INIT: Entering runlevel: 2
[[36minfo[39;49m] Using makefile-style concurrent boot in runlevel 2.
[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added 'ci-upstream-next-kasan-gce-8,10.128.0.24' (ECDSA) to the list of known hosts.
net.ipv6.conf.syz0.accept_dad = 0
net.ipv6.conf.syz0.router_solicitations = 0
executing program
executing program
syzkaller login: [   36.678339] 
[   36.680078] ================================
[   36.684481] WARNING: inconsistent lock state
[   36.688899] 4.13.0-rc4-next-20170811 #1 Not tainted
[   36.693905] --------------------------------
[   36.698302] inconsistent {IN-SOFTIRQ-W} -> {SOFTIRQ-ON-W} usage.
[   36.704450] syzkaller094957/2942 [HC0[0]:SC0[0]:HE1:SE1] takes:
[   36.710504]  (slock-AF_INET){+.?.}, at: [<ffffffff83518b26>] sk_clone_lock+0x446/0x1270
[   36.718684] {IN-SOFTIRQ-W} state was registered at:
[   36.723701]   __lock_acquire+0x1770/0x3bc0
[   36.727940]   lock_acquire+0x1d5/0x580
[   36.731827]   _raw_spin_lock+0x2a/0x40
[   36.735735]   sk_clone_lock+0x446/0x1270
[   36.739807]   inet_csk_clone_lock+0x92/0x4f0
[   36.744247]   tcp_create_openreq_child+0x7e/0x1b60
[   36.749180]   tcp_v4_syn_recv_sock+0x113/0x1150
[   36.755883]   tcp_check_req+0xe7f/0x1620
[   36.759956]   tcp_v4_rcv+0x1693/0x2dd0
[   36.763856]   ip_local_deliver_finish+0x2e2/0xba0
[   36.768696]   ip_local_deliver+0x1ce/0x6d0
[   36.772927]   ip_rcv_finish+0x8db/0x19c0
[   36.776976]   ip_rcv+0xc3f/0x17d0
[   36.780413]   __netif_receive_skb_core+0x19af/0x33d0
[   36.785482]   __netif_receive_skb+0x2c/0x1b0
[   36.789867]   netif_receive_skb_internal+0xfd/0x4d0
[   36.794867]   napi_gro_receive+0x3d0/0x500
[   36.799089]   receive_buf+0xccd/0x52a0
[   36.802951]   virtnet_poll+0x304/0xad0
[   36.806817]   net_rx_action+0x792/0x1910
[   36.810868]   __do_softirq+0x2f5/0xba3
[   36.814741]   irq_exit+0x1cc/0x200
[   36.818251]   do_IRQ+0xf6/0x190
[   36.821511]   ret_from_intr+0x0/0x1e
[   36.825197]   native_safe_halt+0x6/0x10
[   36.829150]   default_idle+0xbf/0x460
[   36.832920]   arch_cpu_idle+0xa/0x10
[   36.836686]   default_idle_call+0x36/0x90
[   36.840805]   do_idle+0x256/0x3b0
[   36.844228]   cpu_startup_entry+0x18/0x20
[   36.848357]   rest_init+0xed/0xf0
[   36.851800]   start_kernel+0x75f/0x785
[   36.855661]   x86_64_start_reservations+0x2a/0x2c
[   36.860471]   x86_64_start_kernel+0x13c/0x149
[   36.864939]   verify_cpu+0x0/0xfb
[   36.868359] irq event stamp: 10394
[   36.871868] hardirqs last  enabled at (10392): [<ffffffff819f77a7>] kmem_cache_free+0xd7/0x240
[   36.880585] hardirqs last disabled at (10393): [<ffffffff81413f1c>] __local_bh_enable_ip+0x5c/0x160
[   36.889746] softirqs last  enabled at (10394): [<ffffffff82dc32dd>] tun_rx_batched.isra.42+0x5bd/0x860
[   36.899162] softirqs last disabled at (10350): [<ffffffff82dc32dd>] tun_rx_batched.isra.42+0x5bd/0x860
[   36.908584] 
[   36.908584] other info that might help us debug this:
[   36.915217]  Possible unsafe locking scenario:
[   36.915217] 
[   36.921246]        CPU0
[   36.923802]        ----
[   36.926359]   lock(slock-AF_INET);
[   36.929891]   <Interrupt>
[   36.932612]     lock(slock-AF_INET);
[   36.936297] 
[   36.936297]  *** DEADLOCK ***
[   36.936297] 
[   36.942332] 1 lock held by syzkaller094957/2942:
[   36.947064]  #0:  (slock-AF_INET){+.?.}, at: [<ffffffff83518b26>] sk_clone_lock+0x446/0x1270
[   36.955635] 
[   36.955635] stack backtrace:
[   36.960116] CPU: 1 PID: 2942 Comm: syzkaller094957 Not tainted 4.13.0-rc4-next-20170811 #1
