[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 13.982430] audit: type=1400 audit(1513643682.119:6): avc: denied { map } for pid=3135 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added 'ci-upstream-mmots-kasan-gce-6,10.128.15.224' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 20.307857] audit: type=1400 audit(1513643688.444:7): avc: denied { map } for pid=3149 comm="syzkaller993157" path="/root/syzkaller993157867" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 executing program [ 20.380354] kvm: KVM_SET_TSS_ADDR need to be called before entering vcpu [ 20.559355] kasan: CONFIG_KASAN_INLINE enabled [ 20.563988] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 20.571329] general protection fault: 0000 [#1] SMP KASAN [ 20.576835] Dumping ftrace buffer: [ 20.580340] (ftrace buffer empty) [ 20.584017] Modules linked in: [ 20.587181] CPU: 1 PID: 3131 Comm: udevd Not tainted 4.15.0-rc2-mm1+ #39 [ 20.593992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 20.603327] RIP: 0010:native_write_cr4+0x4/0x10 [ 20.607963] RSP: 0018:ffff8801db307ca8 EFLAGS: 00010006 [ 20.613302] RAX: ffff8801c7d423c0 RBX: 00000000001606e0 RCX: ffffffff811a2d22 [ 20.620541] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 00000000001606e0 [ 20.627779] RBP: ffff8801db307ca8 R08: ffff8801c7237318 R09: ffff8801c7d423c0 [ 20.635017] R10: 000000000000000b R11: ffffed0038e46e66 R12: 0000000000000006 [ 20.642254] R13: ffff8801c7d423c0 R14: ffff8801db31a130 R15: ffff8801db31a130 [ 20.649494] FS: 00007fb4c1a907a0(0000) GS:ffff8801db300000(0000) knlGS:0000000000000000 [ 20.657686] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 20.663534] CR2: 00007fb4c1a97000 CR3: 00000001c78bf004 CR4: 00000000001626e0 [ 20.670772] Call Trace: [ 20.673320] [ 20.675474] hardware_disable+0x34a/0x4b0 [ 20.679598] ? irq_work_sync+0x1a0/0x1a0 [ 20.683639] ? kvm_io_bus_get_dev+0x2a0/0x2a0 [ 20.688115] kvm_arch_hardware_disable+0x35/0xd0 [ 20.692838] hardware_disable_nolock+0x30/0x40 [ 20.697390] flush_smp_call_function_queue+0x1f4/0x570 [ 20.702635] ? cpumask_weight+0x40/0x40 [ 20.706578] ? rcu_idle_exit+0x410/0x410 [ 20.710613] ? __lock_is_held+0xbc/0x140 [ 20.714647] generic_smp_call_function_single_interrupt+0x13/0x30 [ 20.720856] smp_call_function_single_interrupt+0x103/0x640 [ 20.726543] ? smp_call_function_interrupt+0x640/0x640 [ 20.731797] ? _raw_spin_lock+0x32/0x40 [ 20.735739] ? _raw_spin_unlock+0x22/0x30 [ 20.739856] ? handle_edge_irq+0x2b4/0x7c0 [ 20.744060] ? task_prio+0x40/0x40 [ 20.747574] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 20.752388] call_function_single_interrupt+0xa9/0xb0 [ 20.757543] [ 20.759758] RIP: 0010:update_stack_state+0x0/0x700 [ 20.764655] RSP: 0018:ffff8801c72371b8 EFLAGS: 00000a06 ORIG_RAX: ffffffffffffff04 [ 20.772341] RAX: dffffc0000000000 RBX: ffff8801c72372e0 RCX: ffff8801c7237290 [ 20.779584] RDX: ffff8801c7237308 RSI: ffff8801c72376a0 RDI: ffff8801c72372e0 [ 20.786833] RBP: ffff8801c72372b8 R08: ffff8801c7237318 R09: ffff8801c7d423c0 [ 20.794070] R10: 000000000000000b R11: ffffed0038e46e66 R12: 1ffff10038e46e3e [ 20.801308] R13: ffff8801c72376a0 R14: 1ffff10038e46e42 R15: ffff8801c7237330 [ 20.808563] ? unwind_next_frame.part.6+0x1a6/0xb40 [ 20.813547] ? unwind_dump+0x4d0/0x4d0 [ 20.817405] ? unwind_dump+0x4d0/0x4d0 [ 20.821261] ? rcutorture_record_progress+0x10/0x10 [ 20.826251] ? __unwind_start+0x169/0x330 [ 20.830369] unwind_next_frame+0x3e/0x50 [ 20.834400] __save_stack_trace+0x6e/0xd0 [ 20.838520] ? alloc_inode+0x65/0x180 [ 20.842293] save_stack_trace+0x1a/0x20 [ 20.846234] save_stack+0x43/0xd0 [ 20.849655] ? save_stack+0x43/0xd0 [ 20.853247] ? kasan_kmalloc+0xad/0xe0 [ 