check_preemption_disabled: 2 callbacks suppressed BUG: using __this_cpu_read() in preemptible [00000000] code: syz-executor4/13478 caller is __this_cpu_preempt_check+0x1c/0x20 lib/smp_processor_id.c:62 CPU: 1 PID: 13478 Comm: syz-executor4 Not tainted 4.9.80-g20c8a00 #30 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 ffff8801b00176d8 ffffffff81d94b69 0000000000000001 ffffffff83c18800 ffffffff83f454c0 ffff8801d7df0000 0000000000000003 ffff8801b0017718 ffffffff81dfc144 ffff8801b0017730 ffffffff83f454c0[ 70.481886] syz-executor2: vmalloc: allocation failure: 15157949456 bytes, mode:0x24000c2(GFP_KERNEL|__GFP_HIGHMEM) [] __dump_stack lib/dump_stack.c:15 [inline] [] dump_stack+0xc1/0x128 lib/dump_stack.c:51 [] check_preemption_disabled+0x1d4/0x200 lib/smp_processor_id.c:46 [] __this_cpu_preempt_check+0x1c/0x20 lib/smp_processor_id.c:62 [] ipcomp_alloc_tfms net/xfrm/xfrm_ipcomp.c:286 [inline] [] ipcomp_init_state+0x188/0x930 net/xfrm/xfrm_ipcomp.c:363 [] ipcomp4_init_state+0xb0/0x7d0 net/ipv4/ipcomp.c:137 [] __xfrm_init_state+0x3e7/0xb30 net/xfrm/xfrm_state.c:2096 [] xfrm_init_state+0x1a/0x20 net/xfrm/xfrm_state.c:2122 [] pfkey_msg2xfrm_state net/key/af_key.c:1289 [inline] [] pfkey_add+0x1fb9/0x3470 net/key/af_key.c:1506 [] pfkey_process+0x68b/0x750 net/key/af_key.c:2834 [] pfkey_sendmsg+0x3a9/0x760 net/key/af_key.c:3678 [] sock_sendmsg_nosec net/socket.c:635 [inline] [] sock_sendmsg+0xca/0x110 net/socket.c:645 [] ___sys_sendmsg+0x6d1/0x7e0 net/socket.c:1969 [] __sys_sendmsg+0xd6/0x190 net/socket.c:2003 [] SYSC_sendmsg net/socket.c:2014 [inline] [] SyS_sendmsg+0x2d/0x50 net/socket.c:2010 [] entry_SYSCALL_64_fastpath+0x29/0xe8 CPU: 0 PID: 13485 Comm: syz-executor2 Not tainted 4.9.80-g20c8a00 #30 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 ffff8801d8c57880 ffffffff81d94b69 1ffff1003b18af13 ffff8801d7c03000 ffffffff83ab8ea0 0000000000000001 0000000000400000 ffff8801d8c57990 ffffffff81451ca2 024000c200000003 0000000041b58ab3 ffffffff84195215 Call Trace: [] __dump_stack lib/dump_stack.c:15 [inline] [] dump_stack+0xc1/0x128 lib/dump_stack.c:51 [] warn_alloc+0x212/0x240 mm/page_alloc.c:3056 [] __vmalloc_node_range+0x3f5/0x5f0 mm/vmalloc.c:1722 [] __vmalloc_node mm/vmalloc.c:1744 [inline] [] __vmalloc_node_flags mm/vmalloc.c:1758 [inline] [] vmalloc+0x5b/0x70 mm/vmalloc.c:1773 [] xt_alloc_entry_offsets+0x41/0x60 net/netfilter/x_tables.c:722 [] translate_table+0x2da/0x1cd0 net/ipv4/netfilter/arp_tables.c:549 [] ? 0xffffffff810002b8 [] do_replace net/ipv4/netfilter/arp_tables.c:986 [inline] [] do_arpt_set_ctl+0x2b7/0x650 net/ipv4/netfilter/arp_tables.c:1465 [] nf_sockopt net/netfilter/nf_sockopt.c:105 [inline] [] nf_setsockopt+0x67/0xc0 net/netfilter/nf_sockopt.c:114 [] ip_setsockopt+0xa1/0xb0 net/ipv4/ip_sockglue.c:1248 [] tcp_setsockopt+0x82/0xd0 net/ipv4/tcp.c:2740 [] sock_common_setsockopt+0x95/0xd0 net/core/sock.c:2706 [] SYSC_setsockopt net/socket.c:1772 [inline] [] SyS_setsockopt+0x160/0x250 net/socket.c:1751 [] entry_SYSCALL_64_fastpath+0x29/0xe8 Mem-Info: active_anon:59431 inactive_anon:44 isolated_anon:0 active_file:3903 inactive_file:8675 