[....] Starting enhanced syslogd: rsyslogd[ 12.920064] audit: type=1400 audit(1512932670.973:5): avc: denied { syslog } for pid=2996 comm="rsyslogd" capability=34 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 30.280171] audit: type=1400 audit(1512932688.333:6): avc: denied { map } for pid=3138 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added 'ci-upstream-net-kasan-gce-0,10.128.15.211' (ECDSA) to the list of known hosts. executing program [ 36.336150] audit: type=1400 audit(1512932694.389:7): avc: denied { map } for pid=3152 comm="syzkaller950860" path="/root/syzkaller950860707" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 36.338924] [ 36.338933] ============================= [ 36.338936] WARNING: suspicious RCU usage [ 36.338941] 4.15.0-rc2+ #148 Not tainted [ 36.338943] ----------------------------- [ 36.338948] ./include/trace/events/kmem.h:142 suspicious rcu_dereference_check() usage! [ 36.338951] [ 36.338951] other info that might help us debug this: [ 36.338951] [ 36.338955] [ 36.338955] rcu_scheduler_active = 2, debug_locks = 1 [ 36.338959] 1 lock held by syzkaller950860/3152: [ 36.338962] #0: (sk_lock-AF_ALG){+.+.}, at: [<00000000d20f9ac4>] af_alg_wait_for_data+0x2f2/0x650 [ 36.338984] [ 36.338984] stack backtrace: [ 36.338989] CPU: 1 PID: 3152 Comm: syzkaller950860 Not tainted 4.15.0-rc2+ #148 [ 36.338993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 36.338996] Call Trace: [ 36.339008] dump_stack+0x194/0x257 [ 36.339017] ? arch_local_irq_restore+0x53/0x53 [ 36.339035] lockdep_rcu_suspicious+0x123/0x170 [ 36.339044] ? blkcipher_walk_done+0x72b/0xde0 [ 36.339053] kfree+0x20a/0x250 [ 36.339061] blkcipher_walk_done+0x72b/0xde0 [ 36.339075] encrypt+0x20e/0x540 [ 36.339087] ? salsa20_ivsetup+0x40/0x40 [ 36.339113] ? salsa20_ivsetup+0x40/0x40 [ 36.339118] skcipher_decrypt_blkcipher+0x213/0x310 [ 36.339124] ? skcipher_decrypt_blkcipher+0x213/0x310 [ 36.339131] ? sock_kmalloc+0x11f/0x190 [ 36.339138] ? skcipher_encrypt_blkcipher+0x310/0x310 [ 36.339143] ? lock_sock_nested+0x91/0x110 [ 36.339152] ? memset+0x31/0x40 [ 36.339163] skcipher_recvmsg+0xa54/0xf20 [ 36.339181] ? skcipher_release+0x50/0x50 [ 36.339191] ? selinux_socket_recvmsg+0x36/0x40 [ 36.339198] ? security_socket_recvmsg+0x91/0xc0 [ 36.339207] ? skcipher_release+0x50/0x50 [ 36.339212] sock_recvmsg+0xc9/0x110 [ 36.339218] ? __sock_recv_wifi_status+0x210/0x210 [ 36.339227] ___sys_recvmsg+0x29b/0x630 [ 36.339241] ? ___sys_sendmsg+0x8a0/0x8a0 [ 36.339268] ? __handle_mm_fault+0x3e20/0x3e20 [ 36.339275] ? vmacache_find+0x5f/0x280 [ 36.339288] ? up_read+0x1a/0x40 [ 36.339296] ? __do_page_fault+0x3d6/0xc90 [ 36.339302] ? fd_install+0x4d/0x60 [ 36.339315] ? __fdget+0x18/0x20 [ 36.339326] __sys_recvmsg+0xe2/0x210 [ 36.339331] ? __sys_recvmsg+0xe2/0x210 [ 36.339339] ? SyS_sendmmsg+0x60/0x60 [ 36.339351] ? __do_page_fault+0xc90/0xc90 [ 36.339362] ? SyS_setsockopt+0x215/0x360 [ 36.339379] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 36.339391] SyS_recvmsg+0x2d/0x50 [ 36.339400] entry_SYSCALL_64_fastpath+0x1f/0x96 [ 36.339405] RIP: 0033:0x43fe89 [ 36.339408] RSP: 002b:00007ffc8fd9a248 EFLAGS: 00000207 ORIG_RAX: 000000000000002f [ 36.339415] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 000000000043fe89 [ 36.339419] RDX: 0000000040000003 RSI: 0000000020f3f000 RDI: 0000000000000004 [ 36.339423] RBP: 00000000006ca018 R08: 0000000000000000 R09: 0000000000000000 [ 36.339426] R10: 0000000000000000 R11: 0000000000000207 R12: 00000000004017f0 [ 36.339430] R13: 0000000000401880 R14: 0000000000000000 R15: 0000000000000000 [ 36.339499] BUG: unable to handle kernel NULL pointer dereference at 0000000000000074 [ 36.339505] IP: kfree+0xb2/0x250 [ 36.339507] PGD 