[....] Starting enhanced syslogd: rsyslogd[ 15.502260] audit: type=1400 audit(1518018431.946:4): avc: denied { syslog } for pid=3653 comm="rsyslogd" capability=34 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.15.197' (ECDSA) to the list of known hosts. 2018/02/07 15:47:44 parsed 1 programs 2018/02/07 15:47:44 executed programs: 0 syzkaller login: [ 48.153738] audit: type=1400 audit(1518018464.606:5): avc: denied { sys_admin } for pid=3829 comm="syz-executor0" capability=21 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 [ 48.190281] IPVS: Creating netns size=2536 id=1 [ 48.211447] IPVS: Creating netns size=2536 id=2 [ 48.224349] IPVS: Creating netns size=2536 id=3 [ 48.233896] audit: type=1400 audit(1518018464.686:6): avc: denied { sys_chroot } for pid=3832 comm="syz-executor2" capability=18 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 [ 48.260241] audit: type=1400 audit(1518018464.706:7): avc: denied { net_admin } for pid=3832 comm="syz-executor2" capability=12 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 [ 48.265578] audit: type=1400 audit(1518018464.716:8): avc: denied { dac_override } for pid=3855 comm="syz-executor0" capability=1 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 [ 48.272453] IPVS: Creating netns size=2536 id=4 [ 48.320944] IPVS: Creating netns size=2536 id=5 [ 48.346942] IPVS: Creating netns size=2536 id=6 [ 48.370800] IPVS: Creating netns size=2536 id=7 [ 48.383235] IPVS: Creating netns size=2536 id=8 2018/02/07 15:47:49 executed programs: 689 2018/02/07 15:47:54 executed programs: 1303 [ 61.290651] [ 61.292492] ===================================== [ 61.297330] [ BUG: bad unlock balance detected! ] [ 61.302160] 4.9.80-g550c01d #37 Not tainted [ 61.306487] ------------------------------------- [ 61.311314] syz-executor2/9059 is trying to release lock (mrt_lock) at: [ 61.318503] [] ipmr_mfc_seq_stop+0xe4/0x140 [ 61.324369] but there are no more locks to release! [ 61.329364] [ 61.329364] other info that might help us debug this: [ 61.336019] 2 locks held by syz-executor2/9059: [ 61.340655] #0: (sb_writers#7){.+.+.+}, at: [] do_sendfile+0x9ff/0xd30 [ 61.349616] #1: (&p->lock){+.+.+.}, at: [] seq_read+0xdd/0x1290 [ 61.358121] [ 61.358121] stack backtrace: [ 61.362590] CPU: 0 PID: 9059 Comm: syz-executor2 Not tainted 4.9.80-g550c01d #37 [ 61.370183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 61.379517] ffff8801ba277238 ffffffff81d94b69 ffffffff849b6cf8 ffff8801d816e000 [ 61.387517] ffffffff834e8ee4 ffffffff849b6cf8 ffff8801d816e888 ffff8801ba277268 [ 61.396193] ffffffff81237e04 dffffc0000000000 ffffffff849b6cf8 00000000ffffffff [ 61.404172] Call Trace: [ 61.406739] [] dump_stack+0xc1/0x128 [ 61.412087] [] ? ipmr_mfc_seq_stop+0xe4/0x140 [ 61.418212] [] print_unlock_imbalance_bug+0x174/0x1a0 [ 61.425025] [] lock_release+0x6f8/0xb80 [ 61.430622] [] ? traverse+0x3cf/0x900 [ 