[....] Starting enhanced syslogd: rsyslogd[ 12.855774] audit: type=1400 audit(1516422523.357:5): avc: denied { syslog } for pid=3504 comm="rsyslogd" capability=34 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 18.983732] audit: type=1400 audit(1516422529.485:6): avc: denied { map } for pid=3645 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '10.128.15.219' (ECDSA) to the list of known hosts. executing program [ 25.194607] audit: type=1400 audit(1516422535.696:7): avc: denied { map } for pid=3659 comm="syzkaller490922" path="/root/syzkaller490922433" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 25.197925] [ 25.223198] ============================================ [ 25.228615] WARNING: possible recursive locking detected [ 25.234035] 4.15.0-rc8-next-20180119+ #102 Not tainted [ 25.239277] -------------------------------------------- [ 25.244694] syzkaller490922/3659 is trying to acquire lock: [ 25.250370] (&vq->mutex){+.+.}, at: [<000000004ccf4c5d>] vhost_chr_write_iter+0x278/0x1580 [ 25.258837] [ 25.258837] but task is already holding lock: [ 25.264774] (&vq->mutex){+.+.}, at: [<000000004ccf4c5d>] vhost_chr_write_iter+0x278/0x1580 [ 25.273497] [ 25.273497] other info that might help us debug this: [ 25.280128] Possible unsafe locking scenario: [ 25.280128] [ 25.286160] CPU0 [ 25.288715] ---- [ 25.291265] lock(&vq->mutex); [ 25.294514] lock(&vq->mutex); [ 25.297761] [ 25.297761] *** DEADLOCK *** [ 25.297761] [ 25.303788] May be due to missing lock nesting notation [ 25.303788] [ 25.311117] 1 lock held by syzkaller490922/3659: [ 25.315839] #0: (&vq->mutex){+.+.}, at: [<000000004ccf4c5d>] vhost_chr_write_iter+0x278/0x1580 [ 25.325441] [ 25.325441] stack backtrace: [ 25.329919] CPU: 1 PID: 3659 Comm: syzkaller490922 Not tainted 4.15.0-rc8-next-20180119+ #102 [ 25.338566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 25.347902] Call Trace: [ 25.350465] dump_stack+0x194/0x257 [ 25.354070] ? arch_local_irq_restore+0x53/0x53 [ 25.358711] __lock_acquire+0xe8f/0x3e00 [ 25.362744] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 25.367903] ? __lock_acquire+0x664/0x3e00 [ 25.372108] ? find_held_lock+0x35/0x1d0 [ 25.376140] ? check_noncircular+0x20/0x20 [ 25.380345] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 25.385505] ? print_irqtrace_events+0x270/0x270 [ 25.390229] ? find_held_lock+0x35/0x1d0 [ 25.394261] ? print_irqtrace_events+0x270/0x270 [ 25.398989] ? is_bpf_text_address+0x7b/0x120 [ 25.403453] ? check_noncircular+0x20/0x20 [ 25.407658] ? check_noncircular+0x20/0x20 [ 25.411874] ? __lock_acquire+0x664/0x3e00 [ 25.416080] ? find_held_lock+0x35/0x1d0 [ 25.420115] lock_acquire+0x1d5/0x580 [ 25.423890] ? lock_acquire+0x1d5/0x580 [ 25.427835] ? vhost_chr_write_iter+0x278/0x1580 [ 25.432567] ? lock_release+0xa40/0xa40 [ 25.436512] ? trace_event_raw_event_sched_switch+0x800/0x800 [ 25.442367] ? __lru_cache_add+0x2a6/0x410 [ 25.446571] ? rcu_note_context_switch+0x710/0x710 [ 25.451470] ? __might_sleep+0x95/0x190 [ 25.455416] ? vhost_chr_write_iter+0x278/0x1580 [ 25.460152] __mutex_lock+0x16f/0x1a80 [ 25.464008] ? vhost_chr_write_iter+0x278/0x1580 [ 25.468735] ? vhost_chr_write_iter+0x278/0x1580 [ 25.473461] ? mutex_lock_io_nested+0x1900/0x1900 [ 25.478970] ? mem_cgroup_css_online+0x2e0/0x2e0 [ 25.483695] ? check_noncircular+0x20/0x20 [ 25.487898] ? __mem_cgroup_threshold+0x8f0/0x8f0 [ 25.492720] ? find_held_lock+0x35/0x1d0 [ 25.496753] ? __might_fault+0x110/0x1d0 [ 25.500786] ? lock_downgrade+0x980/0x980 [ 25.504904] ? lock_release+0xa40/0xa40 [ 25.508848] ? trace_event_raw_event_sched_switch+0x800/0x800 [ 25.514705] ? lock_release+0xa40/0xa40 [ 25.518650] ? __might_sleep+0x95/0x190 [ 25.522608] ? kasan_check_write+0x14/0x20 [ 25.526821] ? copyin+0x91/0xb0 [ 25.530071] ? _copy_from_iter+0x367/0xf30 [ 25.534277] ? _raw_spin_unlock+0x22/0x30 [ 25.538395] ? __handle_mm_fault+0x80e/0x3ce0 [ 25.543731] ? copy_page_to_iter+0xe00/0xe00 [ 25.550016] ? check_noncircular+0x20/0x20 [ 25.554236] mutex_lock_nested+0x16/0x20 [ 25.558265] ? mutex_lock_nested+0x16/0x20 [ 25.562470] vhost_chr_write_iter+0x278/0x1580 [ 25.567035] ? handle_mm_fault+0x2a0/0x930 [ 25.571942] ? match_held_lock+0x7f3/0x880 [ 25.576155] ? vhost_new_umem_range+0x740/0x740 [ 25.580800] ? __do_page_fault+0x5f7/0xc90 [ 25.585018] vhost_net_chr_write_iter+0x59/0x70 [ 25.589665] __vfs_write+0x684/0x970 [ 25.593366] ? kernel_read+0x120/0x120 [ 25.598959] ? _cond_resched+0x14/0x30 [ 25.603599] ? avc_policy_seqno+0x9/0x20 [ 25.607629] ? selinux_file_permission+0x82/0x460 [ 25.612442] ? rw_verify_area+0xe5/0x2b0 [ 25.616476] ? __fdget_raw+0x20/0x20 [ 25.620158] vfs_write+0x189/0x510 [ 25.623668] SyS_write+0xef/0x220 [ 25.627090] ? filp_open+0x70/0x70 [ 25.630598] ? SyS_read+0x220/0x220 [ 25.634194] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 25.639181] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 25.643908] entry_SYSCALL_64_fastpath+0x29/0xa0 [ 25.648631] RIP: 0033:0x43fd79 [ 25.651790] RSP: 002b:00007ffd2d9ea078 EFLAGS: 00000203 ORIG_RAX: 0000000000000001 [ 25.659466] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 000000000043fd79 [ 25.666715] RDX: 0000000000000068 RSI: 0000000020e42000 RDI: 0000000000000003 [ 25.675865] RBP: 00000000006ca018 R08: 0000000000000000 R09: 0000000000000000 [ 25.683105] R10: 0000000000000000 R11: 0000000000000203 R12: 00000000004016a0 [ 25.690354] R13: 0000000000401730 R14: 0000000000000000 R15: 0000000000000000