Warning: Permanently added '10.128.1.10' (ED25519) to the list of known hosts. 1970/01/01 00:01:33 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:01:34 parsed 1 programs [ 96.937479][ T4482] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS [ 104.001658][ T4501] chnl_net:caif_netlink_parms(): no params data found [ 104.041039][ T4501] bridge0: port 1(bridge_slave_0) entered blocking state [ 104.043052][ T4501] bridge0: port 1(bridge_slave_0) entered disabled state [ 104.045605][ T4501] device bridge_slave_0 entered promiscuous mode [ 104.049530][ T4501] bridge0: port 2(bridge_slave_1) entered blocking state [ 104.051520][ T4501] bridge0: port 2(bridge_slave_1) entered disabled state [ 104.055013][ T4501] device bridge_slave_1 entered promiscuous mode [ 104.071051][ T4501] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 104.075349][ T4501] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 104.093888][ T4501] team0: Port device team_slave_0 added [ 104.096887][ T4501] team0: Port device team_slave_1 added [ 104.109183][ T4501] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 104.111170][ T4501] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 104.118607][ T4501] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 104.125512][ T4501] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 104.127570][ T4501] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 104.134783][ T4501] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 104.209168][ T4501] device hsr_slave_0 entered promiscuous mode [ 104.258867][ T4501] device hsr_slave_1 entered promiscuous mode [ 104.950687][ T4501] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 104.980127][ T4501] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 105.028729][ T4501] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 105.081426][ T4501] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 105.222882][ T4501] 8021q: adding VLAN 0 to HW filter on device bond0 [ 105.229805][ T594] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 105.232300][ T594] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 105.239823][ T4501] 8021q: adding VLAN 0 to HW filter on device team0 [ 105.250604][ T594] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 105.253454][ T594] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 105.256126][ T594] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.258127][ T594] bridge0: port 1(bridge_slave_0) entered forwarding state [ 105.279278][ T594] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 105.283747][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 105.286522][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 105.289725][ T1615] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.291804][ T1615] bridge0: port 2(bridge_slave_1) entered forwarding state [ 105.310183][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 105.313233][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 105.316233][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 105.325196][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 105.330923][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 105.335373][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 105.343686][ T4501] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 105.346618][ T4501] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 105.358593][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 105.361191][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 105.363881][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 105.366587][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 105.378046][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 105.388605][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 105.506300][ T4501] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 105.529357][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 105.531670][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 105.548775][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 105.551558][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 105.575653][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 105.579015][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 105.581861][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 105.589279][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 105.599882][ T4501] device veth0_vlan entered promiscuous mode [ 105.605588][ T4501] device veth1_vlan entered promiscuous mode [ 105.632996][ T4501] device veth0_macvtap entered promiscuous mode [ 105.648762][ T594] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 105.651448][ T594] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 105.654034][ T594] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 105.658853][ T594] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 105.664291][ T4501] device veth1_macvtap entered promiscuous mode [ 105.674342][ T594] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 105.677491][ T594] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 105.685337][ T4501] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 105.689935][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 105.692589][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 105.698053][ T4501] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 105.700186][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 105.702906][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 105.716503][ T4501] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 105.719586][ T4501] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 105.722089][ T4501] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 105.724535][ T4501] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 105.983522][ T594] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 105.985854][ T594] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 105.999287][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 106.018872][ T136] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 106.021148][ T136] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 106.023862][ T594] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 106.746045][ T148] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 1970/01/01 00:01:47 executed programs: 0 [ 107.916862][ T4713] chnl_net:caif_netlink_parms(): no params data found [ 107.954854][ T4713] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.956865][ T4713] bridge0: port 1(bridge_slave_0) entered disabled state [ 107.961365][ T4713] device bridge_slave_0 entered promiscuous mode [ 107.964982][ T4713] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.967004][ T4713] bridge0: port 2(bridge_slave_1) entered disabled state [ 107.971168][ T4713] device bridge_slave_1 entered promiscuous mode [ 107.988713][ T4713] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 107.993307][ T4713] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 108.011205][ T4713] team0: Port device team_slave_0 added [ 108.014459][ T4713] team0: Port device team_slave_1 added [ 108.030797][ T4713] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 108.032778][ T4713] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 108.041410][ T4713] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 108.045678][ T4713] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 108.047633][ T4713] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 108.054270][ T4713] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 108.099188][ T4713] device hsr_slave_0 entered promiscuous mode [ 108.137551][ T4713] device hsr_slave_1 entered promiscuous mode [ 108.177374][ T4713] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 108.179491][ T4713] Cannot create hsr debugfs directory [ 108.883190][ T148] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 109.867860][ T3606] Bluetooth: hci0: command 0x0409 tx timeout [ 110.994853][ T148] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 111.056570][ T148] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 111.947434][ T4913] Bluetooth: hci0: command 0x041b tx timeout [ 111.974133][ T4713] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 111.999755][ T4713] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 112.029253][ T4713] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 112.099430][ T4713] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 112.184063][ T4713] 8021q: adding VLAN 0 to HW filter on device bond0 [ 112.191801][ T594] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 112.194352][ T594] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 112.200758][ T4713] 8021q: adding VLAN 0 to HW filter on device team0 [ 112.207588][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 112.210584][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 112.213155][ T136] bridge0: port 1(bridge_slave_0) entered blocking state [ 112.215155][ T136] bridge0: port 1(bridge_slave_0) entered forwarding state [ 112.217727][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 112.220451][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 112.222940][ T136] bridge0: port 2(bridge_slave_1) entered blocking state [ 112.224792][ T136] bridge0: port 2(bridge_slave_1) entered forwarding state [ 112.228362][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 112.259394][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 112.264563][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 112.273059][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 112.276502][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 112.281128][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 