[info] Using makefile-style concurrent boot in runlevel 2. [ 24.106385] audit: type=1800 audit(1538331499.400:21): pid=5185 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="bootlogs" dev="sda1" ino=2419 res=0 [ 24.133085] audit: type=1800 audit(1538331499.400:22): pid=5185 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="motd" dev="sda1" ino=2447 res=0 [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.18' (ECDSA) to the list of known hosts. executing program executing program executing program syzkaller login: [ 37.292657] kauditd_printk_skb: 8 callbacks suppressed [ 37.292670] audit: type=1400 audit(1538331512.580:31): apparmor="DENIED" operation="change_onexec" info="label not found" error=-2 profile="unconfined" name="&&" pid=5340 comm="syz-executor797" [ 37.318986] audit: type=1400 audit(1538331512.610:32): apparmor="DENIED" operation="change_onexec" info="label not found" error=-2 profile="unconfined" name="&&" pid=5341 comm="syz-executor797" executing program executing program [ 37.339499] audit: type=1400 audit(1538331512.630:33): apparmor="DENIED" operation="change_onexec" info="label not found" error=-2 profile="unconfined" name="&&" pid=5342 comm="syz-executor797" [ 37.360247] audit: type=1400 audit(1538331512.650:34): apparmor="DENIED" operation="change_onexec" info="label not found" error=-2 profile="unconfined" name="&&" pid=5343 comm="syz-executor797" executing program executing program executing program [ 37.380777] audit: type=1400 audit(1538331512.680:35): apparmor="DENIED" operation="change_onexec" info="label not found" error=-2 profile="unconfined" name="&&" pid=5344 comm="syz-executor797" [ 37.401408] audit: type=1400 audit(1538331512.700:36): apparmor="DENIED" operation="change_onexec" info="label not found" error=-2 profile="unconfined" name="&&" pid=5345 comm="syz-executor797" [ 37.421900] audit: type=1400 audit(1538331512.720:37): apparmor="DENIED" operation="change_onexec" info="label not found" error=-2 profile="unconfined" name="&&" pid=5346 comm="syz-executor797" executing program executing program [ 37.442468] audit: type=1400 audit(1538331512.740:38): apparmor="DENIED" operation="change_onexec" info="label not found" error=-2 profile="unconfined" name="&&" pid=5347 comm="syz-executor797" [ 37.463126] audit: type=1400 audit(1538331512.760:39): apparmor="DENIED" operation="change_onexec" info="label not found" error=-2 profile="unconfined" name="&&" pid=5348 comm="syz-executor797" executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 37.483970] audit: type=1400 audit(1538331512.780:40): apparmor="DENIED" operation="change_onexec" info="label not found" error=-2 profile="unconfined" name="&&" pid=5349 comm="syz-executor797" [ 37.549637] ================================================================== [ 37.557125] BUG: KASAN: stack-out-of-bounds in memcmp+0xe3/0x160 [ 37.563262] Read of size 1 at addr ffff8801b7437400 by task syz-executor797/5362 [ 37.570778] [ 37.572407] CPU: 1 PID: 5362 Comm: syz-executor797 Not tainted 4.19.0-rc5+ #261 [ 37.579898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 37.589244] Call Trace: [ 37.591829] dump_stack+0x1c4/0x2b4 [ 37.595449] ? dump_stack_print_info.cold.2+0x52/0x52 [ 37.600625] ? printk+0xa7/0xcf [ 37.603894] ? kmsg_dump_rewind_nolock+0xe4/0xe4 [ 37.608646] print_address_description.cold.8+0x9/0x1ff [ 37.613997] kasan_report.cold.9+0x242/0x309 [ 37.618390] ? memcmp+0xe3/0x160 [ 37.621744] __asan_report_load1_noabort+0x14/0x20 [ 37.626658] memcmp+0xe3/0x160 [ 37.629856] strnstr+0x4b/0x70 [ 37.633044] __aa_lookupn_ns+0xc1/0x570 [ 37.637022] ? aa_find_ns+0x30/0x30 [ 37.640661] ? lock_acquire+0x1ed/0x520 [ 37.644679] ? __aa_lookupn_ns+0x570/0x570 [ 