[ 92.547207][ T31] audit: type=1400 audit(92.450:68): avc: denied { read write } for pid=3107 comm="sftp-server" name="null" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 92.549501][ T31] audit: type=1400 audit(92.450:69): avc: denied { open } for pid=3107 comm="sftp-server" path="/dev/null" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 Warning: Permanently added '[localhost]:24527' (ED25519) to the list of known hosts. [ 144.032330][ T31] audit: type=1400 audit(143.930:70): avc: denied { execute } for pid=3116 comm="sh" name="syz-executor3625303358" dev="vda" ino=682 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 144.051893][ T31] audit: type=1400 audit(143.950:71): avc: denied { execute_no_trans } for pid=3116 comm="sh" path="/syz-executor3625303358" dev="vda" ino=682 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 144.487683][ T31] audit: type=1400 audit(144.390:72): avc: denied { execmem } for pid=3116 comm="syz-executor362" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 144.517692][ T3117] usercopy: Kernel memory overwrite attempt detected to SLUB object 'task_struct' (offset 80, size 116)! [ 144.521704][ T3117] ------------[ cut here ]------------ executing program [ 144.522161][ T3117] kernel BUG at mm/usercopy.c:102! [ 144.522731][ T3117] Internal error: Oops - BUG: 0 [#1] PREEMPT SMP ARM [ 144.523394][ T3117] Modules linked in: [ 144.524177][ T3117] CPU: 0 UID: 0 PID: 3117 Comm: syz-executor362 Not tainted 6.12.0-rc2-syzkaller #0 [ 144.524917][ T3117] Hardware name: ARM-Versatile Express [ 144.525677][ T3117] PC is at usercopy_abort+0x98/0x9c [ 144.527069][ T3117] LR is at __wake_up_klogd.part.0+0x7c/0xac [ 144.527343][ T3117] pc : [<8199f388>] lr : [<802bc97c>] psr: 60000013 [ 144.527623][ T3117] sp : df971d90 ip : df971cd0 fp : df971db4 [ 144.527885][ T3117] r10: 81a0056c r9 : 00000078 r8 : 83e7d450 [ 144.528222][ T3117] r7 : dde858e0 r6 : 00000000 r5 : 00000074 r4 : 00000050 [ 144.528528][ T3117] r3 : 83e78c00 r2 : 00000000 r1 : 00000000 r0 : 00000066 [ 144.528894][ T3117] Flags: nZCv IRQs on FIQs on Mode SVC_32 ISA ARM Segment user [ 144.529269][ T3117] Control: 30c5387d Table: 842c2b00 DAC: fffffffd [ 144.529587][ T3117] Register r0 information: non-paged memory [ 144.530119][ T3117] Register r1 information: NULL pointer [ 144.530369][ T3117] Register r2 information: NULL pointer [ 144.530602][ T3117] Register r3 information: slab task_struct start 83e78c00 pointer offset 0 size 3072 [ 144.531457][ T3117] Register r4 information: non-paged memory [ 144.531710][ T3117] Register r5 information: non-paged memory [ 144.531962][ T3117] Register r6 information: NULL pointer [ 144.532206][ T3117] Register r7 information: non-slab/vmalloc memory [ 144.532558][ T3117] Register r8 information: slab task_struct start 83e7d400 pointer offset 80 size 3072 [ 144.532960][ T3117] Register r9 information: non-paged memory [ 144.533252][ T3117] Register r10 information: non-slab/vmalloc memory [ 144.533561][ T3117] Register r11 information: 2-page vmalloc region starting at 0xdf970000 allocated at kernel_clone+0xac/0x3e4 [ 144.534226][ T3117] Register r12 information: 2-page vmalloc region starting at 0xdf970000 allocated at kernel_clone+0xac/0x3e4 [ 144.534724][ T3117] Process syz-executor362 (pid: 3117, stack limit = 0xdf970000) [ 144.535373][ T3117] Stack: (0xdf971d90 to 0xdf972000) [ 144.535779][ T3117] 1d80: 8205b3b8 8202ce48 8204248c 00000050 [ 144.536183][ T3117] 1da0: 00000074 00000078 df971de4 df971db8 804cec50 8199f2fc 00000074 df971dc8 [ 144.536527][ T3117] 1dc0: 802147c0 83e7d450 00000074 00000000 