./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2969656042
<...>
Warning: Permanently added '10.128.0.196' (ED25519) to the list of known hosts.
execve("./syz-executor2969656042", ["./syz-executor2969656042"], 0x7ffc01f01db0 /* 10 vars */) = 0
brk(NULL) = 0x555559fa7000
brk(0x555559fa7d00) = 0x555559fa7d00
arch_prctl(ARCH_SET_FS, 0x555559fa7380) = 0
set_tid_address(0x555559fa7650) = 5074
set_robust_list(0x555559fa7660, 24) = 0
rseq(0x555559fa7ca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor2969656042", 4096) = 28
getrandom("\x55\x62\x10\x5c\xd6\xcf\xe6\x1f", 8, GRND_NONBLOCK) = 8
brk(NULL) = 0x555559fa7d00
brk(0x555559fc8d00) = 0x555559fc8d00
brk(0x555559fc9000) = 0x555559fc9000
mprotect(0x7f6957b50000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5075 attached
, child_tidptr=0x555559fa7650) = 5075
[pid 5075] set_robust_list(0x555559fa7660, 24) = 0
[pid 5075] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5075] setpgid(0, 0) = 0
[pid 5075] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5075] write(3, "1000", 4) = 4
[pid 5075] close(3) = 0
[pid 5075] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=8, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3
[pid 5075] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_UNSPEC, insn_cnt=12, insns=0x20000440, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = -1 EFAULT (Bad address)
[pid 5075] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4
[pid 5075] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="timer_start", prog_fd=4}}, 16) = 5
[pid 5075] exit_group(0) = ?
[pid 5075] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5075, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5076 attached
, child_tidptr=0x555559fa7650) = 5076
[pid 5076] set_robust_list(0x555559fa7660, 24) = 0
[pid 5076] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5076] setpgid(0, 0) = 0
[pid 5076] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5076] write(3, "1000", 4) = 4
[pid 5076] close(3) = 0
[pid 5076] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=8, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3
[pid 5076] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_UNSPEC, insn_cnt=12, insns=0x20000440, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = -1 EFAULT (Bad address)
[pid 5076] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4
[ 88.486789][ T5069] ------------[ cut here ]------------
[ 88.487090][ T5069]
[ 88.487096][ T5069] ======================================================
[ 88.487101][ T5069] WARNING: possible circular locking dependency detected
[ 88.487114][ T5069] 6.8.0-syzkaller-05236-g443574b03387 #0 Not tainted
[ 88.487123][ T5069] ------------------------------------------------------
[ 88.487128][ T5069] sshd/5069 is trying to acquire lock:
[ 88.487136][ T5069] ffffffff8e125be0 (console_owner){....}-{0:0}, at: console_flush_all+0x14a/0xec0
[ 88.487207][ T5069]
[ 88.487207][ T5069] but task is already holding lock:
[ 88.487211][ T5069] ffff8880b952a758 (&base->lock){-.-.}-{2:2}, at: __mod_timer+0x744/0xeb0
[ 88.487254][ T5069]
[ 88.487254][ T5069] which lock already depends on the new lock.
[ 88.487254][ T5069]
[ 88.487258][ T5069]
[ 88.487258][ T5069] the existing dependency chain (in reverse order) is:
[ 88.487263][ T5069]
[ 88.487263][ T5069] -> #4 (&base->lock){-.-.}-{2:2}:
[ 88.487284][ T5069] lock_acquire+0x1e4/0x530
[ 88.487300][ T5069] _raw_spin_lock_irqsave+0xd5/0x120
[ 88.487331][ T5069] lock_timer_base+0x112/0x240
