[....] Starting enhanced syslogd: rsyslogd[ 13.780806] audit: type=1400 audit(1517073389.890:5): avc: denied { syslog } for pid=3531 comm="rsyslogd" capability=34 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 20.395460] audit: type=1400 audit(1517073396.505:6): avc: denied { map } for pid=3671 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '10.128.15.192' (ECDSA) to the list of known hosts. executing program executing program [ 26.732733] audit: type=1400 audit(1517073402.842:7): avc: denied { map } for pid=3685 comm="syzkaller249359" path="/root/syzkaller249359155" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 26.763390] kasan: CONFIG_KASAN_INLINE enabled [ 26.768040] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 26.775435] general protection fault: 0000 [#1] SMP KASAN [ 26.780957] Dumping ftrace buffer: [ 26.784467] (ftrace buffer empty) [ 26.788149] Modules linked in: [ 26.791315] CPU: 1 PID: 3685 Comm: syzkaller249359 Not tainted 4.15.0-rc9+ #212 [ 26.798731] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 26.808071] RIP: 0010:ip6t_do_table+0x12de/0x19d0 [ 26.812882] RSP: 0018:ffff8801db306c60 EFLAGS: 00010246 [ 26.818220] RAX: 0000000000000000 RBX: ffff8801d9b2a080 RCX: ffffffff84d5f422 [ 26.825466] RDX: 0000000000000100 RSI: 0000000000000000 RDI: ffff8801d9b2a1de [ 26.832712] RBP: ffff8801db306e68 R08: 1ffff1003b660d55 R09: 0000000000000000 [ 26.839954] R10: 00000000000000d0 R11: 0000000000000000 R12: 0000000000000001 [ 26.847195] R13: 0000000000000000 R14: dffffc0000000000 R15: ffff8801d9b2a150 [ 26.854439] FS: 0000000002686880(0000) GS:ffff8801db300000(0000) knlGS:0000000000000000 [ 26.862638] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 26.868489] CR2: 00000000209f1000 CR3: 00000001d9b47006 CR4: 00000000001606e0 [ 26.875733] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 26.882973] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 26.890211] Call Trace: [ 26.892763] [ 26.894903] ? ip6t_error+0x60/0x60 [ 26.898504] ? mark_held_locks+0xaf/0x100 [ 26.902629] ? ip6t_do_table+0xba0/0x19d0 [ 26.906753] ? ip6t_error+0x60/0x60 [ 26.910348] ? lock_acquire+0x1d5/0x580 [ 26.914291] ? ip6table_mangle_net_exit+0xa0/0xa0 [ 26.919102] ? ip6_input+0x11f/0x560 [ 26.922789] ? lock_release+0xa40/0xa40 [ 26.926735] ip6table_security_hook+0x65/0x80 [ 26.931208] nf_hook_slow+0xba/0x1a0 [ 26.934897] ip6_input+0x35c/0x560 [ 26.938413] ? ip6_input_finish+0x17a0/0x17a0 [ 26.942896] ? find_held_lock+0x35/0x1d0 [ 26.946943] ? ip6_make_skb+0x5e0/0x5e0 [ 26.950886] ? ipv6_rcv+0x16cd/0x1fa0 [ 26.954660] ip6_rcv_finish+0x297/0x8c0 [ 