[....] Starting enhanced syslogd: rsyslogd[ 17.224973] audit: type=1400 audit(1518384173.611:5): avc: denied { syslog } for pid=4019 comm="rsyslogd" capability=34 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 22.369948] audit: type=1400 audit(1518384178.756:6): avc: denied { map } for pid=4159 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '10.128.0.55' (ECDSA) to the list of known hosts. executing program [ 33.681172] audit: type=1400 audit(1518384190.067:7): avc: denied { map } for pid=4174 comm="syzkaller104212" path="/root/syzkaller104212008" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 33.708957] [ 33.710677] ============================= [ 33.714883] WARNING: suspicious RCU usage [ 33.719048] 4.15.0+ #218 Not tainted [ 33.722783] ----------------------------- [ 33.726947] ./include/linux/rcupdate.h:302 Illegal context switch in RCU read-side critical section! [ 33.736239] [ 33.736239] other info that might help us debug this: [ 33.736239] [ 33.744415] [ 33.744415] rcu_scheduler_active = 2, debug_locks = 1 [ 33.751107] 1 lock held by syzkaller104212/4174: [ 33.755874] #0: (rcu_read_lock){....}, at: [<00000000e293402e>] __rds_conn_create+0xe46/0x1b50 [ 33.764878] [ 33.764878] stack backtrace: [ 33.769416] CPU: 1 PID: 4174 Comm: syzkaller104212 Not tainted 4.15.0+ #218 [ 33.776491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 33.785821] Call Trace: [ 33.788390] dump_stack+0x194/0x257 [ 33.792006] ? arch_local_irq_restore+0x53/0x53 [ 33.796666] lockdep_rcu_suspicious+0x123/0x170 [ 33.801326] ___might_sleep+0x385/0x470 [ 33.805287] ? trace_event_raw_event_sched_switch+0x810/0x810 [ 33.811150] ? __debug_object_init+0x235/0x1040 [ 33.815799] ? debug_mutex_init+0x1c/0x60 [ 33.819927] __might_sleep+0x95/0x190 [ 33.823727] kmem_cache_alloc_trace+0x299/0x740 [ 33.828376] ? lock_acquire+0x1d5/0x580 [ 33.832323] ? lock_acquire+0x1d5/0x580 [ 33.836284] ? __rds_conn_create+0xe46/0x1b50 [ 33.840761] rds_loop_conn_alloc+0xc8/0x380 [ 33.845059] ? rds_loop_conn_free+0x290/0x290 [ 33.849542] ? __init_waitqueue_head+0x97/0x140 [ 33.854191] ? rcutorture_record_progress+0x10/0x10 [ 33.859194] ? __lockdep_init_map+0xe4/0x650 [ 33.863587] __rds_conn_create+0x112f/0x1b50 [ 33.867989] ? rds_conn_drop+0xb0/0xb0 [ 33.871869] ? __raw_spin_lock_init+0x1c/0x100 [ 33.876441] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 33.881453] ? __lockdep_init_map+0xe4/0x650 [ 33.885840] ? lockdep_init_map+0x9/0x10 [ 33.889877] ? __init_waitqueue_head+0x97/0x140 [ 33.894533] ? init_wait_entry+0x1b0/0x1b0 [ 33.898747] ? lockdep_init_map+0x9/0x10 [ 33.902788] ? rds_message_alloc+0x28c/0x330 [ 33.907172] ? rds_message_next_extension+0x210/0x210 [ 33.912337] ? trace_hardirqs_on+0xd/0x10 [ 33.916474] ? _raw_spin_unlock_bh+0x30/0x40 [ 33.920874] ? __release_sock+0x360/0x360 [ 33.925006] ? lock_sock_nested+0x91/0x110 [ 33.929223] rds_conn_create_outgoing+0x3f/0x50 [ 33.933873] rds_sendmsg+0xda3/0x2390 [ 33.937646] ? avc_has_perm+0x43e/0x680 [ 33.941610] ? rds_send_drop_to+0x19d0/0x19d0 [ 