[ 88.487354][ T5069] __mod_timer+0x1ca/0xeb0
[ 88.487383][ T5069] worker_enter_idle+0x31d/0x4d0
[ 88.487398][ T5069] worker_thread+0x9c0/0xd70
[ 88.487413][ T5069] kthread+0x2f0/0x390
[ 88.487432][ T5069] ret_from_fork+0x4b/0x80
[ 88.487455][ T5069] ret_from_fork_asm+0x1a/0x30
[ 88.487478][ T5069]
[ 88.487478][ T5069] -> #3 (&pool->lock){-.-.}-{2:2}:
[ 88.487505][ T5069] lock_acquire+0x1e4/0x530
[ 88.487520][ T5069] _raw_spin_lock+0x2e/0x40
[ 88.487536][ T5069] __queue_work+0x6ec/0xec0
[ 88.487553][ T5069] queue_work_on+0x14f/0x250
[ 88.487569][ T5069] rpm_suspend+0x11bd/0x1c10
[ 88.487594][ T5069] __pm_runtime_idle+0x131/0x1a0
[ 88.487614][ T5069] __device_attach+0x3e5/0x520
[ 88.487637][ T5069] bus_probe_device+0x189/0x260
[ 88.487655][ T5069] device_add+0x8ff/0xca0
[ 88.487676][ T5069] serial_base_port_add+0x2b6/0x3f0
[ 88.487694][ T5069] serial_core_register_port+0x393/0x1e30
[ 88.487718][ T5069] serial8250_register_8250_port+0x1433/0x1cd0
[ 88.487740][ T5069] serial_pnp_probe+0x7d5/0xa20
[ 88.487761][ T5069] pnp_device_probe+0x2ba/0x460
[ 88.487782][ T5069] really_probe+0x29e/0xc50
[ 88.487806][ T5069] __driver_probe_device+0x1a2/0x3e0
[ 88.487830][ T5069] driver_probe_device+0x50/0x430
[ 88.487855][ T5069] __driver_attach+0x45f/0x710
[ 88.487878][ T5069] bus_for_each_dev+0x239/0x2b0
[ 88.487895][ T5069] bus_add_driver+0x347/0x620
[ 88.487912][ T5069] driver_register+0x23a/0x320
[ 88.487927][ T5069] serial8250_init+0x9e/0x170
[ 88.487951][ T5069] do_one_initcall+0x238/0x830
[ 88.487972][ T5069] do_initcall_level+0x157/0x210
[ 88.487988][ T5069] do_initcalls+0x3f/0x80
[ 88.488003][ T5069] kernel_init_freeable+0x435/0x5d0
[ 88.488018][ T5069] kernel_init+0x1d/0x2a0
[ 88.488041][ T5069] ret_from_fork+0x4b/0x80
[ 88.488064][ T5069] ret_from_fork_asm+0x1a/0x30
[ 88.488087][ T5069]
[ 88.488087][ T5069] -> #2 (&dev->power.lock){-...}-{2:2}:
[ 88.488109][ T5069] lock_acquire+0x1e4/0x530
[ 88.488123][ T5069] _raw_spin_lock_irqsave+0xd5/0x120
[ 88.488140][ T5069] __pm_runtime_resume+0x112/0x180
[ 88.488160][ T5069] __uart_start+0x17a/0x3c0
[ 88.488182][ T5069] uart_write+0x427/0x5c0
[ 88.488204][ T5069] n_tty_write+0xd6a/0x1230
[ 88.488222][ T5069] file_tty_write+0x54f/0x9b0
[ 88.488244][ T5069] vfs_write+0xa84/0xcb0
[ 88.488262][ T5069] ksys_write+0x1a0/0x2c0
[ 88.488278][ T5069] do_syscall_64+0xfb/0x240
[ 88.488297][ T5069] entry_SYSCALL_64_after_hwframe+0x6d/0x75
[ 88.488330][ T5069]
[ 88.488330][ T5069] -> #1 (&port_lock_key){-.-.}-{2:2}:
[ 88.488350][ T5069] lock_acquire+0x1e4/0x530
[ 88.488365][ T5069] _raw_spin_lock_irqsave+0xd5/0x120
[ 88.488383][ T5069] serial8250_console_write+0x1a8/0x1840
[ 88.488397][ T5069] console_flush_all+0x80b/0xec0
[ 88.488418][ T5069] console_unlock+0x13b/0x4d0
[ 88.488437][ T5069] vprintk_emit+0x509/0x720
[ 88.488455][ T5069] _printk+0xd5/0x120
[ 88.488471][ T5069] register_console+0x70a/0xcd0
[ 88.488492][ T5069] univ8250_console_init+0x49/0x50
[ 88.488516][ T5069] console_init+0x198/0x680
[ 88.488530][ T5069] start_kernel+0x2d3/0x500
[ 88.488544][ T5069] x86_64_start_reservations+0x2a/0x30
[ 88.488563][ T5069] x86_64_start_kernel+0x99/0xa0
[ 88.488582][ T5069] common_startup_64+0x13e/0x147
[ 88.488600][ T5069]
[ 88.488600][ T5069] -> #0 (console_owner){....}-{0:0}:
[ 88.488620][ T5069] validate_chain+0x18cb/0x58e0
[ 88.488638][ T5069] __lock_acquire+0x1346/0x1fd0
[ 88.488653][ T5069] lock_acquire+0x1e4/0x530
[ 88.488667][ T5069] console_flush_all+0x7ba/0xec0
[ 88.488687][ T5069] console_unlock+0x13b/0x4d0
[ 88.488706][ T5069] vprintk_emit+0x509/0x720