26.958603] ? ip6_input+0x560/0x560 [ 26.962287] ? ip6table_nat_in+0x2c/0x40 [ 26.966320] ? nf_hook_slow+0xd3/0x1a0 [ 26.970180] ipv6_rcv+0xf37/0x1fa0 [ 26.973692] ? ip6_rcv_finish+0x8c0/0x8c0 [ 26.977815] ? print_irqtrace_events+0x270/0x270 [ 26.982540] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 26.987699] ? __lock_acquire+0x664/0x3e00 [ 26.991909] ? ip6_input+0x560/0x560 [ 26.995598] ? ip6_rcv_finish+0x8c0/0x8c0 [ 26.999723] __netif_receive_skb_core+0x1a41/0x3460 [ 27.004713] ? nf_ingress+0x9f0/0x9f0 [ 27.008487] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 27.013651] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 27.018810] ? rcu_read_lock_sched_held+0x108/0x120 [ 27.023798] ? update_cfs_rq_load_avg.part.69+0x23d/0x2d0 [ 27.029302] ? attach_entity_load_avg+0x7a0/0x7a0 [ 27.034115] ? __update_load_avg_se.isra.27+0x56a/0x7c0 [ 27.039446] ? __update_load_avg_se.isra.27+0x56a/0x7c0 [ 27.044781] ? __lock_acquire+0x664/0x3e00 [ 27.048983] ? __lock_acquire+0x664/0x3e00 [ 27.053192] ? fastpath_timer_check+0x7d5/0xa70 [ 27.057834] ? check_noncircular+0x20/0x20 [ 27.062041] ? print_irqtrace_events+0x270/0x270 [ 27.066769] ? find_held_lock+0x35/0x1d0 [ 27.070804] ? find_held_lock+0x35/0x1d0 [ 27.074843] ? lock_acquire+0x1d5/0x580 [ 27.078790] ? process_backlog+0x45f/0x740 [ 27.082995] ? lock_acquire+0x1d5/0x580 [ 27.086980] ? process_backlog+0x1ab/0x740 [ 27.091189] ? lock_release+0xa40/0xa40 [ 27.095135] ? x2apic_send_IPI+0x6f/0xa0 [ 27.099171] __netif_receive_skb+0x2c/0x1b0 [ 27.103474] ? __netif_receive_skb+0x2c/0x1b0 [ 27.107950] process_backlog+0x203/0x740 [ 27.111992] ? mark_held_locks+0xaf/0x100 [ 27.116119] net_rx_action+0x792/0x1910 [ 27.120080] ? napi_complete_done+0x6c0/0x6c0 [ 27.124546] ? trace_hardirqs_on_caller+0x19e/0x5c0 [ 27.129545] ? trace_hardirqs_on+0xd/0x10 [ 27.133666] ? _raw_spin_unlock_irq+0x27/0x70 [ 27.138133] ? __run_timers+0x16f/0xb70 [ 27.142077] ? _raw_spin_unlock_irqrestore+0xa6/0xba [ 27.147158] ? trigger_dyntick_cpu.isra.29+0x180/0x180 [ 27.152406] ? check_noncircular+0x20/0x20 [ 27.156613] ? timerqueue_add+0x1e9/0x280 [ 27.160735] ? enqueue_hrtimer+0x171/0x4a0 [ 27.164938] ? __remove_hrtimer+0x190/0x190 [ 27.169230] ? check_noncircular+0x20/0x20 [ 27.173448] ? print_irqtrace_events+0x270/0x270 [ 27.178179] ? clockevents_program_event+0x163/0x2e0 [ 27.183250] ? lock_downgrade+0x980/0x980 [ 27.187370] ? __lock_is_held+0xb6/0x140 [ 27.191407] ? check_noncircular+0x20/0x20 [ 27.195609] ? print_irqtrace_events+0x270/0x270 [ 27.200334] ? lock_downgrade+0x980/0x980 [ 27.204458] ? __irqentry_text_end+0x1f8d04/0x1f8d04 [ 27.209531] ? do_timer+0x50/0x50 [ 27.212965] ? __lock_is_held+0xb6/0x140 [ 27.217001] __do_softirq+0x2d7/0xb85 [ 27.220779] ? task_prio+0x40/0x40 [ 27.224292] ? __irqentry_text_end+0x1f8d04/0x1f8d04 [ 27.229364] ? irq_exit+0xbb/0x200 [ 27.232873] ? smp_apic_timer_interrupt+0x16b/0x700 [ 27.237860] ? smp_call_function_single_interrupt+0x640/0x640 [ 27.243713] ? _raw_spin_lock+0x32/0x40 [ 27.247656] ? _raw_spin_unlock+0x22/0x30 [ 27.251774] ? handle_edge_irq+0x2b4/0x7c0 [ 27.255978] ? task_prio+0x40/0x40 [ 27.259492] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 27.264308] do_softirq_own_stack+0x2a/0x40 [ 27.268598] [ 27.270804] do_softirq.part.19+0x14d/0x190 [ 27.275099] ? ip6_finish_output2+0xb6d/0x23a0 [ 27.279652] __local_bh_enable_ip+0x1ee/0x230 [ 27.284118] ip6_finish_output2+0xba0/0x23a0 [ 27.288501] ? ip6_sk_dst_lookup_flow+0x7f0/0x7f0 [ 27.293317] ? ip6_mtu+0x369/0x4d0 [ 27.296827] ? lock_downgrade+0x980/0x980 [ 27.300949] ? __lock_is_held+0xb6/0x140 [ 27.304984] ? ip6_mtu+0x1c7/0x4d0 [ 27.308495] ? ip6_dst_ifdown+0x3d0/0x3d0 [ 27.312616] ? nf_nat_ipv6_out+0x262/0x570 [ 27.316829] ip6_finish_output+0x698/0xaf0 [ 27.321035] ? ip6_finish_output+0x698/0xaf0 [ 27.325417] ip6_output+0x1eb/0x840 [ 27.329020] ? ip6_finish_output+0xaf0/0xaf0 [ 27.333404] ? ip6_fragment+0x3470/0x3470 [ 27.337522] ? nf_hook_slow+0xd3/0x1a0 [ 27.341382] ip6_xmit+0xe1f/0x2260 [ 27.344896] ? check_noncircular+0x20/0x20 [ 27.349106] ? ip6_finish_output2+0x23a0/0x23a0 [ 27.353747] ? consume_skb+0x160/0x490 [ 27.357604] ? alloc_skb_with_frags+0x750/0x750 [ 27.362240] ? check_noncircular+0x20/0x20 [ 27.366447] ? lock_acquire+0x1d5/0x580 [ 27.370395] ? sctp_chunk_put+0x2fd/0x420 [ 27.374511] ? lock_acquire+0x1d5/0x580 [ 27.378454] ? sctp_v6_xmit+0x2e5/0x630 [ 27.382403] ? ip6_forward_finish+0x140/0x140 [ 27.386868] ? lock_release+0xa40/0xa40 [ 27.390823] sctp_v6_xmit+0x438/0x630 [ 27.394594] ? sctp_getname+0xc0/0xc0 [ 27.398364] ? print_irqtrace_events+0x270/0x270 [ 27.403094] sctp_packet_transmit+0x225e/0x3750 [ 27.407744] ? sctp_packet_config+0xc80/0xc80 [ 27.412210] ? find_held_lock+0x35/0x1d0 [ 27.416245] ? ip6_mtu+0x369/0x4d0 [ 27.419757] ? find_held_lock+0x35/0x1d0 [ 27.423794] ? lock_downgrade+0x980/0x980 [ 27.427914] ? lock_release+0xa40/0xa40 [ 27.431864] ? __sctp_packet_append_chunk+0x4c9/0xd60 [ 27.437034] ? sctp_csum_update+0x30/0x30 [ 27.441156] ? sctp_packet_append_chunk+0xba0/0xba0 [ 27.446142] ? print_irqtrace_events+0x270/0x270 [ 27.450866] ? sctp_packet_init+0x25d/0x450 [ 27.455160] ? sctp_packet_append_chunk+0x48a/0xba0 [ 27.460146] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 