syzbot

 sign-in | mailing list | source | docs
🐞 Open [1489]
Subsystems
🐞 Fixed [6609]
🐞 Invalid [16911]
Missing Backports [208]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

possible deadlock in serial8250_handle_irq

Status: upstream: reported C repro on 2023/07/22 01:33
Subsystems: hams
[Documentation on labels]
Reported-by: syzbot+5fd749c74105b0e1b302@syzkaller.appspotmail.com
First crash: 801d, last: 3d06h
Discussions (13)
Title Replies (including bot) Last reply
[PATCH net-next v2] 6pack: drop redundant locking and refcounting 2 (2) 2025/09/25 06:11
[PATCH net-next] 6pack: drop redundant locking and refcounting 4 (4) 2025/09/23 08:24
[syzbot] [ppp?] possible deadlock in serial8250_handle_irq 0 (2) 2025/09/15 18:19
[syzbot] Monthly hams report (Aug 2025) 0 (1) 2025/08/25 08:40
[syzbot] Monthly hams report (Jul 2025) 0 (1) 2025/07/23 10:08
[syzbot] Monthly hams report (Jun 2025) 0 (1) 2025/06/23 07:31
[syzbot] Monthly hams report (May 2025) 0 (1) 2025/05/21 14:55
[syzbot] Monthly hams report (Apr 2025) 0 (1) 2025/04/22 10:11
[syzbot] Monthly hams report (Mar 2025) 0 (1) 2025/03/19 21:27
[syzbot] Monthly hams report (Feb 2025) 0 (1) 2025/02/16 21:54
[syzbot] Monthly hams report (Jan 2025) 0 (1) 2025/01/16 10:12
[syzbot] Monthly hams report (Dec 2024) 0 (1) 2024/12/16 09:45
[syzbot] Monthly hams report (Aug 2024) 0 (1) 2024/08/13 08:52
Similar bugs (4)
Kernel Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-5.15 possible deadlock in serial8250_handle_irq 4 2 104d 169d 0/3 auto-obsoleted due to no activity on 2025/09/22 18:06
linux-6.1 possible deadlock in serial8250_handle_irq (2) 4 8 4d13h 72d 0/3 upstream: reported on 2025/07/16 08:44
linux-6.6 possible deadlock in serial8250_handle_irq 4 2 82d 83d 0/2 upstream: reported on 2025/07/05 08:56
linux-6.1 possible deadlock in serial8250_handle_irq 4 1 282d 282d 0/3 auto-obsoleted due to no activity on 2025/03/27 21:41

Sample crash report:
=====================================================
WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected
syzkaller #0 Not tainted
-----------------------------------------------------
kworker/u8:1/13 [HC0[0]:SC0[0]:HE0:SE1] is trying to acquire:
ffffffff8f1127b8 (disc_data_lock){.?.+}-{3:3}, at: sp_get drivers/net/hamradio/6pack.c:370 [inline]
ffffffff8f1127b8 (disc_data_lock){.?.+}-{3:3}, at: sixpack_write_wakeup+0x30/0x480 drivers/net/hamradio/6pack.c:391

and this task is already holding:
ffffffff9a263db8 (&port_lock_key){-.-.}-{3:3}, at: uart_port_lock_irqsave include/linux/serial_core.h:717 [inline]
ffffffff9a263db8 (&port_lock_key){-.-.}-{3:3}, at: uart_port_ref_lock+0xc4/0x3b0 drivers/tty/serial/serial_core.c:83
which would create a new lock dependency:
 (&port_lock_key){-.-.}-{3:3} -> (disc_data_lock){.?.+}-{3:3}

but this new dependency connects a HARDIRQ-irq-safe lock:
 (&port_lock_key){-.-.}-{3:3}

