[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 66.019632][ T27] audit: type=1800 audit(1577112894.656:25): pid=9149 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 66.040088][ T27] audit: type=1800 audit(1577112894.656:26): pid=9149 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 66.060519][ T27] audit: type=1800 audit(1577112894.656:27): pid=9149 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.29' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 77.166781][ T9304] ================================================================== [ 77.166848][ T9304] BUG: KASAN: user-memory-access in insert_char+0x206/0x400 [ 77.166860][ T9304] Read of size 212 at addr 00000000ffffff3a by task syz-executor508/9304 [ 77.166864][ T9304] [ 77.166879][ T9304] CPU: 0 PID: 9304 Comm: syz-executor508 Not tainted 5.5.0-rc2-next-20191220-syzkaller #0 [ 77.166888][ T9304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 77.166892][ T9304] Call Trace: [ 77.166908][ T9304] dump_stack+0x197/0x210 [ 77.166922][ T9304] ? insert_char+0x206/0x400 [ 77.166935][ T9304] ? insert_char+0x206/0x400 [ 77.166952][ T9304] __kasan_report.cold+0x5/0x41 [ 77.166966][ T9304] ? insert_char+0x206/0x400 [ 77.166982][ T9304] kasan_report+0x12/0x20 [ 77.166997][ T9304] check_memory_region+0x134/0x1a0 [ 77.167012][ T9304] memmove+0x24/0x50 [ 77.167027][ T9304] insert_char+0x206/0x400 [ 77.167048][ T9304] do_con_trol+0x41a6/0x61b0 [ 77.167067][ T9304] ? reset_palette+0x190/0x190 [ 77.167084][ T9304] ? __kasan_check_read+0x11/0x20 [ 77.167106][ T9304] ? __atomic_notifier_call_chain+0xf8/0x1a0 [ 77.167129][ T9304] do_con_write.part.0+0xfd9/0x1ef0 [ 77.167162][ T9304] ? do_con_trol+0x61b0/0x61b0 [ 77.167180][ T9304] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 77.167191][ T9304] ? add_wait_queue+0x112/0x170 [ 77.167206][ T9304] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 77.167225][ T9304] ? trace_hardirqs_on+0x67/0x240 [ 77.167252][ T9304] con_write+0x46/0xd0 [ 77.167267][ T9304] n_tty_write+0x40e/0x1080 [ 77.167294][ T9304] ? n_tty_read+0x1bf0/0x1bf0 [ 77.167312][ T9304] ? prepare_to_wait_exclusive+0x320/0x320 [ 77.167335][ T9304] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 77.167355][ T9304] ? _copy_from_user+0x12c/0x1a0 [ 77.167376][ T9304] tty_write+0x496/0x7f0 [ 77.167394][ T9304] ? n_tty_read+0x1bf0/0x1bf0 [ 77.167416][ T9304] __vfs_write+0x8a/0x110 [ 77.167433][ T9304] ? hung_up_tty_compat_ioctl+0x40/0x40 [ 77.167452][ T9304] vfs_write+0x268/0x5d0 [ 77.167474][ T9304] ksys_write+0x14f/0x290 [ 77.167493][ T9304] ? __ia32_sys_read+0xb0/0xb0 [ 77.167512][ T9304] ? do_syscall_64+0x26/0x790 [ 77.167527][ T9304] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 77.167543][ T9304] ? do_syscall_64+0x26/0x790 [ 77.167565][ T9304] __x64_sys_write+0x73/0xb0 [ 77.167584][ T9304] do_syscall_64+0xfa/0x790 [ 77.167603][ T9304] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 77.167614][ T9304] RIP: 0033:0x4404f9 [ 77.167629][ T9304] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 5b 14 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 77.167637][ T9304] RSP: 002b:00007ffd6961f2c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 77.167651][ T9304] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 00000000004404f9 [ 77.167659][ T9304] RDX: 0000000000000078 RSI: 0000000020000000 RDI: 0000000000000004 [ 77.167668][ T9304] RBP: 00000000006ca018 R08: 0000000000000000 R09: 00000000004002c8 [ 77.167676][ T9304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000401de0 [ 77.167685][ T9304] R13: 0000000000401e70 R14: 0000000000000000 R15: 0000000000000000 [ 77.167706][ T9304] ================================================================== [ 77.167711][ T9304] Disabling lock debugging due to kernel taint [ 77.167719][ T9304] Kernel panic - not syncing: panic_on_warn set ... [ 77.167735][ T9304] CPU: 0 PID: 9304 Comm: syz-executor508 Tainted: G B 5.5.0-rc2-next-20191220-syzkaller #0 [ 77.167742][ T9304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 77.167745][ T9304] Call Trace: [ 77.167759][ T9304] dump_stack+0x197/0x210 [ 77.167776][ T9304] panic+0x2e3/0x75c [ 77.167790][ T9304] ? add_taint.cold+0x16/0x16 [ 77.167810][ T9304] ? trace_hardirqs_on+0x67/0x240 [ 77.167825][ T9304] ? trace_hardirqs_on+0x5e/0x240 [ 77.167839][ T9304] ? insert_char+0x206/0x400 [ 77.167853][ T9304] end_report+0x47/0x4f [ 77.167865][ T9304] ? insert_char+0x206/0x400 [ 77.167880][ T9304] __kasan_report.cold+0xe/0x41 [ 77.167894][ T9304] ? insert_char+0x206/0x400 [ 77.167909][ T9304] kasan_report+0x12/0x20 [ 77.167924][ T9304] check_memory_region+0x134/0x1a0 [ 77.167938][ T9304] memmove+0x24/0x50 [ 77.167951][ T9304] insert_char+0x206/0x400 [ 77.167968][ T9304] do_con_trol+0x41a6/0x61b0 [ 77.167985][ T9304] ? reset_palette+0x190/0x190 [ 77.167999][ T9304] ? __kasan_check_read+0x11/0x20 [ 77.168017][ T9304] ? __atomic_notifier_call_chain+0xf8/0x1a0 [ 77.168035][ T9304] do_con_write.part.0+0xfd9/0x1ef0 [ 77.168059][ T9304] ? do_con_trol+0x61b0/0x61b0 [ 77.168076][ T9304] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 77.168087][ T9304] ? add_wait_queue+0x112/0x170 [ 77.168104][ T9304] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 77.168122][ T9304] ? trace_hardirqs_on+0x67/0x240 [ 77.168139][ T9304] con_write+0x46/0xd0 [ 77.168153][ T9304] n_tty_write+0x40e/0x1080 [ 77.168171][ T9304] ? n_tty_read+0x1bf0/0x1bf0 [ 77.168186][ T9304] ? prepare_to_wait_exclusive+0x320/0x320 [ 77.168204][ T9304] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 77.168220][ T9304] ? _copy_from_user+0x12c/0x1a0 [ 77.168236][ T9304] tty_write+0x496/0x7f0 [ 77.168256][ T9304] ? n_tty_read+0x1bf0/0x1bf0 [ 77.168272][ T9304] __vfs_write+0x8a/0x110 [ 77.168286][ T9304] ? hung_up_tty_compat_ioctl+0x40/0x40 [ 77.168300][ T9304] vfs_write+0x268/0x5d0 [ 77.168321][ T9304] ksys_write+0x14f/0x290 [ 77.168335][ T9304] ? __ia32_sys_read+0xb0/0xb0 [ 77.168348][ T9304] ? do_syscall_64+0x26/0x790 [ 77.168359][ T9304] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 77.168372][ T9304] ? do_syscall_64+0x26/0x790 [ 77.168386][ T9304] __x64_sys_write+0x73/0xb0 [ 77.168400][ T9304] do_syscall_64+0xfa/0x790 [ 77.168413][ T9304] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 77.168422][ T9304] RIP: 0033:0x4404f9 [ 77.168434][ T9304] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 5b 14 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 77.168440][ T9304] RSP: 002b:00007ffd6961f2c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 77.168450][ T9304] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 00000000004404f9 [ 77.168457][ T9304] RDX: 0000000000000078 RSI: 0000000020000000 RDI: 0000000000000004 [ 77.168463][ T9304] RBP: 00000000006ca018 R08: 0000000000000000 R09: 00000000004002c8 [ 77.168470][ T9304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000401de0 [ 77.168477][ T9304] R13: 0000000000401e70 R14: 0000000000000000 R15: 0000000000000000 [ 77.169926][ T9304] Kernel Offset: disabled [ 77.805684][ T9304] Rebooting in 86400 seconds..