./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2999528257 <...> [ 102.560651][ T8] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.0.124' (ED25519) to the list of known hosts. execve("./syz-executor2999528257", ["./syz-executor2999528257"], 0x7ffc0fd3d230 /* 10 vars */) = 0 brk(NULL) = 0x555555bb7000 brk(0x555555bb7d00) = 0x555555bb7d00 arch_prctl(ARCH_SET_FS, 0x555555bb7380) = 0 set_tid_address(0x555555bb7650) = 5069 set_robust_list(0x555555bb7660, 24) = 0 rseq(0x555555bb7ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor2999528257", 4096) = 28 getrandom("\x46\x66\xa1\xcb\x3a\x9e\x73\x3b", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555555bb7d00 brk(0x555555bd8d00) = 0x555555bd8d00 brk(0x555555bd9000) = 0x555555bd9000 mprotect(0x7fa57f811000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555bb7650) = 5070 ./strace-static-x86_64: Process 5070 attached [pid 5070] set_robust_list(0x555555bb7660, 24) = 0 [pid 5070] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5070] setpgid(0, 0) = 0 [pid 5070] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5070] write(3, "1000", 4) = 4 [pid 5070] close(3) = 0 [pid 5070] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5070] ioctl(3, TIOCSETD, [21]) = 0 [ 107.567115][ T5070] BUG: sleeping function called from invalid context at kernel/printk/printk.c:2634 [ 107.576837][ T5070] in_atomic(): 1, irqs_disabled(): 1, non_block: 0, pid: 5070, name: syz-executor299 [ 107.586308][ T5070] preempt_count: 1, expected: 0 [ 107.591183][ T5070] RCU nest depth: 0, expected: 0 [ 107.596140][ T5070] 3 locks held by syz-executor299/5070: [ 107.601704][ T5070] #0: ffff888023d750a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 107.611525][ T5070] #1: ffff888023d75130 (&tty->atomic_write_lock){+.+.}-{3:3}, at: file_tty_write.constprop.0+0x293/0x9b0 [ 107.622881][ T5070] #2: ffff8880262493e0 (&gsm->tx_lock){....}-{2:2}, at: gsmld_write+0x62/0x150 [ 107.631980][ T5070] irq event stamp: 1904 [ 107.636134][ T5070] hardirqs last enabled at (1903): [] _raw_spin_unlock_irq+0x23/0x50 [ 107.645901][ T5070] hardirqs last disabled at (1904): [] _raw_spin_lock_irqsave+0x52/0x60 [ 107.655929][ T5070] softirqs last enabled at (1858): [] __do_softirq+0x596/0x8de [ 107.665169][ T5070] softirqs last disabled at (1849): [] irq_exit_rcu+0xb9/0x120 [ 107.674334][ T5070] Preemption disabled at: [ 107.674344][ T5070] [<0000000000000000>] 0x0 [ 107.683189][ T5070] CPU: 0 PID: 5070 Comm: syz-executor299 Not tainted 6.7.0-next-20240119-syzkaller #0 [ 107.692930][ T5070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 107.703002][ T5070] Call Trace: [ 107.706289][ T5070] [ 107.709231][ T5070] dump_stack_lvl+0xd9/0x1b0 [ 107.713855][ T5070] __might_resched+0x3c0/0x5e0 [ 107.718643][ T5070] ? __pfx___might_resched+0x10/0x10 [ 107.723945][ T5070] ? add_lock_to_list+0x17d/0x380 [ 107.729002][ T5070] console_lock+0x34/0x150 [ 107.733462][ T5070] do_con_write+0x149/0x7f50 [ 107.738121][ T5070] ? __pfx___lock_acquire+0x10/0x10 [ 107.743349][ T5070] ? __pfx___might_resched+0x10/0x10 [ 107.748657][ T5070] ? __pfx_do_con_write+0x10/0x10 [ 107.753703][ T5070] ? lock_acquire+0x1b1/0x540 [ 107.758502][ T5070] ? __pfx_lock_acquire+0x10/0x10 [ 107.763555][ T5070] ? do_raw_spin_lock+0x12d/0x2c0 [ 107.768683][ T5070] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 107.774177][ T5070] con_write+0x23/0xc0 [ 107.778289][ T5070] gsmld_write+0xd2/0x150 [ 107.782684][ T5070] ? __pfx_gsmld_write+0x10/0x10 [ 107.787698][ T5070] file_tty_write.constprop.0+0x518/0x9b0 [ 107.793497][ T5070] vfs_write+0x6db/0x1100 [ 107.797886][ T5070] ? __pfx_vfs_write+0x10/0x10 [ 107.802689][ T5070] ? find_held_lock+0x2d/0x110 [ 107.807516][ T5070] ? __pfx_lock_release+0x10/0x10 [ 107.812606][ T5070] ? __fget_light+0x176/0x210 [ 107.817354][ T5070] ksys_write+0x12f/0x260 [ 107.821816][ T5070] ? __pfx_ksys_write+0x10/0x10 [ 107.826697][ T5070] ? lockdep_hardirqs_on+0x7c/0x110 [ 107.831927][ T5070] ? _raw_spin_unlock_irq+0x2e/0x50 [ 107.837175][ T5070] ? ptrace_notify+0xf1/0x130 [ 107.841886][ T5070] do_syscall_64+0xd2/0x260 [ 107.846432][ T5070] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 107.852442][ T5070] RIP: 0033:0x7fa57f79dcb9 [ 107.856897][ T5070] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 107.876528][ T5070] RSP: 002b:00007ffea9381908 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 107.884968][ T5070] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa57f79dcb9 [ 107.892960][ T5070] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 107.900959][ T5070] RBP: 00007fa57f8115f0 R08: 0000000000000006 R09: 0000000000000006 [ 107.908997][ T5070] R10: 00007ffea9381616 R11: 0000000000000246 R12: 0000000000000001 [pid 5070] write(3, NULL, 0) = 0 [pid 5070] exit_group(0) = ? [pid 5070] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5070, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5072 attached , child_tidptr=0x555555bb7650) = 5072 [pid 5072] set_robust_list(0x555555bb7660, 24) = 0 [pid 5072] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [ 107.917026][ T5070] R13: 431bde82d7b634db R14: 0000000000000001 R15: 0000000000000001 [ 107.925068][ T5070] [pid 5072] setpgid(0, 0) = 0 [pid 5072] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5072] write(3, "1000", 4) = 4 [pid 5072] close(3) = 0 [pid 5072] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5072] ioctl(3, TIOCSETD, [21]) = 0 [pid 5072] write(3, NULL, 0) = 0 [pid 5072] exit_group(0) = ? [pid 5072] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5072, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5073 attached , child_tidptr=0x555555bb7650) = 5073 [pid 5073] set_robust_list(0x555555bb7660, 24) = 0 [pid 5073] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5073] setpgid(0, 0) = 0 [pid 5073] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5073] write(3, "1000", 4) = 4 [pid 5073] close(3) = 0 [pid 5073] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5073] ioctl(3, TIOCSETD, [21]) = 0 [pid 5073] write(3, NULL, 0) = 0 [pid 5073] exit_group(0) = ? [pid 5073] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5073, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5074 attached , child_tidptr=0x555555bb7650) = 5074 [pid 5074] set_robust_list(0x555555bb7660, 24) = 0 [pid 5074] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5074] setpgid(0, 0) = 0 [pid 5074] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5074] write(3, "1000", 4) = 4 [pid 5074] close(3) = 0 [pid 5074] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5074] ioctl(3, TIOCSETD, [21]) = 0 [pid 5074] write(3, NULL, 0) = 0 [pid 5074] exit_group(0) = ? [pid 5074] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5074, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5075 attached , child_tidptr=0x555555bb7650) = 5075 [pid 5075] set_robust_list(0x555555bb7660, 24) = 0 [pid 5075] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5075] setpgid(0, 0) = 0 [pid 5075] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5075] write(3, "1000", 4) = 4 [pid 5075] close(3) = 0 [pid 5075] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5075] ioctl(3, TIOCSETD, [21]) = 0 [pid 5075] write(3, NULL, 0) = 0 [pid 5075] exit_group(0) = ? [pid 5075] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5075, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5076 attached , child_tidptr=0x555555bb7650) = 5076 [pid 5076] set_robust_list(0x555555bb7660, 24) = 0 [pid 5076] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5076] setpgid(0, 0) = 0 [pid 5076] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5076] write(3, "1000", 4) = 4 [pid 5076] close(3) = 0 [pid 5076] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5076] ioctl(3, TIOCSETD, [21]) = 0 [pid 5076] write(3, NULL, 0) = 0 [pid 5076] exit_group(0) = ? [pid 5076] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5076, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5077 attached , child_tidptr=0x555555bb7650) = 5077 [pid 5077] set_robust_list(0x555555bb7660, 24) = 0 [pid 5077] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5077] setpgid(0, 0) = 0 [pid 5077] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5077] write(3, "1000", 4) = 4 [pid 5077] close(3) = 0 [pid 5077] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5077] ioctl(3, TIOCSETD, [21]) = 0 [pid 5077] write(3, NULL, 0) = 0 [pid 5077] exit_group(0) = ? [pid 5077] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5077, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5078 attached , child_tidptr=0x555555bb7650) = 5078 [pid 5078] set_robust_list(0x555555bb7660, 24) = 0 [pid 5078] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5078] setpgid(0, 0) = 0 [pid 5078] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5078] write(3, "1000", 4) = 4 [pid 5078] close(3) = 0 [pid 5078] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5078] ioctl(3, TIOCSETD, [21]) = 0 [pid 5078] write(3, NULL, 0) = 0 [pid 5078] exit_group(0) = ? [pid 5078] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5078, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5079 attached , child_tidptr=0x555555bb7650) = 5079 [pid 5079] set_robust_list(0x555555bb7660, 24) = 0 [pid 5079] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5079] setpgid(0, 0) = 0 [pid 5079] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5079] write(3, "1000", 4) = 4 [pid 5079] close(3) = 0 [pid 5079] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5079] ioctl(3, TIOCSETD, [21]) = 0 [pid 5079] write(3, NULL, 0) = 0 [pid 5079] exit_group(0) = ? [pid 5079] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5079, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5080 attached , child_tidptr=0x555555bb7650) = 5080 [pid 5080] set_robust_list(0x555555bb7660, 24) = 0 [pid 5080] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5080] setpgid(0, 0) = 0 [pid 5080] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5080] write(3, "1000", 4) = 4 [pid 5080] close(3) = 0 [pid 5080] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5080] ioctl(3, TIOCSETD, [21]) = 0 [ 108.581807][ T5080] BUG: sleeping function called from invalid context at kernel/printk/printk.c:2634 [ 108.591235][ T5080] in_atomic(): 1, irqs_disabled(): 1, non_block: 0, pid: 5080, name: syz-executor299 [ 108.600737][ T5080] preempt_count: 1, expected: 0 [ 108.605600][ T5080] RCU nest depth: 0, expected: 0 [ 108.610548][ T5080] 3 locks held by syz-executor299/5080: [ 108.616106][ T5080] #0: ffff88807cac60a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 108.625931][ T5080] #1: ffff88807cac6130 (&tty->atomic_write_lock){+.+.}-{3:3}, at: file_tty_write.constprop.0+0x293/0x9b0 [ 108.637323][ T5080] #2: ffff888025ed93e0 (&gsm->tx_lock){....