... which became HARDIRQ-irq-safe at:
  lock_acquire+0x120/0x360 kernel/locking/lockdep.c:5868
  __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]
  _raw_spin_lock_irqsave+0xa7/0xf0 kernel/locking/spinlock.c:162
  uart_port_lock_irqsave include/linux/serial_core.h:717 [inline]
  serial8250_handle_irq+0x6b/0xbb0 drivers/tty/serial/8250/8250_port.c:1798
  serial8250_default_handle_irq+0xbf/0x200 drivers/tty/serial/8250/8250_port.c:1846
  serial8250_interrupt+0x8d/0x180 drivers/tty/serial/8250/8250_core.c:82
  __handle_irq_event_percpu+0x295/0xab0 kernel/irq/handle.c:203
  handle_irq_event_percpu kernel/irq/handle.c:240 [inline]
  handle_irq_event+0x8b/0x1e0 kernel/irq/handle.c:257
  handle_edge_irq+0x23b/0xa10 kernel/irq/chip.c:855
  generic_handle_irq_desc include/linux/irqdesc.h:173 [inline]
  handle_irq arch/x86/kernel/irq.c:254 [inline]
  call_irq_handler arch/x86/kernel/irq.c:-1 [inline]
  __common_interrupt+0x141/0x1f0 arch/x86/kernel/irq.c:325
  common_interrupt+0xb6/0xe0 arch/x86/kernel/irq.c:318
  asm_common_interrupt+0x26/0x40 arch/x86/include/asm/idtentry.h:688
  native_safe_halt arch/x86/include/asm/irqflags.h:48 [inline]
  pv_native_safe_halt+0x13/0x20 arch/x86/kernel/paravirt.c:81
  arch_safe_halt arch/x86/include/asm/paravirt.h:107 [inline]
  default_idle+0x13/0x20 arch/x86/kernel/process.c:767
  default_idle_call+0x74/0xb0 kernel/sched/idle.c:122
  cpuidle_idle_call kernel/sched/idle.c:190 [inline]
  do_idle+0x1e8/0x510 kernel/sched/idle.c:330
  cpu_startup_entry+0x44/0x60 kernel/sched/idle.c:428
  rest_init+0x2de/0x300 init/main.c:756
  start_kernel+0x3a9/0x410 init/main.c:1109
  x86_64_start_reservations+0x24/0x30 arch/x86/kernel/head64.c:310
  x86_64_start_kernel+0x143/0x1c0 arch/x86/kernel/head64.c:291
  common_startup_64+0x13e/0x147

to a HARDIRQ-irq-unsafe lock:
 (disc_data_lock){.?.+}-{3:3}

... which became HARDIRQ-irq-unsafe at:
...
  lock_acquire+0x120/0x360 kernel/locking/lockdep.c:5868
  __raw_read_lock include/linux/rwlock_api_smp.h:150 [inline]
  _raw_read_lock+0x36/0x50 kernel/locking/spinlock.c:228
  sp_get drivers/net/hamradio/6pack.c:370 [inline]
  sixpack_receive_buf+0x5c/0x1450 drivers/net/hamradio/6pack.c:433
  tty_ldisc_receive_buf+0x119/0x160 drivers/tty/tty_buffer.c:391
  tty_port_default_receive_buf+0x6e/0xa0 drivers/tty/tty_port.c:37
  receive_buf drivers/tty/tty_buffer.c:445 [inline]
  flush_to_ldisc+0x24a/0x6e0 drivers/tty/tty_buffer.c:495
  process_one_work kernel/workqueue.c:3263 [inline]
  process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346
  worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427
  kthread+0x711/0x8a0 kernel/kthread.c:463
  ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158
  ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245

other info that might help us debug this:

 Possible interrupt unsafe locking scenario:

       CPU0                    CPU1
       ----                    ----
  lock(disc_data_lock);
                               local_irq_disable();
                               lock(&port_lock_key);
                               lock(disc_data_lock);
  <Interrupt>
    lock(&port_lock_key);

 *** DEADLOCK ***

6 locks held by kworker/u8:1/13:
 #0: ffff88801a889148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3238 [inline]
 #0: ffff88801a889148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0 kernel/workqueue.c:3346
 #1: ffffc90000127ba0 ((work_completion)(&buf->work)){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3239 [inline]
 #1: ffffc90000127ba0 ((work_completion)(&buf->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0 kernel/workqueue.c:3346
 #2: ffff888141b28ca0 (&buf->lock){+.+.}-{4:4}, at: flush_to_ldisc+0x38/0x6e0 drivers/tty/tty_buffer.c:467
 #3: ffff88807808d0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref+0x1c/0x90 drivers/tty/tty_ldisc.c:263
 #4: ffffffff9a263db8 (&port_lock_key){-.-.}-{3:3}, at: uart_port_lock_irqsave include/linux/serial_core.h:717 [inline]
 #4: ffffffff9a263db8 (&port_lock_key){-.-.}-{3:3}, at: uart_port_ref_lock+0xc4/0x3b0 drivers/tty/serial/serial_core.c:83
 #5: ffff88807808d0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref+0x1c/0x90 drivers/tty/tty_ldisc.c:263

