[....] Starting enhanced syslogd: rsyslogd[   18.119007] audit: type=1400 audit(1519116573.696:5): avc:  denied  { syslog } for  pid=4055 comm="rsyslogd" capability=34  scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
Starting mcstransd: 
[....] Starting file context maintaining daemon: restorecond[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   23.686948] audit: type=1400 audit(1519116579.264:6): avc:  denied  { map } for  pid=4195 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1
Warning: Permanently added '10.128.0.9' (ECDSA) to the list of known hosts.
[   29.970918] audit: type=1400 audit(1519116585.548:7): avc:  denied  { map } for  pid=4209 comm="syz-execprog" path="/root/syz-execprog" dev="sda1" ino=16479 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1
2018/02/20 08:49:45 parsed 1 programs
2018/02/20 08:49:45 executed programs: 0
[   30.237496] audit: type=1400 audit(1519116585.815:8): avc:  denied  { map } for  pid=4209 comm="syz-execprog" path="/root/syzkaller-shm368048369" dev="sda1" ino=16482 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:file_t:s0 tclass=file permissive=1
[   30.253519] IPVS: ftp: loaded support on port[0] = 21
[   30.484879] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   31.647556] 
[   31.649201] =====================================
[   31.654027] WARNING: bad unlock balance detected!
[   31.658840] 4.16.0-rc2+ #320 Not tainted
[   31.662869] -------------------------------------
[   31.667683] kworker/0:1/24 is trying to release lock (rcu_read_lock_bh) at:
[   31.674772] [<ffffffff8478ec3b>] hashlimit_mt_common.isra.10+0x1beb/0x2610
[   31.681754] but there are no more locks to release!
[   31.686737] 
[   31.686737] other info that might help us debug this:
[   31.693374] 5 locks held by kworker/0:1/24:
[   31.697664]  #0:  ((wq_completion)"%s"("ipv6_addrconf")){+.+.}, at: [<000000007a44e9b0>] process_one_work+0xaaf/0x1af0
[   31.708484]  #1:  ((work_completion)(&(&ifa->dad_work)->work)){+.+.}, at: [<00000000637fcfb7>] process_one_work+0xb01/0x1af0
[   31.719818]  #2:  (rtnl_mutex){+.+.}, at: [<000000005fbb3e74>] rtnl_lock+0x17/0x20
[   31.727505]  #3:  (rcu_read_lock){....}, at: [<000000001092961b>] ndisc_send_skb+0x826/0x1370
[   31.736151]  #4:  (rcu_read_lock){....}, at: [<00000000c6bb21ef>] nf_hook.constprop.27+0x0/0x830
[   31.745059] 
[   31.745059] stack backtrace:
[   31.749531] CPU: 0 PID: 24 Comm: kworker/0:1 Not tainted 4.16.0-rc2+ #320
[   31.756429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   31.765765] Workqueue: ipv6_addrconf addrconf_dad_work
[   31.771016] Call Trace:
[   31.773579]  dump_stack+0x194/0x257
[   31.777179]  ? arch_local_irq_restore+0x53/0x53
[   31.781827]  ? hashlimit_mt_common.isra.10+0x1beb/0x2610
[   31.787254]  print_unlock_imbalance_bug+0x12f/0x140
[   31.792245]  lock_release+0x6fe/0xa40
[   31.796022]  ? hashlimit_mt_common.isra.10+0x1beb/0x2610
[   31.801447]  ? lock_downgrade+0x980/0x980
[   31.805568]  ? lock_release+0xa40/0xa40
[   31.809515]  ? __raw_spin_lock_init+0x1c/0x100
[   31.814072]  ? do_raw_spin_trylock+0x190/0x190
[   31.818635]  hashlimit_mt_common.isra.10+0x1c08/0x2610
[   31.823888]  ? dsthash_find+0x5b0/0x5b0
[   31.827834]  ? __lock_acquire+0x664/0x3e00
[   31.832044]  ? ret_from_fork+0x3a/0x50
[   31.835913]  ? print_irqtrace_events+0x270/0x270
[   31.840651]  ? __unwind_start+0x169/0x330
[   31.844775]  hashlimit_mt+0x78/0x90
[   31.848373]  ? hashlimit_mt+0x78/0x90
