Warning: Permanently added '10.128.1.139' (ED25519) to the list of known hosts. 2024/01/15 19:13:28 ignoring optional flag "sandboxArg"="0" 2024/01/15 19:13:28 parsed 1 programs 2024/01/15 19:13:28 executed programs: 0 [ 43.054310][ T2677] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 43.082644][ T2059] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 43.108839][ T2703] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 43.109936][ T2705] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 43.116694][ T2703] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 43.131060][ T2703] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 43.138173][ T2706] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 43.138340][ T2703] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 43.152751][ T2703] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 43.160398][ T2703] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 43.167748][ T2703] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 43.167757][ T2712] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 43.174886][ T2703] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 43.182927][ T2712] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 43.189626][ T2703] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 43.196514][ T2709] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 43.203837][ T2703] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 43.210663][ T2712] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 43.218461][ T2709] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 43.225202][ T2712] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 43.231849][ T2709] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 43.238950][ T2714] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 43.245745][ T2703] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 43.253708][ T2712] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 43.261429][ T2703] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 43.267885][ T2712] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 43.274822][ T2703] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 43.282610][ T2712] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 43.289503][ T2709] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 43.297348][ T2712] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 43.303712][ T2715] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 43.311281][ T2712] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 43.319607][ T2709] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 43.326306][ T2712] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 43.340745][ T2696] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 43.349362][ T2059] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 43.358897][ T2696] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 43.537715][ T2700] chnl_net:caif_netlink_parms(): no params data found [ 43.590222][ T2687] chnl_net:caif_netlink_parms(): no params data found [ 43.600345][ T2686] chnl_net:caif_netlink_parms(): no params data found [ 43.642551][ T2693] chnl_net:caif_netlink_parms(): no params data found [ 43.653123][ T2710] chnl_net:caif_netlink_parms(): no params