[....] Starting enhanced syslogd: rsyslogd[ 12.321800] audit: type=1400 audit(1517077885.606:5): avc: denied { syslog } for pid=3519 comm="rsyslogd" capability=34 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 19.393931] audit: type=1400 audit(1517077892.678:6): avc: denied { map } for pid=3661 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '10.128.15.215' (ECDSA) to the list of known hosts. executing program executing program [ 25.714065] audit: type=1400 audit(1517077898.998:7): avc: denied { map } for pid=3675 comm="syzkaller168273" path="/root/syzkaller168273484" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 25.743986] kasan: CONFIG_KASAN_INLINE enabled [ 25.748643] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 25.756062] general protection fault: 0000 [#1] SMP KASAN [ 25.761589] Dumping ftrace buffer: [ 25.765103] (ftrace buffer empty) [ 25.768786] Modules linked in: [ 25.771954] CPU: 0 PID: 3675 Comm: syzkaller168273 Not tainted 4.15.0-rc9+ #283 [ 25.779379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 25.788725] RIP: 0010:ip6t_do_table+0x12de/0x19d0 [ 25.793537] RSP: 0018:ffff8801db206c58 EFLAGS: 00010246 [ 25.798870] RAX: 0000000000000000 RBX: ffff8801d9aafb80 RCX: ffffffff84d30352 [ 25.806111] RDX: 0000000000000100 RSI: 0000000000000000 RDI: ffff8801d9aafcde [ 25.813360] RBP: ffff8801db206e60 R08: 1ffff1003b640d54 R09: 0000000000000000 [ 25.820610] R10: 00000000000000d0 R11: 0000000000000000 R12: 0000000000000001 [ 25.827853] R13: 0000000000000000 R14: dffffc0000000000 R15: ffff8801d9aafc50 [ 25.835094] FS: 0000000000a5d880(0000) GS:ffff8801db200000(0000) knlGS:0000000000000000 [ 25.843291] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 25.849151] CR2: 00000000209f1000 CR3: 00000001bc9f8001 CR4: 00000000001606f0 [ 25.856395] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 25.863651] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 25.870891] Call Trace: [ 25.873455] [ 25.875579] ? ip6t_error+0x60/0x60 [ 25.879187] ? ip6t_error+0x60/0x60 [ 25.882787] ? lock_acquire+0x1d5/0x580 [ 25.886732] ? ip6table_mangle_net_exit+0xa0/0xa0 [ 25.891566] ? lock_release+0xa40/0xa40 [ 25.895513] ip6table_security_hook+0x65/0x80 [ 25.899982] nf_hook_slow+0xba/0x1a0 [ 25.903668] ip6_input+0x368/0x560 [ 25.907179] ? ip6_input_finish+0x17a0/0x17a0 [ 25.911646] ? find_held_lock+0x35/0x1d0 [ 25.915679] ? ip6_make_skb+0x5e0/0x5e0 [ 25.919713] ? ipv6_rcv+0x16cd/0x1fa0 [ 25.923486] ip6_rcv_finish+0x297/0x8c0 [ 25.927432] ? ip6_input+0x560/0x560 [ 25.931128] ? ip6table_nat_in+0x2c/0x40 [ 25.935763] ? nf_hook_slow+0xd3/0x1a0 [ 25.939644] ipv6_rcv+0xf37/0x1fa0 [ 25.943161] ? ip6_rcv_finish+0x8c0/0x8c0 [ 25.947286] ? print_irqtrace_events+0x270/0x270 [ 25.952030] ? check_noncircular+0x20/0x20 [ 25.956236] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 25.961398] ? ip6_input+0x560/0x560 [ 25.965084] ? ip6_rcv_finish+0x8c0/0x8c0 [ 25.969205] __netif_receive_skb_core+0x1a41/0x3460 [ 25.974194] ? nf_ingress+0x9f0/0x9f0 [ 25.977967] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 25.983133] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 25.988295] ? rcu_read_lock_sched_held+0x108/0x120 [ 25.993282] ? update_cfs_rq_load_avg.part.69+0x23d/0x2d0 [ 25.998790] ? attach_entity_load_avg+0x7a0/0x7a0 [ 26.003601] ? __update_load_avg_se.isra.27+0x56a/0x7c0 [ 26.008933] ? __update_load_avg_se.isra.27+0x56a/0x7c0 [ 26.014269] ? __lock_acquire+0x664/0x3e00 [ 26.018476] ? __lock_acquire+0x664/0x3e00 [ 26.022686] ? fastpath_timer_check+0x7d5/0xa70 [ 26.027332] ? check_noncircular+0x20/0x20 [ 26.032146] ? print_irqtrace_events+0x270/0x270 [ 26.036879] ? find_held_lock+0x35/0x1d0 [ 26.040913] ? find_held_lock+0x35/0x1d0 [ 26.044947] ? lock_acquire+0x1d5/0x580 [ 26.048890] ? process_backlog+0x45f/0x740 [ 26.053093] ? lock_acquire+0x1d5/0x580 [ 26.057038] ? process_backlog+0x1ab/0x740 [ 26.061245] ? lock_release+0xa40/0xa40 [ 26.065191] ? x2apic_send_IPI+0x6f/0xa0 [ 26.069226] __netif_receive_skb+0x2c/0x1b0 [ 26.073527] ? __netif_receive_skb+0x2c/0x1b0 [ 26.077992] process_backlog+0x203/0x740 [ 26.082028] ? mark_held_locks+0xaf/0x100 [ 26.086151] net_rx_action+0x792/0x1910 [ 26.090097] ? lock_release+0xa40/0xa40 [ 26.094043] ? napi_complete_done+0x6c0/0x6c0 [ 26.098509] ? trace_hardirqs_on_caller+0x19e/0x5c0 [ 26.103496] ? trace_hardirqs_on+0xd/0x10 [ 26.107614] ? _raw_spin_unlock_irq+0x27/0x70 [ 26.112080] ? __run_timers+0x16f/0xb70 [ 26.116028] ? _raw_spin_unlock_irqrestore+0xa6/0xba [ 26.121114] ? trigger_dyntick_cpu.isra.29+0x180/0x180 [ 26.126361] ? check_noncircular+0x20/0x20 [ 26.130567] ? timerqueue_add+0x1e9/0x280 [ 26.134689] ? enqueue_hrtimer+0x171/0x4a0 [ 26.138896] ? __remove_hrtimer+0x190/0x190 [ 26.143190] ? find_held_lock+0x35/0x1d0 [ 26.147226] ? clockevents_program_event+0x163/0x2e0 [ 26.152300] ? lock_downgrade+0x980/0x980 [ 26.156425] ? rcu_pm_notify+0xc0/0xc0 [ 26.160288] ? check_noncircular+0x20/0x20 [ 26.164492] ? print_irqtrace_events+0x270/0x270 [ 26.169222] ? lock_downgrade+0x980/0x980 [ 26.173351] ? __irqentry_text_end+0x1f8d04/0x1f8d04 [ 26.178427] ? do_timer+0x50/0x50 [ 