./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor4227971062 <...> Warning: Permanently added '10.128.0.238' (ED25519) to the list of known hosts. execve("./syz-executor4227971062", ["./syz-executor4227971062"], 0x7fffbd502580 /* 10 vars */) = 0 brk(NULL) = 0x555559de9000 brk(0x555559de9d00) = 0x555559de9d00 arch_prctl(ARCH_SET_FS, 0x555559de9380) = 0 set_tid_address(0x555559de9650) = 5088 set_robust_list(0x555559de9660, 24) = 0 rseq(0x555559de9ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor4227971062", 4096) = 28 getrandom("\xa5\xeb\xe8\xcf\x39\x1e\xd5\xb1", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555559de9d00 brk(0x555559e0ad00) = 0x555559e0ad00 brk(0x555559e0b000) = 0x555559e0b000 mprotect(0x7f159c375000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5089 attached , child_tidptr=0x555559de9650) = 5089 [pid 5088] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5089] set_robust_list(0x555559de9660, 24) = 0 ./strace-static-x86_64: Process 5090 attached [pid 5089] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5088] <... clone resumed>, child_tidptr=0x555559de9650) = 5090 [pid 5090] set_robust_list(0x555559de9660, 24./strace-static-x86_64: Process 5091 attached ) = 0 [pid 5088] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5091] set_robust_list(0x555559de9660, 24 [pid 5090] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5089] <... clone resumed>, child_tidptr=0x555559de9650) = 5091 [pid 5091] <... set_robust_list resumed>) = 0 [pid 5091] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5091] setpgid(0, 0) = 0 [pid 5091] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 5092 attached ./strace-static-x86_64: Process 5093 attached ) = 3 [pid 5090] <... clone resumed>, child_tidptr=0x555559de9650) = 5093 [pid 5093] set_robust_list(0x555559de9660, 24) = 0 [pid 5088] <... clone resumed>, child_tidptr=0x555559de9650) = 5092 [pid 5092] set_robust_list(0x555559de9660, 24 [pid 5093] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5091] write(3, "1000", 4 [pid 5088] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5092] <... set_robust_list resumed>) = 0 [pid 5091] <... write resumed>) = 4 [pid 5093] <... prctl resumed>) = 0 [pid 5093] setpgid(0, 0) = 0 [pid 5092] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5093] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5091] close(3) = 0 [pid 5093] <... openat resumed>) = 3 [pid 5093] write(3, "1000", 4) = 4 [pid 5093] close(3) = 0 [pid 5093] openat(AT_FDCWD, "/dev/ttyS3", O_RDONLY./strace-static-x86_64: Process 5094 attached [pid 5092] <... clone resumed>, child_tidptr=0x555559de9650) = 5094 [pid 5091] openat(AT_FDCWD, "/dev/ttyS3", O_RDONLY./strace-static-x86_64: Process 5095 attached [pid 5094] set_robust_list(0x555559de9660, 24 [pid 5095] set_robust_list(0x555559de9660, 24 [pid 5094] <... set_robust_list resumed>) = 0 [pid 5088] <... clone resumed>, child_tidptr=0x555559de9650) = 5095 [pid 5093] <... openat resumed>) = 3 [pid 5091] <... openat