61.436060] [] ? memcpy+0x45/0x50 [ 61.441136] [] ? ipmr_mfc_seq_stop+0xe4/0x140 [ 61.447257] [] _raw_read_unlock+0x1a/0x50 [ 61.453025] [] ipmr_mfc_seq_stop+0xe4/0x140 [ 61.458968] [] seq_read+0xa83/0x1290 [ 61.464315] [] ? seq_escape+0x200/0x200 [ 61.469920] [] ? __fsnotify_parent+0xbc/0x340 [ 61.476038] [] ? fsnotify+0x86/0xf30 [ 61.481372] [] ? fsnotify+0xf30/0xf30 [ 61.486794] [] ? seq_escape+0x200/0x200 [ 61.492391] [] proc_reg_read+0xef/0x170 [ 61.497985] [] do_loop_readv_writev.part.17+0x141/0x1e0 [ 61.504972] [] ? security_file_permission+0x89/0x1e0 [ 61.511695] [] ? proc_reg_write+0x170/0x170 [ 61.517647] [] ? proc_reg_write+0x170/0x170 [ 61.523599] [] do_readv_writev+0x520/0x750 [ 61.529467] [] ? vfs_write+0x530/0x530 [ 61.534976] [] ? kasan_unpoison_shadow+0x35/0x50 [ 61.541353] [] ? push_pipe+0x372/0x770 [ 61.546860] [] ? sanity+0x1ff/0x610 [ 61.552104] [] ? iov_iter_get_pages_alloc+0x2c7/0xf10 [ 61.558913] [] vfs_readv+0x84/0xc0 [ 61.564107] [] default_file_splice_read+0x43f/0x7a0 [ 61.570746] [] ? depot_save_stack+0x122/0x4a0 [ 61.576863] [] ? do_splice_direct+0x270/0x270 [ 61.582981] [] ? save_stack_trace+0x16/0x20 [ 61.588926] [] ? save_stack+0x43/0xd0 [ 61.594359] [] ? kasan_kmalloc+0xad/0xe0 [ 61.600040] [] ? __kmalloc+0x11d/0x310 [ 61.605549] [] ? alloc_pipe_info+0x135/0x350 [ 61.611579] [] ? splice_direct_to_actor+0x64a/0x800 [ 61.618304] [] ? do_splice_direct+0x1a7/0x270 [ 61.624420] [] ? SyS_sendfile64+0xd1/0x160 [ 61.630276] [] ? do_fast_syscall_32+0x2f7/0x890 [ 61.636568] [] ? entry_SYSENTER_compat+0x74/0x83 [ 61.642953] [] ? preempt_schedule_common+0x35/0xd0 [ 61.649503] [] ? __fsnotify_parent+0xbc/0x340 [ 61.655616] [] ? fsnotify+0x86/0xf30 [ 61.660949] [] ? fsnotify+0xf30/0xf30 [ 61.666373] [] ? avc_policy_seqno+0x9/0x20 [ 61.672226] [] ? selinux_file_permission+0x82/0x460 [ 61.678865] [] ? security_file_permission+0x89/0x1e0 [ 61.685598] [] ? do_splice_direct+0x270/0x270 [ 61.691726] [] do_splice_to+0x10a/0x160 [ 61.697321] [] splice_direct_to_actor+0x24d/0x800 [ 61.703793] [] ? generic_pipe_buf_nosteal+0x10/0x10 [ 61.710427] [] ? do_splice_to+0x160/0x160 [ 61.716195] [] ? security_file_permission+0x89/0x1e0 [ 61.722920] [] ? rw_verify_area+0xe5/0x2b0 [ 61.728783] [] do_splice_direct+0x1a7/0x270 [ 61.734734] [] ? splice_direct_to_actor+0x800/0x800 [ 61.741370] [] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 61.747919] [] ? __sb_start_write+0x14a/0x310 [ 61.754055] [] do_sendfile+0x54b/0xd30 [ 61.759655] [] ? do_compat_pwritev64+0x100/0x100 [ 61.766032] [] ? __might_fault+0x114/0x1d0 [ 61.771906] [] SyS_sendfile64+0xd1/0x160 [ 61.777586] [] ? SyS_sendfile+0x160/0x160 [ 61.783354] [] ? do_fast_syscall_32+0xcf/0x890 [ 61.789563] [] ? SyS_sendfile+0x160/0x160 [ 61.795330] [] do_fast_syscall_32+0x2f7/0x890 [ 61.801446] [] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 61.808084] [] entry_SYSENTER_compat+0x74/0x83