Warning: Permanently added '10.128.10.0' (ECDSA) to the list of known hosts. syzkaller login: [ 33.912257] audit: type=1400 audit(1589627459.234:8): avc: denied { execmem } for pid=6326 comm="syz-executor025" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 34.163977] IPVS: ftp: loaded support on port[0] = 21 executing program [ 34.942413] [ 34.944057] ================================ [ 34.948437] WARNING: inconsistent lock state [ 34.952930] 4.14.180-syzkaller #0 Not tainted [ 34.957435] -------------------------------- [ 34.961946] inconsistent {SOFTIRQ-ON-W} -> {IN-SOFTIRQ-W} usage. [ 34.968062] swapper/1/0 [HC0[0]:SC1[1]:HE1:SE0] takes: [ 34.973328] (&(&local->client_conns_lock)->rlock){+.?.}, at: [] rxrpc_put_client_conn+0x524/0xa80 [ 34.983989] {SOFTIRQ-ON-W} state was registered at: [ 34.988992] lock_acquire+0x170/0x3f0 [ 34.992850] _raw_spin_lock+0x2a/0x40 [ 34.996709] rxrpc_connect_call+0x2ac/0x3e50 [ 35.001186] rxrpc_new_client_call+0x8d2/0x1410 [ 35.005934] rxrpc_do_sendmsg+0x8a1/0x1019 [ 35.010226] rxrpc_sendmsg+0x47d/0x5a0 [ 35.014259] sock_sendmsg+0xc5/0x100 [ 35.018118] ___sys_sendmsg+0x349/0x840 [ 35.022147] __sys_sendmmsg+0x129/0x330 [ 35.026274] SyS_sendmmsg+0x2f/0x50 [ 35.029961] do_syscall_64+0x1d5/0x640 [ 35.033908] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 35.039161] irq event stamp: 111134 [ 35.042759] hardirqs last enabled at (111134): [] _raw_spin_unlock_irqrestore+0x67/0xe0 [ 35.052620] hardirqs last disabled at (111133): [] _raw_spin_lock_irqsave+0x66/0xbf [ 35.061962] softirqs last enabled at (111116): [] irq_enter+0xbd/0xd0 [ 35.070336] softirqs last disabled at (111117): [] irq_exit+0x15b/0x1a0 [ 35.078637] [ 35.078637] other info that might help us debug this: [ 35.085287] Possible unsafe locking scenario: [ 35.085287] [ 35.091330] CPU0 [ 35.093893] ---- [ 35.096445] lock(&(&local->client_conns_lock)->rlock); [ 35.101875] [ 35.104605] lock(&(&local->client_conns_lock)->rlock); [ 35.110201] [ 35.110201] *** DEADLOCK *** [ 35.110201] [ 35.116243] 1 lock held by swapper/1/0: [ 35.120188] #0: (rcu_callback){....}, at: [] rcu_process_callbacks+0x866/0x1190 [ 35.129355] [ 35.129355] stack backtrace: [ 35.133837] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 4.14.180-syzkaller #0 [ 35.140915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 35.150239] Call Trace: [ 35.152805] [ 35.154931] dump_stack+0x13e/0x194 [ 35.158531] print_usage_bug.cold+0x327/0x425 [ 35.163000] mark_lock+0xd21/0x10b0 [ 35.166607] ? check_usage_backwards+0x2f0/0x2f0 [ 35.171335] __lock_acquire+0xb57/0x4620 [ 35.175379] ? trace_hardirqs_on+0x10/0x10 [ 35.179595] ? trace_hardirqs_on+0x10/0x10 [ 35.183801] ? trace_hardirqs_on+0x10/0x10 [ 35.188022] ? lock_acquire+0x170/0x3f0 [ 35.191968] ? save_trace+0x290/0x290 [ 35.195740] ? _raw_spin_unlock_irqrestore+0x67/0xe0 [ 35.201595] lock_acquire+0x170/0x3f0 [ 35.205370] ? rxrpc_put_client_conn+0x524/0xa80 [ 35.210095] _raw_spin_lock+0x2a/0x40 [ 35.213990] ? rxrpc_put_client_conn+0x524/0xa80 [ 35.218716] rxrpc_put_client_conn+0x524/0xa80 [ 35.223271] ? rxrpc_rcu_destroy_call+0x83/0x190 [ 35.228011] ? rxrpc_start_call_timer+0x1f0/0x1f0 [ 35.232837] rxrpc_rcu_destroy_call+0x83/0x190 [ 35.237391] rcu_process_callbacks+0x792/0x1190 [ 35.242033] ? call_rcu_sched+0x10/0x10 [ 35.246000] __do_softirq+0x254/0x9bf [ 35.249787] ? check_preemption_disabled+0x35/0x240 [ 35.254775] irq_exit+0x15b/0x1a0 [ 35.258200] smp_apic_timer_interrupt+0x141/0x5e0 [ 35.263016] apic_timer_interrupt+0x8f/0xa0 [ 35.267306] [ 35.269513] RIP: 0010:native_safe_halt+0xe/0x10 [ 35.274150] RSP: 0018:ffff8880a989fee0 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff10 [ 35.281830] RAX: 1ffffffff0fa2cd4 RBX: dffffc0000000000 RCX: 0000000000000000 [ 35.289072] RDX: dffffc0000000000 RSI: 0000000000000001 RDI: ffff8880a988cbc4 [ 35.296314] RBP: ffffffff87d16690 R08: 1ffffffff1124201 R09: 0000000000000000 [ 35.303555] R10: 0000000000000000 R11: 0000000000000000 R12: ffffed1015311868 [ 35.310797] R13: ffff8880a988c340 R14: 0000000000000000 R15: 0000000000000000 [ 35.318053] default_idle+0x47/0x370 [ 35.321750] do_idle+0x250/0x3c0 [ 35.325176] cpu_startup_entry+0x14/0x20 [ 35.329208] secondary_startup_64+0xa5/0xb0