[ 82.122724][ T1563] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.1.183' (ED25519) to the list of known hosts. 2024/08/07 03:25:06 ignoring optional flag "sandboxArg"="0" 2024/08/07 03:25:06 parsed 1 programs 2024/08/07 03:25:08 executed programs: 0 [ 85.839993][ T5521] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 85.890139][ T5232] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 85.898401][ T5232] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 85.906416][ T5232] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 85.915352][ T5232] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 85.923900][ T5232] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 85.931302][ T5232] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 86.047898][ T5528] chnl_net:caif_netlink_parms(): no params data found [ 86.103931][ T5528] bridge0: port 1(bridge_slave_0) entered blocking state [ 86.111057][ T5528] bridge0: port 1(bridge_slave_0) entered disabled state [ 86.118489][ T5528] bridge_slave_0: entered allmulticast mode [ 86.125747][ T5528] bridge_slave_0: entered promiscuous mode [ 86.134371][ T5528] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.142243][ T5528] bridge0: port 2(bridge_slave_1) entered disabled state [ 86.149665][ T5528] bridge_slave_1: entered allmulticast mode [ 86.159272][ T5528] bridge_slave_1: entered promiscuous mode [ 86.183614][ T5528] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 86.195348][ T5528] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 86.224314][ T5528] team0: Port device team_slave_0 added [ 86.232189][ T5528] team0: Port device team_slave_1 added [ 86.255287][ T5528] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 86.262837][ T5528] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.289359][ T5528] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 86.303701][ T5528] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 86.311032][ T5528] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.338491][ T5528] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 86.373487][ T5528] hsr_slave_0: entered promiscuous mode [ 86.379898][ T5528] hsr_slave_1: entered promiscuous mode [ 87.000771][ T5528] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 87.020399][ T5528] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 87.033530][ T5528] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 87.045608][ T5528] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 87.075355][ T5528] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.082655][ T5528] bridge0: port 2(bridge_slave_1) entered forwarding state [ 87.090191][ T5528] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.097435][ T5528] bridge0: port 1(bridge_slave_0) entered forwarding state [ 87.117146][ T5239] bridge0: port 1(bridge_slave_0) entered disabled state [ 87.125775][ T5239] bridge0: port 2(bridge_slave_1) entered disabled state [ 87.214589][ T5528] 8021q: adding VLAN 0 to HW filter on device bond0 [ 87.250793][ T5528] 8021q: adding VLAN 0 to HW filter on device team0 [ 87.269271][ T52] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.276634][ T52] bridge0: port 1(bridge_slave_0) entered forwarding state [ 87.307582][ T52] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.314987][ T52] bridge0: port 2(bridge_slave_1) entered forwarding state [ 87.538883][ T5528] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 