[   79.517416][   T26] audit: type=1400 audit(1575761574.077:37): avc:  denied  { watch } for  pid=9818 comm="restorecond" path="/root/.ssh" dev="sda1" ino=16179 scontext=system_u:system_r:kernel_t:s0 tcontext=unconfined_u:object_r:ssh_home_t:s0 tclass=dir permissive=1
[   79.567984][   T26] audit: type=1400 audit(1575761574.077:38): avc:  denied  { watch } for  pid=9818 comm="restorecond" path="/etc/selinux/restorecond.conf" dev="sda1" ino=2232 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1
[....] Starting file context maintaining daemon: restorecond[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c[   79.798999][   T26] audit: type=1800 audit(1575761574.357:39): pid=9731 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
.
[   79.827512][   T26] audit: type=1800 audit(1575761574.367:40): pid=9731 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   83.127821][   T26] audit: type=1400 audit(1575761577.687:41): avc:  denied  { map } for  pid=9908 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1
Warning: Permanently added '10.128.0.3' (ECDSA) to the list of known hosts.
executing program
executing program
executing program
executing program
executing program
executing program
[   95.993875][   T26] audit: type=1400 audit(1575761590.557:42): avc:  denied  { map } for  pid=9920 comm="syz-executor680" path="/root/syz-executor680789072" dev="sda1" ino=16484 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1
[   96.026179][ T9931] sp0: Synchronizing with TNC
executing program
executing program
executing program
executing program
executing program
executing program
[   96.050036][ T9942] [U] è
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[  101.070664][    C1] BUG: sleeping function called from invalid context at kernel/locking/mutex.c:938
[  101.080350][    C1] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 13589, name: syz-executor680
[  101.089986][    C1] 2 locks held by syz-executor680/13589:
[  101.095676][    C1]  #0: ffff88808d52b198 (&mm->mmap_sem#2){++++}, at: __do_page_fault+0x33c/0xd80
[  101.105158][    C1]  #1: ffffc90000da8d50 ((&sp->resync_t)){+.-.}, at: call_timer_fn+0xe0/0x780
[  101.114101][    C1] Preemption disabled at:
executing program
executing program
executing program
[  101.114124][    C1] [<ffffffff880000f3>] __do_softirq+0xf3/0x98c
[  101.124709][    C1] CPU: 1 PID: 13589 Comm: syz-executor680 Not tainted 5.4.0-syzkaller #0
[  101.133346][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  101.143543][    C1] Call Trace:
[  101.146838][    C1]  <IRQ>
[  101.149709][    C1]  dump_stack+0x197/0x210
[  101.154059][    C1]  ? __do_softirq+0xf3/0x98c
[  101.158674][    C1]  ___might_sleep.cold+0x1fb/0x23e
[  101.163817][    C1]  __might_sleep+0x95/0x190
executing program
executing program
executing program
[  101.168502][    C1]  __mutex_lock+0xc5/0x13c0
[  101.173032][    C1]  ? alloc_list_entry+0xc0/0xc0
[  101.178377][    C1]  ? tpk_write+0x5d/0x340
[  101.183035][    C1]  ? find_first_zero_bit+0x9a/0xc0
[  101.188182][    C1]  ? mutex_trylock+0x2f0/0x2f0
[  101.192984][    C1]  ? __lock_acquire+0x29c9/0x4a00
[  101.198169][    C1]  mutex_lock_nested+0x16/0x20
[  101.202979][    C1]  ? mutex_lock_nested+0x16/0x20
[  101.207945][    C1]  tpk_write+0x5d/0x340
[  101.212250][    C1]  ? rcu_read_lock_sched_held+0x9c/0xd0
executing program
executing program
executing program
[  101.218025][    C1]  resync_tnc+0x1b6/0x320
[  101.222392][    C1]  call_timer_fn+0x1ac/0x780
[  101.227039][    C1]  ? encode_sixpack+0x790/0x790
[  101.231938][    C1]  ? msleep_interruptible+0x150/0x150
[  101.237340][    C1]  ? run_timer_softirq+0x6b1/0x1790
[  101.242699][    C1]  ? trace_hardirqs_on+0x67/0x240
[  101.247857][    C1]  ? encode_sixpack+0x790/0x790
[  101.252934][    C1]  ? encode_sixpack+0x790/0x790
[  101.257824][    C1]  run_timer_softirq+0x6c3/0x1790
[  101.263053][    C1]  ? add_timer+0x930/0x930
executing program
executing program
executing program
[  101.267503][    C1]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  101.273690][    C1]  ? rcu_read_lock_sched_held+0x9c/0xd0
[  101.279268][    C1]  ? rcu_read_lock_any_held.part.0+0x50/0x50
[  101.285283][    C1]  ? trace_hardirqs_on+0x67/0x240
[  101.290527][    C1]  __do_softirq+0x262/0x98c
[  101.295692][    C1]  ? sched_clock_cpu+0x1b/0x1b0
[  101.300701][    C1]  irq_exit+0x19b/0x1e0
[  101.305055][    C1]  smp_apic_timer_interrupt+0x1a3/0x610
[  101.310911][    C1]  apic_timer_interrupt+0xf/0x20
[  101.315875][    C1]  </IRQ>
executing program
executing program
executing program
[  101.318834][    C1] RIP: 0010:update_stack_state+0x48c/0x5f0
[  101.324777][    C1] Code: 01 00 0f 85 12 01 00 00 4d 8b 24 24 e9 b0 fe ff ff 49 8d 7d 38 48 b8 00 00 00 00 00 fc ff df 48 89 f9 48 c1 e9 03 80 3c 01 00 <0f> 85 e0 00 00 00 48 8b 85 68 ff ff ff 49 c7 45 58 00 00 00 00 49
[  101.344693][    C1] RSP: 0000:ffffc9001038f5d0 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
[  101.353139][    C1] RAX: dffffc0000000000 RBX: ffffc9001038fad0 RCX: 1ffff92002071ef7
[  101.361149][    C1] RDX: 0000000000000010 RSI: 1ffff92002071e00 RDI: ffffc9001038f7b8
executing program
executing program
executing program
executing program
[  101.369283][    C1] RBP: ffffc9001038f698 R08: ffff88808481c380 R09: ffffc9001038f7d8
[  101.377288][    C1] R10: ffffc9001038f7a8 R11: ffffc9001038f7b8 R12: ffffc9001038f770
[  101.385503][    C1] R13: ffffc9001038f780 R14: 1ffff92002071ec2 R15: ffffc9001038f7c0
[  101.394183][    C1]  ? __read_once_size_nocheck.constprop.0+0x10/0x10
[  101.400820][    C1]  unwind_next_frame.part.0+0x1a9/0xa20
[  101.406385][    C1]  ? unwind_dump+0x100/0x100
[  101.410999][    C1]  ? finish_task_switch+0x147/0x750
[  101.416230][    C1]  ? unwind_dump+0x100/0x100
executing program
executing program
executing program
executing program
[  101.420851][    C1]  ? profile_setup.cold+0xbb/0xbb
[  101.425899][    C1]  unwind_next_frame+0x3b/0x50
[  101.430767][    C1]  arch_stack_walk+0x81/0xf0
[  101.435397][    C1]  ? save_stack+0x23/0x90
[  101.439758][    C1]  stack_trace_save+0xac/0xe0
[  101.444457][    C1]  ? stack_trace_consume_entry+0x190/0x190
[  101.450372][    C1]  ? __schedule+0x93c/0x1f90
[  101.455079][    C1]  save_stack+0x23/0x90
[  101.459256][    C1]  ? save_stack+0x23/0x90
[  101.463611][    C1]  ? __kasan_check_read+0x11/0x20
executing program
executing program
[  101.468666][    C1]  ? mark_lock+0xc2/0x1220
