============================= WARNING: suspicious RCU usage 4.19.84 #0 Not tainted ----------------------------- include/linux/radix-tree.h:241 suspicious rcu_dereference_check() usage! other info that might help us debug this: rcu_scheduler_active = 2, debug_locks = 1 2 locks held by syz-executor.2/2299: #0: 00000000b949eca2 (&sb->s_type->i_mutex_key#12){+.+.}, at: inode_lock include/linux/fs.h:747 [inline] #0: 00000000b949eca2 (&sb->s_type->i_mutex_key#12){+.+.}, at: memfd_add_seals mm/memfd.c:199 [inline] #0: 00000000b949eca2 (&sb->s_type->i_mutex_key#12){+.+.}, at: memfd_fcntl+0x235/0x1750 mm/memfd.c:249 #1: 000000004ac01e7a (&(&(&mapping->i_pages)->xa_lock)->rlock){-.-.}, at: spin_lock_irq include/linux/spinlock.h:354 [inline] #1: 000000004ac01e7a (&(&(&mapping->i_pages)->xa_lock)->rlock){-.-.}, at: memfd_tag_pins mm/memfd.c:42 [inline] #1: 000000004ac01e7a (&(&(&mapping->i_pages)->xa_lock)->rlock){-.-.}, at: memfd_wait_for_pins mm/memfd.c:83 [inline] #1: 000000004ac01e7a (&(&(&mapping->i_pages)->xa_lock)->rlock){-.-.}, at: memfd_add_seals mm/memfd.c:217 [inline] #1: 000000004ac01e7a (&(&(&mapping->i_pages)->xa_lock)->rlock){-.-.}, at: memfd_fcntl+0x4bc/0x1750 mm/memfd.c:249 stack backtrace: CPU: 0 PID: 2299 Comm: syz-executor.2 Not tainted 4.19.84 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x197/0x210 lib/dump_stack.c:118 lockdep_rcu_suspicious+0x153/0x15d kernel/locking/lockdep.c:4539 radix_tree_deref_slot include/linux/radix-tree.h:241 [inline] radix_tree_deref_slot include/linux/radix-tree.h:239 [inline] memfd_tag_pins mm/memfd.c:44 [inline] memfd_wait_for_pins mm/memfd.c:83 [inline] memfd_add_seals mm/memfd.c:217 [inline] memfd_fcntl+0xfdf/0x1750 mm/memfd.c:249 do_fcntl+0x200/0x1020 fs/fcntl.c:421 __do_sys_fcntl fs/fcntl.c:463 [inline] __se_sys_fcntl fs/fcntl.c:448 [inline] __x64_sys_fcntl+0x16d/0x1e0 fs/fcntl.c:448 do_syscall_64+0xfd/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x45a639 Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 RSP: 002b:00007fdb9aa1bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000048 RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a639 RDX: 0000000000000008 RSI: 0000000000000409 RDI: 0000000000000004 RBP: 000000000075c070 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007fdb9aa1c6d4 R13: 00000000004c1068 R14: 00000000004d3c60 R15: 00000000ffffffff usb usb2: usbfs: process 2304 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 2307 (syz-executor.1) did not claim interface 0 before use usb usb2: usbfs: process 2309 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2311 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 2317 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2407 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 2428 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2438 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2455 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 2456 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2463 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 2467 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2473 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2477 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 2574 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2580 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 2598 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2599 (syz-executor.5) did not claim interface 0 before use RDS: rds_bind could not find a transport for ::ffff:172.20.20.0, load rds_tcp or rds_rdma? usb usb2: usbfs: process 2604 (syz-executor.1) did not claim interface 0 before use FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 RDS: rds_bind could not find a transport for ::ffff:172.20.20.0, load rds_tcp or rds_rdma? CPU: 0 PID: 2604 Comm: syz-executor.1 Not tainted 4.19.84 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x197/0x210 lib/dump_stack.c:118 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0xa/0x1b lib/fault-inject.c:149 __should_failslab+0x121/0x190 mm/failslab.c:32 should_failslab+0x9/0x14 mm/slab_common.c:1557 slab_pre_alloc_hook mm/slab.h:424 [inline] slab_alloc mm/slab.c:3383 [inline] __do_kmalloc mm/slab.c:3725 [inline] __kmalloc_track_caller+0x2de/0x750 mm/slab.c:3742 kstrdup+0x3a/0x70 mm/util.c:56 kstrdup_const+0x66/0x80 mm/util.c:77 __kernfs_new_node+0xb0/0x680 fs/kernfs/dir.c:630 kernfs_new_node+0x99/0x130 fs/kernfs/dir.c:694 kernfs_create_link+0xdd/0x250 fs/kernfs/symlink.c:40 sysfs_do_create_link_sd.isra.0+0x90/0x130 fs/sysfs/symlink.c:43 sysfs_do_create_link fs/sysfs/symlink.c:79 [inline] sysfs_create_link+0x65/0xc0 fs/sysfs/symlink.c:91 driver_sysfs_add+0x107/0x2a0 drivers/base/dd.c:370 device_bind_driver+0x19/0xe0 drivers/base/dd.c:424 usb_driver_claim_interface+0x249/0x430 drivers/usb/core/driver.c:546 claimintf+0x11e/0x180 drivers/usb/core/devio.c:743 checkintf drivers/usb/core/devio.c:781 [inline] checkintf+0x154/0x1c0 drivers/usb/core/devio.c:769 proc_do_submiturb+0x1cc0/0x3ab0 drivers/usb/core/devio.c:1465 proc_submiturb drivers/usb/core/devio.c:1809 [inline] usbdev_do_ioctl+0x73e/0x2f50 drivers/usb/core/devio.c:2463 usbdev_ioctl+0x26/0x30 drivers/usb/core/devio.c:2567 vfs_ioctl fs/ioctl.c:46 [inline] file_ioctl fs/ioctl.c:501 [inline] do_vfs_ioctl+0xd5f/0x1380 fs/ioctl.c:688 ksys_ioctl+0xab/0xd0 fs/ioctl.c:705 __do_sys_ioctl fs/ioctl.c:712 [inline] __se_sys_ioctl fs/ioctl.c:710 [inline] __x64_sys_ioctl+0x73/0xb0 fs/ioctl.c:710 do_syscall_64+0xfd/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x45a639 Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 RSP: 002b:00007f98a03fac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 