./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor142778167
<...>
Warning: Permanently added '10.128.0.227' (ED25519) to the list of known hosts.
execve("./syz-executor142778167", ["./syz-executor142778167"], 0x7ffc083e4640 /* 10 vars */) = 0
brk(NULL) = 0x555565136000
brk(0x555565136d00) = 0x555565136d00
arch_prctl(ARCH_SET_FS, 0x555565136380) = 0
set_tid_address(0x555565136650) = 5072
set_robust_list(0x555565136660, 24) = 0
rseq(0x555565136ca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor142778167", 4096) = 27
getrandom("\x38\x59\xe1\x37\x6e\x1a\x7b\x4b", 8, GRND_NONBLOCK) = 8
brk(NULL) = 0x555565136d00
brk(0x555565157d00) = 0x555565157d00
brk(0x555565158000) = 0x555565158000
mprotect(0x7fc152a19000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5073 attached
, child_tidptr=0x555565136650) = 5073
[pid 5073] set_robust_list(0x555565136660, 24) = 0
[pid 5073] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5073] setpgid(0, 0) = 0
[pid 5073] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5073] write(3, "1000", 4) = 4
[pid 5073] close(3) = 0
[pid 5073] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=4, value_size=8, max_entries=8, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3
[pid 5073] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_UNSPEC, insn_cnt=12, insns=0x20000440, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = -1 EFAULT (Bad address)
[pid 5073] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4
[pid 5073] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="timer_start", prog_fd=4}}, 16) = 5
[pid 5073] exit_group(0) = ?
[pid 5073] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5073, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5074 attached
, child_tidptr=0x555565136650) = 5074
[pid 5074] set_robust_list(0x555565136660, 24) = 0
[pid 5074] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5074] setpgid(0, 0) = 0
[pid 5074] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5074] write(3, "1000", 4) = 4
[pid 5074] close(3) = 0
[pid 5074] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=4, value_size=8, max_entries=8, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3
[pid 5074] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_UNSPEC, insn_cnt=12, insns=0x20000440, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = -1 EFAULT (Bad address)
[pid 5074] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4
[ 56.752922][ T5067] ------------[ cut here ]------------
[ 56.753193][ T5067]
[ 56.753198][ T5067] ======================================================
[ 56.753201][ T5067] WARNING: possible circular locking dependency detected
[ 56.753204][ T5067] 6.8.0-syzkaller-05271-gf99c5f563c17 #0 Not tainted
[ 56.753209][ T5067] ------------------------------------------------------
[ 56.753211][ T5067] sshd/5067 is trying to acquire lock:
[ 56.753216][ T5067] ffffffff8e125be0 (console_owner){....}-{0:0}, at: console_flush_all+0x14a/0xec0
[ 56.753263][ T5067]
[ 56.753263][ T5067] but task is already holding lock:
[ 56.753265][ T5067] ffff8880b952a758 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x112/0x240
[ 56.753289][ T5067]
[ 56.753289][ T5067] which lock already depends on the new lock.