}-{2:2}, at: gsmld_write+0x62/0x150 [ 108.646445][ T5080] irq event stamp: 1050 [ 108.650629][ T5080] hardirqs last enabled at (1049): [] _raw_spin_unlock_irq+0x23/0x50 [ 108.660473][ T5080] hardirqs last disabled at (1050): [] _raw_spin_lock_irqsave+0x52/0x60 [ 108.670412][ T5080] softirqs last enabled at (0): [] copy_process+0x2450/0x9780 [ 108.679586][ T5080] softirqs last disabled at (0): [<0000000000000000>] 0x0 [ 108.686747][ T5080] Preemption disabled at: [ 108.686758][ T5080] [<0000000000000000>] 0x0 [ 108.695521][ T5080] CPU: 1 PID: 5080 Comm: syz-executor299 Tainted: G W 6.7.0-next-20240119-syzkaller #0 [ 108.706566][ T5080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 108.716646][ T5080] Call Trace: [ 108.719946][ T5080] [ 108.722893][ T5080] dump_stack_lvl+0xd9/0x1b0 [ 108.727621][ T5080] __might_resched+0x3c0/0x5e0 [ 108.732428][ T5080] ? __pfx___might_resched+0x10/0x10 [ 108.737741][ T5080] ? __pfx___lock_acquire+0x10/0x10 [ 108.742990][ T5080] console_lock+0x34/0x150 [ 108.747454][ T5080] do_con_write+0x149/0x7f50 [ 108.752095][ T5080] ? __might_fault+0x13b/0x190 [ 108.756900][ T5080] ? __pfx___lock_acquire+0x10/0x10 [ 108.762144][ T5080] ? __pfx___might_resched+0x10/0x10 [ 108.767465][ T5080] ? __pfx_do_con_write+0x10/0x10 [ 108.772964][ T5080] ? lock_acquire+0x1b1/0x540 [ 108.777697][ T5080] ? __pfx_lock_acquire+0x10/0x10 [ 108.782764][ T5080] ? do_raw_spin_lock+0x12d/0x2c0 [ 108.787816][ T5080] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 108.793226][ T5080] con_write+0x23/0xc0 [ 108.797422][ T5080] gsmld_write+0xd2/0x150 [ 108.801817][ T5080] ? __pfx_gsmld_write+0x10/0x10 [ 108.806898][ T5080] file_tty_write.constprop.0+0x518/0x9b0 [ 108.812678][ T5080] vfs_write+0x6db/0x1100 [ 108.817069][ T5080] ? __pfx_vfs_write+0x10/0x10 [ 108.821880][ T5080] ? find_held_lock+0x2d/0x110 [ 108.826693][ T5080] ? __pfx_lock_release+0x10/0x10 [ 108.831758][ T5080] ? __fget_light+0x176/0x210 [ 108.836566][ T5080] ksys_write+0x12f/0x260 [ 108.840941][ T5080] ? __pfx_ksys_write+0x10/0x10 [ 108.845830][ T5080] ? lockdep_hardirqs_on+0x7c/0x110 [ 108.851070][ T5080] ? _raw_spin_unlock_irq+0x2e/0x50 [ 108.856299][ T5080] ? ptrace_notify+0xf1/0x130 [ 108.861039][ T5080] do_syscall_64+0xd2/0x260 [ 108.865590][ T5080] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 108.871519][ T5080] RIP: 0033:0x7fa57f79dcb9 [ 108.875957][ T5080] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 108.895767][ T5080] RSP: 002b:00007ffea9381908 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 108.904209][ T5080] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa57f79dcb9 [ 108.912202][ T5080] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 108.920194][ T5080] RBP: 000000000001a7a2 R08: 0000000000000006 R09: 0000000000000006 [pid 5080] write(3, NULL, 0) = 0 [pid 5080] exit_group(0) = ? [pid 5080] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5080, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5081 attached , child_tidptr=0x555555bb7650) = 5081 [pid 5081] set_robust_list(0x555555bb7660, 24) = 0 [pid 5081] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5081] setpgid(0, 0) = 0 [pid 5081] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5081] write(3, "1000", 4) = 4 [pid 5081] close(3) = 0 [pid 5081] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5081] ioctl(3, TIOCSETD, [21]) = 0 [pid 5081] write(3, NULL, 0) = 0 [pid 5081] exit_group(0) = ? [ 108.928199][ T5080] R10: 00007ffea9381616 R11: 0000000000000246 R12: 00007ffea938191c [ 108.936215][ T5080] R13: 431bde82d7b634db R14: 0000000000000001 R15: 0000000000000001 [ 108.944235][ T5080] [pid 5081] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5081, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5082 attached , child_tidptr=0x555555bb7650) = 5082 [pid 5082] set_robust_list(0x555555bb7660, 24) = 0 [pid 5082] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5082] setpgid(0, 0) = 0 [pid 5082] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5082] write(3, "1000", 4) = 4 [pid 5082] close(3) = 0 [pid 5082] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5082] ioctl(3, TIOCSETD, [21]) = 0 [pid 5082] write(3, NULL, 0) = 0 [pid 5082] exit_group(0) = ? [pid 5082] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5082, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5083 attached , child_tidptr=0x555555bb7650) = 5083 [pid 5083] set_robust_list(0x555555bb7660, 24) = 0 [pid 5083] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5083] setpgid(0, 0) = 0 [pid 5083] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5083] write(3, "1000", 4) = 4 [pid 5083] close(3) = 0 [pid 5083] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5083] ioctl(3, TIOCSETD, [21]) = 0 [pid 5083] write(3, NULL, 0) = 0 [pid 5083] exit_group(0) = ? [pid 5083] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5083, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5084 attached , child_tidptr=0x555555bb7650) = 5084 [pid 5084] set_robust_list(0x555555bb7660, 24) = 0 [pid 5084] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5084] setpgid(0, 0) = 0 [pid 5084] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5084] write(3, "1000", 4) = 4 [pid 5084] close(3) = 0 [pid 5084] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5084] ioctl(3, TIOCSETD, [21]) = 0 [pid 5084] write(3, NULL, 0) = 0 [pid 5084] exit_group(0) = ? [pid 5084] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5084, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5085 attached , child_tidptr=0x555555bb7650) = 5085 [pid 5085] set_robust_list(0x555555bb7660, 24) = 0 [pid 5085] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5085] setpgid(0, 0) = 0 [pid 5085] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5085] write(3, "1000", 4) = 4 [pid 5085] close(3) = 0 [pid 5085] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5085] ioctl(3, TIOCSETD, [21]) = 0 [pid 5085] write(3, NULL, 0) = 0 [pid 5085] exit_group(0) = ? [pid 5085] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5085, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5086 attached , child_tidptr=0x555555bb7650) = 5086 [pid 5086] set_robust_list(0x555555bb7660, 24) = 0 [pid 5086] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5086] setpgid(0, 0) = 0 [pid 5086] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5086] write(3, "1000", 4) = 4 [pid 5086] close(3) = 0 [pid 5086] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5086] ioctl(3, TIOCSETD, [21]) = 0 [pid 5086] write(3, NULL, 0) = 0 [pid 5086] exit_group(0) = ? [pid 5086] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5086, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5087 attached , child_tidptr=0x555555bb7650) = 5087 [pid 5087] set_robust_list(0x555555bb7660, 24) = 0 [pid 5087] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5087] setpgid(0, 0) = 0 [pid 5087] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5087] write(3, "1000", 4) = 4 [pid 5087] close(3) = 0 [pid 5087] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5087] ioctl(3, TIOCSETD, [21]) = 0 [pid 5087] write(3, NULL, 0) = 0 [pid 5087] exit_group(0) = ? [pid 5087] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5087, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5088 attached , child_tidptr=0x555555bb7650) = 5088 [pid 5088] set_robust_list(0x555555bb7660, 24) = 0 [pid 5088] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5088] setpgid(0, 0) = 0 [pid 5088] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5088] write(3, "1000", 4) = 4 [pid 5088] close(3) = 0 [pid 5088] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5088] ioctl(3, TIOCSETD, [21]) = 0 [pid 5088] write(3, NULL, 0) = 0 [pid 5088] exit_group(0) = ? [pid 5088] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5088, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5089 attached , child_tidptr=0x555555bb7650) = 5089 [pid 5089] set_robust_list(0x555555bb7660, 24) = 0 [pid 5089] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5089] setpgid(0, 0) = 0 [pid 5089] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5089] write(3, "1000", 4) = 4 [pid 5089] close(3) = 0 [pid 5089] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5089] ioctl(3, TIOCSETD, [21]) = 0 [pid 5089] write(3, NULL, 0) = 0 [pid 5089] exit_group(0) = ? [pid 5089] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5089, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5090 attached , child_tidptr=0x555555bb7650) = 5090 [pid 5090] set_robust_list(0x555555bb7660, 24) = 0 [pid 5090] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5090] setpgid(0, 0) = 0 [pid 5090] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5090] write(3, "1000", 4) = 4 [pid 5090] close(3) = 0 [pid 5090] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5090] ioctl(3, TIOCSETD, [21]) = 0 [ 109.621614][ T5090] BUG: sleeping function called from invalid context at kernel/printk/printk.c:2634 [ 109.631042][ T5090] in_atomic(): 1, irqs_disabled(): 1, non_block: 0, pid: 5090, name: syz-executor299 [ 109.640511][ T5090] preempt_count: 1, expected: 0 [ 109.645363][ T5090] RCU nest depth: 0, expected: 0 [ 109.650304][ T5090] 3 locks held by syz-executor299/5090: [ 109.655864][ T5090] #0: ffff8880255570a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 109.665659][ T5090] #1: ffff888025557130 (&tty->atomic_write_lock){+.+.}-{3:3}, at: file_tty_write.constprop.0+0x293/0x9b0 [ 109.677028][ T5090] #2: ffff8880262913e0 (&gsm->tx_lock){....}-{2:2}, at: gsmld_write+0x62/0x150 [ 109.686130][ T5090] irq event stamp: 1110 [ 109.690289][ T5090] hardirqs last enabled at (1109): [] _raw_spin_unlock_irq+0x23/0x50 [ 109.700059][ T5090] hardirqs last disabled at (1110): [] _raw_spin_lock_irqsave+0x52/0x60 [ 109.709980][ T5090] softirqs last enabled at (556): [] __do_softirq+0x596/0x8de [ 109.719119][ T5090] softirqs last disabled at (525): [] irq_exit_rcu+0xb9/0x120 [ 109.728170][ T5090] Preemption disabled at: [ 109.728180][ T5090] [<0000000000000000>] 0x0 [ 109.737102][ T5090] CPU: 1 PID: 5090 Comm: syz-executor299 Tainted: G W 6.7.0-next-20240119-syzkaller #0 [ 109.748140][ T5090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 109.758209][ T5090] Call Trace: [ 109.761498][ T5090] [ 109.764464][ T5090] dump_stack_lvl+0xd9/0x1b0 [ 109.769109][ T5090] __might_resched+0x3c0/0x5e0 [ 109.773905][ T5090] ? __pfx___might_resched+0x10/0x10 [ 109.779313][ T5090] ? __pfx___lock_acquire+0x10/0x10 [ 109.784650][ T5090] console_lock+0x34/0x150 [ 109.789120][ T5090] do_con_write+0x149/0x7f50 [ 109.793776][ T5090] ? __might_fault+0x13b/0x190 [ 109.798655][ T5090] ? __pfx___lock_acquire+0x10/0x10 [ 109.803900][ T5090] ? __pfx___might_resched+0x10/0x10 [ 109.809218][ T5090] ? __pfx_do_con_write+0x10/0x10 [ 109.814271][ T5090] ? lock_acquire+0x1b1/0x540 [ 109.818986][ T5090] ? __pfx_lock_acquire+0x10/0x10 [ 109.824041][ T5090] ? do_raw_spin_lock+0x12d/0x2c0 [ 109.829086][ T5090] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 109.834482][ T5090] con_write+0x23/0xc0 [ 109.838582][ T5090] gsmld_write+0xd2/0x150 [ 109.842939][ T5090] ? __pfx_gsmld_write+0x10/0x10 [ 109.847904][ T5090] file_tty_write.constprop.0+0x518/0x9b0 [ 109.853671][ T5090] vfs_write+0x6db/0x1100 [ 109.858056][ T5090] ? __pfx_vfs_write+0x10/0x10 [ 109.862853][ T5090] ? find_held_lock+0x2d/0x110 [ 109.867644][ T5090] ? __pfx_lock_release+0x10/0x10 [ 109.872721][ T5090] ? __fget_light+0x176/0x210 [ 109.877434][ T5090] ksys_write+0x12f/0x260 [ 109.881796][ T5090] ? __pfx_ksys_write+0x10/0x10 [ 109.886675][ T5090] ? lockdep_hardirqs_on+0x7c/0x110 [ 109.891917][ T5090] ? _raw_spin_unlock_irq+0x2e/0x50 [ 109.897139][ T5090] ? ptrace_notify+0xf1/0x130 [ 109.901862][ T5090] do_syscall_64+0xd2/0x260 [ 109.906401][ T5090] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 109.912505][ T5090] RIP: 0033:0x7fa57f79dcb9 [ 109.916942][ T5090] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 109.936588][ T5090] RSP: 002b:00007ffea9381908 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 109.945022][ T5090] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa57f79dcb9 [ 109.953041][ T5090] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 109.961065][ T5090] RBP: 000000000001abb0 R08: 0000000000000006 R09: 0000000000000006 [pid 5090] write(3, NULL, 0) = 0 [pid 5090] exit_group(0) = ? [pid 5090] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5090, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555bb7650) = 5091 ./strace-static-x86_64: Process 5091 attached [pid 5091] set_robust_list(0x555555bb7660, 24) = 0 [ 109.969079][ T5090] R10: 00007ffea9381616 R11: 0000000000000246 R12: 00007ffea938191c [ 109.977072][ T5090] R13: 431bde82d7b634db R14: 0000000000000001 R15: 0000000000000001 [ 109.985078][ T5090] [pid 5091] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5091] setpgid(0, 0) = 0 [pid 5091] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5091] write(3, "1000", 4) = 4 [pid 5091] close(3) = 0 [pid 5091] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5091] ioctl(3, TIOCSETD, [21]) = 0 [pid 5091] write(3, NULL, 0) = 0 [pid 5091] exit_group(0) = ? [pid 5091] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5091, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5092 attached , child_tidptr=0x555555bb7650) = 5092 [pid 5092] set_robust_list(0x555555bb7660, 24) = 0 [pid 5092] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5092] setpgid(0, 0) = 0 [pid 5092] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5092] write(3, "1000", 4) = 4 [pid 5092] close(3) = 0 [pid 5092] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5092] ioctl(3, TIOCSETD, [21]) = 0 [pid 5092] write(3, NULL, 0) = 0 [pid 5092] exit_group(0) = ? [pid 5092] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5092, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555bb7650) = 5093 ./strace-static-x86_64: Process 5093 attached [pid 5093] set_robust_list(0x555555bb7660, 24) = 0 [pid 5093] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5093] setpgid(0, 0) = 0 [pid 5093] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5093] write(3, "1000", 4) = 4 [pid 5093] close(3) = 0 [pid 5093] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5093] ioctl(3, TIOCSETD, [21]) = 0 [pid 5093] write(3, NULL, 0) = 0 [pid 5093] exit_group(0) = ? [pid 5093] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5093, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5094 attached , child_tidptr=0x555555bb7650) = 5094 [pid 5094] set_robust_list(0x555555bb7660, 24) = 0 [pid 5094] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5094] setpgid(0, 0) = 0 [pid 5094] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5094] write(3, "1000", 4) = 4 [pid 5094] close(3) = 0 [pid 5094] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5094] ioctl(3, TIOCSETD, [21]) = 0 [pid 5094] write(3, NULL, 0) = 0 [pid 5094] exit_group(0) = ? [pid 5094] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5094, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555bb7650) = 5095 ./strace-static-x86_64: Process 5095 attached [pid 5095] set_robust_list(0x555555bb7660, 24) = 0 [pid 5095] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5095] setpgid(0, 0) = 0 [pid 5095] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5095] write(3, "1000", 4) = 4 [pid 5095] close(3) = 0 [pid 5095] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5095] ioctl(3, TIOCSETD, [21]) = 0 [pid 5095] write(3, NULL, 0) = 0 [pid 5095] exit_group(0) = ? [pid 5095] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5095, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5096 attached , child_tidptr=0x555555bb7650) = 5096 [pid 5096] set_robust_list(0x555555bb7660, 24) = 0 [pid 5096] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5096] setpgid(0, 0) = 0 [pid 5096] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5096] write(3, "1000", 4) = 4 [pid 5096] close(3) = 0 [pid 5096] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5096] ioctl(3, TIOCSETD, [21]) = 0 [pid 5096] write(3, NULL, 0) = 0 [pid 5096] exit_group(0) = ? [pid 5096] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5096, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5097 attached , child_tidptr=0x555555bb7650) = 5097 [pid 5097] set_robust_list(0x555555bb7660, 24) = 0 [pid 5097] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5097] setpgid(0, 0) = 0 [pid 5097] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5097] write(3, "1000", 4) = 4 [pid 5097] close(3) = 0 [pid 5097] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5097] ioctl(3, TIOCSETD, [21]) = 0 [pid 5097] write(3, NULL, 0) = 0 [pid 5097] exit_group(0) = ? [pid 5097] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5097, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5098 attached , child_tidptr=0x555555bb7650) = 5098 [pid 5098] set_robust_list(0x555555bb7660, 24) = 0 [pid 5098] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5098] setpgid(0, 0) = 0 [pid 5098] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5098] write(3, "1000", 4) = 4 [pid 5098] close(3) = 0 [pid 5098] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5098] ioctl(3, TIOCSETD, [21]) = 0 [ 110.670480][ T5098] BUG: sleeping function called from invalid context at kernel/printk/printk.c:2634 [ 110.679913][ T5098] in_atomic(): 1, irqs_disabled(): 1, non_block: 0, pid: 5098, name: syz-executor299 [ 110.689389][ T5098] preempt_count: 1, expected: 0 [ 110.694260][ T5098] RCU nest depth: 0, expected: 0 [ 110.699210][ T5098] 3 locks held by syz-executor299/5098: [ 110.704761][ T5098] #0: ffff8880273a60a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 110.714553][ T5098] #1: ffff8880273a6130 (&tty->atomic_write_lock){+.+.}-{3:3}, at: file_tty_write.constprop.0+0x293/0x9b0 [ 110.725900][ T5098] #2: ffff88802739f3e0 (&gsm->tx_lock){....}-{2:2}, at: gsmld_write+0x62/0x150 [ 110.734998][ T5098] irq event stamp: 1146 [ 110.739166][ T5098] hardirqs last enabled at (1145): [] _raw_spin_unlock_irq+0x23/0x50 [ 110.748911][ T5098] hardirqs last disabled at (1146): [] _raw_spin_lock_irqsave+0x52/0x60 [ 110.759270][ T5098] softirqs last enabled at (894): [] __do_softirq+0x596/0x8de [ 110.768415][ T5098] softirqs last disabled at (769): [] irq_exit_rcu+0xb9/0x120 [ 110.777459][ T5098] Preemption disabled at: [ 110.777469][ T5098] [<0000000000000000>] 0x0 [ 110.786281][ T5098] CPU: 0 PID: 5098 Comm: syz-executor299 Tainted: G W 6.7.0-next-20240119-syzkaller #0 [ 110.797339][ T5098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 110.807416][ T5098] Call Trace: [ 110.810726][ T5098] [ 110.813673][ T5098] dump_stack_lvl+0xd9/0x1b0 [ 110.818312][ T5098] __might_resched+0x3c0/0x5e0 [ 110.823107][ T5098] ? __pfx___might_resched+0x10/0x10 [ 110.828415][ T5098] ? __pfx___lock_acquire+0x10/0x10 [ 110.833655][ T5098] console_lock+0x34/0x150 [ 110.838121][ T5098] do_con_write+0x149/0x7f50 [ 110.842757][ T5098] ? __might_fault+0x13b/0x190 [ 110.847576][ T5098] ? __pfx___lock_acquire+0x10/0x10 [ 110.852827][ T5098] ? __pfx___might_resched+0x10/0x10 [ 110.858329][ T5098] ? __pfx_do_con_write+0x10/0x10 [ 110.863401][ T5098] ? lock_acquire+0x1b1/0x540 [ 110.868124][ T5098] ? __pfx_lock_acquire+0x10/0x10 [ 110.873193][ T5098] ? do_raw_spin_lock+0x12d/0x2c0 [ 110.878257][ T5098] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 110.883672][ T5098] con_write+0x23/0xc0 [ 110.887794][ T5098] gsmld_write+0xd2/0x150 [ 110.892152][ T5098] ? __pfx_gsmld_write+0x10/0x10 [ 110.897124][ T5098] file_tty_write.constprop.0+0x518/0x9b0 [ 110.902976][ T5098] vfs_write+0x6db/0x1100 [ 110.907353][ T5098] ? __pfx_vfs_write+0x10/0x10 [ 110.912170][ T5098] ? find_held_lock+0x2d/0x110 [ 110.916975][ T5098] ? __pfx_lock_release+0x10/0x10 [ 110.922038][ T5098] ? __fget_light+0x176/0x210 [ 110.926762][ T5098] ksys_write+0x12f/0x260 [ 110.931136][ T5098] ? __pfx_ksys_write+0x10/0x10 [ 110.936021][ T5098] ? lockdep_hardirqs_on+0x7c/0x110 [ 110.941254][ T5098] ? _raw_spin_unlock_irq+0x2e/0x50 [ 110.946483][ T5098] ? ptrace_notify+0xf1/0x130 [ 110.951203][ T5098] do_syscall_64+0xd2/0x260 [ 110.955759][ T5098] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 110.961690][ T5098] RIP: 0033:0x7fa57f79dcb9 [ 110.966131][ T5098] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 110.985777][ T5098] RSP: 002b:00007ffea9381908 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 110.994223][ T5098] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa57f79dcb9 [ 111.002221][ T5098] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 111.010225][ T5098] RBP: 000000000001afa1 R08: 0000000000000006 R09: 0000000000000006 [pid 5098] write(3, NULL, 0) = 0 [pid 5098] exit_group(0) = ? [pid 5098] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5098, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5099 attached , child_tidptr=0x555555bb7650) = 5099 [pid 5099] set_robust_list(0x555555bb7660, 24) = 0 [pid 5099] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5099] setpgid(0, 0) = 0 [ 111.018308][ T5098] R10: 00007ffea9381616 R11: 0000000000000246 R12: 00007ffea938191c [ 111.026386][ T5098] R13: 431bde82d7b634db R14: 0000000000000001 R15: 0000000000000001 [ 111.034395][ T5098] [pid 5099] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5099] write(3, "1000", 4) = 4 [pid 5099] close(3) = 0 [pid 5099] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5099] ioctl(3, TIOCSETD, [21]) = 0 [pid 5099] write(3, NULL, 0) = 0 [pid 5099] exit_group(0) = ? [pid 5099] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5099, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5100 attached , child_tidptr=0x555555bb7650) = 5100 [pid 5100] set_robust_list(0x555555bb7660, 24) = 0 [pid 5100] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5100] setpgid(0, 0) = 0 [pid 5100] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5100] write(3, "1000", 4) = 4 [pid 5100] close(3) = 0 [pid 5100] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5100] ioctl(3, TIOCSETD, [21]) = 0 [pid 5100] write(3, NULL, 0) = 0 [pid 5100] exit_group(0) = ? [pid 5100] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5100, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5101 attached , child_tidptr=0x555555bb7650) = 5101 [pid 