[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 17.545646] audit: type=1400 audit(1520662142.926:6): avc: denied { map } for pid=4031 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 495.684566] audit: type=1400 audit(1520662621.065:7): avc: denied { map } for pid=4045 comm="sh" path="/bin/dash" dev="sda1" ino=1473 scontext=system_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '10.128.0.33' (ECDSA) to the list of known hosts. [ 703.932364] audit: type=1400 audit(1520662829.313:8): avc: denied { map } for pid=4052 comm="syz-execprog" path="/root/syz-execprog" dev="sda1" ino=16479 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 2018/03/10 06:20:29 parsed 1 programs 2018/03/10 06:20:29 executed programs: 0 [ 704.166450] audit: type=1400 audit(1520662829.545:9): avc: denied { map } for pid=4052 comm="syz-execprog" path="/root/syzkaller-shm969196051" dev="sda1" ino=16482 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:file_t:s0 tclass=file permissive=1 [ 704.196103] IPVS: ftp: loaded support on port[0] = 21 [ 704.229538] IPVS: ftp: loaded support on port[0] = 21 [ 704.258271] IPVS: ftp: loaded support on port[0] = 21 [ 704.304107] IPVS: ftp: loaded support on port[0] = 21 [ 704.344629] IPVS: ftp: loaded support on port[0] = 21 [ 704.370192] IPVS: ftp: loaded support on port[0] = 21 [ 704.408047] IPVS: ftp: loaded support on port[0] = 21 [ 704.434497] IPVS: ftp: loaded support on port[0] = 21 [ 766.430477] Buffer I/O error on dev loop0, logical block 0, lost async page write [ 861.152177] INFO: task syz-executor5:4114 blocked for more than 120 seconds. [ 861.159488] Not tainted 4.16.0-rc4+ #257 [ 861.164092] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 861.172080] syz-executor5 D24336 4114 4059 0x20020004 [ 861.177728] Call Trace: [ 861.180401] __schedule+0x8fb/0x1ec0 [ 861.184161] ? __sched_text_start+0x8/0x8 [ 861.188353] ? print_irqtrace_events+0x270/0x270 [ 861.193125] ? print_irqtrace_events+0x270/0x270 [ 861.197914] ? trace_hardirqs_off+0x10/0x10 [ 861.202260] ? trace_hardirqs_off+0x10/0x10 [ 861.206601] ? lock_acquire+0x1d5/0x580 [ 861.210607] ? lock_acquire+0x1d5/0x580 [ 861.214608] ? find_held_lock+0x35/0x1d0 [ 861.218707] schedule+0xf5/0x430 [ 861.222145] ? __mutex_lock+0xaa8/0x1a80 [ 861.226232] ? __schedule+0x1ec0/0x1ec0 [ 861.230234] ? lock_release+0xa40/0xa40 [ 861.234265] ? memset+0x31/0x40 [ 861.237565] ? do_raw_spin_trylock+0x190/0x190 [ 861.242168] ? debug_mutex_free_waiter+0x1b0/0x1b0 [ 861.247107] ? mutex_destroy+0x1d0/0x1d0 [ 861.251217] schedule_preempt_disabled+0x10/0x20 [ 861.255992] __mutex_lock+0xaad/0x1a80 [ 861.259903] ? find_held_lock+0x35/0x1d0 [ 861.264051] ? __blkdev_get+0x176/0x13b0 [ 861.268176] ? mutex_lock_io_nested+0x1900/0x1900 [ 