./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor4015637177 <...> Warning: Permanently added '10.128.1.26' (ED25519) to the list of known hosts. execve("./syz-executor4015637177", ["./syz-executor4015637177"], 0x7ffe8575ea90 /* 10 vars */) = 0 brk(NULL) = 0x555564a2f000 brk(0x555564a2fd00) = 0x555564a2fd00 arch_prctl(ARCH_SET_FS, 0x555564a2f380) = 0 set_tid_address(0x555564a2f650) = 5061 set_robust_list(0x555564a2f660, 24) = 0 rseq(0x555564a2fca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor4015637177", 4096) = 28 getrandom("\xa5\x03\x5f\x20\x2b\x84\x60\xda", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555564a2fd00 brk(0x555564a50d00) = 0x555564a50d00 brk(0x555564a51000) = 0x555564a51000 mprotect(0x7f88b8f20000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 openat(AT_FDCWD, "/dev/input/event0", O_RDONLY) = 3 ioctl(-1, EVIOCSFF, {type=FF_PERIODIC, id=0, direction=0, ...}) = -1 EBADF (Bad file descriptor) openat(AT_FDCWD, "/dev/input/event0", O_WRONLY|O_NOCTTY|O_TRUNC|O_NONBLOCK|O_NOFOLLOW|FASYNC|0x800000) = 4 ioctl(3, FIOASYNC, [4]) = 0 write(4, "\xe2\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x2f\x64\x65\x76\x2f\x69\x6e\x70\x75\x74\x2f\x65\x76\x65\x6e\x74\x23\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4200) = 4200 open("./file0", O_RDONLY|O_CREAT|O_LARGEFILE|0x4000000, 000) = 5 gettid() = 5061 fcntl(5, F_SETOWN_EX, {type=F_OWNER_PGRP, pid=5061}) = 0 fcntl(5, F_SETLEASE, F_RDLCK) = 0 [ 80.125966][ T5061] [ 80.128792][ T5061] ===================================================== [ 80.136461][ T5061] WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected [ 80.144269][ T5061] 6.8.0-syzkaller-08951-gfe46a7dd189e #0 Not tainted [ 80.151055][ T5061] ----------------------------------------------------- [ 80.158291][ T5061] syz-executor401/5061 [HC0[0]:SC0[0]:HE0:SE1] is trying to acquire: [ 80.166484][ T5061] ffffffff8de0a058 (tasklist_lock){.+.+}-{2:2}, at: send_sigio+0xfc/0x360 [ 80.175325][ T5061] [ 80.175325][ T5061] and this task is already holding: [ 80.182775][ T5061] ffff88802ebb0118 (&f->f_owner.lock){....}-{2:2}, at: send_sigio+0x33/0x360 [ 80.191682][ T5061] which would create a new lock dependency: [ 80.197599][ T5061] (&f->f_owner.lock){....}-{2:2} -> (tasklist_lock){.+.+}-{2:2} [ 80.205478][ T5061] [ 80.205478][ T5061] but this new dependency connects a HARDIRQ-irq-safe lock: [ 80.215100][ T5061] (&dev->event_lock#2){-.-.}-{2:2} [ 80.215135][ T5061] [ 80.215135][ T5061] ... which became HARDIRQ-irq-safe at: [ 80.228659][ T5061] lock_acquire+0x1e4/0x530 [ 80.233522][ T5061] _raw_spin_lock_irqsave+0xd5/0x120 [ 80.239208][ T5061] input_event+0x91/0xd0 [ 80.243664][ T5061] psmouse_report_standard_packet+0x54/0x200 [ 80.250096][ T5061] psmouse_process_byte+0x48c/0x680 [ 80.255393][ T5061] psmouse_handle_byte+0x49/0x4c0 [ 80.260873][ T5061] ps2_interrupt+0x17c/0x8e0 [ 80.265572][ T5061] serio_interrupt+0x90/0x140 [ 80.270532][ T5061] i8042_interrupt+0x375/0x770 [ 80.275387][ T5061] __handle_irq_event_percpu+0x28a/0xa30 [ 80.281478][ T5061] handle_irq_event+0x89/0x1f0 [ 80.286353][ T5061] handle_edge_irq+0x25f/0xc20 [ 80.291976][ T5061] __common_interrupt+0x138/0x230 [ 80.297213][ T5061] common_interrupt+0x4f/0xd0 [ 80.302166][ T5061] asm_common_interrupt+0x26/0x40 [ 80.307480][ T5061] unwind_next_frame+0x6f4/0x2a00 [ 80.312828][ T5061] arch_stack_walk+0x151/0x1b0 [ 80.317890][ T5061] stack_trace_save+0x118/0x1d0 [ 80.322957][ T5061] kasan_save_track+0x3f/0x80 [ 80.328356][ T5061] kasan_save_free_info+0x40/0x50 [ 80.333501][ T5061] poison_slab_object+0xa6/0xe0 [ 80.338754][ T5061] __kasan_slab_free+0x37/0x60 [ 80.343635][ T5061] kmem_cache_free+0x102/0x2b0 [ 80.348543][ T5061] rcu_core+0xafd/0x1830 [ 80.352950][ T5061] __do_softirq+0x2bc/0x943 [ 80.357600][ T5061] __irq_exit_rcu+0xf2/0x1c0 [ 80.362312][ T5061] irq_exit_rcu+0x9/0x30 [ 80.366692][ T5061] common_interrupt+0xaa/0xd0 [ 80.371461][ T5061] asm_common_interrupt+0x26/0x40 [ 80.376578][ T5061] __sanitizer_cov_trace_cmp8+0x11/0x90 [ 80.382433][ T5061] unwind_next_frame+0x1df5/0x2a00 [ 80.387661][ T5061] arch_stack_walk+0x151/0x1b0 [ 80.392969][ T5061] stack_trace_save+0x118/0x1d0 [ 80.398129][ T5061] kasan_save_track+0x3f/0x80 [ 80.403185][ T5061] __kasan_slab_alloc+0x66/0x80 [ 80.408394][ T5061] kmem_cache_alloc+0x174/0x340 [ 80.413629][ T5061] __kernfs_new_node+0xd8/0x880 [ 80.419443][ T5061] kernfs_new_node+0x13a/0x240 [ 80.424508][ T5061] __kernfs_create_file+0x49/0x2f0 [ 80.430101][ T5061] sysfs_add_file_mode_ns+0x24a/0x310 [ 80.436116][ T5061] sysfs_create_file_ns+0x197/0x2a0 [ 80.441561][ T5061] bus_add_driver+0x47f/0x620 [ 80.447047][ T5061] driver_register+0x23a/0x320 [ 80.452179][ T5061] usb_register_driver+0x1f5/0x3b0 [ 80.457419][ T5061] do_one_initcall+0x238/0x830 [ 80.462625][ T5061] do_initcall_level+0x157/0x210 [ 80.467847][ T5061] do_initcalls+0x3f/0x80 [ 80.472457][ T5061] kernel_init_freeable+0x435/0x5d0 [ 80.477948][ T5061] kernel_init+0x1d/0x2a0 [ 80.482471][ T5061] ret_from_fork+0x4b/0x80 [ 80.487247][ T5061] ret_from_fork_asm+0x1a/0x30 [ 80.492113][ T5061] [ 80.492113][ T5061] to a HARDIRQ-irq-unsafe lock: [ 80.499223][ T5061] (tasklist_lock){.+.+}-{2:2} [ 80.499249][ T5061] [ 80.499249][ T5061] ... which became HARDIRQ-irq-unsafe at: [ 80.512076][ T5061] ... [ 80.512083][ T5061] lock_acquire+0x1e4/0x530 [ 80.519479][ T5061] _raw_read_lock+0x36/0x50 [ 80.524428][ T5061] __do_wait+0x12d/0x850 [ 80.529216][ T5061] do_wait+0x1d9/0x540 [ 80.533462][ T5061] kernel_wait+0xe9/0x240 [ 80.537982][ T5061] call_usermodehelper_exec_work+0xbd/0x230 [ 80.544149][ T5061] process_scheduled_works+0xa00/0x1770 [ 80.549882][ T5061] worker_thread+0x86d/0xd70 [ 80.554664][ T5061] kthread+0x2f0/0x390 [ 80.558856][ T5061] ret_from_fork+0x4b/0x80 [ 80.563543][ T5061] ret_from_fork_asm+0x1a/0x30 [ 80.568402][ T5061] [ 80.568402][ T5061] other info that might help us debug this: [ 80.568402][ T5061] [ 80.578826][ T5061] Chain exists of: [ 80.578826][ T5061] &dev->event_lock#2 --> &f->f_owner.lock --> tasklist_lock [ 80.578826][ T5061] [ 80.592161][ T5061] Possible interrupt unsafe locking scenario: [ 80.592161][ T5061] [ 80.600689][ T5061] CPU0 CPU1 [ 80.606151][ T5061] ---- ---- [ 80.612040][ T5061] lock(tasklist_lock); [ 80.616601][ T5061] local_irq_disable(); [ 80.624247][ T5061] lock(&dev->event_lock#2); [ 80.631561][ T5061] lock(&f->f_owner.lock); [ 80.638884][ T5061] [ 80.642423][ T5061] lock(&dev->event_lock#2); [ 80.647564][ T5061] [ 80.647564][ T5061] *** DEADLOCK *** [ 80.647564][ T5061] [ 80.656717][ T5061] 5 locks held by syz-executor401/5061: [ 80.662454][ T5061] #0: ffffffff8e283df0 (file_rwsem){.