[....] Starting enhanced syslogd: rsyslogd[ 14.713509] audit: type=1400 audit(1517282570.587:5): avc: denied { syslog } for pid=3927 comm="rsyslogd" capability=34 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1
�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[....] Starting periodic command scheduler: cron�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
Starting mcstransd:
[....] Starting file context maintaining daemon: restorecond�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[....] Starting OpenBSD Secure Shell server: sshd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
Debian GNU/Linux 7 syzkaller ttyS0
syzkaller login: [ 19.957560] audit: type=1400 audit(1517282575.831:6): avc: denied { map } for pid=4067 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1
Warning: Permanently added '10.128.0.61' (ECDSA) to the list of known hosts.
executing program
[ 26.265851] audit: type=1400 audit(1517282582.139:7): avc: denied { map } for pid=4081 comm="syzkaller205654" path="/root/syzkaller205654963" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1
[ 26.354071]
[ 26.355708] ======================================================
[ 26.361995] WARNING: possible circular locking dependency detected
[ 26.368285] 4.15.0+ #285 Not tainted
[ 26.371964] ------------------------------------------------------
[ 26.378249] syzkaller205654/4081 is trying to acquire lock:
[ 26.383935] (rtnl_mutex){+.+.}, at: [<00000000b48d5cf9>] rtnl_lock+0x17/0x20
[ 26.391197]
[ 26.391197] but task is already holding lock:
[ 26.397134] (sk_lock-AF_INET){+.+.}, at: [<00000000d1016b27>] ip_setsockopt+0x8c/0xb0
[ 26.405168]
[ 26.405168] which lock already depends on the new lock.
[ 26.405168]
[ 26.413452]
[ 26.413452] the existing dependency chain (in reverse order) is:
[ 26.421042]
[ 26.421042] -> #1 (sk_lock-AF_INET){+.+.}:
[ 26.426739] lock_sock_nested+0xc2/0x110
[ 26.431291] do_ip_getsockopt+0x1b3/0x2170
[ 26.436031] ip_getsockopt+0x90/0x220
[ 26.440323] tcp_getsockopt+0x82/0xd0
[ 26.444611] sock_common_getsockopt+0x95/0xd0
[ 26.449595] SyS_getsockopt+0x178/0x340
[ 26.454059] entry_SYSCALL_64_fastpath+0x29/0xa0
[ 26.459301]
[ 26.459301] -> #0 (rtnl_mutex){+.+.}:
[ 26.464571] lock_acquire+0x1d5/0x580
[ 26.468860] __mutex_lock+0x16f/0x1a80
[ 26.473234] mutex_lock_nested+0x16/0x20
[ 26.477785] rtnl_lock+0x17/0x20
[ 26.481642] register_netdevice_notifier+0xad/0x860
[ 26.487145] tee_tg_check+0x1a0/0x280
[ 26.491434] xt_check_target+0x22c/0x7d0
[ 26.495982] find_check_entry.isra.8+0x8c8/0xcb0
[ 26.501226] translate_table+0xed1/0x1610
[ 26.505861] do_ipt_set_ctl+0x370/0x5f0
[ 26.510325] nf_setsockopt+0x67/0xc0
[ 26.514530] ip_setsockopt+0xa1/0xb0