[   31.852147]  ip6t_do_table+0x98d/0x1a30
[   31.856099]  ? debug_check_no_locks_freed+0x3c0/0x3c0
[   31.861265]  ? ip6t_error+0x60/0x60
[   31.864865]  ? check_noncircular+0x20/0x20
[   31.869075]  ? lock_acquire+0x1d5/0x580
[   31.873027]  ? lock_acquire+0x1d5/0x580
[   31.877000]  ? pndisc_destructor+0x340/0x340
[   31.881388]  ? lock_release+0xa40/0xa40
[   31.885339]  ip6table_raw_hook+0x65/0x80
[   31.889386]  nf_hook_slow+0xba/0x1a0
[   31.893080]  nf_hook.constprop.27+0x3f6/0x830
[   31.897552]  ? pndisc_destructor+0x340/0x340
[   31.901933]  ? find_held_lock+0x35/0x1d0
[   31.905967]  ? lock_acquire+0x1d5/0x580
[   31.909915]  ? lock_acquire+0x1d5/0x580
[   31.913863]  ? ndisc_send_skb+0x826/0x1370
[   31.918075]  ? lock_downgrade+0x980/0x980
[   31.922201]  ? lock_release+0xa40/0xa40
[   31.926150]  ? ndisc_error_report+0x180/0x180
[   31.930626]  ndisc_send_skb+0xa51/0x1370
[   31.934666]  ? nf_hook.constprop.27+0x830/0x830
[   31.939312]  ? check_noncircular+0x20/0x20
[   31.943523]  ? refcount_add_not_zero+0x133/0x200
[   31.948251]  ? refcount_dec_if_one+0x20/0x20
[   31.952634]  ? print_irqtrace_events+0x270/0x270
[   31.957370]  ndisc_send_ns+0x38a/0x870
[   31.961234]  ? ndisc_netdev_event+0x4a0/0x4a0
[   31.965708]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   31.970702]  ? addrconf_dad_work+0xa5e/0x1320
[   31.975171]  addrconf_dad_work+0xb9e/0x1320
[   31.979469]  ? addrconf_dad_work+0xb9e/0x1320
[   31.983941]  ? addrconf_ifdown+0x14f0/0x14f0
[   31.988324]  ? __lock_is_held+0xb6/0x140
[   31.992369]  process_one_work+0xbbf/0x1af0
[   31.996576]  ? process_one_work+0xbbf/0x1af0
[   32.000961]  ? pwq_dec_nr_in_flight+0x450/0x450
[   32.005607]  ? __schedule+0x90d/0x2070
[   32.009474]  ? __lock_acquire+0x664/0x3e00
[   32.013685]  ? check_noncircular+0x20/0x20
[   32.017896]  ? check_noncircular+0x20/0x20
[   32.022111]  ? lock_acquire+0x1d5/0x580
[   32.026059]  ? lock_acquire+0x1d5/0x580
[   32.030007]  ? worker_thread+0x4a3/0x1990
[   32.034134]  ? lock_downgrade+0x980/0x980
[   32.038258]  ? lock_release+0xa40/0xa40
[   32.042212]  ? do_raw_spin_trylock+0x190/0x190
[   32.046772]  worker_thread+0x223/0x1990
[   32.050720]  ? finish_task_switch+0x1c0/0x860
[   32.055197]  ? process_one_work+0x1af0/0x1af0
[   32.059668]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   32.064660]  ? trace_hardirqs_on+0xd/0x10
[   32.068780]  ? mmdrop+0x18/0x30
[   32.072033]  ? finish_task_switch+0x279/0x860
[   32.076503]  ? copy_overflow+0x20/0x20
[   32.080369]  ? __schedule+0x90d/0x2070
[   32.084234]  ? check_noncircular+0x20/0x20
[   32.088445]  ? find_held_lock+0x35/0x1d0
[   32.092482]  ? find_held_lock+0x35/0x1d0
[   32.096519]  ? find_held_lock+0x35/0x1d0
[   32.100554]  ? complete+0x62/0x80
[   32.103982]  ? __schedule+0x2070/0x2070
[   32.107936]  ? do_wait_intr_irq+0x3e0/0x3e0
[   32.112231]  ? __lockdep_init_map+0xe4/0x650
[   32.116614]  ? do_raw_spin_trylock+0x190/0x190
[   32.121170]  ? lockdep_init_map+0x9/0x10
[   32.125207]  ? _raw_spin_unlock_irqrestore+0x31/0xba
[   32.130292]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   32.135285]  ? trace_hardirqs_on+0xd/0x10
[   32.139408]  ? __kthread_parkme+0x175/0x240
[   32.143704]  kthread+0x33c/0x400
[   32.147043]  ? process_one_work+0x1af0/0x1af0
[   32.151510]  ? kthread_stop+0x7a0/0x7a0
[   32.155459]  ret_from_fork+0x3a/0x50
2018/02/20 08:49:50 executed programs: 458
2018/02/20 08:49:55 executed programs: 1128