[....] Starting enhanced syslogd: rsyslogd[ 12.925716] audit: type=1400 audit(1514923301.979:4): avc: denied { syslog } for pid=3174 comm="rsyslogd" capability=34 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.15.210' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program syzkaller login: [ 24.425834] [ 24.427475] ===================================== [ 24.432282] [ BUG: bad unlock balance detected! ] [ 24.437123] 4.9.73-gf3f3457 #11 Not tainted [ 24.441587] ------------------------------------- [ 24.446403] syzkaller114800/3393 is trying to release lock (mrt_lock) at: [ 24.453545] [] ipmr_mfc_seq_stop+0xe4/0x140 [ 24.459399] but there are no more locks to release! [ 24.464395] [ 24.464395] other info that might help us debug this: [ 24.471039] 1 lock held by syzkaller114800/3393: [ 24.475768] #0: (&p->lock){+.+.+.}, at: [] seq_read+0xdd/0x1290 [ 24.484009] [ 24.484009] stack backtrace: [ 24.489345] CPU: 1 PID: 3393 Comm: syzkaller114800 Not tainted 4.9.73-gf3f3457 #11 [ 24.497894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 24.507232] ffff8801c798f878 ffffffff81d922b9 ffffffff849b0638 ffff8801c78d3000 [ 24.515218] ffffffff834e5174 ffffffff849b0638 ffff8801c78d3888 ffff8801c798f8a8 [ 24.523219] ffffffff81235fa4 dffffc0000000000 ffffffff849b0638 00000000ffffffff [ 24.531205] Call Trace: [ 24.533763] [] dump_stack+0xc1/0x128 [ 24.539099] [] ? ipmr_mfc_seq_stop+0xe4/0x140 [ 24.545212] [] print_unlock_imbalance_bug+0x174/0x1a0 [ 24.552019] [] lock_release+0x6f8/0xb80 [ 24.557621] [] ? memcpy+0x45/0x50 [ 24.562692] [] ? ipmr_mfc_seq_stop+0xe4/0x140 [ 24.568805] [] _raw_read_unlock+0x1a/0x50 [ 24.574567] [] ipmr_mfc_seq_stop+0xe4/0x140 [ 24.582415] [] traverse+0x3a7/0x900 [ 24.589223] [] ? seq_buf_alloc+0x80/0x80 [ 24.594901] [] ? futex_wake+0x1ac/0x440 [ 24.600490] [] seq_read+0x7ea/0x1290 [ 24.605819] [] ? __lock_acquire+0x629/0x3640 [ 24.611842] [] ? seq_escape+0x200/0x200 [ 24.617438] [] ? avc_has_perm+0x28b/0x4f0 [ 24.623201] [] ? seq_escape+0x200/0x200 [ 24.628791] [] proc_reg_read+0xef/0x170 [ 24.634380] [] ? proc_reg_write+0x170/0x170 [ 24.640331] [] __vfs_read+0x103/0x670 [ 24.645747] [] ? default_llseek+0x290/0x290 [ 24.651683] [] ? fsnotify+0x86/0xf30 [ 24.657014] [] ? fsnotify+0xf30/0xf30 [ 24.662429] [] ? avc_policy_seqno+0x9/0x20 [ 24.668281] [] ? selinux_file_permission+0x82/0x460 [ 24.675271] [] ? security_file_permission+0x89/0x1e0 [ 24.682029] [] ? rw_verify_area+0xe5/0x2b0 [ 24.687899] [] vfs_read+0x11e/0x380 [ 24.693141] [] SyS_pread64+0x13f/0x170 [ 24.698652] [] ? SyS_write+0x1b0/0x1b0 [ 24.704156] [] ? sock_common_setsockopt+0xd0/0xd0 [ 24.710615] [] ? scm_detach_fds_compat+0x3c0/0x3c0 [ 24.717172] [] sys32_pread+0x39/0x50 executing program [ 24.722501] [] ? sys32_waitpid+0x30/0x30 [ 24.728181] [] do_fast_syscall_32+0x2f7/0x890 [ 24.734293] [] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 24.740927] [] entry_SYSENTER_compat+0x51/0x60