INFO: task kworker/0:2:9155 blocked for more than 430 seconds. Not tainted 6.15.0-rc7-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/0:2 state:D stack:0 pid:9155 tgid:9155 ppid:2 task_flags:0x4208060 flags:0x00000000 Workqueue: events rfkill_global_led_trigger_worker Call trace: [<81a532e4>] (__schedule) from [<81a54268>] (__schedule_loop kernel/sched/core.c:6845 [inline]) [<81a532e4>] (__schedule) from [<81a54268>] (schedule+0x2c/0x130 kernel/sched/core.c:6860) r10:829ebc90 r9:eab69e54 r8:00000002 r7:60000013 r6:eab69e5c r5:8417bc00 r4:8417bc00 [<81a5423c>] (schedule) from [<81a54650>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6917) r5:8417bc00 r4:829ebc8c [<81a54638>] (schedule_preempt_disabled) from [<81a56d34>] (__mutex_lock_common kernel/locking/mutex.c:678 [inline]) [<81a54638>] (schedule_preempt_disabled) from [<81a56d34>] (__mutex_lock.constprop.0+0x300/0x6f8 kernel/locking/mutex.c:746) [<81a56a34>] (__mutex_lock.constprop.0) from [<81a57200>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1033) r10:83016070 r9:83018005 r8:8417bc00 r7:dddced80 r6:83018000 r5:82c2fa14 r4:829ebc8c [<81a571ec>] (__mutex_lock_slowpath) from [<81a57240>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:277) [<81a57204>] (mutex_lock) from [<81970a18>] (rfkill_global_led_trigger_worker+0x1c/0xc0 net/rfkill/core.c:182) [<819709fc>] (rfkill_global_led_trigger_worker) from [<802873bc>] (process_one_work+0x1b4/0x4f4 kernel/workqueue.c:3238) r5:82c2fa14 r4:850dcc80 [<80287208>] (process_one_work) from [<80288004>] (process_scheduled_works kernel/workqueue.c:3319 [inline]) [<80287208>] (process_one_work) from [<80288004>] (worker_thread+0x1fc/0x3d8 kernel/workqueue.c:3400) r10:61c88647 r9:8417bc00 r8:850dccac r7:82804d40 r6:dddced80 r5:dddceda0 r4:850dcc80 [<80287e08>] (worker_thread) from [<8028f07c>] (kthread+0x12c/0x280 kernel/kthread.c:464) r10:00000000 r9:850dcc80 r8:80287e08 r7:eb3b9e60 r6:850dcc00 r5:8417bc00 r4:00000001 [<8028ef50>] (kthread) from [<80200114>] (ret_from_fork+0x14/0x20 arch/arm/kernel/entry-common.S:137) Exception stack(0xeab69fb0 to 0xeab69ff8) 9fa0: 00000000 00000000 00000000 00000000 9fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 9fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r10:00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8028ef50 r4:847a2500 INFO: task kworker/0:2:9155 is blocked on a mutex likely owned by task syz.1.19828:11769. task:syz.1.19828 state:D stack:0 pid:11769 tgid:11763 ppid:3099 task_flags:0x400040 flags:0x00000001 Call trace: [<81a532e4>] (__schedule) from [<81a54268>] (__schedule_loop kernel/sched/core.c:6845 [inline]) [<81a532e4>] (__schedule) from [<81a54268>] (schedule+0x2c/0x130 kernel/sched/core.c:6860) r10:85014460 r9:ee6f5ddc r8:00000002 r7:60000013 r6:ee6f5de4 r5:84184800 r4:84184800 [<81a5423c>] (schedule) from [<81a54650>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6917) r5:84184800 r4:8501445c [<81a54638>] (schedule_preempt_disabled) from [<81a56d34>] (__mutex_lock_common kernel/locking/mutex.c:678 [inline]) [<81a54638>] (schedule_preempt_disabled) from [<81a56d34>] (__mutex_lock.constprop.0+0x300/0x6f8 kernel/locking/mutex.c:746) [<81a56a34>] (__mutex_lock.constprop.0) from [<81a57200>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1033) r10:81e86e5c r9:20000080 