Warning: Permanently added '10.128.0.23' (ED25519) to the list of known hosts. syzkaller login: [ 81.895964][ T787] cfg80211: failed to load regulatory.db 2025/07/15 17:06:12 ignoring optional flag "sandboxArg"="0" 2025/07/15 17:06:13 parsed 1 programs [ 84.912375][ T5800] cgroup: Unknown subsys name 'net' [ 85.060306][ T5800] cgroup: Unknown subsys name 'rlimit' [ 86.403010][ T5800] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 89.795751][ T5845] chnl_net:caif_netlink_parms(): no params data found [ 89.853093][ T5845] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.860914][ T5845] bridge0: port 1(bridge_slave_0) entered disabled state [ 89.868169][ T5845] bridge_slave_0: entered allmulticast mode [ 89.875208][ T5845] bridge_slave_0: entered promiscuous mode [ 89.883866][ T5845] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.891189][ T5845] bridge0: port 2(bridge_slave_1) entered disabled state [ 89.898485][ T5845] bridge_slave_1: entered allmulticast mode [ 89.906395][ T5845] bridge_slave_1: entered promiscuous mode [ 89.943071][ T5845] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 89.956041][ T5845] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 89.998324][ T5845] team0: Port device team_slave_0 added [ 90.005774][ T5845] team0: Port device team_slave_1 added [ 90.047053][ T5845] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 90.054483][ T5845] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 90.080702][ T5845] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 90.093352][ T5845] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 90.100846][ T5845] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 90.126802][ T5845] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 90.178225][ T5845] hsr_slave_0: entered promiscuous mode [ 90.185389][ T5845] hsr_slave_1: entered promiscuous mode [ 90.341372][ T5845] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 90.351608][ T5845] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 90.362750][ T5845] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 90.374821][ T5845] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 90.416651][ T5845] bridge0: port 2(bridge_slave_1) entered blocking state [ 90.424514][ T5845] bridge0: port 2(bridge_slave_1) entered forwarding state [ 90.432436][ T5845] bridge0: port 1(bridge_slave_0) entered blocking state [ 90.439667][ T5845] bridge0: port 1(bridge_slave_0) entered forwarding state [ 90.504420][ T5845] 8021q: adding VLAN 0 to HW filter on device bond0 [ 90.522948][ T1093] bridge0: port 1(bridge_slave_0) entered disabled state [ 90.533429][ T1093] bridge0: port 2(bridge_slave_1) entered disabled state [ 90.569132][ T5845] 8021q: adding VLAN 0 to HW filter on device team0 [ 90.583414][ T1093] bridge0: port 1(bridge_slave_0) entered blocking state [ 90.590626][ T1093] bridge0: port 1(bridge_slave_0) entered forwarding state [ 90.603554][ T1093] bridge0: port 2(bridge_slave_1) entered blocking state [ 90.610723][ T1093] bridge0: port 2(bridge_slave_1) entered forwarding state [ 90.671241][ T5845] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 90.830897][ T5845] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 90.873749][ T5845] veth0_vlan: entered promiscuous mode [ 90.884910][ T5845] veth1_vlan: entered promiscuous mode [ 90.911225][ T5845] veth0_macvtap: entered promiscuous mode [ 90.921165][ T5845] veth1_macvtap: entered promiscuous mode [ 90.938301][ T5845] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.952618][ T5845] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.965348][ T5845] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.974496][ T5845] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.983184][ T5845] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.992419][ T5845] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.137844][ T1093] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 91.583115][ T5878] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 91.594953][ T5878] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 91.602889][ T5878] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 91.612665][ T5878] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 91.621303][ T5878] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 91.629888][ T5878] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 91.909029][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.920733][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.947706][ T48] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.956395][ T48] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 2025/07/15 17:06:22 executed programs: 0 [ 92.610711][ T5104] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 92.619679][ T5104] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 92.627976][ T5104] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 92.636327][ T5104] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 92.644812][ T5104] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 92.652305][ T5104] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 92.785984][ T5898] chnl_net:caif_netlink_parms(): no params data found [ 92.840902][ T5898] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.848438][ T5898] bridge0: port 1(bridge_slave_0) entered disabled state [ 92.857242][ T5898] bridge_slave_0: entered allmulticast mode [ 92.864817][ T5898] bridge_slave_0: entered promiscuous mode [ 92.872423][ T5898] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.879831][ T5898] bridge0: port 2(bridge_slave_1) entered disabled state [ 92.887252][ T5898] bridge_slave_1: entered allmulticast mode [ 92.894966][ T5898] bridge_slave_1: entered promiscuous mode [ 92.920391][ T5898] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 92.931667][ T5898] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 92.966713][ T5898] team0: Port device team_slave_0 added [ 92.974302][ T5898] team0: Port device team_slave_1 added [ 92.996340][ T5898] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 93.003313][ T5898] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 93.029831][ T5898] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 93.042555][ T5898] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 93.050364][ T5898] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 93.076966][ T5898] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 93.115469][ T5898] hsr_slave_0: entered promiscuous mode [ 93.121835][ T5898] hsr_slave_1: entered promiscuous mode [ 93.128505][ T5898] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 93.138045][ T5898] Cannot create hsr debugfs directory [ 93.776713][ T1093] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 94.694454][ T5104] Bluetooth: hci0: command tx timeout [ 96.053837][ T1093] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 96.117068][ T1093] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 96.774656][ T5104] Bluetooth: hci0: command tx timeout [ 96.999456][ T5898] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 97.010114][ T5898] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 97.025810][ T1093] hsr_slave_0: left promiscuous mode [ 97.031915][ T1093] hsr_slave_1: left promiscuous mode [ 97.038032][ T1093] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 97.045599][ T1093] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 97.055303][ T1093] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 97.062738][ T1093] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 97.071349][ T1093] bridge_slave_1: left allmulticast mode [ 97.077098][ T1093] bridge_slave_1: left promiscuous mode [ 97.083630][ T1093] bridge0: port 2(bridge_slave_1) entered disabled state [ 97.096166][ T1093] bridge_slave_0: left allmulticast mode [ 97.101871][ T1093] bridge_slave_0: left promiscuous mode [ 97.107966][ T1093] bridge0: port 1(bridge_slave_0) entered disabled state [ 97.127735][ T1093] veth1_macvtap: left promiscuous mode [ 97.133468][ T1093] veth0_macvtap: left promiscuous mode [ 97.139710][ T1093] veth1_vlan: left promiscuous mode [ 97.145289][ T1093] veth0_vlan: left promiscuous mode [ 97.483989][ T1093] team0 (unregistering): Port device team_slave_1 removed [ 97.515373][ T1093] team0 (unregistering): Port device team_slave_0 removed [ 97.543578][ T1093] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 97.575909][ T1093] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 97.853317][ T1093] bond0 (unregistering): Released all slaves [ 97.908236][ T5898] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 97.917615][ T5898] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 98.016567][ T5898] 8021q: adding VLAN 0 to HW filter on device bond0 [ 98.050193][ T5898] 8021q: adding VLAN 0 to HW filter on device team0 [ 98.062059][ T48] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.069250][ T48] bridge0: port 1(bridge_slave_0) entered forwarding state [ 98.086090][ T48] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.093242][ T48] bridge0: port 2(bridge_slave_1) entered forwarding state [ 98.316900][ T5898] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 98.377319][ T5898] veth0_vlan: entered promiscuous mode [ 98.389269][ T5898] veth1_vlan: entered promiscuous mode [ 98.414496][ T5898] veth0_macvtap: entered promiscuous mode [ 98.423252][ T5898] veth1_macvtap: entered promiscuous mode [ 98.440851][ T5898] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 98.454994][ T5898] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 98.466826][ T5898] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.476675][ T5898] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.486007][ T5898] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.494937][ T5898] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.571249][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.580420][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.629748][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.637697][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.705925][ T5946] syz.0.16[5946]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 98.853785][ T5104] Bluetooth: hci0: command tx timeout [ 98.951225][ T5946] loop0: detected capacity change from 0 to 32768 [ 98.961118][ T5946] ======================================================= [ 98.961118][ T5946] WARNING: The mand mount option has been deprecated and [ 98.961118][ T5946] and is ignored by this kernel. Remove the mand [ 98.961118][ T5946] option from the mount to silence this warning. [ 98.961118][ T5946] ======================================================= [ 99.051377][ T5946] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 99.203310][ T5898] [ 99.205699][ T5898] ====================================================== [ 99.212741][ T5898] WARNING: possible circular locking dependency detected [ 99.219786][ T5898] 6.6.98-syzkaller #0 Not tainted [ 99.224814][ T5898] ------------------------------------------------------ [ 99.231838][ T5898] syz-executor/5898 is trying to acquire lock: [ 99.238001][ T5898] ffff88805e4d5118 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5){+.