33.946085] ? __might_fault+0x110/0x1d0 [ 33.950122] ? lock_downgrade+0x980/0x980 [ 33.954251] ? compat_rw_copy_check_uvector+0x25f/0x2f0 [ 33.959593] ? sock_has_perm+0x2a4/0x420 [ 33.963632] ? selinux_secmark_relabel_packet+0xc0/0xc0 [ 33.968979] ? iov_iter_get_pages+0x1150/0x1150 [ 33.973639] ? selinux_socket_sendmsg+0x36/0x40 [ 33.978287] ? security_socket_sendmsg+0x89/0xb0 [ 33.983020] ? rds_send_drop_to+0x19d0/0x19d0 [ 33.987496] sock_sendmsg+0xca/0x110 [ 33.991199] ___sys_sendmsg+0x767/0x8b0 [ 33.995154] ? copy_msghdr_from_user+0x590/0x590 [ 33.999898] ? release_sock+0x1d4/0x2a0 [ 34.003861] ? __handle_mm_fault+0x80e/0x3ce0 [ 34.008344] ? __pmd_alloc+0x4e0/0x4e0 [ 34.012208] ? check_noncircular+0x20/0x20 [ 34.016425] ? __fget_light+0x2b2/0x3c0 [ 34.020375] ? fget_raw+0x20/0x20 [ 34.023823] ? handle_mm_fault+0x270/0x970 [ 34.028041] ? find_held_lock+0x35/0x1d0 [ 34.032104] __sys_sendmsg+0xe5/0x210 [ 34.035880] ? __sys_sendmsg+0xe5/0x210 [ 34.039833] ? SyS_shutdown+0x290/0x290 [ 34.043797] ? __handle_mm_fault+0x3ce0/0x3ce0 [ 34.048354] ? vmacache_find+0x5f/0x280 [ 34.052326] compat_SyS_sendmsg+0x2a/0x40 [ 34.056459] ? compat_SyS_getsockopt+0x420/0x420 [ 34.061202] do_fast_syscall_32+0x3ee/0xfa1 [ 34.065517] ? do_int80_syscall_32+0x9d0/0x9d0 [ 34.070086] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 34.074822] ? syscall_return_slowpath+0x550/0x550 [ 34.079742] ? syscall_return_slowpath+0x2ac/0x550 [ 34.084651] ? prepare_exit_to_usermode+0x350/0x350 [ 34.089645] ? retint_user+0x18/0x18 [ 34.093339] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 34.098163] entry_SYSENTER_compat+0x54/0x63 [ 34.102547] RIP: 0023:0xf7fc3c79 [ 34.105885] RSP: 002b:00000000ffe0bacc EFLAGS: 00000217 ORIG_RAX: 0000000000000172 [ 34.113568] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020159fc8 [ 34.120824] RDX: 0000000000000000 RSI: 000000000000016a RDI: 0000000000000003 [ 34.128069] RBP: 0000000020adf000 R08: 0000000000000000 R09: 0000000000000000 [ 34.135313] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 34.142583] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 34.149937] BUG: sleeping function called from invalid context at mm/slab.h:420 [ 34.157408] in_atomic(): 1, irqs_disabled(): 0, pid: 4174, name: syzkaller104212 [ 34.164968] 1 lock held by syzkaller104212/4174: [ 34.169732] #0: (rcu_read_lock){....}, at: [<00000000e293402e>] __rds_conn_create+0xe46/0x1b50 [ 34.178697] CPU: 1 PID: 4174 Comm: syzkaller104212 Not tainted 4.15.0+ #218 [ 34.185770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 34.195099] Call Trace: [ 34.197665] dump_stack+0x194/0x257 [ 34.201272] ? arch_local_irq_restore+0x53/0x53 [ 34.205926] ? print_lock+0x9f/0xa2 [ 34.209529] ? lockdep_print_held_locks+0xc4/0x130 [ 34.214440] ___might_sleep+0x2b2/0x470 [ 34.218392] ? trace_event_raw_event_sched_switch+0x810/0x810 [ 34.224247] ? __debug_object_init+0x235/0x1040 [ 34.228891] ? debug_mutex_init+0x1c/0x60 [ 34.233017] __might_sleep+0x95/0x190 [ 34.236799] kmem_cache_alloc_trace+0x299/0x740 [ 