861.273054] ? lock_downgrade+0x980/0x980 [ 861.277212] ? find_held_lock+0x35/0x1d0 [ 861.281305] ? trace_hardirqs_off+0x10/0x10 [ 861.285631] ? __lock_acquire+0x664/0x3e00 [ 861.289902] ? __lock_acquire+0x664/0x3e00 [ 861.294153] ? trace_hardirqs_off+0x10/0x10 [ 861.298508] ? __mutex_unlock_slowpath+0xe9/0xac0 [ 861.303379] ? lock_acquire+0x1d5/0x580 [ 861.307371] ? find_held_lock+0x35/0x1d0 [ 861.311508] ? get_gendisk+0xb0/0x360 [ 861.315344] ? lock_downgrade+0x980/0x980 [ 861.319548] ? __might_sleep+0x95/0x190 [ 861.323565] ? down_read+0x96/0x150 [ 861.327201] ? get_gendisk+0x67/0x360 [ 861.331047] mutex_lock_nested+0x16/0x20 [ 861.335123] ? mutex_lock_nested+0x16/0x20 [ 861.339402] __blkdev_get+0x176/0x13b0 [ 861.343318] ? bd_may_claim+0xd0/0xd0 [ 861.347149] blkdev_get+0x399/0xb00 [ 861.350791] ? __blkdev_get+0x13b0/0x13b0 [ 861.354964] ? do_raw_spin_trylock+0x190/0x190 [ 861.359646] ? errseq_sample+0xee/0x140 [ 861.363645] ? _copy_to_user+0xc0/0xc0 [ 861.367549] ? _raw_spin_unlock+0x22/0x30 [ 861.371732] blkdev_open+0x1c9/0x250 [ 861.375496] ? security_file_open+0x89/0x190 [ 861.379967] do_dentry_open+0x667/0xd40 [ 861.383965] ? bd_acquire+0x2c0/0x2c0 [ 861.387786] vfs_open+0x107/0x220 [ 861.391270] path_openat+0x1151/0x3530 [ 861.395189] ? path_lookupat+0xba0/0xba0 [ 861.399268] ? lock_downgrade+0x980/0x980 [ 861.403434] ? do_sys_open+0x2e7/0x6d0 [ 861.407339] ? lock_release+0xa40/0xa40 [ 861.411334] ? _raw_spin_unlock+0x22/0x30 [ 861.415665] ? do_raw_spin_trylock+0x190/0x190 [ 861.420265] ? __lock_is_held+0xb6/0x140 [ 861.424340] ? _raw_spin_unlock+0x22/0x30 [ 861.428559] ? __alloc_fd+0x29b/0x750 [ 861.432402] do_filp_open+0x25b/0x3b0 [ 861.436234] ? may_open_dev+0xe0/0xe0 [ 861.440098] ? mpi_resize+0x200/0x200 [ 861.443937] ? get_unused_fd_flags+0x121/0x190 [ 861.448557] ? __alloc_fd+0x750/0x750 [ 861.452387] ? getname_flags+0x256/0x580 [ 861.456482] do_sys_open+0x502/0x6d0 [ 861.460225] ? do_sys_open+0x502/0x6d0 [ 861.464487] ? filp_open+0x70/0x70 [ 861.468060] ? lock_downgrade+0x980/0x980 [ 861.472239] compat_SyS_open+0x2a/0x40 [ 861.476164] ? SyS_openat+0x40/0x40 [ 861.479862] do_fast_syscall_32+0x3ec/0xf9f [ 861.484211] ? do_int80_syscall_32+0x9c0/0x9c0 [ 861.488803] ? _raw_spin_unlock_irq+0x27/0x70 [ 861.493323] ? finish_task_switch+0x1c1/0x7e0 [ 861.497841] ? syscall_return_slowpath+0x2ac/0x550 [ 861.502800] ? prepare_exit_to_usermode+0x350/0x350 [ 861.507841] ? retint_user+0x18/0x18 [ 861.511589] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 861.516456] entry_SYSENTER_compat+0x70/0x7f [ 861.520884] RIP: 0023:0xf7f26c99 [ 861.524263] RSP: 002b:00000000f7f21bf4 EFLAGS: 00000292 ORIG_RAX: 0000000000000005 [ 861.532035] RAX: ffffffffffffffda RBX: 00000000f7f21cac RCX: 0000000000000002 [ 