r8:00000000 r7:84184800 r6:00000001 r5:8501445c r4:85014400 [<81a571ec>] (__mutex_lock_slowpath) from [<81a57240>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:277) [<81a57204>] (mutex_lock) from [<819b5050>] (device_lock include/linux/device.h:922 [inline]) [<81a57204>] (mutex_lock) from [<819b5050>] (nfc_dev_down+0x20/0xc8 net/nfc/core.c:143) [<819b5030>] (nfc_dev_down) from [<819b5124>] (nfc_rfkill_set_block+0x2c/0x68 net/nfc/core.c:179) r7:84184800 r6:00000001 r5:85014400 r4:00000001 [<819b50f8>] (nfc_rfkill_set_block) from [<81971814>] (rfkill_set_block+0x90/0x144 net/rfkill/core.c:346) r5:00000000 r4:85015c00 [<81971784>] (rfkill_set_block) from [<81971d74>] (rfkill_fop_write+0x150/0x274 net/rfkill/core.c:1301) r7:84184800 r6:85015c00 r5:829ebca0 r4:00000008 [<81971c24>] (rfkill_fop_write) from [<805520a8>] (vfs_write+0xac/0x448 fs/read_write.c:682) r6:00000008 r5:8639e180 r4:81971c24 [<80551ffc>] (vfs_write) from [<8055260c>] (ksys_write+0xd0/0xe4 fs/read_write.c:736) r10:00000004 r9:84184800 r8:8020029c r7:00000008 r6:20000080 r5:8639e180 r4:8639e181 [<8055253c>] (ksys_write) from [<80552630>] (__do_sys_write fs/read_write.c:747 [inline]) [<8055253c>] (ksys_write) from [<80552630>] (sys_write+0x10/0x14 fs/read_write.c:744) r7:00000004 r6:002e6300 r5:00000000 r4:00000000 [<80552620>] (sys_write) from [<80200060>] (ret_fast_syscall+0x0/0x1c arch/arm/mm/proc-v7.S:67) Exception stack(0xee6f5fa8 to 0xee6f5ff0) 5fa0: 00000000 00000000 00000003 20000080 00000008 00000000 5fc0: 00000000 00000000 002e6300 00000004 002d0000 00000000 00006364 76bc40bc 5fe0: 76bc3ec0 76bc3eb0 0001939c 00131f30 INFO: task syz.0.19827:11761 blocked for more than 430 seconds. Not tainted 6.15.0-rc7-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz.0.19827 state:D stack:0 pid:11761 tgid:11761 ppid:3100 task_flags:0x400040 flags:0x00000001 Call trace: [<81a532e4>] (__schedule) from [<81a54268>] (__schedule_loop kernel/sched/core.c:6845 [inline]) [<81a532e4>] (__schedule) from [<81a54268>] (schedule+0x2c/0x130 kernel/sched/core.c:6860) r10:829ebc90 r9:ee585dec r8:00000002 r7:60000013 r6:ee585df4 r5:83b6a400 r4:83b6a400 [<81a5423c>] (schedule) from [<81a54650>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6917) r5:83b6a400 r4:829ebc8c [<81a54638>] (schedule_preempt_disabled) from [<81a56d34>] (__mutex_lock_common kernel/locking/mutex.c:678 [inline]) [<81a54638>] (schedule_preempt_disabled) from [<81a56d34>] (__mutex_lock.constprop.0+0x300/0x6f8 kernel/locking/mutex.c:746) [<81a56a34>] (__mutex_lock.constprop.0) from [<81a57200>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1033) r10:000001b4 r9:83b6a400 r8:850d4910 r7:84a5b800 r6:84a5b824 r5:85015e40 r4:85015c00 [<81a571ec>] (__mutex_lock_slowpath) from [<81a57240>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:277) [<81a57204>] (mutex_lock) from [<81971504>] (rfkill_unregister+0x5c/0xc4 net/rfkill/core.c:1145) [<819714a8>] (rfkill_unregister) from [<819b47d8>] (nfc_unregister_device+0x44/0x118 net/nfc/core.c:1167) r5:8501445c r4:85014400 [<819b4794>] (nfc_unregister_device) from [<819c1858>] (nci_unregister_device+0x94/0x98 net/nfc/nci/core.c:1323) r5:84a5b824 r4:84a5b824 [<819c17c4>] (nci_unregister_device) from [<80b82ddc>] (virtual_ncidev_close+0x18/0x30 drivers/nfc/virtual_ncidev.c:172) r9:83b6a400 