[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Start[   71.069648][   T26] kauditd_printk_skb: 7 callbacks suppressed
ing file context[   71.069660][   T26] audit: type=1800 audit(1572092150.447:39): pid=9274 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
 maintaining daemon: restorecond[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   71.116288][   T26] audit: type=1800 audit(1572092150.447:40): pid=9274 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   75.191207][   T26] audit: type=1400 audit(1572092154.567:41): avc:  denied  { map } for  pid=9452 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1
Warning: Permanently added '10.128.0.76' (ECDSA) to the list of known hosts.
executing program
executing program
executing program
[   81.718485][   T26] audit: type=1400 audit(1572092161.097:42): avc:  denied  { map } for  pid=9464 comm="syz-executor086" path="/root/syz-executor086944695" dev="sda1" ino=16483 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1
[   81.735064][ T9472] ==================================================================
[   81.752460][ T9473] BUG: kernel NULL pointer dereference, address: 0000000000000000
[   81.754310][ T9472] BUG: KASAN: null-ptr-deref in llcp_sock_getname+0x358/0x460
[   81.762075][ T9473] #PF: supervisor read access in kernel mode
[   81.769772][ T9472] Read of size 3 at addr 0000000000000000 by task syz-executor086/9472
[   81.775723][ T9473] #PF: error_code(0x0000) - not-present page
[   81.783929][ T9472] 
[   81.789880][ T9473] PGD 9dcf8067 P4D 9dcf8067 PUD a8151067 PMD 0 
[   81.792195][ T9472] CPU: 0 PID: 9472 Comm: syz-executor086 Not tainted 5.4.0-rc4+ #0
[   81.798401][ T9473] Oops: 0000 [#1] PREEMPT SMP KASAN
[   81.806256][ T9472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   81.811427][ T9473] CPU: 1 PID: 9473 Comm: syz-executor086 Not tainted 5.4.0-rc4+ #0
[   81.821459][ T9472] Call Trace:
[   81.829319][ T9473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   81.832596][ T9472]  dump_stack+0x172/0x1f0
[   81.842710][ T9473] RIP: 0010:memcpy_erms+0x6/0x10
[   81.847026][ T9472]  ? llcp_sock_getname+0x358/0x460
[   81.851935][ T9473] Code: 90 90 90 90 eb 1e 0f 1f 00 48 89 f8 48 89 d1 48 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 c3 66 0f 1f 44 00 00 48 89 f8 48 89 d1 <f3> a4 c3 0f 1f 80 00 00 00 00 48 89 f8 48 83 fa 20 72 7e 40 38 fe
[   81.857025][ T9472]  ? llcp_sock_getname+0x358/0x460
[   81.876599][ T9473] RSP: 0018:ffff888094cefd50 EFLAGS: 00010246
[   81.881724][ T9472]  __kasan_report.cold+0x5/0x41
[   81.887762][ T9473] RAX: ffff888094cefe12 RBX: ffff888094cefe00 RCX: 0000000000000003
[   81.892611][ T9472]  ? llcp_sock_getname+0x358/0x460
[   81.900921][ T9473] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ffff888094cefe12
[   81.906026][ T9472]  kasan_report+0x12/0x20
[   81.913958][ T9473] RBP: ffff888094cefd70 R08: 1ffff1101299dfc2 R09: ffffed101299dfc3
[   81.918288][ T9472]  check_memory_region+0x134/0x1a0
[   81.926346][ T9473] R10: ffffed101299dfc2 R11: ffff888094cefe14 R12: 0000000000000003
[   81.931444][ T9472]  memcpy+0x24/0x50
[   81.939394][ T9473] R13: ffff888094cefe12 R14: 0000000000000000 R15: ffffffff886612a0
[   81.943188][ T9472]  llcp_sock_getname+0x358/0x460
[   81.951133][ T9473] FS:  00000000017f7880(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000
[   81.956057][ T9472]  __sys_getpeername+0x12b/0x290
