INIT: Entering runlevel: 2
[[36minfo[39;49m] Using makefile-style concurrent boot in runlevel 2.
[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added 'ci-upstream-kasan-gce-7,10.128.0.30' (ECDSA) to the list of known hosts.
net.ipv6.conf.syz0.accept_dad = 0
net.ipv6.conf.syz0.router_solicitations = 0
executing program
executing program
syzkaller login: [   41.032933] 
[   41.033295] ================================
[   41.033879] WARNING: inconsistent lock state
[   41.034489] 4.13.0-rc5+ #35 Not tainted
[   41.035016] --------------------------------
[   41.035599] inconsistent {IN-SOFTIRQ-W} -> {SOFTIRQ-ON-W} usage.
[   41.036462] syzkaller704391/3002 [HC0[0]:SC0[0]:HE1:SE1] takes:
[   41.037276]  (slock-AF_INET){+.?...}, at: [<ffffffff83dd98d8>] sk_clone_lock+0x438/0x11f0
[   41.038373] {IN-SOFTIRQ-W} state was registered at:
[   41.039039]   __lock_acquire+0xcbb/0x3dc0
[   41.039589]   lock_acquire+0x1d5/0x580
[   41.040111]   _raw_spin_lock+0x2a/0x40
[   41.040707]   sk_clone_lock+0x438/0x11f0
[   41.041307]   inet_csk_clone_lock+0x92/0x4f0
[   41.041907]   tcp_create_openreq_child+0x7e/0x1d70
[   41.042568]   tcp_v4_syn_recv_sock+0x113/0x1150
[   41.043186]   tcp_check_req+0xe7f/0x1620
[   41.043726]   tcp_v4_rcv+0x168e/0x2df0
[   41.044265]   ip_local_deliver_finish+0x2e2/0xba0
[   41.044909]   ip_local_deliver+0x1ce/0x6d0
[   41.045491]   ip_rcv_finish+0x8db/0x19c0
[   41.046062]   ip_rcv+0xc3f/0x17d0
[   41.046529]   __netif_receive_skb_core+0x1b05/0x3230
[   41.047203]   __netif_receive_skb+0x2c/0x1b0
[   41.047812]   netif_receive_skb_internal+0x16a/0x1a50
[   41.048532]   napi_gro_receive+0x3d0/0x500
[   41.049097]   receive_buf+0xaef/0x5690
[   41.049642]   virtnet_poll+0x50b/0xab0
[   41.050161]   net_rx_action+0x792/0x1910
[   41.050703]   __do_softirq+0x2f5/0xba3
[   41.051235]   irq_exit+0x1cc/0x200
[   41.051742]   do_IRQ+0xf6/0x190
[   41.052184]   ret_from_intr+0x0/0x1e
[   41.052697]   native_safe_halt+0x6/0x10
[   41.053239]   default_idle+0xbf/0x460
[   41.057002]   arch_cpu_idle+0xa/0x10
[   41.060679]   default_idle_call+0x36/0x90
[   41.064790]   do_idle+0x256/0x3b0
[   41.068206]   cpu_startup_entry+0x18/0x20
[   41.072317]   start_secondary+0x277/0x310
[   41.076428]   verify_cpu+0x0/0xf1
[   41.079841] irq event stamp: 15512
[   41.083345] hardirqs last  enabled at (15510): [<ffffffff81a07a9d>] kmem_cache_free+0x15d/0x280
[   41.092143] hardirqs last disabled at (15511): [<ffffffff8141fc6c>] __local_bh_enable_ip+0x5c/0x160
[   41.101292] softirqs last  enabled at (15512): [<ffffffff83685a6d>] tun_rx_batched.isra.42+0x5bd/0x860
[   41.110701] softirqs last disabled at (15462): [<ffffffff83685a6d>] tun_rx_batched.isra.42+0x5bd/0x860
[   41.120106] 
[   41.120106] other info that might help us debug this:
[   41.126747]  Possible unsafe locking scenario:
[   41.126747] 
[   41.132765]        CPU0
[   41.135308]        ----
[   41.137853]   lock(slock-AF_INET);
[   41.141355]   <Interrupt>
[   41.144075]     lock(slock-AF_INET);
[   41.147755] 
[   41.147755]  *** DEADLOCK ***
[   41.147755] 
[   41.153776] 1 lock held by syzkaller704391/3002:
[   41.158493]  #0:  (slock-AF_INET){+.?...}, at: [<ffffffff83dd98d8>] sk_clone_lock+0x438/0x11f0
[   41.167213] 
[   41.167213] stack backtrace:
[   41.171674] CPU: 0 PID: 3002 Comm: syzkaller704391 Not tainted 4.13.0-rc5+ #35
[   41.178996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   41.188317] Call Trace:
[   41.190873]  dump_stack+0x194/0x257
[   41.194466]  ? arch_local_irq_restore+0x53/0x53
[   41.199101]  print_usage_bug+0x421/0x480
[   41.203126]  ? save_stack_trace+0x16/0x20
[   41.207238]  ? print_irqtrace_events+0x270/0x270
[   41.211958]  ? hlock_class+0x140/0x140
[   41.215809]  mark_lock+0xe59/0x13d0
[   41.219401]  ? lock_downgrade+0x990/0x990
[   41.223510]  ? check_usage_forwards+0x430/0x430
[   41.228141]  ? print_usage_bug+0x480/0x480
[   41.232339]  ? find_held_lock+0x35/0x1d0
[   41.236365]  ? find_held_lock+0x35/0x1d0
[   41.240392]  ? rcu_pm_notify+0xc0/0xc0
[   41.244247]  ? netif_receive_skb+0xae/0x390
[   41.248533]  mark_held_locks+0xaf/0x100
[   41.252473]  ? __local_bh_enable_ip+0x9d/0x160
[   41.257019]  trace_hardirqs_on_caller+0x421/0x5c0
[   41.261827]  ? tun_rx_batched.isra.42+0x5bd/0x860
[   41.266633]  trace_hardirqs_on+0xd/0x10
[   41.270571]  __local_bh_enable_ip+0x9d/0x160
[   41.274941]  tun_rx_batched.isra.42+0x5fd/0x860
[   41.279574]  ? skb_get_hash_perturb+0x9d0/0x9d0
[   41.284205]  ? tun_sock_write_space+0x370/0x370
[   41.288836]  ? tun_free_netdev+0x1b0/0x1b0
[   41.293037]  ? check_noncircular+0x20/0x20
[   41.297238]  tun_get_user+0xde5/0x2910
[   41.301092]  ? tun_chr_ioctl+0x40/0x40
[   41.304944]  ? find_held_lock+0x35/0x1d0
[   41.308977]  ? release_sock+0x1d4/0x2a0
[   41.312912]  ? lock_downgrade+0x990/0x990
[   41.317024]  ? lock_downgrade+0x990/0x990
[   41.321137]  ? do_raw_spin_trylock+0x190/0x190
[   41.325684]  ? find_held_lock+0x35/0x1d0
[   41.329711]  ? __tun_get+0x1ab/0x2e0
[   41.333387]  ? lock_downgrade+0x990/0x990
[   41.337501]  ? _raw_spin_unlock_bh+0x30/0x40
[   41.341874]  ? lock_release+0xa40/0xa40
[   41.345813]  ? __lock_is_held+0xb6/0x140
[   41.349840]  ? __tun_get+0x1d4/0x2e0
[   41.353518]  ? tun_chr_close+0x60/0x60
[   41.357372]  tun_chr_write_iter+0xd8/0x190
[   41.361571]  __vfs_write+0x684/0x970
[   41.365248]  ? default_llseek+0x290/0x290
[   41.369378]  ? avc_policy_seqno+0x9/0x20
[   41.373402]  ? selinux_file_permission+0x82/0x460
[   41.378210]  ? rw_verify_area+0xe5/0x2b0
[   41.382233]  ? __fdget_raw+0x20/0x20
[   41.385912]  vfs_write+0x189/0x510
[   41.389417]  SyS_write+0xef/0x220
[   41.392833]  ? SyS_read+0x220/0x220
[   41.396423]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   41.401403]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   41.406122]  entry_SYSCALL_64_fastpath+0x1f/0xbe
[   41.410841] RIP: 0033:0x401730
[   41.413996] RSP: 002b:00007ffde126d278 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   41.421667] RAX: ffffffffffffffda RBX: 00000000006d6ee0 RCX: 0000000000401730
[   41.428901] RDX: 0000000000000036 RSI: 0000000020004000 RDI: 0000000000000003
[   41.436138] RBP: 0000000000000086 R08: 0000000000000013 R09: 0000000000000052
[   41.443372] R10: 0000000020016ff0 R11: 0000000000000246 R12: 0000000000402620
[   41.450605] R13: 00000000004026b0 R14: 0000000000000000 R15: 0000000000000000
[   41.457989] BUG: scheduling while atomic: syzkaller704391/3002/0x00000002
[   41.464909] INFO: lockdep is turned off.
