[ 26.355687][ T24] audit: type=1800 audit(1564051818.201:32): pid=6875 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [ 26.906860][ T24] audit: type=1800 audit(1564051818.831:33): pid=6875 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.83' (ECDSA) to the list of known hosts. syzkaller login: [ 36.637532][ T24] kauditd_printk_skb: 2 callbacks suppressed [ 36.637540][ T24] audit: type=1400 audit(1564051828.561:36): avc: denied { map } for pid=7067 comm="syz-executor229" path="/root/syz-executor229187951" dev="sda1" ino=16483 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 43.444763][ T7069] IPVS: ftp: loaded support on port[0] = 21 [ 43.461915][ T7069] chnl_net:caif_netlink_parms(): no params data found [ 43.474142][ T7069] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.481229][ T7069] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.488643][ T7069] device bridge_slave_0 entered promiscuous mode [ 43.495438][ T7069] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.502876][ T7069] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.510210][ T7069] device bridge_slave_1 entered promiscuous mode [ 43.519334][ T7069] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 43.528842][ T7069] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 43.540493][ T7069] team0: Port device team_slave_0 added [ 43.546540][ T7069] team0: Port device team_slave_1 added [ 43.576764][ T7069] device hsr_slave_0 entered promiscuous mode [ 43.616065][ T7069] device hsr_slave_1 entered promiscuous mode [ 43.668139][ T7069] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.675445][ T7069] bridge0: port 2(bridge_slave_1) entered forwarding state [ 43.682713][ T7069] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.689820][ T7069] bridge0: port 1(bridge_slave_0) entered forwarding state [ 43.704238][ T7069] 8021q: adding VLAN 0 to HW filter on device bond0 [ 43.712790][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 43.720434][ T3057] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.727981][ T3057] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.735253][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 43.744240][ T7069] 8021q: adding VLAN 0 to HW filter on device team0 [ 43.752137][ T2977] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 43.760543][ T2977] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.767561][ T2977] bridge0: port 1(bridge_slave_0) entered forwarding state [ 43.781027][ T7069] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 43.791765][ T7069] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 43.810430][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 43.818921][ T3057] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.826079][ T3057] bridge0: port 2(bridge_slave_1) entered forwarding state [ 43.833570][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 43.841758][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 43.850070][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 43.858017][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready executing program [ 43.865942][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 43.873222][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 43.883241][ T7069] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 43.899836][ T7069] FAULT_INJECTION: forcing a failure. [ 43.899836][ T7069] name failslab, interval 1, probability 0, space 0, times 1 [ 43.912692][ T7069] CPU: 0 PID: 7069 Comm: syz-executor229 Not tainted 5.3.0-rc1+ #85 [ 43.920943][ T7069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 43.931017][ T7069] Call Trace: [ 43.934280][ T7069] dump_stack+0xaa/0xd6 [ 43.938447][ T7069] should_fail.cold+0x3c/0x49 [ 43.943102][ T7069] __should_failslab+0x65/0xa0 [ 43.947831][ T7069] should_failslab+0x9/0x14 [ 43.952304][ T7069] kmem_cache_alloc+0x26/0x2c0 [ 43.957035][ T7069] __kernfs_new_node+0x75/0x270 [ 43.961850][ T7069] ? make_kgid+0x23/0x30 [ 43.966067][ T7069] ? kernfs_next_descendant_post+0xf8/0x110 [ 43.971928][ T7069] ? map_id_range_down+0xb4/0x140 [ 43.976922][ T7069] kernfs_new_node+0x5e/0x90 [ 43.981539][ T7069] __kernfs_create_file+0x51/0x108 [ 43.986693][ T7069] sysfs_add_file_mode_ns+0xed/0x230 [ 43.991966][ T7069] sysfs_create_file_ns+0x80/0xb0 [ 43.997088][ T7069] device_create_file+0x5a/0xc0 [ 44.001910][ T7069] device_add+0x299/0x890 [ 44.006208][ T7069] netdev_register_kobject+0xa6/0x1b0 [ 44.011553][ T7069] register_netdevice+0x397/0x600 [ 44.016556][ T7069] veth_newlink+0x1ee/0x420 [ 44.021026][ T7069] ? stack_trace_save+0x5a/0x80 [ 44.025849][ T7069] ? preempt_count_add+0x6f/0xb0 [ 44.030793][ T7069] ? _raw_write_lock_irqsave+0x3a/0x60 [ 44.036890][ T7069] ? _raw_write_unlock_irqrestore+0x25/0x40 [ 44.042757][ T7069] ? create_object+0x20c/0x280 [ 44.047599][ T7069] ? kmemleak_alloc+0x23/0x40 [ 44.052443][ T7069] ? kmem_cache_alloc_node_trace+0x161/0x2f0 [ 44.058400][ T7069] ? __kmalloc_node+0x38/0x50 [ 44.063056][ T7069] ? xdp_rxq_info_reg+0x68/0xd0 [ 44.067919][ T7069] ? alloc_netdev_mqs+0x3cc/0x4a0 [ 44.072917][ T7069] ? veth_dellink+0x70/0x70 [ 44.077429][ T7069] ? rtnl_create_link+0xb1/0x310 [ 44.082376][ T7069] ? veth_xdp_tx+0x120/0x120 [ 44.086981][ T7069] __rtnl_newlink+0x892/0xb30 [ 44.091859][ T7069] ? is_bpf_text_address+0x24/0x30 [ 44.096940][ T7069] ? tomoyo_merge_path_acl+0x39/0x60 [ 44.102195][ T7069] ? tomoyo_same_path_acl+0x60/0x60 [ 44.107363][ T7069] ? debug_smp_processor_id+0x2c/0xd4 [ 44.112707][ T7069] ? rcu_is_watching+0x11/0x50 [ 44.117441][ T7069] ? call_rcu+0xb/0x10 [ 44.121487][ T7069] ? put_object+0x28/0x30 [ 44.125792][ T7069] ? __delete_object+0x41/0x50 [ 44.130567][ T7069] ? delete_object_full+0x18/0x20 [ 44.135579][ T7069] ? bpf_prog_kallsyms_find+0x39/0x140 [ 44.141072][ T7069] ? __rtnl_newlink+0xb30/0xb30 [ 44.145899][ T7069] rtnl_newlink+0x4e/0x80 [ 44.150330][ T7069] rtnetlink_rcv_msg+0x178/0x4b0 [ 44.155327][ T7069] ? rtnl_calcit.isra.0+0x170/0x170 [ 44.160499][ T7069] netlink_rcv_skb+0x61/0x170 [ 44.165154][ T7069] rtnetlink_rcv+0x1d/0x30 [ 44.169547][ T7069] netlink_unicast+0x1ec/0x2d0 [ 44.174317][ T7069] netlink_sendmsg+0x270/0x480 [ 44.179054][ T7069] sock_sendmsg+0x54/0x70 [ 44.183357][ T7069] ___sys_sendmsg+0x393/0x3c0 [ 44.188129][ T7069] ? _parse_integer+0xbf/0xe0 [ 44.193162][ T7069] ? _kstrtoull+0x92/0xd0 [ 44.197570][ T7069] ? kstrtouint+0x76/0xa0 [ 44.201873][ T7069] ? kstrtouint_from_user+0x7f/0xb0 [ 44.207045][ T7069] ? selinux_file_permission+0x30/0x1f0 [ 44.212763][ T7069] ? __fget_light+0x70/0xb0 [ 44.217335][ T7069] ? __fdget+0x1b/0x20 [ 44.221468][ T7069] ? sockfd_lookup_light+0x6c/0xb0 [ 44.226685][ T7069] __sys_sendmsg+0x80/0xf0 [ 44.231174][ T7069] __x64_sys_sendmsg+0x23/0x30 [ 44.235913][ T7069] do_syscall_64+0x76/0x1a0 [ 44.240403][ T7069] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 44.246657][ T7069] RIP: 0033:0x441f49 [ 44.250616][ T7069] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 44.270201][ T7069] RSP: 002b:00007ffeb84e2dd8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 44.278684][ T7069] RAX: ffffffffffffffda RBX: 00007ffeb84e2e30 RCX: 0000000000441f49 [ 44.286666][ T7069] RDX: 0000000000000000 RSI: 0000000020000580 RDI: 0000000000000003 [ 44.294616][ T7069] RBP: 0000000000000000 R08: 0000000000000002 R09: 0000000001bbbbbb [ 44.302564][ T7069] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 44.310655][ T7069] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 45.716340][ T382] device bridge_slave_1 left promiscuous mode [ 45.722593][ T382] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.766361][ T382] device bridge_slave_0 left promiscuous mode [ 45.772909][ T382] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.976727][ T382] device hsr_slave_0 left promiscuous mode [ 46.006285][ T382] device hsr_slave_1 left promiscuous mode [ 46.057443][ T382] team0 (unregistering): Port device team_slave_1 removed [ 46.065307][ T382] team0 (unregistering): Port device team_slave_0 removed [ 46.073164][ T382] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 46.126809][ T382] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 46.149896][ T382] bond0 (unregistering): Released all slaves [ 50.140237][ T7067] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) BUG: memory leak unreferenced object 0xffff888114b40800 (size 32): comm "syz-executor229", pid 7069, jiffies 4294941664 (age 8.210s) hex dump (first 32 bytes): 76 65 74 68 32 00 61 73 6b 2f 37 30 36 39 00 6d veth2.ask/7069.m 30 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0............... backtrace: [<000000001b98b04f>] __kmalloc_track_caller+0x165/0x300 [<000000002d34bdea>] kstrdup+0x3a/0x70 [<00000000b9166264>] kstrdup_const+0x48/0x60 [<00000000b9de8342>] kvasprintf_const+0x7e/0xe0 [<00000000e7014d52>] kobject_set_name_vargs+0x40/0xe0 [<0000000007438a37>] dev_set_name+0x63/0x90 [<000000003f2fe881>] netdev_register_kobject+0x5a/0x1b0 [<00000000c15a9843>] register_netdevice+0x397/0x600 [<000000002f5d3205>] veth_newlink+0x1ee/0x420 [<000000009ec763f8>] __rtnl_newlink+0x892/0xb30 [<00000000e8d5578f>] rtnl_newlink+0x4e/0x80 [<000000005fdb9ba8>] rtnetlink_rcv_msg+0x178/0x4b0 [<00000000c1236453>] netlink_rcv_skb+0x61/0x170 [<00000000b8b9e294>] rtnetlink_rcv+0x1d/0x30 [<00000000106f0145>] netlink_unicast+0x1ec/0x2d0 [<000000001e97471f>] netlink_sendmsg+0x270/0x480