[ 46.028053] audit: type=1800 audit(1581824635.140:29): pid=8118 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2447 res=0 [ 46.068220] audit: type=1800 audit(1581824635.140:30): pid=8118 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2490 res=0 Starting mcstransd: [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.69' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program syzkaller login: [ 55.223371] kauditd_printk_skb: 5 callbacks suppressed [ 55.223388] audit: type=1400 audit(1581824644.340:36): avc: denied { map } for pid=8303 comm="syz-executor035" path="/root/syz-executor035574009" dev="sda1" ino=16483 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 55.301885] hrtimer: interrupt took 38542 ns [ 55.307857] netlink: 40803 bytes leftover after parsing attributes in process `syz-executor035'. [ 55.338723] netlink: 40803 bytes leftover after parsing attributes in process `syz-executor035'. [ 55.358250] netlink: 40803 bytes leftover after parsing attributes in process `syz-executor035'. [ 55.370978] netlink: 40803 bytes leftover after parsing attributes in process `syz-executor035'. [ 55.384999] netlink: 40803 bytes leftover after parsing attributes in process `syz-executor035'. [ 55.404948] netlink: 40803 bytes leftover after parsing attributes in process `syz-executor035'. [ 55.424672] netlink: 11579 bytes leftover after parsing attributes in process `syz-executor035'. [ 55.438398] netlink: 11579 bytes leftover after parsing attributes in process `syz-executor035'. executing program executing program executing program executing program executing program executing program [ 55.457616] netlink: 11579 bytes leftover after parsing attributes in process `syz-executor035'. [ 55.483308] netlink: 11579 bytes leftover after parsing attributes in process `syz-executor035'. executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 58.661292] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pig=8694 comm=syz-executor035 executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 60.355257] nla_parse: 329 callbacks suppressed [ 60.355287] netlink: 11579 bytes leftover after parsing attributes in process `syz-executor035'. [ 60.373705] netlink: 11579 bytes leftover after parsing attributes in process `syz-executor035'. executing program executing program [ 60.411157] netlink: 40803 bytes leftover after parsing attributes in process `syz-executor035'. [ 60.443499] netlink: 40803 bytes leftover after parsing attributes in process `syz-executor035'. [ 60.471483] netlink: 40803 bytes leftover after parsing attributes in process `syz-executor035'. [ 60.487748] netlink: 40803 bytes leftover after parsing attributes in process `syz-executor035'. [ 60.503892] netlink: 40803 bytes leftover after parsing attributes in process `syz-executor035'. executing program executing program executing program [ 60.516549] netlink: 11579 bytes leftover after parsing attributes in process `syz-executor035'. [ 60.538084] netlink: 40803 bytes leftover after parsing attributes in process `syz-executor035'. [ 60.551915] netlink: 11579 bytes leftover after parsing attributes in process `syz-executor035'. executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 61.988028] ------------[ cut here ]------------ [ 61.993787] WARNING: CPU: 0 PID: 9040 at net/xfrm/xfrm_policy.c:761 xfrm_policy_insert.cold+0x11/0x8c [ 62.003177] Kernel panic - not syncing: panic_on_warn set ... [ 62.003177] [ 62.010572] CPU: 0 PID: 9040 Comm: syz-executor035 Not tainted 4.19.104-syzkaller #0 [ 62.018480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 62.028375] Call Trace: [ 62.030987] dump_stack+0x197/0x210 [ 62.034744] panic+0x26a/0x50e [ 62.038015] ? __warn_printk+0xf3/0xf3 [ 62.042286] ? xfrm_policy_insert.cold+0x11/0x8c [ 62.047068] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 62.052733] ? __warn.cold+0x5/0x53 [ 