26.181942] ? __lock_is_held+0xb6/0x140 [ 26.185980] __do_softirq+0x2d7/0xb85 [ 26.189758] ? task_prio+0x40/0x40 [ 26.193296] ? __irqentry_text_end+0x1f8d04/0x1f8d04 [ 26.198369] ? irq_exit+0xbb/0x200 [ 26.201880] ? smp_apic_timer_interrupt+0x16b/0x700 [ 26.206865] ? smp_call_function_single_interrupt+0x640/0x640 [ 26.212719] ? _raw_spin_lock+0x32/0x40 [ 26.216664] ? _raw_spin_unlock+0x22/0x30 [ 26.220782] ? handle_edge_irq+0x2b4/0x7c0 [ 26.224990] ? task_prio+0x40/0x40 [ 26.228507] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 26.233324] do_softirq_own_stack+0x2a/0x40 [ 26.237613] [ 26.239825] do_softirq.part.19+0x14d/0x190 [ 26.244126] ? ip6_finish_output2+0xb73/0x23a0 [ 26.248680] __local_bh_enable_ip+0x1ee/0x230 [ 26.253151] ip6_finish_output2+0xba6/0x23a0 [ 26.257535] ? ip6_sk_dst_lookup_flow+0x7f0/0x7f0 [ 26.262351] ? ip6_mtu+0x36f/0x4d0 [ 26.265862] ? lock_downgrade+0x980/0x980 [ 26.269983] ? lock_release+0xa40/0xa40 [ 26.273937] ? ip6_mtu+0x1cd/0x4d0 [ 26.277461] ? ip6_dst_ifdown+0x3d0/0x3d0 [ 26.281589] ? nf_nat_ipv6_out+0x5e/0x5a0 [ 26.285710] ip6_finish_output+0x302/0x930 [ 26.289916] ? ip6_finish_output+0x302/0x930 [ 26.294296] ip6_output+0x1eb/0x840 [ 26.297895] ? ip6_finish_output+0x930/0x930 [ 26.302281] ? ip6_fragment+0x3470/0x3470 [ 26.306401] ? nf_hook_slow+0xd3/0x1a0 [ 26.310261] ip6_xmit+0xe1f/0x2260 [ 26.313772] ? check_noncircular+0x20/0x20 [ 26.317980] ? ip6_finish_output2+0x23a0/0x23a0 [ 26.322620] ? consume_skb+0x160/0x490 [ 26.326476] ? alloc_skb_with_frags+0x750/0x750 [ 26.331116] ? check_noncircular+0x20/0x20 [ 26.335323] ? lock_acquire+0x1d5/0x580 [ 26.339267] ? lock_acquire+0x1d5/0x580 [ 26.343211] ? sctp_v6_xmit+0x2e5/0x630 [ 26.347156] ? ip6_forward_finish+0x140/0x140 [ 26.351621] ? lock_release+0xa40/0xa40 [ 26.355575] sctp_v6_xmit+0x438/0x630 [ 26.359346] ? sctp_getname+0xc0/0xc0 [ 26.363133] sctp_packet_transmit+0x2270/0x3760 [ 26.367779] ? sctp_packet_config+0xc80/0xc80 [ 26.372245] ? find_held_lock+0x35/0x1d0 [ 26.376280] ? ip6_mtu+0x36f/0x4d0 [ 26.379789] ? find_held_lock+0x35/0x1d0 [ 26.383825] ? lock_downgrade+0x980/0x980 [ 26.387944] ? lock_release+0xa40/0xa40 [ 26.391898] ? __sctp_packet_append_chunk+0x4c9/0xc60 [ 26.397070] ? sctp_csum_update+0x30/0x30 [ 26.401190] ? sctp_packet_append_chunk+0xa90/0xa90 [ 26.406178] ? sctp_packet_init+0x25d/0x450 [ 26.410470] ? sctp_packet_append_chunk+0x5fe/0xa90 [ 26.415459] sctp_outq_flush+0xab6/0x4060 [ 26.419579] ? __lock_acquire+0x664/0x3e00 [ 26.423795] ? __bfs+0xf0/0x750 [ 26.427050] ? sctp_generate_fwdtsn+0xc00/0xc00 [ 