[   24.374165][   T22] audit: type=1804 audit(1570025552.587:49): pid=6825 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=ToMToU comm="getty" name="/run/utmp" dev="sda1" ino=1421 res=1
[   24.394684][   T22] audit: type=1804 audit(1570025552.587:50): pid=6821 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="init" name="/run/utmp" dev="sda1" ino=1421 res=1
[   24.394693][   T22] audit: type=1804 audit(1570025552.587:51): pid=6821 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=ToMToU comm="init" name="/run/utmp" dev="sda1" ino=1421 res=1
[   24.394700][   T22] audit: type=1804 audit(1570025552.587:52): pid=6821 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="getty" name="/run/utmp" dev="sda1" ino=1421 res=1
[   24.394708][   T22] audit: type=1804 audit(1570025552.587:53): pid=6821 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=ToMToU comm="getty" name="/run/utmp" dev="sda1" ino=1421 res=1

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   40.766647][   T22] kauditd_printk_skb: 11 callbacks suppressed
[   40.766654][   T22] audit: type=1400 audit(1570025568.997:65): avc:  denied  { map } for  pid=6841 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1
Warning: Permanently added '10.128.0.234' (ECDSA) to the list of known hosts.
[   46.641368][   T22] audit: type=1400 audit(1570025574.877:66): avc:  denied  { map } for  pid=6853 comm="syz-executor781" path="/root/syz-executor781466180" dev="sda1" ino=16499 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[   53.610855][ T6872] FS-Cache: Duplicate cookie detected
[   53.616302][ T6872] FS-Cache: O-cookie c=00000000a06f2cba [p=00000000c1d8cb41 fl=222 nc=0 na=1]
[   53.625158][ T6872] FS-Cache: O-cookie d=00000000762d38b0 n=00000000745cd6de
[   53.632342][ T6872] FS-Cache: O-key=[10] '34323934393432363330'
[   53.638412][ T6872] FS-Cache: N-cookie c=00000000a3ded52f [p=00000000c1d8cb41 fl=2 nc=0 na=1]
[   53.647066][ T6872] FS-Cache: N-cookie d=00000000762d38b0 n=0000000038ffbfac
[   53.654250][ T6872] FS-Cache: N-key=[10] '34323934393432363330'
[   53.660747][ T6876] FS-Cache: Duplicate cookie detected
[   53.666148][ T6876] FS-Cache: O-cookie c=00000000a06f2cba [p=00000000c1d8cb41 fl=222 nc=0 na=1]
[   53.675010][ T6876] FS-Cache: O-cookie d=00000000762d38b0 n=00000000745cd6de
[   53.682198][ T6876] FS-Cache: O-key=[10] '34323934393432363330'
[   53.688255][ T6876] FS-Cache: N-cookie c=00000000fc67c078 [p=00000000c1d8cb41 fl=2 nc=0 na=1]
[   53.696896][ T6876] FS-Cache: N-cookie d=00000000762d38b0 n=000000007f15ecd4
[   53.704076][ T6876] FS-Cache: N-key=[10] '34323934393432363330'
[   53.705371][ T6873] FS-Cache: Duplicate cookie detected
[   53.715613][ T6873] FS-Cache: O-cookie c=00000000a3ded52f [p=00000000c1d8cb41 fl=222 nc=0 na=1]
[   53.724467][ T6873] FS-Cache: O-cookie d=00000000762d38b0 n=00000000338c7a82
[   53.725030][ T6877] FS-Cache: Duplicate cookie detected
[   53.731651][ T6873] FS-Cache: O-key=[10] '34323934393432363339'
[   53.737013][ T6877] FS-Cache: O-cookie c=00000000a06f2cba [p=00000000c1d8cb41 fl=222 nc=0 na=1]
[   53.743052][ T6873] FS-Cache: N-cookie c=00000000afaa0b91 [p=00000000c1d8cb41 fl=2 nc=0 na=1]
[   53.751863][ T6877] FS-Cache: O-cookie d=00000000762d38b0 n=00000000745cd6de
[   53.751865][ T6877] FS-Cache: O-key=[10] '34323934393432363330'
[   53.760514][ T6873] FS-Cache: N-cookie d=00000000762d38b0 n=00000000b47b888c
[   53.760519][ T6873] FS-Cache: N-key=[10] '34323934393432363339'
[   53.767694][ T6877] FS-Cache: N-cookie c=00000000925f2fe7 [p=00000000c1d8cb41 fl=2 nc=0 na=1]
[   53.795723][ T6877] FS-Cache: N-cookie d=00000000762d38b0 n=0000000019e14981
[   53.802928][ T6877] FS-Cache: N-key=[10] '34323934393432363330'
[   59.501845][ T6860] kmemleak: 3 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
[   60.377502][ T6858] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
BUG: memory leak
unreferenced object 0xffff888117c97a20 (size 32):
  comm "syz-executor781", pid 6872, jiffies 4294942630 (age 15.900s)
  hex dump (first 32 bytes):
    34 32 39 34 39 34 32 36 33 30 00 71 75 65 75 65  4294942630.queue
    2e 62 69 6e 00 00 00 00 00 00 00 00 00 00 00 00  .bin............
