Warning: Permanently added '[localhost]:35434' (ED25519) to the list of known hosts. 2024/10/04 11:48:35 ignoring optional flag "sandboxArg"="0" 2024/10/04 11:48:35 ignoring optional flag "type"="qemu" 2024/10/04 11:48:35 parsed 1 programs [ 52.787079][ T39] audit: type=1400 audit(1728042515.963:132): avc: denied { getattr } for pid=5448 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 52.793263][ T39] audit: type=1400 audit(1728042515.963:133): avc: denied { read } for pid=5448 comm="syz-execprog" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 52.798663][ T39] audit: type=1400 audit(1728042515.973:134): avc: denied { open } for pid=5448 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 52.885495][ T39] audit: type=1400 audit(1728042516.063:135): avc: denied { unlink } for pid=5455 comm="syz-executor" name="swap-file" dev="sda1" ino=1931 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 53.702259][ T5455] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k 2024/10/04 11:48:36 executed programs: 0 [ 53.741059][ T5340] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 53.744265][ T5340] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 53.747195][ T5340] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 53.750499][ T5340] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 53.753906][ T5340] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 53.756067][ T5340] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 53.856507][ T5459] chnl_net:caif_netlink_parms(): no params data found [ 53.895717][ T5459] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.898105][ T5459] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.900015][ T5459] bridge_slave_0: entered allmulticast mode [ 53.902213][ T5459] bridge_slave_0: entered promiscuous mode [ 53.905512][ T5459] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.907618][ T5459] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.909578][ T5459] bridge_slave_1: entered allmulticast mode [ 53.911591][ T5459] bridge_slave_1: entered promiscuous mode [ 53.935316][ T5459] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 53.938968][ T5459] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 53.958567][ T5459] team0: Port device team_slave_0 added [ 53.961617][ T5459] team0: Port device team_slave_1 added [ 53.979060][ T5459] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 53.980926][ T5459] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 53.987877][ T5459] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 53.991397][ T5459] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 53.993481][ T5459] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 54.000132][ T5459] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 54.027126][ T5459] hsr_slave_0: entered promiscuous mode [ 54.029054][ T5459] hsr_slave_1: entered promiscuous mode [ 54.465394][ T5459] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 54.470260][ T5459] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 54.482794][ T5459] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 54.488204][ T5459] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 54.503831][ T5459] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.506456][ T5459] bridge0: port 2(bridge_slave_1) entered forwarding state [ 54.509109][ T5459] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.511589][ T5459] bridge0: port 1(bridge_slave_0) entered forwarding state [ 54.546402][ T5459] 8021q: adding VLAN 0 to HW filter on device bond0 [ 54.558084][ T63] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.562172][ T63] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.579520][ T5459] 8021q: adding VLAN 0 to HW filter on device team0 [ 54.587669][ T210] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.590113][ T210] bridge0: port 1(bridge_slave_0) entered forwarding state [ 54.596445][ T1102] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.599044][ T1102] bridge0: port 2(bridge_slave_1) entered forwarding state [ 54.697680][ T5459] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 