26.431693] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 26.436870] ? is_bpf_text_address+0x7b/0x120 [ 26.441335] ? lock_downgrade+0x980/0x980 [ 26.445459] ? __free_insn_slot+0x5c0/0x5c0 [ 26.449757] ? rcutorture_record_progress+0x10/0x10 [ 26.454745] ? is_bpf_text_address+0xa4/0x120 [ 26.459210] ? check_noncircular+0x20/0x20 [ 26.463418] ? __kernel_text_address+0xd/0x40 [ 26.467884] ? unwind_get_return_address+0x61/0xa0 [ 26.472785] ? __save_stack_trace+0x7e/0xd0 [ 26.477081] ? depot_save_stack+0x12c/0x490 [ 26.481375] ? find_held_lock+0x35/0x1d0 [ 26.485410] ? debug_object_activate+0x307/0x730 [ 26.490136] ? lock_downgrade+0x980/0x980 [ 26.494253] ? lock_timer_base+0xaf/0x280 [ 26.498374] ? print_irqtrace_events+0x270/0x270 [ 26.503102] ? add_timer+0x56d/0x13f0 [ 26.506872] ? lock_downgrade+0x980/0x980 [ 26.510988] ? trace_hardirqs_off+0xd/0x10 [ 26.515193] ? _raw_spin_unlock_irqrestore+0xa6/0xba [ 26.520266] ? debug_object_activate+0x307/0x730 [ 26.524991] ? calc_wheel_index+0x13d/0x200 [ 26.529287] ? mark_held_locks+0xaf/0x100 [ 26.533405] ? _raw_spin_unlock_irqrestore+0x31/0xba [ 26.538478] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 26.543473] ? trace_hardirqs_on+0xd/0x10 [ 26.547592] ? add_timer+0x572/0x13f0 [ 26.551369] ? mod_timer_pending+0x1440/0x1440 [ 26.555922] ? sctp_init_cause+0x170/0x170 [ 26.560130] ? find_held_lock+0x35/0x1d0 [ 26.564167] ? is_bpf_text_address+0x7b/0x120 [ 26.568635] ? sctp_outq_tail+0x7b6/0xb30 [ 26.572756] ? sctp_outq_free+0x20/0x20 [ 26.576706] ? sctp_endpoint_new+0xee0/0xee0 [ 26.581098] sctp_outq_uncork+0x5a/0x70 [ 26.585046] sctp_do_sm+0x50e/0x6a20 [ 26.588740] ? __save_stack_trace+0x7e/0xd0 [ 26.593040] ? sctp_do_8_2_transport_strike.isra.16+0x8a0/0x8a0 [ 26.599070] ? save_stack+0xa3/0xd0 [ 26.602668] ? save_stack+0x43/0xd0 [ 26.606265] ? kasan_kmalloc+0xad/0xe0 [ 26.610131] ? kmem_cache_alloc_trace+0x136/0x750 [ 26.614943] ? sctp_stream_init_ext+0x51/0xf0 [ 26.619408] ? sctp_sendmsg+0x2bbf/0x3420 [ 26.623527] ? inet_sendmsg+0x11f/0x5e0 [ 26.627478] ? sock_sendmsg+0xca/0x110 [ 26.631334] ? SYSC_sendto+0x361/0x5c0 [ 26.635190] ? SyS_sendto+0x40/0x50 [ 26.638787] ? entry_SYSCALL_64_fastpath+0x29/0xa0 [ 26.643692] ? check_noncircular+0x20/0x20 [ 26.647896] ? print_irqtrace_events+0x270/0x270 [ 26.652632] ? __lock_is_held+0xb6/0x140 [ 26.656674] ? __lock_is_held+0xb6/0x140 [ 26.660714] ? sctp_v6_cmp_addr+0xb0/0x5d0 [ 26.664922] sctp_primitive_ASSOCIATE+0x9d/0xd0 [ 26.669567] sctp_sendmsg+0x13c3/0x3420 [ 26.673521] ? sctp_id2assoc+0x390/0x390 [ 26.677551] ? find_held_lock+0x35/0x1d0 [ 26.681586] ? release_sock+0x1d4/0x2a0 [ 26.685531] ? lock_downgrade+0x980/0x980 [ 26.689653] ? lock_downgrade+0x980/0x980 [ 26.693773] ? lock_release+0xa40/0xa40 [ 26.697718] ? lock_acquire+0x1d5/0x580 [ 26.701665] ? lock_sock_nested+0xa3/0x110 [ 26.705868] ? lock_acquire+0x1d5/0x580 [ 26.709817] ? __local_bh_enable_ip+0x121/0x230 [ 26.714458] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 26.719454] ? release_sock+0x1d4/0x2a0 [ 26.723402] ? _raw_spin_unlock_bh+0x30/0x40 [ 26.727782] ? __release_sock+0x360/0x360 [ 26.731901] ? __local_bh_enable_ip+0x121/0x230 [ 26.736552] inet_sendmsg+0x11f/0x5e0 [ 26.740323] ? inet_sendmsg+0x11f/0x5e0 [ 26.744278] ? __might_sleep+0x95/0x190 [ 26.748223] ? inet_recvmsg+0x5f0/0x5f0 [ 26.752175] ? selinux_socket_sendmsg+0x36/0x40 [ 26.756823] ? security_socket_sendmsg+0x89/0xb0 [ 26.761548] ? inet_recvmsg+0x5f0/0x5f0 [ 26.765502] sock_sendmsg+0xca/0x110 [ 26.769197] SYSC_sendto+0x361/0x5c0 [ 26.772883] ? SYSC_connect+0x4a0/0x4a0 [ 26.776827] ? up_read+0x1a/0x40 [ 26.780173] ? __do_page_fault+0x3d6/0xc90 [ 26.784387] ? get_unused_fd_flags+0x190/0x190 [ 26.788954] ? sock_alloc_file+0x2a6/0x560 [ 26.793172] ? __alloc_fd+0x750/0x750 [ 26.796952] ? __do_page_fault+0xc90/0xc90 [ 26.801162] ? fd_install+0x4d/0x60 [ 26.804762] ? sock_map_fd+0x53/0x90 [ 26.808445] ? SyS_socket+0x12d/0x1d0 [ 26.812216] ? entry_SYSCALL_64_fastpath+0x5/0xa0 [ 26.817035] SyS_sendto+0x40/0x50 [ 26.820462] entry_SYSCALL_64_fastpath+0x29/0xa0 [ 26.825188] RIP: 0033:0x441489 [ 26.828348] RSP: 002b:00007ffcade3b008 EFLAGS: 00000203 ORIG_RAX: 000000000000002c [ 26.836038] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 0000000000441489 [ 26.843279] RDX: 0000000000000001 RSI: 00000000209f1000 RDI: 0000000000000005 [ 26.850520] RBP: 00000000006cb018 R08: 0000000020108fe4 R09: 000000000000001c [ 26.857760] R10: 0000000000000000 R11: 0000000000000203 R12: 0000000000402db0 [ 26.865000] R13: 0000000000402e40 R14: 0000000000000000 R15: 0000000000000000 [ 26.872254] Code: 41 f6 87 83 00 00 00 04 75 37 e8 1e 28 9d fc 8b 85 54 fe ff ff 48 8b b5 90 fe ff ff 4c 8d 2c c6 44 8d 60 01 4c 89 e8 48 c1 e8 03 <42> 80 3c 30 00 0f 85 5c 03 00 00 4d 89 7d 00 44 89 a5 54 fe ff [ 26.891320] RIP: ip6t_do_table+0x12de/0x19d0 RSP: ffff8801db206c58 [ 26.897662] ---[ end trace 55a17899f19a20e3 ]--- [ 26.902432] Kernel panic - not syncing: Fatal exception in interrupt [ 26.909353] Dumping ftrace buffer: [ 26.912874] (ftrace buffer empty) [ 26.916563] Kernel Offset: disabled [ 26.920161] Rebooting in 86400 seconds..