isolated_file:0 unevictable:0 dirty:60 writeback:0 unstable:0 slab_reclaimable:7196 slab_unreclaimable:61448 mapped:24085 shmem:51 pagetables:665 bounce:0 free:1465612 free_pcp:378 free_cma:0 Node 0 active_anon:229472kB inactive_anon:176kB active_file:15612kB inactive_file:34700kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:96340kB dirty:240kB writeback:0kB shmem:204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 79872kB writeback_tmp:0kB unstable:0kB pages_scanned:0 all_unreclaimable? no DMA free:15908kB min:160kB low:200kB high:240kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB slab_reclaimable:0kB slab_unreclaimable:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB lowmem_reserve[]: 0 2908 6410 6410 DMA32 free:2980084kB min:30592kB low:38240kB high:45888kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2980720kB mlocked:0kB slab_reclaimable:0kB slab_unreclaimable:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:636kB local_pcp:0kB free_cma:0kB lowmem_reserve[]: 0 0 3501 3501 Normal free:2858244kB min:36824kB low:46028kB high:55232kB active_anon:246080kB inactive_anon:176kB active_file:15612kB inactive_file:34700kB unevictable:0kB writepending:240kB present:4718592kB managed:3585212kB mlocked:0kB slab_reclaimable:28784kB slab_unreclaimable:245988kB kernel_stack:6144kB pagetables:2808kB bounce:0kB free_pcp:856kB local_pcp:296kB free_cma:0kB lowmem_reserve[]: 0 0 0 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB DMA32: 3*4kB (M) 5*8kB (M) 4*16kB (M) 2*32kB (M) 3*64kB (M) 3*128kB (M) 2*256kB (M) 4*512kB (M) 1*1024kB (M) 1*2048kB (M) 726*4096kB (M) = 2980084kB Normal: 1239*4kB (UME) 444*8kB (UME) 263*16kB (UME) 80*32kB (UME) 47*64kB (UME) 30*128kB (UM) 5*256kB (UM) 2*512kB (ME) 2*1024kB (ME) 6*2048kB (ME) 693*4096kB (M) = 2877292kB Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 12628 total pagecache pages 0 pages in swap cache Swap cache stats: add 0, delete 0, find 0/0 Free swap = 0kB Total swap = 0kB 1965969 pages RAM 0 pages HighMem/MovableOnly 320509 pages reserved syz-executor2: vmalloc: allocation failure: 15157949456 bytes, mode:0x24000c2(GFP_KERNEL|__GFP_HIGHMEM) CPU: 0 PID: 13502 Comm: syz-executor2 Not tainted 4.9.80-g20c8a00 #30 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 ffff8801d7def880 ffffffff81d94b69 1ffff1003afbdf13 ffff8801b0180000 ffffffff83ab8ea0 0000000000000001 0000000000400000 ffff8801d7def990 ffffffff81451ca2 024000c200000003 0000000041b58ab3 ffffffff84195215 Call Trace: [] __dump_stack lib/dump_stack.c:15 [inline] [] dump_stack+0xc1/0x128 lib/dump_stack.c:51 [] warn_alloc+0x212/0x240 mm/page_alloc.c:3056 [] __vmalloc_node_range+0x3f5/0x5f0 mm/vmalloc.c:1722 [] __vmalloc_node mm/vmalloc.c:1744 [inline] [] __vmalloc_node_flags mm/vmalloc.c:1758 [inline] [] vmalloc+0x5b/0x70 mm/vmalloc.c:1773 [] xt_alloc_entry_offsets+0x41/0x60 net/netfilter/x_tables.c:722 [] translate_table+0x2da/0x1cd0 net/ipv4/netfilter/arp_tables.c:549 [] ? 