[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
Starting mcstransd: 
[....] Starting file context maintaining daemon: restorecond[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   36.661519] audit: type=1800 audit(1569199643.713:33): pid=7148 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2465 res=0
[   36.682836] audit: type=1800 audit(1569199643.713:34): pid=7148 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2456 res=0

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   41.618792] audit: type=1400 audit(1569199648.673:35): avc:  denied  { map } for  pid=7324 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1
Warning: Permanently added '10.128.0.123' (ECDSA) to the list of known hosts.
executing program
[   48.126780] audit: type=1400 audit(1569199655.173:36): avc:  denied  { map } for  pid=7336 comm="syz-executor789" path="/root/syz-executor789993145" dev="sda1" ino=16483 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1
[   48.145942] IPVS: ftp: loaded support on port[0] = 21
[   48.182176] FAULT_INJECTION: forcing a failure.
[   48.182176] name failslab, interval 1, probability 0, space 0, times 1
[   48.193797] CPU: 1 PID: 7338 Comm: syz-executor789 Not tainted 4.19.75 #0
[   48.200716] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   48.210209] Call Trace:
[   48.212794]  dump_stack+0x172/0x1f0
[   48.216428]  should_fail.cold+0xa/0x1b
[   48.220331]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[   48.225425]  ? lock_downgrade+0x810/0x810
[   48.229567]  __should_failslab+0x121/0x190
[   48.233790]  should_failslab+0x9/0x14
[   48.237575]  kmem_cache_alloc_trace+0x2cc/0x760
[   48.242233]  ? rcu_read_lock_sched_held+0x110/0x130
[   48.247237]  ? kmem_cache_alloc_trace+0x348/0x760
[   48.252082]  tcindex_filter_result_init+0x57/0x130
[   48.257026]  tcindex_set_parms+0x5dd/0x1e20
[   48.261364]  ? tcindex_alloc_perfect_hash+0x350/0x350
[   48.266539]  ? kasan_kmalloc+0xce/0xf0
[   48.270412]  ? kmem_cache_alloc_trace+0x152/0x760
[   48.275239]  ? tcindex_init+0x44/0x140
[   48.279122]  ? netlink_rcv_skb+0x17d/0x460
[   48.283368]  ? rtnetlink_rcv+0x1d/0x30
[   48.287242]  ? __sys_sendmmsg+0x1bf/0x4e0
[   48.291374]  ? __x64_sys_sendmmsg+0x9d/0x100
[   48.295768]  ? do_syscall_64+0xfd/0x620
[   48.299738]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   48.305097]  ? memset+0x32/0x40
[   48.308376]  tcindex_change+0x22d/0x315
[   48.312364]  ? tcindex_change+0x22d/0x315
[   48.316503]  ? tcindex_set_parms+0x1e20/0x1e20
[   48.321076]  ? tcindex_lookup+0x9d/0x3c0
[   48.325120]  ? tcindex_set_parms+0x1e20/0x1e20
[   48.329689]  tc_new_tfilter+0xc54/0x1790
[   48.333740]  ? tc_del_tfilter+0xe60/0xe60
[   48.337881]  ? rtnetlink_rcv_msg+0x40a/0xb00
[   48.342288]  ? mutex_trylock+0x1e0/0x1e0
[   48.346359]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   48.351881]  ? tc_del_tfilter+0xe60/0xe60
[   48.356015]  rtnetlink_rcv_msg+0x463/0xb00
[   48.360235]  ? rtnetlink_put_metrics+0x560/0x560
[   48.364998]  ? netlink_deliver_tap+0x22d/0xc20
[   48.369573]  ? find_held_lock+0x35/0x130
[   48.373624]  netlink_rcv_skb+0x17d/0x460
[   48.377672]  ? rtnetlink_put_metrics+0x560/0x560
[   48.382426]  ? netlink_ack+0xb30/0xb30
[   48.386310]  ? kasan_check_read+0x11/0x20
[   48.390477]  ? netlink_deliver_tap+0x254/0xc20
[   48.395215]  rtnetlink_rcv+0x1d/0x30
[   48.398930]  netlink_unicast+0x537/0x720
[   48.402986]  ? netlink_attachskb+0x770/0x770
[   48.407385]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   48.412914]  netlink_sendmsg+0x8ae/0xd70
[   48.416976]  ? netlink_unicast+0x720/0x720
[   48.421208]  ? selinux_socket_sendmsg+0x36/0x40
[   48.425963]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   48.431529]  ? security_socket_sendmsg+0x8d/0xc0
[   48.436270]  ? netlink_unicast+0x720/0x720
[   48.440491]  sock_sendmsg+0xd7/0x130
[   48.444189]  ___sys_sendmsg+0x3e2/0x920
[   48.448149]  ? copy_msghdr_from_user+0x430/0x430
[   48.453012]  ? get_pid_task+0xd4/0x190
[   48.456885]  ? find_held_lock+0x35/0x130
[   48.460944]  ? get_pid_task+0xd4/0x190
[   48.464825]  ? __lock_is_held+0xb6/0x140
[   48.468873]  ? lock_downgrade+0x810/0x810
[   48.473026]  ? kasan_check_read+0x11/0x20
[   48.477171]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   48.482716]  ? proc_fail_nth_write+0x9d/0x1e0
