Warning: Permanently added '10.128.10.18' (ED25519) to the list of known hosts. 2025/06/08 22:45:18 ignoring optional flag "sandboxArg"="0" 2025/06/08 22:45:18 ignoring optional flag "type"="gce" 2025/06/08 22:45:18 parsed 1 programs 2025/06/08 22:45:20 executed programs: 0 [ 83.366937][ T4471] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS [ 83.524260][ T4490] chnl_net:caif_netlink_parms(): no params data found [ 83.568007][ T4490] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.575259][ T4490] bridge0: port 1(bridge_slave_0) entered disabled state [ 83.583021][ T4490] device bridge_slave_0 entered promiscuous mode [ 83.591617][ T4490] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.598767][ T4490] bridge0: port 2(bridge_slave_1) entered disabled state [ 83.606724][ T4490] device bridge_slave_1 entered promiscuous mode [ 83.629425][ T4490] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 83.640403][ T4490] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 83.664350][ T4490] team0: Port device team_slave_0 added [ 83.671624][ T4490] team0: Port device team_slave_1 added [ 83.691394][ T4490] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 83.698595][ T4490] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.725059][ T4490] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 83.737594][ T4490] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 83.744889][ T4490] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.771255][ T4490] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 83.803172][ T4490] device hsr_slave_0 entered promiscuous mode [ 83.810672][ T4490] device hsr_slave_1 entered promiscuous mode [ 84.374633][ T4490] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 84.385382][ T4490] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 84.395463][ T4490] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 84.405765][ T4490] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 84.429921][ T4490] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.437095][ T4490] bridge0: port 2(bridge_slave_1) entered forwarding state [ 84.444533][ T4490] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.452042][ T4490] bridge0: port 1(bridge_slave_0) entered forwarding state [ 84.508035][ T4490] 8021q: adding VLAN 0 to HW filter on device bond0 [ 84.523066][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 84.532760][ T154] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.541246][ T154] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.551699][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 84.567109][ T4490] 8021q: adding VLAN 0 to HW filter on device team0 [ 84.578156][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 84.588253][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 84.597334][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.604470][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 84.622908][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 84.636513][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 84.646018][ T1286] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.653097][ T1286] bridge0: port 2(bridge_slave_1) entered forwarding state [ 84.662811][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 84.671842][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 84.694067][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 84.705649][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 84.716649][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 84.729665][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 84.739109][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 84.749472][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 84.762220][ T4490] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 84.774450][ T4490] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 84.785043][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 84.794351][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 84.802916][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 84.933091][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 84.941850][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 84.956156][ T4490] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 84.977971][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 84.987710][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 85.010283][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 85.019654][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 85.031933][ T4490] device veth0_vlan entered promiscuous mode [ 85.039423][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 85.048408][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 85.061512][ T4490] device veth1_vlan entered promiscuous mode [ 85.086010][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 85.095450][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 85.103955][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 85.112586][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 85.125511][ T4490] device veth0_macvtap entered promiscuous mode [ 85.136904][ T4490] device veth1_macvtap entered promiscuous mode [ 85.155420][ T4490] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 85.162858][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 85.171176][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 85.179707][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 85.189120][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 85.207363][ T4490] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 85.215461][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 85.225243][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 85.239471][ T4490] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.248581][ T4490] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.257928][ T4490] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.267627][ T4490] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.350507][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.363532][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.386747][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 85.397330][ T1286] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.407069][ T1286] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.417477][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 85.482093][ T4566] [ 85.484470][ T4566] ===================================================== [ 85.491413][ T4566] WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected [ 85.498921][ T4566] 5.15.185-syzkaller #0 Not tainted [ 85.504130][ T4566] ----------------------------------------------------- [ 85.511078][ T4566] syz-executor.0/4566 [HC0[0]:SC0[0]:HE0:SE1] is trying to acquire: [ 85.519078][ T4566] ffffffff8be0a058 (tasklist_lock){.+.+}-{2:2}, at: send_sigio+0xd2/0x330 [ 85.527651][ T4566] [ 85.527651][ T4566] and this task is already holding: [ 85.533657][ T1326] Bluetooth: hci0: command 0x0409 tx timeout [ 85.535022][ T4566] ffff8880795237b8 (&f->f_owner.lock){....}-{2:2}, at: send_sigio+0x2f/0x330 [ 85.549799][ T4566] which would create a new lock dependency: [ 85.555700][ T4566] (&f->f_owner.lock){....}-{2:2} -> (tasklist_lock){.+.+}-{2:2} [ 85.563469][ T4566] [ 85.563469][ T4566] but this new dependency connects a HARDIRQ-irq-safe lock: [ 85.572922][ T4566] (&dev->event_lock#2){-...}-{2:2} [ 85.572951][ T4566] [ 85.572951][ T4566] ... which became HARDIRQ-irq-safe at: [ 85.585842][ T4566] lock_acquire+0x197/0x3f0 [ 85.590442][ T4566] _raw_spin_lock_irqsave+0xa4/0xf0 [ 85.595738][ T4566] input_event+0x76/0xb0 [ 85.600069][ T4566] psmouse_report_standard_packet+0x4f/0x200 [ 85.606144][ T4566] psmouse_process_byte+0x42b/0x620 [ 85.611437][ T4566] psmouse_handle_byte+0x43/0x490 [ 85.616544][ T4566] psmouse_interrupt+0x699/0x1130 [ 85.621657][ T4566] serio_interrupt+0x87/0x130 [ 85.626437][ T4566] i8042_interrupt+0x369/0x710 [ 85.631290][ T4566] __handle_irq_event_percpu+0x291/0x9b0 [ 85.637010][ T4566] handle_irq_event+0xa5/0x220 [ 85.641859][ T4566] handle_edge_irq+0x243/0xb20 [ 85.646708][ T4566] __common_interrupt+0xd7/0x1e0 [ 85.651724][ T4566] common_interrupt+0xb0/0xd0 [ 85.656489][ T4566] asm_common_interrupt+0x22/0x40 [ 85.661597][ T4566] _raw_spin_unlock_irqrestore+0xa5/0x100 [ 85.667410][ T4566] i8042_aux_write+0x105/0x170 [ 85.672257][ T4566] ps2_do_sendbyte+0x1fb/0x6c0 [ 85.677104][ T4566] ps2_sendbyte+0x5b/0x110 [ 85.681605][ T4566] cypress_send_ext_cmd+0x239/0x910 [ 85.686893][ T4566] cypress_detect+0x89/0x190 [ 85.691584][ T4566] psmouse_extensions+0xcf3/0x1430 [ 85.696777][ T4566] psmouse_switch_protocol+0x2e7/0x870 [ 85.702330][ T4566] psmouse_connect+0x923/0x1430 [ 85.707263][ T4566] serio_driver_probe+0x76/0x90 [ 85.712198][ T4566] really_probe+0x284/0xc80 [ 85.716787][ T4566] __driver_probe_device+0x18c/0x330 [ 85.722155][ T4566] driver_probe_device+0x4f/0x420 [ 85.727269][ T4566] __driver_attach+0x46b/0x670 [ 85.732118][ T4566] bus_for_each_dev+0x175/0x1e0 [ 85.737061][ T4566] serio_handle_event+0x29c/0x840 [ 85.742167][ T4566] process_one_work+0x863/0x1000 [ 85.747279][ T4566] worker_thread+0xaa8/0x12a0 [ 85.752052][ T4566] kthread+0x436/0x520 [ 85.756378][ T4566] ret_from_fork+0x1f/0x30 [ 85.760877][ T4566] [ 85.760877][ T4566] to a HARDIRQ-irq-unsafe lock: [ 85.767994][ T4566] (tasklist_lock){.+.