RBP: 00007f8b77c821d0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 R13: 00007fffad7d74ff R14: 00007f8b77c82300 R15: 0000000000022000 ====================================================== WARNING: possible circular locking dependency detected 4.14.291-syzkaller #0 Not tainted ------------------------------------------------------ syz-executor.4/17855 is trying to acquire lock: (console_owner){....}, at: [] console_trylock_spinning kernel/printk/printk.c:1660 [inline] (console_owner){....}, at: [] vprintk_emit+0x32a/0x620 kernel/printk/printk.c:1924 but task is already holding lock: (&(&port->lock)->rlock){-.-.}, at: [] tty_insert_flip_string_and_push_buffer+0x2b/0x160 drivers/tty/tty_buffer.c:569 which lock already depends on the new lock. the existing dependency chain (in reverse order) is: -> #2 (&(&port->lock)->rlock){-.-.}: __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline] _raw_spin_lock_irqsave+0x8c/0xc0 kernel/locking/spinlock.c:160 tty_port_tty_get+0x1d/0x80 drivers/tty/tty_port.c:288 tty_port_default_wakeup+0x11/0x40 drivers/tty/tty_port.c:46 serial8250_tx_chars+0x3fe/0xc70 drivers/tty/serial/8250/8250_port.c:1828 serial8250_handle_irq.part.0+0x28d/0x330 drivers/tty/serial/8250/8250_port.c:1915 serial8250_handle_irq drivers/tty/serial/8250/8250_port.c:1888 [inline] serial8250_default_handle_irq+0x8a/0x1f0 drivers/tty/serial/8250/8250_port.c:1931 serial8250_interrupt+0xf3/0x210 drivers/tty/serial/8250/8250_core.c:129 __handle_irq_event_percpu+0xee/0x7f0 kernel/irq/handle.c:147 handle_irq_event_percpu kernel/irq/handle.c:187 [inline] handle_irq_event+0xed/0x240 kernel/irq/handle.c:204 handle_edge_irq+0x224/0xc40 kernel/irq/chip.c:770 generic_handle_irq_desc include/linux/irqdesc.h:159 [inline] handle_irq+0x35/0x50 arch/x86/kernel/irq_64.c:87 do_IRQ+0x93/0x1d0 arch/x86/kernel/irq.c:230 ret_from_intr+0x0/0x1e native_safe_halt+0xe/0x10 arch/x86/include/asm/irqflags.h:60 arch_safe_halt arch/x86/include/asm/paravirt.h:94 [inline] default_idle+0x47/0x370 arch/x86/kernel/process.c:558 cpuidle_idle_call kernel/sched/idle.c:156 [inline] do_idle+0x250/0x3c0 kernel/sched/idle.c:246 cpu_startup_entry+0x14/0x20 kernel/sched/idle.c:351 start_kernel+0x743/0x763 init/main.c:712 secondary_startup_64+0xa5/0xb0 arch/x86/kernel/head_64.S:240 -> #1 (&port_lock_key){-.-.}: __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline] _raw_spin_lock_irqsave+0x8c/0xc0 kernel/locking/spinlock.c:160 serial8250_console_write+0x7d5/0xa10 drivers/tty/serial/8250/8250_port.c:3273 call_console_drivers kernel/printk/printk.c:1727 [inline] console_unlock+0x99d/0xf20 kernel/printk/printk.c:2409 vprintk_emit+0x224/0x620 kernel/printk/printk.c:1925 vprintk_func+0x58/0x160 kernel/printk/printk_safe.c:409 printk+0x9e/0xbc kernel/printk/printk.c:1998 register_console+0x6f4/0xad0 kernel/printk/printk.c:2728 univ8250_console_init+0x2f/0x3a drivers/tty/serial/8250/8250_core.c:691 console_init+0x46/0x53 kernel/printk/printk.c:2809 start_kernel+0x521/0x763 init/main.c:638 secondary_startup_64+0xa5/0xb0 arch/x86/kernel/head_64.S:240 -> #0 (console_owner){....