5101] set_robust_list(0x555555bb7660, 24) = 0 [pid 5101] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5101] setpgid(0, 0) = 0 [pid 5101] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5101] write(3, "1000", 4) = 4 [pid 5101] close(3) = 0 [pid 5101] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5101] ioctl(3, TIOCSETD, [21]) = 0 [pid 5101] write(3, NULL, 0) = 0 [pid 5101] exit_group(0) = ? [pid 5101] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5101, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5102 attached , child_tidptr=0x555555bb7650) = 5102 [pid 5102] set_robust_list(0x555555bb7660, 24) = 0 [pid 5102] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5102] setpgid(0, 0) = 0 [pid 5102] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5102] write(3, "1000", 4) = 4 [pid 5102] close(3) = 0 [pid 5102] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5102] ioctl(3, TIOCSETD, [21]) = 0 [pid 5102] write(3, NULL, 0) = 0 [pid 5102] exit_group(0) = ? [pid 5102] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5102, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5103 attached , child_tidptr=0x555555bb7650) = 5103 [pid 5103] set_robust_list(0x555555bb7660, 24) = 0 [pid 5103] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5103] setpgid(0, 0) = 0 [pid 5103] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5103] write(3, "1000", 4) = 4 [pid 5103] close(3) = 0 [pid 5103] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5103] ioctl(3, TIOCSETD, [21]) = 0 [pid 5103] write(3, NULL, 0) = 0 [pid 5103] exit_group(0) = ? [pid 5103] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5103, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555bb7650) = 5104 ./strace-static-x86_64: Process 5104 attached [pid 5104] set_robust_list(0x555555bb7660, 24) = 0 [pid 5104] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5104] setpgid(0, 0) = 0 [pid 5104] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5104] write(3, "1000", 4) = 4 [pid 5104] close(3) = 0 [pid 5104] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5104] ioctl(3, TIOCSETD, [21]) = 0 [pid 5104] write(3, NULL, 0) = 0 [pid 5104] exit_group(0) = ? [pid 5104] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5104, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5105 attached , child_tidptr=0x555555bb7650) = 5105 [pid 5105] set_robust_list(0x555555bb7660, 24) = 0 [pid 5105] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5105] setpgid(0, 0) = 0 [pid 5105] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5105] write(3, "1000", 4) = 4 [pid 5105] close(3) = 0 [pid 5105] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5105] ioctl(3, TIOCSETD, [21]) = 0 [pid 5105] write(3, NULL, 0) = 0 [pid 5105] exit_group(0) = ? [pid 5105] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5105, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5106 attached , child_tidptr=0x555555bb7650) = 5106 [pid 5106] set_robust_list(0x555555bb7660, 24) = 0 [pid 5106] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5106] setpgid(0, 0) = 0 [pid 5106] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5106] write(3, "1000", 4) = 4 [pid 5106] close(3) = 0 [pid 5106] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5106] ioctl(3, TIOCSETD, [21]) = 0 [ 111.729558][ T5106] BUG: sleeping function called from invalid context at kernel/printk/printk.c:2634 [ 111.738990][ T5106] in_atomic(): 1, irqs_disabled(): 1, non_block: 0, pid: 5106, name: syz-executor299 [ 111.748470][ T5106] preempt_count: 1, expected: 0 [ 111.753917][ T5106] RCU nest depth: 0, expected: 0 [ 111.758888][ T5106] 3 locks held by syz-executor299/5106: [ 111.764461][ T5106] #0: ffff8880209ea0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 111.774248][ T5106] #1: ffff8880209ea130 (&tty->atomic_write_lock){+.+.}-{3:3}, at: file_tty_write.constprop.0+0x293/0x9b0 [ 111.785711][ T5106] #2: ffff888026ed43e0 (&gsm->tx_lock){....}-{2:2}, at: gsmld_write+0x62/0x150 [ 111.794805][ T5106] irq event stamp: 1058 [ 111.798961][ T5106] hardirqs last enabled at (1057): [] _raw_spin_unlock_irq+0x23/0x50 [ 111.808714][ T5106] hardirqs last disabled at (1058): [] _raw_spin_lock_irqsave+0x52/0x60 [ 111.818645][ T5106] softirqs last enabled at (918): [] __do_softirq+0x596/0x8de [ 111.829092][ T5106] softirqs last disabled at (911): [] irq_exit_rcu+0xb9/0x120 [ 111.838161][ T5106] Preemption disabled at: [ 111.838173][ T5106] [<0000000000000000>] 0x0 [ 111.846933][ T5106] CPU: 1 PID: 5106 Comm: syz-executor299 Tainted: G W 6.7.0-next-20240119-syzkaller #0 [ 111.857977][ T5106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 111.868054][ T5106] Call Trace: [ 111.871348][ T5106] [ 111.874291][ T5106] dump_stack_lvl+0xd9/0x1b0 [ 111.878917][ T5106] __might_resched+0x3c0/0x5e0 [ 111.884585][ T5106] ? __pfx___might_resched+0x10/0x10 [ 111.889891][ T5106] ? __pfx___lock_acquire+0x10/0x10 [ 111.895136][ T5106] console_lock+0x34/0x150 [ 111.899603][ T5106] do_con_write+0x149/0x7f50 [ 111.904244][ T5106] ? __might_fault+0x13b/0x190 [ 111.909044][ T5106] ? __pfx___lock_acquire+0x10/0x10 [ 111.914282][ T5106] ? __pfx___might_resched+0x10/0x10 [ 111.919595][ T5106] ? __pfx_do_con_write+0x10/0x10 [ 111.924655][ T5106] ? lock_acquire+0x1b1/0x540 [ 111.929378][ T5106] ? __pfx_lock_acquire+0x10/0x10 [ 111.934531][ T5106] ? do_raw_spin_lock+0x12d/0x2c0 [ 111.939583][ T5106] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 111.945077][ T5106] con_write+0x23/0xc0 [ 111.949188][ T5106] gsmld_write+0xd2/0x150 [ 111.953544][ T5106] ? __pfx_gsmld_write+0x10/0x10 [ 111.958516][ T5106] file_tty_write.constprop.0+0x518/0x9b0 [ 111.964283][ T5106] vfs_write+0x6db/0x1100 [ 111.968665][ T5106] ? __pfx_vfs_write+0x10/0x10 [ 111.973470][ T5106] ? find_held_lock+0x2d/0x110 [ 111.978534][ T5106] ? __pfx_lock_release+0x10/0x10 [ 111.983599][ T5106] ? __fget_light+0x176/0x210 [ 111.988323][ T5106] ksys_write+0x12f/0x260 [ 111.992697][ T5106] ? __pfx_ksys_write+0x10/0x10 [ 111.997603][ T5106] ? lockdep_hardirqs_on+0x7c/0x110 [ 112.002860][ T5106] ? _raw_spin_unlock_irq+0x2e/0x50 [ 112.008102][ T5106] ? ptrace_notify+0xf1/0x130 [ 112.012828][ T5106] do_syscall_64+0xd2/0x260 [ 112.017384][ T5106] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 112.023321][ T5106] RIP: 0033:0x7fa57f79dcb9 [ 112.027761][ T5106] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 112.047395][ T5106] RSP: 002b:00007ffea9381908 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 112.055845][ T5106] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa57f79dcb9 [ 112.063840][ T5106] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 112.071833][ T5106] RBP: 000000000001b3c2 R08: 0000000000000006 R09: 0000000000000006 [pid 5106] write(3, NULL, 0) = 0 [pid 5106] exit_group(0) = ? [pid 5106] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5106, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555bb7650) = 5107 ./strace-static-x86_64: Process 5107 attached [pid 5107] set_robust_list(0x555555bb7660, 24) = 0 [pid 5107] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5107] setpgid(0, 0) = 0 [pid 5107] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5107] write(3, "1000", 4) = 4 [pid 5107] close(3) = 0 [pid 5107] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5107] ioctl(3, TIOCSETD, [21]) = 0 [ 112.079822][ T5106] R10: 00007ffea9381616 R11: 0000000000000246 R12: 00007ffea938191c [ 112.087816][ T5106] R13: 431bde82d7b634db R14: 0000000000000001 R15: 0000000000000001 [ 112.095825][ T5106] [pid 5107] write(3, NULL, 0) = 0 [pid 5107] exit_group(0) = ? [pid 5107] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5107, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5108 attached , child_tidptr=0x555555bb7650) = 5108 [pid 5108] set_robust_list(0x555555bb7660, 24) = 0 [pid 5108] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5108] setpgid(0, 0) = 0 [pid 5108] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5108] write(3, "1000", 4) = 4 [pid 5108] close(3) = 0 [pid 5108] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5108] ioctl(3, TIOCSETD, [21]) = 0 [pid 5108] write(3, NULL, 0) = 0 [pid 5108] exit_group(0) = ? [pid 5108] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5108, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555bb7650) = 5110 ./strace-static-x86_64: Process 5110 attached [pid 5110] set_robust_list(0x555555bb7660, 24) = 0 [pid 5110] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5110] setpgid(0, 0) = 0 [pid 5110] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5110] write(3, "1000", 4) = 4 [pid 5110] close(3) = 0 [pid 5110] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5110] ioctl(3, TIOCSETD, [21]) = 0 [pid 5110] write(3, NULL, 0) = 0 [pid 5110] exit_group(0) = ? [pid 5110] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5110, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5111 attached , child_tidptr=0x555555bb7650) = 5111 [pid 5111] set_robust_list(0x555555bb7660, 24) = 0 [pid 5111] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5111] setpgid(0, 0) = 0 [pid 5111] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5111] write(3, "1000", 4) = 4 [pid 5111] close(3) = 0 [pid 5111] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5111] ioctl(3, TIOCSETD, [21]) = 0 [pid 5111] write(3, NULL, 0) = 0 [pid 5111] exit_group(0) = ? [pid 5111] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5111, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5112 attached , child_tidptr=0x555555bb7650) = 5112 [pid 5112] set_robust_list(0x555555bb7660, 24) = 0 [pid 5112] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5112] setpgid(0, 0) = 0 [pid 5112] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5112] write(3, "1000", 4) = 4 [pid 5112] close(3) = 0 [pid 5112] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5112] ioctl(3, TIOCSETD, [21]) = 0 [pid 5112] write(3, NULL, 0) = 0 [pid 5112] exit_group(0) = ? [pid 5112] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5112, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5113 attached , child_tidptr=0x555555bb7650) = 5113 [pid 5113] set_robust_list(0x555555bb7660, 24) = 0 [pid 5113] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5113] setpgid(0, 0) = 0 [pid 5113] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5113] write(3, "1000", 4) = 4 [pid 5113] close(3) = 0 [pid 5113] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5113] ioctl(3, TIOCSETD, [21]) = 0 [pid 5113] write(3, NULL, 0) = 0 [pid 5113] exit_group(0) = ? [pid 5113] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5113, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5114 attached , child_tidptr=0x555555bb7650) = 5114 [pid 5114] set_robust_list(0x555555bb7660, 24) = 0 [pid 5114] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5114] setpgid(0, 0) = 0 [pid 5114] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5114] write(3, "1000", 4) = 4 [pid 5114] close(3) = 0 [pid 5114] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5114] ioctl(3, TIOCSETD, [21]) = 