[....] Starting enhanced syslogd: rsyslogd[ 11.959410] audit: type=1400 audit(1515254218.597:5): avc: denied { syslog } for pid=3340 comm="rsyslogd" capability=34 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 16.413528] audit: type=1400 audit(1515254223.051:6): avc: denied { map } for pid=3479 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '10.128.15.242' (ECDSA) to the list of known hosts. [ 22.614178] audit: type=1400 audit(1515254229.251:7): avc: denied { map } for pid=3494 comm="syzkaller190556" path="/root/syzkaller190556577" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 22.640673] audit: type=1400 audit(1515254229.256:8): avc: denied { sys_admin } for pid=3494 comm="syzkaller190556" capability=21 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 executing program [ 22.826417] audit: type=1400 audit(1515254229.464:9): avc: denied { sys_chroot } for pid=3495 comm="syzkaller190556" capability=18 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 [ 22.833768] device syz0 entered promiscuous mode [ 22.858152] audit: type=1400 audit(1515254229.466:10): avc: denied { net_raw } for pid=3495 comm="syzkaller190556" capability=13 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 [ 22.882640] audit: type=1400 audit(1515254229.468:11): avc: denied { net_admin } for pid=3495 comm="syzkaller190556" capability=12 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 [ 22.908531] kasan: CONFIG_KASAN_INLINE enabled [ 22.913127] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 22.920488] general protection fault: 0000 [#1] SMP KASAN [ 22.925999] Dumping ftrace buffer: [ 22.929510] (ftrace buffer empty) [ 22.933187] Modules linked in: [ 22.936348] CPU: 1 PID: 3495 Comm: syzkaller190556 Not tainted 4.15.0-rc6+ #249 [ 22.943756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 22.953082] RIP: 0010:skb_segment+0x67c/0x3020 [ 22.957626] RSP: 0018:ffff8801bfba6ab0 EFLAGS: 00010202 [ 22.962956] RAX: 0000000000000010 RBX: 0000000000000000 RCX: ffffffff8430c8d7 [ 22.970191] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000080 [ 22.977426] RBP: ffff8801bfba6d68 R08: 0000000000000020 R09: 0000000000000002 [ 22.984661] R10: ffff8801bfba6df0 R11: 0000000000000000 R12: 0000000000000008 [ 22.991894] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff8801bfc6dcc0 [ 22.999136] FS: 00000000008d0880(0000) GS:ffff8801db300000(0000) knlGS:0000000000000000 [ 23.007673] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 23.013519] CR2: 0000000002355000 CR3: 00000001c02f8004 CR4: 00000000001606e0 [ 23.020756] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 23.027992] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 23.035228] Call Trace: [ 23.037797] ? pskb_extract+0x1c0/0x1c0 [ 23.041745] ? __lock_acquire+0x664/0x3e00 [ 23.045944] ? check_noncircular+0x20/0x20 [ 23.050150] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 23.055312] sctp_gso_segment+0x222/0x8b0 [ 23.059426] ? sctp_csum_update+0x30/0x30 [ 23.063539] ? sctp_csum_update+0x30/0x30 [ 23.067659] inet_gso_segment+0x61e/0x11e0 [ 23.071862] ? inet_sock_destruct+0x950/0x950 [ 23.076326] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 23.081310] skb_mac_gso_segment+0x34e/0x670 [ 23.085686] ? inet_sock_destruct+0x950/0x950 [ 23.090145] ? skb_network_protocol+0x4b0/0x4b0 [ 23.094779] ? check_noncircular+0x20/0x20 [ 23.098979] ? save_stack+0x43/0xd0 [ 23.102574] ? kasan_kmalloc+0xad/0xe0 [ 23.106423] ? __kmalloc_node_track_caller+0x47/0x70 [ 23.111490] ? __kmalloc_reserve.isra.39+0x41/0xd0 [ 23.116382] ? __alloc_skb+0x13b/0x780 [ 23.120241] ? packet_sendmsg+0x1ece/0x60b0 [ 23.124524] ? sock_sendmsg+0xca/0x110 [ 23.128375] ? sock_write_iter+0x31a/0x5d0 [ 23.132574] ? __vfs_write+0x684/0x970 [ 23.136429] ? skb_network_protocol+0xef/0x4b0 [ 23.140975] ? reacquire_held_locks+0x1f9/0x3e0 [ 