r8:850d4910 r7:83c69458 r6:83418908 r5:040e001b r4:8652d380 [<80b82dc4>] (virtual_ncidev_close) from [<80553c0c>] (__fput+0xd8/0x2ec fs/file_table.c:465) r5:040e001b r4:84901180 [<80553b34>] (__fput) from [<80553eb4>] (____fput+0x14/0x18 fs/file_table.c:493) r9:83b6a400 r8:82a716d0 r7:83b6a400 r6:83b6ac94 r5:83b6ac64 r4:00000000 [<80553ea0>] (____fput) from [<8028d014>] (task_work_run+0x90/0xb8 kernel/task_work.c:227) [<8028cf84>] (task_work_run) from [<8022bc08>] (resume_user_mode_work include/linux/resume_user_mode.h:50 [inline]) [<8028cf84>] (task_work_run) from [<8022bc08>] (do_work_pending+0x448/0x4f8 arch/arm/kernel/signal.c:631) r9:83b6a400 r8:8020029c r7:000001b4 r6:8020029c r5:ee585fb0 r4:83b6a400 [<8022b7c0>] (do_work_pending) from [<80200088>] (slow_work_pending+0xc/0x24) Exception stack(0xee585fb0 to 0xee585ff8) 5fa0: 00000000 0000001e 00000000 7efe3928 5fc0: 00000000 00004d73 00000000 000001b4 00000000 002e62d4 ffffffff 00000000 5fe0: 7efe3818 7efe3808 000266d4 00131f30 20000010 00000003 r10:000001b4 r9:83b6a400 r8:8020029c r7:000001b4 r6:00000000 r5:00004d73 r4:00000000 INFO: task syz.0.19827:11761 is blocked on a mutex likely owned by task syz.1.19828:11769. task:syz.1.19828 state:D stack:0 pid:11769 tgid:11763 ppid:3099 task_flags:0x400040 flags:0x00000001 Call trace: [<81a532e4>] (__schedule) from [<81a54268>] (__schedule_loop kernel/sched/core.c:6845 [inline]) [<81a532e4>] (__schedule) from [<81a54268>] (schedule+0x2c/0x130 kernel/sched/core.c:6860) r10:85014460 r9:ee6f5ddc r8:00000002 r7:60000013 r6:ee6f5de4 r5:84184800 r4:84184800 [<81a5423c>] (schedule) from [<81a54650>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6917) r5:84184800 r4:8501445c [<81a54638>] (schedule_preempt_disabled) from [<81a56d34>] (__mutex_lock_common kernel/locking/mutex.c:678 [inline]) [<81a54638>] (schedule_preempt_disabled) from [<81a56d34>] (__mutex_lock.constprop.0+0x300/0x6f8 kernel/locking/mutex.c:746) [<81a56a34>] (__mutex_lock.constprop.0) from [<81a57200>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1033) r10:81e86e5c r9:20000080 r8:00000000 r7:84184800 r6:00000001 r5:8501445c r4:85014400 [<81a571ec>] (__mutex_lock_slowpath) from [<81a57240>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:277) [<81a57204>] (mutex_lock) from [<819b5050>] (device_lock include/linux/device.h:922 [inline]) [<81a57204>] (mutex_lock) from [<819b5050>] (nfc_dev_down+0x20/0xc8 net/nfc/core.c:143) [<819b5030>] (nfc_dev_down) from [<819b5124>] (nfc_rfkill_set_block+0x2c/0x68 net/nfc/core.c:179) r7:84184800 r6:00000001 r5:85014400 r4:00000001 [<819b50f8>] (nfc_rfkill_set_block) from [<81971814>] (rfkill_set_block+0x90/0x144 net/rfkill/core.c:346) r5:00000000 r4:85015c00 [<81971784>] (rfkill_set_block) from [<81971d74>] (rfkill_fop_write+0x150/0x274 net/rfkill/core.c:1301) r7:84184800 r6:85015c00 r5:829ebca0 r4:00000008 [<81971c24>] (rfkill_fop_write) from [<805520a8>] (vfs_write+0xac/0x448 fs/read_write.c:682) r6:00000008 r5:8639e180 r4:81971c24 [<80551ffc>] (vfs_write) from [<8055260c>] (ksys_write+0xd0/0xe4 fs/read_write.c:736) r10:00000004 r9:84184800 r8:8020029c r7:00000008 r6:20000080 r5:8639e180 r4:8639e181 [<8055253c>] (ksys_write) from [<80552630>] (__do_sys_write fs/read_write.c:747 [inline]) [<8055253c>] (ksys_write) from [<80552630>] (sys_write+0x10/0x14 