audit: type=1400 audit(1574595033.080:2439): avc:  denied  { create } for  pid=20222 comm="syz-executor.2" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
===============================
[ INFO: suspicious RCU usage. ]
4.9.202+ #0 Not tainted
-------------------------------
include/linux/radix-tree.h:199 suspicious rcu_dereference_check() usage!

other info that might help us debug this:


rcu_scheduler_active = 2, debug_locks = 0
2 locks held by syz-executor.4/20258:
 #0:  (&sb->s_type->i_mutex_key#10){+.+.+.}, at: [<00000000e883fd1d>] inode_lock include/linux/fs.h:771 [inline]
 #0:  (&sb->s_type->i_mutex_key#10){+.+.+.}, at: [<00000000e883fd1d>] shmem_add_seals+0x166/0x1020 mm/shmem.c:2610
 #1:  (&(&mapping->tree_lock)->rlock){..-...}, at: [<000000003057605a>] spin_lock_irq include/linux/spinlock.h:332 [inline]
 #1:  (&(&mapping->tree_lock)->rlock){..-...}, at: [<000000003057605a>] shmem_tag_pins mm/shmem.c:2465 [inline]
 #1:  (&(&mapping->tree_lock)->rlock){..-...}, at: [<000000003057605a>] shmem_wait_for_pins mm/shmem.c:2506 [inline]
 #1:  (&(&mapping->tree_lock)->rlock){..-...}, at: [<000000003057605a>] shmem_add_seals+0x342/0x1020 mm/shmem.c:2622

