Warning: Permanently added '10.128.1.62' (ED25519) to the list of known hosts. 2025/03/27 09:48:19 ignoring optional flag "sandboxArg"="0" 2025/03/27 09:48:19 ignoring optional flag "type"="gce" 2025/03/27 09:48:19 parsed 1 programs 2025/03/27 09:48:21 executed programs: 0 [ 81.358080][ T4455] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS [ 81.515760][ T4477] chnl_net:caif_netlink_parms(): no params data found [ 81.559992][ T4477] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.567649][ T4477] bridge0: port 1(bridge_slave_0) entered disabled state [ 81.576247][ T4477] device bridge_slave_0 entered promiscuous mode [ 81.584987][ T4477] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.592190][ T4477] bridge0: port 2(bridge_slave_1) entered disabled state [ 81.600058][ T4477] device bridge_slave_1 entered promiscuous mode [ 81.622173][ T4477] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 81.633896][ T4477] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 81.658365][ T13] cfg80211: failed to load regulatory.db [ 81.662595][ T4477] team0: Port device team_slave_0 added [ 81.672588][ T4477] team0: Port device team_slave_1 added [ 81.704866][ T4477] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 81.711930][ T4477] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 81.738396][ T4477] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 81.751083][ T4477] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 81.758198][ T4477] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 81.784596][ T4477] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 81.824969][ T4477] device hsr_slave_0 entered promiscuous mode [ 81.832092][ T4477] device hsr_slave_1 entered promiscuous mode [ 82.531239][ T4477] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 82.546121][ T4477] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 82.557549][ T4477] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 82.568445][ T4477] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 82.651312][ T4477] 8021q: adding VLAN 0 to HW filter on device bond0 [ 82.667545][ T4197] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 82.675871][ T4197] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 82.689055][ T4477] 8021q: adding VLAN 0 to HW filter on device team0 [ 82.699504][ T4197] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 82.711125][ T4197] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 82.720637][ T4197] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.727806][ T4197] bridge0: port 1(bridge_slave_0) entered forwarding state [ 82.745694][ T4197] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 82.754625][ T4197] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 82.763893][ T4197] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 82.773322][ T4197] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.780521][ T4197] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.789860][ T4197] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 82.807175][ T4197] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 82.816829][ T4197] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 82.828704][ T4197] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 82.838416][ T4197] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 82.847822][ T4197] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 82.858107][ T4197] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 82.875959][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 82.886007][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 82.894833][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 82.905023][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 82.917179][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 83.030644][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 83.039100][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 83.052579][ T4477] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.074612][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 83.085328][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 83.108426][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 83.119812][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 83.131993][ T4477] device veth0_vlan entered promiscuous mode [ 83.140644][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 83.148955][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 83.167517][ T4477] device veth1_vlan entered promiscuous mode [ 83.193217][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 83.202799][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 83.213823][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 83.223102][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 83.236030][ T4477] device veth0_macvtap entered promiscuous mode [ 83.249036][ T4477] device veth1_macvtap entered promiscuous mode [ 83.272893][ T4477] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 83.280592][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 83.292263][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 83.301604][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 83.312717][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 83.325223][ T4477] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 83.336908][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 83.345904][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 83.356677][ T4477] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.366144][ T4477] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.375310][ T4477] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.384398][ T4477] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.462316][ T154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.485193][ T154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.496422][ T7] Bluetooth: hci0: command 0x0409 tx timeout [ 83.517056][ T4197] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 83.534524][ T4197] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.543398][ T4197] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.558136][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 83.887011][ T4584] [ 83.889421][ T4584] ====================================================== [ 83.896638][ T4584] WARNING: possible circular locking dependency detected [ 83.903813][ T4584] 5.15.179-syzkaller #0 Not tainted [ 83.909027][ T4584] ------------------------------------------------------ [ 83.916237][ T4584] syz-executor.0/4584 is trying to acquire lock: [ 83.922583][ T4584] ffff88807ecc0170 (&journal->j_barrier){+.+.}-{3:3}, at: jbd2_journal_lock_updates+0x2aa/0x370 [ 83.933274][ T4584] [ 83.933274][ T4584] but task is already holding lock: [ 83.940664][ T4584] ffff88807ecbebd8 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_change_inode_journal_flag+0x1a0/0x6e0 [ 83.952014][ T4584] [ 83.952014][ T4584] which lock already depends on the new lock. [ 83.952014][ T4584] [ 83.962496][ T4584] [ 83.962496][ T4584] the existing dependency chain (in reverse order) is: [ 83.971528][ T4584] [ 83.971528][ T4584] -> #4 (&sbi->s_writepages_rwsem){++++}-{0:0}: [ 83.980080][ T4584] lock_acquire+0x1db/0x4f0 [ 83.985311][ T4584] percpu_down_write+0x52/0x2d0 [ 83.990818][ T4584] ext4_change_inode_journal_flag+0x1a0/0x6e0 [ 83.997845][ T4584] ext4_fileattr_set+0xdf4/0x1750 [ 84.003523][ T4584] vfs_fileattr_set+0x8f3/0xd30 [ 84.008923][ T4584] do_vfs_ioctl+0x1d85/0x2b70 [ 84.014233][ T4584] __se_sys_ioctl+0x81/0x160 [ 84.019379][ T4584] do_syscall_64+0x3b/0xb0 [ 84.024356][ T4584] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 84.030805][ T4584] [ 84.030805][ T4584] -> #3 (mapping.invalidate_lock){++++}-{3:3}: [ 84.039190][ T4584] lock_acquire+0x1db/0x4f0 [ 84.044250][ T4584] down_write+0x38/0x60 [ 84.048977][ T4584] ext4_setattr+0xd6c/0x1990 [ 84.054116][ T4584] notify_change+0xc6d/0xf50 [ 84.059257][ T4584] do_truncate+0x21c/0x300 [ 84.064218][ T4584] do_sys_ftruncate+0x2eb/0x390 [ 84.069619][ T4584] do_syscall_64+0x3b/0xb0 [ 84.074781][ T4584] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 84.081339][ T4584] [ 84.081339][ T4584] -> #2 (&sb->s_type->i_mutex_key#9){++++}-{3:3}: [ 84.089968][ T4584] lock_acquire+0x1db/0x4f0 [ 84.095028][ T4584] down_read+0x45/0x2e0 [ 84.099762][ T4584] ext4_bmap+0x4b/0x410 [ 84.104461][ T4584] bmap+0xa1/0xd0 [ 84.108638][ T4584] jbd2_journal_flush+0x7a2/0xc90 [ 84.114209][ T4584] ext4_ioctl+0x3249/0x5b80 [ 84.119255][ T4584] __se_sys_ioctl+0xf1/0x160 [ 84.124387][ T4584] do_syscall_64+0x3b/0xb0 [ 84.129349][ T4584] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 84.135794][ T4584] [ 84.135794][ T4584] -> #1 (&journal->j_checkpoint_mutex){+.+.}-{3:3}: [ 84.144678][ T4584] lock_acquire+0x1db/0x4f0 [ 84.149837][ T4584] __mutex_lock_common+0x1da/0x25a0 [ 84.155668][ T4584] mutex_lock_io_nested+0x45/0x60 [ 84.161244][ T4584] jbd2_journal_flush+0x290/0xc90 [ 84.166817][ T4584] ext4_ioctl+0x3249/0x5b80 [ 84.171866][ T4584] __se_sys_ioctl+0xf1/0x160 [ 84.177001][ T4584] do_syscall_64+0x3b/0xb0 [ 84.182087][ T4584] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 84.188523][ T4584] [ 84.188523][ T4584] -> #0 (&journal->j_barrier){+.+.}-{3:3}: [ 84.196547][ T4584] validate_chain+0x1649/0x5930 [ 84.201952][ T4584] __lock_acquire+0x1295/0x1ff0 [ 84.207348][ T4584] lock_acquire+0x1db/0x4f0 [ 84.212482][ T4584] __mutex_lock_common+0x1da/0x25a0 [ 84.218238][ T4584] mutex_lock_nested+0x17/0x20 [ 84.223551][ T4584] jbd2_journal_lock_updates+0x2aa/0x370 [ 84.229733][ T4584] ext4_change_inode_journal_flag+0x1a8/0x6e0 [ 84.236352][ T4584] ext4_fileattr_set+0xdf4/0x1750 [ 84.241918][ T4584] vfs_fileattr_set+0x8f3/0xd30 [ 84.247315][ T4584] do_vfs_ioctl+0x1d85/0x2b70 [ 84.252533][ T4584] __se_sys_ioctl+0x81/0x160 [ 84.257716][ T4584] do_syscall_64+0x3b/0xb0 [ 84.262705][ T4584] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 84.269152][ T4584] [ 84.269152][ T4584] other info that might help us debug this: [ 84.269152][ T4584] [ 84.279441][ T4584] Chain exists of: [ 84.279441][ T4584] &journal->j_barrier --> mapping.invalidate_lock --> &sbi->s_writepages_rwsem [ 84.279441][ T4584] [ 84.294336][ T4584] Possible unsafe locking scenario: [ 84.294336][ T4584] [ 84.301802][ T4584] CPU0 CPU1 [ 84.307183][ T4584] ---- ---- [ 84.312571][ T4584] lock(&sbi->s_writepages_rwsem); [ 84.317817][ T4584] lock(mapping.invalidate_lock); [ 84.325568][ T4584] lock(&sbi->s_writepages_rwsem); [ 84.333396][ T4584] lock(&journal->j_barrier); [ 84.338187][ T4584] [ 84.338187][ T4584] *** DEADLOCK *** [ 84.338187][ T4584] [ 84.346437][ T4584] 4 locks held by syz-executor.0/4584: [ 84.352010][ T4584] #0: ffff88807ecbc460 (sb_writers#5){.+.+}-{0:0}, at: mnt_want_write_file+0x5a/0x1f0 [ 84.361717][ T4584] #1: ffff8880674d8de8 (&sb->s_type->i_mutex_key#9){++++}-{3:3}, at: vfs_fileattr_set+0x135/0xd30 [ 84.372473][ T4584] #2: ffff8880674d8f88 (mapping.invalidate_lock){++++}-{3:3}, at: ext4_change_inode_journal_flag+0x115/0x6e0 [ 84.384267][ T4584] #3: ffff88807ecbebd8 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_change_inode_journal_flag+0x1a0/0x6e0 [ 84.396059][ T4584] [ 84.396059][ T4584] stack backtrace: [ 84.401977][ T4584] CPU: 1 PID: 4584 Comm: syz-executor.0 Not tainted 5.15.179-syzkaller #0 [ 84.410807][ T4584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 84.420896][ T4584] Call Trace: [ 84.424194][ T4584] [ 84.427140][ T4584] dump_stack_lvl+0x1e3/0x2d0 [ 84.431852][ T4584] ? io_uring_drop_tctx_refs+0x1a0/0x1a0 [ 84.437515][ T4584] ? print_circular_bug+0x12b/0x1a0 [ 84.442760][ T4584] check_noncircular+0x2f8/0x3b0 [ 84.447737][ T4584] ? add_chain_block+0x850/0x850 [ 84.452717][ T4584] ? lockdep_lock+0x11f/0x2a0 [ 84.457751][ T4584] ? validate_chain+0x112/0x5930 [ 84.462722][ T4584] validate_chain+0x1649/0x5930 [ 84.467617][ T4584] ? reacquire_held_locks+0x660/0x660 [ 84.473114][ T4584] ? lockdep_unlock+0x166/0x300 [ 84.477991][ T4584] ? lockdep_lock+0x2a0/0x2a0 [ 84.482952][ T4584] ? lockdep_unlock+0x166/0x300 [ 84.487830][ T4584] ? reacquire_held_locks+0x660/0x660 [ 84.493233][ T4584] ? validate_chain+0x13bd/0x5930 [ 84.498283][ T4584] ? mark_lock+0x98/0x340 [ 84.502636][ T4584] ? mark_lock+0x98/0x340 [ 84.507037][ T4584] __lock_acquire+0x1295/0x1ff0 [ 84.511924][ T4584] lock_acquire+0x1db/0x4f0 [ 84.516455][ T4584] ? jbd2_journal_lock_updates+0x2aa/0x370 [ 84.522292][ T4584] ? read_lock_is_recursive+0x10/0x10 [ 84.527813][ T4584] ? __might_sleep+0xc0/0xc0 [ 84.532437][ T4584] ? print_irqtrace_events+0x210/0x210 [ 84.538016][ T4584] ? lockdep_hardirqs_off+0x70/0x100 [ 84.543339][ T4584] ? do_raw_spin_unlock+0x137/0x8b0 [ 84.548565][ T4584] __mutex_lock_common+0x1da/0x25a0 [ 84.553793][ T4584] ? jbd2_journal_lock_updates+0x2aa/0x370 [ 84.559672][ T4584] ? jbd2_journal_lock_updates+0x2aa/0x370 [ 84.565542][ T4584] ? jbd2_journal_lock_updates+0x299/0x370 [ 84.571392][ T4584] ? jbd2_journal_wait_updates+0x268/0x2d0 [ 84.577312][ T4584] ? mutex_lock_io_nested+0x60/0x60 [ 84.582543][ T4584] ? do_raw_read_unlock+0x70/0x70 [ 84.587605][ T4584] ? rcu_sync_func+0xaa/0x210 [ 84.592311][ T4584] mutex_lock_nested+0x17/0x20 [ 84.597133][ T4584] jbd2_journal_lock_updates+0x2aa/0x370 [ 84.602801][ T4584] ? jbd2_journal_wait_updates+0x2d0/0x2d0 [ 84.608630][ T4584] ? rwsem_write_trylock+0x166/0x210 [ 84.614058][ T4584] ? cpumask_next+0xc3/0xf0 [ 84.618612][ T4584] ? percpu_down_write+0x1ea/0x2d0 [ 84.623763][ T4584] ext4_change_inode_journal_flag+0x1a8/0x6e0 [ 84.629860][ T4584] ext4_fileattr_set+0xdf4/0x1750 [ 84.635104][ T4584] ? ext4_fileattr_get+0x200/0x200 [ 84.640247][ T4584] ? rwsem_write_trylock+0x166/0x210 [ 84.645567][ T4584] ? clear_nonspinnable+0x60/0x60 [ 84.650624][ T4584] ? memset+0x1f/0x40 [ 84.654632][ T4584] ? fileattr_fill_flags+0x1d0/0x300 [ 84.659948][ T4584] ? fscrypt_prepare_setflags+0x5d/0x220 [ 84.665650][ T4584] vfs_fileattr_set+0x8f3/0xd30 [ 84.670537][ T4584] ? copy_fsxattr_to_user+0x3a0/0x3a0 [ 84.675946][ T4584] do_vfs_ioctl+0x1d85/0x2b70 [ 84.680667][ T4584] ? __x64_compat_sys_ioctl+0x80/0x80 [ 84.686075][ T4584] ? __lock_acquire+0x1ff0/0x1ff0 [ 84.691121][ T4584] ? slab_free_freelist_hook+0xdd/0x160 [ 84.696694][ T4584] ? tomoyo_path_number_perm+0x648/0x810 [ 84.702364][ T4584] ? kfree+0xf1/0x270 [ 84.706457][ T4584] ? tomoyo_path_number_perm+0x6ab/0x810 [ 84.712123][ T4584] ? tomoyo_check_path_acl+0x1c0/0x1c0 [ 84.717627][ T4584] ? __fget_files+0x413/0x480 [ 84.722420][ T4584] ? bpf_lsm_file_ioctl+0x5/0x10 [ 84.727382][ T4584] ? security_file_ioctl+0x7d/0xa0 [ 84.732517][ T4584] __se_sys_ioctl+0x81/0x160 [ 84.737142][ T4584] do_syscall_64+0x3b/0xb0 [ 84.741584][ T4584] ? clear_bhb_loop+0x15/0x70 [ 84.746285][ T4584] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 84.752203][ T4584] RIP: 0033:0x7f744c903d29 [ 84.756678][ T4584] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 84.776502][ T4584] RSP: 002b:00007f744bc640c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 84.784959][ T4584] RAX: ffffffffffffffda RBX: 00007f744ca33050 RCX: 00007f744c903d29 [ 84.792956][ T4584] RDX: 0000000020000180 RSI: 0000000040086602 RDI: 0000000000000004 [ 84.800954][ T4584] RBP: 00007f744c95047a R08: 0000000000000000 R09: 0000000000000000 [ 84.808948][ T4584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 84.816951][ T4584] R13: 000000000000006e R14: 00007f744ca33050 R15: 00007ffc63a0a6e8 [ 84.824957][ T4584] [ 85.585858][ T21] Bluetooth: hci0: command 0x041b tx timeout 2025/03/27 09:48:26 executed programs: 23 [ 87.655454][ T21] Bluetooth: hci0: command 0x040f tx timeout [ 89.735526][ T4202] Bluetooth: hci0: command 0x0419 tx timeout 2025/03/27 09:48:31 executed programs: 112