[ 40.826086] audit: type=1800 audit(1563578842.692:29): pid=7664 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2447 res=0 [ 40.871131] audit: type=1800 audit(1563578842.692:30): pid=7664 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2490 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.249' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 51.175718] kauditd_printk_skb: 5 callbacks suppressed [ 51.175734] audit: type=1400 audit(1563578853.042:36): avc: denied { map } for pid=7853 comm="syz-executor954" path="/root/syz-executor954575322" dev="sda1" ino=16484 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 51.179531] netlink: 4 bytes leftover after parsing attributes in process `syz-executor954'. [ 51.218047] kasan: CONFIG_KASAN_INLINE enabled [ 51.222806] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 51.230618] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 51.236873] CPU: 0 PID: 7853 Comm: syz-executor954 Not tainted 4.19.59 #32 [ 51.243879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 51.253259] RIP: 0010:tcf_ife_init+0x221/0x17d0 [ 51.257926] Code: fb 48 c7 c2 99 43 81 85 be 01 00 00 00 48 c7 c7 60 da 79 88 e8 c0 26 d1 fb 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <0f> b6 14 02 48 89 d8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 83 [ 51.277055] RSP: 0018:ffff88808139eee0 EFLAGS: 00010246 [ 51.282450] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 1ffff11012f8c15e [ 51.289719] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000282 [ 51.297008] RBP: ffff88808139f068 R08: ffff888097c60280 R09: 0000000000000001 [ 51.304306] R10: ffffed1015d04732 R11: ffff8880ae823993 R12: 0000000000000001 [ 51.313077] R13: ffff888216233b40 R14: ffff88808139f040 R15: 0000000000000001 [ 51.320460] FS: 000000000105d880(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000 [ 51.329119] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 51.334998] CR2: 0000559b685ad500 CR3: 000000008ff21000 CR4: 00000000001406f0 [ 51.342268] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 51.349534] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 51.356816] Call Trace: [ 51.359408] ? __add_metainfo+0x480/0x480 [ 51.363557] ? lock_downgrade+0x810/0x810 [ 51.367738] ? kasan_check_write+0x14/0x20 [ 51.372000] ? do_raw_read_unlock+0x3f/0x70 [ 51.376422] tcf_action_init_1+0x804/0xc40 [ 51.380689] ? tcf_action_dump_old+0x80/0x80 [ 51.385124] ? __lock_acquire+0x6eb/0x48f0 [ 51.389388] ? __lock_acquire+0x6eb/0x48f0 [ 51.393855] ? memset+0x32/0x40 [ 51.397137] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 51.402702] tcf_action_init+0x23e/0x360 [ 51.406869] ? tcf_action_init_1+0xc40/0xc40 [ 51.411318] ? avc_has_extended_perms+0x10f0/0x10f0 [ 51.416360] ? lock_downgrade+0x810/0x810 [ 51.420521] tcf_action_add+0xe8/0x370 [ 51.424427] ? tca_action_gd+0x16b0/0x16b0 [ 51.429321] ? is_bpf_text_address+0xac/0x170 [ 51.433882] ? memset+0x32/0x40 [ 51.437171] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 51.442743] ? nla_parse+0x1fc/0x2f0 [ 51.446573] tc_ctl_action+0x37a/0x46f [ 51.450480] ? tcf_action_add+0x370/0x370 [ 51.454647] ? __lock_is_held+0xb6/0x140 [ 51.458743] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 51.464294] ? tcf_action_add+0x370/0x370 [ 51.468443] rtnetlink_rcv_msg+0x463/0xb00 [ 51.472717] ? rtnetlink_put_metrics+0x570/0x570 [ 51.477482] ? netlink_deliver_tap+0x22d/0xc20 [ 51.482084] ? find_held_lock+0x35/0x130 [ 51.486155] netlink_rcv_skb+0x17d/0x460 [ 51.490222] ? rtnetlink_put_metrics+0x570/0x570 [ 