0 [pid 5114] write(3, NULL, 0) = 0 [pid 5114] exit_group(0) = ? [pid 5114] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5114, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555bb7650) = 5115 ./strace-static-x86_64: Process 5115 attached [pid 5115] set_robust_list(0x555555bb7660, 24) = 0 [pid 5115] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5115] setpgid(0, 0) = 0 [pid 5115] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5115] write(3, "1000", 4) = 4 [pid 5115] close(3) = 0 [pid 5115] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5115] ioctl(3, TIOCSETD, [21]) = 0 [pid 5115] write(3, NULL, 0) = 0 [pid 5115] exit_group(0) = ? [pid 5115] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5115, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5116 attached , child_tidptr=0x555555bb7650) = 5116 [pid 5116] set_robust_list(0x555555bb7660, 24) = 0 [pid 5116] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5116] setpgid(0, 0) = 0 [pid 5116] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5116] write(3, "1000", 4) = 4 [pid 5116] close(3) = 0 [pid 5116] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5116] ioctl(3, TIOCSETD, [21]) = 0 [pid 5116] write(3, NULL, 0) = 0 [pid 5116] exit_group(0) = ? [pid 5116] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5116, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5117 attached , child_tidptr=0x555555bb7650) = 5117 [pid 5117] set_robust_list(0x555555bb7660, 24) = 0 [pid 5117] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5117] setpgid(0, 0) = 0 [pid 5117] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5117] write(3, "1000", 4) = 4 [pid 5117] close(3) = 0 [pid 5117] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5117] ioctl(3, TIOCSETD, [21]) = 0 [ 112.765829][ T5117] BUG: sleeping function called from invalid context at kernel/printk/printk.c:2634 [ 112.775263][ T5117] in_atomic(): 1, irqs_disabled(): 1, non_block: 0, pid: 5117, name: syz-executor299 [ 112.784754][ T5117] preempt_count: 1, expected: 0 [ 112.789634][ T5117] RCU nest depth: 0, expected: 0 [ 112.794590][ T5117] 3 locks held by syz-executor299/5117: [ 112.800187][ T5117] #0: ffff888027f9a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 112.809996][ T5117] #1: ffff888027f9a130 (&tty->atomic_write_lock){+.+.}-{3:3}, at: file_tty_write.constprop.0+0x293/0x9b0 [ 112.821433][ T5117] #2: ffff88801beb53e0 (&gsm->tx_lock){....}-{2:2}, at: gsmld_write+0x62/0x150 [ 112.830779][ T5117] irq event stamp: 1200 [ 112.834933][ T5117] hardirqs last enabled at (1199): [] _raw_spin_unlock_irq+0x23/0x50 [ 112.844693][ T5117] hardirqs last disabled at (1200): [] _raw_spin_lock_irqsave+0x52/0x60 [ 112.854603][ T5117] softirqs last enabled at (1172): [] __do_softirq+0x596/0x8de [ 112.863817][ T5117] softirqs last disabled at (1141): [] irq_exit_rcu+0xb9/0x120 [ 112.872949][ T5117] Preemption disabled at: [ 112.872958][ T5117] [<0000000000000000>] 0x0 [ 112.881701][ T5117] CPU: 1 PID: 5117 Comm: syz-executor299 Tainted: G W 6.7.0-next-20240119-syzkaller #0 [ 112.892750][ T5117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 112.902840][ T5117] Call Trace: [ 112.906138][ T5117] [ 112.909100][ T5117] dump_stack_lvl+0xd9/0x1b0 [ 112.913735][ T5117] __might_resched+0x3c0/0x5e0 [ 112.918528][ T5117] ? __pfx___might_resched+0x10/0x10 [ 112.923880][ T5117] ? __pfx___lock_acquire+0x10/0x10 [ 112.929377][ T5117] console_lock+0x34/0x150 [ 112.933828][ T5117] do_con_write+0x149/0x7f50 [ 112.938451][ T5117] ? __might_fault+0x13b/0x190 [ 112.943240][ T5117] ? __pfx___lock_acquire+0x10/0x10 [ 112.948464][ T5117] ? __pfx___might_resched+0x10/0x10 [ 112.953767][ T5117] ? __pfx_do_con_write+0x10/0x10 [ 112.958834][ T5117] ? lock_acquire+0x1b1/0x540 [ 112.963549][ T5117] ? __pfx_lock_acquire+0x10/0x10 [ 112.968633][ T5117] ? do_raw_spin_lock+0x12d/0x2c0 [ 112.973680][ T5117] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 112.979119][ T5117] con_write+0x23/0xc0 [ 112.983224][ T5117] gsmld_write+0xd2/0x150 [ 112.987579][ T5117] ? __pfx_gsmld_write+0x10/0x10 [ 112.992571][ T5117] file_tty_write.constprop.0+0x518/0x9b0 [ 112.998332][ T5117] vfs_write+0x6db/0x1100 [ 113.002708][ T5117] ? __pfx_vfs_write+0x10/0x10 [ 113.007510][ T5117] ? find_held_lock+0x2d/0x110 [ 113.012326][ T5117] ? __pfx_lock_release+0x10/0x10 [ 113.017381][ T5117] ? __fget_light+0x176/0x210 [ 113.022086][ T5117] ksys_write+0x12f/0x260 [ 113.026445][ T5117] ? __pfx_ksys_write+0x10/0x10 [ 113.031319][ T5117] ? lockdep_hardirqs_on+0x7c/0x110 [ 113.036543][ T5117] ? _raw_spin_unlock_irq+0x2e/0x50 [ 113.041759][ T5117] ? ptrace_notify+0xf1/0x130 [ 113.046482][ T5117] do_syscall_64+0xd2/0x260 [ 113.051040][ T5117] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 113.056967][ T5117] RIP: 0033:0x7fa57f79dcb9 [ 113.061407][ T5117] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 113.081053][ T5117] RSP: 002b:00007ffea9381908 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 113.089485][ T5117] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa57f79dcb9 [ 113.097486][ T5117] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 113.105464][ T5117] RBP: 000000000001b80b R08: 0000000000000006 R09: 0000000000000006 [pid 5117] write(3, NULL, 0) = 0 [pid 5117] exit_group(0) = ? [pid 5117] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5117, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5118 attached , child_tidptr=0x555555bb7650) = 5118 [pid 5118] set_robust_list(0x555555bb7660, 24) = 0 [pid 5118] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5118] setpgid(0, 0) = 0 [pid 5118] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5118] write(3, "1000", 4) = 4 [ 113.113457][ T5117] R10: 00007ffea9381616 R11: 0000000000000246 R12: 00007ffea938191c [ 113.121449][ T5117] R13: 431bde82d7b634db R14: 0000000000000001 R15: 0000000000000001 [ 113.129467][ T5117] [pid 5118] close(3) = 0 [pid 5118] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5118] ioctl(3, TIOCSETD, [21]) = 0 [pid 5118] write(3, NULL, 0) = 0 [pid 5118] exit_group(0) = ? [pid 5118] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5118, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5119 attached , child_tidptr=0x555555bb7650) = 5119 [pid 5119] set_robust_list(0x555555bb7660, 24) = 0 [pid 5119] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5119] setpgid(0, 0) = 0 [pid 5119] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5119] write(3, "1000", 4) = 4 [pid 5119] close(3) = 0 [pid 5119] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5119] ioctl(3, TIOCSETD, [21]) = 0 [pid 5119] write(3, NULL, 0) = 0 [pid 5119] exit_group(0) = ? [pid 5119] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5119, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5120 attached , child_tidptr=0x555555bb7650) = 5120 [pid 5120] set_robust_list(0x555555bb7660, 24) = 0 [pid 5120] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5120] setpgid(0, 0) = 0 [pid 5120] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5120] write(3, "1000", 4) = 4 [pid 5120] close(3) = 0 [pid 5120] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5120] ioctl(3, TIOCSETD, [21]) = 0 [pid 5120] write(3, NULL, 0) = 0 [pid 5120] exit_group(0) = ? [pid 5120] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5120, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5121 attached , child_tidptr=0x555555bb7650) = 5121 [pid 5121] set_robust_list(0x555555bb7660, 24) = 0 [pid 5121] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5121] setpgid(0, 0) = 0 [pid 5121] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5121] write(3, "1000", 4) = 4 [pid 5121] close(3) = 0 [pid 5121] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5121] ioctl(3, TIOCSETD, [21]) = 0 [pid 5121] write(3, NULL, 0) = 0 [pid 5121] exit_group(0) = ? [pid 5121] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5121, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5122 attached , child_tidptr=0x555555bb7650) = 5122 [pid 5122] set_robust_list(0x555555bb7660, 24) = 0 [pid 5122] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5122] setpgid(0, 0) = 0 [pid 5122] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5122] write(3, "1000", 4) = 4 [pid 5122] close(3) = 0 [pid 5122] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5122] ioctl(3, TIOCSETD, [21]) = 0 [pid 5122] write(3, NULL, 0) = 0 [pid 5122] exit_group(0) = ? [pid 5122] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5122, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5123 attached , child_tidptr=0x555555bb7650) = 5123 [pid 5123] set_robust_list(0x555555bb7660, 24) = 0 [pid 5123] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5123] setpgid(0, 0) = 0 [pid 5123] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5123] write(3, "1000", 4) = 4 [pid 5123] close(3) = 0 [pid 5123] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5123] ioctl(3, TIOCSETD, [21]) = 0 [pid 5123] write(3, NULL, 0) = 0 [pid 5123] exit_group(0) = ? [pid 5123] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5123, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5124 attached , child_tidptr=0x555555bb7650) = 5124 [pid 5124] set_robust_list(0x555555bb7660, 24) = 0 [pid 5124] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5124] setpgid(0, 0) = 0 [pid 5124] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5124] write(3, "1000", 4) = 4 [pid 5124] close(3) = 0 [pid 5124] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5124] ioctl(3, TIOCSETD, [21]) = 0 [pid 5124] write(3, NULL, 0) = 0 [pid 5124] exit_group(0) = ? [pid 5124] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5124, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5125 attached , child_tidptr=0x555555bb7650) = 5125 [pid 5125] set_robust_list(0x555555bb7660, 24) = 0 [pid 5125] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5125] setpgid(0, 0) = 0 [pid 5125] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5125] write(3, "1000", 4) = 4 [pid 5125] close(3) = 0 [pid 5125] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5125] ioctl(3, TIOCSETD, [21]) = 0 [pid 5125] write(3, NULL, 0) = 0 [pid 5125] exit_group(0) = ? [pid 5125] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5125, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5126 attached , child_tidptr=0x555555bb7650) = 5126 [pid 5126] set_robust_list(0x555555bb7660, 24) = 0 [pid 5126] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5126] setpgid(0, 0) = 0 [pid 5126] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5126] write(3, "1000", 4) = 4 [pid 5126] close(3) = 0 [pid 5126] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5126] ioctl(3, TIOCSETD, [21]) = 0 [ 113.839165][ T5126] BUG: sleeping function called from invalid context at kernel/printk/printk.c:2634 [ 113.848619][ T5126] in_atomic(): 1, irqs_disabled(): 1, non_block: 0, pid: 5126, name: syz-executor299 [ 113.858093][ T5126] preempt_count: 1, expected: 0 [ 113.862949][ T5126] RCU nest depth: 0, expected: 0 [ 113.867891][ T5126] 3 locks held by syz-executor299/5126: [ 113.873440][ T5126] #0: ffff8880288e70a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 113.883228][ T5126] #1: ffff8880288e7130 (&tty->atomic_write_lock){+.