[  101.473112][    C1]  ? __kasan_check_read+0x11/0x20
[  101.478167][    C1]  ? __lock_acquire+0x16f2/0x4a00
[  101.483595][    C1]  ? preempt_schedule+0x4b/0x60
[  101.488871][    C1]  ? ___preempt_schedule+0x16/0x18
[  101.494418][    C1]  ? fs_reclaim_release+0xf/0x30
[  101.499629][    C1]  ? __kasan_check_read+0x11/0x20
[  101.504676][    C1]  ? mark_lock+0xc2/0x1220
[  101.509124][    C1]  ? mark_held_locks+0xa4/0xf0
[  101.513920][    C1]  ? kasan_unpoison_shadow+0x35/0x50
executing program
executing program
executing program
executing program
[  101.519472][    C1]  __kasan_kmalloc.constprop.0+0xcf/0xe0
[  101.525144][    C1]  kasan_slab_alloc+0xf/0x20
[  101.529763][    C1]  kmem_cache_alloc+0x121/0x710
[  101.534648][    C1]  ? __might_sleep+0x95/0x190
[  101.539377][    C1]  __anon_vma_prepare+0x62/0x3c0
[  101.544356][    C1]  do_huge_pmd_anonymous_page+0x132f/0x1a50
[  101.550566][    C1]  ? mark_lock+0xc2/0x1220
[  101.555192][    C1]  ? prep_transhuge_page+0xa0/0xa0
[  101.560410][    C1]  ? pmd_val+0x100/0x100
[  101.564685][    C1]  __handle_mm_fault+0x3073/0x3da0
executing program
executing program
executing program
executing program
[  101.569824][    C1]  ? vm_iomap_memory+0x1a0/0x1a0
[  101.575751][    C1]  ? handle_mm_fault+0x292/0xa50
[  101.580807][    C1]  ? handle_mm_fault+0x7a0/0xa50
[  101.585779][    C1]  ? __kasan_check_read+0x11/0x20
[  101.590937][    C1]  handle_mm_fault+0x3b2/0xa50
[  101.595771][    C1]  __do_page_fault+0x536/0xd80
[  101.600582][    C1]  do_page_fault+0x38/0x590
[  101.605205][    C1]  page_fault+0x39/0x40
[  101.609554][    C1] RIP: 0033:0x400daf
executing program
executing program
executing program
[  101.613466][    C1] Code: 00 20 ba 23 54 00 00 bf 10 00 00 00 31 c0 e8 f8 59 04 00 eb bb 66 0f 1f 44 00 00 48 b8 2f 64 65 76 2f 74 74 79 45 31 c0 31 c9 <48> 89 04 25 40 15 00 20 b8 74 6b 00 00 c7 04 25 48 15 00 20 70 72
[  101.634276][    C1] RSP: 002b:00007f9081c00dc0 EFLAGS: 00010246
[  101.640411][    C1] RAX: 7974742f7665642f RBX: 00000000006dbc28 RCX: 0000000000000000
[  101.648399][    C1] RDX: 00000000004467a9 RSI: 0000000000000081 RDI: 00000000006dbc2c
[  101.657405][    C1] RBP: 00000000006dbc20 R08: 0000000000000000 R09: 0000000000000000
[  101.665558][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc2c
executing program
executing program
executing program
[  101.673893][    C1] R13: 00007ffd73ac136f R14: 00007f9081c019c0 R15: 0000000000000000
[  101.682059][    C1] 
[  101.684406][    C1] ================================
[  101.689635][    C1] WARNING: inconsistent lock state
[  101.695307][    C1] 5.4.0-syzkaller #0 Tainted: G        W        
[  101.701921][    C1] --------------------------------
[  101.707046][    C1] inconsistent {SOFTIRQ-ON-W} -> {IN-SOFTIRQ-W} usage.
[  101.714509][    C1] syz-executor680/13589 [HC0[0]:SC1[1]:HE1:SE0] takes:
executing program
executing program
executing program
executing program
executing program
executing program
[  101.721580][    C1] ffffffff8c112af0 (&tpk_port.port_write_mutex){+.?.}, at: tpk_write+0x5d/0x340
[  101.730633][    C1] {SOFTIRQ-ON-W} state was registered at:
[  101.736369][    C1]   lock_acquire+0x190/0x410
[  101.741565][    C1]   __mutex_lock+0x156/0x13c0
[  101.746444][    C1]   mutex_lock_nested+0x16/0x20
[  101.751303][    C1]   tpk_write+0x5d/0x340
[  101.755730][    C1]   sixpack_open+0x8d6/0xaaf
[  101.760361][    C1]   tty_ldisc_open.isra.0+0xa3/0x110
[  101.765738][    C1]   tty_set_ldisc+0x30e/0x6b0
[  101.770535][    C1]   tty_ioctl+0xe8d/0x14f0
executing program
executing program
executing program
executing program
[  101.774971][    C1]   do_vfs_ioctl+0x977/0x14e0
[  101.779665][    C1]   ksys_ioctl+0xab/0xd0
[  101.784124][    C1]   __x64_sys_ioctl+0x73/0xb0
[  101.788826][    C1]   do_syscall_64+0xfa/0x790
[  101.793629][    C1]   entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  101.799616][    C1] irq event stamp: 386
[  101.803719][    C1] hardirqs last  enabled at (386): [<ffffffff81006743>] trace_hardirqs_on_thunk+0x1a/0x1c
[  101.813721][    C1] hardirqs last disabled at (385): [<ffffffff8100675f>] trace_hardirqs_off_thunk+0x1a/0x1c
executing program
executing program
executing program
executing program
[  101.824525][    C1] softirqs last  enabled at (72): [<ffffffff812aa7ce>] fpu__copy+0x17e/0x8c0
[  101.833304][    C1] softirqs last disabled at (291): [<ffffffff81478ceb>] irq_exit+0x19b/0x1e0
[  101.842331][    C1] 
[  101.842331][    C1] other info that might help us debug this:
[  101.850392][    C1]  Possible unsafe locking scenario:
[  101.850392][    C1] 
[  101.857849][    C1]        CPU0
[  101.861147][    C1]        ----
[  101.864439][    C1]   lock(&tpk_port.port_write_mutex);
[  101.870068][    C1]   <Interrupt>
executing program
executing program
executing program
executing program
executing program
[  101.873524][    C1]     lock(&tpk_port.port_write_mutex);
[  101.879078][    C1] 
[  101.879078][    C1]  *** DEADLOCK ***
[  101.879078][    C1] 
[  101.887470][    C1] 2 locks held by syz-executor680/13589:
[  101.893103][    C1]  #0: ffff88808d52b198 (&mm->mmap_sem#2){++++}, at: __do_page_fault+0x33c/0xd80
[  101.902242][    C1]  #1: ffffc90000da8d50 ((&sp->resync_t)){+.-.}, at: call_timer_fn+0xe0/0x780
[  101.911223][    C1] 
[  101.911223][    C1] stack backtrace:
executing program
executing program
executing program
executing program
executing program
executing program
[  101.917294][    C1] CPU: 1 PID: 13589 Comm: syz-executor680 Tainted: G        W         5.4.0-syzkaller #0
[  101.927301][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  101.937367][    C1] Call Trace:
[  101.940666][    C1]  <IRQ>
[  101.943529][    C1]  dump_stack+0x197/0x210
[  101.947873][    C1]  print_usage_bug.cold+0x327/0x378
[  101.953264][    C1]  mark_lock+0xbb4/0x1220
[  101.957609][    C1]  ? check_usage_backwards+0x330/0x330
[  101.963196][    C1]  __lock_acquire+0x1e8e/0x4a00
[  101.968063][    C1]  ? __this_cpu_preempt_check+0x35/0x190
executing program
executing program
executing program
executing program
executing program
[  101.973722][    C1]  ? retint_kernel+0x2b/0x2b
[  101.978335][    C1]  ? mark_held_locks+0xf0/0xf0
[  101.983232][    C1]  lock_acquire+0x190/0x410
[  101.987904][    C1]  ? tpk_write+0x5d/0x340
[  101.992257][    C1]  __mutex_lock+0x156/0x13c0
[  101.996976][    C1]  ? tpk_write+0x5d/0x340
[  102.001438][    C1]  ? alloc_list_entry+0xc0/0xc0
