[ 42.621738] audit: type=1800 audit(1549951475.754:29): pid=7912 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 42.642413] audit: type=1800 audit(1549951475.754:30): pid=7912 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.10.27' (ECDSA) to the list of known hosts. syzkaller login: [ 88.052264] kauditd_printk_skb: 5 callbacks suppressed [ 88.052280] audit: type=1400 audit(1549951521.184:36): avc: denied { map } for pid=8096 comm="syz-execprog" path="/root/syz-execprog" dev="sda1" ino=16482 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 2019/02/12 06:05:21 parsed 1 programs [ 88.854232] audit: type=1400 audit(1549951521.984:37): avc: denied { map } for pid=8096 comm="syz-execprog" path="/sys/kernel/debug/kcov" dev="debugfs" ino=65 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:debugfs_t:s0 tclass=file permissive=1 2019/02/12 06:05:23 executed programs: 0 [ 90.514936] IPVS: ftp: loaded support on port[0] = 21 [ 90.574116] chnl_net:caif_netlink_parms(): no params data found [ 90.607530] bridge0: port 1(bridge_slave_0) entered blocking state [ 90.614282] bridge0: port 1(bridge_slave_0) entered disabled state [ 90.621681] device bridge_slave_0 entered promiscuous mode [ 90.629512] bridge0: port 2(bridge_slave_1) entered blocking state [ 90.635901] bridge0: port 2(bridge_slave_1) entered disabled state [ 90.643163] device bridge_slave_1 entered promiscuous mode [ 90.659465] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 90.668500] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 90.685789] team0: Port device team_slave_0 added [ 90.692423] team0: Port device team_slave_1 added [ 90.759111] device hsr_slave_0 entered promiscuous mode [ 90.809088] device hsr_slave_1 entered promiscuous mode [ 90.876337] bridge0: port 2(bridge_slave_1) entered blocking state [ 90.882903] bridge0: port 2(bridge_slave_1) entered forwarding state [ 90.890220] bridge0: port 1(bridge_slave_0) entered blocking state [ 90.896576] bridge0: port 1(bridge_slave_0) entered forwarding state [ 90.929524] 8021q: adding VLAN 0 to HW filter on device bond0 [ 90.940257] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 90.950919] bridge0: port 1(bridge_slave_0) entered disabled state [ 90.959324] bridge0: port 2(bridge_slave_1) entered disabled state [ 90.967946] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 90.978926] 8021q: adding VLAN 0 to HW filter on device team0 [ 90.988333] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 90.996006] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.002420] bridge0: port 1(bridge_slave_0) entered forwarding state [ 91.011830] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 91.019768] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.026103] bridge0: port 2(bridge_slave_1) entered forwarding state [ 91.049117] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 91.058216] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 91.066059] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 91.074154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 91.082233] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 91.091197] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 91.108741] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 91.119837] audit: type=1400 audit(1549951524.254:38): avc: denied { associate } for pid=8112 comm="syz-executor.0" name="syz0" scontext=unconfined_u:object_r:unlabeled_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=filesystem permissive=1 [ 91.173165] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details. [ 91.272471] hrtimer: interrupt took 44468 ns 2019/02/12 06:05:28 executed programs: 40 2019/02/12 06:05:33 executed programs: 92 2019/02/12 06:05:38 executed programs: 148 2019/02/12 06:05:43 executed programs: 204 2019/02/12 06:05:48 executed programs: 259 2019/02/12 06:05:53 executed programs: 314 2019/02/12 06:05:58 executed programs: 369 2019/02/12 06:06:04 executed programs: 423 2019/02/12 06:06:09 executed programs: 476 2019/02/12 06:06:14 executed programs: 528 [ 141.650515] kasan: CONFIG_KASAN_INLINE enabled [ 141.656692] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 