audit: type=1400 audit(1556533787.097:368914): avc: denied { sys_boot } for pid=25938 comm="syz-executor.2" capability=22 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 audit: type=1400 audit(1556533787.097:368915): avc: denied { sys_admin } for pid=25938 comm="syz-executor.2" capability=21 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 INFO: task init:2279 blocked for more than 140 seconds. Not tainted 4.9.141+ #1 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. init D28888 2279 1 0x00000000 ffff8801a8cbc740 ffff8801a1c59080 ffff8801819eb700 ffff8801c91b97c0 ffff8801db721018 ffff8801d47bf580 ffffffff828075c2 ffff8801a8cbcff0 000000000000015d 0000000000000000 0000000000000000 ffff8801db7218f0 Call Trace: [] schedule+0x7f/0x1b0 kernel/sched/core.c:3553 [] schedule_timeout+0x735/0xe20 kernel/time/timer.c:1771 [] __down_common kernel/locking/semaphore.c:221 [inline] [] __down+0x191/0x2b0 kernel/locking/semaphore.c:238 [] down+0x5e/0x80 kernel/locking/semaphore.c:61 [] console_lock+0x2c/0x80 kernel/printk/printk.c:2217 [] console_device+0x1c/0xc0 kernel/printk/printk.c:2554 [] tty_lookup_driver drivers/tty/tty_io.c:2008 [inline] [] tty_open_by_driver drivers/tty/tty_io.c:2053 [inline] [] tty_open+0x6f5/0xdf0 drivers/tty/tty_io.c:2130 [] chrdev_open+0x22d/0x5c0 fs/char_dev.c:392 [] do_dentry_open+0x3ef/0xc90 fs/open.c:766 [] vfs_open+0x11c/0x210 fs/open.c:879 [] do_last fs/namei.c:3410 [inline] [] path_openat+0x542/0x2790 fs/namei.c:3534 [] do_filp_open+0x197/0x270 fs/namei.c:3568 [] do_sys_open+0x30d/0x5c0 fs/open.c:1072 [] SYSC_open fs/open.c:1090 [inline] [] SyS_open+0x2d/0x40 fs/open.c:1085 [] do_syscall_64+0x19f/0x550 arch/x86/entry/common.c:285 [] entry_SYSCALL_64_after_swapgs+0x5d/0xdb Showing all locks held in the system: 2 locks held by khungtaskd/24: #0: (rcu_read_lock){......}, at: [] check_hung_uninterruptible_tasks kernel/hung_task.c:168 [inline] #0: (rcu_read_lock){......}, at: [] watchdog+0x11c/0xa20 kernel/hung_task.c:239 #1: (tasklist_lock){.+.+..}, at: [] debug_show_all_locks+0x79/0x218 kernel/locking/lockdep.c:4336 1 lock held by rsyslogd/1905: #0: (&f->f_pos_lock){+.+.+.}, at: [] __fdget_pos+0xac/0xd0 fs/file.c:781 2 locks held by getty/2032: #0: (&tty->ldisc_sem){++++++}, at: [] ldsem_down_read+0x32/0x40 drivers/tty/tty_ldsem.c:367 #1: (&ldata->atomic_read_lock){+.+.+.}, at: [] n_tty_read+0x202/0x16e0 drivers/tty/n_tty.c:2142 1 lock held by init/2279: #0: (tty_mutex){+.+.+.}, at: [] tty_open_by_driver drivers/tty/tty_io.c:2052 [inline] #0: (tty_mutex){+.+.+.}, at: [] tty_open+0x476/0xdf0 drivers/tty/tty_io.c:2130 1 lock held by init/2280: #0: (tty_mutex){+.+.+.}, at: [] tty_open_by_driver drivers/tty/tty_io.c:2052 [inline] #0: (tty_mutex){+.+.+.}, at: [] tty_open+0x476/0xdf0 drivers/tty/tty_io.c:2130 1 lock held by init/2281: #0: (tty_mutex){+.+.+.}, at: [] tty_open_by_driver drivers/tty/tty_io.c:2052 [inline] #0: (tty_mutex){+.+.+.}, at: [] tty_open+0x476/0xdf0 drivers/tty/tty_io.c:2130 1 lock held by init/2282: #0: (tty_mutex){+.+.+.}, at: [] tty_open_by_driver drivers/tty/tty_io.c:2052 [inline] #0: (tty_mutex){+.+.+.}, at: [] tty_open+0x476/0xdf0 drivers/tty/tty_io.c:2130 1 lock held by init/2283: #0: (tty_mutex){+.+.+.}, at: [] tty_open_by_driver drivers/tty/tty_io.c:2052 [inline] #0: (tty_mutex){+.+.+.}, at: [] tty_open+0x476/0xdf0 drivers/tty/tty_io.c:2130 1 lock held by init/2284: #0: (tty_mutex){+.