Warning: Permanently added '10.128.0.218' (ED25519) to the list of known hosts. 1970/01/01 00:01:26 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:01:28 parsed 1 programs [ 90.742874][ T4485] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS [ 98.803390][ T1629] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.805584][ T1629] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.808718][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 98.863566][ T1629] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.865828][ T1629] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.868940][ T279] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 99.630078][ T4540] chnl_net:caif_netlink_parms(): no params data found [ 99.681999][ T4540] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.683975][ T4540] bridge0: port 1(bridge_slave_0) entered disabled state [ 99.686705][ T4540] device bridge_slave_0 entered promiscuous mode [ 99.690772][ T4540] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.694526][ T4540] bridge0: port 2(bridge_slave_1) entered disabled state [ 99.697254][ T4540] device bridge_slave_1 entered promiscuous mode [ 99.716794][ T4540] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 99.722353][ T4540] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 99.743094][ T4540] team0: Port device team_slave_0 added [ 99.746767][ T4540] team0: Port device team_slave_1 added [ 99.763540][ T4540] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 99.765473][ T4540] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 99.774485][ T4540] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 99.779043][ T4540] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 99.781207][ T4540] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 99.787957][ T4540] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 99.863131][ T4540] device hsr_slave_0 entered promiscuous mode [ 99.901288][ T4540] device hsr_slave_1 entered promiscuous mode [ 100.654957][ T4540] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 100.703097][ T4540] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 100.747936][ T4540] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 100.783183][ T4540] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 100.909162][ T4540] 8021q: adding VLAN 0 to HW filter on device bond0 [ 100.916713][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 100.919485][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 100.926238][ T4540] 8021q: adding VLAN 0 to HW filter on device team0 [ 100.933284][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 100.936169][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 100.938925][ T1629] bridge0: port 1(bridge_slave_0) entered blocking state [ 100.940910][ T1629] bridge0: port 1(bridge_slave_0) entered forwarding state [ 100.946342][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 100.963283][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 100.966205][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 100.968984][ T1629] bridge0: port 2(bridge_slave_1) entered blocking state [ 100.971056][ T1629] bridge0: port 2(bridge_slave_1) entered forwarding state [ 100.975455][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 100.978407][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 100.981661][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 100.984882][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 100.988417][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 100.996959][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 101.000671][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 101.007591][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 101.010479][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 101.026016][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 101.028751][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 101.035058][ T4540] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 101.123282][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 101.125492][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 101.132683][ T4540] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 101.145869][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 101.148828][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 101.164917][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 101.167840][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 101.170683][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 101.174209][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 101.178485][ T4540] device veth0_vlan entered promiscuous mode [ 101.188371][ T4540] device veth1_vlan entered promiscuous mode [ 101.206960][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 101.209746][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 101.215487][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 101.218768][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 101.225888][ T4540] device veth0_macvtap entered promiscuous mode [ 101.230466][ T4540] device veth1_macvtap entered promiscuous mode [ 101.243816][ T4540] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 101.245957][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 101.249091][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 101.253609][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 101.256865][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 101.262231][ T4540] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 101.267628][ T4540] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.270195][ T4540] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.274313][ T4540] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.276630][ T4540] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.319747][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 101.323645][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready 1970/01/01 00:01:41 executed programs: 0 [ 102.104827][ T4653] chnl_net:caif_netlink_parms(): no params data found [ 102.180583][ T4653] bridge0: port 1(bridge_slave_0) entered blocking state [ 102.182960][ T4653] bridge0: port 1(bridge_slave_0) entered disabled state [ 102.185709][ T4653] device bridge_slave_0 entered promiscuous mode [ 102.190263][ T4653] bridge0: port 2(bridge_slave_1) entered blocking state [ 102.193092][ T4653] bridge0: port 2(bridge_slave_1) entered disabled state [ 102.195910][ T4653] device bridge_slave_1 entered promiscuous mode [ 102.215526][ T4653] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 102.224309][ T4653] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 102.264489][ T4653] team0: Port device team_slave_0 added [ 102.267943][ T4653] team0: Port device team_slave_1 added [ 102.293753][ T4653] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 102.295750][ T4653] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 102.303151][ T4653] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 102.307473][ T4653] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 102.309424][ T4653] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 102.317391][ T4653] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 102.375954][ T4653] device hsr_slave_0 entered promiscuous mode [ 102.421312][ T4653] device hsr_slave_1 entered promiscuous mode [ 102.461228][ T4653] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 102.463356][ T4653] Cannot create hsr debugfs directory [ 102.542552][ T4653] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 103.871258][ T1959] Bluetooth: hci0: command 0x0409 tx timeout [ 105.012628][ T4653] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 105.951581][ T1959] Bluetooth: hci0: command 0x041b tx timeout [ 106.309211][ T4653] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 106.394092][ T4653] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 106.556871][ T4653] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 106.593349][ T4653] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 106.623796][ T4653] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 106.673450][ T4653] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 106.782612][ T4653] 8021q: adding VLAN 0 to HW filter on device bond0 [ 106.795348][ T279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 106.798020][ T279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 106.804178][ T4653] 8021q: adding VLAN 0 to HW filter on device team0 [ 106.809078][ T279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 106.815336][ T279] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 106.818028][ T279] bridge0: port 1(bridge_slave_0) entered blocking state [ 106.820104][ T279] bridge0: port 1(bridge_slave_0) entered forwarding state [ 106.830753][ T279] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 106.837121][ T279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 106.839973][ T279] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 106.842872][ T279] bridge0: port 2(bridge_slave_1) entered blocking state [ 106.844852][ T279] bridge0: port 2(bridge_slave_1) entered forwarding state [ 106.847250][ T279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 106.864071][ T279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 106.867124][ T279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 