}: lock_acquire+0x170/0x3f0 kernel/locking/lockdep.c:3998 console_trylock_spinning kernel/printk/printk.c:1681 [inline] vprintk_emit+0x367/0x620 kernel/printk/printk.c:1924 vprintk_func+0x58/0x160 kernel/printk/printk_safe.c:409 printk+0x9e/0xbc kernel/printk/printk.c:1998 fail_dump lib/fault-inject.c:44 [inline] should_fail.cold+0xdf/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc mm/slab.c:3376 [inline] __do_kmalloc mm/slab.c:3718 [inline] __kmalloc+0x6d/0x400 mm/slab.c:3729 kmalloc include/linux/slab.h:493 [inline] tty_buffer_alloc+0xc0/0x270 drivers/tty/tty_buffer.c:169 __tty_buffer_request_room+0x12c/0x290 drivers/tty/tty_buffer.c:268 tty_insert_flip_string_fixed_flag+0x8b/0x210 drivers/tty/tty_buffer.c:313 tty_insert_flip_string include/linux/tty_flip.h:36 [inline] tty_insert_flip_string_and_push_buffer+0x3e/0x160 drivers/tty/tty_buffer.c:570 pty_write+0xc3/0xf0 drivers/tty/pty.c:118 tty_send_xchar+0x245/0x360 drivers/tty/tty_io.c:1092 n_tty_ioctl_helper+0x145/0x350 drivers/tty/tty_ioctl.c:926 n_tty_ioctl+0x47/0x2e0 drivers/tty/n_tty.c:2466 tty_ioctl+0x5af/0x1430 drivers/tty/tty_io.c:2670 vfs_ioctl fs/ioctl.c:46 [inline] file_ioctl fs/ioctl.c:500 [inline] do_vfs_ioctl+0x75a/0xff0 fs/ioctl.c:684 SYSC_ioctl fs/ioctl.c:701 [inline] SyS_ioctl+0x7f/0xb0 fs/ioctl.c:692 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb other info that might help us debug this: Chain exists of: console_owner --> &port_lock_key --> &(&port->lock)->rlock Possible unsafe locking scenario: CPU0 CPU1 ---- ---- lock(&(&port->lock)->rlock); lock(&port_lock_key); lock(&(&port->lock)->rlock); lock(console_owner); *** DEADLOCK *** 4 locks held by syz-executor.4/17855: #0: (&tty->ldisc_sem){++++}, at: [] tty_ldisc_ref_wait+0x22/0x80 drivers/tty/tty_ldisc.c:284 #1: (&tty->atomic_write_lock){+.+.}, at: [] tty_write_lock drivers/tty/tty_io.c:885 [inline] #1: (&tty->atomic_write_lock){+.+.}, at: [] tty_send_xchar+0x1b5/0x360 drivers/tty/tty_io.c:1086 #2: (&tty->termios_rwsem){++++}, at: [] tty_send_xchar+0x1e8/0x360 drivers/tty/tty_io.c:1089 #3: (&(&port->lock)->rlock){-.-.}, at: [] tty_insert_flip_string_and_push_buffer+0x2b/0x160 drivers/tty/tty_buffer.c:569 stack backtrace: CPU: 1 PID: 17855 Comm: syz-executor.4 Not tainted 4.14.291-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 print_circular_bug.constprop.0.cold+0x2d7/0x41e kernel/locking/lockdep.c:1258 check_prev_add kernel/locking/lockdep.c:1905 [inline] check_prevs_add kernel/locking/lockdep.c:2022 [inline] validate_chain kernel/locking/lockdep.c:2464 [inline] __lock_acquire+0x2e0e/0x3f20 kernel/locking/lockdep.c:3491 lock_acquire+0x170/0x3f0 kernel/locking/lockdep.c:3998 console_trylock_spinning kernel/printk/printk.c:1681 [inline] vprintk_emit+0x367/0x620 kernel/printk/printk.c:1924 vprintk_func+0x58/0x160 kernel/printk/printk_safe.c:409 printk+0x9e/0xbc kernel/printk/printk.c:1998 fail_dump lib/fault-inject.c:44 [inline] should_fail.cold+0xdf/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc mm/slab.c:3376 [inline] __do_kmalloc mm/slab.c:3718 [inline] __kmalloc+0x6d/0x400 mm/slab.c:3729 kmalloc include/linux/slab.h:493 [inline] tty_buffer_alloc+0xc0/0x270 drivers/tty/tty_buffer.c:169 __tty_buffer_request_room+0x12c/0x290 drivers/tty/tty_buffer.c:268 tty_insert_flip_string_fixed_flag+0x8b/0x210 drivers/tty/tty_buffer.c:313 tty_insert_flip_string include/linux/tty_flip.h:36 [inline] tty_insert_flip_string_and_push_buffer+0x3e/0x160 drivers/tty/tty_buffer.c:570 pty_write+0xc3/0xf0 drivers/tty/pty.c:118 