[....] Starting enhanced syslogd: rsyslogd[ 15.589053] audit: type=1400 audit(1519045296.991:4): avc: denied { syslog } for pid=3645 comm="rsyslogd" capability=34 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.13' (ECDSA) to the list of known hosts. 2018/02/19 13:01:55 parsed 1 programs 2018/02/19 13:01:55 executed programs: 0 syzkaller login: [ 34.493247] audit: type=1400 audit(1519045315.891:5): avc: denied { sys_admin } for pid=3808 comm="syz-executor0" capability=21 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 [ 34.523871] IPVS: Creating netns size=2536 id=1 [ 34.545140] IPVS: Creating netns size=2536 id=2 [ 34.556555] IPVS: Creating netns size=2536 id=3 [ 34.567867] IPVS: Creating netns size=2536 id=4 [ 34.578978] audit: type=1400 audit(1519045315.981:6): avc: denied { sys_chroot } for pid=3814 comm="syz-executor6" capability=18 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 [ 34.604765] audit: type=1400 audit(1519045316.001:7): avc: denied { net_admin } for pid=3814 comm="syz-executor6" capability=12 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 [ 34.629862] IPVS: Creating netns size=2536 id=5 [ 34.644543] audit: type=1400 audit(1519045316.041:8): avc: denied { dac_override } for pid=3840 comm="syz-executor3" capability=1 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 [ 34.669676] IPVS: Creating netns size=2536 id=6 [ 34.694390] IPVS: Creating netns size=2536 id=7 [ 34.734436] IPVS: Creating netns size=2536 id=8 2018/02/19 13:02:00 executed programs: 465 [ 43.243007] ================================================================== [ 43.250408] BUG: KASAN: stack-out-of-bounds in unwind_get_return_address+0x92/0xa0 [ 43.258091] Read of size 8 at addr ffff8801b5f3fe10 by task syz-executor1/8123 [ 43.265422] [ 43.267031] CPU: 1 PID: 8123 Comm: syz-executor1 Not tainted 4.9.82-gcdfc8df #45 [ 43.274555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 43.283903] ffff8801b59977c8 ffffffff81d94fc9 ffffea0006d7cfc0 ffff8801b5f3fe10 [ 43.291956] 0000000000000000 ffff8801b5f3fe10 0000000000000000 ffff8801b5997800 [ 43.300025] ffffffff8153e213 ffff8801b5f3fe10 0000000000000008 0000000000000000 [ 43.308084] Call Trace: [ 43.310672] [] dump_stack+0xc1/0x128 [ 43.316034] [] print_address_description+0x73/0x280 [ 43.322688] [] kasan_report+0x275/0x360 [ 43.328283] [] ? unwind_get_return_address+0x92/0xa0 [ 43.335005] [] __asan_report_load8_noabort+0x14/0x20 [ 43.341730] [] unwind_get_return_address+0x92/0xa0 [ 43.348276] [] __save_stack_trace+0x8d/0xf0 [ 43.354476] [] save_stack_trace_tsk+0x48/0x70 [ 43.360592] [] proc_pid_stack+0x146/0x230 [ 43.366356] [] ? lock_trace+0xc0/0xc0 [ 43.371777] [] proc_single_show+0xf8/0x170 [ 43.377632] [] seq_read+0x32f/0x1290 [ 43.382963] [] ? seq_escape+0x200/0x200 [ 43.388562] [] ? fsnotify+0x86/0xf30 [ 43.393893] [] ? fsnotify+0xf30/0xf30 [ 43.399312] [] ? avc_policy_seqno+0x9/0x20 [ 43.405166] [] do_loop_readv_writev.part.17+0x141/0x1e0 [ 43.412158] [] ? security_file_permission+0x89/0x1e0 [ 43.419143] [] ? seq_escape+0x200/0x200 [ 43.424737] [] ? seq_escape+0x200/0x200 [ 43.430331] [] compat_do_readv_writev+0x522/0x760 [ 43.436792] [] ? do_pwritev+0x1a0/0x1a0 [ 43.442386] [] ? mutex_lock_nested+0x5e3/0x870 [ 43.448586] [] ? trace_hardirqs_on_caller+0x38b/0x590 [ 43.455411] [] ? mutex_lock_nested+0x56f/0x870 [ 43.461614] [] ? __fdget_pos+0x9f/0xc0 [ 43.467119] [] ? __fget+0x20a/0x3b0 [ 43.472364] [] ? mutex_lock_killable_nested+0x960/0x960 [ 43.479350] [] ? __fget+0x47/0x3b0 [ 43.484510] [] compat_readv+0xe3/0x150 [ 43.490023] [] do_compat_readv+0xf4/0x1d0 [ 43.495789] [] ? compat_readv+0x150/0x150 [ 43.501555] [] compat_SyS_readv+0x26/0x30 [ 43.507319] [] ? SyS_pwritev2+0x80/0x80 [ 43.512913] [] do_fast_syscall_32+0x2f7/0x870 [ 43.519033] [] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 43.525669] [] entry_SYSENTER_compat+0x74/0x83 [ 43.531871] [ 43.533466] The buggy address belongs to the page: [ 43.538362] page:ffffea0006d7cfc0 count:0 mapcount:0 mapping: (null) index:0x0 [ 43.546602] flags: 0x8000000000000000() [ 43.550544] page dumped because: kasan: bad access detected [ 43.556222] [ 43.557818] Memory state around the buggy address: [ 43.562714] ffff8801b5f3fd00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 43.570042] ffff8801b5f3fd80: f1 f1 f1 f1 00 f2 f2 f2 f2 f2 f2 f2 00 f2 f2 f2 [ 43.577369] >ffff8801b5f3fe00: f2 f2 f2 f2 00 00 f2 f2 00 00 00 00 00 00 00 00 [ 43.584696] ^ [ 43.588551] ffff8801b5f3fe80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 43.595876] ffff8801b5f3ff00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 43.603199] ================================================================== [ 43.610522] Disabling lock debugging due to kernel taint [ 43.625602] Kernel panic - not syncing: panic_on_warn set ... [ 43.625602] [ 43.633002] CPU: 1 PID: 8123 Comm: syz-executor1 Tainted: G B 4.9.82-gcdfc8df #45 [ 43.641743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 43.651077] ffff8801b5997720 ffffffff81d94fc9 ffffffff8419777f ffff8801b59977f8 [ 43.659127] 0000000000000000 ffff8801b5f3fe10 0000000000000000 ffff8801b59977e8 [ 43.667191] ffffffff8142f6c1 0000000041b58ab3 ffffffff8418b1f0 ffffffff8142f505 [ 43.675247] Call Trace: [ 43.677832] [] dump_stack+0xc1/0x128 [ 43.683190] [] panic+0x1bc/0x3a8 [ 43.688207] [] ? percpu_up_read_preempt_enable.constprop.53+0xd7/0xd7 [ 43.696449] [] ? preempt_schedule+0x25/0x30 [ 43.702518] [] ? ___preempt_schedule+0x16/0x18 [ 43.708742] [] kasan_end_report+0x50/0x50 [ 43.714543] [] kasan_report+0x167/0x360 [ 43.720180] [] ? unwind_get_return_address+0x92/0xa0 [ 43.726932] [] __asan_report_load8_noabort+0x14/0x20 [ 43.733664] [] unwind_get_return_address+0x92/0xa0 [ 43.740219] [] __save_stack_trace+0x8d/0xf0 [ 43.746178] [] save_stack_trace_tsk+0x48/0x70 [ 43.752315] [] proc_pid_stack+0x146/0x230 [ 43.758095] [] ? lock_trace+0xc0/0xc0 [ 43.763519] [] proc_single_show+0xf8/0x170 [ 43.769371] [] seq_read+0x32f/0x1290 [ 43.774703] [] ? seq_escape+0x200/0x200 [ 43.780294] [] ? fsnotify+0x86/0xf30 [ 43.785626] [] ? fsnotify+0xf30/0xf30 [ 43.791064] [] ? avc_policy_seqno+0x9/0x20 [ 43.796919] [] do_loop_readv_writev.part.17+0x141/0x1e0 [ 43.803900] [] ? security_file_permission+0x89/0x1e0 [ 43.810623] [] ? seq_escape+0x200/0x200 [ 43.816214] [] ? seq_escape+0x200/0x200 [ 43.821807] [] compat_do_readv_writev+0x522/0x760 [ 43.828270] [] ? do_pwritev+0x1a0/0x1a0 [ 43.833865] [] ? mutex_lock_nested+0x5e3/0x870 [ 43.840067] [] ? trace_hardirqs_on_caller+0x38b/0x590 [ 43.846873] [] ? mutex_lock_nested+0x56f/0x870 [ 43.853073] [] ? __fdget_pos+0x9f/0xc0 [ 43.858579] [] ? __fget+0x20a/0x3b0 [ 43.863825] [] ? mutex_lock_killable_nested+0x960/0x960 [ 43.870814] [] ? __fget+0x47/0x3b0 [ 43.875969] [] compat_readv+0xe3/0x150 [ 43.881472] [] do_compat_readv+0xf4/0x1d0 [ 43.887235] [] ? compat_readv+0x150/0x150 [ 43.893001] [] compat_SyS_readv+0x26/0x30 [ 43.898765] [] ? SyS_pwritev2+0x80/0x80 [ 43.904355] [] do_fast_syscall_32+0x2f7/0x870 [ 43.910467] [] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 43.917102] [] entry_SYSENTER_compat+0x74/0x83 [ 43.923724] Dumping ftrace buffer: [ 43.927235] (ftrace buffer empty) [ 43.930916] Kernel Offset: disabled [ 43.934510] Rebooting in 86400 seconds..