00007f98a03fac90 RCX: 000000000045a639 RDX: 0000000020000080 RSI: 000000008038550a RDI: 0000000000000003 RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007f98a03fb6d4 R13: 00000000004c5a15 R14: 00000000004daa88 R15: 0000000000000004 usb usb2: usbfs: process 2609 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 2628 (syz-executor.2) did not claim interface 0 before use usb usb2: usbfs: process 2634 (syz-executor.1) did not claim interface 0 before use usb usb2: usbfs: process 2635 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2636 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 2639 (syz-executor.2) did not claim interface 0 before use usb usb2: usbfs: process 2641 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 2646 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2652 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 2661 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2667 (syz-executor.5) did not claim interface 0 before use RDS: rds_bind could not find a transport for ::ffff:172.20.20.0, load rds_tcp or rds_rdma? usb usb2: usbfs: process 2675 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2678 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 2685 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2692 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 2697 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2703 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 2711 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2716 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 2719 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2728 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2729 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 2738 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2740 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 2750 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2754 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 2759 (syz-executor.4) did not claim interface 0 before use overlayfs: failed to resolve './file0': -2 usb usb2: usbfs: process 2761 (syz-executor.5) did not claim interface 0 before use overlayfs: failed to resolve './file0': -2 usb usb2: usbfs: process 2766 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2768 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 2770 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2775 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 2777 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2909 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 2913 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2922 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 2927 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2937 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 2941 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2952 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 2953 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2960 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 2962 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2964 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 2970 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 2973 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 2977 (syz-executor.4) did not claim interface 0 before use nla_parse: 3 callbacks suppressed netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. netlink: 3 bytes leftover after parsing attributes in process `syz-executor.3'. usb usb2: usbfs: process 3102 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 3105 (syz-executor.4) did not claim interface 0 before use netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. usb usb2: usbfs: process 3113 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 3118 (syz-executor.4) did not claim interface 0 before use audit: type=1804 audit(2000002066.752:3005): pid=3120 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir037494849/syzkaller.NR4jIZ/271/bus" dev="sda1" ino=17230 res=1 usb usb2: usbfs: process 3124 (syz-executor.5) did not claim interface 0 before use audit: type=1804 audit(2000002066.792:3006): pid=3120 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op=invalid_pcr cause=ToMToU comm="syz-executor.3" name="/root/syzkaller-testdir037494849/syzkaller.NR4jIZ/271/bus" dev="sda1" ino=17230 res=1 usb usb2: usbfs: process 3129 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 3202 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 3241 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 3246 (syz-executor.5) did not claim interface 0 before use audit: type=1804 audit(2000002067.592:3007): pid=3125 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op=invalid_pcr cause=ToMToU comm="syz-executor.3" name="/root/syzkaller-testdir037494849/syzkaller.NR4jIZ/271/bus" dev="sda1" ino=17230 res=1 audit: type=1804 audit(2000002067.592:3008): pid=3247 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir037494849/syzkaller.NR4jIZ/271/bus" dev="sda1" ino=17230 res=1 audit: type=1804 audit(2000002067.622:3009): pid=3125 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op=invalid_pcr cause=ToMToU comm="syz-executor.3" name="/root/syzkaller-testdir037494849/syzkaller.NR4jIZ/271/bus" dev="sda1" ino=17230 res=1 usb usb2: usbfs: process 3255 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: process 3257 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 3267 (syz-executor.5) did not claim interface 0 before use usb usb2: usbfs: process 3271 (syz-executor.4) did not claim interface 0 before use usb usb2: usbfs: interface 0 claimed by usbfs while 'syz-executor.1' sets config #33027