[   81.964951][ T9473] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   81.969863][ T9472]  ? __ia32_sys_getsockname+0xb0/0xb0
[   81.976414][ T9473] CR2: 0000000000000000 CR3: 00000000a4f57000 CR4: 00000000001406e0
[   81.981763][ T9472]  ? trace_hardirqs_on_thunk+0x1a/0x20
[   81.989710][ T9473] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   81.995153][ T9472]  ? trace_hardirqs_on_thunk+0x1a/0x20
[   82.003098][ T9473] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   82.003110][ T9473] Call Trace:
[   82.008583][ T9472]  ? do_syscall_64+0x26/0x760
[   82.016523][ T9473]  ? memcpy+0x46/0x50
[   82.019787][ T9472]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   82.024586][ T9473]  llcp_sock_getname+0x358/0x460
[   82.028541][ T9472]  ? do_syscall_64+0x26/0x760
[   82.034593][ T9473]  __sys_getpeername+0x12b/0x290
[   82.039504][ T9472]  __x64_sys_getpeername+0x73/0xb0
[   82.044153][ T9473]  ? __ia32_sys_getsockname+0xb0/0xb0
[   82.049075][ T9472]  do_syscall_64+0xfa/0x760
[   82.054157][ T9473]  ? trace_hardirqs_on_thunk+0x1a/0x20
[   82.059510][ T9472]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   82.063982][ T9473]  ? trace_hardirqs_on_thunk+0x1a/0x20
[   82.069407][ T9472] RIP: 0033:0x4412b9
[   82.075357][ T9473]  ? do_syscall_64+0x26/0x760
[   82.080786][ T9472] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb 08 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   82.084653][ T9473]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   82.089295][ T9472] RSP: 002b:00007ffc8cc9e858 EFLAGS: 00000246 ORIG_RAX: 0000000000000034
[   82.108885][ T9473]  ? do_syscall_64+0x26/0x760
[   82.114920][ T9472] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004412b9
[   82.123310][ T9473]  __x64_sys_getpeername+0x73/0xb0
[   82.127952][ T9472] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   82.136010][ T9473]  do_syscall_64+0xfa/0x760
[   82.141093][ T9472] RBP: 00000000006cb018 R08: 00000000004002c8 R09: 00000000004002c8
[   82.149048][ T9473]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   82.153512][ T9472] R10: 00000000004002c8 R11: 0000000000000246 R12: 0000000000402030
[   82.161466][ T9473] RIP: 0033:0x4412b9
[   82.167342][ T9472] R13: 00000000004020c0 R14: 0000000000000000 R15: 0000000000000000
[   82.167360][ T9472] ==================================================================
[   82.175312][ T9473] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb 08 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   82.215701][ T9473] RSP: 002b:00007ffc8cc9e858 EFLAGS: 00000246 ORIG_RAX: 0000000000000034
[   82.224092][ T9473] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004412b9
[   82.232052][ T9473] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   82.240004][ T9473] RBP: 00000000006cb018 R08: 00000000004002c8 R09: 00000000004002c8
[   82.247955][ T9473] R10: 00000000004002c8 R11: 0000000000000246 R12: 0000000000402030
[   82.255916][ T9473] R13: 00000000004020c0 R14: 0000000000000000 R15: 0000000000000000
[   82.263956][ T9473] Modules linked in:
executing program
executing program
executing program
[   82.267833][ T9473] CR2: 0000000000000000
[   82.271992][ T9475] BUG: kernel NULL pointer dereference, address: 0000000000000000
[   82.279798][ T9475] #PF: supervisor read access in kernel mode
[   82.285772][ T9475] #PF: error_code(0x0000) - not-present page
[   82.291727][ T9475] PGD 9c70f067 P4D 9c70f067 PUD 94717067 PMD 0 