+.}-{3:3}, at: file_tty_write.constprop.0+0x293/0x9b0 [ 113.894583][ T5126] #2: ffff888025e123e0 (&gsm->tx_lock){....}-{2:2}, at: gsmld_write+0x62/0x150 [ 113.903689][ T5126] irq event stamp: 1082 [ 113.907878][ T5126] hardirqs last enabled at (1081): [] _raw_spin_unlock_irq+0x23/0x50 [ 113.917727][ T5126] hardirqs last disabled at (1082): [] _raw_spin_lock_irqsave+0x52/0x60 [ 113.927650][ T5126] softirqs last enabled at (86): [] __do_softirq+0x596/0x8de [ 113.936743][ T5126] softirqs last disabled at (47): [] irq_exit_rcu+0xb9/0x120 [ 113.945707][ T5126] Preemption disabled at: [ 113.945717][ T5126] [<0000000000000000>] 0x0 [ 113.954477][ T5126] CPU: 1 PID: 5126 Comm: syz-executor299 Tainted: G W 6.7.0-next-20240119-syzkaller #0 [ 113.965520][ T5126] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 113.975594][ T5126] Call Trace: [ 113.978895][ T5126] [ 113.981853][ T5126] dump_stack_lvl+0xd9/0x1b0 [ 113.986486][ T5126] __might_resched+0x3c0/0x5e0 [ 113.991281][ T5126] ? __pfx___might_resched+0x10/0x10 [ 113.996594][ T5126] ? __pfx___lock_acquire+0x10/0x10 [ 114.001837][ T5126] console_lock+0x34/0x150 [ 114.006301][ T5126] do_con_write+0x149/0x7f50 [ 114.010940][ T5126] ? __might_fault+0x13b/0x190 [ 114.015747][ T5126] ? __pfx___lock_acquire+0x10/0x10 [ 114.020986][ T5126] ? __pfx___might_resched+0x10/0x10 [ 114.026315][ T5126] ? __pfx_do_con_write+0x10/0x10 [ 114.031376][ T5126] ? lock_acquire+0x1b1/0x540 [ 114.036103][ T5126] ? __pfx_lock_acquire+0x10/0x10 [ 114.041169][ T5126] ? do_raw_spin_lock+0x12d/0x2c0 [ 114.046227][ T5126] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 114.051639][ T5126] con_write+0x23/0xc0 [ 114.055748][ T5126] gsmld_write+0xd2/0x150 [ 114.060109][ T5126] ? __pfx_gsmld_write+0x10/0x10 [ 114.065100][ T5126] file_tty_write.constprop.0+0x518/0x9b0 [ 114.070865][ T5126] vfs_write+0x6db/0x1100 [ 114.075272][ T5126] ? __pfx_vfs_write+0x10/0x10 [ 114.080087][ T5126] ? find_held_lock+0x2d/0x110 [ 114.084890][ T5126] ? __pfx_lock_release+0x10/0x10 [ 114.089954][ T5126] ? __fget_light+0x176/0x210 [ 114.094672][ T5126] ksys_write+0x12f/0x260 [ 114.099046][ T5126] ? __pfx_ksys_write+0x10/0x10 [ 114.103936][ T5126] ? lockdep_hardirqs_on+0x7c/0x110 [ 114.109260][ T5126] ? _raw_spin_unlock_irq+0x2e/0x50 [ 114.114494][ T5126] ? ptrace_notify+0xf1/0x130 [ 114.119214][ T5126] do_syscall_64+0xd2/0x260 [ 114.123765][ T5126] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 114.129707][ T5126] RIP: 0033:0x7fa57f79dcb9 [ 114.134146][ T5126] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 114.153783][ T5126] RSP: 002b:00007ffea9381908 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 114.162241][ T5126] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa57f79dcb9 [ 114.170270][ T5126] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 114.178263][ T5126] RBP: 000000000001bc0b R08: 0000000000000006 R09: 0000000000000006 [pid 5126] write(3, NULL, 0) = 0 [pid 5126] exit_group(0) = ? [pid 5126] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5126, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5127 attached , child_tidptr=0x555555bb7650) = 5127 [pid 5127] set_robust_list(0x555555bb7660, 24) = 0 [ 114.186276][ T5126] R10: 00007ffea9381616 R11: 0000000000000246 R12: 00007ffea938191c [ 114.194274][ T5126] R13: 431bde82d7b634db R14: 0000000000000001 R15: 0000000000000001 [ 114.202288][ T5126] [pid 5127] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5127] setpgid(0, 0) = 0 [pid 5127] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5127] write(3, "1000", 4) = 4 [pid 5127] close(3) = 0 [pid 5127] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5127] ioctl(3, TIOCSETD, [21]) = 0 [pid 5127] write(3, NULL, 0) = 0 [pid 5127] exit_group(0) = ? [pid 5127] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5127, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5128 attached , child_tidptr=0x555555bb7650) = 5128 [pid 5128] set_robust_list(0x555555bb7660, 24) = 0 [pid 5128] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5128] setpgid(0, 0) = 0 [pid 5128] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5128] write(3, "1000", 4) = 4 [pid 5128] close(3) = 0 [pid 5128] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5128] ioctl(3, TIOCSETD, [21]) = 0 [pid 5128] write(3, NULL, 0) = 0 [pid 5128] exit_group(0) = ? [pid 5128] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5128, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5129 attached , child_tidptr=0x555555bb7650) = 5129 [pid 5129] set_robust_list(0x555555bb7660, 24) = 0 [pid 5129] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5129] setpgid(0, 0) = 0 [pid 5129] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5129] write(3, "1000", 4) = 4 [pid 5129] close(3) = 0 [pid 5129] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5129] ioctl(3, TIOCSETD, [21]) = 0 [pid 5129] write(3, NULL, 0) = 0 [pid 5129] exit_group(0) = ? [pid 5129] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5129, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5130 attached , child_tidptr=0x555555bb7650) = 5130 [pid 5130] set_robust_list(0x555555bb7660, 24) = 0 [pid 5130] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5130] setpgid(0, 0) = 0 [pid 5130] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5130] write(3, "1000", 4) = 4 [pid 5130] close(3) = 0 [pid 5130] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5130] ioctl(3, TIOCSETD, [21]) = 0 [pid 5130] write(3, NULL, 0) = 0 [pid 5130] exit_group(0) = ? [pid 5130] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5130, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5131 attached , child_tidptr=0x555555bb7650) = 5131 [pid 5131] set_robust_list(0x555555bb7660, 24) = 0 [pid 5131] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5131] setpgid(0, 0) = 0 [pid 5131] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5131] write(3, "1000", 4) = 4 [pid 5131] close(3) = 0 [pid 5131] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5131] ioctl(3, TIOCSETD, [21]) = 0 [pid 5131] write(3, NULL, 0) = 0 [pid 5131] exit_group(0) = ? [pid 5131] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5131, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5132 attached , child_tidptr=0x555555bb7650) = 5132 [pid 5132] set_robust_list(0x555555bb7660, 24) = 0 [pid 5132] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5132] setpgid(0, 0) = 0 [pid 5132] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5132] write(3, "1000", 4) = 4 [pid 5132] close(3) = 0 [pid 5132] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5132] ioctl(3, TIOCSETD, [21]) = 0 [pid 5132] write(3, NULL, 0) = 0 [pid 5132] exit_group(0) = ? [pid 5132] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5132, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5133 attached , child_tidptr=0x555555bb7650) = 5133 [pid 5133] set_robust_list(0x555555bb7660, 24) = 0 [pid 5133] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5133] setpgid(0, 0) = 0 [pid 5133] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5133] write(3, "1000", 4) = 4 [pid 5133] close(3) = 0 [pid 5133] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5133] ioctl(3, TIOCSETD, [21]) = 0 [pid 5133] write(3, NULL, 0) = 0 [pid 5133] exit_group(0) = ? [pid 5133] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5133, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555bb7650) = 5134 ./strace-static-x86_64: Process 5134 attached [pid 5134] set_robust_list(0x555555bb7660, 24) = 0 [pid 5134] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5134] setpgid(0, 0) = 0 [pid 5134] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5134] write(3, "1000", 4) = 4 [pid 5134] close(3) = 0 [pid 5134] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5134] ioctl(3, TIOCSETD, [21]) = 0 [pid 5134] write(3, NULL, 0) = 0 [pid 5134] exit_group(0) = ? [pid 5134] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5134, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5135 attached , child_tidptr=0x555555bb7650) = 5135 [pid 5135] set_robust_list(0x555555bb7660, 24) = 0 [pid 5135] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5135] setpgid(0, 0) = 0 [pid 5135] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5135] write(3, "1000", 4) = 4 [pid 5135] close(3) = 0 [pid 5135] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5135] ioctl(3, TIOCSETD, [21]) = 0 [pid 5135] write(3, NULL, 0) = 0 [pid 5135] exit_group(0) = ? [pid 5135] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5135, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5136 attached , child_tidptr=0x555555bb7650) = 5136 [pid 5136] set_robust_list(0x555555bb7660, 24) = 0 [pid 5136] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5136] setpgid(0, 0) = 0 [pid 5136] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5136] write(3, "1000", 4) = 4 [pid 5136] close(3) = 0 [pid 5136] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5136] ioctl(3, TIOCSETD, [21]) = 0 [ 114.870885][ T5136] BUG: sleeping function called from invalid context at kernel/printk/printk.c:2634 [ 114.880324][ T5136] in_atomic(): 1, irqs_disabled(): 1, non_block: 0, pid: 5136, name: syz-executor299 [ 114.889802][ T5136] preempt_count: 1, expected: 0 [ 114.894666][ T5136] RCU nest depth: 0, expected: 0 [ 114.899612][ T5136] 3 locks held by syz-executor299/5136: [ 114.905192][ T5136] #0: ffff8880256e60a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 114.914982][ T5136] #1: ffff8880256e6130 (&tty->atomic_write_lock){+.+.}-{3:3}, at: file_tty_write.constprop.0+0x293/0x9b0 [ 114.926339][ T5136] #2: ffff888029e153e0 (&gsm->tx_lock){....