[ 76.353864][ T13] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.10.9' (ED25519) to the list of known hosts. 2025/07/05 10:53:05 ignoring optional flag "sandboxArg"="0" 2025/07/05 10:53:06 parsed 1 programs [ 83.738119][ T4599] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS [ 85.004823][ T144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.020306][ T144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.027198][ T4314] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.029142][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 85.037127][ T4314] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.052705][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 86.626403][ T4655] chnl_net:caif_netlink_parms(): no params data found [ 86.764261][ T4655] bridge0: port 1(bridge_slave_0) entered blocking state [ 86.771415][ T4655] bridge0: port 1(bridge_slave_0) entered disabled state [ 86.781185][ T4655] device bridge_slave_0 entered promiscuous mode [ 86.794691][ T4655] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.801845][ T4655] bridge0: port 2(bridge_slave_1) entered disabled state [ 86.809980][ T4655] device bridge_slave_1 entered promiscuous mode [ 86.838887][ T4655] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 86.849863][ T4655] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 86.870075][ T4655] team0: Port device team_slave_0 added [ 86.877103][ T4655] team0: Port device team_slave_1 added [ 86.892175][ T4655] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 86.899139][ T4655] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.925130][ T4655] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 86.936838][ T4655] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 86.943816][ T4655] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.969961][ T4655] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 86.996262][ T4655] device hsr_slave_0 entered promiscuous mode [ 87.003267][ T4655] device hsr_slave_1 entered promiscuous mode [ 87.451358][ T4655] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 87.461023][ T4655] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 87.470538][ T4655] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 87.480071][ T4655] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 87.564339][ T4655] 8021q: adding VLAN 0 to HW filter on device bond0 [ 87.603240][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 87.611200][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 87.621495][ T4655] 8021q: adding VLAN 0 to HW filter on device team0 [ 87.631426][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 87.643725][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 87.653314][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.660390][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 87.672245][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 87.711064][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 87.720025][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 87.730604][ T9] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.737746][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state [ 87.746910][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 87.756293][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 87.765208][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 87.774746][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 87.783610][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 87.792691][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 87.807902][ T4655] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 87.819155][ T4655] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 87.831861][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 87.840016][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 87.849951][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 87.858632][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 87.868291][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 87.877294][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 88.056236][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 88.065241][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 88.078016][ T4655] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 88.115326][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 88.124187][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 88.140917][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 