37.648953] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 37.654494] ? check_preemption_disabled+0x48/0x200 [ 37.659507] ? kasan_check_read+0x11/0x20 [ 37.663643] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 37.668905] ? rcu_bh_qs+0xc0/0xc0 [ 37.672435] ? print_usage_bug+0xc0/0xc0 [ 37.676488] aa_lookupn_ns+0x88/0x1e0 [ 37.680275] aa_fqlookupn_profile+0x1b9/0x1010 [ 37.684844] ? lru_cache_add+0x417/0xa50 [ 37.688924] ? aa_lookup_profile+0x30/0x30 [ 37.693146] ? __lock_acquire+0x7ec/0x4ec0 [ 37.697367] ? noop_count+0x40/0x40 [ 37.700979] ? rcu_bh_qs+0xc0/0xc0 [ 37.704507] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 37.710074] ? refcount_inc_not_zero_checked+0x1e5/0x2f0 [ 37.715510] ? refcount_add_not_zero_checked+0x330/0x330 [ 37.720947] ? mark_held_locks+0x130/0x130 [ 37.725169] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 37.730692] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 37.736231] fqlookupn_profile+0x80/0xc0 [ 37.740300] aa_label_strn_parse+0xa3a/0x1230 [ 37.744795] ? aa_label_printk+0x850/0x850 [ 37.749019] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 37.754799] ? kasan_check_read+0x11/0x20 [ 37.758955] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 37.764221] ? rcu_bh_qs+0xc0/0xc0 [ 37.767748] ? rcu_bh_qs+0xc0/0xc0 [ 37.771274] ? unwind_dump+0x190/0x190 [ 37.775153] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 37.780675] ? refcount_inc_not_zero_checked+0x1e5/0x2f0 [ 37.786111] ? refcount_add_not_zero_checked+0x330/0x330 [ 37.791550] ? unwind_get_return_address+0x61/0xa0 [ 37.796473] ? __save_stack_trace+0x8d/0xf0 [ 37.800784] aa_label_parse+0x42/0x50 [ 37.804582] aa_change_profile+0x513/0x3260 [ 37.808892] ? save_stack+0x43/0xd0 [ 37.812502] ? kasan_kmalloc+0xc7/0xe0 [ 37.816377] ? apparmor_setprocattr+0x2ab/0x1150 [ 37.821146] ? __vfs_write+0x119/0x9f0 [ 37.825019] ? ksys_write+0x1f1/0x260 [ 37.828806] ? do_syscall_64+0x1b9/0x820 [ 37.832856] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 37.838220] ? aa_change_hat+0x1890/0x1890 [ 37.842470] ? find_held_lock+0x36/0x1c0 [ 37.846523] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 37.852048] ? check_preemption_disabled+0x48/0x200 [ 37.857046] ? check_preemption_disabled+0x48/0x200 [ 37.862056] ? __lock_is_held+0xb5/0x140 [ 37.866125] ? rcu_read_lock_sched_held+0x108/0x120 [ 37.871138] ? __kmalloc+0x5de/0x760 [ 37.874836] ? graph_lock+0x170/0x170 [ 37.878623] ? mark_held_locks+0x130/0x130 [ 37.882872] apparmor_setprocattr+0xa8b/0x1150 [ 37.887447] ? apparmor_task_kill+0xcb0/0xcb0 [ 37.891940] ? lock_downgrade+0x900/0x900 [ 37.896076] ? arch_local_save_flags+0x40/0x40 [ 37.900661] security_setprocattr+0x66/0xc0 [ 37.904978] proc_pid_attr_write+0x301/0x540 [ 37.909379] __vfs_write+0x119/0x9f0 [ 37.913099] ? check_preemption_disabled+0x48/0x200 [ 37.918112] ? proc_loginuid_write+0x4f0/0x4f0 [ 37.922713] ? kernel_read+0x120/0x120 [ 37.926605] ? __lock_is_held+0xb5/0x140 [ 37.930660] ? rcu_read_lock_sched_held+0x108/0x120 [ 37.935664] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 37.941185] ? __sb_start_write+0x1b2/0x370 [ 37.945494] vfs_write+0x1fc/0x560 [ 37.949027] ksys_write+0x101/0x260 [ 37.952653] ? __ia32_sys_read+0xb0/0xb0 [ 37.956703] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 37.962140] __x64_sys_write+0x73/0xb0 [ 37.966025] do_syscall_64+0x1b9/0x820 [ 37.969910] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 37.975282] ? syscall_return_slowpath+0x5e0/0x5e0 [ 37.980198] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 37.985026] ? trace_hardirqs_on_caller+0x310/0x310 [ 37.990030] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 37.995035] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 