WARNING in alloc_workqueue ------------[ cut here ]------------ WARNING: CPU: 1 PID: 5109 at kernel/cpu.c:527 lockdep_assert_cpus_held+0xad/0x100 kernel/cpu.c:527 Modules linked in: CPU: 1 UID: 0 PID: 5109 Comm: syz-executor.0 Not tainted 6.10.0-next-20240715-syzkaller-g91e3b24eb7d2-dirty #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 RIP: 0010:lockdep_assert_cpus_held+0xad/0x100 kernel/cpu.c:527 Code: 0a 89 c3 31 ff 89 c6 e8 81 17 3e 00 85 db 74 14 e8 38 13 3e 00 eb 05 e8 31 13 3e 00 5b 41 5e c3 cc cc cc cc e8 24 13 3e 00 90 <0f> 0b 90 eb ed 48 c7 c1 40 ad af 8f 80 e1 07 80 c1 03 38 c1 0f 8c RSP: 0018:ffffc900036ef9a8 EFLAGS: 00010293 RAX: ffffffff8155b7cc RBX: 0000000000000000 RCX: ffff888021ba1e00 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc900036efb68 R08: ffffffff8155b7af R09: 1ffffffff1f6000d R10: dffffc0000000000 R11: fffffbfff1f6000e R12: dffffc0000000000 R13: ffff888021ab2000 R14: dffffc0000000000 R15: ffff888146a94d00 FS: 00005555912c6480(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f91e50ed2dc CR3: 000000007d90a000 CR4: 00000000003506f0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: alloc_and_link_pwqs kernel/workqueue.c:5437 [inline] alloc_workqueue+0xbc8/0x1fe0 kernel/workqueue.c:5703 hci_register_dev+0x20c/0x8b0 net/bluetooth/hci_core.c:2591 __vhci_create_device drivers/bluetooth/hci_vhci.c:430 [inline] vhci_create_device+0x38b/0x6e0 drivers/bluetooth/hci_vhci.c:472 vhci_get_user drivers/bluetooth/hci_vhci.c:529 [inline] vhci_write+0x3d1/0x490 drivers/bluetooth/hci_vhci.c:609 new_sync_write fs/read_write.c:497 [inline] vfs_write+0xa72/0xc90 fs/read_write.c:590 ksys_write+0x1a0/0x2c0 fs/read_write.c:643 do_syscall_x64 arch/x86/entry/common.c:52 [inline] do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83 entry_SYSCALL_64_after_hwframe+0x77/0x7f RIP: 0033:0x7f91e507ca70 Code: 40 00 48 c7 c2 b0 ff ff ff f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d 91 34 10 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 RSP: 002b:00007ffffde23468 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f91e507ca70 RDX: 0000000000000002 RSI: 00007ffffde2347a RDI: 00000000000000ca RBP: 00007ffffde235d0 R08: 0000000000000000 R09: 00007f91e5cdb320 R10: 0000000000000000 R11: 0000000000000202 R12: 00007ffffde23bb8 R13: 00007ffffde23bb8 R14: 0000000000000001 R15: 00000000fffffff1 syzkaller login: [ 52.639580][ C0] eth0: bad gso: type: 1, size: 1408 [ 52.647677][ C0] eth0: bad gso: type: 1, size: 1408 [ 52.655181][ C0] eth0: bad gso: type: 1, size: 1408 [ 52.673257][ C0] eth0: bad gso: type: 1, size: 1408 [ 52.681431][ C0] eth0: bad gso: type: 1, size: 1408 [ 52.687898][ C0] eth0: bad gso: type: 1, size: 1408 [ 52.694406][ C0] eth0: bad gso: type: 1, size: 1408 [ 52.700714][ C0] eth0: bad gso: type: 1, size: 1408 [ 52.706977][ C0] eth0: bad gso: type: 1, size: 1408 [ 52.714053][ C0] eth0: bad gso: type: 1, size: 1408 Warning: Permanently added '10.128.1.48' (ED25519) to the list of known hosts. 