[  102.006482][    C1]  ? tpk_write+0x5d/0x340
[  102.010837][    C1]  ? find_first_zero_bit+0x9a/0xc0
[  102.015974][    C1]  ? mutex_trylock+0x2f0/0x2f0
[  102.020759][    C1]  ? __lock_acquire+0x29c9/0x4a00
executing program
executing program
executing program
executing program
[  102.025806][    C1]  mutex_lock_nested+0x16/0x20
[  102.030740][    C1]  ? mutex_lock_nested+0x16/0x20
[  102.036171][    C1]  tpk_write+0x5d/0x340
[  102.040351][    C1]  ? rcu_read_lock_sched_held+0x9c/0xd0
[  102.045920][    C1]  resync_tnc+0x1b6/0x320
[  102.050276][    C1]  call_timer_fn+0x1ac/0x780
[  102.055006][    C1]  ? encode_sixpack+0x790/0x790
[  102.059893][    C1]  ? msleep_interruptible+0x150/0x150
[  102.065287][    C1]  ? run_timer_softirq+0x6b1/0x1790
[  102.070825][    C1]  ? trace_hardirqs_on+0x67/0x240
executing program
executing program
executing program
executing program
executing program
[  102.075878][    C1]  ? encode_sixpack+0x790/0x790
[  102.080765][    C1]  ? encode_sixpack+0x790/0x790
[  102.085881][    C1]  run_timer_softirq+0x6c3/0x1790
[  102.091082][    C1]  ? add_timer+0x930/0x930
[  102.095519][    C1]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  102.101713][    C1]  ? rcu_read_lock_sched_held+0x9c/0xd0
[  102.107285][    C1]  ? rcu_read_lock_any_held.part.0+0x50/0x50
[  102.113297][    C1]  ? trace_hardirqs_on+0x67/0x240
[  102.118347][    C1]  __do_softirq+0x262/0x98c
executing program
executing program
executing program
executing program
executing program
[  102.122890][    C1]  ? sched_clock_cpu+0x1b/0x1b0
[  102.127891][    C1]  irq_exit+0x19b/0x1e0
[  102.132175][    C1]  smp_apic_timer_interrupt+0x1a3/0x610
[  102.137849][    C1]  apic_timer_interrupt+0xf/0x20
[  102.142845][    C1]  </IRQ>
[  102.145990][    C1] RIP: 0010:update_stack_state+0x48c/0x5f0
[  102.152070][    C1] Code: 01 00 0f 85 12 01 00 00 4d 8b 24 24 e9 b0 fe ff ff 49 8d 7d 38 48 b8 00 00 00 00 00 fc ff df 48 89 f9 48 c1 e9 03 80 3c 01 00 <0f> 85 e0 00 00 00 48 8b 85 68 ff ff ff 49 c7 45 58 00 00 00 00 49
executing program
executing program
executing program
executing program
executing program
[  102.172091][    C1] RSP: 0000:ffffc9001038f5d0 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
[  102.181386][    C1] RAX: dffffc0000000000 RBX: ffffc9001038fad0 RCX: 1ffff92002071ef7
[  102.189386][    C1] RDX: 0000000000000010 RSI: 1ffff92002071e00 RDI: ffffc9001038f7b8
[  102.197684][    C1] RBP: ffffc9001038f698 R08: ffff88808481c380 R09: ffffc9001038f7d8
[  102.205675][    C1] R10: ffffc9001038f7a8 R11: ffffc9001038f7b8 R12: ffffc9001038f770
[  102.213918][    C1] R13: ffffc9001038f780 R14: 1ffff92002071ec2 R15: ffffc9001038f7c0
executing program
executing program
executing program
executing program
[  102.221920][    C1]  ? __read_once_size_nocheck.constprop.0+0x10/0x10
[  102.228539][    C1]  unwind_next_frame.part.0+0x1a9/0xa20
[  102.234295][    C1]  ? unwind_dump+0x100/0x100
[  102.239059][    C1]  ? finish_task_switch+0x147/0x750
[  102.244286][    C1]  ? unwind_dump+0x100/0x100
[  102.248896][    C1]  ? profile_setup.cold+0xbb/0xbb
[  102.253960][    C1]  unwind_next_frame+0x3b/0x50
[  102.258747][    C1]  arch_stack_walk+0x81/0xf0
[  102.263469][    C1]  ? save_stack+0x23/0x90
[  102.267928][    C1]  stack_trace_save+0xac/0xe0
executing program
executing program
executing program
executing program
[  102.272626][    C1]  ? stack_trace_consume_entry+0x190/0x190
[  102.278483][    C1]  ? __schedule+0x93c/0x1f90
[  102.283335][    C1]  save_stack+0x23/0x90
[  102.287698][    C1]  ? save_stack+0x23/0x90
[  102.292057][    C1]  ? __kasan_check_read+0x11/0x20
[  102.297452][    C1]  ? mark_lock+0xc2/0x1220
[  102.302019][    C1]  ? __kasan_check_read+0x11/0x20
[  102.307069][    C1]  ? __lock_acquire+0x16f2/0x4a00
[  102.312379][    C1]  ? preempt_schedule+0x4b/0x60
[  102.317358][    C1]  ? ___preempt_schedule+0x16/0x18
executing program
executing program
executing program
executing program
[  102.323039][    C1]  ? fs_reclaim_release+0xf/0x30
[  102.328007][    C1]  ? __kasan_check_read+0x11/0x20
[  102.333067][    C1]  ? mark_lock+0xc2/0x1220
[  102.337500][    C1]  ? mark_held_locks+0xa4/0xf0
[  102.342284][    C1]  ? kasan_unpoison_shadow+0x35/0x50
[  102.347589][    C1]  __kasan_kmalloc.constprop.0+0xcf/0xe0
[  102.353261][    C1]  kasan_slab_alloc+0xf/0x20
[  102.357979][    C1]  kmem_cache_alloc+0x121/0x710
[  102.363098][    C1]  ? __might_sleep+0x95/0x190
[  102.367806][    C1]  __anon_vma_prepare+0x62/0x3c0
executing program
executing program
executing program
executing program
executing program
[  102.372784][    C1]  do_huge_pmd_anonymous_page+0x132f/0x1a50
[  102.378928][    C1]  ? mark_lock+0xc2/0x1220
[  102.383469][    C1]  ? prep_transhuge_page+0xa0/0xa0
[  102.388846][    C1]  ? pmd_val+0x100/0x100
[  102.393129][    C1]  __handle_mm_fault+0x3073/0x3da0
[  102.398601][    C1]  ? vm_iomap_memory+0x1a0/0x1a0
[  102.403548][    C1]  ? handle_mm_fault+0x292/0xa50
[  102.408597][    C1]  ? handle_mm_fault+0x7a0/0xa50
[  102.413722][    C1]  ? __kasan_check_read+0x11/0x20
[  102.418798][    C1]  handle_mm_fault+0x3b2/0xa50
executing program
executing program
executing program
executing program
[  102.423619][    C1]  __do_page_fault+0x536/0xd80
[  102.429645][    C1]  do_page_fault+0x38/0x590
[  102.434433][    C1]  page_fault+0x39/0x40
[  102.438795][    C1] RIP: 0033:0x400daf
[  102.442702][    C1] Code: 00 20 ba 23 54 00 00 bf 10 00 00 00 31 c0 e8 f8 59 04 00 eb bb 66 0f 1f 44 00 00 48 b8 2f 64 65 76 2f 74 74 79 45 31 c0 31 c9 <48> 89 04 25 40 15 00 20 b8 74 6b 00 00 c7 04 25 48 15 00 20 70 72
[  102.463069][    C1] RSP: 002b:00007f9081c00dc0 EFLAGS: 00010246
[  102.469262][    C1] RAX: 7974742f7665642f RBX: 00000000006dbc28 RCX: 0000000000000000
executing program
executing program
executing program
executing program
[  102.477487][    C1] RDX: 00000000004467a9 RSI: 0000000000000081 RDI: 00000000006dbc2c
[  102.485603][    C1] RBP: 00000000006dbc20 R08: 0000000000000000 R09: 0000000000000000
[  102.493653][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc2c
[  102.501637][    C1] R13: 00007ffd73ac136f R14: 00007f9081c019c0 R15: 0000000000000000
[  102.510201][    C1] ------------[ cut here ]------------
[  102.515849][    C1] WARNING: CPU: 1 PID: 13589 at kernel/locking/mutex.c:737 mutex_unlock+0x1d/0x30
[  102.525369][    C1] Kernel panic - not syncing: panic_on_warn set ...