tty_send_xchar+0x245/0x360 drivers/tty/tty_io.c:1092 n_tty_ioctl_helper+0x145/0x350 drivers/tty/tty_ioctl.c:926 n_tty_ioctl+0x47/0x2e0 drivers/tty/n_tty.c:2466 tty_ioctl+0x5af/0x1430 drivers/tty/tty_io.c:2670 vfs_ioctl fs/ioctl.c:46 [inline] file_ioctl fs/ioctl.c:500 [inline] do_vfs_ioctl+0x75a/0xff0 fs/ioctl.c:684 SYSC_ioctl fs/ioctl.c:701 [inline] SyS_ioctl+0x7f/0xb0 fs/ioctl.c:692 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f8b7932e279 RSP: 002b:00007f8b77c82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 00007f8b79441050 RCX: 00007f8b7932e279 RDX: 0000000000000002 RSI: 000000000000540a RDI: 0000000000000003 RBP: 00007f8b77c821d0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 R13: 00007fffad7d74ff R14: 00007f8b77c82300 R15: 0000000000022000 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 CPU: 1 PID: 17863 Comm: syz-executor.2 Not tainted 4.14.291-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc_node mm/slab.c:3297 [inline] kmem_cache_alloc_node_trace+0x25a/0x400 mm/slab.c:3659 __do_kmalloc_node mm/slab.c:3681 [inline] __kmalloc_node_track_caller+0x38/0x70 mm/slab.c:3696 __kmalloc_reserve net/core/skbuff.c:137 [inline] __alloc_skb+0x96/0x510 net/core/skbuff.c:205 alloc_skb include/linux/skbuff.h:980 [inline] netlink_alloc_large_skb net/netlink/af_netlink.c:1168 [inline] netlink_sendmsg+0x91e/0xbc0 net/netlink/af_netlink.c:1868 sock_sendmsg_nosec net/socket.c:646 [inline] sock_sendmsg+0xb5/0x100 net/socket.c:656 SYSC_sendto net/socket.c:1763 [inline] SyS_sendto+0x1c7/0x2c0 net/socket.c:1731 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f96e6e0e03c RSP: 002b:00007f96e57cf000 EFLAGS: 00000293 ORIG_RAX: 000000000000002c RAX: ffffffffffffffda RBX: 00007f96e57cf0f0 RCX: 00007f96e6e0e03c RDX: 0000000000000020 RSI: 00007f96e57cf140 RDI: 0000000000000003 RBP: 0000000000000000 R08: 00007f96e57cf054 R09: 000000000000000c R10: 0000000000000000 R11: 0000000000000293 R12: 00007f96e57cf0a8 R13: 00007f96e57cf140 R14: 0000000000000003 R15: 0000000000000000 CPU: 0 PID: 17871 Comm: syz-executor.5 Not tainted 4.14.291-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc mm/slab.c:3376 [inline] kmem_cache_alloc_trace+0x29a/0x3d0 mm/slab.c:3616 kmalloc include/linux/slab.h:488 [inline] kzalloc include/linux/slab.h:661 [inline] assoc_array_insert+0xb9/0x2820 lib/assoc_array.c:998 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 __key_link_begin+0x106/0x2b0 security/keys/keyring.c:1234 key_create_or_update+0x3c5/0xaa0 security/keys/key.c:871 SYSC_add_key security/keys/keyctl.c:123 [inline] SyS_add_key+0x186/0x370 security/keys/keyctl.c:63 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f032d0a5279 RSP: 002b:00007f032ba1a168 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8 RAX: ffffffffffffffda RBX: 00007f032d1b7f80 RCX: 00007f032d0a5279 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000020000000 RBP: 00007f032ba1a1d0 R08: fffffffffffffffc R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 R13: 00007ffc317677ef R14: 00007f032ba1a300 R15: 0000000000022000 CPU: 1 PID: 17878 Comm: syz-executor.2 Not tainted 4.14.291-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc mm/slab.c:3376 [inline] kmem_cache_alloc+0x40/0x3c0 mm/slab.c:3550 skb_clone+0x126/0x9a0 net/core/skbuff.c:1291 __netlink_deliver_tap_skb net/netlink/af_netlink.c:268 [inline] __netlink_deliver_tap net/netlink/af_netlink.c:293 [inline] netlink_deliver_tap+0x67e/0x860 net/netlink/af_netlink.c:304 netlink_deliver_tap_kernel net/netlink/af_netlink.c:313 [inline] netlink_unicast_kernel net/netlink/af_netlink.c:1295 [inline] netlink_unicast+0x485/0x610 net/netlink/af_netlink.c:1322 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 netlink_sendmsg+0x648/0xbc0 net/netlink/af_netlink.c:1893 sock_sendmsg_nosec net/socket.c:646 [inline] sock_sendmsg+0xb5/0x100 net/socket.c:656 SYSC_sendto net/socket.c:1763 [inline] SyS_sendto+0x1c7/0x2c0 net/socket.c:1731 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f96e6e0e03c RSP: 002b:00007f96e57cf000 EFLAGS: 00000293 ORIG_RAX: 000000000000002c RAX: ffffffffffffffda RBX: 00007f96e57cf0f0 RCX: 00007f96e6e0e03c RDX: 0000000000000020 RSI: 00007f96e57cf140 RDI: 0000000000000003 RBP: 0000000000000000 R08: 00007f96e57cf054 R09: 000000000000000c R10: 0000000000000000 R11: 0000000000000293 R12: 00007f96e57cf0a8 R13: 00007f96e57cf140 R14: 0000000000000003 R15: 0000000000000000 CPU: 0 PID: 17890 Comm: syz-executor.5 Not tainted 4.14.291-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc mm/slab.c:3376 [inline] kmem_cache_alloc_trace+0x29a/0x3d0 mm/slab.c:3616 kmalloc include/linux/slab.h:488 [inline] kzalloc include/linux/slab.h:661 [inline] assoc_array_insert_into_terminal_node lib/assoc_array.c:556 [inline] assoc_array_insert+0xe09/0x2820 lib/assoc_array.c:1018 __key_link_begin+0x106/0x2b0 security/keys/keyring.c:1234 key_create_or_update+0x3c5/0xaa0 security/keys/key.c:871 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 SYSC_add_key security/keys/keyctl.c:123 [inline] SyS_add_key+0x186/0x370 security/keys/keyctl.c:63 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f032d0a5279 RSP: 002b:00007f032ba1a168 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8 RAX: ffffffffffffffda RBX: 00007f032d1b7f80 RCX: 00007f032d0a5279 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000020000000 RBP: 00007f032ba1a1d0 R08: fffffffffffffffc R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 R13: 00007ffc317677ef R14: 00007f032ba1a300 R15: 0000000000022000 CPU: 1 PID: 17906 Comm: syz-executor.2 Not tainted 4.14.291-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc_node mm/slab.c:3297 [inline] kmem_cache_alloc_node+0x263/0x410 mm/slab.c:3640 __alloc_skb+0x5c/0x510 net/core/skbuff.c:193 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 alloc_skb include/linux/skbuff.h:980 [inline] nlmsg_new include/net/netlink.h:511 [inline] ctrl_build_family_msg net/netlink/genetlink.c:807 [inline] ctrl_getfamily+0x309/0x530 net/netlink/genetlink.c:887 genl_family_rcv_msg+0x572/0xb20 net/netlink/genetlink.c:600 genl_rcv_msg+0xaf/0x140 net/netlink/genetlink.c:625 netlink_rcv_skb+0x125/0x390 net/netlink/af_netlink.c:2454 genl_rcv+0x24/0x40 net/netlink/genetlink.c:636 netlink_unicast_kernel net/netlink/af_netlink.c:1296 [inline] netlink_unicast+0x437/0x610 net/netlink/af_netlink.c:1322 netlink_sendmsg+0x648/0xbc0 net/netlink/af_netlink.c:1893 sock_sendmsg_nosec net/socket.c:646 [inline] sock_sendmsg+0xb5/0x100 net/socket.c:656 SYSC_sendto net/socket.c:1763 [inline] SyS_sendto+0x1c7/0x2c0 net/socket.c:1731 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f96e6e0e03c RSP: 