[....] Starting enhanced syslogd: rsyslogd[ 11.568775] audit: type=1400 audit(1514045584.544:5): avc: denied { syslog } for pid=2997 comm="rsyslogd" capability=34 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 16.210481] audit: type=1400 audit(1514045589.186:6): avc: denied { map } for pid=3138 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added 'ci-upstream-next-kasan-gce-5,10.128.15.222' (ECDSA) to the list of known hosts. [ 140.694927] audit: type=1400 audit(1514045713.670:7): avc: denied { map } for pid=3156 comm="syz-execprog" path="/root/syz-execprog" dev="sda1" ino=16479 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 2017/12/23 16:15:13 parsed 1 programs 2017/12/23 16:15:13 executed programs: 0 [ 140.806927] audit: type=1400 audit(1514045713.782:8): avc: denied { map } for pid=3156 comm="syz-execprog" path="/root/syzkaller-shm932860490" dev="sda1" ino=16482 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:file_t:s0 tclass=file permissive=1 [ 140.883639] kvm: KVM_SET_TSS_ADDR need to be called before entering vcpu 2017/12/23 16:15:18 executed programs: 239 2017/12/23 16:15:23 executed programs: 448 2017/12/23 16:15:28 executed programs: 661 result: failed=false hanged=false err=executor 7: failed to read output coverage: record 1 call 0: expect syscall 923, got 971, executed 4 (cov: 0:0|1:nil|2:nil|3:nil|4:nil|5:nil|) 2017/12/23 16:15:33 executed programs: 873 result: failed=false hanged=false err=executor 5: failed to read output coverage: record 0 call 0: expect syscall 923, got 971, executed 6 (cov: 0:nil|1:nil|2:nil|3:nil|4:nil|5:nil|) result: failed=false hanged=false err=executor 7: failed to read output coverage: record 0 call 0: expect syscall 923, got 971, executed 4 (cov: 0:nil|1:nil|2:nil|3:nil|4:nil|5:nil|) result: failed=false hanged=false err=executor 7: failed to read output coverage: record 0 call 0: expect syscall 923, got 971, executed 6 (cov: 0:nil|1:nil|2:nil|3:nil|4:nil|5:nil|) result: failed=false hanged=false err=executor 3: failed to read output coverage: record 0 call 0: expect syscall 923, got 971, executed 4 (cov: 0:nil|1:nil|2:nil|3:nil|4:nil|5:nil|) result: failed=false hanged=false err=executor 5: failed to read output coverage: record 1 call 0: expect syscall 923, got 971, executed 6 (cov: 0:0|1:nil|2:nil|3:nil|4:nil|5:nil|) result: failed=false hanged=false err=executor 5: failed to read output coverage: record 0 call 0: expect syscall 923, got 971, executed 6 (cov: 0:nil|1:nil|2:nil|3:nil|4:nil|5:nil|) result: failed=false hanged=false err=executor 5: failed to read output coverage: record 0 call 0: expect syscall 923, got 971, executed 6 (cov: 0:nil|1:nil|2:nil|3:nil|4:nil|5:nil|) result: failed=false hanged=false err=executor 4: failed: invalid command number 7887609648979993647 (errno 110) child failed (errno 1) loop failed (errno 0) invalid command number 7887609648979993647 (errno 110) child failed (errno 1) loop failed (errno 0) result: failed=false hanged=false err=executor 5: failed to read output coverage: record 1 call 0: expect syscall 923, got 971, executed 6 (cov: 0:0|1:nil|2:nil|3:nil|4:nil|5:nil|) result: failed=false hanged=false err=executor 6: failed: invalid command number 7887609648979993647 (errno 110) child failed (errno 1) loop failed (errno 0) invalid command number 7887609648979993647 (errno 110) child failed (errno 1) loop failed (errno 0) [ 164.542993] kasan: CONFIG_KASAN_INLINE enabled [ 164.547644] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 164.554976] general protection fault: 0000 [#1] SMP KASAN [ 164.561089] Dumping ftrace buffer: [ 164.564592] (ftrace buffer empty) [ 164.568269] Modules linked in: [ 164.571429] CPU: 0 PID: 208 Comm: kworker/u4:4 Not tainted 4.15.0-rc4-next-20171221+ #78 [ 164.579627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 164.588958] Workqueue: netns cleanup_net [ 164.592990] RIP: 0010:native_write_cr4+0x4/0x10 [ 164.597631] RSP: 0018:ffff8801db207ca8 EFLAGS: 00010006 [ 164.602962] RAX: ffff8801d900c000 RBX: 00000000001606f0 RCX: ffffffff811a47f2 [ 164.610200] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 00000000001606f0 [ 164.617437] RBP: ffff8801db207ca8 R08: 1ffff1003b203d63 R09: 0000000000000002 [ 164.624680] R10: ffff8801d901efd8 R11: 0000000000000000 R12: 0000000000000006 [ 164.631922] R13: ffff8801d900c000 R14: ffff8801db21a130 R15: ffff8801db21a130 [ 164.639163] FS: 0000000000000000(0000) GS:ffff8801db200000(0000) knlGS:0000000000000000 [ 164.647458] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 164.653307] CR2: 00000000016c1cd8 CR3: 0000000006422006 CR4: 00000000001626f0 [ 164.661246] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 164.668743] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 164.675978] Call Trace: [ 164.678528] [ 164.680650] hardware_disable+0x34a/0x4b0 [ 164.684766] ? irq_work_sync+0x1a0/0x1a0 [ 164.688794] ? lock_downgrade+0x980/0x980 [ 164.692912] ? kvm_io_bus_get_dev+0x2a0/0x2a0 [ 164.697392] kvm_arch_hardware_disable+0x35/0xd0 [ 164.702119] hardware_disable_nolock+0x30/0x40 [ 164.706671] flush_smp_call_function_queue+0x1f4/0x570 [ 164.711920] ? cpumask_weight+0x40/0x40 [ 164.715862] ? rcu_idle_exit+0x410/0x410 [ 164.719893] ? __lock_is_held+0xb6/0x140 [ 164.723927] generic_smp_call_function_single_interrupt+0x13/0x30 [ 164.730128] smp_call_function_single_interrupt+0x103/0x640 [ 164.735806] ? smp_call_function_interrupt+0x640/0x640 [ 164.741049] ? _raw_spin_lock+0x32/0x40 [ 164.744990] ? _raw_spin_unlock+0x22/0x30 [ 164.749114] ? handle_edge_irq+0x2b4/0x7c0 [ 164.753316] ? task_prio+0x40/0x40 [ 164.756829] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 164.761641] call_function_single_interrupt+0xa9/0xb0 [ 164.766794] [ 164.769003] RIP: 0010:inet_twsk_purge+0x3ea/0x770 [ 164.773811] RSP: 0018:ffff8801d901f108 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff04 [ 164.781484] RAX: ffff8801d34b7d00 RBX: ffffffff88478900 RCX: ffffffff84531360 [ 164.788720] RDX: 0000000000000000 RSI: 000000002b278d98 RDI: ffff8801db220750 [ 164.795962] RBP: ffff8801d901f2b0 R08: 1ffff1003b203d63 R09: 0000000000000002 [ 164.803206] R10: ffff8801d901efd8 R11: 0000000000000000 R12: 000000000002df41 [ 164.810442] R13: ffff8801d901f530 R14: ffff8801d901f288 R15: dffffc0000000000 [ 164.817702] ? inet_twsk_purge+0x3c0/0x770 [ 164.821908] ? inet_twsk_purge+0x3c0/0x770 [ 