54.719106][ T5459] veth0_vlan: entered promiscuous mode [ 54.723172][ T5459] veth1_vlan: entered promiscuous mode [ 54.741597][ T5459] veth0_macvtap: entered promiscuous mode [ 54.745640][ T5459] veth1_macvtap: entered promiscuous mode [ 54.752192][ T5459] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 54.760686][ T5459] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 54.765988][ T5459] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.769201][ T5459] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.771703][ T5459] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.774515][ T5459] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.802988][ T1105] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 54.805897][ T1105] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 54.821957][ T210] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 54.825730][ T210] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 54.856066][ T5515] loop0: detected capacity change from 0 to 1024 [ 54.859443][ T5515] ======================================================= [ 54.859443][ T5515] WARNING: The mand mount option has been deprecated and [ 54.859443][ T5515] and is ignored by this kernel. Remove the mand [ 54.859443][ T5515] option from the mount to silence this warning. [ 54.859443][ T5515] ======================================================= [ 54.860668][ T39] audit: type=1400 audit(1728042518.033:136): avc: denied { mounton } for pid=5514 comm="syz-executor.0" path="/syzkaller-testdir2650368502/syzkaller.ZJvJCb/0/bus" dev="sda1" ino=1939 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 54.895739][ T39] audit: type=1400 audit(1728042518.073:137): avc: denied { mount } for pid=5514 comm="syz-executor.0" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1 [ 54.914626][ T39] audit: type=1400 audit(1728042518.093:138): avc: denied { unmount } for pid=5459 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1 [ 54.922946][ T63] [ 54.923831][ T63] ============================================ [ 54.926022][ T63] WARNING: possible recursive locking detected [ 54.928178][ T63] 6.12.0-rc1-syzkaller-g0c559323bbaa #0 Not tainted [ 54.932224][ T63] -------------------------------------------- [ 54.934433][ T63] kworker/u32:3/63 is trying to acquire lock: [ 54.936589][ T63] ffff88802a0a00b0 (&tree->tree_lock/1){+.+.}-{3:3}, at: hfsplus_find_init+0x17b/0x1f0 [ 54.939808][ T63] [ 54.939808][ T63] but task is already holding lock: [ 54.942009][ T63] ffff88802a0a00b0 (&tree->tree_lock/1){+.+.}-{3:3}, at: hfsplus_find_init+0x17b/0x1f0 [ 54.944476][ T63] [ 54.944476][ T63] other info that might help us debug this: [ 54.946559][ T63] Possible unsafe locking scenario: [ 54.946559][ T63] [ 54.948917][ T63] CPU0 [ 54.950131][ T63] ---- [ 54.951357][ T63] lock(&tree->tree_lock/1); [ 54.953118][ T63] lock(&tree->tree_lock/1); [ 54.954835][ T63] [ 54.954835][ T63] *** DEADLOCK *** [ 54.954835][ T63] [ 54.956938][ T63] May be due to missing lock nesting notation [ 54.956938][ T63] [ 54.959617][ T63] 5 locks held by kworker/u32:3/63: [ 54.961360][ T63] #0: ffff88801bf7e948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x129b/0x1ba0 [ 54.964113][ T63] #1: ffffc90000d07d80 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x921/0x1ba0 [ 54.968062][ T63] #2: ffff88802e348e88 (&hip->extents_lock){+.+.}-{3:3}, at: hfsplus_ext_write_extent+0x82/0x210 [ 54.971896][ T63] #3: ffff88802a0a00b0 (&tree->tree_lock/1){+.+.