===============================
[ INFO: suspicious RCU usage. ]
4.9.202+ #0 Not tainted
-------------------------------
include/linux/radix-tree.h:199 suspicious rcu_dereference_check() usage!

other info that might help us debug this:


rcu_scheduler_active = 2, debug_locks = 0
2 locks held by syz-executor.5/17122:
 #0:  (&sb->s_type->i_mutex_key#10){+.+.+.}, at: [<000000002e058ddc>] inode_lock include/linux/fs.h:771 [inline]
 #0:  (&sb->s_type->i_mutex_key#10){+.+.+.}, at: [<000000002e058ddc>] shmem_add_seals+0x166/0x1020 mm/shmem.c:2610
 #1:  (&(&mapping->tree_lock)->rlock){..-...}, at: [<00000000803da7cb>] spin_lock_irq include/linux/spinlock.h:332 [inline]
 #1:  (&(&mapping->tree_lock)->rlock){..-...}, at: [<00000000803da7cb>] shmem_tag_pins mm/shmem.c:2465 [inline]
 #1:  (&(&mapping->tree_lock)->rlock){..-...}, at: [<00000000803da7cb>] shmem_wait_for_pins mm/shmem.c:2506 [inline]
 #1:  (&(&mapping->tree_lock)->rlock){..-...}, at: [<00000000803da7cb>] shmem_add_seals+0x342/0x1020 mm/shmem.c:2622

stack backtrace:
CPU: 1 PID: 17122 Comm: syz-executor.5 Not tainted 4.9.202+ #0
 ffff8801d5df7ca0 ffffffff81b55d2b ffff8801c4ec10a8 0000000000000000
 0000000000000002 00000000000000c7 ffff8801a674af80 ffff8801d5df7cd0
 ffffffff81406867 ffffea000658d7c0 dffffc0000000000 ffff8801d5df7d78
Call Trace:
 [<0000000050317d02>] __dump_stack lib/dump_stack.c:15 [inline]
 [<0000000050317d02>] dump_stack+0xcb/0x130 lib/dump_stack.c:56
 [<00000000fa50b13c>] lockdep_rcu_suspicious.cold+0x10a/0x149 kernel/locking/lockdep.c:4458
 [<000000001eb56e74>] radix_tree_deref_slot include/linux/radix-tree.h:199 [inline]
 [<000000001eb56e74>] shmem_tag_pins mm/shmem.c:2467 [inline]
 [<000000001eb56e74>] shmem_wait_for_pins mm/shmem.c:2506 [inline]
 [<000000001eb56e74>] shmem_add_seals+0xa44/0x1020 mm/shmem.c:2622
 [<00000000e9b83f4a>] shmem_fcntl+0xf7/0x130 mm/shmem.c:2657
 [<000000002290d4e4>] do_fcntl fs/fcntl.c:340 [inline]
 [<000000002290d4e4>] SYSC_fcntl fs/fcntl.c:376 [inline]
 [<000000002290d4e4>] SyS_fcntl+0x1d5/0xb50 fs/fcntl.c:361
 [<00000000aad9845d>] do_syscall_64+0x1ad/0x5c0 arch/x86/entry/common.c:288
 [<00000000f49ad943>] entry_SYSCALL_64_after_swapgs+0x5d/0xdb
ip6_tunnel: á
 xmit: Local address not yet configured!
ip6_tunnel: à
 xmit: Local address not yet configured!
ip6_tunnel: á
 xmit: Local address not yet configured!
audit: type=1400 audit(1574650337.048:858): avc:  denied  { read } for  pid=17107 comm="syz-executor.2" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
ip6_tunnel: à
 xmit: Local address not yet configured!
audit: type=1400 audit(1574650337.288:859): avc:  denied  { create } for  pid=17107 comm="syz-executor.2" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
audit: type=1400 audit(1574650337.288:860): avc:  denied  { write } for  pid=17107 comm="syz-executor.2" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
audit: type=1400 audit(1574650337.498:861): avc:  denied  { create } for  pid=17108 comm=2B8B8A16114FDDDF6B284699DF92D5 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
audit: type=1400 audit(1574650337.498:862): avc:  denied  { write } for  pid=17108 comm=2B8B8A16114FDDDF6B284699DF92D5 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
devpts: called with bogus options
audit: type=1400 audit(1574650337.708:863): avc:  denied  { create } for  pid=17137 comm="syz-executor.4" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
input: ryz as /devices/virtual/input/input12
audit: type=1400 audit(1574650337.708:864): avc:  denied  { write } for  pid=17137 comm="syz-executor.4" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
ip6_tunnel: á
 xmit: Local address not yet configured!
ip6_tunnel: à
 xmit: Local address not yet configured!
ip6_tunnel: á
 xmit: Local address not yet configured!
selinux_nlmsg_perm: 21 callbacks suppressed
SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pig=17306 comm=syz-executor.4
SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pig=17306 comm=syz-executor.4
SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pig=17306 comm=syz-executor.4
SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pig=17306 comm=syz-executor.4
SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pig=17306 comm=syz-executor.4
SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pig=17306 comm=syz-executor.4
SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pig=17306 comm=syz-executor.4
SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pig=17306 comm=syz-executor.4
SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pig=17306 comm=syz-executor.4
SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pig=17306 comm=syz-executor.4
audit_printk_skb: 12 callbacks suppressed
audit: type=1400 audit(1574650342.468:869): avc:  denied  { create } for  pid=17343 comm="syz-executor.5" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
audit: type=1400 audit(1574650342.678:870): avc:  denied  { write } for  pid=17343 comm="syz-executor.5" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
audit: type=1400 audit(1574650343.048:871): avc:  denied  { read } for  pid=17343 comm="syz-executor.5" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
audit: type=1400 audit(1574650343.138:872): avc:  denied  { create } for  pid=17343 comm="syz-executor.5" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
blk_update_request: I/O error, dev loop0, sector 0
blk_update_request: I/O error, dev loop0, sector 1024
audit: type=1400 audit(1574650344.398:873): avc:  denied  { create } for  pid=17419 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1
audit: type=1400 audit(1574650344.688:874): avc:  denied  { create } for  pid=17422 comm="syz-executor.5" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
audit: type=1400 audit(1574650344.818:875): avc:  denied  { create } for  pid=17419 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1
audit: type=1400 audit(1574650345.028:876): avc:  denied  { write } for  pid=17422 comm="syz-executor.5" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
audit: type=1400 audit(1574650345.328:877): avc:  denied  { create } for  pid=17422 comm="syz-executor.5" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1