[  102.531979][    C1] CPU: 1 PID: 13589 Comm: syz-executor680 Tainted: G        W         5.4.0-syzkaller #0
[  102.542063][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  102.553259][    C1] Call Trace:
[  102.556914][    C1]  <IRQ>
[  102.559787][    C1]  dump_stack+0x197/0x210
[  102.564134][    C1]  ? __mutex_unlock_slowpath+0x6a0/0x6a0
[  102.570013][    C1]  panic+0x2e3/0x75c
[  102.573904][    C1]  ? add_taint.cold+0x16/0x16
[  102.578601][    C1]  ? printk+0xba/0xed
[  102.582592][    C1]  ? kmsg_dump_rewind_nolock+0xe4/0xe4
[  102.588179][    C1]  ? __warn.cold+0x14/0x3e
[  102.592587][    C1]  ? __warn+0xd9/0x1cf
[  102.596641][    C1]  ? mutex_unlock+0x1d/0x30
[  102.601216][    C1]  __warn.cold+0x2f/0x3e
[  102.605442][    C1]  ? report_bug.cold+0x63/0xb2
[  102.610186][    C1]  ? mutex_unlock+0x1d/0x30
[  102.614676][    C1]  report_bug+0x289/0x300
[  102.619054][    C1]  do_error_trap+0x11b/0x200
[  102.623696][    C1]  do_invalid_op+0x37/0x50
[  102.628230][    C1]  ? mutex_unlock+0x1d/0x30
[  102.632747][    C1]  invalid_op+0x23/0x30
[  102.637043][    C1] RIP: 0010:mutex_unlock+0x1d/0x30
[  102.642176][    C1] Code: 4c 89 ff e8 25 4e ec f9 e9 8c fb ff ff 55 65 8b 05 80 a7 3b 78 a9 00 ff 1f 00 48 89 e5 75 0b 48 8b 75 08 e8 45 f9 ff ff 5d c3 <0f> 0b 48 8b 75 08 e8 38 f9 ff ff 5d c3 66 0f 1f 44 00 00 48 b8 00
[  102.662236][    C1] RSP: 0000:ffffc90000da8c68 EFLAGS: 00010206
[  102.668577][    C1] RAX: 0000000000000100 RBX: 0000000000000000 RCX: ffffffff83e9293f
[  102.676751][    C1] RDX: 0000000000000100 RSI: ffffffff83e9294d RDI: ffffffff8c112a90
[  102.685081][    C1] RBP: ffffc90000da8c68 R08: ffff88808481c380 R09: fffffbfff1822553
[  102.693343][    C1] R10: ffffc90000da8c68 R11: ffffffff8c112a97 R12: 0000000000000001
[  102.701317][    C1] R13: 0000000000000001 R14: 0000000000000060 R15: dffffc0000000000
[  102.709514][    C1]  ? tpk_write+0x28f/0x340
[  102.713924][    C1]  ? tpk_write+0x29d/0x340
[  102.718361][    C1]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  102.724096][    C1]  tpk_write+0x2a6/0x340
[  102.728367][    C1]  resync_tnc+0x1b6/0x320
[  102.733592][    C1]  call_timer_fn+0x1ac/0x780
[  102.738294][    C1]  ? encode_sixpack+0x790/0x790
[  102.743163][    C1]  ? msleep_interruptible+0x150/0x150
[  102.748678][    C1]  ? run_timer_softirq+0x6b1/0x1790
[  102.753909][    C1]  ? trace_hardirqs_on+0x67/0x240
[  102.758952][    C1]  ? encode_sixpack+0x790/0x790
[  102.763819][    C1]  ? encode_sixpack+0x790/0x790
[  102.768681][    C1]  run_timer_softirq+0x6c3/0x1790
[  102.773714][    C1]  ? add_timer+0x930/0x930
[  102.778539][    C1]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  102.784733][    C1]  ? rcu_read_lock_sched_held+0x9c/0xd0
[  102.795078][    C1]  ? rcu_read_lock_any_held.part.0+0x50/0x50
[  102.801226][    C1]  ? trace_hardirqs_on+0x67/0x240
[  102.806268][    C1]  __do_softirq+0x262/0x98c
[  102.810781][    C1]  ? sched_clock_cpu+0x1b/0x1b0
[  102.815634][    C1]  irq_exit+0x19b/0x1e0
[  102.819777][    C1]  smp_apic_timer_interrupt+0x1a3/0x610
[  102.825337][    C1]  apic_timer_interrupt+0xf/0x20
[  102.830261][    C1]  </IRQ>
[  102.833260][    C1] RIP: 0010:update_stack_state+0x48c/0x5f0
[  102.839064][    C1] Code: 01 00 0f 85 12 01 00 00 4d 8b 24 24 e9 b0 fe ff ff 49 8d 7d 38 48 b8 00 00 00 00 00 fc ff df 48 89 f9 48 c1 e9 03 80 3c 01 00 <0f> 85 e0 00 00 00 48 8b 85 68 ff ff ff 49 c7 45 58 00 00 00 00 49
[  102.859259][    C1] RSP: 0000:ffffc9001038f5d0 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
[  102.867784][    C1] RAX: dffffc0000000000 RBX: ffffc9001038fad0 RCX: 1ffff92002071ef7
[  102.875745][    C1] RDX: 0000000000000010 RSI: 1ffff92002071e00 RDI: ffffc9001038f7b8
[  102.883855][    C1] RBP: ffffc9001038f698 R08: ffff88808481c380 R09: ffffc9001038f7d8
[  102.891819][    C1] R10: ffffc9001038f7a8 R11: ffffc9001038f7b8 R12: ffffc9001038f770
[  102.899783][    C1] R13: ffffc9001038f780 R14: 1ffff92002071ec2 R15: ffffc9001038f7c0
[  102.907761][    C1]  ? __read_once_size_nocheck.constprop.0+0x10/0x10
[  102.914462][    C1]  unwind_next_frame.part.0+0x1a9/0xa20
[  102.920004][    C1]  ? unwind_dump+0x100/0x100
[  102.924606][    C1]  ? finish_task_switch+0x147/0x750
[  102.929823][    C1]  ? unwind_dump+0x100/0x100
[  102.934405][    C1]  ? profile_setup.cold+0xbb/0xbb
[  102.939615][    C1]  unwind_next_frame+0x3b/0x50
[  102.944389][    C1]  arch_stack_walk+0x81/0xf0
[  102.949108][    C1]  ? save_stack+0x23/0x90
[  102.953444][    C1]  stack_trace_save+0xac/0xe0
[  102.958107][    C1]  ? stack_trace_consume_entry+0x190/0x190
[  102.964987][    C1]  ? __schedule+0x93c/0x1f90
[  102.969578][    C1]  save_stack+0x23/0x90
[  102.973732][    C1]  ? save_stack+0x23/0x90
[  102.978048][    C1]  ? __kasan_check_read+0x11/0x20
[  102.983062][    C1]  ? mark_lock+0xc2/0x1220
[  102.987462][    C1]  ? __kasan_check_read+0x11/0x20
[  102.992487][    C1]  ? __lock_acquire+0x16f2/0x4a00
[  102.997534][    C1]  ? preempt_schedule+0x4b/0x60
[  103.002584][    C1]  ? ___preempt_schedule+0x16/0x18
[  103.007702][    C1]  ? fs_reclaim_release+0xf/0x30
[  103.012662][    C1]  ? __kasan_check_read+0x11/0x20
[  103.017684][    C1]  ? mark_lock+0xc2/0x1220