88.149727][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 88.162638][ T4655] device veth0_vlan entered promiscuous mode [ 88.174019][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 88.181889][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 88.193167][ T4655] device veth1_vlan entered promiscuous mode [ 88.213308][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 88.221424][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 88.230597][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 88.239397][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 88.257456][ T4655] device veth0_macvtap entered promiscuous mode [ 88.267402][ T4655] device veth1_macvtap entered promiscuous mode [ 88.284278][ T4655] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 88.291582][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 88.300470][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 88.310627][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 88.319789][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 88.332575][ T4655] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 88.339870][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 88.349760][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 88.366591][ T4655] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.378134][ T4655] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.389535][ T4655] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.398588][ T4655] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 2025/07/05 10:53:14 executed programs: 0 [ 89.491339][ T4790] chnl_net:caif_netlink_parms(): no params data found [ 89.623551][ T4790] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.630637][ T4790] bridge0: port 1(bridge_slave_0) entered disabled state [ 89.657891][ T4790] device bridge_slave_0 entered promiscuous mode [ 89.677067][ T4790] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.686442][ T4790] bridge0: port 2(bridge_slave_1) entered disabled state [ 89.694863][ T4790] device bridge_slave_1 entered promiscuous mode [ 89.748322][ T4790] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 89.776589][ T4790] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 89.840233][ T4790] team0: Port device team_slave_0 added [ 89.856414][ T4790] team0: Port device team_slave_1 added [ 89.908880][ T4790] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 89.921930][ T4790] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 89.950976][ T4790] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 89.984266][ T4790] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 89.991236][ T4790] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 90.019961][ T4790] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 90.065252][ T4790] device hsr_slave_0 entered promiscuous mode [ 90.075214][ T4790] device hsr_slave_1 entered promiscuous mode [ 90.081827][ T4790] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 90.089941][ T4790] Cannot create hsr debugfs directory [ 90.214109][ T4790] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 91.312996][ T4265] Bluetooth: hci0: command 0x0409 tx timeout [ 92.836205][ T4790] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 92.905275][ T4790] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 92.986323][ T4790] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 93.057073][ T4790] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 93.071870][ T4790] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 93.080963][ T4790] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 93.090170][ T4790] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 93.134873][ T4790] 8021q: adding VLAN 0 to HW filter on device bond0 [ 93.151685][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 93.160231][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 93.170291][ T4790] 8021q: adding VLAN 0 to HW filter on device team0 [ 93.179113][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 93.187907][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 93.196482][ T144] bridge0: port 1(bridge_slave_0) entered blocking state [ 93.203563][ T144] bridge0: port 1(bridge_slave_0) entered forwarding state [ 93.212155][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 93.228745][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 93.237784][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 93.246617][ T144] bridge0: port 2(bridge_slave_1) entered blocking state [ 93.253723][ T144] bridge0: port 2(bridge_slave_1) entered