the dependencies between HARDIRQ-irq-safe lock and the holding lock:
-> (&port_lock_key){-.-.}-{3:3} {
   IN-HARDIRQ-W at:
                    lock_acquire+0x120/0x360 kernel/locking/lockdep.c:5868
                    __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]
                    _raw_spin_lock_irqsave+0xa7/0xf0 kernel/locking/spinlock.c:162
                    uart_port_lock_irqsave include/linux/serial_core.h:717 [inline]
                    serial8250_handle_irq+0x6b/0xbb0 drivers/tty/serial/8250/8250_port.c:1798
                    serial8250_default_handle_irq+0xbf/0x200 drivers/tty/serial/8250/8250_port.c:1846
                    serial8250_interrupt+0x8d/0x180 drivers/tty/serial/8250/8250_core.c:82
                    __handle_irq_event_percpu+0x295/0xab0 kernel/irq/handle.c:203
                    handle_irq_event_percpu kernel/irq/handle.c:240 [inline]
                    handle_irq_event+0x8b/0x1e0 kernel/irq/handle.c:257
                    handle_edge_irq+0x23b/0xa10 kernel/irq/chip.c:855
                    generic_handle_irq_desc include/linux/irqdesc.h:173 [inline]
                    handle_irq arch/x86/kernel/irq.c:254 [inline]
                    call_irq_handler arch/x86/kernel/irq.c:-1 [inline]
                    __common_interrupt+0x141/0x1f0 arch/x86/kernel/irq.c:325
                    common_interrupt+0xb6/0xe0 arch/x86/kernel/irq.c:318
                    asm_common_interrupt+0x26/0x40 arch/x86/include/asm/idtentry.h:688
                    native_safe_halt arch/x86/include/asm/irqflags.h:48 [inline]
                    pv_native_safe_halt+0x13/0x20 arch/x86/kernel/paravirt.c:81
                    arch_safe_halt arch/x86/include/asm/paravirt.h:107 [inline]
                    default_idle+0x13/0x20 arch/x86/kernel/process.c:767
                    default_idle_call+0x74/0xb0 kernel/sched/idle.c:122
                    cpuidle_idle_call kernel/sched/idle.c:190 [inline]
                    do_idle+0x1e8/0x510 kernel/sched/idle.c:330
                    cpu_startup_entry+0x44/0x60 kernel/sched/idle.c:428
                    rest_init+0x2de/0x300 init/main.c:756
                    start_kernel+0x3a9/0x410 init/main.c:1109
                    x86_64_start_reservations+0x24/0x30 arch/x86/kernel/head64.c:310
                    x86_64_start_kernel+0x143/0x1c0 arch/x86/kernel/head64.c:291
                    common_startup_64+0x13e/0x147
   IN-SOFTIRQ-W at:
                    lock_acquire+0x120/0x360 kernel/locking/lockdep.c:5868
                    __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]
                    _raw_spin_lock_irqsave+0xa7/0xf0 kernel/locking/spinlock.c:162
                    uart_port_lock_irqsave include/linux/serial_core.h:717 [inline]
                    serial8250_handle_irq+0x6b/0xbb0 drivers/tty/serial/8250/8250_port.c:1798
                    serial8250_default_handle_irq+0xbf/0x200 drivers/tty/serial/8250/8250_port.c:1846
                    serial8250_interrupt+0x8d/0x180 drivers/tty/serial/8250/8250_core.c:82
                    __handle_irq_event_percpu+0x295/0xab0 kernel/irq/handle.c:203
                    handle_irq_event_percpu kernel/irq/handle.c:240 [inline]
                    handle_irq_event+0x8b/0x1e0 kernel/irq/handle.c:257
                    handle_edge_irq+0x23b/0xa10 kernel/irq/chip.c:855
                    generic_handle_irq_desc include/linux/irqdesc.h:173 [inline]
                    handle_irq arch/x86/kernel/irq.c:254 [inline]
                    call_irq_handler arch/x86/kernel/irq.c:-1 [inline]
                    __common_interrupt+0x141/0x1f0 arch/x86/kernel/irq.c:325
                    common_interrupt+0x5e/0xe0 arch/x86/kernel/irq.c:318
                    asm_common_interrupt+0x26/0x40 arch/x86/include/asm/idtentry.h:688
