[  113.799109][   T27] audit: type=1800 audit(1581378670.260:34): pid=10984 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
Starting mcstransd: 
[....] Starting file context maintaining daemon: restorecond[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [  118.472010][   T27] kauditd_printk_skb: 6 callbacks suppressed
[  118.472026][   T27] audit: type=1400 audit(1581378674.950:41): avc:  denied  { map } for  pid=11160 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1
Warning: Permanently added '10.128.0.50' (ECDSA) to the list of known hosts.
executing program
executing program
executing program
executing program
executing program
executing program
[  141.473172][   T27] audit: type=1400 audit(1581378697.960:42): avc:  denied  { map } for  pid=11172 comm="syz-executor391" path="/root/syz-executor391440283" dev="sda1" ino=1426 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1
[  141.527869][T11179] BUG: sleeping function called from invalid context at mm/slab.h:565
[  141.536398][T11179] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 11179, name: syz-executor391
[  141.547163][T11179] 1 lock held by syz-executor391/11179:
[  141.552754][T11179]  #0: ffffffff89c774f8 (sb_lock){+.+.}, at: sget_fc+0xde/0x810
[  141.560426][T11179] Preemption disabled at:
[  141.560446][T11179] [<ffffffff81bf9f1e>] sget_fc+0xde/0x810
[  141.570557][T11179] CPU: 0 PID: 11179 Comm: syz-executor391 Not tainted 5.6.0-rc1-syzkaller #0
[  141.580355][T11179] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  141.590556][T11179] Call Trace:
[  141.593863][T11179]  dump_stack+0x197/0x210
[  141.598216][T11179]  ? sget_fc+0xde/0x810
[  141.602372][T11179]  ___might_sleep.cold+0x1fb/0x23e
[  141.607509][T11179]  __might_sleep+0x95/0x190
[  141.612025][T11179]  __kmalloc+0x2d5/0x770
[  141.616271][T11179]  ? mark_held_locks+0xf0/0xf0
[  141.622267][T11179]  ? path_remove_extra_slash.part.0+0xd3/0x2e0
[  141.629052][T11179]  path_remove_extra_slash.part.0+0xd3/0x2e0
[  141.635041][T11179]  ceph_compare_super+0x248/0x610
[  141.640254][T11179]  ? path_remove_extra_slash.part.0+0x2e0/0x2e0
[  141.651709][T11179]  sget_fc+0x207/0x810
[  141.655919][T11179]  ? ceph_put_super+0x70/0x70
[  141.660739][T11179]  ? path_remove_extra_slash.part.0+0x2e0/0x2e0
[  141.666979][T11179]  ceph_get_tree+0x633/0x16c0
[  141.671676][T11179]  vfs_get_tree+0x8e/0x300
[  141.676142][T11179]  do_mount+0x135a/0x1b50
[  141.680727][T11179]  ? copy_mount_string+0x40/0x40
[  141.685674][T11179]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  141.691928][T11179]  ? _copy_from_user+0x12c/0x1a0
[  141.696871][T11179]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  141.703135][T11179]  ? memdup_user+0x80/0xd0
[  141.707661][T11179]  __x64_sys_mount+0x192/0x230
[  141.712538][T11179]  do_syscall_64+0xfa/0x790
[  141.717105][T11179]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  141.722998][T11179] RIP: 0033:0x441289
[  141.727010][T11179] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb 08 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[  141.746720][T11179] RSP: 002b:00007ffeeea10138 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  141.755193][T11179] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441289
[  141.763500][T11179] RDX: 0000000020000140 RSI: 00000000200000c0 RDI: 0000000020000040
[  141.771487][T11179] RBP: 00000000006cb018 R08: 0000000000000000 R09: 00000000004002c8
[  141.779472][T11179] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402000
[  141.787557][T11179] R13: 0000000000402090 R14: 0000000000000000 R15: 0000000000000000
[  141.803013][ T2974] libceph: connect (1)[d::]:6789 error -101
[  141.809308][ T2974] libceph: mon0 (1)[d::]:6789 connect error
[  141.816654][ T2974] libceph: connect (1)[d::]:6789 error -101
[  141.823033][ T2974] libceph: mon0 (1)[d::]:6789 connect error
[  142.093111][ T2974] libceph: connect (1)[d::]:6789 error -101
[  142.099365][ T2974] libceph: mon0 (1)[d::]:6789 connect error
[  143.162890][ T2974] libceph: connect (1)[d::]:6789 error -101
[  143.168913][ T2974] libceph: mon0 (1)[d::]:6789 connect error
[  145.084333][   T17] libceph: connect (1)[d::]:6789 error -101
[  145.090400][   T17] libceph: mon0 (1)[d::]:6789 connect error
[  146.122395][   T17] libceph: connect (1)[d::]:6789 error -101
[  146.128515][   T17] libceph: mon0 (1)[d::]:6789 connect error
[  146.482214][T11181] ceph: No mds server is up or the cluster is laggy
[  146.490559][T11182] BUG: sleeping function called from invalid context at mm/slab.h:565