fs/read_write.c:744) r7:00000004 r6:002e6300 r5:00000000 r4:00000000 [<80552620>] (sys_write) from [<80200060>] (ret_fast_syscall+0x0/0x1c arch/arm/mm/proc-v7.S:67) Exception stack(0xee6f5fa8 to 0xee6f5ff0) 5fa0: 00000000 00000000 00000003 20000080 00000008 00000000 5fc0: 00000000 00000000 002e6300 00000004 002d0000 00000000 00006364 76bc40bc 5fe0: 76bc3ec0 76bc3eb0 0001939c 00131f30 INFO: task syz.1.19828:11769 blocked for more than 430 seconds. Not tainted 6.15.0-rc7-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz.1.19828 state:D stack:0 pid:11769 tgid:11763 ppid:3099 task_flags:0x400040 flags:0x00000001 Call trace: [<81a532e4>] (__schedule) from [<81a54268>] (__schedule_loop kernel/sched/core.c:6845 [inline]) [<81a532e4>] (__schedule) from [<81a54268>] (schedule+0x2c/0x130 kernel/sched/core.c:6860) r10:85014460 r9:ee6f5ddc r8:00000002 r7:60000013 r6:ee6f5de4 r5:84184800 r4:84184800 [<81a5423c>] (schedule) from [<81a54650>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6917) r5:84184800 r4:8501445c [<81a54638>] (schedule_preempt_disabled) from [<81a56d34>] (__mutex_lock_common kernel/locking/mutex.c:678 [inline]) [<81a54638>] (schedule_preempt_disabled) from [<81a56d34>] (__mutex_lock.constprop.0+0x300/0x6f8 kernel/locking/mutex.c:746) [<81a56a34>] (__mutex_lock.constprop.0) from [<81a57200>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1033) r10:81e86e5c r9:20000080 r8:00000000 r7:84184800 r6:00000001 r5:8501445c r4:85014400 [<81a571ec>] (__mutex_lock_slowpath) from [<81a57240>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:277) [<81a57204>] (mutex_lock) from [<819b5050>] (device_lock include/linux/device.h:922 [inline]) [<81a57204>] (mutex_lock) from [<819b5050>] (nfc_dev_down+0x20/0xc8 net/nfc/core.c:143) [<819b5030>] (nfc_dev_down) from [<819b5124>] (nfc_rfkill_set_block+0x2c/0x68 net/nfc/core.c:179) r7:84184800 r6:00000001 r5:85014400 r4:00000001 [<819b50f8>] (nfc_rfkill_set_block) from [<81971814>] (rfkill_set_block+0x90/0x144 net/rfkill/core.c:346) r5:00000000 r4:85015c00 [<81971784>] (rfkill_set_block) from [<81971d74>] (rfkill_fop_write+0x150/0x274 net/rfkill/core.c:1301) r7:84184800 r6:85015c00 r5:829ebca0 r4:00000008 [<81971c24>] (rfkill_fop_write) from [<805520a8>] (vfs_write+0xac/0x448 fs/read_write.c:682) r6:00000008 r5:8639e180 r4:81971c24 [<80551ffc>] (vfs_write) from [<8055260c>] (ksys_write+0xd0/0xe4 fs/read_write.c:736) r10:00000004 r9:84184800 r8:8020029c r7:00000008 r6:20000080 r5:8639e180 r4:8639e181 [<8055253c>] (ksys_write) from [<80552630>] (__do_sys_write fs/read_write.c:747 [inline]) [<8055253c>] (ksys_write) from [<80552630>] (sys_write+0x10/0x14 fs/read_write.c:744) r7:00000004 r6:002e6300 r5:00000000 r4:00000000 [<80552620>] (sys_write) from [<80200060>] (ret_fast_syscall+0x0/0x1c arch/arm/mm/proc-v7.S:67) Exception stack(0xee6f5fa8 to 0xee6f5ff0) 5fa0: 00000000 00000000 00000003 20000080 00000008 00000000 5fc0: 00000000 00000000 002e6300 00000004 002d0000 00000000 00006364 76bc40bc 5fe0: 76bc3ec0 76bc3eb0 0001939c 00131f30 INFO: task syz.1.19828:11769 is blocked on a mutex likely owned by task syz.0.19827:11761. task:syz.0.19827 state:D stack:0 pid:11761 tgid:11761 ppid:3100 task_flags:0x400040 flags:0x00000001 Call trace: [<81a532e4>] (__schedule) from [<81a54268>] (__schedule_loop