[....] Starting enhanced syslogd: rsyslogd[   15.959083] audit: type=1400 audit(1519093028.447:5): avc:  denied  { syslog } for  pid=4017 comm="rsyslogd" capability=34  scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
Starting mcstransd: 
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting file context maintaining daemon: restorecond[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   19.971207] audit: type=1400 audit(1519093032.460:6): avc:  denied  { map } for  pid=4155 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1
Warning: Permanently added '10.128.15.202' (ECDSA) to the list of known hosts.
[   26.229193] audit: type=1400 audit(1519093038.717:7): avc:  denied  { map } for  pid=4169 comm="syz-execprog" path="/root/syz-execprog" dev="sda1" ino=16479 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1
2018/02/20 02:17:18 parsed 1 programs
2018/02/20 02:17:18 executed programs: 0
[   26.492286] audit: type=1400 audit(1519093038.981:8): avc:  denied  { map } for  pid=4169 comm="syz-execprog" path="/root/syzkaller-shm696926345" dev="sda1" ino=16482 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:file_t:s0 tclass=file permissive=1
[   26.507116] IPVS: ftp: loaded support on port[0] = 21
[   26.735494] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   27.136800] 
[   27.138460] =====================================
[   27.143273] WARNING: bad unlock balance detected!
[   27.148087] 4.16.0-rc1+ #232 Not tainted
[   27.152114] -------------------------------------
[   27.156923] kworker/0:1/24 is trying to release lock (rcu_read_lock_bh) at:
[   27.164012] [<ffffffff8478b78b>] hashlimit_mt_common.isra.10+0x1beb/0x2610
[   27.170992] but there are no more locks to release!
[   27.175977] 
[   27.175977] other info that might help us debug this:
[   27.182613] 5 locks held by kworker/0:1/24:
[   27.186899]  #0:  ((wq_completion)"%s"("ipv6_addrconf")){+.+.}, at: [<00000000b34c10dd>] process_one_work+0xaaf/0x1af0
[   27.197714]  #1:  ((work_completion)(&(&ifa->dad_work)->work)){+.+.}, at: [<000000005f245efa>] process_one_work+0xb01/0x1af0
[   27.209046]  #2:  (rtnl_mutex){+.+.}, at: [<0000000006f58da8>] rtnl_lock+0x17/0x20
[   27.216781]  #3:  (rcu_read_lock){....}, at: [<00000000b0d327a2>] ndisc_send_skb+0x826/0x1370
[   27.225432]  #4:  (rcu_read_lock){....}, at: [<00000000dfb2d458>] nf_hook.constprop.27+0x0/0x830
[   27.234345] 
[   27.234345] stack backtrace:
[   27.238816] CPU: 0 PID: 24 Comm: kworker/0:1 Not tainted 4.16.0-rc1+ #232
[   27.245713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   27.255060] Workqueue: ipv6_addrconf addrconf_dad_work
[   27.260307] Call Trace:
[   27.262871]  dump_stack+0x194/0x257
[   27.266469]  ? arch_local_irq_restore+0x53/0x53
[   27.271112]  ? hashlimit_mt_common.isra.10+0x1beb/0x2610
[   27.276538]  print_unlock_imbalance_bug+0x12f/0x140
[   27.281526]  lock_release+0x6fe/0xa40
[   27.285301]  ? hashlimit_mt_common.isra.10+0x1beb/0x2610
[   27.290721]  ? lock_downgrade+0x980/0x980
[   27.294845]  ? lock_release+0xa40/0xa40
[   27.298792]  ? __raw_spin_lock_init+0x1c/0x100
[   27.303346]  ? do_raw_spin_trylock+0x190/0x190
[   27.307904]  hashlimit_mt_common.isra.10+0x1c08/0x2610
[   27.313156]  ? dsthash_find+0x5b0/0x5b0
[   27.317104]  ? __lock_acquire+0x664/0x3e00
[   27.321310]  ? ret_from_fork+0x3a/0x50
[   27.325181]  ? print_irqtrace_events+0x270/0x270
[   27.329911]  ? __unwind_start+0x169/0x330
[   27.334035]  hashlimit_mt+0x78/0x90
[   27.337634]  ? hashlimit_mt+0x78/0x90
