=============================
WARNING: suspicious RCU usage
4.19.84 #0 Not tainted
-----------------------------
include/linux/radix-tree.h:241 suspicious rcu_dereference_check() usage!

other info that might help us debug this:


rcu_scheduler_active = 2, debug_locks = 1
2 locks held by syz-executor.1/28748:
 #0: 000000005872fc7f (&sb->s_type->i_mutex_key#12){+.+.}, at: inode_lock include/linux/fs.h:747 [inline]
 #0: 000000005872fc7f (&sb->s_type->i_mutex_key#12){+.+.}, at: memfd_add_seals mm/memfd.c:199 [inline]
 #0: 000000005872fc7f (&sb->s_type->i_mutex_key#12){+.+.}, at: memfd_fcntl+0x235/0x1750 mm/memfd.c:249
 #1: 000000006d9c0a4a (&(&(&mapping->i_pages)->xa_lock)->rlock){-.-.}, at: spin_lock_irq include/linux/spinlock.h:354 [inline]
 #1: 000000006d9c0a4a (&(&(&mapping->i_pages)->xa_lock)->rlock){-.-.}, at: memfd_tag_pins mm/memfd.c:42 [inline]
 #1: 000000006d9c0a4a (&(&(&mapping->i_pages)->xa_lock)->rlock){-.-.}, at: memfd_wait_for_pins mm/memfd.c:83 [inline]
 #1: 000000006d9c0a4a (&(&(&mapping->i_pages)->xa_lock)->rlock){-.-.}, at: memfd_add_seals mm/memfd.c:217 [inline]
 #1: 000000006d9c0a4a (&(&(&mapping->i_pages)->xa_lock)->rlock){-.-.}, at: memfd_fcntl+0x4bc/0x1750 mm/memfd.c:249

stack backtrace:
CPU: 1 PID: 28748 Comm: syz-executor.1 Not tainted 4.19.84 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x197/0x210 lib/dump_stack.c:118
 lockdep_rcu_suspicious+0x153/0x15d kernel/locking/lockdep.c:4539
 radix_tree_deref_slot include/linux/radix-tree.h:241 [inline]
 radix_tree_deref_slot include/linux/radix-tree.h:239 [inline]
 memfd_tag_pins mm/memfd.c:44 [inline]
 memfd_wait_for_pins mm/memfd.c:83 [inline]
 memfd_add_seals mm/memfd.c:217 [inline]
 memfd_fcntl+0xfdf/0x1750 mm/memfd.c:249
 do_fcntl+0x200/0x1020 fs/fcntl.c:421
 __do_sys_fcntl fs/fcntl.c:463 [inline]
 __se_sys_fcntl fs/fcntl.c:448 [inline]
 __x64_sys_fcntl+0x16d/0x1e0 fs/fcntl.c:448
 do_syscall_64+0xfd/0x620 arch/x86/entry/common.c:293
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x45a639
Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
RSP: 002b:00007fe2d876ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000048
RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a639
RDX: 000000000000000d RSI: 0000000000000409 RDI: 0000000000000003
RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe2d876f6d4
R13: 00000000004c1068 R14: 00000000004d3c60 R15: 00000000ffffffff
net_ratelimit: 44 callbacks suppressed
openvswitch: netlink: Either Ethernet header or EtherType is required.
openvswitch: netlink: Either Ethernet header or EtherType is required.
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_1
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_1
openvswitch: netlink: Either Ethernet header or EtherType is required.
openvswitch: netlink: Either Ethernet header or EtherType is required.
openvswitch: netlink: Either Ethernet header or EtherType is required.
openvswitch: netlink: Either Ethernet header or EtherType is required.
FAULT_INJECTION: forcing a failure.
