[ OK ] Started OpenBSD Secure Shell server. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.1.54' (ECDSA) to the list of known hosts. syzkaller login: [ 35.093598] audit: type=1400 audit(1599419510.982:8): avc: denied { execmem } for pid=6337 comm="syz-executor797" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 35.366876] ------------[ cut here ]------------ [ 35.371824] WARNING: CPU: 1 PID: 6348 at sound/core/oss/mulaw.c:332 snd_pcm_plugin_build_mulaw+0x616/0x71c [ 35.380213] ------------[ cut here ]------------ [ 35.381638] Kernel panic - not syncing: panic_on_warn set ... [ 35.381638] [ 35.386406] WARNING: CPU: 0 PID: 6347 at sound/core/oss/mulaw.c:332 snd_pcm_plugin_build_mulaw+0x616/0x71c [ 35.393740] CPU: 1 PID: 6348 Comm: syz-executor797 Not tainted 4.14.196-syzkaller #0 [ 35.403514] Modules linked in: [ 35.411394] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 35.414596] CPU: 0 PID: 6347 Comm: syz-executor797 Not tainted 4.14.196-syzkaller #0 [ 35.423935] Call Trace: [ 35.431828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 35.434409] dump_stack+0x1b2/0x283 [ 35.443746] task: ffff888098308400 task.stack: ffff888099c50000 [ 35.447369] panic+0x1f9/0x42d [ 35.453418] RIP: 0010:snd_pcm_plugin_build_mulaw+0x616/0x71c [ 35.457546] ? add_taint.cold+0x16/0x16 [ 35.463327] RSP: 0018:ffff888099c57928 EFLAGS: 00010297 [ 35.467297] ? snd_pcm_plugin_build_mulaw+0x616/0x71c [ 35.467308] ? snd_pcm_plugin_build_mulaw+0x616/0x71c [ 35.472664] RAX: ffff888098308400 RBX: ffff888099c579e8 RCX: ffff888099c579e8 [ 35.477862] __warn.cold+0x20/0x4b [ 35.483028] RDX: 0000000000000000 RSI: ffff888099c57a28 RDI: ffffffff8867588b [ 35.490298] ? ist_end_non_atomic+0x10/0x10 [ 35.493812] RBP: 1ffff1101338af27 R08: ffffffff8a0a0400 R09: 0000000000000000 [ 35.501077] ? snd_pcm_plugin_build_mulaw+0x616/0x71c [ 35.505373] R10: 0000000000000000 R11: 0000000000000000 R12: ffff888099c57a08 [ 35.512636] report_bug+0x208/0x249 [ 35.517805] R13: ffff888099c57a28 R14: ffff88809b726d80 R15: 000000000000000e [ 35.525075] do_error_trap+0x195/0x2d0 [ 35.528675] FS: 000000000091d880(0000) GS:ffff8880aea00000(0000) knlGS:0000000000000000 [ 35.535936] ? math_error+0x2d0/0x2d0 [ 35.539797] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 35.548016] ? mark_held_locks+0xa6/0xf0 [ 35.551792] CR2: 00000000004bf868 CR3: 00000000a3c03000 CR4: 00000000001406f0 [ 35.557666] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 35.561698] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 35.568990] invalid_op+0x1b/0x40 [ 35.573811] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 35.581103] RIP: 0010:snd_pcm_plugin_build_mulaw+0x616/0x71c [ 35.584551] Call Trace: [ 35.591825] RSP: 0018:ffff888097c97928 EFLAGS: 00010297 [ 35.597622] ? mulaw_decode+0x6c0/0x6c0 [ 35.605522] ? mulaw_encode+0x6d0/0x6d0 [ 35.609496] RAX: ffff888087532440 RBX: ffff888097c979e8 RCX: ffff888097c979e8 [ 35.613459] ? snd_pcm_hw_params+0x659/0x2000 [ 35.620714] RDX: 0000000000000000 RSI: ffff888097c97a28 RDI: ffffffff8867588b [ 35.625209] snd_pcm_plug_format_plugins+0xb5c/0x1160 [ 35.632455] RBP: 1ffff11012f92f27 R08: ffffffff8a0a0400 R09: 0000000000000000 [ 35.637666] ? snd_pcm_plug_slave_format+0x470/0x470 [ 35.644917] R10: 0000000000000000 R11: 0000000000000000 R12: ffff888097c97a08 [ 35.650017] ? snd_pcm_oss_plugin_clear.isra.0+0xd0/0xd0 [ 35.657287] R13: ffff888097c97a28 R14: ffff88809b727200 R15: 000000000000000e [ 35.662740] ? memset+0x20/0x40 [ 35.670011] ? snd_pcm_plugin_build_mulaw+0x616/0x71c [ 35.678748] snd_pcm_oss_change_params_locked+0x2608/0x31a0 [ 35.683935] ? mulaw_decode+0x6c0/0x6c0 [ 35.689656] ? snd_pcm_oss_open+0x50/0x50 [ 35.693601] ? mulaw_encode+0x6d0/0x6d0 [ 35.697728] ? __ww_mutex_wakeup_for_backoff+0x210/0x210 [ 35.701687] ? snd_pcm_hw_params+0x659/0x2000 [ 35.707120] ? lock_downgrade+0x740/0x740 [ 35.711599] snd_pcm_plug_format_plugins+0xb5c/0x1160 [ 35.715737] snd_pcm_oss_make_ready+0xbf/0x2b0 [ 35.720913] ? snd_pcm_plug_slave_format+0x470/0x470 [ 35.725474] snd_pcm_oss_sync+0x1be/0x740 [ 35.730566] ? snd_pcm_oss_plugin_clear.isra.0+0xd0/0xd0 [ 35.734702] ? snd_pcm_oss_sync+0x740/0x740 [ 35.740142] ? memset+0x20/0x40 [ 35.744450] snd_pcm_oss_release+0x26b/0x2f0 [ 35.747719] snd_pcm_oss_change_params_locked+0x2608/0x31a0 [ 35.752126] ? snd_pcm_oss_sync+0x740/0x740 [ 35.757852] ? snd_pcm_oss_open+0x50/0x50 [ 35.762144] __fput+0x25f/0x7a0 [ 35.766282] ? __ww_mutex_wakeup_for_backoff+0x210/0x210 [ 35.769544] task_work_run+0x11f/0x190 [ 35.774985] ? lock_downgrade+0x740/0x740 [ 35.778859] do_exit+0xa08/0x27f0 [ 35.783008] snd_pcm_oss_make_ready+0xbf/0x2b0 [ 35.786457] ? __do_page_fault+0x5a0/0xb50 [ 35.791037] snd_pcm_oss_sync+0x1be/0x740 [ 35.795260] ? mm_update_next_owner+0x5b0/0x5b0 [ 35.799392] ? snd_pcm_oss_sync+0x740/0x740 [ 35.804046] ? lock_downgrade+0x740/0x740 [ 35.808363] snd_pcm_oss_release+0x26b/0x2f0 [ 35.812515] do_group_exit+0x100/0x2e0 [ 35.816931] ? snd_pcm_oss_sync+0x740/0x740 [ 35.820848] SyS_exit_group+0x19/0x20 [ 35.825156] __fput+0x25f/0x7a0 [ 35.829005] ? do_group_exit+0x2e0/0x2e0 [ 35.832254] task_work_run+0x11f/0x190 [ 35.836317] do_syscall_64+0x1d5/0x640 [ 35.840208] do_exit+0xa08/0x27f0 [ 35.844103] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 35.847548] ? __do_page_fault+0x5a0/0xb50 [ 35.852738] RIP: 0033:0x440028 [ 35.856987] ? mm_update_next_owner+0x5b0/0x5b0 [ 35.860156] RSP: 002b:00007ffff6f58bc8 EFLAGS: 00000246 [ 35.865395] ? lock_downgrade+0x740/0x740 [ 35.865398] ORIG_RAX: 00000000000000e7 [ 35.865407] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000440028 [ 35.870800] do_group_exit+0x100/0x2e0 [ 35.874928] RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000 [ 35.878903] SyS_exit_group+0x19/0x20 [ 35.886151] RBP: 00000000004bf830 R08: 00000000000000e7 R09: ffffffffffffffd0 [ 35.890027] ? do_group_exit+0x2e0/0x2e0 [ 35.897271] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 35.901063] do_syscall_64+0x1d5/0x640 [ 35.908328] R13: 00000000006d1180 R14: 0000000000000000 R15: 0000000000000000 [ 35.912393] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 35.919655] Code: [ 35.923554] RIP: 0033:0x440028 [ 35.930878] ff [ 35.936132] RSP: 002b:00007ffff6f58bc8 EFLAGS: 00000246 [ 35.938340] ff [ 35.941533] ORIG_RAX: 00000000000000e7 [ 35.943406] e8 [ 35.948785] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000440028 [ 35.950659] 2e [ 35.954622] RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000 [ 35.956489] 5c [ 35.963772] RBP: 00000000004bf830 R08: 00000000000000e7 R09: ffffffffffffffd0 [ 35.965640] 68 [ 35.972897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 35.974762] fc [ 35.982018] R13: 00000000006d1180 R14: 0000000000000000 R15: 0000000000000000 [ 35.983889] 0f 0b 41 bc fa ff ff ff e9 0f ff ff ff e8 1c 5c 68 fc 0f 0b 41 bc fa ff ff ff e9 fd fe ff ff e8 0a 5c 68 fc <0f> 0b 41 bc fa ff ff ff e9 eb fe ff ff 4c 89 e7 e8 75 27 92 fc [ 36.017140] ---[ end trace 7058c818ff52e1b4 ]--- [ 36.023026] Kernel Offset: disabled [ 36.026691] Rebooting in 86400 seconds..