0xffffffff810002b8 [] do_replace net/ipv4/netfilter/arp_tables.c:986 [inline] [] do_arpt_set_ctl+0x2b7/0x650 net/ipv4/netfilter/arp_tables.c:1465 [] nf_sockopt net/netfilter/nf_sockopt.c:105 [inline] [] nf_setsockopt+0x67/0xc0 net/netfilter/nf_sockopt.c:114 [] ip_setsockopt+0xa1/0xb0 net/ipv4/ip_sockglue.c:1248 [] tcp_setsockopt+0x82/0xd0 net/ipv4/tcp.c:2740 [] sock_common_setsockopt+0x95/0xd0 net/core/sock.c:2706 [] SYSC_setsockopt net/socket.c:1772 [inline] [] SyS_setsockopt+0x160/0x250 net/socket.c:1751 [] entry_SYSCALL_64_fastpath+0x29/0xe8 Mem-Info: active_anon:56824 inactive_anon:44 isolated_anon:0 active_file:3903 inactive_file:8680 isolated_file:0 unevictable:0 dirty:76 writeback:0 unstable:0 slab_reclaimable:7186 slab_unreclaimable:61395 mapped:24077 shmem:51 pagetables:636 bounce:0 free:1468467 free_pcp:388 free_cma:0 Node 0 active_anon:227296kB inactive_anon:176kB active_file:15612kB inactive_file:34720kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:96308kB dirty:304kB writeback:0kB shmem:204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 92160kB writeback_tmp:0kB unstable:0kB pages_scanned:0 all_unreclaimable? no DMA free:15908kB min:160kB low:200kB high:240kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB slab_reclaimable:0kB slab_unreclaimable:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB lowmem_reserve[]: 0 2908 6410 6410 DMA32 free:2980084kB min:30592kB low:38240kB high:45888kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2980720kB mlocked:0kB slab_reclaimable:0kB slab_unreclaimable:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:636kB local_pcp:0kB free_cma:0kB lowmem_reserve[]: 0 0 3501 3501 Normal free:2877876kB min:36824kB low:46028kB high:55232kB active_anon:227296kB inactive_anon:176kB active_file:15612kB inactive_file:34720kB unevictable:0kB writepending:312kB present:4718592kB managed:3585212kB mlocked:0kB slab_reclaimable:28744kB slab_unreclaimable:245580kB kernel_stack:5792kB pagetables:2544kB bounce:0kB free_pcp:908kB local_pcp:280kB free_cma:0kB lowmem_reserve[]: 0 0 0 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB DMA32: 3*4kB (M) 5*8kB (M) 4*16kB (M) 2*32kB (M) 3*64kB (M) 3*128kB (M) 2*256kB (M) 4*512kB (M) 1*1024kB (M) 1*2048kB (M) 726*4096kB (M) = 2980084kB Normal: 1239*4kB (UME) 445*8kB (UME) 263*16kB (UME) 96*32kB (UME) 48*64kB (UME) 30*128kB (UM) 5*256kB (UM) 2*512kB (ME) 2*1024kB (ME) 6*2048kB (ME) 693*4096kB (M) = 2877876kB Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 12640 total pagecache pages 0 pages in swap cache Swap cache stats: add 0, delete 0, find 0/0 Free swap = 0kB Total swap = 0kB 1965969 pages RAM 0 pages HighMem/MovableOnly 320509 pages reserved device lo entered promiscuous mode binder: 13754:13759 ERROR: BC_REGISTER_LOOPER called without request binder: 13754:13759 got reply transaction with no transaction stack binder: 13754:13759 transaction failed 29201/-71, size 24-16 line 2920 binder: 13754:13759 ERROR: BC_REGISTER_LOOPER called without request binder: undelivered TRANSACTION_COMPLETE binder: undelivered TRANSACTION_ERROR: 29201 device syz7 entered promiscuous mode audit: type=1400 audit(1518083440.886:88): avc: denied { setopt } for pid=13787 comm="syz-executor6" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 device syz7 left promiscuous mode IPVS: set_ctl: invalid protocol: 65286 0.0.0.0:60696 FAULT_FLAG_ALLOW_RETRY missing 30 CPU: 1 PID: 13855 Comm: syz-executor4 Not tainted 4.9.80-g20c8a00 #30 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 ffff8801d50a75d0 ffffffff81d94b69 ffff8801d50a78b0 0000000000000000 ffff8801b78e6e90 ffff8801d50a77a0 ffff8801b78e6d80 ffff8801d50a77c8 ffffffff816624ba[ 72.740949] audit: type=1400 audit(1518083441.096:89): avc: denied { dyntransition } for pid=13866 comm="syz-executor3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0 tclass=process permissive=1 0000000000007be1 ffff8801d82a68f0 ffff8801d82a68a0 [] __dump_stack lib/dump_stack.c:15 [inline] [] dump_stack+0xc1/0x128 lib/dump_stack.c:51 [] handle_userfault+0xa3a/0x1310 fs/userfaultfd.c:323 [] do_anonymous_page mm/memory.c:2747 [inline] [] handle_pte_fault mm/memory.c:3488 [inline] [] __handle_mm_fault mm/memory.c:3577 [inline] [] handle_mm_fault+0x1fd1/0x2530 mm/memory.c:3614 [] __do_page_fault+0x5c2/0xd40 arch/x86/mm/fault.c:1407 [] do_page_fault+0x27/0x30 arch/x86/mm/fault.c:1470 [] page_fault+0x28/0x30 arch/x86/entry/entry_64.S:1055 [] vfs_ioctl fs/ioctl.c:43 [inline] [] do_vfs_ioctl+0x1aa/0x1140 fs/ioctl.c:679 [] SYSC_ioctl fs/ioctl.c:694 [inline] [] SyS_ioctl+0x8f/0xc0 fs/ioctl.c:685 [] entry_SYSCALL_64_fastpath+0x29/0xe8 device gre0 entered promiscuous mode binder: 14041:14043 ioctl 40046205 0 returned -22 binder: 14041:14043 got transaction to invalid handle binder: 14041:14043 transaction failed 29201/-22, size 72-16 line 3004 binder: 14041:14056 ioctl 40046205 0 returned -22 binder: 14041:14043 got transaction to invalid handle binder: 14041:14043 transaction failed 29201/-22, size 72-16 line 3004 TCP: request_sock_TCP: Possible SYN flooding on port 20006. Sending cookies. Check SNMP counters. binder: 14260:14276 got reply transaction with no transaction stack binder: 14260:14276 transaction failed 29201/-71, size 0-0 line 2920 binder: release 14260:14262 transaction 126 out, still active binder: undelivered TRANSACTION_ERROR: 29201 binder: 14260:14276 got reply transaction with no transaction stack binder: 14260:14276 transaction failed 29201/-71, size 0-0 line 2920 binder_alloc: 14260: binder_alloc_buf, no vma binder: 14260:14262 transaction failed 29189/-3, size 0-0 line 3127 binder: send failed reply for transaction 126, target dead binder: undelivered TRANSACTION_ERROR: 29201 binder: 14388:14389 ERROR: BC_REGISTER_LOOPER called without request binder_alloc: binder_alloc_mmap_handler: 14388 20000000-20002000 already mapped failed -16 binder: BINDER_SET_CONTEXT_MGR already set binder_alloc: 14388: binder_alloc_buf, no vma binder: 14388:14408 ERROR: BC_REGISTER_LOOPER called without request binder: 14388:14389 ioctl 40046207 0 returned -16 binder: 14388:14399 transaction failed 29189/-3, size 0-0 line 3127 binder: undelivered TRANSACTION_ERROR: 29189 binder: undelivered transaction 132, process died. binder: BINDER_SET_CONTEXT_MGR already set binder_alloc: 14567: binder_alloc_buf, no