[   27.341407]  ip6t_do_table+0x98d/0x1a30
[   27.345356]  ? debug_check_no_locks_freed+0x3c0/0x3c0
[   27.350520]  ? ip6t_error+0x60/0x60
[   27.354119]  ? check_noncircular+0x20/0x20
[   27.358323]  ? lock_acquire+0x1d5/0x580
[   27.362269]  ? lock_acquire+0x1d5/0x580
[   27.366301]  ? pndisc_destructor+0x340/0x340
[   27.370680]  ? lock_release+0xa40/0xa40
[   27.374625]  ip6table_raw_hook+0x65/0x80
[   27.378658]  nf_hook_slow+0xba/0x1a0
[   27.382346]  nf_hook.constprop.27+0x3f6/0x830
[   27.386816]  ? pndisc_destructor+0x340/0x340
[   27.391913]  ? find_held_lock+0x35/0x1d0
[   27.395951]  ? lock_acquire+0x1d5/0x580
[   27.399897]  ? lock_acquire+0x1d5/0x580
[   27.403845]  ? ndisc_send_skb+0x826/0x1370
[   27.408052]  ? lock_downgrade+0x980/0x980
[   27.412171]  ? lock_release+0xa40/0xa40
[   27.416120]  ? ndisc_error_report+0x180/0x180
[   27.420591]  ndisc_send_skb+0xa51/0x1370
[   27.424625]  ? nf_hook.constprop.27+0x830/0x830
[   27.429262]  ? check_noncircular+0x20/0x20
[   27.433469]  ? refcount_add_not_zero+0x133/0x200
[   27.438196]  ? refcount_dec_if_one+0x20/0x20
[   27.442578]  ? print_irqtrace_events+0x270/0x270
[   27.447307]  ndisc_send_ns+0x38a/0x870
[   27.451167]  ? ndisc_netdev_event+0x4a0/0x4a0
[   27.455634]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   27.460625]  ? addrconf_dad_work+0xa5e/0x1320
[   27.465092]  addrconf_dad_work+0xb9e/0x1320
[   27.469385]  ? addrconf_dad_work+0xb9e/0x1320
[   27.473854]  ? addrconf_ifdown+0x14f0/0x14f0
[   27.478234]  ? __lock_is_held+0xb6/0x140
[   27.482273]  process_one_work+0xbbf/0x1af0
[   27.486479]  ? process_one_work+0xbbf/0x1af0
[   27.490863]  ? pwq_dec_nr_in_flight+0x450/0x450
[   27.495509]  ? __schedule+0x8ea/0x2040
[   27.499373]  ? __lock_acquire+0x664/0x3e00
[   27.503580]  ? check_noncircular+0x20/0x20
[   27.507789]  ? check_noncircular+0x20/0x20
[   27.512001]  ? lock_acquire+0x1d5/0x580
[   27.515948]  ? lock_acquire+0x1d5/0x580
[   27.519892]  ? worker_thread+0x4a3/0x1990
[   27.524017]  ? lock_downgrade+0x980/0x980
[   27.528137]  ? lock_release+0xa40/0xa40
[   27.532090]  ? check_noncircular+0x20/0x20
[   27.536294]  ? do_raw_spin_trylock+0x190/0x190
[   27.540849]  worker_thread+0x223/0x1990
[   27.544799]  ? finish_task_switch+0x1e2/0x890
[   27.549270]  ? process_one_work+0x1af0/0x1af0
[   27.553738]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   27.558726]  ? trace_hardirqs_on+0xd/0x10
[   27.562848]  ? mmdrop+0x18/0x30
[   27.566101]  ? finish_task_switch+0x29b/0x890
[   27.570568]  ? copy_overflow+0x20/0x20
[   27.574433]  ? __schedule+0x8ea/0x2040
[   27.578296]  ? check_noncircular+0x20/0x20
[   27.582501]  ? find_held_lock+0x35/0x1d0
[   27.586537]  ? find_held_lock+0x35/0x1d0
[   27.590571]  ? find_held_lock+0x35/0x1d0
[   27.594605]  ? complete+0x62/0x80
[   27.598032]  ? __schedule+0x2040/0x2040
[   27.601978]  ? do_wait_intr_irq+0x3e0/0x3e0
[   27.606269]  ? __lockdep_init_map+0xe4/0x650
[   27.610649]  ? do_raw_spin_trylock+0x190/0x190
[   27.615205]  ? lockdep_init_map+0x9/0x10
[   27.619241]  ? _raw_spin_unlock_irqrestore+0x31/0xba
[   27.624317]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   27.629308]  ? trace_hardirqs_on+0xd/0x10
[   27.633429]  ? __kthread_parkme+0x175/0x240
[   27.637726]  kthread+0x33c/0x400
[   27.641067]  ? process_one_work+0x1af0/0x1af0
[   27.645532]  ? kthread_stop+0x7a0/0x7a0
[   27.649479]  ret_from_fork+0x3a/0x50
2018/02/20 02:17:23 executed programs: 595
2018/02/20 02:17:28 executed programs: 1372