                    __sanitizer_cov_trace_pc+0x0/0x70
                    deliver_ptype_list_skb net/core/dev.c:2483 [inline]
                    __netif_receive_skb_core+0x393a/0x4020 net/core/dev.c:5997
                    __netif_receive_skb_one_core net/core/dev.c:6038 [inline]
                    __netif_receive_skb+0x72/0x380 net/core/dev.c:6153
                    process_backlog+0x60e/0x14f0 net/core/dev.c:6505
                    __napi_poll+0xc7/0x360 net/core/dev.c:7555
                    napi_poll net/core/dev.c:7618 [inline]
                    net_rx_action+0x707/0xe30 net/core/dev.c:7745
                    handle_softirqs+0x286/0x870 kernel/softirq.c:579
                    do_softirq+0xec/0x180 kernel/softirq.c:480
                    __local_bh_enable_ip+0x17d/0x1c0 kernel/softirq.c:407
                    local_bh_enable include/linux/bottom_half.h:33 [inline]
                    rcu_read_unlock_bh include/linux/rcupdate.h:910 [inline]
                    __dev_queue_xmit+0x1d79/0x3b50 net/core/dev.c:4752
                    dev_queue_xmit include/linux/netdevice.h:3361 [inline]
                    neigh_hh_output include/net/neighbour.h:531 [inline]
                    neigh_output include/net/neighbour.h:545 [inline]
                    ip6_finish_output2+0xf70/0x1480 net/ipv6/ip6_output.c:136
                    NF_HOOK_COND include/linux/netfilter.h:307 [inline]
                    ip6_output+0x340/0x550 net/ipv6/ip6_output.c:247
                    NF_HOOK+0x9e/0x380 include/linux/netfilter.h:318
                    mld_sendpack+0x8d4/0xe60 net/ipv6/mcast.c:1855
                    mld_send_cr net/ipv6/mcast.c:2154 [inline]
                    mld_ifc_work+0x83e/0xd60 net/ipv6/mcast.c:2693
                    process_one_work kernel/workqueue.c:3263 [inline]
                    process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346
                    worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427
                    kthread+0x711/0x8a0 kernel/kthread.c:463
                    ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158
                    ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
   INITIAL USE at:
                   lock_acquire+0x120/0x360 kernel/locking/lockdep.c:5868
                   __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]
                   _raw_spin_lock_irqsave+0xa7/0xf0 kernel/locking/spinlock.c:162
                   uart_port_lock_irqsave include/linux/serial_core.h:717 [inline]
                   class_uart_port_lock_irqsave_constructor include/linux/serial_core.h:797 [inline]
                   serial8250_do_set_termios+0x4d1/0x1c30 drivers/tty/serial/8250/8250_port.c:2760
                   uart_set_options+0x3c2/0x5b0 drivers/tty/serial/serial_core.c:2262
                   serial8250_console_setup+0x2f4/0x3c0 drivers/tty/serial/8250/8250_port.c:3405
                   univ8250_console_setup+0x43a/0x540 drivers/tty/serial/8250/8250_core.c:426
                   console_call_setup kernel/printk/printk.c:3773 [inline]
                   try_enable_preferred_console+0x4e4/0x650 kernel/printk/printk.c:3817
                   register_console+0x551/0xf90 kernel/printk/printk.c:4011
                   univ8250_console_init+0x3a/0x70 drivers/tty/serial/8250/8250_core.c:511
                   console_init+0x10e/0x430 kernel/printk/printk.c:4298
                   start_kernel+0x254/0x410 init/main.c:1047
                   x86_64_start_reservations+0x24/0x30 arch/x86/kernel/head64.c:310
                   x86_64_start_kernel+0x143/0x1c0 arch/x86/kernel/head64.c:291
                   common_startup_64+0x13e/0x147
 }
 ... key      at: [<ffffffff9a2631a0>] port_lock_key+0x0/0x20

the dependencies between the lock to be acquired
 and HARDIRQ-irq-unsafe lock:
-> (disc_data_lock){.?.+}-{3:3} {
   IN-HARDIRQ-R at:
                    lock_acquire+0x120/0x360 kernel/locking/lockdep.c:5868
                    __raw_read_lock include/linux/rwlock_api_smp.h:150 [inline]
                    _raw_read_lock+0x36/0x50 kernel/locking/spinlock.c:228
                    sp_get drivers/net/hamradio/6pack.c:370 [inline]
                    sixpack_write_wakeup+0x30/0x480 drivers/net/hamradio/6pack.c:391
                    tty_wakeup+0xbe/0x100 drivers/tty/tty_io.c:515
                    tty_port_default_wakeup+0xfb/0x170 drivers/tty/tty_port.c:67
                    serial8250_tx_chars+0x72e/0x970 drivers/tty/serial/8250/8250_port.c:1719
                    serial8250_handle_irq+0x633/0xbb0 drivers/tty/serial/8250/8250_port.c:1827
                    serial8250_default_handle_irq+0xbf/0x200 drivers/tty/serial/8250/8250_port.c:1846
                    serial8250_interrupt+0x8d/0x180 drivers/tty/serial/8250/8250_core.c:82
                    __handle_irq_event_percpu+0x295/0xab0 kernel/irq/handle.c:203
                    handle_irq_event_percpu kernel/irq/handle.c:240 [inline]
                    handle_irq_event+0x8b/0x1e0 kernel/irq/handle.c:257
                    handle_edge_irq+0x23b/0xa10 kernel/irq/chip.c:855
                    generic_handle_irq_desc include/linux/irqdesc.h:173 [inline]
                    handle_irq arch/x86/kernel/irq.c:254 [inline]
                    call_irq_handler arch/x86/kernel/irq.c:-1 [inline]
                    __common_interrupt+0x141/0x1f0 arch/x86/kernel/irq.c:325
                    common_interrupt+0xb6/0xe0 arch/x86/kernel/irq.c:318
                    asm_common_interrupt+0x26/0x40 arch/x86/include/asm/idtentry.h:688
                    __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:152 [inline]
                    _raw_spin_unlock_irqrestore+0xa8/0x110 kernel/locking/spinlock.c:194
                    spin_unlock_irqrestore include/linux/spinlock.h:406 [inline]
                    uart_port_unlock_irqrestore include/linux/serial_core.h:788 [inline]
                    uart_port_unlock_deref+0x111/0x2f0 drivers/tty/serial/serial_core.c:91
                    uart_write+0xe8/0x130 drivers/tty/serial/serial_core.c:634
                    decode_prio_command drivers/net/hamradio/6pack.c:868 [inline]
                    sixpack_decode drivers/net/hamradio/6pack.c:943 [inline]
                    sixpack_receive_buf+0x447/0x1450 drivers/net/hamradio/6pack.c:447
                    tty_ldisc_receive_buf+0x119/0x160 drivers/tty/tty_buffer.c:391
                    tty_port_default_receive_buf+0x6e/0xa0 drivers/tty/tty_port.c:37
                    receive_buf drivers/tty/tty_buffer.c:445 [inline]
                    flush_to_ldisc+0x24a/0x6e0 drivers/tty/tty_buffer.c:495
                    process_one_work kernel/workqueue.c:3263 [inline]
                    process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346
                    worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427
                    kthread+0x711/0x8a0 kernel/kthread.c:463
                    ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158
                    ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
   HARDIRQ-ON-R at:
                    lock_acquire+0x120/0x360 kernel/locking/lockdep.c:5868
                    __raw_read_lock include/linux/rwlock_api_smp.h:150 [inline]
                    _raw_read_lock+0x36/0x50 kernel/locking/spinlock.c:228
                    sp_get drivers/net/hamradio/6pack.c:370 [inline]
                    sixpack_receive_buf+0x5c/0x1450 drivers/net/hamradio/6pack.c:433
                    tty_ldisc_receive_buf+0x119/0x160 drivers/tty/tty_buffer.c:391
                    tty_port_default_receive_buf+0x6e/0xa0 drivers/tty/tty_port.c:37
                    receive_buf drivers/tty/tty_buffer.c:445 [inline]
                    flush_to_ldisc+0x24a/0x6e0 drivers/tty/tty_buffer.c:495
                    process_one_work kernel/workqueue.c:3263 [inline]
                    process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346
                    worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427
                    kthread+0x711/0x8a0 kernel/kthread.c:463
                    ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158
                    ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
   SOFTIRQ-ON-R at:
                    lock_acquire+0x120/0x360 kernel/locking/lockdep.c:5868
                    __raw_read_lock include/linux/rwlock_api_smp.h:150 [inline]
                    _raw_read_lock+0x36/0x50 kernel/locking/spinlock.c:228
                    sp_get drivers/net/hamradio/6pack.c:370 [inline]
                    sixpack_receive_buf+0x5c/0x1450 drivers/net/hamradio/6pack.c:433
