[ 102.361290][ T27] audit: type=1800 audit(1580173272.034:36): pid=10307 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [ 103.068522][ T27] audit: type=1400 audit(1580173272.884:37): avc: denied { watch } for pid=10394 comm="restorecond" path="/root/.ssh" dev="sda1" ino=16179 scontext=system_u:system_r:kernel_t:s0 tcontext=unconfined_u:object_r:ssh_home_t:s0 tclass=dir permissive=1 [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.112' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 112.520616][ T27] kauditd_printk_skb: 4 callbacks suppressed [ 112.520631][ T27] audit: type=1400 audit(1580173282.334:42): avc: denied { map } for pid=10497 comm="syz-executor622" path="/root/syz-executor622996992" dev="sda1" ino=16484 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 112.554750][ T27] audit: type=1400 audit(1580173282.334:43): avc: denied { create } for pid=10497 comm="syz-executor622" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 [ 112.580685][ T27] audit: type=1400 audit(1580173282.334:44): avc: denied { write } for pid=10497 comm="syz-executor622" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 [ 113.359404][T10497] kasan: CONFIG_KASAN_INLINE enabled [ 113.364890][T10497] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 113.373156][T10497] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 113.380095][T10497] CPU: 0 PID: 10497 Comm: syz-executor622 Not tainted 5.5.0-syzkaller #0 [ 113.388558][T10497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 113.398612][T10497] RIP: 0010:strlen+0x1f/0xa0 [ 113.403193][T10497] Code: 00 66 2e 0f 1f 84 00 00 00 00 00 48 b8 00 00 00 00 00 fc ff df 55 48 89 fa 48 89 e5 48 c1 ea 03 41 54 49 89 fc 53 48 83 ec 08 <0f> b6 04 02 48 89 fa 83 e2 07 38 d0 7f 04 84 c0 75 4d 41 80 3c 24 [ 113.422785][T10497] RSP: 0018:ffffc90001d66e90 EFLAGS: 00010286 [ 113.428938][T10497] RAX: dffffc0000000000 RBX: ffff8880a650b818 RCX: 1ffffffff14f58f6 [ 113.436986][T10497] RDX: 0000000000000022 RSI: ffffffff86727421 RDI: 0000000000000114 [ 113.444956][T10497] RBP: ffffc90001d66ea8 R08: ffff888093ba0180 R09: ffffed1014ca1703 [ 113.452913][T10497] R10: ffffed1014ca1702 R11: ffff8880a650b817 R12: 0000000000000114 [ 113.460873][T10497] R13: 0000000000000104 R14: ffff8880a70c9200 R15: ffff8880a650b800 [ 113.468831][T10497] FS: 0000000000d9b880(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000 [ 113.477750][T10497] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 113.484322][T10497] CR2: 0000561e0eef4008 CR3: 0000000085303000 CR4: 00000000001406f0 [ 113.492287][T10497] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 113.500347][T10497] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 113.508299][T10497] Call Trace: [ 113.511701][T10497] ip_set_comment_free+0x69/0xe0 [ 113.516622][T10497] hash_net4_add+0x1b9a/0x2200 [ 113.521467][T10497] ? write_comp_data+0x41/0x70 [ 113.526237][T10497] hash_net4_uadt+0x596/0x940 [ 113.530917][T10497] ? hash_net4_head+0x730/0x730 [ 113.535760][T10497] ? hash_net6_uadt+0x880/0x880 [ 113.540596][T10497] call_ad+0x1a0/0x5a0 [ 113.544647][T10497] ? start_msg+0x220/0x220 [ 113.549054][T10497] ? nla_memcpy+0xb0/0xb0 [ 113.553374][T10497] ? __nla_parse+0x43/0x60 [ 113.557780][T10497] ip_set_ad.isra.0+0x572/0xb20 [ 113.562611][T10497] ? ip_set_nfnl_get_byindex+0x460/0x460 [ 113.568233][T10497] ? nla_memcpy+0xb0/0xb0 [ 113.572542][T10497] ? lock_downgrade+0x920/0x920 [ 113.577382][T10497] ip_set_uadd+0x37/0x50 [ 113.581602][T10497] ? ip_set_udel+0x50/0x50 [ 113.586079][T10497] nfnetlink_rcv_msg+0xcf2/0xfb0 [ 113.591110][T10497] ? nfnetlink_bind+0x2c0/0x2c0 [ 113.595945][T10497] ? avc_has_extended_perms+0x10f0/0x10f0 [ 113.601659][T10497] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 113.607935][T10497] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 113.614255][T10497] ? cred_has_capability+0x199/0x330 [ 113.619580][T10497] ? selinux_sb_eat_lsm_opts+0x700/0x700 [ 113.625192][T10497] ? selinux_sb_eat_lsm_opts+0x700/0x700 [ 113.630809][T10497] ? enable_cpucache.cold+0x1/0x1e [ 113.635900][T10497] ? __lock_acquire+0x8a0/0x4a00 [ 113.640818][T10497] netlink_rcv_skb+0x177/0x450 [ 113.645560][T10497] ? nfnetlink_bind+0x2c0/0x2c0 [ 113.650414][T10497] ? netlink_ack+0xb50/0xb50 [ 113.655041][T10497] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 113.661267][T10497] ? ns_capable_common+0x93/0x100 [ 113.666325][T10497] ? ns_capable+0x20/0x30 [ 113.670635][T10497] ? __netlink_ns_capable+0x104/0x140 [ 113.675996][T10497] nfnetlink_rcv+0x1ba/0x460 [ 113.680567][T10497] ? nfnetlink_rcv_batch+0x17b0/0x17b0 [ 113.686006][T10497] ? netlink_deliver_tap+0x24a/0xbe0 [ 113.691275][T10497] ? __kasan_check_write+0x14/0x20 [ 113.696365][T10497] netlink_unicast+0x58c/0x7d0 [ 113.701128][T10497] ? netlink_attachskb+0x870/0x870 [ 113.706228][T10497] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 113.712464][T10497] netlink_sendmsg+0x91c/0xea0 [ 113.717212][T10497] ? netlink_unicast+0x7d0/0x7d0 [ 113.722126][T10497] ? tomoyo_socket_sendmsg+0x26/0x30 [ 113.727386][T10497] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 113.733610][T10497] ? security_socket_sendmsg+0x8d/0xc0 [ 113.739046][T10497] ? netlink_unicast+0x7d0/0x7d0 [ 113.743959][T10497] sock_sendmsg+0xd7/0x130 [ 113.748359][T10497] ____sys_sendmsg+0x753/0x880 [ 113.753099][T10497] ? kernel_sendmsg+0x50/0x50 [ 113.757754][T10497] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 113.763884][T10497] ___sys_sendmsg+0x100/0x170 [ 113.768536][T10497] ? sendmsg_copy_msghdr+0x70/0x70 [ 113.773622][T10497] ? __kasan_check_read+0x11/0x20 [ 113.778621][T10497] ? __lock_acquire+0x8a0/0x4a00 [ 113.783534][T10497] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 113.789763][T10497] ? __this_cpu_preempt_check+0x35/0x190 [ 113.795369][T10497] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 113.801586][T10497] ? percpu_counter_add_batch+0x13c/0x190 [ 113.807281][T10497] ? __fd_install+0x1bc/0x640 [ 113.811932][T10497] ? find_held_lock+0x35/0x130 [ 113.816676][T10497] ? __fd_install+0x1bc/0x640 [ 113.821334][T10497] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 113.827549][T10497] ? __fget_light+0x1a9/0x230 [ 113.832210][T10497] ? __fdget+0x1b/0x20 [ 113.836252][T10497] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 113.842470][T10497] __sys_sendmsg+0x105/0x1d0 [ 113.847036][T10497] ? __sys_sendmsg_sock+0xc0/0xc0 [ 113.852040][T10497] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 113.857628][T10497] ? do_syscall_64+0x26/0x790 [ 113.862396][T10497] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 113.868551][T10497] ? do_syscall_64+0x26/0x790 [ 113.873208][T10497] __x64_sys_sendmsg+0x78/0xb0 [ 113.877950][T10497] do_syscall_64+0xfa/0x790 [ 113.882434][T10497] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 113.888302][T10497] RIP: 0033:0x440379 [ 113.892178][T10497] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 113.911759][T10497] RSP: 002b:00007ffcca617488 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 113.920143][T10497] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 0000000000440379 [ 113.928090][T10497] RDX: 0000000000000000 RSI: 0000000020000d00 RDI: 0000000000000004 [ 113.936035][T10497] RBP: 00000000006ca018 R08: 00000000004002c8 R09: 00000000004002c8 [ 113.943982][T10497] R10: 00000000004002c8 R11: 0000000000000246 R12: 0000000000401c00 [ 113.951936][T10497] R13: 0000000000401c90 R14: 0000000000000000 R15: 0000000000000000 [ 113.959891][T10497] Modules linked in: [ 113.963823][T10497] ---[ end trace bd97fc7944ca254a ]--- [ 113.969294][T10497] RIP: 0010:strlen+0x1f/0xa0 [ 113.973910][T10497] Code: 00 66 2e 0f 1f 84 00 00 00 00 00 48 b8 00 00 00 00 00 fc ff df 55 48 89 fa 48 89 e5 48 c1 ea 03 41 54 49 89 fc 53 48 83 ec 08 <0f> b6 04 02 48 89 fa 83 e2 07 38 d0 7f 04 84 c0 75 4d 41 80 3c 24 [ 113.993541][T10497] RSP: 0018:ffffc90001d66e90 EFLAGS: 00010286 [ 113.999710][T10497] RAX: dffffc0000000000 RBX: ffff8880a650b818 RCX: 1ffffffff14f58f6 [ 114.007700][T10497] RDX: 0000000000000022 RSI: ffffffff86727421 RDI: 0000000000000114 [ 114.015664][T10497] RBP: ffffc90001d66ea8 R08: ffff888093ba0180 R09: ffffed1014ca1703 [ 114.023705][T10497] R10: ffffed1014ca1702 R11: ffff8880a650b817 R12: 0000000000000114 [ 114.031740][T10497] R13: 0000000000000104 R14: ffff8880a70c9200 R15: ffff8880a650b800 [ 114.039722][T10497] FS: 0000000000d9b880(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000 [ 114.048666][T10497] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 114.055265][T10497] CR2: 0000561e0eef4008 CR3: 0000000085303000 CR4: 00000000001406f0 [ 114.063318][T10497] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 114.071490][T10497] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 114.079574][T10497] Kernel panic - not syncing: Fatal exception in interrupt [ 114.087509][T10497] Kernel Offset: disabled [ 114.091830][T10497] Rebooting in 86400 seconds..