[....] Starting enhanced syslogd: rsyslogd[ 13.410473] audit: type=1400 audit(1516801376.617:5): avc: denied { syslog } for pid=3504 comm="rsyslogd" capability=34 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 17.473131] audit: type=1400 audit(1516801380.679:6): avc: denied { map } for pid=3643 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '10.128.0.45' (ECDSA) to the list of known hosts. net.ipv6.conf.syz0.accept_dad = 0 net.ipv6.conf.syz0.router_solicitations = 0 [ 23.898772] audit: type=1400 audit(1516801387.105:7): avc: denied { map } for pid=3657 comm="syzkaller812634" path="/root/syzkaller812634053" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 RTNETLINK answers: Operation not supported RTNETLINK answers: No buffer space available RTNETLINK answers: Operation not supported [ 24.295581] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument executing program [ 24.644922] A link change request failed with some changes committed already. Interface syz0 may have been left with an inconsistent configuration, please check. [ 24.661640] kasan: CONFIG_KASAN_INLINE enabled [ 24.666287] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 24.673853] general protection fault: 0000 [#1] SMP KASAN [ 24.679376] Dumping ftrace buffer: [ 24.682885] (ftrace buffer empty) [ 24.686565] Modules linked in: [ 24.689732] CPU: 0 PID: 3657 Comm: syzkaller812634 Not tainted 4.15.0-rc9+ #206 [ 24.697233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 24.706564] RIP: 0010:tun_queue_purge+0x1c1/0x410 [ 24.711381] RSP: 0018:ffff8801d99b7650 EFLAGS: 00010202 [ 24.716715] RAX: 0000000000000010 RBX: ffff8801d99f5340 RCX: 0000000000000002 [ 24.723964] RDX: 0000000000000000 RSI: 00000000f1d68e87 RDI: ffff8801d99f5a0c [ 24.731204] RBP: ffff8801d99b76d0 R08: 1ffff1003b336e09 R09: 00000000000016d6 [ 24.738446] R10: ffff8801d99b7508 R11: 1ffff1003b336fe8 R12: 0000000000000000 [ 24.745687] R13: 00000000ffffffff R14: 0000000000000010 R15: dffffc0000000000 [ 24.752928] FS: 0000000001bf2880(0000) GS:ffff8801db200000(0000) knlGS:0000000000000000 [ 24.761122] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 24.766987] CR2: 00000000006d00a8 CR3: 0000000006822003 CR4: 00000000001606f0 [ 24.774240] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 24.781490] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 24.788737] Call Trace: [ 24.791307] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 24.796293] ? trace_hardirqs_on+0xd/0x10 [ 24.800416] __tun_detach+0xa58/0x10b0 [ 24.804278] ? tun_cleanup_tx_ring.part.47+0x450/0x450 [ 24.809525] ? trace_event_raw_event_sched_switch+0x800/0x800 [ 24.815385] ? locks_remove_file+0x3fa/0x5a0 [ 24.819765] ? fcntl_setlk+0x10c0/0x10c0 [ 24.823805] ? fsnotify+0x7b3/0x1140 [ 24.827500] ? fsnotify_first_mark+0x2b0/0x2b0 [ 24.832054] ? __tun_detach+0x10b0/0x10b0 [ 24.836173] ? __tun_detach+0x10b0/0x10b0 [ 24.840291] tun_chr_close+0x44/0x60 [ 24.843976] __fput+0x327/0x7e0 [ 24.847227] ? fput+0x140/0x140 [ 24.850478] ? trace_event_raw_event_sched_switch+0x800/0x800 [ 24.856341] ? _raw_spin_unlock_irq+0x27/0x70 [ 24.860810] ____fput+0x15/0x20 [ 24.864071] task_work_run+0x199/0x270 [ 24.867940] ? task_work_cancel+0x210/0x210 [ 24.872232] ? _raw_spin_unlock+0x22/0x30 [ 24.876351] ? switch_task_namespaces+0x87/0xc0 [ 24.880995] do_exit+0x9bb/0x1ad0 [ 24.884424] ? __pmd_alloc+0x4e0/0x4e0 [ 24.888285] ? mm_update_next_owner+0x930/0x930 [ 24.892934] ? find_held_lock+0x35/0x1d0 [ 24.896968] ? handle_mm_fault+0x248/0x8d0 [ 24.901182] ? find_held_lock+0x35/0x1d0 [ 24.905220] ? __do_page_fault+0x5f7/0xc90 [ 24.909434] ? lock_downgrade+0x980/0x980 [ 24.913557] ? down_read_trylock+0xdb/0x170 [ 24.917846] ? __do_page_fault+0x32d/0xc90 [ 24.922059] ? __handle_mm_fault+0x3ce0/0x3ce0 [ 24.926618] ? vmacache_find+0x5f/0x280 [ 24.930568] ? up_read+0x1a/0x40 [ 24.933913] ? __do_page_fault+0x3d6/0xc90 [ 24.938123] ? mm_fault_error+0x2c0/0x2c0 [ 24.942241] ? __fdget+0x18/0x20 [ 24.945604] ? do_page_fault+0xee/0x720 [ 24.949552] ? __do_page_fault+0xc90/0xc90 [ 24.953764] ? __fd_install+0x6eb/0x740 [ 24.957720] do_group_exit+0x149/0x400 [ 24.961586] ? SyS_exit+0x30/0x30 [ 24.965016] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 24.970009] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 24.974755] SyS_exit_group+0x1d/0x20 [ 24.978537] entry_SYSCALL_64_fastpath+0x29/0xa0 [ 24.983263] RIP: 0033:0x443ec8 [ 24.986424] RSP: 002b:00007fffe43a8278 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 24.994102] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000443ec8 [ 25.001341] RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000 [ 25.008591] RBP: 00000000006d00a8 R08: 00000000000000e7 R09: ffffffffffffffd0 [ 25.015832] R10: 000000000000834c R11: 0000000000000246 R12: 0000000000000001 [ 25.023072] R13: 00000000006d6180 R14: 0000000000000000 R15: 0000000000000000 [ 25.030321] Code: 07 00 00 48 89 45 a0 48 c1 e8 03 42 80 3c 38 00 0f 85 2c 02 00 00 48 8b 83 08 07 00 00 49 63 d4 4c 8d 34 d0 4c 89 f1 48 c1 e9 03 <42> 80 3c 39 00 0f 85 ef 01 00 00 4d 8b 36 48 89 55 b8 48 89 45 [ 25.049399] RIP: tun_queue_purge+0x1c1/0x410 RSP: ffff8801d99b7650 [ 25.055886] ---[ end trace 98a4d9eae850a03e ]--- [ 25.060660] Kernel panic - not syncing: Fatal exception [ 25.066441] Dumping ftrace buffer: [ 25.069962] (ftrace buffer empty) [ 25.073642] Kernel Offset: disabled [ 25.077239] Rebooting in 86400 seconds..