[ 88.488725][ T5069] _printk+0xd5/0x120
[ 88.488740][ T5069] report_bug+0x346/0x500
[ 88.488763][ T5069] handle_bug+0x3e/0x70
[ 88.488784][ T5069] exc_invalid_op+0x1a/0x50
[ 88.488805][ T5069] asm_exc_invalid_op+0x1a/0x20
[ 88.488827][ T5069] __local_bh_enable_ip+0x1be/0x200
[ 88.488843][ T5069] sock_map_delete_elem+0xca/0x140
[ 88.488860][ T5069] bpf_prog_2c29ac5cdc6b1842+0x42/0x46
[ 88.488876][ T5069] bpf_trace_run2+0x204/0x420
[ 88.488893][ T5069] enqueue_timer+0x396/0x550
[ 88.488909][ T5069] __mod_timer+0x953/0xeb0
[ 88.488931][ T5069] sk_reset_timer+0x23/0xc0
[ 88.488944][ T5069] tcp_schedule_loss_probe+0x419/0x560
[ 88.488965][ T5069] tcp_write_xmit+0x3682/0x6100
[ 88.488985][ T5069] __tcp_push_pending_frames+0x9b/0x360
[ 88.489006][ T5069] tcp_sendmsg_locked+0x42cc/0x4d00
[ 88.489022][ T5069] tcp_sendmsg+0x30/0x50
[ 88.489036][ T5069] __sock_sendmsg+0x1a6/0x270
[ 88.489049][ T5069] sock_write_iter+0x2dd/0x400
[ 88.489072][ T5069] vfs_write+0xa84/0xcb0
[ 88.489088][ T5069] ksys_write+0x1a0/0x2c0
[ 88.489104][ T5069] do_syscall_64+0xfb/0x240
[ 88.489123][ T5069] entry_SYSCALL_64_after_hwframe+0x6d/0x75
[ 88.489146][ T5069]
[ 88.489146][ T5069] other info that might help us debug this:
[ 88.489146][ T5069]
[ 88.489151][ T5069] Chain exists of:
[ 88.489151][ T5069] console_owner --> &pool->lock --> &base->lock
[ 88.489151][ T5069]
[ 88.489174][ T5069] Possible unsafe locking scenario:
[ 88.489174][ T5069]
[ 88.489177][ T5069] CPU0 CPU1
[ 88.489181][ T5069] ---- ----
[ 88.489185][ T5069] lock(&base->lock);
[ 88.489194][ T5069] lock(&pool->lock);
[ 88.489204][ T5069] lock(&base->lock);
[ 88.489214][ T5069] lock(console_owner);
[ 88.489223][ T5069]
[ 88.489223][ T5069] *** DEADLOCK ***
[ 88.489223][ T5069]
[ 88.489226][ T5069] 5 locks held by sshd/5069:
[ 88.489235][ T5069] #0: ffff88807e039ad8 (sk_lock-AF_INET){+.+.}-{0:0}, at: tcp_sendmsg+0x22/0x50
[ 88.489273][ T5069] #1: ffff8880b952a758 (&base->lock){-.-.}-{2:2}, at: __mod_timer+0x744/0xeb0
[ 88.489391][ T5069] #2: ffffffff8e131920 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run2+0x114/0x420
[ 88.489444][ T5069] #3: ffffffff8e00d500 (console_lock){+.+.}-{0:0}, at: _printk+0xd5/0x120
[ 88.489486][ T5069] #4: ffffffff8e00d130 (console_srcu){....}-{0:0}, at: console_flush_all+0x14a/0xec0
[ 88.489531][ T5069]
[ 88.489531][ T5069] stack backtrace:
[ 88.489537][ T5069] CPU: 1 PID: 5069 Comm: sshd Not tainted 6.8.0-syzkaller-05236-g443574b03387 #0
[ 88.489554][ T5069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[ 88.489563][ T5069] Call Trace:
[ 88.489572][ T5069]
[ 88.489581][ T5069] dump_stack_lvl+0x1e7/0x2e0
[ 88.489605][ T5069] ? __pfx_dump_stack_lvl+0x10/0x10
[ 88.489633][ T5069] ? print_circular_bug+0x130/0x1a0
[ 88.489657][ T5069] check_noncircular+0x36a/0x4a0
[ 88.489682][ T5069] ? __pfx_check_noncircular+0x10/0x10
[ 88.489705][ T5069] ? lockdep_lock+0x123/0x2b0
[ 88.489734][ T5069] ? add_lock_to_list+0x1de/0x2e0
[ 88.489761][ T5069] validate_chain+0x18cb/0x58e0
[ 88.489795][ T5069] ? __pfx_validate_chain+0x10/0x10
[ 88.489820][ T5069] ? sprintf+0xda/0x120
[ 88.489938][ T5069] ? vsnprintf+0x1cc3/0x1da0
[ 88.489972][ T5069] ? info_print_prefix+0x204/0x310
[ 88.490003][ T5069] ? mark_lock+0x9a/0x350
[ 88.490024][ T5069] __lock_acquire+0x1346/0x1fd0
[ 88.490051][ T5069] lock_acquire+0x1e4/0x530
[ 88.490068][ T5069] ? console_flush_all+0x14a/0xec0
[ 88.490095][ T5069] ? __pfx_lock_acquire+0x10/0x10
[ 88.490113][ T5069] ? __pfx_lock_release+0x10/0x10
[ 88.490131][ T5069] ? do_raw_spin_lock+0x14f/0x370