112.286061][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 112.289894][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 112.295355][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 112.298514][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 112.303606][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 112.306606][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 112.315346][ T4713] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 112.395756][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 112.398612][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 112.405577][ T4713] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 112.418221][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 112.421046][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 112.433102][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 112.435868][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 112.439495][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 112.442016][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 112.446337][ T4713] device veth0_vlan entered promiscuous mode [ 112.453902][ T4713] device veth1_vlan entered promiscuous mode [ 112.469806][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 112.472553][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 112.475276][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 112.478592][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 112.483278][ T4713] device veth0_macvtap entered promiscuous mode [ 112.487959][ T4713] device veth1_macvtap entered promiscuous mode [ 112.498137][ T4713] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 112.501107][ T4713] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 112.504907][ T4713] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 112.508561][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 112.511325][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 112.514571][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 112.517859][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 112.545369][ T4713] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 112.548602][ T4713] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 112.552382][ T4713] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 112.554635][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 112.558573][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 112.563361][ T4713] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.565850][ T4713] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.568913][ T4713] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.571311][ T4713] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.609233][ T1615] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.611514][ T1615] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.614272][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 112.624579][ T136] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.627026][ T136] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.630199][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 112.948548][ T4949] loop0: detected capacity change from 0 to 32768 [ 112.959336][ T4949] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 112.961701][ T4949] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 112.987017][ T4949] gfs2: fsid=syz:syz.0: journal 0 mapped with 4 extents in 0ms [ 112.997665][ T4157] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 113.000579][ T4157] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 113.030621][ T4157] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 30ms [ 113.033421][ T4157] gfs2: fsid=syz:syz.0: jid=0: Done [ 113.035195][ T4949] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 113.203415][ T4949] attempt to access beyond end of device [ 113.203415][ T4949] loop0: rw=1, want=16778992, limit=32768 [ 113.206916][ T4949] gfs2: fsid=syz:syz.0: Error 10 writing to journal, jid=0 [ 113.209731][ T4949] gfs2: fsid=syz:syz.0: fatal: I/O error(s) [ 113.211590][ T4949] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 113.213608][ T4949] BUG: sleeping function called from invalid context at fs/gfs2/glock.c:1281 [ 113.216065][ T4949] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 4949, name: syz.0.16 [ 113.218722][ T4949] 5 locks held by syz.0.16/4949: [ 113.220147][ T4949] #0: ffff0000d9c52460 (sb_writers#12){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c [ 113.222731][ T4949] #1: ffff0000ec870150 (&type->i_mutex_dir_key#8){+.+.}-{3:3}, at: path_openat+0x5f4/0x26e4 [ 113.225708][ T4949] #2: ffff0000d9c52650 (sb_internal#2){.+.+}-{0:0}, at: gfs2_trans_begin+0x120/0x1bc [ 113.228545][ T4949] #3: ffff0000ee1d90a8 (&sdp->sd_log_flush_lock){++++}-{3:3}, at: gfs2_log_flush+0xb4/0x2078 [ 113.231422][ T4949] #4: ffff0000ee1d8ed0 (&sdp->sd_log_lock){+.+.}-{2:2}, at: gfs2_flush_revokes+0x48/0x88 [ 113.234260][ T4949] Preemption disabled at: [ 113.234273][ T4949] [] gfs2_flush_revokes+0x48/0x88 [ 113.237284][ T4949] CPU: 1 PID: 4949 Comm: syz.0.16 Not tainted 5.15.186-syzkaller #0 [ 113.239501][ T4949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 113.242177][ T4949] Call trace: [ 113.243044][ T4949] dump_backtrace+0x0/0x43c [ 113.244319][ T4949] show_stack+0x2c/0x3c [ 113.245436][ T4949] __dump_stack+0x30/0x40 [ 113.246583][ T4949] dump_stack_lvl+0xf8/0x160 [ 113.247733][ T4949] dump_stack+0x1c/0x5c [ 113.248873][ T4949] ___might_sleep+0x358/0x4d4 [ 113.250185][ T4949] __might_sleep+0x98/0x124 [ 113.251448][ T4949] gfs2_glock_nq+0x888/0x141c [ 113.252799][ T4949] gfs2_freeze_lock+0x64/0xd8 [ 113.254058][ T4949] gfs2_withdraw+0x490/0x129c [ 113.255353][ T4949] gfs2_ail1_empty+0x768/0x7f8 [ 113.256647][ T4949] gfs2_flush_revokes+0x54/0x88 [ 113.258016][ T4949] revoke_lo_before_commit+0x3c/0x608 [ 113.259485][ T4949] gfs2_log_flush+0x8d0/0x2078 [ 113.260824][ T4949] gfs2_trans_end+0x2f0/0x4bc [ 113.262164][ T4949] alloc_dinode+0x2e8/0x3fc [ 113.263431][ T4949] gfs2_create_inode+0x9e4/0x1058 [ 113.264834][ T4949] gfs2_atomic_open+0xc8/0x1c4 [ 113.266211][ T4949] path_openat+0xb50/0x26e4 [ 113.267421][ T4949] do_filp_open+0x164/0x330 [ 113.268644][ T4949] do_sys_openat2+0x128/0x3d8 [ 113.269947][ T4949] __arm64_sys_openat+0x120/0x154 [ 113.271344][ T4949] invoke_syscall+0x98/0x2b8 [ 113.272569][ T4949] el0_svc_common+0x138/0x258 [ 113.273897][ T4949] do_el0_svc+0x58/0x14c [ 113.275067][ T4949] el0_svc+0x78/0x1e0 [ 113.276218][ T4949] el0t_64_sync_handler+0xcc/0xe4 [ 113.277569][ T4949] el0t_64_sync+0x1a0/0x1a4 [ 113.285492][ T4949] [ 113.286136][ T4949] ============================= [ 113.287460][ T4949] [ BUG: Invalid wait context ] [ 113.288903][ T4949] 5.15.186-syzkaller #0 Tainted: G W [ 113.290777][ T4949] ----------------------------- [ 113.292124][ T4949] syz.0.16/4949 is trying to lock: [ 113.293621][ T4949] ffff0000c6c45088 (&wq->mutex){+.+.}-{3:3}, at: flush_workqueue+0x13c/0x1024 [ 113.296142][ T4949] other info that might help us debug this: [ 113.297793][ T4949] context-{4:4} [ 113.298814][ T4949] 5 locks held by syz.0.16/4949: [ 113.300159][ T4949] #0: ffff0000d9c52460 (sb_writers#12){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c [ 113.302801][ T4949] #1: ffff0000ec870150 (&type->i_mutex_dir_key#8){+.+.}-{3:3}, at: path_openat+0x5f4/0x26e4 [ 113.305797][ T4949] #2: ffff0000d9c52650 (sb_internal#2){.+.+}-{0:0}, at: gfs2_trans_begin+0x120/0x1bc [ 113.308591][ T4949] #3: ffff0000ee1d90a8 (&sdp->sd_log_flush_lock){++++}-{3:3}, at: gfs2_log_flush+0xb4/0x2078 [ 113.311530][ T4949] #4: ffff0000ee1d8ed0 (&sdp->sd_log_lock){+.+.}-{2:2}, at: gfs2_flush_revokes+0x48/0x88 [ 113.314521][ T4949] stack backtrace: [ 113.315601][ T4949] CPU: 1 PID: 4949 Comm: syz.0.16 Tainted: G W 5.15.186-syzkaller #0 [ 113.318302][ T4949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 113.321107][ T4949] Call trace: [ 113.321973][ T4949] dump_backtrace+0x0/0x43c [ 113.323264][ T4949] show_stack+0x2c/0x3c [ 113.324472][ T4949] __dump_stack+0x30/0x40 [ 113.325732][ T4949] dump_stack_lvl+0xf8/0x160 [ 113.327055][ T4949] dump_stack+0x1c/0x5c [ 113.328260][ T4949] __lock_acquire+0x1acc/0x651c [ 113.329629][ T4949] lock_acquire+0x1f4/0x620 [ 113.330972][ T4949] __mutex_lock_common+0x194/0x1edc [ 113.332430][ T4949] mutex_lock_nested+0xac/0x11c [ 113.333817][ T4949] flush_workqueue+0x13c/0x1024 [ 113.335180][ T4949] gfs2_flush_delete_work+0x34/0x44 [ 113.336612][ T4949] gfs2_make_fs_ro+0xb4/0x51c [ 113.337931][ T4949] gfs2_withdraw+0x4cc/0x129c [ 113.339251][ T4949] gfs2_ail1_empty+0x768/0x7f8 [ 113.340630][ T4949] gfs2_flush_revokes+0x54/0x88 [ 113.342077][ T4949] revoke_lo_before_commit+0x3c/0x608 [ 113.343589][ T4949] gfs2_log_flush+0x8d0/0x2078 [ 113.344969][ T4949] gfs2_trans_end+0x2f0/0x4bc [ 113.346296][ T4949] alloc_dinode+0x2e8/0x3fc [ 113.347579][ T4949] gfs2_create_inode+0x9e4/0x1058 [ 113.348982][ T4949] gfs2_atomic_open+0xc8/0x1c4 [ 113.350411][ T4949] path_openat+0xb50/0x26e4 [ 113.351724][ T4949] do_filp_open+0x164/0x330 [ 113.353277][ T4949] do_sys_openat2+0x128/0x3d8 [ 113.354573][ T4949] __arm64_sys_openat+0x120/0x154 [ 113.356010][ T4949] invoke_syscall+0x98/0x2b8 [ 113.357316][ T4949] el0_svc_common+0x138/0x258 [ 113.358639][ T4949] do_el0_svc+0x58/0x14c [ 113.359869][ T4949] el0_svc+0x78/0x1e0 [ 113.361029][ T4949] el0t_64_sync_handler+0xcc/0xe4 [ 113.362458][ T4949] el0t_64_sync+0x1a0/0x1a4 [ 113.364058][ T4949] BUG: scheduling while atomic: syz.0.16/4949/0x00000002 [ 113.366015][ T4949] INFO: lockdep is turned off. [ 113.367407][ T4949] Modules linked in: [ 113.368528][ T4949] Preemption disabled at: [ 113.368539][ T4949] [] gfs2_flush_revokes+0x48/0x88 [ 113.371535][ T4949] CPU: 1 PID: 4949 Comm: syz.0.16 Tainted: G W 5.15.186-syzkaller #0 [ 113.374061][ T4949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 113.377040][ T4949] Call trace: [ 113.377988][ T4949] dump_backtrace+0x0/0x43c [ 113.379275][ T4949] show_stack+0x2c/0x3c [ 113.380437][ T4949] __dump_stack+0x30/0x40 [ 113.381658][ T4949] dump_stack_lvl+0xf8/0x160 [ 113.383023][ T4949] dump_stack+0x1c/0x5c [ 113.384150][ T4949] __schedule_bug+0x124/0x1c8 [ 113.385463][ T4949] __schedule+0xe8c/0x1c0c [ 113.386671][ T4949] schedule+0x11c/0x1c8 [ 113.387794][ T4949] schedule_timeout+0xb4/0x2c8 [ 113.389211][ T4949] do_wait_for_common+0x1fc/0x35c [ 113.390680][ T4949] wait_for_completion+0x48/0x60 [ 113.392063][ T4949] kthread_stop+0x1a0/0x6f8 [ 113.393310][ T4949] gfs2_make_fs_ro+0x12c/0x51c [ 113.394722][ T4949] gfs2_withdraw+0x4cc/0x129c [ 113.396067][ T4949] gfs2_ail1_empty+0x768/0x7f8 [ 113.397359][ T4949] gfs2_flush_revokes+0x54/0x88 [ 113.398697][ T4949] revoke_lo_before_commit+0x3c/0x608 [ 113.400226][ T4949] gfs2_log_flush+0x8d0/0x2078 [ 113.401575][ T4949] gfs2_trans_end+0x2f0/0x4bc [ 113.402941][ T4949] alloc_dinode+0x2e8/0x3fc [ 113.404217][ T4949] gfs2_create_inode+0x9e4/0x1058 [ 113.405624][ T4949] gfs2_atomic_open+0xc8/0x1c4 [ 113.407012][ T4949] path_openat+0xb50/0x26e4 [ 113.408302][ T4949] do_filp_open+0x164/0x330 [ 113.409596][ T4949] do_sys_openat2+0x128/0x3d8 [ 113.410962][ T4949] __arm64_sys_openat+0x120/0x154 [ 113.412399][ T4949] invoke_syscall+0x98/0x2b8 [ 113.413696][ T4949] el0_svc_common+0x138/0x258 [ 113.414960][ T4949] do_el0_svc+0x58/0x14c [ 113.416159][ T4949] el0_svc+0x78/0x1e0 [ 113.417272][ T4949] el0t_64_sync_handler+0xcc/0xe4 [ 113.418655][ T4949] el0t_64_sync+0x1a0/0x1a4 [ 114.027423][ T4157] Bluetooth: hci0: command 0x040f tx timeout [ 115.365486][ T148] device hsr_slave_0 left promiscuous mode [ 115.427747][ T148] device hsr_slave_1 left promiscuous mode [ 115.517270][ T148] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 115.519338][ T148] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 115.521850][ T148] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 115.523763][ T148] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 115.525987][ T148] device bridge_slave_1 left promiscuous mode [ 115.527707][ T148] bridge0: port 2(bridge_slave_1) entered disabled state [ 115.567926][ T148] device bridge_slave_0 left promiscuous mode [ 115.569771][ T148] bridge0: port 1(bridge_slave_0) entered disabled state [ 115.717634][ T148] device veth1_macvtap left promiscuous mode [ 115.719426][ T148] device veth0_macvtap left promiscuous mode [ 115.721117][ T148] device veth1_vlan left promiscuous mode [ 115.722745][ T148] device veth0_vlan left promiscuous mode [ 115.860885][ T148] team0 (unregistering): Port device team_slave_1 removed [ 115.866946][ T148] team0 (unregistering): Port device team_slave_0 removed [ 115.874198][ T148] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 115.911947][ T148] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 116.023238][ T148] bond0 (unregistering): Released all slaves [ 116.107475][ T4079] Bluetooth: hci0: command 0x0419 tx timeout [ 118.427320][ T4949] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 118.429745][ T4949] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 118.431609][ T4949] gfs2: fsid=syz:syz.0: File system withdrawn [ 118.433291][ T4949] CPU: 1 PID: 4949 Comm: syz.0.16 Tainted: G W 5.15.186-syzkaller #0 [ 118.435748][ T4949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 118.438444][ T4949] Call trace: [ 118.439335][ T4949] dump_backtrace+0x0/0x43c [ 118.440585][ T4949] show_stack+0x2c/0x3c [ 118.441782][ T4949] __dump_stack+0x30/0x40 [ 118.442993][ T4949] dump_stack_lvl+0xf8/0x160 [ 118.444273][ T4949] dump_stack+0x1c/0x5c [ 118.445442][ T4949] gfs2_withdraw+0xc60/0x129c [ 118.446733][ T4949] gfs2_ail1_empty+0x768/0x7f8 [ 118.448040][ T4949] gfs2_flush_revokes+0x54/0x88 [ 118.449410][ T4949] revoke_lo_before_commit+0x3c/0x608 [ 118.450939][ T4949] gfs2_log_flush+0x8d0/0x2078 [ 118.452196][ T4949] gfs2_trans_end+0x2f0/0x4bc [ 118.453473][ T4949] alloc_dinode+0x2e8/0x3fc [ 118.454771][ T4949] gfs2_create_inode+0x9e4/0x1058 [ 118.456081][ T4949] gfs2_atomic_open+0xc8/0x1c4 [ 118.457548][ T4949] path_openat+0xb50/0x26e4 [ 118.458816][ T4949] do_filp_open+0x164/0x330 [ 118.460034][ T4949] do_sys_openat2+0x128/0x3d8 [ 118.461288][ T4949] __arm64_sys_openat+0x120/0x154 [ 118.462739][ T4949] invoke_syscall+0x98/0x2b8 [ 118.463986][ T4949] el0_svc_common+0x138/0x258 [ 118.465294][ T4949] do_el0_svc+0x58/0x14c [ 118.466454][ T4949] el0_svc+0x78/0x1e0 [ 118.467581][ T4949] el0t_64_sync_handler+0xcc/0xe4 [ 118.468966][ T4949] el0t_64_sync+0x1a0/0x1a4 1970/01/01 00:01:58 executed programs: 3