7 a0 82 ec 85 48 89 f8 48 c1 e8 03 80 3c 10 00 [[ 2255..664499994477]] DDuummppiinngg ffttrraaccee bubufffefrer: : a ck+0x279/0x560 RSP: ffff8801db40bb40 [[ 2255..664499995522]] KKeerrnneell OOffffsseett:: ddiissaabblleedd [ 26.655858] Rebooting in 86400 seconds.. [ 26.655862] ---[ end trace 6211427412f57938 ]---