[   82.297965][ T9475] Oops: 0000 [#2] PREEMPT SMP KASAN
[   82.303154][ T9475] CPU: 0 PID: 9475 Comm: syz-executor086 Tainted: G    B D           5.4.0-rc4+ #0
[   82.312439][ T9475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   82.322486][ T9475] RIP: 0010:memcpy_erms+0x6/0x10
[   82.327404][ T9475] Code: 90 90 90 90 eb 1e 0f 1f 00 48 89 f8 48 89 d1 48 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 c3 66 0f 1f 44 00 00 48 89 f8 48 89 d1 <f3> a4 c3 0f 1f 80 00 00 00 00 48 89 f8 48 83 fa 20 72 7e 40 38 fe
[   82.347877][ T9475] RSP: 0018:ffff8880a99b7d50 EFLAGS: 00010246
[   82.353959][ T9475] RAX: ffff8880a99b7e12 RBX: ffff8880a99b7e00 RCX: 0000000000000003
[   82.361924][ T9475] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ffff8880a99b7e12
[   82.369878][ T9475] RBP: ffff8880a99b7d70 R08: 1ffff11015336fc2 R09: ffffed1015336fc3
[   82.377835][ T9475] R10: ffffed1015336fc2 R11: ffff8880a99b7e14 R12: 0000000000000003
[   82.385786][ T9475] R13: ffff8880a99b7e12 R14: 0000000000000000 R15: ffffffff886612a0
[   82.393738][ T9475] FS:  00000000017f7880(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000
[   82.402647][ T9475] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   82.409302][ T9475] CR2: 0000000000000000 CR3: 0000000096fcc000 CR4: 00000000001406f0
[   82.417268][ T9475] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   82.425220][ T9475] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   82.433171][ T9475] Call Trace:
[   82.436479][ T9475]  ? memcpy+0x46/0x50
[   82.440478][ T9475]  llcp_sock_getname+0x358/0x460
[   82.445414][ T9475]  __sys_getpeername+0x12b/0x290
[   82.450352][ T9475]  ? __ia32_sys_getsockname+0xb0/0xb0
[   82.455730][ T9475]  ? up_read+0x1d2/0x810
[   82.459973][ T9475]  ? __kasan_check_write+0x14/0x20
[   82.465090][ T9475]  ? switch_fpu_return+0x1fa/0x4f0
[   82.470218][ T9475]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[   82.476283][ T9475]  __x64_sys_getpeername+0x73/0xb0
[   82.481397][ T9475]  do_syscall_64+0xfa/0x760
[   82.485890][ T9475]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   82.491765][ T9475] RIP: 0033:0x4412b9
[   82.495645][ T9475] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb 08 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   82.515589][ T9475] RSP: 002b:00007ffc8cc9e858 EFLAGS: 00000246 ORIG_RAX: 0000000000000034
[   82.523994][ T9475] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004412b9
[   82.531958][ T9475] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   82.539914][ T9475] RBP: 00000000006cb018 R08: 00000000004002c8 R09: 00000000004002c8
[   82.547968][ T9475] R10: 00000000004002c8 R11: 0000000000000246 R12: 0000000000402030
[   82.555941][ T9475] R13: 00000000004020c0 R14: 0000000000000000 R15: 0000000000000000
[   82.563898][ T9475] Modules linked in:
[   82.567777][ T9475] CR2: 0000000000000000
[   82.571925][ T9476] BUG: kernel NULL pointer dereference, address: 0000000000000000
[   82.576059][ T9475] ---[ end trace c8be688da2cfd4c8 ]---
[   82.579729][ T9476] #PF: supervisor read access in kernel mode
[   82.579736][ T9476] #PF: error_code(0x0000) - not-present page
[   82.579743][ T9476] PGD 8e89d067 P4D 8e89d067 PUD 97cce067 PMD 0 
[   82.579762][ T9476] Oops: 0000 [#3] PREEMPT SMP KASAN
[   82.579777][ T9476] CPU: 1 PID: 9476 Comm: syz-executor086 Tainted: G    B D           5.4.0-rc4+ #0