861.539338] RDX: 0000000000000000 RSI: 00000000cccccccd RDI: 0000000000000000 [ 861.546633] RBP: 00000000f7f22158 R08: 0000000000000000 R09: 0000000000000000 [ 861.553936] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 861.561236] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 861.568542] [ 861.568542] Showing all locks held in the system: [ 861.574896] 2 locks held by khungtaskd/799: [ 861.579287] #0: (rcu_read_lock){....}, at: [<0000000009734e1c>] watchdog+0x1c5/0xd60 [ 861.587449] #1: (tasklist_lock){.+.+}, at: [<0000000059cb1a73>] debug_show_all_locks+0xd3/0x3d0 [ 861.596527] 1 lock held by rsyslogd/3895: [ 861.600694] #0: (&f->f_pos_lock){+.+.}, at: [<00000000b8b7c90c>] __fdget_pos+0x12b/0x190 [ 861.609162] 2 locks held by getty/4018: [ 861.613154] #0: (&tty->ldisc_sem){++++}, at: [<00000000c3073848>] ldsem_down_read+0x37/0x40 [ 861.621853] #1: (&ldata->atomic_read_lock){+.+.}, at: [<00000000f11237a3>] n_tty_read+0x2ef/0x1a00 [ 861.631323] 2 locks held by getty/4019: [ 861.635303] #0: (&tty->ldisc_sem){++++}, at: [<00000000c3073848>] ldsem_down_read+0x37/0x40 [ 861.644028] #1: (&ldata->atomic_read_lock){+.+.}, at: [<00000000f11237a3>] n_tty_read+0x2ef/0x1a00 [ 861.653340] 2 locks held by getty/4020: [ 861.657319] #0: (&tty->ldisc_sem){++++}, at: [<00000000c3073848>] ldsem_down_read+0x37/0x40 [ 861.665999] #1: (&ldata->atomic_read_lock){+.+.}, at: [<00000000f11237a3>] n_tty_read+0x2ef/0x1a00 [ 861.675316] 2 locks held by getty/4021: [ 861.679291] #0: (&tty->ldisc_sem){++++}, at: [<00000000c3073848>] ldsem_down_read+0x37/0x40 [ 861.687967] #1: (&ldata->atomic_read_lock){+.+.}, at: [<00000000f11237a3>] n_tty_read+0x2ef/0x1a00 [ 861.697258] 2 locks held by getty/4022: [ 861.701226] #0: (&tty->ldisc_sem){++++}, at: [<00000000c3073848>] ldsem_down_read+0x37/0x40 [ 861.709911] #1: (&ldata->atomic_read_lock){+.+.}, at: [<00000000f11237a3>] n_tty_read+0x2ef/0x1a00 [ 861.719214] 2 locks held by getty/4023: [ 861.723196] #0: (&tty->ldisc_sem){++++}, at: [<00000000c3073848>] ldsem_down_read+0x37/0x40 [ 861.731880] #1: (&ldata->atomic_read_lock){+.+.}, at: [<00000000f11237a3>] n_tty_read+0x2ef/0x1a00 [ 861.741185] 2 locks held by getty/4024: [ 861.745158] #0: (&tty->ldisc_sem){++++}, at: [<00000000c3073848>] ldsem_down_read+0x37/0x40 [ 861.754176] #1: (&ldata->atomic_read_lock){+.+.}, at: [<00000000f11237a3>] n_tty_read+0x2ef/0x1a00 [ 861.763486] 3 locks held by kworker/u4:0/4089: [ 861.768080] #0: ((wq_completion)"writeback"){+.+.}, at: [<00000000dc5010e8>] process_one_work+0xb12/0x1bb0 [ 861.778129] #1: ((work_completion)(&(&wb->dwork)->work)){+.+.}, at: [<000000007537b296>] process_one_work+0xb89/0x1bb0 [ 861.789160] #2: (&type->s_umount_key#27){.+.