[....] Starting enhanced syslogd: rsyslogd[   10.842616] audit: type=1400 audit(1514536133.696:5): avc:  denied  { syslog } for  pid=2998 comm="rsyslogd" capability=34  scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
Starting mcstransd: 
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting file context maintaining daemon: restorecond[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   16.391939] audit: type=1400 audit(1514536139.245:6): avc:  denied  { map } for  pid=3139 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1
Warning: Permanently added '10.128.15.235' (ECDSA) to the list of known hosts.
executing program
[   33.884940] audit: type=1400 audit(1514536156.738:7): avc:  denied  { map } for  pid=3157 comm="syzkaller832190" path="/root/syzkaller832190607" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1
[   33.919926] FAULT_INJECTION: forcing a failure.
[   33.919926] name failslab, interval 1, probability 0, space 0, times 1
[   33.931283] CPU: 0 PID: 3157 Comm: syzkaller832190 Not tainted 4.15.0-rc5+ #240
[   33.939096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   33.948861] Call Trace:
[   33.951437]  dump_stack+0x194/0x257
[   33.955046]  ? arch_local_irq_restore+0x53/0x53
[   33.959714]  should_fail+0x8c0/0xa40
[   33.963408]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[   33.968490]  ? perf_trace_lock+0x4d6/0x900
[   33.973297]  ? rcu_note_context_switch+0x710/0x710
[   33.978214]  ? __might_sleep+0x95/0x190
[   33.982169]  ? find_held_lock+0x35/0x1d0
[   33.986216]  ? __lock_is_held+0xb6/0x140
[   33.990281]  ? trace_event_raw_event_sched_switch+0x800/0x800
[   33.996140]  ? find_held_lock+0x35/0x1d0
[   34.000174]  ? rcu_note_context_switch+0x710/0x710
[   34.005108]  should_failslab+0xec/0x120
[   34.009059]  kmem_cache_alloc_trace+0x4b/0x750
[   34.013627]  ? __mutex_unlock_slowpath+0xe9/0xac0
[   34.018443]  ? trace_event_raw_event_sched_switch+0x800/0x800
[   34.024308]  alloc_tty_struct+0xda/0xa20
[   34.028346]  ? __do_SAK+0x30/0x30
[   34.031775]  ? __mutex_unlock_slowpath+0xe9/0xac0
[   34.036587]  ? mnt_get_count+0x150/0x150
[   34.040631]  ? dput.part.23+0x207/0x830
[   34.044607]  ? module_unload_free+0x5b0/0x5b0
[   34.049092]  ? __radix_tree_preload+0x133/0x1c0
[   34.053749]  ? mutex_unlock+0xd/0x10
[   34.057436]  ? devpts_new_index+0x142/0x290
[   34.061750]  tty_init_dev+0x78/0x4a0
[   34.065445]  ptmx_open+0xf3/0x310
[   34.069660]  ? pty_resize+0x270/0x270
[   34.073437]  chrdev_open+0x257/0x730
[   34.077134]  ? cdev_put.part.1+0x50/0x50
[   34.081168]  ? fsnotify_first_mark+0x2b0/0x2b0
[   34.085730]  ? _copy_to_user+0xc0/0xc0
[   34.089603]  ? security_file_open+0x89/0x190
[   34.094002]  do_dentry_open+0x667/0xd40
[   34.099344]  ? cdev_put.part.1+0x50/0x50
[   34.103654]  vfs_open+0x107/0x220
[   34.107091]  path_openat+0x1151/0x3530
[   34.110977]  ? path_lookupat+0xba0/0xba0
[   34.115116]  ? lock_downgrade+0x980/0x980
[   34.119232]  ? do_sys_open+0x2e7/0x6d0
[   34.123108]  ? lock_release+0xa40/0xa40
[   34.127057]  ? find_held_lock+0x35/0x1d0
[   34.131092]  ? do_raw_spin_trylock+0x190/0x190
[   34.136429]  ? __lock_is_held+0xb6/0x140
[   34.142203]  ? _find_next_bit+0xee/0x120
[   34.147466]  ? _raw_spin_unlock+0x22/0x30
[   34.151594]  ? __alloc_fd+0x29b/0x750
[   34.155412]  do_filp_open+0x25b/0x3b0
[   34.159200]  ? may_open_dev+0xe0/0xe0
[   34.162996]  ? mpi_resize+0x200/0x200
[   34.166801]  ? get_unused_fd_flags+0x121/0x190
[   34.171359]  ? __alloc_fd+0x750/0x750
[   34.175133]  ? getname_flags+0x256/0x580
[   34.179183]  do_sys_open+0x502/0x6d0
[   34.182871]  ? do_sys_open+0x502/0x6d0
[   34.188390]  ? filp_open+0x70/0x70
[   34.193242]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   34.200163]  SyS_openat+0x30/0x40
[   34.204378]  entry_SYSCALL_64_fastpath+0x1f/0x96
[   34.209540] RIP: 0033:0x4404b9
[   34.212714] RSP: 002b:00007fffce2101a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   34.220402] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00000000004404b9
[   34.227654] RDX: 0000000000004000 RSI: 00000000204aeff6 RDI: ffffffffffffff9c
executing program
[   34.234905] RBP: 0000000000000004 R08: 0000000000000001 R09: 00007fffce210037
[   34.242155] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[   34.249396] R13: ffffffffffffffff R14: 6d74702f7665642f R15: 0000000000000000
[   34.261277] FAULT_INJECTION: forcing a failure.