[ 88.490160][ T5069] ? do_raw_spin_unlock+0x13c/0x8b0
[ 88.490186][ T5069] ? console_flush_all+0x3d0/0xec0
[ 88.490209][ T5069] ? console_flush_all+0x14a/0xec0
[ 88.490233][ T5069] console_flush_all+0x7ba/0xec0
[ 88.490257][ T5069] ? console_flush_all+0x14a/0xec0
[ 88.490282][ T5069] ? console_flush_all+0x14a/0xec0
[ 88.490312][ T5069] ? __pfx_console_flush_all+0x10/0x10
[ 88.490337][ T5069] ? __pfx_lock_acquire+0x10/0x10
[ 88.490355][ T5069] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 88.490378][ T5069] ? validate_chain+0x15a2/0x58e0
[ 88.490401][ T5069] console_unlock+0x13b/0x4d0
[ 88.490426][ T5069] ? __pfx_console_unlock+0x10/0x10
[ 88.490447][ T5069] ? _printk+0xd5/0x120
[ 88.490467][ T5069] ? _printk+0xd5/0x120
[ 88.490485][ T5069] ? __pfx___down_trylock_console_sem+0x10/0x10
[ 88.490511][ T5069] ? __pfx_validate_chain+0x10/0x10
[ 88.490536][ T5069] vprintk_emit+0x509/0x720
[ 88.490573][ T5069] ? __pfx_vprintk_emit+0x10/0x10
[ 88.490599][ T5069] ? lockdep_unlock+0x16a/0x300
[ 88.490629][ T5069] _printk+0xd5/0x120
[ 88.490651][ T5069] ? report_bug+0x25e/0x500
[ 88.490678][ T5069] ? __pfx__printk+0x10/0x10
[ 88.490699][ T5069] ? __lock_acquire+0x1346/0x1fd0
[ 88.490717][ T5069] ? find_bug+0xa3/0x390
[ 88.490741][ T5069] ? __local_bh_enable_ip+0x1be/0x200
[ 88.490761][ T5069] report_bug+0x346/0x500
[ 88.490787][ T5069] ? __local_bh_enable_ip+0x1be/0x200
[ 88.490814][ T5069] handle_bug+0x3e/0x70
[ 88.490837][ T5069] exc_invalid_op+0x1a/0x50
[ 88.490861][ T5069] asm_exc_invalid_op+0x1a/0x20
[ 88.490887][ T5069] RIP: 0010:__local_bh_enable_ip+0x1be/0x200
[ 88.490908][ T5069] Code: 3b 44 24 60 75 52 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 90 0f 0b 90 e9 ca fe ff ff e8 55 00 00 00 eb 9c 90 <0f> 0b 90 e9 fa fe ff ff 48 c7 c1 9c e1 86 8f 80 e1 07 80 c1 03 38
[ 88.490922][ T5069] RSP: 0018:ffffc900039cf1e0 EFLAGS: 00010046
[ 88.490938][ T5069] RAX: 0000000000000000 RBX: 1ffff92000739e40 RCX: 0000000000000001
[ 88.490949][ T5069] RDX: 0000000000000000 RSI: 0000000000000201 RDI: ffffffff895fa99a
[ 88.490960][ T5069] RBP: ffffc900039cf2a0 R08: ffff88802ac3f1eb R09: 1ffff11005587e3d
[ 88.490973][ T5069] R10: dffffc0000000000 R11: ffffed1005587e3e R12: dffffc0000000000
[ 88.490986][ T5069] R13: ffff88802dc42180 R14: ffffc900039cf220 R15: 0000000000000201
[ 88.491003][ T5069] ? sock_map_delete_elem+0xca/0x140
[ 88.491025][ T5069] ? sock_map_delete_elem+0xca/0x140
[ 88.491042][ T5069] ? __pfx___local_bh_enable_ip+0x10/0x10
[ 88.491059][ T5069] ? sock_map_delete_elem+0xca/0x140
[ 88.491076][ T5069] ? do_raw_spin_unlock+0x13c/0x8b0
[ 88.491101][ T5069] ? __pfx___cant_migrate+0x10/0x10
[ 88.491121][ T5069] ? sock_map_delete_elem+0x97/0x140
[ 88.491141][ T5069] sock_map_delete_elem+0xca/0x140
[ 88.491160][ T5069] bpf_prog_2c29ac5cdc6b1842+0x42/0x46
[ 88.491178][ T5069] bpf_trace_run2+0x204/0x420
[ 88.491198][ T5069] ? bpf_trace_run2+0x114/0x420
[ 88.491217][ T5069] ? __pfx_bpf_trace_run2+0x10/0x10
[ 88.491236][ T5069] ? enqueue_timer+0xfe/0x550
[ 88.491255][ T5069] ? enqueue_timer+0x2d8/0x550
[ 88.491276][ T5069] enqueue_timer+0x396/0x550
[ 88.491297][ T5069] __mod_timer+0x953/0xeb0
[ 88.491329][ T5069] ? __pfx___mod_timer+0x10/0x10
[ 88.491358][ T5069] ? __asan_memset+0x23/0x50
[ 88.491378][ T5069] sk_reset_timer+0x23/0xc0
[ 88.491395][ T5069] tcp_schedule_loss_probe+0x419/0x560
[ 88.491421][ T5069] tcp_write_xmit+0x3682/0x6100
[ 88.491464][ T5069] __tcp_push_pending_frames+0x9b/0x360
[ 88.491490][ T5069] tcp_sendmsg_locked+0x42cc/0x4d00
