EXT4-fs (loop2): EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31 device lo left promiscuous mode =============================== [ INFO: suspicious RCU usage. ] 4.9.202+ #0 Not tainted device lo entered promiscuous mode ------------------------------- include/linux/radix-tree.h:199 suspicious rcu_dereference_check() usage! other info that might help us debug this: rcu_scheduler_active = 2, debug_locks = 0 2 locks held by syz-executor.2/4477: #0: (&sb->s_type->i_mutex_key#10){+.+.+.}, at: [<0000000068438566>] inode_lock include/linux/fs.h:771 [inline] #0: (&sb->s_type->i_mutex_key#10){+.+.+.}, at: [<0000000068438566>] shmem_add_seals+0x166/0x1020 mm/shmem.c:2610 #1: (&(&mapping->tree_lock)->rlock){..-...}, at: [<0000000006c8a0d2>] spin_lock_irq include/linux/spinlock.h:332 [inline] #1: (&(&mapping->tree_lock)->rlock){..-...}, at: [<0000000006c8a0d2>] shmem_tag_pins mm/shmem.c:2465 [inline] #1: (&(&mapping->tree_lock)->rlock){..-...}, at: [<0000000006c8a0d2>] shmem_wait_for_pins mm/shmem.c:2506 [inline] #1: (&(&mapping->tree_lock)->rlock){..-...}, at: [<0000000006c8a0d2>] shmem_add_seals+0x342/0x1020 mm/shmem.c:2622 stack backtrace: CPU: 1 PID: 4477 Comm: syz-executor.2 Not tainted 4.9.202+ #0 ffff8801a0b5fca0 ffffffff81b55d2b ffff8801c96e42c8 0000000000000000 0000000000000002 00000000000000c7 ffff8801d5cfdf00 ffff8801a0b5fcd0 ffffffff81406867 ffffea0006cf4240 dffffc0000000000 ffff8801a0b5fd78 Call Trace: [<00000000d738b938>] __dump_stack lib/dump_stack.c:15 [inline] [<00000000d738b938>] dump_stack+0xcb/0x130 lib/dump_stack.c:56 [<0000000069d073f9>] lockdep_rcu_suspicious.cold+0x10a/0x149 kernel/locking/lockdep.c:4458 netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [<00000000eea4a637>] radix_tree_deref_slot include/linux/radix-tree.h:199 [inline] [<00000000eea4a637>] shmem_tag_pins mm/shmem.c:2467 [inline] [<00000000eea4a637>] shmem_wait_for_pins mm/shmem.c:2506 [inline] [<00000000eea4a637>] shmem_add_seals+0xa44/0x1020 mm/shmem.c:2622 [<00000000ff346383>] shmem_fcntl+0xf7/0x130 mm/shmem.c:2657 [<00000000ba94f647>] do_fcntl fs/fcntl.c:340 [inline] [<00000000ba94f647>] SYSC_fcntl fs/fcntl.c:376 [inline] [<00000000ba94f647>] SyS_fcntl+0x1d5/0xb50 fs/fcntl.c:361 [<0000000082ccc43b>] do_syscall_64+0x1ad/0x5c0 arch/x86/entry/common.c:288 [<0000000028f7ad5c>] entry_SYSCALL_64_after_swapgs+0x5d/0xdb device lo left promiscuous mode audit: type=1400 audit(1574549840.516:19): avc: denied { map_create } for pid=4512 comm="syz-executor.5" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=bpf permissive=1 binder: undelivered TRANSACTION_ERROR: 29201 binder: BINDER_SET_CONTEXT_MGR already set blk_update_request: I/O error, dev loop10, sector 0 F2FS-fs (loop10): Unable to read 1th superblock blk_update_request: I/O error, dev loop10, sector 8 F2FS-fs (loop10): Unable to read 2th superblock binder: 4427:4453 ioctl 40046207 0 returned -16 blk_update_request: I/O error, dev loop10, sector 0 F2FS-fs (loop10): Unable to read 1th superblock blk_update_request: I/O error, dev loop10, sector 8 F2FS-fs (loop10): Unable to read 2th superblock SELinux: unrecognized netlink message: protocol=0 nlmsg_type=102 sclass=netlink_route_socket pig=4538 comm=syz-executor.2 netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. blk_update_request: I/O error, dev loop10, sector 0 F2FS-fs (loop10): Unable to read 1th superblock blk_update_request: I/O error, dev loop10, sector 8 F2FS-fs (loop10): Unable to read 2th superblock blk_update_request: I/O error, dev loop10, sector 0 F2FS-fs (loop10): Unable to read 1th superblock blk_update_request: I/O error, dev loop10, sector 8 F2FS-fs (loop10): Unable to read 2th superblock blk_update_request: I/O