
Debian GNU/Linux 7 syzkaller ttyS0

executing program
syzkaller login: [   13.471297] BUG: sleeping function called from invalid context at ./include/linux/uaccess.h:71
[   13.471993] in_atomic(): 1, irqs_disabled(): 0, pid: 2909, name: syzkaller879109
[   13.473150] 2 locks held by syzkaller879109/2909:
[   13.473535]  #0:  (&vcpu->mutex){+.+.}, at: [<ffffffff8106222c>] vcpu_load+0x1c/0x70
[   13.474144]  #1:  (&kvm->srcu){....}, at: [<ffffffff810dd162>] kvm_arch_vcpu_ioctl_run+0x1bc2/0x58b0
[   13.474856] CPU: 1 PID: 2909 Comm: syzkaller879109 Not tainted 4.13.0-rc4-next-20170811 #1
[   13.475486] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Bochs 01/01/2011
[   13.476104] Call Trace:
[   13.476306]  dump_stack+0x194/0x257
[   13.476573]  ? arch_local_irq_restore+0x53/0x53
[   13.476929]  ? print_lock+0x9f/0xa2
[   13.477193]  ? lockdep_print_held_locks+0xc4/0x130
[   13.477573]  ___might_sleep+0x2b2/0x470
[   13.477869]  ? check_same_owner+0x320/0x320
[   13.478189]  ? emulator_get_segment+0x1c2/0x790
[   13.478549]  __might_sleep+0x95/0x190
[   13.478846]  __might_fault+0xab/0x1d0
[   13.479138]  __kvm_read_guest_page+0x58/0xa0
[   13.479474]  kvm_vcpu_read_guest_page+0x44/0x60
[   13.479841]  kvm_read_guest_virt_helper+0x76/0x140
[   13.480212]  kvm_read_guest_virt_system+0x3c/0x50
[   13.480573]  ? kvm_read_guest_virt+0xb0/0xb0
[   13.480927]  segmented_read_std+0x10c/0x180
[   13.481261]  ? linearize+0x7c0/0x7c0
[   13.481549]  ? find_held_lock+0x35/0x1d0
[   13.482068]  ? vmx_decache_cr4_guest_bits+0xf/0x90
[   13.482461]  em_fxrstor+0x27b/0x410
[   13.482734]  ? em_lgdt+0x20/0x20
[   13.483037]  ? __do_insn_fetch_bytes+0x513/0x7e0
[   13.483392]  ? check_noncircular+0x20/0x20
[   13.483717]  ? em_aam+0x200/0x200
[   13.483976]  ? em_lgdt+0x20/0x20
[   13.484226]  x86_emulate_insn+0x55d/0x3c50
[   13.484870]  ? x86_emulate_insn+0x55d/0x3c50
[   13.485195]  ? init_decode_cache+0x20/0xc0
[   13.485526]  ? init_decode_cache+0xc0/0xc0
[   13.485855]  ? __lock_is_held+0xb6/0x140
[   13.486174]  x86_emulate_instruction+0x411/0x1ca0
[   13.486545]  ? reexecute_instruction.part.165+0x260/0x260
[   13.486969]  ? check_noncircular+0x20/0x20
[   13.487290]  ? __lock_is_held+0xb6/0x140
[   13.487619]  kvm_mmu_page_fault+0x18b/0x2c0
[   13.487986]  handle_ept_violation+0x1fc/0x5e0
[   13.488720]  ? kvm_requeue_exception_e+0x30/0x40
[   13.489058]  ? handle_ept_misconfig+0x5f0/0x5f0
[   13.489380]  ? __lock_is_held+0xb6/0x140
[   13.489662]  ? handle_ept_misconfig+0x5f0/0x5f0
[   13.489974]  vmx_handle_exit+0x281/0x1ab0
[   13.490247]  ? vmx_set_msr+0x1730/0x1730
[   13.490520]  ? nested_ept_inject_page_fault+0x1f0/0x1f0
[   13.490959]  ? kvm_arch_vcpu_ioctl_run+0x1b76/0x58b0