002b:00007f96e57cf000 EFLAGS: 00000293 ORIG_RAX: 000000000000002c RAX: ffffffffffffffda RBX: 00007f96e57cf0f0 RCX: 00007f96e6e0e03c RDX: 0000000000000020 RSI: 00007f96e57cf140 RDI: 0000000000000003 RBP: 0000000000000000 R08: 00007f96e57cf054 R09: 000000000000000c R10: 0000000000000000 R11: 0000000000000293 R12: 00007f96e57cf0a8 R13: 00007f96e57cf140 R14: 0000000000000003 R15: 0000000000000000 CPU: 0 PID: 17912 Comm: syz-executor.5 Not tainted 4.14.291-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc mm/slab.c:3376 [inline] kmem_cache_alloc_trace+0x29a/0x3d0 mm/slab.c:3616 kmalloc include/linux/slab.h:488 [inline] kzalloc include/linux/slab.h:661 [inline] assoc_array_insert_into_terminal_node lib/assoc_array.c:560 [inline] assoc_array_insert+0xe81/0x2820 lib/assoc_array.c:1018 __key_link_begin+0x106/0x2b0 security/keys/keyring.c:1234 key_create_or_update+0x3c5/0xaa0 security/keys/key.c:871 SYSC_add_key security/keys/keyctl.c:123 [inline] SyS_add_key+0x186/0x370 security/keys/keyctl.c:63 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f032d0a5279 RSP: 002b:00007f032ba1a168 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8 RAX: ffffffffffffffda RBX: 00007f032d1b7f80 RCX: 00007f032d0a5279 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000020000000 RBP: 00007f032ba1a1d0 R08: fffffffffffffffc R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 R13: 00007ffc317677ef R14: 00007f032ba1a300 R15: 0000000000022000 CPU: 1 PID: 17924 Comm: syz-executor.2 Not tainted 4.14.291-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc_node mm/slab.c:3297 [inline] kmem_cache_alloc_node_trace+0x25a/0x400 mm/slab.c:3659 __do_kmalloc_node mm/slab.c:3681 [inline] __kmalloc_node_track_caller+0x38/0x70 mm/slab.c:3696 __kmalloc_reserve net/core/skbuff.c:137 [inline] __alloc_skb+0x96/0x510 net/core/skbuff.c:205 alloc_skb include/linux/skbuff.h:980 [inline] nlmsg_new include/net/netlink.h:511 [inline] ctrl_build_family_msg net/netlink/genetlink.c:807 [inline] ctrl_getfamily+0x309/0x530 net/netlink/genetlink.c:887 genl_family_rcv_msg+0x572/0xb20 net/netlink/genetlink.c:600 genl_rcv_msg+0xaf/0x140 net/netlink/genetlink.c:625 netlink_rcv_skb+0x125/0x390 net/netlink/af_netlink.c:2454 genl_rcv+0x24/0x40 net/netlink/genetlink.c:636 netlink_unicast_kernel net/netlink/af_netlink.c:1296 [inline] netlink_unicast+0x437/0x610 net/netlink/af_netlink.c:1322 netlink_sendmsg+0x648/0xbc0 net/netlink/af_netlink.c:1893 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 sock_sendmsg_nosec net/socket.c:646 [inline] sock_sendmsg+0xb5/0x100 net/socket.c:656 SYSC_sendto net/socket.c:1763 [inline] SyS_sendto+0x1c7/0x2c0 net/socket.c:1731 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f96e6e0e03c RSP: 002b:00007f96e57cf000 EFLAGS: 00000293 ORIG_RAX: 000000000000002c RAX: ffffffffffffffda RBX: 00007f96e57cf0f0 RCX: 00007f96e6e0e03c RDX: 0000000000000020 RSI: 00007f96e57cf140 RDI: 0000000000000003 RBP: 0000000000000000 R08: 00007f96e57cf054 R09: 000000000000000c R10: 0000000000000000 R11: 0000000000000293 R12: 00007f96e57cf0a8 R13: 00007f96e57cf140 R14: 0000000000000003 R15: 0000000000000000 CPU: 0 PID: 17931 Comm: syz-executor.5 Not tainted 4.14.291-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc mm/slab.c:3376 [inline] kmem_cache_alloc+0x28e/0x3c0 mm/slab.c:3550 