2017/08/12 08:04:41 parsed 1 programs
2017/08/12 08:04:41 executed programs: 0
syzkaller login: [   20.110530] BUG: sleeping function called from invalid context at mm/slab.h:420
[   20.111151] in_atomic(): 1, irqs_disabled(): 0, pid: 3032, name: syz-executor0
[   20.111651] 3 locks held by syz-executor0/3032:
[   20.112198]  #0:  (&net->xfrm.xfrm_cfg_mutex){+.+.}, at: [<ffffffff83b3aef8>] pfkey_sendmsg+0x4c8/0x9f0
[   20.112959]  #1:  (&pfk->dump_lock){+.+.}, at: [<ffffffff83b3de66>] pfkey_do_dump+0x76/0x3f0
[   20.113721]  #2:  (&(&net->xfrm.xfrm_policy_lock)->rlock){+...}, at: [<ffffffff8394e9d2>] xfrm_policy_walk+0x192/0xa30
[   20.115734] CPU: 1 PID: 3032 Comm: syz-executor0 Not tainted 4.13.0-rc4-next-20170811 #1
[   20.116580] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Bochs 01/01/2011
[   20.117400] Call Trace:
[   20.117666]  dump_stack+0x194/0x257
[   20.118034]  ? arch_local_irq_restore+0x53/0x53
[   20.118528]  ? print_lock+0x9f/0xa2
[   20.118894]  ? lockdep_print_held_locks+0xc4/0x130
[   20.119405]  ___might_sleep+0x2b2/0x470
[   20.119804]  ? check_same_owner+0x320/0x320
[   20.120248]  __might_sleep+0x95/0x190
[   20.120661]  kmem_cache_alloc+0x252/0x6f0
[   20.121139]  ? sock_def_readable+0x26f/0x5e0
[   20.121671]  skb_clone+0x1ae/0x480
[   20.122122]  ? skb_split+0x1310/0x1310
[   20.122916]  ? refcount_sub_and_test+0x115/0x1b0
[   20.124499]  ? refcount_inc_not_zero+0xfe/0x180
[   20.125219]  ? refcount_add+0x60/0x60
[   20.125602]  ? find_held_lock+0x35/0x1d0
[   20.126022]  pfkey_broadcast_one+0x4b2/0x6f0
[   20.129075]  ? pfkey_terminate_dump+0x180/0x180
[   20.129978]  ? __lock_is_held+0xb6/0x140
[   20.130741]  pfkey_broadcast+0x4ba/0x770
[   20.131675]  ? pfkey_acquire+0x220/0x220
[   20.132822]  ? memset+0x31/0x40
[   20.133426]  ? pfkey_xfrm_policy2msg+0x183e/0x2330
[   20.134313]  ? pfkey_sockaddr_fill+0x340/0x340
[   20.135063]  ? check_noncircular+0x20/0x20
[   20.135476]  ? pfkey_xfrm_policy2msg_size+0x1d3/0x230
[   20.136553]  dump_sp+0x3d6/0x500
[   20.137156]  ? pfkey_flush+0x3c0/0x3c0
[   20.138208]  ? xfrm_policy_walk+0x192/0xa30
[   20.138976]  xfrm_policy_walk+0x2f1/0xa30
[   20.139710]  ? pfkey_flush+0x3c0/0x3c0
[   20.140377]  ? xfrm_audit_policy_delete+0x1f0/0x1f0
[   20.141250]  ? __kfree_skb+0x20/0x20
[   20.141909]  ? pfkey_terminate_dump+0x180/0x180
[   20.143084]  ? __lock_is_held+0xb6/0x140
[   20.143812]  ? __mutex_unlock_slowpath+0xe9/0xac0
[   20.144304]  ? wait_for_completion+0x730/0x730
[   20.145130]  ? pfkey_acquire+0x220/0x220
[   20.145860]  ? pfkey_broadcast_one+0x6f0/0x6f0
[   20.147036]  pfkey_dump_sp+0x42/0x50
[   20.147706]  pfkey_do_dump+0xaa/0x3f0
[   20.148393]  ? xfrm_policy_walk_init+0x69/0x1c0
[   20.149246]  ? dump_sa+0x5d0/0x5d0
[   20.149878]  ? iov_iter_advance+0x2a1/0x13f0
[   20.151029]  pfkey_spddump+0x1a0/0x210
[   20.151731]  ? pfkey_recvmsg+0x710/0x710
[   20.152472]  pfkey_process+0x606/0x710
[   20.153184]  ? pfkey_send_new_mapping+0x11b0/0x11b0
[   20.154437]  ? kasan_check_write+0x14/0x20
[   20.155228]  ? dup_iter+0x260/0x260
[   20.155906]  pfkey_sendmsg+0x4d6/0x9f0
[   20.157201]  ? pfkey_spdget+0xb00/0xb00
[   20.157925]  ? selinux_socket_sendmsg+0x36/0x40
[   20.159116]  ? security_socket_sendmsg+0x89/0xb0
[   20.159957]  ? pfkey_spdget+0xb00/0xb00
[   20.160682]  sock_sendmsg+0xca/0x110
[   20.161363]  ___sys_sendmsg+0x742/0x8c0
[   20.162439]  ? copy_msghdr_from_user+0x590/0x590
[   20.163333]  ? fget_raw+0x20/0x20
[   20.163969]  ? sock_has_perm+0x29c/0x400
[   20.164688]  ? __fget_light+0x297/0x380
[   20.165416]  ? selinux_tun_dev_create+0xc0/0xc0
[   20.166614]  ? selinux_netlbl_socket_setsockopt+0x10c/0x460
[   20.167835]  ? __fdget+0x18/0x20
[   20.168464]  __sys_sendmsg+0xe5/0x210
[   20.169147]  ? __sys_sendmsg+0xe5/0x210
[   20.170012]  ? SyS_shutdown+0x290/0x290
[   20.170515]  ? SyS_futex+0x285/0x380
[   20.170997]  ? SyS_futex+0x28e/0x380
[   20.171680]  ? SyS_setsockopt+0x215/0x360
[   20.172453]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   20.173362]  SyS_sendmsg+0x2d/0x50
[   20.174360]  entry_SYSCALL_64_fastpath+0x1f/0xbe
[   20.175207] RIP: 0033:0x446739
[   20.175780] RSP: 002b:00007feb12775c08 EFLAGS: 00000282 ORIG_RAX: 000000000000002e
[   20.177081] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000446739
[   20.178941] RDX: 0000000000000000 RSI: 000000002023dfc8 RDI: 0000000000000008
[   20.180212] RBP: 0000000000000086 R08: 0000000000000000 R09: 0000000000000000
[   20.181543] R10: 0000000000000000 R11: 0000000000000282 R12: 0000000000000000
[   20.183207] R13: 0000000000000000 R14: 00007feb127769c0 R15: 00007feb12776700