[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 18.167469] rc.local (4138) used greatest stack depth: 16496 bytes left [ 18.593601] audit: type=1400 audit(1518353999.528:6): avc: denied { map } for pid=4152 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.15.226' (ECDSA) to the list of known hosts. net.ipv6.conf.syz0.accept_dad = 0 net.ipv6.conf.syz0.router_solicitations = 0 syzkaller login: [ 24.915648] audit: type=1400 audit(1518354005.850:7): avc: denied { map } for pid=4166 comm="syzkaller323427" path="/root/syzkaller323427043" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 RTNETLINK answers: Operation not supported RTNETLINK answers: No buffer space available RTNETLINK answers: Operation not supported [ 25.330860] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument executing program [ 25.708397] [ 25.710225] ============================= [ 25.714389] WARNING: suspicious RCU usage [ 25.718544] 4.15.0+ #308 Not tainted [ 25.722272] ----------------------------- [ 25.726424] ./include/linux/rcupdate.h:302 Illegal context switch in RCU read-side critical section! [ 25.735700] [ 25.735700] other info that might help us debug this: [ 25.735700] [ 25.743863] [ 25.743863] rcu_scheduler_active = 2, debug_locks = 1 [ 25.750547] 1 lock held by syzkaller323427/4166: [ 25.755306] #0: (rcu_read_lock){....}, at: [<000000002882a5d6>] __rds_conn_create+0xe46/0x1b50 [ 25.764317] [ 25.764317] stack backtrace: [ 25.768831] CPU: 0 PID: 4166 Comm: syzkaller323427 Not tainted 4.15.0+ #308 [ 25.775905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 25.785238] Call Trace: [ 25.787816] dump_stack+0x194/0x257 [ 25.791425] ? arch_local_irq_restore+0x53/0x53 [ 25.796092] lockdep_rcu_suspicious+0x123/0x170 [ 25.800744] ___might_sleep+0x385/0x470 [ 25.804710] ? trace_event_raw_event_sched_switch+0x810/0x810 [ 25.810570] ? debug_mutex_init+0x1c/0x60 [ 25.814701] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 25.819705] __might_sleep+0x95/0x190 [ 25.823491] kmem_cache_alloc+0x2a2/0x760 [ 25.827623] ? lock_acquire+0x1d5/0x580 [ 25.831580] ? __rds_conn_create+0xe46/0x1b50 [ 25.836067] ? SyS_membarrier+0x700/0x700 [ 25.840191] ? init_timer_key+0x163/0x3f0 [ 25.844321] rds_tcp_conn_alloc+0xa7/0x4e0 [ 25.848548] ? rds_tcp_conn_free+0x2d0/0x2d0 [ 25.852933] ? rds_cmsg_atomic+0xff0/0xff0 [ 25.857151] ? __lockdep_init_map+0xe4/0x650 [ 25.861547] ? rds_cmsg_atomic+0xff0/0xff0 [ 25.865765] __rds_conn_create+0x112f/0x1b50 [ 25.870172] ? rds_conn_drop+0xb0/0xb0 [ 25.874055] ? __raw_spin_lock_init+0x1c/0x100 [ 25.878621] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 25.883623] ? __lockdep_init_map+0xe4/0x650 [ 25.888037] ? lockdep_init_map+0x9/0x10 [ 25.892088] ? __init_waitqueue_head+0x97/0x140 [ 25.896734] ? init_wait_entry+0x1b0/0x1b0 [ 25.900966] ? lockdep_init_map+0x9/0x10 [ 25.905011] ? rds_message_alloc+0x28c/0x330 [ 25.909406] ? rds_message_next_extension+0x210/0x210 [ 25.914589] ? trace_hardirqs_on+0xd/0x10 [ 25.918731] ? _raw_spin_unlock_bh+0x30/0x40 [ 25.923121] ? __release_sock+0x360/0x360 [ 25.927246] ? lock_sock_nested+0x91/0x110 [ 25.931466] rds_conn_create_outgoing+0x3f/0x50 [ 25.936120] rds_sendmsg+0xda3/0x2390 [ 25.939911] ? avc_has_perm+0x43e/0x680 [ 25.943880] ? rds_send_drop_to+0x19d0/0x19d0 [ 25.948353] ? release_sock+0x1d4/0x2a0 [ 25.952313] ? lock_downgrade+0x980/0x980 [ 25.956456] ? find_held_lock+0x35/0x1d0 [ 25.960507] ? sock_has_perm+0x2a4/0x420 [ 25.964549] ? selinux_secmark_relabel_packet+0xc0/0xc0 [ 25.969895] ? lock_release+0xa22/0xa40 [ 25.973850] ? trace_event_raw_event_sched_switch+0x810/0x810 [ 25.980414] ? __check_object_size+0x8b/0x530 [ 25.984894] ? __release_sock+0x360/0x360 [ 25.989040] ? __might_sleep+0x95/0x190 [ 25.993002] ? selinux_socket_sendmsg+0x36/0x40 [ 25.997657] ? security_socket_sendmsg+0x89/0xb0 [ 26.002393] ? rds_send_drop_to+0x19d0/0x19d0 [ 26.006962] sock_sendmsg+0xca/0x110 [ 26.010658] SYSC_sendto+0x361/0x5c0 [ 26.014351] ? SYSC_connect+0x4a0/0x4a0 [ 26.018310] ? security_socket_bind+0x89/0xb0 [ 26.022787] ? SYSC_bind+0x290/0x410 [ 26.026517] ? __do_page_fault+0x3d6/0xc90 [ 26.030736] ? mm_fault_error+0x2c0/0x2c0 [ 26.034867] ? move_addr_to_kernel+0x60/0x60 [ 26.039268] SyS_sendto+0x40/0x50 [ 26.042700] ? SyS_getpeername+0x30/0x30 [ 26.046758] do_syscall_64+0x282/0x940 [ 26.050622] ? __do_page_fault+0xc90/0xc90 [ 26.054848] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 26.059582] ? syscall_return_slowpath+0x550/0x550 [ 26.064495] ? syscall_return_slowpath+0x2ac/0x550 [ 26.069428] ? prepare_exit_to_usermode+0x350/0x350 [ 26.074426] ? entry_SYSCALL_64_after_hwframe+0x36/0x9b [ 26.079772] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 26.084625] entry_SYSCALL_64_after_hwframe+0x26/0x9b [ 26.089811] RIP: 0033:0x4451c9 [ 26.092980] RSP: 002b:00007ffe080c52f8 EFLAGS: 00000217 ORIG_RAX: 000000000000002c [ 26.100678] RAX: ffffffffffffffda RBX: 00000000004a6a72 RCX: 00000000004451c9 [ 26.107926] RDX: 0000000000000000 RSI: 0000000020fc2000 RDI: 0000000000000004 [ 26.115174] RBP: 00007ffe080c5418 R08: 000000002069affb R09: 0000000000000010 [ 26.122420] R10: 0000000000000000 R11: 0000000000000217 R12: 00007ffe080c5418 [ 26.129670] R13: 0000000000402690 R14: 0000000000000000 R15: 0000000000000000 [ 26.137123] BUG: sleeping function called from invalid context at mm/slab.h:420 [ 26.144603] in_atomic(): 1, irqs_disabled(): 0, pid: 4166, name: syzkaller323427 [ 26.152178] 1 lock held by syzkaller323427/4166: [ 26.156940] #0: (rcu_read_lock){....}, at: [<000000002882a5d6>] __rds_conn_create+0xe46/0x1b50 [ 26.165907] CPU: 0 PID: 4166 Comm: syzkaller323427 Not tainted 4.15.0+ #308 [ 26.172991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 26.182331] Call Trace: [ 26.184906] dump_stack+0x194/0x257 [ 26.188515] ? arch_local_irq_restore+0x53/0x53 [ 26.193165] ? print_lock+0x9f/0xa2 [ 26.196769] ? lockdep_print_held_locks+0xc4/0x130 [ 26.201683] ___might_sleep+0x2b2/0x470 [ 26.205639] ? trace_event_raw_event_sched_switch+0x810/0x810 [ 26.211502] ? debug_mutex_init+0x1c/0x60 [ 26.215627] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 26.220640] __might_sleep+0x95/0x190 [ 26.224431] kmem_cache_alloc+0x2a2/0x760 [ 26.228561] ? lock_acquire+0x1d5/0x580 [ 26.232533] ? __rds_conn_create+0xe46/0x1b50 [ 