syzkaller login: [ 39.498834][ T24] audit: type=1400 audit(1562880189.216:35): avc: denied { map } for pid=6988 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '10.128.0.230' (ECDSA) to the list of known hosts. [ 53.082224][ T24] audit: type=1400 audit(1562880202.796:36): avc: denied { map } for pid=7000 comm="syz-executor703" path="/root/syz-executor703666664" dev="sda1" ino=15899 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 59.974512][ T7001] IPVS: ftp: loaded support on port[0] = 21 [ 59.994578][ T7001] chnl_net:caif_netlink_parms(): no params data found [ 60.006376][ T7001] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.013432][ T7001] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.021199][ T7001] device bridge_slave_0 entered promiscuous mode [ 60.027880][ T7001] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.034987][ T7001] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.042269][ T7001] device bridge_slave_1 entered promiscuous mode [ 60.051456][ T7001] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 60.060169][ T7001] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 60.071048][ T7001] team0: Port device team_slave_0 added [ 60.076911][ T7001] team0: Port device team_slave_1 added [ 60.098750][ T7001] device hsr_slave_0 entered promiscuous mode [ 60.127811][ T7001] device hsr_slave_1 entered promiscuous mode [ 60.179835][ T7001] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.186967][ T7001] bridge0: port 2(bridge_slave_1) entered forwarding state [ 60.194207][ T7001] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.201263][ T7001] bridge0: port 1(bridge_slave_0) entered forwarding state [ 60.215661][ T7001] 8021q: adding VLAN 0 to HW filter on device bond0 [ 60.223768][ T3047] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 60.231322][ T3047] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.238837][ T3047] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.246053][ T3047] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 60.254884][ T7001] 8021q: adding VLAN 0 to HW filter on device team0 [ 60.262666][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 60.270823][ T25] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.277946][ T25] bridge0: port 1(bridge_slave_0) entered forwarding state [ 60.288048][ T3047] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 60.296185][ T3047] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.303234][ T3047] bridge0: port 2(bridge_slave_1) entered forwarding state [ 60.314400][ T7001] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 60.325165][ T7001] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 60.336010][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 60.344218][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 60.352221][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 60.360202][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 60.368151][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready executing program [ 60.375595][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 60.385959][ T7001] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 61.557907][ T609] device bridge_slave_1 left promiscuous mode [ 61.564079][ T609] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.598003][ T609] device bridge_slave_0 left promiscuous mode [ 61.604130][ T609] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.798359][ T609] device hsr_slave_1 left promiscuous mode [ 61.838454][ T609] device hsr_slave_0 left promiscuous mode [ 61.888605][ T609] team0 (unregistering): Port device team_slave_1 removed [ 61.896387][ T609] team0 (unregistering): Port device team_slave_0 removed [ 61.904167][ T609] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 61.948509][ T609] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 61.981588][ T609] bond0 (unregistering): Released all slaves [ 66.244876][ T7000] kmemleak: 3 new suspected memory leaks (see /sys/kernel/debug/kmemleak) BUG: memory leak unreferenced object 0xffff88811eac4a40 (size 64): comm "softirq", pid 0, jiffies 4294943273 (age 8.190s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 e0 5c cb 23 81 88 ff ff .........\.#.... 00 00 00 00 00 00 00 00 50 b1 16 83 ff ff ff ff ........P....... backtrace: [<00000000a9a2c0e6>] kmem_cache_alloc_trace+0x13d/0x280 [<00000000358dcf44>] batadv_tvlv_handler_register+0xa3/0x170 [<0000000070c8d27e>] batadv_tt_init+0x78/0x180 [<0000000096e5c01c>] batadv_mesh_init+0x196/0x230 [<00000000d551a0f5>] batadv_softif_init_late+0x1ca/0x220 [<00000000ad81e6db>] register_netdevice+0xbf/0x600 [<0000000009fc31f2>] __rtnl_newlink+0xaca/0xb30 [<000000007a7fc128>] rtnl_newlink+0x4e/0x80 [<000000000ea7ae98>] rtnetlink_rcv_msg+0x178/0x4b0 [<00000000f998b3a4>] netlink_rcv_skb+0x61/0x170 [<000000008758a183>] rtnetlink_rcv+0x1d/0x30 [<00000000614a7eec>] netlink_unicast+0x1ec/0x2d0 [<00000000689cea77>] netlink_sendmsg+0x26a/0x480 [<000000003527f234>] sock_sendmsg+0x54/0x70 [<00000000c8efca62>] __sys_sendto+0x148/0x1f0 [<00000000dc128d87>] __x64_sys_sendto+0x2a/0x30 BUG: memory leak unreferenced object 0xffff88811a5e1200 (size 128): comm "syz-executor703", pid 7001, jiffies 4294943281 (age 8.110s) hex dump (first 32 bytes): f0 88 57 21 81 88 ff ff f0 88 57 21 81 88 ff ff ..W!......W!.... b6 64 1d 58 7a 97 82 40 dc 0f 83 db 00 00 00 00 .d.Xz..@........ backtrace: [<00000000a9a2c0e6>] kmem_cache_alloc_trace+0x13d/0x280 [<00000000508a7206>] hsr_create_self_node+0x42/0x150 [<00000000d3669a18>] hsr_dev_finalize+0xa4/0x233 [<00000000df29ddf9>] hsr_newlink+0xf3/0x140 [<0000000059d3c8cb>] __rtnl_newlink+0x892/0xb30 [<000000007a7fc128>] rtnl_newlink+0x4e/0x80 [<000000000ea7ae98>] rtnetlink_rcv_msg+0x178/0x4b0 [<00000000f998b3a4>] netlink_rcv_skb+0x61/0x170 [<000000008758a183>] rtnetlink_rcv+0x1d/0x30 [<00000000614a7eec>] netlink_unicast+0x1ec/0x2d0 [<00000000689cea77>] netlink_sendmsg+0x26a/0x480 [<000000003527f234>] sock_sendmsg+0x54/0x70 [<00000000c8efca62>] __sys_sendto+0x148/0x1f0 [<00000000dc128d87>] __x64_sys_sendto+0x2a/0x30 [<00000000831f347e>] do_syscall_64+0x76/0x1a0 [<00000000b32c52eb>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811c1325c0 (size 64): comm "syz-executor703", pid 7001, jiffies 4294943281 (age 8.110s) hex dump (first 32 bytes): 40 05 81 1e 81 88 ff ff 00 02 00 00 00 00 ad de @............... 00 80 57 21 81 88 ff ff c0 88 57 21 81 88 ff ff ..W!......W!.... backtrace: [<00000000a9a2c0e6>] kmem_cache_alloc_trace+0x13d/0x280 [<00000000fb1ba6e2>] hsr_add_port+0xe7/0x220 [<00000000564977a6>] hsr_dev_finalize+0x14f/0x233 [<00000000df29ddf9>] hsr_newlink+0xf3/0x140 [<0000000059d3c8cb>] __rtnl_newlink+0x892/0xb30 [<000000007a7fc128>] rtnl_newlink+0x4e/0x80 [<000000000ea7ae98>] rtnetlink_rcv_msg+0x178/0x4b0 [<00000000f998b3a4>] netlink_rcv_skb+0x61/0x170 [<000000008758a183>] rtnetlink_rcv+0x1d/0x30 [<00000000614a7eec>] netlink_unicast+0x1ec/0x2d0 [<00000000689cea77>] netlink_sendmsg+0x26a/0x480 [<000000003527f234>] sock_sendmsg+0x54/0x70 [<00000000c8efca62>] __sys_sendto+0x148/0x1f0 [<00000000dc128d87>] __x64_sys_sendto+0x2a/0x30 [<00000000831f347e>] do_syscall_64+0x76/0x1a0 [<00000000b32c52eb>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 68.137086][ T7000] kmemleak: 6 new suspected memory leaks (see /sys/kernel/debug/kmemleak)