87.597634][ T5528] veth0_vlan: entered promiscuous mode [ 87.617763][ T5528] veth1_vlan: entered promiscuous mode [ 87.657851][ T5528] veth0_macvtap: entered promiscuous mode [ 87.671396][ T5528] veth1_macvtap: entered promiscuous mode [ 87.698188][ T5528] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 87.719173][ T5528] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 87.738438][ T5528] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.751698][ T5528] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.760533][ T5528] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.772567][ T5528] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.875085][ T1301] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 87.890153][ T1301] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 87.940204][ T4114] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 87.950911][ T4114] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 87.972691][ T5232] Bluetooth: hci0: command tx timeout [ 88.023428][ T5600] input: syz1 as /devices/virtual/input/input5 [ 88.060983][ T5600] [ 88.063357][ T5600] ====================================================== [ 88.070380][ T5600] WARNING: possible circular locking dependency detected [ 88.077608][ T5600] 6.11.0-rc2-syzkaller-gd4560686726f #0 Not tainted [ 88.084200][ T5600] ------------------------------------------------------ [ 88.091203][ T5600] syz-executor.0/5600 is trying to acquire lock: [ 88.097823][ T5600] ffff88807dec5870 (&newdev->mutex){+.+.}-{3:3}, at: uinput_request_submit+0x19c/0x740 [ 88.107673][ T5600] [ 88.107673][ T5600] but task is already holding lock: [ 88.115121][ T5600] ffff88807dec28b0 (&ff->mutex){+.+.}-{3:3}, at: input_ff_upload+0x3e4/0xb00 [ 88.123901][ T5600] [ 88.123901][ T5600] which lock already depends on the new lock. [ 88.123901][ T5600] [ 88.134290][ T5600] [ 88.134290][ T5600] the existing dependency chain (in reverse order) is: [ 88.143396][ T5600] [ 88.143396][ T5600] -> #3 (&ff->mutex){+.+.}-{3:3}: [ 88.150607][ T5600] lock_acquire+0x1ed/0x550 [ 88.155830][ T5600] __mutex_lock+0x136/0xd70 [ 88.160968][ T5600] input_ff_flush+0x5e/0x140 [ 88.166123][ T5600] input_flush_device+0x9c/0xc0 [ 88.171570][ T5600] evdev_release+0xf9/0x7d0 [ 88.176616][ T5600] __fput+0x24a/0x8a0 [ 88.181115][ T5600] __x64_sys_close+0x7f/0x110 [ 88.186302][ T5600] do_syscall_64+0xf3/0x230 [ 88.191432][ T5600] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 88.197833][ T5600] [ 88.197833][ T5600] -> #2 (&dev->mutex#2){+.+.}-{3:3}: [ 88.205402][ T5600] lock_acquire+0x1ed/0x550 [ 88.210540][ T5600] __mutex_lock+0x136/0xd70 [ 88.215862][ T5600] input_register_handle+0x6d/0x3b0 [ 88.221853][ T5600] kbd_connect+0xbf/0x130 [ 88.226911][ T5600] input_register_device+0xd3b/0x1110 [ 88.232928][ T5600] acpi_button_add+0x6c6/0xb90 [ 88.238405][ T5600] acpi_device_probe+0xa5/0x2b0 [ 88.243885][ T5600] really_probe+0x2b8/0xad0 [ 88.249195][ T5600] __driver_probe_device+0x1a2/0x390 [ 88.255186][ T5600] driver_probe_device+0x50/0x430 [ 88.260824][ T5600] __driver_attach+0x45f/0x710 [ 88.266123][ T5600] bus_for_each_dev+0x239/0x2b0 [ 88.271500][ T5600] bus_add_driver+0x346/0x670 [ 88.276713][ T5600] driver_register+0x23a/0x320 [ 88.282003][ T5600] do_one_initcall+0x248/0x880 [ 88.287282][ T5600] do_initcall_level+0x157/0x210 [ 88.292744][ T5600] do_initcalls+0x3f/0x80 [ 88.297667][ T5600] kernel_init_freeable+0x435/0x5d0 [ 88.303395][ T5600] kernel_init+0x1d/0x2b0 [ 88.308434][ T5600] ret_from_fork+0x4b/0x80 [ 88.313402][ T5600] ret_from_fork_asm+0x1a/0x30 [ 88.318713][ T5600] [ 88.318713][ T5600] -> #1 (input_mutex){+.