data found [ 43.691739][ T2707] chnl_net:caif_netlink_parms(): no params data found [ 45.387194][ T2696] Bluetooth: hci1: command 0x0409 tx timeout [ 45.393370][ T2696] Bluetooth: hci2: command 0x0409 tx timeout [ 45.395255][ T2715] Bluetooth: hci0: command 0x0409 tx timeout [ 45.399525][ T2706] Bluetooth: hci4: command 0x0409 tx timeout [ 45.405591][ T2715] Bluetooth: hci3: command 0x0409 tx timeout [ 45.465362][ T2715] Bluetooth: hci5: command 0x0409 tx timeout [ 46.435482][ T2700] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.460886][ T2687] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.471713][ T2710] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.509690][ T2707] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.558205][ T2686] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.583157][ T2693] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.465363][ T2715] Bluetooth: hci4: command 0x041b tx timeout [ 47.471392][ T2709] Bluetooth: hci2: command 0x041b tx timeout [ 47.471413][ T2696] Bluetooth: hci1: command 0x041b tx timeout [ 47.477582][ T2709] Bluetooth: hci3: command 0x041b tx timeout [ 47.483736][ T2706] Bluetooth: hci0: command 0x041b tx timeout [ 47.545446][ T2706] Bluetooth: hci5: command 0x041b tx timeout [ 48.537254][ T2707] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 48.547489][ T2687] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 48.615027][ T2693] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 48.645014][ T2700] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 48.672872][ T2710] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 48.716649][ T2686] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 49.545365][ T2696] Bluetooth: hci1: command 0x040f tx timeout [ 49.545519][ T2709] Bluetooth: hci2: command 0x040f tx timeout [ 49.553034][ T2696] Bluetooth: hci3: command 0x040f tx timeout [ 49.559319][ T2715] Bluetooth: hci4: command 0x040f tx timeout [ 49.565350][ T2706] Bluetooth: hci0: command 0x040f tx timeout [ 49.626000][ T2706] Bluetooth: hci5: command 0x040f tx timeout [ 51.625398][ T2706] Bluetooth: hci0: command 0x0419 tx timeout [ 51.631432][ T2706] Bluetooth: hci3: command 0x0419 tx timeout [ 51.638746][ T2696] Bluetooth: hci1: command 0x0419 tx timeout [ 51.638934][ T2709] Bluetooth: hci2: command 0x0419 tx timeout [ 51.644759][ T2696] Bluetooth: hci4: command 0x0419 tx timeout [ 51.705338][ T2696] Bluetooth: hci5: command 0x0419 tx timeout [ 52.852204][ C1] [ 52.855211][ C1] ====================================================== [ 52.862383][ C1] WARNING: possible circular locking dependency detected [ 52.869563][ C1] 6.7.0-syzkaller #0 Not tainted [ 52.874738][ C1] ------------------------------------------------------ [ 52.881741][ C1] ksoftirqd/1/22 is trying to acquire lock: [ 52.887704][ C1] ffff888113a71088 (&priv->active_session_list_lock){+.-.}-{2:2}, at: j1939_session_activate+0x23/0x110 [ 52.898802][ C1] [ 52.898802][ C1] but task is already holding lock: [ 52.906246][ C1] ffff888141e925b8 (&jsk->sk_session_queue_lock){+.-.}-{2:2}, at: j1939_sk_queue_activate_next+0x2d/0x150 [ 52.917523][ C1] [ 52.917523][ C1] which lock already depends on the new lock. [ 52.917523][ C1] [ 52.928009][ C1] [ 52.928009][ C1] the existing dependency chain (in reverse order) is: [ 52.937166][ C1] [ 52.937166][ C1] -> #2 (&jsk->sk_session_queue_lock){+.