}-{2:2}, at: gsmld_write+0x62/0x150 [ 114.935444][ T5136] irq event stamp: 1098 [ 114.939608][ T5136] hardirqs last enabled at (1097): [] _raw_spin_unlock_irq+0x23/0x50 [ 114.949357][ T5136] hardirqs last disabled at (1098): [] _raw_spin_lock_irqsave+0x52/0x60 [ 114.959394][ T5136] softirqs last enabled at (746): [] __do_softirq+0x596/0x8de [ 114.968535][ T5136] softirqs last disabled at (735): [] irq_exit_rcu+0xb9/0x120 [ 114.977688][ T5136] Preemption disabled at: [ 114.977702][ T5136] [<0000000000000000>] 0x0 [ 114.986490][ T5136] CPU: 1 PID: 5136 Comm: syz-executor299 Tainted: G W 6.7.0-next-20240119-syzkaller #0 [ 114.997529][ T5136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 115.007704][ T5136] Call Trace: [ 115.011012][ T5136] [ 115.013955][ T5136] dump_stack_lvl+0xd9/0x1b0 [ 115.018584][ T5136] __might_resched+0x3c0/0x5e0 [ 115.023374][ T5136] ? __pfx___might_resched+0x10/0x10 [ 115.028677][ T5136] ? __pfx___lock_acquire+0x10/0x10 [ 115.033919][ T5136] console_lock+0x34/0x150 [ 115.038376][ T5136] do_con_write+0x149/0x7f50 [ 115.043006][ T5136] ? __might_fault+0x13b/0x190 [ 115.047909][ T5136] ? __pfx___lock_acquire+0x10/0x10 [ 115.053143][ T5136] ? __pfx___might_resched+0x10/0x10 [ 115.058454][ T5136] ? __pfx_do_con_write+0x10/0x10 [ 115.063535][ T5136] ? lock_acquire+0x1b1/0x540 [ 115.068248][ T5136] ? __pfx_lock_acquire+0x10/0x10 [ 115.073736][ T5136] ? do_raw_spin_lock+0x12d/0x2c0 [ 115.078781][ T5136] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 115.084179][ T5136] con_write+0x23/0xc0 [ 115.088276][ T5136] gsmld_write+0xd2/0x150 [ 115.092630][ T5136] ? __pfx_gsmld_write+0x10/0x10 [ 115.097594][ T5136] file_tty_write.constprop.0+0x518/0x9b0 [ 115.103358][ T5136] vfs_write+0x6db/0x1100 [ 115.107742][ T5136] ? __pfx_vfs_write+0x10/0x10 [ 115.112572][ T5136] ? find_held_lock+0x2d/0x110 [ 115.117360][ T5136] ? __pfx_lock_release+0x10/0x10 [ 115.122412][ T5136] ? __fget_light+0x176/0x210 [ 115.127128][ T5136] ksys_write+0x12f/0x260 [ 115.131504][ T5136] ? __pfx_ksys_write+0x10/0x10 [ 115.136383][ T5136] ? lockdep_hardirqs_on+0x7c/0x110 [ 115.141632][ T5136] ? _raw_spin_unlock_irq+0x2e/0x50 [ 115.146857][ T5136] ? ptrace_notify+0xf1/0x130 [ 115.151567][ T5136] do_syscall_64+0xd2/0x260 [ 115.156109][ T5136] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 115.162029][ T5136] RIP: 0033:0x7fa57f79dcb9 [ 115.166463][ T5136] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 115.186102][ T5136] RSP: 002b:00007ffea9381908 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 115.194561][ T5136] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa57f79dcb9 [ 115.202552][ T5136] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 115.210565][ T5136] RBP: 000000000001c04e R08: 0000000000000006 R09: 0000000000000006 [pid 5136] write(3, NULL, 0) = 0 [pid 5136] exit_group(0) = ? [pid 5136] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5136, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5137 attached , child_tidptr=0x555555bb7650) = 5137 [pid 5137] set_robust_list(0x555555bb7660, 24) = 0 [pid 5137] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5137] setpgid(0, 0) = 0 [pid 5137] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [ 115.218566][ T5136] R10: 00007ffea9381616 R11: 0000000000000246 R12: 00007ffea938191c [ 115.226554][ T5136] R13: 431bde82d7b634db R14: 0000000000000001 R15: 0000000000000001 [ 115.234557][ T5136] [pid 5137] write(3, "1000", 4) = 4 [pid 5137] close(3) = 0 [pid 5137] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5137] ioctl(3, TIOCSETD, [21]) = 0 [pid 5137] write(3, NULL, 0) = 0 [pid 5137] exit_group(0) = ? [pid 5137] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5137, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5138 attached , child_tidptr=0x555555bb7650) = 5138 [pid 5138] set_robust_list(0x555555bb7660, 24) = 0 [pid 5138] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5138] setpgid(0, 0) = 0 [pid 5138] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5138] write(3, "1000", 4) = 4 [pid 5138] close(3) = 0 [pid 5138] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5138] ioctl(3, TIOCSETD, [21]) = 0 [pid 5138] write(3, NULL, 0) = 0 [pid 5138] exit_group(0) = ? [pid 5138] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5138, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5139 attached , child_tidptr=0x555555bb7650) = 5139 [pid 5139] set_robust_list(0x555555bb7660, 24) = 0 [pid 5139] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5139] setpgid(0, 0) = 0 [pid 5139] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5139] write(3, "1000", 4) = 4 [pid 5139] close(3) = 0 [pid 5139] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5139] ioctl(3, TIOCSETD, [21]) = 0 [pid 5139] write(3, NULL, 0) = 0 [pid 5139] exit_group(0) = ? [pid 5139] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5139, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5141 attached , child_tidptr=0x555555bb7650) = 5141 [pid 5141] set_robust_list(0x555555bb7660, 24) = 0 [pid 5141] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5141] setpgid(0, 0) = 0 [pid 5141] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5141] write(3, "1000", 4) = 4 [pid 5141] close(3) = 0 [pid 5141] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5141] ioctl(3, TIOCSETD, [21]) = 0 [pid 5141] write(3, NULL, 0) = 0 [pid 5141] exit_group(0) = ? [pid 5141] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5141, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5142 attached , child_tidptr=0x555555bb7650) = 5142 [pid 5142] set_robust_list(0x555555bb7660, 24) = 0 [pid 5142] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5142] setpgid(0, 0) = 0 [pid 5142] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5142] write(3, "1000", 4) = 4 [pid 5142] close(3) = 0 [pid 5142] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5142] ioctl(3, TIOCSETD, [21]) = 0 [pid 5142] write(3, NULL, 0) = 0 [pid 5142] exit_group(0) = ? [pid 5142] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5142, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555bb7650) = 5143 ./strace-static-x86_64: Process 5143 attached [pid 5143] set_robust_list(0x555555bb7660, 24) = 0 [pid 5143] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5143] setpgid(0, 0) = 0 [pid 5143] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5143] write(3, "1000", 4) = 4 [pid 5143] close(3) = 0 [pid 5143] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5143] ioctl(3, TIOCSETD, [21]) = 0 [pid 5143] write(3, NULL, 0) = 0 [pid 5143] exit_group(0) = ? [pid 5143] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5143, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5144 attached , child_tidptr=0x555555bb7650) = 5144 [pid 5144] set_robust_list(0x555555bb7660, 24) = 0 [pid 5144] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5144] setpgid(0, 0) = 0 [pid 5144] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5144] write(3, "1000", 4) = 4 [pid 5144] close(3) = 0 [pid 5144] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5144] ioctl(3, TIOCSETD, [21]) = 0 [pid 5144] write(3, NULL, 0) = 0 [pid 5144] exit_group(0) = ? [pid 5144] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5144, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5145 attached , child_tidptr=0x555555bb7650) = 5145 [pid 5145] set_robust_list(0x555555bb7660, 24) = 0 [pid 5145] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5145] setpgid(0, 0) = 0 [pid 5145] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5145] write(3, "1000", 4) = 4 [pid 5145] close(3) = 0 [pid 5145] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5145] ioctl(3, TIOCSETD, [21]) = 0 [pid 5145] write(3, NULL, 0) = 0 [pid 5145] exit_group(0) = ? [pid 5145] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5145, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5146 attached , child_tidptr=0x555555bb7650) = 5146 [pid 5146] set_robust_list(0x555555bb7660, 24) = 0 [pid 5146] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5146] setpgid(0, 0) = 0 [pid 5146] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5146] write(3, "1000", 4) = 4 [pid 5146] close(3) = 0 [pid 5146] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5146] ioctl(3, TIOCSETD, [21]) = 0 [ 115.942049][ T5146] BUG: sleeping function called from invalid context at kernel/printk/printk.c:2634 [ 115.951484][ T5146] in_atomic(): 1, irqs_disabled(): 1, non_block: 0, pid: 5146, name: syz-executor299 [ 115.960957][ T5146] preempt_count: 1, expected: 0 [ 115.965836][ T5146] RCU nest depth: 0, expected: 0 [ 115.970794][ T5146] 3 locks held by syz-executor299/5146: [ 115.976349][ T5146] #0: ffff88802a69a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 115.986142][ T5146] #1: ffff88802a69a130 (&tty->atomic_write_lock){+.+.}-{3:3}, at: file_tty_write.constprop.0+0x293/0x9b0 [ 115.997507][ T5146] #2: ffff88802a6f63e0 (&gsm->tx_lock){....}-{2:2}, at: gsmld_write+0x62/0x150 [ 116.006605][ T5146] irq event stamp: 1018 [ 116.010771][ T5146] hardirqs last enabled at (1017): [] _raw_spin_unlock_irq+0x23/0x50 [ 116.020525][ T5146] hardirqs last disabled at (1018): [] _raw_spin_lock_irqsave+0x52/0x60 [ 116.030539][ T5146] softirqs last enabled at (0): [] copy_process+0x2450/0x9780 [ 116.039691][ T5146] softirqs last disabled at (0): [<0000000000000000>] 0x0 [ 116.046835][ T5146] Preemption disabled at: [ 116.046846][ T5146] [<0000000000000000>] 0x0 [ 116.055603][ T5146] CPU: 1 PID: 5146 Comm: syz-executor299 Tainted: G W 6.7.0-next-20240119-syzkaller #0 [ 116.066653][ T5146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 116.076727][ T5146] Call Trace: [ 116.080032][ T5146] [ 116.082981][ T5146] dump_stack_lvl+0xd9/0x1b0 [ 116.087620][ T5146] __might_resched+0x3c0/0x5e0 [ 116.092418][ T5146] ? __pfx___might_resched+0x10/0x10 [ 116.097731][ T5146] ? __pfx___lock_acquire+0x10/0x10 [ 116.103079][ T5146] console_lock+0x34/0x150 [ 116.107564][ T5146] do_con_write+0x149/0x7f50 [ 116.112219][ T5146] ? __might_fault+0x13b/0x190 [ 116.117116][ T5146] ? __pfx___lock_acquire+0x10/0x10 [ 116.122359][ T5146] ? __pfx___might_resched+0x10/0x10 [ 116.127766][ T5146] ? __pfx_do_con_write+0x10/0x10 [ 116.132845][ T5146] ? lock_acquire+0x1b1/0x540 [ 116.137572][ T5146] ? __pfx_lock_acquire+0x10/0x10 [ 116.142638][ T5146] ? do_raw_spin_lock+0x12d/0x2c0 [ 116.147696][ T5146] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 116.153109][ T5146] con_write+0x23/0xc0 [ 116.157229][ T5146] gsmld_write+0xd2/0x150 [ 116.161592][ T5146] ? __pfx_gsmld_write+0x10/0x10 [ 116.166563][ T5146] file_tty_write.constprop.0+0x518/0x9b0 [ 116.172327][ T5146] vfs_write+0x6db/0x1100 [ 116.176712][ T5146] ? __pfx_vfs_write+0x10/0x10 [ 116.181521][ T5146] ? find_held_lock+0x2d/0x110 [ 116.186322][ T5146] ? __pfx_lock_release+0x10/0x10 [ 116.191388][ T5146] ? __fget_light+0x176/0x210 [ 116.196108][ T5146] ksys_write+0x12f/0x260 [ 116.200481][ T5146] ? __pfx_ksys_write+0x10/0x10 [ 116.205372][ T5146] ? lockdep_hardirqs_on+0x7c/0x110 [ 116.210694][ T5146] ? _raw_spin_unlock_irq+0x2e/0x50 [ 116.215925][ T5146] ? ptrace_notify+0xf1/0x130 [ 116.220642][ T5146] do_syscall_64+0xd2/0x260 [ 116.225193][ T5146] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 116.231126][ T5146] RIP: 0033:0x7fa57f79dcb9 [ 116.235565][ T5146] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 116.255203][ T5146] RSP: 002b:00007ffea9381908 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 116.263646][ T5146] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa57f79dcb9 [ 116.271643][ T5146] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 116.279729][ T5146] RBP: 000000000001c44a R08: 0000000000000006 R09: 0000000000000006 [pid 5146] write(3, NULL, 0) = 0 [pid 5146] exit_group(0) = ? [pid 5146] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5146, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5147 attached [pid 5147] set_robust_list(0x555555bb7660, 24) = 0 [ 116.287726][ T5146] R10: 00007ffea9381616 R11: 0000000000000246 R12: 00007ffea938191c [ 116.295818][ T5146] R13: 431bde82d7b634db R14: 0000000000000001 R15: 0000000000000001 [ 116.303834][ T5146] [pid 