[   34.261277] name failslab, interval 1, probability 0, space 0, times 0
[   34.272504] CPU: 1 PID: 3157 Comm: syzkaller832190 Not tainted 4.15.0-rc5+ #240
[   34.279930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   34.289265] Call Trace:
[   34.291837]  dump_stack+0x194/0x257
[   34.295473]  ? arch_local_irq_restore+0x53/0x53
[   34.300134]  should_fail+0x8c0/0xa40
[   34.304269]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[   34.309351]  ? check_noncircular+0x20/0x20
[   34.313563]  ? save_stack+0xa3/0xd0
[   34.317175]  ? save_stack+0x43/0xd0
[   34.320771]  ? kasan_kmalloc+0xad/0xe0
[   34.324630]  ? kmem_cache_alloc_trace+0x136/0x750
[   34.329463]  ? alloc_tty_struct+0xda/0xa20
[   34.333672]  ? tty_init_dev+0x78/0x4a0
[   34.337530]  ? ptmx_open+0xf3/0x310
[   34.341126]  ? chrdev_open+0x257/0x730
[   34.344992]  ? find_held_lock+0x35/0x1d0
[   34.349032]  ? __lock_is_held+0xb6/0x140
[   34.353083]  ? trace_event_raw_event_sched_switch+0x800/0x800
[   34.358942]  ? rcu_note_context_switch+0x710/0x710
[   34.363841]  ? lock_release+0xa40/0xa40
[   34.367800]  should_failslab+0xec/0x120
[   34.371765]  kmem_cache_alloc_trace+0x4b/0x750
[   34.376319]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   34.381307]  ? trace_hardirqs_on+0xd/0x10
[   34.385435]  tty_ldisc_get.part.3+0x66/0x140
[   34.389816]  tty_ldisc_init+0x19/0x70
[   34.393600]  alloc_tty_struct+0x18b/0xa20
[   34.398067]  ? __do_SAK+0x30/0x30
[   34.402855]  ? __mutex_unlock_slowpath+0xe9/0xac0
[   34.408362]  ? mnt_get_count+0x150/0x150
[   34.412394]  ? dput.part.23+0x207/0x830
[   34.416342]  ? module_unload_free+0x5b0/0x5b0
[   34.420815]  ? __radix_tree_preload+0x133/0x1c0
[   34.425471]  ? mutex_unlock+0xd/0x10
[   34.429156]  ? devpts_new_index+0x142/0x290
[   34.433461]  tty_init_dev+0x78/0x4a0
[   34.437151]  ptmx_open+0xf3/0x310
[   34.440580]  ? pty_resize+0x270/0x270
[   34.444352]  chrdev_open+0x257/0x730
[   34.448044]  ? cdev_put.part.1+0x50/0x50
[   34.452080]  ? fsnotify_first_mark+0x2b0/0x2b0
[   34.456636]  ? _copy_to_user+0xc0/0xc0
[   34.460506]  ? security_file_open+0x89/0x190
[   34.464905]  do_dentry_open+0x667/0xd40
[   34.468851]  ? cdev_put.part.1+0x50/0x50
[   34.472900]  vfs_open+0x107/0x220
[   34.476330]  path_openat+0x1151/0x3530
[   34.480201]  ? path_lookupat+0xba0/0xba0
[   34.484246]  ? lock_downgrade+0x980/0x980
[   34.488360]  ? do_sys_open+0x2e7/0x6d0
[   34.492231]  ? lock_release+0xa40/0xa40
[   34.496181]  ? find_held_lock+0x35/0x1d0
[   34.500216]  ? do_raw_spin_trylock+0x190/0x190
[   34.504773]  ? __lock_is_held+0xb6/0x140
[   34.508808]  ? _find_next_bit+0xee/0x120
[   34.512847]  ? _raw_spin_unlock+0x22/0x30
[   34.517175]  ? __alloc_fd+0x29b/0x750
[   34.520966]  do_filp_open+0x25b/0x3b0
[   34.524739]  ? may_open_dev+0xe0/0xe0
[   34.528694]  ? mpi_resize+0x200/0x200
[   34.532481]  ? get_unused_fd_flags+0x121/0x190
[   34.537036]  ? __alloc_fd+0x750/0x750
[   34.540807]  ? getname_flags+0x256/0x580
[   34.545975]  do_sys_open+0x502/0x6d0
[   34.551402]  ? do_sys_open+0x502/0x6d0
[   34.555884]  ? filp_open+0x70/0x70
[   34.559399]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   34.564402]  SyS_openat+0x30/0x40
[   34.567841]  entry_SYSCALL_64_fastpath+0x1f/0x96
[   34.572576] RIP: 0033:0x4404b9
[   34.575736] RSP: 002b:00007fffce2101a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   34.583421] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00000000004404b9
