[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.10.9' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 34.263037] IPVS: ftp: loaded support on port[0] = 21 [ 34.339439] [ 34.341154] ================================ [ 34.345539] WARNING: inconsistent lock state [ 34.350019] 4.14.231-syzkaller #0 Not tainted [ 34.354505] -------------------------------- [ 34.358932] inconsistent {SOFTIRQ-ON-W} -> {IN-SOFTIRQ-W} usage. [ 34.365244] swapper/1/0 [HC0[0]:SC1[1]:HE1:SE0] takes: [ 34.370911] (&(&local->client_conns_lock)->rlock){+.?.}, at: [] rxrpc_put_client_conn+0x661/0xac0 [ 34.381764] {SOFTIRQ-ON-W} state was registered at: [ 34.386865] lock_acquire+0x170/0x3f0 [ 34.390749] _raw_spin_lock+0x2a/0x40 [ 34.394619] rxrpc_connect_call+0x2bb/0x3e10 [ 34.399214] rxrpc_new_client_call+0x8f4/0x1a10 [ 34.403950] rxrpc_do_sendmsg+0x8dc/0xfb0 [ 34.408260] rxrpc_sendmsg+0x3cf/0x5f0 [ 34.412223] sock_sendmsg+0xb5/0x100 [ 34.415998] ___sys_sendmsg+0x6c8/0x800 [ 34.420037] __sys_sendmsg+0xa3/0x120 [ 34.423910] SyS_sendmsg+0x27/0x40 [ 34.427950] do_syscall_64+0x1d5/0x640 [ 34.432008] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 34.437288] irq event stamp: 119480 [ 34.440930] hardirqs last enabled at (119480): [] _raw_spin_unlock_irqrestore+0x79/0xe0 [ 34.450911] hardirqs last disabled at (119479): [] _raw_spin_lock_irqsave+0x66/0xc0 [ 34.460430] softirqs last enabled at (119280): [] irq_enter+0xbd/0xd0 [ 34.468638] softirqs last disabled at (119281): [] irq_exit+0x193/0x240 [ 34.477266] [ 34.477266] other info that might help us debug this: [ 34.484116] Possible unsafe locking scenario: [ 34.484116] [ 34.490468] CPU0 [ 34.493214] ---- [ 34.495914] lock(&(&local->client_conns_lock)->rlock); [ 34.501505] [ 34.504242] lock(&(&local->client_conns_lock)->rlock); [ 34.509934] [ 34.509934] *** DEADLOCK *** [ 34.509934] [ 34.515970] 1 lock held by swapper/1/0: [ 34.519917] #0: (rcu_callback){....}, at: [] rcu_process_callbacks+0x84e/0x1180 [ 34.529108] [ 34.529108] stack backtrace: [ 34.533607] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 4.14.231-syzkaller #0 [ 34.540822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 34.550181] Call Trace: [ 34.552749] [ 34.554912] dump_stack+0x1b2/0x281 [ 34.558625] print_usage_bug.cold+0x42e/0x570 [ 34.563125] mark_lock+0xb4d/0x1050 [ 34.566741] ? print_irq_inversion_bug+0xd0/0xd0 [ 34.571486] __lock_acquire+0xc81/0x3f20 [ 34.575532] ? __lock_acquire+0x5fc/0x3f20 [ 34.580305] ? trace_hardirqs_on+0x10/0x10 [ 34.584524] ? lock_acquire+0x170/0x3f0 [ 34.588687] ? debug_object_deactivate+0x1da/0x2e0 [ 34.593693] ? trace_hardirqs_on+0x10/0x10 [ 34.597903] ? lock_acquire+0x170/0x3f0 [ 34.601855] ? lock_downgrade+0x740/0x740 [ 34.605998] ? _raw_spin_unlock_irqrestore+0x79/0xe0 [ 34.611167] lock_acquire+0x170/0x3f0 [ 34.614965] ? rxrpc_put_client_conn+0x661/0xac0 [ 34.620026] _raw_spin_lock+0x2a/0x40 [ 34.623821] ? rxrpc_put_client_conn+0x661/0xac0 [ 34.628858] rxrpc_put_client_conn+0x661/0xac0 [ 34.633533] ? rxrpc_rcu_destroy_call+0x83/0x190 [ 34.638520] rxrpc_rcu_destroy_call+0x83/0x190 [ 34.643296] ? rxrpc_call_timer_expired+0x70/0x70 [ 34.648123] rcu_process_callbacks+0x780/0x1180 [ 34.652774] ? note_gp_changes+0x2f0/0x2f0 [ 34.657080] ? sched_clock+0x2a/0x40 [ 34.660871] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 34.666302] __do_softirq+0x24d/0x9ff [ 34.670106] ? check_preemption_disabled+0x35/0x240 [ 34.675140] irq_exit+0x193/0x240 [ 34.678802] smp_apic_timer_interrupt+0x141/0x5e0 [ 34.683659] apic_timer_interrupt+0x93/0xa0 [ 34.687959] [ 34.690189] RIP: 0010:native_safe_halt+0xe/0x10 [ 34.694950] RSP: 0018:ffff8880b5477e68 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff10 [ 34.702739] RAX: 1ffffffff11e125c RBX: dffffc0000000000 RCX: 0000000000000000 [ 34.710015] RDX: dffffc0000000000 RSI: 0000000000000001 RDI: ffff8880b5464bc4 [ 34.717798] RBP: ffffffff88f092d0 R08: 0000000000000000 R09: 0000000000000000 [ 34.725454] R10: 0000000000000000 R11: 0000000000000000 R12: ffffed1016a8c868 [ 34.732710] R13: ffff8880b5464340 R14: 0000000000000000 R15: 0000000000000000 [ 34.74016