[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
Starting mcstransd: 
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting file context maintaining daemon: restorecond[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   18.121867] audit: type=1400 audit(1519184202.653:6): avc:  denied  { map } for  pid=4157 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.30' (ECDSA) to the list of known hosts.
net.ipv6.conf.syz0.accept_dad = 0
net.ipv6.conf.syz0.router_solicitations = 0
syzkaller login: [   24.432826] audit: type=1400 audit(1519184208.964:7): avc:  denied  { map } for  pid=4171 comm="syzkaller821849" path="/root/syzkaller821849304" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1
RTNETLINK answers: Operation not supported
RTNETLINK answers: No buffer space available
RTNETLINK answers: Operation not supported
[   24.815299] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
RTNETLINK answers: Operation not supported
RTNETLINK answers: Operation not supported
RTNETLINK answers: Operation not supported
RTNETLINK answers: Invalid argument
RTNETLINK answers: Invalid argument
RTNETLINK answers: Invalid argument
executing program
[   25.160205] 
[   25.161850] =====================================
[   25.166664] WARNING: bad unlock balance detected!
[   25.171476] 4.16.0-rc2+ #235 Not tainted
[   25.175503] -------------------------------------
[   25.180310] udevd/4154 is trying to release lock (rcu_read_lock_bh) at:
[   25.187041] [<ffffffff8478e6fb>] hashlimit_mt_common.isra.10+0x1beb/0x2610
[   25.194022] but there are no more locks to release!
[   25.199003] 
[   25.199003] other info that might help us debug this:
[   25.205641] 4 locks held by udevd/4154:
[   25.209583]  #0:  (&mm->mmap_sem){++++}, at: [<00000000336f5331>] vm_munmap+0xed/0x180
[   25.217614]  #1:  ((&idev->mc_ifc_timer)){+.-.}, at: [<000000004c909a11>] call_timer_fn+0x1c6/0x820
[   25.226771]  #2:  (rcu_read_lock){....}, at: [<00000000a9177159>] mld_sendpack+0x180/0xe70
[   25.235147]  #3:  (rcu_read_lock){....}, at: [<000000008a1e5b0b>] nf_hook.constprop.37+0x0/0x830
[   25.244049] 
[   25.244049] stack backtrace:
[   25.248525] CPU: 0 PID: 4154 Comm: udevd Not tainted 4.16.0-rc2+ #235
[   25.255071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   25.264391] Call Trace:
[   25.266941]  <IRQ>
[   25.269065]  dump_stack+0x194/0x257
[   25.272661]  ? arch_local_irq_restore+0x53/0x53
[   25.277298]  ? hashlimit_mt_common.isra.10+0x1beb/0x2610
[   25.282719]  print_unlock_imbalance_bug+0x12f/0x140
[   25.287705]  lock_release+0x6fe/0xa40
[   25.291475]  ? hashlimit_mt_common.isra.10+0x1beb/0x2610
[   25.296893]  ? lock_downgrade+0x980/0x980
[   25.301011]  ? lock_release+0xa40/0xa40
[   25.304957]  ? __raw_spin_lock_init+0x1c/0x100
[   25.309522]  ? do_raw_spin_trylock+0x190/0x190
[   25.314164]  hashlimit_mt_common.isra.10+0x1c08/0x2610
[   25.319406]  ? lock_downgrade+0x980/0x980
[   25.323525]  ? dsthash_find+0x5b0/0x5b0
[   25.327482]  ? __lock_acquire+0x664/0x3e00
[   25.331689]  ? is_bpf_text_address+0x7b/0x120
[   25.336152]  ? lock_downgrade+0x95a/0x980
[   25.340271]  ? rcutorture_record_progress+0x10/0x10
[   25.345259]  ? __kernel_text_address+0xd/0x40
[   25.349724]  ? unwind_get_return_address+0x61/0xa0
[   25.354624]  hashlimit_mt+0x78/0x90
[   25.358219]  ? hashlimit_mt+0x78/0x90
[   25.361991]  ip6t_do_table+0x98d/0x1a30
[   25.365940]  ? kmem_cache_alloc_trace+0x136/0x740
[   25.370755]  ? mld_sendpack+0x617/0xe70
[   25.374699]  ? ip6t_error+0x60/0x60
[   25.378297]  ? check_noncircular+0x20/0x20
[   25.382505]  ? lock_acquire+0x1d5/0x580
[   25.386446]  ? lock_acquire+0x1d5/0x580
[   25.390390]  ? igmp6_mcf_seq_next+0x660/0x660
[   25.394854]  ? lock_release+0xa40/0xa40
[   25.398804]  ip6table_raw_hook+0x65/0x80
[   25.402835]  nf_hook_slow+0xba/0x1a0
[   25.406530]  nf_hook.constprop.37+0x3f6/0x830
[   25.411000]  ? igmp6_mcf_seq_next+0x660/0x660
[   25.415475]  ? trace_hardirqs_on+0xd/0x10
[   25.419606]  ? __local_bh_enable_ip+0x121/0x230
[   25.424244]  ? _raw_spin_unlock_bh+0x30/0x40
[   25.428620]  ? rt6_uncached_list_add+0x1b7/0x240
[   25.433351]  ? rt6_fill_node+0x18b0/0x18b0
