Warning: Permanently added '10.128.10.30' (ECDSA) to the list of known hosts. [ 66.798479][ T4051] [ 66.800841][ T4051] ===================================== [ 66.806365][ T4051] WARNING: bad unlock balance detected! [ 66.811892][ T4051] 5.17.0-rc4-syzkaller #0 Not tainted [ 66.817240][ T4051] ------------------------------------- [ 66.822753][ T4051] syz-executor140/4051 is trying to release lock (&call->user_mutex) at: [ 66.831134][ T4051] [] rxrpc_do_sendmsg+0x859/0x1110 [ 66.837785][ T4051] but there are no more locks to release! [ 66.843472][ T4051] [ 66.843472][ T4051] other info that might help us debug this: [ 66.851621][ T4051] no locks held by syz-executor140/4051. [ 66.857236][ T4051] [ 66.857236][ T4051] stack backtrace: [ 66.863110][ T4051] CPU: 1 PID: 4051 Comm: syz-executor140 Not tainted 5.17.0-rc4-syzkaller #0 [ 66.871841][ T4051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 66.882229][ T4051] Call Trace: [ 66.885532][ T4051] [ 66.888456][ T4051] dump_stack_lvl+0x57/0x7d [ 66.892987][ T4051] lock_release.cold+0x49/0x4e [ 66.897725][ T4051] ? rxrpc_do_sendmsg+0x859/0x1110 [ 66.902820][ T4051] ? lock_downgrade+0x6e0/0x6e0 [ 66.907649][ T4051] ? trace_rxrpc_timer+0x1c0/0x1c0 [ 66.912731][ T4051] __mutex_unlock_slowpath+0x99/0x5e0 [ 66.918081][ T4051] ? wait_for_completion_io_timeout+0x20/0x20 [ 66.924125][ T4051] ? wake_up_q+0xf0/0xf0 [ 66.928354][ T4051] ? rxrpc_do_sendmsg+0xae3/0x1110 [ 66.933442][ T4051] ? rxrpc_do_sendmsg+0xae3/0x1110 [ 66.938532][ T4051] ? rxrpc_put_peer+0x77/0x380 [ 66.943291][ T4051] rxrpc_do_sendmsg+0x859/0x1110 [ 66.948289][ T4051] ? rxrpc_kernel_send_data+0x350/0x350 [ 66.953804][ T4051] ? rcu_read_lock_sched_held+0x3a/0x70 [ 66.959322][ T4051] ? rxrpc_lookup_local+0x8ef/0x10c0 [ 66.964577][ T4051] ? rxrpc_sendmsg+0x2ee/0x5d0 [ 66.969310][ T4051] ? rxrpc_sock_set_min_security_level+0xa0/0xa0 [ 66.975604][ T4051] sock_sendmsg+0xab/0xe0 [ 66.979929][ T4051] ____sys_sendmsg+0x5bf/0x7a0 [ 66.984665][ T4051] ? kernel_sendmsg+0x30/0x30 [ 66.989314][ T4051] ? do_recvmmsg+0x550/0x550 [ 66.993874][ T4051] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 66.999827][ T4051] ? do_huge_pmd_anonymous_page+0xb78/0x1fe0 [ 67.005802][ T4051] ___sys_sendmsg+0xd3/0x150 [ 67.010365][ T4051] ? sendmsg_copy_msghdr+0x110/0x110 [ 67.015620][ T4051] ? __fget_files+0x1bf/0x3c0 [ 67.020308][ T4051] ? lock_downgrade+0x6e0/0x6e0 [ 67.025134][ T4051] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 67.031102][ T4051] ? __fget_light+0xbe/0x220 [ 67.035676][ T4051] __sys_sendmsg+0xb2/0x140 [ 67.040163][ T4051] ? __sys_sendmsg_sock+0x10/0x10 [ 67.045171][ T4051] ? __context_tracking_enter+0x93/0xa0 [ 67.050834][ T4051] ? lockdep_hardirqs_on_prepare+0x17b/0x400 [ 67.056808][ T4051] ? syscall_enter_from_user_mode+0x21/0x70 [ 67.062692][ T4051] ? lockdep_hardirqs_on+0x79/0x100 [ 67.067861][ T4051] do_syscall_64+0x35/0xb0 [ 67.072256][ T4051] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 67.078240][ T4051] RIP: 0033:0x7fa223ab1de9 [ 67.082640][ T4051] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 67.102234][ T4051] RSP: 002b:00007fa223a64318 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 67.110736][ T4051] RAX: ffffffffffffffda RBX: 00007fa223b3a3e8 RCX: 00007fa223ab1de9 [ 67.118865][ T4051] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 67.126825][ T4051] RBP: 00007fa223b3a3e0 R08: 000000000000224e R09: 0000000000000000 [ 67.134780][ T4051] R10: 0000000000000002 R11: 0000000000000246 R12: 000000d7860cdad7 [ 67.142743][ T4051] R13: 00007ffea8534d8f R14: 00007fa223a64400 R15: 0000000000