[   79.937419][   T27] audit: type=1400 audit(1576246755.189:37): avc:  denied  { watch } for  pid=9940 comm="restorecond" path="/root/.ssh" dev="sda1" ino=16180 scontext=system_u:system_r:kernel_t:s0 tcontext=unconfined_u:object_r:ssh_home_t:s0 tclass=dir permissive=1
[   79.981238][   T27] audit: type=1400 audit(1576246755.219:38): avc:  denied  { watch } for  pid=9940 comm="restorecond" path="/etc/selinux/restorecond.conf" dev="sda1" ino=2232 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting file context maintaining daemon: restorecond[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   80.202007][   T27] audit: type=1800 audit(1576246755.449:39): pid=9853 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
[   80.224357][   T27] audit: type=1800 audit(1576246755.449:40): pid=9853 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   83.367695][   T27] audit: type=1400 audit(1576246758.619:41): avc:  denied  { map } for  pid=10027 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1
Warning: Permanently added '10.128.0.104' (ECDSA) to the list of known hosts.
executing program
[   90.079699][   T27] audit: type=1400 audit(1576246765.329:42): avc:  denied  { map } for  pid=10039 comm="syz-executor322" path="/root/syz-executor322482915" dev="sda1" ino=16484 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1
[   90.088104][T10039] netlink: 2 bytes leftover after parsing attributes in process `syz-executor322'.
[   90.146194][    C0] ==================================================================
[   90.154651][    C0] BUG: KASAN: use-after-free in __alloc_skb+0x37b/0x5e0
[   90.161778][    C0] Write of size 32 at addr ffff88819e4233c0 by task net.agent/10042
[   90.169784][    C0] 
[   90.172304][    C0] CPU: 0 PID: 10042 Comm: net.agent Not tainted 5.5.0-rc1-syzkaller #0
[   90.180544][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   90.190613][    C0] Call Trace:
[   90.193913][    C0]  <IRQ>
[   90.196789][    C0]  dump_stack+0x197/0x210
[   90.201141][    C0]  ? __alloc_skb+0x37b/0x5e0
[   90.205759][    C0]  print_address_description.constprop.0.cold+0xd4/0x30b
[   90.212806][    C0]  ? __alloc_skb+0x37b/0x5e0
[   90.217422][    C0]  ? __alloc_skb+0x37b/0x5e0
[   90.222039][    C0]  __kasan_report.cold+0x1b/0x41
[   90.227093][    C0]  ? __alloc_skb+0x37b/0x5e0
[   90.231719][    C0]  kasan_report+0x12/0x20
[   90.236075][    C0]  check_memory_region+0x134/0x1a0
[   90.241335][    C0]  memset+0x24/0x40
[   90.245341][    C0]  __alloc_skb+0x37b/0x5e0
[   90.249789][    C0]  ? __kmalloc_reserve.isra.0+0xf0/0xf0
[   90.255365][    C0]  ? print_circular_bug.isra.0+0x230/0x230
[   90.261200][    C0]  igmpv3_newpack+0x1b9/0x1110
[   90.265989][    C0]  ? ip_mc_join_group+0x30/0x30
[   90.270861][    C0]  ? __kasan_check_read+0x11/0x20
[   90.275907][    C0]  ? __lock_acquire+0x16f2/0x4a00
[   90.281388][    C0]  add_grhead.isra.0+0x235/0x300
[   90.286414][    C0]  add_grec+0x842/0x1230
[   90.290684][    C0]  ? do_raw_spin_lock+0x12a/0x2e0
[   90.295733][    C0]  ? rwlock_bug.part.0+0x90/0x90
[   90.300694][    C0]  ? add_grhead.isra.0+0x300/0x300
[   90.305834][    C0]  igmp_ifc_timer_expire+0x4af/0xab0
[   90.311160][    C0]  call_timer_fn+0x1ac/0x780
[   90.315770][    C0]  ? __ip_mc_dec_group+0x520/0x520
[   90.320897][    C0]  ? msleep_interruptible+0x150/0x150
[   90.326291][    C0]  ? run_timer_softirq+0x6b1/0x1790
[   90.331514][    C0]  ? trace_hardirqs_on+0x67/0x240
