[....] Starting enhanced syslogd: rsyslogd[   14.959318] audit: type=1400 audit(1519105211.852:5): avc:  denied  { syslog } for  pid=3943 comm="rsyslogd" capability=34  scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
Starting mcstransd: 
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting file context maintaining daemon: restorecond[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   18.867881] audit: type=1400 audit(1519105215.760:6): avc:  denied  { map } for  pid=4082 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1
Warning: Permanently added '10.128.0.22' (ECDSA) to the list of known hosts.
[   25.124580] audit: type=1400 audit(1519105222.017:7): avc:  denied  { map } for  pid=4095 comm="syz-execprog" path="/root/syz-execprog" dev="sda1" ino=16479 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1
2018/02/20 05:40:22 parsed 1 programs
2018/02/20 05:40:22 executed programs: 0
[   25.396919] audit: type=1400 audit(1519105222.289:8): avc:  denied  { map } for  pid=4095 comm="syz-execprog" path="/root/syzkaller-shm667916165" dev="sda1" ino=16482 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:file_t:s0 tclass=file permissive=1
[   25.413510] IPVS: ftp: loaded support on port[0] = 21
[   25.633863] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   25.966480] 
[   25.968144] =====================================
[   25.972966] WARNING: bad unlock balance detected!
[   25.977782] 4.16.0-rc2+ #320 Not tainted
[   25.981810] -------------------------------------
[   25.986623] kworker/1:2/1826 is trying to release lock (rcu_read_lock_bh) at:
[   25.993879] [<ffffffff8478ec3b>] hashlimit_mt_common.isra.10+0x1beb/0x2610
[   26.000860] but there are no more locks to release!
[   26.005843] 
[   26.005843] other info that might help us debug this:
[   26.012480] 5 locks held by kworker/1:2/1826:
[   26.016941]  #0:  ((wq_completion)"%s"("ipv6_addrconf")){+.+.}, at: [<00000000bec71552>] process_one_work+0xaaf/0x1af0
[   26.027759]  #1:  ((work_completion)(&(&ifa->dad_work)->work)){+.+.}, at: [<000000006ec1f912>] process_one_work+0xb01/0x1af0
[   26.039094]  #2:  (rtnl_mutex){+.+.}, at: [<0000000002ec2f13>] rtnl_lock+0x17/0x20
[   26.046781]  #3:  (rcu_read_lock){....}, at: [<00000000af230ca1>] ndisc_send_skb+0x826/0x1370
[   26.055421]  #4:  (rcu_read_lock){....}, at: [<000000008bd5a6a8>] nf_hook.constprop.27+0x0/0x830
[   26.064325] 
[   26.064325] stack backtrace:
[   26.068795] CPU: 1 PID: 1826 Comm: kworker/1:2 Not tainted 4.16.0-rc2+ #320
[   26.075862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   26.085198] Workqueue: ipv6_addrconf addrconf_dad_work
[   26.090447] Call Trace:
[   26.093012]  dump_stack+0x194/0x257
[   26.096613]  ? arch_local_irq_restore+0x53/0x53
[   26.101256]  ? hashlimit_mt_common.isra.10+0x1beb/0x2610
[   26.106683]  print_unlock_imbalance_bug+0x12f/0x140
[   26.111670]  lock_release+0x6fe/0xa40
[   26.115443]  ? hashlimit_mt_common.isra.10+0x1beb/0x2610
[   26.120865]  ? lock_downgrade+0x980/0x980
[   26.124985]  ? lock_release+0xa40/0xa40
[   26.128931]  ? __raw_spin_lock_init+0x1c/0x100
[   26.133484]  ? do_raw_spin_trylock+0x190/0x190
[   26.138040]  hashlimit_mt_common.isra.10+0x1c08/0x2610
[   26.143291]  ? dsthash_find+0x5b0/0x5b0
[   26.147242]  ? __lock_acquire+0x664/0x3e00
[   26.151452]  ? ret_from_fork+0x3a/0x50
[   26.155321]  ? print_irqtrace_events+0x270/0x270
[   26.160051]  ? __unwind_start+0x169/0x330
[   26.164175]  hashlimit_mt+0x78/0x90
[   26.167774]  ? hashlimit_mt+0x78/0x90
