Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.173' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 72.596379][ T8443] BUG: sleeping function called from invalid context at include/linux/sched/mm.h:201 [ 72.606039][ T8443] in_atomic(): 0, irqs_disabled(): 0, non_block: 0, pid: 8443, name: syz-executor357 [ 72.616242][ T8443] 1 lock held by syz-executor357/8443: [ 72.621710][ T8443] #0: ffffffff8bf797a0 (rcu_read_lock){....}-{1:2}, at: nfnetlink_rcv_msg+0x1da/0x1300 [ 72.631604][ T8443] Preemption disabled at: [ 72.631616][ T8443] [<0000000000000000>] 0x0 [ 72.640569][ T8443] CPU: 1 PID: 8443 Comm: syz-executor357 Not tainted 5.12.0-next-20210504-syzkaller #0 [ 72.650195][ T8443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 72.660244][ T8443] Call Trace: [ 72.663519][ T8443] dump_stack+0x141/0x1d7 [ 72.667846][ T8443] ___might_sleep.cold+0x1f1/0x237 [ 72.672960][ T8443] kmem_cache_alloc_node+0x33d/0x3e0 [ 72.678268][ T8443] ? __alloc_skb+0x20b/0x340 [ 72.682871][ T8443] __alloc_skb+0x20b/0x340 [ 72.687576][ T8443] netlink_ack+0x1ed/0xaa0 [ 72.692020][ T8443] ? netlink_sendmsg+0xd90/0xd90 [ 72.696979][ T8443] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 72.702975][ T8443] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 72.708964][ T8443] netlink_rcv_skb+0x33d/0x420 [ 72.713750][ T8443] ? nfnetlink_net_init+0x380/0x380 [ 72.718946][ T8443] ? netlink_ack+0xaa0/0xaa0 [ 72.723543][ T8443] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 72.729785][ T8443] ? ns_capable+0xde/0x100 [ 72.734219][ T8443] nfnetlink_rcv+0x1ac/0x420 [ 72.738811][ T8443] ? nfnetlink_rcv_batch+0x25c0/0x25c0 [ 72.744294][ T8443] netlink_unicast+0x533/0x7d0 [ 72.749471][ T8443] ? netlink_attachskb+0x870/0x870 [ 72.754597][ T8443] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 72.760852][ T8443] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 72.767099][ T8443] ? __phys_addr_symbol+0x2c/0x70 [ 72.772122][ T8443] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 72.777853][ T8443] ? __check_object_size+0x171/0x3f0 [ 72.783162][ T8443] netlink_sendmsg+0x856/0xd90 [ 72.787932][ T8443] ? netlink_unicast+0x7d0/0x7d0 [ 72.792871][ T8443] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 72.799117][ T8443] ? netlink_unicast+0x7d0/0x7d0 [ 72.804076][ T8443] sock_sendmsg+0xcf/0x120 [ 72.808501][ T8443] ____sys_sendmsg+0x6e8/0x810 [ 72.813289][ T8443] ? kernel_sendmsg+0x50/0x50 [ 72.817962][ T8443] ? do_recvmmsg+0x6d0/0x6d0 [ 72.822569][ T8443] ? do_huge_pmd_anonymous_page+0x124b/0x2570 [ 72.828635][ T8443] ? lock_downgrade+0x6e0/0x6e0 [ 72.833502][ T8443] ___sys_sendmsg+0xf3/0x170 [ 72.838111][ T8443] ? sendmsg_copy_msghdr+0x160/0x160 [ 72.843399][ T8443] ? __lock_acquire+0x16a7/0x5230 [ 72.848445][ T8443] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 72.854425][ T8443] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 72.860417][ T8443] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 72.866661][ T8443] ? __fget_light+0x215/0x280 [ 72.871340][ T8443] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 72.877685][ T8443] __sys_sendmsg+0xe5/0x1b0 [ 72.882199][ T8443] ? __sys_sendmsg_sock+0x30/0x30 [ 72.887240][ T8443] ? syscall_enter_from_user_mode+0x27/0x70 [ 72.893149][ T8443] do_syscall_64+0x3a/0xb0 [ 72.897559][ T8443] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 72.903459][ T8443] RIP: 0033:0x43eed9 [ 72.907349][ T8443] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 72.926962][ T8443] RSP: 002b:00007ffe1dca1748 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 72.935375][ T8443] RAX: ffffffffffffffda RBX: 0000000000400488 RCX: 000000000043eed9 [ 72.943353][ T8443] RDX: 0000000000000000 RSI: 0000000020000480 RDI: 0000000000000003 [ 72.951315][ T8443] RBP: 0000000000402ec0 R08: 0000000000000000 R09: 0000000000400488 [ 72.959272][ T8443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402f50 [ 72.967227][ T8443] R13: 0000000000000000 R14: 00000000004ac018 R15: 0000000000400488 [ 72.982587][ T8443] [ 72.984931][ T8443] ================================================ [ 72.991417][ T8443] WARNING: lock held when returning to user space! [ 72.997910][ T8443] 5.12.0-next-20210504-syzkaller #0 Tainted: G W [ 73.005536][ T8443] ------------------------------------------------ [ 73.012038][ T8443] syz-executor357/8443 is leaving the kernel with locks still held! [ 73.020013][ T8443] 1 lock held by syz-executor357/8443: [ 73.025494][ T8443] #0: ffffffff8bf797a0 (rcu_read_lock){....}-{1:2}, at: nfnetlink_rcv_msg+0x1da/0x1300 [ 73.035461][ T8443] ------------[ cut here ]------------ [ 73.040923][ T8443] WARNING: CPU: 1 PID: 8443 at kernel/rcu/tree_plugin.h:359 rcu_note_context_switch+0xfd/0x16e0 [ 73.051369][ T8443] Modules linked in: [ 73.055267][ T8443] CPU: 1 PID: 8443 Comm: syz-executor357 Tainted: G W 5.12.0-next-20210504-syzkaller #0 [ 73.066301][ T8443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 73.076375][ T8443] RIP: 0010:rcu_note_context_switch+0xfd/0x16e0 [ 73.082635][ T8443] Code: 48 89 fa 48 c1 ea 03 0f b6 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 2e 0d 00 00 8b bd cc 03 00 00 85 ff 7e 02 <0f> 0b 65 48 8b 2c 25 00 f0 01 00 48 8d bd cc 03 00 00 48 b8 00 00 [ 73.102260][ T8443] RSP: 0000:ffffc900018dfdb0 EFLAGS: 00010002 [ 73.108351][ T8443] RAX: 0000000000000007 RBX: ffff8880b9d36080 RCX: ffffffff8dc99bac [ 73.116406][ T8443] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000001 [ 73.124395][ T8443] RBP: ffff888026595580 R08: 0000000000000000 R09: ffffffff8dc96917 [ 73.132382][ T8443] R10: fffffbfff1b92d22 R11: 0000000000000001 R12: 0000000000000000 [ 73.140395][ T8443] R13: ffff888026595580 R14: ffff888026595580 R15: ffffc900018d8000 [ 73.148420][ T8443] FS: 0000000001da5300(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000 [ 73.157367][ T8443] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 73.163966][ T8443] CR2: 00007ff4eb463ab4 CR3: 0000000020c2c000 CR4: 00000000001506e0 [ 73.171956][ T8443] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 73.179948][ T8443] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 73.187942][ T8443] Call Trace: [ 73.191241][ T8443] __schedule+0x214/0x23e0 [ 73.195815][ T8443] ? io_schedule_timeout+0x140/0x140 [ 73.201135][ T8443] ? __do_softirq+0x878/0x9f6 [ 73.205839][ T8443] schedule+0xcf/0x270 [ 73.209947][ T8443] exit_to_user_mode_prepare+0x13e/0x280 [ 73.215607][ T8443] ? asm_sysvec_apic_timer_interrupt+0xa/0x20 [ 73.221699][ T8443] irqentry_exit_to_user_mode+0x5/0x40 [ 73.227200][ T8443] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 73.233205][ T8443] RIP: 0033:0x43eed9 [ 73.237114][ T8443] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 73.257445][ T8443] RSP: 002b:00007ffe1dca1748 EFLAGS: 00000246 [ 73.263528][ T8443] RAX: 0000000000000098 RBX: 0000000000400488 RCX: 000000000043eed9 [ 73.271509][ T8443] RDX: 0000000000000000 RSI: 0000000020000480 RDI: 0000000000000003 [ 73.279495][ T8443] RBP: 0000000000402ec0 R08: 0000000000000000 R09: 0000000000400488 [ 73.287490][ T8443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402f50 [ 73.295472][ T8443] R13: 0000000000000000 R14: 00000000004ac018 R15: 0000000000400488 [ 73.303565][ T8443] Kernel panic - not syncing: panic_on_warn set ... [ 73.310165][ T8443] CPU: 1 PID: 8443 Comm: syz-executor357 Tainted: G W 5.12.0-next-20210504-syzkaller #0 [ 73.321188][ T8443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 73.331254][ T8443] Call Trace: [ 73.334547][ T8443] dump_stack+0x141/0x1d7 [ 73.338896][ T8443] panic+0x306/0x73d [ 73.342819][ T8443] ? __warn_printk+0xf3/0xf3 [ 73.347424][ T8443] ? __warn.cold+0x1a/0x44 [ 73.351857][ T8443] ? rcu_note_context_switch+0xfd/0x16e0 [ 73.357625][ T8443] __warn.cold+0x35/0x44 [ 73.361904][ T8443] ? rcu_note_context_switch+0xfd/0x16e0 [ 73.367640][ T8443] report_bug+0x1bd/0x210 [ 73.372005][ T8443] handle_bug+0x3c/0x60 [ 73.376190][ T8443] exc_invalid_op+0x14/0x40 [ 73.380713][ T8443] asm_exc_invalid_op+0x12/0x20 [ 73.385586][ T8443] RIP: 0010:rcu_note_context_switch+0xfd/0x16e0 [ 73.391844][ T8443] Code: 48 89 fa 48 c1 ea 03 0f b6 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 2e 0d 00 00 8b bd cc 03 00 00 85 ff 7e 02 <0f> 0b 65 48 8b 2c 25 00 f0 01 00 48 8d bd cc 03 00 00 48 b8 00 00 [ 73.411483][ T8443] RSP: 0000:ffffc900018dfdb0 EFLAGS: 00010002 [ 73.417573][ T8443] RAX: 0000000000000007 RBX: ffff8880b9d36080 RCX: ffffffff8dc99bac [ 73.425571][ T8443] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000001 [ 73.433593][ T8443] RBP: ffff888026595580 R08: 0000000000000000 R09: ffffffff8dc96917 [ 73.441592][ T8443] R10: fffffbfff1b92d22 R11: 0000000000000001 R12: 0000000000000000 [ 73.449592][ T8443] R13: ffff888026595580 R14: ffff888026595580 R15: ffffc900018d8000 [ 73.457610][ T8443] __schedule+0x214/0x23e0 [ 73.462071][ T8443] ? io_schedule_timeout+0x140/0x140 [ 73.467385][ T8443] ? __do_softirq+0x878/0x9f6 [ 73.472086][ T8443] schedule+0xcf/0x270 [ 73.476195][ T8443] exit_to_user_mode_prepare+0x13e/0x280 [ 73.481850][ T8443] ? asm_sysvec_apic_timer_interrupt+0xa/0x20 [ 73.488724][ T8443] irqentry_exit_to_user_mode+0x5/0x40 [ 73.494209][ T8443] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 73.500218][ T8443] RIP: 0033:0x43eed9 [ 73.504131][ T8443] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 73.523758][ T8443] RSP: 002b:00007ffe1dca1748 EFLAGS: 00000246 [ 73.529835][ T8443] RAX: 0000000000000098 RBX: 0000000000400488 RCX: 000000000043eed9 [ 73.537814][ T8443] RDX: 0000000000000000 RSI: 0000000020000480 RDI: 0000000000000003 [ 73.545794][ T8443] RBP: 0000000000402ec0 R08: 0000000000000000 R09: 0000000000400488 [ 73.553793][ T8443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402f50 [ 73.561783][ T8443] R13: 0000000000000000 R14: 00000000004ac018 R15: 0000000000400488 [ 73.570259][ T8443] Kernel Offset: disabled [ 73.574597][ T8443] Rebooting in 86400 seconds..