+}, at: [<00000000b3e43bd7>] trylock_super+0x20/0x100 [ 861.798378] 1 lock held by blkid/4111: [ 861.802301] #0: (&bdev->bd_mutex){+.+.}, at: [<00000000a450e2bd>] __blkdev_put+0xbc/0x760 [ 861.810824] 1 lock held by syz-executor5/4114: [ 861.815414] #0: (&bdev->bd_mutex){+.+.}, at: [<000000003e0ecd3c>] __blkdev_get+0x176/0x13b0 [ 861.824098] 1 lock held by syz-executor5/4125: [ 861.828684] #0: (&bdev->bd_mutex){+.+.}, at: [<000000003e0ecd3c>] __blkdev_get+0x176/0x13b0 [ 861.837372] 1 lock held by syz-executor5/4132: [ 861.841963] #0: (&bdev->bd_mutex){+.+.}, at: [<000000003e0ecd3c>] __blkdev_get+0x176/0x13b0 [ 861.850675] 1 lock held by syz-executor3/4118: [ 861.855264] #0: (&bdev->bd_mutex){+.+.}, at: [<000000003e0ecd3c>] __blkdev_get+0x176/0x13b0 [ 861.863940] 1 lock held by syz-executor3/4136: [ 861.868527] #0: (&bdev->bd_mutex){+.+.}, at: [<000000003e0ecd3c>] __blkdev_get+0x176/0x13b0 [ 861.877206] 1 lock held by syz-executor2/4120: [ 861.881804] #0: (&bdev->bd_mutex){+.+.}, at: [<000000003e0ecd3c>] __blkdev_get+0x176/0x13b0 [ 861.890497] 1 lock held by syz-executor2/4134: [ 861.895624] #0: (&bdev->bd_mutex){+.+.}, at: [<000000003e0ecd3c>] __blkdev_get+0x176/0x13b0 [ 861.904313] 1 lock held by syz-executor4/4119: [ 861.908937] #0: (&bdev->bd_mutex){+.+.}, at: [<000000003e0ecd3c>] __blkdev_get+0x176/0x13b0 [ 861.917642] 1 lock held by syz-executor4/4135: [ 861.922229] #0: (&bdev->bd_mutex){+.+.}, at: [<000000003e0ecd3c>] __blkdev_get+0x176/0x13b0 [ 861.930949] 1 lock held by syz-executor1/4121: [ 861.935567] #0: (&bdev->bd_mutex){+.+.}, at: [<000000003e0ecd3c>] __blkdev_get+0x176/0x13b0 [ 861.944295] 1 lock held by syz-executor1/4133: [ 861.948897] #0: (&bdev->bd_mutex){+.+.}, at: [<000000003e0ecd3c>] __blkdev_get+0x176/0x13b0 [ 861.957600] 1 lock held by syz-executor0/4123: [ 861.962217] #0: (&bdev->bd_mutex){+.+.}, at: [<000000003e0ecd3c>] __blkdev_get+0x176/0x13b0 [ 861.971080] 1 lock held by syz-executor0/4138: [ 861.975673] #0: (&bdev->bd_mutex){+.+.}, at: [<000000003e0ecd3c>] __blkdev_get+0x176/0x13b0 [ 861.984353] 1 lock held by syz-executor7/4130: [ 861.988943] #0: (&bdev->bd_mutex){+.+.}, at: [<000000003e0ecd3c>] __blkdev_get+0x176/0x13b0 [ 861.997632] 1 lock held by syz-executor7/4151: [ 862.002240] #0: (&bdev->bd_mutex){+.+.}, at: [<000000003e0ecd3c>] __blkdev_get+0x176/0x13b0 [ 862.010953] 1 lock held by syz-executor6/4140: [ 862.015557] #0: (&bdev->bd_mutex){+.+.}, at: [<000000003e0ecd3c>] __blkdev_get+0x176/0x13b0 [ 862.024255] 1 lock held by syz-executor6/4160: [ 862.028846] #0: (&bdev->bd_mutex){+.+.