resumed>) = 3 [pid 5088] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5095] <... set_robust_list resumed>) = 0 [pid 5094] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5093] ioctl(3, TIOCSETD, [7] [pid 5091] ioctl(3, TIOCSETD, [7] [pid 5095] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5094] <... prctl resumed>) = 0 [pid 5094] setpgid(0, 0./strace-static-x86_64: Process 5097 attached ./strace-static-x86_64: Process 5096 attached [pid 5088] <... clone resumed>, child_tidptr=0x555559de9650) = 5096 [pid 5094] <... setpgid resumed>) = 0 [pid 5097] set_robust_list(0x555559de9660, 24 [pid 5096] set_robust_list(0x555559de9660, 24 [pid 5097] <... set_robust_list resumed>) = 0 [pid 5096] <... set_robust_list resumed>) = 0 [pid 5094] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5097] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5096] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5094] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5098 attached [pid 5097] <... prctl resumed>) = 0 [pid 5095] <... clone resumed>, child_tidptr=0x555559de9650) = 5097 [pid 5094] write(3, "1000", 4 [pid 5098] set_robust_list(0x555559de9660, 24 [pid 5097] setpgid(0, 0 [pid 5096] <... clone resumed>, child_tidptr=0x555559de9650) = 5098 [pid 5094] <... write resumed>) = 4 [pid 5093] <... ioctl resumed>) = 0 [pid 5091] <... ioctl resumed>) = 0 [pid 5097] <... setpgid resumed>) = 0 [pid 5094] close(3 [pid 5098] <... set_robust_list resumed>) = 0 [pid 5097] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5094] <... close resumed>) = 0 [pid 5093] ioctl(3, TIOCVHANGUP [pid 5091] ioctl(3, TIOCVHANGUP [pid 5098] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5097] <... openat resumed>) = 3 [pid 5094] openat(AT_FDCWD, "/dev/ttyS3", O_RDONLY [pid 5098] <... prctl resumed>) = 0 [pid 5097] write(3, "1000", 4 [pid 5098] setpgid(0, 0 [pid 5097] <... write resumed>) = 4 [pid 5098] <... setpgid resumed>) = 0 [pid 5097] close(3 [pid 5091] <... ioctl resumed>) = -1 EIO (Input/output error) [pid 5097] <... close resumed>) = 0 [pid 5098] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5097] openat(AT_FDCWD, "/dev/ttyS3", O_RDONLY [pid 5091] exit_group(0) = ? [pid 5098] <... openat resumed>) = 3 [pid 5098] write(3, "1000", 4) = 4 [pid 5098] close(3) = 0 [ 56.337474][ T5093] sp0: Synchronizing with TNC [pid 5098] openat(AT_FDCWD, "/dev/ttyS3", O_RDONLY [pid 5093] <... ioctl resumed>) = 0 [pid 5093] exit_group(0) = ? [ 56.409103][ T5094] sp0: Synchronizing with TNC [ 56.414936][ T5094] ------------[ cut here ]------------ [ 56.415118][ T5094] [ 56.415124][ T5094] ====================================================== [ 56.415129][ T5094] WARNING: possible circular locking dependency detected [ 56.415135][ T5094] 6.9.0-rc4-next-20240418-syzkaller #0 Not tainted [ 56.415144][ T5094] ------------------------------------------------------ [ 56.415148][ T5094] syz-executor422/5094 is trying to acquire lock: [ 56.415157][ T5094] ffffffff8e327d60 (console_owner){....