[   41.468953] Modules linked in:
[   41.472123] Kernel panic - not syncing: scheduling while atomic
[   41.472123] 
[   41.479624] CPU: 0 PID: 3002 Comm: syzkaller704391 Not tainted 4.13.0-rc5+ #35
[   41.486950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   41.496270] Call Trace:
[   41.498831]  dump_stack+0x194/0x257
[   41.502426]  ? arch_local_irq_restore+0x53/0x53
[   41.507062]  ? print_modules+0x18c/0x2f7
[   41.511092]  panic+0x1e4/0x417
[   41.514250]  ? __warn+0x1d9/0x1d9
[   41.517669]  ? lock_downgrade+0x990/0x990
[   41.521788]  __schedule_bug+0x11f/0x130
[   41.525728]  __schedule+0x1315/0x2070
[   41.529496]  ? __sched_text_start+0x8/0x8
[   41.533607]  ? lock_downgrade+0x990/0x990
[   41.537719]  ? _raw_spin_unlock_bh+0x30/0x40
[   41.542094]  ? lock_release+0xa40/0xa40
[   41.546035]  ? __lock_is_held+0xb6/0x140
[   41.550067]  ? __tun_get+0x1d4/0x2e0
[   41.553746]  ? tun_chr_close+0x60/0x60
[   41.557602]  schedule+0x108/0x440
[   41.561022]  ? tun_chr_write_iter+0x133/0x190
[   41.565481]  ? __schedule+0x2070/0x2070
[   41.569422]  ? __vfs_write+0xf7/0x970
[   41.573195]  ? default_llseek+0x290/0x290
[   41.577310]  ? __fsnotify_parent+0xb4/0x3a0
[   41.581597]  exit_to_usermode_loop+0x1e1/0x300
[   41.586144]  ? trace_event_raw_event_sys_exit+0x260/0x260
[   41.591645]  ? rw_verify_area+0xe5/0x2b0
[   41.595668]  ? __fdget_raw+0x20/0x20
[   41.599348]  syscall_return_slowpath+0x3a7/0x450
[   41.604067]  ? prepare_exit_to_usermode+0x220/0x220
[   41.609048]  ? SyS_write+0x184/0x220
[   41.612727]  ? SyS_read+0x220/0x220
[   41.616318]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   41.621041]  entry_SYSCALL_64_fastpath+0xbc/0xbe
[   41.625760] RIP: 0033:0x401730
[   41.628913] RSP: 002b:00007ffde126d278 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   41.636584] RAX: 0000000000000036 RBX: 00000000006d6ee0 RCX: 0000000000401730
[   41.643819] RDX: 0000000000000036 RSI: 0000000020004000 RDI: 0000000000000003
[   41.651056] RBP: ffffffffffffffff R08: 0000000000000013 R09: 0000000000000052
[   41.658301] R10: 0000000020016ff0 R11: 0000000000000246 R12: 0000000000402620
[   41.665537] R13: 00000000004026b0 R14: 0000000000000000 R15: 0000000000000000
[   41.673189] Dumping ftrace buffer:
[   41.676700]    (ftrace buffer empty)
[   41.680388] Kernel Offset: disabled
[   41.683983] Rebooting in 86400 seconds..