Warning: Permanently added '10.128.0.74' (ED25519) to the list of known hosts. 2024/11/23 18:34:17 ignoring optional flag "sandboxArg"="0" 2024/11/23 18:34:17 ignoring optional flag "type"="gce" 2024/11/23 18:34:18 parsed 1 programs [ 81.533953][ T1324] cfg80211: failed to load regulatory.db 2024/11/23 18:34:20 executed programs: 0 [ 81.818558][ T4442] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS [ 82.022147][ T4479] chnl_net:caif_netlink_parms(): no params data found [ 82.076015][ T4479] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.083187][ T4479] bridge0: port 1(bridge_slave_0) entered disabled state [ 82.091064][ T4479] device bridge_slave_0 entered promiscuous mode [ 82.099229][ T4479] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.106563][ T4479] bridge0: port 2(bridge_slave_1) entered disabled state [ 82.115051][ T4479] device bridge_slave_1 entered promiscuous mode [ 82.137688][ T4479] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 82.148643][ T4479] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 82.172764][ T4479] team0: Port device team_slave_0 added [ 82.180262][ T4479] team0: Port device team_slave_1 added [ 82.199703][ T4479] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 82.206905][ T4479] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 82.233406][ T4479] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 82.245478][ T4479] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 82.252626][ T4479] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 82.278669][ T4479] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 82.309909][ T4479] device hsr_slave_0 entered promiscuous mode [ 82.316798][ T4479] device hsr_slave_1 entered promiscuous mode [ 82.892498][ T4479] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 82.902837][ T4479] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 82.913972][ T4479] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 82.924353][ T4479] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 82.948883][ T4479] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.956032][ T4479] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.963605][ T4479] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.970800][ T4479] bridge0: port 1(bridge_slave_0) entered forwarding state [ 83.029114][ T4479] 8021q: adding VLAN 0 to HW filter on device bond0 [ 83.044769][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 83.054267][ T154] bridge0: port 1(bridge_slave_0) entered disabled state [ 83.062684][ T154] bridge0: port 2(bridge_slave_1) entered disabled state [ 83.075010][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 83.090655][ T4479] 8021q: adding VLAN 0 to HW filter on device team0 [ 83.103134][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 83.114847][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 83.123987][ T144] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.131069][ T144] bridge0: port 1(bridge_slave_0) entered forwarding state [ 83.174568][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 83.184649][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 83.194332][ T144] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.201420][ T144] bridge0: port 2(bridge_slave_1) entered forwarding state [ 83.211262][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 83.222443][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 83.231420][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 83.242762][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 83.261357][ T4479] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 83.273026][ T4479] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 