+.+}-{0:0}, at: __break_lease+0x3b3/0x17b0 [ 80.672133][ T5061] #1: ffff88802095f438 (&ctx->flc_lock){+.+.}-{2:2}, at: __break_lease+0x3c0/0x17b0 [ 80.681826][ T5061] #2: ffffffff8e132020 (rcu_read_lock){....}-{1:2}, at: kill_fasync+0x55/0x4d0 [ 80.691362][ T5061] #3: ffff888077a740c0 (&new->fa_lock){....}-{2:2}, at: kill_fasync+0x19e/0x4d0 [ 80.700628][ T5061] #4: ffff88802ebb0118 (&f->f_owner.lock){....}-{2:2}, at: send_sigio+0x33/0x360 [ 80.710193][ T5061] [ 80.710193][ T5061] the dependencies between HARDIRQ-irq-safe lock and the holding lock: [ 80.721004][ T5061] -> (&dev->event_lock#2){-.-.}-{2:2} { [ 80.727022][ T5061] IN-HARDIRQ-W at: [ 80.732084][ T5061] lock_acquire+0x1e4/0x530 [ 80.739052][ T5061] _raw_spin_lock_irqsave+0xd5/0x120 [ 80.746817][ T5061] input_event+0x91/0xd0 [ 80.753422][ T5061] psmouse_report_standard_packet+0x54/0x200 [ 80.762120][ T5061] psmouse_process_byte+0x48c/0x680 [ 80.769697][ T5061] psmouse_handle_byte+0x49/0x4c0 [ 80.777119][ T5061] ps2_interrupt+0x17c/0x8e0 [ 80.783962][ T5061] serio_interrupt+0x90/0x140 [ 80.790968][ T5061] i8042_interrupt+0x375/0x770 [ 80.798085][ T5061] __handle_irq_event_percpu+0x28a/0xa30 [ 80.806441][ T5061] handle_irq_event+0x89/0x1f0 [ 80.814798][ T5061] handle_edge_irq+0x25f/0xc20 [ 80.822000][ T5061] __common_interrupt+0x138/0x230 [ 80.830251][ T5061] common_interrupt+0x4f/0xd0 [ 80.837300][ T5061] asm_common_interrupt+0x26/0x40 [ 80.844637][ T5061] unwind_next_frame+0x6f4/0x2a00 [ 80.851955][ T5061] arch_stack_walk+0x151/0x1b0 [ 80.859252][ T5061] stack_trace_save+0x118/0x1d0 [ 80.866389][ T5061] kasan_save_track+0x3f/0x80 [ 80.873423][ T5061] kasan_save_free_info+0x40/0x50 [ 80.881339][ T5061] poison_slab_object+0xa6/0xe0 [ 80.889081][ T5061] __kasan_slab_free+0x37/0x60 [ 80.896219][ T5061] kmem_cache_free+0x102/0x2b0 [ 80.903447][ T5061] rcu_core+0xafd/0x1830 [ 80.910587][ T5061] __do_softirq+0x2bc/0x943 [ 80.918010][ T5061] __irq_exit_rcu+0xf2/0x1c0 [ 80.925059][ T5061] irq_exit_rcu+0x9/0x30 [ 80.931926][ T5061] common_interrupt+0xaa/0xd0 [ 80.939489][ T5061] asm_common_interrupt+0x26/0x40 [ 80.947630][ T5061] __sanitizer_cov_trace_cmp8+0x11/0x90 [ 80.955480][ T5061] unwind_next_frame+0x1df5/0x2a00 [ 80.962854][ T5061] arch_stack_walk+0x151/0x1b0 [ 80.970038][ T5061] stack_trace_save+0x118/0x1d0 [ 80.977212][ T5061] kasan_save_track+0x3f/0x80 [ 80.984453][ T5061] __kasan_slab_alloc+0x66/0x80 [ 80.991680][ T5061] kmem_cache_alloc+0x174/0x340 [ 80.999692][ T5061] __kernfs_new_node+0xd8/0x880 [ 81.007622][ T5061] kernfs_new_node+0x13a/0x240 [ 81.014706][ T5061] __kernfs_create_file+0x49/0x2f0 [ 81.022440][ T5061] sysfs_add_file_mode_ns+0x24a/0x310 [ 81.030186][ T5061] sysfs_create_file_ns+0x197/0x2a0 [ 81.037747][ T5061] bus_add_driver+0x47f/0x620 [ 81.045005][ T5061] driver_register+0x23a/0x320 [ 81.052109][ T5061] usb_register_driver+0x1f5/0x3b0 [ 81.059607][ T5061] do_one_initcall+0x238/0x830 [ 81.067172][ T5061] do_initcall_level+0x157/0x210 [ 81.074423][ T5061] do_initcalls+0x3f/0x80 [ 81.081636][ T5061] kernel_init_freeable+0x435/0x5d0 [ 81.089212][ T5061] kernel_init+0x1d/0x2a0 [ 81.096216][ T5061] ret_from_fork+0x4b/0x80 [ 81.103016][ T5061] ret_from_fork_asm+0x1a/0x30 [ 81.110511][ T5061] IN-SOFTIRQ-W at: [ 81.114971][ T5061] lock_acquire+0x1e4/0x530 [ 81.122185][ T5061] _raw_spin_lock_irqsave+0xd5/0x120 [ 81.130294][ T5061] input_event+0x91/0xd0 [ 81.136990][ T5061] psmouse_report_standard_packet+0x54/0x200 [ 81.145181][ T5061] psmouse_process_byte+0x48c/0x680 [ 81.153177][ T5061] psmouse_handle_byte+0x49/0x4c0 [ 81.160568][ T5061] ps2_interrupt+0x17c/0x8e0 [ 81.167347][ T5061] serio_interrupt+0x90/0x140 [ 81.174481][ T5061] i8042_interrupt+0x375/0x770 [ 81.181625][ T5061] __handle_irq_event_percpu+0x28a/0xa30 [ 81.189786][ T5061] handle_irq_event+0x89/0x1f0 [ 81.197106][ T5061] handle_edge_irq+0x25f/0xc20 [ 81.204168][ T5061] __common_interrupt+0x138/0x230 [ 81.211412][ T5061] common_interrupt+0x4f/0xd0 [ 81.218374][ T5061] asm_common_interrupt+0x26/0x40 [ 81.225604][ T5061] unwind_next_frame+0x6f4/0x2a00 [ 81.233196][ T5061] arch_stack_walk+0x151/0x1b0 [ 81.240535][ T5061] stack_trace_save+0x118/0x1d0 [ 81.248891][ T5061] kasan_save_track+0x3f/0x80 [ 81.256190][ T5061] kasan_save_free_info+0x40/0x50 [ 81.263806][ T5061] poison_slab_object+0xa6/0xe0 [ 81.271400][ T5061] __kasan_slab_free+0x37/0x60 [ 81.278748][ T5061] kmem_cache_free+0x102/0x2b0 [ 81.285811][ T5061] rcu_core+0xafd/0x1830 [ 81.292993][ T5061] __do_softirq+0x2bc/0x943 [ 81.300342][ T5061] __irq_exit_rcu+0xf2/0x1c0 [ 81.308197][ T5061] irq_exit_rcu+0x9/0x30 [ 81.315355][ T5061] common_interrupt+0xaa/0xd0 [ 81.322397][ T5061] asm_common_interrupt+0x26/0x40 [ 81.329882][ T5061] __sanitizer_cov_trace_cmp8+0x11/0x90 [ 81.337793][ T5061] unwind_next_frame+0x1df5/0x2a00 [ 81.345108][ T5061] arch_stack_walk+0x151/0x1b0 [ 81.352130][ T5061] stack_trace_save+0x118/0x1d0 [ 81.359436][ T5061] kasan_save_track+0x3f/0x80 [ 81.366723][ T5061] __kasan_slab_alloc+0x66/0x80 [ 81.374001][ T5061] kmem_cache_alloc+0x174/0x340 [ 81.381122][ T5061] __kernfs_new_node+0xd8/0x880 [ 81.388160][ T5061] kernfs_new_node+0x13a/0x240 [ 81.395119][ T5061] __kernfs_create_file+0x49/0x2f0 [ 81.402551][ T5061] sysfs_add_file_mode_ns+0x24a/0x310 [ 81.410267][ T5061] sysfs_create_file_ns+0x197/0x2a0 [ 81.417732][ T5061] bus_add_driver+0x47f/0x620 [ 81.424699][ T5061] driver_register+0x23a/0x320 [ 81.432011][ T5061] usb_register_driver+0x1f5/0x3b0 [ 81.439658][ T5061] do_one_initcall+0x238/0x830 [ 81.446703][ T5061] do_initcall_level+0x157/0x210 [ 81.453922][ T5061] do_initcalls+0x3f/0x80 [ 81.460715][ T5061] kernel_init_freeable+0x435/0x5d0 [ 81.468198][ T5061] kernel_init+0x1d/0x2a0 [ 81.474793][ T5061] ret_from_fork+0x4b/0x80 [ 81.481428][ T5061] ret_from_fork_asm+0x1a/0x30 [ 81.488472][ T5061] INITIAL USE at: [ 81.492644][ T5061] lock_acquire+0x1e4/0x530 [ 81.499422][ T5061] _raw_spin_lock_irqsave+0xd5/0x120 [ 81.506992][ T5061] input_inject_event+0xc5/0x340 [ 81.514586][ T5061] led_trigger_event+0x11c/0x1e0 [ 81.521989][ T5061] kbd_led_trigger_activate+0xbd/0x100 [ 81.529902][ T5061] led_trigger_set+0x541/0x950 [ 81.537305][ T5061] led_trigger_set_default+0x229/0x260 [ 81.545334][ T5061] led_classdev_register_ext+0x773/0x960 [ 81.553433][ T5061] input_leds_connect+0x497/0x640 [ 81.561180][ T5061] input_register_device+0xcfa/0x1090 [ 81.568855][ T5061] atkbd_connect+0x752/0xa00 [ 81.576092][ T5061] serio_driver_probe+0x7f/0xa0 [ 81.583138][ T5061] really_probe+0x29e/0xc50 [ 81.589944][ T5061] __driver_probe_device+0x1a2/0x3e0 [ 81.597507][ T5061] driver_probe_device+0x50/0x430 [ 81.605194][ T5061] __driver_attach+0x45f/0x710 [ 81.612056][ T5061] bus_for_each_dev+0x239/0x2b0 [ 81.619250][ T5061] serio_handle_event+0x1c7/0x920 [ 81.626541][ T5061] process_scheduled_works+0xa00/0x1770 [ 81.634187][ T5061] worker_thread+0x86d/0xd70 [ 81.641051][ T5061] kthread+0x2f0/0x390 [ 81.647472][ T5061] ret_from_fork+0x4b/0x80 [ 81.654021][ T5061] ret_from_fork_asm+0x1a/0x30 [ 81.661156][ T5061] } [ 81.664014][ T5061] ... key at: [] input_allocate_device.__key.5+0x0/0x20 [ 81.673858][ T5061] -> (&client->buffer_lock){....}-{2:2} { [ 81.680036][ T5061] INITIAL USE at: [ 81.684276][ T5061] lock_acquire+0x1e4/0x530 [ 81.691502][ T5061] _raw_spin_lock+0x2e/0x40 [ 81.698135][ T5061] evdev_pass_values+0xf2/0xad0 [ 81.705107][ T5061] evdev_events+0x1c2/0x300 [ 81.711711][ T5061] input_pass_values+0x84d/0x1200 [ 81.718854][ T5061] input_event_dispose+0x36c/0x650 [ 81.725992][ T5061] input_handle_event+0xa71/0xbe0 [ 81.733255][ T5061] input_inject_event+0x22f/0x340 [ 81.740224][ T5061] evdev_write+0x672/0x7c0 [ 81.746918][ T5061] vfs_write+0x2a4/0xcb0 [ 81.753385][ T5061] ksys_write+0x1a0/0x2c0 [ 81.760112][ T5061] do_syscall_64+0xfb/0x240 [ 81.767177][ T5061] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 81.775437][ T5061] } [ 81.778927][ T5061] ... key at: [] evdev_open.__key.24+0x0/0x20 [ 81.787886][ T5061] ... acquired at: [ 81.792248][ T5061] lock_acquire+0x1e4/0x530 [ 81.797232][ T5061] _raw_spin_lock+0x2e/0x40 [ 81.801955][ T5061] evdev_pass_values+0xf2/0xad0 [ 81.807116][ T5061] evdev_events+0x1c2/0x300 [ 81.811901][ T5061] input_pass_values+0x84d/0x1200 [ 81.817226][ T5061] input_event_dispose+0x36c/0x650 [ 81.822785][ T5061] input_handle_event+0xa71/0xbe0 [ 81.828193][ T5061] input_inject_event+0x22f/0x340 [ 81.833580][ T5061] evdev_write+0x672/0x7c0 [ 81.838299][ T5061] vfs_write+0x2a4/0xcb0 [ 81.842914][ T5061] ksys_write+0x1a0/0x2c0 [ 81.847576][ T5061] do_syscall_64+0xfb/0x240 [ 81.852271][ T5061] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 81.858487][ T5061] [ 81.860916][ T5061] -> (&new->fa_lock){....}-{2:2} { [ 81.866305][ T5061] INITIAL READ USE at: [ 81.870901][ T5061] lock_acquire+0x1e4/0x530 [ 81.877948][ T5061] _raw_read_lock_irqsave+0xdd/0x130 [ 81.886032][ T5061] kill_fasync+0x19e/0x4d0 [ 81.892913][ T5061] evdev_pass_values+0x58a/0xad0 [ 81.900024][ T5061] evdev_events+0x1c2/0x300 [ 81.907044][ T5061] input_pass_values+0x84d/0x1200 [ 81.914441][ T5061] input_event_dispose+0x36c/0x650 [ 81.921846][ T5061] input_handle_event+0xa71/0xbe0 [ 81.929499][ T5061] input_inject_event+0x22f/0x340 [ 81.936880][ T5061] evdev_write+0x672/0x7c0 [ 81.943561][ T5061] vfs_write+0x2a4/0xcb0 [ 81.950592][ T5061] ksys_write+0x1a0/0x2c0 [ 81.957375][ T5061] do_syscall_64+0xfb/0x240 [ 81.964107][ T5061] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 81.972414][ T5061] } [ 81.975516][ T5061] ... key at: [] fasync_insert_entry.