forwarding state [ 93.270574][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 93.283280][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 93.291808][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 93.301341][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 93.310245][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 93.327840][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 93.336602][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 93.347265][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 93.356097][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 93.366666][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 93.375261][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 93.387188][ T4790] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 93.394866][ T4673] Bluetooth: hci0: command 0x041b tx timeout [ 93.456956][ T415] device hsr_slave_0 left promiscuous mode [ 93.465498][ T415] device hsr_slave_1 left promiscuous mode [ 93.471807][ T415] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 93.479766][ T415] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 93.488063][ T415] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 93.495783][ T415] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 93.503720][ T415] device bridge_slave_1 left promiscuous mode [ 93.509951][ T415] bridge0: port 2(bridge_slave_1) entered disabled state [ 93.518172][ T415] device bridge_slave_0 left promiscuous mode [ 93.524527][ T415] bridge0: port 1(bridge_slave_0) entered disabled state [ 93.534885][ T415] device veth1_macvtap left promiscuous mode [ 93.540890][ T415] device veth0_macvtap left promiscuous mode [ 93.547320][ T415] device veth1_vlan left promiscuous mode [ 93.553317][ T415] device veth0_vlan left promiscuous mode [ 93.654141][ T415] team0 (unregistering): Port device team_slave_1 removed [ 93.667191][ T415] team0 (unregistering): Port device team_slave_0 removed [ 93.677535][ T415] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 93.689902][ T415] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 93.733129][ T415] bond0 (unregistering): Released all slaves [ 93.810017][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 93.817649][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 93.829352][ T4790] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 93.854072][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 93.862996][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 93.876848][ T4790] device veth0_vlan entered promiscuous mode [ 93.885115][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 93.893510][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 93.901703][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 93.910401][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 93.924001][ T4790] device veth1_vlan entered promiscuous mode [ 93.948636][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 93.958963][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 93.967278][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 93.975893][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 93.987012][ T4790] device veth0_macvtap entered promiscuous mode [ 94.009934][ T4790] device veth1_macvtap entered promiscuous mode [ 94.023442][ T4790] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 94.030847][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 94.039643][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 94.047817][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 94.056599][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 94.068159][ T4790] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 94.075991][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 94.085100][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 94.095296][ T4790] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.104543][ T4790] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.113505][ T4790] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.122322][ T4790] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.173116][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.181131][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.195818][ T4314] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.206488][ T4314] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.215880][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready 2025/07/05 10:53:19 executed programs: 2 [ 94.226740][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 