WARNING in alloc_workqueue
------------[ cut here ]------------
WARNING: CPU: 1 PID: 5109 at kernel/cpu.c:527 lockdep_assert_cpus_held+0xad/0x100 kernel/cpu.c:527
Modules linked in:
CPU: 1 UID: 0 PID: 5109 Comm: syz-executor.0 Not tainted 6.10.0-next-20240715-syzkaller-g91e3b24eb7d2-dirty #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
RIP: 0010:lockdep_assert_cpus_held+0xad/0x100 kernel/cpu.c:527
Code: 0a 89 c3 31 ff 89 c6 e8 81 17 3e 00 85 db 74 14 e8 38 13 3e 00 eb 05 e8 31 13 3e 00 5b 41 5e c3 cc cc cc cc e8 24 13 3e 00 90 <0f> 0b 90 eb ed 48 c7 c1 40 ad af 8f 80 e1 07 80 c1 03 38 c1 0f 8c
RSP: 0018:ffffc900036ef9a8 EFLAGS: 00010293
RAX: ffffffff8155b7cc RBX: 0000000000000000 RCX: ffff888021ba1e00
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
RBP: ffffc900036efb68 R08: ffffffff8155b7af R09: 1ffffffff1f6000d
R10: dffffc0000000000 R11: fffffbfff1f6000e R12: dffffc0000000000
R13: ffff888021ab2000 R14: dffffc0000000000 R15: ffff888146a94d00
FS: 00005555912c6480(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f91e50ed2dc CR3: 000000007d90a000 CR4: 00000000003506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
alloc_and_link_pwqs kernel/workqueue.c:5437 [inline]
alloc_workqueue+0xbc8/0x1fe0 kernel/workqueue.c:5703
hci_register_dev+0x20c/0x8b0 net/bluetooth/hci_core.c:2591
__vhci_create_device drivers/bluetooth/hci_vhci.c:430 [inline]
vhci_create_device+0x38b/0x6e0 drivers/bluetooth/hci_vhci.c:472
vhci_get_user drivers/bluetooth/hci_vhci.c:529 [inline]
vhci_write+0x3d1/0x490 drivers/bluetooth/hci_vhci.c:609
new_sync_write fs/read_write.c:497 [inline]
vfs_write+0xa72/0xc90 fs/read_write.c:590
ksys_write+0x1a0/0x2c0 fs/read_write.c:643
do_syscall_x64 arch/x86/entry/common.c:52 [inline]
do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f91e507ca70
Code: 40 00 48 c7 c2 b0 ff ff ff f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d 91 34 10 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89
RSP: 002b:00007ffffde23468 EFLAGS: 00000202 ORIG_RAX: 0000000000000001
RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f91e507ca70
RDX: 0000000000000002 RSI: 00007ffffde2347a RDI: 00000000000000ca
RBP: 00007ffffde235d0 R08: 0000000000000000 R09: 00007f91e5cdb320
R10: 0000000000000000 R11: 0000000000000202 R12: 00007ffffde23bb8
R13: 00007ffffde23bb8 R14: 0000000000000001 R15: 00000000fffffff1
syzkaller login: [ 52.639580][ C0] eth0: bad gso: type: 1, size: 1408
[ 52.647677][ C0] eth0: bad gso: type: 1, size: 1408
[ 52.655181][ C0] eth0: bad gso: type: 1, size: 1408
[ 52.673257][ C0] eth0: bad gso: type: 1, size: 1408
[ 52.681431][ C0] eth0: bad gso: type: 1, size: 1408
[ 52.687898][ C0] eth0: bad gso: type: 1, size: 1408
[ 52.694406][ C0] eth0: bad gso: type: 1, size: 1408
[ 52.700714][ C0] eth0: bad gso: type: 1, size: 1408
[ 52.706977][ C0] eth0: bad gso: type: 1, size: 1408
[ 52.714053][ C0] eth0: bad gso: type: 1, size: 1408
Warning: Permanently added '10.128.1.48' (ED25519) to the list of known hosts.