141.665579] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 141.671856] CPU: 0 PID: 10789 Comm: syz-executor.0 Not tainted 5.0.0-rc6+ #68 [ 141.679541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 141.688936] RIP: 0010:__dentry_path+0x49e/0x7c0 [ 141.693634] Code: 89 fc 41 83 e4 01 44 89 e6 e8 7e e7 b2 ff 45 84 e4 0f 85 04 02 00 00 e8 30 e6 b2 ff 48 8b 85 18 ff ff ff 44 89 bd 40 ff ff ff <80> 38 00 0f 85 f9 02 00 00 48 8b 85 38 ff ff ff 41 83 e7 01 44 89 [ 141.712647] RSP: 0018:ffff8880958efad0 EFLAGS: 00010293 [ 141.718202] RAX: dffffc0000000005 RBX: 0000000000000000 RCX: ffffffff81bcfae2 [ 141.725545] RDX: 0000000000000000 RSI: ffffffff81bcfaf0 RDI: 0000000000000001 [ 141.732837] RBP: ffff8880958efbc0 R08: ffff8880814c8200 R09: 0000000000000000 [ 141.740128] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 141.747418] R13: ffff8880958efb98 R14: ffff8880992534fe R15: 000000000000334e [ 141.754718] FS: 00007f8ed19bd700(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000 [ 141.763053] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 141.768956] CR2: 00007fe2223fb000 CR3: 00000000a3ab3000 CR4: 00000000001426f0 [ 141.776275] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 141.783560] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 141.790860] Call Trace: [ 141.793476] ? simple_dname+0x1f0/0x1f0 [ 141.797471] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 141.802942] ? kmem_cache_alloc_trace+0x354/0x760 [ 141.807806] dentry_path_raw+0x26/0x30 [ 141.811715] kvm_uevent_notify_change.part.0+0x213/0x440 [ 141.817194] kvm_dev_ioctl+0x1132/0x1750 [ 141.821327] ? kvm_debugfs_release+0x90/0x90 [ 141.825753] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 141.830517] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 141.835356] ? kvm_debugfs_release+0x90/0x90 [ 141.839777] do_vfs_ioctl+0xd6e/0x1390 [ 141.843689] ? ioctl_preallocate+0x210/0x210 [ 141.848112] ? retint_kernel+0x2d/0x2d [ 141.852082] ? __sanitizer_cov_trace_const_cmp4+0x1/0x20 [ 141.857552] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 141.863110] ? security_file_ioctl+0x93/0xc0 [ 141.867586] ksys_ioctl+0xab/0xd0 [ 141.871102] __x64_sys_ioctl+0x73/0xb0 [ 141.875023] do_syscall_64+0x103/0x610 [ 141.878923] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 141.884121] RIP: 0033:0x457e39 [ 141.887323] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 141.906245] RSP: 002b:00007f8ed19bcc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 141.913974] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457e39 [ 141.921279] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000007 [ 141.928562] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 141.935845] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8ed19bd6d4 [ 141.943127] R13: 00000000004c0950 R14: 00000000004d2698 R15: 00000000ffffffff [ 141.950418] Modules linked in: [ 141.954522] ---[ end trace c6f938f9cd1627e8 ]--- [ 141.959832] RIP: 0010:__dentry_path+0x49e/0x7c0 [ 141.964808] Code: 89 fc 41 83 e4 01 44 89 e6 e8 7e e7 b2 ff 45 84 e4 0f 85 04 02 00 00 e8 30 e6 b2 ff 48 8b 85 18 ff ff ff 44 89 bd 40 ff ff ff <80> 38 00 0f 85 f9 02 00 00 48 8b 85 38 ff ff ff 41 83 e7 01 44 89 [ 141.984916] RSP: 0018:ffff8880958efad0 EFLAGS: 00010293 [ 141.990504] RAX: dffffc0000000005 RBX: 0000000000000000 RCX: ffffffff81bcfae2 [ 141.998838] RDX: 0000000000000000 RSI: ffffffff81bcfaf0 RDI: 0000000000000001 [ 142.006269] RBP: ffff8880958efbc0 R08: ffff8880814c8200 R09: 0000000000000000 [ 142.013741] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 142.021146] R13: ffff8880958efb98 R14: ffff8880992534fe R15: 000000000000334e [ 142.028472] FS: 00007f8ed19bd700(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 [ 142.036710] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 142.042649] CR2: 00007fe2223fc000 CR3: 00000000a3ab3000 CR4: 00000000001426e0 [ 142.049973] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 142.057320] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 142.064607] Kernel panic - not syncing: Fatal exception [ 142.071237] Kernel Offset: disabled [ 142.074874] Rebooting in 86400 seconds..