[....] Starting enhanced syslogd: rsyslogd[ 13.377743] audit: type=1400 audit(1517079337.813:5): avc: denied { syslog } for pid=3531 comm="rsyslogd" capability=34 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 18.933224] audit: type=1400 audit(1517079343.369:6): avc: denied { map } for pid=3672 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '10.128.0.49' (ECDSA) to the list of known hosts. net.ipv6.conf.syz0.accept_dad = 0 net.ipv6.conf.syz0.router_solicitations = 0 [ 25.252298] audit: type=1400 audit(1517079349.688:7): avc: denied { map } for pid=3686 comm="syzkaller178355" path="/root/syzkaller178355669" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 RTNETLINK answers: Operation not supported RTNETLINK answers: No buffer space available RTNETLINK answers: Operation not supported [ 25.636611] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument executing program [ 26.023268] [ 26.024911] ====================================================== [ 26.031199] WARNING: possible circular locking dependency detected [ 26.037493] 4.15.0-rc9+ #283 Not tainted [ 26.041520] ------------------------------------------------------ [ 26.047806] syzkaller178355/3686 is trying to acquire lock: [ 26.053494] (rtnl_mutex){+.+.}, at: [<00000000d6a1230d>] rtnl_lock+0x17/0x20 [ 26.060746] [ 26.060746] but task is already holding lock: [ 26.066683] (sk_lock-AF_INET){+.+.}, at: [<00000000c4c30f37>] ip_setsockopt+0x8c/0xb0 [ 26.074712] [ 26.074712] which lock already depends on the new lock. [ 26.074712] [ 26.082995] [ 26.082995] the existing dependency chain (in reverse order) is: [ 26.090583] [ 26.090583] -> #1 (sk_lock-AF_INET){+.+.}: [ 26.096286] lock_sock_nested+0xc2/0x110 [ 26.100837] do_ip_setsockopt.isra.12+0x1d9/0x32e0 [ 26.106253] ip_setsockopt+0x3a/0xb0 [ 26.110457] tcp_setsockopt+0x82/0xd0 [ 26.114750] sock_common_setsockopt+0x95/0xd0 [ 26.119732] SyS_setsockopt+0x189/0x360 [ 26.124210] entry_SYSCALL_64_fastpath+0x29/0xa0 [ 26.129452] [ 26.129452] -> #0 (rtnl_mutex){+.+.}: [ 26.134706] lock_acquire+0x1d5/0x580 [ 26.138994] __mutex_lock+0x16f/0x1a80 [ 26.143370] mutex_lock_nested+0x16/0x20 [ 26.147920] rtnl_lock+0x17/0x20 [ 26.151776] register_netdevice_notifier+0xad/0x860 [ 26.157282] clusterip_tg_check+0xeb9/0x1570 [ 26.162192] xt_check_target+0x22c/0x7d0 [ 26.166743] find_check_entry.isra.8+0x8c8/0xcb0 [ 26.172011] translate_table+0xed1/0x1610 [ 26.176663] do_ipt_set_ctl+0x370/0x5f0 [ 26.181133] nf_setsockopt+0x67/0xc0 [ 26.185339] ip_setsockopt+0xa1/0xb0 [ 26.189544] raw_setsockopt+0xb7/0xd0 [ 26.193836] sock_common_setsockopt+0x95/0xd0 [ 26.198818] SyS_setsockopt+0x189/0x360 [ 26.203281] entry_SYSCALL_64_fastpath+0x29/0xa0 [ 26.208521] [ 26.208521] other info that might help us debug this: [ 26.208521] [ 26.216641] Possible unsafe locking scenario: [ 26.216641] [ 26.222666] CPU0 CPU1 [ 26.227300] ---- ---- [ 26.231934] lock(sk_lock-AF_INET); [ 26.235616] lock(rtnl_mutex); [ 26.241382] lock(sk_lock-AF_INET); [ 26.247582] lock(rtnl_mutex); [ 26.250830] [ 26.250830] *** DEADLOCK *** [ 26.250830] [ 26.256856] 1 lock held by syzkaller178355/3686: [ 26.261580] #0: (sk_lock-AF_INET){+.