[   36.968493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   36.977828] Call Trace:
[   36.980391]  dump_stack+0x194/0x257
[   36.983997]  ? arch_local_irq_restore+0x53/0x53
[   36.988656]  print_usage_bug+0x421/0x480
[   36.992702]  ? save_stack_trace+0x16/0x20
[   36.996847]  ? print_irqtrace_events+0x270/0x270
[   37.001590]  ? hlock_class+0x140/0x140
[   37.005454]  mark_lock+0xe59/0x13d0
[   37.009063]  ? print_shortest_lock_dependencies+0x350/0x350
[   37.014759]  ? print_usage_bug+0x480/0x480
[   37.018970]  ? lock_release+0xa40/0xa40
[   37.022920]  ? do_gettimeofday+0x190/0x190
[   37.027129]  ? find_held_lock+0x35/0x1d0
[   37.031162]  ? __netif_receive_skb+0x2c/0x1b0
[   37.035624]  ? netif_receive_skb_internal+0x13b/0x4d0
[   37.040793]  ? dev_cpu_dead+0xb00/0xb00
[   37.044763]  ? check_same_owner+0x320/0x320
[   37.049070]  ? rcu_pm_notify+0xc0/0xc0
[   37.052932]  ? netif_receive_skb+0xae/0x390
[   37.057320]  mark_held_locks+0xaf/0x100
[   37.061274]  ? __local_bh_enable_ip+0x9d/0x160
[   37.065844]  trace_hardirqs_on_caller+0x421/0x5c0
[   37.070664]  ? tun_rx_batched.isra.42+0x5bd/0x860
[   37.075479]  trace_hardirqs_on+0xd/0x10
[   37.079443]  __local_bh_enable_ip+0x9d/0x160
[   37.083838]  tun_rx_batched.isra.42+0x5fd/0x860
[   37.088479]  ? skb_get_hash_perturb+0x9d0/0x9d0
[   37.093114]  ? tun_sock_write_space+0x370/0x370
[   37.097763]  ? tun_free_netdev+0x1b0/0x1b0
[   37.101985]  ? check_noncircular+0x20/0x20
[   37.106202]  tun_get_user+0x1076/0x28f0
[   37.110153]  ? tun_chr_ioctl+0x40/0x40
[   37.114008]  ? find_held_lock+0x35/0x1d0
[   37.118043]  ? release_sock+0x1d4/0x2a0
[   37.121998]  ? lock_downgrade+0x990/0x990
[   37.126128]  ? lock_downgrade+0x990/0x990
[   37.130247]  ? do_raw_spin_trylock+0x190/0x190
[   37.134797]  ? find_held_lock+0x35/0x1d0
[   37.138827]  ? __tun_get+0x1ab/0x2e0
[   37.142506]  ? lock_downgrade+0x990/0x990
[   37.146620]  ? _raw_spin_unlock_bh+0x30/0x40
[   37.150998]  ? lock_release+0xa40/0xa40
[   37.154940]  ? __lock_is_held+0xb6/0x140
[   37.158971]  ? __tun_get+0x1d4/0x2e0
[   37.162663]  ? tun_chr_close+0x60/0x60
[   37.166530]  tun_chr_write_iter+0xd8/0x190
[   37.170740]  __vfs_write+0x684/0x970
[   37.174431]  ? default_llseek+0x290/0x290
[   37.178553]  ? _cond_resched+0x14/0x30
[   37.182413]  ? avc_policy_seqno+0x9/0x20
[   37.186444]  ? selinux_file_permission+0x82/0x460
[   37.191258]  ? rw_verify_area+0xe5/0x2b0
[   37.195287]  ? __fdget_raw+0x20/0x20
[   37.198970]  vfs_write+0x189/0x510
[   37.202480]  SyS_write+0xef/0x220
[   37.205910]  ? SyS_read+0x220/0x220
[   37.209517]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   37.214510]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   37.219244]  entry_SYSCALL_64_fastpath+0x1f/0xbe
[   37.223983] RIP: 0033:0x4016f0
[   37.227414] RSP: 002b:00007ffe13482668 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   37.235091] RAX: ffffffffffffffda RBX: 00000000006d6ee0 RCX: 00000000004016f0
[   37.242344] RDX: 0000000000000036 RSI: 0000000020004000 RDI: 0000000000000003
[   37.249599] RBP: 0000000000000086 R08: 0000000000000013 R09: 0000000000000052
[   37.256857] R10: 0000000020016ff0 R11: 0000000000000246 R12: 00000000004025e0
[   37.264119] R13: 0000000000402670 R14: 0000000000000000 R15: 0000000000000000
[   37.271537] BUG: scheduling while atomic: syzkaller094957/2942/0x00000002
[   37.278477] INFO: lockdep is turned off.