[   13.491399]  kvm_arch_vcpu_ioctl_run+0x1cee/0x58b0
[   13.491820]  ? mutex_lock_io_nested+0x1740/0x1740
[   13.492239]  ? kvm_arch_vcpu_runnable+0x520/0x520
[   13.492651]  ? vcpu_put+0x35/0x40
[   13.492944]  ? lock_downgrade+0x990/0x990
[   13.493294]  ? kvm_vcpu_ioctl+0x2a1/0x1010
[   13.493655]  ? save_stack+0xa3/0xd0
[   13.493970]  ? save_stack_trace+0x16/0x20
[   13.494324]  ? save_stack+0x43/0xd0
[   13.494636]  ? kasan_slab_free+0x6e/0xc0
[   13.494983]  ? kfree+0xd3/0x260
[   13.495265]  ? kvm_arch_has_assigned_device+0x57/0xe0
[   13.495713]  ? find_held_lock+0x35/0x1d0
[   13.496068]  ? get_task_pid+0x195/0x2c0
[   13.496409]  ? lock_downgrade+0x990/0x990
[   13.496769]  ? lock_release+0xa40/0xa40
[   13.497143]  ? __lock_is_held+0xb6/0x140
[   13.497501]  ? put_pid+0x184/0x1f0
[   13.497811]  ? task_active_pid_ns+0xd0/0xd0
[   13.498178]  ? find_get_pid+0x210/0x210
[   13.498461]  kvm_vcpu_ioctl+0x64c/0x1010
[   13.498727]  ? kvm_vcpu_ioctl+0x64c/0x1010
[   13.499091]  ? __kvm_gfn_to_hva_cache_init+0xb80/0xb80
[   13.499543]  ? lock_downgrade+0x990/0x990
[   13.499900]  ? mntput_no_expire+0x15e/0xa90
[   13.500268]  ? free_modinfo_version+0x70/0x70
[   13.500654]  ? mnt_get_count+0x160/0x160
[   13.501005]  ? find_held_lock+0x35/0x1d0
[   13.501358]  ? task_work_run+0x16c/0x270
[   13.501710]  ? lock_downgrade+0x990/0x990
[   13.502067]  ? mntput+0x66/0x90
[   13.502369]  ? do_raw_spin_trylock+0x190/0x190
[   13.502786]  ? _raw_spin_unlock_irq+0x27/0x70
[   13.503176]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   13.503606]  ? trace_hardirqs_on+0xd/0x10
[   13.503960]  ? _raw_spin_unlock_irq+0x27/0x70
[   13.504345]  ? task_work_run+0x1f4/0x270
[   13.504696]  ? task_work_cancel+0x210/0x210
[   13.505073]  ? __kvm_gfn_to_hva_cache_init+0xb80/0xb80
[   13.505526]  do_vfs_ioctl+0x1b1/0x1520
[   13.505865]  ? trace_hardirqs_off+0xd/0x10
[   13.506618]  ? ioctl_preallocate+0x2b0/0x2b0
[   13.506926]  ? selinux_capable+0x40/0x40
[   13.507198]  ? syscall_return_slowpath+0x2b3/0x500
[   13.507521]  ? fd_install+0x60/0x60
[   13.507763]  ? security_file_ioctl+0x7d/0xb0
[   13.508143]  ? security_file_ioctl+0x89/0xb0
[   13.508529]  SyS_ioctl+0x8f/0xc0
[   13.508825]  entry_SYSCALL_64_fastpath+0x1f/0xbe
[   13.509231] RIP: 0033:0x437fc9
[   13.509505] RSP: 002b:00007ffc7b4d5ab8 EFLAGS: 00000206 ORIG_RAX: 0000000000000010
[   13.510201] RAX: ffffffffffffffda RBX: 00000000004002b0 RCX: 0000000000437fc9
[   13.510818] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   13.511466] RBP: 0000000000000086 R08: 0000000000000000 R09: 0000000020ae8000
[   13.512083] R10: 0000000000009120 R11: 0000000000000206 R12: 0000000000000000
[   13.512703] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020077000