__key+0x0/0x20 [ 81.984954][ T5061] ... acquired at: [ 81.988965][ T5061] lock_acquire+0x1e4/0x530 [ 81.993836][ T5061] _raw_read_lock_irqsave+0xdd/0x130 [ 81.999414][ T5061] kill_fasync+0x19e/0x4d0 [ 82.004113][ T5061] evdev_pass_values+0x58a/0xad0 [ 82.009597][ T5061] evdev_events+0x1c2/0x300 [ 82.015079][ T5061] input_pass_values+0x84d/0x1200 [ 82.020987][ T5061] input_event_dispose+0x36c/0x650 [ 82.026277][ T5061] input_handle_event+0xa71/0xbe0 [ 82.031653][ T5061] input_inject_event+0x22f/0x340 [ 82.036957][ T5061] evdev_write+0x672/0x7c0 [ 82.041549][ T5061] vfs_write+0x2a4/0xcb0 [ 82.046020][ T5061] ksys_write+0x1a0/0x2c0 [ 82.050689][ T5061] do_syscall_64+0xfb/0x240 [ 82.055718][ T5061] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 82.061908][ T5061] [ 82.064243][ T5061] -> (&f->f_owner.lock){....}-{2:2} { [ 82.069653][ T5061] INITIAL USE at: [ 82.073556][ T5061] lock_acquire+0x1e4/0x530 [ 82.079821][ T5061] _raw_write_lock_irq+0xd3/0x120 [ 82.087558][ T5061] f_modown+0x38/0x340 [ 82.093492][ T5061] do_fcntl+0x1359/0x16f0 [ 82.099690][ T5061] __se_sys_fcntl+0xd2/0x1b0 [ 82.106116][ T5061] do_syscall_64+0xfb/0x240 [ 82.112404][ T5061] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 82.120173][ T5061] INITIAL READ USE at: [ 82.124696][ T5061] lock_acquire+0x1e4/0x530 [ 82.131568][ T5061] _raw_read_lock_irqsave+0xdd/0x130 [ 82.139089][ T5061] send_sigio+0x33/0x360 [ 82.145709][ T5061] kill_fasync+0x23a/0x4d0 [ 82.152271][ T5061] evdev_pass_values+0x58a/0xad0 [ 82.159570][ T5061] evdev_events+0x1c2/0x300 [ 82.166358][ T5061] input_pass_values+0x84d/0x1200 [ 82.174560][ T5061] input_event_dispose+0x36c/0x650 [ 82.182052][ T5061] input_handle_event+0xa71/0xbe0 [ 82.189109][ T5061] input_inject_event+0x22f/0x340 [ 82.196468][ T5061] evdev_write+0x672/0x7c0 [ 82.203071][ T5061] vfs_write+0x2a4/0xcb0 [ 82.209527][ T5061] ksys_write+0x1a0/0x2c0 [ 82.215968][ T5061] do_syscall_64+0xfb/0x240 [ 82.222493][ T5061] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 82.230592][ T5061] } [ 82.233120][ T5061] ... key at: [] init_file.__key+0x0/0x20 [ 82.240966][ T5061] ... acquired at: [ 82.244905][ T5061] lock_acquire+0x1e4/0x530 [ 82.249950][ T5061] _raw_read_lock_irqsave+0xdd/0x130 [ 82.255453][ T5061] send_sigio+0x33/0x360 [ 82.259965][ T5061] kill_fasync+0x23a/0x4d0 [ 82.265025][ T5061] evdev_pass_values+0x58a/0xad0 [ 82.270635][ T5061] evdev_events+0x1c2/0x300 [ 82.276104][ T5061] input_pass_values+0x84d/0x1200 [ 82.281679][ T5061] input_event_dispose+0x36c/0x650 [ 82.287583][ T5061] input_handle_event+0xa71/0xbe0 [ 82.292991][ T5061] input_inject_event+0x22f/0x340 [ 82.298383][ T5061] evdev_write+0x672/0x7c0 [ 82.303356][ T5061] vfs_write+0x2a4/0xcb0 [ 82.308675][ T5061] ksys_write+0x1a0/0x2c0 [ 82.313773][ T5061] do_syscall_64+0xfb/0x240 [ 82.318472][ T5061] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 82.324555][ T5061] [ 82.326871][ T5061] [ 82.326871][ T5061] the dependencies between the lock to be acquired [ 82.326879][ T5061] and HARDIRQ-irq-unsafe lock: [ 82.340893][ T5061] -> (tasklist_lock){.+.