20.857110] ? kasan_slab_alloc+0x12/0x20 [ 20.861224] ? kmem_cache_alloc+0x12e/0x760 [ 20.865515] ? shmem_alloc_inode+0x1b/0x40 [ 20.869713] ? alloc_inode+0x65/0x180 [ 20.873479] ? new_inode_pseudo+0x69/0x190 [ 20.877679] ? new_inode+0x1c/0x40 [ 20.881185] ? shmem_get_inode+0xe1/0x920 [ 20.885297] ? shmem_mknod+0x5a/0x1b0 [ 20.889073] ? shmem_create+0x2b/0x40 [ 20.892844] ? lookup_open+0x11d0/0x1900 [ 20.896874] ? path_openat+0xd7c/0x3530 [ 20.900815] ? do_filp_open+0x25b/0x3b0 [ 20.904757] ? do_sys_open+0x502/0x6d0 [ 20.908610] ? SyS_open+0x2d/0x40 [ 20.912032] ? entry_SYSCALL_64_fastpath+0x1f/0x96 [ 20.916932] ? retint_kernel+0x10/0x10 [ 20.920794] ? print_usage_bug+0x3f0/0x3f0 [ 20.925010] ? __lock_is_held+0xbc/0x140 [ 20.929051] ? trace_event_raw_event_sched_switch+0x800/0x800 [ 20.934908] ? kasan_unpoison_shadow+0x35/0x50 [ 20.939458] kasan_kmalloc+0xad/0xe0 [ 20.943141] kasan_slab_alloc+0x12/0x20 [ 20.947083] kmem_cache_alloc+0x12e/0x760 [ 20.951202] ? __d_lookup_done+0x2d5/0x560 [ 20.955418] ? shmem_destroy_callback+0xa0/0xa0 [ 20.960057] shmem_alloc_inode+0x1b/0x40 [ 20.964085] alloc_inode+0x65/0x180 [ 20.967688] new_inode_pseudo+0x69/0x190 [ 20.971718] ? prune_icache_sb+0x1a0/0x1a0 [ 20.975924] new_inode+0x1c/0x40 [ 20.979259] shmem_get_inode+0xe1/0x920 [ 20.983199] ? d_move+0x90/0x90 [ 20.986457] ? shmem_fh_to_dentry+0x150/0x150 [ 20.990923] ? may_create+0x242/0x500 [ 20.994715] ? selinux_dentry_init_security+0x290/0x290 [ 21.000045] ? d_lookup+0x133/0x2e0 [ 21.003646] ? map_id_up+0x23b/0x420 [ 21.007332] shmem_mknod+0x5a/0x1b0 [ 21.010927] ? selinux_inode_create+0x22/0x30 [ 21.015402] shmem_create+0x2b/0x40 [ 21.018997] ? shmem_mkdir+0x50/0x50 [ 21.022680] lookup_open+0x11d0/0x1900 [ 21.026547] ? trailing_symlink+0x810/0x810 [ 21.030845] path_openat+0xd7c/0x3530 [ 21.034623] ? path_lookupat+0xba0/0xba0 [ 21.038659] ? getname+0x19/0x20 [ 21.041998] ? do_sys_open+0x2e7/0x6d0 [ 21.045859] ? lock_release+0xda0/0xda0 [ 21.049807] ? do_raw_spin_trylock+0x190/0x190 [ 21.054360] ? __lock_is_held+0xbc/0x140 [ 21.058396] ? _raw_spin_unlock+0x22/0x30 [ 21.062512] ? __alloc_fd+0x29b/0x750 [ 21.066288] do_filp_open+0x25b/0x3b0 [ 21.070056] ? may_open_dev+0xe0/0xe0 [ 21.073832] ? mpi_resize+0x200/0x200 [ 21.077605] ? get_unused_fd_flags+0x121/0x190 [ 21.082159] ? getname_flags+0x256/0x580 [ 21.086204] do_sys_open+0x502/0x6d0 [ 21.089902] ? do_sys_open+0x502/0x6d0 [ 21.093761] ? filp_open+0x70/0x70 [ 21.097270] ? entry_SYSCALL_64_fastpath+0x5/0x96 [ 21.102084] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 21.107078] SyS_open+0x2d/0x40 [ 21.110329] entry_SYSCALL_64_fastpath+0x1f/0x96 [ 21.115055] RIP: 0033:0x7fb4c1198120 [ 21.118733] RSP: 002b:00007ffe2133b948 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 21.126409] RAX: ffffffffffffffda RBX: 0000000000e5ff80 RCX: 00007fb4c1198120 [ 21.133647] RDX: 00000000000001b6 RSI: 0000000000080241 RDI: 00007ffe2133be30 [ 21.140893] RBP: 0000000000000005 R08: 0000000000000004 R09: 0000000000000001 [ 21.148130] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000001000 [ 21.155366] R13: 0000000000d24a00 R14: 00007ffe2133a328 R15: 0000000000000000 [ 21.162610] Code: 0f 1f 80 00 00 00 00 55 48 89 e5 0f 20 d8 5d c3 0f 1f 80 00 00 00 00 55 48 89 e5 0f 22 df 5d c3 0f 1f 80 00 00 00 00 55 48 89 e5 <0f> 22 e7 5d c3 0f 1f 80 00 00 00 00 55 48 89 e5 44 0f 20 c0 5d [ 21.181703] RIP: native_write_cr4+0x4/0x10 RSP: ffff8801db307ca8 [ 21.188358] ---[ end trace a6509829d65266da ]--- [ 21.193080] Kernel panic - not syncing: Fatal exception in interrupt [ 21.200057] Dumping ftrace buffer: [ 21.203579] (ftrace buffer empty) [ 21.207255] Kernel Offset: disabled [ 21.210848] Rebooting in 86400 seconds..