+}-{2:2} [ 85.768016][ T4566] [ 85.768016][ T4566] ... which became HARDIRQ-irq-unsafe at: [ 85.780642][ T4566] ... [ 85.780649][ T4566] lock_acquire+0x197/0x3f0 [ 85.787815][ T4566] _raw_read_lock+0x32/0x40 [ 85.792487][ T4566] do_wait+0x293/0xac0 [ 85.796643][ T4566] kernel_wait+0xa8/0x160 [ 85.801141][ T4566] call_usermodehelper_exec_work+0xb5/0x220 [ 85.807120][ T4566] process_one_work+0x863/0x1000 [ 85.812146][ T4566] worker_thread+0xaa8/0x12a0 [ 85.816908][ T4566] kthread+0x436/0x520 [ 85.821061][ T4566] ret_from_fork+0x1f/0x30 [ 85.825584][ T4566] [ 85.825584][ T4566] other info that might help us debug this: [ 85.825584][ T4566] [ 85.835892][ T4566] Chain exists of: [ 85.835892][ T4566] &dev->event_lock#2 --> &f->f_owner.lock --> tasklist_lock [ 85.835892][ T4566] [ 85.849096][ T4566] Possible interrupt unsafe locking scenario: [ 85.849096][ T4566] [ 85.857415][ T4566] CPU0 CPU1 [ 85.862773][ T4566] ---- ---- [ 85.868138][ T4566] lock(tasklist_lock); [ 85.872382][ T4566] local_irq_disable(); [ 85.879128][ T4566] lock(&dev->event_lock#2); [ 85.886347][ T4566] lock(&f->f_owner.lock); [ 85.893366][ T4566] [ 85.896821][ T4566] lock(&dev->event_lock#2); [ 85.901682][ T4566] [ 85.901682][ T4566] *** DEADLOCK *** [ 85.901682][ T4566] [ 85.909818][ T4566] 6 locks held by syz-executor.0/4566: [ 85.915289][ T4566] #0: ffff88802c2c0460 (sb_writers#5){.+.+}-{0:0}, at: mnt_want_write+0x3d/0x90 [ 85.924449][ T4566] #1: ffffffff8c236510 (file_rwsem){.+.+}-{0:0}, at: __break_lease+0x17f/0x12b0 [ 85.933591][ T4566] #2: ffff88801f6fbb18 (&ctx->flc_lock){+.+.}-{2:2}, at: __break_lease+0x18c/0x12b0 [ 85.943079][ T4566] #3: ffffffff8c11bfa0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x5/0x30 [ 85.952388][ T4566] #4: ffff888076ff00c0 (&new->fa_lock){....}-{2:2}, at: kill_fasync+0x16d/0x490 [ 85.961515][ T4566] #5: ffff8880795237b8 (&f->f_owner.lock){....}-{2:2}, at: send_sigio+0x2f/0x330 [ 85.970748][ T4566] [ 85.970748][ T4566] the dependencies between HARDIRQ-irq-safe lock and the holding lock: [ 85.981156][ T4566] -> (&dev->event_lock#2){-...}-{2:2} { [ 85.986981][ T4566] IN-HARDIRQ-W at: [ 85.991220][ T4566] lock_acquire+0x197/0x3f0 [ 85.997914][ T4566] _raw_spin_lock_irqsave+0xa4/0xf0 [ 86.005284][ T4566] input_event+0x76/0xb0 [ 86.011783][ T4566] psmouse_report_standard_packet+0x4f/0x200 [ 86.020024][ T4566] psmouse_process_byte+0x42b/0x620 [ 86.027426][ T4566] psmouse_handle_byte+0x43/0x490 [ 86.034619][ T4566] psmouse_interrupt+0x699/0x1130 [ 86.041817][ T4566] serio_interrupt+0x87/0x130 [ 86.048671][ T4566] i8042_interrupt+0x369/0x710 [ 86.055605][ T4566] __handle_irq_event_percpu+0x291/0x9b0 [ 86.063409][ T4566] handle_irq_event+0xa5/0x220 [ 86.070346][ T4566] handle_edge_irq+0x243/0xb20 [ 86.077280][ T4566] __common_interrupt+0xd7/0x1e0 [ 86.084392][ T4566] common_interrupt+0xb0/0xd0 [ 86.091242][ T4566] asm_common_interrupt+0x22/0x40 [ 86.098436][ T4566] _raw_spin_unlock_irqrestore+0xa5/0x100 [ 86.106324][ T4566] i8042_aux_write+0x105/0x170 [ 86.113260][ T4566] ps2_do_sendbyte+0x1fb/0x6c0 [ 86.120192][ T4566] ps2_sendbyte+0x5b/0x110 [ 86.126777][ T4566] cypress_send_ext_cmd+0x239/0x910 [ 86.134143][ T4566] cypress_detect+0x89/0x190 [ 86.140902][ T4566] psmouse_extensions+0xcf3/0x1430 [ 86.148202][ T4566] psmouse_switch_protocol+0x2e7/0x870 [ 86.155823][ T4566] psmouse_connect+0x923/0x1430 [ 86.162871][ T4566] serio_driver_probe+0x76/0x90 [ 86.169916][ T4566] really_probe+0x284/0xc80 [ 86.176593][ T4566] __driver_probe_device+0x18c/0x330 [ 86.184049][ T4566] driver_probe_device+0x4f/0x420 [ 86.191262][ T4566] __driver_attach+0x46b/0x670 [ 86.198195][ T4566] bus_for_each_dev+0x175/0x1e0 [ 86.205215][ T4566] serio_handle_event+0x29c/0x840 [ 86.212417][ T4566] process_one_work+0x863/0x1000 [ 86.219708][ T4566] worker_thread+0xaa8/0x12a0 [ 86.226574][ T4566] kthread+0x436/0x520 [ 86.232818][ T4566] ret_from_fork+0x1f/0x30 [ 86.239404][ T4566] INITIAL USE at: [ 86.243555][ T4566] lock_acquire+0x197/0x3f0 [ 86.250229][ T4566] _raw_spin_lock_irqsave+0xa4/0xf0 [ 86.257609][ T4566] input_inject_event+0x9e/0x2c0 [ 86.264725][ T4566] led_trigger_event+0x10a/0x1e0 [ 86.271768][ T4566] kbd_led_trigger_activate+0xb9/0x100 [ 86.279398][ T4566] led_trigger_set+0x504/0x900 [ 86.286246][ T4566] led_trigger_set_default+0x19c/0x1e0 [ 86.293786][ T4566] led_classdev_register_ext+0x68f/0x870 [ 86.301499][ T4566] input_leds_connect+0x51d/0x750 [ 86.308614][ T4566] input_register_device+0xda7/0x1140 [ 86.316077][ T4566] atkbd_connect+0x759/0xa10 [ 86.322776][ T4566] serio_driver_probe+0x76/0x90 [ 86.329724][ T4566] really_probe+0x284/0xc80 [ 86.336319][ T4566] __driver_probe_device+0x18c/0x330 [ 86.343688][ T4566] driver_probe_device+0x4f/0x420 [ 86.350820][ T4566] __driver_attach+0x46b/0x670 [ 86.357667][ T4566] bus_for_each_dev+0x175/0x1e0 [ 86.364603][ T4566] serio_handle_event+0x29c/0x840 [ 86.371714][ T4566] process_one_work+0x863/0x1000 [ 86.378761][ T4566] worker_thread+0xaa8/0x12a0 [ 86.385526][ T4566] kthread+0x436/0x520 [ 86.391679][ T4566] ret_from_fork+0x1f/0x30 [ 86.398209][ T4566] } [ 86.400965][ T4566] ... key at: [] input_allocate_device.__key.6+0x0/0x20 [ 86.410253][ T4566] -> (&client->buffer_lock){....}-{2:2} { [ 86.416169][ T4566] INITIAL USE at: [ 86.420234][ T4566] lock_acquire+0x197/0x3f0 [ 86.426649][ T4566] _raw_spin_lock+0x2a/0x40 [ 86.433061][ T4566] evdev_pass_values+0xcb/0xab0 [ 86.439828][ T4566] evdev_events+0x1c0/0x2f0 [ 86.446239][ T4566] input_pass_values+0x880/0x1220 [ 86.453179][ T4566] input_handle_event+0xb3f/0x1490 [ 86.460198][ T4566] input_inject_event+0x1b9/0x2c0 [ 86.467149][ T4566] evdev_write+0x326/0x470 [ 86.473478][ T4566] vfs_write+0x300/0xd00 [ 86.479626][ T4566] ksys_write+0x14d/0x250 [ 86.485864][ T4566] do_syscall_64+0x4c/0xa0 [ 86.492195][ T4566] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 86.500002][ T4566] } [ 86.502668][ T4566] ... key at: [] evdev_open.__key.22+0x0/0x20 [ 86.510994][ T4566] ... acquired at: [ 86.514962][ T4566] _raw_spin_lock+0x2a/0x40 [ 86.519638][ T4566] evdev_pass_values+0xcb/0xab0 [ 86.524661][ T4566] evdev_events+0x1c0/0x2f0 [ 86.529338][ T4566] input_pass_values+0x880/0x1220 [ 86.534534][ T4566] input_handle_event+0xb3f/0x1490 [ 86.539816][ T4566] input_inject_event+0x1b9/0x2c0 [ 86.545019][ T4566] evdev_write+0x326/0x470 [ 86.549610][ T4566] vfs_write+0x300/0xd00 [ 86.554025][ T4566] ksys_write+0x14d/0x250 [ 86.558541][ T4566] do_syscall_64+0x4c/0xa0 [ 86.563128][ T4566] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 86.569205][ T4566] [ 86.571614][ T4566] -> (&new->fa_lock){....