BUG: MAX_LOCKDEP_CHAINS too low! turning off the locking correctness validator. CPU: 0 PID: 27541 Comm: syz-executor.2 Not tainted 4.14.232-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 add_chain_cache kernel/locking/lockdep.c:2303 [inline] lookup_chain_cache_add kernel/locking/lockdep.c:2415 [inline] validate_chain kernel/locking/lockdep.c:2435 [inline] __lock_acquire.cold+0x19a/0x97c kernel/locking/lockdep.c:3491 lock_acquire+0x170/0x3f0 kernel/locking/lockdep.c:3998 __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline] _raw_spin_lock_irqsave+0x8c/0xc0 kernel/locking/spinlock.c:160 lock_hrtimer_base kernel/time/hrtimer.c:148 [inline] __hrtimer_get_remaining+0x6a/0x1d0 kernel/time/hrtimer.c:1056 hrtimer_get_remaining include/linux/hrtimer.h:404 [inline] perf_swevent_cancel_hrtimer kernel/events/core.c:8788 [inline] perf_swevent_cancel_hrtimer kernel/events/core.c:8783 [inline] cpu_clock_event_stop kernel/events/core.c:8842 [inline] cpu_clock_event_del+0x78/0xc0 kernel/events/core.c:8857 event_sched_out+0x8b3/0x11b0 kernel/events/core.c:1867 IPVS: ftp: loaded support on port[0] = 21 group_sched_out+0x13e/0x3c0 kernel/events/core.c:1897 ctx_sched_out+0x4f4/0x9d0 kernel/events/core.c:2852 task_ctx_sched_out+0x5b/0x80 kernel/events/core.c:2320 perf_event_context_sched_out kernel/events/core.c:3035 [inline] __perf_event_task_sched_out+0x853/0x11d0 kernel/events/core.c:3126 perf_event_task_sched_out include/linux/perf_event.h:1104 [inline] prepare_task_switch kernel/sched/core.c:2601 [inline] context_switch kernel/sched/core.c:2773 [inline] __schedule+0xc74/0x1de0 kernel/sched/core.c:3384 preempt_schedule_irq+0xb0/0x140 kernel/sched/core.c:3611 retint_kernel+0x1b/0x2d RIP: 0010:arch_local_irq_restore arch/x86/include/asm/paravirt.h:779 [inline] RIP: 0010:lock_acquire+0x1ec/0x3f0 kernel/locking/lockdep.c:4001 RSP: 0018:ffff88808ff1f900 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff02 RAX: 1ffffffff11e1259 RBX: ffff8880ab090580 RCX: 00000000000020da RDX: dffffc0000000000 RSI: 0000000000000001 RDI: 0000000000000286 RBP: ffff888063069c00 R08: ffffffff8b9a0190 R09: 0000000000040769 R10: ffff8880ab090e30 R11: ffff8880ab090580 R12: 0000000000000000 R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001 flush_work+0xad/0x770 kernel/workqueue.c:2889 __cancel_work_timer+0x321/0x460 kernel/workqueue.c:2964 hci_request_cancel_all+0x7e/0x110 net/bluetooth/hci_request.c:2366 hci_dev_do_close+0xf3/0xca0 net/bluetooth/hci_core.c:1577 hci_rfkill_set_block+0xaf/0x120 net/bluetooth/hci_core.c:2052 rfkill_set_block+0x1b2/0x4a0 net/rfkill/core.c:337 rfkill_fop_write+0x1b6/0x3c0 net/rfkill/core.c:1233 __vfs_write+0xe4/0x630 fs/read_write.c:480 vfs_write+0x17f/0x4d0 fs/read_write.c:544 SYSC_write fs/read_write.c:590 [inline] SyS_write+0xf2/0x210 fs/read_write.c:582 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x4665d9 RSP: 002b:00007fdd9ea46188 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 RAX: ffffffffffffffda RBX: 000000000056bf60 RCX: 00000000004665d9 RDX: 0000000000000008 RSI: 0000000020000040 RDI: 0000000000000003 RBP: 00000000004bfcb9 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 000000000056bf60 R13: 00007ffed40880df R14: 00007fdd9ea46300 R15: 0000000000022000 EXT4-fs (loop0): Unrecognized mount option "#" or missing value Invalid option length (977844) for dns_resolver key EXT4-fs (loop0): Unrecognized mount option "#" or missing value Invalid option length (977844) for dns_resolver key EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue Invalid option length (977844) for dns_resolver key Invalid option length (977844) for dns_resolver key IPVS: ftp: loaded support on port[0] = 21 EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue IPVS: ftp: loaded support on port[0] = 21 EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (60935!=0) EXT4-fs (loop4): orphan cleanup on readonly fs EXT4-fs error (device loop4): __ext4_iget:4959: inode #3: block 1: comm syz-executor.4: invalid block EXT4-fs (loop4): Remounting filesystem read-only EXT4-fs error (device loop4): ext4_quota_enable:5718: comm syz-executor.4: Bad quota inode # 3 EXT4-fs warning (device loop4): ext4_enable_quotas:5758: Failed to enable quota tracking (type=-1, err=-117). Please run e2fsck to fix. EXT4-fs (loop4): Cannot turn on quotas: error -117 EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro, EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (60935!=0) EXT4-fs (loop4): orphan cleanup on readonly fs EXT4-fs error (device loop4): __ext4_iget:4959: inode #3: block 1: comm syz-executor.4: invalid block EXT4-fs (loop4): Remounting filesystem read-only EXT4-fs error (device loop4): ext4_quota_enable:5718: comm syz-executor.4: Bad quota inode # 3 EXT4-fs warning (device loop4): ext4_enable_quotas:5758: Failed to enable quota tracking (type=-1, err=-117). Please run e2fsck to fix. EXT4-fs (loop4): Cannot turn on quotas: error -117 EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro, EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (60935!=0) EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue EXT4-fs (loop4): orphan cleanup on readonly fs EXT4-fs error (device loop4): __ext4_iget:4959: inode #3: block 1: comm syz-executor.4: invalid block EXT4-fs (loop4): Remounting filesystem read-only EXT4-fs error (device loop4): ext4_quota_enable:5718: comm syz-executor.4: Bad quota inode # 3 EXT4-fs warning (device loop4): ext4_enable_quotas:5758: Failed to enable quota tracking (type=-1, err=-117). Please run e2fsck to fix. EXT4-fs (loop4): Cannot turn on quotas: error -117 EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro, EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (60935!=0) EXT4-fs (loop4): orphan cleanup on readonly fs EXT4-fs error (device loop4): __ext4_iget:4959: inode #3: block 1: comm syz-executor.4: invalid block EXT4-fs (loop4): Remounting filesystem read-only EXT4-fs error (device loop4): ext4_quota_enable:5718: comm syz-executor.4: Bad quota inode # 3 EXT4-fs warning (device loop4): ext4_enable_quotas:5758: Failed to enable quota tracking (type=-1, err=-117). Please run e2fsck to fix. EXT4-fs (loop4): Cannot turn on quotas: error -117 EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro, TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. ntfs: volume version 3.1. TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. audit: type=1804 audit(1620849157.189:731): pid=28646 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.2" name="/root/syzkaller-testdir444196234/syzkaller.Qo2Hax/593/bus" dev="sda1" ino=15023 res=1 audit: type=1804 audit(1620849158.079:732): pid=28690 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="ToMToU" comm="syz-executor.2" name="/root/syzkaller-testdir444196234/syzkaller.Qo2Hax/593/bus" dev="sda1" ino=15023 res=1