}-{0:0}, at: console_flush_all+0x152/0xfd0 [ 56.415217][ T5094] [ 56.415217][ T5094] but task is already holding lock: [ 56.415221][ T5094] ffffffff94aa1878 (&port_lock_key){-...}-{2:2}, at: uart_write+0x10e/0x320 [ 56.415263][ T5094] [ 56.415263][ T5094] which lock already depends on the new lock. [ 56.415263][ T5094] [ 56.415268][ T5094] [ 56.415268][ T5094] the existing dependency chain (in reverse order) is: [ 56.415273][ T5094] [ 56.415273][ T5094] -> #1 (&port_lock_key){-...}-{2:2}: [ 56.415294][ T5094] lock_acquire+0x1ed/0x550 [ 56.415309][ T5094] _raw_spin_lock_irqsave+0xd5/0x120 [ 56.415330][ T5094] serial8250_console_write+0x1a8/0x1770 [ 56.415351][ T5094] console_flush_all+0x867/0xfd0 [ 56.415370][ T5094] console_unlock+0x13b/0x4d0 [ 56.415387][ T5094] vprintk_emit+0x5a6/0x770 [ 56.415405][ T5094] _printk+0xd5/0x120 [ 56.415417][ T5094] register_console+0x722/0xce0 [ 56.415435][ T5094] univ8250_console_init+0x49/0x50 [ 56.415457][ T5094] console_init+0x1b8/0x6f0 [ 56.415475][ T5094] start_kernel+0x2d3/0x500 [ 56.415493][ T5094] x86_64_start_reservations+0x2a/0x30 [ 56.415508][ T5094] x86_64_start_kernel+0x99/0xa0 [ 56.415522][ T5094] common_startup_64+0x13e/0x147 [ 56.415538][ T5094] [ 56.415538][ T5094] -> #0 (console_owner){....}-{0:0}: [ 56.415560][ T5094] validate_chain+0x18cb/0x58e0 [ 56.415587][ T5094] __lock_acquire+0x1346/0x1fd0 [ 56.415601][ T5094] lock_acquire+0x1ed/0x550 [ 56.415616][ T5094] console_flush_all+0x810/0xfd0 [ 56.415635][ T5094] console_unlock+0x13b/0x4d0 [ 56.415653][ T5094] vprintk_emit+0x5a6/0x770 [ 56.415670][ T5094] _printk+0xd5/0x120 [ 56.415684][ T5094] report_bug+0x346/0x500 [ 56.415696][ T5094] handle_bug+0x3e/0x70 [ 56.415712][ T5094] exc_invalid_op+0x1a/0x50 [ 56.415727][ T5094] asm_exc_invalid_op+0x1a/0x20 [ 56.415750][ T5094] uart_write+0x2b0/0x320 [ 56.415769][ T5094] sixpack_open+0x790/0xa80 [ 56.415787][ T5094] tty_ldisc_reinit+0x2d4/0x4a0 [ 56.415806][ T5094] tty_reopen+0x20b/0x2d0 [ 56.415821][ T5094] tty_open+0xa26/0xdf0 [ 56.415836][ T5094] chrdev_open+0x5b0/0x630 [ 56.415852][ T5094] do_dentry_open+0x95a/0x1720 [ 56.415869][ T5094] path_openat+0x289f/0x3280 [ 56.415889][ T5094] do_filp_open+0x235/0x490 [ 56.415908][ T5094] do_sys_openat2+0x13e/0x1d0 [ 56.415926][ T5094] __x64_sys_openat+0x247/0x2a0 [ 56.415943][ T5094] do_syscall_64+0xf5/0x240 [ 56.415958][ T5094] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 56.415980][ T5094] [ 56.415980][ T5094] other info that might help us debug this: [ 56.415980][ T5094] [ 56.415985][ T5094] Possible unsafe locking scenario: [ 56.415985][ T5094] [ 56.415990][ T5094] CPU0 CPU1 [ 56.415995][ T5094] ---- ---- [ 56.415999][ T5094] lock(&port_lock_key); [ 56.416011][ T5094] lock(console_owner); [ 56.416021][ T5094] lock(&port_lock_key); [ 56.416031][ T5094] lock(console_owner); [ 56.416041][ T5094] [ 56.416041][ T5094] *** DEADLOCK *** [ 56.416041][ T5094] [ 56.416045][ T5094] 5 locks held by syz-executor422/5094: [ 56.416055][ T5094] #0: ffff88801f5241c0 (&tty->legacy_mutex){+.