vma binder: 14567:14582 transaction failed 29189/-3, size 0-0 line 3127 binder: 14567:14570 ioctl 40046207 0 returned -16 binder: 14567:14604 BC_FREE_BUFFER u0000000020dbd000 no match device gre0 entered promiscuous mode binder: undelivered TRANSACTION_ERROR: 29189 binder: release 14567:14570 transaction 135 in, still active binder: send failed reply for transaction 135 to 14567:14582 binder: undelivered TRANSACTION_COMPLETE binder: undelivered TRANSACTION_ERROR: 29189 binder: 14674:14683 unknown command 536907575 binder: 14674:14691 BC_CLEAR_DEATH_NOTIFICATION death notification not active binder: 14674:14683 ioctl c0306201 20008fd0 returned -22 binder: undelivered death notification, 0000000000000000 dummy0: renamed from gre0 audit: type=1400 audit(1518083445.486:90): avc: denied { create } for pid=14845 comm="syz-executor0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_rdma_socket permissive=1 FAULT_FLAG_ALLOW_RETRY missing 30 FAULT_FLAG_ALLOW_RETRY missing 30 CPU: 1 PID: 14851 Comm: syz-executor1 Not tainted 4.9.80-g20c8a00 #30 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 ffff8801b2137850 ffffffff81d94b69 ffff8801b2137b30 0000000000000000 ffff8801b78e7d90 ffff8801b2137a20 ffff8801b78e7c80 ffff8801b2137a48 ffffffff816624ba 0000000000007be1 ffff8801cf2a08f0 ffff8801cf2a08a0 Call Trace: [] __dump_stack lib/dump_stack.c:15 [inline] [] dump_stack+0xc1/0x128 lib/dump_stack.c:51 [] handle_userfault+0xa3a/0x1310 fs/userfaultfd.c:323 [] do_anonymous_page mm/memory.c:2747 [inline] [] handle_pte_fault mm/memory.c:3488 [inline] [] __handle_mm_fault mm/memory.c:3577 [inline] [] handle_mm_fault+0x1fd1/0x2530 mm/memory.c:3614 [] __do_page_fault+0x5c2/0xd40 arch/x86/mm/fault.c:1407 [] do_page_fault+0x27/0x30 arch/x86/mm/fault.c:1470 [] page_fault+0x28/0x30 arch/x86/entry/entry_64.S:1055 [] getname_flags+0x10e/0x580 fs/namei.c:148 [] getname+0x19/0x20 fs/namei.c:208 [] do_sys_open+0x22d/0x620 fs/open.c:1066 [] SYSC_open fs/open.c:1090 [inline] [] SyS_open fs/open.c:1085 [inline] [] SYSC_creat fs/open.c:1110 [inline] [] SyS_creat+0x27/0x30 fs/open.c:1108 [] entry_SYSCALL_64_fastpath+0x29/0xe8 IPv4: Oversized IP packet from 127.0.0.1 CPU: 0 PID: 14857 Comm: syz-executor1 Not tainted 4.9.80-g20c8a00 #30 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 ffff8801d30075d0 ffffffff81d94b69 ffff8801d30078b0 0000000000000000 ffff8801b78e7d90 ffff8801d30077a0 ffff8801b78e7c80 ffff8801d30077c8 ffffffff816624ba 0000000000007be1 ffff8801d4ffd0f0 ffff8801d4ffd0a0 Call Trace: [] __dump_stack lib/dump_stack.c:15 [inline] [] dump_stack+0xc1/0x128 lib/dump_stack.c:51 [] handle_userfault+0xa3a/0x1310 fs/userfaultfd.c:323 [] do_anonymous_page mm/memory.c:2747 [inline] [] handle_pte_fault mm/memory.c:3488 [inline] [] __handle_mm_fault mm/memory.c:3577 [inline] [] handle_mm_fault+0x1fd1/0x2530 mm/memory.c:3614 [] __do_page_fault+0x5c2/0xd40 arch/x86/mm/fault.c:1407 [] do_page_fault+0x27/0x30 arch/x86/mm/fault.c:1470 [] page_fault+0x28/0x30 arch/x86/entry/entry_64.S:1055 [] vfs_ioctl fs/ioctl.c:43 [inline] [] do_vfs_ioctl+0x1aa/0x1140 fs/ioctl.c:679 [] SYSC_ioctl