kmem_cache_zalloc include/linux/slab.h:651 [inline] key_alloc+0x328/0xfd0 security/keys/key.c:280 key_create_or_update+0x59f/0xaa0 security/keys/key.c:918 SYSC_add_key security/keys/keyctl.c:123 [inline] SyS_add_key+0x186/0x370 security/keys/keyctl.c:63 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f032d0a5279 RSP: 002b:00007f032ba1a168 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8 RAX: ffffffffffffffda RBX: 00007f032d1b7f80 RCX: 00007f032d0a5279 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000020000000 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 RBP: 00007f032ba1a1d0 R08: fffffffffffffffc R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 R13: 00007ffc317677ef R14: 00007f032ba1a300 R15: 0000000000022000 CPU: 1 PID: 17940 Comm: syz-executor.2 Not tainted 4.14.291-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc_node mm/slab.c:3297 [inline] kmem_cache_alloc_node_trace+0x58/0x400 mm/slab.c:3659 __do_kmalloc_node mm/slab.c:3681 [inline] __kmalloc_node_track_caller+0x38/0x70 mm/slab.c:3696 __kmalloc_reserve net/core/skbuff.c:137 [inline] pskb_expand_head+0x128/0xd30 net/core/skbuff.c:1472 netlink_trim+0x1ae/0x220 net/netlink/af_netlink.c:1278 netlink_unicast+0x94/0x610 net/netlink/af_netlink.c:1312 nlmsg_unicast include/net/netlink.h:608 [inline] genlmsg_unicast include/net/genetlink.h:293 [inline] genlmsg_reply include/net/genetlink.h:303 [inline] ctrl_getfamily+0x3de/0x530 net/netlink/genetlink.c:892 genl_family_rcv_msg+0x572/0xb20 net/netlink/genetlink.c:600 genl_rcv_msg+0xaf/0x140 net/netlink/genetlink.c:625 netlink_rcv_skb+0x125/0x390 net/netlink/af_netlink.c:2454 genl_rcv+0x24/0x40 net/netlink/genetlink.c:636 netlink_unicast_kernel net/netlink/af_netlink.c:1296 [inline] netlink_unicast+0x437/0x610 net/netlink/af_netlink.c:1322 netlink_sendmsg+0x648/0xbc0 net/netlink/af_netlink.c:1893 sock_sendmsg_nosec net/socket.c:646 [inline] sock_sendmsg+0xb5/0x100 net/socket.c:656 SYSC_sendto net/socket.c:1763 [inline] SyS_sendto+0x1c7/0x2c0 net/socket.c:1731 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f96e6e0e03c RSP: 002b:00007f96e57cf000 EFLAGS: 00000293 ORIG_RAX: 000000000000002c RAX: ffffffffffffffda RBX: 00007f96e57cf0f0 RCX: 00007f96e6e0e03c RDX: 0000000000000020 RSI: 00007f96e57cf140 RDI: 0000000000000003 RBP: 0000000000000000 R08: 00007f96e57cf054 R09: 000000000000000c R10: 0000000000000000 R11: 0000000000000293 R12: 00007f96e57cf0a8 R13: 00007f96e57cf140 R14: 0000000000000003 R15: 0000000000000000 CPU: 0 PID: 17952 Comm: syz-executor.5 Not tainted 4.14.291-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc mm/slab.c:3376 [inline] __do_kmalloc mm/slab.c:3718 [inline] __kmalloc_track_caller+0x2bc/0x400 mm/slab.c:3735 kmemdup+0x23/0x50 mm/util.c:119 kmemdup include/linux/string.h:449 [inline] key_alloc+0x37f/0xfd0 security/keys/key.c:285 key_create_or_update+0x59f/0xaa0 security/keys/key.c:918 SYSC_add_key security/keys/keyctl.c:123 [inline] SyS_add_key+0x186/0x370 security/keys/keyctl.c:63 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f032d0a5279 RSP: 002b:00007f032ba1a168 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8 RAX: ffffffffffffffda RBX: 00007f032d1b7f80 RCX: 00007f032d0a5279 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000020000000 RBP: 00007f032ba1a1d0 R08: fffffffffffffffc