INIT: Entering runlevel: 2 [[36minfo[39;49m] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added 'ci-android-49-kasan-gce-1,10.128.0.8' (ECDSA) to the list of known hosts. 2017/12/07 23:23:03 parsed 1 programs 2017/12/07 23:23:03 executed programs: 0 syzkaller login: [ 109.539889] IPVS: Creating netns size=2536 id=1 [ 109.556142] IPVS: Creating netns size=2536 id=2 [ 109.572963] IPVS: Creating netns size=2536 id=3 [ 109.603115] IPVS: Creating netns size=2536 id=4 [ 109.625675] IPVS: Creating netns size=2536 id=5 [ 109.646281] IPVS: Creating netns size=2536 id=6 [ 109.666568] IPVS: Creating netns size=2536 id=7 [ 109.686938] IPVS: Creating netns size=2536 id=8 INIT: Id "6" respawning too fast: disabled for 5 minutes INIT: Id "3" respawning too fast: disabled for 5 minutes INIT: Id "4" respawning too fast: disabled for 5 minutes INIT: Id "5" respawning too fast: disabled for 5 minutes INIT: Id "1" respawning too fast: disabled for 5 minutes INIT: Id "2" respawning too fast: disabled for 5 minutes 2017/12/07 23:23:08 executed programs: 2061 2017/12/07 23:23:13 executed programs: 3950 [ 124.100199] ================================================================== [ 124.107575] BUG: KASAN: stack-out-of-bounds in __unwind_start+0x3a7/0x3c0 at addr ffff8801c53a7d28 [ 124.116635] Read of size 8 by task syz-executor4/20388 [ 124.121877] page:ffffea000714e9c0 count:0 mapcount:0 mapping: (null) index:0x0 [ 124.130097] flags: 0x8000000000000000() [ 124.134034] page dumped because: kasan: bad access detected [ 124.139712] CPU: 1 PID: 20388 Comm: syz-executor4 Not tainted 4.9.67-gf26d3c7 #106 [ 124.147382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 124.156699] ffff8801d07f7810 ffffffff81d906e9 ffffed0038a74fa5 0000000000000008 [ 124.164648] 0000000000000000 ffffed0038a74fa5 ffff8801c53a7d28 ffff8801d07f7898 [ 124.172604] ffffffff8153a833 ffff8801d5bf8000 ffffffff8389f09e ffffffff810d41b7 [ 124.180558] Call Trace: [ 124.183113] [] dump_stack+0xc1/0x128 [ 124.188442] [] kasan_report.part.1+0x4c3/0x500 [ 124.194640] [] ? mutex_lock_killable_nested+0x60e/0x960 [ 124.201617] [] ? __unwind_start+0x3a7/0x3c0 [ 124.207556] [] ? trace_hardirqs_on_caller+0x38b/0x590 [ 124.214361] [] __asan_report_load8_noabort+0x29/0x30 [ 124.221077] [] __unwind_start+0x3a7/0x3c0 [ 124.226839] [] ? ptrace_may_access+0x24/0x50 [ 124.232864] [] __save_stack_trace+0x59/0xf0 [ 124.238798] [] save_stack_trace_tsk+0x48/0x70 [ 124.244906] [] proc_pid_stack+0x146/0x230 [ 124.250666] [] ? lock_trace+0xc0/0xc0 [ 124.256080] [] proc_single_show+0xf8/0x170 [ 124.261928] [] traverse+0x231/0x900 [ 124.267171] [] ? seq_buf_alloc+0x80/0x80 [ 124.272847] [] seq_read+0x7ea/0x1290 [ 124.278173] [] ? save_stack_trace+0x16/0x20 [ 124.284107] [] ? save_stack+0x43/0xd0 [ 124.289522] [] ? seq_escape+0x200/0x200 [ 124.295117] [] ? debug_check_no_locks_freed+0x2c0/0x2c0 [ 124.302093] [] ? seq_escape+0x200/0x200 [ 124.307682] [] __vfs_read+0x103/0x670 [ 124.313096] [] ? default_llseek+0x290/0x290 [ 124.319034] [] ? fsnotify+0x86/0xf30 [ 124.324368] [] ? fsnotify+0xf30/0xf30 [ 124.329785] [] ? avc_policy_seqno+0x9/0x20 [ 124.335634] [] ? selinux_file_permission+0x82/0x460 [ 124.342267] [] ? security_file_permission+0x89/0x1e0 [ 124.348985] [] ? rw_verify_area+0xe5/0x2b0 [ 124.354833] [] vfs_read+0x11e/0x380 [ 124.360074] [] SyS_pread64+0x13f/0x170 [ 124.365577] [] ? SyS_write+0x1b0/0x1b0 [ 