[....] Starting enhanced syslogd: rsyslogd[   16.148514] audit: type=1400 audit(1519096253.489:5): avc:  denied  { syslog } for  pid=4019 comm="rsyslogd" capability=34  scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
Starting mcstransd: 
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting file context maintaining daemon: restorecond[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   19.202420] audit: type=1400 audit(1519096256.543:6): avc:  denied  { map } for  pid=4159 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1
Warning: Permanently added '10.128.0.51' (ECDSA) to the list of known hosts.
[   25.473382] audit: type=1400 audit(1519096262.814:7): avc:  denied  { map } for  pid=4173 comm="syz-execprog" path="/root/syz-execprog" dev="sda1" ino=16479 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1
2018/02/20 03:11:03 parsed 1 programs
2018/02/20 03:11:03 executed programs: 0
[   25.775547] audit: type=1400 audit(1519096263.116:8): avc:  denied  { map } for  pid=4173 comm="syz-execprog" path="/root/syzkaller-shm177359112" dev="sda1" ino=16482 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:file_t:s0 tclass=file permissive=1
[   25.788701] IPVS: ftp: loaded support on port[0] = 21
[   26.012932] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   26.592422] 
[   26.594080] =====================================
[   26.598889] WARNING: bad unlock balance detected!
[   26.603700] 4.16.0-rc2+ #320 Not tainted
[   26.607724] -------------------------------------
[   26.612532] swapper/0/0 is trying to release lock (rcu_read_lock_bh) at:
[   26.619347] [<ffffffff8478ec3b>] hashlimit_mt_common.isra.10+0x1beb/0x2610
[   26.626323] but there are no more locks to release!
[   26.631302] 
[   26.631302] other info that might help us debug this:
[   26.637934] 3 locks held by swapper/0/0:
[   26.641977]  #0:  ((&idev->mc_ifc_timer)){+.-.}, at: [<000000004ff31c43>] call_timer_fn+0x1c6/0x820
[   26.651140]  #1:  (rcu_read_lock){....}, at: [<00000000a3e45091>] mld_sendpack+0x180/0xe70
[   26.659517]  #2:  (rcu_read_lock){....}, at: [<000000000b79b95b>] nf_hook.constprop.37+0x0/0x830
[   26.668421] 
[   26.668421] stack backtrace:
[   26.672886] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 4.16.0-rc2+ #320
[   26.679516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   26.688844] Call Trace:
[   26.691395]  <IRQ>
[   26.693517]  dump_stack+0x194/0x257
[   26.697112]  ? arch_local_irq_restore+0x53/0x53
[   26.701749]  ? hashlimit_mt_common.isra.10+0x1beb/0x2610
[   26.707176]  print_unlock_imbalance_bug+0x12f/0x140
[   26.712161]  lock_release+0x6fe/0xa40
[   26.715931]  ? hashlimit_mt_common.isra.10+0x1beb/0x2610
[   26.721351]  ? lock_downgrade+0x980/0x980
[   26.725469]  ? lock_release+0xa40/0xa40
[   26.729411]  ? __raw_spin_lock_init+0x1c/0x100
[   26.733961]  ? do_raw_spin_trylock+0x190/0x190
[   26.738515]  hashlimit_mt_common.isra.10+0x1c08/0x2610
[   26.743761]  ? lock_downgrade+0x980/0x980
[   26.747881]  ? dsthash_find+0x5b0/0x5b0
[   26.751826]  ? __lock_acquire+0x664/0x3e00
[   26.756046]  ? is_bpf_text_address+0x7b/0x120
[   26.760515]  ? lock_downgrade+0x95a/0x980
[   26.764635]  ? unwind_dump+0x4d0/0x4d0
[   26.768497]  ? rcutorture_record_progress+0x10/0x10
[   26.773486]  ? x86_64_start_kernel+0x77/0x7a
[   26.777864]  hashlimit_mt+0x78/0x90
[   26.781459]  ? hashlimit_mt+0x78/0x90
[   26.785229]  ip6t_do_table+0x98d/0x1a30
[   26.789175]  ? kmem_cache_alloc_trace+0x136/0x740
[   26.793987]  ? mld_sendpack+0x617/0xe70
[   26.797932]  ? ip6t_error+0x60/0x60
[   26.801530]  ? check_noncircular+0x20/0x20
[   26.805999]  ? lock_acquire+0x1d5/0x580
[   26.809947]  ? lock_acquire+0x1d5/0x580
[   26.813891]  ? igmp6_mcf_seq_next+0x660/0x660
[   26.818354]  ? lock_release+0xa40/0xa40
[   26.822297]  ip6table_raw_hook+0x65/0x80
[   26.826327]  nf_hook_slow+0xba/0x1a0
[   26.830013]  nf_hook.constprop.37+0x3f6/0x830
[   26.834483]  ? igmp6_mcf_seq_next+0x660/0x660
[   26.838954]  ? trace_hardirqs_on+0xd/0x10
[   26.843074]  ? __local_bh_enable_ip+0x121/0x230
[   26.847717]  ? _raw_spin_unlock_bh+0x30/0x40
