BUG: MAX_LOCKDEP_CHAINS too low! turning off the locking correctness validator. CPU: 1 PID: 13411 Comm: syz-executor.3 Not tainted 5.18.0-rc1-syzkaller-00184-g1831fed55973 #0 Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 Call Trace: __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0xcd/0x134 lib/dump_stack.c:106 add_chain_cache kernel/locking/lockdep.c:3651 [inline] lookup_chain_cache_add kernel/locking/lockdep.c:3750 [inline] validate_chain kernel/locking/lockdep.c:3771 [inline] __lock_acquire.cold+0x11/0x3a7 kernel/locking/lockdep.c:5029 lock_acquire kernel/locking/lockdep.c:5641 [inline] lock_acquire+0x1ab/0x510 kernel/locking/lockdep.c:5606 do_write_seqcount_begin_nested include/linux/seqlock.h:520 [inline] do_write_seqcount_begin include/linux/seqlock.h:545 [inline] psi_group_change+0x137/0xc70 kernel/sched/psi.c:709 psi_task_switch+0x39b/0x4e0 kernel/sched/psi.c:855 psi_sched_switch kernel/sched/stats.h:194 [inline] __schedule+0x1576/0x4940 kernel/sched/core.c:6377 preempt_schedule_irq+0x4e/0x90 kernel/sched/core.c:6690 irqentry_exit+0x31/0x80 kernel/entry/common.c:428 asm_sysvec_reschedule_ipi+0x12/0x20 arch/x86/include/asm/idtentry.h:650 RIP: 0010:keyring_search+0x128/0x380 security/keys/keyring.c:957 Code: 00 00 02 00 00 00 e8 f7 d3 ca fd 49 8d 7d 40 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 2a 02 00 00 <49> 8b 6d 40 48 85 ed 74 1f e8 ca d3 ca fd 48 8d 7c 24 60 ff d5 31 RSP: 0018:ffffc9000547faf0 EFLAGS: 00010246 RAX: dffffc0000000000 RBX: 1ffff92000a8ff60 RCX: ffffc900264ea000 RDX: 1ffffffff18abb0c RSI: ffffffff83ad81e9 RDI: ffffffff8c55d860 RBP: ffffc9000547fc60 R08: 0000000000000000 R09: 0000000000000000 R10: ffffffff83ad81cb R11: 0000000000000000 R12: dffffc0000000000 R13: ffffffff8c55d820 R14: ffffc9000547fb20 R15: 0000000000000000 look_up_user_keyrings+0x20e/0x740 security/keys/process_keys.c:102 lookup_user_key+0x253/0x1270 security/keys/process_keys.c:704 __do_sys_add_key+0x1d3/0x430 security/keys/keyctl.c:126 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x7f3eb3089049 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f3eb41ba168 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8 RAX: ffffffffffffffda RBX: 00007f3eb319bf60 RCX: 00007f3eb3089049 RDX: 0000000000000000 RSI: 0000000020001140 RDI: 0000000020001100 RBP: 00007f3eb30e308d R08: fffffffffffffffc R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffd9d5642ff R14: 00007f3eb41ba300 R15: 0000000000022000 ---------------- Code disassembly (best guess): 0: 00 00 add %al,(%rax) 2: 02 00 add (%rax),%al 4: 00 00 add %al,(%rax) 6: e8 f7 d3 ca fd callq 0xfdcad402 b: 49 8d 7d 40 lea 0x40(%r13),%rdi f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 16: fc ff df 19: 48 89 fa mov %rdi,%rdx 1c: 48 c1 ea 03 shr $0x3,%rdx 20: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 24: 0f 85 2a 02 00 00 jne 0x254 * 2a: 49 8b 6d 40 mov 0x40(%r13),%rbp <-- trapping instruction 2e: 48 85 ed test %rbp,%rbp 31: 74 1f je 0x52 33: e8 ca d3 ca fd callq 0xfdcad402 38: 48 8d 7c 24 60 lea 0x60(%rsp),%rdi 3d: ff d5 callq *%rbp 3f: 31 .byte 0x31