[   48.487198]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   48.492720]  ? __fget_light+0x1a9/0x230
[   48.496678]  ? __fdget+0x1b/0x20
[   48.500028]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   48.505550]  ? sockfd_lookup_light+0xcb/0x180
[   48.510029]  __sys_sendmmsg+0x1bf/0x4e0
[   48.513990]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   48.518305]  ? __sb_end_write+0xd9/0x110
[   48.522352]  ? vfs_write+0x160/0x560
[   48.526054]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   48.531581]  ? ksys_write+0x1f1/0x2d0
[   48.535367]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   48.540107]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   48.544844]  ? do_syscall_64+0x26/0x620
[   48.548803]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   48.554151]  ? do_syscall_64+0x26/0x620
[   48.558113]  __x64_sys_sendmmsg+0x9d/0x100
[   48.562334]  do_syscall_64+0xfd/0x620
[   48.566121]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   48.571306] RIP: 0033:0x4422c9
[   48.574499] Code: e8 9c ae 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   48.593389] RSP: 002b:00007fff96d8d208 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   48.601096] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000004422c9
[   48.608351] RDX: 0000000000000332 RSI: 0000000020000140 RDI: 0000000000000006
[   48.615609] RBP: 00007fff96d8d240 R08: 0000000000000002 R09: 0000000120080522
[   48.622861] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff
[   48.630118] R13: 0000000000000007 R14: 0000000000000000 R15: 0000000000000000
[   48.638932] kasan: CONFIG_KASAN_INLINE enabled
[   48.643620] kasan: GPF could be caused by NULL-ptr deref or user memory access
[   48.651050] general protection fault: 0000 [#1] PREEMPT SMP KASAN
[   48.657279] CPU: 1 PID: 7338 Comm: syz-executor789 Not tainted 4.19.75 #0
[   48.664187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   48.673536] RIP: 0010:tcf_action_destroy+0x71/0x160
[   48.678552] Code: c3 08 44 89 ee e8 2f ae ea fb 41 83 fd 20 0f 84 c9 00 00 00 e8 a0 ac ea fb 48 89 d8 48 b9 00 00 00 00 00 fc ff df 48 c1 e8 03 <80> 3c 08 00 0f 85 c0 00 00 00 4c 8b 33 4d 85 f6 0f 84 9d 00 00 00
[   48.697449] RSP: 0018:ffff88809b21f020 EFLAGS: 00010246
[   48.702798] RAX: 0000000000000000 RBX: 0000000000000000 RCX: dffffc0000000000
[   48.710051] RDX: 0000000000000000 RSI: ffffffff8580b5e0 RDI: 0000000000000000
[   48.717317] RBP: ffff88809b21f050 R08: ffff88808762a3c0 R09: ffffed1015d24733
[   48.724570] R10: ffffed1015d24732 R11: ffff8880ae923993 R12: 0000000000000000
[   48.731840] R13: 0000000000000000 R14: ffff88809b21f7a0 R15: 0000000000000001
[   48.739099] FS:  000055555686f880(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000
[   48.747304] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   48.753171] CR2: 0000000000000000 CR3: 000000008b5da000 CR4: 00000000001406e0
[   48.760434] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   48.767709] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   48.774958] Call Trace:
[   48.777532]  tcf_exts_destroy+0x38/0xb0
[   48.781493]  tcindex_set_parms+0xf5f/0x1e20
[   48.785802]  ? tcindex_alloc_perfect_hash+0x350/0x350
[   48.790992]  ? kasan_kmalloc+0xce/0xf0
[   48.794862]  ? kmem_cache_alloc_trace+0x152/0x760
[   48.799708]  ? tcindex_init+0x44/0x140
[   48.803646]  ? netlink_rcv_skb+0x17d/0x460
[   48.807879]  ? rtnetlink_rcv+0x1d/0x30
[   48.811759]  ? __sys_sendmmsg+0x1bf/0x4e0
[   48.815893]  ? __x64_sys_sendmmsg+0x9d/0x100
[   48.820286]  ? do_syscall_64+0xfd/0x620
[   48.824247]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   48.829605]  ? memset+0x32/0x40
[   48.832870]  tcindex_change+0x22d/0x315
[   48.836844]  ? tcindex_change+0x22d/0x315
[   48.840983]  ? tcindex_set_parms+0x1e20/0x1e20
[   48.845551]  ? tcindex_lookup+0x9d/0x3c0
[   48.849597]  ? tcindex_set_parms+0x1e20/0x1e20
[   48.854176]  tc_new_tfilter+0xc54/0x1790
[   48.858232]  ? tc_del_tfilter+0xe60/0xe60
[   48.862369]  ? rtnetlink_rcv_msg+0x40a/0xb00
[   48.866763]  ? mutex_trylock+0x1e0/0x1e0
[   48.870818]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   48.876337]  ? tc_del_tfilter+0xe60/0xe60
[   48.880483]  rtnetlink_rcv_msg+0x463/0xb00