+}-{2:2} { [ 82.346294][ T5061] HARDIRQ-ON-R at: [ 82.350555][ T5061] lock_acquire+0x1e4/0x530 [ 82.356883][ T5061] _raw_read_lock+0x36/0x50 [ 82.363042][ T5061] __do_wait+0x12d/0x850 [ 82.370266][ T5061] do_wait+0x1d9/0x540 [ 82.376054][ T5061] kernel_wait+0xe9/0x240 [ 82.382244][ T5061] call_usermodehelper_exec_work+0xbd/0x230 [ 82.390713][ T5061] process_scheduled_works+0xa00/0x1770 [ 82.398210][ T5061] worker_thread+0x86d/0xd70 [ 82.404641][ T5061] kthread+0x2f0/0x390 [ 82.412065][ T5061] ret_from_fork+0x4b/0x80 [ 82.418495][ T5061] ret_from_fork_asm+0x1a/0x30 [ 82.425300][ T5061] SOFTIRQ-ON-R at: [ 82.429291][ T5061] lock_acquire+0x1e4/0x530 [ 82.439901][ T5061] _raw_read_lock+0x36/0x50 [ 82.446182][ T5061] __do_wait+0x12d/0x850 [ 82.452424][ T5061] do_wait+0x1d9/0x540 [ 82.458422][ T5061] kernel_wait+0xe9/0x240 [ 82.464518][ T5061] call_usermodehelper_exec_work+0xbd/0x230 [ 82.473242][ T5061] process_scheduled_works+0xa00/0x1770 [ 82.480816][ T5061] worker_thread+0x86d/0xd70 [ 82.487244][ T5061] kthread+0x2f0/0x390 [ 82.493207][ T5061] ret_from_fork+0x4b/0x80 [ 82.499595][ T5061] ret_from_fork_asm+0x1a/0x30 [ 82.506125][ T5061] INITIAL USE at: [ 82.510151][ T5061] lock_acquire+0x1e4/0x530 [ 82.516719][ T5061] _raw_write_lock_irq+0xd3/0x120 [ 82.523519][ T5061] copy_process+0x228b/0x3df0 [ 82.530192][ T5061] kernel_clone+0x223/0x840 [ 82.536377][ T5061] user_mode_thread+0x132/0x1a0 [ 82.542885][ T5061] rest_init+0x27/0x300 [ 82.548797][ T5061] arch_call_rest_init+0xe/0x10 [ 82.555318][ T5061] start_kernel+0x47a/0x500 [ 82.561495][ T5061] x86_64_start_reservations+0x2a/0x30 [ 82.568792][ T5061] x86_64_start_kernel+0x99/0xa0 [ 82.575744][ T5061] common_startup_64+0x13e/0x147 [ 82.582445][ T5061] INITIAL READ USE at: [ 82.586777][ T5061] lock_acquire+0x1e4/0x530 [ 82.593603][ T5061] _raw_read_lock+0x36/0x50 [ 82.600322][ T5061] __do_wait+0x12d/0x850 [ 82.607065][ T5061] do_wait+0x1d9/0x540 [ 82.613152][ T5061] kernel_wait+0xe9/0x240 [ 82.619576][ T5061] call_usermodehelper_exec_work+0xbd/0x230 [ 82.627592][ T5061] process_scheduled_works+0xa00/0x1770 [ 82.635511][ T5061] worker_thread+0x86d/0xd70 [ 82.642189][ T5061] kthread+0x2f0/0x390 [ 82.648380][ T5061] ret_from_fork+0x4b/0x80 [ 82.654826][ T5061] ret_from_fork_asm+0x1a/0x30 [ 82.661687][ T5061] } [ 82.664184][ T5061] ... key at: [] tasklist_lock+0x18/0x40 [ 82.671980][ T5061] ... acquired at: [ 82.675964][ T5061] lock_acquire+0x1e4/0x530 [ 82.680657][ T5061] _raw_read_lock+0x36/0x50 [ 82.685499][ T5061] send_sigio+0xfc/0x360 [ 82.690121][ T5061] kill_fasync+0x23a/0x4d0 [ 82.694923][ T5061] lease_break_callback+0x26/0x30 [ 82.700689][ T5061] __break_lease+0x6d5/0x17b0 [ 82.705740][ T5061] do_dentry_open+0x871/0x15a0 [ 82.710699][ T5061] path_openat+0x2860/0x3240 [ 82.715594][ T5061] do_filp_open+0x235/0x490 [ 82.720290][ T5061] do_sys_openat2+0x13e/0x1d0 [ 82.725254][ T5061] __x64_sys_open+0x225/0x270 [ 82.730454][ T5061] do_syscall_64+0xfb/0x240 [ 82.735224][ T5061] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 82.741369][ T5061] [ 82.744714][ T5061] [ 82.744714][ T5061] stack backtrace: [ 82.750989][ T5061] CPU: 1 PID: 5061 Comm: syz-executor401 Not tainted 6.8.0-syzkaller-08951-gfe46a7dd189e #0 [ 82.761825][ T5061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 82.771987][ T5061] Call Trace: [ 82.776152][ T5061] [ 82.779266][ T5061] dump_stack_lvl+0x241/0x360 [ 82.784398][ T5061] ? __pfx_dump_stack_lvl+0x10/0x10 [ 