[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 26.028575] random: sshd: uninitialized urandom read (32 bytes read) [ 26.498273] audit: type=1400 audit(1551055587.405:6): avc: denied { map } for pid=1769 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 26.528467] random: sshd: uninitialized urandom read (32 bytes read) [ 27.031504] random: sshd: uninitialized urandom read (32 bytes read) [ 27.174893] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.0.176' (ECDSA) to the list of known hosts. [ 32.587136] random: sshd: uninitialized urandom read (32 bytes read) [ 32.677926] audit: type=1400 audit(1551055593.585:7): avc: denied { map } for pid=1787 comm="syz-execprog" path="/root/syz-execprog" dev="sda1" ino=1426 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 2019/02/25 00:46:34 parsed 1 programs [ 33.500382] audit: type=1400 audit(1551055594.415:8): avc: denied { map } for pid=1787 comm="syz-execprog" path="/sys/kernel/debug/kcov" dev="debugfs" ino=5005 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:debugfs_t:s0 tclass=file permissive=1 [ 34.244645] random: cc1: uninitialized urandom read (8 bytes read) 2019/02/25 00:46:36 executed programs: 0 [ 35.910385] audit: type=1400 audit(1551055596.825:9): avc: denied { map } for pid=1787 comm="syz-execprog" path="/root/syzkaller-shm378716351" dev="sda1" ino=16482 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:file_t:s0 tclass=file permissive=1 [ 40.766983] [ 40.768658] ===================================== [ 40.773489] WARNING: bad unlock balance detected! [ 40.778329] 4.14.103+ #18 Not tainted [ 40.782113] ------------------------------------- [ 40.786957] migration/1/16 is trying to release lock (&rq->lock) at: [ 40.793435] [] migration_cpu_stop+0x2dd/0x430 [ 40.799464] but there are no more locks to release! [ 40.804449] [ 40.804449] other info that might help us debug this: [ 40.811088] 1 lock held by migration/1/16: [ 40.815296] #0: (&p->pi_lock){-.-.}, at: [] migration_cpu_stop+0xe1/0x430 [ 40.823979] [ 40.823979] stack backtrace: [ 40.828486] CPU: 1 PID: 16 Comm: migration/1 Not tainted 4.14.103+ #18 [ 40.835155] Call Trace: [ 40.837719] dump_stack+0xb9/0x10e [ 40.841288] ? migration_cpu_stop+0x2dd/0x430 [ 40.845804] print_unlock_imbalance_bug.cold+0x110/0x11f [ 40.851227] ? lock_set_class+0x3b6/0x570 [ 40.855362] ? migration_cpu_stop+0x2dd/0x430 [ 40.859827] ? reacquire_held_locks+0x3f0/0x3f0 [ 40.864476] ? set_task_cpu+0x30b/0x9f0 [ 40.868429] ? move_queued_task+0x382/0x970 [ 40.872729] ? migration_cpu_stop+0x2dd/0x430 [ 40.877201] ? cpu_stopper_thread+0x130/0x320 [ 40.881676] ? sched_ttwu_pending+0x2a0/0x2a0 [ 40.886164] ? cpu_stopper_thread+0x215/0x320 [ 40.890647] ? _raw_spin_unlock_irq+0x24/0x50 [ 40.895118] ? sched_ttwu_pending+0x2a0/0x2a0 [ 40.899602] ? cpu_stopper_thread+0x19b/0x320 [ 40.904080] ? cpu_stop_create+0x80/0x80 [ 40.908133] ? smpboot_thread_fn+0x5ca/0x900 [ 40.912539] ? sort_range+0x30/0x30 2019/02/25 00:46:41 executed programs: 147 [ 40.916150] ? sort_range+0x30/0x30 [ 40.919764] ? kthread+0x310/0x420 [ 40.923277] ? kthread_create_on_node+0xf0/0xf0 [ 40.927917] ? ret_from_fork+0x3a/0x50