[ 81.600337][ T7] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.0.229' (ED25519) to the list of known hosts. 2025/02/02 01:03:58 ignoring optional flag "sandboxArg"="0" 2025/02/02 01:03:58 ignoring optional flag "type"="gce" 2025/02/02 01:03:58 parsed 1 programs 2025/02/02 01:04:00 executed programs: 0 [ 85.281825][ T4393] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS [ 85.435726][ T4475] chnl_net:caif_netlink_parms(): no params data found [ 85.480479][ T4475] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.487773][ T4475] bridge0: port 1(bridge_slave_0) entered disabled state [ 85.495925][ T4475] device bridge_slave_0 entered promiscuous mode [ 85.504415][ T4475] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.512349][ T4475] bridge0: port 2(bridge_slave_1) entered disabled state [ 85.520366][ T4475] device bridge_slave_1 entered promiscuous mode [ 85.543407][ T4475] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 85.554570][ T4475] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 85.579461][ T4475] team0: Port device team_slave_0 added [ 85.587742][ T4475] team0: Port device team_slave_1 added [ 85.606110][ T4475] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 85.613289][ T4475] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 85.639808][ T4475] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 85.652753][ T4475] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 85.659986][ T4475] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 85.686283][ T4475] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 85.717717][ T4475] device hsr_slave_0 entered promiscuous mode [ 85.724815][ T4475] device hsr_slave_1 entered promiscuous mode [ 86.286660][ T4475] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 86.300446][ T4475] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 86.310400][ T4475] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 86.321431][ T4475] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 86.347946][ T4475] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.355167][ T4475] bridge0: port 2(bridge_slave_1) entered forwarding state [ 86.362640][ T4475] bridge0: port 1(bridge_slave_0) entered blocking state [ 86.369785][ T4475] bridge0: port 1(bridge_slave_0) entered forwarding state [ 86.434899][ T4475] 8021q: adding VLAN 0 to HW filter on device bond0 [ 86.451818][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 86.462895][ T155] bridge0: port 1(bridge_slave_0) entered disabled state [ 86.471715][ T155] bridge0: port 2(bridge_slave_1) entered disabled state [ 86.491358][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 86.505880][ T4475] 8021q: adding VLAN 0 to HW filter on device team0 [ 86.517925][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 86.528446][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 86.536998][ T155] bridge0: port 1(bridge_slave_0) entered blocking state [ 86.544163][ T155] bridge0: port 1(bridge_slave_0) entered forwarding state [ 86.564490][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 86.573696][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 86.583138][ T155] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.590285][ T155] bridge0: port 2(bridge_slave_1) entered forwarding state [ 86.600278][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 86.618542][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 86.628637][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 86.640497][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 86.650296][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 86.661616][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 