[   26.852097]  ? rt6_uncached_list_add+0x1b7/0x240
[   26.856820]  ? rt6_fill_node+0x18b0/0x18b0
[   26.861028]  ? icmp6_dst_alloc+0x475/0x660
[   26.865233]  ? ip6_mc_leave_src+0x1d0/0x1d0
[   26.869523]  ? icmpv6_flow_init+0x1f6/0x270
[   26.873815]  mld_sendpack+0x6c2/0xe70
[   26.877585]  ? nf_hook.constprop.37+0x830/0x830
[   26.882223]  ? mark_held_locks+0xaf/0x100
[   26.886340]  ? trace_hardirqs_on+0xd/0x10
[   26.890455]  ? __local_bh_enable_ip+0x121/0x230
[   26.895097]  mld_ifc_timer_expire+0x3d9/0x770
[   26.899582]  call_timer_fn+0x228/0x820
[   26.903449]  ? mld_dad_timer_expire+0x100/0x100
[   26.908085]  ? process_timeout+0x40/0x40
[   26.912114]  ? __run_timers+0x7e3/0xb70
[   26.916059]  ? lock_downgrade+0x980/0x980
[   26.920184]  ? debug_object_deactivate+0x364/0x560
[   26.925097]  ? lock_release+0xa40/0xa40
[   26.929054]  ? do_raw_spin_trylock+0x190/0x190
[   26.933607]  ? trace_hardirqs_on_caller+0x19e/0x5c0
[   26.938597]  ? mld_dad_timer_expire+0x100/0x100
[   26.943233]  ? mld_dad_timer_expire+0x100/0x100
[   26.947872]  __run_timers+0x7ee/0xb70
[   26.951644]  ? trigger_dyntick_cpu.isra.29+0x150/0x150
[   26.956888]  ? timerqueue_add+0x1e9/0x280
[   26.961011]  ? check_noncircular+0x20/0x20
[   26.965218]  ? enqueue_hrtimer+0x177/0x4b0
[   26.969420]  ? lock_release+0xa40/0xa40
[   26.973359]  ? retrigger_next_event+0x1e0/0x1e0
[   26.977997]  ? find_held_lock+0x35/0x1d0
[   26.982032]  ? clockevents_program_event+0x163/0x2e0
[   26.987101]  ? lock_downgrade+0x980/0x980
[   26.991223]  ? rcu_pm_notify+0xc0/0xc0
[   26.995082]  run_timer_softirq+0x4c/0x70
[   26.999112]  __do_softirq+0x2d7/0xb85
[   27.002879]  ? ktime_get+0x26f/0x3a0
[   27.006560]  ? __irqentry_text_end+0x1f8ad4/0x1f8ad4
[   27.011633]  ? do_timer+0x50/0x50
[   27.015054]  ? native_apic_msr_write+0x5c/0x80
[   27.019611]  ? lapic_next_event+0x54/0x80
[   27.023726]  ? clockevents_program_event+0x108/0x2e0
[   27.028798]  ? tick_program_event+0x83/0x100
[   27.033174]  ? rcu_pm_notify+0xc0/0xc0
[   27.037038]  irq_exit+0x1cc/0x200
[   27.040460]  smp_apic_timer_interrupt+0x16b/0x700
[   27.045270]  ? smp_reschedule_interrupt+0xe6/0x650
[   27.050168]  ? smp_call_function_single_interrupt+0x640/0x640
[   27.056022]  ? _raw_spin_lock+0x32/0x40
[   27.059965]  ? _raw_spin_unlock+0x22/0x30
[   27.064084]  ? handle_edge_irq+0x2b4/0x7c0
[   27.068288]  ? task_prio+0x50/0x50
[   27.071798]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   27.076616]  apic_timer_interrupt+0x8e/0xa0
[   27.080906]  </IRQ>
[   27.083119] RIP: 0010:native_safe_halt+0x6/0x10
[   27.087756] RSP: 0018:ffffffff86a07c38 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff12
[   27.095434] RAX: dffffc0000000000 RBX: 1ffffffff0d40f8a RCX: 0000000000000000
[   27.102680] RDX: 1ffffffff0d592d8 RSI: 0000000000000001 RDI: ffffffff86ac96c0
[   27.109925] RBP: ffffffff86a07c38 R08: 0000000000000000 R09: 0000000000000000
[   27.117165] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[   27.124404] R13: ffffffff86a07cf0 R14: ffffffff8726ac60 R15: 0000000000000000
[   27.131654]  ? trace_hardirqs_on+0xd/0x10
[   27.135781]  default_idle+0xbf/0x430
[   27.139469]  ? __sched_text_end+0x4/0x4
[   27.143414]  ? rcu_eqs_special_set+0x1e0/0x1e0
[   27.147963]  ? tsc_verify_tsc_adjust+0xf6/0x3e0
[   27.152600]  ? set_cpu_sd_state_idle+0x1dc/0x2d0
[   27.157323]  ? mark_tsc_async_resets+0x30/0x30
[   27.161873]  arch_cpu_idle+0xa/0x10
[   27.165475]  default_idle_call+0x36/0x90
[   27.169502]  do_idle+0x24a/0x3b0
[   27.172840]  cpu_startup_entry+0x104/0x120
[   27.177042]  ? cpu_in_idle+0x20/0x20
[   27.180724]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   27.185708]  ? trace_hardirqs_on+0xd/0x10
[   27.189825]  rest_init+0xed/0xf0
[   27.193159]  start_kernel+0x7f1/0x819
[   27.196929]  ? mem_encrypt_init+0xb/0xb
[   27.200868]  ? early_idt_handler_common+0x3b/0x60
[   27.205684]  ? x86_family+0x32/0x40
[   27.209278]  x86_64_start_reservations+0x2a/0x2c
[   27.214001]  x86_64_start_kernel+0x77/0x7a
[   27.218210]  secondary_startup_64+0xa5/0xb0
2018/02/20 03:11:08 executed programs: 567
2018/02/20 03:11:13 executed programs: 1339