BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor.1/2366
caller is __this_cpu_preempt_check+0x1d/0x30 lib/smp_processor_id.c:62
CPU: 0 PID: 2366 Comm: syz-executor.1 Not tainted 4.4.174+ #17
 0000000000000000 fbdc0a4a8335c6ae ffff8801d321f758 ffffffff81aad1a1
 ffff8800b4dfc740 0000000000000000 ffffffff82a861e0 ffffffff8292c040
 0000000000000002 ffff8801d321f798 ffffffff81b0ad83 1ffff1003a643e00
Call Trace:
 [<ffffffff81aad1a1>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81aad1a1>] dump_stack+0xc1/0x120 lib/dump_stack.c:51
 [<ffffffff81b0ad83>] check_preemption_disabled+0x1d3/0x200 lib/smp_processor_id.c:46
 [<ffffffff81b0aded>] __this_cpu_preempt_check+0x1d/0x30 lib/smp_processor_id.c:62
 [<ffffffff82412741>] tcp_prune_queue net/ipv4/tcp_input.c:4978 [inline]
 [<ffffffff82412741>] tcp_try_rmem_schedule+0x1a1/0x1280 net/ipv4/tcp_input.c:4386
 [<ffffffff82424747>] tcp_send_rcvq+0x1d7/0x4a0 net/ipv4/tcp_input.c:4574
 [<ffffffff823fd062>] tcp_sendmsg+0x2332/0x2ab0 net/ipv4/tcp.c:1134
 [<ffffffff824a8b42>] inet_sendmsg+0x202/0x4d0 net/ipv4/af_inet.c:755
 [<ffffffff821d838e>] sock_sendmsg_nosec net/socket.c:638 [inline]
 [<ffffffff821d838e>] sock_sendmsg+0xbe/0x110 net/socket.c:648
 [<ffffffff821da269>] ___sys_sendmsg+0x769/0x890 net/socket.c:1975
 [<ffffffff821dd0c5>] __sys_sendmsg+0xc5/0x160 net/socket.c:2009
 [<ffffffff822acdda>] C_SYSC_sendmsg net/compat.c:725 [inline]
 [<ffffffff822acdda>] compat_SyS_sendmsg+0x2a/0x40 net/compat.c:723
 [<ffffffff8100603d>] do_syscall_32_irqs_on arch/x86/entry/common.c:330 [inline]
 [<ffffffff8100603d>] do_fast_syscall_32+0x32d/0xa90 arch/x86/entry/common.c:397
 [<ffffffff8271a350>] sysenter_flags_fixed+0xd/0x1a
BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor.1/2366
caller is __this_cpu_preempt_check+0x1d/0x30 lib/smp_processor_id.c:62
CPU: 0 PID: 2366 Comm: syz-executor.1 Not tainted 4.4.174+ #17
 0000000000000000 fbdc0a4a8335c6ae ffff8801d321f5c0 ffffffff81aad1a1
 ffff8800b4dfc740 0000000000000000 ffffffff82a861e0 ffffffff8292c040
 0000000000000002 ffff8801d321f600 ffffffff81b0ad83 ffff8801d5a62900
Call Trace:
 [<ffffffff81aad1a1>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81aad1a1>] dump_stack+0xc1/0x120 lib/dump_stack.c:51
 [<ffffffff81b0ad83>] check_preemption_disabled+0x1d3/0x200 lib/smp_processor_id.c:46
 [<ffffffff81b0aded>] __this_cpu_preempt_check+0x1d/0x30 lib/smp_processor_id.c:62
 [<ffffffff8240f589>] tcp_collapse_one+0x119/0x1e0 net/ipv4/tcp_input.c:4736
 [<ffffffff8241204f>] tcp_collapse+0x84f/0xda0 net/ipv4/tcp_input.c:4849
 [<ffffffff82412c5a>] tcp_prune_queue net/ipv4/tcp_input.c:4990 [inline]
 [<ffffffff82412c5a>] tcp_try_rmem_schedule+0x6ba/0x1280 net/ipv4/tcp_input.c:4386
 [<ffffffff82424747>] tcp_send_rcvq+0x1d7/0x4a0 net/ipv4/tcp_input.c:4574
 [<ffffffff823fd062>] tcp_sendmsg+0x2332/0x2ab0 net/ipv4/tcp.c:1134
 [<ffffffff824a8b42>] inet_sendmsg+0x202/0x4d0 net/ipv4/af_inet.c:755
 [<ffffffff821d838e>] sock_sendmsg_nosec net/socket.c:638 [inline]
 [<ffffffff821d838e>] sock_sendmsg+0xbe/0x110 net/socket.c:648
 [<ffffffff821da269>] ___sys_sendmsg+0x769/0x890 net/socket.c:1975
 [<ffffffff821dd0c5>] __sys_sendmsg+0xc5/0x160 net/socket.c:2009
 [<ffffffff822acdda>] C_SYSC_sendmsg net/compat.c:725 [inline]
 [<ffffffff822acdda>] compat_SyS_sendmsg+0x2a/0x40 net/compat.c:723
 [<ffffffff8100603d>] do_syscall_32_irqs_on arch/x86/entry/common.c:330 [inline]
 [<ffffffff8100603d>] do_fast_syscall_32+0x32d/0xa90 arch/x86/entry/common.c:397
 [<ffffffff8271a350>] sysenter_flags_fixed+0xd/0x1a
BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor.1/2366
caller is __this_cpu_preempt_check+0x1d/0x30 lib/smp_processor_id.c:62
CPU: 0 PID: 2366 Comm: syz-executor.1 Not tainted 4.4.174+ #17
 0000000000000000 fbdc0a4a8335c6ae ffff8801d321f758 ffffffff81aad1a1
 ffff8800b4dfc740 0000000000000000 ffffffff82a861e0 ffffffff8292c040