name failslab, interval 1, probability 0, space 0, times 0
CPU: 1 PID: 31334 Comm: syz-executor.0 Not tainted 4.19.84 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x197/0x210 lib/dump_stack.c:118
 fail_dump lib/fault-inject.c:51 [inline]
 should_fail.cold+0xa/0x1b lib/fault-inject.c:149
 __should_failslab+0x121/0x190 mm/failslab.c:32
 should_failslab+0x9/0x14 mm/slab_common.c:1557
 slab_pre_alloc_hook mm/slab.h:424 [inline]
 slab_alloc mm/slab.c:3383 [inline]
 __do_kmalloc mm/slab.c:3725 [inline]
 __kmalloc+0x2e2/0x750 mm/slab.c:3736
 kmalloc_array include/linux/slab.h:637 [inline]
 kcalloc include/linux/slab.h:648 [inline]
 ext4_find_extent+0x76e/0x9d0 fs/ext4/extents.c:892
 ext4_ext_map_blocks+0x1c3/0x55c0 fs/ext4/extents.c:4303
 ext4_map_blocks+0xf83/0x1b20 fs/ext4/inode.c:563
 ext4_mpage_readpages+0xbec/0x1ae0 fs/ext4/readpage.c:181
 ext4_readpage fs/ext4/inode.c:3339 [inline]
 ext4_readpage+0x190/0x440 fs/ext4/inode.c:3328
 generic_file_buffered_read mm/filemap.c:2252 [inline]
 generic_file_read_iter+0x1a49/0x2ac0 mm/filemap.c:2385
 ext4_file_read_iter+0x180/0x3c0 fs/ext4/file.c:77
 call_read_iter include/linux/fs.h:1814 [inline]
 new_sync_read fs/read_write.c:406 [inline]
 __vfs_read+0x584/0x800 fs/read_write.c:418
 vfs_read+0x194/0x3d0 fs/read_write.c:452
 ksys_read+0x14f/0x2d0 fs/read_write.c:579
 __do_sys_read fs/read_write.c:589 [inline]
 __se_sys_read fs/read_write.c:587 [inline]
 __x64_sys_read+0x73/0xb0 fs/read_write.c:587
 do_syscall_64+0xfd/0x620 arch/x86/entry/common.c:293
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x45a639
Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
RSP: 002b:00007f0f140f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
RAX: ffffffffffffffda RBX: 00007f0f140f4c90 RCX: 000000000045a639
RDX: 0000000020001380 RSI: 0000000020000380 RDI: 0000000000000003
RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00007f0f140f56d4
R13: 00000000004c7fd6 R14: 00000000004de040 R15: 0000000000000006
net_ratelimit: 30 callbacks suppressed
openvswitch: netlink: Either Ethernet header or EtherType is required.
openvswitch: netlink: Either Ethernet header or EtherType is required.
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_1
openvswitch: netlink: Either Ethernet header or EtherType is required.
openvswitch: netlink: Either Ethernet header or EtherType is required.
FAULT_INJECTION: forcing a failure.
name failslab, interval 1, probability 0, space 0, times 0
CPU: 1 PID: 31466 Comm: syz-executor.1 Not tainted 4.19.84 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x197/0x210 lib/dump_stack.c:118
 fail_dump lib/fault-inject.c:51 [inline]
 should_fail.cold+0xa/0x1b lib/fault-inject.c:149
 __should_failslab+0x121/0x190 mm/failslab.c:32
 should_failslab+0x9/0x14 mm/slab_common.c:1557
 slab_pre_alloc_hook mm/slab.h:424 [inline]
 slab_alloc mm/slab.c:3383 [inline]
 __do_kmalloc mm/slab.c:3725 [inline]
 __kmalloc+0x2e2/0x750 mm/slab.c:3736
 kmalloc_array include/linux/slab.h:637 [inline]
 rw_copy_check_uvector+0x28c/0x330 fs/read_write.c:782
 import_iovec+0xc2/0x3e0 lib/iov_iter.c:1541
 vfs_readv+0xc6/0x160 fs/read_write.c:985
 do_readv+0x15e/0x370 fs/read_write.c:1020
 __do_sys_readv fs/read_write.c:1107 [inline]
 __se_sys_readv fs/read_write.c:1104 [inline]
 __x64_sys_readv+0x75/0xb0 fs/read_write.c:1104
 do_syscall_64+0xfd/0x620 arch/x86/entry/common.c:293
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x45a639
Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
RSP: 002b:00007fe2d876ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
RAX: ffffffffffffffda RBX: 00007fe2d876ec90 RCX: 000000000045a639
RDX: 0000000000000052 RSI: 00000000200002c0 RDI: 0000000000000004
RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe2d876f6d4
R13: 00000000004c7ecd R14: 00000000004de160 R15: 0000000000000006
FAULT_INJECTION: forcing a failure.