106.870744][ T279] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 106.876550][ T279] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 106.880492][ T279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 106.884527][ T279] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 106.898064][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 106.901351][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 106.907836][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 106.919861][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 106.924966][ T4653] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 107.237898][ T4653] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 107.241822][ T279] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 107.243933][ T279] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 107.256753][ T279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 107.259518][ T279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 107.274937][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 107.277663][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 107.280369][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 107.285891][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 107.289975][ T4653] device veth0_vlan entered promiscuous mode [ 107.298981][ T4653] device veth1_vlan entered promiscuous mode [ 107.315276][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 107.318248][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 107.320791][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 107.327147][ T1629] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 107.333781][ T4653] device veth0_macvtap entered promiscuous mode [ 107.338400][ T4653] device veth1_macvtap entered promiscuous mode [ 107.350687][ T4653] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 107.353822][ T4653] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.357611][ T4653] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 107.359634][ T279] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 107.366657][ T279] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 107.369486][ T279] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 107.373305][ T279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 107.378277][ T4653] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 107.381117][ T4653] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.384750][ T4653] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 107.387413][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 107.390283][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 107.395253][ T4653] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.397532][ T4653] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.399772][ T4653] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.402368][ T4653] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.457928][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.460149][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.477199][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 107.484883][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.487053][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.490156][ T279] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 1970/01/01 00:01:47 executed programs: 2 [ 107.816549][ T4920] loop0: detected capacity change from 0 to 32768 [ 107.858974][ T4920] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 107.862021][ T4920] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 107.901018][ T4920] gfs2: fsid=syz:syz.0: journal 0 mapped with 4 extents in 0ms [ 107.908030][ T4141] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 107.909953][ T4141] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 107.948160][ T4141] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 38ms [ 107.951441][ T4141] gfs2: fsid=syz:syz.0: jid=0: Done [ 107.953296][ T4920] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 108.031449][ T4141] Bluetooth: hci0: command 0x040f tx timeout [ 108.172349][ T4920] attempt to access beyond end of device [ 108.172349][ T4920] loop0: rw=1, want=16778992, limit=32768 [ 108.175940][ T4920] gfs2: fsid=syz:syz.0: Error 10 writing to journal, jid=0 [ 108.178464][ T4920] gfs2: fsid=syz:syz.0: fatal: I/O error(s) [ 108.180103][ T4920] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 108.182182][ T4920] BUG: sleeping function called from invalid context at fs/gfs2/glock.c:1281 [ 108.184477][ T4920] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 4920, name: syz.0.16 [ 108.186765][ T4920] 5 locks held by syz.0.16/4920: [ 108.188031][ T4920] #0: ffff0000da234460 (sb_writers#12){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c [ 108.190457][ T4920] #1: ffff0000e6260150 (&type->i_mutex_dir_key#8){+.