=============================== [ INFO: suspicious RCU usage. ] 4.9.202+ #0 Not tainted ------------------------------- include/linux/radix-tree.h:199 suspicious rcu_dereference_check() usage! other info that might help us debug this: rcu_scheduler_active = 2, debug_locks = 0 IPv6: Can't replace route, no match found 2 locks held by syz-executor.0/5804: #0: (&sb->s_type->i_mutex_key#10){+.+.+.}, at: [<0000000090cbeb12>] inode_lock include/linux/fs.h:771 [inline] #0: (&sb->s_type->i_mutex_key#10){+.+.+.}, at: [<0000000090cbeb12>] shmem_add_seals+0x166/0x1020 mm/shmem.c:2610 #1: (&(&mapping->tree_lock)->rlock){..-...}, at: [<0000000046665809>] spin_lock_irq include/linux/spinlock.h:332 [inline] #1: (&(&mapping->tree_lock)->rlock){..-...}, at: [<0000000046665809>] shmem_tag_pins mm/shmem.c:2465 [inline] #1: (&(&mapping->tree_lock)->rlock){..-...}, at: [<0000000046665809>] shmem_wait_for_pins mm/shmem.c:2506 [inline] #1: (&(&mapping->tree_lock)->rlock){..-...}, at: [<0000000046665809>] shmem_add_seals+0x342/0x1020 mm/shmem.c:2622 stack backtrace: CPU: 0 PID: 5804 Comm: syz-executor.0 Not tainted 4.9.202+ #0 ffff88019d4b7ca0 ffffffff81b55d2b ffff880196707ca8 0000000000000000 0000000000000002 00000000000000c7 ffff8801a75e4740 ffff88019d4b7cd0 ffffffff81406867 ffffea0006d67300[ 1445.514517] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.4'. SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=5807 comm=syz-executor.4 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=5807 comm=syz-executor.4 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=5807 comm=syz-executor.4 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=5807 comm=syz-executor.4 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=5807 comm=syz-executor.4 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=5807 comm=syz-executor.4 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=5807 comm=syz-executor.4 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=5807 comm=syz-executor.4 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=5807 comm=syz-executor.4 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=5807 comm=syz-executor.4 dffffc0000000000 ffff88019d4b7d78 Call Trace: [<00000000b8d51cb1>] __dump_stack lib/dump_stack.c:15 [inline] [<00000000b8d51cb1>] dump_stack+0xcb/0x130 lib/dump_stack.c:56 [<0000000006883ccc>] lockdep_rcu_suspicious.cold+0x10a/0x149 kernel/locking/lockdep.c:4458 [<000000006ee28772>] radix_tree_deref_slot include/linux/radix-tree.h:199 [inline] [<000000006ee28772>] shmem_tag_pins mm/shmem.c:2467 [inline] [<000000006ee28772>] shmem_wait_for_pins mm/shmem.c:2506 [inline] [<000000006ee28772>] shmem_add_seals+0xa44/0x1020 mm/shmem.c:2622 [<000000000f33a809>] shmem_fcntl+0xf7/0x130 mm/shmem.c:2657 [<0000000065399015>] do_fcntl fs/fcntl.c:340 [inline] [<0000000065399015>] SYSC_fcntl fs/fcntl.c:376 [inline] [<0000000065399015>] SyS_fcntl+0x1d5/0xb50 fs/fcntl.c:361 [<0000000011890daa>] do_syscall_64+0x1ad/0x5c0 arch/x86/entry/common.c:288 [<00000000083f23c9>] entry_SYSCALL_64_after_swapgs+0x5d/0xdb IPv6: Can't replace route, no match found audit: type=1400 audit(1574659356.069:2045): avc: denied { create } for pid=5842 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 input: ryz as /devices/virtual/input/input30 audit: type=1400 audit(1574659356.159:2046): avc: denied { write } for pid=5842 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(1574659356.549:2047): avc: denied { read } for pid=5842 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(1574659356.689:2048): avc: denied { create } for pid=5842 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 IPv6: Can't replace route, no match found audit: type=1400 audit(1574659358.339:2049): avc: denied { create } for pid=5907 comm="syz-executor.0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(1574659358.549:2050): avc: denied { write } for pid=5907 comm="syz-executor.0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 IPv6: Can't replace route, no match found audit: type=1400 audit(1574659358.909:2051): avc: denied { create } for pid=5907 comm="syz-executor.0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(1574659359.169:2052): avc: denied { set_context_mgr } for pid=5940 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=binder permissive=1 binder: 5940:5949 BC_INCREFS_DONE u8fac7bb076430000 no match audit: type=1400 audit(1574659359.499:2053): avc: denied { prog_load } for pid=5951 comm="syz-executor.4" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=bpf permissive=1 audit: type=1400 audit(1574659359.629:2054): avc: denied { prog_run } for pid=5951 comm="syz-executor.4" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=bpf permissive=1 IPv6: Can't replace route, no match found audit_printk_skb: 18 callbacks suppressed audit: type=1400 audit(1574659361.379:2061): avc: denied { create } for pid=5999 comm="syz-executor.0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(1574659361.459:2062): avc: denied { create } for pid=5994 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 IPv6: Can't replace route, no match found IPv6: Can't replace route, no match found audit: type=1400 audit(1574659363.079:2063): avc: denied { create } for pid=5994 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 IPv6: Can't replace route, no match found