+.}-{3:3}, at: __ocfs2_flush_truncate_log+0x351/0x10b0 [ 99.251184][ T5898] [ 99.251184][ T5898] but task is already holding lock: [ 99.258556][ T5898] ffff88805e4db498 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#6){+.+.}-{3:3}, at: ocfs2_flush_truncate_log+0x47/0x60 [ 99.271292][ T5898] [ 99.271292][ T5898] which lock already depends on the new lock. [ 99.271292][ T5898] [ 99.281704][ T5898] [ 99.281704][ T5898] the existing dependency chain (in reverse order) is: [ 99.290726][ T5898] [ 99.290726][ T5898] -> #1 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#6){+.+.}-{3:3}: [ 99.301276][ T5898] down_write+0x97/0x1f0 [ 99.306052][ T5898] __ocfs2_move_extents_range+0x1a65/0x3360 [ 99.312476][ T5898] ocfs2_move_extents+0x379/0x940 [ 99.318033][ T5898] ocfs2_ioctl_move_extents+0x4e1/0x6c0 [ 99.324121][ T5898] ocfs2_ioctl+0x195/0x750 [ 99.329065][ T5898] __se_sys_ioctl+0xfd/0x170 [ 99.334184][ T5898] do_syscall_64+0x55/0xb0 [ 99.339142][ T5898] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 99.345576][ T5898] [ 99.345576][ T5898] -> #0 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5){+.+.}-{3:3}: [ 99.356109][ T5898] __lock_acquire+0x2ddb/0x7c80 [ 99.361490][ T5898] lock_acquire+0x197/0x410 [ 99.366523][ T5898] down_write+0x97/0x1f0 [ 99.371291][ T5898] __ocfs2_flush_truncate_log+0x351/0x10b0 [ 99.377628][ T5898] ocfs2_flush_truncate_log+0x4f/0x60 [ 99.383531][ T5898] ocfs2_sync_fs+0x117/0x310 [ 99.388661][ T5898] sync_filesystem+0x1c2/0x220 [ 99.393953][ T5898] generic_shutdown_super+0x6f/0x2b0 [ 99.399763][ T5898] kill_block_super+0x44/0x90 [ 99.404965][ T5898] deactivate_locked_super+0x97/0x100 [ 99.410873][ T5898] cleanup_mnt+0x429/0x4c0 [ 99.415823][ T5898] task_work_run+0x1ce/0x250 [ 99.420942][ T5898] exit_to_user_mode_loop+0xe6/0x110 [ 99.426761][ T5898] exit_to_user_mode_prepare+0xb1/0x140 [ 99.432835][ T5898] syscall_exit_to_user_mode+0x1a/0x50 [ 99.438825][ T5898] do_syscall_64+0x61/0xb0 [ 99.443770][ T5898] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 99.450191][ T5898] [ 99.450191][ T5898] other info that might help us debug this: [ 99.450191][ T5898] [ 99.460421][ T5898] Possible unsafe locking scenario: [ 99.460421][ T5898] [ 99.467875][ T5898] CPU0 CPU1 [ 99.473237][ T5898] ---- ---- [ 99.478599][ T5898] lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#6); [ 99.485984][ T5898] lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5); [ 99.495803][ T5898] lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#6); [ 99.505713][ T5898] lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5); [ 99.513016][ T5898] [ 99.513016][ T5898] *** DEADLOCK *** [ 99.513016][ T5898] [ 99.521161][ T5898] 2 locks held by syz-executor/5898: [ 99.526454][ T5898] #0: ffff88802d0cc0e0 (&type->s_umount_key#56){+.+.}-{3:3}, at: deactivate_super+0xa4/0xe0 [ 99.536672][ T5898] #1: ffff88805e4db498 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#6){+.+.}-{3:3}, at: ocfs2_flush_truncate_log+0x47/0x60 [ 99.549839][ T5898] [ 99.549839][ T5898] stack backtrace: [ 99.555749][ T5898] CPU: 0 PID: 5898 Comm: syz-executor Not tainted 6.6.98-syzkaller #0 [ 99.563953][ T5898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 99.574034][ T5898] Call Trace: [ 99.577320][ T5898] [ 99.580267][ T5898] dump_stack_lvl+0x16c/0x230 [ 99.584959][ T5898] ? load_image+0x3b0/0x3b0 [ 99.589468][ T5898] ? show_regs_print_info+0x20/0x20 [ 99.595152][ T5898] ? print_circular_bug+0x12b/0x1a0 [ 99.600360][ T5898] check_noncircular+0x2bd/0x3c0 [ 99.605313][ T5898] ? print_deadlock_bug+0x5d0/0x5d0 [ 99.610694][ T5898] ? lockdep_lock+0xe0/0x220 [ 99.615297][ T5898] ? _find_first_zero_bit+0xd3/0x100 [ 99.620595][ T5898] __lock_acquire+0x2ddb/0x7c80 [ 99.625467][ T5898] ? ocfs2_get_system_file_inode+0x1e3/0x7b0 [ 99.631462][ T5898] ? __lock_acquire+0x7c80/0x7c80 [ 99.636498][ T5898] ? verify_lock_unused+0x140/0x140 [ 99.641708][ T5898] ? __mutex_unlock_slowpath+0x1a2/0x6a0 [ 99.647353][ T5898] ? do_raw_spin_lock+0x121/0x2c0 [ 99.652393][ T5898] ? mutex_unlock+0x10/0x10 [ 99.656908][ T5898] lock_acquire+0x197/0x410 [ 99.661420][ T5898] ? __ocfs2_flush_truncate_log+0x351/0x10b0 [ 99.667431][ T5898] ? ocfs2_get_system_file_inode+0x1f1/0x7b0 [ 99.673443][ T5898] ? __might_sleep+0xe0/0xe0 [ 99.678045][ T5898] ? read_lock_is_recursive+0x20/0x20 [ 99.683427][ T5898] ? ocfs2_fast_symlink_read_folio+0x530/0x530 [ 99.689600][ T5898] ? __wake_up+0x11f/0x190 [ 99.694029][ T5898] down_write+0x97/0x1f0 [ 99.698436][ T5898] ? __ocfs2_flush_truncate_log+0x351/0x10b0 [ 99.704432][