[....] Starting enhanced syslogd: rsyslogd[ 9.358411] audit: type=1400 audit(1516343936.202:4): avc: denied { syslog } for pid=3172 comm="rsyslogd" capability=34 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.15.227' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 16.034895] sg_write: data in/out 8454115/514 bytes for SCSI command 0x0-- guessing data in; [ 16.034895] program syzkaller149035 not setting count and/or reply_len properly [ 16.037891] kasan: CONFIG_KASAN_INLINE enabled [ 16.038534] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 16.039774] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 16.040850] Dumping ftrace buffer: [ 16.041330] (ftrace buffer empty) [ 16.041827] Modules linked in: [ 16.042319] CPU: 0 PID: 3328 Comm: syzkaller149035 Not tainted 4.9.77-g8788313 #16 [ 16.043363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 16.044582] task: ffff8801c9471800 task.stack: ffff8801c8f40000 [ 16.045398] RIP: 0010:[] [] sg_read+0xd0c/0x1440 [ 16.046490] RSP: 0018:ffff8801c8f47ac0 EFLAGS: 00010246 [ 16.047212] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffff826699d3 [ 16.048187] RDX: 0000000000000000 RSI: 000000000000001a RDI: ffff8801c9774370 [ 16.049266] RBP: ffff8801c8f47bc8 R08: 0000000000000000 R09: ffffed0039380bf1 [ 16.050221] R10: 0000000000000005 R11: ffffed0039380bf0 R12: 0000000000001000 [ 16.051189] R13: 0000000000000000 R14: ffff8801c9c05f60 R15: ffff8801c9774340 [ 16.052163] FS: 0000000001678880(0000) GS:ffff8801db200000(0000) knlGS:0000000000000000 [ 16.053238] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 16.054074] CR2: 0000000020f93fcb CR3: 00000001cd678000 CR4: 0000000000160670 [ 16.055081] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 16.062316] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 16.069550] Stack: [ 16.071664] ffff8801d565b500 ffff8801c8f47af0 ffff8801c9774358 ffff88010000001a [ 16.079623] 0000000000000000 ffff8801c9774368 000000000000003e 0000000000000246 [ 16.087583] ffff8801d1649400 1ffff100391e8f64 0000000020f93fcb 0000000020f93fef [ 16.095536] Call Trace: [ 16.098094] [] ? sg_proc_seq_show_debug+0xd10/0xd10 [ 16.104738] [] ? fsnotify+0xf30/0xf30 [ 16.110156] [] ? avc_policy_seqno+0x9/0x20 [ 16.116007] [] do_loop_readv_writev.part.17+0x141/0x1e0 [ 16.122986] [] ? security_file_permission+0x89/0x1e0 [ 16.129707] [] ? sg_proc_seq_show_debug+0xd10/0xd10 [ 16.136337] [] ? sg_proc_seq_show_debug+0xd10/0xd10 [ 16.143346] [] do_readv_writev+0x520/0x750 [ 16.149202] [] ? vfs_write+0x530/0x530 [ 16.154707] [] ? __pmd_alloc+0x410/0x410 [ 16.160385] [] ? __do_page_fault+0x5ec/0xd40 [ 16.166409] [] vfs_readv+0x84/0xc0 [ 16.171566] [] do_readv+0xe6/0x250 [ 16.176721] [] ? vfs_readv+0xc0/0xc0 [ 16.182054] [] ? entry_SYSCALL_64_fastpath+0x5/0xe8 [ 16.188689] [] ? trace_hardirqs_on_caller+0x38b/0x590 [ 16.195495] [] SyS_readv+0x27/0x30 [ 16.200651] [] entry_SYSCALL_64_fastpath+0x29/0xe8 [ 16.207193] Code: 00 00 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 8a 06 00 00 48 b8 00 00 00 00 00 fc ff df 49 8b 5f 28 48 89 da 48 c1 ea 03 <80> 3c 02 00 0f 85 df 05 00 00 48 8b 1b 48 85 db 0f 84 51 03 00 [ 16.235131] RIP [] sg_read+0xd0c/0x1440 [ 16.243346] RSP [ 16.247417] ---[ end trace 04c739100ea587d0 ]--- [ 16.252176] Kernel panic - not syncing: Fatal exception [ 16.257963] Dumping ftrace buffer: [ 16.261479] (ftrace buffer empty) [ 16.265157] Kernel Offset: disabled [ 16.268754] Rebooting in 86400 seconds..