94.316567][ T5063] loop0: detected capacity change from 0 to 4096 [ 94.487955][ T25] audit: type=1800 audit(1751712799.716:2): pid=5063 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.16" name="file1" dev="loop0" ino=30 res=0 errno=0 [ 94.514366][ T5063] [ 94.516716][ T5063] ====================================================== [ 94.523725][ T5063] WARNING: possible circular locking dependency detected [ 94.530262][ T25] audit: type=1800 audit(1751712799.746:3): pid=5063 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.16" name="file2" dev="loop0" ino=31 res=0 errno=0 [ 94.530748][ T5063] 5.15.186-syzkaller #0 Not tainted [ 94.555945][ T5063] ------------------------------------------------------ [ 94.562948][ T5063] syz.0.16/5063 is trying to acquire lock: [ 94.568741][ T5063] ffff8880299ac728 (&mm->mmap_lock){++++}-{3:3}, at: internal_get_user_pages_fast+0x1af/0x2080 [ 94.579152][ T5063] [ 94.579152][ T5063] but task is already holding lock: [ 94.586506][ T5063] ffff88805faaf9a0 (&sb->s_type->i_mutex_key#21){+.+.}-{3:3}, at: __blockdev_direct_IO+0x391/0x3c90 [ 94.597303][ T5063] [ 94.597303][ T5063] which lock already depends on the new lock. [ 94.597303][ T5063] [ 94.607707][ T5063] [ 94.607707][ T5063] the existing dependency chain (in reverse order) is: [ 94.616710][ T5063] [ 94.616710][ T5063] -> #1 (&sb->s_type->i_mutex_key#21){+.+.}-{3:3}: [ 94.625399][ T5063] down_write+0x38/0x60 [ 94.630172][ T5063] ntfs_file_mmap+0x516/0x720 [ 94.635365][ T5063] mmap_file+0x5d/0xb0 [ 94.639951][ T5063] mmap_region+0xd0d/0x15e0 [ 94.644971][ T5063] do_mmap+0x77a/0xdf0 [ 94.649556][ T5063] vm_mmap_pgoff+0x1b2/0x2b0 [ 94.654656][ T5063] ksys_mmap_pgoff+0x542/0x780 [ 94.659939][ T5063] do_syscall_64+0x4c/0xa0 [ 94.664864][ T5063] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 94.671274][ T5063] [ 94.671274][ T5063] -> #0 (&mm->mmap_lock){++++}-{3:3}: [ 94.678826][ T5063] __lock_acquire+0x2c33/0x7c60 [ 94.684199][ T5063] lock_acquire+0x197/0x3f0 [ 94.689221][ T5063] internal_get_user_pages_fast+0x1fa/0x2080 [ 94.695707][ T5063] iov_iter_get_pages+0x225/0x5b0 [ 94.701233][ T5063] __blockdev_direct_IO+0x1060/0x3c90 [ 94.707104][ T5063] ntfs_direct_IO+0x194/0x390 [ 94.712284][ T5063] generic_file_read_iter+0x2be/0x490 [ 94.718155][ T5063] vfs_read+0x725/0xcf0 [ 94.722810][ T5063] ksys_read+0x14d/0x250 [ 94.727552][ T5063] do_syscall_64+0x4c/0xa0 [ 94.732464][ T5063] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 94.738856][ T5063] [ 94.738856][ T5063] other info that might help us debug this: [ 94.738856][ T5063] [ 94.749059][ T5063] Possible unsafe locking scenario: [ 94.749059][ T5063] [ 94.756482][ T5063] CPU0 CPU1 [ 94.761824][ T5063] ---- ---- [ 94.767172][ T5063] lock(&sb->s_type->i_mutex_key#21); [ 94.772614][ T5063] lock(&mm->mmap_lock); [ 94.779437][ T5063] lock(&sb->s_type->i_mutex_key#21); [ 94.787477][ T5063] lock(&mm->mmap_lock); [ 94.791782][ T5063] [ 94.791782][ T5063] *** DEADLOCK *** [ 94.791782][ T5063] [ 94.799899][ T5063] 2 locks held by syz.0.16/5063: [ 94.804813][ T5063] #0: ffff88802a7f8370 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0x2bf/0x370 [ 94.814018][ T5063] #1: ffff88805faaf9a0 (&sb->s_type->i_mutex_key#21){+.+.}-{3:3}, at: __blockdev_direct_IO+0x391/0x3c90 [ 94.825212][ T5063] [ 94.825212][ T5063] stack backtrace: [ 94.831095][ T5063] CPU: 0 PID: 5063 Comm: syz.0.16 Not tainted 5.15.186-syzkaller #0 [ 94.839050][ T5063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 94.849178][ T5063] Call Trace: [ 94.852438][ T5063] [ 94.855346][ T5063] dump_stack_lvl+0x168/0x230 [ 94.860010][ T5063] ? load_image+0x3b0/0x3b0 [ 94.864492][ T5063] ? show_regs_print_info+0x20/0x20 [ 94.869673][ T5063] ? print_circular_bug+0x12b/0x1a0 [ 94.874847][ T5063] check_noncircular+0x274/0x310 [ 94.879764][ T5063] ? add_chain_block+0x940/0x940 [ 94.884678][ T5063] ? lockdep_lock+0xdc/0x1e0 [ 94.889249][ T5063] ? mark_lock+0x94/0x320 [ 94.893553][ T5063] __lock_acquire+0x2c33/0x7c60 [ 94.898387][ T5063] ? stack_trace_save+0x98/0xe0 [ 94.903214][ T5063] ? stack_trace_snprint+0xf0/0xf0 [ 94.908300][ T5063] ? verify_lock_unused+0x140/0x140 [ 94.913472][ T5063] ? check_noncircular+0x16f/0x310 [ 94.918559][ T5063] ? add_chain_block+0x940/0x940 [ 94.923472][ T5063] ? lockdep_unlock+0x134/0x2d0 [ 94.928299][ T5063] ? lockdep_lock+0x1e0/0x1e0 [ 94.932953][ T5063] ? add_lock_to_list+0x18d/0x280 [ 94.937955][ T5063] lock_acquire+0x197/0x3f0 [ 94.942436][ T5063] ? internal_get_user_pages_fast+0x1af/0x2080 [ 