[ 56.753289][ T5067]
[ 56.753292][ T5067]
[ 56.753292][ T5067] the existing dependency chain (in reverse order) is:
[ 56.753294][ T5067]
[ 56.753294][ T5067] -> #4 (&base->lock){-.-.}-{2:2}:
[ 56.753306][ T5067] lock_acquire+0x1e4/0x530
[ 56.753315][ T5067] _raw_spin_lock_irqsave+0xd5/0x120
[ 56.753328][ T5067] lock_timer_base+0x112/0x240
[ 56.753339][ T5067] __mod_timer+0x1ca/0xeb0
[ 56.753349][ T5067] worker_enter_idle+0x31d/0x4d0
[ 56.753357][ T5067] worker_thread+0x9c0/0xd70
[ 56.753365][ T5067] kthread+0x2f0/0x390
[ 56.753374][ T5067] ret_from_fork+0x4b/0x80
[ 56.753386][ T5067] ret_from_fork_asm+0x1a/0x30
[ 56.753398][ T5067]
[ 56.753398][ T5067] -> #3 (&pool->lock){-.-.}-{2:2}:
[ 56.753409][ T5067] lock_acquire+0x1e4/0x530
[ 56.753416][ T5067] _raw_spin_lock+0x2e/0x40
[ 56.753424][ T5067] __queue_work+0x6ec/0xec0
[ 56.753433][ T5067] queue_work_on+0x14f/0x250
[ 56.753441][ T5067] rpm_suspend+0x11bd/0x1c10
[ 56.753455][ T5067] __pm_runtime_idle+0x131/0x1a0
[ 56.753465][ T5067] __device_attach+0x3e5/0x520
[ 56.753476][ T5067] bus_probe_device+0x189/0x260
[ 56.753485][ T5067] device_add+0x8ff/0xca0
[ 56.753494][ T5067] serial_base_port_add+0x2b6/0x3f0
[ 56.753504][ T5067] serial_core_register_port+0x393/0x1e30
[ 56.753516][ T5067] serial8250_register_8250_port+0x1433/0x1cd0
[ 56.753526][ T5067] serial_pnp_probe+0x7d5/0xa20
[ 56.753536][ T5067] pnp_device_probe+0x2ba/0x460
[ 56.753548][ T5067] really_probe+0x29e/0xc50
[ 56.753559][ T5067] __driver_probe_device+0x1a2/0x3e0
[ 56.753570][ T5067] driver_probe_device+0x50/0x430
[ 56.753582][ T5067] __driver_attach+0x45f/0x710
[ 56.753592][ T5067] bus_for_each_dev+0x239/0x2b0
[ 56.753601][ T5067] bus_add_driver+0x347/0x620
[ 56.753609][ T5067] driver_register+0x23a/0x320
[ 56.753617][ T5067] serial8250_init+0x9e/0x170
[ 56.753629][ T5067] do_one_initcall+0x238/0x830
[ 56.753639][ T5067] do_initcall_level+0x157/0x210
[ 56.753648][ T5067] do_initcalls+0x3f/0x80
[ 56.753655][ T5067] kernel_init_freeable+0x435/0x5d0
[ 56.753663][ T5067] kernel_init+0x1d/0x2a0
[ 56.753681][ T5067] ret_from_fork+0x4b/0x80
[ 56.753691][ T5067] ret_from_fork_asm+0x1a/0x30
[ 56.753702][ T5067]
[ 56.753702][ T5067] -> #2 (&dev->power.lock){-...}-{2:2}:
[ 56.753714][ T5067] lock_acquire+0x1e4/0x530
[ 56.753721][ T5067] _raw_spin_lock_irqsave+0xd5/0x120
[ 56.753730][ T5067] __pm_runtime_resume+0x112/0x180
[ 56.753740][ T5067] __uart_start+0x17a/0x3c0
[ 56.753750][ T5067] uart_write+0x427/0x5c0
[ 56.753761][ T5067] n_tty_write+0xd6a/0x1230
[ 56.753770][ T5067] file_tty_write+0x54f/0x9b0
[ 56.753781][ T5067] vfs_write+0xa84/0xcb0
[ 56.753790][ T5067] ksys_write+0x1a0/0x2c0
[ 56.753798][ T5067] do_syscall_64+0xfb/0x240
[ 56.753807][ T5067] entry_SYSCALL_64_after_hwframe+0x6d/0x75
[ 56.753820][ T5067]
[ 56.753820][ T5067] -> #1 (&port_lock_key){-.-.}-{2:2}:
[ 56.753831][ T5067] lock_acquire+0x1e4/0x530
[ 56.753838][ T5067] _raw_spin_lock_irqsave+0xd5/0x120
[ 56.753847][ T5067] serial8250_console_write+0x1a8/0x1840
[ 56.753859][ T5067] console_flush_all+0x80b/0xec0
[ 56.753869][ T5067] console_unlock+0x13b/0x4d0
[ 56.753879][ T5067] vprintk_emit+0x509/0x720
[ 56.753888][ T5067] _printk+0xd5/0x120