[   34.590668] RDX: 0000000000004000 RSI: 00000000204aeff6 RDI: ffffffffffffff9c
[   34.597917] RBP: 0000000000000006 R08: 0000000000000001 R09: 00007fffce210037
[   34.605159] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[   34.612408] R13: ffffffffffffffff R14: 6d74702f7665642f R15: 0000000000000004
[   34.619797] Kernel panic - not syncing: n_tty: init_tty
[   34.625150] CPU: 1 PID: 3157 Comm: syzkaller832190 Not tainted 4.15.0-rc5+ #240
[   34.632578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   34.641905] Call Trace:
[   34.644474]  dump_stack+0x194/0x257
[   34.648085]  ? arch_local_irq_restore+0x53/0x53
[   34.652737]  ? vsnprintf+0x1ed/0x1900
[   34.656512]  panic+0x1e4/0x41c
[   34.659675]  ? refcount_error_report+0x214/0x214
[   34.664415]  ? trace_hardirqs_on+0xd/0x10
[   34.668540]  ? tty_ldisc_init+0x58/0x70
[   34.672489]  tty_ldisc_init+0x69/0x70
[   34.676267]  alloc_tty_struct+0x18b/0xa20
[   34.680389]  ? __do_SAK+0x30/0x30
[   34.683827]  ? __mutex_unlock_slowpath+0xe9/0xac0
[   34.688645]  ? mnt_get_count+0x150/0x150
[   34.692680]  ? dput.part.23+0x207/0x830
[   34.696645]  ? module_unload_free+0x5b0/0x5b0
[   34.701117]  ? __radix_tree_preload+0x133/0x1c0
[   34.705773]  ? mutex_unlock+0xd/0x10
[   34.709459]  ? devpts_new_index+0x142/0x290
[   34.713764]  tty_init_dev+0x78/0x4a0
[   34.717455]  ptmx_open+0xf3/0x310
[   34.720899]  ? pty_resize+0x270/0x270
[   34.724667]  chrdev_open+0x257/0x730
[   34.728354]  ? cdev_put.part.1+0x50/0x50
[   34.732385]  ? fsnotify_first_mark+0x2b0/0x2b0
[   34.736954]  ? _copy_to_user+0xc0/0xc0
[   34.740829]  ? security_file_open+0x89/0x190
[   34.745218]  do_dentry_open+0x667/0xd40
[   34.749167]  ? cdev_put.part.1+0x50/0x50
[   34.753209]  vfs_open+0x107/0x220
[   34.756643]  path_openat+0x1151/0x3530
[   34.760533]  ? path_lookupat+0xba0/0xba0
[   34.765391]  ? lock_downgrade+0x980/0x980
[   34.769513]  ? do_sys_open+0x2e7/0x6d0
[   34.773376]  ? lock_release+0xa40/0xa40
[   34.777690]  ? find_held_lock+0x35/0x1d0
[   34.781990]  ? do_raw_spin_trylock+0x190/0x190
[   34.786559]  ? __lock_is_held+0xb6/0x140
[   34.790606]  ? _find_next_bit+0xee/0x120
[   34.794651]  ? _raw_spin_unlock+0x22/0x30
[   34.798775]  ? __alloc_fd+0x29b/0x750
[   34.802563]  do_filp_open+0x25b/0x3b0
[   34.806338]  ? may_open_dev+0xe0/0xe0
[   34.810123]  ? mpi_resize+0x200/0x200
[   34.813906]  ? get_unused_fd_flags+0x121/0x190
[   34.819869]  ? __alloc_fd+0x750/0x750
[   34.823640]  ? getname_flags+0x256/0x580
[   34.827684]  do_sys_open+0x502/0x6d0
[   34.831376]  ? do_sys_open+0x502/0x6d0
[   34.835248]  ? filp_open+0x70/0x70
[   34.839544]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   34.844536]  SyS_openat+0x30/0x40
[   34.847972]  entry_SYSCALL_64_fastpath+0x1f/0x96
[   34.852703] RIP: 0033:0x4404b9
[   34.855862] RSP: 002b:00007fffce2101a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   34.863539] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00000000004404b9
[   34.870779] RDX: 0000000000004000 RSI: 00000000204aeff6 RDI: ffffffffffffff9c
[   34.878018] RBP: 0000000000000006 R08: 0000000000000001 R09: 00007fffce210037
[   34.885267] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[   34.892504] R13: ffffffffffffffff R14: 6d74702f7665642f R15: 0000000000000004
[   34.900072] Dumping ftrace buffer:
[   34.903670]    (ftrace buffer empty)
[   34.907353] Kernel Offset: disabled
[   34.910952] Rebooting in 86400 seconds..