 0000000000000002 ffff8801d321f798 ffffffff81b0ad83 1ffff1003a643e00
Call Trace:
 [<ffffffff81aad1a1>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81aad1a1>] dump_stack+0xc1/0x120 lib/dump_stack.c:51
 [<ffffffff81b0ad83>] check_preemption_disabled+0x1d3/0x200 lib/smp_processor_id.c:46
 [<ffffffff81b0aded>] __this_cpu_preempt_check+0x1d/0x30 lib/smp_processor_id.c:62
 [<ffffffff824134d5>] tcp_prune_queue net/ipv4/tcp_input.c:5011 [inline]
 [<ffffffff824134d5>] tcp_try_rmem_schedule+0xf35/0x1280 net/ipv4/tcp_input.c:4386
 [<ffffffff82424747>] tcp_send_rcvq+0x1d7/0x4a0 net/ipv4/tcp_input.c:4574
 [<ffffffff823fd062>] tcp_sendmsg+0x2332/0x2ab0 net/ipv4/tcp.c:1134
 [<ffffffff824a8b42>] inet_sendmsg+0x202/0x4d0 net/ipv4/af_inet.c:755
 [<ffffffff821d838e>] sock_sendmsg_nosec net/socket.c:638 [inline]
 [<ffffffff821d838e>] sock_sendmsg+0xbe/0x110 net/socket.c:648
 [<ffffffff821da269>] ___sys_sendmsg+0x769/0x890 net/socket.c:1975
 [<ffffffff821dd0c5>] __sys_sendmsg+0xc5/0x160 net/socket.c:2009
 [<ffffffff822acdda>] C_SYSC_sendmsg net/compat.c:725 [inline]
 [<ffffffff822acdda>] compat_SyS_sendmsg+0x2a/0x40 net/compat.c:723
 [<ffffffff8100603d>] do_syscall_32_irqs_on arch/x86/entry/common.c:330 [inline]
 [<ffffffff8100603d>] do_fast_syscall_32+0x32d/0xa90 arch/x86/entry/common.c:397
 [<ffffffff8271a350>] sysenter_flags_fixed+0xd/0x1a
BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor.1/2379
caller is __this_cpu_preempt_check+0x1d/0x30 lib/smp_processor_id.c:62
CPU: 1 PID: 2379 Comm: syz-executor.1 Not tainted 4.4.174+ #17
 0000000000000000 16304b3d9bc333f1 ffff8800b5257758 ffffffff81aad1a1
 ffff8800b564af80 0000000000000001 ffffffff82a861e0 ffffffff8292c040
 0000000000000001 ffff8800b5257798 ffffffff81b0ad83 1ffff10016a4ae00
Call Trace:
 [<ffffffff81aad1a1>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81aad1a1>] dump_stack+0xc1/0x120 lib/dump_stack.c:51
 [<ffffffff81b0ad83>] check_preemption_disabled+0x1d3/0x200 lib/smp_processor_id.c:46
 [<ffffffff81b0aded>] __this_cpu_preempt_check+0x1d/0x30 lib/smp_processor_id.c:62
 [<ffffffff82412741>] tcp_prune_queue net/ipv4/tcp_input.c:4978 [inline]
 [<ffffffff82412741>] tcp_try_rmem_schedule+0x1a1/0x1280 net/ipv4/tcp_input.c:4386
 [<ffffffff82424747>] tcp_send_rcvq+0x1d7/0x4a0 net/ipv4/tcp_input.c:4574
 [<ffffffff823fd062>] tcp_sendmsg+0x2332/0x2ab0 net/ipv4/tcp.c:1134
 [<ffffffff824a8b42>] inet_sendmsg+0x202/0x4d0 net/ipv4/af_inet.c:755
 [<ffffffff821d838e>] sock_sendmsg_nosec net/socket.c:638 [inline]
 [<ffffffff821d838e>] sock_sendmsg+0xbe/0x110 net/socket.c:648
 [<ffffffff821da269>] ___sys_sendmsg+0x769/0x890 net/socket.c:1975
 [<ffffffff821dd0c5>] __sys_sendmsg+0xc5/0x160 net/socket.c:2009
 [<ffffffff822acdda>] C_SYSC_sendmsg net/compat.c:725 [inline]
 [<ffffffff822acdda>] compat_SyS_sendmsg+0x2a/0x40 net/compat.c:723
 [<ffffffff8100603d>] do_syscall_32_irqs_on arch/x86/entry/common.c:330 [inline]
 [<ffffffff8100603d>] do_fast_syscall_32+0x32d/0xa90 arch/x86/entry/common.c:397
 [<ffffffff8271a350>] sysenter_flags_fixed+0xd/0x1a
syz-executor.1 (2439) used greatest stack depth: 24128 bytes left
input: syz1 as /devices/virtual/input/input6
input: syz1 as /devices/virtual/input/input7
netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
audit_printk_skb: 2 callbacks suppressed
audit: type=1400 audit(1574411664.550:10): avc:  denied  { create } for  pid=2517 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1
syz-executor.0 (2435) used greatest stack depth: 23808 bytes left
audit: type=1400 audit(1574411665.100:11): avc:  denied  { ioctl } for  pid=2517 comm="syz-executor.3" path="socket:[8721]" dev="sockfs" ino=8721 ioctlcmd=5828 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1
audit: type=1400 audit(1574411665.570:12): avc:  denied  { write } for  pid=2548 comm="syz-executor.4" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket
netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket