Warning: Permanently added '10.128.15.207' (ECDSA) to the list of known hosts. 2023/06/09 02:29:39 ignoring optional flag "sandboxArg"="0" 2023/06/09 02:29:39 parsed 1 programs 2023/06/09 02:29:39 executed programs: 0 [ 71.466913][ T48] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 71.476293][ T3539] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 71.484449][ T3539] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 71.493027][ T3539] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 71.501281][ T3539] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 71.509179][ T3539] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 71.517744][ T3886] Bluetooth: hci0: HCI_REQ-0x0c1a [ 71.607920][ T3886] chnl_net:caif_netlink_parms(): no params data found [ 71.645847][ T3886] bridge0: port 1(bridge_slave_0) entered blocking state [ 71.653067][ T3886] bridge0: port 1(bridge_slave_0) entered disabled state [ 71.663273][ T3886] device bridge_slave_0 entered promiscuous mode [ 71.672411][ T3886] bridge0: port 2(bridge_slave_1) entered blocking state [ 71.680460][ T3886] bridge0: port 2(bridge_slave_1) entered disabled state [ 71.688454][ T3886] device bridge_slave_1 entered promiscuous mode [ 71.710634][ T3886] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 71.722416][ T3886] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 71.746274][ T3886] team0: Port device team_slave_0 added [ 71.755152][ T3886] team0: Port device team_slave_1 added [ 71.771423][ T3886] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 71.778596][ T3886] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.805293][ T3886] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 71.818718][ T3886] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 71.826179][ T3886] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.853086][ T3886] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 71.881365][ T3886] device hsr_slave_0 entered promiscuous mode [ 71.887960][ T3886] device hsr_slave_1 entered promiscuous mode [ 72.453972][ T1257] ieee802154 phy0 wpan0: encryption failed: -22 [ 72.460521][ T1257] ieee802154 phy1 wpan1: encryption failed: -22 [ 72.545754][ T3886] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 72.575751][ T3886] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 72.607833][ T3886] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 72.774866][ T3886] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 72.927442][ T3886] 8021q: adding VLAN 0 to HW filter on device bond0 [ 72.962244][ T3886] 8021q: adding VLAN 0 to HW filter on device team0 [ 72.994978][ T3278] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 73.002850][ T3278] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 73.023292][ T3552] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 73.032577][ T3552] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 73.055889][ T3552] bridge0: port 1(bridge_slave_0) entered blocking state [ 73.063089][ T3552] bridge0: port 1(bridge_slave_0) entered forwarding state [ 73.071452][ T3552] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 73.082361][ T3552] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 73.091818][ T3552] bridge0: port 2(bridge_slave_1) entered blocking state [ 73.099411][ T3552] bridge0: port 2(bridge_slave_1) entered forwarding state [ 73.109105][ T3552] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 73.128879][ T3552] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 73.150299][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 73.161569][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 73.173925][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 73.183002][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 73.195963][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 73.211017][ T3886] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 73.225586][ T3886] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 73.239108][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 73.249616][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 73.259765][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 73.270575][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 73.279853][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 73.294468][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 73.439812][ T3937] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 73.449294][ T3937] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 73.461200][ T3886] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.482649][ T3937] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 73.492888][ T3937] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 73.513451][ T3278] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 73.521999][ T3278] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 73.531519][ T3278] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 73.539892][ T3278] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 73.549675][ T3886] device veth0_vlan entered promiscuous mode [ 73.562235][ T3886] device veth1_vlan entered promiscuous mode [ 73.564247][ T3542] Bluetooth: hci0: command 0x0409 tx timeout [ 73.585853][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 73.598307][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 73.607325][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 73.617061][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 73.628180][ T3886] device veth0_macvtap entered promiscuous mode [ 73.640297][ T3886] device veth1_macvtap entered promiscuous mode [ 73.658695][ T3886] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 73.667996][ T3278] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 73.677823][ T3278] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 73.689965][ T3886] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 73.698520][ T3551] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 73.707994][ T3551] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 73.719665][ T3886] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.738257][ T3886] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.747818][ T3886] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.757131][ T3886] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.825145][ T1181] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 73.833128][ T1181] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 73.847014][ T3278] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 73.871091][ T1181] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 73.879779][ T1181] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 73.891711][ T3278] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 73.950400][ T3974] [ 73.952764][ T3974] ====================================================== [ 73.960314][ T3974] WARNING: possible circular locking dependency detected [ 73.967511][ T3974] 6.1.0-rc2-syzkaller #0 Not tainted [ 73.972882][ T3974] ------------------------------------------------------ [ 73.980161][ T3974] syz-executor.0/3974 is trying to acquire lock: [ 73.986494][ T3974] ffffffff8b633c30 (cpu_hotplug_lock){++++}-{0:0}, at: static_key_slow_inc+0xd/0x20 [ 73.996158][ T3974] [ 73.996158][ T3974] but task is already holding lock: [ 74.003693][ T3974] ffffffff8b7d73e8 (freezer_mutex){+.+.}-{3:3}, at: freezer_write+0x74/0x6d0 [ 74.012669][ T3974] [ 74.012669][ T3974] which lock already depends on the new lock. [ 74.012669][ T3974] [ 74.023166][ T3974] [ 74.023166][ T3974] the existing dependency chain (in reverse order) is: [ 74.032436][ T3974] [ 74.032436][ T3974] -> #2 (freezer_mutex){+.+.}-{3:3}: [ 74.039904][ T3974] __mutex_lock+0x12f/0x1360 [ 74.045116][ T3974] freezer_attach+0x70/0x1a0 [ 74.050214][ T3974] cgroup_migrate_execute+0x9e0/0xfe0 [ 74.056427][ T3974] cgroup_attach_task+0x30e/0x620 [ 74.062047][ T3974] __cgroup1_procs_write.constprop.0+0x2f2/0x400 [ 74.068867][ T3974] cgroup_file_write+0x195/0x640 [ 74.074296][ T3974] kernfs_fop_write_iter+0x355/0x530 [ 74.080252][ T3974] vfs_write+0x823/0xd50 [ 74.085009][ T3974] ksys_write+0xf2/0x1c0 [ 74.089758][ T3974] do_syscall_64+0x39/0xb0 [ 74.094842][ T3974] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 74.101228][ T3974] [ 74.101228][ T3974] -> #1 (cgroup_threadgroup_rwsem){++++}-{0:0}: [ 74.109713][ T3974] percpu_down_write+0x53/0x390 [ 74.115147][ T3974] cgroup_procs_write_start+0x112/0x490 [ 74.121185][ T3974] __cgroup_procs_write+0xcc/0x540 [ 74.126788][ T3974] cgroup_procs_write+0x12/0x20 [ 74.132135][ T3974] cgroup_file_write+0x195/0x640 [ 74.137651][ T3974] kernfs_fop_write_iter+0x355/0x530 [ 74.143431][ T3974] vfs_write+0x823/0xd50 [ 74.148612][ T3974] ksys_write+0xf2/0x1c0 [ 74.153367][ T3974] do_syscall_64+0x39/0xb0 [ 74.158494][ T3974] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 74.164995][ T3974] [ 74.164995][ T3974] -> #0 (cpu_hotplug_lock){++++}-{0:0}: [ 74.172696][ T3974] __lock_acquire+0x2a43/0x56d0 [ 74.178048][ T3974] lock_acquire+0x1e3/0x630 [ 74.183052][ T3974] cpus_read_lock+0x3b/0xd0 [ 74.188156][ T3974] static_key_slow_inc+0xd/0x20 [ 74.193776][ T3974] freezer_apply_state+0x121/0x190 [ 74.199408][ T3974] freezer_write+0x39d/0x6d0 [ 74.204867][ T3974] cgroup_file_write+0x195/0x640 [ 74.210395][ T3974] kernfs_fop_write_iter+0x355/0x530 [ 74.216443][ T3974] vfs_write+0x823/0xd50 [ 74.221564][ T3974] ksys_write+0xf2/0x1c0 [ 74.226318][ T3974] do_syscall_64+0x39/0xb0 [ 74.231319][ T3974] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 74.237862][ T3974] [ 74.237862][ T3974] other info that might help us debug this: [ 74.237862][ T3974] [ 74.248921][ T3974] Chain exists of: [ 74.248921][ T3974] cpu_hotplug_lock --> cgroup_threadgroup_rwsem --> freezer_mutex [ 74.248921][ T3974] [ 74.262963][ T3974] Possible unsafe locking scenario: [ 74.262963][ T3974] [ 74.270738][ T3974] CPU0 CPU1 [ 74.276074][ T3974] ---- ---- [ 74.281859][ T3974] lock(freezer_mutex); [ 74.286094][ T3974] lock(cgroup_threadgroup_rwsem); [ 74.294138][ T3974] lock(freezer_mutex); [ 74.300882][ T3974] lock(cpu_hotplug_lock); [ 74.305448][ T3974] [ 74.305448][ T3974] *** DEADLOCK *** [ 74.305448][ T3974] [ 74.313595][ T3974] 5 locks held by syz-executor.0/3974: [ 74.319112][ T3974] #0: ffff88807e5fd268 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0x9a/0xb0 [ 74.328136][ T3974] #1: ffff88807c01a460 (sb_writers#11){.+.+}-{0:0}, at: ksys_write+0xf2/0x1c0 [ 74.337698][ T3974] #2: ffff888073627088 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x218/0x530 [ 74.347530][ T3974] #3: ffff888016f720f0 (kn->active#62){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x23c/0x530 [ 74.357731][ T3974] #4: ffffffff8b7d73e8 (freezer_mutex){+.+.}-{3:3}, at: freezer_write+0x74/0x6d0 [ 74.367095][ T3974] [ 74.367095][ T3974] stack backtrace: [ 74.372973][ T3974] CPU: 1 PID: 3974 Comm: syz-executor.0 Not tainted 6.1.0-rc2-syzkaller #0 [ 74.381551][ T3974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023 [ 74.391584][ T3974] Call Trace: [ 74.394862][ T3974] [ 74.397793][ T3974] dump_stack_lvl+0x5b/0x81 [ 74.402308][ T3974] check_noncircular+0x25f/0x2e0 [ 74.407243][ T3974] ? print_circular_bug+0x1e0/0x1e0 [ 74.412534][ T3974] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 74.418613][ T3974] __lock_acquire+0x2a43/0x56d0 [ 74.423544][ T3974] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 74.429496][ T3974] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 74.435477][ T3974] lock_acquire+0x1e3/0x630 [ 74.439953][ T3974] ? static_key_slow_inc+0xd/0x20 [ 74.444951][ T3974] ? lock_release+0x810/0x810 [ 74.449865][ T3974] ? find_held_lock+0x2d/0x110 [ 74.454630][ T3974] cpus_read_lock+0x3b/0xd0 [ 74.459303][ T3974] ? static_key_slow_inc+0xd/0x20 [ 74.464308][ T3974] static_key_slow_inc+0xd/0x20 [ 74.469133][ T3974] freezer_apply_state+0x121/0x190 [ 74.474305][ T3974] freezer_write+0x39d/0x6d0 [ 74.478874][ T3974] ? lock_release+0x810/0x810 [ 74.483633][ T3974] cgroup_file_write+0x195/0x640 [ 74.488741][ T3974] ? kill_css+0x260/0x260 [ 74.493161][ T3974] ? kill_css+0x260/0x260 [ 74.497571][ T3974] kernfs_fop_write_iter+0x355/0x530 [ 74.502852][ T3974] vfs_write+0x823/0xd50 [ 74.507148][ T3974] ? kernel_write+0x5a0/0x5a0 [ 74.512545][ T3974] ? __fget_files+0x1bf/0x3a0 [ 74.517724][ T3974] ksys_write+0xf2/0x1c0 [ 74.522287][ T3974] ? __ia32_sys_read+0xa0/0xa0 [ 74.527124][ T3974] ? lockdep_hardirqs_on_prepare+0x17f/0x410 [ 74.533078][ T3974] ? syscall_enter_from_user_mode+0x26/0xb0 [ 74.538944][ T3974] do_syscall_64+0x39/0xb0 [ 74.543531][ T3974] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 74.549499][ T3974] RIP: 0033:0x7f54bf28c169 [ 74.554163][ T3974] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 74.573829][ T3974] RSP: 002b:00007f54bedff168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 74.582351][ T3974] RAX: ffffffffffffffda RBX: 00007f54bf3abf80 RCX: 00007f54bf28c169 [ 74.590407][ T3974] RDX: 0000000000000007 RSI: 0000000020000040 RDI: 0000000000000004 [ 74.598471][ T3974] RBP: 00007f54bf2e7ca1 R08: 0000000000000000 R09: 0000000000000000 [ 74.606701][ T3974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 74.614735][ T3974] R13: 00007fff15b0e33f R14: 00007f54bedff300 R15: 0000000000022000 [ 74.622772][ T3974] [ 75.646994][ T3542] Bluetooth: hci0: command 0x041b tx timeout 2023/06/09 02:29:44 executed programs: 119 [ 77.563610][ T14] cfg80211: failed to load regulatory.db [ 77.723428][ T3542] Bluetooth: hci0: command 0x040f tx timeout [ 79.803668][ T3542] Bluetooth: hci0: command 0x0419 tx timeout 2023/06/09 02:29:49 executed programs: 560