[ 56.753896][ T5067] register_console+0x70a/0xcd0
[ 56.753906][ T5067] univ8250_console_init+0x49/0x50
[ 56.753917][ T5067] console_init+0x198/0x680
[ 56.753925][ T5067] start_kernel+0x2d3/0x500
[ 56.753931][ T5067] x86_64_start_reservations+0x2a/0x30
[ 56.753941][ T5067] x86_64_start_kernel+0x99/0xa0
[ 56.753950][ T5067] common_startup_64+0x13e/0x147
[ 56.753960][ T5067]
[ 56.753960][ T5067] -> #0 (console_owner){....}-{0:0}:
[ 56.753971][ T5067] validate_chain+0x18cb/0x58e0
[ 56.753980][ T5067] __lock_acquire+0x1346/0x1fd0
[ 56.753988][ T5067] lock_acquire+0x1e4/0x530
[ 56.753995][ T5067] console_flush_all+0x7ba/0xec0
[ 56.754005][ T5067] console_unlock+0x13b/0x4d0
[ 56.754014][ T5067] vprintk_emit+0x509/0x720
[ 56.754023][ T5067] _printk+0xd5/0x120
[ 56.754031][ T5067] report_bug+0x346/0x500
[ 56.754042][ T5067] handle_bug+0x3e/0x70
[ 56.754051][ T5067] exc_invalid_op+0x1a/0x50
[ 56.754061][ T5067] asm_exc_invalid_op+0x1a/0x20
[ 56.754071][ T5067] __local_bh_enable_ip+0x1be/0x200
[ 56.754080][ T5067] sock_hash_delete_elem+0x1a6/0x300
[ 56.754089][ T5067] bpf_prog_05fc780d7a5f93f9+0x4a/0x4e
[ 56.754099][ T5067] bpf_trace_run2+0x204/0x420
[ 56.754109][ T5067] enqueue_timer+0x396/0x550
[ 56.754117][ T5067] __mod_timer+0x953/0xeb0
[ 56.754127][ T5067] sk_reset_timer+0x23/0xc0
[ 56.754140][ T5067] tcp_schedule_loss_probe+0x419/0x560
[ 56.754150][ T5067] tcp_write_xmit+0x3682/0x6100
[ 56.754160][ T5067] __tcp_push_pending_frames+0x9b/0x360
[ 56.754170][ T5067] tcp_sendmsg_locked+0x42cc/0x4d00
[ 56.754178][ T5067] tcp_sendmsg+0x30/0x50
[ 56.754185][ T5067] __sock_sendmsg+0x1a6/0x270
[ 56.754192][ T5067] sock_write_iter+0x2dd/0x400
[ 56.754204][ T5067] vfs_write+0xa84/0xcb0
[ 56.754212][ T5067] ksys_write+0x1a0/0x2c0
[ 56.754220][ T5067] do_syscall_64+0xfb/0x240
[ 56.754229][ T5067] entry_SYSCALL_64_after_hwframe+0x6d/0x75
[ 56.754240][ T5067]
[ 56.754240][ T5067] other info that might help us debug this:
[ 56.754240][ T5067]
[ 56.754242][ T5067] Chain exists of:
[ 56.754242][ T5067] console_owner --> &pool->lock --> &base->lock
[ 56.754242][ T5067]
[ 56.754255][ T5067] Possible unsafe locking scenario:
[ 56.754255][ T5067]
[ 56.754257][ T5067] CPU0 CPU1
[ 56.754259][ T5067] ---- ----
[ 56.754261][ T5067] lock(&base->lock);
[ 56.754266][ T5067] lock(&pool->lock);
[ 56.754272][ T5067] lock(&base->lock);
[ 56.754277][ T5067] lock(console_owner);
[ 56.754282][ T5067]
[ 56.754282][ T5067] *** DEADLOCK ***
[ 56.754282][ T5067]
[ 56.754285][ T5067] 5 locks held by sshd/5067:
[ 56.754290][ T5067] #0: ffff88807bb2a718 (sk_lock-AF_INET){+.+.}-{0:0}, at: tcp_sendmsg+0x22/0x50
[ 56.754310][ T5067] #1: ffff8880b952a758 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x112/0x240
[ 56.754333][ T5067] #2: ffffffff8e131920 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run2+0x114/0x420
[ 56.754354][ T5067] #3: ffffffff8e00d500 (console_lock){+.+.}-{0:0}, at: _printk+0xd5/0x120
[ 56.754374][ T5067] #4: ffffffff8e00d130 (console_srcu){....}-{0:0}, at: console_flush_all+0x14a/0xec0
[ 56.754396][ T5067]
[ 56.754396][ T5067] stack backtrace:
[ 56.754400][ T5067] CPU: 1 PID: 5067 Comm: sshd Not tainted 6.8.0-syzkaller-05271-gf99c5f563c17 #0