23.145608] ? reacquire_held_locks+0x1f9/0x3e0 [ 23.150249] __skb_gso_segment+0x363/0x800 [ 23.154450] ? skb_mac_gso_segment+0x670/0x670 [ 23.159004] ? sch_direct_xmit+0xc0/0x6d0 [ 23.163129] validate_xmit_skb+0x4ba/0xb30 [ 23.167332] ? netif_skb_features+0x9b0/0x9b0 [ 23.171793] ? do_raw_spin_trylock+0x190/0x190 [ 23.176344] ? lock_acquire+0x1d5/0x580 [ 23.180283] ? __dev_queue_xmit+0xb37/0x2920 [ 23.184656] validate_xmit_skb_list+0xb7/0x120 [ 23.189204] sch_direct_xmit+0x3b6/0x6d0 [ 23.193238] ? dev_deactivate_queue.constprop.30+0x260/0x260 [ 23.199007] __dev_queue_xmit+0x1ce2/0x2920 [ 23.203310] ? netdev_pick_tx+0x300/0x300 [ 23.207432] ? check_noncircular+0x20/0x20 [ 23.211632] ? find_held_lock+0x35/0x1d0 [ 23.215669] ? __might_fault+0x110/0x1d0 [ 23.219696] ? lock_release+0xa40/0xa40 [ 23.225290] ? trace_event_raw_event_sched_switch+0x800/0x800 [ 23.232963] ? refcount_add+0x24/0x60 [ 23.236731] ? skb_set_owner_w+0x232/0x330 [ 23.240934] ? kasan_check_write+0x14/0x20 [ 23.245134] ? copyin+0x91/0xb0 [ 23.248392] ? _copy_from_iter+0x367/0xf30 [ 23.252592] ? __check_object_size+0x25d/0x4f0 [ 23.257138] ? check_stack_object+0x140/0x140 [ 23.261600] ? copy_page_to_iter+0xe10/0xe10 [ 23.265973] ? _copy_from_iter_full+0x22b/0xbb0 [ 23.270612] ? skb_copy_datagram_from_iter+0x3b1/0x5c0 [ 23.275853] ? iov_iter_advance+0x13f0/0x13f0 [ 23.280319] dev_queue_xmit+0x17/0x20 [ 23.284083] ? dev_queue_xmit+0x17/0x20 [ 23.288024] packet_sendmsg+0x3aed/0x60b0 [ 23.292139] ? find_held_lock+0x35/0x1d0 [ 23.296777] ? avc_has_perm+0x35e/0x680 [ 23.301158] ? packet_cached_dev_get+0x2b0/0x2b0 [ 23.305878] ? mark_held_locks+0xaf/0x100 [ 23.309992] ? avc_has_perm+0x43e/0x680 [ 23.313934] ? avc_has_perm_noaudit+0x520/0x520 [ 23.318572] ? locks_remove_posix+0x518/0x820 [ 23.323033] ? find_held_lock+0x35/0x1d0 [ 23.327060] ? avc_has_perm+0x35e/0x680 [ 23.331000] ? sock_has_perm+0x2a4/0x420 [ 23.335038] ? selinux_secmark_relabel_packet+0xc0/0xc0 [ 23.340376] ? selinux_socket_sendmsg+0x36/0x40 [ 23.345011] ? security_socket_sendmsg+0x89/0xb0 [ 23.349736] ? packet_cached_dev_get+0x2b0/0x2b0 [ 23.354459] sock_sendmsg+0xca/0x110 [ 23.358138] sock_write_iter+0x31a/0x5d0 [ 23.362166] ? sock_sendmsg+0x110/0x110 [ 23.366807] ? iov_iter_init+0xaf/0x1d0 [ 23.370755] __vfs_write+0x684/0x970 [ 23.374434] ? kernel_read+0x120/0x120 [ 23.378287] ? bpf_fd_pass+0x280/0x280 [ 23.382139] ? _cond_resched+0x14/0x30 [ 23.385992] ? selinux_file_permission+0x82/0x460 [ 23.390805] ? rw_verify_area+0xe5/0x2b0 [ 23.394831] ? __fdget_raw+0x20/0x20 [ 23.398511] vfs_write+0x189/0x510 [ 23.402280] SyS_write+0xef/0x220 [ 23.405698] ? SyS_read+0x220/0x220 [ 23.409291] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 23.414279] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 23.419020] entry_SYSCALL_64_fastpath+0x23/0x9a [ 23.423740] RIP: 0033:0x444c09 [ 23.426894] RSP: 002b:00000000007eff48 EFLAGS: 00000297 ORIG_RAX: 0000000000000001 [ 23.434566] RAX: ffffffffffffffda RBX: 00007ffe09f4bb20 RCX: 0000000000444c09 [ 23.441799] RDX: 000000000000002a RSI: 0000000020634000 RDI: 0000000000000005 [ 23.449121] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 23.456361] R10: 0000000000000100 R11: 0000000000000297 R12: 0000000000402800 [ 23.463600] R13: 0000000000402890 R14: 0000000000000000 R15: 0000000000000000 [ 23.470840] Code: 8d 14 fe ff ff 39 8d 38 fe ff ff 0f 8f a5 00 00 00 e8 a9 4e 3f fd 48 8b 85 48 fe ff ff 48 8d b8 80 00 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 14 28 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f [ 23.489908] RIP: skb_segment+0x67c/0x3020 RSP: ffff8801bfba6ab0 [ 23.495976] ---[ end trace 3bff400af13fd076 ]--- [ 23.500992] Kernel panic - not syncing: Fatal exception in interrupt [ 23.508043] Dumping ftrace buffer: [ 23.511553] (ftrace buffer empty) [ 23.515227] Kernel Offset: disabled [ 23.518818] Rebooting in 86400 seconds..