[  103.022100][    C1]  ? mark_held_locks+0xa4/0xf0
[  103.026879][    C1]  ? kasan_unpoison_shadow+0x35/0x50
[  103.032184][    C1]  __kasan_kmalloc.constprop.0+0xcf/0xe0
[  103.037814][    C1]  kasan_slab_alloc+0xf/0x20
[  103.042439][    C1]  kmem_cache_alloc+0x121/0x710
[  103.047301][    C1]  ? __might_sleep+0x95/0x190
[  103.051990][    C1]  __anon_vma_prepare+0x62/0x3c0
[  103.056942][    C1]  do_huge_pmd_anonymous_page+0x132f/0x1a50
[  103.062860][    C1]  ? mark_lock+0xc2/0x1220
[  103.067462][    C1]  ? prep_transhuge_page+0xa0/0xa0
[  103.072568][    C1]  ? pmd_val+0x100/0x100
[  103.076800][    C1]  __handle_mm_fault+0x3073/0x3da0
[  103.081915][    C1]  ? vm_iomap_memory+0x1a0/0x1a0
[  103.086866][    C1]  ? handle_mm_fault+0x292/0xa50
[  103.092007][    C1]  ? handle_mm_fault+0x7a0/0xa50
[  103.096951][    C1]  ? __kasan_check_read+0x11/0x20
[  103.101980][    C1]  handle_mm_fault+0x3b2/0xa50
[  103.106929][    C1]  __do_page_fault+0x536/0xd80
[  103.111690][    C1]  do_page_fault+0x38/0x590
[  103.116184][    C1]  page_fault+0x39/0x40
[  103.120318][    C1] RIP: 0033:0x400daf
[  103.124220][    C1] Code: 00 20 ba 23 54 00 00 bf 10 00 00 00 31 c0 e8 f8 59 04 00 eb bb 66 0f 1f 44 00 00 48 b8 2f 64 65 76 2f 74 74 79 45 31 c0 31 c9 <48> 89 04 25 40 15 00 20 b8 74 6b 00 00 c7 04 25 48 15 00 20 70 72
[  103.144007][    C1] RSP: 002b:00007f9081c00dc0 EFLAGS: 00010246
[  103.150081][    C1] RAX: 7974742f7665642f RBX: 00000000006dbc28 RCX: 0000000000000000
[  103.158060][    C1] RDX: 00000000004467a9 RSI: 0000000000000081 RDI: 00000000006dbc2c
[  103.166030][    C1] RBP: 00000000006dbc20 R08: 0000000000000000 R09: 0000000000000000
[  103.174010][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc2c
[  103.182337][    C1] R13: 00007ffd73ac136f R14: 00007f9081c019c0 R15: 0000000000000000
[  103.191172][    C1] ------------[ cut here ]------------
[  103.196735][    C1] WARNING: CPU: 1 PID: 13589 at kernel/locking/mutex.c:1419 mutex_trylock+0x279/0x2f0
[  103.207272][    C1] Modules linked in:
[  103.211166][    C1] CPU: 1 PID: 13589 Comm: syz-executor680 Tainted: G        W         5.4.0-syzkaller #0
[  103.220968][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  103.231446][    C1] RIP: 0010:mutex_trylock+0x279/0x2f0
[  103.236925][    C1] Code: c9 41 b8 01 00 00 00 31 c9 ba 01 00 00 00 31 f6 e8 bc 8a 94 f9 58 48 8d 65 d8 b8 01 00 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 <0f> 0b e9 0c fe ff ff 48 c7 c7 20 45 63 8b 48 89 4d d0 e8 d0 42 ec
[  103.256902][    C1] RSP: 0000:ffffc90000da8828 EFLAGS: 00010006
[  103.263255][    C1] RAX: 0000000000000101 RBX: 1ffff920001b510d RCX: 0000000000000004
[  103.271472][    C1] RDX: 0000000000000100 RSI: ffffffff816c1c45 RDI: ffffffff899c3c60
[  103.279452][    C1] RBP: ffffc90000da8858 R08: 0000000000000001 R09: fffffbfff1333ae5
[  103.287614][    C1] R10: fffffbfff1333ae4 R11: ffffffff8999d723 R12: ffffffff8b634520
[  103.295677][    C1] R13: 0000000000000000 R14: ffffffff87c67700 R15: ffffffff899c3c60
[  103.303668][    C1] FS:  00007f9081c01700(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000
[  103.312599][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  103.319303][    C1] CR2: 0000000020001540 CR3: 000000009a0b8000 CR4: 00000000001406e0
[  103.327305][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  103.335284][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  103.343596][    C1] Call Trace:
[  103.346895][    C1]  <IRQ>
[  103.349761][    C1]  ? __mutex_unlock_slowpath+0x6a0/0x6a0
[  103.355572][    C1]  __crash_kexec+0x91/0x200
[  103.360160][    C1]  ? kexec_crash_loaded+0x20/0x20
[  103.365193][    C1]  ? trace_hardirqs_off+0x62/0x240
[  103.370325][    C1]  ? _raw_spin_unlock_irqrestore+0x9f/0xe0
[  103.376154][    C1]  ? __printk_safe_flush+0x31e/0x3a0
[  103.381438][    C1]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  103.387172][    C1]  ? find_next_bit+0x107/0x130
[  103.391942][    C1]  ? cpumask_next+0x41/0x50
[  103.396566][    C1]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  103.402287][    C1]  ? printk_safe_flush+0xf2/0x140
[  103.407446][    C1]  ? __mutex_unlock_slowpath+0x6a0/0x6a0
[  103.413072][    C1]  panic+0x308/0x75c
[  103.416953][    C1]  ? add_taint.cold+0x16/0x16
[  103.421715][    C1]  ? printk+0xba/0xed
[  103.425872][    C1]  ? kmsg_dump_rewind_nolock+0xe4/0xe4
[  103.431653][    C1]  ? __warn.cold+0x14/0x3e
[  103.436072][    C1]  ? __warn+0xd9/0x1cf
[  103.440168][    C1]  ? mutex_unlock+0x1d/0x30
[  103.444690][    C1]  __warn.cold+0x2f/0x3e
[  103.448951][    C1]  ? report_bug.cold+0x63/0xb2
[  103.453737][    C1]  ? mutex_unlock+0x1d/0x30
[  103.458258][    C1]  report_bug+0x289/0x300
[  103.462603][    C1]  do_error_trap+0x11b/0x200
[  103.467345][    C1]  do_invalid_op+0x37/0x50
[  103.471773][    C1]  ? mutex_unlock+0x1d/0x30
[  103.476296][    C1]  invalid_op+0x23/0x30
[  103.480479][    C1] RIP: 0010:mutex_unlock+0x1d/0x30
[  103.485607][    C1] Code: 4c 89 ff e8 25 4e ec f9 e9 8c fb ff ff 55 65 8b 05 80 a7 3b 78 a9 00 ff 1f 00 48 89 e5 75 0b 48 8b 75 08 e8 45 f9 ff ff 5d c3 <0f> 0b 48 8b 75 08 e8 38 f9 ff ff 5d c3 66 0f 1f 44 00 00 48 b8 00
[  103.505774][    C1] RSP: 0000:ffffc90000da8c68 EFLAGS: 00010206
