[ 42.050563] audit: type=1800 audit(1574486154.326:31): pid=7508 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2469 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 45.921487] kauditd_printk_skb: 3 callbacks suppressed [ 45.921500] audit: type=1400 audit(1574486158.266:35): avc: denied { map } for pid=7680 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '10.128.0.208' (ECDSA) to the list of known hosts. [ 52.697302] audit: type=1400 audit(1574486165.046:36): avc: denied { map } for pid=7692 comm="syz-executor951" path="/root/syz-executor951528920" dev="sda1" ino=16484 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 52.720891] IPVS: ftp: loaded support on port[0] = 21 executing program [ 52.754630] audit: type=1400 audit(1574486165.106:37): avc: denied { create } for pid=7693 comm="syz-executor951" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 52.763723] rxrpc: Assertion failed [ 52.778773] audit: type=1400 audit(1574486165.106:38): avc: denied { write } for pid=7693 comm="syz-executor951" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 52.778796] audit: type=1400 audit(1574486165.106:39): avc: denied { read } for pid=7693 comm="syz-executor951" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 52.832445] ------------[ cut here ]------------ [ 52.837304] kernel BUG at net/rxrpc/local_object.c:437! [ 52.842990] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 52.848590] CPU: 1 PID: 3722 Comm: kworker/1:2 Not tainted 4.19.85-syzkaller #0 [ 52.856289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 52.865751] Workqueue: krxrpcd rxrpc_local_processor [ 52.871061] RIP: 0010:rxrpc_local_processor.cold+0x24/0x29 [ 52.877073] Code: ff 9d fe fa 0f 0b e8 54 39 14 fb 48 c7 c7 80 3e f1 87 e8 ec 9d fe fa 0f 0b e8 41 39 14 fb 48 c7 c7 80 3e f1 87 e8 d9 9d fe fa <0f> 0b 90 90 90 55 48 89 e5 41 57 49 89 ff 41 56 41 55 41 54 53 48 [ 52.896241] RSP: 0018:ffff888088847ce8 EFLAGS: 00010282 [ 52.901601] RAX: 0000000000000017 RBX: ffff88809c3416b8 RCX: 0000000000000000 [ 52.909216] RDX: 0000000000000000 RSI: ffffffff815595d6 RDI: ffffed1011108f8f [ 52.916523] RBP: ffff888088847d30 R08: 0000000000000017 R09: ffffed1015d25079 [ 52.924024] R10: ffffed1015d25078 R11: ffff8880ae9283c7 R12: ffff8880a952ab08 [ 52.931286] R13: ffff88808e940708 R14: ffff88809c341680 R15: ffff88808e2d2040 [ 52.938552] FS: 0000000000000000(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 [ 52.946781] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 52.952866] CR2: 0000000020000080 CR3: 000000000866d000 CR4: 00000000001406e0 [ 52.960332] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 52.967614] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 52.975137] Call Trace: [ 52.977740] process_one_work+0x989/0x1750 [ 52.981975] ? pwq_dec_nr_in_flight+0x320/0x320 [ 52.986645] ? lock_acquire+0x16f/0x3f0 [ 52.991652] ? kasan_check_write+0x14/0x20 [ 52.995961] ? do_raw_spin_lock+0xc8/0x240 [ 53.000187] worker_thread+0x98/0xe40 [ 53.004068] ? trace_hardirqs_on+0x67/0x220 [ 53.008781] kthread+0x354/0x420 [ 53.012152] ? process_one_work+0x1750/0x1750 [ 53.017874] ? kthread_cancel_delayed_work_sync+0x20/0x20 [ 53.023501] ret_from_fork+0x24/0x30 [ 53.027203] Modules linked in: [ 53.031459] ---[ end trace 589e6f62d91944c3 ]--- [ 53.037220] RIP: 0010:rxrpc_local_processor.cold+0x24/0x29 [ 53.043042] Code: ff 9d fe fa 0f 0b e8 54 39 14 fb 48 c7 c7 80 3e f1 87 e8 ec 9d fe fa 0f 0b e8 41 39 14 fb 48 c7 c7 80 3e f1 87 e8 d9 9d fe fa <0f>