2024/07/15 16:59:43 ignoring optional flag "sandboxArg"="0" 2024/07/15 16:59:43 parsed 1 programs [ 63.468807][ T5101] cgroup: Unknown subsys name 'net' [ 63.610308][ T5101] cgroup: Unknown subsys name 'rlimit' 2024/07/15 16:59:44 executed programs: 0 [ 64.973829][ T5101] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 65.028506][ T5109] ------------[ cut here ]------------ [ 65.034458][ T5109] WARNING: CPU: 1 PID: 5109 at kernel/cpu.c:527 lockdep_assert_cpus_held+0xad/0x100 [ 65.034493][ T5109] Modules linked in: [ 65.034511][ T5109] CPU: 1 UID: 0 PID: 5109 Comm: syz-executor.0 Not tainted 6.10.0-next-20240715-syzkaller-g91e3b24eb7d2-dirty #0 [ 65.034524][ T5109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 65.034535][ T5109] RIP: 0010:lockdep_assert_cpus_held+0xad/0x100 [ 65.034548][ T5109] Code: 0a 89 c3 31 ff 89 c6 e8 81 17 3e 00 85 db 74 14 e8 38 13 3e 00 eb 05 e8 31 13 3e 00 5b 41 5e c3 cc cc cc cc e8 24 13 3e 00 90 <0f> 0b 90 eb ed 48 c7 c1 40 ad af 8f 80 e1 07 80 c1 03 38 c1 0f 8c [ 65.034560][ T5109] RSP: 0018:ffffc900036ef9a8 EFLAGS: 00010293 [ 65.034569][ T5109] RAX: ffffffff8155b7cc RBX: 0000000000000000 RCX: ffff888021ba1e00 [ 65.034576][ T5109] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 65.034582][ T5109] RBP: ffffc900036efb68 R08: ffffffff8155b7af R09: 1ffffffff1f6000d [ 65.034589][ T5109] R10: dffffc0000000000 R11: fffffbfff1f6000e R12: dffffc0000000000 [ 65.034596][ T5109] R13: ffff888021ab2000 R14: dffffc0000000000 R15: ffff888146a94d00 [ 65.034604][ T5109] FS: 00005555912c6480(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 [ 65.034612][ T5109] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 65.034619][ T5109] CR2: 00007f91e50ed2dc CR3: 000000007d90a000 CR4: 00000000003506f0 [ 65.034628][ T5109] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 65.034634][ T5109] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 65.034640][ T5109] Call Trace: [ 65.034644][ T5109] [ 65.034649][ T5109] ? __warn+0x168/0x4e0 [ 65.034659][ T5109] ? lockdep_assert_cpus_held+0xad/0x100 [ 65.034673][ T5109] ? report_bug+0x2b3/0x500 [ 65.034687][ T5109] ? lockdep_assert_cpus_held+0xad/0x100 [ 65.034702][ T5109] ? handle_bug+0x3e/0x70 [ 65.034716][ T5109] ? exc_invalid_op+0x1a/0x50 [ 65.034729][ T5109] ? asm_exc_invalid_op+0x1a/0x20 [ 65.034743][ T5109] ? lockdep_assert_cpus_held+0x8f/0x100 [ 65.034754][ T5109] ? lockdep_assert_cpus_held+0xac/0x100 [ 65.034767][ T5109] ? lockdep_assert_cpus_held+0xad/0x100 [ 65.034779][ T5109] ? lockdep_assert_cpus_held+0xac/0x100 [ 65.034791][ T5109] alloc_workqueue+0xbc8/0x1fe0 [ 65.034802][ T5109] ? kobject_set_name_vargs+0xce/0x120 [ 65.034826][ T5109] ? hci_register_dev+0xe5/0x8b0 [ 65.034838][ T5109] ? __pfx_alloc_workqueue+0x10/0x10 [ 65.034855][ T5109] hci_register_dev+0x20c/0x8b0 [ 65.034867][ T5109] ? swiotlb_dev_init+0xd/0x40 [ 65.034884][ T5109] vhci_create_device+0x38b/0x6e0 [ 65.034906][ T5109] vhci_write+0x3d1/0x490 [ 65.034920][ T5109] vfs_write+0xa72/0xc90 [ 65.034937][ T5109] ? __pfx_vhci_write+0x10/0x10 [ 65.034951][ T5109] ? __pfx_vfs_write+0x10/0x10 [ 65.034983][ T5109] ksys_write+0x1a0/0x2c0 [ 65.035000][ T5109] ? __pfx_ksys_write+0x10/0x10 [ 65.035013][ T5109] ? exc_page_fault+0x590/0x8c0 [ 65.035028][ T5109] ? do_syscall_64+0xb6/0x230 [ 65.035042][ T5109] do_syscall_64+0xf3/0x230 [ 65.035055][ T5109] ? clear_bhb_loop+0x35/0x90 [ 65.035067][ T5109] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 65.035077][ T5109] RIP: 0033:0x7f91e507ca70 [ 65.035090][ T5109] Code: 40 00 48 c7 c2 b0 ff ff ff f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d 91 34 10 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 [ 65.035097][ T5109] RSP: 002b:00007ffffde23468 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 [ 65.035107][ T5109] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f91e507ca70 [ 65.035114][ T5109] RDX: 0000000000000002 RSI: 00007ffffde2347a RDI: 