[....] Starting enhanced syslogd: rsyslogd[ 12.597891] audit: type=1400 audit(1516836992.307:5): avc: denied { syslog } for pid=3507 comm="rsyslogd" capability=34 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 17.814738] audit: type=1400 audit(1516836997.524:6): avc: denied { map } for pid=3646 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '10.128.0.19' (ECDSA) to the list of known hosts. net.ipv6.conf.syz0.accept_dad = 0 net.ipv6.conf.syz0.router_solicitations = 0 [ 24.163307] audit: type=1400 audit(1516837003.873:7): avc: denied { map } for pid=3660 comm="syzkaller982312" path="/root/syzkaller982312702" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 RTNETLINK answers: Operation not supported RTNETLINK answers: No buffer space available RTNETLINK answers: Operation not supported [ 24.543338] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument executing program [ 24.864637] kasan: CONFIG_KASAN_INLINE enabled [ 24.869279] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 24.876817] general protection fault: 0000 [#1] SMP KASAN [ 24.882339] Dumping ftrace buffer: [ 24.885851] (ftrace buffer empty) [ 24.889528] Modules linked in: [ 24.892708] CPU: 0 PID: 3660 Comm: syzkaller982312 Not tainted 4.15.0-rc9+ #207 [ 24.900126] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 24.909458] RIP: 0010:tun_queue_purge+0x1c1/0x410 [ 24.914264] RSP: 0018:ffff8801d9247650 EFLAGS: 00010202 [ 24.919592] RAX: 0000000000000010 RBX: ffff8801d9a37440 RCX: 0000000000000002 [ 24.926835] RDX: 0000000000000000 RSI: 00000000b2904e41 RDI: ffff8801d9a37b0c [ 24.934082] RBP: ffff8801d92476d0 R08: 1ffff1003b248e09 R09: 00000000000016b4 [ 24.941327] R10: ffff8801d9247508 R11: 1ffff1003b248fe8 R12: 0000000000000000 [ 24.948567] R13: 00000000ffffffff R14: 0000000000000010 R15: dffffc0000000000 [ 24.955806] FS: 0000000000d00880(0000) GS:ffff8801db200000(0000) knlGS:0000000000000000 [ 24.963997] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 24.969848] CR2: 00000000006d00a8 CR3: 0000000006822002 CR4: 00000000001606f0 [ 24.977089] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 24.984337] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 24.991575] Call Trace: [ 24.994136] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 24.999121] ? trace_hardirqs_on+0xd/0x10 [ 25.003238] __tun_detach+0xa58/0x10b0 [ 25.007098] ? tun_cleanup_tx_ring.part.47+0x450/0x450 [ 25.012341] ? trace_event_raw_event_sched_switch+0x800/0x800 [ 25.018198] ? locks_remove_file+0x3fa/0x5a0 [ 25.022573] ? fcntl_setlk+0x10c0/0x10c0 [ 25.026602] ? fsnotify+0x7b3/0x1140 [ 25.030286] ? fsnotify_first_mark+0x2b0/0x2b0 [ 25.034836] ? __tun_detach+0x10b0/0x10b0 [ 25.038950] ? __tun_detach+0x10b0/0x10b0 [ 25.043066] tun_chr_close+0x44/0x60 [ 25.046753] __fput+0x327/0x7e0 [ 25.050004] ? fput+0x140/0x140 [ 25.053257] ? trace_event_raw_event_sched_switch+0x800/0x800 [ 25.059110] ? _raw_spin_unlock_irq+0x27/0x70 [ 25.063573] ____fput+0x15/0x20 [ 25.066821] task_work_run+0x199/0x270 [ 25.070680] ? task_work_cancel+0x210/0x210 [ 25.074969] ? _raw_spin_unlock+0x22/0x30 [ 25.079087] ? switch_task_namespaces+0x87/0xc0 [ 25.083725] do_exit+0x9bb/0x1ad0 [ 25.087148] ? __pmd_alloc+0x4e0/0x4e0 [ 25.091181] ? mm_update_next_owner+0x930/0x930 [ 25.096265] ? find_held_lock+0x35/0x1d0 [ 25.100298] ? handle_mm_fault+0x248/0x8d0 [ 25.104501] ? find_held_lock+0x35/0x1d0 [ 25.108536] ? __do_page_fault+0x5f7/0xc90 [ 25.112737] ? lock_downgrade+0x980/0x980 [ 25.116857] ? down_read_trylock+0xdb/0x170 [ 25.121144] ? __do_page_fault+0x32d/0xc90 [ 25.125349] ? __handle_mm_fault+0x3ce0/0x3ce0 [ 25.129896] ? vmacache_find+0x5f/0x280 [ 25.133841] ? up_read+0x1a/0x40 [ 25.137174] ? __do_page_fault+0x3d6/0xc90 [ 25.141383] ? get_unused_fd_flags+0x190/0x190 [ 25.145935] ? mm_fault_error+0x2c0/0x2c0 [ 25.150051] ? __fdget+0x18/0x20 [ 25.153392] ? do_page_fault+0xee/0x720 [ 25.157335] ? __do_page_fault+0xc90/0xc90 [ 25.161540] do_group_exit+0x149/0x400 [ 25.165401] ? SyS_exit+0x30/0x30 [ 25.168824] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 25.173810] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 25.178533] SyS_exit_group+0x1d/0x20 [ 25.182302] entry_SYSCALL_64_fastpath+0x29/0xa0 [ 25.187026] RIP: 0033:0x443cd8 [ 25.190187] RSP: 002b:00007ffca8b50a08 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 25.197860] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000443cd8 [ 25.205096] RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000 [ 25.212336] RBP: 00000000006d00a8 R08: 00000000000000e7 R09: ffffffffffffffd0 [ 25.219573] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 25.226811] R13: 00000000006d6180 R14: 0000000000000000 R15: 0000000000000000 [ 25.234054] Code: 07 00 00 48 89 45 a0 48 c1 e8 03 42 80 3c 38 00 0f 85 2c 02 00 00 48 8b 83 08 07 00 00 49 63 d4 4c 8d 34 d0 4c 89 f1 48 c1 e9 03 <42> 80 3c 39 00 0f 85 ef 01 00 00 4d 8b 36 48 89 55 b8 48 89 45 [ 25.253121] RIP: tun_queue_purge+0x1c1/0x410 RSP: ffff8801d9247650 [ 25.259761] ---[ end trace 5d3427bb8be3a2f0 ]--- [ 25.264515] Kernel panic - not syncing: Fatal exception [ 25.270395] Dumping ftrace buffer: [ 25.273907] (ftrace buffer empty) [ 25.277584] Kernel Offset: disabled [ 25.281178] Rebooting in 86400 seconds..