+.}-{3:3}, at: tty_lock_interruptible+0x68/0xc0 [ 56.416094][ T5094] #1: ffff88801f5240a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_lock+0x6c/0xc0 [ 56.416136][ T5094] #2: ffffffff94aa1878 (&port_lock_key){-...}-{2:2}, at: uart_write+0x10e/0x320 [ 56.416176][ T5094] #3: ffffffff8e20f680 (console_lock){+.+.}-{0:0}, at: _printk+0xd5/0x120 [ 56.416212][ T5094] #4: ffffffff8e20f2b0 (console_srcu){....}-{0:0}, at: console_flush_all+0x152/0xfd0 [ 56.416254][ T5094] [ 56.416254][ T5094] stack backtrace: [ 56.416261][ T5094] CPU: 0 PID: 5094 Comm: syz-executor422 Not tainted 6.9.0-rc4-next-20240418-syzkaller #0 [ 56.416277][ T5094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 56.416286][ T5094] Call Trace: [ 56.416292][ T5094] [ 56.416299][ T5094] dump_stack_lvl+0x241/0x360 [ 56.416319][ T5094] ? __pfx_dump_stack_lvl+0x10/0x10 [ 56.416340][ T5094] ? print_circular_bug+0x130/0x1a0 [ 56.416362][ T5094] check_noncircular+0x36a/0x4a0 [ 56.416385][ T5094] ? __pfx_check_noncircular+0x10/0x10 [ 56.416405][ T5094] ? lockdep_lock+0x123/0x2b0 [ 56.416423][ T5094] ? add_lock_to_list+0x1de/0x2e0 [ 56.416447][ T5094] validate_chain+0x18cb/0x58e0 [ 56.416478][ T5094] ? __pfx_validate_chain+0x10/0x10 [ 56.416499][ T5094] ? sprintf+0xda/0x120 [ 56.416520][ T5094] ? vsnprintf+0x1cc3/0x1da0 [ 56.416545][ T5094] ? info_print_prefix+0x204/0x310 [ 56.416564][ T5094] ? mark_lock+0x9a/0x350 [ 56.416591][ T5094] __lock_acquire+0x1346/0x1fd0 [ 56.416616][ T5094] lock_acquire+0x1ed/0x550 [ 56.416634][ T5094] ? console_flush_all+0x152/0xfd0 [ 56.416659][ T5094] ? __pfx_lock_acquire+0x10/0x10 [ 56.416676][ T5094] ? __pfx_lock_release+0x10/0x10 [ 56.416693][ T5094] ? do_raw_spin_lock+0x14f/0x370 [ 56.416718][ T5094] ? do_raw_spin_unlock+0x13c/0x8b0 [ 56.416741][ T5094] ? console_flush_all+0x3a8/0xfd0 [ 56.416764][ T5094] console_flush_all+0x810/0xfd0 [ 56.416785][ T5094] ? console_flush_all+0x152/0xfd0 [ 56.416808][ T5094] ? console_flush_all+0x152/0xfd0 [ 56.416833][ T5094] ? __pfx_console_flush_all+0x10/0x10 [ 56.416857][ T5094] ? __pfx_lock_acquire+0x10/0x10 [ 56.416875][ T5094] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 56.416895][ T5094] ? __pfx__prb_read_valid+0x10/0x10 [ 56.416916][ T5094] console_unlock+0x13b/0x4d0 [ 56.416939][ T5094] ? __pfx_console_unlock+0x10/0x10 [ 56.416958][ T5094] ? _printk+0xd5/0x120 [ 56.416974][ T5094] ? _printk+0xd5/0x120 [ 56.416989][ T5094] ? __pfx___down_trylock_console_sem+0x10/0x10 [ 56.417013][ T5094] ? prb_read_valid+0xa9/0xf0 [ 56.417034][ T5094] vprintk_emit+0x5a6/0x770 [ 56.417055][ T5094] ? __pfx_vprintk_emit+0x10/0x10 [ 56.417075][ T5094] ? __lock_acquire+0x1346/0x1fd0 [ 56.417098][ T5094] _printk+0xd5/0x120 [ 56.417115][ T5094] ? report_bug+0x25e/0x500 [ 56.417130][ T5094] ? __pfx__printk+0x10/0x10 [ 56.417148][ T5094] ? find_bug+0xa3/0x390 [ 56.417162][ T5094] ? uart_write+0x2b0/0x320 [ 56.417181][ T5094] ? do_raw_spin_lock+0x14f/0x370 [ 56.417204][ T5094] report_bug+0x346/0x500 [ 56.417220][ T5094] ? uart_write+0x2b0/0x320 [ 56.417242][ T5094] handle_bug+0x3e/0x70 [ 56.417261][ T5094] exc_invalid_op+0x1a/0x50 [ 56.417278][ T5094] asm_exc_invalid_op+0x1a/0x20 [ 56.417300][ T5094] RIP: 0010:uart_write+0x2b0/0x320 [ 56.417323][ T5094] Code: 74 08 48 89 df e8 a0 9e be fc 48 83 3b 00 74 74 e8 05 4e 59 fc eb 97 e8 fe 4d 59 fc 45 31 e4 eb 08 e8 f4 4d 59 fc 45 31 ed 90 <0f> 0b 90 45 84 e4 74 0a e8 e3 4d 59 fc 45 31 f6 eb 84 e8 d9 4d 59 [ 56.417336][ T5094] RSP: 0018:ffffc9000356f4b8 EFLAGS: 00010046 [ 56.417350][ T5094] RAX: ffffffff853d0f92 RBX: dffffc0000000000 RCX: ffff888076da5a00 [ 56.417363][ T5094] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffc9000356f3a0 [ 56.417373][ T5094] RBP: ffff88801f8e0f48 R08: 0000000000000003 R09: fffff520006ade74 [ 56.417385][ T5094] R10: dffffc0000000000 R11: fffff520006ade74 R12: 0000000000000000 [ 56.417396][ T5094] R13: 0000000000000246 R14: ffff88801f8e0be8 R15: ffffffff94aa1860 [ 56.417412][ T5094] ? uart_write+0x2a2/0x320 [ 56.417436][ T5094] ? uart_write+0x2a2/0x320 [ 56.417458][ T5094] sixpack_open+0x790/0xa80 [ 56.417481][ T5094] ? __pfx_sixpack_open+0x10/0x10 [ 56.417504][ T5094] tty_ldisc_reinit+0x2d4/0x4a0 [ 56.417530][ T5094] tty_reopen+0x20b/0x2d0 [ 56.417548][ T5094] tty_open+0xa26/0xdf0 [ 56.417574][ T5094] ? kobject_get_unless_zero+0x22d/0x330 [ 56.417593][ T5094] ? __pfx_tty_open+0x10/0x10 [ 56.417610][ T5094] ? do_raw_spin_unlock+0x13c/0x8b0 [ 56.417634][ T5094] ? module_put+0x13a/0x2d0 [ 56.417657][ T5094] chrdev_open+0x5b0/0x630 [ 56.417676][ T5094] ? __pfx_chrdev_open+0x10/0x10 [ 56.417696][ T5094] ? security_file_open+0x5bc/0x730 [ 56.417715][ T5094] ? __pfx_chrdev_open+0x10/0x10 [ 56.417733][ T5094] do_dentry_open+0x95a/0x1720 [ 56.417758][ T5094] path_openat+0x289f/0x3280 [ 56.417784][ T5094] ? mark_lock+0x9a/0x350 [ 56.417805][ T5094] ? mark_lock+0x9a/0x350 [ 56.417825][ T5094] ? __pfx_path_openat+0x10/0x10 [ 56.417856][ T5094] do_filp_open+0x235/0x490 [ 56.417879][ T5094] ? __pfx_do_filp_open+0x10/0x10 [ 56.417911][ T5094] ? _raw_spin_unlock+0x28/0x50 [ 56.417929][ T5094] ? alloc_fd+0x59d/0x640 [ 56.417949][ T5094] do_sys_openat2+0x13e/0x1d0 [ 56.417971][ T5094] ? __pfx_do_sys_openat2+0x10/0x10 [ 56.417991][ T5094] ? lockdep_hardirqs_on+0x99/0x150 [ 56.418007][ T5094] ? _raw_spin_unlock_irq+0x2e/0x50 [ 56.418021][ T5094] ? ptrace_notify+0x279/0x380 [ 56.418043][ T5094] __x64_sys_openat+0x247/0x2a0 [ 56.418061][ T5094] ? __pfx___x64_sys_openat+0x10/0x10 [ 56.418082][ T5094] ? exc_page_fault+0x59e/0x900 [ 56.418101][ T5094] do_syscall_64+0xf5/0x240 [ 56.418116][ T5094] ? clear_bhb_loop+0x35/0x90 [ 56.418130][ T5094] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 56.418150][ T5094] RIP: 0033:0x7f159c302ae9 [ 56.418165][ T5094] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 56.418177][ T5094] RSP: 002b:00007ffc0f75ed48 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 56.418193][ T5094] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f159c302ae9 [ 56.418204][ T5094] RDX: 