[....] Starting enhanced syslogd: rsyslogd[ 13.242048] audit: type=1400 audit(1522102445.016:4): avc: denied { syslog } for pid=3651 comm="rsyslogd" capability=34 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.16' (ECDSA) to the list of known hosts. 2018/03/26 22:15:07 parsed 1 programs 2018/03/26 22:15:07 executed programs: 0 syzkaller login: [ 75.509327] IPVS: Creating netns size=2536 id=1 [ 75.525193] audit: type=1400 audit(1522102507.296:5): avc: denied { associate } for pid=3849 comm="syz-executor0" name="syz0" scontext=unconfined_u:object_r:unlabeled_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=filesystem permissive=1 [ 75.559999] IPVS: Creating netns size=2536 id=2 [ 75.581925] IPVS: Creating netns size=2536 id=3 [ 75.614059] IPVS: Creating netns size=2536 id=4 [ 75.634930] IPVS: Creating netns size=2536 id=5 [ 75.665660] IPVS: Creating netns size=2536 id=6 [ 75.687275] IPVS: Creating netns size=2536 id=7 [ 75.712083] IPVS: Creating netns size=2536 id=8 2018/03/26 22:15:12 executed programs: 1492 2018/03/26 22:15:17 executed programs: 2792 2018/03/26 22:15:22 executed programs: 4124 2018/03/26 22:15:27 executed programs: 5445 2018/03/26 22:15:32 executed programs: 6788 2018/03/26 22:15:37 executed programs: 8086 2018/03/26 22:15:42 executed programs: 9373 INIT: Id "1" respawning too fast: disabled for 5 minutes INIT: Id "2" respawning too fast: disabled for 5 minutes INIT: Id "3" respawning too fast: disabled for 5 minutes INIT: Id "6" respawning too fast: disabled for 5 minutes INIT: Id "5" respawning too fast: disabled for 5 minutes INIT: Id "4" respawning too fast: disabled for 5 minutes 2018/03/26 22:15:47 executed programs: 10685 2018/03/26 22:15:52 executed programs: 12009 2018/03/26 22:15:57 executed programs: 13345 2018/03/26 22:16:02 executed programs: 14631 [ 135.015564] ================================================================== [ 135.022974] BUG: KASAN: out-of-bounds in __unwind_start+0x3a7/0x3c0 [ 135.029366] Read of size 8 at addr ffff8801b5c97870 by task syz-executor7/3241 [ 135.036707] [ 135.038325] CPU: 0 PID: 3241 Comm: syz-executor7 Not tainted 4.9.90-gdd1e37e #66 [ 135.045848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 135.055181] ffff8801d92b78a8 ffffffff81d94ee9 ffffea0006d725c0 ffff8801b5c97870 [ 135.063156] 0000000000000000 ffff8801b5c97878 ffff8801d92b79d8 ffff8801d92b78e0 [ 135.071128] ffffffff8153d3b3 ffff8801b5c97870 0000000000000008 0000000000000000 [ 135.079107] Call Trace: [ 135.081671] [] dump_stack+0xc1/0x128 [ 135.087010] [] print_address_description+0x73/0x280 [ 135.093645] [] kasan_report+0x255/0x380 [ 135.099239] [] ? __unwind_start+0x3a7/0x3c0 [ 135.105181] [] __asan_report_load8_noabort+0x14/0x20 [ 135.111904] [] __unwind_start+0x3a7/0x3c0 [ 135.117674] [] ? ptrace_may_access+0x24/0x50 [ 135.123701] [] __save_stack_trace+0x59/0xf0 [ 135.129643] [] save_stack_trace_tsk+0x48/0x70 [ 135.135759] [] proc_pid_stack+0x146/0x230 [ 135.141526] [] ? lock_trace+0xc0/0xc0 [ 135.146946] [] proc_single_show+0xf8/0x170 [ 135.152801] [] seq_read+0x32f/0x1290 [ 135.158133] [] ? seq_escape+0x200/0x200 [ 135.163730] [] ? debug_check_no_locks_freed+0x2c0/0x2c0 [ 135.170711] [] ? seq_escape+0x200/0x200 [ 135.176303] [] __vfs_read+0x103/0x670 [ 135.181725] [] ? default_llseek+0x290/0x290 [ 135.187666] [] ? fsnotify+0x86/0xf30 [ 135.192999] [] ? fsnotify+0xf30/0xf30 [ 135.198420] [] ? avc_policy_seqno+0x9/0x20 [ 135.204275] [] ? selinux_file_permission+0x82/0x460 [ 