DUID 00:04:fb:87:82:62:74:5a:87:37:86:23:e7:72:30:e3:bc:00 forked to background, child pid 3181 [ 29.283114][ T3182] 8021q: adding VLAN 0 to HW filter on device bond0 [ 29.311219][ T3182] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller Warning: Permanently added '10.128.1.37' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 50.210620][ T3599] [ 50.212963][ T3599] ============================================ [ 50.219099][ T3599] WARNING: possible recursive locking detected [ 50.225226][ T3599] 5.16.0-rc7-syzkaller #0 Not tainted [ 50.230596][ T3599] -------------------------------------------- [ 50.236725][ T3599] syz-executor738/3599 is trying to acquire lock: [ 50.243111][ T3599] ffff88814a9a7130 (&runtime->sleep){....}-{2:2}, at: io_poll_double_wake+0x2bf/0x690 [ 50.252671][ T3599] [ 50.252671][ T3599] but task is already holding lock: [ 50.260178][ T3599] ffff888015deb130 (&runtime->sleep){....}-{2:2}, at: __wake_up+0xf8/0x1c0 [ 50.268772][ T3599] [ 50.268772][ T3599] other info that might help us debug this: [ 50.276809][ T3599] Possible unsafe locking scenario: [ 50.276809][ T3599] [ 50.284235][ T3599] CPU0 [ 50.287494][ T3599] ---- [ 50.290750][ T3599] lock(&runtime->sleep); [ 50.295145][ T3599] lock(&runtime->sleep); [ 50.299538][ T3599] [ 50.299538][ T3599] *** DEADLOCK *** [ 50.299538][ T3599] [ 50.307659][ T3599] May be due to missing lock nesting notation [ 50.307659][ T3599] [ 50.315959][ T3599] 3 locks held by syz-executor738/3599: [ 50.321479][ T3599] #0: ffff888015deb440 (&runtime->oss.params_lock){+.+.}-{3:3}, at: snd_pcm_oss_get_active_substream+0x19e/0x280 [ 50.333451][ T3599] #1: ffff888022eb3110 (&group->lock){....}-{2:2}, at: snd_pcm_drop+0x1d0/0x290 [ 50.342556][ T3599] #2: ffff888015deb130 (&runtime->sleep){....}-{2:2}, at: __wake_up+0xf8/0x1c0 [ 50.351573][ T3599] [ 50.351573][ T3599] stack backtrace: [ 50.357438][ T3599] CPU: 1 PID: 3599 Comm: syz-executor738 Not tainted 5.16.0-rc7-syzkaller #0 [ 50.366177][ T3599] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 50.376217][ T3599] Call Trace: [ 50.379482][ T3599] [ 50.382396][ T3599] dump_stack_lvl+0x1dc/0x2d8 [ 50.387059][ T3599] ? show_regs_print_info+0x12/0x12 [ 50.392237][ T3599] ? log_buf_vmcoreinfo_setup+0x498/0x498 [ 50.397938][ T3599] validate_chain+0x5984/0x8240 [ 50.402777][ T3599] ? validate_chain+0x1a10/0x8240 [ 50.407795][ T3599] ? reacquire_held_locks+0x620/0x620 [ 50.413242][ T3599] ? mark_lock+0x191/0x1e00 [ 50.417728][ T3599] ? __print_lock_name+0x1d0/0x1d0 [ 50.422817][ T3599] ? reacquire_held_locks+0x620/0x620 [ 50.428167][ T3599] ? mark_lock+0x191/0x1e00 [ 50.432650][ T3599] ? __print_lock_name+0x1d0/0x1d0 [ 50.437737][ T3599] ? mark_lock+0x191/0x1e00 [ 50.442217][ T3599] __lock_acquire+0x1382/0x2b00 [ 50.447049][ T3599] ? __print_lock_name+0x1d0/0x1d0 [ 50.452142][ T3599] ? trace_lock_acquire+0x190/0x190 [ 50.457317][ T3599] ? __lock_acquire+0x1382/0x2b00 [ 50.462345][ T3599] lock_acquire+0x19f/0x4d0 [ 50.466840][ T3599] ? io_poll_double_wake+0x2bf/0x690 [ 50.472117][ T3599] ? read_lock_is_recursive+0x10/0x10 [ 50.477478][ T3599] _raw_spin_lock_irqsave+0xd1/0x120 [ 50.482765][ T3599] ? io_poll_double_wake+0x2bf/0x690 [ 50.488044][ T3599] ? _raw_spin_lock+0x40/0x40 [ 50.492709][ T3599] ? __rwlock_init+0x140/0x140 [ 50.497473][ T3599] io_poll_double_wake+0x2bf/0x690 [ 50.502582][ T3599] __wake_up_common+0x2aa/0x4e0 [ 50.507424][ T3599] __wake_up+0x115/0x1c0 [ 50.511654][ T3599] ? remove_wait_queue+0x130/0x130 [ 50.516748][ T3599] ? _raw_spin_unlock+0x40/0x40 [ 50.521586][ T3599] ? lockdep_hardirqs_off+0x71/0x100 [ 50.526851][ T3599] ? snd_timer_notify+0x378/0x3e0 [ 50.531856][ T3599] snd_pcm_stop+0x3d9/0x4c0 [ 50.536340][ T3599] snd_pcm_drop+0x16d/0x290 [ 50.540822][ T3599] snd_pcm_oss_change_params_locked+0x243e/0x4460 [ 50.547218][ T3599] ? snd_pcm_oss_read2+0x430/0x430 [ 50.552309][ T3599] ? __mutex_unlock_slowpath+0x244/0x7d0 [ 50.557923][ T3599] ? snd_pcm_oss_get_active_substream+0x19e/0x280 [ 50.564315][ T3599] ? mutex_lock_io_nested+0x60/0x60 [ 50.569503][ T3599] ? mutex_unlock+0x10/0x10 [ 50.573997][ T3599] ? smack_log+0x11f/0x530 [ 50.578408][ T3599] snd_pcm_oss_get_active_substream+0x1f3/0x280 [ 50.584639][ T3599] snd_pcm_oss_ioctl+0x1eec/0x3a20 [ 50.589734][ T3599] ? smk_tskacc+0x304/0x370 [ 50.594219][ T3599] ? snd_pcm_oss_poll+0x8f0/0x8f0 [ 50.599223][ T3599] ? smack_file_ioctl+0x2f7/0x3a0 [ 50.604294][ T3599] ? smack_file_alloc_security+0xd0/0xd0 [ 50.609919][ T3599] ? bpf_lsm_file_ioctl+0x5/0x10 [ 50.614840][ T3599] ? security_file_ioctl+0x9d/0xb0 [ 50.619931][ T3599] ? snd_pcm_oss_poll+0x8f0/0x8f0 [ 50.624934][ T3599] __se_sys_ioctl+0xfb/0x170 [ 50.629511][ T3599] do_syscall_64+0x44/0xd0 [ 50.633906][ T3599] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 50.639781][ T3599] RIP: 0033:0x7f6f0e966229 [ 50.644178][ T3599] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 50.663761][ T3599] RSP: 002b:00007ffea77fb098 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 50.672158][ T3599] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f6f0e966229 [ 50.680108][ T3599] RDX: 0000000020000240 RSI: 00000000c0045002 RDI: 0000000000000004 [ 50.688061][ T3599] RBP: 00007f6f0e92a210 R08: 0000000000000000 R09: 0000000000000000 [ 50.696009][ T3599] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6f0e92a2a0 [ 50.703958][ T3599] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 50.711