============================= WARNING: suspicious RCU usage 4.15.0-rc8+ #1 Not tainted ----------------------------- ./include/linux/rcupdate.h:302 Illegal context switch in RCU read-side critical section! other info that might help us debug this: rcu_scheduler_active = 2, debug_locks = 1 1 lock held by syz-executor4/3876: #0: (rcu_read_lock){....}, at: [<00000000d85d19a5>] map_get_next_key kernel/bpf/syscall.c:836 [inline] #0: (rcu_read_lock){....}, at: [<00000000d85d19a5>] SYSC_bpf kernel/bpf/syscall.c:1881 [inline] #0: (rcu_read_lock){....}, at: [<00000000d85d19a5>] SyS_bpf+0x1105/0x4860 kernel/bpf/syscall.c:1846 stack backtrace: CPU: 1 PID: 3876 Comm: syz-executor4 Not tainted 4.15.0-rc8+ #1 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x194/0x257 lib/dump_stack.c:53 lockdep_rcu_suspicious+0x123/0x170 kernel/locking/lockdep.c:4585 rcu_preempt_sleep_check include/linux/rcupdate.h:301 [inline] ___might_sleep+0x385/0x470 kernel/sched/core.c:6025 BUG: sleeping function called from invalid context at mm/slab.h:419 in_atomic(): 1, irqs_disabled(): 0, pid: 3883, name: syz-executor4 1 lock held by syz-executor4/3883: #0: (rcu_read_lock){....}, at: [<00000000d85d19a5>] map_get_next_key kernel/bpf/syscall.c:836 [inline] #0: (rcu_read_lock){....}, at: [<00000000d85d19a5>] SYSC_bpf kernel/bpf/syscall.c:1881 [inline] #0: (rcu_read_lock){....}, at: [<00000000d85d19a5>] SyS_bpf+0x1105/0x4860 kernel/bpf/syscall.c:1846 __might_sleep+0x95/0x190 kernel/sched/core.c:6013 slab_pre_alloc_hook mm/slab.h:419 [inline] slab_alloc mm/slab.c:3368 [inline] __do_kmalloc mm/slab.c:3706 [inline] __kmalloc+0x2c5/0x760 mm/slab.c:3717 kmalloc include/linux/slab.h:504 [inline] trie_get_next_key+0x517/0xf10 kernel/bpf/lpm_trie.c:626 map_get_next_key kernel/bpf/syscall.c:842 [inline] SYSC_bpf kernel/bpf/syscall.c:1881 [inline] SyS_bpf+0x11b4/0x4860 kernel/bpf/syscall.c:1846 entry_SYSCALL_64_fastpath+0x29/0xa0 RIP: 0033:0x452ef9 RSP: 002b:00007faeafda2c58 EFLAGS: 00000212 ORIG_RAX: 0000000000000141 RAX: ffffffffffffffda RBX: 000000000071bea0 RCX: 0000000000452ef9 RDX: 0000000000000018 RSI: 0000000020013fe8 RDI: 0000000000000004 RBP: 000000000000003c R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000212 R12: 00000000006ef640 R13: 00007ffd0e9ea2df R14: 00007faeafda39c0 R15: 0000000000000000 CPU: 0 PID: 3883 Comm: syz-executor4 Not tainted 4.15.0-rc8+ #1 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x194/0x257 lib/dump_stack.c:53 ___might_sleep+0x2b2/0x470 kernel/sched/core.c:6060 __might_sleep+0x95/0x190 kernel/sched/core.c:6013 slab_pre_alloc_hook mm/slab.h:419 [inline] slab_alloc mm/slab.c:3368 [inline] __do_kmalloc mm/slab.c:3706 [inline] __kmalloc+0x2c5/0x760 mm/slab.c:3717 kmalloc include/linux/slab.h:504 [inline] trie_get_next_key+0x517/0xf10 kernel/bpf/lpm_trie.c:626 map_get_next_key kernel/bpf/syscall.c:842 [inline] SYSC_bpf kernel/bpf/syscall.c:1881 [inline] SyS_bpf+0x11b4/0x4860 kernel/bpf/syscall.c:1846 entry_SYSCALL_64_fastpath+0x29/0xa0 RIP: 0033:0x452ef9 RSP: 002b:00007faeafd81c58 EFLAGS: 00000212 ORIG_RAX: 0000000000000141 RAX: ffffffffffffffda RBX: 000000000071bf58 RCX: 0000000000452ef9 RDX: 0000000000000018 RSI: 0000000020013fe8 RDI: 0000000000000004 RBP: 00000000000003d6 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000212 R12: 00000000006f4cb0 R13: 00000000ffffffff R14: 00007faeafd826d4 R15: 0000000000000004 audit: type=1400 audit(1516660928.734:13): avc: denied { map } for pid=3896 comm="syz-executor2" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=11988 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:hugetlbfs_t:s0 tclass=file permissive=1 proc: unrecognized mount option "4xJ=G0(b(*0tb" or missing value proc: unrecognized mount option "4xJ=G0(b(*0tb" or missing value ********************************************************** ** NOTICE NOTICE NOTICE NOTICE NOTICE NOTICE NOTICE ** ** ** ** trace_printk() being used. Allocating extra memory. ** ** ** ** This means that this is a DEBUG kernel and it is ** ** unsafe for production use. ** ** ** ** If you see this message and you are not debugging ** ** the kernel, report this immediately to your vendor! ** ** ** ** NOTICE NOTICE NOTICE NOTICE NOTICE NOTICE NOTICE ** ********************************************************** audit: type=1400 audit(1516660930.454:14): avc: denied { prog_run } for pid=3991 comm="syz-executor7" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=bpf permissive=1 proc: unrecognized mount option " " or missing value syz-executor1 uses obsolete (PF_INET,SOCK_PACKET) EXT4-fs (sda1): Unrecognized mount option "CC Bp!l0%_nRhsDX(ն" or missing value EXT4-fs (sda1): Unrecognized mount option "CC Bp!l0%_nRhsDX(ն" or missing value audit: type=1400 audit(1516660934.438:15): avc: denied { associate } for pid=4541 comm="syz-executor0" name="file0" scontext=unconfined_u:object_r:unlabeled_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=filesystem permissive=1 NFS: bad mount option value specified: v2- NFS: bad mount option value specified: v2- syz-executor1[4798] is installing a program with bpf_probe_write_user helper that may corrupt user memory! syz-executor1[4798] is installing a program with bpf_probe_write_user helper that may corrupt user memory! EXT4-fs (sda1): re-mounted. Opts: audit: type=1400 audit(1516660937.648:16): avc: denied { setopt } for pid=5076 comm="syz-executor1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:unlabeled_t:s0 tclass=socket permissive=1