[....] Starting enhanced syslogd: rsyslogd[ 16.723783] audit: type=1400 audit(1521168714.808:5): avc: denied { syslog } for pid=4078 comm="rsyslogd" capability=34 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 20.094307] audit: type=1400 audit(1521168718.179:6): avc: denied { map } for pid=4218 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '10.128.10.15' (ECDSA) to the list of known hosts. [ 26.408591] audit: type=1400 audit(1521168724.493:7): avc: denied { map } for pid=4232 comm="syz-execprog" path="/root/syz-execprog" dev="sda1" ino=16479 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 2018/03/16 02:52:04 parsed 1 programs 2018/03/16 02:52:04 executed programs: 0 [ 26.662287] audit: type=1400 audit(1521168724.746:8): avc: denied { map } for pid=4232 comm="syz-execprog" path="/root/syzkaller-shm813507977" dev="sda1" ino=16483 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:file_t:s0 tclass=file permissive=1 [ 26.696313] audit: type=1400 audit(1521168724.779:9): avc: denied { sys_admin } for pid=4237 comm="syz-executor4" capability=21 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 [ 26.707510] IPVS: ftp: loaded support on port[0] = 21 [ 26.761807] IPVS: ftp: loaded support on port[0] = 21 [ 26.772197] audit: type=1400 audit(1521168724.856:10): avc: denied { sys_chroot } for pid=4241 comm="syz-executor4" capability=18 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 [ 26.796679] audit: type=1400 audit(1521168724.857:11): avc: denied { net_admin } for pid=4241 comm="syz-executor4" capability=12 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 [ 26.809183] IPVS: ftp: loaded support on port[0] = 21 [ 26.854271] kasan: CONFIG_KASAN_INLINE enabled [ 26.859043] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 26.863216] IPVS: ftp: loaded support on port[0] = 21 [ 26.866662] general protection fault: 0000 [#1] SMP KASAN [ 26.871942] kasan: CONFIG_KASAN_INLINE enabled [ 26.877329] Dumping ftrace buffer: [ 26.877334] (ftrace buffer empty) [ 26.877336] Modules linked in: [ 26.877346] CPU: 1 PID: 4260 Comm: syz-executor3 Not tainted 4.16.0-rc4+ #267 [ 26.877352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 26.881910] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 26.885418] RIP: 0010:xfrm_init_replay+0x60/0x220 [ 26.885424] RSP: 0018:ffff8801a9bdf360 EFLAGS: 00010203 [ 26.926285] RAX: dffffc0000000000 RBX: ffff8801cbd98d80 RCX: ffffffff84ea4c3a [ 26.933525] RDX: 0000000000000004 RSI: ffff8801cbd992f4 RDI: 0000000000000024 [ 26.940767] RBP: ffff8801a9bdf380 R08: 0000000000000000 R09: 1ffff1003537be21 [ 26.948009] R10: ffff8801a9bdf040 R11: 0000000000000001 R12: 0000000000000010 [ 26.955252] R13: ffff8801a9bdf598 R14: ffff8801cbd98d80 R15: ffff8801cbd99200 [ 26.962494] FS: 00007f5382917700(0000) GS:ffff8801db300000(0000) knlGS:0000000000000000 [ 26.970689] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 26.976541] CR2: 0000000000464b00 CR3: 00000001cbd20001 CR4: 00000000001606e0 [ 26.983782] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 26.991022] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 26.998260] Call Trace: [ 27.000821] xfrm_add_sa+0x1d3e/0x3440 [ 27.004687] ? xfrm_send_state_notify+0x1c50/0x1c50 [ 27.009677] ? nla_parse+0x29a/0x3d0 [ 27.013366] ? nla_validate+0x1c0/0x1c0 [ 27.017314] ? __netlink_ns_capable+0xe1/0x120 [ 27.021870] ? xfrm_send_state_notify+0x1c50/0x1c50 [ 27.026857] xfrm_user_rcv_msg+0x41c/0x860 [ 27.031063] ? xfrm_user_rcv_msg+0x41c/0x860 [ 