83.287436][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 83.299225][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 83.308451][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 83.317442][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 83.326394][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 83.335178][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 83.343566][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 83.353433][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 83.461162][ T4479] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.470820][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 83.479435][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 83.505267][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 83.515209][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 83.538218][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 83.548625][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 83.561792][ T4479] device veth0_vlan entered promiscuous mode [ 83.573051][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 83.581203][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 83.592011][ T4479] device veth1_vlan entered promiscuous mode [ 83.617770][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 83.626988][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 83.638130][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 83.648509][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 83.660236][ T4479] device veth0_macvtap entered promiscuous mode [ 83.673030][ T4479] device veth1_macvtap entered promiscuous mode [ 83.695949][ T4479] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 83.703580][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 83.713713][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 83.722333][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 83.731200][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 83.746494][ T4479] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 83.754670][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 83.764774][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 83.777350][ T4479] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.787109][ T4479] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.798135][ T4479] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.807567][ T4479] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.889671][ T154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.910771][ T154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.932672][ T7] Bluetooth: hci0: command 0x0409 tx timeout [ 83.943287][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 83.955245][ T144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.963494][ T144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.974609][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 84.137018][ T4577] [ 84.139472][ T4577] ====================================================== [ 84.146635][ T4577] WARNING: possible circular locking dependency detected [ 84.153848][ T4577] 5.15.173-syzkaller #0 Not tainted [ 84.159148][ T4577] ------------------------------------------------------ [ 84.166190][ T4577] syz-executor.0/4577 is trying to acquire lock: [ 84.172530][ T4577] ffff8881478f83f0 (&sb->s_type->i_mutex_key#9){++++}-{3:3}, at: ext4_bmap+0x4b/0x410 [ 84.182169][ T4577] [ 84.182169][ T4577] but task is already holding lock: [ 84.189544][ T4577] ffff88807f5c23f8 (&journal->j_checkpoint_mutex){+.+.