Warning: Permanently added '10.128.0.46' (ECDSA) to the list of known hosts. 2021/04/20 20:55:26 parsed 1 programs 2021/04/20 20:55:27 executed programs: 0 [ 410.190439][ T8439] chnl_net:caif_netlink_parms(): no params data found [ 410.244619][ T8439] bridge0: port 1(bridge_slave_0) entered blocking state [ 410.252165][ T8439] bridge0: port 1(bridge_slave_0) entered disabled state [ 410.260977][ T8439] device bridge_slave_0 entered promiscuous mode [ 410.271701][ T8439] bridge0: port 2(bridge_slave_1) entered blocking state [ 410.282552][ T8439] bridge0: port 2(bridge_slave_1) entered disabled state [ 410.292451][ T8439] device bridge_slave_1 entered promiscuous mode [ 410.312918][ T8439] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 410.324817][ T8439] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 410.346990][ T8439] team0: Port device team_slave_0 added [ 410.355004][ T8439] team0: Port device team_slave_1 added [ 410.370744][ T8439] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 410.378595][ T8439] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 410.405248][ T8439] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 410.418158][ T8439] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 410.425607][ T8439] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 410.451807][ T8439] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 410.477960][ T8439] device hsr_slave_0 entered promiscuous mode [ 410.484599][ T8439] device hsr_slave_1 entered promiscuous mode [ 410.580297][ T8439] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 410.590403][ T8439] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 410.601664][ T8439] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 410.611282][ T8439] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 410.633836][ T8439] bridge0: port 2(bridge_slave_1) entered blocking state [ 410.641057][ T8439] bridge0: port 2(bridge_slave_1) entered forwarding state [ 410.649062][ T8439] bridge0: port 1(bridge_slave_0) entered blocking state [ 410.656213][ T8439] bridge0: port 1(bridge_slave_0) entered forwarding state [ 410.696921][ T8439] 8021q: adding VLAN 0 to HW filter on device bond0 [ 410.711383][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 410.722860][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 410.731631][ T8] bridge0: port 2(bridge_slave_1) entered disabled state [ 410.740326][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 410.753489][ T8439] 8021q: adding VLAN 0 to HW filter on device team0 [ 410.765889][ T8661] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 410.774659][ T8661] bridge0: port 1(bridge_slave_0) entered blocking state [ 410.781688][ T8661] bridge0: port 1(bridge_slave_0) entered forwarding state [ 410.795562][ T8651] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 410.804103][ T8651] bridge0: port 2(bridge_slave_1) entered blocking state [ 410.811301][ T8651] bridge0: port 2(bridge_slave_1) entered forwarding state [ 410.831870][ T8661] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 410.840392][ T8661] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 410.855384][ T8661] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 410.867081][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 410.880595][ T8439] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 410.892083][ T8439] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 410.900524][ T8662] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 410.921968][ T8439] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 410.931654][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 410.939652][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 410.958127][ T8661] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 410.976447][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 410.985792][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 410.993490][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 411.003727][ T8439] device veth0_vlan entered promiscuous mode [ 411.016140][ T8439] device veth1_vlan entered promiscuous mode [ 411.038920][ T8439] device veth0_macvtap entered promiscuous mode [ 411.046575][ T8661] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 411.055208][ T8661] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 411.064181][ T8661] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 411.072515][ T8661] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 411.085115][ T8439] device veth1_macvtap entered