[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 17.837243] audit: type=1400 audit(1518380905.739:6): avc: denied { map } for pid=4145 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.15.222' (ECDSA) to the list of known hosts. net.ipv6.conf.syz0.accept_dad = 0 net.ipv6.conf.syz0.router_solicitations = 0 syzkaller login: [ 28.382522] audit: type=1400 audit(1518380916.284:7): avc: denied { map } for pid=4161 comm="syzkaller652256" path="/root/syzkaller652256481" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 28.390595] IPVS: ftp: loaded support on port[0] = 21 RTNETLINK answers: Operation not supported RTNETLINK answers: No buffer space available RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported [ 28.617923] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument executing program [ 28.934865] kasan: CONFIG_KASAN_INLINE enabled [ 28.939511] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 28.946894] general protection fault: 0000 [#1] SMP KASAN [ 28.952411] Dumping ftrace buffer: [ 28.955920] (ftrace buffer empty) [ 28.959601] Modules linked in: [ 28.962768] CPU: 0 PID: 4162 Comm: syzkaller652256 Not tainted 4.15.0+ #222 [ 28.969833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 28.979164] RIP: 0010:ipt_do_table+0x12ee/0x1950 [ 28.983886] RSP: 0018:ffff8801db406bd0 EFLAGS: 00010246 [ 28.989226] RAX: 0000000000000000 RBX: ffff8801db3ccf80 RCX: ffffffff84b7013d [ 28.996468] RDX: 0000000000000100 RSI: 0000000000000000 RDI: ffff8801db3cce5a [ 29.003711] RBP: ffff8801db406dd8 R08: ffff8801db406ed0 R09: 0000000000000002 [ 29.010950] R10: ffff8801db406d30 R11: 0000000000000020 R12: 0000000000000000 [ 29.018191] R13: dffffc0000000000 R14: ffff8801db3cce00 R15: ffff8801db406d50 [ 29.025436] FS: 0000000000be1880(0000) GS:ffff8801db400000(0000) knlGS:0000000000000000 [ 29.033632] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 29.039483] CR2: 0000000020015cf0 CR3: 00000001d715c004 CR4: 00000000001606f0 [ 29.046725] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 29.053965] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 29.061207] Call Trace: [ 29.063762] [ 29.065885] ? trace_hardirqs_on+0xd/0x10 [ 29.070010] ? __local_bh_enable_ip+0x121/0x230 [ 29.074659] ? __dev_queue_xmit+0xe73/0x2f30 [ 29.079055] ? do_add_counters+0x550/0x550 [ 29.083266] ? check_noncircular+0x20/0x20 [ 29.087473] ? lock_acquire+0x1d5/0x580 [ 29.091417] ? lock_acquire+0x1d5/0x580 [ 29.095363] ? ip_local_deliver+0x212/0x6e0 [ 29.099663] ? lock_release+0xa40/0xa40 [ 29.103610] iptable_filter_hook+0x65/0x80 [ 29.107817] nf_hook_slow+0xba/0x1a0 [ 29.111514] ip_local_deliver+0x445/0x6e0 [ 29.115633] ? ip_call_ra_chain+0x6d0/0x6d0 [ 29.119931] ? lock_release+0xa40/0xa40 [ 29.123876] ? ip_rcv_finish+0x2040/0x2040 [ 29.128084] ? modules_open+0xa0/0xa0 [ 29.131858] ip_rcv_finish+0xa36/0x2040 [ 29.135803] ? inet_del_offload+0x40/0x40 [ 29.139932] ? ip_rcv+0xf22/0x1840 [ 29.143446] ? lock_downgrade+0x980/0x980 [ 29.147565] ? lock_release+0xa40/0xa40 [ 29.151510] ? __lock_is_held+0xb6/0x140 [ 29.155543] ? nf_hook_slow+0xd3/0x1a0 [ 29.159406] ip_rcv+0xc5a/0x1840 [ 29.162744] ? ip_local_deliver+0x6e0/0x6e0 [ 29.167044] ? mark_lock+0xb2c/0x1430 [ 29.170814] ? check_usage_backwards+0x410/0x410 [ 29.175542] ? inet_del_offload+0x40/0x40 [ 29.179660] ? ip_local_deliver+0x6e0/0x6e0 [ 29.183955] __netif_receive_skb_core+0x1a41/0x3460 [ 29.188948] ? nf_ingress+0x9f0/0x9f0 [ 29.192720] ? lock_downgrade+0x980/0x980 [ 29.196837] ? trace_hardirqs_off+0xd/0x10 [ 29.201057] ? _raw_spin_unlock_irqrestore+0xa6/0xba [ 29.206136] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 29.211294] ? mark_held_locks+0xaf/0x100 [ 29.215418] ? _raw_spin_unlock_irqrestore+0x31/0xba [ 29.220495] ? trace_hardirqs_on_caller+0x19e/0x5c0 [ 29.225484] ? __lock_acquire+0x664/0x3e00 [ 29.229693] ? msleep_interruptible+0x150/0x150 [ 29.234343] ? icmp6_dst_alloc+0x475/0x660 [ 29.238560] ? check_noncircular+0x20/0x20 [ 29.242765] ? check_noncircular+0x20/0x20 [ 29.246970] ? icmpv6_flow_init+0x1f6/0x270 [ 29.251263] ? mld_sendpack+0x828/0xe70 [ 29.255210] ? find_held_lock+0x35/0x1d0 [ 29.259245] ? lock_acquire+0x1d5/0x580 [ 29.263189] ? process_backlog+0x45f/0x740 [ 29.267395] ? lock_acquire+0x1d5/0x580 [ 29.271352] ? process_backlog+0x1ab/0x740 [ 29.275571] ? lock_release+0xa40/0xa40 [ 29.279520] ? do_raw_spin_trylock+0x190/0x190 [ 29.284078] __netif_receive_skb+0x2c/0x1b0 [ 29.288377] ? __netif_receive_skb+0x2c/0x1b0 [ 29.292845] process_backlog+0x203/0x740 [ 29.296881] net_rx_action+0x792/0x1910 [ 29.300832] ? napi_complete_done+0x6c0/0x6c0 [ 29.305297] ? trace_hardirqs_on_caller+0x19e/0x5c0 [ 29.310283] ? trace_hardirqs_on+0xd/0x10 [ 29.314401] ? _raw_spin_unlock_irq+0x27/0x70 [ 29.318867] ? __run_timers+0x16f/0xb70 [ 29.322816] ? trigger_dyntick_cpu.isra.29+0x150/0x150 [ 29.328064] ? timerqueue_add+0x1e9/0x280 [ 29.332185] ? check_noncircular+0x20/0x20 [ 29.336391] ? enqueue_hrtimer+0x177/0x4b0 [ 29.340593] ? lock_release+0xa40/0xa40 [ 29.344540] ? retrigger_next_event+0x1e0/0x1e0 [ 29.349184] ? find_held_lock+0x35/0x1d0 [ 29.353222] ? clockevents_program_event+0x163/0x2e0 [ 29.358294] ? lock_downgrade+0x980/0x980 [ 29.362429] ? rcu_pm_notify+0xc0/0xc0 [ 29.366292] ? __local_bh_enable+0x10b/0x130 [ 29.370675] ? __do_softirq+0x7a0/0xb85 [ 29.374618] ? ktime_get+0x26f/0x3a0 [ 29.378306] ? __irqentry_text_end+0x1f8ee4/0x1f8ee4 [ 29.383381] ? do_timer+0x50/0x50 [ 29.386807] ? native_apic_msr_write+0x5c/0x80 [ 29.391359] ? rcu_pm_notify+0xc0/0xc0 [ 29.395225] __do_softirq+0x2d7/0xb85 [ 29.398998] ? task_prio+0x50/0x50 [ 29.402520] ? __irqentry_text_end+0x1f8ee4/0x1f8ee4 [ 29.407592] ? irq_exit+0xbb/0x200 [ 29.411105] ? smp_apic_timer_interrupt+0x16b/0x700 [ 29.416095] ? smp_call_function_single_interrupt+0x640/0x640 [ 29.421948] ? _raw_spin_lock+0x32/0x40 [ 29.425892] ? _raw_spin_unlock+0x22/0x30 [ 29.430011] ? handle_edge_irq+0x2b4/0x7c0 [ 29.434234] ? task_prio+0x50/0x50 [ 29.437750] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 29.442566] do_softirq_own_stack+0x2a/0x40 [ 29.446855] [ 29.449067] do_softirq.part.19+0x14d/0x190 [ 29.453362] do_softirq+0x19/0x20 [ 29.456785] netif_rx_ni+0xcd/0x3c0 [ 29.460389] ? netif_rx+0x390/0x390 [ 29.463992] ? find_held_lock+0x35/0x1d0 [ 29.468043] ? ip_mc_output+0x653/0x1350 [ 29.472084] dev_loopback_xmit+0x263/0x670 [ 29.476297] ? lock_release+0xa40/0xa40 [ 29.480245] ? netif_rx_ni+0x3c0/0x3c0 [ 29.484111] ip_mc_finish_output+0x36/0x180 [ 29.488405] ip_mc_output+0x69c/0x1350 [ 29.492264] ? ip_queue_xmit+0x18e0/0x18e0 [ 29.496477] ? nf_hook_slow+0xd3/0x1a0 [ 29.500352] ? ip_copy_addrs+0xe0/0xe0 [ 29.504209] ? __ip_local_out+0x52c/0xa30 [ 29.508327] ? ip_finish_output+0xd10/0xd10 [ 29.512628] ? ip_make_skb+0x202/0x330 [ 29.516486] ? ip_reply_glue_bits+0xb0/0xb0 [ 29.520779] ? __ip_flush_pending_frames.isra.41+0x2b0/0x2b0 [ 29.526550] ip_local_out+0x95/0x160 [ 29.530236] ip_send_skb+0x3c/0xc0 [ 29.533745] udp_send_skb+0x666/0xc30 [ 29.537514] ? xfrm_lookup_route+0x4f/0x1a0 [ 29.542108] udp_sendmsg+0xba0/0x2f70 [ 29.545900] ? find_held_lock+0x35/0x1d0 [ 29.550868] ? ip_reply_glue_bits+0xb0/0xb0 [ 29.555185] ? udp4_lib_lookup2+0x310/0x310 [ 29.559502] ? mark_held_locks+0xaf/0x100 [ 29.563656] ? __local_bh_enable_ip+0x121/0x230 [ 29.568564] ? trace_hardirqs_on+0xd/0x10 [ 29.572691] ? __local_bh_enable_ip+0x121/0x230 [ 29.577346] ? rt_add_uncached_list+0x1b7/0x240 [ 29.583132] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 29.588319] ? print_irqtrace_events+0x270/0x270 [ 29.593073] ? rt_set_nexthop.constprop.51+0x53e/0x12b0 [ 29.598424] udpv6_sendmsg+0x757/0x3400 [ 29.602376] ? avc_has_perm+0x35e/0x680 [ 29.606542] ? __lock_acquire+0x664/0x3e00 [ 29.611189] ? udpv6_setsockopt+0x80/0x80 [ 29.616446] ? avc_has_perm+0x43e/0x680 [ 29.620528] ? avc_has_perm_noaudit+0x520/0x520 [ 29.625185] ? find_held_lock+0x35/0x1d0 [ 29.629322] ? lock_downgrade+0x980/0x980 [ 29.633486] ? rw_copy_check_uvector+0x1be/0x280 [ 29.638345] ? sock_has_perm+0x2a4/0x420 [ 29.642400] ? selinux_secmark_relabel_packet+0xc0/0xc0 [ 29.647740] ? dup_iter+0x1a2/0x260 [ 29.651355] inet_sendmsg+0x11f/0x5e0 [ 29.655149] ? inet_sendmsg+0x11f/0x5e0 [ 29.659121] ? copy_msghdr_from_user+0x3a6/0x590 [ 29.663870] ? inet_create+0xf50/0xf50 [ 29.667743] ? selinux_socket_sendmsg+0x36/0x40 [ 