kernel/sched/core.c:6845 [inline]) [<81a532e4>] (__schedule) from [<81a54268>] (schedule+0x2c/0x130 kernel/sched/core.c:6860) r10:829ebc90 r9:ee585dec r8:00000002 r7:60000013 r6:ee585df4 r5:83b6a400 r4:83b6a400 [<81a5423c>] (schedule) from [<81a54650>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6917) r5:83b6a400 r4:829ebc8c [<81a54638>] (schedule_preempt_disabled) from [<81a56d34>] (__mutex_lock_common kernel/locking/mutex.c:678 [inline]) [<81a54638>] (schedule_preempt_disabled) from [<81a56d34>] (__mutex_lock.constprop.0+0x300/0x6f8 kernel/locking/mutex.c:746) [<81a56a34>] (__mutex_lock.constprop.0) from [<81a57200>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1033) r10:000001b4 r9:83b6a400 r8:850d4910 r7:84a5b800 r6:84a5b824 r5:85015e40 r4:85015c00 [<81a571ec>] (__mutex_lock_slowpath) from [<81a57240>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:277) [<81a57204>] (mutex_lock) from [<81971504>] (rfkill_unregister+0x5c/0xc4 net/rfkill/core.c:1145) [<819714a8>] (rfkill_unregister) from [<819b47d8>] (nfc_unregister_device+0x44/0x118 net/nfc/core.c:1167) r5:8501445c r4:85014400 [<819b4794>] (nfc_unregister_device) from [<819c1858>] (nci_unregister_device+0x94/0x98 net/nfc/nci/core.c:1323) r5:84a5b824 r4:84a5b824 [<819c17c4>] (nci_unregister_device) from [<80b82ddc>] (virtual_ncidev_close+0x18/0x30 drivers/nfc/virtual_ncidev.c:172) r9:83b6a400 r8:850d4910 r7:83c69458 r6:83418908 r5:040e001b r4:8652d380 [<80b82dc4>] (virtual_ncidev_close) from [<80553c0c>] (__fput+0xd8/0x2ec fs/file_table.c:465) r5:040e001b r4:84901180 [<80553b34>] (__fput) from [<80553eb4>] (____fput+0x14/0x18 fs/file_table.c:493) r9:83b6a400 r8:82a716d0 r7:83b6a400 r6:83b6ac94 r5:83b6ac64 r4:00000000 [<80553ea0>] (____fput) from [<8028d014>] (task_work_run+0x90/0xb8 kernel/task_work.c:227) [<8028cf84>] (task_work_run) from [<8022bc08>] (resume_user_mode_work include/linux/resume_user_mode.h:50 [inline]) [<8028cf84>] (task_work_run) from [<8022bc08>] (do_work_pending+0x448/0x4f8 arch/arm/kernel/signal.c:631) r9:83b6a400 r8:8020029c r7:000001b4 r6:8020029c r5:ee585fb0 r4:83b6a400 [<8022b7c0>] (do_work_pending) from [<80200088>] (slow_work_pending+0xc/0x24) Exception stack(0xee585fb0 to 0xee585ff8) 5fa0: 00000000 0000001e 00000000 7efe3928 5fc0: 00000000 00004d73 00000000 000001b4 00000000 002e62d4 ffffffff 00000000 5fe0: 7efe3818 7efe3808 000266d4 00131f30 20000010 00000003 r10:000001b4 r9:83b6a400 r8:8020029c r7:000001b4 r6:00000000 r5:00004d73 r4:00000000 NMI backtrace for cpu 0 CPU: 0 UID: 0 PID: 32 Comm: khungtaskd Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT Hardware name: ARM-Versatile Express Call trace: [<802019e4>] (dump_backtrace) from [<80201ae0>] (show_stack+0x18/0x1c arch/arm/kernel/traps.c:257) r7:00000000 r6:00000013 r5:60000093 r4:82257fc8 [<80201ac8>] (show_stack) from [<8021ff98>] (__dump_stack lib/dump_stack.c:94 [inline]) [<80201ac8>] (show_stack) from [<8021ff98>] (dump_stack_lvl+0x70/0x7c lib/dump_stack.c:120) [<8021ff28>] (dump_stack_lvl) from [<8021ffbc>] (dump_stack+0x18/0x1c lib/dump_stack.c:129) r5:00000000 r4:00000001 [<8021ffa4>] (dump_stack) from [<81a3d44c>] (nmi_cpu_backtrace+0x160/0x17c lib/nmi_backtrace.c:113) [<81a3d2ec>] (nmi_cpu_backtrace) from [<81a3d598>] (nmi_trigger_cpumask_backtrace+0x130/0x1d8 lib/nmi_backtrace.c:62) r7:00000000 