+.}-{3:3}: [ 88.326023][ T5600] lock_acquire+0x1ed/0x550 [ 88.331306][ T5600] __mutex_lock+0x136/0xd70 [ 88.336493][ T5600] input_register_device+0xaee/0x1110 [ 88.342459][ T5600] uinput_create_device+0x40e/0x630 [ 88.348187][ T5600] uinput_ioctl_handler+0x48b/0x1770 [ 88.354401][ T5600] __se_sys_ioctl+0xfc/0x170 [ 88.359778][ T5600] do_syscall_64+0xf3/0x230 [ 88.364896][ T5600] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 88.371695][ T5600] [ 88.371695][ T5600] -> #0 (&newdev->mutex){+.+.}-{3:3}: [ 88.379432][ T5600] validate_chain+0x18e0/0x5900 [ 88.385106][ T5600] __lock_acquire+0x137a/0x2040 [ 88.390510][ T5600] lock_acquire+0x1ed/0x550 [ 88.395736][ T5600] __mutex_lock+0x136/0xd70 [ 88.400859][ T5600] uinput_request_submit+0x19c/0x740 [ 88.406682][ T5600] uinput_dev_upload_effect+0x199/0x240 [ 88.413031][ T5600] input_ff_upload+0x5df/0xb00 [ 88.418397][ T5600] evdev_ioctl_handler+0x17d0/0x21b0 [ 88.424943][ T5600] __se_sys_ioctl+0xfc/0x170 [ 88.430518][ T5600] do_syscall_64+0xf3/0x230 [ 88.435926][ T5600] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 88.442372][ T5600] [ 88.442372][ T5600] other info that might help us debug this: [ 88.442372][ T5600] [ 88.452983][ T5600] Chain exists of: [ 88.452983][ T5600] &newdev->mutex --> &dev->mutex#2 --> &ff->mutex [ 88.452983][ T5600] [ 88.465519][ T5600] Possible unsafe locking scenario: [ 88.465519][ T5600] [ 88.473018][ T5600] CPU0 CPU1 [ 88.478671][ T5600] ---- ---- [ 88.484144][ T5600] lock(&ff->mutex); [ 88.488299][ T5600] lock(&dev->mutex#2); [ 88.495087][ T5600] lock(&ff->mutex); [ 88.501587][ T5600] lock(&newdev->mutex); [ 88.506333][ T5600] [ 88.506333][ T5600] *** DEADLOCK *** [ 88.506333][ T5600] [ 88.515257][ T5600] 2 locks held by syz-executor.0/5600: [ 88.520801][ T5600] #0: ffff88802c73d110 (&evdev->mutex){+.+.}-{3:3}, at: evdev_ioctl_handler+0x125/0x21b0 [ 88.530850][ T5600] #1: ffff88807dec28b0 (&ff->mutex){+.+.}-{3:3}, at: input_ff_upload+0x3e4/0xb00 [ 88.540346][ T5600] [ 88.540346][ T5600] stack backtrace: [ 88.546317][ T5600] CPU: 0 UID: 0 PID: 5600 Comm: syz-executor.0 Not tainted 6.11.0-rc2-syzkaller-gd4560686726f #0 [ 88.556917][ T5600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 88.567022][ T5600] Call Trace: [ 88.570511][ T5600] [ 88.573552][ T5600] dump_stack_lvl+0x241/0x360 [ 88.578322][ T5600] ? __pfx_dump_stack_lvl+0x10/0x10 [ 88.583614][ T5600] ? print_circular_bug+0x130/0x1a0 [ 88.588804][ T5600] check_noncircular+0x36a/0x4a0 [ 88.593742][ T5600] ? __pfx_check_noncircular+0x10/0x10 [ 88.599186][ T5600] ? lockdep_lock+0x123/0x2b0 [ 88.604127][ T5600] ? stack_trace_save+0x118/0x1d0 [ 88.609261][ T5600] ? __pfx_stack_trace_save+0x10/0x10 [ 88.614761][ T5600] ? check_noncircular+0x259/0x4a0 [ 88.619862][ T5600] validate_chain+0x18e0/0x5900 [ 88.624710][ T5600] ? __pfx_check_noncircular+0x10/0x10 [ 88.630254][ T5600] ? __pfx_validate_chain+0x10/0x10 [ 88.635984][ T5600] ? __pfx_validate_chain+0x10/0x10 [ 88.641195][ T5600] ? stack_trace_save+0x118/0x1d0 [ 88.646251][ T5600] ? __pfx_stack_trace_save+0x10/0x10 [ 88.651718][ T5600] ? mark_lock+0x9a/0x350 [ 88.656228][ T5600] __lock_acquire+0x137a/0x2040 [ 88.661095][ T5600] lock_acquire+0x1ed/0x550 [ 88.665599][ T5600] ? uinput_request_submit+0x19c/0x740 [ 88.671066][ T5600] ? __pfx_lock_acquire+0x10/0x10 [ 88.676204][ T5600] ? __pfx___might_resched+0x10/0x10 [ 88.681673][ T5600] __mutex_lock+0x136/0xd70 [ 88.686174][ T5600] ? uinput_request_submit+0x19c/0x740 [ 88.691634][ T5600] ? uinput_request_alloc_id+0x3c5/0x3f0 [ 88.697250][ T5600] ? do_raw_spin_lock+0x14f/0x370 [ 88.702351][ T5600] ? __pfx_lock_release+0x10/0x10 [ 88.707454][ T5600] ? uinput_request_submit+0x19c/0x740 [ 88.713023][ T5600] ? __pfx___mutex_lock+0x10/0x10 [ 88.718178][ T5600] ? _raw_spin_unlock+0x28/0x50 [ 88.723223][ T5600] ? uinput_request_alloc_id+0x3c5/0x3f0 [ 88.728894][ T5600] uinput_request_submit+0x19c/0x740 [ 88.734481][ T5600] ? __pfx_uinput_request_submit+0x10/0x10 [ 88.740404][ T5600] ? __pfx___mutex_trylock_common+0x10/0x10 [ 88.746567][ T5600] ? rcu_is_watching+0x15/0xb0 [ 88.751336][ T5600] uinput_dev_upload_effect+0x199/0x240 [ 88.757060][ T5600] ? __pfx_uinput_dev_upload_effect+0x10/0x10 [ 88.763319][ T5600] input_ff_upload+0x5df/0xb00 [ 88.768180][ T5600] evdev_ioctl_handler+0x17d0/0x21b0 [ 88.773460][ T5600] ? tomoyo_path_number_perm+0x208/0x880 [ 88.779077][ T5600] ? __pfx_evdev_ioctl_handler+0x10/0x10 [ 88.784711][ T5600] ? bpf_lsm_file_ioctl+0x9/0x10 [ 88.789639][ T5600] ? security_file_ioctl+0x87/0xb0 [ 88.794735][ T5600] ? __pfx_evdev_ioctl+0x10/0x10 [ 88.799657][ T5600] __se_sys_ioctl+0xfc/0x170 [ 88.804237][ T5600] do_syscall_64+0xf3/0x230 [ 88.808930][ T5600] ? clear_bhb_loop+0x35/0x90 [ 88.813708][ T5600] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 88.819623][ T5600] RIP: 0033:0x7f997e47dca9 [ 88.824086][ T5600] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 88.843688][ T5600] RSP: 002b:00007f997f15e0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 88.852265][ T5600] RAX: ffffffffffffffda RBX: 00007f997e5abf80 RCX: 00007f997e47dca9 [ 88.860395][ T5600] RDX: 0000000020000300 RSI: 0000000040304580 RDI: 0000000000000004 [ 88.868349][ T5600] RBP: 00007f997e4c947e R08: 0000000000000000 R09: 0000000000000000 [ 88.876477][ T5600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 88.884601][ T5600] R13: 000000000000000b R14: 00007f997e5abf80 R15: 00007ffe03b90538 [ 88.892649][ T5600] [ 89.055140][ T5613] input: syz1 as /devices/virtual/input/input6 [ 89.890971][ T5550] udevd[5550]: setting owner of /dev/input/event4 to uid=0, gid=104 failed: No such file or directory [ 89.944064][ T5683] input: syz1 as /devices/virtual/input/input7 [ 90.042247][ T5232] Bluetooth: hci0: command tx timeout [ 90.806139][ T5752] input: syz1 as /devices/virtual/input/input8 2024/08/07 03:25:14 executed programs: 4 [ 91.673178][ T5820] input: syz1 as /devices/virtual/input/input9 [ 92.121473][ T5232] Bluetooth: hci0: command tx timeout [ 92.542755][ T5891] input: syz1 as /devices/virtual/input/input10 [ 93.365453][ T5550] udevd[5550]: setting owner of /dev/input/event4 to uid=0, gid=104 failed: No such file or directory [ 93.394542][ T5895] input: syz1 as /devices/virtual/input/input11 [ 94.201505][ T5232] Bluetooth: hci0: command tx timeout [ 94.248385][ T5897] input: syz1 as /devices/virtual/input/input12 [ 95.103779][ T5899] input: syz1 as /devices/virtual/input/input13 [ 95.956012][ T5901] input: syz1 as /devices/virtual/input/input14 2024/08/07 03:25:19 executed programs: 10 [ 96.813602][ T5903] input: syz1 as /devices/virtual/input/input15 [ 97.664097][ T5905] input: syz1 as /devices/virtual/input/input16