[  103.511847][    C1] RAX: 0000000000000100 RBX: 0000000000000000 RCX: ffffffff83e9293f
[  103.519834][    C1] RDX: 0000000000000100 RSI: ffffffff83e9294d RDI: ffffffff8c112a90
[  103.527830][    C1] RBP: ffffc90000da8c68 R08: ffff88808481c380 R09: fffffbfff1822553
[  103.536412][    C1] R10: ffffc90000da8c68 R11: ffffffff8c112a97 R12: 0000000000000001
[  103.544400][    C1] R13: 0000000000000001 R14: 0000000000000060 R15: dffffc0000000000
[  103.552399][    C1]  ? tpk_write+0x28f/0x340
[  103.556824][    C1]  ? tpk_write+0x29d/0x340
[  103.561257][    C1]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  103.567093][    C1]  tpk_write+0x2a6/0x340
[  103.571338][    C1]  resync_tnc+0x1b6/0x320
[  103.575655][    C1]  call_timer_fn+0x1ac/0x780
[  103.580289][    C1]  ? encode_sixpack+0x790/0x790
[  103.585174][    C1]  ? msleep_interruptible+0x150/0x150
[  103.590555][    C1]  ? run_timer_softirq+0x6b1/0x1790
[  103.595769][    C1]  ? trace_hardirqs_on+0x67/0x240
[  103.600922][    C1]  ? encode_sixpack+0x790/0x790
[  103.605781][    C1]  ? encode_sixpack+0x790/0x790
[  103.610786][    C1]  run_timer_softirq+0x6c3/0x1790
[  103.615945][    C1]  ? add_timer+0x930/0x930
[  103.620351][    C1]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  103.626519][    C1]  ? rcu_read_lock_sched_held+0x9c/0xd0
[  103.632364][    C1]  ? rcu_read_lock_any_held.part.0+0x50/0x50
[  103.638456][    C1]  ? trace_hardirqs_on+0x67/0x240
[  103.643511][    C1]  __do_softirq+0x262/0x98c
[  103.648034][    C1]  ? sched_clock_cpu+0x1b/0x1b0
[  103.652890][    C1]  irq_exit+0x19b/0x1e0
[  103.657035][    C1]  smp_apic_timer_interrupt+0x1a3/0x610
[  103.662609][    C1]  apic_timer_interrupt+0xf/0x20
[  103.667549][    C1]  </IRQ>
[  103.670583][    C1] RIP: 0010:update_stack_state+0x48c/0x5f0
[  103.676377][    C1] Code: 01 00 0f 85 12 01 00 00 4d 8b 24 24 e9 b0 fe ff ff 49 8d 7d 38 48 b8 00 00 00 00 00 fc ff df 48 89 f9 48 c1 e9 03 80 3c 01 00 <0f> 85 e0 00 00 00 48 8b 85 68 ff ff ff 49 c7 45 58 00 00 00 00 49
[  103.695972][    C1] RSP: 0000:ffffc9001038f5d0 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
[  103.704367][    C1] RAX: dffffc0000000000 RBX: ffffc9001038fad0 RCX: 1ffff92002071ef7
[  103.712346][    C1] RDX: 0000000000000010 RSI: 1ffff92002071e00 RDI: ffffc9001038f7b8
[  103.720316][    C1] RBP: ffffc9001038f698 R08: ffff88808481c380 R09: ffffc9001038f7d8
[  103.728792][    C1] R10: ffffc9001038f7a8 R11: ffffc9001038f7b8 R12: ffffc9001038f770
[  103.736752][    C1] R13: ffffc9001038f780 R14: 1ffff92002071ec2 R15: ffffc9001038f7c0
[  103.744743][    C1]  ? __read_once_size_nocheck.constprop.0+0x10/0x10
[  103.751344][    C1]  unwind_next_frame.part.0+0x1a9/0xa20
[  103.756879][    C1]  ? unwind_dump+0x100/0x100
[  103.761474][    C1]  ? finish_task_switch+0x147/0x750
[  103.766674][    C1]  ? unwind_dump+0x100/0x100
[  103.771257][    C1]  ? profile_setup.cold+0xbb/0xbb
[  103.776653][    C1]  unwind_next_frame+0x3b/0x50
[  103.781422][    C1]  arch_stack_walk+0x81/0xf0
[  103.786215][    C1]  ? save_stack+0x23/0x90
[  103.791512][    C1]  stack_trace_save+0xac/0xe0
[  103.796193][    C1]  ? stack_trace_consume_entry+0x190/0x190
[  103.802012][    C1]  ? __schedule+0x93c/0x1f90
[  103.806619][    C1]  save_stack+0x23/0x90
[  103.810775][    C1]  ? save_stack+0x23/0x90
[  103.815354][    C1]  ? __kasan_check_read+0x11/0x20
[  103.820548][    C1]  ? mark_lock+0xc2/0x1220
[  103.824999][    C1]  ? __kasan_check_read+0x11/0x20
[  103.830193][    C1]  ? __lock_acquire+0x16f2/0x4a00
[  103.835212][    C1]  ? preempt_schedule+0x4b/0x60
[  103.840092][    C1]  ? ___preempt_schedule+0x16/0x18
[  103.845607][    C1]  ? fs_reclaim_release+0xf/0x30
[  103.850540][    C1]  ? __kasan_check_read+0x11/0x20
[  103.855692][    C1]  ? mark_lock+0xc2/0x1220
[  103.860129][    C1]  ? mark_held_locks+0xa4/0xf0
[  103.864925][    C1]  ? kasan_unpoison_shadow+0x35/0x50
[  103.870216][    C1]  __kasan_kmalloc.constprop.0+0xcf/0xe0
[  103.875986][    C1]  kasan_slab_alloc+0xf/0x20
[  103.880586][    C1]  kmem_cache_alloc+0x121/0x710
[  103.885458][    C1]  ? __might_sleep+0x95/0x190
[  103.890129][    C1]  __anon_vma_prepare+0x62/0x3c0
[  103.895082][    C1]  do_huge_pmd_anonymous_page+0x132f/0x1a50
[  103.901046][    C1]  ? mark_lock+0xc2/0x1220
[  103.905511][    C1]  ? prep_transhuge_page+0xa0/0xa0
[  103.910620][    C1]  ? pmd_val+0x100/0x100
[  103.914867][    C1]  __handle_mm_fault+0x3073/0x3da0
[  103.920014][    C1]  ? vm_iomap_memory+0x1a0/0x1a0
[  103.924971][    C1]  ? handle_mm_fault+0x292/0xa50
[  103.929935][    C1]  ? handle_mm_fault+0x7a0/0xa50
[  103.935149][    C1]  ? __kasan_check_read+0x11/0x20
[  103.940447][    C1]  handle_mm_fault+0x3b2/0xa50
[  103.947116][    C1]  __do_page_fault+0x536/0xd80
[  103.951884][    C1]  do_page_fault+0x38/0x590
[  103.956492][    C1]  page_fault+0x39/0x40
[  103.960636][    C1] RIP: 0033:0x400daf
[  103.964538][    C1] Code: 00 20 ba 23 54 00 00 bf 10 00 00 00 31 c0 e8 f8 59 04 00 eb bb 66 0f 1f 44 00 00 48 b8 2f 64 65 76 2f 74 74 79 45 31 c0 31 c9 <48> 89 04 25 40 15 00 20 b8 74 6b 00 00 c7 04 25 48 15 00 20 70 72
[  103.984166][    C1] RSP: 002b:00007f9081c00dc0 EFLAGS: 00010246
[  103.990434][    C1] RAX: 7974742f7665642f RBX: 00000000006dbc28 RCX: 0000000000000000