[ 26.518732] raw_setsockopt+0xb7/0xd0
[ 26.523027] sock_common_setsockopt+0x95/0xd0
[ 26.528009] SyS_setsockopt+0x189/0x360
[ 26.532470] entry_SYSCALL_64_fastpath+0x29/0xa0
[ 26.537713]
[ 26.537713] other info that might help us debug this:
[ 26.537713]
[ 26.545820] Possible unsafe locking scenario:
[ 26.545820]
[ 26.551848] CPU0 CPU1
[ 26.556482] ---- ----
[ 26.561117] lock(sk_lock-AF_INET);
[ 26.564804] lock(rtnl_mutex);
[ 26.570569] lock(sk_lock-AF_INET);
[ 26.576765] lock(rtnl_mutex);
[ 26.580012]
[ 26.580012] *** DEADLOCK ***
[ 26.580012]
[ 26.586039] 1 lock held by syzkaller205654/4081:
[ 26.590759] #0: (sk_lock-AF_INET){+.+.}, at: [<00000000d1016b27>] ip_setsockopt+0x8c/0xb0
[ 26.599227]
[ 26.599227] stack backtrace:
[ 26.603693] CPU: 1 PID: 4081 Comm: syzkaller205654 Not tainted 4.15.0+ #285
[ 26.610761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 26.620084] Call Trace:
[ 26.622642] dump_stack+0x194/0x257
[ 26.626240] ? arch_local_irq_restore+0x53/0x53
[ 26.630882] print_circular_bug.isra.37+0x2cd/0x2dc
[ 26.635866] ? save_trace+0xe0/0x2b0
[ 26.639548] __lock_acquire+0x30a8/0x3e00
[ 26.643666] ? print_irqtrace_events+0x270/0x270
[ 26.648395] ? debug_check_no_locks_freed+0x3c0/0x3c0
[ 26.653558] ? print_irqtrace_events+0x270/0x270
[ 26.658286] ? __lock_acquire+0x664/0x3e00
[ 26.662494] ? print_irqtrace_events+0x270/0x270
[ 26.667218] ? __lock_acquire+0x664/0x3e00
[ 26.671419] ? find_held_lock+0x35/0x1d0
[ 26.675450] ? check_noncircular+0x20/0x20
[ 26.679664] ? debug_check_no_locks_freed+0x3c0/0x3c0
[ 26.684825] ? debug_check_no_locks_freed+0x3c0/0x3c0
[ 26.689991] lock_acquire+0x1d5/0x580
[ 26.693761] ? lock_acquire+0x1d5/0x580
[ 26.697726] ? rtnl_lock+0x17/0x20
[ 26.701234] ? lock_release+0xa40/0xa40
[ 26.705177] ? trace_event_raw_event_sched_switch+0x800/0x800
[ 26.711037] ? rcu_note_context_switch+0x710/0x710
[ 26.715939] ? __might_sleep+0x95/0x190
[ 26.719884] ? rtnl_lock+0x17/0x20
[ 26.723394] __mutex_lock+0x16f/0x1a80
[ 26.727335] ? rtnl_lock+0x17/0x20
[ 26.730845] ? lock_downgrade+0x980/0x980
[ 26.734969] ? rtnl_lock+0x17/0x20
[ 26.738497] ? mutex_lock_io_nested+0x1900/0x1900
[ 26.743310] ? is_bpf_text_address+0x7b/0x120
[ 26.747781] ? print_irqtrace_events+0x270/0x270
[ 26.752515] ? depot_save_stack+0x3b5/0x490
[ 26.756804] ? lock_downgrade+0x980/0x980
[ 26.760921] ? lock_release+0xa40/0xa40
[ 26.764864] ? mark_held_locks+0xaf/0x100
[ 26.768986] ? _raw_spin_unlock_irqrestore+0x31/0xba
[ 26.774061] ? trace_hardirqs_on_caller+0x421/0x5c0
[ 26.779044] ? trace_hardirqs_on+0xd/0x10
[ 26.783159] ? depot_save_stack+0x3b5/0x490
[ 26.787450] ? save_stack+0xa3/0xd0
[ 26.791045] ? save_stack+0x43/0xd0
[ 26.794639] ? kasan_kmalloc+0xad/0xe0
