=============================
WARNING: suspicious RCU usage
4.14.154+ #0 Not tainted
-----------------------------
include/linux/radix-tree.h:238 suspicious rcu_dereference_check() usage!

other info that might help us debug this:


rcu_scheduler_active = 2, debug_locks = 1
2 locks held by syz-executor.5/27382:
 #0:  (&sb->s_type->i_mutex_key#10){+.+.}, at: [<0000000005871e04>] inode_lock include/linux/fs.h:724 [inline]
 #0:  (&sb->s_type->i_mutex_key#10){+.+.}, at: [<0000000005871e04>] shmem_add_seals+0x12b/0xf80 mm/shmem.c:2831
 #1:  (&(&mapping->tree_lock)->rlock){-.-.}, at: [<0000000006cfcffe>] spin_lock_irq include/linux/spinlock.h:342 [inline]
 #1:  (&(&mapping->tree_lock)->rlock){-.-.}, at: [<0000000006cfcffe>] shmem_tag_pins mm/shmem.c:2685 [inline]
 #1:  (&(&mapping->tree_lock)->rlock){-.-.}, at: [<0000000006cfcffe>] shmem_wait_for_pins mm/shmem.c:2726 [inline]
 #1:  (&(&mapping->tree_lock)->rlock){-.-.}, at: [<0000000006cfcffe>] shmem_add_seals+0x2e1/0xf80 mm/shmem.c:2843

stack backtrace:
CPU: 1 PID: 27382 Comm: syz-executor.5 Not tainted 4.14.154+ #0
Call Trace:
 __dump_stack lib/dump_stack.c:17 [inline]
 dump_stack+0xe5/0x154 lib/dump_stack.c:58
 radix_tree_deref_slot include/linux/radix-tree.h:238 [inline]
 shmem_tag_pins mm/shmem.c:2687 [inline]
 shmem_wait_for_pins mm/shmem.c:2726 [inline]
 shmem_add_seals+0x9d2/0xf80 mm/shmem.c:2843
 shmem_fcntl+0xea/0x120 mm/shmem.c:2878
 do_fcntl+0x5c8/0xd20 fs/fcntl.c:421
 SYSC_fcntl fs/fcntl.c:463 [inline]
 SyS_fcntl+0xc6/0x100 fs/fcntl.c:448
 do_syscall_64+0x19b/0x520 arch/x86/entry/common.c:292
 entry_SYSCALL_64_after_hwframe+0x42/0xb7
RIP: 0033:0x45a639
RSP: 002b:00007fb2e689dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000048
RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a639
RDX: 0000000000000008 RSI: 0000000000000409 RDI: 0000000000000004
RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb2e689e6d4
R13: 00000000004c1068 R14: 00000000004d3c60 R15: 00000000ffffffff
SELinux:  policydb magic number 0xe788d7ef does not match expected magic number 0xf97cff8c
SELinux: failed to load policy
 loop3: p1 < > p4
loop3: p1 size 2 extends beyond EOD, truncated
loop3: p4 start 1854537728 is beyond EOD, truncated
 loop3: p1 < > p4
loop3: p1 size 2 extends beyond EOD, truncated
loop3: p4 start 1854537728 is beyond EOD, truncated
loop_reread_partitions: partition scan of loop3 () failed (rc=-16)
print_req_error: I/O error, dev loop3, sector 0
print_req_error: I/O error, dev loop3, sector 0
Buffer I/O error on dev loop3p1, logical block 0, async page read
print_req_error: I/O error, dev loop3, sector 0
Buffer I/O error on dev loop3p1, logical block 0, async page read
print_req_error: I/O error, dev loop3, sector 0
Buffer I/O error on dev loop3p1, logical block 0, async page read
print_req_error: I/O error, dev loop3, sector 0
Buffer I/O error on dev loop3p1, logical block 0, async page read
print_req_error: I/O error, dev loop3, sector 0
Buffer I/O error on dev loop3p1, logical block 0, async page read
print_req_error: I/O error, dev loop3, sector 0
Buffer I/O error on dev loop3p1, logical block 0, async page read
print_req_error: I/O error, dev loop3, sector 0
Buffer I/O error on dev loop3p1, logical block 0, async page read
print_req_error: I/O error, dev loop3, sector 0
Buffer I/O error on dev loop3p1, logical block 0, async page read
print_req_error: I/O error, dev loop3, sector 0
Buffer I/O error on dev loop3p1, logical block 0, async page read
Buffer I/O error on dev loop3p1, logical block 0, async page read
audit: type=1400 audit(2000000084.512:655): avc:  denied  { map_read map_write } for  pid=27784 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=bpf permissive=1
EXT4-fs (loop4): couldn't mount as ext3 due to feature incompatibilities
EXT4-fs (loop4): couldn't mount as ext3 due to feature incompatibilities
netlink: 1464 bytes leftover after parsing attributes in process `syz-executor.2'.
netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'.
audit: type=1400 audit(2000000087.532:656): avc:  denied  { mac_admin } for  pid=27981 comm="syz-executor.4" capability=33  scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=capability2 permissive=1
SELinux:  Context system_u:objxec4ÝfHÒœoóÑì^išé:_ is not valid (left unmapped).