INIT: Entering runlevel: 2 [info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added 'ci-android-49-kasan-gce-6,10.128.15.203' (ECDSA) to the list of known hosts. 2017/12/04 14:38:31 parsed 1 programs 2017/12/04 14:38:31 executed programs: 0 syzkaller login: [ 41.680491] IPVS: Creating netns size=2536 id=1 2017/12/04 14:38:36 executed programs: 222 [ 49.154496] [ 49.156140] ===================================== [ 49.160952] [ BUG: bad unlock balance detected! ] [ 49.165770] 4.9.66-gb763480 #103 Not tainted [ 49.165771] ------------------------------------- [ 49.165776] syz-executor0/4291 is trying to release lock (mrt_lock) at: [ 49.165785] [] ipmr_mfc_seq_stop+0xe4/0x140 [ 49.165792] but there are no more locks to release! [ 49.165793] [ 49.165793] other info that might help us debug this: [ 49.165795] 1 lock held by syz-executor0/4291: [ 49.165805] #0: (&p->lock){+.+.+.}, at: [] seq_read+0xdd/0x1290 [ 49.165806] [ 49.165806] stack backtrace: [ 49.165810] CPU: 0 PID: 4291 Comm: syz-executor0 Not tainted 4.9.66-gb763480 #103 [ 49.165812] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 49.165818] ffff8801d19f7918 ffffffff81d90749 ffffffff849ae878 ffff8801d0de4800 [ 49.165823] ffffffff834dec54 ffffffff849ae878 ffff8801d0de5088 ffff8801d19f7948 [ 49.165828] ffffffff812353f4 dffffc0000000000 ffffffff849ae878 00000000ffffffff [ 49.165829] Call Trace: [ 49.165835] [] dump_stack+0xc1/0x128 [ 49.165839] [] ? ipmr_mfc_seq_stop+0xe4/0x140 [ 49.165845] [] print_unlock_imbalance_bug+0x174/0x1a0 [ 49.165849] [] lock_release+0x6f8/0xb80 [ 49.165856] [] ? retint_kernel+0x2d/0x2d [ 49.165859] [] ? ipmr_mfc_seq_stop+0xe4/0x140 [ 49.165863] [] _raw_read_unlock+0x1a/0x50 [ 49.165866] [] ipmr_mfc_seq_stop+0xe4/0x140 [ 49.165870] [] traverse+0x3a7/0x900 [ 49.165873] [] ? seq_buf_alloc+0x80/0x80 [ 49.165877] [] seq_read+0x7ea/0x1290 [ 49.165881] [] ? seq_escape+0x200/0x200 [ 49.165885] [] ? kmem_cache_free+0xb2/0x2e0 [ 49.165890] [] ? do_futex+0x3f8/0x15c0 [ 49.165894] [] ? __lock_is_held+0xa1/0xf0 [ 49.165897] [] ? seq_escape+0x200/0x200 [ 49.165902] [] proc_reg_read+0xef/0x170 [ 49.165905] [] ? proc_reg_write+0x170/0x170 [ 49.165910] [] __vfs_read+0x103/0x670 [ 49.165913] [] ? default_llseek+0x290/0x290 [ 49.165918] [] ? fsnotify+0x86/0xf30 [ 49.165922] [] ? fsnotify+0xf30/0xf30 [ 49.165927] [] ? avc_policy_seqno+0x9/0x20 [ 49.165931] [] ? selinux_file_permission+0x82/0x460 [ 49.165936] [] ? security_file_permission+0x89/0x1e0 [ 49.165940] [] ? rw_verify_area+0xe5/0x2b0 [ 49.165943] [] vfs_read+0x11e/0x380 [ 49.165947] [] SyS_pread64+0x13f/0x170 [ 49.165950] [] ? SyS_write+0x1b0/0x1b0 [ 49.165954] [] ? trace_hardirqs_on_caller+0x38b/0x590 [ 49.165958] [] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 49.165963] [] entry_SYSCALL_64_fastpath+0x23/0xc6