DUID 00:04:15:32:48:1d:3b:73:54:4f:46:a6:7d:b2:d0:ec:1f:b1 forked to background, child pid 3173 [ 26.084060][ T3174] 8021q: adding VLAN 0 to HW filter on device bond0 [ 26.093695][ T3174] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller Warning: Permanently added '10.128.0.111' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 48.089151][ C0] [ 48.091493][ C0] ======================================================== [ 48.098672][ C0] WARNING: possible irq lock inversion dependency detected [ 48.105868][ C0] 5.18.0-rc3-syzkaller-00218-g13bc32bad705 #0 Not tainted [ 48.112963][ C0] -------------------------------------------------------- [ 48.120141][ C0] swapper/0/0 just changed the state of lock: [ 48.126188][ C0] ffff888022e8b110 (&group->lock){..-.}-{2:2}, at: _snd_pcm_stream_lock_irqsave+0x9f/0xd0 [ 48.136100][ C0] but this lock took another, SOFTIRQ-READ-unsafe lock in the past: [ 48.144052][ C0] (tasklist_lock){.+.+}-{2:2} [ 48.144070][ C0] [ 48.144070][ C0] [ 48.144070][ C0] and interrupts could create inverse lock ordering between them. [ 48.144070][ C0] [ 48.163189][ C0] [ 48.163189][ C0] other info that might help us debug this: [ 48.171242][ C0] Chain exists of: [ 48.171242][ C0] &group->lock --> &timer->lock --> tasklist_lock [ 48.171242][ C0] [ 48.183650][ C0] Possible interrupt unsafe locking scenario: [ 48.183650][ C0] [ 48.191958][ C0] CPU0 CPU1 [ 48.197307][ C0] ---- ---- [ 48.202652][ C0] lock(tasklist_lock); [ 48.206879][ C0] local_irq_disable(); [ 48.213703][ C0] lock(&group->lock); [ 48.220394][ C0] lock(&timer->lock); [ 48.227058][ C0] [ 48.230493][ C0] lock(&group->lock); [ 48.234802][ C0] [ 48.234802][ C0] *** DEADLOCK *** [ 48.234802][ C0] [ 48.243036][ C0] no locks held by swapper/0/0. [ 48.248212][ C0] [ 48.248212][ C0] the shortest dependencies between 2nd lock and 1st lock: [ 48.257659][ C0] -> (tasklist_lock){.+.+}-{2:2} { [ 48.263157][ C0] HARDIRQ-ON-R at: [ 48.267466][ C0] lock_acquire+0x1ab/0x510 [ 48.274304][ C0] _raw_read_lock+0x5b/0x70 [ 48.281136][ C0] do_wait+0x284/0xce0 [ 48.287538][ C0] kernel_wait+0x9c/0x150 [ 48.294199][ C0] call_usermodehelper_exec_work+0xf5/0x180 [ 48.302424][ C0] process_one_work+0x996/0x1610 [ 48.309692][ C0] worker_thread+0x665/0x1080 [ 48.316697][ C0] kthread+0x2e9/0x3a0 [ 48.323092][ C0] ret_from_fork+0x1f/0x30 [ 48.329841][ C0] SOFTIRQ-ON-R at: [ 48.334151][ C0] lock_acquire+0x1ab/0x510 [ 48.340985][ C0] _raw_read_lock+0x5b/0x70 [ 48.347818][ C0] do_wait+0x284/0xce0 [ 48.354220][ C0] kernel_wait+0x9c/0x150 [ 48.360885][ C0] call_usermodehelper_exec_work+0xf5/0x180 [ 48.369112][ C0] process_one_work+0x996/0x1610 [ 48.376376][ C0] worker_thread+0x665/0x1080 [ 48.383379][ C0] kthread+0x2e9/0x3a0 [ 48.389774][ C0] ret_from_fork+0x1f/0x30 [ 48.396521][ C0] INITIAL USE at: [ 48.400744][ C0] lock_acquire+0x1ab/0x510 [ 48.407587][ C0] _raw_write_lock_irq+0x32/0x50 [ 48.414769][ C0] copy_process+0x4364/0x6fe0 [ 48.421779][ C0] kernel_clone+0xe7/0xab0 [ 48.428435][ C0] kernel_thread+0xb5/0xf0 [ 48.435093][ C0] rest_init+0x23/0x3e0 [ 48.441491][ C0] start_kernel+0x47f/0x4a0 [ 48.448238][ C0] secondary_startup_64_no_verify+0xc3/0xcb [ 48.456376][ C0] INITIAL READ USE at: [ 48.461030][ C0] lock_acquire+0x1ab/0x510 [ 48.468211][ C0] _raw_read_lock+0x5b/0x70 [ 48.475388][ C0] do_wait+0x284/0xce0 [ 48.482133][ C0] kernel_wait+0x9c/0x150 [ 48.489138][ C0] call_usermodehelper_exec_work+0xf5/0x180 [ 48.497710][ C0] process_one_work+0x996/0x1610 [ 48.505328][ C0] worker_thread+0x665/0x1080 [ 48.512678][ C0] kthread+0x2e9/0x3a0 [ 48.519419][ C0] ret_from_fork+0x1f/0x30 [ 48.526512][ C0] } [ 48.529338][ C0] ... key at: [] tasklist_lock+0x18/0x40 [ 48.537390][ C0] ... acquired at: [ 48.541521][ C0] _raw_read_lock+0x5b/0x70 [ 48.546179][ C0] send_sigio+0xab/0x380 [ 48.550583][ C0] dnotify_handle_event+0x148/0x280 [ 48.555939][ C0] fsnotify_handle_inode_event.isra.0+0x209/0x350 [ 48.562511][ C0] fsnotify+0xeaf/0x13d0 [ 48.566909][ C0] path_openat+0x1232/0x2910 [ 48.571657][ C0] do_filp_open+0x1aa/0x400 [ 48.576316][ C0] do_sys_openat2+0x16d/0x4c0 [ 48.581151][ C0] __x64_sys_creat+0xc9/0x120 [ 48.585986][ C0] do_syscall_64+0x35/0xb0 [ 48.590562][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 48.596614][ C0] [ 48.598918][ C0] -> (&f->f_owner.lock){....}-{2:2} { [ 48.604549][ C0] INITIAL USE at: [ 48.608688][ C0] lock_acquire+0x1ab/0x510 [ 48.615266][ C0] _raw_write_lock_irq+0x32/0x50 [ 48.622358][ C0] f_modown+0x2a/0x390 [ 48.628521][ C0] f_setown+0xd7/0x230 [ 48.634745][ C0] do_fcntl+0x748/0x10b0 [ 48.641058][ C0] __x64_sys_fcntl+0x15f/0x1d0 [ 48.647893][ C0] do_syscall_64+0x35/0xb0 [ 48.654378][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 48.662340][ C0] INITIAL READ USE at: [ 48.666910][ C0] lock_acquire+0x1ab/0x510 [ 48.673922][ C0] _raw_read_lock_irqsave+0x70/0x90 [ 48.681627][ C0] send_sigio+0x24/0x380 [ 48.688377][ C0] kill_fasync+0x1f8/0x470 [ 48.695385][ C0] snd_timer_user_ccallback+0x298/0x330 [ 48.703452][ C0] snd_timer_notify1+0x11c/0x3b0 [ 48.710903][ C0] snd_timer_start1+0x4d4/0x800 [ 48.718263][ C0] snd_timer_user_start.isra.0+0x1e3/0x260 [ 48.726836][ C0] __snd_timer_user_ioctl.isra.0+0xda4/0x2490 [ 48.735412][ C0] snd_timer_user_ioctl+0x77/0xb0 [ 48.742950][ C0] __x64_sys_ioctl+0x193/0x200 [ 48.750222][ C0] do_syscall_64+0x35/0xb0 [ 48.757145][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 48.765541][ C0] } [ 48.768282][ C0] ... key at: [] __key.5+0x0/0x40 [ 48.775659][ C0] ... acquired at: [ 48.779706][ C0] _raw_read_lock_irqsave+0x70/0x90 [ 48.785066][ C0] send_sigio+0x24/0x380 [ 48.789468][ C0] kill_fasync+0x1f8/0x470 [ 48.794043][ C0] snd_timer_user_ccallback+0x298/0x330 [ 48.799749][ C0] snd_timer_notify1+0x11c/0x3b0 [ 48.804844][ C0] snd_timer_start1+0x4d4/0x800 [ 48.809853][ C0] snd_timer_user_start.isra.0+0x1e3/0x260 [ 48.815815][ C0] __snd_timer_user_ioctl.isra.0+0xda4/0x2490 [ 48.822040][ C0] snd_timer_user_ioctl+0x77/0xb0 [ 48.827221][ C0] __x64_sys_ioctl+0x193/0x200 [ 48.832144][ C0] do_syscall_64+0x35/0xb0 [ 48.836724][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 48.842776][ C0] [ 48.845082][ C0] -> (&new->fa_lock){....}-{2:2} { [ 48.850361][ C0] INITIAL READ USE at: [ 48.854843][ C0] lock_acquire+0x1ab/0x510 [ 48.861682][ C0] _raw_read_lock_irqsave+0x70/0x90 [ 48.869224][ C0] kill_fasync+0x136/0x470 [ 48.875974][ C0] snd_timer_user_ccallback+0x298/0x330 [ 48.883851][ C0] snd_timer_notify1+0x11c/0x3b0 [ 48.891116][ C0] snd_timer_start1+0x4d4/0x800 [ 48.898296][ C0] snd_timer_user_start.isra.0+0x1e3/0x260 [ 48.906431][ C0] __snd_timer_user_ioctl.isra.0+0xda4/0x2490 [ 48.914827][ C0] snd_timer_user_ioctl+0x77/0xb0 [ 48.922181][ C0] __x64_sys_ioctl+0x193/0x200 [ 48.929282][ C0] do_syscall_64+0x35/0xb0 [ 48.936029][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 48.944253][ C0] } [ 48.946908][ C0] ... key at: [] __key.0+0x0/0x40 [ 48.954176][ C0] ... acquired at: [ 48.958129][ C0] _raw_read_lock_irqsave+0x70/0x90 [ 48.963483][ C0] kill_fasync+0x136/0x470 [ 48.968059][ C0] snd_timer_user_ccallback+0x298/0x330 [ 48.973768][ C0] snd_timer_notify1+0x11c/0x3b0 [ 48.978903][ C0] snd_timer_start1+0x4d4/0x800 [ 48.983925][ C0] snd_timer_user_start.isra.0+0x1e3/0x260 [ 48.989901][ C0] __snd_timer_user_ioctl.isra.0+0xda4/0x2490 [ 48.996129][ C0] snd_timer_user_ioctl+0x77/0xb0 [ 49.001322][ C0] __x64_sys_ioctl+0x193/0x200 [ 49.006262][ C0] do_syscall_64+0x35/0xb0 [ 49.010847][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 49.016908][ C0] [ 49.019217][ C0] -> (&timer->lock){....}-{2:2} { [ 49.024323][ C0] INITIAL USE at: [ 49.028292][ C0] lock_acquire+0x1ab/0x510 [ 49.034530][ C0] _raw_spin_lock_irqsave+0x39/0x50 [ 49.041493][ C0] snd_timer_resolution+0x55/0x100 [ 49.048342][ C0] snd_timer_user_params.isra.0+0x18e/0x8c0 [ 49.056108][ C0] __snd_timer_user_ioctl.isra.0+0x101c/0x2490 [ 49.063996][ C0] snd_timer_user_ioctl+0x77/0xb0 [ 49.070748][ C0] __x64_sys_ioctl+0x193/0x200 [ 49.077245][ C0] do_syscall_64+0x35/0xb0 [ 49.083388][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 49.091026][ C0] } [ 49.093600][ C0] ... key at: [] __key.10+0x0/0x40 [ 49.100887][ C0] ... acquired at: [ 49.104765][ C0] _raw_spin_lock_irqsave+0x39/0x50 [ 49.110150][ C0] snd_timer_notify+0x10c/0x3d0 [ 49.115166][ C0] snd_pcm_post_start+0x24a/0x310 [ 49.120357][ C0] snd_pcm_action_single+0xf4/0x130 [ 49.125718][ C0] snd_pcm_action+0x6e/0x90 [ 49.130382][ C0] __snd_pcm_lib_xfer+0x14d0/0x1e10 [ 49.135739][ C0] snd_pcm_oss_write3+0x103/0x250 [ 49.140925][ C0] snd_pcm_oss_write2+0x30e/0x3f0 [ 49.146130][ C0] snd_pcm_oss_sync1+0x187/0x440 [ 49.151257][ C0] snd_pcm_oss_sync+0x638/0x800 [ 49.156276][ C0] snd_pcm_oss_release+0x276/0x300 [ 49.161585][ C0] __fput+0x277/0x9d0 [ 49.165739][ C0] task_work_run+0xdd/0x1a0 [ 49.170411][ C0] do_exit+0xaff/0x2a00 [ 49.174751][ C0] do_group_exit+0xd2/0x2f0 [ 49.179424][ C0] __x64_sys_exit_group+0x3a/0x50 [ 49.184612][ C0] do_syscall_64+0x35/0xb0 [ 49.189199][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 49.195264][ C0] [ 49.197578][ C0] -> (&group->lock){..-.}-{2:2} { [ 49.202613][ C0] IN-SOFTIRQ-W at: [ 49.206584][ C0] lock_acquire+0x1ab/0x510 [ 49.212735][ C0] _raw_spin_lock_irqsave+0x39/0x50 [ 49.219717][ C0] _snd_pcm_stream_lock_irqsave+0x9f/0xd0 [ 49.227092][ C0] snd_pcm_period_elapsed+0x1d/0x50 [ 49.233935][ C0] dummy_hrtimer_callback+0x94/0x1b0 [ 49.240865][ C0] __hrtimer_run_queues+0x609/0xe50 [ 49.247709][ C0] hrtimer_run_softirq+0x17b/0x360 [ 49.254500][ C0] __do_softirq+0x29b/0x9c2 [ 49.260709][ C0] __irq_exit_rcu+0x123/0x180 [ 49.267045][ C0] irq_exit_rcu+0x5/0x20 [ 49.272934][ C0] sysvec_apic_timer_interrupt+0x93/0xc0 [ 49.280210][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 49.287840][ C0] acpi_idle_do_entry+0x1c6/0x250 [ 49.294514][ C0] acpi_idle_enter+0x361/0x500 [ 49.300936][ C0] cpuidle_enter_state+0x1b1/0xc80 [ 49.307688][ C0] cpuidle_enter+0x4a/0xa0 [ 49.313743][ C0] do_idle+0x3e8/0x590 [ 49.319451][ C0] cpu_startup_entry+0x14/0x20 [ 49.326257][ C0] start_kernel+0x47f/0x4a0 [ 49.332405][ C0] secondary_startup_64_no_verify+0xc3/0xcb [ 49.340076][ C0] INITIAL USE at: [ 49.343952][ C0] lock_acquire+0x1ab/0x510 [ 49.350007][ C0] _raw_spin_lock_irq+0x32/0x50 [ 49.356425][ C0] snd_pcm_hw_params+0x14b/0x19f0 [ 49.363002][ C0] snd_pcm_kernel_ioctl+0x164/0x310 [ 49.369752][ C0] snd_pcm_oss_change_params_locked+0x14e2/0x3a70 [ 49.377719][ C0] snd_pcm_oss_make_ready_locked+0xb3/0x130 [ 49.385159][ C0] snd_pcm_oss_write+0x4ac/0x9c0 [ 49.391645][ C0] vfs_write+0x269/0xac0 [ 49.397436][ C0] ksys_write+0x127/0x250 [ 49.403372][ C0] do_syscall_64+0x35/0xb0 [ 49.409345][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 49.416792][ C0] } [ 49.419277][ C0] ... key at: [] __key.8+0x0/0x40 [ 49.426381][ C0] ... acquired at: [ 49.430165][ C0] __lock_acquire+0x11e7/0x56c0 [ 49.435186][ C0] lock_acquire+0x1ab/0x510 [ 49.439858][ C0] _raw_spin_lock_irqsave+0x39/0x50 [ 49.445225][ C0] _snd_pcm_stream_lock_irqsave+0x9f/0xd0 [ 49.451114][ C0] snd_pcm_period_elapsed+0x1d/0x50 [ 49.456476][ C0] dummy_hrtimer_callback+0x94/0x1b0 [ 49.461928][ C0] __hrtimer_run_queues+0x609/0xe50 [ 49.467288][ C0] hrtimer_run_softirq+0x17b/0x360 [ 49.472561][ C0] __do_softirq+0x29b/0x9c2 [ 49.477230][ C0] __irq_exit_rcu+0x123/0x180 [ 49.482062][ C0] irq_exit_rcu+0x5/0x20 [ 49.486460][ C0] sysvec_apic_timer_interrupt+0x93/0xc0 [ 49.492254][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 49.498390][ C0] acpi_idle_do_entry+0x1c6/0x250 [ 49.503573][ C0] acpi_idle_enter+0x361/0x500 [ 49.508495][ C0] cpuidle_enter_state+0x1b1/0xc80 [ 49.513762][ C0] cpuidle_enter+0x4a/0xa0 [ 49.518333][ C0] do_idle+0x3e8/0x590 [ 49.522563][ C0] cpu_startup_entry+0x14/0x20 [ 49.527486][ C0] start_kernel+0x47f/0x4a0 [ 49.532150][ C0] secondary_startup_64_no_verify+0xc3/0xcb [ 49.538200][ C0] [ 49.540510][ C0] [ 49.540510][ C0] stack backtrace: [ 49.546380][ C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 5.18.0-rc3-syzkaller-00218-g13bc32bad705 #0 [ 49.556204][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 49.566273][ C0] Call Trace: [ 49.569547][ C0] [ 49.572471][ C0] dump_stack_lvl+0xcd/0x134 [ 49.577051][ C0] mark_lock.part.0.cold+0x86/0xd8 [ 49.582152][ C0] ? lock_chain_count+0x20/0x20 [ 49.587003][ C0] ? __lock_acquire+0x163e/0x56c0 [ 49.592031][ C0] __lock_acquire+0x11e7/0x56c0 [ 49.596878][ C0] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 49.602912][ C0] ? find_held_lock+0x2d/0x110 [ 49.607678][ C0] lock_acquire+0x1ab/0x510 [ 49.612176][ C0] ? _snd_pcm_stream_lock_irqsave+0x9f/0xd0 [ 49.618084][ C0] ? lock_release+0x720/0x720 [ 49.622751][ C0] ? find_held_lock+0x2d/0x110 [ 49.627505][ C0] ? __hrtimer_run_queues+0x51a/0xe50 [ 49.632863][ C0] ? _raw_spin_lock_irqsave+0x4e/0x50 [ 49.638222][ C0] ? dummy_pcm_copy_kernel+0x10/0x10 [ 49.643500][ C0] _raw_spin_lock_irqsave+0x39/0x50 [ 49.648708][ C0] ? _snd_pcm_stream_lock_irqsave+0x9f/0xd0 [ 49.654608][ C0] _snd_pcm_stream_lock_irqsave+0x9f/0xd0 [ 49.660314][ C0] snd_pcm_period_elapsed+0x1d/0x50 [ 49.665594][ C0] dummy_hrtimer_callback+0x94/0x1b0 [ 49.670876][ C0] __hrtimer_run_queues+0x609/0xe50 [ 49.676064][ C0] ? hrtimer_sleeper_start_expires+0x80/0x80 [ 49.682029][ C0] ? ktime_get_update_offsets_now+0x3eb/0x5c0 [ 49.688090][ C0] hrtimer_run_softirq+0x17b/0x360 [ 49.693188][ C0] __do_softirq+0x29b/0x9c2 [ 49.697679][ C0] __irq_exit_rcu+0x123/0x180 [ 49.702337][ C0] irq_exit_rcu+0x5/0x20 [ 49.706564][ C0] sysvec_apic_timer_interrupt+0x93/0xc0 [ 49.712189][ C0] [ 49.715104][ C0] [ 49.718017][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 49.724259][ C0] RIP: 0010:acpi_idle_do_entry+0x1c6/0x250 [ 49.730055][ C0] Code: 89 de e8 7d 6e 0c f8 84 db 75 ac e8 94 6a 0c f8 e8 ff b2 12 f8 eb 0c e8 88 6a 0c f8 0f 00 2d 51 07 c6 00 e8 7c 6a 0c f8 fb f4 <9c> 5b 81 e3 00 02 00 00 fa 31 ff 48 89 de e8 f7 6c 0c f8 48 85 db [ 49.749646][ C0] RSP: 0018:ffffffff8ba07d60 EFLAGS: 00000293 [ 49.755695][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 49.763647][ C0] RDX: ffffffff8babc700 RSI: ffffffff896cc614 RDI: 0000000000000000 [ 49.771602][ C0] RBP: ffff8880165b4864 R08: 0000000000000001 R09: 0000000000000001 [ 49.779556][ C0] R10: ffffffff817f7938 R11: 0000000000000000 R12: 0000000000000001 [ 49.787532][ C0] R13: ffff8880165b4800 R14: ffff8880165b4864 R15: ffff8881407ed004 [ 49.795487][ C0] ? trace_hardirqs_on+0x38/0x1c0 [ 49.800500][ C0] ? acpi_idle_do_entry+0x1c4/0x250 [ 49.805685][ C0] acpi_idle_enter+0x361/0x500 [ 49.810439][ C0] cpuidle_enter_state+0x1b1/0xc80 [ 49.815537][ C0] cpuidle_enter+0x4a/0xa0 [ 49.819941][ C0] do_idle+0x3e8/0x590 [ 49.824026][ C0] ? arch_cpu_idle_exit+0x30/0x30 [ 49.829032][ C0] ? trace_init_perf_perm_irq_work_exit+0xe/0xe [ 49.835258][ C0] cpu_startup_entry+0x14/0x20 [ 49.840025][ C0] start_kernel+0x47f/0x4a0 [ 49.844527][ C0] second