fs/ioctl.c:694 [inline] [] SyS_ioctl+0x8f/0xc0 fs/ioctl.c:685 [] entry_SYSCALL_64_fastpath+0x29/0xe8 FAULT_FLAG_ALLOW_RETRY missing 30 CPU: 1 PID: 14857 Comm: syz-executor1 Not tainted 4.9.80-g20c8a00 #30 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 ffff8801d3007850 ffffffff81d94b69 ffff8801d3007b30 0000000000000000 ffff8801b8d01c10 ffff8801d3007a20 ffff8801b8d01b00 ffff8801d3007a48 ffffffff816624ba 0000000000007be1 ffff8801d4ffd0f0 ffff8801d4ffd0a0 Call Trace: [] __dump_stack lib/dump_stack.c:15 [inline] [] dump_stack+0xc1/0x128 lib/dump_stack.c:51 [] handle_userfault+0xa3a/0x1310 fs/userfaultfd.c:323 [] do_anonymous_page mm/memory.c:2747 [inline] [] handle_pte_fault mm/memory.c:3488 [inline] [] __handle_mm_fault mm/memory.c:3577 [inline] [] handle_mm_fault+0x1fd1/0x2530 mm/memory.c:3614 [] __do_page_fault+0x5c2/0xd40 arch/x86/mm/fault.c:1407 [] do_page_fault+0x27/0x30 arch/x86/mm/fault.c:1470 [] page_fault+0x28/0x30 arch/x86/entry/entry_64.S:1055 [] getname_flags+0x10e/0x580 fs/namei.c:148 [] getname+0x19/0x20 fs/namei.c:208 [] do_sys_open+0x22d/0x620 fs/open.c:1066 [] SYSC_open fs/open.c:1090 [inline] [] SyS_open fs/open.c:1085 [inline] [] SYSC_creat fs/open.c:1110 [inline] [] SyS_creat+0x27/0x30 fs/open.c:1108 [] entry_SYSCALL_64_fastpath+0x29/0xe8 binder: BINDER_SET_CONTEXT_MGR already set binder: 14974:14983 ioctl 40046207 0 returned -16 binder_alloc: 14974: binder_alloc_buf, no vma binder: 14974:14983 transaction failed 29189/-3, size 0-0 line 3127 binder: undelivered TRANSACTION_ERROR: 29189 binder: release 14974:14977 transaction 142 out, still active binder: undelivered TRANSACTION_COMPLETE binder: send failed reply for transaction 142, target dead audit: type=1400 audit(1518083446.776:91): avc: denied { create } for pid=15061 comm="syz-executor3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_connector_socket permissive=1 device syz4 entered promiscuous mode IPv6: ADDRCONF(NETDEV_CHANGE): gre0: link becomes ready IPv6: ADDRCONF(NETDEV_CHANGE): gre0: link becomes ready device syz4 left promiscuous mode syz-executor7: vmalloc: allocation failure: 15157949456 bytes, mode:0x24000c2(GFP_KERNEL|__GFP_HIGHMEM) audit: type=1400 audit(1518083447.296:92): avc: denied { getopt } for pid=15182 comm="syz-executor3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(1518083447.296:93): avc: denied { ioctl } for pid=15182 comm="syz-executor3" path="socket:[29943]" dev="sockfs" ino=29943 ioctlcmd=0x8904 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(1518083447.306:94): avc: denied { listen } for pid=15182 comm="syz-executor3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 CPU: 0 PID: 15189 Comm: syz-executor7 Not tainted 4.9.80-g20c8a00 #30 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 ffff8801ada4f880 ffffffff81d94b69 1ffff10035b49f13 ffff8801ce756000 ffffffff83ab8ea0 0000000000000001 0000000000400000 ffff8801ada4f990 ffffffff81451ca2 024000c200000003 0000000041b58ab3 ffffffff84195215 Call Trace: [] __dump_stack lib/dump_stack.c:15 [inline] [] dump_stack+0xc1/0x128 lib/dump_stack.c:51 [] warn_alloc+0x212/0x240 mm/page_alloc.c:3056 [] __vmalloc_node_range+0x3f5/0x5f0 mm/vmalloc.c:1722 [] __vmalloc_node mm/vmalloc.c:1744 [inline] [] __vmalloc_node_flags mm/vmalloc.c:1758 [inline] [] vmalloc+0x5b/0x70 mm/vmalloc.c:1773 [] xt_alloc_entry_offsets+0x41/0x60 net/netfilter/x_tables.c:722 [] translate_table+0x2da/0x1cd0 net/ipv4/netfilter/arp_tables.c:549 [] ? 