}, at: [<000000003e0ecd3c>] __blkdev_get+0x176/0x13b0 [ 862.037549] [ 862.039185] ============================================= [ 862.039185] [ 862.046202] NMI backtrace for cpu 1 [ 862.049842] CPU: 1 PID: 799 Comm: khungtaskd Not tainted 4.16.0-rc4+ #257 [ 862.056739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 862.066068] Call Trace: [ 862.068681] dump_stack+0x194/0x24d [ 862.072283] ? arch_local_irq_restore+0x53/0x53 [ 862.076924] ? debug_show_all_locks+0x2f3/0x3d0 [ 862.081565] ? nmi_cpu_backtrace+0x1be/0x210 [ 862.086001] ? lapic_can_unplug_cpu+0xa0/0xa0 [ 862.090469] nmi_cpu_backtrace+0x1d2/0x210 [ 862.094677] ? lapic_can_unplug_cpu+0xa0/0xa0 [ 862.099140] nmi_trigger_cpumask_backtrace+0x123/0x180 [ 862.104391] arch_trigger_cpumask_backtrace+0x14/0x20 [ 862.109814] watchdog+0x90c/0xd60 [ 862.113251] ? reset_hung_task_detector+0xa0/0xa0 [ 862.118070] ? complete+0x62/0x80 [ 862.121515] ? __schedule+0x1ec0/0x1ec0 [ 862.125478] ? do_wait_intr_irq+0x3e0/0x3e0 [ 862.129784] ? __lockdep_init_map+0xe4/0x650 [ 862.134166] ? do_raw_spin_trylock+0x190/0x190 [ 862.138724] ? lockdep_init_map+0x9/0x10 [ 862.142756] ? _raw_spin_unlock_irqrestore+0x31/0xc0 [ 862.147851] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 862.152838] ? trace_hardirqs_on+0xd/0x10 [ 862.156956] ? __kthread_parkme+0x176/0x240 [ 862.161261] kthread+0x33c/0x400 [ 862.164606] ? reset_hung_task_detector+0xa0/0xa0 [ 862.169418] ? kthread_stop+0x7a0/0x7a0 [ 862.173365] ret_from_fork+0x3a/0x50 [ 862.177138] Sending NMI from CPU 1 to CPUs 0: [ 862.181679] NMI backtrace for cpu 0 skipped: idling at native_safe_halt+0x6/0x10 [ 862.182657] Kernel panic - not syncing: hung_task: blocked tasks [ 862.195482] CPU: 1 PID: 799 Comm: khungtaskd Not tainted 4.16.0-rc4+ #257 [ 862.202378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 862.211703] Call Trace: [ 862.214270] dump_stack+0x194/0x24d [ 862.217872] ? arch_local_irq_restore+0x53/0x53 [ 862.222531] ? vsnprintf+0x1ed/0x1900 [ 862.226360] panic+0x1e4/0x41c [ 862.229528] ? refcount_error_report+0x214/0x214 [ 862.234265] ? nmi_trigger_cpumask_backtrace+0xf0/0x180 [ 862.239608] watchdog+0x91d/0xd60 [ 862.243048] ? reset_hung_task_detector+0xa0/0xa0 [ 862.247865] ? complete+0x62/0x80 [ 862.251299] ? __schedule+0x1ec0/0x1ec0 [ 862.255245] ? do_wait_intr_irq+0x3e0/0x3e0 [ 862.259538] ? __lockdep_init_map+0xe4/0x650 [ 862.263921] ? do_raw_spin_trylock+0x190/0x190 [ 862.268483] ? lockdep_init_map+0x9/0x10 [ 862.272525] ? _raw_spin_unlock_irqrestore+0x31/0xc0 [ 862.277607] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 862.282597] ? trace_hardirqs_on+0xd/0x10 [ 862.286719] ? __kthread_parkme+0x176/0x240 [ 862.291017] kthread+0x33c/0x400 [ 862.294358] ? reset_hung_task_detector+0xa0/0xa0 [ 862.299170] ? kthread_stop+0x7a0/0x7a0 [ 862.303118] ret_from_fork+0x3a/0x50 [ 862.307505] Dumping ftrace buffer: [ 862.311111] (ftrace buffer empty) [ 862.314796] Kernel Offset: disabled [ 862.318399] Rebooting in 86400 seconds..