[   90.336562][    C0]  ? __ip_mc_dec_group+0x520/0x520
[   90.341817][    C0]  ? __ip_mc_dec_group+0x520/0x520
[   90.347653][    C0]  run_timer_softirq+0x6c3/0x1790
[   90.352721][    C0]  ? add_timer+0x930/0x930
[   90.357515][    C0]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[   90.363791][    C0]  ? rcu_read_lock_sched_held+0x9c/0xd0
[   90.369632][    C0]  ? rcu_read_lock_any_held.part.0+0x50/0x50
[   90.375647][    C0]  ? trace_hardirqs_on+0x67/0x240
[   90.380707][    C0]  __do_softirq+0x262/0x98c
[   90.385230][    C0]  ? sched_clock_cpu+0x1b/0x1b0
[   90.390114][    C0]  irq_exit+0x19b/0x1e0
[   90.394292][    C0]  smp_apic_timer_interrupt+0x1a3/0x610
[   90.399866][    C0]  apic_timer_interrupt+0xf/0x20
[   90.404850][    C0]  </IRQ>
[   90.407812][    C0] RIP: 0010:validate_mm+0x349/0x620
[   90.413032][    C0] Code: 01 00 e8 ba d9 d0 ff 48 8b 7d c8 e8 a1 15 24 06 49 8d 7c 24 18 48 be 00 00 00 00 00 fc ff df 48 89 f8 48 c1 e8 03 80 3c 30 00 <0f> 85 03 02 00 00 48 8b 7d c0 4d 8b 6c 24 18 e8 53 f6 ff ff 48 89
[   90.432662][    C0] RSP: 0018:ffffc90001ccfaf8 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
[   90.441188][    C0] RAX: 1ffff11014d511dd RBX: 00007ffc1b7a7000 RCX: ffffffff815bfd3a
[   90.449210][    C0] RDX: 1ffff11010920269 RSI: dffffc0000000000 RDI: ffff8880a6a88ee8
[   90.457204][    C0] RBP: ffffc90001ccfb50 R08: 0000000000000004 R09: fffff52000399f4d
[   90.465281][    C0] R10: fffff52000399f4c R11: 0000000000000003 R12: ffff8880a6a88ed0
[   90.473275][    C0] R13: 00007ffc1b786000 R14: ffff8880a6a88eb8 R15: ffff8880a6a88eb0
[   90.481290][    C0]  ? do_raw_spin_lock+0x12a/0x2e0
[   90.486434][    C0]  ? validate_mm+0x32f/0x620
[   90.491054][    C0]  vma_link+0x114/0x170
[   90.495232][    C0]  mmap_region+0x1297/0x1760
[   90.499907][    C0]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   90.506192][    C0]  ? __x64_sys_brk+0x760/0x760
[   90.511097][    C0]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   90.517378][    C0]  ? get_unmapped_area+0x2ad/0x3d0
[   90.522517][    C0]  do_mmap+0x837/0x1150
[   90.526711][    C0]  vm_mmap_pgoff+0x1c5/0x230
[   90.531350][    C0]  ? randomize_stack_top+0x110/0x110
[   90.536677][    C0]  ? __kasan_check_write+0x14/0x20
[   90.541809][    C0]  ? up_read+0x1cd/0x810
[   90.546101][    C0]  ksys_mmap_pgoff+0xf7/0x630
[   90.550833][    C0]  ? find_mergeable_anon_vma+0x2e0/0x2e0
[   90.556513][    C0]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   90.561991][    C0]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   90.567476][    C0]  ? do_syscall_64+0x26/0x790
[   90.572284][    C0]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   90.578381][    C0]  __x64_sys_mmap+0xe9/0x1b0
[   90.583000][    C0]  do_syscall_64+0xfa/0x790
[   90.587533][    C0]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   90.593444][    C0] RIP: 0033:0x7ff4837cc3ea
[   90.597907][    C0] Code: 48 8d 3d 81 69 00 00 b2 84 e8 52 ec ff ff f7 d8 89 05 ae ad 20 00 eb c6 90 90 90 90 90 90 90 90 49 89 ca b8 09 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8d 0d 8a ad 20 00 31 d2 48 29 c2 89
[   90.617524][    C0] RSP: 002b:00007ffc1b7a4f18 EFLAGS: 00000202 ORIG_RAX: 0000000000000009
[   90.626154][    C0] RAX: ffffffffffffffda RBX: 00007ff4839d44c0 RCX: 00007ff4837cc3ea
[   90.634253][    C0] RDX: 0000000000000003 RSI: 0000000000004838 RDI: 00007ff4837b1000
[   90.642498][    C0] RBP: 00007ffc1b7a5270 R08: 00000000ffffffff R09: 00