Warning: Permanently added '10.128.1.33' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program syzkaller login: [ 82.119414][ C0] [ 82.121750][ C0] ======================================================== [ 82.128914][ C0] WARNING: possible irq lock inversion dependency detected [ 82.136090][ C0] 5.9.0-rc5-next-20200918-syzkaller #0 Not tainted [ 82.142563][ C0] -------------------------------------------------------- [ 82.149730][ C0] swapper/0/0 just changed the state of lock: [ 82.155766][ C0] ffff88809a1c4908 (&group->lock){..-.}-{2:2}, at: _snd_pcm_stream_lock_irqsave+0x9f/0xd0 [ 82.165644][ C0] but this lock took another, SOFTIRQ-READ-unsafe lock in the past: [ 82.173590][ C0] (&card->ctl_files_rwlock){.+.+}-{2:2} [ 82.173609][ C0] [ 82.173609][ C0] [ 82.173609][ C0] and interrupts could create inverse lock ordering between them. [ 82.173609][ C0] [ 82.193495][ C0] [ 82.193495][ C0] other info that might help us debug this: [ 82.201525][ C0] Possible interrupt unsafe locking scenario: [ 82.201525][ C0] [ 82.209815][ C0] CPU0 CPU1 [ 82.215155][ C0] ---- ---- [ 82.220502][ C0] lock(&card->ctl_files_rwlock); [ 82.225585][ C0] local_irq_disable(); [ 82.232311][ C0] lock(&group->lock); [ 82.238969][ C0] lock(&card->ctl_files_rwlock); [ 82.246569][ C0] [ 82.249994][ C0] lock(&group->lock); [ 82.254296][ C0] [ 82.254296][ C0] *** DEADLOCK *** [ 82.254296][ C0] [ 82.262412][ C0] 1 lock held by swapper/0/0: [ 82.267068][ C0] #0: ffffc90000007d80 ((&dpcm->timer)){+.-.}-{0:0}, at: call_timer_fn+0xd5/0x6b0 [ 82.276344][ C0] [ 82.276344][ C0] the shortest dependencies between 2nd lock and 1st lock: [ 82.285693][ C0] -> (&card->ctl_files_rwlock){.+.+}-{2:2} { [ 82.291736][ C0] HARDIRQ-ON-R at: [ 82.295799][ C0] lock_acquire+0x1f2/0xaa0 [ 82.302097][ C0] _raw_read_lock+0x5b/0x70 [ 82.308409][ C0] snd_ctl_notify.part.0+0x36/0x550 [ 82.315416][ C0] snd_ctl_notify+0x8f/0xb0 [ 82.321713][ C0] __snd_ctl_add_replace+0x638/0x800 [ 82.328810][ C0] snd_ctl_add_replace+0x76/0x130 [ 82.335639][ C0] snd_dummy_probe+0xc22/0x1180 [ 82.343168][ C0] platform_drv_probe+0x87/0x140 [ 82.349914][ C0] really_probe+0x282/0x9f0 [ 82.356218][ C0] driver_probe_device+0xfe/0x1d0 [ 82.363050][ C0] __device_attach_driver+0x1c2/0x220 [ 82.370222][ C0] bus_for_each_drv+0x15f/0x1e0 [ 82.376912][ C0] __device_attach+0x228/0x470 [ 82.383472][ C0] bus_probe_device+0x1e4/0x290 [ 82.390117][ C0] device_add+0xb17/0x1c40 [ 82.396330][ C0] platform_device_add+0x34f/0x6d0 [ 82.403242][ C0] platform_device_register_full+0x38c/0x4e0 [ 82.411015][ C0] alsa_card_dummy_init+0x1e0/0x309 [ 82.418011][ C0] do_one_initcall+0x103/0x6f0 [ 82.424570][ C0] kernel_init_freeable+0x652/0x6d6 [ 82.431564][ C0] kernel_init+0xd/0x1b8 [ 82.437611][ C0] ret_from_fork+0x1f/0x30 [ 82.443823][ C0] SOFTIRQ-ON-R at: [ 82.447904][ C0] lock_acquire+0x1f2/0xaa0 [ 82.454200][ C0] _raw_read_lock+0x5b/0x70 [ 82.460509][ C0] snd_ctl_notify.part.0+0x36/0x550 [ 82.467510][ C0] snd_ctl_notify+0x8f/0xb0 [ 82.473874][ C0] __snd_ctl_add_replace+0x638/0x800 [ 82.481175][ C0] snd_ctl_add_replace+0x76/0x130 [ 82.487995][ C0] snd_dummy_probe+0xc22/0x1180 [ 82.494687][ C0] platform_drv_probe+0x87/0x140 [ 82.501429][ C0] really_probe+0x282/0x9f0 [ 82.507727][ C0] driver_probe_device+0xfe/0x1d0 [ 82.514550][ C0] __device_attach_driver+0x1c2/0x220 [ 82.521716][ C0] bus_for_each_drv+0x15f/0x1e0 [ 82.528507][ C0] __device_attach+0x228/0x470 [ 82.535066][ C0] bus_probe_device+0x1e4/0x290 [ 82.541831][ C0] device_add+0xb17/0x1c40 [ 82.548041][ C0] platform_device_add+0x34f/0x6d0 [ 82.554952][ C0] platform_device_register_full+0x38c/0x4e0 [ 82.562769][ C0] alsa_card_dummy_init+0x1e0/0x309 [ 82.569770][ C0] do_one_initcall+0x103/0x6f0 [ 82.576330][ C0] kernel_init_freeable+0x652/0x6d6 [ 82.583323][ C0] kernel_init+0xd/0x1b8 [ 82.589362][ C0] ret_from_fork+0x1f/0x30 [ 82.595571][ C0] (null) at: [ 82.599140][ C0] ================================================================================ [ 82.608391][ C0] UBSAN: array-index-out-of-bounds in kernel/locking/lockdep.c:2240:40 [ 82.616594][ C0] index 9 is out of range for type 'lock_trace *[9]' [ 82.623239][ C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 5.9.0-rc5-next-20200918-syzkaller #0 [ 82.632313][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 82.642379][ C0] Call Trace: [ 82.645639][ C0] [ 82.648468][ C0] dump_stack+0x198/0x1fb [ 82.652772][ C0] ubsan_epilogue+0xb/0x5a [ 82.657163][ C0] __ubsan_handle_out_of_bounds.cold+0x62/0x6c [ 82.663289][ C0] ? vprintk_func+0x95/0x1e0 [ 82.667855][ C0] print_shortest_lock_dependencies.cold+0x11c/0x2e2 [ 82.674516][ C0] print_irq_inversion_bug.part.0+0x2c6/0x2ee [ 82.680581][ C0] mark_lock.cold+0x57/0x74 [ 82.685072][ C0] ? lock_chain_count+0x20/0x20 [ 82.691110][ C0] ? find_held_lock+0x2d/0x110 [ 82.695845][ C0] ? ktime_get+0x3e/0x140 [ 82.700161][ C0] ? lock_downgrade+0x830/0x830 [ 82.704983][ C0] ? find_held_lock+0x2d/0x110 [ 82.709720][ C0] __lock_acquire+0x118a/0x56d0 [ 82.714543][ C0] ? lock_chain_count+0x20/0x20 [ 82.719366][ C0] ? lockdep_hardirqs_on_prepare+0x530/0x530 [ 82.725320][ C0] ? hrtimer_interrupt+0x6f4/0x940 [ 82.730411][ C0] lock_acquire+0x1f2/0xaa0 [ 82.734888][ C0] ? _snd_pcm_stream_lock_irqsave+0x9f/0xd0 [ 82.740752][ C0] ? lock_release+0x890/0x890 [ 82.745403][ C0] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 82.751531][ C0] ? lockdep_hardirqs_on+0x53/0x100 [ 82.756700][ C0] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 82.762822][ C0] ? _raw_spin_lock_irqsave+0xa9/0xd0 [ 82.768165][ C0] _raw_spin_lock_irqsave+0x94/0xd0 [ 82.773339][ C0] ? _snd_pcm_stream_lock_irqsave+0x9f/0xd0 [ 82.779221][ C0] _snd_pcm_stream_lock_irqsave+0x9f/0xd0 [ 82.784913][ C0] snd_pcm_period_elapsed+0x24/0x250 [ 82.790169][ C0] loopback_jiffies_timer_function+0x1a8/0x220 [ 82.796296][ C0] ? loopback_jiffies_timer_pos_update+0xf60/0xf60 [ 82.802776][ C0] call_timer_fn+0x1a5/0x6b0 [ 82.807349][ C0] ? add_timer_on+0x4a0/0x4a0 [ 82.812001][ C0] ? lock_downgrade+0x830/0x830 [ 82.816826][ C0] ? _raw_spin_unlock_irq+0x1f/0x80 [ 82.822001][ C0] ? loopback_jiffies_timer_pos_update+0xf60/0xf60 [ 82.828503][ C0] __run_timers.part.0+0x67c/0xa50 [ 82.833588][ C0] ? call_timer_fn+0x6b0/0x6b0 [ 82.838326][ C0] ? lapic_next_event+0x4d/0x80 [ 82.843182][ C0] ? kvm_sched_clock_read+0x14/0x40 [ 