[ 89.308238][ T27] audit: type=1400 audit(1580189742.149:37): avc: denied { watch } for pid=10140 comm="restorecond" path="/root/.ssh" dev="sda1" ino=16179 scontext=system_u:system_r:kernel_t:s0 tcontext=unconfined_u:object_r:ssh_home_t:s0 tclass=dir permissive=1 [ 89.344645][ T27] audit: type=1400 audit(1580189742.179:38): avc: denied { watch } for pid=10140 comm="restorecond" path="/etc/selinux/restorecond.conf" dev="sda1" ino=2232 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 89.601086][ T27] audit: type=1800 audit(1580189742.439:39): pid=10052 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 89.623665][ T27] audit: type=1800 audit(1580189742.439:40): pid=10052 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 93.298413][ T27] audit: type=1400 audit(1580189746.139:41): avc: denied { map } for pid=10229 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '10.128.0.204' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program [ 99.994945][ T27] audit: type=1400 audit(1580189752.839:42): avc: denied { map } for pid=10241 comm="syz-executor180" path="/root/syz-executor180962867" dev="sda1" ino=16483 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 100.115174][ T21] kasan: CONFIG_KASAN_INLINE enabled [ 100.115197][ T21] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 100.115213][ T21] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 100.115227][ T21] CPU: 0 PID: 21 Comm: kworker/u4:1 Not tainted 5.5.0-syzkaller #0 [ 100.115233][ T21] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 100.115252][ T21] Workqueue: events_unbound flush_to_ldisc [ 100.115272][ T21] RIP: 0010:do_con_write.part.0+0xa01/0x1ef0 [ 100.115283][ T21] Code: 7e fe ff ff 45 01 ef e8 3d bb 87 fd 48 8b 85 c8 fe ff ff 80 38 00 0f 85 71 12 00 00 49 8b 9e a0 03 00 00 48 89 d8 48 c1 e8 03 <42> 0f b6 14 20 48 89 d8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 [ 100.115289][ T21] RSP: 0018:ffffc90000dd77c8 EFLAGS: 00010203 [ 100.115299][ T21] RAX: 0000000020000001 RBX: 000000010000000e RCX: ffffffff83ed21e0 [ 100.115306][ T21] RDX: 0000000000000000 RSI: ffffffff83ed2233 RDI: 0000000000000003 [ 100.115313][ T21] RBP: ffffc90000dd7958 R08: ffff8880a9410580 R09: ffff8880a9410e10 [ 100.115321][ T21] R10: fffffbfff14f52b8 R11: ffffffff8a7a95c7 R12: dffffc0000000000 [ 100.115328][ T21] R13: 0000000000000000 R14: ffff88809fe36000 R15: 000000000000075e [ 100.115338][ T21] FS: 0000000000000000(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000 [ 100.115346][ T21] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 100.115353][ T21] CR2: 0000000020000180 CR3: 000000009714b000 CR4: 00000000001406f0 [ 100.115365][ T21] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 100.115372][ T21] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 100.115375][ T21] Call Trace: [ 100.115398][ T21] ? do_con_trol+0x61b0/0x61b0 [ 100.115414][ T21] ? n_tty_receive_buf_common+0xc3a/0x2b70 [ 100.115430][ T21] ? do_con_write.part.0+0x1ef0/0x1ef0 [ 100.115443][ T21] con_put_char+0xfa/0x110 [ 100.115457][ T21] ? do_con_write.part.0+0x1ef0/0x1ef0 [ 100.115470][ T21] ? n_tty_receive_buf_common+0xc7e/0x2b70 [ 100.115480][ T21] ? mutex_trylock+0x2d0/0x2d0 [ 100.115493][ T21] tty_put_char+0xc5/0x160 [ 100.115503][ T21] ? tty_hung_up_p+0x70/0x70 [ 100.115513][ T21] ? wait_for_completion+0x440/0x440 [ 100.115526][ T21] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 100.115537][ T21] ? con_write_room+0x5d/0x70 [ 100.115556][ T21] __process_echoes+0x5c8/0xa40 [ 100.115572][ T21] n_tty_receive_buf_common+0xc77/0x2b70 [ 100.115593][ T21] n_tty_receive_buf2+0x34/0x40 [ 100.115607][ T21] tty_ldisc_receive_buf+0xad/0x1c0 [ 100.115619][ T21] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 100.115631][ T21] ? n_tty_receive_buf_common+0x2b70/0x2b70 [ 100.115643][ T21] tty_port_default_receive_buf+0x7d/0xb0 [ 100.115657][ T21] flush_to_ldisc+0x222/0x390 [ 100.115674][ T21] process_one_work+0x9af/0x1740 [ 100.115688][ T21] ? pwq_dec_nr_in_flight+0x320/0x320 [ 100.115697][ T21] ? lock_acquire+0x190/0x410 [ 100.115712][ T21] worker_thread+0x98/0xe40 [ 100.115725][ T21] ? trace_hardirqs_on+0x67/0x240 [ 100.115743][ T21] kthread+0x361/0x430 [ 100.115753][ T21] ? process_one_work+0x1740/0x1740 [ 100.115766][ T21] ? kthread_mod_delayed_work+0x1f0/0x1f0 [ 100.115778][ T21] ret_from_fork+0x24/0x30 [ 100.115787][ T21] Modules linked in: [ 100.115802][ T21] ---[ end trace 453594274108445b ]--- [ 100.115815][ T21] RIP: 0010:do_con_write.part.0+0xa01/0x1ef0 [ 100.115826][ T21] Code: 7e fe ff ff 45 01 ef e8 3d bb 87 fd 48 8b 85 c8 fe ff ff 80 38 00 0f 85 71 12 00 00 49 8b 9e a0 03 00 00 48 89 d8 48 c1 e8 03 <42> 0f b6 14 20 48 89 d8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 [ 100.115832][ T21] RSP: 0018:ffffc90000dd77c8 EFLAGS: 00010203 [ 100.115840][ T21] RAX: 0000000020000001 RBX: 000000010000000e RCX: ffffffff83ed21e0 [ 100.115847][ T21] RDX: 0000000000000000 RSI: ffffffff83ed2233 RDI: 0000000000000003 [ 100.115854][ T21] RBP: ffffc90000dd7958 R08: ffff8880a9410580 R09: ffff8880a9410e10 [ 100.115861][ T21] R10: fffffbfff14f52b8 R11: ffffffff8a7a95c7 R12: dffffc0000000000 [ 100.115869][ T21] R13: 0000000000000000 R14: ffff88809fe36000 R15: 000000000000075e [ 100.115878][ T21] FS: 0000000000000000(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000 [ 100.115886][ T21] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 100.115893][ T21] CR2: 0000000020000180 CR3: 000000009714b000 CR4: 00000000001406f0 [ 100.115903][ T21] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 100.115911][ T21] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 100.115917][ T21] Kernel panic - not syncing: Fatal exception [ 100.117050][ T21] Kernel Offset: disabled