error, dev loop10, sector 0 F2FS-fs (loop10): Unable to read 1th superblock blk_update_request: I/O error, dev loop10, sector 8 F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop4): Unable to read 1th superblock F2FS-fs (loop4): Unable to read 2th superblock F2FS-fs (loop4): Unable to read 1th superblock F2FS-fs (loop4): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop4): Unable to read 1th superblock F2FS-fs (loop6): Unable to read 1th superblock F2FS-fs (loop6): Unable to read 2th superblock F2FS-fs (loop4): Unable to read 2th superblock netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop6): Unable to read 1th superblock F2FS-fs (loop6): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop6): Unable to read 1th superblock F2FS-fs (loop6): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pig=4644 comm=syz-executor.4 F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'. SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=4654 comm=syz-executor.2 netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=4654 comm=syz-executor.2 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=4654 comm=syz-executor.2 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=4660 comm=syz-executor.3 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=4660 comm=syz-executor.3 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=4660 comm=syz-executor.3 F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock binder: binder_mmap: 4697 20004000-20404000 bad vm_flags failed -1 F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock binder: binder_mmap: 4697 20004000-20404000 bad vm_flags failed -1 F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 audit: type=1400 audit(1574549844.236:20): avc: denied { create } for pid=4987 comm="syz-executor.0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_connector_socket permissive=1 hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz0] on syz1 netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop0): Unable to read 1th superblock F2FS-fs (loop0): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock binder: 5093:5098 unknown command 151282436 binder: 5093:5098 ioctl c0306201 20000180 returned -22 F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop4): Unable to read 1th superblock F2FS-fs (loop4): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop4): Unable to read 1th superblock F2FS-fs (loop4): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop4): Unable to read 1th superblock F2FS-fs (loop4): Unable to read 2th superblock blk_update_request: 72 callbacks suppressed blk_update_request: I/O error, dev loop10, sector 0 F2FS-fs (loop10): Unable to read 1th superblock blk_update_request: I/O error, dev loop10, sector 8 F2FS-fs (loop10): Unable to read 2th superblock blk_update_request: I/O error, dev loop10, sector 0 F2FS-fs (loop10): Unable to read 1th superblock blk_update_request: I/O error, dev loop10, sector 8 F2FS-fs (loop10): Unable to read 2th superblock blk_update_request: I/O error, dev loop10, sector 0 F2FS-fs (loop10): Unable to read 1th superblock blk_update_request: I/O error, dev loop10, sector 8 F2FS-fs (loop10): Unable to read 2th superblock blk_update_request: I/O error, dev loop10, sector 0 F2FS-fs (loop10): Unable to read 1th superblock blk_update_request: I/O error, dev loop10, sector 8 F2FS-fs (loop10): Unable to read 2th superblock blk_update_request: I/O error, dev loop10, sector 0 F2FS-fs (loop10): Unable to read 1th superblock blk_update_request: I/O error, dev loop10, sector 8 F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock F2FS-fs (loop10): Unable to read 1th superblock F2FS-fs (loop10): Unable to read 2th superblock