[....] Starting enhanced syslogd: rsyslogd[ 10.221279] audit: type=1400 audit(1514223337.956:5): avc: denied { syslog } for pid=2995 comm="rsyslogd" capability=34 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 15.905755] audit: type=1400 audit(1514223343.641:6): avc: denied { map } for pid=3135 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added 'ci-upstream-mmots-kasan-gce-8,10.128.0.16' (ECDSA) to the list of known hosts. [ 36.165452] audit: type=1400 audit(1514223363.901:7): avc: denied { map } for pid=3153 comm="syzkaller909359" path="/root/syzkaller909359336" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 36.191424] audit: type=1400 audit(1514223363.901:8): avc: denied { sys_admin } for pid=3153 comm="syzkaller909359" capability=21 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 executing program [ 36.223574] audit: type=1400 audit(1514223363.959:9): avc: denied { sys_chroot } for pid=3154 comm="syzkaller909359" capability=18 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 [ 36.228986] device syz0 entered promiscuous mode [ 36.252870] audit: type=1400 audit(1514223363.961:10): avc: denied { net_raw } for pid=3154 comm="syzkaller909359" capability=13 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 [ 36.277399] audit: type=1400 audit(1514223363.961:11): avc: denied { net_admin } for pid=3154 comm="syzkaller909359" capability=12 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 [ 36.308374] kasan: CONFIG_KASAN_INLINE enabled [ 36.313024] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 36.320410] general protection fault: 0000 [#1] SMP KASAN [ 36.325916] Dumping ftrace buffer: [ 36.329421] (ftrace buffer empty) [ 36.333099] Modules linked in: [ 36.336272] CPU: 0 PID: 3154 Comm: syzkaller909359 Not tainted 4.15.0-rc4-mm1+ #49 [ 36.343943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 36.353271] RIP: 0010:skb_segment+0x667/0x2fe0 [ 36.357817] RSP: 0018:ffff8801c84de9b8 EFLAGS: 00010206 [ 36.363154] RAX: 000000000000000f RBX: 0000000000000000 RCX: ffffffff842c1915 [ 36.370387] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000078 [ 36.377622] RBP: ffff8801c84dec70 R08: 0000000000000020 R09: 0000000000000002 [ 36.384858] R10: ffff8801c84decf8 R11: 0000000000000000 R12: 0000000000000008 [ 36.392093] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff8801d55160c0 [ 36.399330] FS: 0000000000f53880(0000) GS:ffff8801db200000(0000) knlGS:0000000000000000 [ 36.407521] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 36.413367] CR2: 0000000020217f75 CR3: 00000001c86de001 CR4: 00000000001606f0 [ 36.420604] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 36.427839] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 36.435083] Call Trace: [ 36.437657] ? pskb_extract+0x1b0/0x1b0 [ 36.441601] ? check_noncircular+0x20/0x20 [ 36.445809] ? check_noncircular+0x20/0x20 [ 36.450010] ? print_irqtrace_events+0x270/0x270 [ 36.454733] ? check_noncircular+0x20/0x20 [ 36.458937] ? check_noncircular+0x20/0x20 [ 36.463134] ? find_held_lock+0x35/0x1d0 [ 36.467167] sctp_gso_segment+0x213/0x890 [ 36.471280] ? sctp_csum_update+0x30/0x30 [ 36.475393] ? sctp_csum_update+0x30/0x30 [ 36.479510] inet_gso_segment+0x609/0x11b0 [ 36.483713] ? inet_sock_destruct+0x950/0x950 [ 36.488176] ? print_irqtrace_events+0x270/0x270 [ 36.492899] skb_mac_gso_segment+0x33f/0x660 [ 36.497276] ? inet_sock_destruct+0x950/0x950 [ 36.501734] ? skb_network_protocol+0x490/0x490 [ 36.506376] ? skb_network_protocol+0xef/0x490 [ 36.510925] __skb_gso_segment+0x363/0x810 [ 36.515124] ? skb_mac_gso_segment+0x660/0x660 [ 36.519671] ? find_held_lock+0x35/0x1d0 [ 36.523704] validate_xmit_skb+0x4ba/0xb20 [ 36.527905] ? netif_skb_features+0x8e0/0x8e0 [ 