[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 10.617661] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. [ 11.646417] random: crng init done Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.105' (ECDSA) to the list of known hosts. 2018/11/29 20:02:29 parsed 1 programs 2018/11/29 20:02:31 executed programs: 0 syzkaller login: [ 45.772013] audit: type=1400 audit(1543521756.594:5): avc: denied { associate } for pid=2079 comm="syz-executor4" name="syz4" scontext=unconfined_u:object_r:unlabeled_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=filesystem permissive=1 [ 45.911063] hrtimer: interrupt took 34991 ns 2018/11/29 20:02:37 executed programs: 6 2018/11/29 20:02:42 executed programs: 36 2018/11/29 20:02:48 executed programs: 70 2018/11/29 20:02:53 executed programs: 99 2018/11/29 20:02:58 executed programs: 131 2018/11/29 20:03:04 executed programs: 162 2018/11/29 20:03:09 executed programs: 196 2018/11/29 20:03:14 executed programs: 226 2018/11/29 20:03:19 executed programs: 258 [ 92.472968] kasan: CONFIG_KASAN_INLINE enabled [ 92.477709] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 92.486399] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 92.492636] Modules linked in: [ 92.495960] CPU: 1 PID: 6676 Comm: syz-executor4 Not tainted 4.9.141+ #71 [ 92.502873] task: ffff8801c8b8df00 task.stack: ffff8801c4668000 [ 92.508919] RIP: 0010:[] [] perf_output_read+0x62d/0x12e0 [ 92.517815] RSP: 0018:ffff8801c466f270 EFLAGS: 00010206 [ 92.523254] RAX: 000000000000001b RBX: 0000000000000000 RCX: 0000000000000000 [ 92.530510] RDX: 0000000000000000 RSI: ffffffff813be35f RDI: 00000000000000d8 [ 92.537768] RBP: ffff8801c466f3d0 R08: ffffed00395139a6 R09: ffffed00395139a4 [ 92.545058] R10: ffffed00395139a5 R11: ffff8801ca89cd2f R12: ffff8801c7e8cdb8 [ 92.552359] R13: ffff8801c466f598 R14: dffffc0000000000 R15: ffff8801c7e8cd40 [ 92.559633] FS: 00007fc7b4d88700(0000) GS:ffff8801db700000(0000) knlGS:0000000000000000 [ 92.567851] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 92.573724] CR2: 00000000204f4000 CR3: 00000001ca3f4000 CR4: 00000000001606b0 [ 92.580987] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 92.588244] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 92.595503] Stack: [ 92.597640] 000000000002dd38 000000000002dce8 ffff8801c466f5a0 ffffed00388cdeb4 [ 92.605725] 0000000000000010 0000000000000004 ffff8801c8658880 ffffed00388cdeb7 [ 92.613782] 1ffff100388cde5d ffff8801c865aaa0 ffff8801c466f5b8 ffff8801c466f5b0 [ 92.621843] Call Trace: [ 92.624426] [] ? perf_addr_filters_splice+0x540/0x540 [ 92.631259] [] ? perf_output_copy+0x158/0x1e0 [ 92.637402] [] perf_output_sample+0xc96/0x1850 [ 92.643660] [] ? check_preemption_disabled+0x3b/0x200 [ 92.650491] [] ? perf_event__output_id_sample+0x80/0x80 [ 92.657496] [] ? __perf_event_header__init_id.isra.20+0x432/0x530 [ 92.665372] [] perf_event_output_forward+0x126/0x230 [ 92.672116] [] ? perf_prepare_sample+0xf40/0xf40 [ 92.678516] [] ? perf_prepare_sample+0xf40/0xf40 [ 92.684910] [] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 92.691525] [] ? __this_cpu_preempt_check+0x1c/0x20 [ 92.698182] [] __perf_event_overflow+0x11f/0x320 [ 92.704578] [] perf_swevent_overflow+0x161/0x1f0 [ 92.710978] [] perf_swevent_event+0x1a0/0x270 [ 92.717114] [] ___perf_sw_event+0x285/0x490 [ 92.723090] [] ? ___perf_sw_event+0x102/0x490 [ 92.729229] [] ? perf_pending_event+0xf0/0xf0 [ 92.735369] [] ? _raw_spin_unlock_irqrestore+0x5f/0x70 [ 92.742294] [] ? migrate_swap_stop+0x810/0x810 [ 92.748520] [] ? mark_held_locks+0xc7/0x130 [ 92.754486] [] ? _raw_spin_unlock_irqrestore+0x5a/0x70 [ 92.761402] [] ? wake_up_q+0x9c/0xe0 [ 92.766757] [] ? rwsem_wake+0x11d/0x1b0 [ 92.772372] [] ? __rwsem_mark_wake+0xe0/0xe0 [ 92.778428] [] ? check_preemption_disabled+0x3b/0x200 [ 92.785273] [] __perf_sw_event+0x46/0x80 [ 92.790975] [] __do_page_fault+0x6d6/0xa60 [ 92.796867] [] ? bad_area_access_error+0x3a0/0x3a0 [ 92.803440] [] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 92.810119] [] do_page_fault+0x27/0x30 [ 92.815645] [] page_fault+0x25/0x30 [ 92.820920] [] ? copy_user_enhanced_fast_string+0x7/0x10 [ 92.828016] [] ? copy_page_to_iter+0x1c5/0xb20 [ 92.834241] [] pipe_to_user+0xae/0x160 [ 92.839767] [] ? anon_pipe_buf_release+0x190/0x220 [ 92.846334] [] __splice_from_pipe+0x316/0x710 [ 92.852469] [] ? iter_to_pipe+0x490/0x490 [ 92.858258] [] vmsplice_to_user+0x1bd/0x1e0 [ 92.864220] [] ? __splice_from_pipe+0x710/0x710 [ 92.870531] [] ? _raw_spin_unlock_irqrestore+0x5a/0x70 [ 92.877453] [] ? trace_hardirqs_on_caller+0x38b/0x590 [ 92.884286] [] ? debug_lockdep_rcu_enabled+0x77/0x90 [ 92.891029] [] ? __fget+0x214/0x3d0 [ 92.896297] [] ? __fget+0x23b/0x3d0 [ 92.901566] [] ? __fget+0x47/0x3d0 [ 92.906758] [] ? __fget_light+0x169/0x1f0 [ 92.912565] [] SyS_vmsplice+0x120/0x140 [ 92.918184] [] ? default_file_splice_write+0x80/0x80 [ 92.924932] [] do_syscall_64+0x19f/0x550 [ 92.930632] [] entry_SYSCALL_64_after_swapgs+0x5d/0xdb [ 92.937542] Code: 74 08 3c 03 0f 8e 52 0a 00 00 41 83 bf 88 00 00 00 01 0f 84 14 07 00 00 e8 01 d7 f5 ff 48 8d bb d8 00 00 00 48 89 f8 48 c1 e8 03 <42> 80 3c 30 00 0f 85 12 0a 00 00 48 8b 9b d8 00 00 00 48 85 db [ 92.965369] RIP [] perf_output_read+0x62d/0x12e0 [ 92.971909] RSP [ 92.975575] ---[ end trace 5d40cff820f2f1fb ]--- [ 92.980366] Kernel panic - not syncing: Fatal exception [ 92.986060] Kernel Offset: disabled [ 92.989677] Rebooting in 86400 seconds..