[ 34.256781] audit: type=1800 audit(1585766082.307:33): pid=7226 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op="collect_data" cause="failed(directio)" comm="startpar" name="rc.local" dev="sda1" ino=2465 res=0 [ 34.279614] audit: type=1800 audit(1585766082.307:34): pid=7226 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op="collect_data" cause="failed(directio)" comm="startpar" name="rmnologin" dev="sda1" ino=2456 res=0 Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 37.605266] random: sshd: uninitialized urandom read (32 bytes read) [ 37.898835] audit: type=1400 audit(1585766085.947:35): avc: denied { map } for pid=7399 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 37.942073] random: sshd: uninitialized urandom read (32 bytes read) [ 38.693900] random: sshd: uninitialized urandom read (32 bytes read) [ 82.708477] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.0.255' (ECDSA) to the list of known hosts. [ 88.169337] random: sshd: uninitialized urandom read (32 bytes read) [ 88.294739] audit: type=1400 audit(1585766136.347:36): avc: denied { map } for pid=7411 comm="syz-executor456" path="/root/syz-executor456709495" dev="sda1" ino=1426 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 88.591147] IPVS: ftp: loaded support on port[0] = 21 executing program [ 89.602721] IPVS: ftp: loaded support on port[0] = 21 executing program [ 90.671032] IPVS: ftp: loaded support on port[0] = 21 executing program [ 91.691022] IPVS: ftp: loaded support on port[0] = 21 executing program [ 92.721101] IPVS: ftp: loaded support on port[0] = 21 executing program [ 93.741009] IPVS: ftp: loaded support on port[0] = 21 executing program [ 95.638168] rxrpc: AF_RXRPC: Leaked local ffff888098ca9200 {1} [ 95.644619] ------------[ cut here ]------------ [ 95.649479] kernel BUG at net/rxrpc/local_object.c:405! [ 95.654971] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 95.660330] Modules linked in: [ 95.663513] CPU: 1 PID: 22 Comm: kworker/u4:1 Not tainted 4.14.174-syzkaller #0 [ 95.670951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 95.680313] Workqueue: netns cleanup_net [ 95.684366] task: ffff8880a9a1e5c0 task.stack: ffff8880a9a28000 [ 95.690404] RIP: 0010:rxrpc_destroy_all_locals+0xe6/0xf2 [ 95.695847] RSP: 0018:ffff8880a9a2fbf8 EFLAGS: 00010286 [ 95.701186] RAX: dffffc0000000000 RBX: ffff888091208740 RCX: fffffbfff14b0f60 [ 95.708433] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000282 [ 95.715681] RBP: ffff888091208760 R08: ffff8880a9a1e5c0 R09: dffffc0000000000 [ 95.722939] R10: 0000000000000000 R11: 0000000000000000 R12: ffff888091208760 [ 95.730189] R13: ffff888091208770 R14: dffffc0000000000 R15: fffffbfff10fd24f [ 95.737453] FS: 0000000000000000(0000) GS:ffff8880aeb00000(0000) knlGS:0000000000000000 [ 95.745658] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 95.751531] CR2: 00007ffc91d687d8 CR3: 0000000092b1b000 CR4: 00000000001406e0 [ 95.758779] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 95.766028] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 95.773364] Call Trace: [ 95.775951] rxrpc_exit_net+0x158/0x260 [ 95.779904] ? rxrpc_init_net+0xb20/0xb20 [ 95.784033] ops_exit_list.isra.0+0x9d/0x140 [ 95.788418] cleanup_net+0x3bb/0x820 [ 95.792110] ? net_drop_ns+0x70/0x70 [ 95.795804] ? find_held_lock+0xf0/0x110 [ 95.799858] process_one_work+0x813/0x1540 [ 95.804090] ? pwq_dec_nr_in_flight+0x2b0/0x2b0 [ 95.808737] ? worker_thread+0x15d/0x1070 [ 95.812876] ? _raw_spin_unlock_irq+0x24/0x80 [ 95.817410] worker_thread+0x5d1/0x1070 [ 95.821375] ? process_one_work+0x1540/0x1540 [ 95.825915] kthread+0x30d/0x420 [ 95.829266] ? kthread_create_on_node+0xd0/0xd0 [ 95.833934] ret_from_fork+0x24/0x30 [ 95.837629] Code: 00 00 00 00 00 fc ff df 48 83 eb 20 e8 74 ba 9e fb 4c 8d 63 20 4c 39 e5 0f 85 52 00 00 00 e8 62 ba 9e fb 4c 89 ef e8 8a 10 84 00 <0f> 0b 48 89 ef e8 10 0c c8 fb eb c0 e8 49 ba 9e fb 48 c7 c7 c0 [ 95.856728] RIP: rxrpc_destroy_all_locals+0xe6/0xf2 RSP: ffff8880a9a2fbf8 [ 95.863786] ---[ end trace 38132cd5fc79c794 ]--- [ 95.868552] Kernel panic - not syncing: Fatal exception [ 95.875244] Kernel Offset: disabled [ 95.878869] Rebooting in 86400 seconds..