[  103.998424][    C1] RDX: 00000000004467a9 RSI: 0000000000000081 RDI: 00000000006dbc2c
[  104.006413][    C1] RBP: 00000000006dbc20 R08: 0000000000000000 R09: 0000000000000000
[  104.014400][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc2c
[  104.022500][    C1] R13: 00007ffd73ac136f R14: 00007f9081c019c0 R15: 0000000000000000
[  104.030467][    C1] irq event stamp: 386
[  104.034540][    C1] hardirqs last  enabled at (386): [<ffffffff81006743>] trace_hardirqs_on_thunk+0x1a/0x1c
[  104.044425][    C1] hardirqs last disabled at (385): [<ffffffff8100675f>] trace_hardirqs_off_thunk+0x1a/0x1c
[  104.054479][    C1] softirqs last  enabled at (72): [<ffffffff812aa7ce>] fpu__copy+0x17e/0x8c0
[  104.063579][    C1] softirqs last disabled at (291): [<ffffffff81478ceb>] irq_exit+0x19b/0x1e0
[  104.072361][    C1] ---[ end trace ce53fb39d1b86636 ]---
[  104.078077][    C1] ------------[ cut here ]------------
[  104.083556][    C1] WARNING: CPU: 1 PID: 13589 at kernel/locking/mutex.c:737 mutex_unlock+0x1d/0x30
[  104.092869][    C1] Modules linked in:
[  104.096786][    C1] CPU: 1 PID: 13589 Comm: syz-executor680 Tainted: G        W         5.4.0-syzkaller #0
[  104.106603][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  104.116682][    C1] RIP: 0010:mutex_unlock+0x1d/0x30
[  104.122434][    C1] Code: 4c 89 ff e8 25 4e ec f9 e9 8c fb ff ff 55 65 8b 05 80 a7 3b 78 a9 00 ff 1f 00 48 89 e5 75 0b 48 8b 75 08 e8 45 f9 ff ff 5d c3 <0f> 0b 48 8b 75 08 e8 38 f9 ff ff 5d c3 66 0f 1f 44 00 00 48 b8 00
[  104.142213][    C1] RSP: 0000:ffffc90000da8858 EFLAGS: 00010006
[  104.148279][    C1] RAX: 0000000000000101 RBX: 1ffff920001b510d RCX: ffffffff816c1c5d
[  104.156423][    C1] RDX: 0000000000000100 RSI: ffffffff816c1cbf RDI: ffffffff899c3c60
[  104.164403][    C1] RBP: ffffc90000da8858 R08: ffff88808481c380 R09: 0000000000000000
[  104.172400][    C1] R10: fffffbfff14f24a8 R11: ffff88808481c380 R12: 0000000000000001
[  104.180452][    C1] R13: 0000000000000000 R14: ffffffff87c67700 R15: 00000000000002e1
[  104.188431][    C1] FS:  00007f9081c01700(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000
[  104.197486][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  104.204085][    C1] CR2: 0000000020001540 CR3: 000000009a0b8000 CR4: 00000000001406e0
[  104.212154][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  104.220126][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  104.228106][    C1] Call Trace:
[  104.231381][    C1]  <IRQ>
[  104.234244][    C1]  __crash_kexec+0x10b/0x200
[  104.238834][    C1]  ? kexec_crash_loaded+0x20/0x20
[  104.243962][    C1]  ? trace_hardirqs_off+0x62/0x240
[  104.249109][    C1]  ? _raw_spin_unlock_irqrestore+0x9f/0xe0
[  104.254938][    C1]  ? __printk_safe_flush+0x31e/0x3a0
[  104.260214][    C1]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  104.265948][    C1]  ? find_next_bit+0x107/0x130
[  104.270867][    C1]  ? cpumask_next+0x41/0x50
[  104.275365][    C1]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  104.281277][    C1]  ? printk_safe_flush+0xf2/0x140
[  104.286441][    C1]  ? __mutex_unlock_slowpath+0x6a0/0x6a0
[  104.292088][    C1]  panic+0x308/0x75c
[  104.295983][    C1]  ? add_taint.cold+0x16/0x16
[  104.300663][    C1]  ? printk+0xba/0xed
[  104.304653][    C1]  ? kmsg_dump_rewind_nolock+0xe4/0xe4
[  104.310122][    C1]  ? __warn.cold+0x14/0x3e
[  104.317510][    C1]  ? __warn+0xd9/0x1cf
[  104.321669][    C1]  ? mutex_unlock+0x1d/0x30
[  104.326198][    C1]  __warn.cold+0x2f/0x3e
[  104.330459][    C1]  ? report_bug.cold+0x63/0xb2
[  104.335262][    C1]  ? mutex_unlock+0x1d/0x30
[  104.339757][    C1]  report_bug+0x289/0x300
[  104.344086][    C1]  do_error_trap+0x11b/0x200
[  104.348903][    C1]  do_invalid_op+0x37/0x50
[  104.353311][    C1]  ? mutex_unlock+0x1d/0x30
[  104.357803][    C1]  invalid_op+0x23/0x30
[  104.362089][    C1] RIP: 0010:mutex_unlock+0x1d/0x30
[  104.367195][    C1] Code: 4c 89 ff e8 25 4e ec f9 e9 8c fb ff ff 55 65 8b 05 80 a7 3b 78 a9 00 ff 1f 00 48 89 e5 75 0b 48 8b 75 08 e8 45 f9 ff ff 5d c3 <0f> 0b 48 8b 75 08 e8 38 f9 ff ff 5d c3 66 0f 1f 44 00 00 48 b8 00
[  104.386914][    C1] RSP: 0000:ffffc90000da8c68 EFLAGS: 00010206
[  104.392975][    C1] RAX: 0000000000000100 RBX: 0000000000000000 RCX: ffffffff83e9293f
[  104.401062][    C1] RDX: 0000000000000100 RSI: ffffffff83e9294d RDI: ffffffff8c112a90
[  104.409047][    C1] RBP: ffffc90000da8c68 R08: ffff88808481c380 R09: fffffbfff1822553
[  104.417997][    C1] R10: ffffc90000da8c68 R11: ffffffff8c112a97 R12: 0000000000000001
[  104.426073][    C1] R13: 0000000000000001 R14: 0000000000000060 R15: dffffc0000000000
[  104.434759][    C1]  ? tpk_write+0x28f/0x340
[  104.439303][    C1]  ? tpk_write+0x29d/0x340
[  104.443754][    C1]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  104.449504][    C1]  tpk_write+0x2a6/0x340
[  104.453740][    C1]  resync_tnc+0x1b6/0x320
[  104.458185][    C1]  call_timer_fn+0x1ac/0x780
[  104.462777][    C1]  ? encode_sixpack+0x790/0x790
[  104.467650][    C1]  ? msleep_interruptible+0x150/0x150
[  104.473013][    C1]  ? run_timer_softirq+0x6b1/0x1790
[  104.478241][    C1]  ? trace_hardirqs_on+0x67/0x240