[ 56.754409][ T5067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[ 56.754414][ T5067] Call Trace:
[ 56.754418][ T5067]
[ 56.754422][ T5067] dump_stack_lvl+0x1e7/0x2e0
[ 56.754434][ T5067] ? __pfx_dump_stack_lvl+0x10/0x10
[ 56.754447][ T5067] ? print_circular_bug+0x130/0x1a0
[ 56.754458][ T5067] check_noncircular+0x36a/0x4a0
[ 56.754470][ T5067] ? __pfx_check_noncircular+0x10/0x10
[ 56.754481][ T5067] ? lockdep_lock+0x123/0x2b0
[ 56.754494][ T5067] ? add_lock_to_list+0x1de/0x2e0
[ 56.754506][ T5067] validate_chain+0x18cb/0x58e0
[ 56.754522][ T5067] ? __pfx_validate_chain+0x10/0x10
[ 56.754533][ T5067] ? sprintf+0xda/0x120
[ 56.754546][ T5067] ? vsnprintf+0x1cc3/0x1da0
[ 56.754561][ T5067] ? info_print_prefix+0x204/0x310
[ 56.754575][ T5067] ? mark_lock+0x9a/0x350
[ 56.754587][ T5067] __lock_acquire+0x1346/0x1fd0
[ 56.754601][ T5067] lock_acquire+0x1e4/0x530
[ 56.754609][ T5067] ? console_flush_all+0x14a/0xec0
[ 56.754622][ T5067] ? __pfx_lock_acquire+0x10/0x10
[ 56.754630][ T5067] ? __pfx_lock_release+0x10/0x10
[ 56.754638][ T5067] ? do_raw_spin_lock+0x14f/0x370
[ 56.754651][ T5067] ? do_raw_spin_unlock+0x13c/0x8b0
[ 56.754663][ T5067] ? console_flush_all+0x3d0/0xec0
[ 56.754681][ T5067] ? console_flush_all+0x14a/0xec0
[ 56.754695][ T5067] console_flush_all+0x7ba/0xec0
[ 56.754709][ T5067] ? console_flush_all+0x14a/0xec0
[ 56.754722][ T5067] ? console_flush_all+0x14a/0xec0
[ 56.754736][ T5067] ? __pfx_console_flush_all+0x10/0x10
[ 56.754748][ T5067] ? __pfx_lock_acquire+0x10/0x10
[ 56.754758][ T5067] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 56.754775][ T5067] ? validate_chain+0x15a2/0x58e0
[ 56.754787][ T5067] console_unlock+0x13b/0x4d0
[ 56.754801][ T5067] ? __pfx_console_unlock+0x10/0x10
[ 56.754811][ T5067] ? _printk+0xd5/0x120
[ 56.754821][ T5067] ? _printk+0xd5/0x120
[ 56.754831][ T5067] ? __pfx___down_trylock_console_sem+0x10/0x10
[ 56.754843][ T5067] ? __pfx_validate_chain+0x10/0x10
[ 56.754855][ T5067] vprintk_emit+0x509/0x720
[ 56.754866][ T5067] ? __pfx_vprintk_emit+0x10/0x10
[ 56.754878][ T5067] ? lockdep_unlock+0x16a/0x300
[ 56.754892][ T5067] _printk+0xd5/0x120
[ 56.754901][ T5067] ? report_bug+0x25e/0x500
[ 56.754914][ T5067] ? __pfx__printk+0x10/0x10
[ 56.754927][ T5067] ? __lock_acquire+0x1346/0x1fd0
[ 56.754936][ T5067] ? find_bug+0xa3/0x390
[ 56.754950][ T5067] ? __local_bh_enable_ip+0x1be/0x200
[ 56.754964][ T5067] report_bug+0x346/0x500
[ 56.754981][ T5067] ? __local_bh_enable_ip+0x1be/0x200
[ 56.754998][ T5067] handle_bug+0x3e/0x70
[ 56.755010][ T5067] exc_invalid_op+0x1a/0x50
[ 56.755022][ T5067] asm_exc_invalid_op+0x1a/0x20
[ 56.755041][ T5067] RIP: 0010:__local_bh_enable_ip+0x1be/0x200
[ 56.755055][ T5067] Code: 3b 44 24 60 75 52 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 90 0f 0b 90 e9 ca fe ff ff e8 55 00 00 00 eb 9c 90 <0f> 0b 90 e9 fa fe ff ff 48 c7 c1 9c e1 86 8f 80 e1 07 80 c1 03 38
[ 56.755063][ T5067] RSP: 0018:ffffc90003a471c0 EFLAGS: 00010046
[ 56.755072][ T5067] RAX: 0000000000000000 RBX: 1ffff92000748e3c RCX: 0000000000000001
[ 56.755081][ T5067] RDX: 0000000000000000 RSI: 0000000000000201 RDI: ffffffff895fc7a6
[ 56.755091][ T5067] RBP: ffffc90003a47280 R08: ffff88807c94e00b R09: 1ffff1100f929c01