}-{2:2} { [ 86.576822][ T4566] INITIAL READ USE at: [ 86.581234][ T4566] lock_acquire+0x197/0x3f0 [ 86.587909][ T4566] _raw_read_lock_irqsave+0xac/0xf0 [ 86.595283][ T4566] kill_fasync+0x16d/0x490 [ 86.601870][ T4566] evdev_pass_values+0x54b/0xab0 [ 86.608980][ T4566] evdev_events+0x1c0/0x2f0 [ 86.615654][ T4566] input_pass_values+0x880/0x1220 [ 86.622844][ T4566] input_handle_event+0xb3f/0x1490 [ 86.630121][ T4566] input_inject_event+0x1b9/0x2c0 [ 86.637313][ T4566] evdev_write+0x326/0x470 [ 86.643900][ T4566] vfs_write+0x300/0xd00 [ 86.650311][ T4566] ksys_write+0x14d/0x250 [ 86.656812][ T4566] do_syscall_64+0x4c/0xa0 [ 86.663395][ T4566] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 86.671469][ T4566] } [ 86.674050][ T4566] ... key at: [] fasync_insert_entry.__key+0x0/0x20 [ 86.682863][ T4566] ... acquired at: [ 86.686761][ T4566] _raw_read_lock_irqsave+0xac/0xf0 [ 86.692137][ T4566] kill_fasync+0x16d/0x490 [ 86.696830][ T4566] evdev_pass_values+0x54b/0xab0 [ 86.702032][ T4566] evdev_events+0x1c0/0x2f0 [ 86.706714][ T4566] input_pass_values+0x880/0x1220 [ 86.711912][ T4566] input_handle_event+0xb3f/0x1490 [ 86.717197][ T4566] input_inject_event+0x1b9/0x2c0 [ 86.722403][ T4566] evdev_write+0x326/0x470 [ 86.727030][ T4566] vfs_write+0x300/0xd00 [ 86.731451][ T4566] ksys_write+0x14d/0x250 [ 86.735960][ T4566] do_syscall_64+0x4c/0xa0 [ 86.740575][ T4566] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 86.746647][ T4566] [ 86.748971][ T4566] -> (&f->f_owner.lock){....}-{2:2} { [ 86.754359][ T4566] INITIAL USE at: [ 86.758249][ T4566] lock_acquire+0x197/0x3f0 [ 86.764316][ T4566] _raw_write_lock_irq+0x9f/0xe0 [ 86.770822][ T4566] __f_setown+0x37/0x330 [ 86.776630][ T4566] generic_setlease+0xe9b/0x12c0 [ 86.783129][ T4566] fcntl_setlease+0x25e/0x330 [ 86.789370][ T4566] do_fcntl+0x10c/0x12d0 [ 86.795172][ T4566] __se_sys_fcntl+0xcc/0x190 [ 86.801322][ T4566] do_syscall_64+0x4c/0xa0 [ 86.807304][ T4566] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 86.814763][ T4566] INITIAL READ USE at: [ 86.819089][ T4566] lock_acquire+0x197/0x3f0 [ 86.825588][ T4566] _raw_read_lock_irqsave+0xac/0xf0 [ 86.832785][ T4566] send_sigio+0x2f/0x330 [ 86.839056][ T4566] kill_fasync+0x20a/0x490 [ 86.845465][ T4566] evdev_pass_values+0x54b/0xab0 [ 86.852401][ T4566] evdev_events+0x1c0/0x2f0 [ 86.859163][ T4566] input_pass_values+0x880/0x1220 [ 86.866180][ T4566] input_handle_event+0xb3f/0x1490 [ 86.873284][ T4566] input_inject_event+0x1b9/0x2c0 [ 86.880302][ T4566] evdev_write+0x326/0x470 [ 86.886719][ T4566] vfs_write+0x300/0xd00 [ 86.892958][ T4566] ksys_write+0x14d/0x250 [ 86.899308][ T4566] do_syscall_64+0x4c/0xa0 [ 86.905720][ T4566] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 86.913618][ T4566] } [ 86.916118][ T4566] ... key at: [] __alloc_file.