./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3090714649 <...> Warning: Permanently added '10.128.0.164' (ED25519) to the list of known hosts. execve("./syz-executor3090714649", ["./syz-executor3090714649"], 0x7fff6e180d00 /* 10 vars */) = 0 brk(NULL) = 0x555571270000 brk(0x555571270d00) = 0x555571270d00 arch_prctl(ARCH_SET_FS, 0x555571270380) = 0 set_tid_address(0x555571270650) = 5066 set_robust_list(0x555571270660, 24) = 0 rseq(0x555571270ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor3090714649", 4096) = 28 getrandom("\x84\xdf\x5b\xad\x8c\x3c\xd4\x87", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555571270d00 brk(0x555571291d00) = 0x555571291d00 brk(0x555571292000) = 0x555571292000 mprotect(0x7f29b294c000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 openat(AT_FDCWD, "/dev/input/event0", O_RDONLY) = 3 ioctl(-1, EVIOCSFF, {type=FF_PERIODIC, id=0, direction=0, ...}) = -1 EBADF (Bad file descriptor) openat(AT_FDCWD, "/dev/input/event0", O_WRONLY|O_NOCTTY|O_TRUNC|O_NONBLOCK|O_NOFOLLOW|FASYNC|0x800000) = 4 ioctl(3, FIOASYNC, [4]) = 0 write(4, "\xe2\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x2f\x64\x65\x76\x2f\x69\x6e\x70\x75\x74\x2f\x65\x76\x65\x6e\x74\x23\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4200) = 4200 open("./file0", O_RDONLY|O_CREAT|O_LARGEFILE|0x4000000, 000) = 5 gettid() = 5066 fcntl(5, F_SETOWN_EX, {type=F_OWNER_PGRP, pid=5066}) = 0 fcntl(5, F_SETLEASE, F_RDLCK) = 0 [ 60.820225][ T5066] [ 60.822610][ T5066] ===================================================== [ 60.829643][ T5066] WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected [ 60.837083][ T5066] 6.8.0-syzkaller-08073-g480e035fc4c7 #0 Not tainted [ 60.843844][ T5066] ----------------------------------------------------- [ 60.850958][ T5066] syz-executor309/5066 [HC0[0]:SC0[0]:HE0:SE1] is trying to acquire: [ 60.859116][ T5066] ffffffff8de0a058 (tasklist_lock){.+.+}-{2:2}, at: send_sigio+0xfc/0x360 [ 60.867653][ T5066] [ 60.867653][ T5066] and this task is already holding: [ 60.875027][ T5066] ffff8880182a7798 (&f->f_owner.lock){....}-{2:2}, at: send_sigio+0x33/0x360 [ 60.883823][ T5066] which would create a new lock dependency: [ 60.889790][ T5066] (&f->f_owner.lock){....}-{2:2} -> (tasklist_lock){.+.+}-{2:2} [ 60.897692][ T5066] [ 60.897692][ T5066] but this new dependency connects a HARDIRQ-irq-safe lock: [ 60.907209][ T5066] (&dev->event_lock#2){-...