00000000000000ca [ 65.035120][ T5109] RBP: 00007ffffde235d0 R08: 0000000000000000 R09: 00007f91e5cdb320 [ 65.035126][ T5109] R10: 0000000000000000 R11: 0000000000000202 R12: 00007ffffde23bb8 [ 65.035133][ T5109] R13: 00007ffffde23bb8 R14: 0000000000000001 R15: 00000000fffffff1 [ 65.035153][ T5109] [ 65.035159][ T5109] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 65.415279][ T5109] CPU: 1 UID: 0 PID: 5109 Comm: syz-executor.0 Not tainted 6.10.0-next-20240715-syzkaller-g91e3b24eb7d2-dirty #0 [ 65.427330][ T5109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 65.437386][ T5109] Call Trace: [ 65.440773][ T5109] [ 65.443739][ T5109] dump_stack_lvl+0x241/0x360 [ 65.448429][ T5109] ? __pfx_dump_stack_lvl+0x10/0x10 [ 65.453648][ T5109] ? __pfx__printk+0x10/0x10 [ 65.458255][ T5109] ? vscnprintf+0x5d/0x90 [ 65.462776][ T5109] panic+0x349/0x870 [ 65.466768][ T5109] ? __warn+0x177/0x4e0 [ 65.470914][ T5109] ? __pfx_panic+0x10/0x10 [ 65.475431][ T5109] __warn+0x34b/0x4e0 [ 65.479424][ T5109] ? lockdep_assert_cpus_held+0xad/0x100 [ 65.485230][ T5109] report_bug+0x2b3/0x500 [ 65.489553][ T5109] ? lockdep_assert_cpus_held+0xad/0x100 [ 65.495283][ T5109] handle_bug+0x3e/0x70 [ 65.499435][ T5109] exc_invalid_op+0x1a/0x50 [ 65.503932][ T5109] asm_exc_invalid_op+0x1a/0x20 [ 65.508772][ T5109] RIP: 0010:lockdep_assert_cpus_held+0xad/0x100 [ 65.515008][ T5109] Code: 0a 89 c3 31 ff 89 c6 e8 81 17 3e 00 85 db 74 14 e8 38 13 3e 00 eb 05 e8 31 13 3e 00 5b 41 5e c3 cc cc cc cc e8 24 13 3e 00 90 <0f> 0b 90 eb ed 48 c7 c1 40 ad af 8f 80 e1 07 80 c1 03 38 c1 0f 8c [ 65.534956][ T5109] RSP: 0018:ffffc900036ef9a8 EFLAGS: 00010293 [ 65.541020][ T5109] RAX: ffffffff8155b7cc RBX: 0000000000000000 RCX: ffff888021ba1e00 [ 65.548985][ T5109] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 65.556946][ T5109] RBP: ffffc900036efb68 R08: ffffffff8155b7af R09: 1ffffffff1f6000d [ 65.564932][ T5109] R10: dffffc0000000000 R11: fffffbfff1f6000e R12: dffffc0000000000 [ 65.572982][ T5109] R13: ffff888021ab2000 R14: dffffc0000000000 R15: ffff888146a94d00 [ 65.580950][ T5109] ? lockdep_assert_cpus_held+0x8f/0x100 [ 65.586577][ T5109] ? lockdep_assert_cpus_held+0xac/0x100 [ 65.592214][ T5109] ? lockdep_assert_cpus_held+0xac/0x100 [ 65.597846][ T5109] alloc_workqueue+0xbc8/0x1fe0 [ 65.602779][ T5109] ? kobject_set_name_vargs+0xce/0x120 [ 65.608246][ T5109] ? hci_register_dev+0xe5/0x8b0 [ 65.613205][ T5109] ? __pfx_alloc_workqueue+0x10/0x10 [ 65.618573][ T5109] hci_register_dev+0x20c/0x8b0 [ 65.623417][ T5109] ? swiotlb_dev_init+0xd/0x40 [ 65.628187][ T5109] vhci_create_device+0x38b/0x6e0 [ 65.633223][ T5109] vhci_write+0x3d1/0x490 [ 65.637549][ T5109] vfs_write+0xa72/0xc90 [ 65.641876][ T5109] ? __pfx_vhci_write+0x10/0x10 [ 65.646918][ T5109] ? __pfx_vfs_write+0x10/0x10 [ 65.651706][ T5109] ksys_write+0x1a0/0x2c0 [ 65.656153][ T5109] ? __pfx_ksys_write+0x10/0x10 [ 65.661008][ T5109] ? exc_page_fault+0x590/0x8c0 [ 65.665851][ T5109] ? do_syscall_64+0xb6/0x230 [ 65.670531][ T5109] do_syscall_64+0xf3/0x230 [ 65.675030][ T5109] ? clear_bhb_loop+0x35/0x90 [ 65.679698][ T5109] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 65.685848][ T5109] RIP: 0033:0x7f91e507ca70 [ 65.690254][ T5109] Code: 40 00 48 c7 c2 b0 ff ff ff f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d 91 34 10 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 [ 65.710207][ T5109] RSP: 002b:00007ffffde23468 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 [ 65.718703][ T5109] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f91e507ca70 [ 65.726673][ T5109] RDX: 0000000000000002 RSI: 00007ffffde2347a RDI: 00000000000000ca [ 65.734645][ T5109] RBP: 00007ffffde235d0 R08: 0000000000000000 R09: 00007f91e5cdb320 [ 65.742870][ T5109] R10: 0000000000000000 R11: 0000000000000202 R12: 00007ffffde23bb8 [ 65.750834][ T5109] R13: 00007ffffde23bb8 R14: 0000000000000001 R15: 00000000fffffff1 [ 65.758842][ T5109] [ 65.762133][ T5109] Kernel Offset: disabled [ 65.766529][ T5109] Rebooting in 86400 seconds.. syzkaller build log: go env (err=) GO111MODULE='auto' GOARCH='amd64' GOBIN='' GOCACHE='/syzkaller/.cache/go-build' GOENV='/syzkaller/.config/go/env' GOEXE='' GOEXPERIMENT='' GOFLAGS='' GOHOSTARCH='amd64' GOHOSTOS='linux' GOINSECURE='' GOMODCACHE='/syzkaller/jobs-2/linux/gopath/pkg/mod' GONOPROXY='' GONOSUMDB='' GOOS='linux' GOPATH='/syzkaller/jobs-2/linux/gopath' GOPRIVATE='' GOPROXY='https://proxy.golang.org,direct' GOROOT='/usr/local/go' GOSUMDB='sum.golang.org' GOTMPDIR='' GOTOOLCHAIN='auto' GOTOOLDIR='/usr/local/go/pkg/tool/linux_amd64' GOVCS='' GOVERSION='go1.21.4' GCCGO='gccgo' GOAMD64='v1' AR='ar' CC='gcc' CXX='g++' CGO_ENABLED='1' GOMOD='/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/go.mod' GOWORK='' CGO_CFLAGS='-O2 -g' CGO_CPPFLAGS='' CGO_CXXFLAGS='-O2 -g' CGO_FFLAGS='-O2 -g' CGO_LDFLAGS='-O2 -g' PKG_CONFIG='pkg-config' GOGCCFLAGS='-fPIC -m64 -pthread -Wl,--no-gc-sections -fmessage-length=0 -ffile-prefix-map=/tmp/go-build3558841898=/tmp/go-build -gno-record-gcc-switches' git status (err=) HEAD detached at 9026e14289 nothing to commit, working tree clean tput: No value for $TERM and no -T specified tput: No value for $TERM and no -T specified Makefile:31: run command via tools/syz-env for best compatibility, see: Makefile:32: https://github.com/google/syzkaller/blob/master/docs/contributing.md#using-syz-env go list -f '{{.Stale}}' ./sys/syz-sysgen | grep -q false || go install ./sys/syz-sysgen make .descriptions tput: No value for $TERM and no -T specified tput: No value for $TERM and no -T specified Makefile:31: run command via tools/syz-env for best compatibility, see: Makefile:32: https://github.com/google/syzkaller/blob/master/docs/contributing.md#using-syz-env bin/syz-sysgen touch .descriptions GOOS=linux GOARCH=amd64 go build "-ldflags=-s -w -X github.com/google/syzkaller/prog.GitRevision=9026e14289eaf45a00ddddb8730f2092b956d99a -X 'github.com/google/syzkaller/prog.gitRevisionDate=20240510-174117'" "-tags=syz_target syz_os_linux syz_arch_amd64 " -o ./bin/linux_amd64/syz-fuzzer github.com/google/syzkaller/syz-fuzzer GOOS=linux GOARCH=amd64 go build "-ldflags=-s -w -X github.com/google/syzkaller/prog.GitRevision=9026e14289eaf45a00ddddb8730f2092b956d99a -X 'github.com/google/syzkaller/prog.gitRevisionDate=20240510-174117'" "-tags=syz_target syz_os_linux syz_arch_amd64 " -o ./bin/linux_amd64/syz-execprog github.com/google/syzkaller/tools/syz-execprog mkdir -p ./bin/linux_amd64 gcc -o ./bin/linux_amd64/syz-executor executor/executor.cc \ -m64 -std=c++11 -I. -Iexecutor/_include -O2 -pthread -Wall -Werror -Wparentheses -Wunused-const-variable -Wframe-larger-than=16384 -Wno-stringop-overflow -Wno-array-bounds -Wno-format-overflow -Wno-unused-but-set-variable -Wno-unused-command-line-argument -static-pie -fpermissive -w -DGOOS_linux=1 -DGOARCH_amd64=1 \ -DHOSTGOOS_linux=1 -DGIT_REVISION=\"9026e14289eaf45a00ddddb8730f2092b956d99a\"