124.371078] [] ? trace_hardirqs_on_caller+0x38b/0x590 [ 124.377881] [] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 124.384427] [] entry_SYSCALL_64_fastpath+0x23/0xc6 [ 124.390966] Memory state around the buggy address: [ 124.395859] ffff8801c53a7c00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 124.403182] ffff8801c53a7c80: 00 00 00 00 00 00 f1 f1 f1 f1 04 f2 f2 f2 f2 f2 [ 124.410506] >ffff8801c53a7d00: f2 f2 04 f2 f2 f2 f2 f2 f2 f2 00 00 f2 f2 f2 f2 [ 124.417827] ^ [ 124.422459] ffff8801c53a7d80: f2 f2 00 00 00 f2 f2 f2 f2 f2 00 00 00 f2 00 00 [ 124.429781] ffff8801c53a7e00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 124.437101] ================================================================== [ 124.444422] Disabling lock debugging due to kernel taint [ 124.454995] ================================================================== [ 124.462359] BUG: KASAN: stack-out-of-bounds in unwind_get_return_address+0x92/0xa0 at addr ffff8801c53a7de8 [ 124.472212] Read of size 8 by task syz-executor4/20388 [ 124.477468] page:ffffea000714e9c0 count:0 mapcount:0 mapping: (null) index:0x0 [ 124.485708] flags: 0x8000000000000000() [ 124.489646] page dumped because: kasan: bad access detected [ 124.495347] CPU: 1 PID: 20388 Comm: syz-executor4 Tainted: G B 4.9.67-gf26d3c7 #106 [ 124.504245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 124.513567] ffff8801d07f7860 ffffffff81d906e9 ffffed0038a74fbd 0000000000000008 [ 124.521522] 0000000000000000 ffffed0038a74fbd ffff8801c53a7de8 ffff8801d07f78e8 [ 124.529466] ffffffff8153a833 ffff8801c53a7d00 ffff8801d07f7928 ffffffff810d3bd2 [ 124.537409] Call Trace: [ 124.539968] [] dump_stack+0xc1/0x128 [ 124.545300] [] kasan_report.part.1+0x4c3/0x500 [ 124.551497] [] ? unwind_get_return_address+0x92/0xa0 [ 124.558219] [] ? __unwind_start+0x117/0x3c0 [ 124.564159] [] __asan_report_load8_noabort+0x29/0x30 [ 124.571121] [] unwind_get_return_address+0x92/0xa0 [ 124.577664] [] __save_stack_trace+0x8d/0xf0 [ 124.583599] [] save_stack_trace_tsk+0x48/0x70 [ 124.589710] [] proc_pid_stack+0x146/0x230 [ 124.595474] [] ? lock_trace+0xc0/0xc0 [ 124.600890] [] proc_single_show+0xf8/0x170 [ 124.606737] [] traverse+0x231/0x900 [ 124.612672] [] ? seq_buf_alloc+0x80/0x80 [ 124.618345] [] seq_read+0x7ea/0x1290 [ 124.623671] [] ? save_stack_trace+0x16/0x20 [ 124.629606] [] ? save_stack+0x43/0xd0 [ 124.635018] [] ? seq_escape+0x200/0x200 [ 124.640610] [] ? debug_check_no_locks_freed+0x2c0/0x2c0 [ 124.647595] [] ? seq_escape+0x200/0x200 [ 124.653183] [] __vfs_read+0x103/0x670 [ 124.658594] [] ? default_llseek+0x290/0x290 [ 124.664531] [] ? fsnotify+0x86/0xf30 [ 124.669856] [] ? fsnotify+0xf30/0xf30 [ 124.675270] [] ? avc_policy_seqno+0x9/0x20 [ 124.681119] [] ? selinux_file_permission+0x82/0x460 [ 124.687749] [] ? security_file_permission+0x89/0x1e0 [ 124.694466] [] ? rw_verify_area+0xe5/0x2b0 [ 124.700310] [] vfs_read+0x11e/0x380 [ 124.705552] [] SyS_pread64+0x13f/0x170 [ 124.711050] [] ? SyS_write+0x1b0/0x1b0 [ 124.716550] [] ? trace_hardirqs_on_caller+0x38b/0x590 [ 124.723439] [] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 124.729983] [] entry_SYSCALL_64_fastpath+0x23/0xc6 [ 124.736522] Memory state around the buggy address: [ 124.741414] ffff8801c53a7c80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 124.748736] ffff8801c53a7d00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 2017/12/07 23:23:18 