38.000583] ? prepare_exit_to_usermode+0x291/0x3b0 [ 38.005596] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 38.010450] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 38.015627] RIP: 0033:0x440d49 [ 38.018805] Code: e8 cc ab 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 bb 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 38.037689] RSP: 002b:00007ffc74698148 EFLAGS: 00000213 ORIG_RAX: 0000000000000001 [ 38.045383] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000440d49 [ 38.052637] RDX: 000000000000002c RSI: 00000000200000c0 RDI: 0000000000000003 [ 38.059889] RBP: 0000000000000000 R08: 00000000004002c8 R09: 00000000004002c8 [ 38.067141] R10: 0000000002121880 R11: 0000000000000213 R12: 000000000000929a [ 38.074395] R13: 0000000000401d20 R14: 0000000000000000 R15: 0000000000000000 [ 38.081656] [ 38.083261] The buggy address belongs to the page: [ 38.088171] page:ffffea0006dd0dc0 count:0 mapcount:0 mapping:0000000000000000 index:0x0 [ 38.096312] flags: 0x2fffc0000000000() [ 38.100186] raw: 02fffc0000000000 0000000000000000 ffffffff06dd0101 0000000000000000 [ 38.108054] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 38.115926] page dumped because: kasan: bad access detected [ 38.121615] [ 38.123222] Memory state around the buggy address: [ 38.128140] ffff8801b7437300: f2 f2 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 38.135484] ffff8801b7437380: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 f1 [ 38.142829] >ffff8801b7437400: f1 f1 f1 f8 f2 f2 f2 f2 f2 f2 f2 00 f2 f2 f2 f2 [ 38.150171] ^ [ 38.153521] ffff8801b7437480: f2 f2 f2 f8 f2 f2 f2 f2 f2 f2 f2 00 f2 f2 f2 f2 [ 38.160866] ffff8801b7437500: f2 f2 f2 00 00 00 00 00 00 00 00 f3 f3 f3 f3 00 [ 38.168204] ================================================================== [ 38.175541] Disabling lock debugging due to kernel taint [ 38.181201] Kernel panic - not syncing: panic_on_warn set ... [ 38.181201] [ 38.188592] CPU: 1 PID: 5362 Comm: syz-executor797 Tainted: G B 4.19.0-rc5+ #261 [ 38.197422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 38.206752] Call Trace: [ 38.209326] dump_stack+0x1c4/0x2b4 [ 38.212944] ? dump_stack_print_info.cold.2+0x52/0x52 [ 38.218120] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 38.222863] panic+0x238/0x4e7 [ 38.226038] ? add_taint.cold.5+0x16/0x16 [ 38.230170] ? preempt_schedule+0x4d/0x60 [ 38.234306] ? ___preempt_schedule+0x16/0x18 [ 38.238710] ? trace_hardirqs_on+0xb4/0x310 [ 38.243060] kasan_end_report+0x47/0x4f [ 38.247029] kasan_report.cold.9+0x76/0x309 [ 38.251335] ? memcmp+0xe3/0x160 [ 38.254692] __asan_report_load1_noabort+0x14/0x20 [ 38.259605] memcmp+0xe3/0x160 [ 38.262781] strnstr+0x4b/0x70 [ 38.265967] __aa_lookupn_ns+0xc1/0x570 [ 38.269939] ? aa_find_ns+0x30/0x30 [ 38.273549] ? lock_acquire+0x1ed/0x520 [ 38.277512] ? __aa_lookupn_ns+0x570/0x570 [ 38.281734] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 38.287257] ? check_preemption_disabled+0x48/0x200 [ 38.292254] ? kasan_check_read+0x11/0x20 [ 38.296389] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 38.301650] ? rcu_bh_qs+0xc0/0xc0 [ 38.305177] ? print_usage_bug+0xc0/0xc0 [ 38.309223] aa_lookupn_ns+0x88/0x1e0 [ 38.313006] aa_fqlookupn_profile+0x1b9/0x1010 [ 38.317577] ? lru_cache_add+0x417/0xa50 [ 38.321623] ? aa_lookup_profile+0x30/0x30 [ 38.325841] ? __lock_acquire+0x7ec/0x4ec0 [ 38.330063] ? noop_count+0x40/0x40 [ 38.333672] ? rcu_bh_qs+0xc0/0xc0 [ 38.337199] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 38.342722] ? refcount_inc_not_zero_checked+0x1e5/0x2f0 [ 38.348158] ? refcount_add_not_zero_checked+0x330/0x330 [ 38.353595] ? mark_held_locks+0x130/0x130 [ 38.357815] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 