36.532365] ? lock_release+0xa40/0xa40 [ 36.536306] ? trace_event_raw_event_sched_switch+0x800/0x800 [ 36.542156] validate_xmit_skb_list+0xb7/0x120 [ 36.546705] sch_direct_xmit+0x38e/0x920 [ 36.550732] ? pfifo_fast_reset+0x490/0x490 [ 36.555024] __qdisc_run+0x571/0x1930 [ 36.558794] ? sch_direct_xmit+0x920/0x920 [ 36.562994] ? lock_release+0xa40/0xa40 [ 36.566932] ? __dev_queue_xmit+0x262/0x2200 [ 36.571305] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 36.576292] ? pfifo_fast_enqueue+0x2a0/0x420 [ 36.580754] __dev_queue_xmit+0x89e/0x2200 [ 36.584957] ? netdev_pick_tx+0x300/0x300 [ 36.589078] ? lock_release+0xa40/0xa40 [ 36.593017] ? trace_event_raw_event_sched_switch+0x800/0x800 [ 36.598867] ? refcount_add+0x24/0x60 [ 36.602638] ? skb_set_owner_w+0x232/0x330 [ 36.606840] ? __might_sleep+0x95/0x190 [ 36.610781] ? kasan_check_write+0x14/0x20 [ 36.614982] ? copyin+0x91/0xb0 [ 36.618227] ? _copy_from_iter+0x367/0xf30 [ 36.622426] ? __check_object_size+0x25d/0x4f0 [ 36.626975] ? check_stack_object+0x140/0x140 [ 36.631434] ? copy_page_to_iter+0xe00/0xe00 [ 36.635810] ? _copy_from_iter_full+0x22b/0xbb0 [ 36.640449] ? skb_copy_datagram_from_iter+0x3a5/0x5a0 [ 36.645691] ? iov_iter_advance+0x13f0/0x13f0 [ 36.650155] dev_queue_xmit+0x17/0x20 [ 36.653923] packet_sendmsg+0x3ad5/0x60a0 [ 36.658041] ? find_held_lock+0x35/0x1d0 [ 36.662086] ? avc_has_perm+0x35e/0x680 [ 36.666038] ? packet_cached_dev_get+0x2b0/0x2b0 [ 36.670758] ? mark_held_locks+0xaf/0x100 [ 36.674874] ? avc_has_perm+0x43e/0x680 [ 36.678814] ? avc_has_perm_noaudit+0x520/0x520 [ 36.683454] ? locks_remove_posix+0x518/0x820 [ 36.687918] ? find_held_lock+0x35/0x1d0 [ 36.691945] ? avc_has_perm+0x35e/0x680 [ 36.695884] ? sock_has_perm+0x2a4/0x420 [ 36.699910] ? selinux_secmark_relabel_packet+0xc0/0xc0 [ 36.705250] ? selinux_socket_sendmsg+0x36/0x40 [ 36.709883] ? security_socket_sendmsg+0x89/0xb0 [ 36.714610] ? packet_cached_dev_get+0x2b0/0x2b0 [ 36.719333] sock_sendmsg+0xca/0x110 [ 36.723011] sock_write_iter+0x31a/0x5d0 [ 36.727047] ? sock_sendmsg+0x110/0x110 [ 36.730991] ? iov_iter_init+0xaf/0x1d0 [ 36.734936] __vfs_write+0x684/0x970 [ 36.738616] ? kernel_read+0x120/0x120 [ 36.742470] ? bpf_fd_pass+0x280/0x280 [ 36.746324] ? _cond_resched+0x14/0x30 [ 36.750178] ? selinux_file_permission+0x82/0x460 [ 36.754992] ? rw_verify_area+0xe5/0x2b0 [ 36.759018] ? __fdget_raw+0x20/0x20 [ 36.762699] vfs_write+0x189/0x510 [ 36.766207] SyS_write+0xef/0x220 [ 36.769627] ? SyS_read+0x220/0x220 [ 36.773220] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 36.778212] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 36.782942] entry_SYSCALL_64_fastpath+0x1f/0x96 [ 36.787663] RIP: 0033:0x444b69 [ 36.790818] RSP: 002b:00000000007eff78 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 36.798494] RAX: ffffffffffffffda RBX: 00007ffe674fbec0 RCX: 0000000000444b69 [ 36.805729] RDX: 000000000000002a RSI: 0000000020217f75 RDI: 0000000000000005 [ 36.812972] RBP: 0000000000000000 R08: 0000000120080522 R09: 0000000120080522 [ 36.820213] R10: 0000000120080522 R11: 0000000000000293 R12: 0000000000402760 [ 36.827450] R13: 00000000004027f0 R14: 0000000000000000 R15: 0000000000000000 [ 36.834692] Code: 00 00 8b b5 1c fe ff ff 39 b5 30 fe ff ff 0f 8f 99 00 00 00 e8 ab 1a 44 fd 48 8b 85 48 fe ff ff 48 8d 78 78 48 89 f8 48 c1 e8 03 <42> 0f b6 14 28 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f [ 36.853761] RIP: skb_segment+0x667/0x2fe0 RSP: ffff8801c84de9b8 [ 36.859827] ---[ end trace 580392d61caec1a9 ]--- [ 36.864558] Kernel panic - not syncing: Fatal exception in interrupt [ 36.871390] Dumping ftrace buffer: [ 36.874901] (ftrace buffer empty) [ 36.878578] Kernel Offset: disabled [ 36.882176] Rebooting in 86400 seconds..