5147] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5069] <... clone resumed>, child_tidptr=0x555555bb7650) = 5147 [pid 5147] <... prctl resumed>) = 0 [pid 5147] setpgid(0, 0) = 0 [pid 5147] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5147] write(3, "1000", 4) = 4 [pid 5147] close(3) = 0 [pid 5147] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5147] ioctl(3, TIOCSETD, [21]) = 0 [pid 5147] write(3, NULL, 0) = 0 [pid 5147] exit_group(0) = ? [pid 5147] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5147, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5148 attached , child_tidptr=0x555555bb7650) = 5148 [pid 5148] set_robust_list(0x555555bb7660, 24) = 0 [pid 5148] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5148] setpgid(0, 0) = 0 [pid 5148] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5148] write(3, "1000", 4) = 4 [pid 5148] close(3) = 0 [pid 5148] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5148] ioctl(3, TIOCSETD, [21]) = 0 [pid 5148] write(3, NULL, 0) = 0 [pid 5148] exit_group(0) = ? [pid 5148] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5148, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5149 attached , child_tidptr=0x555555bb7650) = 5149 [pid 5149] set_robust_list(0x555555bb7660, 24) = 0 [pid 5149] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5149] setpgid(0, 0) = 0 [pid 5149] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5149] write(3, "1000", 4) = 4 [pid 5149] close(3) = 0 [pid 5149] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5149] ioctl(3, TIOCSETD, [21]) = 0 [pid 5149] write(3, NULL, 0) = 0 [pid 5149] exit_group(0) = ? [pid 5149] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5149, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5150 attached [pid 5150] set_robust_list(0x555555bb7660, 24) = 0 [pid 5069] <... clone resumed>, child_tidptr=0x555555bb7650) = 5150 [pid 5150] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5150] setpgid(0, 0) = 0 [pid 5150] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5150] write(3, "1000", 4) = 4 [pid 5150] close(3) = 0 [pid 5150] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5150] ioctl(3, TIOCSETD, [21]) = 0 [pid 5150] write(3, NULL, 0) = 0 [pid 5150] exit_group(0) = ? [pid 5150] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5150, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5151 attached , child_tidptr=0x555555bb7650) = 5151 [pid 5151] set_robust_list(0x555555bb7660, 24) = 0 [pid 5151] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5151] setpgid(0, 0) = 0 [pid 5151] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5151] write(3, "1000", 4) = 4 [pid 5151] close(3) = 0 [pid 5151] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5151] ioctl(3, TIOCSETD, [21]) = 0 [pid 5151] write(3, NULL, 0) = 0 [pid 5151] exit_group(0) = ? [pid 5151] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5151, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555bb7650) = 5152 ./strace-static-x86_64: Process 5152 attached [pid 5152] set_robust_list(0x555555bb7660, 24) = 0 [pid 5152] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5152] setpgid(0, 0) = 0 [pid 5152] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5152] write(3, "1000", 4) = 4 [pid 5152] close(3) = 0 [pid 5152] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5152] ioctl(3, TIOCSETD, [21]) = 0 [pid 5152] write(3, NULL, 0) = 0 [pid 5152] exit_group(0) = ? [pid 5152] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5152, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5153 attached [pid 5153] set_robust_list(0x555555bb7660, 24 [pid 5069] <... clone resumed>, child_tidptr=0x555555bb7650) = 5153 [pid 5153] <... set_robust_list resumed>) = 0 [pid 5153] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5153] setpgid(0, 0) = 0 [pid 5153] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5153] write(3, "1000", 4) = 4 [pid 5153] close(3) = 0 [pid 5153] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5153] ioctl(3, TIOCSETD, [21]) = 0 [pid 5153] write(3, NULL, 0) = 0 [pid 5153] exit_group(0) = ? [pid 5153] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5153, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5154 attached , child_tidptr=0x555555bb7650) = 5154 [pid 5154] set_robust_list(0x555555bb7660, 24) = 0 [pid 5154] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5154] setpgid(0, 0) = 0 [pid 5154] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5154] write(3, "1000", 4) = 4 [pid 5154] close(3) = 0 [pid 5154] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5154] ioctl(3, TIOCSETD, [21]) = 0 [pid 5154] write(3, NULL, 0) = 0 [pid 5154] exit_group(0) = ? [pid 5154] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5154, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5155 attached , child_tidptr=0x555555bb7650) = 5155 [pid 5155] set_robust_list(0x555555bb7660, 24) = 0 [pid 5155] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5155] setpgid(0, 0) = 0 [pid 5155] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5155] write(3, "1000", 4) = 4 [pid 5155] close(3) = 0 [pid 5155] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5155] ioctl(3, TIOCSETD, [21]) = 0 [ 116.975784][ T5155] BUG: sleeping function called from invalid context at kernel/printk/printk.c:2634 [ 116.985246][ T5155] in_atomic(): 1, irqs_disabled(): 1, non_block: 0, pid: 5155, name: syz-executor299 [ 116.994726][ T5155] preempt_count: 1, expected: 0 [ 116.999683][ T5155] RCU nest depth: 0, expected: 0 [ 117.004728][ T5155] 3 locks held by syz-executor299/5155: [ 117.010301][ T5155] #0: ffff8880307140a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 117.020088][ T5155] #1: ffff888030714130 (&tty->atomic_write_lock){+.+.}-{3:3}, at: file_tty_write.constprop.0+0x293/0x9b0 [ 117.031441][ T5155] #2: ffff88802b7de3e0 (&gsm->tx_lock){....}-{2:2}, at: gsmld_write+0x62/0x150 [ 117.040546][ T5155] irq event stamp: 1550 [ 117.044720][ T5155] hardirqs last enabled at (1549): [] _raw_spin_unlock_irq+0x23/0x50 [ 117.054635][ T5155] hardirqs last disabled at (1550): [] _raw_spin_lock_irqsave+0x52/0x60 [ 117.064550][ T5155] softirqs last enabled at (1486): [] __do_softirq+0x596/0x8de [ 117.073773][ T5155] softirqs last disabled at (1455): [] irq_exit_rcu+0xb9/0x120 [ 117.082903][ T5155] Preemption disabled at: [ 117.082913][ T5155] [<0000000000000000>] 0x0 [ 117.091661][ T5155] CPU: 1 PID: 5155 Comm: syz-executor299 Tainted: G W 6.7.0-next-20240119-syzkaller #0 [ 117.102692][ T5155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 117.112882][ T5155] Call Trace: [ 117.116176][ T5155] [ 117.119114][ T5155] dump_stack_lvl+0xd9/0x1b0 [ 117.123728][ T5155] __might_resched+0x3c0/0x5e0 [ 117.128514][ T5155] ? __pfx___might_resched+0x10/0x10 [ 117.133816][ T5155] ? __pfx___lock_acquire+0x10/0x10 [ 117.139069][ T5155] console_lock+0x34/0x150 [ 117.143516][ T5155] do_con_write+0x149/0x7f50 [ 117.148143][ T5155] ? __might_fault+0x13b/0x190 [ 117.152956][ T5155] ? __pfx___lock_acquire+0x10/0x10 [ 117.158212][ T5155] ? __pfx___might_resched+0x10/0x10 [ 117.163516][ T5155] ? __pfx_do_con_write+0x10/0x10 [ 117.168569][ T5155] ? lock_acquire+0x1b1/0x540 [ 117.173364][ T5155] ? __pfx_lock_acquire+0x10/0x10 [ 117.178418][ T5155] ? do_raw_spin_lock+0x12d/0x2c0 [ 117.183458][ T5155] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 117.188860][ T5155] con_write+0x23/0xc0 [ 117.192958][ T5155] gsmld_write+0xd2/0x150 [ 117.197306][ T5155] ? __pfx_gsmld_write+0x10/0x10 [ 117.202275][ T5155] file_tty_write.constprop.0+0x518/0x9b0 [ 117.208028][ T5155] vfs_write+0x6db/0x1100 [ 117.212396][ T5155] ? __pfx_vfs_write+0x10/0x10 [ 117.217191][ T5155] ? find_held_lock+0x2d/0x110 [ 117.221978][ T5155] ? __pfx_lock_release+0x10/0x10 [ 117.227030][ T5155] ? __fget_light+0x176/0x210 [ 117.231757][ T5155] ksys_write+0x12f/0x260 [ 117.236115][ T5155] ? __pfx_ksys_write+0x10/0x10 [ 117.241011][ T5155] ? lockdep_hardirqs_on+0x7c/0x110 [ 117.246257][ T5155] ? _raw_spin_unlock_irq+0x2e/0x50 [ 117.251488][ T5155] ? ptrace_notify+0xf1/0x130 [ 117.256292][ T5155] do_syscall_64+0xd2/0x260 [ 117.260881][ T5155] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 117.266800][ T5155] RIP: 0033:0x7fa57f79dcb9 [ 117.271256][ T5155] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 117.290877][ T5155] RSP: 002b:00007ffea9381908 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 117.299329][ T5155] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa57f79dcb9 [ 117.307325][ T5155] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 117.315330][ T5155] RBP: 000000000001c854 R08: 0000000000000006 R09: 0000000000000006 [pid 5155] write(3, NULL, 0) = 0 [pid 5155] exit_group(0) = ? [pid 5155] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5155, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 [ 117.323666][ T5155] R10: 00007ffea9381616 R11: 0000000000000246 R12: 00007ffea938191c [ 117.331650][ T5155] R13: 431bde82d7b634db R14: 0000000000000001 R15: 0000000000000001 [ 117.339650][ T5155] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5156 attached , child_tidptr=0x555555bb7650) = 5156 [pid 5156] set_robust_list(0x555555bb7660, 24) = 0 [pid 5156] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5156] setpgid(0, 0) = 0 [pid 5156] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5156] write(3, "1000", 4) = 4 [pid 5156] close(3) = 0 [pid 5156] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5156] ioctl(3, TIOCSETD, [21]) = 0 [pid 5156] write(3, NULL, 0) = 0 [pid 5156] exit_group(0) = ? [pid 5156] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5156, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5157 attached , child_tidptr=0x555555bb7650) = 5157 [pid 5157] set_robust_list(0x555555bb7660, 24) = 0 [pid 5157] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5157] setpgid(0, 0) = 0 [pid 5157] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5157] write(3, "1000", 4) = 4 [pid 5157] close(3) = 0 [pid 5157] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5157] ioctl(3, TIOCSETD, [21]) = 0 [pid 5157] write(3, NULL, 0) = 0 [pid 5157] exit_group(0) = ? [pid 5157] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5157, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555bb7650) = 5158 ./strace-static-x86_64: Process 5158 attached [pid 5158] set_robust_list(0x555555bb7660, 24) = 0 [pid 5158] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5158] setpgid(0, 0) = 0 [pid 5158] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5158] write(3, "1000", 4) = 4 [pid 5158] close(3) = 0 [pid 5158] openat(AT_FDCWD, "/dev/char/4:21", O_RDWR) = 3 [pid 5158] ioctl(3, TIOCSETD, [21]) = 0 [pid 5158] write(3, NULL, 0) = 0 [pid 5158] exit_group(0) = ? [pid 5158] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5158, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5159 attached , child_tidptr=0x555555bb7650) = 5159 [pid 5159] set_robust_list(0x555555bb7660, 24) = 0 [pid 5159] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0