[....] Starting enhanced syslogd: rsyslogd[   12.574112] audit: type=1400 audit(1512681409.262:5): avc:  denied  { syslog } for  pid=2993 comm="rsyslogd" capability=34  scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
Starting mcstransd: 
[....] Starting file context maintaining daemon: restorecond[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   22.656118] audit: type=1400 audit(1512681419.344:6): avc:  denied  { map } for  pid=3135 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1
[   25.258150] audit: type=1400 audit(1512681421.946:7): avc:  denied  { map } for  pid=3147 comm="sh" path="/bin/dash" dev="sda1" ino=1473 scontext=system_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1
Warning: Permanently added 'ci-upstream-kasan-gce-386-3,10.128.0.49' (ECDSA) to the list of known hosts.
[   28.900587] audit: type=1400 audit(1512681425.589:8): avc:  denied  { map } for  pid=3152 comm="syz-execprog" path="/root/syz-execprog" dev="sda1" ino=16479 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1
2017/12/07 21:17:06 parsed 1 programs
2017/12/07 21:17:06 executed programs: 0
[   29.393368] audit: type=1400 audit(1512681426.081:9): avc:  denied  { map } for  pid=3152 comm="syz-execprog" path="/root/syzkaller-shm877275471" dev="sda1" ino=16483 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:file_t:s0 tclass=file permissive=1
[   29.475285] ==================================================================
[   29.482678] BUG: KASAN: stack-out-of-bounds in rds_sendmsg+0x1f02/0x1f90
[   29.489496] Read of size 8 at addr ffff8801c4db7a60 by task syz-executor0/3161
[   29.496823] 
[   29.498427] CPU: 0 PID: 3161 Comm: syz-executor0 Not tainted 4.15.0-rc2+ #122
[   29.505672] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   29.514998] Call Trace:
[   29.517559]  dump_stack+0x194/0x257
[   29.521163]  ? arch_local_irq_restore+0x53/0x53
[   29.525806]  ? show_regs_print_info+0x18/0x18
[   29.530280]  ? _raw_spin_unlock_bh+0x30/0x40
[   29.534661]  ? rds_sendmsg+0x1f02/0x1f90
[   29.538704]  print_address_description+0x73/0x250
[   29.543521]  ? rds_sendmsg+0x1f02/0x1f90
[   29.547557]  kasan_report+0x25b/0x340
[   29.551341]  __asan_report_load8_noabort+0x14/0x20
[   29.556252]  rds_sendmsg+0x1f02/0x1f90
[   29.560141]  ? rds_send_drop_to+0x19d0/0x19d0
[   29.564621]  ? sock_has_perm+0x29c/0x400
[   29.568659]  ? selinux_secmark_relabel_packet+0xc0/0xc0
[   29.574006]  ? __might_sleep+0x95/0x190
[   29.577966]  ? kasan_check_write+0x14/0x20
[   29.582174]  ? _copy_from_user+0x99/0x110
[   29.586298]  ? selinux_socket_sendmsg+0x36/0x40
[   29.590938]  ? security_socket_sendmsg+0x89/0xb0
[   29.595668]  ? rds_send_drop_to+0x19d0/0x19d0
[   29.600137]  sock_sendmsg+0xca/0x110
[   29.603824]  ___sys_sendmsg+0x75b/0x8a0
[   29.607777]  ? copy_msghdr_from_user+0x590/0x590
[   29.612512]  ? check_noncircular+0x20/0x20
[   29.616734]  ? __pmd_alloc+0x4e0/0x4e0
[   29.620596]  ? find_held_lock+0x39/0x1d0
[   29.624634]  ? __fget_light+0x29d/0x390
[   29.628583]  ? fget_raw+0x20/0x20
[   29.632025]  ? find_held_lock+0x39/0x1d0
[   29.636077]  ? __fdget+0x18/0x20
[   29.639421]  __sys_sendmsg+0xe5/0x210
[   29.643194]  ? __sys_sendmsg+0xe5/0x210
[   29.647142]  ? SyS_shutdown+0x290/0x290
[   29.651092]  ? handle_mm_fault+0x410/0x8d0
[   29.655313]  ? __do_page_fault+0x32d/0xc90
[   29.659533]  ? compat_SyS_futex+0x288/0x380
[   29.663879]  compat_SyS_sendmsg+0x2a/0x40
[   29.668011]  ? compat_SyS_getsockopt+0x420/0x420
[   29.672747]  do_fast_syscall_32+0x3ee/0xf9d
[   29.677054]  ? do_int80_syscall_32+0x9d0/0x9d0
[   29.681607]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   29.686337]  ? lockdep_sys_exit+0x47/0xf0
[   29.690456]  ? syscall_return_slowpath+0x2ad/0x550
[   29.695361]  ? sysret32_from_system_call+0x5/0x3b
[   29.700185]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   29.705006]  entry_SYSENTER_compat+0x51/0x60
[   29.709392] RIP: 0023:0xf7fecc79
[   29.712727] RSP: 002b:00000000ffd3536c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   29.720408] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000002048cfe4
[   29.727650] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000000
[   29.734890] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   29.742132] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[   29.749378] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   29.756634] 
[   29.758231] The buggy address belongs to the page:
[   29.763138] page:000000005ec09852 count:0 mapcount:0 mapping:          (null) index:0x0
[   29.771263] flags: 0x2fffc0000000000()
[   29.775132] raw: 02fffc0000000000 0000000000000000 0000000000000000 00000000ffffffff
[   29.782992] raw: 0000000000000000 0000000100000001 0000000000000000 0000000000000000
[   29.790844] page dumped because: kasan: bad access detected
[   29.796523] 
[   29.798122] Memory state around the buggy address:
[   29.803035]  ffff8801c4db7900: 00 00 f2 f2 f2 f3 f3 f3 f3 00 00 00 00 00 00 00
[   29.810367]  ffff8801c4db7980: 00 00 00 00 00 00 00 00 00 00 00 00 f1 f1 f1 f1
[   29.817697] >ffff8801c4db7a00: 00 f2 f2 f2 f2 f2 f2 f2 00 00 00 00 04 f2 f2 f2
[   29.825031]                                                        ^
[   29.831492]  ffff8801c4db7a80: f2 f2 f2 f2 00 00 00 00 00 00 00 00 00 00 00 00
[   29.838820]  ffff8801c4db7b00: 00 00 00 00 f2 f2 f2 f2 00 00 00 00 00 00 00 00
[   29.846149] ==================================================================
[   29.853478] Disabling lock debugging due to kernel taint
[   29.858982] Kernel panic - not syncing: panic_on_warn set ...