164.826113] ? evict_inodes+0x580/0x580 [ 164.830056] ? inet_twsk_deschedule_put+0x40/0x40 [ 164.834872] ? free_modinfo_version+0x70/0x70 [ 164.839338] ? sk_free+0x2f/0x40 [ 164.842672] ? dccp_close+0x6e3/0xc10 [ 164.846442] ? ip_mc_drop_socket+0x1ce/0x230 [ 164.850821] ? inet_release+0xf2/0x1c0 [ 164.854680] ? sock_release+0x166/0x1e0 [ 164.858622] ? dccp_v6_send_check+0x3d0/0x3d0 [ 164.863082] ? dccp_v6_exit_batch+0x20/0x20 [ 164.867631] dccp_v6_exit_batch+0x1a/0x20 [ 164.871748] ops_exit_list.isra.6+0x100/0x150 [ 164.876213] cleanup_net+0x5c7/0xb50 [ 164.879892] ? find_held_lock+0x35/0x1d0 [ 164.883922] ? unregister_pernet_device+0x80/0x80 [ 164.888735] ? debug_object_deactivate+0x364/0x560 [ 164.893634] ? lock_release+0xa40/0xa40 [ 164.897579] ? check_noncircular+0x20/0x20 [ 164.901790] ? lock_acquire+0x1d5/0x580 [ 164.905734] ? process_one_work+0xb01/0x1af0 [ 164.910131] ? __lock_is_held+0xb6/0x140 [ 164.914166] process_one_work+0xbbf/0x1af0 [ 164.918368] ? trace_hardirqs_on+0xd/0x10 [ 164.922662] ? pwq_dec_nr_in_flight+0x450/0x450 [ 164.927307] ? __schedule+0x8f3/0x2060 [ 164.931182] ? check_noncircular+0x20/0x20 [ 164.935383] ? __lock_is_held+0xb6/0x140 [ 164.939426] ? lock_acquire+0x1d5/0x580 [ 164.943366] ? lock_acquire+0x1d5/0x580 [ 164.947312] ? worker_thread+0x4a3/0x1990 [ 164.951427] ? lock_downgrade+0x980/0x980 [ 164.955545] ? lock_release+0xa40/0xa40 [ 164.959494] ? worker_pool_assign_id+0x1b0/0x1b0 [ 164.964219] ? do_raw_spin_trylock+0x190/0x190 [ 164.968781] worker_thread+0x223/0x1990 [ 164.972723] ? lock_downgrade+0x980/0x980 [ 164.976855] ? process_one_work+0x1af0/0x1af0 [ 164.981319] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 164.986303] ? account_kernel_stack+0x194/0x270 [ 164.990942] ? put_task_stack+0x116/0x270 [ 164.995073] ? finish_task_switch+0x4eb/0x740 [ 164.999534] ? copy_overflow+0x20/0x20 [ 165.003397] ? __schedule+0x8f3/0x2060 [ 165.007258] ? find_held_lock+0x35/0x1d0 [ 165.011295] ? find_held_lock+0x35/0x1d0 [ 165.015328] ? find_held_lock+0x35/0x1d0 [ 165.019362] ? complete+0x62/0x80 [ 165.022789] ? __schedule+0x2060/0x2060 [ 165.026730] ? do_wait_intr_irq+0x3e0/0x3e0 [ 165.031021] ? __lockdep_init_map+0xe4/0x650 [ 165.035399] ? do_raw_spin_trylock+0x190/0x190 [ 165.039947] ? lockdep_init_map+0x9/0x10 [ 165.043974] ? _raw_spin_unlock_irqrestore+0x31/0xba [ 165.049045] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 165.054029] ? trace_hardirqs_on+0xd/0x10 [ 165.058143] ? __kthread_parkme+0x175/0x240 [ 165.062432] kthread+0x33c/0x400 [ 165.065767] ? process_one_work+0x1af0/0x1af0 [ 165.070227] ? kthread_stop+0x7a0/0x7a0 [ 165.074171] ret_from_fork+0x24/0x30 [ 165.077856] Code: 0f 1f 80 00 00 00 00 55 48 89 e5 0f 20 d8 5d c3 0f 1f 80 00 00 00 00 55 48 89 e5 0f 22 df 5d c3 0f 1f 80 00 00 00 00 55 48 89 e5 <0f> 22 e7 5d c3 0f 1f 80 00 00 00 00 55 48 89 e5 44 0f 20 c0 5d [ 165.098333] RIP: native_write_cr4+0x4/0x10 RSP: ffff8801db207ca8 [ 165.104448] ---[ end trace 3797a659ea82cf74 ]--- [ 165.109167] Kernel panic - not syncing: Fatal exception in interrupt [ 165.116070] Dumping ftrace buffer: [ 165.119587] (ftrace buffer empty) [ 165.123264] Kernel Offset: disabled [ 165.126856] Rebooting in 86400 seconds..