}-{3:3}, at: jbd2_journal_flush+0x31c/0xc90 [ 84.200191][ T4577] [ 84.200191][ T4577] which lock already depends on the new lock. [ 84.200191][ T4577] [ 84.210613][ T4577] [ 84.210613][ T4577] the existing dependency chain (in reverse order) is: [ 84.219645][ T4577] [ 84.219645][ T4577] -> #3 (&journal->j_checkpoint_mutex){+.+.}-{3:3}: [ 84.228466][ T4577] lock_acquire+0x1db/0x4f0 [ 84.233516][ T4577] __mutex_lock_common+0x1da/0x25a0 [ 84.239268][ T4577] mutex_lock_io_nested+0x45/0x60 [ 84.244841][ T4577] jbd2_journal_flush+0x290/0xc90 [ 84.250414][ T4577] ext4_ioctl+0x3249/0x5b80 [ 84.255460][ T4577] __se_sys_ioctl+0xf1/0x160 [ 84.260634][ T4577] do_syscall_64+0x3b/0xb0 [ 84.265603][ T4577] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 84.272045][ T4577] [ 84.272045][ T4577] -> #2 (&journal->j_barrier){+.+.}-{3:3}: [ 84.280062][ T4577] lock_acquire+0x1db/0x4f0 [ 84.285100][ T4577] __mutex_lock_common+0x1da/0x25a0 [ 84.290928][ T4577] mutex_lock_nested+0x17/0x20 [ 84.296239][ T4577] jbd2_journal_lock_updates+0x2aa/0x370 [ 84.302418][ T4577] ext4_change_inode_journal_flag+0x1a8/0x6e0 [ 84.309037][ T4577] ext4_fileattr_set+0xdf4/0x1750 [ 84.314633][ T4577] vfs_fileattr_set+0x8f3/0xd30 [ 84.320029][ T4577] do_vfs_ioctl+0x1d85/0x2b70 [ 84.325254][ T4577] __se_sys_ioctl+0x81/0x160 [ 84.330390][ T4577] do_syscall_64+0x3b/0xb0 [ 84.335355][ T4577] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 84.341886][ T4577] [ 84.341886][ T4577] -> #1 (&sbi->s_writepages_rwsem){++++}-{0:0}: [ 84.350431][ T4577] lock_acquire+0x1db/0x4f0 [ 84.355480][ T4577] percpu_down_write+0x52/0x2d0 [ 84.360884][ T4577] ext4_ind_migrate+0x254/0x760 [ 84.366287][ T4577] ext4_fileattr_set+0xe8b/0x1750 [ 84.371853][ T4577] vfs_fileattr_set+0x8f3/0xd30 [ 84.377260][ T4577] do_vfs_ioctl+0x1d85/0x2b70 [ 84.382522][ T4577] __se_sys_ioctl+0x81/0x160 [ 84.387744][ T4577] do_syscall_64+0x3b/0xb0 [ 84.392704][ T4577] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 84.399148][ T4577] [ 84.399148][ T4577] -> #0 (&sb->s_type->i_mutex_key#9){++++}-{3:3}: [ 84.407776][ T4577] validate_chain+0x1649/0x5930 [ 84.413171][ T4577] __lock_acquire+0x1295/0x1ff0 [ 84.418568][ T4577] lock_acquire+0x1db/0x4f0 [ 84.423620][ T4577] down_read+0x45/0x2e0 [ 84.428316][ T4577] ext4_bmap+0x4b/0x410 [ 84.433012][ T4577] bmap+0xa1/0xd0 [ 84.437277][ T4577] jbd2_journal_flush+0x7a2/0xc90 [ 84.442844][ T4577] ext4_ioctl+0x3249/0x5b80 [ 84.447888][ T4577] __se_sys_ioctl+0xf1/0x160 [ 84.453030][ T4577] do_syscall_64+0x3b/0xb0 [ 84.457988][ T4577] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 84.464429][ T4577] [ 84.464429][ T4577] other info that might help us debug this: [ 84.464429][ T4577] [ 84.474666][ T4577] Chain exists of: [ 84.474666][ T4577] &sb->s_type->i_mutex_key#9 --> &journal->j_barrier --> &journal->j_checkpoint_mutex [ 84.474666][ T4577] [ 84.490183][ T4577] Possible unsafe locking scenario: [ 84.490183][ T4577] [ 84.497731][ T4577] CPU0 CPU1 [ 84.503110][ T4577] ---- ---- [ 84.508850][ T4577] lock(&journal->j_checkpoint_mutex); [ 84.514422][ T4577] lock(&journal->j_barrier); [ 84.521839][ T4577] lock(&journal->j_checkpoint_mutex); [ 84.529932][ T4577] lock(&sb->s_type->i_mutex_key#9); [ 84.535421][ T4577] [ 84.535421][ T4577] *** DEADLOCK *** [ 84.535421][ T4577] [ 84.543657][ T4577] 2 locks held by syz-executor.0/4577: [ 84.549561][ T4577] #0: ffff88807f5c2170 (&journal->j_barrier){+.+.}-{3:3}, at: jbd2_journal_lock_updates+0x2aa/0x370 [ 84.560485][ T4577] #1: ffff88807f5c23f8 (&journal->j_checkpoint_mutex){+.+.