[   29.858982] 
[   29.866322] CPU: 0 PID: 3161 Comm: syz-executor0 Tainted: G    B            4.15.0-rc2+ #122
[   29.874862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   29.884182] Call Trace:
[   29.886739]  dump_stack+0x194/0x257
[   29.890335]  ? arch_local_irq_restore+0x53/0x53
[   29.894972]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   29.899694]  ? vsnprintf+0x1ed/0x1900
[   29.903463]  ? rds_sendmsg+0x1eb0/0x1f90
[   29.907500]  panic+0x1e4/0x41c
[   29.910658]  ? refcount_error_report+0x214/0x214
[   29.915377]  ? add_taint+0x1c/0x50
[   29.918884]  ? add_taint+0x1c/0x50
[   29.922390]  ? rds_sendmsg+0x1f02/0x1f90
[   29.926419]  kasan_end_report+0x50/0x50
[   29.930357]  kasan_report+0x144/0x340
[   29.934124]  __asan_report_load8_noabort+0x14/0x20
[   29.939022]  rds_sendmsg+0x1f02/0x1f90
[   29.942883]  ? rds_send_drop_to+0x19d0/0x19d0
[   29.947349]  ? sock_has_perm+0x29c/0x400
[   29.951382]  ? selinux_secmark_relabel_packet+0xc0/0xc0
[   29.956712]  ? __might_sleep+0x95/0x190
[   29.960664]  ? kasan_check_write+0x14/0x20
[   29.964864]  ? _copy_from_user+0x99/0x110
[   29.968978]  ? selinux_socket_sendmsg+0x36/0x40
[   29.973621]  ? security_socket_sendmsg+0x89/0xb0
[   29.978344]  ? rds_send_drop_to+0x19d0/0x19d0
[   29.982810]  sock_sendmsg+0xca/0x110
[   29.986489]  ___sys_sendmsg+0x75b/0x8a0
[   29.990430]  ? copy_msghdr_from_user+0x590/0x590
[   29.995152]  ? check_noncircular+0x20/0x20
[   29.999354]  ? __pmd_alloc+0x4e0/0x4e0
[   30.003206]  ? find_held_lock+0x39/0x1d0
[   30.007231]  ? __fget_light+0x29d/0x390
[   30.011170]  ? fget_raw+0x20/0x20
[   30.014591]  ? find_held_lock+0x39/0x1d0
[   30.018622]  ? __fdget+0x18/0x20
[   30.021953]  __sys_sendmsg+0xe5/0x210
[   30.025717]  ? __sys_sendmsg+0xe5/0x210
[   30.029656]  ? SyS_shutdown+0x290/0x290
[   30.033602]  ? handle_mm_fault+0x410/0x8d0
[   30.037804]  ? __do_page_fault+0x32d/0xc90
[   30.042013]  ? compat_SyS_futex+0x288/0x380
[   30.046313]  compat_SyS_sendmsg+0x2a/0x40
[   30.050433]  ? compat_SyS_getsockopt+0x420/0x420
[   30.055154]  do_fast_syscall_32+0x3ee/0xf9d
[   30.059447]  ? do_int80_syscall_32+0x9d0/0x9d0
[   30.063996]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   30.068722]  ? lockdep_sys_exit+0x47/0xf0
[   30.072834]  ? syscall_return_slowpath+0x2ad/0x550
[   30.077737]  ? sysret32_from_system_call+0x5/0x3b
[   30.082550]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   30.087362]  entry_SYSENTER_compat+0x51/0x60
[   30.091733] RIP: 0023:0xf7fecc79
[   30.095063] RSP: 002b:00000000ffd3536c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   30.102741] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000002048cfe4
[   30.109975] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000000
[   30.117208] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   30.124442] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[   30.131674] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   30.139356] Dumping ftrace buffer:
[   30.142876]    (ftrace buffer empty)
[   30.146552] Kernel Offset: disabled
[   30.150143] Rebooting in 86400 seconds..