29.672400] ? security_socket_sendmsg+0x89/0xb0 [ 29.677134] ? inet_create+0xf50/0xf50 [ 29.680999] sock_sendmsg+0xca/0x110 [ 29.684690] ___sys_sendmsg+0x767/0x8b0 [ 29.688639] ? copy_msghdr_from_user+0x590/0x590 [ 29.693371] ? lock_release+0xa40/0xa40 [ 29.697315] ? __ip4_datagram_connect+0xa3a/0x1240 [ 29.702213] ? lock_acquire+0x1d5/0x580 [ 29.706159] ? lock_sock_nested+0xa3/0x110 [ 29.710364] ? lock_acquire+0x1d5/0x580 [ 29.714311] ? __local_bh_enable_ip+0x121/0x230 [ 29.718952] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 29.723936] ? release_sock+0x1d4/0x2a0 [ 29.727877] ? trace_hardirqs_on+0xd/0x10 [ 29.731994] ? __local_bh_enable_ip+0x121/0x230 [ 29.736633] ? __fget_light+0x2b2/0x3c0 [ 29.740578] ? fget_raw+0x20/0x20 [ 29.744000] ? release_sock+0x1d4/0x2a0 [ 29.747942] ? __release_sock+0x360/0x360 [ 29.752060] ? trace_hardirqs_on+0xd/0x10 [ 29.756178] ? __local_bh_enable_ip+0x121/0x230 [ 29.760822] ? ip6_datagram_connect+0x3a/0x50 [ 29.765293] __sys_sendmsg+0xe5/0x210 [ 29.769065] ? __sys_sendmsg+0xe5/0x210 [ 29.773012] ? SyS_shutdown+0x290/0x290 [ 29.776959] ? sock_common_setsockopt+0x95/0xd0 [ 29.781606] ? move_addr_to_kernel+0x60/0x60 [ 29.785985] SyS_sendmsg+0x2d/0x50 [ 29.789496] ? __sys_sendmsg+0x210/0x210 [ 29.793531] do_syscall_64+0x282/0x940 [ 29.797407] ? __do_page_fault+0xc90/0xc90 [ 29.801611] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 29.806338] ? syscall_return_slowpath+0x550/0x550 [ 29.811240] ? syscall_return_slowpath+0x2ac/0x550 [ 29.816141] ? prepare_exit_to_usermode+0x350/0x350 [ 29.821570] ? entry_SYSCALL_64_after_hwframe+0x36/0x9b [ 29.826910] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 29.831727] entry_SYSCALL_64_after_hwframe+0x26/0x9b [ 29.836895] RIP: 0033:0x445fa9 [ 29.840229] RSP: 002b:00007ffd470de438 EFLAGS: 00000217 ORIG_RAX: 000000000000002e [ 29.847909] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 0000000000445fa9 [ 29.855154] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 29.862398] RBP: 00000000004a7bcc R08: 0000000000000000 R09: 0000000000000000 [ 29.869645] R10: 0000000000000000 R11: 0000000000000217 R12: 00000000004031a0 [ 29.876886] R13: 0000000000403230 R14: 0000000000000000 R15: 0000000000000000 [ 29.884149] Code: 46 52 02 75 41 e8 33 a9 b9 fc 8b 85 80 fe ff ff 8d 70 01 89 b5 00 ff ff ff 48 8b b5 88 fe ff ff 4c 8d 24 c6 4c 89 e0 48 c1 e8 03 <42> 80 3c 28 00 0f 85 e8 01 00 00 8b 85 00 ff ff ff 4d 89 34 24 [ 29.903226] RIP: ipt_do_table+0x12ee/0x1950 RSP: ffff8801db406bd0 [ 29.909490] ---[ end trace 8c31a953ce551874 ]--- [ 29.914227] Kernel panic - not syncing: Fatal exception in interrupt [ 29.921090] Dumping ftrace buffer: [ 29.924608] (ftrace buffer empty) [ 29.928297] Kernel Offset: disabled [ 29.931897] Rebooting in 86400 seconds..