62.056404] ? __warn+0xe8/0x1d0 [ 62.059792] ? xfrm_policy_insert.cold+0x11/0x8c [ 62.064579] __warn.cold+0x20/0x53 [ 62.068272] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 62.074285] ? xfrm_policy_insert.cold+0x11/0x8c [ 62.079185] report_bug+0x263/0x2b0 [ 62.082836] do_error_trap+0x204/0x360 [ 62.086850] ? math_error+0x340/0x340 [ 62.090668] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 62.096225] ? wake_up_klogd+0x99/0xd0 [ 62.100132] ? error_entry+0x7c/0xe0 [ 62.103865] ? trace_hardirqs_off_caller+0x65/0x220 [ 62.108921] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 62.113791] do_invalid_op+0x1b/0x20 [ 62.117581] invalid_op+0x14/0x20 [ 62.121056] RIP: 0010:xfrm_policy_insert.cold+0x11/0x8c executing program executing program executing program [ 62.126550] Code: ff e8 cc e0 1b fb 48 c7 c7 80 69 54 88 e8 14 41 06 fb 0f 0b e9 6e d3 fe ff e8 b4 e0 1b fb 48 c7 c7 80 69 54 88 e8 fc 40 06 fb <0f> 0b 48 8b 45 c0 42 0f b6 14 20 48 8b 45 d0 83 e0 07 83 c0 03 38 [ 62.145579] RSP: 0018:ffff8880891a75d8 EFLAGS: 00010286 [ 62.150997] RAX: 0000000000000024 RBX: ffff888080c30040 RCX: 0000000000000000 [ 62.158280] RDX: 0000000000000000 RSI: ffffffff8155a136 RDI: ffffed1011234ead [ 62.165915] RBP: ffff8880891a7678 R08: 0000000000000024 R09: ffffed1015d05079 [ 62.173218] R10: ffffed1015d05078 R11: ffff8880ae8283c7 R12: dffffc0000000000 [ 62.180506] R13: 0000000000000000 R14: 0000000000000000 R15: ffff888099894900 [ 62.187906] ? vprintk_func+0x86/0x189 [ 62.191820] ? xfrm_policy_insert.cold+0x11/0x8c [ 62.196635] xfrm_add_policy+0x28b/0x530 [ 62.200722] ? xfrm_policy_construct+0x680/0x680 [ 62.205485] ? retint_kernel+0x2d/0x2d [ 62.209504] ? nla_parse+0x231/0x2f0 [ 62.213336] ? nla_parse+0x1fc/0x2f0 [ 62.217160] ? xfrm_policy_construct+0x680/0x680 [ 62.221929] xfrm_user_rcv_msg+0x450/0x720 [ 62.226170] ? xfrm_dump_sa_done+0xf0/0xf0 [ 62.230423] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 62.235267] ? __mutex_lock+0x3cd/0x1300 [ 62.239333] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 62.244143] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 62.248977] ? xfrm_netlink_rcv+0x61/0x90 [ 62.253250] netlink_rcv_skb+0x17d/0x460 [ 62.257325] ? xfrm_dump_sa_done+0xf0/0xf0 [ 62.261764] ? netlink_ack+0xb30/0xb30 [ 62.265672] ? retint_kernel+0x2d/0x2d [ 62.269590] xfrm_netlink_rcv+0x70/0x90 [ 62.273585] netlink_unicast+0x53a/0x730 [ 62.277666] ? netlink_attachskb+0x770/0x770 [ 62.282097] ? security_netlink_send+0x50/0xb0 [ 62.286703] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 62.292265] netlink_sendmsg+0x8ae/0xd70 [ 62.296362] ? netlink_unicast+0x730/0x730 [ 62.300627] ? security_socket_sendmsg+0x83/0xc0 [ 62.305413] ? netlink_unicast+0x730/0x730 [ 62.309702] sock_sendmsg+0xd7/0x130 [ 62.313445] __sys_sendto+0x262/0x380 [ 62.318832] ? __ia32_sys_getpeername+0xb0/0xb0 [ 62.323529] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 62.328317] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 62.333286] ? retint_kernel+0x2d/0x2d [ 62.337211] __x64_sys_sendto+0xe1/0x1a0 [ 62.341471] do_syscall_64+0xfd/0x620 [ 62.345294] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 62.350658] RIP: 0033:0x448dd9 [ 62.353853] Code: e8 dc e6 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b 06 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 62.372855] RSP: 002b:00007f6dccd9dcd8 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 62.380571] RAX: ffffffffffffffda RBX: 00000000006dec38 RCX: 0000000000448dd9 [ 62.387908] RDX: 000000000000ff3b RSI: 0000000020000000 RDI: 0000000000000008 [ 62.395199] RBP: 00000000006dec30 R08: 0000000000000000 R09: fffffffffffffd62 [ 62.402484] R10: 0f00000000000000 R11: 0000000000000246 R12: 00000000006dec3c [ 62.409776] R13: 00007ffe255efe4f R14: 00007f6dccd9e9c0 R15: 0000000000000001 [ 62.418845] Kernel Offset: disabled [ 62.422603] Rebooting in 86400 seconds..