}-{3:3}, at: jbd2_journal_flush+0x31c/0xc90 [ 84.571572][ T4577] [ 84.571572][ T4577] stack backtrace: [ 84.577489][ T4577] CPU: 0 PID: 4577 Comm: syz-executor.0 Not tainted 5.15.173-syzkaller #0 [ 84.586113][ T4577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 84.596243][ T4577] Call Trace: [ 84.599564][ T4577] [ 84.602509][ T4577] dump_stack_lvl+0x1e3/0x2d0 [ 84.607213][ T4577] ? io_uring_drop_tctx_refs+0x1a0/0x1a0 [ 84.612875][ T4577] ? print_circular_bug+0x12b/0x1a0 [ 84.618100][ T4577] check_noncircular+0x2f8/0x3b0 [ 84.623063][ T4577] ? add_chain_block+0x850/0x850 [ 84.628024][ T4577] ? lockdep_lock+0x11f/0x2a0 [ 84.632728][ T4577] ? do_raw_spin_unlock+0x137/0x8b0 [ 84.637955][ T4577] validate_chain+0x1649/0x5930 [ 84.642828][ T4577] ? finish_lock_switch+0x8f/0x100 [ 84.647978][ T4577] ? reacquire_held_locks+0x660/0x660 [ 84.653387][ T4577] ? mark_lock+0x98/0x340 [ 84.657746][ T4577] ? reacquire_held_locks+0x660/0x660 [ 84.663143][ T4577] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 84.669150][ T4577] ? release_firmware_map_entry+0x190/0x190 [ 84.675082][ T4577] ? do_raw_spin_unlock+0x137/0x8b0 [ 84.680346][ T4577] ? mark_lock+0x98/0x340 [ 84.684696][ T4577] ? schedule+0x132/0x1f0 [ 84.689049][ T4577] __lock_acquire+0x1295/0x1ff0 [ 84.693925][ T4577] lock_acquire+0x1db/0x4f0 [ 84.698449][ T4577] ? ext4_bmap+0x4b/0x410 [ 84.702815][ T4577] ? read_lock_is_recursive+0x10/0x10 [ 84.708252][ T4577] ? __might_sleep+0xc0/0xc0 [ 84.712964][ T4577] ? ext4_journalled_write_end+0xee0/0xee0 [ 84.718797][ T4577] down_read+0x45/0x2e0 [ 84.722992][ T4577] ? ext4_bmap+0x4b/0x410 [ 84.727565][ T4577] ? ext4_journalled_write_end+0xee0/0xee0 [ 84.733396][ T4577] ext4_bmap+0x4b/0x410 [ 84.737580][ T4577] ? ext4_journalled_write_end+0xee0/0xee0 [ 84.743411][ T4577] bmap+0xa1/0xd0 [ 84.747154][ T4577] jbd2_journal_flush+0x7a2/0xc90 [ 84.752221][ T4577] ? __bpf_trace_jbd2_shrink_checkpoint_list+0x50/0x50 [ 84.759181][ T4577] ? bpf_lsm_capable+0x5/0x10 [ 84.763970][ T4577] ? security_capable+0x86/0xb0 [ 84.768849][ T4577] ext4_ioctl+0x3249/0x5b80 [ 84.773387][ T4577] ? do_vfs_ioctl+0x1b66/0x2b70 [ 84.778267][ T4577] ? ext4_fileattr_set+0x1750/0x1750 [ 84.783576][ T4577] ? __x64_compat_sys_ioctl+0x80/0x80 [ 84.788981][ T4577] ? __lock_acquire+0x1ff0/0x1ff0 [ 84.794032][ T4577] ? slab_free_freelist_hook+0xdd/0x160 [ 84.799611][ T4577] ? tomoyo_path_number_perm+0x648/0x810 [ 84.805283][ T4577] ? kfree+0xf1/0x270 [ 84.809294][ T4577] ? tomoyo_path_number_perm+0x6ab/0x810 [ 84.814961][ T4577] ? tomoyo_check_path_acl+0x1c0/0x1c0 [ 84.820469][ T4577] ? __fget_files+0x413/0x480 [ 84.825176][ T4577] ? bpf_lsm_file_ioctl+0x5/0x10 [ 84.830143][ T4577] ? security_file_ioctl+0x7d/0xa0 [ 84.835280][ T4577] ? ext4_fileattr_set+0x1750/0x1750 [ 84.840608][ T4577] __se_sys_ioctl+0xf1/0x160 [ 84.845331][ T4577] do_syscall_64+0x3b/0xb0 [ 84.849803][ T4577] ? clear_bhb_loop+0x15/0x70 [ 84.854622][ T4577] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 84.860538][ T4577] RIP: 0033:0x7f63daa5fae9 [ 84.864997][ T4577] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 84.884936][ T4577] RSP: 002b:00007f63d9de10c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 84.893376][ T4577] RAX: ffffffffffffffda RBX: 00007f63dab7ef80 RCX: 00007f63daa5fae9 [ 84.901369][ T4577] RDX: 00000000200005c0 RSI: 000000004004662b RDI: 0000000000000004 [ 84.909380][ T4577] RBP: 00007f63daaab47a R08: 0000000000000000 R09: 0000000000000000 [ 84.917374][ T4577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 84.925362][ T4577] R13: 000000000000000b R14: 00007f63dab7ef80 R15: 00007ffe9ff42bc8 [ 84.933364][ T4577] [ 86.012774][ T4199] Bluetooth: hci0: command 0x041b tx timeout 2024/11/23 18:34:25 executed programs: 28 [ 88.091640][ T4199] Bluetooth: hci0: command 0x040f tx timeout [ 90.171672][ T4199] Bluetooth: hci0: command 0x0419 tx timeout 2024/11/23 18:34:30 executed programs: 123