[ 56.755098][ T5067] R10: dffffc0000000000 R11: ffffed100f929c02 R12: dffffc0000000000
[ 56.755107][ T5067] R13: 0000000000000004 R14: ffffc90003a47200 R15: 0000000000000201
[ 56.755115][ T5067] ? sock_hash_delete_elem+0x1a6/0x300
[ 56.755130][ T5067] ? sock_hash_delete_elem+0x1a6/0x300
[ 56.755144][ T5067] ? __pfx___local_bh_enable_ip+0x10/0x10
[ 56.755152][ T5067] ? sock_hash_delete_elem+0x1a6/0x300
[ 56.755164][ T5067] ? do_raw_spin_unlock+0x13c/0x8b0
[ 56.755183][ T5067] ? sock_hash_delete_elem+0xb0/0x300
[ 56.755194][ T5067] sock_hash_delete_elem+0x1a6/0x300
[ 56.755206][ T5067] bpf_prog_05fc780d7a5f93f9+0x4a/0x4e
[ 56.755216][ T5067] bpf_trace_run2+0x204/0x420
[ 56.755228][ T5067] ? bpf_trace_run2+0x114/0x420
[ 56.755241][ T5067] ? __pfx_bpf_trace_run2+0x10/0x10
[ 56.755250][ T5067] ? __pfx_debug_object_activate+0x10/0x10
[ 56.755264][ T5067] enqueue_timer+0x396/0x550
[ 56.755275][ T5067] __mod_timer+0x953/0xeb0
[ 56.755289][ T5067] ? __pfx___mod_timer+0x10/0x10
[ 56.755303][ T5067] ? __asan_memset+0x23/0x50
[ 56.755313][ T5067] sk_reset_timer+0x23/0xc0
[ 56.755326][ T5067] tcp_schedule_loss_probe+0x419/0x560
[ 56.755338][ T5067] tcp_write_xmit+0x3682/0x6100
[ 56.755358][ T5067] __tcp_push_pending_frames+0x9b/0x360
[ 56.755370][ T5067] tcp_sendmsg_locked+0x42cc/0x4d00
[ 56.755390][ T5067] ? __pfx_tcp_sendmsg_locked+0x10/0x10
[ 56.755398][ T5067] ? __local_bh_enable_ip+0x168/0x200
[ 56.755408][ T5067] ? do_raw_spin_unlock+0x13c/0x8b0
[ 56.755421][ T5067] tcp_sendmsg+0x30/0x50
[ 56.755430][ T5067] __sock_sendmsg+0x1a6/0x270
[ 56.755439][ T5067] sock_write_iter+0x2dd/0x400
[ 56.755451][ T5067] ? __pfx_sock_write_iter+0x10/0x10
[ 56.755466][ T5067] ? bpf_lsm_file_permission+0x9/0x10
[ 56.755476][ T5067] ? security_file_permission+0x7f/0xa0
[ 56.755488][ T5067] vfs_write+0xa84/0xcb0
[ 56.755499][ T5067] ? __pfx_vfs_write+0x10/0x10
[ 56.755508][ T5067] ? __set_current_blocked+0x310/0x380
[ 56.755519][ T5067] ? __might_fault+0xc6/0x120
[ 56.755528][ T5067] ? __fdget_pos+0x1a2/0x320
[ 56.755540][ T5067] ksys_write+0x1a0/0x2c0
[ 56.755551][ T5067] ? __pfx_ksys_write+0x10/0x10
[ 56.755560][ T5067] ? do_syscall_64+0x10a/0x240
[ 56.755571][ T5067] ? do_syscall_64+0xb6/0x240
[ 56.755582][ T5067] do_syscall_64+0xfb/0x240
[ 56.755593][ T5067] entry_SYSCALL_64_after_hwframe+0x6d/0x75
[ 56.755605][ T5067] RIP: 0033:0x7fa91c716bf2
[ 56.755612][ T5067] Code: 89 c7 48 89 44 24 08 e8 7b 34 fa ff 48 8b 44 24 08 48 83 c4 28 c3 c3 64 8b 04 25 18 00 00 00 85 c0 75 20 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 76 6f 48 8b 15 07 a2 0d 00 f7 d8 64 89 02 48 83
[ 56.755619][ T5067] RSP: 002b:00007ffec124dde8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 56.755627][ T5067] RAX: ffffffffffffffda RBX: 0000000000000084 RCX: 00007fa91c716bf2
[ 56.755633][ T5067] RDX: 0000000000000084 RSI: 00005563399c9960 RDI: 0000000000000004
[ 56.755639][ T5067] RBP: 00005563399d7220 R08: 0000000000000000 R09: 0000000000000000
[ 56.755644][ T5067] R10: 0000000000000000 R11: 0000000000000246 R12: 00005563201e0aa4
[ 56.755649][ T5067] R13: 0000000000000038 R14: 00005563201e13e8 R15: 00007ffec124de58
[ 56.755659][ T5067]
[ 58.112595][ T5067] WARNING: CPU: 1 PID: 5067 at kernel/softirq.c:362 __local_bh_enable_ip+0x1be/0x200