27.465309] sctp_outq_flush+0xabb/0x4060 [ 27.469426] ? __lock_acquire+0x664/0x3e00 [ 27.473635] ? disarm_kprobe+0x71/0x260 [ 27.477584] ? sctp_check_transmitted+0x1da0/0x1da0 [ 27.482586] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 27.487750] ? is_bpf_text_address+0x7b/0x120 [ 27.492216] ? lock_downgrade+0x980/0x980 [ 27.496341] ? __free_insn_slot+0x5c0/0x5c0 [ 27.500637] ? rcutorture_record_progress+0x10/0x10 [ 27.505625] ? is_bpf_text_address+0xa4/0x120 [ 27.510093] ? check_noncircular+0x20/0x20 [ 27.514299] ? __kernel_text_address+0xd/0x40 [ 27.518766] ? unwind_get_return_address+0x61/0xa0 [ 27.523665] ? __save_stack_trace+0x7e/0xd0 [ 27.527962] ? depot_save_stack+0x12c/0x490 [ 27.532259] ? find_held_lock+0x35/0x1d0 [ 27.536296] ? debug_object_activate+0x307/0x730 [ 27.541026] ? lock_downgrade+0x980/0x980 [ 27.545145] ? lock_release+0xa40/0xa40 [ 27.549091] ? print_irqtrace_events+0x270/0x270 [ 27.553830] ? add_timer+0x56d/0x13f0 [ 27.557602] ? lock_downgrade+0x980/0x980 [ 27.561722] ? debug_object_activate+0x307/0x730 [ 27.566449] ? _raw_spin_lock_irqsave+0x9e/0xc0 [ 27.571087] ? calc_wheel_index+0x13d/0x200 [ 27.575381] ? mark_held_locks+0xaf/0x100 [ 27.579500] ? _raw_spin_unlock_irqrestore+0x31/0xba [ 27.584584] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 27.589570] ? trace_hardirqs_on+0xd/0x10 [ 27.593688] ? add_timer+0x572/0x13f0 [ 27.597464] ? mod_timer_pending+0x1440/0x1440 [ 27.602020] ? sctp_init_cause+0x170/0x170 [ 27.606238] ? is_bpf_text_address+0x7b/0x120 [ 27.610703] ? sctp_outq_tail+0x7b8/0xb40 [ 27.614820] ? lock_release+0xa40/0xa40 [ 27.618763] ? sctp_outq_free+0x20/0x20 [ 27.622714] ? sctp_endpoint_new+0xee0/0xee0 [ 27.627095] sctp_outq_uncork+0x5a/0x70 [ 27.631044] sctp_do_sm+0x4e0/0x6ed0 [ 27.634732] ? __save_stack_trace+0x7e/0xd0 [ 27.639035] ? sctp_do_8_2_transport_strike.isra.15+0x8a0/0x8a0 [ 27.645064] ? save_stack+0xa3/0xd0 [ 27.648681] ? save_stack+0x43/0xd0 [ 27.652276] ? kasan_kmalloc+0xad/0xe0 [ 27.656131] ? kmem_cache_alloc_trace+0x136/0x750 [ 27.660943] ? sctp_stream_init_ext+0x50/0xf0 [ 27.665406] ? sctp_sendmsg+0x2cd7/0x35e0 [ 27.669525] ? inet_sendmsg+0x11f/0x5e0 [ 27.673472] ? sock_sendmsg+0xca/0x110 [ 27.677329] ? SYSC_sendto+0x361/0x5c0 [ 27.681187] ? SyS_sendto+0x40/0x50 [ 27.684785] ? entry_SYSCALL_64_fastpath+0x29/0xa0 [ 27.690362] ? check_noncircular+0x20/0x20 [ 27.694574] ? print_irqtrace_events+0x270/0x270 [ 27.699300] ? __lock_is_held+0xb6/0x140 [ 27.703338] ? __lock_is_held+0xb6/0x140 [ 27.707389] ? sctp_v6_cmp_addr+0xb0/0x5d0 [ 27.711595] sctp_primitive_ASSOCIATE+0x9d/0xd0 [ 27.716239] sctp_sendmsg+0x13bd/0x35e0 [ 