__key+0x0/0x10 [ 86.924190][ T4566] ... acquired at: [ 86.927995][ T4566] _raw_read_lock_irqsave+0xac/0xf0 [ 86.933469][ T4566] send_sigio+0x2f/0x330 [ 86.937890][ T4566] kill_fasync+0x20a/0x490 [ 86.942487][ T4566] evdev_pass_values+0x54b/0xab0 [ 86.947602][ T4566] evdev_events+0x1c0/0x2f0 [ 86.952291][ T4566] input_pass_values+0x880/0x1220 [ 86.957505][ T4566] input_handle_event+0xb3f/0x1490 [ 86.962831][ T4566] input_inject_event+0x1b9/0x2c0 [ 86.968030][ T4566] evdev_write+0x326/0x470 [ 86.972625][ T4566] vfs_write+0x300/0xd00 [ 86.977051][ T4566] ksys_write+0x14d/0x250 [ 86.981554][ T4566] do_syscall_64+0x4c/0xa0 [ 86.986171][ T4566] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 86.992329][ T4566] [ 86.994649][ T4566] [ 86.994649][ T4566] the dependencies between the lock to be acquired [ 86.994656][ T4566] and HARDIRQ-irq-unsafe lock: [ 87.008156][ T4566] -> (tasklist_lock){.+.+}-{2:2} { [ 87.013283][ T4566] HARDIRQ-ON-R at: [ 87.017346][ T4566] lock_acquire+0x197/0x3f0 [ 87.023519][ T4566] _raw_read_lock+0x32/0x40 [ 87.029671][ T4566] do_wait+0x293/0xac0 [ 87.035389][ T4566] kernel_wait+0xa8/0x160 [ 87.041367][ T4566] call_usermodehelper_exec_work+0xb5/0x220 [ 87.048911][ T4566] process_one_work+0x863/0x1000 [ 87.055499][ T4566] worker_thread+0xaa8/0x12a0 [ 87.061953][ T4566] kthread+0x436/0x520 [ 87.067940][ T4566] ret_from_fork+0x1f/0x30 [ 87.074294][ T4566] SOFTIRQ-ON-R at: [ 87.078631][ T4566] lock_acquire+0x197/0x3f0 [ 87.084810][ T4566] _raw_read_lock+0x32/0x40 [ 87.090987][ T4566] do_wait+0x293/0xac0 [ 87.096738][ T4566] kernel_wait+0xa8/0x160 [ 87.102863][ T4566] call_usermodehelper_exec_work+0xb5/0x220 [ 87.110550][ T4566] process_one_work+0x863/0x1000 [ 87.117658][ T4566] worker_thread+0xaa8/0x12a0 [ 87.124050][ T4566] kthread+0x436/0x520 [ 87.130156][ T4566] ret_from_fork+0x1f/0x30 [ 87.136327][ T4566] INITIAL USE at: [ 87.140317][ T4566] lock_acquire+0x197/0x3f0 [ 87.146402][ T4566] _raw_write_lock_irq+0x9f/0xe0 [ 87.153002][ T4566] copy_process+0x234a/0x3e00 [ 87.159272][ T4566] kernel_clone+0x219/0x930 [ 87.165340][ T4566] kernel_thread+0xc8/0x120 [ 87.171404][ T4566] rest_init+0x21/0x330 [ 87.177121][ T4566] start_kernel+0x486/0x530 [ 87.183183][ T4566] secondary_startup_64_no_verify+0xb1/0xbb [ 87.190638][ T4566] INITIAL READ USE at: [ 87.194964][ T4566] lock_acquire+0x197/0x3f0 [ 87.201476][ T4566] _raw_read_lock+0x32/0x40 [ 87.207996][ T4566] do_wait+0x293/0xac0 [ 87.214072][ T4566] kernel_wait+0xa8/0x160 [ 87.220400][ T4566] call_usermodehelper_exec_work+0xb5/0x220 [ 87.228300][ T4566] process_one_work+0x863/0x1000 [ 87.235240][ T4566] worker_thread+0xaa8/0x12a0 [ 87.241916][ T4566] kthread+0x436/0x520 [ 87.247978][ T4566] ret_from_fork+0x1f/0x30 [ 87.254388][ T4566] } [ 87.256889][ T4566] ... key at: [] tasklist_lock+0x18/0x40 [ 87.264610][ T4566] ... acquired at: [ 87.268415][ T4566] _raw_read_lock+0x32/0x40 [ 87.273103][ T4566] send_sigio+0xd2/0x330 [ 87.277526][ T4566] kill_fasync+0x20a/0x490 [ 87.282205][ T4566] lease_break_callback+0x22/0x30 [ 87.287439][ T4566] __break_lease+0x4a3/0x12b0 [ 87.292298][ T4566] vfs_truncate+0x1fb/0x2f0 [ 87.296977][ T4566] do_sys_truncate+0xdc/0x190 [ 87.301832][ T4566] do_syscall_64+0x4c/0xa0 [ 87.306424][ T4566] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 87.312502][ T4566] [ 87.314854][ T4566] [ 87.314854][ T4566] stack backtrace: [ 87.320750][ T4566] CPU: 1 PID: 4566 Comm: syz-executor.0 Not tainted 5.15.185-syzkaller #0 [ 87.329364][ T4566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 87.339440][ T4566] Call Trace: [ 87.342737][ T4566] [ 87.345699][ T4566] dump_stack_lvl+0x168/0x230 [ 87.350394][ T4566] ? load_image+0x3b0/0x3b0 [ 87.354986][ T4566] ? show_regs_print_info+0x20/0x20 [ 87.360187][ T4566] ? load_image+0x3b0/0x3b0 [ 87.364692][ T4566] ? print_shortest_lock_dependencies+0xf0/0x160 [ 87.371029][ T4566] __lock_acquire+0x65dd/0x7c60 [ 87.375974][ T4566] ? verify_lock_unused+0x140/0x140 [ 87.381180][ T4566] lock_acquire+0x197/0x3f0 [ 87.385682][ T4566] ? send_sigio+0xd2/0x330 [ 87.390117][ T4566] ? read_lock_is_recursive+0x10/0x10 [ 87.395616][ T4566] ? read_lock_is_recursive+0x10/0x10 [ 87.401009][ T4566] ? do_raw_read_lock+0x39/0x80 [ 87.405872][ T4566] ? _raw_read_lock_irqsave+0xb8/0xf0 [ 87.411260][ T4566] ? _raw_read_lock+0x40/0x40 [ 87.415961][ T4566] ? lockdep_hardirqs_off+0x70/0x100 [ 87.421265][ T4566] ? do_raw_read_lock+0x39/0x80 [ 87.426209][ T4566] _raw_read_lock+0x32/0x40 [ 87.430719][ T4566] ? send_sigio+0xd2/0x330 [ 87.435137][ T4566] send_sigio+0xd2/0x330 [ 87.439382][ T4566] kill_fasync+0x20a/0x490 [ 87.443801][ T4566] lease_break_callback+0x22/0x30 [ 87.448829][ T4566] __break_lease+0x4a3/0x12b0 [ 87.453506][ T4566] ? lease_modify+0x390/0x390 [ 87.458204][ T4566] ? privileged_wrt_inode_uidgid+0x1ed/0x240 [ 87.464192][ T4566] ? generic_permission+0x30e/0x510 [ 87.469393][ T4566] ? inode_permission+0xef/0x480 [ 87.474333][ T4566] ? bpf_lsm_inode_permission+0x5/0x10 [ 87.479894][ T4566] vfs_truncate+0x1fb/0x2f0 [ 87.484403][ T4566] do_sys_truncate+0xdc/0x190 [ 87.489111][ T4566] ? break_lease+0xd0/0xd0 [ 87.493537][ T4566] ? lockdep_hardirqs_on+0x94/0x140 [ 87.498740][ T4566] do_syscall_64+0x4c/0xa0 [ 87.503164][ T4566] ? clear_bhb_loop+0x30/0x80 [ 87.507846][ T4566] ? clear_bhb_loop+0x30/0x80 [ 87.512576][ T4566] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 87.518489][ T4566] RIP: 0033:0x7f5443c4fe69 [ 87.522910][ T4566] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 87.542862][ T4566] RSP: 002b:00007f5442fd00c8 EFLAGS: 00000246 ORIG_RAX: 000000000000004c [ 87.551278][ T4566] RAX: ffffffffffffffda RBX: 00007f5443d7df80 RCX: 00007f5443c4fe69 [ 87.559267][ T4566] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040 [ 87.567269][ T4566] RBP: 00007f5443c9c47a R08: 0000000000000000 R09: 0000000000000000 [ 87.575248][ T4566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 87.583268][ T4566] R13: 000000000000000b R14: 00007f5443d7df80 R15: 00007fff52aed398 [ 87.591256][ T4566] [ 87.596002][ T7] cfg80211: failed to load regulatory.db 2025/06/08 22:45:25 executed programs: 33 [ 89.663774][ T7] Bluetooth: hci0: command 0x041b tx timeout [ 91.743747][ T7] Bluetooth: hci0: command 0x040f tx timeout 2025/06/08 22:45:30 executed programs: 226 [ 93.833556][ T7] Bluetooth: hci0: command 0x0419 tx timeout