82.848352][ C0] ? sched_clock+0x2a/0x40 [ 82.852739][ C0] ? sched_clock_cpu+0x18/0x1f0 [ 82.857594][ C0] ? hrtimer_interrupt+0x6f4/0x940 [ 82.862683][ C0] run_timer_softirq+0xb3/0x1d0 [ 82.867510][ C0] __do_softirq+0x203/0xab6 [ 82.871989][ C0] asm_call_on_stack+0xf/0x20 [ 82.876649][ C0] [ 82.879581][ C0] do_softirq_own_stack+0x9d/0xd0 [ 82.884591][ C0] irq_exit_rcu+0x235/0x280 [ 82.889074][ C0] sysvec_apic_timer_interrupt+0x51/0xf0 [ 82.894679][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 82.900633][ C0] RIP: 0010:native_safe_halt+0xe/0x10 [ 82.905976][ C0] Code: 89 ef e8 a5 99 76 f9 e9 86 fe ff ff 48 89 df e8 98 99 76 f9 e9 7b ff ff ff cc cc cc e9 07 00 00 00 0f 00 2d c4 14 49 00 fb f4 90 e9 07 00 00 00 0f 00 2d b4 14 49 00 f4 c3 cc cc 55 53 e8 09 [ 82.925568][ C0] RSP: 0018:ffffffff8a007d48 EFLAGS: 00000293 [ 82.931612][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 1ffffffff171e639 [ 82.939557][ C0] RDX: ffffffff8a09ce40 RSI: ffffffff883fd4d3 RDI: 0000000000000000 [ 82.947507][ C0] RBP: ffff88821a885064 R08: 0000000000000001 R09: 0000000000000001 [ 82.955461][ C0] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000001 [ 82.963413][ C0] R13: ffff88821a885000 R14: ffff88821a885064 R15: ffff8880a3800804 [ 82.971370][ C0] ? acpi_idle_do_entry+0x1e3/0x330 [ 82.976541][ C0] acpi_idle_do_entry+0x1e8/0x330 [ 82.981540][ C0] acpi_idle_enter+0x35a/0x550 [ 82.986280][ C0] cpuidle_enter_state+0x1ab/0xd20 [ 82.991374][ C0] cpuidle_enter+0x4a/0xa0 [ 82.995765][ C0] do_idle+0x48e/0x730 [ 82.999825][ C0] ? arch_cpu_idle_exit+0x70/0x70 [ 83.004822][ C0] ? do_idle+0x3d9/0x730 [ 83.009037][ C0] ? trace_init_perf_perm_irq_work_exit+0xe/0xe [ 83.015251][ C0] cpu_startup_entry+0x14/0x20 [ 83.019989][ C0] start_kernel+0x490/0x4b1 [ 83.024467][ C0] secondary_startup_64_no_verify+0xa6/0xab [ 83.030344][ C0] ================================================================================ [ 83.039592][ C0] Kernel panic - not syncing: panic_on_warn set ... [ 83.046152][ C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 5.9.0-rc5-next-20200918-syzkaller #0 [ 83.055224][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 83.065250][ C0] Call Trace: [ 83.068508][ C0] [ 83.071336][ C0] dump_stack+0x198/0x1fb [ 83.075643][ C0] panic+0x382/0x7fb [ 83.079511][ C0] ? __warn_printk+0xf3/0xf3 [ 83.084078][ C0] ? secondary_startup_64_no_verify+0xa6/0xab [ 83.090116][ C0] ? ubsan_epilogue+0x3e/0x5a [ 83.094763][ C0] ? ubsan_epilogue+0x35/0x5a [ 83.099409][ C0] ubsan_epilogue+0x54/0x5a [ 83.103896][ C0] __ubsan_handle_out_of_bounds.cold+0x62/0x6c [ 83.110020][ C0] ? vprintk_func+0x95/0x1e0 [ 83.114585][ C0] print_shortest_lock_dependencies.cold+0x11c/0x2e2 [ 83.121247][ C0] print_irq_inversion_bug.part.0+0x2c6/0x2ee [ 83.127287][ C0] mark_lock.cold+0x57/0x74 [ 83.131763][ C0] ? lock_chain_count+0x20/0x20 [ 83.136583][ C0] ? find_held_lock+0x2d/0x110 [ 83.141319][ C0] ? ktime_get+0x3e/0x140 [ 83.145636][ C0] ? lock_downgrade+0x830/0x830 [ 83.150465][ C0] ? find_held_lock+0x2d/0x110 [ 83.155211][ C0] __lock_acquire+0x118a/0x56d0 [ 83.160121][ C0] ? lock_chain_count+0x20/0x20 [ 83.164945][ C0] ? lockdep_hardirqs_on_prepare+0x530/0x530 [ 83.170895][ C0] ? hrtimer_interrupt+0x6f4/0x940 [ 83.175979][ C0] lock_acquire+0x1f2/0xaa0 [ 83.180472][ C0] ? _snd_pcm_stream_lock_irqsave+0x9f/0xd0 [ 83.186337][ C0] ? lock_release+0x890/0x890 [ 83.190986][ C0] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 83.197123][ C0] ? lockdep_hardirqs_on+0x53/0x100 [ 83.202308][ C0] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 83.208432][ C0] ? _raw_spin_lock_irqsave+0xa9/0xd0 [ 83.213792][ C0] _raw_spin_lock_irqsave+0x94/0xd0 [ 83.218970][ C0] ? _snd_pcm_stream_lock_irqsave+0x9f/0xd0 [ 83.224844][ C0] _snd_pcm_stream_lock_irqsave+0x9f/0xd0 [ 83.230534][ C0] snd_pcm_period_elapsed+0x24/0x250 [ 83.235793][ C0] loopback_jiffies_timer_function+0x1a8/0x220 [ 83.241930][ C0] ? loopback_jiffies_timer_pos_update+0xf60/0xf60 [ 83.248410][ C0] call_timer_fn+0x1a5/0x6b0 [ 83.252987][ C0] ? add_timer_on+0x4a0/0x4a0 [ 83.257655][ C0] ? lock_downgrade+0x830/0x830 [ 83.262477][ C0] ? _raw_spin_unlock_irq+0x1f/0x80 [ 83.267646][ C0] ? loopback_jiffies_timer_pos_update+0xf60/0xf60 [ 83.274118][ C0] __run_timers.part.0+0x67c/0xa50 [ 83.279203][ C0] ? call_timer_fn+0x6b0/0x6b0 [ 83.283940][ C0] ? lapic_next_event+0x4d/0x80 [ 83.288789][ C0] ? kvm_sched_clock_read+0x14/0x40 [ 83.293959][ C0] ? sched_clock+0x2a/0x40 [ 83.298359][ C0] ? sched_clock_cpu+0x18/0x1f0 [ 83.303183][ C0] ? hrtimer_interrupt+0x6f4/0x940 [ 83.308287][ C0] run_timer_softirq+0xb3/0x1d0 [ 83.313121][ C0] __do_softirq+0x203/0xab6 [ 83.317600][ C0] asm_call_on_stack+0xf/0x20 [ 83.322245][ C0] [ 83.325167][ C0] do_softirq_own_stack+0x9d/0xd0 [ 83.330167][ C0] irq_exit_rcu+0x235/0x280 [ 83.334663][ C0] sysvec_apic_timer_interrupt+0x51/0xf0 [ 83.340269][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 83.346221][ C0] RIP: 0010:native_safe_halt+0xe/0x10 [ 83.351564][ C0] Code: 89 ef e8 a5 99 76 f9 e9 86 fe ff ff 48 89 df e8 98 99 76 f9 e9 7b ff ff ff cc cc cc e9 07 00 00 00 0f 00 2d c4 14 49 00 fb f4 90 e9 07 00 00 00 0f 00 2d b4 14 49 00 f4 c3 cc cc 55 53 e8 09 [ 83.371152][ C0] RSP: 0018:ffffffff8a007d48 EFLAGS: 00000293 [ 83.377192][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 1ffffffff171e639 [ 83.385134][ C0] RDX: ffffffff8a09ce40 RSI: ffffffff883fd4d3 RDI: 0000000000000000 [ 83.393116][ C0] RBP: ffff88821a885064 R08: 0000000000000001 R09: 0000000000000001 [ 83.401061][ C0] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000001 [ 83.409005][ C0] R13: ffff88821a885000 R14: ffff88821a885064 R15: ffff8880a3800804 [ 83.416956][ C0] ? acpi_idle_do_entry+0x1e3/0x330 [ 83.422145][ C0] acpi_idle_do_entry+0x1e8/0x330 [ 83.427140][ C0] acpi_idle_enter+0x35a/0x550 [ 83.431878][ C0] cpuidle_enter_state+0x1ab/0xd20 [ 83.436962][ C0] cpuidle_enter+0x4a/0xa0 [ 83.441387][ C0] do_idle+0x48e/0x730 [ 83.445433][ C0] ? arch_cpu_idle_exit+0x70/0x70 [ 83.450437][ C0] ? do_idle+0x3d9/0x730 [ 83.454650][ C0] ? trace_init_perf_perm_irq_work_exit+0xe/0xe [ 83.460864][ C0] cpu_startup_entry+0x14/0x20 [ 83.465609][ C0] start_kernel+0x490/0x4b1 [ 83.470087][ C0] secondary_startup_64_no_verify+0xa6/0xab [ 83.477210][ C0] Kernel Offset: disabled [ 83.481527][ C0] Rebooting in 86400 seconds..