}-{2:2} [ 60.907231][ T5066] [ 60.907231][ T5066] ... which became HARDIRQ-irq-safe at: [ 60.920355][ T5066] lock_acquire+0x1e4/0x530 [ 60.925150][ T5066] _raw_spin_lock_irqsave+0xd5/0x120 [ 60.930614][ T5066] input_event+0x91/0xd0 [ 60.934963][ T5066] psmouse_report_standard_packet+0x54/0x200 [ 60.941040][ T5066] psmouse_process_byte+0x48c/0x680 [ 60.946337][ T5066] psmouse_handle_byte+0x49/0x4c0 [ 60.951522][ T5066] ps2_interrupt+0x17c/0x8e0 [ 60.956210][ T5066] serio_interrupt+0x90/0x140 [ 60.961066][ T5066] i8042_interrupt+0x375/0x770 [ 60.966096][ T5066] __handle_irq_event_percpu+0x28a/0xa30 [ 60.971989][ T5066] handle_irq_event+0x89/0x1f0 [ 60.976853][ T5066] handle_edge_irq+0x25f/0xc20 [ 60.981706][ T5066] __common_interrupt+0x138/0x230 [ 60.986820][ T5066] common_interrupt+0xa5/0xd0 [ 60.991568][ T5066] asm_common_interrupt+0x26/0x40 [ 60.996678][ T5066] lock_acquire+0x25b/0x530 [ 61.001371][ T5066] down_write+0x3a/0x50 [ 61.005661][ T5066] kernfs_add_one+0x9a/0x8b0 [ 61.010478][ T5066] kernfs_create_dir_ns+0xd9/0x120 [ 61.015680][ T5066] sysfs_create_dir_ns+0x189/0x3a0 [ 61.020869][ T5066] kobject_add_internal+0x435/0x8d0 [ 61.026162][ T5066] kobject_init_and_add+0x124/0x190 [ 61.031465][ T5066] bus_add_driver+0x25a/0x620 [ 61.036317][ T5066] driver_register+0x23a/0x320 [ 61.041615][ T5066] usb_register_driver+0x1f5/0x3b0 [ 61.047112][ T5066] do_one_initcall+0x238/0x830 [ 61.052005][ T5066] do_initcall_level+0x157/0x210 [ 61.057453][ T5066] do_initcalls+0x3f/0x80 [ 61.061941][ T5066] kernel_init_freeable+0x435/0x5d0 [ 61.067227][ T5066] kernel_init+0x1d/0x2a0 [ 61.071729][ T5066] ret_from_fork+0x4b/0x80 [ 61.076263][ T5066] ret_from_fork_asm+0x1a/0x30 [ 61.081377][ T5066] [ 61.081377][ T5066] to a HARDIRQ-irq-unsafe lock: [ 61.088678][ T5066] (tasklist_lock){.+.+}-{2:2} [ 61.088701][ T5066] [ 61.088701][ T5066] ... which became HARDIRQ-irq-unsafe at: [ 61.101399][ T5066] ... [ 61.101405][ T5066] lock_acquire+0x1e4/0x530 [ 61.108659][ T5066] _raw_read_lock+0x36/0x50 [ 61.113419][ T5066] __do_wait+0x12d/0x850 [ 61.117755][ T5066] do_wait+0x1d9/0x540 [ 61.121911][ T5066] kernel_wait+0xe9/0x240 [ 61.126320][ T5066] call_usermodehelper_exec_work+0xbd/0x230 [ 61.132410][ T5066] process_scheduled_works+0xa00/0x1770 [ 61.138196][ T5066] worker_thread+0x86d/0xd70 [ 61.142861][ T5066] kthread+0x2f0/0x390 [ 61.147000][ T5066] ret_from_fork+0x4b/0x80 [ 61.151485][ T5066] ret_from_fork_asm+0x1a/0x30 [ 61.156323][ T5066] [ 61.156323][ T5066] other info that might help us debug this: [ 61.156323][ T5066] [ 61.166704][ T5066] Chain exists of: [ 61.166704][ T5066] &dev->event_lock#2 --> &f->f_owner.lock --> tasklist_lock [ 61.166704][ T5066] [ 61.179983][ T5066] Possible interrupt unsafe locking scenario: [ 61.179983][ T5066] [ 61.188296][ T5066] CPU0 CPU1 [ 61.193748][ T5066] ---- ---- [ 61.199179][ T5066] lock(tasklist_lock); [ 