27.720190] ? sctp_id2assoc+0x390/0x390 [ 27.724228] ? find_held_lock+0x35/0x1d0 [ 27.728264] ? release_sock+0x1d4/0x2a0 [ 27.732209] ? lock_downgrade+0x980/0x980 [ 27.736327] ? lock_downgrade+0x980/0x980 [ 27.740447] ? lock_release+0xa40/0xa40 [ 27.744391] ? lock_acquire+0x1d5/0x580 [ 27.748332] ? lock_sock_nested+0xa3/0x110 [ 27.752537] ? lock_acquire+0x1d5/0x580 [ 27.756485] ? __local_bh_enable_ip+0x121/0x230 [ 27.761124] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 27.766111] ? release_sock+0x1d4/0x2a0 [ 27.770061] ? _raw_spin_unlock_bh+0x30/0x40 [ 27.774441] ? __release_sock+0x360/0x360 [ 27.778562] ? __local_bh_enable_ip+0x121/0x230 [ 27.783207] inet_sendmsg+0x11f/0x5e0 [ 27.786976] ? inet_sendmsg+0x11f/0x5e0 [ 27.790921] ? __might_sleep+0x95/0x190 [ 27.794866] ? inet_create+0xf50/0xf50 [ 27.798730] ? selinux_socket_sendmsg+0x36/0x40 [ 27.803369] ? security_socket_sendmsg+0x89/0xb0 [ 27.808104] ? inet_create+0xf50/0xf50 [ 27.811965] sock_sendmsg+0xca/0x110 [ 27.815651] SYSC_sendto+0x361/0x5c0 [ 27.819337] ? SYSC_connect+0x4a0/0x4a0 [ 27.823282] ? up_read+0x1a/0x40 [ 27.826622] ? __do_page_fault+0x3d6/0xc90 [ 27.830832] ? get_unused_fd_flags+0x190/0x190 [ 27.835393] ? sock_alloc_file+0x2a6/0x560 [ 27.839602] ? __alloc_fd+0x750/0x750 [ 27.843377] ? __do_page_fault+0xc90/0xc90 [ 27.847597] ? fd_install+0x4d/0x60 [ 27.851195] ? sock_map_fd+0x53/0x90 [ 27.854891] ? SyS_socket+0x12d/0x1d0 [ 27.858668] ? entry_SYSCALL_64_fastpath+0x5/0xa0 [ 27.863485] SyS_sendto+0x40/0x50 [ 27.866914] entry_SYSCALL_64_fastpath+0x29/0xa0 [ 27.871641] RIP: 0033:0x441489 [ 27.874803] RSP: 002b:00007ffc091ce3a8 EFLAGS: 00000203 ORIG_RAX: 000000000000002c [ 27.882480] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 0000000000441489 [ 27.889726] RDX: 0000000000000001 RSI: 00000000209f1000 RDI: 0000000000000005 [ 27.896968] RBP: 00000000006cb018 R08: 0000000020108fe4 R09: 000000000000001c [ 27.904210] R10: 0000000000000000 R11: 0000000000000203 R12: 0000000000402db0 [ 27.911449] R13: 0000000000402e40 R14: 0000000000000000 R15: 0000000000000000 [ 27.918697] Code: 41 f6 87 83 00 00 00 04 75 37 e8 be 3f 9a fc 8b 85 54 fe ff ff 48 8b b5 90 fe ff ff 4c 8d 2c c6 44 8d 60 01 4c 89 e8 48 c1 e8 03 <42> 80 3c 30 00 0f 85 5c 03 00 00 4d 89 7d 00 44 89 a5 54 fe ff [ 27.937794] RIP: ip6t_do_table+0x12de/0x19d0 RSP: ffff8801db306c60 [ 27.944136] ---[ end trace f043d95a1413db8f ]--- [ 27.948909] Kernel panic - not syncing: Fatal exception in interrupt [ 27.955876] Dumping ftrace buffer: [ 27.959398] (ftrace buffer empty) [ 27.963080] Kernel Offset: disabled [ 27.966688] Rebooting in 86400 seconds..