0000000000000000 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 56.418214][ T5094] RBP: 00000000000f4240 R08: 0000000000000000 R09: 00000000000000a0 [ 56.418224][ T5094] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 56.418233][ T5094] R13: 00007ffc0f75ef68 R14: 00007ffc0f75ed70 R15: 00007ffc0f75ed60 [ 56.418252][ T5094] [ 57.407279][ T5094] WARNING: CPU: 0 PID: 5094 at drivers/tty/serial/serial_core.c:605 uart_write+0x2b0/0x320 [ 57.417252][ T5094] Modules linked in: [ 57.421129][ T5094] CPU: 0 PID: 5094 Comm: syz-executor422 Not tainted 6.9.0-rc4-next-20240418-syzkaller #0 [ 57.431086][ T5094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 57.441155][ T5094] RIP: 0010:uart_write+0x2b0/0x320 [ 57.446263][ T5094] Code: 74 08 48 89 df e8 a0 9e be fc 48 83 3b 00 74 74 e8 05 4e 59 fc eb 97 e8 fe 4d 59 fc 45 31 e4 eb 08 e8 f4 4d 59 fc 45 31 ed 90 <0f> 0b 90 45 84 e4 74 0a e8 e3 4d 59 fc 45 31 f6 eb 84 e8 d9 4d 59 [ 57.466215][ T5094] RSP: 0018:ffffc9000356f4b8 EFLAGS: 00010046 [ 57.472269][ T5094] RAX: ffffffff853d0f92 RBX: dffffc0000000000 RCX: ffff888076da5a00 [ 57.480240][ T5094] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffc9000356f3a0 [ 57.488227][ T5094] RBP: ffff88801f8e0f48 R08: 0000000000000003 R09: fffff520006ade74 [ 57.496205][ T5094] R10: dffffc0000000000 R11: fffff520006ade74 R12: 0000000000000000 [ 57.504192][ T5094] R13: 0000000000000246 R14: ffff88801f8e0be8 R15: ffffffff94aa1860 [ 57.512153][ T5094] FS: 0000555559de9380(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000 [ 57.521075][ T5094] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 57.527658][ T5094] CR2: 00007fa9e72e2650 CR3: 0000000066fc0000 CR4: 00000000003506f0 [ 57.535623][ T5094] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 57.543579][ T5094] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 57.551638][ T5094] Call Trace: [ 57.554926][ T5094] [ 57.557846][ T5094] ? __warn+0x163/0x4e0 [ 57.561998][ T5094] ? uart_write+0x2b0/0x320 [ 57.566492][ T5094] ? report_bug+0x2b3/0x500 [ 57.571028][ T5094] ? uart_write+0x2b0/0x320 [ 57.575532][ T5094] ? handle_bug+0x3e/0x70 [ 57.579873][ T5094] ? exc_invalid_op+0x1a/0x50 [ 57.584541][ T5094] ? asm_exc_invalid_op+0x1a/0x20 [ 57.589586][ T5094] ? uart_write+0x2a2/0x320 [ 57.594090][ T5094] ? uart_write+0x2b0/0x320 [ 57.598603][ T5094] ? uart_write+0x2a2/0x320 [ 57.603138][ T5094] sixpack_open+0x790/0xa80 [ 57.607671][ T5094] ? __pfx_sixpack_open+0x10/0x10 [ 57.612693][ T5094] tty_ldisc_reinit+0x2d4/0x4a0 [ 57.618144][ T5094] tty_reopen+0x20b/0x2d0 [ 57.622478][ T5094] tty_open+0xa26/0xdf0 [ 57.626614][ T5094] ? kobject_get_unless_zero+0x22d/0x330 [ 57.632259][ T5094] ? __pfx_tty_open+0x10/0x10 [ 57.636942][ T5094] ? do_raw_spin_unlock+0x13c/0x8b0 [ 57.642134][ T5094] ? module_put+0x13a/0x2d0 [ 57.646639][ T5094] chrdev_open+0x5b0/0x630 [ 57.651053][ T5094] ? __pfx_chrdev_open+0x10/0x10 [ 57.655978][ T5094] ? security_file_open+0x5bc/0x730 [ 57.661161][ T5094] ? __pfx_chrdev_open+0x10/0x10 [ 57.666181][ T5094] do_dentry_open+0x95a/0x1720 [ 57.670951][ T5094] path_openat+0x289f/0x3280 [ 57.675531][ T5094] ? mark_lock+0x9a/0x350 [ 57.679858][ T5094] ? mark_lock+0x9a/0x350 [ 57.684188][ T5094] ? __pfx_path_openat+0x10/0x10 [ 57.689145][ T5094] do_filp_open+0x235/0x490 [ 57.693668][ T5094] ? __pfx_do_filp_open+0x10/0x10 [ 57.698714][ T5094] ? _raw_spin_unlock+0x28/0x50 [ 57.703555][ T5094] ? alloc_fd+0x59d/0x640 [ 57.707870][ T5094] do_sys_openat2+0x13e/0x1d0 [ 57.712547][ T5094] ? __pfx_do_sys_openat2+0x10/0x10 [ 57.717775][ T5094] ? lockdep_hardirqs_on+0x99/0x150 [ 57.722964][ T5094] ? _raw_spin_unlock_irq+0x2e/0x50 [ 57.728147][ T5094] ? ptrace_notify+0x279/0x380 [ 57.732914][ T5094] __x64_sys_openat+0x247/0x2a0 [ 57.737768][ T5094] ? __pfx___x64_sys_openat+0x10/0x10 [ 57.743137][ T5094] ? exc_page_fault+0x59e/0x900 [ 57.747980][ T5094] do_syscall_64+0xf5/0x240 [ 57.752484][ T5094] ? clear_bhb_loop+0x35/0x90 [ 57.757178][ T5094] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 57.763074][ T5094] RIP: 0033:0x7f159c302ae9 [ 57.767473][ T5094] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 57.787273][ T5094] RSP: 002b:00007ffc0f75ed48 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 57.795695][ T5094] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f159c302ae9 [ 57.803658][ T5094] RDX: 0000000000000000 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 57.811612][ T5094] RBP: 00000000000f4240 R08: 0000000000000000 R09: 00000000000000a0 [ 57.819568][ T5094] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 57.827540][ T5094] R13: 00007ffc0f75ef68 R14: 00007ffc0f75ed70 R15: 00007ffc0f75ed60 [ 57.835513][ T5094] [ 57.838529][ T5094] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 57.845819][ T5094] CPU: 0 PID: 5094 Comm: syz-executor422 Not tainted 6.9.0-rc4-next-20240418-syzkaller #0 [ 57.855687][ T5094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 57.865726][ T5094] Call Trace: [ 57.869009][ T5094] [ 57.871929][ T5094] dump_stack_lvl+0x241/0x360 [ 57.876600][ T5094] ? __pfx_dump_stack_lvl+0x10/0x10 [ 57.881790][ T5094] ? __pfx__printk+0x10/0x10 [ 57.886364][ T5094] ? _printk+0xd5/0x120 [ 57.890509][ T5094] ? vscnprintf+0x5d/0x90 [ 57.894825][ T5094] panic+0x349/0x860 [ 57.898725][ T5094] ? __warn+0x172/0x4e0 [ 57.902885][ T5094] ? __pfx_panic+0x10/0x10 [ 57.907307][ T5094] ? show_trace_log_lvl+0x4e6/0x520 [ 57.912592][ T5094] __warn+0x346/0x4e0 [ 57.916599][ T5094] ? uart_write+0x2b0/0x320 [ 57.921093][ T5094] report_bug+0x2b3/0x500 [ 57.925412][ T5094] ? uart_write+0x2b0/0x320 [ 57.929921][ T5094] handle_bug+0x3e/0x70 [ 57.934065][ T5094] exc_invalid_op+0x1a/0x50 [ 57.938553][ T5094] asm_exc_invalid_op+0x1a/0x20 [ 57.943393][ T5094] RIP: 0010:uart_write+0x2b0/0x320 [ 57.948493][ T5094] Code: 74 08 48 89 df e8 a0 9e be fc 48 83 3b 00 74 74 e8 05 4e 59 fc eb 97 e8 fe 4d 59 fc 45 31 e4 eb 08 e8 f4 4d 59 fc 45 31 ed 90 <0f> 0b 90 45 84 e4 74 0a e8 e3 4d 59 fc 45 31 f6 eb 84 e8 d9 4d 59 [ 57.968089][ T5094] RSP: 0018:ffffc9000356f4b8 