[ 36.339386][ T26] audit: type=1800 audit(1552386894.244:28): pid=7580 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 36.949824][ T26] audit: type=1800 audit(1552386894.944:29): pid=7580 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 36.970243][ T26] audit: type=1800 audit(1552386894.954:30): pid=7580 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 [....] startpar: service(s) returned failure: rsyslog ...[?25l[?1c7[FAIL8[?25h[?0c failed! Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.124' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 60.250409][ T7756] ------------[ cut here ]------------ [ 60.256007][ T7756] Bad or missing usercopy whitelist? Kernel memory exposure attempt detected from SLAB object 'fanotify_event' (offset 40, size 8)! [ 60.269789][ T7756] WARNING: CPU: 0 PID: 7756 at mm/usercopy.c:78 usercopy_warn+0xeb/0x110 [ 60.278484][ T7756] Kernel panic - not syncing: panic_on_warn set ... [ 60.285080][ T7756] CPU: 0 PID: 7756 Comm: syz-executor023 Not tainted 5.0.0-next-20190306 #4 [ 60.293782][ T7756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 60.303981][ T7756] Call Trace: [ 60.307301][ T7756] dump_stack+0x172/0x1f0 [ 60.311636][ T7756] ? usercopy_warn+0x30/0x110 [ 60.316307][ T7756] panic+0x2cb/0x65c [ 60.320201][ T7756] ? __warn_printk+0xf3/0xf3 [ 60.324919][ T7756] ? usercopy_warn+0xeb/0x110 [ 60.329737][ T7756] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 60.336046][ T7756] ? __warn.cold+0x5/0x45 [ 60.340385][ T7756] ? __warn+0xe8/0x1d0 [ 60.344449][ T7756] ? usercopy_warn+0xeb/0x110 [ 60.349116][ T7756] __warn.cold+0x20/0x45 [ 60.353346][ T7756] ? usercopy_warn+0xeb/0x110 [ 60.358113][ T7756] report_bug+0x263/0x2b0 [ 60.362449][ T7756] do_error_trap+0x11b/0x200 [ 60.367051][ T7756] do_invalid_op+0x37/0x50 [ 60.371581][ T7756] ? usercopy_warn+0xeb/0x110 [ 60.376511][ T7756] invalid_op+0x14/0x20 [ 60.380660][ T7756] RIP: 0010:usercopy_warn+0xeb/0x110 [ 60.386136][ T7756] Code: c8 e8 99 7a c0 ff 4c 8b 45 c0 4d 89 e9 4c 89 e1 48 8b 55 c8 41 57 48 89 de 48 c7 c7 e0 ec 74 87 ff 75 d0 41 56 e8 f3 06 93 ff <0f> 0b 48 83 c4 18 e9 46 ff ff ff 49 c7 c5 e0 ea 74 87 4d 89 ee 4d [ 60.405778][ T7756] RSP: 0018:ffff8880a94c7b18 EFLAGS: 00010282 [ 60.411902][ T7756] RAX: 0000000000000000 RBX: ffffffff8774eca0 RCX: 0000000000000000 [ 60.419920][ T7756] RDX: 0000000000000000 RSI: ffffffff815b0096 RDI: ffffed1015298f55 [ 60.427963][ T7756] RBP: ffff8880a94c7b70 R08: ffff88808e9d6140 R09: 0000000000000000 [ 60.436038][ T7756] R10: 0000000000000000 R11: 0000000000000000 R12: ffffffff885a0be5 [ 60.444107][ T7756] R13: ffffffff87760260 R14: ffffffff8774eb20 R15: 0000000000000008 [ 60.452099][ T7756] ? vprintk_func+0x86/0x189 [ 60.456695][ T7756] ? usercopy_warn+0xeb/0x110 [ 60.461529][ T7756] __check_heap_object+0x88/0xb3 [ 60.466490][ T7756] __check_object_size+0x342/0x42f [ 60.471747][ T7756] fanotify_read+0xde0/0x1430 [ 60.476460][ T7756] ? fanotify_release+0x350/0x350 [ 60.481972][ T7756] ? fsnotify+0xbc0/0xbc0 [ 60.486401][ T7756] ? fsnotify_first_mark+0x210/0x210 [ 60.491780][ T7756] ? do_wait_intr_irq+0x2b0/0x2b0 [ 60.496815][ T7756] ? __fget+0x381/0x550 [ 60.501053][ T7756] ? security_file_permission+0x94/0x380 [ 60.506805][ T7756] __vfs_read+0x8d/0x110 [ 60.511045][ T7756] ? fanotify_release+0x350/0x350 [ 60.516078][ T7756] vfs_read+0x194/0x3e0 [ 60.520349][ T7756] ksys_read+0xea/0x1f0 [ 60.524570][ T7756] ? kernel_write+0x120/0x120 [ 60.529570][ T7756] ? do_syscall_64+0x26/0x610 [ 60.534265][ T7756] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 60.540613][ T7756] ? do_syscall_64+0x26/0x610 [ 60.545298][ T7756] __x64_sys_read+0x73/0xb0 [ 60.549995][ T7756] do_syscall_64+0x103/0x610 [ 60.554606][ T7756] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 60.560498][ T7756] RIP: 0033:0x4456b9 [ 60.564507][ T7756] Code: e8 6c b6 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b 12 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 60.584201][ T7756] RSP: 002b:00007ffad5a27db8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 60.592650][ T7756] RAX: ffffffffffffffda RBX: 00000000006dac28 RCX: 00000000004456b9 [ 60.600671][ T7756] RDX: 000000000000006b RSI: 0000000020000000 RDI: 0000000000000004 [ 60.608650][ T7756] RBP: 00000000006dac20 R08: 0000000000000000 R09: 0000000000000000 [ 60.616625][ T7756] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dac2c [ 60.624719][ T7756] R13: 00007ffe00d1c97f R14: 00007ffad5a289c0 R15: 20c49ba5e353f7cf [ 60.633884][ T7756] Kernel Offset: disabled [ 60.638390][ T7756] Rebooting in 86400 seconds..