[   48.884706]  ? rtnetlink_put_metrics+0x560/0x560
[   48.889446]  ? netlink_deliver_tap+0x22d/0xc20
[   48.894013]  ? find_held_lock+0x35/0x130
[   48.898059]  netlink_rcv_skb+0x17d/0x460
[   48.902106]  ? rtnetlink_put_metrics+0x560/0x560
[   48.906843]  ? netlink_ack+0xb30/0xb30
[   48.910715]  ? kasan_check_read+0x11/0x20
[   48.914847]  ? netlink_deliver_tap+0x254/0xc20
[   48.919425]  rtnetlink_rcv+0x1d/0x30
[   48.923138]  netlink_unicast+0x537/0x720
[   48.927190]  ? netlink_attachskb+0x770/0x770
[   48.931595]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   48.937117]  netlink_sendmsg+0x8ae/0xd70
[   48.941161]  ? netlink_unicast+0x720/0x720
[   48.945379]  ? selinux_socket_sendmsg+0x36/0x40
[   48.950035]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   48.955564]  ? security_socket_sendmsg+0x8d/0xc0
[   48.960301]  ? netlink_unicast+0x720/0x720
[   48.964518]  sock_sendmsg+0xd7/0x130
[   48.968215]  ___sys_sendmsg+0x3e2/0x920
[   48.972186]  ? copy_msghdr_from_user+0x430/0x430
[   48.976923]  ? get_pid_task+0xd4/0x190
[   48.980796]  ? find_held_lock+0x35/0x130
[   48.984850]  ? get_pid_task+0xd4/0x190
[   48.988740]  ? __lock_is_held+0xb6/0x140
[   48.993253]  ? lock_downgrade+0x810/0x810
[   48.997388]  ? kasan_check_read+0x11/0x20
[   49.001523]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   49.007055]  ? proc_fail_nth_write+0x9d/0x1e0
[   49.011532]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   49.017053]  ? __fget_light+0x1a9/0x230
[   49.021009]  ? __fdget+0x1b/0x20
[   49.024371]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   49.029890]  ? sockfd_lookup_light+0xcb/0x180
[   49.034370]  __sys_sendmmsg+0x1bf/0x4e0
[   49.038329]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   49.042638]  ? __sb_end_write+0xd9/0x110
[   49.046681]  ? vfs_write+0x160/0x560
[   49.050379]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   49.055897]  ? ksys_write+0x1f1/0x2d0
[   49.059682]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   49.064424]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   49.069158]  ? do_syscall_64+0x26/0x620
[   49.073115]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   49.078472]  ? do_syscall_64+0x26/0x620
[   49.082430]  __x64_sys_sendmmsg+0x9d/0x100
[   49.086647]  do_syscall_64+0xfd/0x620
[   49.090432]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   49.095604] RIP: 0033:0x4422c9
[   49.098798] Code: e8 9c ae 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   49.117684] RSP: 002b:00007fff96d8d208 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   49.125374] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000004422c9
[   49.132624] RDX: 0000000000000332 RSI: 0000000020000140 RDI: 0000000000000006
[   49.139880] RBP: 00007fff96d8d240 R08: 0000000000000002 R09: 0000000120080522
[   49.147135] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff
[   49.154392] R13: 0000000000000007 R14: 0000000000000000 R15: 0000000000000000
[   49.161648] Modules linked in:
[   49.165030] ---[ end trace d9978aedcf125bac ]---
[   49.169866] RIP: 0010:tcf_action_destroy+0x71/0x160
[   49.174885] Code: c3 08 44 89 ee e8 2f ae ea fb 41 83 fd 20 0f 84 c9 00 00 00 e8 a0 ac ea fb 48 89 d8 48 b9 00 00 00 00 00 fc ff df 48 c1 e8 03 <80> 3c 08 00 0f 85 c0 00 00 00 4c 8b 33 4d 85 f6 0f 84 9d 00 00 00
[   49.193821] RSP: 0018:ffff88809b21f020 EFLAGS: 00010246
[   49.199202] RAX: 0000000000000000 RBX: 0000000000000000 RCX: dffffc0000000000
[   49.206542] RDX: 0000000000000000 RSI: ffffffff8580b5e0 RDI: 0000000000000000
[   49.213853] RBP: ffff88809b21f050 R08: ffff88808762a3c0 R09: ffffed1015d24733
[   49.221161] R10: ffffed1015d24732 R11: ffff8880ae923993 R12: 0000000000000000
[   49.228450] R13: 0000000000000000 R14: ffff88809b21f7a0 R15: 0000000000000001
[   49.235715] FS:  000055555686f880(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000
[   49.243953] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   49.249856] CR2: 0000000000000000 CR3: 000000008b5da000 CR4: 00000000001406e0
[   49.257109] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   49.264387] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   49.271671] Kernel panic - not syncing: Fatal exception
[   49.278565] Kernel Offset: disabled
[   49.282205] Rebooting in 86400 seconds..