27.035445] ? xfrm_dump_sa_done+0xe0/0xe0 [ 27.039648] ? netlink_deliver_tap+0x2c0/0xf90 [ 27.044202] ? lock_downgrade+0x980/0x980 [ 27.048322] ? lock_release+0xa40/0xa40 [ 27.052287] ? __might_fault+0x110/0x1d0 [ 27.056323] netlink_rcv_skb+0x14b/0x380 [ 27.060358] ? xfrm_dump_sa_done+0xe0/0xe0 [ 27.064567] ? netlink_ack+0xa10/0xa10 [ 27.068428] ? netlink_skb_destructor+0x1d0/0x1d0 [ 27.073249] xfrm_netlink_rcv+0x6f/0x90 [ 27.077196] netlink_unicast+0x4c4/0x6b0 [ 27.081233] ? netlink_attachskb+0x8a0/0x8a0 [ 27.085618] ? security_netlink_send+0x81/0xb0 [ 27.090172] netlink_sendmsg+0xa4a/0xe60 [ 27.094208] ? netlink_unicast+0x6b0/0x6b0 [ 27.098419] ? security_socket_sendmsg+0x89/0xb0 [ 27.103146] ? netlink_unicast+0x6b0/0x6b0 [ 27.107357] sock_sendmsg+0xca/0x110 [ 27.111043] ___sys_sendmsg+0x767/0x8b0 [ 27.114994] ? copy_msghdr_from_user+0x590/0x590 [ 27.119730] ? lock_downgrade+0x980/0x980 [ 27.123857] ? __fget_light+0x2b2/0x3c0 [ 27.127803] ? fget_raw+0x20/0x20 [ 27.131232] ? __fd_install+0x288/0x740 [ 27.135180] ? get_unused_fd_flags+0x190/0x190 [ 27.139743] __sys_sendmsg+0xe5/0x210 [ 27.143513] ? __sys_sendmsg+0xe5/0x210 [ 27.147459] ? SyS_shutdown+0x290/0x290 [ 27.151408] ? SyS_futex+0x269/0x390 [ 27.155091] ? fd_install+0x4d/0x60 [ 27.158697] ? move_addr_to_kernel+0x60/0x60 [ 27.163081] SyS_sendmsg+0x2d/0x50 [ 27.166594] ? __sys_sendmsg+0x210/0x210 [ 27.170627] do_syscall_64+0x281/0x940 [ 27.174485] ? __do_page_fault+0xc90/0xc90 [ 27.178691] ? _raw_spin_unlock_irq+0x27/0x70 [ 27.183159] ? finish_task_switch+0x1c1/0x7e0 [ 27.187625] ? syscall_return_slowpath+0x550/0x550 [ 27.192529] ? syscall_return_slowpath+0x2ac/0x550 [ 27.197432] ? prepare_exit_to_usermode+0x350/0x350 [ 27.202422] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 27.207761] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 27.212582] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 27.217743] RIP: 0033:0x453e69 [ 27.220903] RSP: 002b:00007f5382916c68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 27.228581] RAX: ffffffffffffffda RBX: 00007f53829176d4 RCX: 0000000000453e69 [ 27.235821] RDX: 0000000000000000 RSI: 000000002014f000 RDI: 0000000000000003 [ 27.243062] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 27.250303] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 27.257542] R13: 00000000000004c7 R14: 00000000006f7348 R15: 0000000000000000 [ 27.264795] Code: 4c 8b a3 b8 01 00 00 4d 85 e4 0f 84 49 01 00 00 e8 a6 bd 86 fc 49 8d 7c 24 14 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 [ 27.283908] RIP: xfrm_init_replay+0x60/0x220 RSP: ffff8801a9bdf360 [ 27.290203] general protection fault: 0000 [#2] SMP KASAN [ 27.290266] ---[ end trace cdf49f9f8c02f82d ]--- [ 27.295718] Dumping ftrace buffer: [ 27.295722] (ftrace buffer empty) [ 27.295724] Modules linked in: [ 27.295735] CPU: 0 PID: 4255 Comm: syz-executor4 Tainted: G D 4.16.0-rc4+ #267 [ 27.300467] Kernel panic - not syncing: Fatal exception [ 27.303962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 27.333996] RIP: 0010:xfrm_init_replay+0x60/0x220 [ 27.338809] RSP: 0018:ffff8801b1e17360 EFLAGS: 00010203 [ 27.344142] RAX: dffffc0000000000 RBX: ffff8801cb25fb40 RCX: ffffffff84ea4c3a [ 27.351386] RDX: 0000000000000004 RSI: ffff8801cbbf00f4 RDI: 0000000000000024 [ 27.358630] RBP: ffff8801b1e17380 R08: 0000000000000000 R09: 1ffff100363c2e21 [ 27.365874] R10: ffff8801b1e17040 R11: ffffffff86f42a80 R12: 0000000000000010 [ 27.373114] R13: ffff8801b1e17598 R14: ffff8801cb25fb40 R15: ffff8801cbbf0000 [ 27.380360] FS: 00007fdd5d6eb700(0000) GS:ffff8801db200000(0000) knlGS:0000000000000000 [ 27.388556] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 27.394408] CR2: 000000002014f000 CR3: 00000001cb2f5004 CR4: 00000000001606f0 [ 27.401651] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 27.408894] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 27.416134] Call Trace: [ 27.418698] xfrm_add_sa+0x1d3e/0x3440 [ 27.422568] ? xfrm_send_state_notify+0x1c50/0x1c50 [ 27.427555] ? nla_parse+0x29a/0x3d0 [ 27.431245] ? nla_validate+0x1c0/0x1c0 [ 27.435195] ? __netlink_ns_capable+0xe1/0x120 [ 27.439751] ? xfrm_send_state_notify+0x1c50/0x1c50 [ 27.444740] xfrm_user_rcv_msg+0x41c/0x860 [ 27.448947] ? xfrm_user_rcv_msg+0x41c/0x860 [ 27.453331] ? xfrm_dump_sa_done+0xe0/0xe0 [ 27.457537] ? netlink_deliver_tap+0x2c0/0xf90 [ 27.462093] ? lock_downgrade+0x980/0x980 [ 27.466214] ? lock_release+0xa40/0xa40 [ 27.470178] ? __might_fault+0x110/0x1d0 [ 27.474217] netlink_rcv_skb+0x14b/0x380 [ 27.478251] ? xfrm_dump_sa_done+0xe0/0xe0 [ 27.482458] ? netlink_ack+0xa10/0xa10 [ 27.486318] ? netlink_skb_destructor+0x1d0/0x1d0 [ 27.491135] xfrm_netlink_rcv+0x6f/0x90 [ 27.495080] netlink_unicast+0x4c4/0x6b0 [ 27.499116] ? netlink_attachskb+0x8a0/0x8a0 [ 27.503501] ? security_netlink_send+0x81/0xb0 [ 27.508057] netlink_sendmsg+0xa4a/0xe60 [ 27.512094] ? netlink_unicast+0x6b0/0x6b0 [ 27.516303] ? security_socket_sendmsg+0x89/0xb0 [ 27.521029] ? netlink_unicast+0x6b0/0x6b0 [ 27.525237] sock_sendmsg+0xca/0x110 [ 27.528925] ___sys_sendmsg+0x767/0x8b0 [ 27.532878] ? copy_msghdr_from_user+0x590/0x590 [ 27.537611] ? lock_downgrade+0x980/0x980 [ 27.541736] ? __fget_light+0x2b2/0x3c0 [ 27.545684] ? fget_raw+0x20/0x20 [ 27.549115] ? __fd_install+0x288/0x740 [ 27.553063] ? get_unused_fd_flags+0x190/0x190 [ 27.557627] __sys_sendmsg+0xe5/0x210 [ 27.561398] ? __sys_sendmsg+0xe5/0x210 [ 27.565344] ? SyS_shutdown+0x290/0x290 [ 27.569298] ? SyS_futex+0x269/0x390 [ 27.572982] ? fd_install+0x4d/0x60 [ 27.576589] ? move_addr_to_kernel+0x60/0x60 [ 27.580974] SyS_sendmsg+0x2d/0x50 [ 27.584487] ? __sys_sendmsg+0x210/0x210 [ 27.588519] do_syscall_64+0x281/0x940 [ 27.592379] ? __do_page_fault+0xc90/0xc90 [ 27.596602] ? _raw_spin_unlock_irq+0x27/0x70 [ 27.601071] ? finish_task_switch+0x1c1/0x7e0 [ 27.605539] ? syscall_return_slowpath+0x550/0x550 [ 27.610440] ? syscall_return_slowpath+0x2ac/0x550 [ 27.615344] ? prepare_exit_to_usermode+0x350/0x350 [ 27.620335] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 27.625674] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 27.630492] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 27.635653] RIP: 0033:0x453e69 [ 27.638816] RSP: 002b:00007fdd5d6eac68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 27.646493] RAX: ffffffffffffffda RBX: 00007fdd5d6eb6d4 RCX: 0000000000453e69 [ 27.653734] RDX: 0000000000000000 RSI: 000000002014f000 RDI: 0000000000000003 [ 27.660978] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 27.668218] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 27.675461] R13: 00000000000004c7 R14: 00000000006f7348 R15: 0000000000000000 [ 27.682712] Code: 4c 8b a3 b8 01 00 00 4d 85 e4 0f 84 49 01 00 00 e8 a6 bd 86 fc 49 8d 7c 24 14 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 [ 27.701829] RIP: xfrm_init_replay+0x60/0x220 RSP: ffff8801b1e17360 [ 27.708557] Dumping ftrace buffer: [ 27.712068] (ftrace buffer empty) [ 27.715748] Kernel Offset: disabled [ 27.719343] Rebooting in 86400 seconds..