Warning: Permanently added '10.128.0.233' (ED25519) to the list of known hosts. 2024/01/29 08:21:09 ignoring optional flag "sandboxArg"="0" 2024/01/29 08:21:09 parsed 1 programs 2024/01/29 08:21:09 executed programs: 0 [ 45.144243][ T2664] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 45.200466][ T2687] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 45.213128][ T2699] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 45.220991][ T2699] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 45.223516][ T2700] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 45.228381][ T2699] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 45.242525][ T2700] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 45.242721][ T2699] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 45.249900][ T2701] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 45.258324][ T2702] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 45.264770][ T2701] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 45.271701][ T2702] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 45.279009][ T2701] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 45.285517][ T2700] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 45.292973][ T2701] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 45.299987][ T2702] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 45.307028][ T2701] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 45.318171][ T2702] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 45.324716][ T2701] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 45.331729][ T2702] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 45.338508][ T2701] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 45.345552][ T2702] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 45.357572][ T2701] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 45.364750][ T2702] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 45.378110][ T2699] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 45.378156][ T2703] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 45.385410][ T2699] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 45.392747][ T2703] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 45.399587][ T2702] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 45.406940][ T2703] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 45.413522][ T2699] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 45.420533][ T2703] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 45.427817][ T2702] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 45.435287][ T2703] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 45.446705][ T2702] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 45.449215][ T2703] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 45.456593][ T2702] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 45.662037][ T2677] chnl_net:caif_netlink_parms(): no params data found [ 45.673127][ T2682] chnl_net:caif_netlink_parms(): no params data found [ 45.701329][ T2679] chnl_net:caif_netlink_parms(): no params data found [ 45.717043][ T2680] chnl_net:caif_netlink_parms(): no params data found [ 45.725214][ T2683] chnl_net:caif_netlink_parms(): no params data found [ 45.754566][ T2681] chnl_net:caif_netlink_parms(): no params data found [ 47.426797][ T2050] Bluetooth: hci3: command 0x0409 tx timeout [ 47.507889][ T2050] Bluetooth: hci2: command 0x0409 tx timeout [ 47.514481][ T47] Bluetooth: hci1: command 0x0409 tx timeout [ 47.514657][ T2703] Bluetooth: hci5: command 0x0409 tx timeout [ 47.520889][ T47] Bluetooth: hci0: command 0x0409 tx timeout [ 47.528599][ T2703] Bluetooth: hci4: command 0x0409 tx timeout [ 48.422318][ T2680] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.485538][ T2682] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.503798][ T2679] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.585545][ T2677] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.637256][ T2683] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.908022][ T2681] 8021q: adding VLAN 0 to HW filter on device bond0 [ 49.503525][ T2703] Bluetooth: hci3: command 0x041b tx timeout [ 49.583062][ T2687] Bluetooth: hci0: command 0x041b tx timeout [ 49.583091][ T2050] Bluetooth: hci5: command 0x041b tx timeout [ 49.589264][ T2687] Bluetooth: hci1: command 0x041b tx timeout [ 49.595706][ T47] Bluetooth: hci2: command 0x041b tx timeout [ 49.601263][ T2703] Bluetooth: hci4: command 0x041b tx timeout [ 50.466799][ T2682] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 50.515074][ T2680] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 50.765630][ T2677] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 50.778333][ T2683] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 50.793513][ T2679] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 51.214337][ T2681] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 51.593610][ T2703] Bluetooth: hci3: command 0x040f tx timeout [ 51.663363][ T2703] Bluetooth: hci4: command 0x040f tx timeout [ 51.667132][ T47] Bluetooth: hci2: command 0x040f tx timeout [ 51.669611][ T2703] Bluetooth: hci1: command 0x040f tx timeout [ 51.676050][ T47] Bluetooth: hci5: command 0x040f tx timeout [ 51.681912][ T2703] Bluetooth: hci0: command 0x040f tx timeout [ 53.663977][ T2703] Bluetooth: hci3: command 0x0419 tx timeout [ 53.742865][ T2703] Bluetooth: hci5: command 0x0419 tx timeout [ 53.743108][ T47] Bluetooth: hci1: command 0x0419 tx timeout [ 53.749841][ T2703] Bluetooth: hci2: command 0x0419 tx timeout [ 53.755943][ T2050] Bluetooth: hci4: command 0x0419 tx timeout [ 53.755959][ T2050] Bluetooth: hci0: command 0x0419 tx timeout [ 54.365081][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 54.372969][ T0] NOHZ tick-stop error: local softirq work is pending, handler #28a!!! [ 54.383312][ T0] NOHZ tick-stop error: local softirq work is pending, handler #20a!!! [ 54.433263][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 54.483144][ T0] NOHZ tick-stop error: local softirq work is pending, handler #0a!!! [ 54.503391][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 54.503411][ T0] NOHZ tick-stop error: local softirq work is pending, handler #0a!!! [ 54.521926][ T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!! [ 54.522028][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 54.530663][ T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!! [ 54.569905][ T4770] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.3'. [ 54.622148][ T4770] vxcan0: entered promiscuous mode 2024/01/29 08:21:19 executed programs: 6 [ 54.679440][ C1] [ 54.681790][ C1] ====================================================== [ 54.688877][ C1] WARNING: possible circular locking dependency detected [ 54.696485][ C1] 6.8.0-rc2-syzkaller #0 Not tainted [ 54.701750][ C1] ------------------------------------------------------ [ 54.708738][ C1] ksoftirqd/1/22 is trying to acquire lock: [ 54.714607][ C1] ffff888114725088 (&priv->active_session_list_lock){+.-.}-{2:2}, at: j1939_session_activate+0x23/0x110 [ 54.725711][ C1] [ 54.725711][ C1] but task is already holding lock: [ 54.733046][ C1] ffff888114517db8 (&jsk->sk_session_queue_lock){+.-.}-{2:2}, at: j1939_sk_queue_activate_next+0x2d/0x150 [ 54.744479][ C1] [ 54.744479][ C1] which lock already depends on the new lock. [ 54.744479][ C1] [ 54.755302][ C1] [ 54.755302][ C1] the existing dependency chain (in reverse order) is: [ 54.764373][ C1] [ 54.764373][ C1] -> #2 (&jsk->sk_session_queue_lock){+.-.