[   25.437554]  ? icmp6_dst_alloc+0x475/0x660
[   25.441756]  ? ip6_mc_leave_src+0x1d0/0x1d0
[   25.446047]  ? icmpv6_flow_init+0x1f6/0x270
[   25.450336]  mld_sendpack+0x6c2/0xe70
[   25.454107]  ? nf_hook.constprop.37+0x830/0x830
[   25.458744]  ? mark_held_locks+0xaf/0x100
[   25.462860]  ? trace_hardirqs_on+0xd/0x10
[   25.466977]  ? __local_bh_enable_ip+0x121/0x230
[   25.471613]  mld_ifc_timer_expire+0x3d9/0x770
[   25.476093]  call_timer_fn+0x228/0x820
[   25.479954]  ? mld_dad_timer_expire+0x100/0x100
[   25.484593]  ? process_timeout+0x40/0x40
[   25.488621]  ? __run_timers+0x7e3/0xb70
[   25.492562]  ? lock_downgrade+0x980/0x980
[   25.496677]  ? debug_object_deactivate+0x364/0x560
[   25.501573]  ? lock_release+0xa40/0xa40
[   25.505517]  ? mark_held_locks+0xaf/0x100
[   25.509633]  ? trace_hardirqs_on_caller+0x19e/0x5c0
[   25.514617]  ? mld_dad_timer_expire+0x100/0x100
[   25.519252]  ? mld_dad_timer_expire+0x100/0x100
[   25.523897]  __run_timers+0x7ee/0xb70
[   25.527674]  ? trigger_dyntick_cpu.isra.29+0x150/0x150
[   25.532921]  ? timerqueue_add+0x1e9/0x280
[   25.537037]  ? check_noncircular+0x20/0x20
[   25.541240]  ? enqueue_hrtimer+0x177/0x4b0
[   25.545443]  ? lock_release+0xa40/0xa40
[   25.549385]  ? retrigger_next_event+0x1e0/0x1e0
[   25.554028]  ? print_irqtrace_events+0x270/0x270
[   25.558752]  ? check_noncircular+0x20/0x20
[   25.562963]  ? clockevents_program_event+0x163/0x2e0
[   25.568036]  ? lock_downgrade+0x980/0x980
[   25.572155]  ? __lock_is_held+0xb6/0x140
[   25.576185]  run_timer_softirq+0x4c/0x70
[   25.580214]  __do_softirq+0x2d7/0xb85
[   25.583989]  ? ktime_get+0x26f/0x3a0
[   25.587679]  ? __irqentry_text_end+0x1f8ad4/0x1f8ad4
[   25.592754]  ? check_noncircular+0x20/0x20
[   25.596960]  ? native_apic_msr_write+0x5c/0x80
[   25.601513]  ? lapic_next_event+0x54/0x80
[   25.605631]  ? clockevents_program_event+0x108/0x2e0
[   25.610702]  ? tick_program_event+0x83/0x100
[   25.615080]  ? __lock_is_held+0xb6/0x140
[   25.619112]  irq_exit+0x1cc/0x200
[   25.622536]  smp_apic_timer_interrupt+0x16b/0x700
[   25.627353]  ? smp_call_function_single_interrupt+0x124/0x640
[   25.633211]  ? smp_call_function_single_interrupt+0x640/0x640
[   25.639064]  ? _raw_spin_lock+0x32/0x40
[   25.643007]  ? _raw_spin_unlock+0x22/0x30
[   25.647135]  ? handle_edge_irq+0x2b4/0x7c0
[   25.651346]  ? task_prio+0x50/0x50
[   25.654861]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   25.659673]  apic_timer_interrupt+0x8e/0xa0
[   25.663962]  </IRQ>
[   25.666171] RIP: 0010:kmem_cache_free+0xf2/0x2a0
[   25.670891] RSP: 0018:ffff8801a89cfc88 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff12
[   25.678575] RAX: 0000000000000007 RBX: ffff8801da9c1840 RCX: 0000000000000006
[   25.685813] RDX: 0000000000000000 RSI: 1ffff10036644d23 RDI: 0000000000000282
[   25.693059] RBP: ffff8801a89cfca8 R08: 1ffff10035139f5f R09: 0000000000000000
[   25.700298] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8801d08b9d68
[   25.707537] R13: 0000000000000282 R14: ffffffff819e8062 R15: dffffc0000000000
[   25.714781]  ? remove_vma+0x162/0x1b0
[   25.718552]  remove_vma+0x162/0x1b0
[   25.722146]  do_munmap+0x82a/0xdf0
[   25.725661]  vm_munmap+0x10b/0x180
[   25.729170]  ? do_munmap+0xdf0/0xdf0
[   25.732856]  ? trace_event_raw_event_sys_exit+0x260/0x260
[   25.738360]  ? vm_munmap+0x180/0x180
[   25.742050]  SyS_munmap+0x25/0x30
[   25.745488]  do_syscall_64+0x280/0x940
[   25.749346]  ? __do_page_fault+0xc90/0xc90
[   25.753548]  ? trace_event_raw_event_sys_exit+0x260/0x260
[   25.759060]  ? syscall_return_slowpath+0x550/0x550
[   25.763956]  ? syscall_return_slowpath+0x2ac/0x550
[   25.768864]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[   25.774198]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   25.779022]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[   25.784183] RIP: 0033:0x7f8d7b29cd37
[   25.787861] RSP: 002b:00007ffc9f57beb8 EFLAGS: 00000206 ORIG_RAX: 000000000000000b
[   25.795537] RAX: ffffffffffffffda RBX: 0000000000af3ef0 RCX: 00007f8d7b29cd37
[   25.802776] RDX: 0000000000000000 RSI: 0000000000001000 RDI: 00007f8d7bb93000
[   25.810017] RBP: 000000000000000