R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 R13: 00007ffc317677ef R14: 00007f032ba1a300 R15: 0000000000022000 CPU: 1 PID: 17957 Comm: syz-executor.2 Not tainted 4.14.291-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc mm/slab.c:3376 [inline] kmem_cache_alloc+0x40/0x3c0 mm/slab.c:3550 skb_clone+0x126/0x9a0 net/core/skbuff.c:1291 __netlink_deliver_tap_skb net/netlink/af_netlink.c:268 [inline] __netlink_deliver_tap net/netlink/af_netlink.c:293 [inline] netlink_deliver_tap+0x67e/0x860 net/netlink/af_netlink.c:304 __netlink_sendskb net/netlink/af_netlink.c:1240 [inline] netlink_sendskb+0x45/0xd0 net/netlink/af_netlink.c:1249 netlink_unicast+0x50a/0x610 net/netlink/af_netlink.c:1337 nlmsg_unicast include/net/netlink.h:608 [inline] genlmsg_unicast include/net/genetlink.h:293 [inline] genlmsg_reply include/net/genetlink.h:303 [inline] ctrl_getfamily+0x3de/0x530 net/netlink/genetlink.c:892 genl_family_rcv_msg+0x572/0xb20 net/netlink/genetlink.c:600 genl_rcv_msg+0xaf/0x140 net/netlink/genetlink.c:625 netlink_rcv_skb+0x125/0x390 net/netlink/af_netlink.c:2454 genl_rcv+0x24/0x40 net/netlink/genetlink.c:636 netlink_unicast_kernel net/netlink/af_netlink.c:1296 [inline] netlink_unicast+0x437/0x610 net/netlink/af_netlink.c:1322 netlink_sendmsg+0x648/0xbc0 net/netlink/af_netlink.c:1893 sock_sendmsg_nosec net/socket.c:646 [inline] sock_sendmsg+0xb5/0x100 net/socket.c:656 SYSC_sendto net/socket.c:1763 [inline] SyS_sendto+0x1c7/0x2c0 net/socket.c:1731 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f96e6e0e03c RSP: 002b:00007f96e57cf000 EFLAGS: 00000293 ORIG_RAX: 000000000000002c RAX: ffffffffffffffda RBX: 00007f96e57cf0f0 RCX: 00007f96e6e0e03c RDX: 0000000000000020 RSI: 00007f96e57cf140 RDI: 0000000000000003 RBP: 0000000000000000 R08: 00007f96e57cf054 R09: 000000000000000c R10: 0000000000000000 R11: 0000000000000293 R12: 00007f96e57cf0a8 R13: 00007f96e57cf140 R14: 0000000000000003 R15: 0000000000000000 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 CPU: 0 PID: 17973 Comm: syz-executor.2 Not tainted 4.14.291-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 caif:caif_disconnect_client(): nothing to disconnect slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc_node mm/slab.c:3297 [inline] kmem_cache_alloc_node+0x263/0x410 mm/slab.c:3640 __alloc_skb+0x5c/0x510 net/core/skbuff.c:193 alloc_skb include/linux/skbuff.h:980 [inline] nlmsg_new include/net/netlink.h:511 [inline] netlink_ack+0x216/0x9a0 net/netlink/af_netlink.c:2381 netlink_rcv_skb+0x2c5/0x390 net/netlink/af_netlink.c:2460 genl_rcv+0x24/0x40 net/netlink/genetlink.c:636 netlink_unicast_kernel net/netlink/af_netlink.c:1296 [inline] netlink_unicast+0x437/0x610 net/netlink/af_netlink.c:1322 netlink_sendmsg+0x648/0xbc0 net/netlink/af_netlink.c:1893 sock_sendmsg_nosec net/socket.c:646 [inline] sock_sendmsg+0xb5/0x100 net/socket.c:656 SYSC_sendto net/socket.c:1763 [inline] SyS_sendto+0x1c7/0x2c0 net/socket.c:1731 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f96e6e0e03c RSP: 002b:00007f96e57cf000 EFLAGS: 00000293 ORIG_RAX: 000000000000002c RAX: ffffffffffffffda RBX: 00007f96e57cf0f0 RCX: 00007f96e6e0e03c RDX: 0000000000000020 RSI: 00007f96e57cf140 RDI: 0000000000000003 RBP: 0000000000000000 R08: 00007f96e57cf054 R09: 000000000000000c R10: 0000000000000000 R11: 