[....] Starting enhanced syslogd: rsyslogd[ 14.941847] audit: type=1400 audit(1518897394.459:5): avc: denied { syslog } for pid=3967 comm="rsyslogd" capability=34 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 18.641967] audit: type=1400 audit(1518897398.159:6): avc: denied { map } for pid=4107 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '10.128.0.57' (ECDSA) to the list of known hosts. executing program [ 24.965511] audit: type=1400 audit(1518897404.483:7): avc: denied { map } for pid=4121 comm="syzkaller721371" path="/root/syzkaller721371517" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 24.975655] IPVS: ftp: loaded support on port[0] = 21 [ 25.017872] BUG: unable to handle kernel paging request at ffffc900017c752d [ 25.024990] IP: ebt_among_mt_check+0x170/0x350 [ 25.029538] PGD 1db12d067 P4D 1db12d067 PUD 1db12e067 PMD 1c3322067 PTE 0 [ 25.036448] Oops: 0000 [#1] SMP KASAN [ 25.040218] Dumping ftrace buffer: [ 25.043723] (ftrace buffer empty) [ 25.047401] Modules linked in: [ 25.050565] CPU: 1 PID: 4122 Comm: syzkaller721371 Not tainted 4.16.0-rc1+ #231 [ 25.057986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 25.067326] RIP: 0010:ebt_among_mt_check+0x170/0x350 [ 25.072398] RSP: 0018:ffff8801cd37f210 EFLAGS: 00010246 [ 25.077733] RAX: 0000000000000008 RBX: ffffc900017bf128 RCX: ffffffff84f12f1e [ 25.084977] RDX: 0000000000000000 RSI: 0000000000000870 RDI: ffffc900017c752d [ 25.092220] RBP: ffff8801cd37f240 R08: 0000000000000000 R09: 0000000000000000 [ 25.099466] R10: ffffffff8818c280 R11: 0000000000000000 R12: ffffc900017c7129 [ 25.106709] R13: ffff8801cd37f548 R14: ffffc900017bf131 R15: 0000000030000414 [ 25.113950] FS: 000000000170d940(0000) GS:ffff8801db500000(0000) knlGS:0000000000000000 [ 25.122145] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 25.127998] CR2: ffffc900017c752d CR3: 00000001ba8a3004 CR4: 00000000001606e0 [ 25.135243] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 25.142481] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 25.149723] Call Trace: [ 25.152283] ? ebt_mac_wormhash_check_integrity+0x1e0/0x1e0 [ 25.157964] xt_check_match+0x231/0x7d0 [ 25.161910] ? xt_check_target+0x7d0/0x7d0 [ 25.166116] ? trace_event_raw_event_sched_switch+0x810/0x810 [ 25.171975] ? mutex_unlock+0xd/0x10 [ 25.175657] ? xt_find_match+0x17b/0x1e0 [ 25.179689] ? rcu_read_lock_sched_held+0x108/0x120 [ 25.184677] ebt_check_entry+0xbc3/0x1e00 [ 25.188797] ? __alloc_pages_slowpath+0x2d10/0x2d10 [ 25.193789] ? ebt_standard_compat_to_user+0x180/0x180 [ 25.199040] ? vmap_page_range_noflush+0x523/0x720 [ 25.203954] ? __vmalloc_node_range+0x37a/0x650 [ 25.208602] translate_table+0xcf5/0x2290 [ 25.212736] ? ebt_do_table+0x1f40/0x1f40 [ 25.216861] ? trace_event_raw_event_sched_switch+0x810/0x810 [ 25.222717] ? rcu_pm_notify+0xc0/0xc0 [ 25.226580] ? rcu_read_lock_sched_held+0x108/0x120 [ 25.231576] do_replace_finish+0x79a/0x2620 [ 25.235875] ? ebt_register_table+0xe60/0xe60 [ 25.240342] ? find_held_lock+0x35/0x1d0 [ 25.244376] ? __might_fault+0x110/0x1d0 [ 25.248409] ? lock_downgrade+0x980/0x980 [ 25.252526] ? lock_release+0xa40/0xa40 [ 25.256469] ? trace_event_raw_event_sched_switch+0x810/0x810 [ 25.262325] ? __check_object_size+0x8b/0x530 [ 25.266800] ? __might_sleep+0x95/0x190 [ 25.270765] ? kasan_check_write+0x14/0x20 [ 25.274970] ? _copy_from_user+0x99/0x110 [ 25.279089] do_replace+0x333/0x4b0 [ 25.282687] ? update_counters+0x1b0/0x1b0 [ 25.286907] ? ns_capable_common+0xcf/0x160 [ 25.291202] do_ebt_set_ctl+0xd4/0x110 [ 25.295060] nf_setsockopt+0x67/0xc0 [ 25.298745] ip_setsockopt+0x97/0xa0 [ 25.302432] tcp_setsockopt+0x82/0xd0 [ 25.306208] sock_common_setsockopt+0x95/0xd0 [ 25.310679] SyS_setsockopt+0x189/0x360 [ 25.314625] ? SyS_recv+0x40/0x40 [ 25.318053] ? mm_fault_error+0x2c0/0x2c0 [ 25.322174] ? move_addr_to_kernel+0x60/0x60 [ 25.326553] ? trace_hardirqs_on+0xd/0x10 [ 25.330675] ? do_syscall_64+0xb7/0x940 [ 25.334619] ? SyS_recv+0x40/0x40 [ 25.338042] do_syscall_64+0x282/0x940 [ 25.341898] ? __do_page_fault+0xc90/0xc90 [ 25.346102] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 25.350826] ? syscall_return_slowpath+0x550/0x550 [ 25.355724] ? syscall_return_slowpath+0x2ac/0x550 [ 25.360624] ? prepare_exit_to_usermode+0x350/0x350 [ 25.365614] ? retint_user+0x18/0x18 [ 25.369304] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 25.374124] entry_SYSCALL_64_after_hwframe+0x26/0x9b [ 25.379287] RIP: 0033:0x44cee9 [ 25.382449] RSP: 002b:00007ffcc80c4578 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 25.390126] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000044cee9 [ 25.397371] RDX: 0000000000000080 RSI: 0000000000000000 RDI: 0000000000000003 [ 25.404614] RBP: 000000000170e940 R08: 0000000000000d80 R09: 000000000170e940 [ 25.411855] R10: 0000000020fb1000 R11: 0000000000000246 R12: 585858582e72656c [ 25.419097] R13: 6c616b7a79732f2e R14: 0000000000000000 R15: 0000000000000000 [ 25.426346] Code: 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 0f b6 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 c9 01 00 00 <41> 8b 84 24 04 04 00 00 8d 04 40 45 8d bc 87 08 04 00 00 4d 63 [ 25.445415] RIP: ebt_among_mt_check+0x170/0x350 RSP: ffff8801cd37f210 [ 25.451962] CR2: ffffc900017c752d [ 25.455388] ---[ end trace 39ec805adb913149 ]--- [ 25.460109] Kernel panic - not syncing: Fatal exception [ 25.465929] Dumping ftrace buffer: [ 25.469448] (ftrace buffer empty) [ 25.473132] Kernel Offset: disabled [ 25.476741] Rebooting in 86400 seconds..