[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 55.418892][ T26] audit: type=1800 audit(1573132312.884:25): pid=8561 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 55.438858][ T26] audit: type=1800 audit(1573132312.884:26): pid=8561 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 55.473369][ T26] audit: type=1800 audit(1573132312.884:27): pid=8561 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.1.52' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 74.388729][ T26] kauditd_printk_skb: 3 callbacks suppressed [ 74.388742][ T26] audit: type=1800 audit(1573132331.854:31): pid=8714 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor719" name="file0" dev="sda1" ino=16485 res=0 [ 74.415643][ T26] audit: type=1804 audit(1573132331.854:32): pid=8714 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor719" name="/root/file0" dev="sda1" ino=16485 res=1 [ 74.460813][ T26] audit: type=1804 audit(1573132331.924:33): pid=8715 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor719" name="/root/file0" dev="sda1" ino=16485 res=1 [ 74.554811][ T8715] ------------[ cut here ]------------ [ 74.560416][ T8715] WARNING: CPU: 1 PID: 8715 at lib/iov_iter.c:1162 iov_iter_pipe+0x25b/0x2f0 [ 74.569159][ T8715] Kernel panic - not syncing: panic_on_warn set ... [ 74.575729][ T8715] CPU: 1 PID: 8715 Comm: syz-executor719 Not tainted 5.4.0-rc6-next-20191107 #0 [ 74.584735][ T8715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 74.594769][ T8715] Call Trace: [ 74.598073][ T8715] dump_stack+0x197/0x210 [ 74.602381][ T8715] ? iov_iter_pipe+0x220/0x2f0 [ 74.607138][ T8715] panic+0x2e3/0x75c [ 74.611021][ T8715] ? add_taint.cold+0x16/0x16 [ 74.615677][ T8715] ? printk+0xba/0xed [ 74.619644][ T8715] ? kmsg_dump_rewind_nolock+0xe4/0xe4 [ 74.625087][ T8715] ? __warn.cold+0x14/0x35 [ 74.629478][ T8715] ? __warn+0xd9/0x1d0 [ 74.633530][ T8715] ? iov_iter_pipe+0x25b/0x2f0 [ 74.638268][ T8715] __warn.cold+0x2f/0x35 [ 74.642489][ T8715] ? report_bug.cold+0x63/0xb2 [ 74.647231][ T8715] ? iov_iter_pipe+0x25b/0x2f0 [ 74.651974][ T8715] report_bug+0x289/0x300 [ 74.656294][ T8715] do_error_trap+0x11b/0x200 [ 74.660874][ T8715] do_invalid_op+0x37/0x50 [ 74.665266][ T8715] ? iov_iter_pipe+0x25b/0x2f0 [ 74.670006][ T8715] invalid_op+0x23/0x30 [ 74.674140][ T8715] RIP: 0010:iov_iter_pipe+0x25b/0x2f0 [ 74.679498][ T8715] Code: 83 c0 03 38 d0 7c 04 84 d2 75 33 44 89 63 24 48 83 c4 10 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 ac ba 2e fe 0f 0b e8 a5 ba 2e fe <0f> 0b e9 53 fe ff ff 4c 89 f7 e8 46 e5 6a fe e9 f5 fd ff ff e8 dc [ 74.699092][ T8715] RSP: 0018:ffff8880a0b4f988 EFLAGS: 00010293 [ 74.705142][ T8715] RAX: ffff88808f1602c0 RBX: ffff8880a0b4fa18 RCX: ffffffff8344ac89 [ 74.713094][ T8715] RDX: 0000000000000000 RSI: ffffffff8344ae3b RDI: 0000000000000004 [ 74.721048][ T8715] RBP: ffff8880a0b4f9c0 R08: ffff88808f1602c0 R09: 0000000000000000 [ 74.729010][ T8715] R10: fffffbfff1390168 R11: ffffffff89c80b47 R12: ffff88808f121c00 [ 74.736972][ T8715] R13: 0000000000000010 R14: ffff88808f121cc8 R15: ffff88808f121cd0 [ 74.744951][ T8715] ? iov_iter_pipe+0xa9/0x2f0 [ 74.749617][ T8715] ? iov_iter_pipe+0x25b/0x2f0 [ 74.754368][ T8715] ? iov_iter_pipe+0x25b/0x2f0 [ 74.759138][ T8715] generic_file_splice_read+0xa7/0x800 [ 74.764599][ T8715] ? fsnotify_first_mark+0x210/0x210 [ 74.769868][ T8715] ? add_to_pipe+0x350/0x350 [ 74.774444][ T8715] ? security_file_permission+0x8f/0x380 [ 74.780065][ T8715] ? rw_verify_area+0x126/0x360 [ 74.784893][ T8715] ? add_to_pipe+0x350/0x350 [ 74.789461][ T8715] do_splice_to+0x127/0x180 [ 74.793942][ T8715] splice_direct_to_actor+0x2d3/0x970 [ 74.799292][ T8715] ? generic_pipe_buf_nosteal+0x10/0x10 [ 74.804816][ T8715] ? do_splice_to+0x180/0x180 [ 74.809472][ T8715] ? rw_verify_area+0x126/0x360 [ 74.814313][ T8715] do_splice_direct+0x1da/0x2a0 [ 74.819150][ T8715] ? splice_direct_to_actor+0x970/0x970 [ 74.824687][ T8715] ? rcu_read_lock_any_held+0xcd/0xf0 [ 74.830042][ T8715] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 74.836258][ T8715] ? __this_cpu_preempt_check+0x35/0x190 [ 74.841883][ T8715] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 74.848101][ T8715] ? __sb_start_write+0x1e5/0x460 [ 74.853103][ T8715] do_sendfile+0x597/0xd00 [ 74.857515][ T8715] ? do_compat_pwritev64+0x1c0/0x1c0 [ 74.862791][ T8715] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 74.868782][ T8715] ? __x64_sys_futex+0x404/0x590 [ 74.873712][ T8715] __x64_sys_sendfile64+0x1dd/0x220 [ 74.878903][ T8715] ? __ia32_sys_sendfile+0x230/0x230 [ 74.884180][ T8715] ? do_syscall_64+0x26/0x760 [ 74.888854][ T8715] ? lockdep_hardirqs_on+0x421/0x5e0 [ 74.894125][ T8715] ? trace_hardirqs_on+0x67/0x240 [ 74.899133][ T8715] do_syscall_64+0xfa/0x760 [ 74.903629][ T8715] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 74.909594][ T8715] RIP: 0033:0x446969 [ 74.913473][ T8715] Code: e8 4c b4 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 08 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 74.933056][ T8715] RSP: 002b:00007f05c41b8ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 74.941448][ T8715] RAX: ffffffffffffffda RBX: 00000000006dbc58 RCX: 0000000000446969 [ 74.949395][ T8715] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005 [ 74.957349][ T8715] RBP: 00000000006dbc50 R08: 0000000000000000 R09: 0000000000000000 [ 74.965302][ T8715] R10: 00000000ffffffff R11: 0000000000000246 R12: 00000000006dbc5c [ 74.973252][ T8715] R13: 00007fffb77353df R14: 00007f05c41b99c0 R15: 20c49ba5e353f7cf [ 74.982043][ T8715] Kernel Offset: disabled [ 74.986446][ T8715] Rebooting in 86400 seconds..