executed programs: 5719 [ 124.756056] >ffff8801c53a7d80: 00 00 00 00 00 00 00 00 00 00 00 00 00 f1 f1 f1 [ 124.763375] ^ [ 124.770088] ffff8801c53a7e00: f1 00 f2 f2 f2 f2 f2 f2 f2 00 f2 f2 f2 f2 f2 f2 [ 124.777409] ffff8801c53a7e80: f2 00 00 f2 f2 00 00 00 00 00 00 00 00 00 00 00 [ 124.784730] ================================================================== [ 126.480590] ================================================================== [ 126.487970] BUG: KASAN: out-of-bounds in __unwind_start+0x3a7/0x3c0 at addr ffff8801ce7ef8c8 [ 126.496535] Read of size 8 by task syz-executor7/22846 [ 126.501802] page:ffffea000739fbc0 count:0 mapcount:0 mapping: (null) index:0x0 [ 126.510381] flags: 0x8000000000000000() [ 126.514329] page dumped because: kasan: bad access detected [ 126.520020] CPU: 1 PID: 22846 Comm: syz-executor7 Tainted: G B 4.9.67-gf26d3c7 #106 [ 126.528908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 126.538229] ffff8801d00b7810 ffffffff81d906e9 ffffed0039cfdf1a 0000000000000008 [ 126.546182] 0000000000000000 ffffed0039cfdf1a ffff8801ce7ef8c8 ffff8801d00b7898 [ 126.554140] ffffffff8153a833 0000000000000000 0000000000000000 ffffffff810d41b7 [ 126.562095] Call Trace: [ 126.564652] [] dump_stack+0xc1/0x128 [ 126.569983] [] kasan_report.part.1+0x4c3/0x500 [ 126.576617] [] ? __unwind_start+0x3a7/0x3c0 [ 126.584030] [] __asan_report_load8_noabort+0x29/0x30 [ 126.590748] [] __unwind_start+0x3a7/0x3c0 [ 126.596513] [] ? ptrace_may_access+0x24/0x50 [ 126.602537] [] __save_stack_trace+0x59/0xf0 [ 126.608473] [] save_stack_trace_tsk+0x48/0x70 [ 126.614584] [] proc_pid_stack+0x146/0x230 [ 126.620350] [] ? lock_trace+0xc0/0xc0 [ 126.625774] [] proc_single_show+0xf8/0x170 [ 126.633019] [] traverse+0x231/0x900 [ 126.638264] [] ? seq_buf_alloc+0x80/0x80 [ 126.644296] [] seq_read+0x7ea/0x1290 [ 126.649633] [] ? save_stack+0xa3/0xd0 [ 126.655053] [] ? save_stack_trace+0x16/0x20 [ 126.660991] [] ? save_stack+0x43/0xd0 [ 126.666407] [] ? seq_escape+0x200/0x200 [ 126.671997] [] ? find_lock_entry+0x3e0/0x3e0 [ 126.678029] [] ? debug_check_no_locks_freed+0x2c0/0x2c0 [ 126.685015] [] ? seq_escape+0x200/0x200 [ 126.690607] [] __vfs_read+0x103/0x670 [ 126.696023] [] ? get_unused_fd_flags+0xd0/0xd0 [ 126.702221] [] ? default_llseek+0x290/0x290 [ 126.708160] [] ? fsnotify+0x86/0xf30 [ 126.713488] [] ? fsnotify+0xf30/0xf30 [ 126.718906] [] ? avc_policy_seqno+0x9/0x20 [ 126.724758] [] ? selinux_file_permission+0x82/0x460 [ 126.731390] [] ? security_file_permission+0x89/0x1e0 [ 126.738114] [] ? rw_verify_area+0xe5/0x2b0 [ 126.743963] [] vfs_read+0x11e/0x380 [ 126.749206] [] SyS_pread64+0x13f/0x170 [ 126.754710] [] ? SyS_write+0x1b0/0x1b0 [ 126.760212] [] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 126.766762] [] entry_SYSCALL_64_fastpath+0x23/0xc6 [ 126.773304] Memory state around the buggy address: [ 126.778551] ffff8801ce7ef780: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 126.785874] ffff8801ce7ef800: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 126.793284] >ffff8801ce7ef880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 126.800606] ^ [ 126.806541] ffff8801ce7ef900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 f1 [ 126.813864] ffff8801ce7ef980: f1 f1 f1 00 f2 f2 f2 f3 f3 f3 f3 00 00 00 00 00 [ 126.821186] ================================================================== 2017/12/07 23:23:23 executed programs: 7979