=====================================
[ BUG: bad unlock balance detected! ]
4.4.111-g1849cd3 #19 Not tainted
-------------------------------------
syz-executor2/13684 is trying to release lock (mrt_lock) at:
[<ffffffff833c9304>] ipmr_mfc_seq_stop+0xe4/0x140 net/ipv6/ip6mr.c:553
but there are no more locks to release!

other info that might help us debug this:
1 lock held by syz-executor2/13684:
 #0:  (&p->lock){+.+.+.}, at: [<ffffffff8158ce7d>] seq_read+0xdd/0x1270 fs/seq_file.c:178

stack backtrace:
CPU: 0 PID: 13684 Comm: syz-executor2 Not tainted 4.4.111-g1849cd3 #19
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 0000000000000000 afa0fffd002a8243 ffff8800b098f8e0 ffffffff81d0509d
 ffffffff84770798 ffff8801d7e14740 ffffffff833c9304 ffffffff84770798
 ffff8801d7e14f88 ffff8800b098f910 ffffffff81232374 dffffc0000000000
Call Trace:
 [<ffffffff81d0509d>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d0509d>] dump_stack+0xc1/0x124 lib/dump_stack.c:51
 [<ffffffff81232374>] print_unlock_imbalance_bug+0x174/0x1a0 kernel/locking/lockdep.c:3266
 [<ffffffff8123d21a>] __lock_release kernel/locking/lockdep.c:3408 [inline]
 [<ffffffff8123d21a>] lock_release+0x72a/0xc10 kernel/locking/lockdep.c:3611
 [<ffffffff8377519a>] __raw_read_unlock include/linux/rwlock_api_smp.h:225 [inline]
 [<ffffffff8377519a>] _raw_read_unlock+0x1a/0x50 kernel/locking/spinlock.c:255
 [<ffffffff833c9304>] ipmr_mfc_seq_stop+0xe4/0x140 net/ipv6/ip6mr.c:553
 [<ffffffff8158d820>] seq_read+0xa80/0x1270 fs/seq_file.c:283
 [<ffffffff81665cef>] proc_reg_read+0xef/0x170 fs/proc/inode.c:202
 [<ffffffff8151cc51>] do_loop_readv_writev+0x141/0x1e0 fs/read_write.c:680
 [<ffffffff8151f7ef>] compat_do_readv_writev+0x5df/0x6e0 fs/read_write.c:984
 [<ffffffff8151f9c9>] compat_readv+0xd9/0x140 fs/read_write.c:1013
 [<ffffffff8151fafe>] __compat_sys_preadv64+0xce/0xf0 fs/read_write.c:1054
 [<ffffffff81521ea8>] C_SYSC_preadv fs/read_write.c:1074 [inline]
 [<ffffffff81521ea8>] compat_SyS_preadv+0x38/0x50 fs/read_write.c:1068
 [<ffffffff81006d84>] do_syscall_32_irqs_on arch/x86/entry/common.c:390 [inline]
 [<ffffffff81006d84>] do_fast_syscall_32+0x314/0x890 arch/x86/entry/common.c:457
 [<ffffffff8377722a>] sysenter_flags_fixed+0xd/0x17
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1546 sclass=netlink_route_socket
device lo left promiscuous mode
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1546 sclass=netlink_route_socket
device lo entered promiscuous mode
device lo left promiscuous mode
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1546 sclass=netlink_route_socket
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
audit: type=1400 audit(1516003534.937:47): avc:  denied  { create } for  pid=17693 comm="syz-executor5" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_connector_socket permissive=1