./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor689905804
<...>
Warning: Permanently added '10.128.1.0' (ECDSA) to the list of known hosts.
execve("./syz-executor689905804", ["./syz-executor689905804"], 0x7fff35084db0 /* 10 vars */) = 0
brk(NULL) = 0x555556431000
brk(0x555556431d00) = 0x555556431d00
arch_prctl(ARCH_SET_FS, 0x5555564313c0) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor689905804", 4096) = 27
brk(0x555556452d00) = 0x555556452d00
brk(0x555556453000) = 0x555556453000
mprotect(0x7f518798e000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
getpid() = 3610
openat(AT_FDCWD, "/sys/kernel/debug/x86/nmi_longest_ns", O_WRONLY|O_CLOEXEC) = 3
write(3, "10000000000", 11) = 11
close(3) = 0
openat(AT_FDCWD, "/proc/sys/kernel/hung_task_check_interval_secs", O_WRONLY|O_CLOEXEC) = 3
write(3, "20", 2) = 2
close(3) = 0
openat(AT_FDCWD, "/proc/sys/net/core/bpf_jit_kallsyms", O_WRONLY|O_CLOEXEC) = 3
write(3, "1", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/proc/sys/net/core/bpf_jit_harden", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/proc/sys/kernel/kptr_restrict", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/proc/sys/kernel/softlockup_all_cpu_backtrace", O_WRONLY|O_CLOEXEC) = 3
write(3, "1", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/proc/sys/fs/mount-max", O_WRONLY|O_CLOEXEC) = 3
write(3, "100", 3) = 3
close(3) = 0
openat(AT_FDCWD, "/proc/sys/vm/oom_dump_tasks", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/proc/sys/debug/exception-trace", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/proc/sys/kernel/printk", O_WRONLY|O_CLOEXEC) = 3
write(3, "7 4 1 3", 7) = 7
close(3) = 0
openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC) = 3
write(3, "0 65535", 7) = 7
close(3) = 0
openat(AT_FDCWD, "/proc/sys/kernel/keys/gc_delay", O_WRONLY|O_CLOEXEC) = 3
write(3, "1", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/proc/sys/vm/oom_kill_allocating_task", O_WRONLY|O_CLOEXEC) = 3
write(3, "1", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/proc/sys/kernel/ctrl-alt-del", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/proc/sys/kernel/cad_pid", O_WRONLY|O_CLOEXEC) = 3
write(3, "3610", 4) = 4
close(3) = 0
rt_sigaction(SIGRTMIN, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGRT_1, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGSEGV, {sa_handler=0x7f51878e25b0, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f51878e3200}, NULL, 8) = 0
rt_sigaction(SIGBUS, {sa_handler=0x7f51878e25b0, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f51878e3200}, NULL, 8) = 0
unshare(CLONE_NEWPID) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556431690) = 3611
./strace-static-x86_64: Process 3611 attached
[pid 3611] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy)
[pid 3611] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 3611] setsid() = 1
[pid 3611] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0
[pid 3611] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0
[pid 3611] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0
[pid 3611] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0
[pid 3611] prlimit64(0, RLIMIT_CORE, {rlim_cur=0, rlim_max=0}, NULL) = 0
[pid 3611] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0
[pid 3611] unshare(CLONE_NEWNS) = 0
[pid 3611] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0
[pid 3611] unshare(CLONE_NEWIPC) = 0
[pid 3611] unshare(CLONE_NEWCGROUP) = 0
[pid 3611] unshare(CLONE_NEWUTS) = 0
[pid 3611] unshare(CLONE_SYSVSEM) = 0
[pid 3611] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3
[pid 3611] write(3, "16777216", 8) = 8
[pid 3611] close(3) = 0
[pid 3611] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3
[pid 3611] write(3, "536870912", 9) = 9
[pid 3611] close(3) = 0
[pid 3611] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3
[pid 3611] write(3, "1024", 4) = 4
[pid 3611] close(3) = 0
[pid 3611] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3
[pid 3611] write(3, "8192", 4) = 4
[pid 3611] close(3) = 0
[pid 3611] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3
[pid 3611] write(3, "1024", 4) = 4
[pid 3611] close(3) = 0
[pid 3611] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3
[pid 3611] write(3, "1024", 4) = 4
[pid 3611] close(3) = 0
[pid 3611] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3
[pid 3611] write(3, "1024 1048576 500 1024", 21) = 21
[pid 3611] close(3) = 0
[pid 3611] getpid() = 1
[pid 3611] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid 3611] capset({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid 3611] unshare(CLONE_NEWNET) = 0
[pid 3611] mkdir("/dev/binderfs", 0777) = 0
[pid 3611] mount("binder", "/dev/binderfs", "binder", 0, NULL) = 0
[pid 3611] symlink("/dev/binderfs", "./binderfs") = 0
[pid 3611] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 3612 attached
, child_tidptr=0x555556431690) = 2
[pid 3612] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 3612] setpgid(0, 0) = 0
[pid 3612] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 3612] write(3, "1000", 4) = 4
[pid 3612] close(3) = 0
[pid 3612] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=8, insns=0x20002740, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 3
[pid 3612] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 16) = 4
[pid 3612] close(3) = 0
[pid 3612] close(4) = 0
[pid 3612] close(5) = -1 EBADF (Bad file descriptor)
[pid 3612] close(6) = -1 EBADF (Bad file descriptor)
[pid 3612] close(7) = -1 EBADF (Bad file descriptor)
[pid 3612] close(8) = -1 EBADF (Bad file descriptor)
[pid 3612] close(9) = -1 EBADF (Bad file descriptor)
[pid 3612] close(10) = -1 EBADF (Bad file descriptor)
[pid 3612] close(11) = -1 EBADF (Bad file descriptor)
[pid 3612] close(12) = -1 EBADF (Bad file descriptor)
[pid 3612] close(13) = -1 EBADF (Bad file descriptor)
[pid 3612] close(14) = -1 EBADF (Bad file descriptor)
[pid 3612] close(15) = -1 EBADF (Bad file descriptor)
[pid 3612] close(16) = -1 EBADF (Bad file descriptor)
[pid 3612] close(17) = -1 EBADF (Bad file descriptor)
[pid 3612] close(18) = -1 EBADF (Bad file descriptor)
[pid 3612] close(19) = -1 EBADF (Bad file descriptor)
[pid 3612] close(20) = -1 EBADF (Bad file descriptor)
[pid 3612] close(21) = -1 EBADF (Bad file descriptor)
[pid 3612] close(22) = -1 EBADF (Bad file descriptor)
[pid 3612] close(23) = -1 EBADF (Bad file descriptor)
[pid 3612] close(24) = -1 EBADF (Bad file descriptor)
[pid 3612] close(25) = -1 EBADF (Bad file descriptor)
[pid 3612] close(26) = -1 EBADF (Bad file descriptor)
[pid 3612] close(27) = -1 EBADF (Bad file descriptor)
[pid 3612] close(28) = -1 EBADF (Bad file descriptor)
[pid 3612] close(29) = -1 EBADF (Bad file descriptor)
[pid 3612] exit_group(0) = ?
[pid 3612] +++ exited with 0 +++
[pid 3611] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2, si_uid=0, si_status=0, si_utime=0, si_stime=1} ---
[pid 3611] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556431690) = 3
./strace-static-x86_64: Process 3613 attached
[pid 3613] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 3613] setpgid(0, 0) = 0
[pid 3613] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 3613] write(3, "1000", 4) = 4
[pid 3613] close(3) = 0
[pid 3613] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=8, insns=0x20002740, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 3
[pid 3613] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 16) = 4
[pid 3613] close(3) = 0
[pid 3613] close(4) = 0
[pid 3613] close(5) = -1 EBADF (Bad file descriptor)
[pid 3613] close(6) = -1 EBADF (Bad file descriptor)
[pid 3613] close(7) = -1 EBADF (Bad file descriptor)
[pid 3613] close(8) = -1 EBADF (Bad file descriptor)
[pid 3613] close(9) = -1 EBADF (Bad file descriptor)
[pid 3613] close(10) = -1 EBADF (Bad file descriptor)
[pid 3613] close(11) = -1 EBADF (Bad file descriptor)
[pid 3613] close(12) = -1 EBADF (Bad file descriptor)
[pid 3613] close(13) = -1 EBADF (Bad file descriptor)
[pid 3613] close(14) = -1 EBADF (Bad file descriptor)
[pid 3613] close(15) = -1 EBADF (Bad file descriptor)
[pid 3613] close(16) = -1 EBADF (Bad file descriptor)
[pid 3613] close(17) = -1 EBADF (Bad file descriptor)
[pid 3613] close(18) = -1 EBADF (Bad file descriptor)
[pid 3613] close(19) = -1 EBADF (Bad file descriptor)
[pid 3613] close(20) = -1 EBADF (Bad file descriptor)
[pid 3613] close(21) = -1 EBADF (Bad file descriptor)
[pid 3613] close(22) = -1 EBADF (Bad file descriptor)
[pid 3613] close(23) = -1 EBADF (Bad file descriptor)
[pid 3613] close(24) = -1 EBADF (Bad file descriptor)
[pid 3613] close(25) = -1 EBADF (Bad file descriptor)
[pid 3613] close(26) = -1 EBADF (Bad file descriptor)
[pid 3613] close(27) = -1 EBADF (Bad file descriptor)
[pid 3613] close(28) = -1 EBADF (Bad file descriptor)
[pid 3613] close(29) = -1 EBADF (Bad file descriptor)
[pid 3613] exit_group(0) = ?
[pid 3613] +++ exited with 0 +++
[pid 3611] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3, si_uid=0, si_status=0, si_utime=0, si_stime=1} ---
[pid 3611] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556431690) = 4
./strace-static-x86_64: Process 3614 attached
[pid 3614] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 3614] setpgid(0, 0) = 0
[pid 3614] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 3614] write(3, "1000", 4) = 4
[pid 3614] close(3) = 0
[pid 3614] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=8, insns=0x20002740, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 3
[pid 3614] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 16) = 4
[pid 3614] close(3) = 0
[pid 3614] close(4) = 0
[pid 3614] close(5) = -1 EBADF (Bad file descriptor)
[pid 3614] close(6) = -1 EBADF (Bad file descriptor)
[pid 3614] close(7) = -1 EBADF (Bad file descriptor)
[pid 3614] close(8) = -1 EBADF (Bad file descriptor)
[pid 3614] close(9) = -1 EBADF (Bad file descriptor)
[pid 3614] close(10) = -1 EBADF (Bad file descriptor)
[pid 3614] close(11) = -1 EBADF (Bad file descriptor)
[pid 3614] close(12) = -1 EBADF (Bad file descriptor)
[pid 3614] close(13) = -1 EBADF (Bad file descriptor)
[pid 3614] close(14) = -1 EBADF (Bad file descriptor)
[pid 3614] close(15) = -1 EBADF (Bad file descriptor)
[pid 3614] close(16) = -1 EBADF (Bad file descriptor)
[pid 3614] close(17) = -1 EBADF (Bad file descriptor)
[pid 3614] close(18) = -1 EBADF (Bad file descriptor)
[pid 3614] close(19) = -1 EBADF (Bad file descriptor)
[pid 3614] close(20) = -1 EBADF (Bad file descriptor)
[pid 3614] close(21) = -1 EBADF (Bad file descriptor)
[pid 3614] close(22) = -1 EBADF (Bad file descriptor)
[pid 3614] close(23) = -1 EBADF (Bad file descriptor)
[pid 3614] close(24) = -1 EBADF (Bad file descriptor)
[pid 3614] close(25) = -1 EBADF (Bad file descriptor)
[pid 3614] close(26) = -1 EBADF (Bad file descriptor)
[pid 3614] close(27) = -1 EBADF (Bad file descriptor)
[pid 3614] close(28) = -1 EBADF (Bad file descriptor)
[pid 3614] close(29) = -1 EBADF (Bad file descriptor)
[pid 3614] exit_group(0) = ?
[pid 3614] +++ exited with 0 +++
[pid 3611] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=4, si_uid=0, si_status=0, si_utime=0, si_stime=1} ---
[pid 3611] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid 3611] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556431690) = 5
./strace-static-x86_64: Process 3615 attached
[pid 3615] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 3615] setpgid(0, 0) = 0
[pid 3615] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 3615] write(3, "1000", 4) = 4
[pid 3615] close(3) = 0
[pid 3615] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=8, insns=0x20002740, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 3
[pid 3615] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 16) = 4
[pid 3615] close(3) = 0
[pid 3615] close(4) = 0
[pid 3615] close(5) = -1 EBADF (Bad file descriptor)
[pid 3615] close(6) = -1 EBADF (Bad file descriptor)
[pid 3615] close(7) = -1 EBADF (Bad file descriptor)
[pid 3615] close(8) = -1 EBADF (Bad file descriptor)
[pid 3615] close(9) = -1 EBADF (Bad file descriptor)
[pid 3615] close(10) = -1 EBADF (Bad file descriptor)
[pid 3615] close(11) = -1 EBADF (Bad file descriptor)
[pid 3615] close(12) = -1 EBADF (Bad file descriptor)
[pid 3615] close(13) = -1 EBADF (Bad file descriptor)
[pid 3615] close(14) = -1 EBADF (Bad file descriptor)
[pid 3615] close(15) = -1 EBADF (Bad file descriptor)
[pid 3615] close(16) = -1 EBADF (Bad file descriptor)
[pid 3615] close(17) = -1 EBADF (Bad file descriptor)
[pid 3615] close(18) = -1 EBADF (Bad file descriptor)
[pid 3615] close(19) = -1 EBADF (Bad file descriptor)
[pid 3615] close(20) = -1 EBADF (Bad file descriptor)
[pid 3615] close(21) = -1 EBADF (Bad file descriptor)
[pid 3615] close(22) = -1 EBADF (Bad file descriptor)
[pid 3615] close(23) = -1 EBADF (Bad file descriptor)
[pid 3615] close(24) = -1 EBADF (Bad file descriptor)
[pid 3615] close(25) = -1 EBADF (Bad file descriptor)
[pid 3615] close(26) = -1 EBADF (Bad file descriptor)
[pid 3615] close(27) = -1 EBADF (Bad file descriptor)
[pid 3615] close(28) = -1 EBADF (Bad file descriptor)
[pid 3615] close(29) = -1 EBADF (Bad file descriptor)
[pid 3615] exit_group(0) = ?
[pid 3615] +++ exited with 0 +++
[pid 3611] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5, si_uid=0, si_status=0, si_utime=0, si_stime=1} ---
[pid 3611] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556431690) = 6
./strace-static-x86_64: Process 3616 attached
[pid 3616] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 3616] setpgid(0, 0) = 0
[pid 3616] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 3616] write(3, "1000", 4) = 4
[pid 3616] close(3) = 0
[pid 3616] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=8, insns=0x20002740, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 3
[pid 3616] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 16) = 4
[pid 3616] close(3) = 0
[pid 3616] close(4) = 0
[pid 3616] close(5) = -1 EBADF (Bad file descriptor)
[pid 3616] close(6) = -1 EBADF (Bad file descriptor)
[pid 3616] close(7) = -1 EBADF (Bad file descriptor)
[pid 3616] close(8) = -1 EBADF (Bad file descriptor)
[pid 3616] close(9) = -1 EBADF (Bad file descriptor)
[pid 3616] close(10) = -1 EBADF (Bad file descriptor)
[pid 3616] close(11) = -1 EBADF (Bad file descriptor)
[pid 3616] close(12) = -1 EBADF (Bad file descriptor)
[pid 3616] close(13) = -1 EBADF (Bad file descriptor)
[pid 3616] close(14) = -1 EBADF (Bad file descriptor)
[pid 3616] close(15) = -1 EBADF (Bad file descriptor)
[pid 3616] close(16) = -1 EBADF (Bad file descriptor)
[pid 3616] close(17) = -1 EBADF (Bad file descriptor)
[pid 3616] close(18) = -1 EBADF (Bad file descriptor)
[pid 3616] close(19) = -1 EBADF (Bad file descriptor)
[pid 3616] close(20) = -1 EBADF (Bad file descriptor)
[pid 3616] close(21) = -1 EBADF (Bad file descriptor)
[pid 3616] close(22) = -1 EBADF (Bad file descriptor)
[pid 3616] close(23) = -1 EBADF (Bad file descriptor)
[pid 3616] close(24) = -1 EBADF (Bad file descriptor)
[pid 3616] close(25) = -1 EBADF (Bad file descriptor)
[pid 3616] close(26) = -1 EBADF (Bad file descriptor)
[pid 3616] close(27) = -1 EBADF (Bad file descriptor)
[pid 3616] close(28) = -1 EBADF (Bad file descriptor)
[pid 3616] close(29) = -1 EBADF (Bad file descriptor)
[pid 3616] exit_group(0) = ?
[pid 3616] +++ exited with 0 +++
[pid 3611] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6, si_uid=0, si_status=0, si_utime=0, si_stime=1} ---
[pid 3611] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid 3611] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556431690) = 7
./strace-static-x86_64: Process 3617 attached
[pid 3617] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 3617] setpgid(0, 0) = 0
[pid 3617] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 3617] write(3, "1000", 4) = 4
[pid 3617] close(3) = 0
[pid 3617] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=8, insns=0x20002740, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 3
[pid 3617] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 16) = 4
[pid 3617] close(3) = 0
[pid 3617] close(4) = 0
[pid 3617] close(5) = -1 EBADF (Bad file descriptor)
[pid 3617] close(6) = -1 EBADF (Bad file descriptor)
[pid 3617] close(7) = -1 EBADF (Bad file descriptor)
[pid 3617] close(8) = -1 EBADF (Bad file descriptor)
[pid 3617] close(9) = -1 EBADF (Bad file descriptor)
[pid 3617] close(10) = -1 EBADF (Bad file descriptor)
[pid 3617] close(11) = -1 EBADF (Bad file descriptor)
[pid 3617] close(12) = -1 EBADF (Bad file descriptor)
[pid 3617] close(13) = -1 EBADF (Bad file descriptor)
[pid 3617] close(14) = -1 EBADF (Bad file descriptor)
[pid 3617] close(15) = -1 EBADF (Bad file descriptor)
[pid 3617] close(16) = -1 EBADF (Bad file descriptor)
[pid 3617] close(17) = -1 EBADF (Bad file descriptor)
[pid 3617] close(18) = -1 EBADF (Bad file descriptor)
[pid 3617] close(19) = -1 EBADF (Bad file descriptor)
[pid 3617] close(20) = -1 EBADF (Bad file descriptor)
[pid 3617] close(21) = -1 EBADF (Bad file descriptor)
[pid 3617] close(22) = -1 EBADF (Bad file descriptor)
[pid 3617] close(23) = -1 EBADF (Bad file descriptor)
[pid 3617] close(24) = -1 EBADF (Bad file descriptor)
[pid 3617] close(25) = -1 EBADF (Bad file descriptor)
[pid 3617] close(26) = -1 EBADF (Bad file descriptor)
[pid 3617] close(27) = -1 EBADF (Bad file descriptor)
[pid 3617] close(28) = -1 EBADF (Bad file descriptor)
[pid 3617] close(29) = -1 EBADF (Bad file descriptor)
[pid 3617] exit_group(0) = ?
[pid 3617] +++ exited with 0 +++
[pid 3611] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
[pid 3611] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid 3611] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556431690) = 8
./strace-static-x86_64: Process 3618 attached
syzkaller login: [ 49.507893][ T3605]
[ 49.507902][ T3605] ============================================
[ 49.507908][ T3605] WARNING: possible recursive locking detected
[ 49.507915][ T3605] 5.18.0-syzkaller-12154-gd352bd889b6a #0 Not tainted
[ 49.507927][ T3605] --------------------------------------------
[ 49.507933][ T3605] sshd/3605 is trying to acquire lock:
[ 49.507944][ T3605] ffffffff8be0d6d8 (trace_printk_lock){-.-.}-{2:2}, at: bpf_trace_printk+0xcf/0x170
[ 49.508001][ T3605]
[pid 3618] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 3618] setpgid(0, 0) = 0
[pid 3618] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 3618] write(3, "1000", 4) = 4
[pid 3618] close(3) = 0
[pid 3618] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=8, insns=0x20002740, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 3
[pid 3618] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 16) = 4
[pid 3618] close(3) = 0
[pid 3618] close(4) = 0
[pid 3618] close(5) = -1 EBADF (Bad file descriptor)
[pid 3618] close(6) = -1 EBADF (Bad file descriptor)
[pid 3618] close(7) = -1 EBADF (Bad file descriptor)
[pid 3618] close(8) = -1 EBADF (Bad file descriptor)
[pid 3618] close(9) = -1 EBADF (Bad file descriptor)
[pid 3618] close(10) = -1 EBADF (Bad file descriptor)
[pid 3618] close(11) = -1 EBADF (Bad file descriptor)
[pid 3618] close(12) = -1 EBADF (Bad file descriptor)
[pid 3618] close(13) = -1 EBADF (Bad file descriptor)
[pid 3618] close(14) = -1 EBADF (Bad file descriptor)
[pid 3618] close(15) = -1 EBADF (Bad file descriptor)
[pid 3618] close(16) = -1 EBADF (Bad file descriptor)
[pid 3618] close(17) = -1 EBADF (Bad file descriptor)
[pid 3618] close(18) = -1 EBADF (Bad file descriptor)
[pid 3618] close(19) = -1 EBADF (Bad file descriptor)
[pid 3618] close(20) = -1 EBADF (Bad file descriptor)
[pid 3618] close(21) = -1 EBADF (Bad file descriptor)
[pid 3618] close(22) = -1 EBADF (Bad file descriptor)
[pid 3618] close(23) = -1 EBADF (Bad file descriptor)
[pid 3618] close(24) = -1 EBADF (Bad file descriptor)
[pid 3618] close(25) = -1 EBADF (Bad file descriptor)
[pid 3618] close(26) = -1 EBADF (Bad file descriptor)
[pid 3618] close(27) = -1 EBADF (Bad file descriptor)
[pid 3618] close(28) = -1 EBADF (Bad file descriptor)
[pid 3618] close(29) = -1 EBADF (Bad file descriptor)
[ 49.508001][ T3605] but task is already holding lock:
[ 49.508006][ T3605] ffffffff8be0d6d8 (trace_printk_lock){-.-.}-{2:2}, at: bpf_trace_printk+0xcf/0x170
[ 49.508052][ T3605]
[ 49.508052][ T3605] other info that might help us debug this:
[ 49.508058][ T3605] Possible unsafe locking scenario:
[ 49.508058][ T3605]
[ 49.508062][ T3605] CPU0
[ 49.508065][ T3605] ----
[ 49.508068][ T3605] lock(trace_printk_lock);
[ 49.508080][ T3605] lock(trace_printk_lock);
[ 49.508092][ T3605]
[ 49.508092][ T3605] *** DEADLOCK ***
[pid 3618] exit_group(0) = ?
[pid 3618] +++ exited with 0 +++
[pid 3611] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=8, si_uid=0, si_status=0, si_utime=0, si_stime=4} ---
[pid 3611] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid 3611] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556431690) = 9
./strace-static-x86_64: Process 3619 attached
[pid 3619] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 3619] setpgid(0, 0) = 0
[pid 3619] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 3619] write(3, "1000", 4) = 4
[pid 3619] close(3) = 0
[pid 3619] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=8, insns=0x20002740, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 3
[ 49.508092][ T3605]
[ 49.508096][ T3605] May be due to missing lock nesting notation
[ 49.508096][ T3605]
[ 49.508101][ T3605] 4 locks held by sshd/3605:
[ 49.508112][ T3605] #0: ffff8880277ad068 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_read+0x139/0x1100
[ 49.508147][ T3605] #1: ffffffff8bd86be0 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run2+0x0/0x340
[ 49.508175][ T3605] #2: ffffffff8be0d6d8 (trace_printk_lock){-.-.}-{2:2}, at: bpf_trace_printk+0xcf/0x170
[pid 3619] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 16) = 4
[ 49.508202][ T3605] #3: ffffffff8bd86be0 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run2+0x0/0x340
[ 49.508230][ T3605]
[ 49.508230][ T3605] stack backtrace:
[ 49.508234][ T3605] CPU: 0 PID: 3605 Comm: sshd Not tainted 5.18.0-syzkaller-12154-gd352bd889b6a #0
[ 49.508247][ T3605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 49.508254][ T3605] Call Trace:
[ 49.508258][ T3605] <TASK>
[ 49.508263][ T3605] dump_stack_lvl+0xcd/0x134
[ 49.508293][ T3605] __lock_acquire.cold+0x1f5/0x3b4
[ 49.508312][ T3605] ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 49.508346][ T3605] lock_acquire+0x1ab/0x570
[ 49.508372][ T3605] ? bpf_trace_printk+0xcf/0x170
[ 49.508387][ T3605] ? lock_release+0x780/0x780
[ 49.508402][ T3605] ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 49.508418][ T3605] ? bpf_bprintf_cleanup+0x60/0x60
[ 49.508436][ T3605] _raw_spin_lock_irqsave+0x39/0x50
[ 49.508450][ T3605] ? bpf_trace_printk+0xcf/0x170
[ 49.508462][ T3605] bpf_trace_printk+0xcf/0x170
[ 49.508475][ T3605] ? trace_bpf_trace_printk+0x220/0x220
[ 49.508489][ T3605] ? lock_chain_count+0x20/0x20
[ 49.508504][ T3605] ? find_held_lock+0x2d/0x110
[ 49.508520][ T3605] bpf_prog_0605f9f479290f07+0x2f/0x33
[ 49.508531][ T3605] bpf_trace_run2+0x110/0x340
[ 49.508544][ T3605] ? __bpf_trace_bpf_trace_printk+0xc0/0xc0
[ 49.508559][ T3605] __bpf_trace_contention_begin+0xb5/0xf0
[ 49.508574][ T3605] ? __bpf_trace_lock+0xe0/0xe0
[ 49.508589][ T3605] ? lock_downgrade+0x6e0/0x6e0
[ 49.508605][ T3605] trace_contention_begin.constprop.0+0xda/0x1b0
[ 49.508619][ T3605] __pv_queued_spin_lock_slowpath+0x103/0xb50
[ 49.508634][ T3605] ? trace_contention_end.constprop.0+0x1b0/0x1b0
[ 49.508650][ T3605] do_raw_spin_lock+0x200/0x2a0
[ 49.508663][ T3605] ? rwlock_bug.part.0+0x90/0x90
[ 49.508675][ T3605] ? _raw_spin_lock_irqsave+0x4e/0x50
[ 49.508690][ T3605] _raw_spin_lock_irqsave+0x41/0x50
[ 49.508702][ T3605] ? bpf_trace_printk+0xcf/0x170
[ 49.508714][ T3605] bpf_trace_printk+0xcf/0x170
[ 49.508726][ T3605] ? trace_bpf_trace_printk+0x220/0x220
[ 49.508743][ T3605] bpf_prog_0605f9f479290f07+0x2f/0x33
[ 49.508754][ T3605] bpf_trace_run2+0x110/0x340
[ 49.508766][ T3605] ? __bpf_trace_bpf_trace_printk+0xc0/0xc0
[ 49.508781][ T3605] __bpf_trace_contention_begin+0xb5/0xf0
[ 49.508796][ T3605] ? __bpf_trace_lock+0xe0/0xe0
[ 49.508818][ T3605] trace_contention_begin+0xc0/0x150
[ 49.508833][ T3605] __mutex_lock+0x13c/0x1350
[ 49.508849][ T3605] ? pipe_read+0x139/0x1100
[ 49.508864][ T3605] ? pipe_read+0x139/0x1100
[ 49.508879][ T3605] ? mutex_lock_io_nested+0x1190/0x1190
[ 49.508894][ T3605] ? lock_chain_count+0x20/0x20
[ 49.508913][ T3605] pipe_read+0x139/0x1100
[ 49.508928][ T3605] ? lock_downgrade+0x6e0/0x6e0
[ 49.508945][ T3605] ? pipe_ioctl+0x2b0/0x2b0
[ 49.508959][ T3605] ? aa_file_perm+0x595/0x1230
[ 49.508975][ T3605] ? aa_path_link+0x2f0/0x2f0
[ 49.508989][ T3605] new_sync_read+0x4f9/0x5f0
[ 49.509004][ T3605] ? ksys_lseek+0x1b0/0x1b0
[ 49.509017][ T3605] ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 49.509037][ T3605] ? security_file_permission+0xab/0xd0
[ 49.509055][ T3605] vfs_read+0x492/0x5d0
[ 49.509071][ T3605] ksys_read+0x1e8/0x250
[ 49.509085][ T3605] ? vfs_write+0xac0/0xac0
[ 49.509100][ T3605] ? syscall_enter_from_user_mode+0x21/0x70
[ 49.509123][ T3605] ? syscall_enter_from_user_mode+0x21/0x70
[ 49.509149][ T3605] do_syscall_64+0x35/0xb0
[ 49.509176][ T3605] entry_SYSCALL_64_after_hwframe+0x46/0xb0
[ 49.509203][ T3605] RIP: 0033:0x7f3fa53258fe
[ 49.509221][ T3605] Code: c0 e9 e6 fe ff ff 50 48 8d 3d 0e c7 09 00 e8 c9 cf 01 00 66 0f 1f 84 00 00 00 00 00 64 8b 04 25 18 00 00 00 85 c0 75 14 0f 05 <48> 3d 00 f0 ff ff 77 5a c3 66 0f 1f 84 00 00 00 00 00 48 83 ec 28
[ 49.509243][ T3605] RSP: 002b:00007fff40e3ae68 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 49.509264][ T3605] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f3fa53258fe
[ 49.509280][ T3605] RDX: 0000000000004000 RSI: 00007fff40e3ae78 RDI: 0000000000000009
[ 49.509295][ T3605] RBP: 000055a9dd896190 R08: 000055a9dd8a16d0 R09: 00007fff40f92080
[ 49.509310][ T3605] R10: 00007fff40f920f0 R11: 0000000000000246 R12: 0000000000000031
[ 49.509324][ T3605] R13: 000055a9dd8a5f40 R14: 00007fff40e3ae78 R15: 000055a9dd898370
[ 49.509338][ T3605] </TASK>
[ 49.683502][ T16] ------------[ cut here ]------------
[ 49.683510][ T16] WARNING: CPU: 0 PID: 16 at kernel/bpf/helpers.c:791 bpf_bprintf_prepare+0xf31/0x11a0
[ 50.087783][ T16] Modules linked in:
[ 50.091703][ T16] CPU: 0 PID: 16 Comm: pr/ttyS0 Not tainted 5.18.0-syzkaller-12154-gd352bd889b6a #0
[ 50.101689][ T16] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 50.111737][ T16] RIP: 0010:bpf_bprintf_prepare+0xf31/0x11a0
[ 50.117725][ T16] Code: ff e8 73 fa ea ff 48 83 7c 24 08 00 41 bd 04 00 00 00 0f 85 8a fa ff ff e8 5c fa ea ff 8d 6b 03 e9 f7 f6 ff ff e8 4f fa ea ff <0f> 0b 65 ff 0d be b6 73 7e bf 01 00 00 00 41 bc f0 ff ff ff e8 f6
[ 50.137341][ T16] RSP: 0018:ffffc90000156d88 EFLAGS: 00010093
[ 50.143417][ T16] RAX: 0000000000000000 RBX: 0000000000000002 RCX: 0000000000000000
[ 50.151384][ T16] RDX: ffff888011a85880 RSI: ffffffff818f8a01 RDI: 0000000000000005
[ 50.159363][ T16] RBP: ffffc90000156eb8 R08: 0000000000000005 R09: 0000000000000003
[ 50.167344][ T16] R10: 0000000000000004 R11: 502030203a555043 R12: 0000000000000003
[ 50.175310][ T16] R13: 0000000000000004 R14: ffffc90000156f70 R15: 0000000000000003
[ 50.183281][ T16] FS: 0000000000000000(0000) GS:ffff8880b9a00000(0000) knlGS:0000000000000000
[ 50.192217][ T16] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 50.198972][ T16] CR2: 0000555556431690 CR3: 0000000071d75000 CR4: 00000000003506f0
[ 50.206943][ T16] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 50.214909][ T16] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 50.222875][ T16] Call Trace:
[ 50.226165][ T16] <TASK>
[ 50.229095][ T16] ? bpf_bprintf_cleanup+0x60/0x60
[ 50.234221][ T16] bpf_trace_printk+0xab/0x170
[ 50.238993][ T16] ? trace_bpf_trace_printk+0x220/0x220
[ 50.244646][ T16] ? lock_release+0x780/0x780
[ 50.249342][ T16] bpf_prog_0605f9f479290f07+0x2f/0x33
[ 50.254806][ T16] bpf_trace_run2+0x110/0x340
[ 50.259489][ T16] ? __bpf_trace_bpf_trace_printk+0xc0/0xc0
[ 50.265391][ T16] __bpf_trace_contention_begin+0xb5/0xf0
[ 50.271116][ T16] ? __bpf_trace_lock+0xe0/0xe0
[ 50.275969][ T16] ? lock_chain_count+0x20/0x20
[ 50.280822][ T16] ? mark_lock.part.0+0xee/0x1910
[ 50.285863][ T16] ? mark_lock.part.0+0xee/0x1910
[ 50.290900][ T16] trace_contention_begin.constprop.0+0xda/0x1b0
[ 50.297342][ T16] __pv_queued_spin_lock_slowpath+0x103/0xb50
[ 50.303431][ T16] ? mark_lock.part.0+0xee/0x1910
[ 50.308475][ T16] ? __lockdep_reset_lock+0x1a0/0x1a0
[ 50.313878][ T16] ? trace_contention_end.constprop.0+0x1b0/0x1b0
[ 50.320725][ T16] ? rcu_read_lock_sched_held+0xd/0x70
[ 50.326200][ T16] ? lock_acquire+0x480/0x570
[ 50.330891][ T16] do_raw_spin_lock+0x200/0x2a0
[ 50.335743][ T16] ? rwlock_bug.part.0+0x90/0x90
[ 50.340678][ T16] ? print_shortest_lock_dependencies_backwards+0x80/0x80
[ 50.347805][ T16] _raw_spin_lock_irqsave+0x41/0x50
[ 50.353007][ T16] ? bpf_trace_printk+0xcf/0x170
[ 50.357945][ T16] bpf_trace_printk+0xcf/0x170
[ 50.362714][ T16] ? trace_bpf_trace_printk+0x220/0x220
[ 50.368260][ T16] ? __bfs+0x298/0x720
[ 50.372331][ T16] ? check_path.constprop.0+0x50/0x50
[ 50.377712][ T16] bpf_prog_0605f9f479290f07+0x2f/0x33
[ 50.383169][ T16] bpf_trace_run2+0x110/0x340
[ 50.387846][ T16] ? __bpf_trace_bpf_trace_printk+0xc0/0xc0
[ 50.393759][ T16] ? mark_lock.part.0+0xee/0x1910
[ 50.398788][ T16] __bpf_trace_contention_begin+0xb5/0xf0
[ 50.404596][ T16] ? __bpf_trace_lock+0xe0/0xe0
[ 50.409453][ T16] trace_contention_begin.constprop.0+0xda/0x1b0
[ 50.415783][ T16] __pv_queued_spin_lock_slowpath+0x103/0xb50
[ 50.421858][ T16] ? rcu_read_lock_sched_held+0xd/0x70
[ 50.427333][ T16] ? rcu_read_lock_sched_held+0xd/0x70
[ 50.432793][ T16] ? trace_contention_end.constprop.0+0x1b0/0x1b0
[ 50.439209][ T16] ? rcu_read_lock_sched_held+0xd/0x70
[ 50.444670][ T16] ? lock_acquire+0x480/0x570
[ 50.449355][ T16] do_raw_spin_lock+0x200/0x2a0
[ 50.454204][ T16] ? rwlock_bug.part.0+0x90/0x90
[ 50.459138][ T16] ? finish_task_switch.isra.0+0x319/0xb80
[ 50.464958][ T16] _raw_spin_lock_irqsave+0x41/0x50
[ 50.470159][ T16] ? bpf_trace_printk+0xcf/0x170
[ 50.475095][ T16] bpf_trace_printk+0xcf/0x170
[ 50.479873][ T16] ? trace_bpf_trace_printk+0x220/0x220
[ 50.485432][ T16] ? __rb_reserve_next+0x71d/0x16c0
[ 50.490632][ T16] bpf_prog_0605f9f479290f07+0x2f/0x33
[ 50.496086][ T16] bpf_trace_run2+0x110/0x340
[ 50.500762][ T16] ? __bpf_trace_bpf_trace_printk+0xc0/0xc0
[ 50.506659][ T16] __bpf_trace_contention_begin+0xb5/0xf0
[ 50.512380][ T16] ? __bpf_trace_lock+0xe0/0xe0
[ 50.517233][ T16] ? rcu_read_lock_sched_held+0xd/0x70
[ 50.522695][ T16] ? rcu_read_lock_sched_held+0xd/0x70
[ 50.528155][ T16] ? rcu_read_lock_sched_held+0xd/0x70
[ 50.533617][ T16] trace_contention_begin.constprop.0+0xda/0x1b0
[ 50.539945][ T16] __pv_queued_spin_lock_slowpath+0x103/0xb50
[ 50.546029][ T16] ? trace_contention_end.constprop.0+0x1b0/0x1b0
[ 50.552443][ T16] ? rcu_read_lock_sched_held+0xd/0x70
[ 50.557903][ T16] ? lock_acquire+0x480/0x570
[ 50.562583][ T16] do_raw_spin_lock+0x200/0x2a0
[ 50.567430][ T16] ? rwlock_bug.part.0+0x90/0x90
[ 50.572377][ T16] _raw_spin_lock_irqsave+0x41/0x50
[ 50.577582][ T16] ? bpf_trace_printk+0xcf/0x170
[ 50.582516][ T16] bpf_trace_printk+0xcf/0x170
[ 50.587300][ T16] ? trace_bpf_trace_printk+0x220/0x220
[ 50.592846][ T16] ? preempt_schedule_thunk+0x16/0x18
[ 50.598226][ T16] bpf_prog_0605f9f479290f07+0x2f/0x33
[ 50.603678][ T16] bpf_trace_run2+0x110/0x340
[ 50.608371][ T16] ? __bpf_trace_bpf_trace_printk+0xc0/0xc0
[ 50.614267][ T16] ? desc_read+0x380/0x380
[ 50.618681][ T16] ? serial8250_console_write+0x93c/0xc30
[ 50.624404][ T16] __bpf_trace_contention_begin+0xb5/0xf0
[ 50.630128][ T16] ? __bpf_trace_lock+0xe0/0xe0
[ 50.634980][ T16] ? lock_release+0x560/0x780
[ 50.639663][ T16] trace_contention_begin+0xc0/0x150
[ 50.644952][ T16] __mutex_lock+0x13c/0x1350
[ 50.649543][ T16] ? printk_kthread_func.cold+0x57b/0x73d
[ 50.655355][ T16] ? printk_kthread_func.cold+0x57b/0x73d
[ 50.661077][ T16] ? mutex_lock_io_nested+0x1190/0x1190
[ 50.666624][ T16] ? prb_read_valid+0x75/0xa0
[ 50.671296][ T16] ? prb_final_commit+0xa0/0xa0
[ 50.676147][ T16] printk_kthread_func.cold+0x57b/0x73d
[ 50.681700][ T16] ? register_console+0x970/0x970
[ 50.686718][ T16] ? _raw_spin_unlock_irqrestore+0x50/0x70
[ 50.692524][ T16] ? prepare_to_wait_exclusive+0x2b0/0x2b0
[ 50.698358][ T16] ? __kthread_parkme+0x15f/0x220
[ 50.703387][ T16] ? register_console+0x970/0x970
[ 50.708409][ T16] kthread+0x2e9/0x3a0
[ 50.712475][ T16] ? kthread_complete_and_exit+0x40/0x40
[ 50.718113][ T16] ret_from_fork+0x1f/0x30
[ 50.722546][ T16] </TASK>
[ 50.725563][ T16] Kernel panic - not syncing: panic_on_warn set ...
[ 50.732138][ T16] CPU: 0 PID: 16 Comm: pr/ttyS0 Not tainted 5.18.0-syzkaller-12154-gd352bd889b6a #0
[ 50.741509][ T16] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 50.751583][ T16] Call Trace:
[ 50.754865][ T16] <TASK>
[ 50.757797][ T16] dump_stack_lvl+0xcd/0x134
[ 50.762401][ T16] panic+0x2d7/0x636
[ 50.766308][ T16] ? panic_print_sys_info.part.0+0x10b/0x10b
[ 50.772302][ T16] ? __warn.cold+0x1d9/0x2cd
[ 50.776891][ T16] ? bpf_bprintf_prepare+0xf31/0x11a0
[ 50.782282][ T16] __warn.cold+0x1ea/0x2cd
[ 50.786697][ T16] ? bpf_bprintf_prepare+0xf31/0x11a0
[ 50.792069][ T16] report_bug+0x1bc/0x210
[ 50.796410][ T16] handle_bug+0x3c/0x60
[ 50.800574][ T16] exc_invalid_op+0x14/0x40
[ 50.805092][ T16] asm_exc_invalid_op+0x1b/0x20
[ 50.809953][ T16] RIP: 0010:bpf_bprintf_prepare+0xf31/0x11a0
[ 50.815937][ T16] Code: ff e8 73 fa ea ff 48 83 7c 24 08 00 41 bd 04 00 00 00 0f 85 8a fa ff ff e8 5c fa ea ff 8d 6b 03 e9 f7 f6 ff ff e8 4f fa ea ff <0f> 0b 65 ff 0d be b6 73 7e bf 01 00 00 00 41 bc f0 ff ff ff e8 f6
[ 50.836061][ T16] RSP: 0018:ffffc90000156d88 EFLAGS: 00010093
[ 50.842124][ T16] RAX: 0000000000000000 RBX: 0000000000000002 RCX: 0000000000000000
[ 50.850089][ T16] RDX: ffff888011a85880 RSI: ffffffff818f8a01 RDI: 0000000000000005
[ 50.858057][ T16] RBP: ffffc90000156eb8 R08: 0000000000000005 R09: 0000000000000003
[ 50.866031][ T16] R10: 0000000000000004 R11: 502030203a555043 R12: 0000000000000003
[ 50.874000][ T16] R13: 0000000000000004 R14: ffffc90000156f70 R15: 0000000000000003
[ 50.881972][ T16] ? bpf_bprintf_prepare+0xf31/0x11a0
[ 50.887348][ T16] ? bpf_bprintf_prepare+0xf31/0x11a0
[ 50.892733][ T16] ? bpf_bprintf_cleanup+0x60/0x60
[ 50.897865][ T16] bpf_trace_printk+0xab/0x170
[ 50.902640][ T16] ? trace_bpf_trace_printk+0x220/0x220
[ 50.908194][ T16] ? lock_release+0x780/0x780
[ 50.912898][ T16] bpf_prog_0605f9f479290f07+0x2f/0x33
[ 50.918352][ T16] bpf_trace_run2+0x110/0x340
[ 50.923029][ T16] ? __bpf_trace_bpf_trace_printk+0xc0/0xc0
[ 50.929016][ T16] __bpf_trace_contention_begin+0xb5/0xf0
[ 50.934740][ T16] ? __bpf_trace_lock+0xe0/0xe0
[ 50.939619][ T16] ? lock_chain_count+0x20/0x20
[ 50.944487][ T16] ? mark_lock.part.0+0xee/0x1910
[ 50.949521][ T16] ? mark_lock.part.0+0xee/0x1910
[ 50.954560][ T16] trace_contention_begin.constprop.0+0xda/0x1b0
[ 50.960979][ T16] __pv_queued_spin_lock_slowpath+0x103/0xb50
[ 50.967044][ T16] ? mark_lock.part.0+0xee/0x1910
[ 50.972267][ T16] ? __lockdep_reset_lock+0x1a0/0x1a0
[ 50.977655][ T16] ? trace_contention_end.constprop.0+0x1b0/0x1b0
[ 50.984247][ T16] ? rcu_read_lock_sched_held+0xd/0x70
[ 50.989733][ T16] ? lock_acquire+0x480/0x570
[ 50.994425][ T16] do_raw_spin_lock+0x200/0x2a0
[ 50.999295][ T16] ? rwlock_bug.part.0+0x90/0x90
[ 51.004321][ T16] ? print_shortest_lock_dependencies_backwards+0x80/0x80
[ 51.011450][ T16] _raw_spin_lock_irqsave+0x41/0x50
[ 51.016653][ T16] ? bpf_trace_printk+0xcf/0x170
[ 51.021591][ T16] bpf_trace_printk+0xcf/0x170
[ 51.026355][ T16] ? trace_bpf_trace_printk+0x220/0x220
[ 51.031905][ T16] ? __bfs+0x298/0x720
[ 51.035988][ T16] ? check_path.constprop.0+0x50/0x50
[ 51.041392][ T16] bpf_prog_0605f9f479290f07+0x2f/0x33
[ 51.046855][ T16] bpf_trace_run2+0x110/0x340
[ 51.051552][ T16] ? __bpf_trace_bpf_trace_printk+0xc0/0xc0
[ 51.057588][ T16] ? mark_lock.part.0+0xee/0x1910
[ 51.062630][ T16] __bpf_trace_contention_begin+0xb5/0xf0
[ 51.068360][ T16] ? __bpf_trace_lock+0xe0/0xe0
[ 51.073229][ T16] trace_contention_begin.constprop.0+0xda/0x1b0
[ 51.079562][ T16] __pv_queued_spin_lock_slowpath+0x103/0xb50
[ 51.085649][ T16] ? rcu_read_lock_sched_held+0xd/0x70
[ 51.091128][ T16] ? rcu_read_lock_sched_held+0xd/0x70
[ 51.096596][ T16] ? trace_contention_end.constprop.0+0x1b0/0x1b0
[ 51.103022][ T16] ? rcu_read_lock_sched_held+0xd/0x70
[ 51.108483][ T16] ? lock_acquire+0x480/0x570
[ 51.113164][ T16] do_raw_spin_lock+0x200/0x2a0
[ 51.118015][ T16] ? rwlock_bug.part.0+0x90/0x90
[ 51.122952][ T16] ? finish_task_switch.isra.0+0x319/0xb80
[ 51.128766][ T16] _raw_spin_lock_irqsave+0x41/0x50
[ 51.133970][ T16] ? bpf_trace_printk+0xcf/0x170
[ 51.138921][ T16] bpf_trace_printk+0xcf/0x170
[ 51.143686][ T16] ? trace_bpf_trace_printk+0x220/0x220
[ 51.149248][ T16] ? __rb_reserve_next+0x71d/0x16c0
[ 51.154453][ T16] bpf_prog_0605f9f479290f07+0x2f/0x33
[ 51.159922][ T16] bpf_trace_run2+0x110/0x340
[ 51.164600][ T16] ? __bpf_trace_bpf_trace_printk+0xc0/0xc0
[ 51.170758][ T16] __bpf_trace_contention_begin+0xb5/0xf0
[ 51.176502][ T16] ? __bpf_trace_lock+0xe0/0xe0
[ 51.181359][ T16] ? rcu_read_lock_sched_held+0xd/0x70
[ 51.186820][ T16] ? rcu_read_lock_sched_held+0xd/0x70
[ 51.192283][ T16] ? rcu_read_lock_sched_held+0xd/0x70
[ 51.197746][ T16] trace_contention_begin.constprop.0+0xda/0x1b0
[ 51.204106][ T16] __pv_queued_spin_lock_slowpath+0x103/0xb50
[ 51.210198][ T16] ? trace_contention_end.constprop.0+0x1b0/0x1b0
[ 51.216625][ T16] ? rcu_read_lock_sched_held+0xd/0x70
[ 51.222093][ T16] ? lock_acquire+0x480/0x570
[ 51.226778][ T16] do_raw_spin_lock+0x200/0x2a0
[ 51.231631][ T16] ? rwlock_bug.part.0+0x90/0x90
[ 51.236582][ T16] _raw_spin_lock_irqsave+0x41/0x50
[ 51.241781][ T16] ? bpf_trace_printk+0xcf/0x170
[ 51.246716][ T16] bpf_trace_printk+0xcf/0x170
[ 51.251483][ T16] ? trace_bpf_trace_printk+0x220/0x220
[ 51.257043][ T16] ? preempt_schedule_thunk+0x16/0x18
[ 51.262420][ T16] bpf_prog_0605f9f479290f07+0x2f/0x33
[ 51.267872][ T16] bpf_trace_run2+0x110/0x340
[ 51.272548][ T16] ? __bpf_trace_bpf_trace_printk+0xc0/0xc0
[ 51.278441][ T16] ? desc_read+0x380/0x380
[ 51.282859][ T16] ? serial8250_console_write+0x93c/0xc30
[ 51.288582][ T16] __bpf_trace_contention_begin+0xb5/0xf0
[ 51.294305][ T16] ? __bpf_trace_lock+0xe0/0xe0
[ 51.299160][ T16] ? lock_release+0x560/0x780
[ 51.303840][ T16] trace_contention_begin+0xc0/0x150
[ 51.309128][ T16] __mutex_lock+0x13c/0x1350
[ 51.313724][ T16] ? printk_kthread_func.cold+0x57b/0x73d
[ 51.319450][ T16] ? printk_kthread_func.cold+0x57b/0x73d
[ 51.325175][ T16] ? mutex_lock_io_nested+0x1190/0x1190
[ 51.330726][ T16] ? prb_read_valid+0x75/0xa0
[ 51.335400][ T16] ? prb_final_commit+0xa0/0xa0
[ 51.340254][ T16] printk_kthread_func.cold+0x57b/0x73d
[ 51.345804][ T16] ? register_console+0x970/0x970
[ 51.350861][ T16] ? _raw_spin_unlock_irqrestore+0x50/0x70
[ 51.356689][ T16] ? prepare_to_wait_exclusive+0x2b0/0x2b0
[ 51.362503][ T16] ? __kthread_parkme+0x15f/0x220
[ 51.367539][ T16] ? register_console+0x970/0x970
[ 51.372561][ T16] kthread+0x2e9/0x3a0
[ 51.376628][ T16] ? kthread_complete_and_exit+0x40/0x40
[ 51.382264][ T16] ret_from_fork+0x1f/0x30
[ 51.386693][ T16] </TASK>
[ 51.389965][ T16] Kernel Offset: disabled
[ 51.394290][ T16] Rebooting in 86400 seconds..