[....] Starting enhanced syslogd: rsyslogd[ 14.556461] audit: type=1400 audit(1570047973.821:4): avc: denied { syslog } for pid=1916 comm="rsyslogd" capability=34 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.31' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 49.915657] kasan: CONFIG_KASAN_INLINE enabled [ 49.920252] kasan: GPF could be caused by NULL-ptr deref or user memory accessgeneral protection fault: 0000 [#1] PREEMPT SMP KASAN [ 49.933297] Modules linked in: [ 49.936602] CPU: 0 PID: 2081 Comm: syz-executor371 Not tainted 4.4.174+ #17 [ 49.943691] task: ffff8801d5d74740 task.stack: ffff8801d4090000 [ 49.949743] RIP: 0010:[] [] __blockdev_direct_IO+0x36ea/0xb030 [ 49.959179] RSP: 0018:ffff8801d4097200 EFLAGS: 00010206 [ 49.964609] RAX: 000000000101da60 RBX: dffffc0000000000 RCX: 000000000000000c [ 49.971861] RDX: 0000000000000000 RSI: ffffffff81557477 RDI: 00000000080ed300 [ 49.980061] RBP: ffff8801d4097518 R08: 1ffff1003ae558c0 R09: ffff8801d72ac600 [ 49.987321] R10: ffffed003ae558ce R11: ffff8801d72ac677 R12: ffffea0007519e00 [ 49.994572] R13: ffff8801d72ac600 R14: ffff8801da016d40 R15: ffff8801d5f7c000 [ 50.001837] FS: 0000000000000000(0000) GS:ffff8801db600000(0063) knlGS:00000000091a7840 [ 50.010054] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 50.015932] CR2: 00000000200110ff CR3: 00000001cf60d000 CR4: 00000000001606b0 [ 50.023463] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 50.030731] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 50.038038] Stack: [ 50.040163] fffffbfff05c2202 ffff8801d4097310 0005080203b4b000 0000000000001000 [ 50.048207] 0000000000008220 ffff8801d5f7c079 0000000041b58ab3 0000000000011000 [ 50.058682] ffff8801d4097360 00001000d5d75000 fffffffffffff000 0000000000000fff [ 50.066760] Call Trace: [ 50.069327] [] ? sb_init_dio_done_wq+0x80/0x80 [ 50.075625] [] ? noop_count+0x40/0x40 [ 50.081064] [] ? __lock_acquire+0x22e3/0x4f50 [ 50.087192] [] ? _ext4_get_block+0x690/0x690 [ 50.093431] [] ? ext4_ind_direct_IO+0x6dc/0xb90 [ 50.099750] [] ? ext4_journal_check_start+0x116/0x1a0 [ 50.106622] [] ? __ext4_journal_start_sb+0x13e/0x510 [ 50.113413] [] ext4_ind_direct_IO+0x3e1/0xb90 [ 50.119636] [] ? ext4_ind_map_blocks+0x21f0/0x21f0 [ 50.126312] [] ext4_direct_IO+0x8c1/0x2a80 [ 50.132190] [] ? ext4_end_io_dio+0xc0/0xc0 [ 50.138070] [] ? ext4_mark_inode_dirty+0x3fe/0xbf0 [ 50.144638] [] ? debug_lockdep_rcu_enabled+0x71/0xa0 [ 50.151594] [] ? check_preemption_disabled+0x3c/0x200 [ 50.159180] [] ? check_preemption_disabled+0x3c/0x200 [ 50.166018] [] ? filemap_check_errors+0x9d/0xe0 [ 50.172331] [] generic_file_direct_write+0x276/0x4f0 [ 50.179065] [] ? filemap_write_and_wait_range+0xb0/0xb0 [ 50.186063] [] ? file_update_time+0xc1/0x3c0 [ 50.192119] [] ? mutex_trylock+0x500/0x500 [ 50.197999] [] __generic_file_write_iter+0x245/0x540 [ 50.204744] [] ext4_file_write_iter+0x9ec/0xc70 [ 50.211061] [] ? mntput_no_expire+0xfc/0x830 [ 50.217095] [] ? ext4_unwritten_wait+0x200/0x200 [ 50.223477] [] ? mark_held_locks+0xb1/0x100 [ 50.229519] [] ? pipe_lock+0x63/0x80 [ 50.234879] [] ? mutex_lock_nested+0x7dd/0xb80 [ 50.241088] [] ? mutex_lock_nested+0x645/0xb80 [ 50.247309] [] ? pipe_lock+0x63/0x80 [ 50.252653] [] vfs_iter_write+0x1d0/0x3f0 [ 50.258429] [] ? default_llseek+0x290/0x290 [ 50.264515] [] ? mutex_trylock+0x500/0x500 [ 50.270530] [] ? kasan_unpoison_shadow+0x35/0x50 [ 50.276927] [] ? splice_from_pipe_next.part.0+0x20d/0x2c0 [ 50.284124] [] iter_file_splice_write+0x5c1/0xb30 [ 50.290669] [] ? vmsplice_to_user+0x1e0/0x1e0 [ 50.296979] [] ? rcu_read_lock_sched_held+0x10b/0x130 [ 50.303803] [] ? rcu_sync_lockdep_assert+0x73/0xb0 [ 50.310360] [] ? __sb_start_write+0x14f/0x310 [ 50.316482] [] ? vmsplice_to_user+0x1e0/0x1e0 [ 50.322621] [] SyS_splice+0xd71/0x13a0 [ 50.328188] [] ? SyS_accept+0x30/0x30 [ 50.333782] [] ? compat_SyS_vmsplice+0x160/0x160 [ 50.340186] [] ? __do_page_fault+0x2b3/0x7f0 [ 50.346256] [] ? do_fast_syscall_32+0xd6/0xa90 [ 50.352468] [] ? compat_SyS_vmsplice+0x160/0x160 [ 50.358858] [] do_fast_syscall_32+0x32d/0xa90 [ 50.365007] [] sysenter_flags_fixed+0xd/0x1a [ 50.371041] Code: 00 00 e8 aa a9 e8 ff 48 c7 84 24 50 02 00 00 00 00 00 00 e8 79 21 db ff 48 8b 84 24 c8 00 00 00 48 8d 78 20 48 89 f8 48 c1 e8 03 <80> 3c 18 00 0f 85 10 5b 00 00 48 8b 84 24 c8 00 00 00 48 8b 40 [ 50.398578] RIP [] __blockdev_direct_IO+0x36ea/0xb030 [ 50.405534] RSP [ 50.409230] ---[ end trace 5e6f541da4452d9c ]--- [ 50.414001] Kernel panic - not syncing: Fatal exception [ 50.420324] Kernel Offset: disabled [ 50.423940] Rebooting in 86400 seconds..