=============================== [ INFO: suspicious RCU usage. ] 4.9.202+ #0 Not tainted ------------------------------- include/linux/radix-tree.h:199 suspicious rcu_dereference_check() usage! other info that might help us debug this: rcu_scheduler_active = 2, debug_locks = 0 2 locks held by syz-executor.0/15107: #0: (&sb->s_type->i_mutex_key#10){+.+.+.}, at: [<0000000000a52885>] inode_lock include/linux/fs.h:771 [inline] #0: (&sb->s_type->i_mutex_key#10){+.+.+.}, at: [<0000000000a52885>] shmem_add_seals+0x166/0x1020 mm/shmem.c:2610 #1: (&(&mapping->tree_lock)->rlock){..-...}, at: [<00000000bbb333b5>] spin_lock_irq include/linux/spinlock.h:332 [inline] #1: (&(&mapping->tree_lock)->rlock){..-...}, at: [<00000000bbb333b5>] shmem_tag_pins mm/shmem.c:2465 [inline] #1: (&(&mapping->tree_lock)->rlock){..-...}, at: [<00000000bbb333b5>] shmem_wait_for_pins mm/shmem.c:2506 [inline] #1: (&(&mapping->tree_lock)->rlock){..-...}, at: [<00000000bbb333b5>] shmem_add_seals+0x342/0x1020 mm/shmem.c:2622 stack backtrace: CPU: 1 PID: 15107 Comm: syz-executor.0 Not tainted 4.9.202+ #0 ffff8801c8c9fca0 ffffffff81b55d2b ffff8801cd967760 0000000000000000 0000000000000002 00000000000000c7 ffff8801a00a0000 ffff8801c8c9fcd0 ffffffff81406867 ffffea0006668d40 dffffc0000000000 ffff8801c8c9fd78 Call Trace: [<00000000103ae290>] __dump_stack lib/dump_stack.c:15 [inline] [<00000000103ae290>] dump_stack+0xcb/0x130 lib/dump_stack.c:56 [<00000000000e0353>] lockdep_rcu_suspicious.cold+0x10a/0x149 kernel/locking/lockdep.c:4458 [<00000000b68cb67c>] radix_tree_deref_slot include/linux/radix-tree.h:199 [inline] [<00000000b68cb67c>] shmem_tag_pins mm/shmem.c:2467 [inline] [<00000000b68cb67c>] shmem_wait_for_pins mm/shmem.c:2506 [inline] [<00000000b68cb67c>] shmem_add_seals+0xa44/0x1020 mm/shmem.c:2622 [<00000000bbcefbb3>] shmem_fcntl+0xf7/0x130 mm/shmem.c:2657 [<00000000911b1abe>] do_fcntl fs/fcntl.c:340 [inline] [<00000000911b1abe>] SYSC_fcntl fs/fcntl.c:376 [inline] [<00000000911b1abe>] SyS_fcntl+0x1d5/0xb50 fs/fcntl.c:361 [<00000000faaa593f>] do_syscall_64+0x1ad/0x5c0 arch/x86/entry/common.c:288 [<00000000b31491ce>] entry_SYSCALL_64_after_swapgs+0x5d/0xdb device lo entered promiscuous mode device lo left promiscuous mode input: syz1 as /devices/virtual/input/input10 device lo entered promiscuous mode device lo left promiscuous mode input: syz1 as /devices/virtual/input/input11 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8244 sclass=netlink_route_socket pig=15208 comm=syz-executor.1 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=7 sclass=netlink_route_socket pig=15268 comm=syz-executor.2 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=7 sclass=netlink_route_socket pig=15268 comm=syz-executor.2 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=12297 sclass=netlink_route_socket pig=15336 comm=syz-executor.2 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=12297 sclass=netlink_route_socket pig=15336 comm=syz-executor.2 audit: type=1400 audit(2000000141.170:68): avc: denied { create } for pid=15591 comm="syz-executor.5" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_crypto_socket permissive=1 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=15639 comm=syz-executor.0 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=26159 sclass=netlink_route_socket pig=15644 comm=syz-executor.3 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=15648 comm=syz-executor.0 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=42932 sclass=netlink_route_socket pig=15669 comm=syz-executor.5 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=42932 sclass=netlink_route_socket pig=15669 comm=syz-executor.5 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=15682 comm=syz-executor.5 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=26159 sclass=netlink_route_socket pig=15694 comm=syz-executor.3 netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'. blk_update_request: I/O error, dev loop0, sector 0 F2FS-fs (loop0): Unable to read 1th superblock blk_update_request: I/O error, dev loop0, sector 8 F2FS-fs (loop0): Unable to read 2th superblock SELinux: unrecognized netlink message: protocol=0 nlmsg_type=26159 sclass=netlink_route_socket pig=15742 comm=syz-executor.3 hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 audit: type=1400 audit(2000000142.740:69): avc: denied { create } for pid=15756 comm="syz-executor.5" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_connector_socket permissive=1 hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz0] on syz1 hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz0] on syz1 SELinux: unrecognized netlink message: protocol=4 nlmsg_type=32 sclass=netlink_tcpdiag_socket pig=15841 comm=syz-executor.5 SELinux: unrecognized netlink message: protocol=4 nlmsg_type=32 sclass=netlink_tcpdiag_socket pig=15849 comm=syz-executor.5 : renamed from ip_vti0