}-{3:3}, at: hfsplus_find_init+0x17b/0x1f0 [ 54.975317][ T63] #4: ffff88802e348108 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{3:3}, at: hfsplus_file_extend+0x1c1/0x1090 [ 54.979225][ T63] [ 54.979225][ T63] stack backtrace: [ 54.981378][ T63] CPU: 3 UID: 0 PID: 63 Comm: kworker/u32:3 Not tainted 6.12.0-rc1-syzkaller-g0c559323bbaa #0 [ 54.984704][ T63] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 54.988493][ T63] Workqueue: writeback wb_workfn (flush-7:0) [ 54.990616][ T63] Call Trace: [ 54.991842][ T63] [ 54.992944][ T63] dump_stack_lvl+0x116/0x1f0 [ 54.994694][ T63] print_deadlock_bug+0x2e3/0x410 [ 54.996009][ T63] __lock_acquire+0x2185/0x3ce0 [ 54.997301][ T63] ? __pfx___lock_acquire+0x10/0x10 [ 54.998648][ T63] ? hfsplus_find_init+0x95/0x1f0 [ 55.000379][ T63] ? kasan_save_stack+0x42/0x60 [ 55.002113][ T63] ? kasan_save_stack+0x33/0x60 [ 55.003395][ T63] ? kasan_save_track+0x14/0x30 [ 55.004674][ T63] ? __kasan_kmalloc+0xaa/0xb0 [ 55.005942][ T63] ? __kmalloc_noprof+0x1e8/0x400 [ 55.007423][ T63] ? hfsplus_find_init+0x95/0x1f0 [ 55.009270][ T63] lock_acquire.part.0+0x11b/0x380 [ 55.011125][ T63] ? hfsplus_find_init+0x17b/0x1f0 [ 55.013005][ T63] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 55.014735][ T63] ? rcu_is_watching+0x12/0xc0 [ 55.015995][ T63] ? trace_lock_acquire+0x14a/0x1d0 [ 55.017382][ T63] ? hfsplus_find_init+0x17b/0x1f0 [ 55.018681][ T63] ? lock_acquire+0x2f/0xb0 [ 55.020258][ T63] ? hfsplus_find_init+0x17b/0x1f0 [ 55.022129][ T63] __mutex_lock+0x175/0x9c0 [ 55.023814][ T63] ? hfsplus_find_init+0x17b/0x1f0 [ 55.025550][ T63] ? hfsplus_find_init+0x17b/0x1f0 [ 55.027317][ T63] ? __pfx___mutex_lock+0x10/0x10 [ 55.029149][ T63] ? rcu_is_watching+0x12/0xc0 [ 55.030914][ T63] ? trace_kmalloc+0x2d/0xe0 [ 55.032613][ T63] ? __kmalloc_noprof+0x207/0x400 [ 55.033970][ T63] ? hfsplus_find_init+0x17b/0x1f0 [ 55.035313][ T63] hfsplus_find_init+0x17b/0x1f0 [ 55.036617][ T63] hfsplus_ext_read_extent+0x18f/0x250 [ 55.038070][ T63] ? __pfx_hfsplus_ext_read_extent+0x10/0x10 [ 55.039923][ T63] ? rcu_is_watching+0x12/0xc0 [ 55.041691][ T63] hfsplus_file_extend+0x699/0x1090 [ 55.043621][ T63] ? __pfx_hfsplus_file_extend+0x10/0x10 [ 55.045634][ T63] ? trace_contention_end+0xea/0x140 [ 55.047502][ T63] ? __mutex_lock+0x1a6/0x9c0 [ 55.049231][ T63] ? hfsplus_brec_find+0x3e8/0x520 [ 55.051082][ T63] ? __pfx_hfs_find_rec_by_key+0x10/0x10 [ 55.052934][ T63] hfsplus_bmap_reserve+0x31c/0x410 [ 55.054293][ T63] __hfsplus_ext_write_extent+0x474/0x5e0 [ 55.056337][ T63] hfsplus_ext_write_extent+0x1c9/0x210 [ 55.058237][ T63] ? __pfx_hfsplus_ext_write_extent+0x10/0x10 [ 55.059887][ T63] ? __pfx_lock_release+0x10/0x10 [ 55.061216][ T63] ? do_raw_spin_lock+0x12d/0x2c0 [ 55.062537][ T63] hfsplus_write_inode+0x22/0x4f0 [ 55.063864][ T63] __writeback_single_inode+0xb49/0xfa0 [ 55.065704][ T63] ? __pfx___writeback_single_inode+0x10/0x10 [ 55.067946][ T63] ? _raw_spin_unlock+0x28/0x50 [ 55.069431][ T63] ? wbc_attach_and_unlock_inode+0x597/0x940 [ 55.071588][ T63] writeback_sb_inodes+0x603/0xfa0 [ 55.073346][ T63] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 55.074798][ T63] ? find_held_lock+0x2d/0x110 [ 55.076048][ T63] ? rcu_is_watching+0x12/0xc0 [ 55.077312][ T63] ? queue_io+0x3f8/0x520 [ 55.078445][ T63] wb_writeback+0x199/0xb50 [ 55.079826][ T63] ? __pfx_wb_writeback+0x10/0x10 [ 55.081158][ T63] ? __pfx_lock_release+0x10/0x10 [ 55.082905][ T63] ? mark_held_locks+0x9f/0xe0 [ 55.084631][ T63] wb_workfn+0x294/0xbc0 [ 55.086189][ T63] ? __pfx_wb_workfn+0x10/0x10 [ 55.087946][ T63] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 55.089984][ T63] ? rcu_is_watching+0x12/0xc0 [ 55.091724][ T63] ? trace_lock_acquire+0x14a/0x1d0 [ 55.093338][ T63] ? process_one_work+0x921/0x1ba0 [ 55.095245][ T63] ? lock_acquire+0x2f/0xb0 [ 55.096842][ T63] ? process_one_work+0x921/0x1ba0 [ 55.098627][ T63] process_one_work+0x9c5/0x1ba0 [ 55.100431][ T63] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 55.102510][ T63] ? __pfx_process_one_work+0x10/0x10 [ 55.104479][ T63] ? assign_work+0x1a0/0x250 [ 55.106201][ T63] worker_thread+0x6c8/0xf00 [ 55.107855][ T63] ? __pfx_worker_thread+0x10/0x10 [ 55.109234][ T63] kthread+0x2c1/0x3a0 [ 55.110299][ T63] ? _raw_spin_unlock_irq+0x23/0x50 [ 55.111649][ T63] ? __pfx_kthread+0x10/0x10 [ 55.112884][ T63] ret_from_fork+0x45/0x80 [ 55.114068][ T63] ? __pfx_kthread+0x10/0x10 [ 55.115288][ T63] ret_from_fork_asm+0x1a/0x30 [ 55.116779][ T63] [ 55.782757][ T4770] Bluetooth: hci0: command tx timeout [ 57.862637][ T4770] Bluetooth: hci0: command tx timeout [ 59.942813][ T4770] Bluetooth: hci0: command tx timeout [ 62.022642][ T4770] Bluetooth: hci0: command tx timeout