  backtrace:
    [<00000000ae17c9b9>] kmem_cache_alloc_trace+0x145/0x2c0
    [<00000000b3ac81b5>] v9fs_cache_session_get_cookie+0xa6/0x110
    [<00000000449004ef>] v9fs_session_init+0x5c3/0x880
    [<0000000091cd44d1>] v9fs_mount+0x5e/0x3c0
    [<00000000f69138ad>] legacy_get_tree+0x27/0x80
    [<0000000071206cd5>] vfs_get_tree+0x2d/0xe0
    [<00000000231b1d23>] do_mount+0x95f/0xc60
    [<0000000049c67657>] ksys_mount+0xab/0x120
    [<00000000ad86386f>] __x64_sys_mount+0x26/0x30
    [<00000000aa3ad371>] do_syscall_64+0x73/0x1f0
    [<00000000f605e186>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff88811d0af020 (size 32):
  comm "syz-executor781", pid 6876, jiffies 4294942630 (age 15.900s)
  hex dump (first 32 bytes):
    34 32 39 34 39 34 32 36 33 30 00 00 00 00 00 00  4294942630......
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000ae17c9b9>] kmem_cache_alloc_trace+0x145/0x2c0
    [<00000000b3ac81b5>] v9fs_cache_session_get_cookie+0xa6/0x110
    [<00000000449004ef>] v9fs_session_init+0x5c3/0x880
    [<0000000091cd44d1>] v9fs_mount+0x5e/0x3c0
    [<00000000f69138ad>] legacy_get_tree+0x27/0x80
    [<0000000071206cd5>] vfs_get_tree+0x2d/0xe0
    [<00000000231b1d23>] do_mount+0x95f/0xc60
    [<0000000049c67657>] ksys_mount+0xab/0x120
    [<00000000ad86386f>] __x64_sys_mount+0x26/0x30
    [<00000000aa3ad371>] do_syscall_64+0x73/0x1f0
    [<00000000f605e186>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff888118716500 (size 32):
  comm "syz-executor781", pid 6877, jiffies 4294942630 (age 15.900s)
  hex dump (first 32 bytes):
    34 32 39 34 39 34 32 36 33 30 00 00 00 00 00 00  4294942630......
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000ae17c9b9>] kmem_cache_alloc_trace+0x145/0x2c0
    [<00000000b3ac81b5>] v9fs_cache_session_get_cookie+0xa6/0x110
    [<00000000449004ef>] v9fs_session_init+0x5c3/0x880
    [<0000000091cd44d1>] v9fs_mount+0x5e/0x3c0
    [<00000000f69138ad>] legacy_get_tree+0x27/0x80
    [<0000000071206cd5>] vfs_get_tree+0x2d/0xe0
    [<00000000231b1d23>] do_mount+0x95f/0xc60
    [<0000000049c67657>] ksys_mount+0xab/0x120
    [<00000000ad86386f>] __x64_sys_mount+0x26/0x30
    [<00000000aa3ad371>] do_syscall_64+0x73/0x1f0
    [<00000000f605e186>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff88811d2e0760 (size 32):
  comm "syz-executor781", pid 6873, jiffies 4294942639 (age 15.810s)
  hex dump (first 32 bytes):
    34 32 39 34 39 34 32 36 33 39 00 00 00 00 00 00  4294942639......
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000ae17c9b9>] kmem_cache_alloc_trace+0x145/0x2c0
    [<00000000b3ac81b5>] v9fs_cache_session_get_cookie+0xa6/0x110
    [<00000000449004ef>] v9fs_session_init+0x5c3/0x880
    [<0000000091cd44d1>] v9fs_mount+0x5e/0x3c0
    [<00000000f69138ad>] legacy_get_tree+0x27/0x80
    [<0000000071206cd5>] vfs_get_tree+0x2d/0xe0
    [<00000000231b1d23>] do_mount+0x95f/0xc60
    [<0000000049c67657>] ksys_mount+0xab/0x120
    [<00000000ad86386f>] __x64_sys_mount+0x26/0x30
    [<00000000aa3ad371>] do_syscall_64+0x73/0x1f0
    [<00000000f605e186>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff888117c97a20 (size 32):
  comm "syz-executor781", pid 6872, jiffies 4294942630 (age 16.900s)
  hex dump (first 32 bytes):
    34 32 39 34 39 34 32 36 33 30 00 71 75 65 75 65  4294942630.queue
    2e 62 69 6e 00 00 00 00 00 00 00 00 00 00 00 00  .bin............