26.237005] ? SyS_membarrier+0x700/0x700 [ 26.241135] ? init_timer_key+0x163/0x3f0 [ 26.245262] rds_tcp_conn_alloc+0xa7/0x4e0 [ 26.249480] ? rds_tcp_conn_free+0x2d0/0x2d0 [ 26.253865] ? rds_cmsg_atomic+0xff0/0xff0 [ 26.258080] ? __lockdep_init_map+0xe4/0x650 [ 26.262463] ? rds_cmsg_atomic+0xff0/0xff0 [ 26.266681] __rds_conn_create+0x112f/0x1b50 [ 26.271102] ? rds_conn_drop+0xb0/0xb0 [ 26.274984] ? __raw_spin_lock_init+0x1c/0x100 [ 26.279554] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 26.284566] ? __lockdep_init_map+0xe4/0x650 [ 26.288964] ? lockdep_init_map+0x9/0x10 [ 26.293001] ? __init_waitqueue_head+0x97/0x140 [ 26.297657] ? init_wait_entry+0x1b0/0x1b0 [ 26.301875] ? lockdep_init_map+0x9/0x10 [ 26.305921] ? rds_message_alloc+0x28c/0x330 [ 26.310309] ? rds_message_next_extension+0x210/0x210 [ 26.315479] ? trace_hardirqs_on+0xd/0x10 [ 26.319615] ? _raw_spin_unlock_bh+0x30/0x40 [ 26.324007] ? __release_sock+0x360/0x360 [ 26.328138] ? lock_sock_nested+0x91/0x110 [ 26.332357] rds_conn_create_outgoing+0x3f/0x50 [ 26.337012] rds_sendmsg+0xda3/0x2390 [ 26.340800] ? avc_has_perm+0x43e/0x680 [ 26.344779] ? rds_send_drop_to+0x19d0/0x19d0 [ 26.349265] ? release_sock+0x1d4/0x2a0 [ 26.353232] ? lock_downgrade+0x980/0x980 [ 26.357359] ? find_held_lock+0x35/0x1d0 [ 26.361406] ? sock_has_perm+0x2a4/0x420 [ 26.365446] ? selinux_secmark_relabel_packet+0xc0/0xc0 [ 26.370786] ? lock_release+0xa22/0xa40 [ 26.374738] ? trace_event_raw_event_sched_switch+0x810/0x810 [ 26.380606] ? __check_object_size+0x8b/0x530 [ 26.385081] ? __release_sock+0x360/0x360 [ 26.389214] ? __might_sleep+0x95/0x190 [ 26.393172] ? selinux_socket_sendmsg+0x36/0x40 [ 26.397825] ? security_socket_sendmsg+0x89/0xb0 [ 26.402565] ? rds_send_drop_to+0x19d0/0x19d0 [ 26.407057] sock_sendmsg+0xca/0x110 [ 26.410755] SYSC_sendto+0x361/0x5c0 [ 26.414448] ? SYSC_connect+0x4a0/0x4a0 [ 26.418409] ? security_socket_bind+0x89/0xb0 [ 26.422889] ? SYSC_bind+0x290/0x410 [ 26.426607] ? __do_page_fault+0x3d6/0xc90 [ 26.430829] ? mm_fault_error+0x2c0/0x2c0 [ 26.434959] ? move_addr_to_kernel+0x60/0x60 [ 26.439350] SyS_sendto+0x40/0x50 [ 26.442785] ? SyS_getpeername+0x30/0x30 [ 26.446826] do_syscall_64+0x282/0x940 [ 26.450691] ? __do_page_fault+0xc90/0xc90 [ 26.454908] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 26.459643] ? syscall_return_slowpath+0x550/0x550 [ 26.464547] ? syscall_return_slowpath+0x2ac/0x550 [ 26.469454] ? prepare_exit_to_usermode+0x350/0x350 [ 26.474451] ? entry_SYSCALL_64_after_hwframe+0x36/0x9b [ 26.479797] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 26.484628] entry_SYSCALL_64_after_hwframe+0x26/0x9b [ 26.489795] RIP: 0033:0x4451c9 [ 26.492960] RSP: 002b:00007ffe080c52f8 EFLAGS: 00000217 ORIG_RAX: 000000000000002c [ 26.500647] RAX: ffffffffffffffda RBX: 00000000004a6a72 RCX: 00000000004451c9 [ 26.507895] RDX: 0000000000000000 RSI: 0000000020fc2000 RDI: 0000000000000004 [ 26.515140] RBP: 00007ffe080c5418 R08: 000000002069affb R09: 0000000000000010 [ 26.522385] R10: 0000000000000000 R11: 0000000000000217 R12: 00007ffe080c5418 [ 26.529631] R13: 0000000000402690 R14: 0000000000000000 R15: 0000000000000000