0xffffffff810002b8 [] do_replace net/ipv4/netfilter/arp_tables.c:986 [inline] [] do_arpt_set_ctl+0x2b7/0x650 net/ipv4/netfilter/arp_tables.c:1465 [] nf_sockopt net/netfilter/nf_sockopt.c:105 [inline] [] nf_setsockopt+0x67/0xc0 net/netfilter/nf_sockopt.c:114 [] ip_setsockopt+0xa1/0xb0 net/ipv4/ip_sockglue.c:1248 [] tcp_setsockopt+0x82/0xd0 net/ipv4/tcp.c:2740 [] sock_common_setsockopt+0x95/0xd0 net/core/sock.c:2706 [] SYSC_setsockopt net/socket.c:1772 [inline] [] SyS_setsockopt+0x160/0x250 net/socket.c:1751 [] entry_SYSCALL_64_fastpath+0x29/0xe8 Mem-Info: syz-executor7: vmalloc: allocation failure: 15157949456 bytes, mode:0x24000c2(GFP_KERNEL|__GFP_HIGHMEM) CPU: 1 PID: 15209 Comm: syz-executor7 Not tainted 4.9.80-g20c8a00 #30 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 ffff8801b1e4f880 ffffffff81d94b69 1ffff100363c9f13 ffff8801cefa6000 ffffffff83ab8ea0 0000000000000001 0000000000400000 ffff8801b1e4f990 ffffffff81451ca2 024000c200000003 0000000041b58ab3 ffffffff84195215 Call Trace: [] __dump_stack lib/dump_stack.c:15 [inline] [] dump_stack+0xc1/0x128 lib/dump_stack.c:51 [] warn_alloc+0x212/0x240 mm/page_alloc.c:3056 [] __vmalloc_node_range+0x3f5/0x5f0 mm/vmalloc.c:1722 [] __vmalloc_node mm/vmalloc.c:1744 [inline] [] __vmalloc_node_flags mm/vmalloc.c:1758 [inline] [] vmalloc+0x5b/0x70 mm/vmalloc.c:1773 [] xt_alloc_entry_offsets+0x41/0x60 net/netfilter/x_tables.c:722 [] translate_table+0x2da/0x1cd0 net/ipv4/netfilter/arp_tables.c:549 [] ? 0xffffffff810002b8 [] do_replace net/ipv4/netfilter/arp_tables.c:986 [inline] [] do_arpt_set_ctl+0x2b7/0x650 net/ipv4/netfilter/arp_tables.c:1465 [] nf_sockopt net/netfilter/nf_sockopt.c:105 [inline] [] nf_setsockopt+0x67/0xc0 net/netfilter/nf_sockopt.c:114 [] ip_setsockopt+0xa1/0xb0 net/ipv4/ip_sockglue.c:1248 [] tcp_setsockopt+0x82/0xd0 net/ipv4/tcp.c:2740 [] sock_common_setsockopt+0x95/0xd0 net/core/sock.c:2706 [] SYSC_setsockopt net/socket.c:1772 [inline] [] SyS_setsockopt+0x160/0x250 net/socket.c:1751 [] entry_SYSCALL_64_fastpath+0x29/0xe8 Mem-Info: active_anon:55285 inactive_anon:42 isolated_anon:0 active_file:3940 inactive_file:8670 isolated_file:0 unevictable:0 dirty:143 writeback:0 unstable:0 slab_reclaimable:7163 slab_unreclaimable:61251 mapped:24090 shmem:49 pagetables:619 bounce:0 free:1469974 free_pcp:412 free_cma:0 Node 0 active_anon:221140kB inactive_anon:168kB active_file:15760kB inactive_file:34680kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:96360kB dirty:572kB writeback:0kB shmem:196kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 77824kB writeback_tmp:0kB unstable:0kB pages_scanned:0 all_unreclaimable? no DMA free:15908kB min:160kB low:200kB high:240kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB slab_reclaimable:0kB