EFLAGS: 00010046 [ 57.974161][ T5094] RAX: ffffffff853d0f92 RBX: dffffc0000000000 RCX: ffff888076da5a00 [ 57.982122][ T5094] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffc9000356f3a0 [ 57.990270][ T5094] RBP: ffff88801f8e0f48 R08: 0000000000000003 R09: fffff520006ade74 [ 57.998235][ T5094] R10: dffffc0000000000 R11: fffff520006ade74 R12: 0000000000000000 [ 58.006195][ T5094] R13: 0000000000000246 R14: ffff88801f8e0be8 R15: ffffffff94aa1860 [ 58.014162][ T5094] ? uart_write+0x2a2/0x320 [ 58.018659][ T5094] ? uart_write+0x2a2/0x320 [ 58.023171][ T5094] sixpack_open+0x790/0xa80 [ 58.027686][ T5094] ? __pfx_sixpack_open+0x10/0x10 [ 58.032698][ T5094] tty_ldisc_reinit+0x2d4/0x4a0 [ 58.037540][ T5094] tty_reopen+0x20b/0x2d0 [ 58.041941][ T5094] tty_open+0xa26/0xdf0 [ 58.046091][ T5094] ? kobject_get_unless_zero+0x22d/0x330 [ 58.051711][ T5094] ? __pfx_tty_open+0x10/0x10 [ 58.056373][ T5094] ? do_raw_spin_unlock+0x13c/0x8b0 [ 58.061568][ T5094] ? module_put+0x13a/0x2d0 [ 58.066087][ T5094] chrdev_open+0x5b0/0x630 [ 58.070491][ T5094] ? __pfx_chrdev_open+0x10/0x10 [ 58.075502][ T5094] ? security_file_open+0x5bc/0x730 [ 58.080682][ T5094] ? __pfx_chrdev_open+0x10/0x10 [ 58.085689][ T5094] do_dentry_open+0x95a/0x1720 [ 58.090444][ T5094] path_openat+0x289f/0x3280 [ 58.095023][ T5094] ? mark_lock+0x9a/0x350 [ 58.099361][ T5094] ? mark_lock+0x9a/0x350 [ 58.103690][ T5094] ? __pfx_path_openat+0x10/0x10 [ 58.108630][ T5094] do_filp_open+0x235/0x490 [ 58.113124][ T5094] ? __pfx_do_filp_open+0x10/0x10 [ 58.118169][ T5094] ? _raw_spin_unlock+0x28/0x50 [ 58.123019][ T5094] ? alloc_fd+0x59d/0x640 [ 58.127342][ T5094] do_sys_openat2+0x13e/0x1d0 [ 58.132011][ T5094] ? __pfx_do_sys_openat2+0x10/0x10 [ 58.137197][ T5094] ? lockdep_hardirqs_on+0x99/0x150 [ 58.142380][ T5094] ? _raw_spin_unlock_irq+0x2e/0x50 [ 58.147563][ T5094] ? ptrace_notify+0x279/0x380 [ 58.152496][ T5094] __x64_sys_openat+0x247/0x2a0 [ 58.157358][ T5094] ? __pfx___x64_sys_openat+0x10/0x10 [ 58.162751][ T5094] ? exc_page_fault+0x59e/0x900 [ 58.167608][ T5094] do_syscall_64+0xf5/0x240 [ 58.172127][ T5094] ? clear_bhb_loop+0x35/0x90 [ 58.176799][ T5094] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 58.182684][ T5094] RIP: 0033:0x7f159c302ae9 [ 58.187100][ T5094] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 58.206731][ T5094] RSP: 002b:00007ffc0f75ed48 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 58.215141][ T5094] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f159c302ae9 [ 58.223097][ T5094] RDX: 0000000000000000 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 58.231074][ T5094] RBP: 00000000000f4240 R08: 0000000000000000 R09: 00000000000000a0 [ 58.239029][ T5094] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 58.247001][ T5094] R13: 00007ffc0f75ef68 R14: 00007ffc0f75ed70 R15: 00007ffc0f75ed60 [ 58.255074][ T5094] [ 59.325242][ T5094] Shutting down cpus with NMI [ 59.330276][ T5094] Kernel Offset: disabled [ 59.334595][ T5094] Rebooting in 86400 seconds..