stack backtrace:
CPU: 0 PID: 20258 Comm: syz-executor.4 Not tainted 4.9.202+ #0
 ffff8800b68c7ca0 ffffffff81b55d2b ffff8800ba552128 0000000000000000
 0000000000000002 00000000000000c7 ffff8801d8564740 ffff8800b68c7cd0
 ffffffff81406867 ffffea0001f9af40 dffffc0000000000 ffff8800b68c7d78
Call Trace:
 [<00000000134c1a0b>] __dump_stack lib/dump_stack.c:15 [inline]
 [<00000000134c1a0b>] dump_stack+0xcb/0x130 lib/dump_stack.c:56
 [<00000000bc95f54c>] lockdep_rcu_suspicious.cold+0x10a/0x149 kernel/locking/lockdep.c:4458
 [<00000000d345a214>] radix_tree_deref_slot include/linux/radix-tree.h:199 [inline]
 [<00000000d345a214>] shmem_tag_pins mm/shmem.c:2467 [inline]
 [<00000000d345a214>] shmem_wait_for_pins mm/shmem.c:2506 [inline]
 [<00000000d345a214>] shmem_add_seals+0xa44/0x1020 mm/shmem.c:2622
nla_parse: 5 callbacks suppressed
netlink: 13 bytes leftover after parsing attributes in process `syz-executor.3'.
 [<000000000b72e4cf>] shmem_fcntl+0xf7/0x130 mm/shmem.c:2657
 [<000000000dd751bc>] do_fcntl fs/fcntl.c:340 [inline]
 [<000000000dd751bc>] SYSC_fcntl fs/fcntl.c:376 [inline]
 [<000000000dd751bc>] SyS_fcntl+0x1d5/0xb50 fs/fcntl.c:361
 [<00000000a6d9f196>] do_syscall_64+0x1ad/0x5c0 arch/x86/entry/common.c:288
 [<000000003d375cb5>] entry_SYSCALL_64_after_swapgs+0x5d/0xdb
netlink: 13 bytes leftover after parsing attributes in process `syz-executor.3'.
netlink: 13 bytes leftover after parsing attributes in process `syz-executor.2'.
netlink: 13 bytes leftover after parsing attributes in process `syz-executor.3'.
netlink: 13 bytes leftover after parsing attributes in process `syz-executor.4'.
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=20328 comm=syz-executor.4
netlink: 13 bytes leftover after parsing attributes in process `syz-executor.4'.
audit_printk_skb: 72 callbacks suppressed
audit: type=1400 audit(1574595036.240:2464): avc:  denied  { create } for  pid=20330 comm="syz-executor.2" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
audit: type=1400 audit(1574595036.260:2465): avc:  denied  { write } for  pid=20330 comm="syz-executor.2" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=20325 comm=syz-executor.4
audit: type=1400 audit(1574595036.300:2466): avc:  denied  { sys_admin } for  pid=20320 comm="syz-executor.4" capability=21  scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1
audit: type=1400 audit(1574595036.310:2467): avc:  denied  { read } for  pid=20327 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
audit: type=1400 audit(1574595036.500:2468): avc:  denied  { read } for  pid=20330 comm="syz-executor.2" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
netlink: 13 bytes leftover after parsing attributes in process `syz-executor.3'.
netlink: 13 bytes leftover after parsing attributes in process `syz-executor.2'.
audit: type=1400 audit(1574595037.040:2469): avc:  denied  { syslog } for  pid=20355 comm="syz-executor.1" capability=34  scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=capability2 permissive=1
audit: type=1400 audit(1574595037.220:2470): avc:  denied  { create } for  pid=20357 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
netlink: 13 bytes leftover after parsing attributes in process `syz-executor.3'.
audit: type=1400 audit(1574595037.440:2471): avc:  denied  { write } for  pid=20357 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
audit: type=1400 audit(1574595037.490:2472): avc:  denied  { create } for  pid=20363 comm="syz-executor.5" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
audit: type=1400 audit(1574595037.510:2473): avc:  denied  { write } for  pid=20363 comm="syz-executor.5" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
device lo entered promiscuous mode
netlink: 13 bytes leftover after parsing attributes in process `syz-executor.5'.
device lo left promiscuous mode
nla_parse: 2 callbacks suppressed
netlink: 13 bytes leftover after parsing attributes in process `syz-executor.3'.
netlink: 13 bytes leftover after parsing attributes in process `syz-executor.2'.
netlink: 13 bytes leftover after parsing attributes in process `syz-executor.3'.
netlink: 13 bytes leftover after parsing attributes in process `syz-executor.2'.
netlink: 13 bytes leftover after parsing attributes in process `syz-executor.3'.
audit_printk_skb: 78 callbacks suppressed
audit: type=1400 audit(1574595041.340:2500): avc:  denied  { create } for  pid=20510 comm="syz-executor.2" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
netlink: 13 bytes leftover after parsing attributes in process `syz-executor.2'.
audit: type=1400 audit(1574595041.600:2501): avc:  denied  { create } for  pid=20517 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
audit: type=1400 audit(1574595041.600:2502): avc:  denied  { write } for  pid=20517 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
netlink: 13 bytes leftover after parsing attributes in process `syz-executor.3'.
audit: type=1400 audit(1574595041.840:2503): avc:  denied  { read } for  pid=20517 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
audit: type=1400 audit(1574595041.880:2504): avc:  denied  { create } for  pid=20531 comm="syz-executor.4" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
audit: type=1400 audit(1574595041.880:2505): avc:  denied  { write } for  pid=20531 comm="syz-executor.4" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
netlink: 13 bytes leftover after parsing attributes in process `syz-executor.4'.
audit: type=1400 audit(1574595042.200:2506): avc:  denied  { read } for  pid=20531 comm="syz-executor.4" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
audit: type=1400 audit(1574595042.510:2507): avc:  denied  { syslog } for  pid=20553 comm="syz-executor.1" capability=34  scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=capability2 permissive=1
audit: type=1400 audit(1574595042.640:2508): avc:  denied  { create } for  pid=20550 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
audit: type=1400 audit(1574595042.660:2509): avc:  denied  { write } for  pid=20550 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
netlink: 13 bytes leftover after parsing attributes in process `syz-executor.3'.
netlink: 13 bytes leftover after parsing attributes in process `syz-executor.5'.