34.241448] ? lock_acquire+0x1d5/0x580 [ 34.245397] ? lock_acquire+0x1d5/0x580 [ 34.249355] ? __rds_conn_create+0xe46/0x1b50 [ 34.253833] rds_loop_conn_alloc+0xc8/0x380 [ 34.258132] ? rds_loop_conn_free+0x290/0x290 [ 34.262601] ? __init_waitqueue_head+0x97/0x140 [ 34.267249] ? rcutorture_record_progress+0x10/0x10 [ 34.272240] ? __lockdep_init_map+0xe4/0x650 [ 34.276625] __rds_conn_create+0x112f/0x1b50 [ 34.281025] ? rds_conn_drop+0xb0/0xb0 [ 34.284896] ? __raw_spin_lock_init+0x1c/0x100 [ 34.289453] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 34.294450] ? __lockdep_init_map+0xe4/0x650 [ 34.298836] ? lockdep_init_map+0x9/0x10 [ 34.302872] ? __init_waitqueue_head+0x97/0x140 [ 34.307515] ? init_wait_entry+0x1b0/0x1b0 [ 34.311739] ? lockdep_init_map+0x9/0x10 [ 34.315778] ? rds_message_alloc+0x28c/0x330 [ 34.320164] ? rds_message_next_extension+0x210/0x210 [ 34.325338] ? trace_hardirqs_on+0xd/0x10 [ 34.329465] ? _raw_spin_unlock_bh+0x30/0x40 [ 34.333852] ? __release_sock+0x360/0x360 [ 34.337974] ? lock_sock_nested+0x91/0x110 [ 34.342191] rds_conn_create_outgoing+0x3f/0x50 [ 34.346838] rds_sendmsg+0xda3/0x2390 [ 34.350613] ? avc_has_perm+0x43e/0x680 [ 34.354576] ? rds_send_drop_to+0x19d0/0x19d0 [ 34.359060] ? __might_fault+0x110/0x1d0 [ 34.363100] ? lock_downgrade+0x980/0x980 [ 34.367232] ? compat_rw_copy_check_uvector+0x25f/0x2f0 [ 34.372576] ? sock_has_perm+0x2a4/0x420 [ 34.376630] ? selinux_secmark_relabel_packet+0xc0/0xc0 [ 34.381985] ? iov_iter_get_pages+0x1150/0x1150 [ 34.386643] ? selinux_socket_sendmsg+0x36/0x40 [ 34.391397] ? security_socket_sendmsg+0x89/0xb0 [ 34.396141] ? rds_send_drop_to+0x19d0/0x19d0 [ 34.400615] sock_sendmsg+0xca/0x110 [ 34.404314] ___sys_sendmsg+0x767/0x8b0 [ 34.408269] ? copy_msghdr_from_user+0x590/0x590 [ 34.413012] ? release_sock+0x1d4/0x2a0 [ 34.416969] ? __handle_mm_fault+0x80e/0x3ce0 [ 34.421446] ? __pmd_alloc+0x4e0/0x4e0 [ 34.425306] ? check_noncircular+0x20/0x20 [ 34.429519] ? __fget_light+0x2b2/0x3c0 [ 34.433482] ? fget_raw+0x20/0x20 [ 34.436917] ? handle_mm_fault+0x270/0x970 [ 34.441141] ? find_held_lock+0x35/0x1d0 [ 34.445192] __sys_sendmsg+0xe5/0x210 [ 34.448967] ? __sys_sendmsg+0xe5/0x210 [ 34.453003] ? SyS_shutdown+0x290/0x290 [ 34.456956] ? __handle_mm_fault+0x3ce0/0x3ce0 [ 34.461512] ? vmacache_find+0x5f/0x280 [ 34.465496] compat_SyS_sendmsg+0x2a/0x40 [ 34.469620] ? compat_SyS_getsockopt+0x420/0x420 [ 34.474353] do_fast_syscall_32+0x3ee/0xfa1 [ 34.478654] ? do_int80_syscall_32+0x9d0/0x9d0 [ 34.483224] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 34.487960] ? syscall_return_slowpath+0x550/0x550 [ 34.492863] ? syscall_return_slowpath+0x2ac/0x550 [ 34.497768] ? prepare_exit_to_usermode+0x350/0x350 [ 34.502775] ? retint_user+0x18/0x18 [ 34.506469] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 34.511296] entry_SYSENTER_compat+0x54/0x63 [ 34.515679] RIP: 0023:0xf7fc3c79 [ 34.519016] RSP: 002b:00000000ffe0bacc EFLAGS: 00000217 ORIG_RAX: 0000000000000172 [ 34.526704] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020159fc8 [ 34.5339