+.+.}, at: [] tty_open_by_driver drivers/tty/tty_io.c:2052 [inline] #0: (tty_mutex){+.+.+.}, at: [] tty_open+0x476/0xdf0 drivers/tty/tty_io.c:2130 ============================================= NMI backtrace for cpu 0 CPU: 0 PID: 24 Comm: khungtaskd Not tainted 4.9.141+ #1 ffff8801d9907d08 ffffffff81b42e79 0000000000000000 0000000000000000 0000000000000000 0000000000000001 ffffffff810983b0 ffff8801d9907d40 ffffffff81b4df89 0000000000000000 0000000000000000 0000000000000002 Call Trace: [] __dump_stack lib/dump_stack.c:15 [inline] [] dump_stack+0xc1/0x128 lib/dump_stack.c:51 [] nmi_cpu_backtrace.cold.0+0x48/0x87 lib/nmi_backtrace.c:99 [] nmi_trigger_cpumask_backtrace+0x12c/0x151 lib/nmi_backtrace.c:60 [] arch_trigger_cpumask_backtrace+0x14/0x20 arch/x86/kernel/apic/hw_nmi.c:37 [] trigger_all_cpu_backtrace include/linux/nmi.h:58 [inline] [] check_hung_task kernel/hung_task.c:125 [inline] [] check_hung_uninterruptible_tasks kernel/hung_task.c:182 [inline] [] watchdog+0x6ad/0xa20 kernel/hung_task.c:239 [] kthread+0x26d/0x300 kernel/kthread.c:211 [] ret_from_fork+0x5c/0x70 arch/x86/entry/entry_64.S:373 Sending NMI from CPU 0 to CPUs 1: NMI backtrace for cpu 1 CPU: 1 PID: 25938 Comm: syz-executor.2 Not tainted 4.9.141+ #1 task: ffff8801c91b97c0 task.stack: ffff8801c4b08000 RIP: 0010:[] c [] __lock_acquire+0x433/0x4a10 kernel/locking/lockdep.c:3295 RSP: 0018:ffff8801c4b0f730 EFLAGS: 00000006 RAX: 000000000000000c RBX: ffff8801c91ba098 RCX: 000000000000000c RDX: 0000000000000000 RSI: 0000000000000080 RDI: ffff8801c91ba0bc RBP: ffff8801c4b0f8e0 R08: 0000000000000001 R09: 0000000000000001 R10: ffff8801c91b97c0 R11: 1ffff10039237412 R12: 0000000000000042 R13: 0000000000000001 R14: ffff8801c91ba05c R15: 0000000000000080 FS: 00007f0590d10700(0000) GS:ffff8801db700000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000000000400300 CR3: 00000001d05c5000 CR4: 00000000001606b0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000600 Stack: 000000000000001ec 0000000000000002c ffff8801c91ba05cc 0000000000000000c ffff8801c4b0f908c ffffffff81207a04c 0000000000000000c 0000000000000000c ffff8801c4b0f7e8c 0000000000000046c 0000000000000000c ffffffff81ba8d8fc Call Trace: [] lock_acquire+0x130/0x3e0 kernel/locking/lockdep.c:3756 [] __raw_spin_trylock include/linux/spinlock_api_smp.h:92 [inline] [] _raw_spin_trylock+0x6f/0x90 kernel/locking/spinlock.c:135 [] avc_reclaim_node security/selinux/avc.c:526 [inline] [] avc_alloc_node+0x12b/0x3c0 security/selinux/avc.c:559 [] avc_update_node+0x3d/0x910 security/selinux/avc.c:829 [] avc_denied+0x11d/0x160 security/selinux/avc.c:990 [] avc_has_perm_noaudit+0x2cf/0x2f0 security/selinux/avc.c:1118 [] cred_has_capability+0x13a/0x2e0 security/selinux/hooks.c:1666 [] selinux_capable+0x36/0x40 security/selinux/hooks.c:2178 [] security_capable+0x88/0xc0 security/security.c:189 [] ns_capable_common+0xd4/0x150 kernel/capability.c:373 [] ns_capable+0x22/0x30 kernel/capability.c:395 [] SYSC_reboot kernel/reboot.c:288 [inline] [] SyS_reboot+0xbe/0x350 kernel/reboot.c:280 [] do_syscall_64+0x19f/0x550 arch/x86/entry/common.c:285 [] entry_SYSCALL_64_after_swapgs+0x5d/0xdb Code: c01 c41 c09 cf7 cc1 ce0 c02 c44 c88 c7b c21 c83 ce1 cf8 c09 cd1 c09 cc1 c45 c85 cc9 c0f c95 cc0 c83 ce1 cf7 cc1 ce0 c03 c09 cc1 c88 c4b c22 c0f cb7 c55 c20 c0f cb7 c43 c22 c ce2 c04 c83 ce0 c0f c09 cd0 c48 c89 cfa c66 c89 c43 c22 c48 cc1 cea c03 c48 cb8 c