                    tty_ldisc_receive_buf+0x119/0x160 drivers/tty/tty_buffer.c:391
                    tty_port_default_receive_buf+0x6e/0xa0 drivers/tty/tty_port.c:37
                    receive_buf drivers/tty/tty_buffer.c:445 [inline]
                    flush_to_ldisc+0x24a/0x6e0 drivers/tty/tty_buffer.c:495
                    process_one_work kernel/workqueue.c:3263 [inline]
                    process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346
                    worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427
                    kthread+0x711/0x8a0 kernel/kthread.c:463
                    ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158
                    ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
   INITIAL USE at:
                   lock_acquire+0x120/0x360 kernel/locking/lockdep.c:5868
                   __raw_write_lock_irq include/linux/rwlock_api_smp.h:195 [inline]
                   _raw_write_lock_irq+0xa2/0xf0 kernel/locking/spinlock.c:326
                   sixpack_close+0x2c/0x280 drivers/net/hamradio/6pack.c:641
                   tty_ldisc_kill+0xa3/0x1a0 drivers/tty/tty_ldisc.c:613
                   tty_ldisc_release+0x174/0x200 drivers/tty/tty_ldisc.c:781
                   tty_release_struct+0x2a/0xd0 drivers/tty/tty_io.c:1681
                   tty_release+0xcb0/0x1640 drivers/tty/tty_io.c:1852
                   __fput+0x44c/0xa70 fs/file_table.c:468
                   task_work_run+0x1d4/0x260 kernel/task_work.c:227
                   resume_user_mode_work include/linux/resume_user_mode.h:50 [inline]
                   exit_to_user_mode_loop+0xec/0x130 kernel/entry/common.c:43
                   exit_to_user_mode_prepare include/linux/irq-entry-common.h:225 [inline]
                   syscall_exit_to_user_mode_work include/linux/entry-common.h:175 [inline]
                   syscall_exit_to_user_mode include/linux/entry-common.h:210 [inline]
                   do_syscall_64+0x2bd/0xfa0 arch/x86/entry/syscall_64.c:100
                   entry_SYSCALL_64_after_hwframe+0x77/0x7f
   INITIAL READ USE at:
                        lock_acquire+0x120/0x360 kernel/locking/lockdep.c:5868
                        __raw_read_lock include/linux/rwlock_api_smp.h:150 [inline]
                        _raw_read_lock+0x36/0x50 kernel/locking/spinlock.c:228
                        sp_get drivers/net/hamradio/6pack.c:370 [inline]
                        sixpack_receive_buf+0x5c/0x1450 drivers/net/hamradio/6pack.c:433
                        tty_ldisc_receive_buf+0x119/0x160 drivers/tty/tty_buffer.c:391
                        tty_port_default_receive_buf+0x6e/0xa0 drivers/tty/tty_port.c:37
                        receive_buf drivers/tty/tty_buffer.c:445 [inline]
                        flush_to_ldisc+0x24a/0x6e0 drivers/tty/tty_buffer.c:495
                        process_one_work kernel/workqueue.c:3263 [inline]
                        process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346
                        worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427
                        kthread+0x711/0x8a0 kernel/kthread.c:463
                        ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158
                        ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
 }
 ... key      at: [<ffffffff8f1127b8>] disc_data_lock+0x18/0x100 6pack.c:-1
 ... acquired at:
   lock_acquire+0x120/0x360 kernel/locking/lockdep.c:5868
   __raw_read_lock include/linux/rwlock_api_smp.h:150 [inline]
   _raw_read_lock+0x36/0x50 kernel/locking/spinlock.c:228
   sp_get drivers/net/hamradio/6pack.c:370 [inline]
   sixpack_write_wakeup+0x30/0x480 drivers/net/hamradio/6pack.c:391
   tty_wakeup+0xbe/0x100 drivers/tty/tty_io.c:515
   tty_port_default_wakeup+0xfb/0x170 drivers/tty/tty_port.c:67
   serial8250_tx_chars+0x72e/0x970 drivers/tty/serial/8250/8250_port.c:1719
   __start_tx+0x33b/0x480 drivers/tty/serial/8250/8250_port.c:1426
   __uart_start+0x23f/0x460 drivers/tty/serial/serial_core.c:161
   uart_write+0xdc/0x130 drivers/tty/serial/serial_core.c:633
   decode_prio_command drivers/net/hamradio/6pack.c:868 [inline]
   sixpack_decode drivers/net/hamradio/6pack.c:943 [inline]
   sixpack_receive_buf+0x447/0x1450 drivers/net/hamradio/6pack.c:447
   tty_ldisc_receive_buf+0x119/0x160 drivers/tty/tty_buffer.c:391
   tty_port_default_receive_buf+0x6e/0xa0 drivers/tty/tty_port.c:37
   receive_buf drivers/tty/tty_buffer.c:445 [inline]
   flush_to_ldisc+0x24a/0x6e0 drivers/tty/tty_buffer.c:495
   process_one_work kernel/workqueue.c:3263 [inline]
   process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346
   worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427
   kthread+0x711/0x8a0 kernel/kthread.c:463
   ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158
   ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245