2024/07/15 16:59:43 ignoring optional flag "sandboxArg"="0"
2024/07/15 16:59:43 parsed 1 programs
[ 63.468807][ T5101] cgroup: Unknown subsys name 'net'
[ 63.610308][ T5101] cgroup: Unknown subsys name 'rlimit'
2024/07/15 16:59:44 executed programs: 0
[ 64.973829][ T5101] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 65.028506][ T5109] ------------[ cut here ]------------
[ 65.034458][ T5109] WARNING: CPU: 1 PID: 5109 at kernel/cpu.c:527 lockdep_assert_cpus_held+0xad/0x100
[ 65.034493][ T5109] Modules linked in:
[ 65.034511][ T5109] CPU: 1 UID: 0 PID: 5109 Comm: syz-executor.0 Not tainted 6.10.0-next-20240715-syzkaller-g91e3b24eb7d2-dirty #0
[ 65.034524][ T5109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 65.034535][ T5109] RIP: 0010:lockdep_assert_cpus_held+0xad/0x100
[ 65.034548][ T5109] Code: 0a 89 c3 31 ff 89 c6 e8 81 17 3e 00 85 db 74 14 e8 38 13 3e 00 eb 05 e8 31 13 3e 00 5b 41 5e c3 cc cc cc cc e8 24 13 3e 00 90 <0f> 0b 90 eb ed 48 c7 c1 40 ad af 8f 80 e1 07 80 c1 03 38 c1 0f 8c
[ 65.034560][ T5109] RSP: 0018:ffffc900036ef9a8 EFLAGS: 00010293
[ 65.034569][ T5109] RAX: ffffffff8155b7cc RBX: 0000000000000000 RCX: ffff888021ba1e00
[ 65.034576][ T5109] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 65.034582][ T5109] RBP: ffffc900036efb68 R08: ffffffff8155b7af R09: 1ffffffff1f6000d
[ 65.034589][ T5109] R10: dffffc0000000000 R11: fffffbfff1f6000e R12: dffffc0000000000
[ 65.034596][ T5109] R13: ffff888021ab2000 R14: dffffc0000000000 R15: ffff888146a94d00
[ 65.034604][ T5109] FS: 00005555912c6480(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000
[ 65.034612][ T5109] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 65.034619][ T5109] CR2: 00007f91e50ed2dc CR3: 000000007d90a000 CR4: 00000000003506f0
[ 65.034628][ T5109] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 65.034634][ T5109] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 65.034640][ T5109] Call Trace:
[ 65.034644][ T5109]
[ 65.034649][ T5109] ? __warn+0x168/0x4e0
[ 65.034659][ T5109] ? lockdep_assert_cpus_held+0xad/0x100
[ 65.034673][ T5109] ? report_bug+0x2b3/0x500
[ 65.034687][ T5109] ? lockdep_assert_cpus_held+0xad/0x100
[ 65.034702][ T5109] ? handle_bug+0x3e/0x70
[ 65.034716][ T5109] ? exc_invalid_op+0x1a/0x50
[ 65.034729][ T5109] ? asm_exc_invalid_op+0x1a/0x20
[ 65.034743][ T5109] ? lockdep_assert_cpus_held+0x8f/0x100
[ 65.034754][ T5109] ? lockdep_assert_cpus_held+0xac/0x100
[ 65.034767][ T5109] ? lockdep_assert_cpus_held+0xad/0x100
[ 65.034779][ T5109] ? lockdep_assert_cpus_held+0xac/0x100
[ 65.034791][ T5109] alloc_workqueue+0xbc8/0x1fe0
[ 65.034802][ T5109] ? kobject_set_name_vargs+0xce/0x120
[ 65.034826][ T5109] ? hci_register_dev+0xe5/0x8b0
[ 65.034838][ T5109] ? __pfx_alloc_workqueue+0x10/0x10
[ 65.034855][ T5109] hci_register_dev+0x20c/0x8b0
[ 65.034867][ T5109] ? swiotlb_dev_init+0xd/0x40
[ 65.034884][ T5109] vhci_create_device+0x38b/0x6e0
[ 65.034906][ T5109] vhci_write+0x3d1/0x490
[ 65.034920][ T5109] vfs_write+0xa72/0xc90
[ 65.034937][ T5109] ? __pfx_vhci_write+0x10/0x10
[ 65.034951][ T5109] ? __pfx_vfs_write+0x10/0x10
[ 65.034983][ T5109] ksys_write+0x1a0/0x2c0
[ 65.035000][ T5109] ? __pfx_ksys_write+0x10/0x10
[ 65.035013][ T5109] ? exc_page_fault+0x590/0x8c0
[ 65.035028][ T5109] ? do_syscall_64+0xb6/0x230
[ 65.035042][ T5109] do_syscall_64+0xf3/0x230
[ 65.035055][ T5109] ? clear_bhb_loop+0x35/0x90
[ 65.035067][ T5109] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 65.035077][ T5109] RIP: 0033:0x7f91e507ca70
[ 65.035090][ T5109] Code: 40 00 48 c7 c2 b0 ff ff ff f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d 91 34 10 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89
[ 65.035097][ T5109] RSP: 002b:00007ffffde23468 EFLAGS: 00000202 ORIG_RAX: 0000000000000001
[ 65.035107][ T5109] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f91e507ca70
[ 65.035114][ T5109] RDX: 0000000000000002 RSI: 00007ffffde2347a RDI: 00000000000000ca
[ 65.035120][ T5109] RBP: 00007ffffde235d0 R08: 0000000000000000 R09: 00007f91e5cdb320
[ 65.035126][ T5109] R10: 0000000000000000 R11: 0000000000000202 R12: 00007ffffde23bb8
[ 65.035133][ T5109] R13: 00007ffffde23bb8 R14: 0000000000000001 R15: 00000000fffffff1
[ 65.035153][ T5109]
[ 65.035159][ T5109] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 65.415279][ T5109] CPU: 1 UID: 0 PID: 5109 Comm: syz-executor.0 Not tainted 6.10.0-next-20240715-syzkaller-g91e3b24eb7d2-dirty #0
[ 65.427330][ T5109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 65.437386][ T5109] Call Trace:
[ 65.440773][ T5109]
[ 65.443739][ T5109] dump_stack_lvl+0x241/0x360
[ 65.448429][ T5109] ? __pfx_dump_stack_lvl+0x10/0x10
[ 65.453648][ T5109] ? __pfx__printk+0x10/0x10
[ 65.458255][ T5109] ? vscnprintf+0x5d/0x90
[ 65.462776][ T5109] panic+0x349/0x870
[ 65.466768][ T5109] ? __warn+0x177/0x4e0
[ 65.470914][ T5109] ? __pfx_panic+0x10/0x10
[ 65.475431][ T5109] __warn+0x34b/0x4e0
[ 65.479424][ T5109] ? lockdep_assert_cpus_held+0xad/0x100
[ 65.485230][ T5109] report_bug+0x2b3/0x500
[ 65.489553][ T5109] ? lockdep_assert_cpus_held+0xad/0x100
[ 65.495283][ T5109] handle_bug+0x3e/0x70
[ 65.499435][ T5109] exc_invalid_op+0x1a/0x50
[ 65.503932][ T5109] asm_exc_invalid_op+0x1a/0x20
[ 65.508772][ T5109] RIP: 0010:lockdep_assert_cpus_held+0xad/0x100
[ 65.515008][ T5109] Code: 0a 89 c3 31 ff 89 c6 e8 81 17 3e 00 85 db 74 14 e8 38 13 3e 00 eb 05 e8 31 13 3e 00 5b 41 5e c3 cc cc cc cc e8 24 13 3e 00 90 <0f> 0b 90 eb ed 48 c7 c1 40 ad af 8f 80 e1 07 80 c1 03 38 c1 0f 8c
[ 65.534956][ T5109] RSP: 0018:ffffc900036ef9a8 EFLAGS: 00010293
[ 65.541020][ T5109] RAX: ffffffff8155b7cc RBX: 0000000000000000 RCX: ffff888021ba1e00
[ 65.548985][ T5109] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 65.556946][ T5109] RBP: ffffc900036efb68 R08: ffffffff8155b7af R09: 1ffffffff1f6000d
[ 65.564932][ T5109] R10: dffffc0000000000 R11: fffffbfff1f6000e R12: dffffc0000000000
[ 65.572982][ T5109] R13: ffff888021ab2000 R14: dffffc0000000000 R15: ffff888146a94d00
[ 65.580950][ T5109] ? lockdep_assert_cpus_held+0x8f/0x100
[ 65.586577][ T5109] ? lockdep_assert_cpus_held+0xac/0x100
[ 65.592214][ T5109] ? lockdep_assert_cpus_held+0xac/0x100
[ 65.597846][ T5109] alloc_workqueue+0xbc8/0x1fe0
[ 65.602779][ T5109] ? kobject_set_name_vargs+0xce/0x120
[ 65.608246][ T5109] ? hci_register_dev+0xe5/0x8b0
[ 65.613205][ T5109] ? __pfx_alloc_workqueue+0x10/0x10
[ 65.618573][ T5109] hci_register_dev+0x20c/0x8b0
[ 65.623417][ T5109] ? swiotlb_dev_init+0xd/0x40
[ 65.628187][ T5109] vhci_create_device+0x38b/0x6e0
[ 65.633223][ T5109] vhci_write+0x3d1/0x490
[ 65.637549][ T5109] vfs_write+0xa72/0xc90
[ 65.641876][ T5109] ? __pfx_vhci_write+0x10/0x10
[ 65.646918][ T5109] ? __pfx_vfs_write+0x10/0x10
[ 65.651706][ T5109] ksys_write+0x1a0/0x2c0
[ 65.656153][ T5109] ? __pfx_ksys_write+0x10/0x10
[ 65.661008][ T5109] ? exc_page_fault+0x590/0x8c0
[ 65.665851][ T5109] ? do_syscall_64+0xb6/0x230
[ 65.670531][ T5109] do_syscall_64+0xf3/0x230
[ 65.675030][ T5109] ? clear_bhb_loop+0x35/0x90
[ 65.679698][ T5109] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 65.685848][ T5109] RIP: 0033:0x7f91e507ca70
[ 65.690254][ T5109] Code: 40 00 48 c7 c2 b0 ff ff ff f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d 91 34 10 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89
[ 65.710207][ T5109] RSP: 002b:00007ffffde23468 EFLAGS: 00000202 ORIG_RAX: 0000000000000001
[ 65.718703][ T5109] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f91e507ca70
[ 65.726673][ T5109] RDX: 0000000000000002 RSI: 00007ffffde2347a RDI: 00000000000000ca
[ 65.734645][ T5109] RBP: 00007ffffde235d0 R08: 0000000000000000 R09: 00007f91e5cdb320
[ 65.742870][ T5109] R10: 0000000000000000 R11: 0000000000000202 R12: 00007ffffde23bb8
[ 65.750834][ T5109] R13: 00007ffffde23bb8 R14: 0000000000000001 R15: 00000000fffffff1
[ 65.758842][ T5109]
[ 65.762133][ T5109] Kernel Offset: disabled
[ 65.766529][ T5109] Rebooting in 86400 seconds..