94.948567][ T5063] ? read_lock_is_recursive+0x10/0x10 [ 94.953913][ T5063] ? kmem_cache_alloc+0x100/0x290 [ 94.958915][ T5063] ? __blockdev_direct_IO+0x271/0x3c90 [ 94.964353][ T5063] internal_get_user_pages_fast+0x1fa/0x2080 [ 94.970306][ T5063] ? internal_get_user_pages_fast+0x1af/0x2080 [ 94.976438][ T5063] ? memset+0x1e/0x40 [ 94.980394][ T5063] ? lockdep_init_map_type+0x9d/0x850 [ 94.985742][ T5063] ? get_user_pages_fast_only+0x40/0x40 [ 94.991261][ T5063] ? lockdep_softirqs_off+0x420/0x420 [ 94.996608][ T5063] ? preempt_count_add+0x8d/0x190 [ 95.001609][ T5063] ? rwsem_write_trylock+0x12f/0x1b0 [ 95.006871][ T5063] ? clear_nonspinnable+0x60/0x60 [ 95.011875][ T5063] iov_iter_get_pages+0x225/0x5b0 [ 95.016879][ T5063] ? iov_iter_npages+0x264/0x5e0 [ 95.021794][ T5063] __blockdev_direct_IO+0x1060/0x3c90 [ 95.027146][ T5063] ? __mark_inode_dirty+0x4fb/0xc60 [ 95.032321][ T5063] ? sb_init_dio_done_wq+0x80/0x80 [ 95.037407][ T5063] ? ntfs_get_block_direct_IO_W+0xb0/0xb0 [ 95.043110][ T5063] ? rcu_read_lock_bh_held+0xe0/0xe0 [ 95.048372][ T5063] ? rcu_is_watching+0x11/0xa0 [ 95.053108][ T5063] ? __mark_inode_dirty+0x78b/0xc60 [ 95.058283][ T5063] ? touch_atime+0x4b1/0x620 [ 95.062847][ T5063] ? ntfs_get_block_direct_IO_W+0xb0/0xb0 [ 95.068543][ T5063] ntfs_direct_IO+0x194/0x390 [ 95.073197][ T5063] generic_file_read_iter+0x2be/0x490 [ 95.078546][ T5063] vfs_read+0x725/0xcf0 [ 95.082679][ T5063] ? kernel_read+0x1e0/0x1e0 [ 95.087246][ T5063] ? __fget_files+0x40f/0x480 [ 95.091899][ T5063] ? mutex_lock_nested+0x17/0x20 [ 95.096812][ T5063] ? __fdget_pos+0x2bf/0x370 [ 95.101376][ T5063] ? ksys_read+0x71/0x250 [ 95.105683][ T5063] ksys_read+0x14d/0x250 [ 95.109899][ T5063] ? vfs_write+0xd00/0xd00 [ 95.114288][ T5063] ? lockdep_hardirqs_on+0x94/0x140 [ 95.119465][ T5063] do_syscall_64+0x4c/0xa0 [ 95.123854][ T5063] ? clear_bhb_loop+0x30/0x80 [ 95.128508][ T5063] ? clear_bhb_loop+0x30/0x80 [ 95.133158][ T5063] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 95.139039][ T5063] RIP: 0033:0x7f3edb0a4d29 [ 95.143431][ T5063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 95.163011][ T5063] RSP: 002b:00007f3eda31d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 95.171399][ T5063] RAX: ffffffffffffffda RBX: 00007f3edb294fa0 RCX: 00007f3edb0a4d29 [ 95.179347][ T5063] RDX: 0000000000002000 RSI: 0000000020000000 RDI: 0000000000000005 [ 95.187293][ T5063] RBP: 00007f3edb120b08 R08: 0000000000000000 R09: 0000000000000000 [ 95.195239][ T5063] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 95.203185][ T5063] R13: 0000000000000000 R14: 00007f3edb294fa0 R15: 00007ffe14798348 [ 95.211153][ T5063] [ 95.306802][ T5065] loop0: detected capacity change from 0 to 4096 [ 95.376404][ T25] audit: type=1800 audit(1751712800.606:4): pid=5065 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.17" name="file1" dev="loop0" ino=30 res=0 errno=0 [ 95.401856][ T25] audit: type=1800 audit(1751712800.626:5): pid=5065 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.17" name="file2" dev="loop0" ino=31 res=0 errno=0 [ 95.472649][ T4669] Bluetooth: hci0: command 0x040f tx timeout [ 95.488356][ T5067] loop0: detected capacity change from 0 to 4096 [ 95.513645][ T25] audit: type=1800 audit(1751712800.746:6): pid=5067 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.18" name="file1" dev="loop0" ino=30 res=0 errno=0 [ 95.545663][ T25] audit: type=1800 audit(1751712800.766:7): pid=5067 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.18" name="file2" dev="loop0" ino=31 res=0 errno=0 [ 95.623684][ T5070] loop0: detected capacity change from 0 to 4096 [ 95.646496][ T25] audit: type=1800 audit(1751712800.876:8): pid=5070 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.19" name="file1" dev="loop0" ino=30 res=0 errno=0 [ 95.668096][ T25] audit: type=1800 audit(1751712800.876:9): pid=5070 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.19" name="file2" dev="loop0" ino=31 res=0 errno=0 [ 95.755396][ T5072] loop0: detected capacity change from 0 to 4096 [ 95.775127][ T25] audit: type=1800 audit(1751712801.006:10): pid=5072 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.20" name="file1" dev="loop0" ino=30 res=0 errno=0 [ 95.796019][ T25] audit: type=1800 audit(1751712801.006:11): pid=5072 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.20" name="file2" dev="loop0" ino=31 res=0 errno=0 [ 95.920270][ T5076] loop0: detected capacity change from 0 to 4096 [ 96.003394][ T5078] loop0: detected capacity change from 0 to 4096 [ 