Warning: Permanently added '[localhost]:47985' (ED25519) to the list of known hosts. 2024/10/04 11:36:46 ignoring optional flag "sandboxArg"="0" 2024/10/04 11:36:46 ignoring optional flag "type"="qemu" 2024/10/04 11:36:46 parsed 1 programs [ 59.474835][ T39] audit: type=1400 audit(1728041806.576:132): avc: denied { getattr } for pid=5450 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 59.483276][ T39] audit: type=1400 audit(1728041806.576:133): avc: denied { read } for pid=5450 comm="syz-execprog" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 59.490711][ T39] audit: type=1400 audit(1728041806.576:134): avc: denied { open } for pid=5450 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 59.582876][ T39] audit: type=1400 audit(1728041806.686:135): avc: denied { unlink } for pid=5456 comm="syz-executor" name="swap-file" dev="sda1" ino=1931 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 60.564260][ T5456] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k 2024/10/04 11:36:47 executed programs: 0 [ 60.605316][ T68] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 60.608026][ T68] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 60.611268][ T68] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 60.614591][ T68] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 60.617270][ T68] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 60.620508][ T68] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 60.626880][ T39] audit: type=1400 audit(1728041807.726:136): avc: denied { mounton } for pid=5462 comm="syz-executor.0" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 60.715354][ T5462] chnl_net:caif_netlink_parms(): no params data found [ 60.806267][ T5462] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.808857][ T5462] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.811494][ T5462] bridge_slave_0: entered allmulticast mode [ 60.814321][ T5462] bridge_slave_0: entered promiscuous mode [ 60.818734][ T5462] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.821452][ T5462] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.823882][ T5462] bridge_slave_1: entered allmulticast mode [ 60.826634][ T5462] bridge_slave_1: entered promiscuous mode [ 60.861277][ T5462] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 60.866506][ T5462] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 60.898225][ T5462] team0: Port device team_slave_0 added [ 60.902026][ T5462] team0: Port device team_slave_1 added [ 60.931863][ T5462] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 60.934338][ T5462] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 60.945029][ T5462] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 60.950295][ T5462] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 60.952712][ T5462] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 60.961572][ T5462] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 60.999112][ T5462] hsr_slave_0: entered promiscuous mode [ 61.003933][ T5462] hsr_slave_1: entered promiscuous mode [ 61.484484][ T5462] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 61.488683][ T5462] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 61.493410][ T5462] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 61.498251][ T5462] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 61.513675][ T5462] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.516192][ T5462] bridge0: port 2(bridge_slave_1) entered forwarding state [ 61.518703][ T5462] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.520875][ T5462] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.545443][ T5462] 8021q: adding VLAN 0 to HW filter on device bond0 [ 61.553996][ T1104] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.556461][ T1104] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.565458][ T5462] 8021q: adding VLAN 0 to HW filter on device team0 [ 61.573854][ T1104] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.575789][ T1104] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.580901][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.582782][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 61.692065][ T5462] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 61.717890][ T5462] veth0_vlan: entered promiscuous mode [ 61.723549][ T5462] veth1_vlan: entered promiscuous mode [ 61.737337][ T5462] veth0_macvtap: entered promiscuous mode [ 61.740962][ T5462] veth1_macvtap: entered promiscuous mode [ 61.751215][ T5462] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 61.756653][ T5462] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 61.761780][ T5462] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.764357][ T5462] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.767333][ T5462] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.771135][ T5462] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.807592][ T1104] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 61.810274][ T1104] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 61.825330][ T65] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 61.827716][ T65] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 61.856874][ T5517] loop0: detected capacity change from 0 to 1024 [ 61.861740][ T5517] ======================================================= [ 61.861740][ T5517] WARNING: The mand mount option has been deprecated and [ 61.861740][ T5517] and is ignored by this kernel. Remove the mand [ 61.861740][ T5517] option from the mount to silence this warning. [ 61.861740][ T5517] ======================================================= [ 61.861884][ T39] audit: type=1400 audit(1728041808.966:137): avc: denied { mounton } for pid=5516 comm="syz-executor.0" path="/syzkaller-testdir1494238014/syzkaller.JXBudG/0/bus" dev="sda1" ino=1939 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 61.893833][ T39] audit: type=1400 audit(1728041808.996:138): avc: denied { mount } for pid=5516 comm="syz-executor.0" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1 [ 61.921840][ T39] audit: type=1400 audit(1728041809.026:139): avc: denied { unmount } for pid=5462 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1 [ 61.929970][ T1104] [ 61.930825][ T1104] ============================================ [ 61.933046][ T1104] WARNING: possible recursive locking detected [ 61.935192][ T1104] 6.12.0-rc1-syzkaller-g0c559323bbaa #0 Not tainted [ 61.938297][ T1104] -------------------------------------------- [ 61.940642][ T1104] kworker/u32:7/1104 is trying to acquire lock: [ 61.942305][ T1104] ffff8881077140b0 (&tree->tree_lock/1){+.+.}-{3:3}, at: hfsplus_find_init+0x17b/0x1f0 [ 61.944615][ T1104] [ 61.944615][ T1104] but task is already holding lock: [ 61.946399][ T1104] ffff8881077140b0 (&tree->tree_lock/1){+.+.}-{3:3}, at: hfsplus_find_init+0x17b/0x1f0 [ 61.948709][ T1104] [ 61.948709][ T1104] other info that might help us debug this: [ 61.950725][ T1104] Possible unsafe locking scenario: [ 61.950725][ T1104] [ 61.952512][ T1104] CPU0 [ 61.953614][ T1104] ---- [ 61.954729][ T1104] lock(&tree->tree_lock/1); [ 61.956422][ T1104] lock(&tree->tree_lock/1); [ 61.958136][ T1104] [ 61.958136][ T1104] *** DEADLOCK *** [ 61.958136][ T1104] [ 61.961036][ T1104] May be due to missing lock nesting notation [ 61.961036][ T1104] [ 61.963441][ T1104] 5 locks held by kworker/u32:7/1104: [ 61.964726][ T1104] #0: ffff888103af7948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x129b/0x1ba0 [ 61.967375][ T1104] #1: ffffc90005be7d80 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x921/0x1ba0 [ 61.970378][ T1104] #2: ffff8880335c1c08 (&hip->extents_lock){+.+.}-{3:3}, at: hfsplus_ext_write_extent+0x82/0x210 [ 61.973122][ T1104] #3: ffff8881077140b0 (&tree->tree_lock/1){+.+.}-{3:3}, at: hfsplus_find_init+0x17b/0x1f0 [ 61.975906][ T1104] #4: ffff8880335c0108 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{3:3}, at: hfsplus_file_extend+0x1c1/0x1090 [ 61.978904][ T1104] [ 61.978904][ T1104] stack backtrace: [ 61.980370][ T1104] CPU: 2 UID: 0 PID: 1104 Comm: kworker/u32:7 Not tainted 6.12.0-rc1-syzkaller-g0c559323bbaa #0 [ 61.983022][ T1104] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 61.985670][ T1104] Workqueue: writeback wb_workfn (flush-7:0) [ 61.987174][ T1104] Call Trace: [ 61.988027][ T1104] [ 61.988787][ T1104] dump_stack_lvl+0x116/0x1f0 [ 61.990453][ T1104] print_deadlock_bug+0x2e3/0x410 [ 61.992197][ T1104] __lock_acquire+0x2185/0x3ce0 [ 61.993909][ T1104] ? __pfx___lock_acquire+0x10/0x10 [ 61.995697][ T1104] ? hfsplus_find_init+0x95/0x1f0 [ 61.997432][ T1104] ? kasan_save_stack+0x42/0x60 [ 61.999118][ T1104] ? kasan_save_stack+0x33/0x60 [ 62.000831][ T1104] ? kasan_save_track+0x14/0x30 [ 62.002560][ T1104] ? __kasan_kmalloc+0xaa/0xb0 [ 62.004248][ T1104] ? __kmalloc_noprof+0x1e8/0x400 [ 62.006013][ T1104] ? hfsplus_find_init+0x95/0x1f0 [ 62.007661][ T1104] lock_acquire.part.0+0x11b/0x380 [ 62.009325][ T1104] ? hfsplus_find_init+0x17b/0x1f0 [ 62.011140][ T1104] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 62.013162][ T1104] ? rcu_is_watching+0x12/0xc0 [ 62.014937][ T1104] ? trace_lock_acquire+0x14a/0x1d0 [ 62.016879][ T1104] ? hfsplus_find_init+0x17b/0x1f0 [ 62.018740][ T1104] ? lock_acquire+0x2f/0xb0 [ 62.020395][ T1104] ? hfsplus_find_init+0x17b/0x1f0 [ 62.022221][ T1104] __mutex_lock+0x175/0x9c0 [ 62.023614][ T1104] ? hfsplus_find_init+0x17b/0x1f0 [ 62.024885][ T1104] ? hfsplus_find_init+0x17b/0x1f0 [ 62.026175][ T1104] ? __pfx___mutex_lock+0x10/0x10 [ 62.027428][ T1104] ? rcu_is_watching+0x12/0xc0 [ 62.028677][ T1104] ? trace_kmalloc+0x2d/0xe0 [ 62.030216][ T1104] ? __kmalloc_noprof+0x207/0x400 [ 62.032040][ T1104] ? hfsplus_find_init+0x17b/0x1f0 [ 62.033878][ T1104] hfsplus_find_init+0x17b/0x1f0 [ 62.035670][ T1104] hfsplus_ext_read_extent+0x18f/0x250 [ 62.037659][ T1104] ? __pfx_hfsplus_ext_read_extent+0x10/0x10 [ 62.039811][ T1104] ? rcu_is_watching+0x12/0xc0 [ 62.041511][ T1104] hfsplus_file_extend+0x699/0x1090 [ 62.043417][ T1104] ? __pfx_hfsplus_file_extend+0x10/0x10 [ 62.044995][ T1104] ? trace_contention_end+0xea/0x140 [ 62.046392][ T1104] ? __mutex_lock+0x1a6/0x9c0 [ 62.047623][ T1104] ? hfsplus_brec_find+0x3e8/0x520 [ 62.048963][ T1104] ? __pfx_hfs_find_rec_by_key+0x10/0x10 [ 62.050469][ T1104] hfsplus_bmap_reserve+0x31c/0x410 [ 62.051851][ T1104] __hfsplus_ext_write_extent+0x474/0x5e0 [ 62.053338][ T1104] hfsplus_ext_write_extent+0x1c9/0x210 [ 62.054777][ T1104] ? __pfx_hfsplus_ext_write_extent+0x10/0x10 [ 62.056357][ T1104] ? __pfx_lock_release+0x10/0x10 [ 62.057693][ T1104] ? do_raw_spin_lock+0x12d/0x2c0 [ 62.059017][ T1104] hfsplus_write_inode+0x22/0x4f0 [ 62.060335][ T1104] __writeback_single_inode+0xb49/0xfa0 [ 62.061807][ T1104] ? __pfx___writeback_single_inode+0x10/0x10 [ 62.063401][ T1104] ? _raw_spin_unlock+0x28/0x50 [ 62.064686][ T1104] ? wbc_attach_and_unlock_inode+0x597/0x940 [ 62.066260][ T1104] writeback_sb_inodes+0x603/0xfa0 [ 62.067596][ T1104] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 62.069050][ T1104] ? find_held_lock+0x2d/0x110 [ 62.070327][ T1104] ? rcu_is_watching+0x12/0xc0 [ 62.071593][ T1104] ? queue_io+0x3f8/0x520 [ 62.073082][ T1104] wb_writeback+0x199/0xb50 [ 62.074813][ T1104] ? __pfx_wb_writeback+0x10/0x10 [ 62.076750][ T1104] ? __pfx_lock_release+0x10/0x10 [ 62.078585][ T1104] ? mark_held_locks+0x9f/0xe0 [ 62.080230][ T1104] wb_workfn+0x294/0xbc0 [ 62.081743][ T1104] ? __pfx_wb_workfn+0x10/0x10 [ 62.083462][ T1104] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 62.085494][ T1104] ? rcu_is_watching+0x12/0xc0 [ 62.087118][ T1104] ? trace_lock_acquire+0x14a/0x1d0 [ 62.088476][ T1104] ? process_one_work+0x921/0x1ba0 [ 62.090174][ T1104] ? lock_acquire+0x2f/0xb0 [ 62.091782][ T1104] ? process_one_work+0x921/0x1ba0 [ 62.093616][ T1104] process_one_work+0x9c5/0x1ba0 [ 62.095443][ T1104] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 62.097470][ T1104] ? __pfx_process_one_work+0x10/0x10 [ 62.099058][ T1104] ? assign_work+0x1a0/0x250 [ 62.100278][ T1104] worker_thread+0x6c8/0xf00 [ 62.101891][ T1104] ? __pfx_worker_thread+0x10/0x10 [ 62.103730][ T1104] kthread+0x2c1/0x3a0 [ 62.105231][ T1104] ? _raw_spin_unlock_irq+0x23/0x50 [ 62.107128][ T1104] ? __pfx_kthread+0x10/0x10 [ 62.108816][ T1104] ret_from_fork+0x45/0x80 [ 62.110433][ T1104] ? __pfx_kthread+0x10/0x10 [ 62.112038][ T1104] ret_from_fork_asm+0x1a/0x30 [ 62.113781][ T1104] [ 62.660418][ T4772] Bluetooth: hci0: command tx timeout [ 64.740253][ T4772] Bluetooth: hci0: command tx timeout [ 66.820324][ T4772] Bluetooth: hci0: command tx timeout [ 68.900130][ T4772] Bluetooth: hci0: command tx timeout [ 71.380667][ T1378] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.382947][ T1378] ieee802154 phy1 wpan1: encryption failed: -22