[ 58.122052][ T5067] Modules linked in:
[ 58.125936][ T5067] CPU: 1 PID: 5067 Comm: sshd Not tainted 6.8.0-syzkaller-05271-gf99c5f563c17 #0
[ 58.135026][ T5067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[ 58.145067][ T5067] RIP: 0010:__local_bh_enable_ip+0x1be/0x200
[ 58.151049][ T5067] Code: 3b 44 24 60 75 52 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 90 0f 0b 90 e9 ca fe ff ff e8 55 00 00 00 eb 9c 90 <0f> 0b 90 e9 fa fe ff ff 48 c7 c1 9c e1 86 8f 80 e1 07 80 c1 03 38
[ 58.170728][ T5067] RSP: 0018:ffffc90003a471c0 EFLAGS: 00010046
[ 58.176783][ T5067] RAX: 0000000000000000 RBX: 1ffff92000748e3c RCX: 0000000000000001
[ 58.184748][ T5067] RDX: 0000000000000000 RSI: 0000000000000201 RDI: ffffffff895fc7a6
[ 58.192819][ T5067] RBP: ffffc90003a47280 R08: ffff88807c94e00b R09: 1ffff1100f929c01
[ 58.200777][ T5067] R10: dffffc0000000000 R11: ffffed100f929c02 R12: dffffc0000000000
[ 58.208743][ T5067] R13: 0000000000000004 R14: ffffc90003a47200 R15: 0000000000000201
[ 58.216705][ T5067] FS: 00007fa91cbcc800(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000
[ 58.225709][ T5067] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 58.232280][ T5067] CR2: 0000000027d2c548 CR3: 000000007bf30000 CR4: 00000000003506f0
[ 58.240245][ T5067] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 58.248204][ T5067] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 58.256159][ T5067] Call Trace:
[ 58.259430][ T5067]
[ 58.262357][ T5067] ? __warn+0x163/0x4b0
[ 58.266508][ T5067] ? __local_bh_enable_ip+0x1be/0x200
[ 58.271868][ T5067] ? report_bug+0x2b3/0x500
[ 58.276365][ T5067] ? __local_bh_enable_ip+0x1be/0x200
[ 58.281726][ T5067] ? handle_bug+0x3e/0x70
[ 58.286046][ T5067] ? exc_invalid_op+0x1a/0x50
[ 58.290723][ T5067] ? asm_exc_invalid_op+0x1a/0x20
[ 58.295740][ T5067] ? sock_hash_delete_elem+0x1a6/0x300
[ 58.301183][ T5067] ? __local_bh_enable_ip+0x1be/0x200
[ 58.306538][ T5067] ? sock_hash_delete_elem+0x1a6/0x300
[ 58.311985][ T5067] ? __pfx___local_bh_enable_ip+0x10/0x10
[ 58.317809][ T5067] ? sock_hash_delete_elem+0x1a6/0x300
[ 58.323513][ T5067] ? do_raw_spin_unlock+0x13c/0x8b0
[ 58.328790][ T5067] ? sock_hash_delete_elem+0xb0/0x300
[ 58.334147][ T5067] sock_hash_delete_elem+0x1a6/0x300
[ 58.339419][ T5067] bpf_prog_05fc780d7a5f93f9+0x4a/0x4e
[ 58.344876][ T5067] bpf_trace_run2+0x204/0x420
[ 58.349542][ T5067] ? bpf_trace_run2+0x114/0x420
[ 58.354390][ T5067] ? __pfx_bpf_trace_run2+0x10/0x10
[ 58.359666][ T5067] ? __pfx_debug_object_activate+0x10/0x10
[ 58.365460][ T5067] enqueue_timer+0x396/0x550
[ 58.370040][ T5067] __mod_timer+0x953/0xeb0
[ 58.374569][ T5067] ? __pfx___mod_timer+0x10/0x10
[ 58.379585][ T5067] ? __asan_memset+0x23/0x50
[ 58.384344][ T5067] sk_reset_timer+0x23/0xc0
[ 58.388838][ T5067] tcp_schedule_loss_probe+0x419/0x560
[ 58.394461][ T5067] tcp_write_xmit+0x3682/0x6100
[ 58.399318][ T5067] __tcp_push_pending_frames+0x9b/0x360
[ 58.404857][ T5067] tcp_sendmsg_locked+0x42cc/0x4d00
[ 58.410062][ T5067] ? __pfx_tcp_sendmsg_locked+0x10/0x10
[ 58.415861][ T5067] ? __local_bh_enable_ip+0x168/0x200
[ 58.421250][ T5067] ? do_raw_spin_unlock+0x13c/0x8b0
[ 58.426476][ T5067] tcp_sendmsg+0x30/0x50
[ 58.430755][ T5067] __sock_sendmsg+0x1a6/0x270