+.}, at: [<00000000c4c30f37>] ip_setsockopt+0x8c/0xb0 [ 26.270055] [ 26.270055] stack backtrace: [ 26.274520] CPU: 1 PID: 3686 Comm: syzkaller178355 Not tainted 4.15.0-rc9+ #283 [ 26.281933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 26.291255] Call Trace: [ 26.293824] dump_stack+0x194/0x257 [ 26.297421] ? arch_local_irq_restore+0x53/0x53 [ 26.302084] print_circular_bug.isra.37+0x2cd/0x2dc [ 26.307069] ? save_trace+0xe0/0x2b0 [ 26.310751] __lock_acquire+0x30a8/0x3e00 [ 26.314873] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 26.320040] ? trace_hardirqs_off+0x10/0x10 [ 26.324333] ? noop_count+0x40/0x40 [ 26.327928] ? trace_hardirqs_off+0x10/0x10 [ 26.332217] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 26.337373] ? check_noncircular+0x20/0x20 [ 26.341578] ? check_usage+0x22f/0xb60 [ 26.345437] ? trace_raw_output_xdp_redirect_map_err+0x440/0x440 [ 26.351552] ? check_usage+0x22f/0xb60 [ 26.355409] ? check_noncircular+0x20/0x20 [ 26.359615] ? check_noncircular+0x20/0x20 [ 26.363818] ? find_held_lock+0x35/0x1d0 [ 26.367858] ? __bfs+0x2e0/0x750 [ 26.371194] ? __is_insn_slot_addr+0x1fc/0x330 [ 26.375757] lock_acquire+0x1d5/0x580 [ 26.379529] ? lock_acquire+0x1d5/0x580 [ 26.383473] ? rtnl_lock+0x17/0x20 [ 26.386981] ? lock_release+0xa40/0xa40 [ 26.390926] ? trace_event_raw_event_sched_switch+0x800/0x800 [ 26.396788] ? print_irqtrace_events+0x270/0x270 [ 26.401520] ? idr_get_free_cmn+0x64e/0xfd0 [ 26.405810] ? rcu_note_context_switch+0x710/0x710 [ 26.410710] ? __might_sleep+0x95/0x190 [ 26.414654] ? rtnl_lock+0x17/0x20 [ 26.418165] __mutex_lock+0x16f/0x1a80 [ 26.422027] ? rtnl_lock+0x17/0x20 [ 26.425539] ? rtnl_lock+0x17/0x20 [ 26.429059] ? __lock_acquire+0x664/0x3e00 [ 26.433262] ? _raw_spin_unlock_irqrestore+0x31/0xba [ 26.438332] ? mutex_lock_io_nested+0x1900/0x1900 [ 26.443141] ? trace_hardirqs_on+0xd/0x10 [ 26.447260] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 26.452419] ? save_stack+0xa3/0xd0 [ 26.456035] ? kasan_kmalloc+0xad/0xe0 [ 26.459894] ? __proc_create+0x21a/0x880 [ 26.463923] ? proc_create_data+0x76/0x180 [ 26.468129] ? clusterip_tg_check+0xe4d/0x1570 [ 26.472689] ? rb_insert_color+0x1580/0x1580 [ 26.477079] ? do_ipt_set_ctl+0x370/0x5f0 [ 26.481201] ? ip_setsockopt+0xa1/0xb0 [ 26.485060] ? raw_setsockopt+0xb7/0xd0 [ 26.489003] ? sock_common_setsockopt+0x95/0xd0 [ 26.493648] ? SyS_setsockopt+0x189/0x360 [ 26.497766] ? entry_SYSCALL_64_fastpath+0x29/0xa0 [ 26.502666] ? _find_next_bit+0xee/0x120 [ 26.506697] ? check_noncircular+0x20/0x20 [ 26.510900] ? find_first_zero_bit+0x93/0xe0 [ 26.515278] ? ida_get_new_above+0x421/0x9d0 [ 26.519653] ? print_irqtrace_events+0x270/0x270 [ 26.524379] ? check_noncircular+0x20/0x20 [ 26.528583] ? print_irqtrace_events+0x270/0x270 [ 26.533311] ? ida_simple_get+0x15c/0x220 [ 26.537429] ? lock_downgrade+0x980/0x980 [ 26.541547] ? find_held_lock+0x35/0x1d0 [ 26.545577] mutex_lock_nested+0x16/0x20 [ 26.549609] ? mutex_lock_nested+0x16/0x20 [ 26.553815] rtnl_lock+0x17/0x20 [ 26.557149] register_netdevice_notifier+0xad/0x860 [ 26.562137] ? lock_downgrade+0x980/0x980 [ 26.566255] ? __dev_close_many+0x330/0x330 [ 26.570546] ? ida_simple_get+0x176/0x220 [ 26.574666] ? do_raw_write_trylock+0x190/0x190 [ 26.579303] ? ida_remove+0x3f0/0x3f0 [ 26.583814] ? _raw_write_unlock+0x22/0x30 [ 26.588027] ? proc_register+0x261/0x370 [ 26.592059] ? proc_create_data+0x101/0x180 [ 26.596350] clusterip_tg_check+0xeb9/0x1570 [ 26.600731] ? arp_mangle+0x550/0x550 [ 26.604502] ? xt_find_target+0x150/0x1e0 [ 26.608620] ? lock_downgrade+0x980/0x980 [ 26.612737] ? mutex_unlock+0xd/0x10 [ 26.616421] ? ipv4_hooks_register+0x1fb/0x3e0 [ 26.620972] ? ipv4_conntrack_in+0x90/0x90 [ 26.625176] ? ipv4_conntrack_in+0x90/0x90 [ 26.629382] ? nf_ct_netns_do_get+0x20f/0x340 [ 26.633850] ? __mutex_unlock_slowpath+0xe9/0xac0 [ 26.638666] ? __kernel_text_address+0xd/0x40 [ 26.643130] ? wait_for_completion+0x770/0x770 [ 26.647680] ? nf_ct_netns_get+0x35/0x90 [ 26.651711] ? arp_mangle+0x550/0x550 [ 26.655480] xt_check_target+0x22c/0x7d0 [ 26.659510] ? xt_target_seq_next+0x30/0x30 [ 26.663801] ? mutex_unlock+0xd/0x10 [ 26.667486] ? mutex_unlock+0xd/0x10 [ 26.671170] ? xt_find_target+0x17b/0x1e0 [ 26.675293] find_check_entry.isra.8+0x8c8/0xcb0 [ 26.680027] ? ipt_do_table+0x1860/0x1860 [ 26.684146] ? mark_held_locks+0xaf/0x100 [ 26.688265] ? kfree+0xf0/0x260 [ 26.691513] ? trace_hardirqs_on+0xd/0x10 [ 26.695630] translate_table+0xed1/0x1610 [ 26.699750] ? alloc_counters.isra.11+0x7d0/0x7d0 [ 26.704560] ? kasan_check_write+0x14/0x20 [ 26.708763] ? _copy_from_user+0x99/0x110 [ 26.712882] do_ipt_set_ctl+0x370/0x5f0 [ 26.716827] ? translate_compat_table+0x1b90/0x1b90 [ 26.721812] ? mutex_unlock+0xd/0x10 [ 26.725494] ? nf_sockopt_find.constprop.0+0x1a7/0x220 [ 26.730738] nf_setsockopt+0x67/0xc0 [ 26.734421] ip_setsockopt+0xa1/0xb0 [ 26.738131] raw_setsockopt+0xb7/0xd0 [ 26.741905] sock_common_setsockopt+0x95/0xd0 [ 26.746369] SyS_setsockopt+0x189/0x360 [ 26.750312] ? SyS_recv+0x40/0x40 [ 26.753735] ? entry_SYSCALL_64_fastpath+0x5/0xa0 [ 26.758547] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 26.763535] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 26.768261] entry_SYSCALL_64_fastpath+0x29/0xa0 [ 26.772985] RIP: 0033:0x4465c9 [ 26.776153] RSP: 002b:00007ffd9e6921c8 EFLAGS: 00000203 ORIG_RAX: 0000000000000036 [ 26.783852] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 00000000004465c9 [ 26.791093] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000005 [ 26.798336] RBP: 00007ffd9e6922d8 R08: 0000000000000328 R09: 0000000000000000 [ 26.805575] R10: 0000000020397cd8 R11: 0000000000000203 R12: 00007ffd9e6922d8 [ 26.812817] R13: 0000000000403a90 R14: 0000000000000000 R15: 0000000000000000 [ 26.820514] ipt_CLUSTERIP: ipt_CLUSTERIP is deprecated and it will remo