38.363333] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 38.368867] fqlookupn_profile+0x80/0xc0 [ 38.372914] aa_label_strn_parse+0xa3a/0x1230 [ 38.377394] ? aa_label_printk+0x850/0x850 [ 38.381613] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 38.387413] ? kasan_check_read+0x11/0x20 [ 38.391547] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 38.396841] ? rcu_bh_qs+0xc0/0xc0 [ 38.400377] ? rcu_bh_qs+0xc0/0xc0 [ 38.403899] ? unwind_dump+0x190/0x190 [ 38.407801] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 38.413325] ? refcount_inc_not_zero_checked+0x1e5/0x2f0 [ 38.418785] ? refcount_add_not_zero_checked+0x330/0x330 [ 38.424222] ? unwind_get_return_address+0x61/0xa0 [ 38.429134] ? __save_stack_trace+0x8d/0xf0 [ 38.433443] aa_label_parse+0x42/0x50 [ 38.437225] aa_change_profile+0x513/0x3260 [ 38.441529] ? save_stack+0x43/0xd0 [ 38.445142] ? kasan_kmalloc+0xc7/0xe0 [ 38.449024] ? apparmor_setprocattr+0x2ab/0x1150 [ 38.453763] ? __vfs_write+0x119/0x9f0 [ 38.457632] ? ksys_write+0x1f1/0x260 [ 38.461414] ? do_syscall_64+0x1b9/0x820 [ 38.465459] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 38.470804] ? aa_change_hat+0x1890/0x1890 [ 38.475021] ? find_held_lock+0x36/0x1c0 [ 38.479068] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 38.484594] ? check_preemption_disabled+0x48/0x200 [ 38.489592] ? check_preemption_disabled+0x48/0x200 [ 38.494601] ? __lock_is_held+0xb5/0x140 [ 38.498651] ? rcu_read_lock_sched_held+0x108/0x120 [ 38.503652] ? __kmalloc+0x5de/0x760 [ 38.507359] ? graph_lock+0x170/0x170 [ 38.511142] ? mark_held_locks+0x130/0x130 [ 38.515367] apparmor_setprocattr+0xa8b/0x1150 [ 38.519950] ? apparmor_task_kill+0xcb0/0xcb0 [ 38.524451] ? lock_downgrade+0x900/0x900 [ 38.528589] ? arch_local_save_flags+0x40/0x40 [ 38.533163] security_setprocattr+0x66/0xc0 [ 38.537479] proc_pid_attr_write+0x301/0x540 [ 38.541885] __vfs_write+0x119/0x9f0 [ 38.545596] ? check_preemption_disabled+0x48/0x200 [ 38.550613] ? proc_loginuid_write+0x4f0/0x4f0 [ 38.555221] ? kernel_read+0x120/0x120 [ 38.559094] ? __lock_is_held+0xb5/0x140 [ 38.563140] ? rcu_read_lock_sched_held+0x108/0x120 [ 38.568143] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 38.573676] ? __sb_start_write+0x1b2/0x370 [ 38.577995] vfs_write+0x1fc/0x560 [ 38.581519] ksys_write+0x101/0x260 [ 38.585130] ? __ia32_sys_read+0xb0/0xb0 [ 38.589175] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 38.594635] __x64_sys_write+0x73/0xb0 [ 38.598580] do_syscall_64+0x1b9/0x820 [ 38.602458] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 38.607808] ? syscall_return_slowpath+0x5e0/0x5e0 [ 38.612721] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 38.617555] ? trace_hardirqs_on_caller+0x310/0x310 [ 38.622579] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 38.627589] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 38.633110] ? prepare_exit_to_usermode+0x291/0x3b0 [ 38.638109] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 38.642937] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 38.648108] RIP: 0033:0x440d49 [ 38.651303] Code: e8 cc ab 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 bb 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 38.670365] RSP: 002b:00007ffc74698148 EFLAGS: 00000213 ORIG_RAX: 0000000000000001 [ 38.678055] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000440d49 [ 38.685309] RDX: 000000000000002c RSI: 00000000200000c0 RDI: 0000000000000003 [ 38.692567] RBP: 0000000000000000 R08: 00000000004002c8 R09: 00000000004002c8 [ 38.699822] R10: 0000000002121880 R11: 0000000000000213 R12: 000000000000929a [ 38.707074] R13: 0000000000401d20 R14: 0000000000000000 R15: 0000000000000000 [ 38.715240] Kernel Offset: disabled [ 38.718865] Rebooting in 86400 seconds..