[  104.483276][    C1]  ? encode_sixpack+0x790/0x790
[  104.488139][    C1]  ? encode_sixpack+0x790/0x790
[  104.493022][    C1]  run_timer_softirq+0x6c3/0x1790
[  104.498122][    C1]  ? add_timer+0x930/0x930
[  104.502545][    C1]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  104.508720][    C1]  ? rcu_read_lock_sched_held+0x9c/0xd0
[  104.514259][    C1]  ? rcu_read_lock_any_held.part.0+0x50/0x50
[  104.520271][    C1]  ? trace_hardirqs_on+0x67/0x240
[  104.525320][    C1]  __do_softirq+0x262/0x98c
[  104.529842][    C1]  ? sched_clock_cpu+0x1b/0x1b0
[  104.534693][    C1]  irq_exit+0x19b/0x1e0
[  104.538895][    C1]  smp_apic_timer_interrupt+0x1a3/0x610
[  104.544457][    C1]  apic_timer_interrupt+0xf/0x20
[  104.549380][    C1]  </IRQ>
[  104.552307][    C1] RIP: 0010:update_stack_state+0x48c/0x5f0
[  104.558108][    C1] Code: 01 00 0f 85 12 01 00 00 4d 8b 24 24 e9 b0 fe ff ff 49 8d 7d 38 48 b8 00 00 00 00 00 fc ff df 48 89 f9 48 c1 e9 03 80 3c 01 00 <0f> 85 e0 00 00 00 48 8b 85 68 ff ff ff 49 c7 45 58 00 00 00 00 49
[  104.577716][    C1] RSP: 0000:ffffc9001038f5d0 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
[  104.586441][    C1] RAX: dffffc0000000000 RBX: ffffc9001038fad0 RCX: 1ffff92002071ef7
[  104.594404][    C1] RDX: 0000000000000010 RSI: 1ffff92002071e00 RDI: ffffc9001038f7b8
[  104.602824][    C1] RBP: ffffc9001038f698 R08: ffff88808481c380 R09: ffffc9001038f7d8
[  104.610798][    C1] R10: ffffc9001038f7a8 R11: ffffc9001038f7b8 R12: ffffc9001038f770
[  104.618763][    C1] R13: ffffc9001038f780 R14: 1ffff92002071ec2 R15: ffffc9001038f7c0
[  104.627941][    C1]  ? __read_once_size_nocheck.constprop.0+0x10/0x10
[  104.634550][    C1]  unwind_next_frame.part.0+0x1a9/0xa20
[  104.640319][    C1]  ? unwind_dump+0x100/0x100
[  104.644966][    C1]  ? finish_task_switch+0x147/0x750
[  104.650191][    C1]  ? unwind_dump+0x100/0x100
[  104.655131][    C1]  ? profile_setup.cold+0xbb/0xbb
[  104.660694][    C1]  unwind_next_frame+0x3b/0x50
[  104.665636][    C1]  arch_stack_walk+0x81/0xf0
[  104.670328][    C1]  ? save_stack+0x23/0x90
[  104.674736][    C1]  stack_trace_save+0xac/0xe0
[  104.679486][    C1]  ? stack_trace_consume_entry+0x190/0x190
[  104.685382][    C1]  ? __schedule+0x93c/0x1f90
[  104.690449][    C1]  save_stack+0x23/0x90
[  104.694602][    C1]  ? save_stack+0x23/0x90
[  104.699305][    C1]  ? __kasan_check_read+0x11/0x20
[  104.704460][    C1]  ? mark_lock+0xc2/0x1220
[  104.709047][    C1]  ? __kasan_check_read+0x11/0x20
[  104.714103][    C1]  ? __lock_acquire+0x16f2/0x4a00
[  104.719253][    C1]  ? preempt_schedule+0x4b/0x60
[  104.724127][    C1]  ? ___preempt_schedule+0x16/0x18
[  104.729255][    C1]  ? fs_reclaim_release+0xf/0x30
[  104.734199][    C1]  ? __kasan_check_read+0x11/0x20
[  104.739233][    C1]  ? mark_lock+0xc2/0x1220
[  104.743666][    C1]  ? mark_held_locks+0xa4/0xf0
[  104.748449][    C1]  ? kasan_unpoison_shadow+0x35/0x50
[  104.753895][    C1]  __kasan_kmalloc.constprop.0+0xcf/0xe0
[  104.759524][    C1]  kasan_slab_alloc+0xf/0x20
[  104.764184][    C1]  kmem_cache_alloc+0x121/0x710
[  104.769358][    C1]  ? __might_sleep+0x95/0x190
[  104.774027][    C1]  __anon_vma_prepare+0x62/0x3c0
[  104.778964][    C1]  do_huge_pmd_anonymous_page+0x132f/0x1a50
[  104.785317][    C1]  ? mark_lock+0xc2/0x1220
[  104.789754][    C1]  ? prep_transhuge_page+0xa0/0xa0
[  104.794857][    C1]  ? pmd_val+0x100/0x100
[  104.799683][    C1]  __handle_mm_fault+0x3073/0x3da0
[  104.804818][    C1]  ? vm_iomap_memory+0x1a0/0x1a0
[  104.809748][    C1]  ? handle_mm_fault+0x292/0xa50
[  104.814733][    C1]  ? handle_mm_fault+0x7a0/0xa50
[  104.819671][    C1]  ? __kasan_check_read+0x11/0x20
[  104.824905][    C1]  handle_mm_fault+0x3b2/0xa50
[  104.829692][    C1]  __do_page_fault+0x536/0xd80
[  104.834459][    C1]  do_page_fault+0x38/0x590
[  104.838981][    C1]  page_fault+0x39/0x40
[  104.843250][    C1] RIP: 0033:0x400daf
[  104.847151][    C1] Code: 00 20 ba 23 54 00 00 bf 10 00 00 00 31 c0 e8 f8 59 04 00 eb bb 66 0f 1f 44 00 00 48 b8 2f 64 65 76 2f 74 74 79 45 31 c0 31 c9 <48> 89 04 25 40 15 00 20 b8 74 6b 00 00 c7 04 25 48 15 00 20 70 72
[  104.866756][    C1] RSP: 002b:00007f9081c00dc0 EFLAGS: 00010246
[  104.872828][    C1] RAX: 7974742f7665642f RBX: 00000000006dbc28 RCX: 0000000000000000
[  104.880790][    C1] RDX: 00000000004467a9 RSI: 0000000000000081 RDI: 00000000006dbc2c
[  104.888770][    C1] RBP: 00000000006dbc20 R08: 0000000000000000 R09: 0000000000000000
[  104.897619][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc2c
[  104.905601][    C1] R13: 00007ffd73ac136f R14: 00007f9081c019c0 R15: 0000000000000000
[  104.913823][    C1] irq event stamp: 386
[  104.918170][    C1] hardirqs last  enabled at (386): [<ffffffff81006743>] trace_hardirqs_on_thunk+0x1a/0x1c
[  104.928079][    C1] hardirqs last disabled at (385): [<ffffffff8100675f>] trace_hardirqs_off_thunk+0x1a/0x1c
[  104.938059][    C1] softirqs last  enabled at (72): [<ffffffff812aa7ce>] fpu__copy+0x17e/0x8c0
[  104.947704][    C1] softirqs last disabled at (291): [<ffffffff81478ceb>] irq_exit+0x19b/0x1e0
[  104.956445][    C1] ---[ end trace ce53fb39d1b86637 ]---
[  104.963681][    C1] Kernel Offset: disabled
[  104.968321][    C1] Rebooting in 86400 seconds..