[....] Starting enhanced syslogd: rsyslogd[ 16.009289] audit: type=1400 audit(1518002401.769:5): avc: denied { syslog } for pid=3995 comm="rsyslogd" capability=34 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 18.966983] audit: type=1400 audit(1518002404.726:6): avc: denied { map } for pid=4134 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '10.128.0.22' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 25.309252] audit: type=1400 audit(1518002411.069:7): avc: denied { map } for pid=4148 comm="syzkaller701584" path="/root/syzkaller701584470" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 31.773196] pte_list_remove: 00000000d1227865 0->BUG [ 31.778570] ------------[ cut here ]------------ [ 31.783321] kernel BUG at arch/x86/kvm/mmu.c:1208! [ 31.788323] invalid opcode: 0000 [#1] SMP KASAN [ 31.792985] Dumping ftrace buffer: [ 31.796508] (ftrace buffer empty) [ 31.800206] Modules linked in: [ 31.803391] CPU: 1 PID: 4167 Comm: syzkaller701584 Not tainted 4.15.0+ #300 [ 31.810475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 executing program executing program executing program [ 31.820092] RIP: 0010:pte_list_remove+0x3ae/0x3c0 [ 31.824925] RSP: 0018:ffff8801b38d7260 EFLAGS: 00010286 [ 31.830278] RAX: 0000000000000028 RBX: ffff8801d514f3d0 RCX: 0000000000000000 [ 31.837546] RDX: 0000000000000028 RSI: 1ffff1003671ae01 RDI: ffffed003671ae40 [ 31.844810] RBP: ffff8801b38d72a0 R08: 1ffff1003671ad98 R09: 0000000000000000 [ 31.852068] R10: ffff8801b38d7438 R11: 0000000000000000 R12: ffff8801c1637078 [ 31.859527] R13: 0000000000000000 R14: ffff8801c1620210 R15: ffff8801c1620238 [ 31.866792] FS: 00007f6f148b6700(0000) GS:ffff8801db500000(0000) knlGS:0000000000000000 [ 31.875004] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 31.880865] CR2: 0000000000000000 CR3: 00000001b4b0a005 CR4: 00000000001626e0 [ 31.888546] Call Trace: [ 31.891115] drop_spte+0x15a/0x250 [ 31.894633] kvm_zap_rmapp+0x7e/0xd0 [ 31.898322] ? drop_spte+0x250/0x250 [ 31.902015] ? __lock_is_held+0xb6/0x140 [ 31.906051] ? rmap_walk_init_level+0x1a/0x200 [ 31.910609] kvm_unmap_rmapp+0x1d/0x30 [ 31.914467] kvm_handle_hva_range+0x3ed/0x6e0 [ 31.918938] ? kvm_zap_rmapp+0xd0/0xd0 [ 31.922799] ? shadow_page_table_clear_flood+0x640/0x640 [ 31.928222] ? kvm_mmu_notifier_invalidate_range_start+0x6c/0x140 [ 31.934428] ? kvm_flush_remote_tlbs+0x150/0x150 [ 31.939159] ? lock_release+0xa40/0xa40 [ 31.943107] ? lock_release+0xa40/0xa40 [ 31.947060] kvm_unmap_hva_range+0x2e/0x40 [ 31.951267] kvm_mmu_notifier_invalidate_range_start+0xa1/0x140 [ 31.957300] ? kvm_flush_remote_tlbs+0x150/0x150 [ 31.962032] __mmu_notifier_invalidate_range_start+0x1cd/0x2d0 [ 31.968153] ? mmu_notifier_unregister_no_release+0x3e0/0x3e0 [ 31.974010] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 31.979006] ? pagevec_lru_move_fn+0x1ce/0x260 [ 31.983565] ? get_kernel_page+0x110/0x110 [ 31.987777] unmap_vmas+0x14b/0x1b0 [ 31.991378] unmap_region+0x2b9/0x4f0 [ 31.995156] ? reusable_anon_vma+0x560/0x560 [ 31.999542] ? may_expand_vm+0x5ba/0x860 [ 32.003575] ? find_held_lock+0x35/0x1d0 [ 32.007610] ? copy_vma+0xd80/0xd80 [ 32.011217] ? userfaultfd_remove+0x220/0x220 [ 32.015684] ? vmacache_find+0x5f/0x280 [ 32.019629] ? vmacache_update+0xfe/0x130 [ 32.023750] ? find_vma+0x30/0x150 [ 32.027262] do_munmap+0x726/0xdf0 [ 32.030780] mmap_region+0x59e/0x15a0 [ 32.034560] ? SyS_brk+0x6f0/0x6f0 [ 32.038075] ? arch_get_unmapped_area_topdown+0xba/0x920 [ 32.043501] ? arch_get_unmapped_area+0x760/0x760 [ 32.048312] ? lock_acquire+0x1d5/0x580 [ 32.052256] ? vm_mmap_pgoff+0x198/0x280 [ 32.056292] ? selinux_mmap_addr+0x1f/0xf0 [ 32.060502] ? security_mmap_addr+0x79/0xa0 [ 32.064798] ? get_unmapped_area+0x265/0x300 [ 32.069183] do_mmap+0x6c0/0xe00 [ 32.072523] ? mmap_region+0x15a0/0x15a0 [ 32.076555] ? vm_mmap_pgoff+0x198/0x280 [ 32.080592] ? down_read_killable+0x180/0x180 [ 32.085057] ? security_mmap_file+0x143/0x180 [ 32.089525] vm_mmap_pgoff+0x1de/0x280 [ 32.093391] ? vma_is_stack_for_current+0xa0/0xa0 [ 32.098205] ? selinux_capable+0x40/0x40 [ 32.102245] ? SyS_futex+0x269/0x390 [ 32.105934] SyS_mmap_pgoff+0x23b/0x5f0 [ 32.109885] ? find_mergeable_anon_vma+0xd0/0xd0 [ 32.114615] ? trace_event_raw_event_sys_exit+0x260/0x260 [ 32.120123] ? do_syscall_64+0xb7/0x940 [ 32.124075] ? align_vdso_addr+0x60/0x60 [ 32.128107] SyS_mmap+0x16/0x20 [ 32.131359] do_syscall_64+0x282/0x940 [ 32.135218] ? __do_page_fault+0xc90/0xc90 [ 32.139423] ? trace_event_raw_event_sys_exit+0x260/0x260 [ 32.144934] ? syscall_return_slowpath+0x550/0x550 [ 32.149834] ? syscall_return_slowpath+0x2ac/0x550 [ 32.154742] ? entry_SYSCALL_64_after_hwframe+0x36/0x9b [ 32.160081] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 32.164901] entry_SYSCALL_64_after_hwframe+0x26/0x9b [ 32.170063] RIP: 0033:0x4489c9 [ 32.173228] RSP: 002b:00007f6f148b5d98 EFLAGS: 00000212 ORIG_RAX: 0000000000000009 [ 32.180908] RAX: ffffffffffffffda RBX: 00000000006ddc3c RCX: 00000000004489c9 [ 32.188154] RDX: 0000000000000003 RSI: 0000000000fff000 RDI: 0000000020000000 [ 32.195400] RBP: 0000000000000000 R08: 00000000ffffffff R09: 0000000000000000 [ 32.202641] R10: 0000000000000032 R11: 0000000000000212 R12: 00000000006ddc38 [ 32.209884] R13: 6d766b2f7665642f R14: 00007f6f148b69c0 R15: 0000000000000001 [ 32.217134] Code: 49 85 61 00 48 8b 75 d0 48 c7 c7 e0 69 e2 85 e8 21 29 4b 00 0f 0b e8 32 85 61 00 48 8b 75 d0 48 c7 c7 a0 69 e2 85 e8 0a 29 4b 00 <0f> 0b 4c 89 ef e8 48 d1 99 00 e9 01 fe ff ff 0f 1f 00 55 48 89 [ 32.236231] RIP: pte_list_remove+0x3ae/0x3c0 RSP: ffff8801b38d7260 [ 32.242578] ---[ end trace 6b5adc1e14e4ed89 ]--- [ 32.247314] Kernel panic - not syncing: Fatal exception [ 32.253104] Dumping ftrace buffer: [ 32.256616] (ftrace buffer empty) [ 32.260295] Kernel Offset: disabled [ 32.263890] Rebooting in 86400 seconds..