[ 58.435438][ T5067] sock_write_iter+0x2dd/0x400
[ 58.440204][ T5067] ? __pfx_sock_write_iter+0x10/0x10
[ 58.445496][ T5067] ? bpf_lsm_file_permission+0x9/0x10
[ 58.450866][ T5067] ? security_file_permission+0x7f/0xa0
[ 58.456402][ T5067] vfs_write+0xa84/0xcb0
[ 58.460639][ T5067] ? __pfx_vfs_write+0x10/0x10
[ 58.465388][ T5067] ? __set_current_blocked+0x310/0x380
[ 58.470865][ T5067] ? __might_fault+0xc6/0x120
[ 58.475541][ T5067] ? __fdget_pos+0x1a2/0x320
[ 58.480130][ T5067] ksys_write+0x1a0/0x2c0
[ 58.484536][ T5067] ? __pfx_ksys_write+0x10/0x10
[ 58.489377][ T5067] ? do_syscall_64+0x10a/0x240
[ 58.494133][ T5067] ? do_syscall_64+0xb6/0x240
[ 58.499065][ T5067] do_syscall_64+0xfb/0x240
[ 58.503558][ T5067] entry_SYSCALL_64_after_hwframe+0x6d/0x75
[ 58.509448][ T5067] RIP: 0033:0x7fa91c716bf2
[ 58.513857][ T5067] Code: 89 c7 48 89 44 24 08 e8 7b 34 fa ff 48 8b 44 24 08 48 83 c4 28 c3 c3 64 8b 04 25 18 00 00 00 85 c0 75 20 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 76 6f 48 8b 15 07 a2 0d 00 f7 d8 64 89 02 48 83
[ 58.533582][ T5067] RSP: 002b:00007ffec124dde8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 58.541982][ T5067] RAX: ffffffffffffffda RBX: 0000000000000084 RCX: 00007fa91c716bf2
[ 58.549949][ T5067] RDX: 0000000000000084 RSI: 00005563399c9960 RDI: 0000000000000004
[ 58.557906][ T5067] RBP: 00005563399d7220 R08: 0000000000000000 R09: 0000000000000000
[ 58.565955][ T5067] R10: 0000000000000000 R11: 0000000000000246 R12: 00005563201e0aa4
[ 58.574172][ T5067] R13: 0000000000000038 R14: 00005563201e13e8 R15: 00007ffec124de58
[ 58.582330][ T5067]
[ 58.585769][ T5067] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 58.593041][ T5067] CPU: 1 PID: 5067 Comm: sshd Not tainted 6.8.0-syzkaller-05271-gf99c5f563c17 #0
[ 58.602162][ T5067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[ 58.612388][ T5067] Call Trace:
[ 58.615673][ T5067]
[ 58.618689][ T5067] dump_stack_lvl+0x1e7/0x2e0
[ 58.623462][ T5067] ? __pfx_dump_stack_lvl+0x10/0x10
[ 58.628653][ T5067] ? __pfx__printk+0x10/0x10
[ 58.633244][ T5067] ? vscnprintf+0x5d/0x90
[ 58.637565][ T5067] panic+0x349/0x860
[ 58.641446][ T5067] ? __warn+0x172/0x4b0
[ 58.646377][ T5067] ? __pfx_panic+0x10/0x10
[ 58.650788][ T5067] __warn+0x31e/0x4b0
[ 58.654762][ T5067] ? __local_bh_enable_ip+0x1be/0x200
[ 58.660122][ T5067] report_bug+0x2b3/0x500
[ 58.664454][ T5067] ? __local_bh_enable_ip+0x1be/0x200
[ 58.669814][ T5067] handle_bug+0x3e/0x70
[ 58.674047][ T5067] exc_invalid_op+0x1a/0x50
[ 58.678799][ T5067] asm_exc_invalid_op+0x1a/0x20
[ 58.683640][ T5067] RIP: 0010:__local_bh_enable_ip+0x1be/0x200
[ 58.689609][ T5067] Code: 3b 44 24 60 75 52 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 90 0f 0b 90 e9 ca fe ff ff e8 55 00 00 00 eb 9c 90 <0f> 0b 90 e9 fa fe ff ff 48 c7 c1 9c e1 86 8f 80 e1 07 80 c1 03 38
[ 58.709209][ T5067] RSP: 0018:ffffc90003a471c0 EFLAGS: 00010046
[ 58.715269][ T5067] RAX: 0000000000000000 RBX: 1ffff92000748e3c RCX: 0000000000000001
[ 58.723227][ T5067] RDX: 0000000000000000 RSI: 0000000000000201 RDI: ffffffff895fc7a6
[ 58.731187][ T5067] RBP: ffffc90003a47280 R08: ffff88807c94e00b R09: 1ffff1100f929c01