86.678831][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 86.688505][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 86.697101][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 86.707338][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 86.716830][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 86.728874][ T4475] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 86.837134][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 86.846104][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 86.860582][ T4475] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 86.883223][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 86.893683][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 86.916080][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 86.926004][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 86.939251][ T4475] device veth0_vlan entered promiscuous mode [ 86.954142][ T4475] device veth1_vlan entered promiscuous mode [ 86.961587][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 86.970842][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 86.981251][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 87.005157][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 87.014715][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 87.023916][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 87.036639][ T4475] device veth0_macvtap entered promiscuous mode [ 87.050351][ T4475] device veth1_macvtap entered promiscuous mode [ 87.078921][ T4475] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 87.086366][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 87.095686][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 87.105551][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 87.116237][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 87.130309][ T4475] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 87.138488][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 87.147283][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 87.160579][ T4475] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.169883][ T4475] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.179331][ T4475] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.190259][ T4475] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.275991][ T154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 87.300781][ T154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 87.321459][ T4192] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 87.337039][ T4192] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 87.346838][ T4192] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 87.358563][ T2349] Bluetooth: hci0: command 0x0409 tx timeout [ 87.361656][ T4192] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 87.593973][ T4569] [ 87.596346][ T4569] ====================================================== [ 87.603458][ T4569] WARNING: possible circular locking dependency detected [ 87.610654][ T4569] 5.15.178-syzkaller #0 Not tainted [ 87.615860][ T4569] ------------------------------------------------------ [ 87.622903][ T4569] syz-executor.0/4569 is trying to acquire lock: [ 87.629372][ T4569] ffff8881408603f0 (&sb->s_type->i_mutex_key#9){++++}-{3:3}, at: ext4_bmap+0x4b/0x410 [ 87.639013][ T4569] [ 87.639013][ T4569] but task is already holding lock: [ 87.646434][ T4569] ffff88802cd343f8 (&journal->j_checkpoint_mutex){+.+.}-{3:3}, at: jbd2_journal_flush+0x31c/0xc90 [ 87.657080][ T4569] [ 87.657080][ T4569] which lock already depends on the new lock. [ 87.657080][ T4569] [ 87.667536][ T4569] [ 87.667536][ T4569] the existing dependency chain (in reverse order) is: [ 87.676705][ T4569] [ 87.676705][ T4569] -> #3 (&journal->j_checkpoint_mutex){+.