135.210910] [] ? security_file_permission+0x89/0x1e0 [ 135.217632] [] ? rw_verify_area+0xe5/0x2b0 [ 135.223490] [] vfs_read+0x11e/0x380 [ 135.228737] [] SyS_pread64+0x13f/0x170 [ 135.234244] [] ? SyS_write+0x1b0/0x1b0 [ 135.239753] [] ? do_syscall_64+0x48/0x490 [ 135.245521] [] ? SyS_write+0x1b0/0x1b0 [ 135.251029] [] do_syscall_64+0x1a4/0x490 [ 135.256713] [] entry_SYSCALL_64_after_swapgs+0x5d/0xdb [ 135.263928] [ 135.265528] The buggy address belongs to the page: [ 135.270428] page:ffffea0006d725c0 count:0 mapcount:0 mapping: (null) index:0x0 [ 135.278656] flags: 0x8000000000000000() [ 135.282596] page dumped because: kasan: bad access detected [ 135.288273] [ 135.289869] Memory state around the buggy address: [ 135.294769] ffff8801b5c97700: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 135.302098] ffff8801b5c97780: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 135.309426] >ffff8801b5c97800: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 135.316753] ^ [ 135.323993] ffff8801b5c97880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 135.331321] ffff8801b5c97900: 00 00 00 00 f1 f1 f1 f1 00 f2 f2 f2 f3 f3 f3 f3 [ 135.338647] ================================================================== [ 135.345972] Disabling lock debugging due to kernel taint [ 135.375936] Kernel panic - not syncing: panic_on_warn set ... [ 135.375936] [ 135.383318] CPU: 0 PID: 3241 Comm: syz-executor7 Tainted: G B 4.9.90-gdd1e37e #66 [ 135.392035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 135.401359] ffff8801d92b7800 ffffffff81d94ee9 ffffffff84197d47 ffff8801d92b78d8 [ 135.409325] 0000000000000000 ffff8801b5c97878 ffff8801d92b79d8 ffff8801d92b78c8 [ 135.417299] ffffffff8142e651 0000000041b58ab3 ffffffff8418b7a0 ffffffff8142e495 [ 135.425264] Call Trace: [ 135.427821] [] dump_stack+0xc1/0x128 [ 135.433154] [] panic+0x1bc/0x3a8 [ 135.438141] [] ? percpu_up_read_preempt_enable.constprop.53+0xd7/0xd7 [ 135.446336] [] ? preempt_schedule+0x25/0x30 [ 135.452275] [] ? ___preempt_schedule+0x16/0x18 [ 135.458484] [] kasan_end_report+0x50/0x50 [ 135.464250] [] kasan_report+0x16b/0x380 [ 135.469845] [] ? __unwind_start+0x3a7/0x3c0 [ 135.475785] [] __asan_report_load8_noabort+0x14/0x20 [ 135.482510] [] __unwind_start+0x3a7/0x3c0 [ 135.488280] [] ? ptrace_may_access+0x24/0x50 [ 135.494311] [] __save_stack_trace+0x59/0xf0 [ 135.500256] [] save_stack_trace_tsk+0x48/0x70 [ 135.506368] [] proc_pid_stack+0x146/0x230 [ 135.512135] [] ? lock_trace+0xc0/0xc0 [ 135.517555] [] proc_single_show+0xf8/0x170 [ 135.523410] [] seq_read+0x32f/0x1290 [ 135.528745] [] ? seq_escape+0x200/0x200 [ 135.534339] [] ? debug_check_no_locks_freed+0x2c0/0x2c0 [ 135.541321] [] ? seq_escape+0x200/0x200 [ 135.546915] [] __vfs_read+0x103/0x670 [ 135.552337] [] ? default_llseek+0x290/0x290 [ 135.558275] [] ? fsnotify+0x86/0xf30 [ 135.563607] [] ? fsnotify+0xf30/0xf30 [ 135.569025] [] ? avc_policy_seqno+0x9/0x20 [ 135.574878] [] ? selinux_file_permission+0x82/0x460 [ 135.581514] [] ? security_file_permission+0x89/0x1e0 [ 135.588235] [] ? rw_verify_area+0xe5/0x2b0 [ 135.594088] [] vfs_read+0x11e/0x380 [ 135.599334] [] SyS_pread64+0x13f/0x170 [ 135.604841] [] ? SyS_write+0x1b0/0x1b0 [ 135.610348] [] ? do_syscall_64+0x48/0x490 [ 135.616113] [] ? SyS_write+0x1b0/0x1b0 [ 135.621627] [] do_syscall_64+0x1a4/0x490 [ 135.627306] [] entry_SYSCALL_64_after_swapgs+0x5d/0xdb [ 135.634625] Dumping ftrace buffer: [ 135.638136] (ftrace buffer empty) [ 135.641814] Kernel Offset: disabled [ 135.645409] Rebooting in 86400 seconds..