[....] Starting enhanced syslogd: rsyslogd[ 11.622091] audit: type=1400 audit(1513041963.190:4): avc: denied { syslog } for pid=3163 comm="rsyslogd" capability=34 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added 'ci-android-49-kasan-gce-386-2,10.128.15.201' (ECDSA) to the list of known hosts. 2017/12/12 01:26:58 parsed 1 programs 2017/12/12 01:26:58 executed programs: 0 syzkaller login: [ 66.693128] IPVS: Creating netns size=2536 id=1 [ 66.724149] IPVS: Creating netns size=2536 id=2 [ 66.734535] IPVS: Creating netns size=2536 id=3 [ 66.765054] IPVS: Creating netns size=2536 id=4 [ 66.786171] IPVS: Creating netns size=2536 id=5 [ 66.797083] IPVS: Creating netns size=2536 id=6 [ 66.807784] IPVS: Creating netns size=2536 id=7 [ 66.829152] IPVS: Creating netns size=2536 id=8 [ 69.982928] ================================================================== [ 69.990321] BUG: KASAN: out-of-bounds in __unwind_start+0x3a7/0x3c0 at addr ffff8801d1ddfb68 [ 69.998867] Read of size 8 by task syz-executor2/6226 [ 70.004032] page:ffffea00074777c0 count:0 mapcount:0 mapping: (null) index:0x0 [ 70.012250] flags: 0x8000000000000000() [ 70.016190] page dumped because: kasan: bad access detected [ 70.021868] CPU: 0 PID: 6226 Comm: syz-executor2 Not tainted 4.9.68-gfb66dc2 #3 [ 70.029281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 70.038606] ffff8801d0537880 ffffffff81d90889 ffffed003a3bbf6e 0000000000000008 [ 70.046587] 0000000000000000 ffffed003a3bbf6e ffff8801d1ddfb68 ffff8801d0537908 [ 70.054533] ffffffff8153a9b3 ffff8801d25eb000 ffffffff838a00de ffffffff810d41b7 [ 70.062490] Call Trace: [ 70.065056] [] dump_stack+0xc1/0x128 [ 70.070389] [] kasan_report.part.1+0x4c3/0x500 [ 70.076593] [] ? mutex_lock_killable_nested+0x60e/0x960 [ 70.083577] [] ? __unwind_start+0x3a7/0x3c0 [ 70.089514] [] ? trace_hardirqs_on_caller+0x38b/0x590 [ 70.096326] [] __asan_report_load8_noabort+0x29/0x30 [ 70.103051] [] __unwind_start+0x3a7/0x3c0 [ 70.108814] [] ? ptrace_may_access+0x24/0x50 [ 70.114842] [] __save_stack_trace+0x59/0xf0 [ 70.120787] [] save_stack_trace_tsk+0x48/0x70 [ 70.126901] [] proc_pid_stack+0x146/0x230 [ 70.132665] [] ? lock_trace+0xc0/0xc0 [ 70.138088] [] proc_single_show+0xf8/0x170 [ 70.143955] [] seq_read+0x32f/0x1290 [ 70.149288] [] ? seq_escape+0x200/0x200 [ 70.154886] [] ? __lock_is_held+0xa1/0xf0 [ 70.161100] [] ? seq_escape+0x200/0x200 [ 70.166690] [] __vfs_read+0x103/0x670 [ 70.172106] [] ? default_llseek+0x290/0x290 [ 70.178041] [] ? fsnotify+0x86/0xf30 [ 70.183373] [] ? fsnotify+0xf30/0xf30 [ 70.188803] [] ? avc_policy_seqno+0x9/0x20 [ 70.194653] [] ? selinux_file_permission+0x82/0x460 [ 70.201285] [] ? security_file_permission+0x89/0x1e0 [ 70.208011] [] ? rw_verify_area+0xe5/0x2b0 [ 70.213871] [] vfs_read+0x11e/0x380 [ 70.219114] [] SyS_read+0xd9/0x1b0 [ 70.224284] [] ? vfs_copy_file_range+0x740/0x740 [ 70.230677] [] ? do_fast_syscall_32+0xcf/0x890 [ 70.236885] [] ? vfs_copy_file_range+0x740/0x740 [ 70.243255] [] do_fast_syscall_32+0x2f7/0x890 [ 70.249363] [] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 70.256003] [] entry_SYSENTER_compat+0x51/0x60 [ 70.262204] Memory state around the buggy address: [ 70.267102] ffff8801d1ddfa00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 70.274430] ffff8801d1ddfa80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 70.281758] >ffff8801d1ddfb00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 70.289081] ^ [ 70.296057] ffff8801d1ddfb80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 70.303387] ffff8801d1ddfc00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 70.310717] ================================================================== [ 70.318041] Disabling lock debugging due to kernel taint 2017/12/12 01:27:03 executed programs: 526 2017/12/12 01:27:08 executed programs: 1096