[   37.282552] Modules linked in:
[   37.285752] Kernel panic - not syncing: scheduling while atomic
[   37.285752] 
[   37.293280] CPU: 1 PID: 2942 Comm: syzkaller094957 Not tainted 4.13.0-rc4-next-20170811 #1
[   37.301674] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   37.311008] Call Trace:
[   37.313578]  dump_stack+0x194/0x257
[   37.317188]  ? arch_local_irq_restore+0x53/0x53
[   37.321843]  ? print_modules+0x18c/0x2f7
[   37.325885]  panic+0x1e4/0x417
[   37.329069]  ? __warn+0x1d9/0x1d9
[   37.332526]  __schedule_bug+0x11f/0x130
[   37.336484]  __schedule+0x131a/0x2070
[   37.340267]  ? __fsnotify_update_child_dentry_flags.part.2+0x2a0/0x2a0
[   37.346925]  ? __sched_text_start+0x8/0x8
[   37.351066]  ? lock_downgrade+0x990/0x990
[   37.355185]  ? _raw_spin_unlock_bh+0x30/0x40
[   37.359581]  ? lock_release+0xa40/0xa40
[   37.363548]  ? __lock_is_held+0xb6/0x140
[   37.367603]  ? __tun_get+0x1d4/0x2e0
[   37.371309]  ? tun_chr_close+0x60/0x60
[   37.375185]  schedule+0x108/0x440
[   37.378619]  ? __schedule+0x2070/0x2070
[   37.382575]  ? __vfs_write+0xf7/0x970
[   37.386354]  ? default_llseek+0x290/0x290
[   37.390485]  ? _cond_resched+0x14/0x30
[   37.394356]  exit_to_usermode_loop+0x250/0x2d0
[   37.398926]  ? trace_event_raw_event_sys_exit+0x260/0x260
[   37.404445]  ? rw_verify_area+0xe5/0x2b0
[   37.408487]  ? __fdget_raw+0x20/0x20
[   37.412187]  syscall_return_slowpath+0x42f/0x500
[   37.416926]  ? prepare_exit_to_usermode+0x2c0/0x2c0
[   37.421919]  ? SyS_write+0x184/0x220
[   37.425610]  ? SyS_read+0x220/0x220
[   37.429213]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   37.433950]  entry_SYSCALL_64_fastpath+0xbc/0xbe
[   37.438681] RIP: 0033:0x4016f0
[   37.441849] RSP: 002b:00007ffe13482668 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   37.449545] RAX: 0000000000000036 RBX: 00000000006d6ee0 RCX: 00000000004016f0
[   37.456799] RDX: 0000000000000036 RSI: 0000000020004000 RDI: 0000000000000003
[   37.464061] RBP: ffffffffffffffff R08: 0000000000000013 R09: 0000000000000052
[   37.471327] R10: 0000000020016ff0 R11: 0000000000000246 R12: 00000000004025e0
[   37.478587] R13: 0000000000402670 R14: 0000000000000000 R15: 0000000000000000
[   37.486271] Dumping ftrace buffer:
[   37.489812]    (ftrace buffer empty)
[   37.493506] Kernel Offset: disabled
[   37.497119] Rebooting in 86400 seconds..