  backtrace:
    [<00000000ae17c9b9>] kmem_cache_alloc_trace+0x145/0x2c0
    [<00000000b3ac81b5>] v9fs_cache_session_get_cookie+0xa6/0x110
    [<00000000449004ef>] v9fs_session_init+0x5c3/0x880
    [<0000000091cd44d1>] v9fs_mount+0x5e/0x3c0
    [<00000000f69138ad>] legacy_get_tree+0x27/0x80
    [<0000000071206cd5>] vfs_get_tree+0x2d/0xe0
    [<00000000231b1d23>] do_mount+0x95f/0xc60
    [<0000000049c67657>] ksys_mount+0xab/0x120
    [<00000000ad86386f>] __x64_sys_mount+0x26/0x30
    [<00000000aa3ad371>] do_syscall_64+0x73/0x1f0
    [<00000000f605e186>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff88811d0af020 (size 32):
  comm "syz-executor781", pid 6876, jiffies 4294942630 (age 16.900s)
  hex dump (first 32 bytes):
    34 32 39 34 39 34 32 36 33 30 00 00 00 00 00 00  4294942630......
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000ae17c9b9>] kmem_cache_alloc_trace+0x145/0x2c0
    [<00000000b3ac81b5>] v9fs_cache_session_get_cookie+0xa6/0x110
    [<00000000449004ef>] v9fs_session_init+0x5c3/0x880
    [<0000000091cd44d1>] v9fs_mount+0x5e/0x3c0
    [<00000000f69138ad>] legacy_get_tree+0x27/0x80
    [<0000000071206cd5>] vfs_get_tree+0x2d/0xe0
    [<00000000231b1d23>] do_mount+0x95f/0xc60
    [<0000000049c67657>] ksys_mount+0xab/0x120
    [<00000000ad86386f>] __x64_sys_mount+0x26/0x30
    [<00000000aa3ad371>] do_syscall_64+0x73/0x1f0
    [<00000000f605e186>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff888118716500 (size 32):
  comm "syz-executor781", pid 6877, jiffies 4294942630 (age 16.900s)
  hex dump (first 32 bytes):
    34 32 39 34 39 34 32 36 33 30 00 00 00 00 00 00  4294942630......
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000ae17c9b9>] kmem_cache_alloc_trace+0x145/0x2c0
    [<00000000b3ac81b5>] v9fs_cache_session_get_cookie+0xa6/0x110
    [<00000000449004ef>] v9fs_session_init+0x5c3/0x880
    [<0000000091cd44d1>] v9fs_mount+0x5e/0x3c0
    [<00000000f69138ad>] legacy_get_tree+0x27/0x80
    [<0000000071206cd5>] vfs_get_tree+0x2d/0xe0
    [<00000000231b1d23>] do_mount+0x95f/0xc60
    [<0000000049c67657>] ksys_mount+0xab/0x120
    [<00000000ad86386f>] __x64_sys_mount+0x26/0x30
    [<00000000aa3ad371>] do_syscall_64+0x73/0x1f0
    [<00000000f605e186>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff88811d2e0760 (size 32):
  comm "syz-executor781", pid 6873, jiffies 4294942639 (age 16.810s)
  hex dump (first 32 bytes):
    34 32 39 34 39 34 32 36 33 39 00 00 00 00 00 00  4294942639......
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000ae17c9b9>] kmem_cache_alloc_trace+0x145/0x2c0
    [<00000000b3ac81b5>] v9fs_cache_session_get_cookie+0xa6/0x110
    [<00000000449004ef>] v9fs_session_init+0x5c3/0x880
    [<0000000091cd44d1>] v9fs_mount+0x5e/0x3c0
    [<00000000f69138ad>] legacy_get_tree+0x27/0x80
    [<0000000071206cd5>] vfs_get_tree+0x2d/0xe0
    [<00000000231b1d23>] do_mount+0x95f/0xc60
    [<0000000049c67657>] ksys_mount+0xab/0x120
    [<00000000ad86386f>] __x64_sys_mount+0x26/0x30
    [<00000000aa3ad371>] do_syscall_64+0x73/0x1f0
    [<00000000f605e186>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

executing program
executing program
executing program
executing program
executing program
executing program