slab_unreclaimable:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB DMA32 free:2980084kB min:30592kB low:38240kB high:45888kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2980720kB mlocked:0kB slab_reclaimable:0kB slab_unreclaimable:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:636kB local_pcp:0kB free_cma:0kB Normal free:2883904kB min:36824kB low:46028kB high:55232kB active_anon:221140kB inactive_anon:168kB active_file:15760kB inactive_file:34680kB unevictable:0kB writepending:572kB present:4718592kB managed:3585212kB mlocked:0kB slab_reclaimable:28652kB slab_unreclaimable:245004kB kernel_stack:5920kB pagetables:2476kB bounce:0kB free_pcp:1012kB local_pcp:644kB free_cma:0kB DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 12662 total pagecache pages 0 pages in swap cache Swap cache stats: add 0, delete 0, find 0/0 Free swap = 0kB Total swap = 0kB 1965969 pages RAM 0 pages HighMem/MovableOnly 320509 pages reserved active_anon:56326 inactive_anon:42 isolated_anon:0 active_file:3940 inactive_file:8670 isolated_file:0 unevictable:0 dirty:143 writeback:0 unstable:0 slab_reclaimable:7163 slab_unreclaimable:61199 mapped:24092 shmem:49 pagetables:638 bounce:0 free:1469024 free_pcp:420 free_cma:0 Node 0 active_anon:225304kB inactive_anon:168kB active_file:15760kB inactive_file:34680kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:96368kB dirty:572kB writeback:0kB shmem:196kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 90112kB writeback_tmp:0kB unstable:0kB pages_scanned:0 all_unreclaimable? no DMA free:15908kB min:160kB low:200kB high:240kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB slab_reclaimable:0kB slab_unreclaimable:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB lowmem_reserve[]: 0 2908 6410 6410 DMA32 free:2980084kB min:30592kB low:38240kB high:45888kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2980720kB mlocked:0kB slab_reclaimable:0kB slab_unreclaimable:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:636kB local_pcp:0kB free_cma:0kB lowmem_reserve[]: 0 0 3501 3501 Normal free:2880104kB min:36824kB low:46028kB high:55232kB active_anon:225304kB inactive_anon:168kB active_file:15760kB inactive_file:34680kB unevictable:0kB writepending:572kB present:4718592kB managed:3585212kB mlocked:0kB slab_reclaimable:28652kB slab_unreclaimable:244796kB kernel_stack:5728kB pagetables:2552kB bounce:0kB free_pcp:1000kB local_pcp:684kB free_cma:0kB lowmem_reserve[]: 0 0 0 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB DMA32: 3*4kB (M) 5*8kB (M) 4*16kB (M) 2*32kB (M) 3*64kB (M) 3*128kB (M) 2*256kB (M) 4*512kB (M) 1*1024kB (M) 1*2048kB (M) 726*4096kB (M) = 2980084kB Normal: 1084*4kB (UME) 639*8kB (UME) 290*16kB (UME) 92*32kB (UME) 63*64kB (UME) 26*128kB (UM) 5*256kB (UM) 3*512kB (ME) 2*1024kB (UE) 4*2048kB (UME) 694*4096kB (M) = 2880072kB Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 12662 total pagecache pages 0 pages in swap cache Swap cache stats: add 0, delete 0, find 0/0 Free swap = 0kB Total swap = 0kB 1965969 pages RAM 0 pages HighMem/MovableOnly 320509 pages reserved