51.494997] ? netlink_ack+0xb50/0xb50 [ 51.498888] ? kasan_check_read+0x11/0x20 [ 51.503039] ? netlink_deliver_tap+0x254/0xc20 [ 51.507636] rtnetlink_rcv+0x1d/0x30 [ 51.511624] netlink_unicast+0x537/0x720 [ 51.515827] ? netlink_attachskb+0x770/0x770 [ 51.520251] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 51.525793] netlink_sendmsg+0x8ae/0xd70 [ 51.529885] ? netlink_unicast+0x720/0x720 [ 51.534182] ? selinux_socket_sendmsg+0x36/0x40 [ 51.538948] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 51.544514] ? security_socket_sendmsg+0x8d/0xc0 [ 51.549325] ? netlink_unicast+0x720/0x720 [ 51.556866] sock_sendmsg+0xd7/0x130 [ 51.567533] ___sys_sendmsg+0x803/0x920 [ 51.573460] ? copy_msghdr_from_user+0x430/0x430 [ 51.585981] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 51.592411] ? __handle_mm_fault+0x7d1/0x3f80 [ 51.600373] ? vmf_insert_mixed_mkwrite+0x90/0x90 [ 51.606690] ? find_held_lock+0x35/0x130 [ 51.611558] ? __do_page_fault+0x676/0xe90 [ 51.616005] ? find_held_lock+0x35/0x130 [ 51.620095] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 51.626902] ? __fget_light+0x1a9/0x230 [ 51.633865] ? __fdget+0x1b/0x20 [ 51.637368] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 51.643402] __sys_sendmsg+0x105/0x1d0 [ 51.647399] ? __ia32_sys_shutdown+0x80/0x80 [ 51.651841] ? up_read+0x1a/0x110 [ 51.656200] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 51.662934] ? do_syscall_64+0x26/0x620 [ 51.667042] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 51.673864] ? do_syscall_64+0x26/0x620 [ 51.679262] __x64_sys_sendmsg+0x78/0xb0 [ 51.683359] do_syscall_64+0xfd/0x620 [ 51.687169] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 51.692445] RIP: 0033:0x4401d9 [ 51.695641] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 51.723703] RSP: 002b:00007ffd22136208 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 51.731589] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 00000000004401d9 [ 51.738881] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 51.746174] RBP: 00000000006ca018 R08: 0000000000000000 R09: 00000000004002c8 [ 51.753489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000401a60 [ 51.760802] R13: 0000000000401af0 R14: 0000000000000000 R15: 0000000000000000 [ 51.768096] Modules linked in: [ 51.771533] ---[ end trace 21b7a9040379571b ]--- [ 51.776321] RIP: 0010:tcf_ife_init+0x221/0x17d0 [ 51.781076] Code: fb 48 c7 c2 99 43 81 85 be 01 00 00 00 48 c7 c7 60 da 79 88 e8 c0 26 d1 fb 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <0f> b6 14 02 48 89 d8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 83 [ 51.800310] RSP: 0018:ffff88808139eee0 EFLAGS: 00010246 [ 51.805824] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 1ffff11012f8c15e [ 51.813321] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000282 [ 51.820744] RBP: ffff88808139f068 R08: ffff888097c60280 R09: 0000000000000001 [ 51.828136] R10: ffffed1015d04732 R11: ffff8880ae823993 R12: 0000000000000001 [ 51.835457] R13: ffff888216233b40 R14: ffff88808139f040 R15: 0000000000000001 [ 51.842825] FS: 000000000105d880(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000 [ 51.851136] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 51.857043] CR2: 0000559b685ad500 CR3: 000000008ff21000 CR4: 00000000001406f0 [ 51.865044] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 51.872811] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 51.880514] Kernel panic - not syncing: Fatal exception [ 51.887187] Kernel Offset: disabled [ 51.890845] Rebooting in 86400 seconds..