[ 88.491533][ T5069] ? __pfx_tcp_sendmsg_locked+0x10/0x10
[ 88.491550][ T5069] ? __local_bh_enable_ip+0x168/0x200
[ 88.491569][ T5069] ? do_raw_spin_unlock+0x13c/0x8b0
[ 88.491598][ T5069] tcp_sendmsg+0x30/0x50
[ 88.491616][ T5069] __sock_sendmsg+0x1a6/0x270
[ 88.491634][ T5069] sock_write_iter+0x2dd/0x400
[ 88.491662][ T5069] ? __pfx_sock_write_iter+0x10/0x10
[ 88.491692][ T5069] ? bpf_lsm_file_permission+0x9/0x10
[ 88.491712][ T5069] ? security_file_permission+0x7f/0xa0
[ 88.491734][ T5069] vfs_write+0xa84/0xcb0
[ 88.491760][ T5069] ? __pfx_vfs_write+0x10/0x10
[ 88.491777][ T5069] ? __set_current_blocked+0x310/0x380
[ 88.491800][ T5069] ? __might_fault+0xc6/0x120
[ 88.491824][ T5069] ? __fdget_pos+0x1a2/0x320
[ 88.491849][ T5069] ksys_write+0x1a0/0x2c0
[ 88.491871][ T5069] ? __pfx_ksys_write+0x10/0x10
[ 88.491890][ T5069] ? do_syscall_64+0x10a/0x240
[ 88.491914][ T5069] ? do_syscall_64+0xb6/0x240
[ 88.491937][ T5069] do_syscall_64+0xfb/0x240
[ 88.491961][ T5069] entry_SYSCALL_64_after_hwframe+0x6d/0x75
[ 88.491986][ T5069] RIP: 0033:0x7f41e2116bf2
[ 88.492000][ T5069] Code: 89 c7 48 89 44 24 08 e8 7b 34 fa ff 48 8b 44 24 08 48 83 c4 28 c3 c3 64 8b 04 25 18 00 00 00 85 c0 75 20 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 76 6f 48 8b 15 07 a2 0d 00 f7 d8 64 89 02 48 83
[ 88.492013][ T5069] RSP: 002b:00007fffeec260d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 88.492029][ T5069] RAX: ffffffffffffffda RBX: 0000000000000084 RCX: 00007f41e2116bf2
[ 88.492041][ T5069] RDX: 0000000000000084 RSI: 000055b7c7291960 RDI: 0000000000000004
[ 88.492051][ T5069] RBP: 000055b7c729fc20 R08: 0000000000000000 R09: 0000000000000000
[ 88.492061][ T5069] R10: 0000000000000000 R11: 0000000000000246 R12: 000055b78c14faa4
[ 88.492071][ T5069] R13: 0000000000000058 R14: 000055b78c1503e8 R15: 00007fffeec26148
[ 88.492090][ T5069]
[ 88.543259][ C0] ------------[ cut here ]------------
[ 88.553116][ T5069] WARNING: CPU: 1 PID: 5069 at kernel/softirq.c:362 __local_bh_enable_ip+0x1be/0x200
[ 88.553164][ T5069] Modules linked in:
[ 88.553179][ T5069] CPU: 1 PID: 5069 Comm: sshd Not tainted 6.8.0-syzkaller-05236-g443574b03387 #0
[ 88.562448][ C0] raw_local_irq_restore() called with IRQs enabled
[ 88.562552][ C0] WARNING: CPU: 0 PID: 5076 at kernel/locking/irqflag-debug.c:10 warn_bogus_irq_restore+0x29/0x40
[ 88.573557][ T5069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[ 88.573580][ T5069] RIP: 0010:__local_bh_enable_ip+0x1be/0x200
[ 88.573610][ T5069] Code: 3b 44 24 60 75 52 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 90 0f 0b 90 e9 ca fe ff ff e8 55 00 00 00 eb 9c 90 <0f> 0b 90 e9 fa fe ff ff 48 c7 c1 9c e1 86 8f 80 e1 07 80 c1 03 38
[ 88.573627][ T5069] RSP: 0018:ffffc900039cf1e0 EFLAGS: 00010046
[ 88.573647][ T5069] RAX: 0000000000000000 RBX: 1ffff92000739e40 RCX: 0000000000000001
[ 88.586262][ C0] Modules linked in:
[ 88.596997][ T5069] RDX: 0000000000000000 RSI: 0000000000000201 RDI: ffffffff895fa99a
[ 88.597021][ T5069] RBP: ffffc900039cf2a0 R08: ffff88802ac3f1eb R09: 1ffff11005587e3d
[ 88.597037][ T5069] R10: dffffc0000000000 R11: ffffed1005587e3e R12: dffffc0000000000
[ 88.597053][ T5069] R13: ffff88802dc42180 R14: ffffc900039cf220 R15: 0000000000000201
[ 88.605838][ C0]
[ 88.610929][ T5069] FS: 00007f41e257c800(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000
[ 88.618043][ C0] CPU: 0 PID: 5076 Comm: syz-executor296 Not tainted 6.8.0-syzkaller-05236-g443574b03387 #0
[ 88.624690][ T5069] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 88.624716][ T5069] CR2: 0000000000000000 CR3: 000000001f4f4000 CR4: 00000000003506f0
[ 88.624733][ T5069] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 88.624745][ T5069] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 88.624758][ T5069] Call Trace:
[ 88.631018][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[ 88.639706][ T5069]
[ 88.639724][ T5069] ? __warn+0x163/0x4b0
[ 88.639760][ T5069] ? __local_bh_enable_ip+0x1be/0x200
[ 88.647020][ C0] RIP: 0010:warn_bogus_irq_restore+0x29/0x40
[ 88.653291][ T5069] ? report_bug+0x2b3/0x500
[ 88.653343][ T5069] ? __local_bh_enable_ip+0x1be/0x200
[ 88.653371][ T5069] ? handle_bug+0x3e/0x70
[ 88.661118][ C0] Code: 90 f3 0f 1e fa 90 80 3d de 59 01 04 00 74 06 90 c3 cc cc cc cc c6 05 cf 59 01 04 01 90 48 c7 c7 20 ba aa 8b e8 f8 d5 e7 f5 90 <0f> 0b 90 90 90 c3 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 0f 1f
[ 88.669662][ T5069] ? exc_invalid_op+0x1a/0x50
[ 88.669710][ T5069] ? asm_exc_invalid_op+0x1a/0x20
[ 88.679054][ C0] RSP: 0018:ffffc90000007898 EFLAGS: 00010246
[ 88.686165][ T5069] ? sock_map_delete_elem+0xca/0x140
[ 88.686210][ T5069] ? __local_bh_enable_ip+0x1be/0x200
[ 88.692895][ C0]
[ 88.692910][ C0] RAX: 5c17277df7494200 RBX: 1ffff92000000f18 RCX: ffff88807dd98000
[ 88.699205][ T5069] ? sock_map_delete_elem+0xca/0x140
[ 88.699243][ T5069] ? __pfx___local_bh_enable_ip+0x10/0x10
[ 88.705518][ C0] RDX: 0000000080000103 RSI: 0000000000000000 RDI: 0000000000000000
[ 88.711957][ T5069] ? sock_map_delete_elem+0xca/0x140
[ 88.718616][ C0] RBP: ffffc90000007930 R08: ffffffff8157cc12 R09: 1ffff110172851a2
[ 88.724386][ T5069] ? do_raw_spin_unlock+0x13c/0x8b0
[ 88.724432][ T5069] ? __pfx___cant_migrate+0x10/0x10
[ 88.730508][ C0] R10: dffffc0000000000 R11: ffffed10172851a3 R12: dffffc0000000000
[ 88.735750][ T5069] ? sock_map_delete_elem+0x97/0x140
[ 88.735792][ T5069] sock_map_delete_elem+0xca/0x140
[ 88.735819][ T5069] bpf_prog_2c29ac5cdc6b1842+0x42/0x46
[ 88.743667][ C0] R13: 1ffff92000000f14 R14: ffffc900000078c0 R15: 0000000000000046
[ 88.751525][ T5069] bpf_trace_run2+0x204/0x420
[ 88.759960][ C0] FS: 0000555559fa7380(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000
[ 88.767376][ T5069] ? bpf_trace_run2+0x114/0x420
[ 88.767421][ T5069] ? __pfx_bpf_trace_run2+0x10/0x10
[ 88.767444][ T5069] ? enqueue_timer+0xfe/0x550
[ 88.773831][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 88.779910][ T5069] ? enqueue_timer+0x2d8/0x550
[ 88.787688][ C0] CR2: 00007fff4f144c58 CR3: 0000000011338000 CR4: 00000000003506f0
[ 88.794942][ T5069] enqueue_timer+0x396/0x550
[ 88.794991][ T5069] __mod_timer+0x953/0xeb0
[ 88.800913][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 88.806590][ T5069] ? __pfx___mod_timer+0x10/0x10
[ 88.806639][ T5069] ? __asan_memset+0x23/0x50
[ 88.813861][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 88.820353][ T5069] sk_reset_timer+0x23/0xc0
[ 88.828227][ C0] Call Trace:
[ 88.835430][ T5069] tcp_schedule_loss_probe+0x419/0x560
[ 88.835482][ T5069] tcp_write_xmit+0x3682/0x6100
[ 88.842352][ C0]
[ 88.849809][ T5069] __tcp_push_pending_frames+0x9b/0x360
[ 88.856821][ C0] ? __warn+0x163/0x4b0
[ 88.864158][ T5069] tcp_sendmsg_locked+0x42cc/0x4d00
[ 88.864224][ T5069] ? __pfx_tcp_sendmsg_locked+0x10/0x10
[ 88.870095][ C0] ? warn_bogus_irq_restore+0x29/0x40
[ 88.877669][ T5069] ? __local_bh_enable_ip+0x168/0x200
[ 88.877711][ T5069] ? do_raw_spin_unlock+0x13c/0x8b0
[ 88.888490][ C0] ? report_bug+0x2b3/0x500
[ 88.895930][ T5069] tcp_sendmsg+0x30/0x50
