[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [ 9.944683] random: sshd: uninitialized urandom read (32 bytes read) [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 26.293105] random: crng init done Warning: Permanently added '10.128.10.11' (ECDSA) to the list of known hosts. executing program [ 38.249956] audit: type=1400 audit(1569575677.052:5): avc: denied { create } for pid=2060 comm="syz-executor657" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 38.274156] audit: type=1400 audit(1569575677.082:6): avc: denied { write } for pid=2060 comm="syz-executor657" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 38.297335] kasan: CONFIG_KASAN_INLINE enabled [ 38.297338] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 38.297348] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 38.297352] Modules linked in: [ 38.297359] CPU: 1 PID: 2062 Comm: syz-executor657 Not tainted 4.9.141+ #1 [ 38.297364] task: ffff8801cff1c740 task.stack: ffff8801ce7a0000 [ 38.297379] RIP: 0010:[] [] __blockdev_direct_IO+0x1a99/0xbd10 [ 38.297383] RSP: 0018:ffff8801ce7a7340 EFLAGS: 00010a02 [ 38.297387] RAX: 104000036cc16004 RBX: dffffc0000000000 RCX: 0000000000000000 [ 38.297391] RDX: 0000000000000000 RSI: ffffffff815cf6f1 RDI: 8200001b660b0020 [ 38.297395] RBP: ffff8801ce7a7660 R08: ffff8801cff1cff0 R09: 0000000000000001 [ 38.297398] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000001 [ 38.297402] R13: 8200001b660b0000 R14: 0000000000000000 R15: ffff8801ce554000 [ 38.297408] FS: 00007f26ba39d700(0000) GS:ffff8801db700000(0000) knlGS:0000000000000000 [ 38.297412] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 38.297416] CR2: 0000000020011000 CR3: 00000001d0ca3000 CR4: 00000000001606b0 [ 38.297423] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 38.297426] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 38.297427] Stack: [ 38.297438] ffff8801cff1d060 fffffbfff0604a02 ffff8801ce7a7450 ffff8801ce554098 [ 38.297447] ffff8801ce748000 0000000000001000 ffffffff83c78930 ffff8801ce554079 [ 38.297455] ffff8801ce7a7550 4c56c991f2a010fb ffff8801ce7a74b0 0000000000000fff [ 38.297457] Call Trace: [ 38.297467] [] ? ext4_update_bh_state+0xf0/0xf0 [ 38.297474] [] ? sb_init_dio_done_wq+0x80/0x80 [ 38.297483] [] ? ext4_dio_get_block_unwritten_sync+0x100/0x100 [ 38.297490] [] ? ext4_direct_IO+0x1151/0x29c0 [ 38.297499] [] ? __ext4_journal_stop+0xe6/0x1c0 [ 38.297506] [] ? ext4_dio_get_block_unwritten_sync+0x100/0x100 [ 38.297512] [] ext4_direct_IO+0x978/0x29c0 [ 38.297519] [] ? ext4_da_write_begin+0x1020/0x1020 [ 38.297527] [] ? inode_dio_wait+0x240/0x240 [ 38.297535] [] ? debug_lockdep_rcu_enabled+0x77/0x90 [ 38.297543] [] ? check_preemption_disabled+0x3b/0x200 [ 38.297552] [] ? filemap_check_errors+0x90/0xc0 [ 38.297559] [] generic_file_direct_write+0x284/0x510 [ 38.297572] [] ? filemap_write_and_wait_range+0xb0/0xb0 [ 38.297580] [] __generic_file_write_iter+0x21f/0x540 [ 38.297586] [] ? generic_write_checks+0x245/0x410 [ 38.297593] [] ext4_file_write_iter+0x63d/0xd70 [ 38.297601] [] ? wake_up_q+0x9c/0xe0 [ 38.297609] [] ? ext4_file_open+0x920/0x920 [ 38.297616] [] ? mark_held_locks+0xc7/0x130 [ 38.297624] [] ? mutex_lock_nested+0x6b7/0x900 [ 38.297631] [] ? trace_hardirqs_on_caller+0x38b/0x590 [ 38.297638] [] ? mutex_lock_nested+0x5dc/0x900 [ 38.297645] [] vfs_iter_write+0x2d7/0x450 [ 38.297651] [] ? vfs_iter_read+0x3f0/0x3f0 [ 38.297658] [] ? splice_from_pipe_next.part.2+0x226/0x2e0 [ 38.297665] [] iter_file_splice_write+0x5fb/0xb30 [ 38.297672] [] ? vmsplice_to_user+0x1e0/0x1e0 [ 38.297680] [] ? rcu_sync_lockdep_assert+0x73/0xb0 [ 38.297687] [] ? __sb_start_write+0x161/0x300 [ 38.297693] [] ? vmsplice_to_user+0x1e0/0x1e0 [ 38.297700] [] SyS_splice+0xe4d/0x14d0 [ 38.297708] [] ? SyS_futex+0x26c/0x370 [ 38.297715] [] ? compat_SyS_vmsplice+0x160/0x160 [ 38.297722] [] ? do_syscall_64+0x48/0x550 [ 38.297729] [] ? compat_SyS_vmsplice+0x160/0x160 [ 38.297735] [] do_syscall_64+0x19f/0x550 [ 38.297742] [] entry_SYSCALL_64_after_swapgs+0x5d/0xdb [ 38.297850] Code: 89 84 24 98 02 00 00 48 89 f8 48 c1 e8 03 80 3c 18 00 0f 85 7a 8e 00 00 4f 8b ac e7 a8 00 00 00 49 8d 7d 20 48 89 f8 48 c1 e8 03 <80> 3c 18 00 0f 85 93 8d 00 00 4d 8b 65 20 41 f6 c4 01 0f 85 8c [ 38.297858] RIP [] __blockdev_direct_IO+0x1a99/0xbd10 [ 38.297860] RSP [ 38.297864] ---[ end trace d88cca3e7b197a9a ]--- [ 38.297869] Kernel panic - not syncing: Fatal exception [ 38.299163] Kernel Offset: disabled [ 38.731432] Rebooting in 86400 seconds..