Warning: Permanently added '10.128.0.98' (ED25519) to the list of known hosts. executing program [ 38.512280][ T29] audit: type=1400 audit(1728100697.310:80): avc: denied { execmem } for pid=2648 comm="syz-executor110" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 38.536088][ T29] audit: type=1400 audit(1728100697.310:81): avc: denied { read write } for pid=2649 comm="syz-executor110" name="raw-gadget" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 38.560410][ T29] audit: type=1400 audit(1728100697.310:82): avc: denied { open } for pid=2649 comm="syz-executor110" path="/dev/raw-gadget" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 38.584417][ T29] audit: type=1400 audit(1728100697.310:83): avc: denied { ioctl } for pid=2649 comm="syz-executor110" path="/dev/raw-gadget" dev="devtmpfs" ino=140 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 38.756993][ T9] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 38.906780][ T9] usb 1-1: Using ep0 maxpacket: 32 [ 38.913967][ T9] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024 [ 38.926496][ T9] usb 1-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79 [ 38.935987][ T9] usb 1-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2 [ 38.944196][ T9] usb 1-1: Product: syz [ 38.948655][ T9] usb 1-1: Manufacturer: syz [ 38.953250][ T9] usb 1-1: SerialNumber: syz [ 38.960571][ T9] usb 1-1: config 0 descriptor?? [ 38.966782][ T2649] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 39.176195][ T2649] [ 39.178572][ T2649] ============================================ [ 39.184711][ T2649] WARNING: possible recursive locking detected [ 39.190850][ T2649] 6.12.0-rc1-syzkaller-00027-g4a9fe2a8ac53 #0 Not tainted [ 39.198044][ T2649] -------------------------------------------- [ 39.204281][ T2649] syz-executor110/2649 is trying to acquire lock: [ 39.210686][ T2649] ffffffff89b120e8 (chaoskey_list_lock){+.+.}-{3:3}, at: chaoskey_release+0x15d/0x2c0 [ 39.220524][ T2649] [ 39.220524][ T2649] but task is already holding lock: [ 39.227864][ T2649] ffffffff89b120e8 (chaoskey_list_lock){+.+.}-{3:3}, at: chaoskey_release+0x7f/0x2c0 [ 39.237415][ T2649] [ 39.237415][ T2649] other info that might help us debug this: [ 39.245495][ T2649] Possible unsafe locking scenario: [ 39.245495][ T2649] [ 39.253017][ T2649] CPU0 [ 39.256276][ T2649] ---- [ 39.259562][ T2649] lock(chaoskey_list_lock); [ 39.264308][ T2649] lock(chaoskey_list_lock); [ 39.268964][ T2649] [ 39.268964][ T2649] *** DEADLOCK *** [ 39.268964][ T2649] [ 39.277085][ T2649] May be due to missing lock nesting notation [ 39.277085][ T2649] [ 39.285483][ T2649] 1 lock held by syz-executor110/2649: [ 39.290933][ T2649] #0: ffffffff89b120e8 (chaoskey_list_lock){+.+.}-{3:3}, at: chaoskey_release+0x7f/0x2c0 [ 39.300868][ T2649] [ 39.300868][ T2649] stack backtrace: [ 39.306770][ T2649] CPU: 1 UID: 0 PID: 2649 Comm: syz-executor110 Not tainted 6.12.0-rc1-syzkaller-00027-g4a9fe2a8ac53 #0 [ 39.317875][ T2649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 39.329870][ T2649] Call Trace: [ 39.333146][ T2649] [ 39.336583][ T2649] dump_stack_lvl+0x116/0x1f0 [ 39.341256][ T2649] print_deadlock_bug+0x2e3/0x410 [ 39.346268][ T2649] __lock_acquire+0x2185/0x3ce0 [ 39.351127][ T2649] ? __pfx___lock_acquire+0x10/0x10 [ 39.356357][ T2649] ? __pfx_mark_lock+0x10/0x10 [ 39.361213][ T2649] lock_acquire.part.0+0x11b/0x380 [ 39.366325][ T2649] ? chaoskey_release+0x15d/0x2c0 [ 39.371354][ T2649] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 39.377001][ T2649] ? rcu_is_watching+0x12/0xc0 [ 39.381773][ T2649] ? trace_lock_acquire+0x14a/0x1d0 [ 39.386989][ T2649] ? chaoskey_release+0x15d/0x2c0 [ 39.392180][ T2649] ? lock_acquire+0x2f/0xb0 [ 39.396696][ T2649] ? chaoskey_release+0x15d/0x2c0 [ 39.401792][ T2649] __mutex_lock+0x175/0x9c0 [ 39.406286][ T2649] ? chaoskey_release+0x15d/0x2c0 [ 39.411375][ T2649] ? chaoskey_release+0x15d/0x2c0 [ 39.416413][ T2649] ? __mutex_unlock_slowpath+0x164/0x650 [ 39.422071][ T2649] ? __pfx___mutex_lock+0x10/0x10 [ 39.427108][ T2649] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 39.433087][ T2649] ? locks_remove_file+0x393/0x5a0 [ 39.438195][ T2649] ? chaoskey_release+0x15d/0x2c0 [ 39.443208][ T2649] chaoskey_release+0x15d/0x2c0 [ 39.448046][ T2649] ? __pfx_chaoskey_release+0x10/0x10 [ 39.453401][ T2649] __fput+0x3f6/0xb60 [ 39.457370][ T2649] task_work_run+0x14e/0x250 [ 39.462172][ T2649] ? __pfx_task_work_run+0x10/0x10 [ 39.467618][ T2649] ? do_raw_spin_unlock+0x172/0x230 [ 39.472809][ T2649] do_exit+0xadd/0x2ce0 [ 39.477139][ T2649] ? do_group_exit+0x1c3/0x2a0 [ 39.481895][ T2649] ? __pfx_lock_release+0x10/0x10 [ 39.486914][ T2649] ? do_raw_spin_lock+0x12d/0x2c0 [ 39.491932][ T2649] ? __pfx_do_exit+0x10/0x10 [ 39.496624][ T2649] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 39.501992][ T2649] do_group_exit+0xd3/0x2a0 [ 39.506484][ T2649] __x64_sys_exit_group+0x3e/0x50 [ 39.511507][ T2649] x64_sys_call+0x14a9/0x16a0 [ 39.516213][ T2649] do_syscall_64+0xcd/0x250 [ 39.520792][ T2649] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 39.526696][ T2649] RIP: 0033:0x7fcc223f1409 [ 39.531106][ T2649] Code: Unable to access opcode bytes at 0x7fcc223f13df. [ 39.538124][ T2649] RSP: 002b:00007ffddbca2be8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 39.546538][ T2649] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fcc223f1409 [ 39.554500][ T2649] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000 [ 39.562483][ T2649] RBP: 00007fcc2246c370 R08: ffffffffffffffb8 R09: 00007ffddbca2957 [ 39.570457][ T2649] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcc2246c370 [ 39.578603][ T2649] R13: 0000000000000000 R14: 00007fcc22470080 R15: 00007fcc223bf670 [ 39.586625][ T2649]