82.789774][ T5061] ? __pfx__printk+0x10/0x10 [ 82.794752][ T5061] ? print_shortest_lock_dependencies+0xf2/0x160 [ 82.801780][ T5061] validate_chain+0x4dc7/0x58e0 [ 82.806993][ T5061] ? __pfx_validate_chain+0x10/0x10 [ 82.812582][ T5061] ? __lock_acquire+0x1346/0x1fd0 [ 82.817903][ T5061] ? mark_lock+0x9a/0x350 [ 82.822341][ T5061] __lock_acquire+0x1346/0x1fd0 [ 82.827244][ T5061] lock_acquire+0x1e4/0x530 [ 82.831866][ T5061] ? send_sigio+0xfc/0x360 [ 82.836682][ T5061] ? __pfx_lock_acquire+0x10/0x10 [ 82.841915][ T5061] ? __pfx_lock_acquire+0x10/0x10 [ 82.847332][ T5061] ? do_raw_read_lock+0x3c/0x90 [ 82.852221][ T5061] ? _raw_read_lock_irqsave+0xe9/0x130 [ 82.857799][ T5061] ? __pfx__raw_read_lock_irqsave+0x10/0x10 [ 82.864016][ T5061] ? _raw_read_lock_irqsave+0xe9/0x130 [ 82.869595][ T5061] _raw_read_lock+0x36/0x50 [ 82.874200][ T5061] ? send_sigio+0xfc/0x360 [ 82.879097][ T5061] send_sigio+0xfc/0x360 [ 82.883458][ T5061] kill_fasync+0x23a/0x4d0 [ 82.887883][ T5061] ? kill_fasync+0x55/0x4d0 [ 82.892488][ T5061] lease_break_callback+0x26/0x30 [ 82.897637][ T5061] __break_lease+0x6d5/0x17b0 [ 82.902543][ T5061] ? __pfx___break_lease+0x10/0x10 [ 82.907680][ T5061] ? __pfx___fsnotify_parent+0x10/0x10 [ 82.913155][ T5061] ? security_file_open+0x457/0x570 [ 82.918878][ T5061] ? try_module_get+0x51/0x150 [ 82.924047][ T5061] do_dentry_open+0x871/0x15a0 [ 82.929010][ T5061] path_openat+0x2860/0x3240 [ 82.933732][ T5061] ? __pfx_stack_trace_save+0x10/0x10 [ 82.939318][ T5061] ? __lock_acquire+0x1346/0x1fd0 [ 82.944747][ T5061] ? mark_lock+0x9a/0x350 [ 82.949795][ T5061] ? __pfx_path_openat+0x10/0x10 [ 82.954932][ T5061] do_filp_open+0x235/0x490 [ 82.959645][ T5061] ? __pfx_do_filp_open+0x10/0x10 [ 82.964919][ T5061] ? _raw_spin_unlock+0x28/0x50 [ 82.969907][ T5061] ? alloc_fd+0x59d/0x640 [ 82.974271][ T5061] do_sys_openat2+0x13e/0x1d0 [ 82.979011][ T5061] ? __pfx_do_sys_openat2+0x10/0x10 [ 82.984541][ T5061] ? lockdep_hardirqs_on+0x99/0x150 [ 82.989759][ T5061] ? _raw_spin_unlock_irq+0x2e/0x50 [ 82.995055][ T5061] ? ptrace_notify+0x279/0x380 [ 83.000086][ T5061] __x64_sys_open+0x225/0x270 [ 83.005257][ T5061] ? __pfx___x64_sys_open+0x10/0x10 [ 83.010989][ T5061] ? do_syscall_64+0x10a/0x240 [ 83.015860][ T5061] ? syscall_trace_enter+0x5f/0x150 [ 83.021171][ T5061] do_syscall_64+0xfb/0x240 [ 83.025707][ T5061] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 83.031790][ T5061] RIP: 0033:0x7f88b8ead5a9 [ 83.036244][ T5061] Code: 48 83 c4 28 c3 e8 37 17 00 00 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 83.056185][ T5061] RSP: 002b:00007ffd8e72dcb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 83.065087][ T5061] RAX: ffffffffffffffda RBX: 00007ffd8e72de88 RCX: 00007f88b8ead5a9 [ 83.073431][ T5061] RDX: 0000000000000000 RSI: 0000000000004c01 RDI: 00000000200002c0 open("./file0", O_WRONLY|O_APPEND|O_NONBLOCK|O_DIRECT) = -1 EAGAIN (Resource temporarily unavailable) exit_group(0) = ? +++ exited with 0 +++ [ 83.081644][ T5061] RBP: 00007f88b8f20610 R08: 00007ffd8e72de88 R09: 00007ffd8e72de88 [ 83.089815][ T5061] R10: 00007ffd8e72de88 R11: 0000000000000246 R12: 0000000000000001 [ 83.097898][ T5061] R13: 00007ffd8e72de78 R14: 0000000000000001 R15: 0000000000000001 [ 83.107112][ T5061]