}-{2:2}: [ 54.773578][ C1] _raw_spin_lock_bh+0x35/0x50 [ 54.778865][ C1] j1939_sk_queue_drop_all+0x22/0xc0 [ 54.784931][ C1] j1939_sk_netdev_event_netdown+0x3f/0x80 [ 54.791509][ C1] j1939_netdev_notify+0xb1/0xf0 [ 54.797123][ C1] notifier_call_chain+0x69/0xf0 [ 54.802638][ C1] __dev_notify_flags+0xe8/0x180 [ 54.808158][ C1] dev_change_flags+0x4c/0x60 [ 54.813327][ C1] do_setlink+0x469/0x11e0 [ 54.818337][ C1] rtnl_newlink+0xb96/0xe40 [ 54.823364][ C1] rtnetlink_rcv_msg+0x398/0x670 [ 54.828798][ C1] netlink_rcv_skb+0xd9/0x100 [ 54.833971][ C1] netlink_unicast+0x23b/0x320 [ 54.839233][ C1] netlink_sendmsg+0x3ad/0x440 [ 54.844657][ C1] ____sys_sendmsg+0x19a/0x240 [ 54.850007][ C1] ___sys_sendmsg+0x28f/0x2d0 [ 54.855372][ C1] __se_sys_sendmsg+0xf7/0x130 [ 54.860939][ C1] do_syscall_64+0x9f/0x1b0 [ 54.866108][ C1] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 54.872515][ C1] [ 54.872515][ C1] -> #1 (&priv->j1939_socks_lock){+.-.}-{2:2}: [ 54.881072][ C1] _raw_spin_lock_bh+0x35/0x50 [ 54.886416][ C1] j1939_sk_errqueue+0x48/0xb0 [ 54.891756][ C1] j1939_session_put+0x55/0x160 [ 54.897181][ C1] j1939_cancel_active_session+0x62/0x150 [ 54.903663][ C1] j1939_netdev_notify+0xa9/0xf0 [ 54.910128][ C1] notifier_call_chain+0x69/0xf0 [ 54.915549][ C1] __dev_notify_flags+0xe8/0x180 [ 54.921149][ C1] dev_change_flags+0x4c/0x60 [ 54.926843][ C1] do_setlink+0x469/0x11e0 [ 54.932091][ C1] rtnl_newlink+0xb96/0xe40 [ 54.937243][ C1] rtnetlink_rcv_msg+0x398/0x670 [ 54.942664][ C1] netlink_rcv_skb+0xd9/0x100 [ 54.947827][ C1] netlink_unicast+0x23b/0x320 [ 54.953079][ C1] netlink_sendmsg+0x3ad/0x440 [ 54.958415][ C1] ____sys_sendmsg+0x19a/0x240 [ 54.963665][ C1] ___sys_sendmsg+0x28f/0x2d0 [ 54.970823][ C1] __se_sys_sendmsg+0xf7/0x130 [ 54.976073][ C1] do_syscall_64+0x9f/0x1b0 [ 54.981152][ C1] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 54.987790][ C1] [ 54.987790][ C1] -> #0 (&priv->active_session_list_lock){+.-.}-{2:2}: [ 54.996949][ C1] __lock_acquire+0x11f6/0x2480 [ 55.002287][ C1] lock_acquire+0xea/0x260 [ 55.007282][ C1] _raw_spin_lock_bh+0x35/0x50 [ 55.012731][ C1] j1939_session_activate+0x23/0x110 [ 55.018615][ C1] j1939_sk_queue_activate_next+0xd6/0x150 [ 55.025259][ C1] j1939_xtp_rx_eoma+0x14b/0x1c0 [ 55.030686][ C1] j1939_tp_recv+0x2ea/0x4a0 [ 55.035875][ C1] j1939_can_recv+0x1e4/0x290 [ 55.041216][ C1] can_rcv_filter+0x76/0x160 [ 55.047002][ C1] can_receive+0x107/0x190 [ 55.051920][ C1] can_rcv+0x4b/0x90 [ 55.056559][ C1] __netif_receive_skb+0x50/0xe0 [ 55.062066][ C1] process_backlog+0x1b6/0x2d0 [ 55.067486][ C1] __napi_poll+0x24/0x1c0 [ 55.072297][ C1] net_rx_action+0x1b9/0x390 [ 55.077369][ C1] __do_softirq+0x146/0x3c8 [ 55.082359][ C1] run_ksoftirqd+0x50/0x80 [ 55.087278][ C1] smpboot_thread_fn+0x152/0x200 [ 55.092822][ C1] kthread+0xe5/0x100 [ 55.097303][ C1] ret_from_fork+0x2e/0x40 [ 55.102207][ C1] ret_from_fork_asm+0x11/0x20 [ 55.107458][ C1] [ 55.107458][ C1] other info that might help us debug this: [ 55.107458][ C1] [ 55.117737][ C1] Chain exists of: [ 55.117737][ C1] &priv->active_session_list_lock --> &priv->j1939_socks_lock --> &jsk->sk_session_queue_lock [ 55.117737][ C1] [ 55.134164][ C1] Possible unsafe locking scenario: [ 55.134164][ C1] [ 55.141679][ C1] CPU0 CPU1 [ 55.147016][ C1] ---- ---- [ 55.152482][ C1] lock(&jsk->sk_session_queue_lock); [ 55.157989][ C1] lock(&priv->j1939_socks_lock); [ 55.165580][ C1] lock(&jsk->sk_session_queue_lock); [ 55.173613][ C1] lock(&priv->active_session_list_lock); [ 55.179571][ C1] [ 55.179571][ C1] *** DEADLOCK *** [ 55.179571][ C1] [ 55.187970][ C1] 3 locks held by ksoftirqd/1/22: [ 55.192957][ C1] #0: ffffffff83f7d500 (rcu_read_lock){....}-{1:2}, at: process_backlog+0x14a/0x2d0 [ 55.202488][ C1] #1: ffffffff83f7d500 (rcu_read_lock){....}-{1:2}, at: can_receive+0x5f/0x190 [ 55.211736][ C1] #2: ffff888114517db8 (&jsk->sk_session_queue_lock){+.-.