83e7d4c4 dde858e0 df971e1c df971de8 [ 144.536868][ T3117] 1de0: 8050d758 804ceb84 00000074 20000084 df971e0c 83e7d450 00000074 20000084 [ 144.537253][ T3117] 1e00: 00000074 81a005a4 00000078 81a0056c df971e4c df971e20 80209d94 8050d4dc [ 144.537591][ T3117] 1e20: 804f4750 819b8988 df971e54 df971e38 8048c544 80209d04 83e7d400 20000084 [ 144.537936][ T3117] 1e40: df971ef4 df971e50 80252e9c 80209d10 00000000 20000000 20000000 81a00580 [ 144.538298][ T3117] 1e60: 819c4264 00000000 df971eb4 df971e78 8020d090 8020c014 8020c02c 00000000 [ 144.538635][ T3117] 1e80: 8027eb28 00000000 00000000 00000000 00000000 00000000 00000000 00000000 [ 144.538970][ T3117] 1ea0: 00000000 83e78c00 df971edc df971eb8 8027d354 802ae4b4 8028035c 00000000 [ 144.539317][ T3117] 1ec0: 00000000 8e27da55 83e7d400 20000080 00004202 00000002 00000000 20000080 [ 144.539654][ T3117] 1ee0: 83e78c00 0000001a df971f6c df971ef8 8020a1c4 80252b94 83e7d400 83e7dc84 [ 144.539993][ T3117] 1f00: df971f1c df971f10 819c4710 8027b8d0 df971f6c df971f20 802804bc 819c46ec [ 144.540342][ T3117] 1f20: df971f54 00000000 8027d354 60000013 81971270 819884d4 df971f54 8e27da55 [ 144.540679][ T3117] 1f40: 83e7d400 00004205 83e7d400 8e27da55 00004205 83e7d400 00000002 00000000 [ 144.541022][ T3117] 1f60: df971fa4 df971f70 80252840 8020a120 80214688 8e27da55 00000000 00000000 [ 144.541403][ T3117] 1f80: 00000000 0008e050 0000001a 8020029c 83e78c00 0000001a 00000000 df971fa8 [ 144.541742][ T3117] 1fa0: 80200060 80252614 00000000 00000000 00004205 00000c2e 00000002 20000080 [ 144.542106][ T3117] 1fc0: 00000000 00000000 0008e050 0000001a 7eedfe0c 00000000 00000001 00000000 [ 144.542446][ T3117] 1fe0: 7eedfc70 7eedfc60 00010650 0002e7a0 00000010 00004205 00000000 00000000 [ 144.542888][ T3117] Call trace: [ 144.543344][ T3117] [<8199f2f0>] (usercopy_abort) from [<804cec50>] (__check_heap_object+0xd8/0xf4) [ 144.544050][ T3117] [<804ceb78>] (__check_heap_object) from [<8050d758>] (__check_object_size+0x288/0x304) [ 144.544536][ T3117] r8:dde858e0 r7:83e7d4c4 r6:00000000 r5:00000074 r4:83e7d450 [ 144.544850][ T3117] [<8050d4d0>] (__check_object_size) from [<80209d94>] (fpa_set+0x90/0x118) [ 144.545332][ T3117] r10:81a0056c r9:00000078 r8:81a005a4 r7:00000074 r6:20000084 r5:00000074 [ 144.545669][ T3117] r4:83e7d450 [ 144.545857][ T3117] [<80209d04>] (fpa_set) from [<80252e9c>] (ptrace_request+0x314/0xa70) [ 144.546245][ T3117] r6:20000084 r5:83e7d400 r4:80209d04 [ 144.546486][ T3117] [<80252b88>] (ptrace_request) from [<8020a1c4>] (arch_ptrace+0xb0/0x424) [ 144.546858][ T3117] r10:0000001a r9:83e78c00 r8:20000080 r7:00000000 r6:00000002 r5:00004202 [ 144.547197][ T3117] r4:20000080 [ 144.547387][ T3117] [<8020a114>] (arch_ptrace) from [<80252840>] (sys_ptrace+0x238/0x4e0) [ 144.547793][ T3117] r7:00000000 r6:00000002 r5:83e7d400 r4:00004205 [ 144.548071][ T3117] [<80252608>] (sys_ptrace) from [<80200060>] (ret_fast_syscall+0x0/0x1c) [ 144.548473][ T3117] Exception stack(0xdf971fa8 to 0xdf971ff0) [ 144.548751][ T3117] 1fa0: 00000000 00000000 00004205 00000c2e 00000002 20000080 [ 144.549164][ T3117] 1fc0: 00000000 00000000 0008e050 0000001a 7eedfe0c 00000000 00000001 00000000 [ 144.549519][ T3117] 1fe0: 7eedfc70 7eedfc60 00010650 0002e7a0 [ 144.549796][ T3117] r10:0000001a r9:83e78c00 r8:8020029c r7:0000001a r6:0008e050 r5:00000000 [ 144.550131][ T3117] r4:00000000 [ 144.550588][ T3117] Code: e30b03bc e3480205 e58dc000 ebfff273 (e7f001f2) [ 144.551208][ T3117] ---[ end trace 0000000000000000 ]--- [ 144.551713][ T3117] Kernel panic - not syncing: Fatal exception [ 144.554271][ T3117] Rebooting in 86400 seconds.. VM