stack backtrace:
CPU: 0 UID: 0 PID: 13 Comm: kworker/u8:1 Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
Workqueue: events_unbound flush_to_ldisc
Call Trace:
 <TASK>
 dump_stack_lvl+0x189/0x250 lib/dump_stack.c:120
 print_bad_irq_dependency kernel/locking/lockdep.c:2616 [inline]
 check_irq_usage kernel/locking/lockdep.c:2857 [inline]
 check_prev_add kernel/locking/lockdep.c:3169 [inline]
 check_prevs_add kernel/locking/lockdep.c:3284 [inline]
 validate_chain+0x1f05/0x2140 kernel/locking/lockdep.c:3908
 __lock_acquire+0xab9/0xd20 kernel/locking/lockdep.c:5237
 lock_acquire+0x120/0x360 kernel/locking/lockdep.c:5868
 __raw_read_lock include/linux/rwlock_api_smp.h:150 [inline]
 _raw_read_lock+0x36/0x50 kernel/locking/spinlock.c:228
 sp_get drivers/net/hamradio/6pack.c:370 [inline]
 sixpack_write_wakeup+0x30/0x480 drivers/net/hamradio/6pack.c:391
 tty_wakeup+0xbe/0x100 drivers/tty/tty_io.c:515
 tty_port_default_wakeup+0xfb/0x170 drivers/tty/tty_port.c:67
 serial8250_tx_chars+0x72e/0x970 drivers/tty/serial/8250/8250_port.c:1719
 __start_tx+0x33b/0x480 drivers/tty/serial/8250/8250_port.c:1426
 __uart_start+0x23f/0x460 drivers/tty/serial/serial_core.c:161
 uart_write+0xdc/0x130 drivers/tty/serial/serial_core.c:633
 decode_prio_command drivers/net/hamradio/6pack.c:868 [inline]
 sixpack_decode drivers/net/hamradio/6pack.c:943 [inline]
 sixpack_receive_buf+0x447/0x1450 drivers/net/hamradio/6pack.c:447
 tty_ldisc_receive_buf+0x119/0x160 drivers/tty/tty_buffer.c:391
 tty_port_default_receive_buf+0x6e/0xa0 drivers/tty/tty_port.c:37
 receive_buf drivers/tty/tty_buffer.c:445 [inline]
 flush_to_ldisc+0x24a/0x6e0 drivers/tty/tty_buffer.c:495
 process_one_work kernel/workqueue.c:3263 [inline]
 process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346
 worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427
 kthread+0x711/0x8a0 kernel/kthread.c:463
 ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
 </TASK>