}-{2:2}, at: j1939_sk_queue_activate_next+0x2d/0x150 [ 55.223674][ C1] [ 55.223674][ C1] stack backtrace: [ 55.229623][ C1] CPU: 1 PID: 22 Comm: ksoftirqd/1 Not tainted 6.8.0-rc2-syzkaller #0 [ 55.237738][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 55.248899][ C1] Call Trace: [ 55.252194][ C1] [ 55.255113][ C1] dump_stack_lvl+0x8d/0xe0 [ 55.259669][ C1] check_noncircular+0x115/0x140 [ 55.264577][ C1] __lock_acquire+0x11f6/0x2480 [ 55.269490][ C1] ? irqentry_exit+0x57/0x80 [ 55.274145][ C1] ? lockdep_hardirqs_on+0x98/0xf0 [ 55.280138][ C1] ? j1939_session_activate+0x23/0x110 [ 55.285965][ C1] lock_acquire+0xea/0x260 [ 55.290549][ C1] ? j1939_session_activate+0x23/0x110 [ 55.296071][ C1] ? j1939_session_activate+0x23/0x110 [ 55.301518][ C1] _raw_spin_lock_bh+0x35/0x50 [ 55.306273][ C1] ? j1939_session_activate+0x23/0x110 [ 55.311729][ C1] j1939_session_activate+0x23/0x110 [ 55.316979][ C1] j1939_sk_queue_activate_next+0xd6/0x150 [ 55.323194][ C1] j1939_xtp_rx_eoma+0x14b/0x1c0 [ 55.328297][ C1] j1939_tp_recv+0x2ea/0x4a0 [ 55.332863][ C1] j1939_can_recv+0x1e4/0x290 [ 55.337507][ C1] can_rcv_filter+0x76/0x160 [ 55.342073][ C1] ? can_receive+0x5f/0x190 [ 55.346712][ C1] can_receive+0x107/0x190 [ 55.351091][ C1] ? process_backlog+0x14a/0x2d0 [ 55.356173][ C1] can_rcv+0x4b/0x90 [ 55.360392][ C1] __netif_receive_skb+0x50/0xe0 [ 55.365387][ C1] process_backlog+0x1b6/0x2d0 [ 55.370202][ C1] __napi_poll+0x24/0x1c0 [ 55.374504][ C1] net_rx_action+0x1b9/0x390 [ 55.379069][ C1] __do_softirq+0x146/0x3c8 [ 55.383543][ C1] ? run_ksoftirqd+0x50/0x80 [ 55.388188][ C1] run_ksoftirqd+0x50/0x80 [ 55.392670][ C1] smpboot_thread_fn+0x152/0x200 [ 55.397660][ C1] ? smpboot_unregister_percpu_thread+0xe0/0xe0 [ 55.404059][ C1] kthread+0xe5/0x100 [ 55.408274][ C1] ? kthread_blkcg+0x30/0x30 [ 55.412864][ C1] ret_from_fork+0x2e/0x40 [ 55.417573][ C1] ? kthread_blkcg+0x30/0x30 [ 55.422128][ C1] ret_from_fork_asm+0x11/0x20 [ 55.426863][ C1] [ 55.431311][ T4772] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.0'. [ 55.440934][ T4772] vxcan0: entered promiscuous mode [ 55.447543][ T4781] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.3'. [ 55.474424][ T4788] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.0'. [ 55.496087][ T4798] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.3'. [ 55.520927][ T4809] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.0'. [ 55.571760][ T4824] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.2'. [ 55.592286][ T4824] vxcan0: entered promiscuous mode [ 55.598032][ T4823] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.0'. [ 55.608557][ T4826] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.3'. [ 55.663674][ T4828] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.2'. [ 55.766856][ T4868] vxcan0: entered promiscuous mode [ 55.779310][ T4869] vxcan0: entered promiscuous mode [ 55.785600][ T4870] vxcan0: entered promiscuous mode [ 59.574215][ T7033] __nla_validate_parse: 1085 callbacks suppressed [ 59.574218][ T7033] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.3'. [ 59.591264][ T7041] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.0'. [ 59.605191][ T7044] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.1'. [ 59.615522][ T7045] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.4'. [ 59.637921][ T7039] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.5'. [ 59.648615][ T7048] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.2'. [ 59.659293][ T7053] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.3'. 2024/01/29 08:21:24 executed programs: 1108 [ 59.671094][ T7050] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.0'. [ 59.686370][ T7059] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.5'. [ 59.696559][ T7052] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.1'. [ 64.584995][T10671] __nla_validate_parse: 1806 callbacks suppressed [ 64.584998][T10671] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.3'. [ 64.601655][T10676] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.1'. [ 64.613429][T10666] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.2'. [ 64.624743][T10677] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.0'. [ 64.637877][T10679] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.5'. [ 64.647790][T10674] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.4'. [ 64.658070][T10681] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.3'. [ 64.668401][T10685] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.2'. 2024/01/29 08:21:29 executed programs: 2924