[ 66.935314][ T26] audit: type=1800 audit(1565283035.384:27): pid=9845 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [ 66.976199][ T26] audit: type=1800 audit(1565283035.394:28): pid=9845 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 67.790470][ T26] audit: type=1800 audit(1565283036.304:29): pid=9845 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 67.810908][ T26] audit: type=1800 audit(1565283036.314:30): pid=9845 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.171' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 78.918278][T10001] ------------[ cut here ]------------ [ 78.923917][T10001] verifier backtracking bug [ 78.924007][T10001] WARNING: CPU: 0 PID: 10001 at kernel/bpf/verifier.c:1782 __mark_chain_precision+0x197a/0x1ea0 [ 78.938999][T10001] Kernel panic - not syncing: panic_on_warn set ... [ 78.945601][T10001] CPU: 0 PID: 10001 Comm: syz-executor511 Not tainted 5.2.0+ #42 [ 78.953296][T10001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 78.963363][T10001] Call Trace: [ 78.966658][T10001] dump_stack+0x172/0x1f0 [ 78.970968][T10001] ? __mark_chain_precision+0x18c0/0x1ea0 [ 78.976683][T10001] panic+0x2dc/0x755 [ 78.980559][T10001] ? add_taint.cold+0x16/0x16 [ 78.985243][T10001] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 78.991458][T10001] ? __warn.cold+0x5/0x4c [ 78.995770][T10001] ? __warn+0xe7/0x1e0 [ 78.999815][T10001] ? __mark_chain_precision+0x197a/0x1ea0 [ 79.005599][T10001] __warn.cold+0x20/0x4c [ 79.009821][T10001] ? __mark_chain_precision+0x197a/0x1ea0 [ 79.015522][T10001] report_bug+0x263/0x2b0 [ 79.019828][T10001] do_error_trap+0x11b/0x200 [ 79.024395][T10001] do_invalid_op+0x37/0x50 [ 79.028787][T10001] ? __mark_chain_precision+0x197a/0x1ea0 [ 79.034483][T10001] invalid_op+0x14/0x20 [ 79.038629][T10001] RIP: 0010:__mark_chain_precision+0x197a/0x1ea0 [ 79.044932][T10001] Code: 08 31 ff 89 de e8 16 b3 f2 ff 84 db 0f 85 07 ff ff ff e8 c9 b1 f2 ff 48 c7 c7 80 78 91 87 c6 05 ce 6a 1f 08 01 e8 ae 5b c4 ff <0f> 0b 41 bc f2 ff ff ff e9 e8 fe ff ff 48 8b bd d8 fe ff ff e8 2d [ 79.064514][T10001] RSP: 0018:ffff888093e575d8 EFLAGS: 00010286 [ 79.070557][T10001] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 79.078509][T10001] RDX: 0000000000000000 RSI: ffffffff815c1016 RDI: ffffed10127caead [ 79.086462][T10001] RBP: ffff888093e57728 R08: ffff888097112680 R09: fffffbfff11b4005 [ 79.094413][T10001] R10: fffffbfff11b4004 R11: ffffffff88da0023 R12: 0000000000000001 [ 79.102360][T10001] R13: ffff888091310ac0 R14: ffff88808a2b8f00 R15: ffff888093e576c0 [ 79.110321][T10001] ? vprintk_func+0x86/0x189 [ 79.114892][T10001] ? __mark_chain_precision+0x197a/0x1ea0 [ 79.120588][T10001] ? print_verifier_state+0x11b0/0x11b0 [ 79.126111][T10001] ? bpf_verifier_log_write+0x240/0x240 [ 79.131761][T10001] ? krealloc+0xa6/0xd0 [ 79.136069][T10001] ? push_jmp_history.isra.0+0x1a9/0x260 [ 79.141835][T10001] do_check+0x36d3/0x89f0 [ 79.146261][T10001] ? check_helper_call+0x3210/0x3210 [ 79.151550][T10001] ? quarantine_put+0x11c/0x1c0 [ 79.156388][T10001] ? trace_hardirqs_on+0x67/0x240 [ 79.161394][T10001] ? kvfree+0x61/0x70 [ 79.165376][T10001] bpf_check+0x6f99/0x9950 [ 79.169829][T10001] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 79.175546][T10001] ? do_check+0x89f0/0x89f0 [ 79.180243][T10001] ? lock_downgrade+0x920/0x920 [ 79.185346][T10001] ? lock_acquire+0x190/0x410 [ 79.190058][T10001] ? bpf_prog_load+0xdce/0x1670 [ 79.194896][T10001] ? trace_hardirqs_on+0x67/0x240 [ 79.199898][T10001] ? memset+0x32/0x40 [ 79.203874][T10001] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 79.210131][T10001] ? bpf_obj_name_cpy+0x13f/0x190 [ 79.215279][T10001] bpf_prog_load+0xe68/0x1670 [ 79.219951][T10001] ? bpf_prog_new_fd+0x60/0x60 [ 79.224853][T10001] ? trace_hardirqs_on+0x67/0x240 [ 79.230088][T10001] ? lock_downgrade+0x920/0x920 [ 79.234924][T10001] ? __might_fault+0xfb/0x1e0 [ 79.239585][T10001] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 79.245846][T10001] ? security_bpf+0x8b/0xc0 [ 79.250483][T10001] __do_sys_bpf+0xa46/0x42f0 [ 79.255885][T10001] ? __kasan_check_read+0x11/0x20 [ 79.260899][T10001] ? bpf_prog_load+0x1670/0x1670 [ 79.265828][T10001] ? lock_downgrade+0x920/0x920 [ 79.270925][T10001] ? __kasan_check_write+0x14/0x20 [ 79.276034][T10001] ? up_read+0x159/0x570 [ 79.280469][T10001] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 79.286754][T10001] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 79.292822][T10001] __x64_sys_bpf+0x73/0xb0 [ 79.297221][T10001] do_syscall_64+0xfd/0x6a0 [ 79.301715][T10001] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 79.307593][T10001] RIP: 0033:0x4402b9 [ 79.311467][T10001] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 79.331059][T10001] RSP: 002b:00007ffc31fe2538 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 79.339561][T10001] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 00000000004402b9 [ 79.347528][T10001] RDX: 0000000000000048 RSI: 0000000020000200 RDI: 0000000000000005 [ 79.356081][T10001] RBP: 00000000006ca018 R08: 0000000000000000 R09: 0000000000000000 [ 79.364133][T10001] R10: 00000000ffffffff R11: 0000000000000246 R12: 0000000000401b40 [ 79.372426][T10001] R13: 0000000000401bd0 R14: 0000000000000000 R15: 0000000000000000 [ 79.382100][T10001] Kernel Offset: disabled [ 79.386438][T10001] Rebooting in 86400 seconds..