[ 88.895973][ T5069] __sock_sendmsg+0x1a6/0x270
[ 88.904089][ C0] ? warn_bogus_irq_restore+0x29/0x40
[ 88.910613][ T5069] sock_write_iter+0x2dd/0x400
[ 88.916184][ C0] ? handle_bug+0x3e/0x70
[ 88.921392][ T5069] ? __pfx_sock_write_iter+0x10/0x10
[ 88.927335][ C0] ? exc_invalid_op+0x1a/0x50
[ 88.934336][ T5069] ? bpf_lsm_file_permission+0x9/0x10
[ 88.934379][ T5069] ? security_file_permission+0x7f/0xa0
[ 88.939438][ C0] ? asm_exc_invalid_op+0x1a/0x20
[ 88.946492][ T5069] vfs_write+0xa84/0xcb0
[ 88.946532][ T5069] ? __pfx_vfs_write+0x10/0x10
[ 88.954098][ C0] ? __warn_printk+0x292/0x360
[ 88.961706][ T5069] ? __set_current_blocked+0x310/0x380
[ 88.970443][ C0] ? warn_bogus_irq_restore+0x29/0x40
[ 88.976744][ T5069] ? __might_fault+0xc6/0x120
[ 88.976781][ T5069] ? __fdget_pos+0x1a2/0x320
[ 88.984801][ C0] ? warn_bogus_irq_restore+0x28/0x40
[ 88.993087][ T5069] ksys_write+0x1a0/0x2c0
[ 88.993133][ T5069] ? __pfx_ksys_write+0x10/0x10
[ 88.999689][ C0] _raw_spin_unlock_irqrestore+0x120/0x140
[ 89.007317][ T5069] ? do_syscall_64+0x10a/0x240
[ 89.007361][ T5069] ? do_syscall_64+0xb6/0x240
[ 89.007389][ T5069] do_syscall_64+0xfb/0x240
[ 89.014570][ C0] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 89.020611][ T5069] entry_SYSCALL_64_after_hwframe+0x6d/0x75
[ 89.027271][ C0] ? rcu_is_watching+0x15/0xb0
[ 89.033833][ T5069] RIP: 0033:0x7f41e2116bf2
[ 89.033859][ T5069] Code: 89 c7 48 89 44 24 08 e8 7b 34 fa ff 48 8b 44 24 08 48 83 c4 28 c3 c3 64 8b 04 25 18 00 00 00 85 c0 75 20 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 76 6f 48 8b 15 07 a2 0d 00 f7 d8 64 89 02 48 83
[ 89.038985][ C0] ? enqueue_timer+0x4b8/0x550
[ 89.044182][ T5069] RSP: 002b:00007fffeec260d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 89.044209][ T5069] RAX: ffffffffffffffda RBX: 0000000000000084 RCX: 00007f41e2116bf2
[ 89.044230][ T5069] RDX: 0000000000000084 RSI: 000055b7c7291960 RDI: 0000000000000004
[ 89.044243][ T5069] RBP: 000055b7c729fc20 R08: 0000000000000000 R09: 0000000000000000
[ 89.051092][ C0] __mod_timer+0xb89/0xeb0
[ 89.057355][ T5069] R10: 0000000000000000 R11: 0000000000000246 R12: 000055b78c14faa4
[ 89.057380][ T5069] R13: 0000000000000058 R14: 000055b78c1503e8 R15: 00007fffeec26148
[ 89.057405][ T5069]
[ 89.057416][ T5069] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 89.057426][ T5069] CPU: 1 PID: 5069 Comm: sshd Not tainted 6.8.0-syzkaller-05236-g443574b03387 #0
[ 89.057448][ T5069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[ 89.057460][ T5069] Call Trace:
[ 89.057471][ T5069]
[ 89.057479][ T5069] dump_stack_lvl+0x1e7/0x2e0
[ 89.057518][ T5069] ? __pfx_dump_stack_lvl+0x10/0x10
[ 89.057547][ T5069] ? __pfx__printk+0x10/0x10
[ 89.057576][ T5069] ? vscnprintf+0x5d/0x90
[ 89.057610][ T5069] panic+0x349/0x860
[ 89.057636][ T5069] ? __warn+0x172/0x4b0
[ 89.057665][ T5069] ? __pfx_panic+0x10/0x10
[ 89.057701][ T5069] __warn+0x31e/0x4b0
[ 89.057730][ T5069] ? __local_bh_enable_ip+0x1be/0x200
[ 89.057754][ T5069] report_bug+0x2b3/0x500
[ 89.057788][ T5069] ? __local_bh_enable_ip+0x1be/0x200
[ 89.057813][ T5069] handle_bug+0x3e/0x70
[ 89.057841][ T5069] exc_invalid_op+0x1a/0x50
[ 89.057871][ T5069] asm_exc_invalid_op+0x1a/0x20
[ 89.057912][ T5069] RIP: 0010:__local_bh_enable_ip+0x1be/0x200
[ 89.057937][ T5069] Code: 3b 44 24 60 75 52 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 90 0f 0b 90 e9 ca fe ff ff e8 55 00 00 00 eb 9c 90 <0f> 0b 90 e9 fa fe ff ff 48 c7 c1 9c e1 86 8f 80 e1 07 80 c1 03 38
[ 89.057955][ T5069] RSP: 0018:ffffc900039cf1e0 EFLAGS: 00010046