-.}-{2:2}: [ 52.945825][ C1] _raw_spin_lock_bh+0x35/0x50 [ 52.951338][ C1] j1939_sk_queue_drop_all+0x22/0xc0 [ 52.957228][ C1] j1939_sk_netdev_event_netdown+0x3f/0x80 [ 52.963638][ C1] j1939_netdev_notify+0xb1/0xf0 [ 52.969085][ C1] notifier_call_chain+0x69/0xf0 [ 52.974630][ C1] dev_close_many+0x10f/0x160 [ 52.979819][ C1] unregister_netdevice_many_notify+0x13a/0x810 [ 52.986754][ C1] rtnl_dellink+0x1e9/0x510 [ 52.991850][ C1] rtnetlink_rcv_msg+0x398/0x670 [ 52.997731][ C1] netlink_rcv_skb+0xd9/0x100 [ 53.002960][ C1] netlink_unicast+0x23b/0x320 [ 53.008322][ C1] netlink_sendmsg+0x3ad/0x440 [ 53.013771][ C1] ____sys_sendmsg+0x19a/0x240 [ 53.019473][ C1] ___sys_sendmsg+0x28f/0x2d0 [ 53.024782][ C1] __se_sys_sendmsg+0xf7/0x130 [ 53.030230][ C1] do_syscall_64+0x9f/0x1b0 [ 53.035340][ C1] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 53.041874][ C1] [ 53.041874][ C1] -> #1 (&priv->j1939_socks_lock){+.-.}-{2:2}: [ 53.050280][ C1] _raw_spin_lock_bh+0x35/0x50 [ 53.055554][ C1] j1939_sk_errqueue+0x48/0xb0 [ 53.060855][ C1] j1939_session_put+0x55/0x160 [ 53.066218][ C1] j1939_cancel_active_session+0x62/0x150 [ 53.072531][ C1] j1939_netdev_notify+0xa9/0xf0 [ 53.077970][ C1] notifier_call_chain+0x69/0xf0 [ 53.083497][ C1] dev_close_many+0x10f/0x160 [ 53.088695][ C1] unregister_netdevice_many_notify+0x13a/0x810 [ 53.095453][ C1] rtnl_dellink+0x1e9/0x510 [ 53.100465][ C1] rtnetlink_rcv_msg+0x398/0x670 [ 53.105995][ C1] netlink_rcv_skb+0xd9/0x100 [ 53.111315][ C1] netlink_unicast+0x23b/0x320 [ 53.116741][ C1] netlink_sendmsg+0x3ad/0x440 [ 53.122182][ C1] ____sys_sendmsg+0x19a/0x240 [ 53.127535][ C1] ___sys_sendmsg+0x28f/0x2d0 [ 53.132714][ C1] __se_sys_sendmsg+0xf7/0x130 [ 53.137984][ C1] do_syscall_64+0x9f/0x1b0 [ 53.143177][ C1] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 53.149747][ C1] [ 53.149747][ C1] -> #0 (&priv->active_session_list_lock){+.-.}-{2:2}: [ 53.158790][ C1] __lock_acquire+0x11f6/0x2480 [ 53.164415][ C1] lock_acquire+0xea/0x260 [ 53.169337][ C1] _raw_spin_lock_bh+0x35/0x50 [ 53.174694][ C1] j1939_session_activate+0x23/0x110 [ 53.180658][ C1] j1939_sk_queue_activate_next+0xd6/0x150 [ 53.186983][ C1] j1939_xtp_rx_eoma+0x14b/0x1c0 [ 53.192560][ C1] j1939_tp_recv+0x2ea/0x4a0 [ 53.198451][ C1] j1939_can_recv+0x1e4/0x290 [ 53.203654][ C1] can_rcv_filter+0x76/0x160 [ 53.208843][ C1] can_receive+0x107/0x190 [ 53.213898][ C1] can_rcv+0x4b/0x90 [ 53.218748][ C1] __netif_receive_skb+0x50/0xe0 [ 53.224297][ C1] process_backlog+0x1b6/0x2d0 [ 53.229747][ C1] __napi_poll+0x24/0x1c0 [ 53.234599][ C1] net_rx_action+0x1b9/0x390 [ 53.239703][ C1] __do_softirq+0x146/0x3c8 [ 53.244974][ C1] run_ksoftirqd+0x50/0x80 [ 53.249985][ C1] smpboot_thread_fn+0x152/0x200 [ 53.255517][ C1] kthread+0xe5/0x100 [ 53.260010][ C1] ret_from_fork+0x2e/0x40 [ 53.265019][ C1] ret_from_fork_asm+0x11/0x20 [ 53.270395][ C1] [ 53.270395][ C1] other info that might help us debug this: [ 53.270395][ C1] [ 53.282310][ C1] Chain exists of: [ 53.282310][ C1] &priv->active_session_list_lock --> &priv->j1939_socks_lock --> &jsk->sk_session_queue_lock [ 53.282310][ C1] [ 53.298873][ C1] Possible unsafe locking scenario: [ 53.298873][ C1] [ 53.306619][ C1] CPU0 CPU1 [ 53.312059][ C1] ---- ---- [ 53.317684][ C1] lock(&jsk->sk_session_queue_lock); [ 53.323214][ C1] lock(&priv->j1939_socks_lock); [ 53.330824][ C1] lock(&jsk->sk_session_queue_lock); [ 53.338932][ C1] lock(&priv->active_session_list_lock); [ 53.344981][ C1] [ 53.344981][ C1] *** DEADLOCK *** [ 53.344981][ C1] [ 53.353280][ C1] 3 locks held by ksoftirqd/1/22: [ 53.358458][ C1] #0: ffffffff8417d500 (rcu_read_lock){....}-{1:2}, at: process_backlog+0x14a/0x2d0 [ 53.368428][ C1] #1: ffffffff8417d500 (rcu_read_lock){....}-{1:2}, at: can_receive+0x5f/0x190 [ 53.377612][ C1] #2: ffff888141e925b8 (&jsk->sk_session_queue_lock){+.-.}-{2:2}, at: j1939_sk_queue_activate_next+0x2d/0x150 [ 53.389315][ C1] [ 53.389315][ C1] stack backtrace: [ 53.395205][ C1] CPU: 1 PID: 22 Comm: ksoftirqd/1 Not tainted 6.7.0-syzkaller #0 [ 53.403436][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 53.413478][ C1] Call Trace: [ 53.416744][ C1] [ 53.419660][ C1] dump_stack_lvl+0x8d/0xe0 [ 53.424408][ C1] check_noncircular+0x115/0x140 [ 53.429332][ C1] __lock_acquire+0x11f6/0x2480 [ 53.434174][ C1] ? debug_object_deactivate+0x4a/0x100 [ 53.439794][ C1] ? j1939_session_activate+0x23/0x110 [ 53.445412][ C1] lock_acquire+0xea/0x260 [ 53.449911][ C1] ? j1939_session_activate+0x23/0x110 [ 53.455552][ C1] ? j1939_session_activate+0x23/0x110 [ 53.461213][ C1] _raw_spin_lock_bh+0x35/0x50 [ 53.466051][ C1] ? j1939_session_activate+0x23/0x110 [ 53.471508][ C1] j1939_session_activate+0x23/0x110 [ 53.477052][ C1] j1939_sk_queue_activate_next+0xd6/0x150 [ 53.482856][ C1] j1939_xtp_rx_eoma+0x14b/0x1c0 [ 53.487793][ C1] j1939_tp_recv+0x2ea/0x4a0 [ 53.492561][ C1] j1939_can_recv+0x1e4/0x290 [ 53.497226][ C1] can_rcv_filter+0x76/0x160 [ 53.501802][ C1] ? can_receive+0x5f/0x190 [ 53.506385][ C1] can_receive+0x107/0x190 [ 53.510797][ C1] ? process_backlog+0x14a/0x2d0 [ 53.515813][ C1] can_rcv+0x4b/0x90 [ 53.519684][ C1] __netif_receive_skb+0x50/0xe0 [ 53.524600][ C1] process_backlog+0x1b6/0x2d0 [ 53.529355][ C1] __napi_poll+0x24/0x1c0 [ 53.534025][ C1] net_rx_action+0x1b9/0x390 [ 53.538614][ C1] __do_softirq+0x146/0x3c8 [ 53.543282][ C1] ? run_ksoftirqd+0x50/0x80 [ 53.547977][ C1] run_ksoftirqd+0x50/0x80 [ 53.552561][ C1] smpboot_thread_fn+0x152/0x200 [ 53.557860][ C1] ? smpboot_unregister_percpu_thread+0xe0/0xe0 [ 53.564690][ C1] kthread+0xe5/0x100 [ 53.568666][ C1] ? kthread_blkcg+0x30/0x30 [ 53.573238][ C1] ret_from_fork+0x2e/0x40 [ 53.577721][ C1] ? kthread_blkcg+0x30/0x30 [ 53.582294][ C1] ret_from_fork_asm+0x11/0x20 [ 53.587039][ C1] [ 53.599410][ C1] vxcan0: j1939_xtp_rx_dat: no tx connection found 2024/01/15 19:13:39 executed programs: 6 [ 54.355980][ C1] vxcan0 (unregistered): j1939_tp_rxtimer: 0xffff888113bb5800: rx timeout, send abort [ 54.842629][ C0] vxcan0 (unregistered): j1939_tp_rxtimer: 0xffff888112e3ae00: rx timeout, send abort [ 54.866233][ C1] vxcan0 (unregistered): j1939_tp_rxtimer: 0xffff888113bb5800: abort rx timeout. Force session deactivation [ 55.352346][ C0] vxcan0 (unregistered): j1939_tp_rxtimer: 0xffff888112e3ae00: abort rx timeout. Force session deactivation 2024/01/15 19:13:44 executed programs: 280