DIAGNOSIS: 09:25:28 Registers: info registers vcpu 0 CPU#0 R00=8203d394 R01=83e78c00 R02=00400040 R03=00000000 R04=83e78c00 R05=8203d394 R06=827f2226 R07=82871154 R08=00000000 R09=00000000 R10=00000c2d R11=df971c0c R12=00000000 R13=df971ba8 R14=8196c8a8 R15=80269370 PSR=60000093 -ZC- A S svc32 s00=00000000 s01=00000000 d00=0000000000000000 s02=00000000 s03=00000000 d01=0000000000000000 s04=00000000 s05=00000000 d02=0000000000000000 s06=00000000 s07=00000000 d03=0000000000000000 s08=00000000 s09=00000000 d04=0000000000000000 s10=00000000 s11=00000000 d05=0000000000000000 s12=00000000 s13=00000000 d06=0000000000000000 s14=00000000 s15=00000000 d07=0000000000000000 s16=00000000 s17=00000000 d08=0000000000000000 s18=00000000 s19=00000000 d09=0000000000000000 s20=00000000 s21=00000000 d10=0000000000000000 s22=00000000 s23=00000000 d11=0000000000000000 s24=00000000 s25=00000000 d12=0000000000000000 s26=00000000 s27=00000000 d13=0000000000000000 s28=00000000 s29=00000000 d14=0000000000000000 s30=00000000 s31=00000000 d15=0000000000000000 s32=00000000 s33=00000000 d16=0000000000000000 s34=00000000 s35=00000000 d17=0000000000000000 s36=00000000 s37=00000000 d18=0000000000000000 s38=00000000 s39=00000000 d19=0000000000000000 s40=00000000 s41=00000000 d20=0000000000000000 s42=00000000 s43=00000000 d21=0000000000000000 s44=00000000 s45=00000000 d22=0000000000000000 s46=00000000 s47=00000000 d23=0000000000000000 s48=00000000 s49=00000000 d24=0000000000000000 s50=00000000 s51=00000000 d25=0000000000000000 s52=00000000 s53=00000000 d26=0000000000000000 s54=00000000 s55=00000000 d27=0000000000000000 s56=00000000 s57=00000000 d28=0000000000000000 s58=00000000 s59=00000000 d29=0000000000000000 s60=00000000 s61=00000000 d30=0000000000000000 s62=00000000 s63=00000000 d31=0000000000000000 FPSCR: 00000000 info registers vcpu 1 CPU#1 R00=00000001 R01=8203d394 R02=0005ca31 R03=80219aa0 R04=82e3ec00 R05=8260c5d0 R06=00000001 R07=8260c5fc R08=00000001 R09=00000000 R10=00000000 R11=df869f64 R12=df869f68 R13=df869f58 R14=8020898c R15=80219aa8 PSR=60000093 -ZC- A S svc32 s00=00000000 s01=00000000 d00=0000000000000000 s02=00000000 s03=00000000 d01=0000000000000000 s04=00000000 s05=00000000 d02=0000000000000000 s06=00000000 s07=00000000 d03=0000000000000000 s08=00000000 s09=00000000 d04=0000000000000000 s10=00000000 s11=00000000 d05=0000000000000000 s12=00000000 s13=00000000 d06=0000000000000000 s14=00000000 s15=00000000 d07=0000000000000000 s16=004b27e9 s17=00000000 d08=00000000004b27e9 s18=00000000 s19=00000000 d09=0000000000000000 s20=00000000 s21=00000000 d10=0000000000000000 s22=00000000 s23=00000000 d11=0000000000000000 s24=00000000 s25=00000000 d12=0000000000000000 s26=00000000 s27=00000000 d13=0000000000000000 s28=00000000 s29=00000000 d14=0000000000000000 s30=00000000 s31=00000000 d15=0000000000000000 s32=498fab65 s33=500f1de1 d16=500f1de1498fab65 s34=80f9b40f s35=aafd865e d17=aafd865e80f9b40f s36=3a843c42 s37=5aaed0f7 d18=5aaed0f73a843c42 s38=5ec2ba05 s39=d8e1757a d19=d8e1757a5ec2ba05 s40=27f7c4a7 s41=7a46f418 d20=7a46f41827f7c4a7 s42=a219b5ce s43=b4ed0c7f d21=b4ed0c7fa219b5ce s44=6dcd0c07 s45=661ebb53 d22=661ebb536dcd0c07 s46=24cf28c8 s47=af6223b2 d23=af6223b224cf28c8 s48=00000001 s49=00000000 d24=0000000000000001 s50=00000000 s51=00000000 d25=0000000000000000 s52=5e43d1bb s53=b716fd61 d26=b716fd615e43d1bb s54=0b9270b8 s55=99f61d1f d27=99f61d1f0b9270b8 s56=0a0d51e3 s57=c8e64fe2 d28=c8e64fe20a0d51e3 s58=0ef66732 s59=0c98f770 d29=0c98f7700ef66732 s60=ac7d73fe s61=479d34fd d30=479d34fdac7d73fe s62=00000069 s63=00000068 d31=0000006800000069 FPSCR: 00000000