promiscuous mode [ 411.102747][ T8439] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 411.110247][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 411.124455][ T8439] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 411.132094][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 411.143987][ T8439] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 411.152863][ T8439] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 411.162002][ T8439] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 411.171249][ T8439] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 411.274628][ T234] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 411.282648][ T234] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 411.307737][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 411.324010][ T8543] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 411.331971][ T8543] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 411.345184][ T8662] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 412.034637][ T5] Bluetooth: hci0: command 0x0409 tx timeout 2021/04/20 20:55:32 executed programs: 66 [ 414.114032][ T8664] Bluetooth: hci0: command 0x041b tx timeout [ 416.193734][ T36] Bluetooth: hci0: command 0x040f tx timeout [ 418.273616][ T36] Bluetooth: hci0: command 0x0419 tx timeout 2021/04/20 20:55:37 executed programs: 204 2021/04/20 20:55:42 executed programs: 345 2021/04/20 20:55:47 executed programs: 489 [ 429.503217][T10525] ttyprintk ttyprintk: tty_port_close_start: tty->count = 1 port count = 2 [ 429.513992][ C1] [ 429.514005][ C1] ====================================================== [ 429.514016][ C1] WARNING: possible circular locking dependency detected [ 429.514026][ C1] 5.12.0-rc7-next-20210415-syzkaller #0 Not tainted [ 429.514036][ C1] ------------------------------------------------------ [ 429.514046][ C1] syz-executor.0/10525 is trying to acquire lock: [ 429.514054][ C1] ffffffff8be851c0 (console_owner){....}-{0:0}, at: console_unlock+0x2e6/0xc40 [ 429.514088][ C1] [ 429.514094][ C1] but task is already holding lock: [ 429.514101][ C1] ffffffff90608278 (&port->lock){-.-.}-{2:2}, at: tty_port_close_start.part.0+0x28/0x550 [ 429.514130][ C1] [ 429.514136][ C1] which lock already depends on the new lock. [ 429.514142][ C1] [ 429.514146][ C1] [ 429.514152][ C1] the existing dependency chain (in reverse order) is: [ 429.514160][ C1] [ 429.514164][ C1] -> #2 (&port->lock){-.-.}-{2:2}: [ 429.514190][ C1] _raw_spin_lock_irqsave+0x39/0x50 [ 429.514199][ C1] tty_port_tty_get+0x1f/0x100 [ 429.514206][ C1] tty_port_default_wakeup+0x11/0x40 [ 429.514214][ C1] serial8250_tx_chars+0x487/0xa80 [ 429.514221][ C1] serial8250_handle_irq.part.0+0x328/0x3d0 [ 429.514230][ C1] serial8250_default_handle_irq+0xb2/0x220 [ 429.514239][ C1] serial8250_interrupt+0xfd/0x200 [ 429.514247][ C1] __handle_irq_event_percpu+0x303/0x8f0 [ 429.514255][ C1] handle_irq_event+0x102/0x290 [ 429.514263][ C1] handle_edge_irq+0x25f/0xd00 [ 429.514270][ C1] __common_interrupt+0x9d/0x210 [ 429.514277][ C1] common_interrupt+0x9f/0xd0 [ 429.514285][ C1] asm_common_interrupt+0x1e/0x40 [ 429.514293][ C1] _raw_spin_unlock_irqrestore+0x38/0x70 [ 429.514301][ C1] uart_write+0x30d/0x570 [ 429.514308][ C1] do_output_char+0x5de/0x850 [ 429.514315][ C1] n_tty_write+0x4c3/0xfd0 [ 429.514323][ C1] file_tty_write.constprop.0+0x526/0x910 [ 429.514332][ C1] redirected_tty_write+0xa1/0xc0 [ 429.514340][ C1] do_iter_readv_writev+0x46f/0x740 [ 429.514348][ C1] do_iter_write+0x188/0x670 [ 429.514355][ C1] vfs_writev+0x1aa/0x630 [ 429.514362][ C1] do_writev+0x139/0x300 [ 429.514369][ C1] do_syscall_64+0x3a/0xb0 [ 429.514377][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 429.514383][ C1] [ 429.514388][ C1] -> #1 (&port_lock_key){-.-.}-{2:2}: [ 429.514414][ C1] _raw_spin_lock_irqsave+0x39/0x50 [ 429.514422][ C1] serial8250_console_write+0x8b2/0xae0 [ 429.514430][ C1] console_unlock+0x859/0xc40 [ 429.514438][ C1] vprintk_emit+0x1ca/0x560 [ 429.514445][ C1] vprintk+0x8d/0x260 [ 429.514451][ C1] printk+0xba/0xed [ 429.514458][ C1] register_console+0x55f/0x780 [ 429.514466][ C1] univ8250_console_init+0x3a/0x46 [ 429.514473][ C1] console_init+0x3c7/0x596 [ 429.514480][ C1] start_kernel+0x30b/0x49b [ 429.514488][ C1] secondary_startup_64_no_verify+0xb0/0xbb [ 429.514496][ C1] [ 429.514500][ C1] -> #0 (console_owner){....}-{0:0}: [ 429.514526][ C1] __lock_acquire+0x2a17/0x5230 [ 429.514533][ C1] lock_acquire+0x1ab/0x740 [ 429.514540][ C1] console_unlock+0x359/0xc40 [ 429.514548][ C1] vprintk_emit+0x1ca/0x560 [ 429.514554][ C1] vprintk+0x8d/0x260 [ 429.514561][ C1] printk+0xba/0xed [ 429.514568][ C1] tty_port_close_start.part.0+0x503/0x550 [ 429.514576][ C1] tty_port_close+0x46/0x170 [ 429.514583][ C1] tty_release+0x45e/0x1210 [ 429.514589][ C1] __fput+0x288/0x920 [ 429.514595][ C1] task_work_run+0xdd/0x1a0 [ 429.514603][ C1] exit_to_user_mode_prepare+0x272/0x280 [ 429.514610][ C1] syscall_exit_to_user_mode+0x19/0x60 [ 429.514617][ C1] do_syscall_64+0x47/0xb0 [ 429.514625][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 429.514631][ C1] [ 429.514636][ C1] other info that might help us debug this: [ 429.514643][ C1] [ 429.514647][ C1] Chain exists of: [ 429.514652][ C1] console_owner --> &port_lock_key --> &port->lock [ 429.514686][ C1] [ 429.514690][ C1] Possible unsafe locking scenario: [ 429.514697][ C1] [ 429.514701][ C1] CPU0 CPU1 [ 429.514708][ C1] ---- ---- [ 429.514721][ C1] lock(&port->lock); [ 429.514737][ C1] lock(&port_lock_key); [ 429.514754][ C1] lock(&port->lock); [ 429.514771][ C1] lock(console_owner); [ 429.514785][ C1] [ 429.514789][ C1] *** DEADLOCK *** [ 429.514794][ C1] [ 429.514800][ C1] 3 locks held by syz-executor.0/10525: [ 429.514806][ C1] #0: ffff888019ba81c0 (&tty->legacy_mutex){+.+.}-{3:3}, at: tty_lock+0xbd/0x120 [ 429.514840][ C1] #1: ffffffff90608278 (&port->lock){-.-.}-{2:2}, at: tty_port_close_start.part.0+0x28/0x550 [ 429.514875][ C1] #2: ffffffff8bf655a0 (console_lock){+.+.}-{0:0}, at: vprintk+0x8d/0x260 [ 429.514908][ C1] [ 429.514912][ C1] stack backtrace: [ 429.514920][ C1] CPU: 1 PID: 10525 Comm: syz-executor.0 Not tainted 5.12.0-rc7-next-20210415-syzkaller #0 [ 429.514933][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 429.514943][ C1] Call Trace: [ 429.514949][ C1] dump_stack+0x141/0x1d7 [ 429.514955][ C1] check_noncircular+0x25f/0x2e0 [ 429.514963][ C1] ? stack_trace_consume_entry+0x160/0x160 [ 429.514970][ C1] ? print_circular_bug+0x1e0/0x1e0 [ 429.514977][ C1] ? memcpy+0x39/0x60 [ 429.514983][ C1] ? lockdep_lock+0xc6/0x200 [ 429.514990][ C1] ? call_rcu_zapped+0xb0/0xb0 [ 429.514997][ C1] __lock_acquire+0x2a17/0x5230 [ 429.515005][ C1] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 429.515013][ C1] lock_acquire+0x1ab/0x740 [ 429.515020][ C1] ? console_unlock+0x2e6/0xc40 [ 429.515027][ C1] ? lock_release+0x720/0x720 [ 429.515033][ C1] ? lock_downgrade+0x6e0/0x6e0 [ 429.515040][ C1] ? do_raw_spin_lock+0x120/0x2b0 [ 429.515048][ C1] ? rwlock_bug.part.0+0x90/0x90 [ 429.515054][ C1] console_unlock+0x359/0xc40 [ 429.515061][ C1] ? console_unlock+0x2e6/0xc40 [ 429.515068][ C1] ? devkmsg_read+0x7d0/0x7d0 [ 429.515075][ C1] ? lock_release+0x720/0x720 [ 429.515082][ C1] ? vprintk+0x8d/0x260 [ 429.515088][ C1] vprintk_emit+0x1ca/0x560 [ 429.515094][ C1] vprintk+0x8d/0x260 [ 429.515100][ C1] printk+0xba/0xed [ 429.515106][ C1] ? record_print_text.cold+0x16/0x16 [ 429.515114][ C1] ? _raw_spin_lock_irqsave+0x4e/0x50 [ 429.515121][ C1] tty_port_close_start.part.0+0x503/0x550 [ 429.515129][ C1] tty_port_close+0x46/0x170 [ 429.515135][ C1] ? tpk_open+0x60/0x60 [ 429.515141][ C1] tty_release+0x45e/0x1210 [ 429.515148][ C1] ? __sanitizer_cov_trace_const_cmp2+0x22/0x80 [ 429.515156][ C1] __fput+0x288/0x920 [ 429.515163][ C1] ? tty_release_struct+0xe0/0xe0 [ 429.515170][ C1] task_work_run+0xdd/0x1a0 [ 429.515177][ C1] exit_to_user_mode_prepare+0x272/0x280 [ 429.515185][ C1] syscall_exit_to_user_mode+0x19/0x60 [ 429.515192][ C1] do_syscall_64+0x47/0xb0 [ 429.515199][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 429.515206][ C1] RIP: 0033:0x41926b [ 429.515217][ C1] Code: 0f 05 48 3d 00 f0 ff ff 77 45 c3 0f 1f 40 00 48 83 ec 18 89 7c 24 0c e8 63 fc ff ff 8b 7c 24 0c 41 89 c0 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 44 89 c7 89 44 24 0c e8 a1 fc ff ff 8b 44 [ 429.515237][ C1] RSP: 002b:00007ffe8d7f9e30 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 429.515253][ C1] RAX: 0000000000000000 RBX: 0000000000000006 RCX: 000000000041926b [ 429.515264][ C1] RDX: 00000000005703a8 RSI: 0000000000000001 RDI: 0000000000000005 [ 429.515274][ C1] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000001b332200e0 [ 429.515285][ C1] R10: 00007ffe8d7f9f20 R11: 0000000000000293 R12: 0000000000068dd8 [ 429.515296][ C1] R13: 00000000000003e8 R14: 000000000056bf60 R15: 0000000000068dd2 2021/04/20 20:55:52 executed programs: 643 [ 438.598040][T11651] ttyprintk ttyprintk: tty_port_close_start: tty->count = 1 port count = 2 2021/04/20 20:55:57 executed programs: 837