96.073155][ T5080] loop0: detected capacity change from 0 to 4096 [ 96.145042][ T5082] loop0: detected capacity change from 0 to 4096 [ 96.214485][ T5084] loop0: detected capacity change from 0 to 4096 [ 96.284845][ T5086] loop0: detected capacity change from 0 to 4096 [ 96.363295][ T5088] loop0: detected capacity change from 0 to 4096 [ 96.423677][ T5090] loop0: detected capacity change from 0 to 4096 [ 96.494817][ T5092] loop0: detected capacity change from 0 to 4096 [ 96.583412][ T5094] loop0: detected capacity change from 0 to 4096 [ 96.643590][ T5096] loop0: detected capacity change from 0 to 4096 [ 96.695146][ T5098] loop0: detected capacity change from 0 to 4096 [ 96.803263][ T5100] loop0: detected capacity change from 0 to 4096 [ 96.864068][ T5102] loop0: detected capacity change from 0 to 4096 [ 96.935199][ T5104] loop0: detected capacity change from 0 to 4096 [ 97.013302][ T5106] loop0: detected capacity change from 0 to 4096 [ 97.065183][ T5108] loop0: detected capacity change from 0 to 4096 [ 97.133259][ T5110] loop0: detected capacity change from 0 to 4096 [ 97.203260][ T5112] loop0: detected capacity change from 0 to 4096 [ 97.283527][ T5114] loop0: detected capacity change from 0 to 4096 [ 97.368070][ T5116] loop0: detected capacity change from 0 to 4096 [ 97.453515][ T5118] loop0: detected capacity change from 0 to 4096 [ 97.533311][ T5120] loop0: detected capacity change from 0 to 4096 [ 97.552405][ T4673] Bluetooth: hci0: command 0x0419 tx timeout [ 97.603175][ T5122] loop0: detected capacity change from 0 to 4096 [ 97.673687][ T5124] loop0: detected capacity change from 0 to 4096 [ 97.833529][ T5126] loop0: detected capacity change from 0 to 4096 [ 97.893453][ T5128] loop0: detected capacity change from 0 to 4096 [ 97.964072][ T5130] loop0: detected capacity change from 0 to 4096 [ 98.113592][ T5132] loop0: detected capacity change from 0 to 4096 [ 98.183703][ T5134] loop0: detected capacity change from 0 to 4096 [ 98.313782][ T5136] loop0: detected capacity change from 0 to 4096 [ 98.403274][ T5138] loop0: detected capacity change from 0 to 4096 [ 98.454361][ T5140] loop0: detected capacity change from 0 to 4096 [ 98.513300][ T5142] loop0: detected capacity change from 0 to 4096 [ 98.583726][ T5144] loop0: detected capacity change from 0 to 4096 [ 98.754432][ T5146] loop0: detected capacity change from 0 to 4096 [ 98.843246][ T5148] loop0: detected capacity change from 0 to 4096 [ 98.917878][ T5150] loop0: detected capacity change from 0 to 4096 [ 98.973583][ T5152] loop0: detected capacity change from 0 to 4096 [ 99.067347][ T5154] loop0: detected capacity change from 0 to 4096 [ 99.163224][ T5156] loop0: detected capacity change from 0 to 4096 [ 99.243481][ T5158] loop0: detected capacity change from 0 to 4096 2025/07/05 10:53:24 executed programs: 50 [ 99.324742][ T5160] loop0: detected capacity change from 0 to 4096 [ 99.453099][ T5162] loop0: detected capacity change from 0 to 4096 [ 99.523604][ T5164] loop0: detected capacity change from 0 to 4096 [ 99.611733][ T25] kauditd_printk_skb: 88 callbacks suppressed [ 99.611746][ T25] audit: type=1800 audit(1751712804.836:100): pid=5164 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.66" name="file1" dev="loop0" ino=30 res=0 errno=0 [ 99.640008][ T25] audit: type=1800 audit(1751712804.866:101): pid=5164 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.66" name="file2" dev="loop0" ino=31 res=0 errno=0 [ 99.723365][ T5166] loop0: detected capacity change from 0 to 4096 [ 99.775167][ T25] audit: type=1800 audit(1751712805.006:102): pid=5166 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.67" name="file1" dev="loop0" ino=30 res=0 errno=0 [ 99.796797][ T25] audit: type=1800 audit(1751712805.026:103): pid=5166 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.67" name="file2" dev="loop0" ino=31 res=0 errno=0 [ 99.883695][ T5168] loop0: detected capacity change from 0 to 4096 [ 99.902971][ T25] audit: type=1800 audit(1751712805.136:104): pid=5168 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.68" name="file1" dev="loop0" ino=30 res=0 errno=0 [ 99.927306][ T25] audit: type=1800 audit(1751712805.156:105): pid=5168 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.68" name="file2" dev="loop0" ino=31 res=0 errno=0 [ 100.046201][ T5172] loop0: detected capacity change from 0 to 4096 [ 100.107505][ T25] audit: type=1800 audit(1751712805.336:106): pid=5172 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.70" name="file1" dev="loop0" ino=30 res=0 