Starting mcstransd: [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 32.270022] kauditd_printk_skb: 9 callbacks suppressed [ 32.270036] audit: type=1800 audit(1542267335.032:33): pid=5967 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 32.298064] audit: type=1800 audit(1542267335.042:34): pid=5967 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 35.424424] audit: type=1400 audit(1542267338.192:35): avc: denied { map } for pid=6144 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '10.128.0.12' (ECDSA) to the list of known hosts. executing program executing program executing program executing program [ 49.333998] audit: type=1400 audit(1542267352.102:36): avc: denied { map } for pid=6158 comm="syz-executor267" path="/root/syz-executor267520803" dev="sda1" ino=16483 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 executing program executing program executing program executing program [ 49.478831] WARNING: CPU: 0 PID: 6180 at drivers/dma-buf/dma-buf.c:992 dma_buf_vunmap+0x1bb/0x220 [ 49.487996] Kernel panic - not syncing: panic_on_warn set ... [ 49.493870] CPU: 0 PID: 6180 Comm: syz-executor267 Not tainted 4.20.0-rc2+ #113 [ 49.501296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 49.510631] Call Trace: [ 49.513222] dump_stack+0x244/0x39d [ 49.516850] ? dump_stack_print_info.cold.1+0x20/0x20 [ 49.522030] panic+0x2ad/0x55c [ 49.525206] ? add_taint.cold.5+0x16/0x16 [ 49.529355] ? __warn.cold.8+0x5/0x45 [ 49.533141] ? __warn+0xe8/0x1d0 [ 49.536501] ? dma_buf_vunmap+0x1bb/0x220 [ 49.540645] __warn.cold.8+0x20/0x45 [ 49.544342] ? rcu_softirq_qs+0x20/0x20 [ 49.548305] ? dma_buf_vunmap+0x1bb/0x220 [ 49.552434] report_bug+0x254/0x2d0 [ 49.556047] do_error_trap+0x11b/0x200 [ 49.559920] do_invalid_op+0x36/0x40 [ 49.563629] ? dma_buf_vunmap+0x1bb/0x220 [ 49.567763] invalid_op+0x14/0x20 [ 49.571200] RIP: 0010:dma_buf_vunmap+0x1bb/0x220 [ 49.575936] Code: 00 00 00 00 e8 56 f2 27 fd 4c 89 f7 e8 7e 1f 77 03 e8 49 f2 27 fd 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 35 f2 27 fd <0f> 0b eb e3 e8 2c f2 27 fd 0f 0b e8 25 f2 27 fd 0f 0b e8 1e f2 27 [ 49.594820] RSP: 0018:ffff8881b17cf948 EFLAGS: 00010293 [ 49.600167] RAX: ffff8881cde40040 RBX: 0000000000000000 RCX: ffffffff854cfa50 [ 49.607417] RDX: 0000000000000000 RSI: ffffffff845795ab RDI: 0000000000000000 [ 49.614671] RBP: ffff8881b17cf978 R08: ffff8881cde40040 R09: ffffed103a5dd096 [ 49.621922] R10: ffff8881b17cfad0 R11: ffff8881d2ee84b7 R12: ffffc90007465000 [ 49.629175] R13: ffff8881b100a940 R14: ffff8881b100a9a8 R15: ffff8881d965d800 [ 49.636438] ? __vb2_plane_dmabuf_put.isra.5+0xc0/0x310 [ 49.641785] ? dma_buf_vunmap+0x1bb/0x220 [ 49.645918] ? dma_buf_vunmap+0x1bb/0x220 [ 49.650049] vb2_vmalloc_detach_dmabuf+0x5a/0x80 [ 49.654803] ? vb2_vmalloc_map_dmabuf+0x80/0x80 [ 49.659454] __vb2_plane_dmabuf_put.isra.5+0x122/0x310 [ 49.664731] __vb2_queue_free+0x7f3/0xa30 [ 49.668864] ? v4l2_m2m_job_finish+0x4c0/0x4c0 [ 49.673430] ? __vb2_plane_dmabuf_put.isra.5+0x310/0x310 [ 49.678867] ? vidioc_querycap+0xd0/0xd0 [ 49.682908] vb2_core_queue_release+0x62/0x80 [ 49.687389] vb2_queue_release+0x15/0x20 [ 49.691430] v4l2_m2m_ctx_release+0x1e/0x35 [ 49.695733] vim2m_release+0xe6/0x150 [ 49.699516] v4l2_release+0x224/0x3a0 [ 49.703320] ? dev_debug_store+0x140/0x140 [ 49.707550] __fput+0x385/0xa30 [ 49.710813] ? get_max_files+0x20/0x20 [ 49.714712] ? trace_hardirqs_on+0xbd/0x310 [ 49.719033] ? kasan_check_read+0x11/0x20 [ 49.723171] ? task_work_run+0x1af/0x2a0 [ 49.727229] ? trace_hardirqs_off_caller+0x310/0x310 [ 49.732319] ? filp_close+0x1cd/0x250 [ 49.736109] ____fput+0x15/0x20 [ 49.739378] task_work_run+0x1e8/0x2a0 [ 49.743250] ? task_work_cancel+0x240/0x240 [ 49.747555] ? copy_fd_bitmaps+0x210/0x210 [ 49.751769] ? do_syscall_64+0x9a/0x820 [ 49.755730] exit_to_usermode_loop+0x318/0x380 [ 49.760294] ? __bpf_trace_sys_exit+0x30/0x30 [ 49.764795] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 49.770322] do_syscall_64+0x6be/0x820 [ 49.774192] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 49.779538] ? syscall_return_slowpath+0x5e0/0x5e0 [ 49.784467] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 49.789294] ? trace_hardirqs_on_caller+0x310/0x310 [ 49.794303] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 49.799309] ? prepare_exit_to_usermode+0x291/0x3b0 [ 49.804316] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 49.809149] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 49.814326] RIP: 0033:0x405731 [ 49.817501] Code: 75 14 b8 03 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 94 17 00 00 c3 48 83 ec 08 e8 6a fc ff ff 48 89 04 24 b8 03 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 b3 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 49.836386] RSP: 002b:00007fff450aae60 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 49.844076] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000405731 [ 49.851394] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 0000000000000003 [ 49.858654] RBP: 000000000000c12d R08: 00000000006dbc3c R09: 000000037ffffa00 [ 49.865909] R10: 00007fff450aae80 R11: 0000000000000293 R12: 000000000000002d [ 49.873190] R13: 20c49ba5e353f7cf R14: 0000000000000004 R15: 00000000006dbd2c [ 49.881448] Kernel Offset: disabled [ 49.885109] Rebooting in 86400 seconds..