[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 22.139924] audit: type=1400 audit(1519462709.189:6): avc: denied { map } for pid=4224 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 22.169250] sshd (4221) used greatest stack depth: 16592 bytes left Warning: Permanently added '10.128.0.45' (ECDSA) to the list of known hosts. executing program [ 28.444497] audit: type=1400 audit(1519462715.494:7): avc: denied { map } for pid=4239 comm="syzkaller322367" path="/root/syzkaller322367318" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 28.449143] ------------[ cut here ]------------ [ 28.475188] kernel BUG at ./include/linux/skbuff.h:2076! [ 28.480743] invalid opcode: 0000 [#1] SMP KASAN [ 28.485398] Dumping ftrace buffer: [ 28.488905] (ftrace buffer empty) [ 28.492584] Modules linked in: [ 28.495748] CPU: 0 PID: 4239 Comm: syzkaller322367 Not tainted 4.16.0-rc2+ #240 [ 28.503161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 28.512494] RIP: 0010:__ip6_make_skb+0x1ac8/0x2190 [ 28.517391] RSP: 0018:ffff8801ac4570f0 EFLAGS: 00010293 [ 28.522723] RAX: ffff8801ae8aa740 RBX: 0000000000000738 RCX: ffffffff84eff058 [ 28.529962] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffff8801add13c60 [ 28.537201] RBP: ffff8801ac457360 R08: ffff8801b115e944 R09: 0000000000000000 [ 28.544441] R10: ffff8801ac457380 R11: ffffed0036082dee R12: 00000000000000d6 [ 28.551680] R13: ffff8801add13780 R14: dffffc0000000000 R15: ffff8801b115e8c0 [ 28.558920] FS: 0000000000d04880(0000) GS:ffff8801db200000(0000) knlGS:0000000000000000 [ 28.567116] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 28.572965] CR2: 000000002000b000 CR3: 00000001b012c006 CR4: 00000000001606f0 [ 28.580207] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 28.587450] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 28.594688] Call Trace: [ 28.597254] ? ip6_output+0x840/0x840 [ 28.601030] ? __lock_acquire+0x664/0x3e00 [ 28.605235] ? check_noncircular+0x20/0x20 [ 28.609437] ? __lock_acquire+0x664/0x3e00 [ 28.613640] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 28.618805] ? print_irqtrace_events+0x270/0x270 [ 28.623530] ? find_held_lock+0x35/0x1d0 [ 28.627566] ? lock_acquire+0x1d5/0x580 [ 28.631514] ? lock_sock_nested+0xa3/0x110 [ 28.635718] ? lock_acquire+0x1d5/0x580 [ 28.639662] ? udpv6_sendmsg+0x9c5/0x3400 [ 28.643785] udp_v6_push_pending_frames+0x269/0x3b0 [ 28.648773] ? udp_v6_push_pending_frames+0x269/0x3b0 [ 28.653933] ? udp_v6_send_skb+0xf70/0xf70 [ 28.658138] ? ip6_append_data+0x189/0x290 [ 28.662349] udpv6_sendmsg+0x2a96/0x3400 [ 28.666379] ? udpv6_sendmsg+0x3400/0x3400 [ 28.670592] ? udpv6_setsockopt+0x80/0x80 [ 28.674717] ? avc_has_perm+0x43e/0x680 [ 28.678661] ? avc_has_perm_noaudit+0x520/0x520 [ 28.683300] ? lock_release+0xa40/0xa40 [ 28.687247] ? check_noncircular+0x20/0x20 [ 28.691449] ? __might_sleep+0x95/0x190 [ 28.695399] ? kasan_check_write+0x14/0x20 [ 28.699606] ? _copy_from_user+0x99/0x110 [ 28.703730] ? find_held_lock+0x35/0x1d0 [ 28.707763] ? sock_has_perm+0x2a4/0x420 [ 28.711796] ? selinux_secmark_relabel_packet+0xc0/0xc0 [ 28.717127] ? lock_downgrade+0x980/0x980 [ 28.721242] ? dup_iter+0x212/0x260 [ 28.724845] inet_sendmsg+0x11f/0x5e0 [ 28.728616] ? inet_sendmsg+0x11f/0x5e0 [ 28.732560] ? inet_create+0xf50/0xf50 [ 28.736416] ? selinux_socket_sendmsg+0x36/0x40 [ 28.741054] ? security_socket_sendmsg+0x89/0xb0 [ 28.745778] ? inet_create+0xf50/0xf50 [ 28.749635] sock_sendmsg+0xca/0x110 [ 28.753317] ___sys_sendmsg+0x320/0x8b0 [ 28.757265] ? copy_msghdr_from_user+0x590/0x590 [ 28.761998] ? ___sys_sendmsg+0x49f/0x8b0 [ 28.766123] ? __fget_light+0x2b2/0x3c0 [ 28.770075] ? fget_raw+0x20/0x20 [ 28.773503] ? check_noncircular+0x20/0x20 [ 28.777708] ? lock_downgrade+0x980/0x980 [ 28.781828] ? find_held_lock+0x35/0x1d0 [ 28.785862] ? __fdget+0x18/0x20 [ 28.789199] __sys_sendmmsg+0x1ee/0x620 [ 28.793143] ? __sys_sendmmsg+0x1ee/0x620 [ 28.797262] ? SyS_sendmsg+0x50/0x50 [ 28.800952] ? lock_downgrade+0x980/0x980 [ 28.805086] ? __do_page_fault+0x3d6/0xc90 [ 28.809296] ? move_addr_to_kernel+0x60/0x60 [ 28.813679] SyS_sendmmsg+0x35/0x60 [ 28.817276] ? __sys_sendmmsg+0x620/0x620 [ 28.821396] do_syscall_64+0x280/0x940 [ 28.825251] ? __do_page_fault+0xc90/0xc90 [ 28.829454] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 28.834182] ? syscall_return_slowpath+0x550/0x550 [ 28.839082] ? syscall_return_slowpath+0x2ac/0x550 [ 28.843980] ? prepare_exit_to_usermode+0x350/0x350 [ 28.848968] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 28.854303] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 28.859120] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 28.864278] RIP: 0033:0x4404c9 [ 28.867438] RSP: 002b:00007fff72dce4d8 EFLAGS: 00000217 ORIG_RAX: 0000000000000133 [ 28.875116] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 00000000004404c9 [ 28.882355] RDX: 0000000000000003 RSI: 0000000020001f00 RDI: 0000000000000003 [ 28.889596] RBP: 00000000006cb018 R08: 00000000004002c8 R09: 00000000004002c8 [ 28.896836] R10: 0000000020000080 R11: 0000000000000217 R12: 0000000000401df0 [ 28.904074] R13: 0000000000401e80 R14: 0000000000000000 R15: 0000000000000000 [ 28.911321] Code: ff e8 dd 71 b9 fc e9 15 e9 ff ff e8 d3 71 b9 fc e9 44 e8 ff ff e8 e9 71 b9 fc e9 c0 e6 ff ff e8 7f 1b 81 fc 0f 0b e8 78 1b 81 fc <0f> 0b 49 8d 87 80 00 00 00 4d 8d 87 84 00 00 00 48 89 85 20 fe [ 28.930403] RIP: __ip6_make_skb+0x1ac8/0x2190 RSP: ffff8801ac4570f0 [ 28.937025] ---[ end trace 93c6f9331c828fc3 ]--- [ 28.941790] Kernel panic - not syncing: Fatal exception [ 28.947653] Dumping ftrace buffer: [ 28.951166] (ftrace buffer empty) [ 28.954845] Kernel Offset: disabled [ 28.958440] Rebooting in 86400 seconds..