[ 26.798496] ? kmem_cache_alloc_trace+0x136/0x750
[ 26.803308] ? tee_tg_check+0xed/0x280
[ 26.807164] ? xt_check_target+0x22c/0x7d0
[ 26.811370] ? find_check_entry.isra.8+0x8c8/0xcb0
[ 26.816266] ? translate_table+0xed1/0x1610
[ 26.820555] ? do_ipt_set_ctl+0x370/0x5f0
[ 26.824669] ? nf_setsockopt+0x67/0xc0
[ 26.828527] ? ip_setsockopt+0xa1/0xb0
[ 26.832383] ? raw_setsockopt+0xb7/0xd0
[ 26.836331] ? sock_common_setsockopt+0x95/0xd0
[ 26.840966] ? SyS_setsockopt+0x189/0x360
[ 26.845093] ? entry_SYSCALL_64_fastpath+0x29/0xa0
[ 26.850006] mutex_lock_nested+0x16/0x20
[ 26.854037] ? mutex_lock_nested+0x16/0x20
[ 26.858242] rtnl_lock+0x17/0x20
[ 26.861574] register_netdevice_notifier+0xad/0x860
[ 26.866562] ? __dev_close_many+0x330/0x330
[ 26.870859] ? __lock_is_held+0xb6/0x140
[ 26.874891] ? tee_tg_check+0xed/0x280
[ 26.878748] ? rcu_read_lock_sched_held+0x108/0x120
[ 26.883734] ? kmem_cache_alloc_trace+0x456/0x750
[ 26.888548] ? wait_for_completion+0x770/0x770
[ 26.893101] tee_tg_check+0x1a0/0x280
[ 26.896873] ? tee_tg4+0x170/0x170
[ 26.900384] xt_check_target+0x22c/0x7d0
[ 26.904413] ? xt_target_seq_next+0x30/0x30
[ 26.908700] ? save_stack+0xa3/0xd0
[ 26.912293] ? kasan_slab_free+0x71/0xc0
[ 26.916323] ? kfree+0xd6/0x260
[ 26.919575] ? kvfree+0x36/0x60
[ 26.922827] ? mutex_unlock+0xd/0x10
[ 26.926511] ? xt_find_target+0x17b/0x1e0
[ 26.930632] find_check_entry.isra.8+0x8c8/0xcb0
[ 26.935359] ? ipt_do_table+0x1860/0x1860
[ 26.939477] ? mark_held_locks+0xaf/0x100
[ 26.943591] ? kfree+0xf0/0x260
[ 26.946840] ? trace_hardirqs_on+0xd/0x10
[ 26.950957] translate_table+0xed1/0x1610
[ 26.955091] ? alloc_counters.isra.11+0x7d0/0x7d0
[ 26.959906] ? kasan_check_write+0x14/0x20
[ 26.964116] ? _copy_from_user+0x99/0x110
[ 26.968245] do_ipt_set_ctl+0x370/0x5f0
[ 26.972191] ? translate_compat_table+0x1b90/0x1b90
[ 26.977177] ? mutex_unlock+0xd/0x10
[ 26.980862] ? nf_sockopt_find.constprop.0+0x1a7/0x220
[ 26.986109] nf_setsockopt+0x67/0xc0
[ 26.989792] ip_setsockopt+0xa1/0xb0
[ 26.993475] raw_setsockopt+0xb7/0xd0
[ 26.997246] sock_common_setsockopt+0x95/0xd0
[ 27.001712] SyS_setsockopt+0x189/0x360
[ 27.005653] ? SyS_recv+0x40/0x40
[ 27.009075] ? entry_SYSCALL_64_fastpath+0x5/0xa0
[ 27.013891] ? trace_hardirqs_on_caller+0x421/0x5c0
[ 27.018877] ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 27.023601] entry_SYSCALL_64_fastpath+0x29/0xa0
[ 27.028326] RIP: 0033:0x440a09
[ 27.031483] RSP: 002b:00007ffdc07869b8 EFLAGS: 00000207 ORIG_RAX: 0000000000000036
[ 27.039159] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 0000000000440a09
[ 27.046398] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000004
[ 27.053637] RBP: 00000000006cb018 R08