r6:8280c610 r5:8281af00 r4:ffffffff [<81a3d468>] (nmi_trigger_cpumask_backtrace) from [<802304dc>] (arch_trigger_cpumask_backtrace+0x18/0x1c arch/arm/kernel/smp.c:852) r9:000393c0 r8:82ab6564 r7:8280c788 r6:00007f37 r5:8281b4c8 r4:8321970c [<802304c4>] (arch_trigger_cpumask_backtrace) from [<80386da8>] (trigger_all_cpu_backtrace include/linux/nmi.h:158 [inline]) [<802304c4>] (arch_trigger_cpumask_backtrace) from [<80386da8>] (check_hung_uninterruptible_tasks kernel/hung_task.c:274 [inline]) [<802304c4>] (arch_trigger_cpumask_backtrace) from [<80386da8>] (watchdog+0x4a8/0x69c kernel/hung_task.c:437) [<80386900>] (watchdog) from [<8028f07c>] (kthread+0x12c/0x280 kernel/kthread.c:464) r10:00000000 r9:00000000 r8:80386900 r7:83327600 r6:83327600 r5:83251800 r4:00000001 [<8028ef50>] (kthread) from [<80200114>] (ret_from_fork+0x14/0x20 arch/arm/kernel/entry-common.S:137) Exception stack(0xdf8e1fb0 to 0xdf8e1ff8) 1fa0: 00000000 00000000 00000000 00000000 1fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 1fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r10:00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8028ef50 r4:832bfa40 Sending NMI from CPU 0 to CPUs 1: NMI backtrace for cpu 1 CPU: 1 UID: 0 PID: 2821 Comm: pr/ttyAMA0 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT Hardware name: ARM-Versatile Express PC is at __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:152 [inline] PC is at _raw_spin_unlock_irqrestore+0x28/0x54 kernel/locking/spinlock.c:194 LR is at spin_unlock_irqrestore include/linux/spinlock.h:406 [inline] LR is at __uart_port_unlock_irqrestore include/linux/serial_core.h:614 [inline] LR is at pl011_console_device_unlock+0x20/0x24 drivers/tty/serial/amba-pl011.c:2603 pc : [<81a5c66c>] lr : [<80a62b0c>] psr: 60010113 sp : ebbc9eb0 ip : ebbc9ec0 fp : ebbc9ebc r10: 8295b3bc r9 : 00000001 r8 : 00000000 r7 : 00000117 r6 : 8295b320 r5 : 00000000 r4 : 00000001 r3 : 00003017 r2 : 00000000 r1 : 60010113 r0 : 83f3b040 Flags: nZCv IRQs on FIQs on Mode SVC_32 ISA ARM Segment none Control: 30c5387d Table: 84468e40 DAC: 00000000 Call trace: [<81a5c644>] (_raw_spin_unlock_irqrestore) from [<80a62b0c>] (spin_unlock_irqrestore include/linux/spinlock.h:406 [inline]) [<81a5c644>] (_raw_spin_unlock_irqrestore) from [<80a62b0c>] (__uart_port_unlock_irqrestore include/linux/serial_core.h:614 [inline]) [<81a5c644>] (_raw_spin_unlock_irqrestore) from [<80a62b0c>] (pl011_console_device_unlock+0x20/0x24 drivers/tty/serial/amba-pl011.c:2603) [<80a62aec>] (pl011_console_device_unlock) from [<802efd14>] (nbcon_emit_one+0x80/0xf8 kernel/printk/nbcon.c:1123) [<802efc94>] (nbcon_emit_one) from [<802eff34>] (nbcon_kthread_func+0x1a8/0x2a4 kernel/printk/nbcon.c:1210) r6:8280c610 r5:83a21800 r4:8295b320 [<802efd8c>] (nbcon_kthread_func) from [<8028f07c>] (kthread+0x12c/0x280 kernel/kthread.c:464) r10:00000000 r9:8295b320 r8:802efd8c r7:846a5800 r6:846a5800 r5:83a21800 r4:00000001 [<8028ef50>] (kthread) from [<80200114>] (ret_from_fork+0x14/0x20 arch/arm/kernel/entry-common.S:137) Exception stack(0xebbc9fb0 to 0xebbc9ff8) 9fa0: 00000000 00000000 00000000 00000000 9fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 9fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r10:00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8028ef50 r4:83362cc0