+.}-{3:3}: [ 87.685604][ T4569] lock_acquire+0x1db/0x4f0 [ 87.690875][ T4569] __mutex_lock_common+0x1da/0x25a0 [ 87.696637][ T4569] mutex_lock_io_nested+0x45/0x60 [ 87.702211][ T4569] jbd2_journal_flush+0x290/0xc90 [ 87.707866][ T4569] ext4_ioctl+0x3249/0x5b80 [ 87.712912][ T4569] __se_sys_ioctl+0xf1/0x160 [ 87.718052][ T4569] do_syscall_64+0x3b/0xb0 [ 87.723343][ T4569] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 87.729785][ T4569] [ 87.729785][ T4569] -> #2 (&journal->j_barrier){+.+.}-{3:3}: [ 87.737811][ T4569] lock_acquire+0x1db/0x4f0 [ 87.742856][ T4569] __mutex_lock_common+0x1da/0x25a0 [ 87.748614][ T4569] mutex_lock_nested+0x17/0x20 [ 87.753916][ T4569] jbd2_journal_lock_updates+0x2aa/0x370 [ 87.760095][ T4569] ext4_change_inode_journal_flag+0x1a8/0x6e0 [ 87.766707][ T4569] ext4_fileattr_set+0xdf4/0x1750 [ 87.772271][ T4569] vfs_fileattr_set+0x8f3/0xd30 [ 87.777664][ T4569] do_vfs_ioctl+0x1d85/0x2b70 [ 87.782883][ T4569] __se_sys_ioctl+0x81/0x160 [ 87.788052][ T4569] do_syscall_64+0x3b/0xb0 [ 87.793020][ T4569] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 87.799459][ T4569] [ 87.799459][ T4569] -> #1 (&sbi->s_writepages_rwsem){++++}-{0:0}: [ 87.808099][ T4569] lock_acquire+0x1db/0x4f0 [ 87.813314][ T4569] percpu_down_write+0x52/0x2d0 [ 87.818712][ T4569] ext4_ind_migrate+0x254/0x760 [ 87.824109][ T4569] ext4_fileattr_set+0xe8b/0x1750 [ 87.829677][ T4569] vfs_fileattr_set+0x8f3/0xd30 [ 87.835074][ T4569] do_vfs_ioctl+0x1d85/0x2b70 [ 87.840390][ T4569] __se_sys_ioctl+0x81/0x160 [ 87.845528][ T4569] do_syscall_64+0x3b/0xb0 [ 87.850486][ T4569] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 87.856929][ T4569] [ 87.856929][ T4569] -> #0 (&sb->s_type->i_mutex_key#9){++++}-{3:3}: [ 87.865564][ T4569] validate_chain+0x1649/0x5930 [ 87.870967][ T4569] __lock_acquire+0x1295/0x1ff0 [ 87.876549][ T4569] lock_acquire+0x1db/0x4f0 [ 87.881716][ T4569] down_read+0x45/0x2e0 [ 87.886418][ T4569] ext4_bmap+0x4b/0x410 [ 87.891142][ T4569] bmap+0xa1/0xd0 [ 87.895371][ T4569] jbd2_journal_flush+0x7a2/0xc90 [ 87.900936][ T4569] ext4_ioctl+0x3249/0x5b80 [ 87.905981][ T4569] __se_sys_ioctl+0xf1/0x160 [ 87.911117][ T4569] do_syscall_64+0x3b/0xb0 [ 87.916079][ T4569] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 87.922527][ T4569] [ 87.922527][ T4569] other info that might help us debug this: [ 87.922527][ T4569] [ 87.932774][ T4569] Chain exists of: [ 87.932774][ T4569] &sb->s_type->i_mutex_key#9 --> &journal->j_barrier --> &journal->j_checkpoint_mutex [ 87.932774][ T4569] [ 87.948508][ T4569] Possible unsafe locking scenario: [ 87.948508][ T4569] [ 87.955971][ T4569] CPU0 CPU1 [ 87.961351][ T4569] ---- ---- [ 87.966825][ T4569] lock(&journal->j_checkpoint_mutex); [ 87.972563][ T4569] lock(&journal->j_barrier); [ 87.979875][ T4569] lock(&journal->j_checkpoint_mutex); [ 87.987953][ T4569] lock(&sb->s_type->i_mutex_key#9); [ 87.993358][ T4569] [ 87.993358][ T4569] *** DEADLOCK *** [ 87.993358][ T4569] [ 88.001515][ T4569] 2 locks held by syz-executor.0/4569: [ 88.006989][ T4569] #0: ffff88802cd34170 (&journal->j_barrier){+.+.}-{3:3}, at: jbd2_journal_lock_updates+0x2aa/0x370 [ 88.017912][ T4569] #1: ffff88802cd343f8 (&journal->j_checkpoint_mutex){+.+.