[  146.499164][T11182] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 11182, name: syz-executor391
[  146.508799][T11182] 2 locks held by syz-executor391/11182:
[  146.514617][T11182]  #0: ffff8880946ac0d8 (&type->s_umount_key#55/1){+.+.}, at: alloc_super+0x158/0x910
[  146.524409][T11182]  #1: ffffffff89c774f8 (sb_lock){+.+.}, at: sget_fc+0xde/0x810
[  146.532233][T11182] Preemption disabled at:
[  146.532257][T11182] [<ffffffff81bf9f1e>] sget_fc+0xde/0x810
[  146.542344][T11182] CPU: 1 PID: 11182 Comm: syz-executor391 Tainted: G        W         5.6.0-rc1-syzkaller #0
[  146.552579][T11182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  146.562647][T11182] Call Trace:
[  146.565964][T11182]  dump_stack+0x197/0x210
[  146.570940][T11182]  ? sget_fc+0xde/0x810
[  146.575121][T11182]  ___might_sleep.cold+0x1fb/0x23e
[  146.580251][T11182]  __might_sleep+0x95/0x190
[  146.584765][T11182]  __kmalloc+0x2d5/0x770
[  146.589627][T11182]  ? mark_held_locks+0xf0/0xf0
[  146.594597][T11182]  ? path_remove_extra_slash.part.0+0xd3/0x2e0
[  146.600768][T11182]  path_remove_extra_slash.part.0+0xd3/0x2e0
[  146.607041][T11182]  ceph_compare_super+0x248/0x610
[  146.612263][T11182]  ? path_remove_extra_slash.part.0+0x2e0/0x2e0
[  146.618539][T11182]  sget_fc+0x207/0x810
[  146.622618][T11182]  ? ceph_put_super+0x70/0x70
[  146.627416][T11182]  ? path_remove_extra_slash.part.0+0x2e0/0x2e0
[  146.633670][T11182]  ceph_get_tree+0x633/0x16c0
[  146.638372][T11182]  vfs_get_tree+0x8e/0x300
[  146.643289][T11182]  do_mount+0x135a/0x1b50
[  146.647714][T11182]  ? copy_mount_string+0x40/0x40
[  146.652658][T11182]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  146.658925][T11182]  ? _copy_from_user+0x12c/0x1a0
[  146.663880][T11182]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  146.670175][T11182]  ? memdup_user+0x80/0xd0
[  146.674603][T11182]  __x64_sys_mount+0x192/0x230
[  146.679485][T11182]  do_syscall_64+0xfa/0x790
[  146.683987][T11182]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  146.689880][T11182] RIP: 0033:0x441289
[  146.693790][T11182] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb 08 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[  146.713508][T11182] RSP: 002b:00007ffeeea10138 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  146.721951][T11182] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441289
[  146.730454][T11182] RDX: 0000000020000140 RSI: 00000000200000c0 RDI: 0000000020000040
[  146.738437][T11182] RBP: 00000000006cb018 R08: 0000000000000000 R09: 00000000004002c8
[  146.746602][T11182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402000
[  146.754573][T11182] R13: 0000000000402090 R14: 0000000000000000 R15: 0000000000000000
[  146.763204][ T2976] libceph: connect (1)[d::]:6789 error -101
[  146.771934][T11184] ceph: No mds server is up or the cluster is laggy
[  146.780182][ T2976] libceph: mon0 (1)[d::]:6789 connect error
[  146.795390][ T2976] libceph: connect (1)[d::]:6789 error -101
[  146.801416][ T2976] libceph: mon0 (1)[d::]:6789 connect error
[  146.808323][T11179] ceph: No mds server is up or the cluster is laggy
[  146.817856][T11185] ceph: No mds server is up or the cluster is laggy
[  146.824998][ T2974] libceph: connect (1)[d::]:6789 error -101
executing program
executing program
executing program
[  146.831074][ T2974] libceph: mon0 (1)[d::]:6789 connect error
[  146.846610][T11182] ceph: No mds server is up or the cluster is laggy
[  146.853839][ T2979] libceph: connect (1)[d::]:6789 error -101
[  146.862632][ T2979] libceph: mon0 (1)[d::]:6789 connect error
[  146.876450][T11180] ceph: No mds server is up or the cluster is laggy
executing program
executing program
[  146.899857][ T2984] libceph: connect (1)[d::]:6789 error -101
[  146.906218][ T2984] libceph: mon0 (1)[d::]:6789 connect error
[  146.928701][ T2988] libceph: connect (1)[d::]:6789 error -101
[  146.935932][ T2988] libceph: mon0 (1)[d::]:6789 connect error
executing program
[  148.122434][ T2974] libceph: connect (1)[d::]:6789 error -101
[  148.128600][ T2974] libceph: mon0 (1)[d::]:6789 connect error
[  149.162402][ T2974] libceph: connect (1)[d::]:6789 error -101
[  149.168660][ T2974] libceph: mon0 (1)[d::]:6789 connect error
[  150.123341][   T26] libceph: connect (1)[d::]:6789 error -101
[  150.129931][   T26] libceph: mon0 (1)[d::]:6789 connect error
[  151.082424][   T26] libceph: connect (1)[d::]:6789 error -101
[  151.088493][   T26] libceph: mon0 (1)[d::]:6789 connect error