[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 12.764062] audit: type=1400 audit(1514970338.862:6): avc: denied { map } for pid=3457 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.9' (ECDSA) to the list of known hosts. syzkaller login: [ 18.872773] audit: type=1400 audit(1514970344.971:7): avc: denied { map } for pid=3471 comm="syz-execprog" path="/root/syz-execprog" dev="sda1" ino=16479 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 2018/01/03 09:05:45 parsed 1 programs 2018/01/03 09:05:45 executed programs: 0 [ 19.010569] audit: type=1400 audit(1514970345.107:8): avc: denied { map } for pid=3471 comm="syz-execprog" path="/root/syzkaller-shm789375859" dev="sda1" ino=16482 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:file_t:s0 tclass=file permissive=1 [ 19.048667] audit: type=1400 audit(1514970345.147:9): avc: denied { sys_admin } for pid=3476 comm="syz-executor0" capability=21 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 [ 19.093535] audit: type=1400 audit(1514970345.192:10): avc: denied { sys_chroot } for pid=3479 comm="syz-executor0" capability=18 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 [ 19.137456] audit: type=1400 audit(1514970345.192:11): avc: denied { net_admin } for pid=3491 comm="syz-executor0" capability=12 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 [ 19.163253] audit: type=1400 audit(1514970345.192:12): avc: denied { prog_load } for pid=3491 comm="syz-executor0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=bpf permissive=1 [ 19.186573] audit: type=1400 audit(1514970345.219:13): avc: denied { prog_run } for pid=3491 comm="syz-executor0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=bpf permissive=1 [ 19.402815] ------------[ cut here ]------------ [ 19.407603] kernel BUG at net/l2tp/l2tp_ppp.c:176! [ 19.412599] invalid opcode: 0000 [#1] SMP KASAN [ 19.417247] Dumping ftrace buffer: [ 19.420755] (ftrace buffer empty) [ 19.424436] Modules linked in: [ 19.427601] CPU: 1 PID: 3550 Comm: syz-executor3 Not tainted 4.15.0-rc6-next-20180103+ #87 [ 19.435967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 19.445299] RIP: 0010:pppol2tp_sendmsg+0x4fd/0x660 [ 19.450193] RSP: 0018:ffff8801d007f9a0 EFLAGS: 00010293 [ 19.455523] RAX: ffff8801d0074180 RBX: ffff8801bf4a8ec0 RCX: ffffffff8473da1d [ 19.462760] RDX: 0000000000000000 RSI: ffff8801d007fdb0 RDI: ffff8801bf4a92a0 [ 19.469996] RBP: ffff8801d007fa10 R08: 0000000000000000 R09: 0000000000000000 [ 19.477236] R10: 0000000000000003 R11: ffffed003a00feff R12: ffff8801c0e4ab40 [ 19.484473] R13: 0000000000000000 R14: 00000000000000ec R15: ffff8801ba8fc680 [ 19.491711] FS: 00007f7a046ca700(0000) GS:ffff8801db500000(0000) knlGS:0000000000000000 [ 19.499904] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 19.505750] CR2: 00000000004d5878 CR3: 00000001bf7c8005 CR4: 00000000001606e0 [ 19.512991] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 19.520230] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 19.527465] Call Trace: [ 19.530030] ? selinux_socket_sendmsg+0x36/0x40 [ 19.534666] ? pppol2tp_getsockopt+0x6c0/0x6c0 [ 19.539217] sock_sendmsg+0xca/0x110 [ 19.542899] ___sys_sendmsg+0x2f4/0x8c0 [ 19.546844] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 19.552003] ? copy_msghdr_from_user+0x3f0/0x3f0 [ 19.556728] ? mmdrop+0x18/0x30 [ 19.559976] ? drop_futex_key_refs.isra.12+0x63/0xa0 [ 19.565053] ? __fget+0x202/0x390 [ 19.568482] ? __fget_light+0x188/0x1e0 [ 19.572427] __sys_sendmmsg+0x159/0x3c0 [ 19.576369] ? __sys_sendmmsg+0x159/0x3c0 [ 19.580485] ? SyS_sendmsg+0x50/0x50 [ 19.584171] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 19.589153] ? trace_hardirqs_on+0xd/0x10 [ 19.593274] ? _raw_spin_unlock_irq+0x27/0x70 [ 19.597737] ? finish_task_switch+0x14f/0x5c0 [ 19.602200] ? finish_task_switch+0x124/0x5c0 [ 19.606667] ? SyS_futex+0x1fd/0x2b0 [ 19.610350] ? do_futex+0x1830/0x1830 [ 19.614123] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 19.619114] SyS_sendmmsg+0x35/0x60 [ 19.622714] entry_SYSCALL_64_fastpath+0x23/0x9a [ 19.627438] RIP: 0033:0x452ac9 [ 19.630595] RSP: 002b:00007f7a046c9c58 EFLAGS: 00000212 ORIG_RAX: 0000000000000133 [ 19.638273] RAX: ffffffffffffffda RBX: 000000000071c010 RCX: 0000000000452ac9 [ 19.645512] RDX: 0000000000000001 RSI: 0000000020003fc8 RDI: 0000000000000000 [ 19.652750] RBP: 0000000000000465 R08: 0000000000000000 R09: 0000000000000000 [ 19.659997] R10: 0000000000000000 R11: 0000000000000212 R12: 00000000006f4a18 [ 19.667237] R13: 00000000ffffffff R14: 00007f7a046ca6d4 R15: 0000000000000006 [ 19.674480] Code: 0a 35 ea fc 48 8b 7d d0 e8 b1 41 aa fd 84 c0 74 0d e8 f8 34 ea fc 48 89 df e8 60 35 50 ff 41 bd f7 ff ff ff eb 86 e8 e3 34 ea fc <0f> 0b 41 bd 95 ff ff ff e9 74 ff ff ff e8 61 16 16 fd e9 8c fb [ 19.693558] RIP: pppol2tp_sendmsg+0x4fd/0x660 RSP: ffff8801d007f9a0 [ 19.700039] ---[ end trace 574e41d97d242295 ]--- [ 19.710256] Kernel panic - not syncing: Fatal exception [ 19.716092] Dumping ftrace buffer: [ 19.719604] (ftrace buffer empty) [ 19.723285] Kernel Offset: disabled [ 19.726881] Rebooting in 86400 seconds..