61.203402][ T5066] local_irq_disable(); [ 61.210267][ T5066] lock(&dev->event_lock#2); [ 61.217557][ T5066] lock(&f->f_owner.lock); [ 61.224570][ T5066] [ 61.228004][ T5066] lock(&dev->event_lock#2); [ 61.232845][ T5066] [ 61.232845][ T5066] *** DEADLOCK *** [ 61.232845][ T5066] [ 61.240991][ T5066] 5 locks held by syz-executor309/5066: [ 61.246520][ T5066] #0: ffffffff8e285770 (file_rwsem){.+.+}-{0:0}, at: __break_lease+0x3b3/0x17b0 [ 61.255655][ T5066] #1: ffff88802f236e88 (&ctx->flc_lock){+.+.}-{2:2}, at: __break_lease+0x3c0/0x17b0 [ 61.265209][ T5066] #2: ffffffff8e132020 (rcu_read_lock){....}-{1:2}, at: kill_fasync+0x55/0x4d0 [ 61.274322][ T5066] #3: ffff8880798c10c0 (&new->fa_lock){....}-{2:2}, at: kill_fasync+0x19e/0x4d0 [ 61.283442][ T5066] #4: ffff8880182a7798 (&f->f_owner.lock){....}-{2:2}, at: send_sigio+0x33/0x360 [ 61.292637][ T5066] [ 61.292637][ T5066] the dependencies between HARDIRQ-irq-safe lock and the holding lock: [ 61.303304][ T5066] -> (&dev->event_lock#2){-...}-{2:2} { [ 61.309103][ T5066] IN-HARDIRQ-W at: [ 61.313336][ T5066] lock_acquire+0x1e4/0x530 [ 61.320001][ T5066] _raw_spin_lock_irqsave+0xd5/0x120 [ 61.327698][ T5066] input_event+0x91/0xd0 [ 61.334290][ T5066] psmouse_report_standard_packet+0x54/0x200 [ 61.342425][ T5066] psmouse_process_byte+0x48c/0x680 [ 61.350083][ T5066] psmouse_handle_byte+0x49/0x4c0 [ 61.357520][ T5066] ps2_interrupt+0x17c/0x8e0 [ 61.364282][ T5066] serio_interrupt+0x90/0x140 [ 61.371127][ T5066] i8042_interrupt+0x375/0x770 [ 61.378043][ T5066] __handle_irq_event_percpu+0x28a/0xa30 [ 61.385833][ T5066] handle_irq_event+0x89/0x1f0 [ 61.392747][ T5066] handle_edge_irq+0x25f/0xc20 [ 61.399816][ T5066] __common_interrupt+0x138/0x230 [ 61.407023][ T5066] common_interrupt+0xa5/0xd0 [ 61.413898][ T5066] asm_common_interrupt+0x26/0x40 [ 61.421265][ T5066] lock_acquire+0x25b/0x530 [ 61.427971][ T5066] down_write+0x3a/0x50 [ 61.434661][ T5066] kernfs_add_one+0x9a/0x8b0 [ 61.441537][ T5066] kernfs_create_dir_ns+0xd9/0x120 [ 61.448949][ T5066] sysfs_create_dir_ns+0x189/0x3a0 [ 61.456339][ T5066] kobject_add_internal+0x435/0x8d0 [ 61.463930][ T5066] kobject_init_and_add+0x124/0x190 [ 61.471331][ T5066] bus_add_driver+0x25a/0x620 [ 61.478233][ T5066] driver_register+0x23a/0x320 [ 61.485194][ T5066] usb_register_driver+0x1f5/0x3b0 [ 61.492582][ T5066] do_one_initcall+0x238/0x830 [ 61.499624][ T5066] do_initcall_level+0x157/0x210 [ 61.507198][ T5066] do_initcalls+0x3f/0x80 [ 61.513749][ T5066] kernel_init_freeable+0x435/0x5d0 [ 61.521204][ T5066] kernel_init+0x1d/0x2a0 [ 61.527786][ T5066] ret_from_fork+0x4b/0x80 [ 61.534530][ T5066] ret_from_fork_asm+0x1a/0x30 [ 61.541729][ T5066] INITIAL USE at: [ 61.545864][ T5066] lock_acquire+0x1e4/0x530 [ 61.552443][ T5066] _raw_spin_lock_irqsave+0xd5/0x120 [ 61.560161][ T5066] input_inject_event+0xc5/0x340 [ 61.567919][ T5066] led_trigger_event+0x11c/0x1e0 [ 61.575035][ T5066] kbd_led_trigger_activate+0xbd/0x100 [ 61.583129][ T5066] led_trigger_set+0x541/0x950 [ 61.590345][ T5066] led_trigger_set_default+0x1ca/0x200 [ 61.597898][ T5066] led_classdev_register_ext+0x6df/0x8f0 [ 61.605599][ T5066] input_leds_connect+0x497/0x640 [ 61.612866][ T5066] input_register_device+0xcfa/0x1090 [ 61.620426][ T5066] atkbd_connect+0x752/0xa00 [ 61.627159][ T5066] serio_driver_probe+0x7f/0xa0 [ 61.634128][ T5066] really_probe+0x29e/0xc50 [ 61.640888][ T5066] __driver_probe_device+0x1a2/0x3e0 [ 61.648480][ T5066] driver_probe_device+0x50/0x430 [ 61.655971][ T5066] __driver_attach+0x45f/0x710 [ 61.662824][ T5066] bus_for_each_dev+0x239/0x2b0 [ 61.669759][ T5066] serio_handle_event+0x1c7/0x920 [ 61.677122][ T5066] process_scheduled_works+0xa00/0x1770 [ 61.684749][ T5066] worker_thread+0x86d/0xd70 [ 61.691407][ T5066] kthread+0x2f0/0x390 [ 61.697558][ T5066] ret_from_fork+0x4b/0x80 [ 61.704131][ T5066] ret_from_fork_asm+0x1a/0x30 [ 61.711352][ T5066] } [ 61.714104][ T5066] ... key at: [] input_allocate_device.__key.5+0x0/0x20 [ 61.723480][ T5066] -> (&client->buffer_lock){....}-{2:2} { [ 61.729569][ T5066] INITIAL USE at: [ 61.733808][ T5066] lock_acquire+0x1e4/0x530 [ 61.740224][ T5066] _raw_spin_lock+0x2e/0x40 [ 61.746629][ T5066] evdev_pass_values+0xf2/0xad0 [ 61.753633][ T5066] evdev_events+0x1c2/0x300 [ 61.760150][ T5066] input_pass_values+0x84d/0x1200 [ 61.767878][ T5066] input_event_dispose+0x36c/0x650 [ 61.775575][ T5066] input_handle_event+0xa71/0xbe0 [ 61.782603][ T5066] input_inject_event+0x22f/0x340 [ 61.789809][ T5066] evdev_write+0x672/0x7c0 [ 61.796236][ T5066] vfs_write+0x2a4/0xcb0 [ 61.802501][ T5066] ksys_write+0x1a0/0x2c0 [ 61.808796][ T5066] do_syscall_64+0xfb/0x240 [ 61.815568][ T5066] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 61.823384][ T5066] } [ 61.826041][ T5066] ... key at: [] evdev_open.__key.24+0x0/0x20 [ 61.834958][ T5066] ... acquired at: [ 61.838924][ T5066] lock_acquire+0x1e4/0x530 [ 61.843838][ T5066] _raw_spin_lock+0x2e/0x40 [ 61.848490][ T5066] evdev_pass_values+0xf2/0xad0 [ 61.853495][ T5066] evdev_events+0x1c2/0x300 [ 61.858240][ T5066] input_pass_values+0x84d/0x1200 [ 61.863440][ T5066] input_event_dispose+0x36c/0x650 [ 61.868804][ T5066] input_handle_event+0xa71/0xbe0 [ 61.874024][ T5066] input_inject_event+0x22f/0x340 [ 61.879272][ T5066] evdev_write+0x672/0x7c0 [ 61.883862][ T5066] vfs_write+0x2a4/0xcb0 [ 61.888352][ T5066] ksys_write+0x1a0/0x2c0 [ 61.892888][ T5066] do_syscall_64+0xfb/0x240 [ 61.897562][ T5066] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 61.903728][ T5066] [ 61.906052][ T5066] -> (&new->fa_lock){....}-{2:2} { [ 61.911531][ T5066] INITIAL READ USE at: [ 61.915953][ T5066] lock_acquire+0x1e4/0x530 [ 61.922623][ T5066] _raw_read_lock_irqsave+0xdd/0x130 [ 61.930109][ T5066] kill_fasync+0x19e/0x4d0 [ 61.936788][ T5066] evdev_pass_values+0x58a/0xad0 [ 61.943911][ T5066] evdev_events+0x1c2/0x300 [ 61.950671][ T5066] input_pass_values+0x84d/0x1200 [ 61.957921][ T5066] input_event_dispose+0x36c/0x650 [ 61.965482][ T5066] input_handle_event+0xa71/0xbe0 [ 61.972762][ T5066] input_inject_event+0x22f/0x340 [ 61.980056][ T5066] evdev_write+0x672/0x7c0 [ 61.986657][ T5066] vfs_write+0x2a4/0xcb0 [ 61.993087][ T5066] ksys_write+0x1a0/0x2c0 [ 61.999585][ T5066] do_syscall_64+0xfb/0x240 [ 62.006266][ T5066] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 62.014332][ T5066] } [ 62.017020][ T5066] ... key at: [] fasync_insert_entry.__key+0x0/0x20 [ 62.025886][ T5066] ... acquired at: [ 62.029763][ T5066] lock_acquire+0x1e4/0x530 [ 62.034423][ T5066] _raw_read_lock_irqsave+0xdd/0x130 [ 62.039868][ T5066] kill_fasync+0x19e/0x4d0 [ 62.044585][ T5066] evdev_pass_values+0x58a/0xad0 [ 62.049700][ T5066] evdev_events+0x1c2/0x300 [ 62.054366][ T5066] input_pass_values+0x84d/0x1200 [ 62.059562][ T5066] input_event_dispose+0x36c/0x650 [ 62.064832][ T5066] input_handle_event+0xa71/0xbe0 [ 62.070120][ T5066] input_inject_event+0x22f/0x340 [ 62.075324][ T5066] evdev_write+0x672/0x7c0 [ 62.080005][ T5066] vfs_write+0x2a4/0xcb0 [ 62.084433][ T5066] ksys_write+0x1a0/0x2c0 [ 62.088961][ T5066] do_syscall_64+0xfb/0x240 [ 62.093643][ T5066] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 62.099793][ T5066] [ 62.102189][ T5066] -> (&f->f_owner.lock){....}-{2:2} { [ 62.107643][ T5066] INITIAL USE at: [ 62.111518][ T5066] lock_acquire+0x1e4/0x530 [ 62.117565][ T5066] _raw_write_lock_irq+0xd3/0x120 [ 62.124267][ T5066] f_modown+0x38/0x340 [ 62.129987][ T5066] do_fcntl+0x1359/0x16f0 [ 62.135883][ T5066] __se_sys_fcntl+0xd2/0x1b0 [ 62.142204][ T5066] do_syscall_64+0xfb/0x240 [ 62.148368][ T5066] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 62.155839][ T5066] INITIAL READ USE at: [ 62.160155][ T5066] lock_acquire+0x1e4/0x530 [ 62.166656][ T5066] _raw_read_lock_irqsave+0xdd/0x130 [ 62.174018][ T5066] send_sigio+0x33/0x360 [ 62.180253][ T5066] kill_fasync+0x23a/0x4d0 [ 62.186683][ T5066] evdev_pass_values+0x58a/0xad0 [ 62.193726][ T5066] evdev_events+0x1c2/0x300 [ 62.200221][ T5066] input_pass_values+0x84d/0x1200 [ 62.207326][ T5066] input_event_dispose+0x36c/0x650 [ 62.214528][ T5066] input_handle_event+0xa71/0xbe0 [ 62.221565][ T5066] input_inject_event+0x22f/0x340 [ 62.228693][ T5066] evdev_write+0x672/0x7c0 [ 62.235104][ T5066] vfs_write+0x2a4/0xcb0 [ 62.241485][ T5066] ksys_write+0x1a0/0x2c0 [ 62.247818][ T5066] do_syscall_64+0xfb/0x240 [ 62.254329][ T5066] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 62.262471][ T5066] } [ 62.264951][ T5066] ... key at: [] init_file.__key+0x0/0x20 [ 62.272745][ T5066] ... acquired at: [ 62.276525][ T5066] lock_acquire+0x1e4/0x530 [ 62.281199][ T5066] _raw_read_lock_irqsave+0xdd/0x130 [ 62.287113][ T5066] send_sigio+0x33/0x360 [ 62.291567][ T5066] kill_fasync+0x23a/0x4d0 [ 62.296158][ T5066] evdev_pass_values+0x58a/0xad0 [ 62.301277][ T5066] evdev_events+0x1c2/0x300 [ 62.305937][ T5066] input_pass_values+0x84d/0x1200 [ 62.311314][ T5066] input_event_dispose+0x36c/0x650 [ 62.316758][ T5066] input_handle_event+0xa71/0xbe0 [ 62.321956][ T5066] input_inject_event+0x22f/0x340 [ 62.327353][ T5066] evdev_write+0x672/0x7c0 [ 62.331948][ T5066] vfs_write+0x2a4/0xcb0 [ 62.336442][ T5066] ksys_write+0x1a0/0x2c0 [ 62.340944][ T5066] do_syscall_64+0xfb/0x240 [ 62.345640][ T5066] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 62.351705][ T5066] [ 62.354040][ T5066] [ 62.354040][ T5066] the dependencies between the lock to be acquired [ 62.354047][ T5066] and HARDIRQ-irq-unsafe lock: [ 62.367716][ T5066] -> (tasklist_lock){.+.+}-{2:2} { [ 62.372917][ T5066] HARDIRQ-ON-R at: [ 62.376897][ T5066] lock_acquire+0x1e4/0x530 [ 62.383644][ T5066] _raw_read_lock+0x36/0x50 [ 62.389778][ T5066] __do_wait+0x12d/0x850 [ 62.395659][ T5066] do_wait+0x1d9/0x540 [ 62.401622][ T5066] kernel_wait+0xe9/0x240 [ 62.407586][ T5066] call_usermodehelper_exec_work+0xbd/0x230 [ 62.415120][ T5066] process_scheduled_works+0xa00/0x1770 [ 62.422306][ T5066] worker_thread+0x86d/0xd70 [ 62.428872][ T5066] kthread+0x2f0/0x390 [ 62.434572][ T5066] ret_from_fork+0x4b/0x80 [ 62.440621][ T5066] ret_from_fork_asm+0x1a/0x30 [ 62.447028][ T5066] SOFTIRQ-ON-R at: [ 62.451011][ T5066] lock_acquire+0x1e4/0x530 [ 62.457376][ T5066] _raw_read_lock+0x36/0x50 [ 62.463806][ T5066] __do_wait+0x12d/0x850 [ 62.470046][ T5066] do_wait+0x1d9/0x540 [ 62.475850][ T5066] kernel_wait+0xe9/0x240 [ 62.481863][ T5066] call_usermodehelper_exec_work+0xbd/0x230 [ 62.489447][ T5066] process_scheduled_works+0xa00/0x1770 [ 62.497152][ T5066] worker_thread+0x86d/0xd70 [ 62.504171][ T5066] kthread+0x2f0/0x390 [ 62.510036][ T5066] ret_from_fork+0x4b/0x80 [ 62.516128][ T5066] ret_from_fork_asm+0x1a/0x30 [ 62.522627][ T5066] INITIAL USE at: [ 62.526504][ T5066] lock_acquire+0x1e4/0x530 [ 62.532553][ T5066] _raw_write_lock_irq+0xd3/0x120 [ 62.539210][ T5066] copy_process+0x228b/0x3df0 [ 62.545604][ T5066] kernel_clone+0x21e/0x8d0 [ 62.551647][ T5066] user_mode_thread+0x132/0x1a0 [ 62.558212][ T5066] rest_init+0x27/0x300 [ 62.564047][ T5066] arch_call_rest_init+0xe/0x10 [ 62.570445][ T5066] start_kernel+0x47a/0x500 [ 62.576507][ T5066] x86_64_start_reservations+0x2a/0x30 [ 62.583540][ T5066] x86_64_start_kernel+0x99/0xa0 [ 62.590150][ T5066] common_startup_64+0x13e/0x147 [ 62.596663][ T5066] INITIAL READ USE at: [ 62.601072][ T5066] lock_acquire+0x1e4/0x530 [ 62.607560][ T5066] _raw_read_lock+0x36/0x50 [ 62.614062][ T5066] __do_wait+0x12d/0x850 [ 62.620484][ T5066] do_wait+0x1d9/0x540 [ 62.626646][ T5066] kernel_wait+0xe9/0x240 [ 62.633000][ T5066] call_usermodehelper_exec_work+0xbd/0x230 [ 62.640898][ T5066] process_scheduled_works+0xa00/0x1770 [ 62.648639][ T5066] worker_thread+0x86d/0xd70 [ 62.655238][ T5066] kthread+0x2f0/0x390 [ 62.661312][ T5066] ret_from_fork+0x4b/0x80 [ 62.667760][ T5066] ret_from_fork_asm+0x1a/0x30 [ 62.674704][ T5066] } [ 62.677203][ T5066] ... key at: [] tasklist_lock+0x18/0x40 [ 62.685033][ T5066] ... acquired at: [ 62.688854][ T5066] lock_acquire+0x1e4/0x530 [ 62.693558][ T5066] _raw_read_lock+0x36/0x50 [ 62.698239][ T5066] send_sigio+0xfc/0x360 [ 62.702649][ T5066] kill_fasync+0x23a/0x4d0 [ 62.707249][ T5066] lease_break_callback+0x26/0x30 [ 62.712455][ T5066] __break_lease+0x6d5/0x17b0 [ 62.717447][ T5066] do_dentry_open+0x871/0x15a0 [ 62.722409][ T5066] path_openat+0x2860/0x3240 [ 62.727176][ T5066] do_filp_open+0x235/0x490 [ 62.731861][ T5066] do_sys_openat2+0x13e/0x1d0 [ 62.736788][ T5066] __x64_sys_open+0x225/0x270 [ 62.741621][ T5066] do_syscall_64+0xfb/0x240 [ 62.746280][ T5066] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 62.752394][ T5066] [ 62.754760][ T5066] [ 62.754760][ T5066] stack backtrace: [ 62.760688][ T5066] CPU: 1 PID: 5066 Comm: syz-executor309 Not tainted 6.8.0-syzkaller-08073-g480e035fc4c7 #0 [ 62.770859][ T5066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 62.780961][ T5066] Call Trace: [ 62.784331][ T5066] [ 62.787266][ T5066] dump_stack_lvl+0x241/0x360 [ 62.792318][ T5066] ? __pfx_dump_stack_lvl+0x10/0x10 [ 62.797539][ T5066] ? __pfx__printk+0x10/0x10 [ 62.802206][ T5066] ? print_shortest_lock_dependencies+0xf2/0x160 [ 62.808631][ T5066] validate_chain+0x4dc7/0x58e0 [ 62.813598][ T5066] ? __pfx_validate_chain+0x10/0x10 [ 62.818817][ T5066] ? __lock_acquire+0x1346/0x1fd0 [ 62.823917][ T5066] ? mark_lock+0x9a/0x350 [ 62.828227][ T5066] __lock_acquire+0x1346/0x1fd0 [ 62.833062][ T5066] lock_acquire+0x1e4/0x530 [ 62.837576][ T5066] ? send_sigio+0xfc/0x360 [ 62.841989][ T5066] ? __pfx_lock_acquire+0x10/0x10 [ 62.847006][ T5066] ? __pfx_lock_acquire+0x10/0x10 [ 62.852042][ T5066] ? do_raw_read_lock+0x3c/0x90 [ 62.856896][ T5066] ? _raw_read_lock_irqsave+0xe9/0x130 [ 62.862356][ T5066] ? __pfx__raw_read_lock_irqsave+0x10/0x10 [ 62.869094][ T5066] ? _raw_read_lock_irqsave+0xe9/0x130 [ 62.874731][ T5066] _raw_read_lock+0x36/0x50 [ 62.879667][ T5066] ? send_sigio+0xfc/0x360 [ 62.884067][ T5066] send_sigio+0xfc/0x360 [ 62.888291][ T5066] kill_fasync+0x23a/0x4d0 [ 62.892692][ T5066] ? kill_fasync+0x55/0x4d0 [ 62.897176][ T5066] lease_break_callback+0x26/0x30 [ 62.902203][ T5066] __break_lease+0x6d5/0x17b0 [ 62.907389][ T5066] ? __pfx___break_lease+0x10/0x10 [ 62.912655][ T5066] ? __pfx___fsnotify_parent+0x10/0x10 [ 62.918102][ T5066] ? security_file_open+0x457/0x570 [ 62.923371][ T5066] ? try_module_get+0x51/0x150 [ 62.928124][ T5066] do_dentry_open+0x871/0x15a0 [ 62.932899][ T5066] path_openat+0x2860/0x3240 [ 62.937503][ T5066] ? __pfx_stack_trace_save+0x10/0x10 [ 62.943133][ T5066] ? __lock_acquire+0x1346/0x1fd0 [ 62.948260][ T5066] ? mark_lock+0x9a/0x350 [ 62.952688][ T5066] ? __pfx_path_openat+0x10/0x10 [ 62.958060][ T5066] do_filp_open+0x235/0x490 [ 62.962551][ T5066] ? __pfx_do_filp_open+0x10/0x10 [ 62.967565][ T5066] ? _raw_spin_unlock+0x28/0x50 [ 62.972485][ T5066] ? alloc_fd+0x59d/0x640 [ 62.976900][ T5066] do_sys_openat2+0x13e/0x1d0 [ 62.981734][ T5066] ? __pfx_do_sys_openat2+0x10/0x10 [ 62.986954][ T5066] ? lockdep_hardirqs_on+0x99/0x150 [ 62.992225][ T5066] ? _raw_spin_unlock_irq+0x2e/0x50 [ 62.997427][ T5066] ? ptrace_notify+0x279/0x380 [ 63.002470][ T5066] __x64_sys_open+0x225/0x270 [ 63.007155][ T5066] ? __pfx___x64_sys_open+0x10/0x10 [ 63.012456][ T5066] ? do_syscall_64+0x10a/0x240 [ 63.017229][ T5066] ? syscall_trace_enter+0x5f/0x150 [ 63.022768][ T5066] do_syscall_64+0xfb/0x240 [ 63.027276][ T5066] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 63.034281][ T5066] RIP: 0033:0x7f29b28d95a9 [ 63.038719][ T5066] Code: 48 83 c4 28 c3 e8 37 17 00 00 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 63.058660][ T5066] RSP: 002b:00007ffdf98e2e88 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 63.067147][ T5066] RAX: ffffffffffffffda RBX: 00007ffdf98e3058 RCX: 00007f29b28d95a9 open("./file0", O_WRONLY|O_APPEND|O_NONBLOCK|O_DIRECT) = -1 EAGAIN (Resource temporarily unavailable) exit_group(0) = ? +++ exited with 0 +++ [ 63.075192][ T5066] RDX: 0000000000000000 RSI: 0000000000004c01