}-{3:3}, at: jbd2_journal_flush+0x31c/0xc90 [ 88.029006][ T4569] [ 88.029006][ T4569] stack backtrace: [ 88.034959][ T4569] CPU: 1 PID: 4569 Comm: syz-executor.0 Not tainted 5.15.178-syzkaller #0 [ 88.043480][ T4569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 88.053563][ T4569] Call Trace: [ 88.056859][ T4569] [ 88.059810][ T4569] dump_stack_lvl+0x1e3/0x2d0 [ 88.064517][ T4569] ? io_uring_drop_tctx_refs+0x1a0/0x1a0 [ 88.070188][ T4569] ? print_circular_bug+0x12b/0x1a0 [ 88.075495][ T4569] check_noncircular+0x2f8/0x3b0 [ 88.080569][ T4569] ? add_chain_block+0x850/0x850 [ 88.085527][ T4569] ? lockdep_lock+0x11f/0x2a0 [ 88.090219][ T4569] ? do_raw_spin_unlock+0x137/0x8b0 [ 88.095547][ T4569] validate_chain+0x1649/0x5930 [ 88.100418][ T4569] ? finish_lock_switch+0x8f/0x100 [ 88.105560][ T4569] ? reacquire_held_locks+0x660/0x660 [ 88.110960][ T4569] ? mark_lock+0x98/0x340 [ 88.115340][ T4569] ? reacquire_held_locks+0x660/0x660 [ 88.120731][ T4569] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 88.126770][ T4569] ? release_firmware_map_entry+0x190/0x190 [ 88.132695][ T4569] ? do_raw_spin_unlock+0x137/0x8b0 [ 88.137982][ T4569] ? mark_lock+0x98/0x340 [ 88.142332][ T4569] ? schedule+0x132/0x1f0 [ 88.146684][ T4569] __lock_acquire+0x1295/0x1ff0 [ 88.151611][ T4569] lock_acquire+0x1db/0x4f0 [ 88.156413][ T4569] ? ext4_bmap+0x4b/0x410 [ 88.160769][ T4569] ? read_lock_is_recursive+0x10/0x10 [ 88.166403][ T4569] ? __might_sleep+0xc0/0xc0 [ 88.171068][ T4569] ? ext4_journalled_write_end+0xee0/0xee0 [ 88.176999][ T4569] down_read+0x45/0x2e0 [ 88.181192][ T4569] ? ext4_bmap+0x4b/0x410 [ 88.185547][ T4569] ? ext4_journalled_write_end+0xee0/0xee0 [ 88.191379][ T4569] ext4_bmap+0x4b/0x410 [ 88.195564][ T4569] ? ext4_journalled_write_end+0xee0/0xee0 [ 88.201393][ T4569] bmap+0xa1/0xd0 [ 88.205050][ T4569] jbd2_journal_flush+0x7a2/0xc90 [ 88.210104][ T4569] ? __bpf_trace_jbd2_shrink_checkpoint_list+0x50/0x50 [ 88.216991][ T4569] ? bpf_lsm_capable+0x5/0x10 [ 88.221690][ T4569] ? security_capable+0x86/0xb0 [ 88.226570][ T4569] ext4_ioctl+0x3249/0x5b80 [ 88.231108][ T4569] ? do_vfs_ioctl+0x1b66/0x2b70 [ 88.236069][ T4569] ? ext4_fileattr_set+0x1750/0x1750 [ 88.241383][ T4569] ? __x64_compat_sys_ioctl+0x80/0x80 [ 88.246781][ T4569] ? __lock_acquire+0x1ff0/0x1ff0 [ 88.251835][ T4569] ? slab_free_freelist_hook+0xdd/0x160 [ 88.257448][ T4569] ? tomoyo_path_number_perm+0x648/0x810 [ 88.263110][ T4569] ? kfree+0xf1/0x270 [ 88.267205][ T4569] ? tomoyo_path_number_perm+0x6ab/0x810 [ 88.272876][ T4569] ? tomoyo_check_path_acl+0x1c0/0x1c0 [ 88.278480][ T4569] ? __fget_files+0x413/0x480 [ 88.283198][ T4569] ? bpf_lsm_file_ioctl+0x5/0x10 [ 88.288350][ T4569] ? security_file_ioctl+0x7d/0xa0 [ 88.293485][ T4569] ? ext4_fileattr_set+0x1750/0x1750 [ 88.298909][ T4569] __se_sys_ioctl+0xf1/0x160 [ 88.303567][ T4569] do_syscall_64+0x3b/0xb0 [ 88.308001][ T4569] ? clear_bhb_loop+0x15/0x70 [ 88.312727][ T4569] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 88.318670][ T4569] RIP: 0033:0x7f47580dfea9 [ 88.323201][ T4569] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 88.343179][ T4569] RSP: 002b:00007f47574600c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 88.351612][ T4569] RAX: ffffffffffffffda RBX: 00007f475820df80 RCX: 00007f47580dfea9 [ 88.359607][ T4569] RDX: 0000000020000000 RSI: 000000004004662b RDI: 0000000000000004 [ 88.367601][ T4569] RBP: 00007f475812c4a4 R08: 0000000000000000 R09: 0000000000000000 [ 88.375610][ T4569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 88.383689][ T4569] R13: 000000000000000b R14: 00007f475820df80 R15: 00007ffe5451e0d8 [ 88.391695][ T4569] [ 89.437824][ T4185] Bluetooth: hci0: command 0x041b tx timeout 2025/02/02 01:04:05 executed programs: 27 [ 91.517840][ T4185] Bluetooth: hci0: command 0x040f tx timeout [ 93.597525][ T7] Bluetooth: hci0: command 0x0419 tx timeout 2025/02/02 01:04:10 executed programs: 123