0000000000000293 R12: 00007f96e57cf0a8 R13: 00007f96e57cf140 R14: 0000000000000003 R15: 0000000000000000 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 caif:caif_disconnect_client(): nothing to disconnect CPU: 1 PID: 18004 Comm: syz-executor.2 Not tainted 4.14.291-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc_node mm/slab.c:3297 [inline] kmem_cache_alloc_node_trace+0x25a/0x400 mm/slab.c:3659 __do_kmalloc_node mm/slab.c:3681 [inline] __kmalloc_node_track_caller+0x38/0x70 mm/slab.c:3696 __kmalloc_reserve net/core/skbuff.c:137 [inline] __alloc_skb+0x96/0x510 net/core/skbuff.c:205 alloc_skb include/linux/skbuff.h:980 [inline] nlmsg_new include/net/netlink.h:511 [inline] netlink_ack+0x216/0x9a0 net/netlink/af_netlink.c:2381 netlink_rcv_skb+0x2c5/0x390 net/netlink/af_netlink.c:2460 genl_rcv+0x24/0x40 net/netlink/genetlink.c:636 netlink_unicast_kernel net/netlink/af_netlink.c:1296 [inline] netlink_unicast+0x437/0x610 net/netlink/af_netlink.c:1322 netlink_sendmsg+0x648/0xbc0 net/netlink/af_netlink.c:1893 sock_sendmsg_nosec net/socket.c:646 [inline] sock_sendmsg+0xb5/0x100 net/socket.c:656 SYSC_sendto net/socket.c:1763 [inline] SyS_sendto+0x1c7/0x2c0 net/socket.c:1731 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f96e6e0e03c RSP: 002b:00007f96e57cf000 EFLAGS: 00000293 ORIG_RAX: 000000000000002c RAX: ffffffffffffffda RBX: 00007f96e57cf0f0 RCX: 00007f96e6e0e03c RDX: 0000000000000020 RSI: 00007f96e57cf140 RDI: 0000000000000003 RBP: 0000000000000000 R08: 00007f96e57cf054 R09: 000000000000000c R10: 0000000000000000 R11: 0000000000000293 R12: 00007f96e57cf0a8 R13: 00007f96e57cf140 R14: 0000000000000003 R15: 0000000000000000 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 caif:caif_disconnect_client(): nothing to disconnect CPU: 1 PID: 18047 Comm: syz-executor.2 Not tainted 4.14.291-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc mm/slab.c:3376 [inline] kmem_cache_alloc+0x40/0x3c0 mm/slab.c:3550 skb_clone+0x126/0x9a0 net/core/skbuff.c:1291 __netlink_deliver_tap_skb net/netlink/af_netlink.c:268 [inline] __netlink_deliver_tap net/netlink/af_netlink.c:293 [inline] netlink_deliver_tap+0x67e/0x860 net/netlink/af_netlink.c:304 __netlink_sendskb net/netlink/af_netlink.c:1240 [inline] netlink_sendskb+0x45/0xd0 net/netlink/af_netlink.c:1249 netlink_unicast+0x50a/0x610 net/netlink/af_netlink.c:1337 netlink_ack+0x514/0x9a0 net/netlink/af_netlink.c:2424 netlink_rcv_skb+0x2c5/0x390 net/netlink/af_netlink.c:2460 genl_rcv+0x24/0x40 net/netlink/genetlink.c:636 netlink_unicast_kernel net/netlink/af_netlink.c:1296 [inline] netlink_unicast+0x437/0x610 net/netlink/af_netlink.c:1322 netlink_sendmsg+0x648/0xbc0 net/netlink/af_netlink.c:1893 sock_sendmsg_nosec net/socket.c:646 [inline] sock_sendmsg+0xb5/0x100 net/socket.c:656 SYSC_sendto net/socket.c:1763 [inline] SyS_sendto+0x1c7/0x2c0 net/socket.c:1731 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f96e6e0e03c RSP: 002b:00007f96e57cf000 EFLAGS: 00000293 ORIG_RAX: 000000000000002c RAX: ffffffffffffffda RBX: 00007f96e57cf0f0 RCX: 00007f96e6e0e03c RDX: 0000000000000020 RSI: 00007f96e57cf140 RDI: 0000000000000003 RBP: 0000000000000000 R08: 00007f96e57cf054 R09: 000000000000000c R10: 0000000000000000 R11: 0000000000000293 R12: 00007f96e57cf0a8 R13: 00007f96e57cf140 R14: 0000000000000003 R15: 0000000000000000