[   82.579790][ T9476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   82.585788][ T9475] RIP: 0010:memcpy_erms+0x6/0x10
[   82.591191][ T9476] RIP: 0010:memcpy_erms+0x6/0x10
[   82.591203][ T9476] Code: 90 90 90 90 eb 1e 0f 1f 00 48 89 f8 48 89 d1 48 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 c3 66 0f 1f 44 00 00 48 89 f8 48 89 d1 <f3> a4 c3 0f 1f 80 00 00 00 00 48 89 f8 48 83 fa 20 72 7e 40 38 fe
[   82.591210][ T9476] RSP: 0018:ffff888094ccfd50 EFLAGS: 00010246
[   82.591221][ T9476] RAX: ffff888094ccfe12 RBX: ffff888094ccfe00 RCX: 0000000000000003
[   82.591228][ T9476] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ffff888094ccfe12
[   82.591234][ T9476] RBP: ffff888094ccfd70 R08: 1ffff11012999fc2 R09: ffffed1012999fc3
[   82.591240][ T9476] R10: ffffed1012999fc2 R11: ffff888094ccfe14 R12: 0000000000000003
[   82.591253][ T9476] R13: ffff888094ccfe12 R14: 0000000000000000 R15: ffffffff886612a0
[   82.599989][ T9475] Code: 90 90 90 90 eb 1e 0f 1f 00 48 89 f8 48 89 d1 48 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 c3 66 0f 1f 44 00 00 48 89 f8 48 89 d1 <f3> a4 c3 0f 1f 80 00 00 00 00 48 89 f8 48 83 fa 20 72 7e 40 38 fe
[   82.603448][ T9476] FS:  00000000017f7880(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000
[   82.603457][ T9476] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   82.603464][ T9476] CR2: 0000000000000000 CR3: 0000000085ed7000 CR4: 00000000001406e0
[   82.603479][ T9476] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   82.611764][ T9475] RSP: 0018:ffff888094cefd50 EFLAGS: 00010246
[   82.617933][ T9476] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   82.617938][ T9476] Call Trace:
[   82.617954][ T9476]  ? memcpy+0x46/0x50
[   82.617971][ T9476]  llcp_sock_getname+0x358/0x460
[   82.617987][ T9476]  __sys_getpeername+0x12b/0x290
[   82.618005][ T9476]  ? __ia32_sys_getsockname+0xb0/0xb0
[   82.631143][ T9475] RAX: ffff888094cefe12 RBX: ffff888094cefe00 RCX: 0000000000000003
[   82.632970][ T9476]  ? up_read+0x1d2/0x810
[   82.632996][ T9476]  ? __kasan_check_write+0x14/0x20
[   82.640605][ T9475] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ffff888094cefe12
[   82.657961][ T9476]  ? switch_fpu_return+0x1fa/0x4f0
[   82.657977][ T9476]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[   82.657993][ T9476]  __x64_sys_getpeername+0x73/0xb0
[   82.658006][ T9476]  do_syscall_64+0xfa/0x760
[   82.658025][ T9476]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   82.664908][ T9472] Kernel panic - not syncing: panic_on_warn set ...
[   82.672378][ T9476] RIP: 0033:0x4412b9
[   82.854249][ T9476] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb 08 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   82.874357][ T9476] RSP: 002b:00007ffc8cc9e858 EFLAGS: 00000246 ORIG_RAX: 0000000000000034
[   82.882750][ T9476] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004412b9
[   82.890711][ T9476] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   82.898670][ T9476] RBP: 00000000006cb018 R08: 00000000004002c8 R09: 00000000004002c8
[   82.906626][ T9476] R10: 00000000004002c8 R11: 0000000000000246 R12: 0000000000402030
[   82.914580][ T9476] R13: 00000000004020c0 R14: 0000000000000000 R15: 0000000000000000
[   82.922540][ T9476] Modules linked in:
[   82.926418][ T9476] CR2: 0000000000000000
[   82.932080][ T9472] Kernel Offset: disabled
[   82.936475][ T9472] Rebooting in 86400 seconds..