syzkaller build log:
go env (err=)
GO111MODULE='auto'
GOARCH='amd64'
GOBIN=''
GOCACHE='/syzkaller/.cache/go-build'
GOENV='/syzkaller/.config/go/env'
GOEXE=''
GOEXPERIMENT=''
GOFLAGS=''
GOHOSTARCH='amd64'
GOHOSTOS='linux'
GOINSECURE=''
GOMODCACHE='/syzkaller/jobs-2/linux/gopath/pkg/mod'
GONOPROXY=''
GONOSUMDB=''
GOOS='linux'
GOPATH='/syzkaller/jobs-2/linux/gopath'
GOPRIVATE=''
GOPROXY='https://proxy.golang.org,direct'
GOROOT='/usr/local/go'
GOSUMDB='sum.golang.org'
GOTMPDIR=''
GOTOOLCHAIN='auto'
GOTOOLDIR='/usr/local/go/pkg/tool/linux_amd64'
GOVCS=''
GOVERSION='go1.21.4'
GCCGO='gccgo'
GOAMD64='v1'
AR='ar'
CC='gcc'
CXX='g++'
CGO_ENABLED='1'
GOMOD='/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/go.mod'
GOWORK=''
CGO_CFLAGS='-O2 -g'
CGO_CPPFLAGS=''
CGO_CXXFLAGS='-O2 -g'
CGO_FFLAGS='-O2 -g'
CGO_LDFLAGS='-O2 -g'
PKG_CONFIG='pkg-config'
GOGCCFLAGS='-fPIC -m64 -pthread -Wl,--no-gc-sections -fmessage-length=0 -ffile-prefix-map=/tmp/go-build3558841898=/tmp/go-build -gno-record-gcc-switches'
git status (err=)
HEAD detached at 9026e14289
nothing to commit, working tree clean
tput: No value for $TERM and no -T specified
tput: No value for $TERM and no -T specified
Makefile:31: run command via tools/syz-env for best compatibility, see:
Makefile:32: https://github.com/google/syzkaller/blob/master/docs/contributing.md#using-syz-env
go list -f '{{.Stale}}' ./sys/syz-sysgen | grep -q false || go install ./sys/syz-sysgen
make .descriptions
tput: No value for $TERM and no -T specified
tput: No value for $TERM and no -T specified
Makefile:31: run command via tools/syz-env for best compatibility, see:
Makefile:32: https://github.com/google/syzkaller/blob/master/docs/contributing.md#using-syz-env
bin/syz-sysgen
touch .descriptions
GOOS=linux GOARCH=amd64 go build "-ldflags=-s -w -X github.com/google/syzkaller/prog.GitRevision=9026e14289eaf45a00ddddb8730f2092b956d99a -X 'github.com/google/syzkaller/prog.gitRevisionDate=20240510-174117'" "-tags=syz_target syz_os_linux syz_arch_amd64 " -o ./bin/linux_amd64/syz-fuzzer github.com/google/syzkaller/syz-fuzzer
GOOS=linux GOARCH=amd64 go build "-ldflags=-s -w -X github.com/google/syzkaller/prog.GitRevision=9026e14289eaf45a00ddddb8730f2092b956d99a -X 'github.com/google/syzkaller/prog.gitRevisionDate=20240510-174117'" "-tags=syz_target syz_os_linux syz_arch_amd64 " -o ./bin/linux_amd64/syz-execprog github.com/google/syzkaller/tools/syz-execprog
mkdir -p ./bin/linux_amd64
gcc -o ./bin/linux_amd64/syz-executor executor/executor.cc \
-m64 -std=c++11 -I. -Iexecutor/_include -O2 -pthread -Wall -Werror -Wparentheses -Wunused-const-variable -Wframe-larger-than=16384 -Wno-stringop-overflow -Wno-array-bounds -Wno-format-overflow -Wno-unused-but-set-variable -Wno-unused-command-line-argument -static-pie -fpermissive -w -DGOOS_linux=1 -DGOARCH_amd64=1 \
-DHOSTGOOS_linux=1 -DGIT_REVISION=\"9026e14289eaf45a00ddddb8730f2092b956d99a\"