errno=0 [ 100.132872][ T25] audit: type=1800 audit(1751712805.356:107): pid=5172 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.70" name="file2" dev="loop0" ino=31 res=0 errno=0 [ 100.213193][ T5174] loop0: detected capacity change from 0 to 4096 [ 100.232513][ T25] audit: type=1800 audit(1751712805.466:108): pid=5174 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.71" name="file1" dev="loop0" ino=30 res=0 errno=0 [ 100.254033][ T25] audit: type=1800 audit(1751712805.466:109): pid=5174 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.71" name="file2" dev="loop0" ino=31 res=0 errno=0 [ 100.351240][ T5176] loop0: detected capacity change from 0 to 4096 [ 100.437703][ T5178] loop0: detected capacity change from 0 to 4096 [ 100.506916][ T5180] loop0: detected capacity change from 0 to 4096 [ 100.563478][ T5182] loop0: detected capacity change from 0 to 4096 [ 100.638123][ T5184] loop0: detected capacity change from 0 to 4096 [ 100.713211][ T5186] loop0: detected capacity change from 0 to 4096 [ 100.793246][ T5188] loop0: detected capacity change from 0 to 4096 [ 100.853973][ T5190] loop0: detected capacity change from 0 to 4096 [ 100.926972][ T5192] loop0: detected capacity change from 0 to 4096 [ 100.983481][ T5194] loop0: detected capacity change from 0 to 4096 [ 101.073811][ T5196] loop0: detected capacity change from 0 to 4096 [ 101.153166][ T5198] loop0: detected capacity change from 0 to 4096 [ 101.226978][ T5200] loop0: detected capacity change from 0 to 4096 [ 101.313148][ T5202] loop0: detected capacity change from 0 to 4096 [ 101.367144][ T5204] loop0: detected capacity change from 0 to 4096 [ 101.444417][ T5206] loop0: detected capacity change from 0 to 4096 [ 101.577927][ T5208] loop0: detected capacity change from 0 to 4096 [ 101.653265][ T5210] loop0: detected capacity change from 0 to 4096 [ 101.713666][ T5212] loop0: detected capacity change from 0 to 4096 [ 101.803600][ T5214] loop0: detected capacity change from 0 to 4096 [ 101.878563][ T5216] loop0: detected capacity change from 0 to 4096 [ 101.947304][ T5218] loop0: detected capacity change from 0 to 4096 [ 102.020194][ T5220] loop0: detected capacity change from 0 to 4096 [ 102.123323][ T5222] loop0: detected capacity change from 0 to 4096 [ 102.213684][ T5224] loop0: detected capacity change from 0 to 4096 [ 102.276688][ T5226] loop0: detected capacity change from 0 to 4096 [ 102.345401][ T5228] loop0: detected capacity change from 0 to 4096 [ 102.415672][ T5230] loop0: detected capacity change from 0 to 4096 [ 102.485230][ T5232] loop0: detected capacity change from 0 to 4096 [ 102.563235][ T5234] loop0: detected capacity change from 0 to 4096 [ 102.614974][ T5236] loop0: detected capacity change from 0 to 4096 [ 102.685541][ T5238] loop0: detected capacity change from 0 to 4096 [ 102.765305][ T5240] loop0: detected capacity change from 0 to 4096 [ 102.833213][ T5242] loop0: detected capacity change from 0 to 4096 [ 102.905186][ T5244] loop0: detected capacity change from 0 to 4096 [ 102.983365][ T5246] loop0: detected capacity change from 0 to 4096 [ 103.053291][ T5248] loop0: detected capacity change from 0 to 4096 [ 103.135570][ T5250] loop0: detected capacity change from 0 to 4096 [ 103.223278][ T5252] loop0: detected capacity change from 0 to 4096 [ 103.283732][ T5254] loop0: detected capacity change from 0 to 4096 [ 103.356081][ T5256] loop0: detected capacity change from 0 to 4096 [ 103.425088][ T5258] loop0: detected capacity change from 0 to 4096 [ 103.483661][ T5260] loop0: detected capacity change from 0 to 4096 [ 103.543301][ T5262] loop0: detected capacity change from 0 to 4096 [ 103.614004][ T5264] loop0: detected capacity change from 0 to 4096 [ 103.755965][ T5266] loop0: detected capacity change from 0 to 4096 [ 103.826741][ T5268] loop0: detected capacity change from 0 to 4096 [ 103.883903][ T5270] loop0: detected capacity change from 0 to 4096 [ 103.955808][ T5272] loop0: detected capacity change from 0 to 4096 [ 104.033150][ T5274] loop0: detected capacity change from 0 to 4096 [ 104.123879][ T5276] loop0: detected capacity change from 0 to 4096 [ 104.203241][ T5278] loop0: detected capacity change from 0 to 4096 [ 104.263344][ T5280] loop0: detected capacity change from 0 to 4096 2025/07/05 10:53:29 executed programs: 111 [ 104.336252][ T5282] loop0: detected capacity change from 0 to 4096 [ 104.405264][ T5284] loop0: detected capacity change from 0 to 4096 [ 104.475357][ T5286] loop0: detected capacity change from 0 to 4096