1c5ad2067 P4D 1c5ad2067 PUD 1d9ee7067 PMD 0 [ 36.339515] Oops: 0000 [#1] SMP KASAN [ 36.339520] Dumping ftrace buffer: [ 36.339523] (ftrace buffer empty) [ 36.339525] Modules linked in: [ 36.339529] CPU: 1 PID: 3152 Comm: syzkaller950860 Not tainted 4.15.0-rc2+ #148 [ 36.339531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 36.339535] RIP: 0010:kfree+0xb2/0x250 [ 36.339537] RSP: 0018:ffff8801c5297780 EFLAGS: 00010046 [ 36.339540] RAX: 0000000000000000 RBX: ffff8801c5297948 RCX: ffffffffffffffff [ 36.339542] RDX: ffffea000714a5c0 RSI: 0000000000000000 RDI: ffff8801c5297948 [ 36.339544] RBP: ffff8801c52977a0 R08: 1ffff10038a52ea2 R09: 0000000000000000 [ 36.339546] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000282 [ 36.339548] R13: 0000000000000000 R14: ffff8801c5297948 R15: ffff8801c52978b0 [ 36.339552] FS: 00000000015dd880(0000) GS:ffff8801db500000(0000) knlGS:0000000000000000 [ 36.339554] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 36.339556] CR2: 0000000000000074 CR3: 00000001c52fa000 CR4: 00000000001406e0 [ 36.339561] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 36.339563] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 36.339565] Call Trace: [ 36.339571] blkcipher_walk_done+0x72b/0xde0 [ 36.339577] encrypt+0x20e/0x540 [ 36.339584] ? salsa20_ivsetup+0x40/0x40 [ 36.339598] ? salsa20_ivsetup+0x40/0x40 [ 36.339602] skcipher_decrypt_blkcipher+0x213/0x310 [ 36.339606] ? skcipher_decrypt_blkcipher+0x213/0x310 [ 36.339608] ? sock_kmalloc+0x11f/0x190 [ 36.339613] ? skcipher_encrypt_blkcipher+0x310/0x310 [ 36.339616] ? lock_sock_nested+0x91/0x110 [ 36.339621] ? memset+0x31/0x40 [ 36.339627] skcipher_recvmsg+0xa54/0xf20 [ 36.339637] ? skcipher_release+0x50/0x50 [ 36.339642] ? selinux_socket_recvmsg+0x36/0x40 [ 36.339646] ? security_socket_recvmsg+0x91/0xc0 [ 36.339651] ? skcipher_release+0x50/0x50 [ 36.339655] sock_recvmsg+0xc9/0x110 [ 36.339659] ? __sock_recv_wifi_status+0x210/0x210 [ 36.339664] ___sys_recvmsg+0x29b/0x630 [ 36.339672] ? ___sys_sendmsg+0x8a0/0x8a0 [ 36.339685] ? __handle_mm_fault+0x3e20/0x3e20 [ 36.339688] ? vmacache_find+0x5f/0x280 [ 36.339695] ? up_read+0x1a/0x40 [ 36.339699] ? __do_page_fault+0x3d6/0xc90 [ 36.339702] ? fd_install+0x4d/0x60 [ 36.339710] ? __fdget+0x18/0x20 [ 36.339716] __sys_recvmsg+0xe2/0x210 [ 36.339719] ? __sys_recvmsg+0xe2/0x210 [ 36.339724] ? SyS_sendmmsg+0x60/0x60 [ 36.339729] ? __do_page_fault+0xc90/0xc90 [ 36.339735] ? SyS_setsockopt+0x215/0x360 [ 36.339745] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 36.339752] SyS_recvmsg+0x2d/0x50 [ 36.339757] entry_SYSCALL_64_fastpath+0x1f/0x96 [ 36.339759] RIP: 0033:0x43fe89 [ 36.339761] RSP: 002b:00007ffc8fd9a248 EFLAGS: 00000207 ORIG_RAX: 000000000000002f [ 36.339764] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 000000000043fe89 [ 36.339766] RDX: 0000000040000003 RSI: 0000000020f3f000 RDI: 0000000000000004 [ 36.339768] RBP: 00000000006ca018 R08: 0000000000000000 R09: 0000000000000000 [ 36.339770] R10: 0000000000000000 R11: 0000000000000207 R12: 00000000004017f0 [ 36.339772] R13: 0000000000401880 R14: 0000000000000000 R15: 0000000000000000 [ 36.339781] Code: c2 48 b8 00 00 00 00 00 ea ff ff 48 89 df 48 c1 ea 0c 48 c1 e2 06 48 01 c2 48 8b 42 20 48 8d 48 ff a8 01 48 0f 45 d1 4c 8b 6a 30 <49> 63 75 74 e8 05 74 af ff 48 89 de 4c 89 ef 4c 8b 75 08 e8 06 [ 36.339848] RIP: kfree+0xb2/0x250 RSP: ffff8801c5297780 [ 36.339849] CR2: 0000000000000074 [ 36.339855] ---[ end trace 91710bd7d5cd6885 ]--- [ 36.339858] Kernel panic - not syncing: Fatal exception in interrupt [ 36.362043] Dumping ftrace buffer: [ 36.362046] (ftrace buffer empty) [ 36.362048] Kernel Offset: disabled [ 37.009146] Rebooting in 86400 seconds..