[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting file context maintaining daemon: restorecond[ 23.618014][ T24] audit: type=1400 audit(1571802310.455:37): avc: denied { watch } for pid=6801 comm="restorecond" path="/root/.ssh" dev="sda1" ino=16179 scontext=system_u:system_r:kernel_t:s0 tcontext=unconfined_u:object_r:ssh_home_t:s0 tclass=dir permissive=1 [ 23.642547][ T24] audit: type=1400 audit(1571802310.455:38): avc: denied { watch } for pid=6801 comm="restorecond" path="/etc/selinux/restorecond.conf" dev="sda1" ino=2232 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [?25l[?1c7[ ok 8[?25h[?0c. [ 23.693180][ T24] audit: type=1800 audit(1571802310.535:39): pid=6712 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 23.714747][ T24] audit: type=1800 audit(1571802310.535:40): pid=6712 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 27.446403][ T24] audit: type=1400 audit(1571802314.285:41): avc: denied { map } for pid=6891 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '10.128.10.14' (ECDSA) to the list of known hosts. [ 33.286033][ T24] audit: type=1400 audit(1571802320.125:42): avc: denied { map } for pid=6905 comm="syz-executor242" path="/root/syz-executor242482205" dev="sda1" ino=16483 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 40.014193][ T6908] IPVS: ftp: loaded support on port[0] = 21 [ 40.032430][ T6908] chnl_net:caif_netlink_parms(): no params data found [ 40.043562][ T6908] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.050627][ T6908] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.057786][ T6908] device bridge_slave_0 entered promiscuous mode [ 40.064784][ T6908] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.071821][ T6908] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.078984][ T6908] device bridge_slave_1 entered promiscuous mode [ 40.087634][ T6908] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 40.097004][ T6908] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 40.108204][ T6908] team0: Port device team_slave_0 added [ 40.114067][ T6908] team0: Port device team_slave_1 added [ 40.190259][ T6908] device hsr_slave_0 entered promiscuous mode [ 40.229576][ T6908] device hsr_slave_1 entered promiscuous mode [ 40.281330][ T6908] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.288365][ T6908] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.295610][ T6908] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.302620][ T6908] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.315657][ T6908] 8021q: adding VLAN 0 to HW filter on device bond0 [ 40.323397][ T2927] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 40.331003][ T2927] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.338191][ T2927] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.345618][ T2927] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 40.354214][ T6908] 8021q: adding VLAN 0 to HW filter on device team0 [ 40.361751][ T3536] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 40.369895][ T3536] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.376889][ T3536] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.388474][ T6908] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 40.398940][ T6908] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 40.410004][ T2927] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 40.418089][ T2927] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.425103][ T2927] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.432880][ T2927] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 40.441089][ T2927] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 40.449003][ T2927] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 40.456911][ T2927] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 40.464805][ T2927] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 40.472169][ T2927] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready executing program [ 40.481602][ T6908] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 40.497057][ T6908] netlink: 'syz-executor242': attribute type 1 has an invalid length. [ 40.505451][ T6908] FAULT_INJECTION: forcing a failure. [ 40.505451][ T6908] name failslab, interval 1, probability 0, space 0, times 1 [ 40.518687][ T6908] CPU: 0 PID: 6908 Comm: syz-executor242 Not tainted 5.4.0-rc4+ #0 [ 40.526549][ T6908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 40.536570][ T6908] Call Trace: [ 40.539830][ T6908] dump_stack+0xaa/0xd6 [ 40.543953][ T6908] should_fail.cold+0x3c/0x49 [ 40.548608][ T6908] __should_failslab+0x65/0xa0 [ 40.553348][ T6908] should_failslab+0x9/0x14 [ 40.557835][ T6908] __kmalloc_track_caller+0x50/0x300 [ 40.563087][ T6908] ? kstrdup_const+0x48/0x60 [ 40.567641][ T6908] kstrdup+0x3a/0x70 [ 40.571502][ T6908] kstrdup_const+0x48/0x60 [ 40.575883][ T6908] __kernfs_new_node+0x53/0x270 [ 40.580701][ T6908] ? map_id_range_down+0xb4/0x140 [ 40.585689][ T6908] ? make_kgid+0x23/0x30 [ 40.589897][ T6908] kernfs_new_node+0x5e/0x90 [ 40.594450][ T6908] kernfs_create_dir_ns+0x52/0xb0 [ 40.599443][ T6908] sysfs_create_dir_ns+0x8a/0x120 [ 40.604437][ T6908] kobject_add_internal+0x103/0x350 [ 40.609598][ T6908] kobject_add+0x9e/0xe0 [ 40.613806][ T6908] ? _raw_spin_unlock+0x1f/0x40 [ 40.618620][ T6908] ? get_device_parent.isra.0+0x108/0x240 [ 40.624314][ T6908] device_add+0x19d/0x890 [ 40.628609][ T6908] netdev_register_kobject+0xa6/0x1b0 [ 40.633945][ T6908] register_netdevice+0x397/0x610 [ 40.638941][ T6908] bond_newlink+0x41/0x80 [ 40.643233][ T6908] ? bond_changelink+0xc20/0xc20 [ 40.648136][ T6908] __rtnl_newlink+0x892/0xb30 [ 40.652779][ T6908] ? tomoyo_merge_path_acl+0x39/0x60 [ 40.658028][ T6908] ? tomoyo_same_path_acl+0x60/0x60 [ 40.663190][ T6908] ? tomoyo_update_domain+0x9f/0x1f0 [ 40.668437][ T6908] ? debug_smp_processor_id+0x2c/0xd4 [ 40.673777][ T6908] ? rcu_is_watching+0x11/0x50 [ 40.678503][ T6908] ? call_rcu+0xb/0x10 [ 40.682543][ T6908] ? put_object+0x2a/0x40 [ 40.686836][ T6908] ? __delete_object+0x39/0x50 [ 40.691560][ T6908] ? delete_object_full+0x18/0x20 [ 40.696549][ T6908] ? bpf_prog_kallsyms_find+0x39/0x140 [ 40.701986][ T6908] ? __rtnl_newlink+0xb30/0xb30 [ 40.706799][ T6908] rtnl_newlink+0x4e/0x80 [ 40.711093][ T6908] rtnetlink_rcv_msg+0x178/0x4b0 [ 40.716009][ T6908] ? rtnl_calcit.isra.0+0x170/0x170 [ 40.721174][ T6908] netlink_rcv_skb+0x61/0x170 [ 40.725813][ T6908] rtnetlink_rcv+0x1d/0x30 [ 40.730194][ T6908] netlink_unicast+0x1ec/0x2d0 [ 40.734926][ T6908] netlink_sendmsg+0x270/0x480 [ 40.739654][ T6908] sock_sendmsg+0x54/0x70 [ 40.743959][ T6908] ___sys_sendmsg+0x393/0x3c0 [ 40.748602][ T6908] ? _parse_integer+0xbf/0xe0 [ 40.753241][ T6908] ? _kstrtoull+0x92/0xd0 [ 40.757534][ T6908] ? kstrtouint+0x76/0xa0 [ 40.761829][ T6908] ? kstrtouint_from_user+0x7f/0xb0 [ 40.766992][ T6908] ? __fget_light+0x70/0xb0 [ 40.771461][ T6908] ? __fdget+0x1b/0x20 [ 40.775495][ T6908] ? sockfd_lookup_light+0x6c/0xb0 [ 40.780570][ T6908] __sys_sendmsg+0x80/0xf0 [ 40.784955][ T6908] __x64_sys_sendmsg+0x23/0x30 [ 40.789695][ T6908] do_syscall_64+0x73/0x1f0 [ 40.794162][ T6908] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 40.800018][ T6908] RIP: 0033:0x442559 [ 40.803880][ T6908] Code: 46 02 00 85 c0 b8 00 00 00 00 48 0f 44 c3 5b c3 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 bb 0d fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 40.823447][ T6908] RSP: 002b:00007fff790aa488 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 40.831821][ T6908] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000442559 [ 40.839765][ T6908] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003 [ 40.847702][ T6908] RBP: 00007fff790aa500 R08: 0000000000000002 R09: 00000000bb1414ac [ 40.855638][ T6908] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 40.863574][ T6908] R13: 0000000000000005 R14: 0000000000000000 R15: 0000000000000000 [ 40.872284][ T6908] kobject_add_internal failed for bond1 (error: -12 parent: net) [ 40.880042][ T6908] bond1 (uninitialized): Released all slaves [ 42.279818][ T554] device bridge_slave_1 left promiscuous mode [ 42.285923][ T554] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.329763][ T554] device bridge_slave_0 left promiscuous mode [ 42.335900][ T554] bridge0: port 1(bridge_slave_0) entered disabled state [ 42.529838][ T554] device hsr_slave_0 left promiscuous mode [ 42.599678][ T554] device hsr_slave_1 left promiscuous mode [ 42.650853][ T554] team0 (unregistering): Port device team_slave_1 removed [ 42.658496][ T554] team0 (unregistering): Port device team_slave_0 removed [ 42.666144][ T554] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 42.700763][ T554] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 42.743256][ T554] bond0 (unregistering): Released all slaves [ 46.700485][ T6905] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) BUG: memory leak unreferenced object 0xffff8881170cdd60 (size 32): comm "syz-executor242", pid 6908, jiffies 4294941323 (age 8.110s) hex dump (first 32 bytes): 62 6f 6e 64 31 00 00 00 00 00 00 00 00 00 00 00 bond1........... 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000003227da8f>] __kmalloc_track_caller+0x165/0x300 [<00000000002fc787>] kstrdup+0x3a/0x70 [<0000000000ca38a0>] kstrdup_const+0x48/0x60 [<0000000059d187f7>] kvasprintf_const+0x7e/0xe0 [<00000000a836e4a8>] kobject_set_name_vargs+0x40/0xe0 [<000000009606d4da>] dev_set_name+0x63/0x90 [<000000004f32600f>] netdev_register_kobject+0x5a/0x1b0 [<00000000f1e2d2ac>] register_netdevice+0x397/0x610 [<00000000ca524d2c>] bond_newlink+0x41/0x80 [<00000000850b4ca9>] __rtnl_newlink+0x892/0xb30 [<00000000072acee6>] rtnl_newlink+0x4e/0x80 [<000000008d7c3674>] rtnetlink_rcv_msg+0x178/0x4b0 [<0000000048b754fe>] netlink_rcv_skb+0x61/0x170 [<00000000fd720556>] rtnetlink_rcv+0x1d/0x30 [<0000000069551095>] netlink_unicast+0x1ec/0x2d0 [<00000000ebc3e3f9>] netlink_sendmsg+0x270/0x480