name failslab, interval 1, probability 0, space 0, times 0
CPU: 0 PID: 31477 Comm: syz-executor.0 Not tainted 4.19.84 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x197/0x210 lib/dump_stack.c:118
 fail_dump lib/fault-inject.c:51 [inline]
 should_fail.cold+0xa/0x1b lib/fault-inject.c:149
 __should_failslab+0x121/0x190 mm/failslab.c:32
 should_failslab+0x9/0x14 mm/slab_common.c:1557
 slab_pre_alloc_hook mm/slab.h:424 [inline]
 slab_alloc mm/slab.c:3383 [inline]
 kmem_cache_alloc+0x47/0x700 mm/slab.c:3557
 ext4_es_alloc_extent fs/ext4/extents_status.c:333 [inline]
 __es_insert_extent+0x2cc/0xf20 fs/ext4/extents_status.c:672
 ext4_es_insert_extent+0x27e/0x640 fs/ext4/extents_status.c:726
 ext4_map_blocks+0x737/0x1b20 fs/ext4/inode.c:587
 ext4_mpage_readpages+0xbec/0x1ae0 fs/ext4/readpage.c:181
 ext4_readpage fs/ext4/inode.c:3339 [inline]
 ext4_readpage+0x190/0x440 fs/ext4/inode.c:3328
 generic_file_buffered_read mm/filemap.c:2252 [inline]
 generic_file_read_iter+0x1a49/0x2ac0 mm/filemap.c:2385
 ext4_file_read_iter+0x180/0x3c0 fs/ext4/file.c:77
 call_read_iter include/linux/fs.h:1814 [inline]
 new_sync_read fs/read_write.c:406 [inline]
 __vfs_read+0x584/0x800 fs/read_write.c:418
 vfs_read+0x194/0x3d0 fs/read_write.c:452
 ksys_read+0x14f/0x2d0 fs/read_write.c:579
 __do_sys_read fs/read_write.c:589 [inline]
 __se_sys_read fs/read_write.c:587 [inline]
 __x64_sys_read+0x73/0xb0 fs/read_write.c:587
 do_syscall_64+0xfd/0x620 arch/x86/entry/common.c:293
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x45a639
Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
RSP: 002b:00007f0f140f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
RAX: ffffffffffffffda RBX: 00007f0f140f4c90 RCX: 000000000045a639
RDX: 0000000020001380 RSI: 0000000020000380 RDI: 0000000000000003
RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00007f0f140f56d4
R13: 00000000004c7fd6 R14: 00000000004de040 R15: 0000000000000006
FAULT_INJECTION: forcing a failure.
name failslab, interval 1, probability 0, space 0, times 0
CPU: 0 PID: 31585 Comm: syz-executor.1 Not tainted 4.19.84 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x197/0x210 lib/dump_stack.c:118
 fail_dump lib/fault-inject.c:51 [inline]
 should_fail.cold+0xa/0x1b lib/fault-inject.c:149
 __should_failslab+0x121/0x190 mm/failslab.c:32
 should_failslab+0x9/0x14 mm/slab_common.c:1557
 slab_pre_alloc_hook mm/slab.h:424 [inline]
 slab_alloc_node mm/slab.c:3304 [inline]
 kmem_cache_alloc_node_trace+0x274/0x720 mm/slab.c:3666
 __do_kmalloc_node mm/slab.c:3688 [inline]
 __kmalloc_node+0x3d/0x80 mm/slab.c:3696
 kmalloc_node include/linux/slab.h:557 [inline]
 kvmalloc_node+0x68/0x100 mm/util.c:423
 kvmalloc include/linux/mm.h:577 [inline]
 seq_buf_alloc fs/seq_file.c:32 [inline]
 seq_read+0x817/0x1110 fs/seq_file.c:204
 kernfs_fop_read+0xed/0x560 fs/kernfs/file.c:252
 do_loop_readv_writev fs/read_write.c:701 [inline]
 do_loop_readv_writev fs/read_write.c:688 [inline]
 do_iter_read+0x490/0x640 fs/read_write.c:925
 vfs_readv+0xf0/0x160 fs/read_write.c:987
 do_readv+0x15e/0x370 fs/read_write.c:1020
 __do_sys_readv fs/read_write.c:1107 [inline]
 __se_sys_readv fs/read_write.c:1104 [inline]
 __x64_sys_readv+0x75/0xb0 fs/read_write.c:1104
 do_syscall_64+0xfd/0x620 arch/x86/entry/common.c:293
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x45a639
Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
RSP: 002b:00007fe2d876ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
RAX: ffffffffffffffda RBX: 00007fe2d876ec90 RCX: 000000000045a639
RDX: 0000000000000052 RSI: 00000000200002c0 RDI: 0000000000000004
RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe2d876f6d4
R13: 00000000004c7ecd R14: 00000000004de160 R15: 0000000000000006
openvswitch: netlink: Either Ethernet header or EtherType is required.
openvswitch: netlink: Either Ethernet header or EtherType is required.
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_1
audit: type=1800 audit(1574073152.556:104): pid=32058 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op=collect_data cause=failed comm="syz-executor.0" name="hugetlb.2MB.e_in_bytes" dev="sda1" ino=17721 res=0
audit: type=1800 audit(1574073152.556:105): pid=32141 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op=collect_data cause=failed comm="syz-executor.0" name="hugetlb.2MB.e_in_bytes" dev="sda1" ino=17721 res=0