[....] Starting enhanced syslogd: rsyslogd[ 13.233517] audit: type=1400 audit(1516459515.022:5): avc: denied { syslog } for pid=3502 comm="rsyslogd" capability=34 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 19.019729] audit: type=1400 audit(1516459520.808:6): avc: denied { map } for pid=3643 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '10.128.15.204' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program executing program executing program [ 110.031520] audit: type=1400 audit(1516459611.820:7): avc: denied { map } for pid=3660 comm="syzkaller983440" path="/root/syzkaller983440146" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 executing program executing program executing program [ 167.400084] kasan: CONFIG_KASAN_INLINE enabled [ 167.404743] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 167.412081] general protection fault: 0000 [#1] SMP KASAN [ 167.417608] Dumping ftrace buffer: [ 167.421117] (ftrace buffer empty) [ 167.424795] Modules linked in: [ 167.427962] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 4.15.0-rc8+ #180 [ 167.434599] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 167.443934] RIP: 0010:loopback_pos_update+0x182/0x1580 [ 167.449176] RSP: 0018:ffff8801db3076d8 EFLAGS: 00010006 [ 167.454517] RAX: dffffc0000000000 RBX: 0000000000000186 RCX: ffffffff8427742d [ 167.461757] RDX: 0000000000000009 RSI: 000000003559c4f5 RDI: 0000000000000048 [ 167.469005] RBP: ffff8801db307768 R08: 1ffff1003b660e2d R09: 000000000000000c [ 167.476243] R10: ffff8801db307628 R11: 0000000000000024 R12: 0000000000000000 [ 167.483481] R13: 00000000fffdfa08 R14: 1ffffffff0d01200 R15: 0000000000000000 [ 167.490724] FS: 0000000000000000(0000) GS:ffff8801db300000(0000) knlGS:0000000000000000 [ 167.498920] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 167.504782] CR2: 00000000f7f56db0 CR3: 0000000006822006 CR4: 00000000001606e0 [ 167.512032] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 167.519273] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 167.526525] Call Trace: [ 167.529076] [ 167.531206] loopback_timer_function+0x6d/0x277 [ 167.535850] call_timer_fn+0x228/0x820 [ 167.539704] ? loopback_pointer+0x1a0/0x1a0 [ 167.543997] ? process_timeout+0x40/0x40 [ 167.548029] ? __run_timers+0x7e3/0xb70 [ 167.551977] ? lock_downgrade+0x980/0x980 [ 167.556099] ? debug_object_deactivate+0x364/0x560 [ 167.560995] ? lock_release+0xa40/0xa40 [ 167.564940] ? do_raw_spin_trylock+0x190/0x190 [ 167.569504] ? trace_hardirqs_on_caller+0x19e/0x5c0 [ 167.574513] ? loopback_pointer+0x1a0/0x1a0 [ 167.578801] ? loopback_pointer+0x1a0/0x1a0 [ 167.583091] __run_timers+0x7ee/0xb70 [ 167.586862] ? _raw_spin_unlock_irqrestore+0xa6/0xba [ 167.591937] ? trigger_dyntick_cpu.isra.29+0x180/0x180 [ 167.597178] ? check_noncircular+0x20/0x20 [ 167.601384] ? timerqueue_add+0x1e9/0x280 [ 167.605505] ? enqueue_hrtimer+0x171/0x4a0 [ 167.609706] ? __remove_hrtimer+0x190/0x190 [ 167.613999] ? find_held_lock+0x35/0x1d0 [ 167.618035] ? clockevents_program_event+0x163/0x2e0 [ 167.623104] ? lock_downgrade+0x980/0x980 [ 167.627225] ? rcu_pm_notify+0xc0/0xc0 [ 167.631084] run_timer_softirq+0x4c/0x70 [ 167.635114] __do_softirq+0x2d7/0xb85 [ 167.638882] ? lock_downgrade+0x980/0x980 [ 167.642997] ? __irqentry_text_end+0x1f8cf4/0x1f8cf4 [ 167.648071] ? do_timer+0x50/0x50 [ 167.651494] ? native_apic_msr_write+0x5c/0x80 [ 167.656043] ? do_raw_spin_trylock+0x190/0x190 [ 167.660596] ? lapic_next_event+0x54/0x80 [ 167.664712] ? clockevents_program_event+0x108/0x2e0 [ 167.669783] ? tick_program_event+0x83/0x100 [ 167.674168] ? hrtimer_interrupt+0x46e/0x5e0 [ 167.678543] ? rcu_pm_notify+0xc0/0xc0 [ 167.682404] irq_exit+0x1cc/0x200 [ 167.685825] smp_apic_timer_interrupt+0x16b/0x700 [ 167.690633] ? smp_reschedule_interrupt+0xe6/0x670 [ 167.695530] ? smp_call_function_single_interrupt+0x640/0x640 [ 167.701383] ? _raw_spin_lock+0x32/0x40 [ 167.705331] ? task_prio+0x40/0x40 [ 167.708849] ? rcu_eqs_enter_common.constprop.69+0x21a/0x300 [ 167.714618] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 167.719438] apic_timer_interrupt+0xa9/0xb0 [ 167.723723] [ 167.725929] RIP: 0010:native_safe_halt+0x6/0x10 [ 167.730562] RSP: 0018:ffff8801d9f77cb0 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff11 [ 167.738236] RAX: dffffc0000000000 RBX: 1ffff1003b3eef99 RCX: 0000000000000000 [ 167.745482] RDX: 1ffffffff0d19190 RSI: 0000000000000001 RDI: ffffffff868c8c80 [ 167.752722] RBP: ffff8801d9f77cb0 R08: 0000000000000000 R09: 0000000000000000 [ 167.759973] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000001 [ 167.767210] R13: ffff8801d9f77d68 R14: ffffffff870386e0 R15: 0000000000000000 [ 167.774458] default_idle+0xbf/0x460 [ 167.778142] ? __sched_text_end+0x4/0x4 [ 167.782089] ? tick_nohz_idle_enter+0x125/0x220 [ 167.786728] arch_cpu_idle+0xa/0x10 [ 167.790322] default_idle_call+0x36/0x90 [ 167.794356] do_idle+0x24a/0x3b0 [ 167.797692] ? complete+0x62/0x80 [ 167.801117] cpu_startup_entry+0x104/0x120 [ 167.805322] ? cpu_in_idle+0x20/0x20 [ 167.809006] start_secondary+0x40a/0x590 [ 167.813035] ? set_cpu_sibling_map+0x1660/0x1660 [ 167.817761] secondary_startup_64+0xa5/0xb0 [ 167.822054] Code: 00 fc ff df 41 80 3c 06 00 0f 85 e0 11 00 00 49 8d 7f 48 48 b8 00 00 00 00 00 fc ff df 4c 8b 2d a5 1b 59 02 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 b0 11 00 00 4d 89 ec 4d 2b 67 48 4d 89 6f 48 [ 167.841118] RIP: loopback_pos_update+0x182/0x1580 RSP: ffff8801db3076d8 [ 167.847860] ---[ end trace 01c78bc89174b551 ]--- [ 167.852583] Kernel panic - not syncing: Fatal exception in interrupt [ 167.859456] Dumping ftrace buffer: [ 167.862968] (ftrace buffer empty) [ 167.866651] Kernel Offset: disabled [ 167.870248] Rebooting in 86400 seconds..