[ 89.057975][ T5069] RAX: 0000000000000000 RBX: 1ffff92000739e40 RCX: 0000000000000001
[ 89.057989][ T5069] RDX: 0000000000000000 RSI: 0000000000000201 RDI: ffffffff895fa99a
[ 89.058004][ T5069] RBP: ffffc900039cf2a0 R08: ffff88802ac3f1eb R09: 1ffff11005587e3d
[ 89.058020][ T5069] R10: dffffc0000000000 R11: ffffed1005587e3e R12: dffffc0000000000
[ 89.058062][ T5069] R13: ffff88802dc42180 R14: ffffc900039cf220 R15: 0000000000000201
[ 89.058083][ T5069] ? sock_map_delete_elem+0xca/0x140
[ 89.058110][ T5069] ? sock_map_delete_elem+0xca/0x140
[ 89.058131][ T5069] ? __pfx___local_bh_enable_ip+0x10/0x10
[ 89.058152][ T5069] ? sock_map_delete_elem+0xca/0x140
[ 89.058172][ T5069] ? do_raw_spin_unlock+0x13c/0x8b0
[ 89.058204][ T5069] ? __pfx___cant_migrate+0x10/0x10
[ 89.058229][ T5069] ? sock_map_delete_elem+0x97/0x140
[ 89.058254][ T5069] sock_map_delete_elem+0xca/0x140
[ 89.058276][ T5069] bpf_prog_2c29ac5cdc6b1842+0x42/0x46
[ 89.058299][ T5069] bpf_trace_run2+0x204/0x420
[ 89.058325][ T5069] ? bpf_trace_run2+0x114/0x420
[ 89.058347][ T5069] ? __pfx_bpf_trace_run2+0x10/0x10
[ 89.058371][ T5069] ? enqueue_timer+0xfe/0x550
[ 89.058394][ T5069] ? enqueue_timer+0x2d8/0x550
[ 89.058420][ T5069] enqueue_timer+0x396/0x550
[ 89.058445][ T5069] __mod_timer+0x953/0xeb0
[ 89.058483][ T5069] ? __pfx___mod_timer+0x10/0x10
[ 89.058519][ T5069] ? __asan_memset+0x23/0x50
[ 89.058543][ T5069] sk_reset_timer+0x23/0xc0
[ 89.058565][ T5069] tcp_schedule_loss_probe+0x419/0x560
[ 89.058597][ T5069] tcp_write_xmit+0x3682/0x6100
[ 89.058649][ T5069] __tcp_push_pending_frames+0x9b/0x360
[ 89.058680][ T5069] tcp_sendmsg_locked+0x42cc/0x4d00
[ 89.058733][ T5069] ? __pfx_tcp_sendmsg_locked+0x10/0x10
[ 89.058754][ T5069] ? __local_bh_enable_ip+0x168/0x200
[ 89.058778][ T5069] ? do_raw_spin_unlock+0x13c/0x8b0
[ 89.058813][ T5069] tcp_sendmsg+0x30/0x50
[ 89.058836][ T5069] __sock_sendmsg+0x1a6/0x270
[ 89.058858][ T5069] sock_write_iter+0x2dd/0x400
[ 89.058899][ T5069] ? __pfx_sock_write_iter+0x10/0x10
[ 89.058937][ T5069] ? bpf_lsm_file_permission+0x9/0x10
[ 89.058964][ T5069] ? security_file_permission+0x7f/0xa0
[ 89.058991][ T5069] vfs_write+0xa84/0xcb0
[ 89.059022][ T5069] ? __pfx_vfs_write+0x10/0x10
[ 89.059044][ T5069] ? __set_current_blocked+0x310/0x380
[ 89.059071][ T5069] ? __might_fault+0xc6/0x120
[ 89.059093][ T5069] ? __fdget_pos+0x1a2/0x320
[ 89.059122][ T5069] ksys_write+0x1a0/0x2c0
[ 89.059149][ T5069] ? __pfx_ksys_write+0x10/0x10
[ 89.059173][ T5069] ? do_syscall_64+0x10a/0x240
[ 89.059201][ T5069] ? do_syscall_64+0xb6/0x240
[ 89.059228][ T5069] do_syscall_64+0xfb/0x240
[ 89.059257][ T5069] entry_SYSCALL_64_after_hwframe+0x6d/0x75
[ 89.059288][ T5069] RIP: 0033:0x7f41e2116bf2
[ 89.059306][ T5069] Code: 89 c7 48 89 44 24 08 e8 7b 34 fa ff 48 8b 44 24 08 48 83 c4 28 c3 c3 64 8b 04 25 18 00 00 00 85 c0 75 20 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 76 6f 48 8b 15 07 a2 0d 00 f7 d8 64 89 02 48 83
[ 89.059322][ T5069] RSP: 002b:00007fffeec260d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 89.059343][ T5069] RAX: ffffffffffffffda RBX: 0000000000000084 RCX: 00007f41e2116bf2
[ 89.059358][ T5069] RDX: 0000000000000084 RSI: 000055b7c7291960 RDI: 0000000000000004
[ 89.059370][ T5069] RBP: 000055b7c729fc20 R08: 0000000000000000 R09: 0000000000000000
[ 89.059383][ T5069] R10: 0000000000000000 R11: 0000000000000246 R12: 000055b78c14faa4
[ 89.059396][ T5069] R13: 0000000000000058 R14: 000055b78c1503e8 R15: 00007fffeec26148
[ 89.059420][ T5069]
[ 89.064222][ T5069] Kernel Offset: disabled