[ 58.739321][ T5067] R10: dffffc0000000000 R11: ffffed100f929c02 R12: dffffc0000000000
[ 58.747284][ T5067] R13: 0000000000000004 R14: ffffc90003a47200 R15: 0000000000000201
[ 58.755266][ T5067] ? sock_hash_delete_elem+0x1a6/0x300
[ 58.760729][ T5067] ? sock_hash_delete_elem+0x1a6/0x300
[ 58.766190][ T5067] ? __pfx___local_bh_enable_ip+0x10/0x10
[ 58.771899][ T5067] ? sock_hash_delete_elem+0x1a6/0x300
[ 58.777434][ T5067] ? do_raw_spin_unlock+0x13c/0x8b0
[ 58.782718][ T5067] ? sock_hash_delete_elem+0xb0/0x300
[ 58.788078][ T5067] sock_hash_delete_elem+0x1a6/0x300
[ 58.793358][ T5067] bpf_prog_05fc780d7a5f93f9+0x4a/0x4e
[ 58.798805][ T5067] bpf_trace_run2+0x204/0x420
[ 58.803475][ T5067] ? bpf_trace_run2+0x114/0x420
[ 58.808319][ T5067] ? __pfx_bpf_trace_run2+0x10/0x10
[ 58.813506][ T5067] ? __pfx_debug_object_activate+0x10/0x10
[ 58.819351][ T5067] enqueue_timer+0x396/0x550
[ 58.823965][ T5067] __mod_timer+0x953/0xeb0
[ 58.828426][ T5067] ? __pfx___mod_timer+0x10/0x10
[ 58.833375][ T5067] ? __asan_memset+0x23/0x50
[ 58.837975][ T5067] sk_reset_timer+0x23/0xc0
[ 58.842492][ T5067] tcp_schedule_loss_probe+0x419/0x560
[ 58.847972][ T5067] tcp_write_xmit+0x3682/0x6100
[ 58.852860][ T5067] __tcp_push_pending_frames+0x9b/0x360
[ 58.858411][ T5067] tcp_sendmsg_locked+0x42cc/0x4d00
[ 58.863659][ T5067] ? __pfx_tcp_sendmsg_locked+0x10/0x10
[ 58.869193][ T5067] ? __local_bh_enable_ip+0x168/0x200
[ 58.874575][ T5067] ? do_raw_spin_unlock+0x13c/0x8b0
[ 58.879772][ T5067] tcp_sendmsg+0x30/0x50
[ 58.884027][ T5067] __sock_sendmsg+0x1a6/0x270
[ 58.888695][ T5067] sock_write_iter+0x2dd/0x400
[ 58.893464][ T5067] ? __pfx_sock_write_iter+0x10/0x10
[ 58.898756][ T5067] ? bpf_lsm_file_permission+0x9/0x10
[ 58.904119][ T5067] ? security_file_permission+0x7f/0xa0
[ 58.909689][ T5067] vfs_write+0xa84/0xcb0
[ 58.913944][ T5067] ? __pfx_vfs_write+0x10/0x10
[ 58.918695][ T5067] ? __set_current_blocked+0x310/0x380
[ 58.924144][ T5067] ? __might_fault+0xc6/0x120
[ 58.928896][ T5067] ? __fdget_pos+0x1a2/0x320
[ 58.933488][ T5067] ksys_write+0x1a0/0x2c0
[ 58.937810][ T5067] ? __pfx_ksys_write+0x10/0x10
[ 58.942648][ T5067] ? do_syscall_64+0x10a/0x240
[ 58.947403][ T5067] ? do_syscall_64+0xb6/0x240
[ 58.952102][ T5067] do_syscall_64+0xfb/0x240
[ 58.956596][ T5067] entry_SYSCALL_64_after_hwframe+0x6d/0x75
[ 58.962483][ T5067] RIP: 0033:0x7fa91c716bf2
[ 58.966887][ T5067] Code: 89 c7 48 89 44 24 08 e8 7b 34 fa ff 48 8b 44 24 08 48 83 c4 28 c3 c3 64 8b 04 25 18 00 00 00 85 c0 75 20 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 76 6f 48 8b 15 07 a2 0d 00 f7 d8 64 89 02 48 83
[ 58.987095][ T5067] RSP: 002b:00007ffec124dde8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 58.995500][ T5067] RAX: ffffffffffffffda RBX: 0000000000000084 RCX: 00007fa91c716bf2
[ 59.003546][ T5067] RDX: 0000000000000084 RSI: 00005563399c9960 RDI: 0000000000000004
[ 59.011524][ T5067] RBP: 00005563399d7220 R08: 0000000000000000 R09: 0000000000000000
[ 59.019586][ T5067] R10: 0000000000000000 R11: 0000000000000246 R12: 00005563201e0aa4
[ 59.027548][ T5067] R13: 0000000000000038 R14: 00005563201e13e8 R15: 00007ffec124de58
[ 59.035521][ T5067]
[ 59.038708][ T5067] Kernel Offset: disabled
[ 59.043022][ T5067] Rebooting in 86400 seconds..