Crashes (177):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2025/09/15 18:18 linux-next 590b221ed425 e2beed91 .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci-upstream-rust-kasan-gce possible deadlock in serial8250_handle_irq
2025/09/17 03:26 upstream 5aca7966d2a7 e2beed91 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root possible deadlock in serial8250_handle_irq
2025/09/13 10:23 upstream 22f20375f5b7 e2beed91 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root possible deadlock in serial8250_handle_irq
2025/09/12 12:53 upstream 320475fbd590 e2beed91 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root possible deadlock in serial8250_handle_irq
2025/09/11 18:05 upstream 02ffd6f89c50 fdeaa69b .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root possible deadlock in serial8250_handle_irq
2025/09/05 04:00 upstream d69eb204c255 d291dd2d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root possible deadlock in serial8250_handle_irq
2025/08/30 12:53 upstream fb679c832b64 807a3b61 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root possible deadlock in serial8250_handle_irq
2025/08/25 14:23 upstream c330cb607721 bf27483f .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-root possible deadlock in serial8250_handle_irq
2025/08/21 01:31 upstream 038d61fd6422 0b9605c8 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root possible deadlock in serial8250_handle_irq
2025/08/16 14:46 upstream 038d61fd6422 1804e95e .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root possible deadlock in serial8250_handle_irq
2025/08/14 23:09 upstream 0cc53520e68b dcc075fb .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root possible deadlock in serial8250_handle_irq
2025/08/12 22:50 upstream 038d61fd6422 c06e8995 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root possible deadlock in serial8250_handle_irq
2025/08/11 07:44 upstream 038d61fd6422 32a0e5ed .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root possible deadlock in serial8250_handle_irq
2025/08/10 02:09 upstream 561c80369df0 32a0e5ed .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root possible deadlock in serial8250_handle_irq
2025/08/09 03:01 upstream 37816488247d 32a0e5ed .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-badwrites-root possible deadlock in serial8250_handle_irq
2025/08/08 00:24 upstream 6e64f4580381 6a893178 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root possible deadlock in serial8250_handle_irq
2025/08/04 15:31 upstream d2eedaa3909b 7368264b .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root possible deadlock in serial8250_handle_irq
2025/08/03 18:24 upstream 186f3edfdd41 7368264b .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root possible deadlock in serial8250_handle_irq
2025/08/03 12:20 upstream 186f3edfdd41 7368264b .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root possible deadlock in serial8250_handle_irq
2025/07/31 21:31 upstream 260f6f4fda93 0c075d67 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root possible deadlock in serial8250_handle_irq
2025/07/30 16:12 upstream 4b290aae788e f8f2b4da .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root possible deadlock in serial8250_handle_irq
2025/07/26 03:22 upstream 327579671a9b fb8f743d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root possible deadlock in serial8250_handle_irq
2025/07/17 21:37 upstream e2291551827f 0d1223f1 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root possible deadlock in serial8250_handle_irq
2025/07/17 12:55 upstream e2291551827f 0d1223f1 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root possible deadlock in serial8250_handle_irq
2025/07/15 15:50 upstream 155a3c003e55 03fcfc4b .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root possible deadlock in serial8250_handle_irq
2025/07/15 04:16 upstream 155a3c003e55 03fcfc4b .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root possible deadlock in serial8250_handle_irq
2025/07/14 11:51 upstream 347e9f5043c8 3cda49cf .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root possible deadlock in serial8250_handle_irq
2025/07/14 05:59 upstream 5d5d62298b8b 3cda49cf .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root possible deadlock in serial8250_handle_irq
2025/07/12 08:22 upstream 379f604cc3dc 3cda49cf .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root possible deadlock in serial8250_handle_irq
2025/07/11 18:57 upstream 40f92e79b0aa 3cda49cf .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root possible deadlock in serial8250_handle_irq
2025/07/09 20:19 upstream 733923397fd9 f4e5e155 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root possible deadlock in serial8250_handle_irq
2025/07/08 16:13 upstream d7b8f8e20813 abade794 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root possible deadlock in serial8250_handle_irq
2025/02/11 06:32 upstream febbc555cf0f 43f51a00 .config console log report info [disk image] [vmlinux] [kernel image] ci-qemu-gce-upstream-auto possible deadlock in serial8250_handle_irq
2023/10/10 09:01 upstream 94f6f0550c62 c9be5398 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce possible deadlock in serial8250_handle_irq
2024/03/29 16:23 upstream fe46a7dd189e c52bcb23 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-386 possible deadlock in serial8250_handle_irq
2023/07/19 08:20 upstream ccff6d117d8d 022df2bb .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce possible deadlock in serial8250_handle_irq
2023/07/18 01:25 upstream fdf0eaf11452 20f8b3c2 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-386 possible deadlock in serial8250_handle_irq
2025/09/23 15:12 linux-next 846bd2225ec3 0ac7291c .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-linux-next-kasan-gce-root possible deadlock in serial8250_handle_irq
2025/09/20 18:34 linux-next 846bd2225ec3 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-rust-kasan-gce possible deadlock in serial8250_handle_irq
2025/09/20 05:42 linux-next 846bd2225ec3 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-rust-kasan-gce possible deadlock in serial8250_handle_irq
2025/09/19 13:13 linux-next ae2d20002576 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-rust-kasan-gce possible deadlock in serial8250_handle_irq
2025/09/17 15:38 linux-next ae2d20002576 e2beed91 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-rust-kasan-gce possible deadlock in serial8250_handle_irq
2025/09/17 13:11 linux-next 590b221ed425 e2beed91 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-rust-kasan-gce possible deadlock in serial8250_handle_irq
2025/09/16 21:46 linux-next 590b221ed425 e2beed91 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-rust-kasan-gce possible deadlock in serial8250_handle_irq
2025/09/16 06:52 linux-next 590b221ed425 e2beed91 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-rust-kasan-gce possible deadlock in serial8250_handle_irq
2025/09/15 15:05 linux-next 590b221ed425 e2beed91 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-rust-kasan-gce possible deadlock in serial8250_handle_irq
2025/09/13 21:10 linux-next 590b221ed425 e2beed91 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-rust-kasan-gce possible deadlock in serial8250_handle_irq
2025/09/12 22:09 linux-next 590b221ed425 e2beed91 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-rust-kasan-gce possible deadlock in serial8250_handle_irq
2025/09/10 19:02 linux-next 5f540c4aade9 fdeaa69b .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-rust-kasan-gce possible deadlock in serial8250_handle_irq
2025/08/12 16:52 linux-next 2674d1eadaa2 c06e8995 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-rust-kasan-gce possible deadlock in serial8250_handle_irq
2025/08/03 10:41 linux-next 84b92a499e7e 7368264b .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-rust-kasan-gce possible deadlock in serial8250_handle_irq
2025/08/03 02:57 linux-next 84b92a499e7e 7368264b .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-linux-next-kasan-gce-root possible deadlock in serial8250_handle_irq
2025/07/25 15:18 linux-next d086c886ceb9 fb8f743d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-rust-kasan-gce possible deadlock in serial8250_handle_irq
2025/07/23 13:24 linux-next d086c886ceb9 e1dd4f22 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-rust-kasan-gce possible deadlock in serial8250_handle_irq
2025/07/18 05:15 linux-next 024e09e444bd 0d1223f1 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-rust-kasan-gce possible deadlock in serial8250_handle_irq
2025/07/16 22:17 linux-next e8352908bdcd 44f8051e .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-rust-kasan-gce possible deadlock in serial8250_handle_irq
2025/07/15 06:24 linux-next 0be23810e32e 03fcfc4b .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-rust-kasan-gce possible deadlock in serial8250_handle_irq
* Struck through repros no longer work on HEAD.