[   26.171659]  ip6t_do_table+0x98d/0x1a30
[   26.175610]  ? debug_check_no_locks_freed+0x3c0/0x3c0
[   26.180772]  ? ip6t_error+0x60/0x60
[   26.184373]  ? check_noncircular+0x20/0x20
[   26.188578]  ? lock_acquire+0x1d5/0x580
[   26.192523]  ? lock_acquire+0x1d5/0x580
[   26.196467]  ? pndisc_destructor+0x340/0x340
[   26.200848]  ? lock_release+0xa40/0xa40
[   26.204795]  ip6table_raw_hook+0x65/0x80
[   26.208831]  nf_hook_slow+0xba/0x1a0
[   26.212516]  nf_hook.constprop.27+0x3f6/0x830
[   26.216982]  ? pndisc_destructor+0x340/0x340
[   26.221361]  ? find_held_lock+0x35/0x1d0
[   26.225393]  ? lock_acquire+0x1d5/0x580
[   26.229338]  ? lock_acquire+0x1d5/0x580
[   26.233282]  ? ndisc_send_skb+0x826/0x1370
[   26.237489]  ? lock_downgrade+0x980/0x980
[   26.241695]  ? lock_release+0xa40/0xa40
[   26.245641]  ? ndisc_error_report+0x180/0x180
[   26.250195]  ndisc_send_skb+0xa51/0x1370
[   26.254230]  ? nf_hook.constprop.27+0x830/0x830
[   26.258868]  ? check_noncircular+0x20/0x20
[   26.263079]  ? refcount_add_not_zero+0x133/0x200
[   26.267808]  ? refcount_dec_if_one+0x20/0x20
[   26.272196]  ? print_irqtrace_events+0x270/0x270
[   26.276927]  ndisc_send_ns+0x38a/0x870
[   26.280790]  ? ndisc_netdev_event+0x4a0/0x4a0
[   26.285260]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   26.290246]  ? addrconf_dad_work+0xa5e/0x1320
[   26.294716]  addrconf_dad_work+0xb9e/0x1320
[   26.299012]  ? addrconf_dad_work+0xb9e/0x1320
[   26.303479]  ? addrconf_ifdown+0x14f0/0x14f0
[   26.307869]  ? __lock_is_held+0xb6/0x140
[   26.311910]  process_one_work+0xbbf/0x1af0
[   26.316115]  ? process_one_work+0xbbf/0x1af0
[   26.320499]  ? pwq_dec_nr_in_flight+0x450/0x450
[   26.325141]  ? __schedule+0x90d/0x2070
[   26.329008]  ? __lock_acquire+0x664/0x3e00
[   26.333216]  ? __lock_is_held+0xb6/0x140
[   26.337250]  ? check_noncircular+0x20/0x20
[   26.341458]  ? check_noncircular+0x20/0x20
[   26.345666]  ? lock_acquire+0x1d5/0x580
[   26.349612]  ? lock_acquire+0x1d5/0x580
[   26.353558]  ? worker_thread+0x4a3/0x1990
[   26.357679]  ? lock_downgrade+0x980/0x980
[   26.361798]  ? lock_release+0xa40/0xa40
[   26.365747]  ? do_raw_spin_trylock+0x190/0x190
[   26.370306]  worker_thread+0x223/0x1990
[   26.374252]  ? finish_task_switch+0x1c0/0x860
[   26.378724]  ? process_one_work+0x1af0/0x1af0
[   26.383279]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   26.388270]  ? trace_hardirqs_on+0xd/0x10
[   26.392393]  ? mmdrop+0x18/0x30
[   26.395645]  ? finish_task_switch+0x279/0x860
[   26.400111]  ? copy_overflow+0x20/0x20
[   26.403997]  ? __schedule+0x90d/0x2070
[   26.407869]  ? check_noncircular+0x20/0x20
[   26.412074]  ? find_held_lock+0x35/0x1d0
[   26.416108]  ? find_held_lock+0x35/0x1d0
[   26.420137]  ? find_held_lock+0x35/0x1d0
[   26.424167]  ? complete+0x62/0x80
[   26.427590]  ? __schedule+0x2070/0x2070
[   26.431531]  ? do_wait_intr_irq+0x3e0/0x3e0
[   26.435819]  ? __lockdep_init_map+0xe4/0x650
[   26.440199]  ? do_raw_spin_trylock+0x190/0x190
[   26.444748]  ? lockdep_init_map+0x9/0x10
[   26.448780]  ? _raw_spin_unlock_irqrestore+0x31/0xba
[   26.453855]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   26.458841]  ? trace_hardirqs_on+0xd/0x10
[   26.462962]  ? __kthread_parkme+0x175/0x240
[   26.467277]  kthread+0x33c/0x400
[   26.470660]  ? process_one_work+0x1af0/0x1af0
[   26.475123]  ? kthread_stop+0x7a0/0x7a0
[   26.479065]  ret_from_fork+0x3a/0x50
2018/02/20 05:40:27 executed programs: 482
2018/02/20 05:40:32 executed programs: 1169