+.}-{3:3}, at: path_openat+0x5f4/0x26e4 [ 108.193357][ T4920] #2: ffff0000da234650 (sb_internal#2){.+.+}-{0:0}, at: gfs2_trans_begin+0x120/0x1bc [ 108.195870][ T4920] #3: ffff0000da16d0a8 (&sdp->sd_log_flush_lock){++++}-{3:3}, at: gfs2_log_flush+0xb4/0x2078 [ 108.198557][ T4920] #4: ffff0000da16ced0 (&sdp->sd_log_lock){+.+.}-{2:2}, at: gfs2_flush_revokes+0x48/0x88 [ 108.201255][ T4920] Preemption disabled at: [ 108.201268][ T4920] [] gfs2_flush_revokes+0x48/0x88 [ 108.204099][ T4920] CPU: 1 PID: 4920 Comm: syz.0.16 Not tainted 5.15.186-syzkaller #0 [ 108.206129][ T4920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 108.208729][ T4920] Call trace: [ 108.209561][ T4920] dump_backtrace+0x0/0x43c [ 108.210716][ T4920] show_stack+0x2c/0x3c [ 108.211823][ T4920] __dump_stack+0x30/0x40 [ 108.213005][ T4920] dump_stack_lvl+0xf8/0x160 [ 108.214215][ T4920] dump_stack+0x1c/0x5c [ 108.215327][ T4920] ___might_sleep+0x358/0x4d4 [ 108.216567][ T4920] __might_sleep+0x98/0x124 [ 108.217809][ T4920] gfs2_glock_nq+0x888/0x141c [ 108.219035][ T4920] gfs2_freeze_lock+0x64/0xd8 [ 108.220262][ T4920] gfs2_withdraw+0x490/0x129c [ 108.221502][ T4920] gfs2_ail1_empty+0x768/0x7f8 [ 108.222780][ T4920] gfs2_flush_revokes+0x54/0x88 [ 108.224062][ T4920] revoke_lo_before_commit+0x3c/0x608 [ 108.225486][ T4920] gfs2_log_flush+0x8d0/0x2078 [ 108.226753][ T4920] gfs2_trans_end+0x2f0/0x4bc [ 108.227970][ T4920] alloc_dinode+0x2e8/0x3fc [ 108.229136][ T4920] gfs2_create_inode+0x9e4/0x1058 [ 108.230436][ T4920] gfs2_atomic_open+0xc8/0x1c4 [ 108.231667][ T4920] path_openat+0xb50/0x26e4 [ 108.232837][ T4920] do_filp_open+0x164/0x330 [ 108.234017][ T4920] do_sys_openat2+0x128/0x3d8 [ 108.235251][ T4920] __arm64_sys_openat+0x120/0x154 [ 108.236592][ T4920] invoke_syscall+0x98/0x2b8 [ 108.237800][ T4920] el0_svc_common+0x138/0x258 [ 108.239027][ T4920] do_el0_svc+0x58/0x14c [ 108.240149][ T4920] el0_svc+0x78/0x1e0 [ 108.241203][ T4920] el0t_64_sync_handler+0xcc/0xe4 [ 108.242542][ T4920] el0t_64_sync+0x1a0/0x1a4 [ 108.250248][ T4920] [ 108.250863][ T4920] ============================= [ 108.252126][ T4920] [ BUG: Invalid wait context ] [ 108.253423][ T4920] 5.15.186-syzkaller #0 Tainted: G W [ 108.255141][ T4920] ----------------------------- [ 108.256479][ T4920] syz.0.16/4920 is trying to lock: [ 108.257795][ T4920] ffff0000c6c71088 (&wq->mutex){+.+.}-{3:3}, at: flush_workqueue+0x13c/0x1024 [ 108.260140][ T4920] other info that might help us debug this: [ 108.261701][ T4920] context-{4:4} [ 108.262582][ T4920] 5 locks held by syz.0.16/4920: [ 108.263851][ T4920] #0: ffff0000da234460 (sb_writers#12){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c [ 108.266294][ T4920] #1: ffff0000e6260150 (&type->i_mutex_dir_key#8){+.+.}-{3:3}, at: path_openat+0x5f4/0x26e4 [ 108.269071][ T4920] #2: ffff0000da234650 (sb_internal#2){.+.+}-{0:0}, at: gfs2_trans_begin+0x120/0x1bc [ 108.271641][ T4920] #3: ffff0000da16d0a8 (&sdp->sd_log_flush_lock){++++}-{3:3}, at: gfs2_log_flush+0xb4/0x2078 [ 108.274351][ T4920] #4: ffff0000da16ced0 (&sdp->sd_log_lock){+.+.}-{2:2}, at: gfs2_flush_revokes+0x48/0x88 [ 108.277005][ T4920] stack backtrace: [ 108.277967][ T4920] CPU: 1 PID: 4920 Comm: syz.0.16 Tainted: G W 5.15.186-syzkaller #0 [ 108.280418][ T4920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 108.283056][ T4920] Call trace: [ 108.283925][ T4920] dump_backtrace+0x0/0x43c [ 108.285108][ T4920] show_stack+0x2c/0x3c [ 108.286200][ T4920] __dump_stack+0x30/0x40 [ 108.287325][ T4920] dump_stack_lvl+0xf8/0x160 [ 108.288552][ T4920] dump_stack+0x1c/0x5c [ 108.289654][ T4920] __lock_acquire+0x1acc/0x651c [ 108.290934][ T4920] lock_acquire+0x1f4/0x620 [ 108.292126][ T4920] __mutex_lock_common+0x194/0x1edc [ 108.293496][ T4920] mutex_lock_nested+0xac/0x11c [ 108.294806][ T4920] flush_workqueue+0x13c/0x1024 [ 108.296095][ T4920] gfs2_flush_delete_work+0x34/0x44 [ 108.297470][ T4920] gfs2_make_fs_ro+0xb4/0x51c [ 108.298689][ T4920] gfs2_withdraw+0x4cc/0x129c [ 108.299977][ T4920] gfs2_ail1_empty+0x768/0x7f8 [ 108.301250][ T4920] gfs2_flush_revokes+0x54/0x88 [ 108.302547][ T4920] revoke_lo_before_commit+0x3c/0x608 [ 108.303984][ T4920] gfs2_log_flush+0x8d0/0x2078 [ 108.305249][ T4920] gfs2_trans_end+0x2f0/0x4bc [ 108.306482][ T4920] alloc_dinode+0x2e8/0x3fc [ 108.307670][ T4920] gfs2_create_inode+0x9e4/0x1058 [ 108.308983][ T4920] gfs2_atomic_open+0xc8/0x1c4 [ 108.310205][ T4920] path_openat+0xb50/0x26e4 [ 108.311425][ T4920] do_filp_open+0x164/0x330 [ 108.312594][ T4920] do_sys_openat2+0x128/0x3d8 [ 108.313840][ T4920] __arm64_sys_openat+0x120/0x154 [ 108.315133][ T4920] invoke_syscall+0x98/0x2b8 [ 108.316336][ T4920] el0_svc_common+0x138/0x258 [ 108.317579][ T4920] do_el0_svc+0x58/0x14c [ 108.318714][ T4920] el0_svc+0x78/0x1e0 [ 108.319751][ T4920] el0t_64_sync_handler+0xcc/0xe4 [ 108.321068][ T4920] el0t_64_sync+0x1a0/0x1a4 [ 108.322617][ T4920] BUG: scheduling while atomic: syz.0.16/4920/0x00000002 [ 108.324431][ T4920] INFO: lockdep is turned off. [ 108.325632][ T4920] Modules linked in: [ 108.326632][ T4920] Preemption disabled at: [ 108.326642][ T4920] [] gfs2_flush_revokes+0x48/0x88 [ 108.329484][ T4920] CPU: 1 PID: 4920 Comm: syz.0.16 Tainted: G W 5.15.186-syzkaller #0 [ 108.331921][ T4920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 108.334597][ T4920] Call trace: [ 108.335461][ T4920] dump_backtrace+0x0/0x43c [ 108.336678][ T4920] show_stack+0x2c/0x3c [ 108.337834][ T4920] __dump_stack+0x30/0x40 [ 108.339002][ T4920] dump_stack_lvl+0xf8/0x160 [ 108.340216][ T4920] dump_stack+0x1c/0x5c [ 108.341685][ T4920] __schedule_bug+0x124/0x1c8 [ 108.342922][ T4920] __schedule+0xe8c/0x1c0c [ 108.344114][ T4920] schedule+0x11c/0x1c8 [ 108.345293][ T4920] schedule_timeout+0xb4/0x2c8 [ 108.346539][ T4920] do_wait_for_common+0x1fc/0x35c [ 108.347905][ T4920] wait_for_completion+0x48/0x60 [ 108.349218][ T4920] kthread_stop+0x1a0/0x6f8 [ 108.350429][ T4920] gfs2_make_fs_ro+0x12c/0x51c [ 108.351681][ T4920] gfs2_withdraw+0x4cc/0x129c [ 108.352931][ T4920] gfs2_ail1_empty+0x768/0x7f8 [ 108.354247][ T4920] gfs2_flush_revokes+0x54/0x88 [ 108.355563][ T4920] revoke_lo_before_commit+0x3c/0x608 [ 108.357034][ T4920] gfs2_log_flush+0x8d0/0x2078 [ 108.358271][ T4920] gfs2_trans_end+0x2f0/0x4bc [ 108.359502][ T4920] alloc_dinode+0x2e8/0x3fc [ 108.360697][ T4920] gfs2_create_inode+0x9e4/0x1058 [ 108.362276][ T4920] gfs2_atomic_open+0xc8/0x1c4 [ 108.363629][ T4920] path_openat+0xb50/0x26e4 [ 108.364814][ T4920] do_filp_open+0x164/0x330 [ 108.366004][ T4920] do_sys_openat2+0x128/0x3d8 [ 108.367253][ T4920] __arm64_sys_openat+0x120/0x154 [ 108.368604][ T4920] invoke_syscall+0x98/0x2b8 [ 108.369833][ T4920] el0_svc_common+0x138/0x258 [ 108.371086][ T4920] do_el0_svc+0x58/0x14c [ 108.372211][ T4920] el0_svc+0x78/0x1e0 [ 108.373290][ T4920] el0t_64_sync_handler+0xcc/0xe4 [ 108.374698][ T4920] el0t_64_sync+0x1a0/0x1a4 [ 108.733543][ T136] device hsr_slave_0 left promiscuous mode [ 108.771504][ T136] device hsr_slave_1 left promiscuous mode [ 108.860961][ T136] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 108.862937][ T136] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 108.865287][ T136] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 108.867211][ T136] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 108.869512][ T136] device bridge_slave_1 left promiscuous mode [ 108.871549][ T136] bridge0: port 2(bridge_slave_1) entered disabled state [ 108.911911][ T136] device bridge_slave_0 left promiscuous mode [ 108.913654][ T136] bridge0: port 1(bridge_slave_0) entered disabled state [ 109.041120][ T136] device veth1_macvtap left promiscuous mode [ 109.042857][ T136] device veth0_macvtap left promiscuous mode [ 109.044529][ T136] device veth1_vlan left promiscuous mode [ 109.046062][ T136] device veth0_vlan left promiscuous mode [ 109.203833][ T136] team0 (unregistering): Port device team_slave_1 removed [ 109.210551][ T136] team0 (unregistering): Port device team_slave_0 removed [ 109.218528][ T136] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 109.266744][ T136] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 109.379512][ T136] bond0 (unregistering): Released all slaves [ 110.110991][ T4141] Bluetooth: hci0: command 0x0419 tx timeout [ 113.391093][ T4920] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 113.393514][ T4920] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 113.395331][ T4920] gfs2: fsid=syz:syz.0: File system withdrawn [ 113.396961][ T4920] CPU: 0 PID: 4920 Comm: syz.0.16 Tainted: G W 5.15.186-syzkaller #0 [ 113.399416][ T4920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 113.402114][ T4920] Call trace: [ 113.402985][ T4920] dump_backtrace+0x0/0x43c [ 113.404194][ T4920] show_stack+0x2c/0x3c [ 113.405297][ T4920] __dump_stack+0x30/0x40 [ 113.406495][ T4920] dump_stack_lvl+0xf8/0x160 [ 113.407720][ T4920] dump_stack+0x1c/0x5c [ 113.408813][ T4920] gfs2_withdraw+0xc60/0x129c [ 113.410045][ T4920] gfs2_ail1_empty+0x768/0x7f8 [ 113.411412][ T4920] gfs2_flush_revokes+0x54/0x88 [ 113.412726][ T4920] revoke_lo_before_commit+0x3c/0x608 [ 113.414149][ T4920] gfs2_log_flush+0x8d0/0x2078 [ 113.415450][ T4920] gfs2_trans_end+0x2f0/0x4bc [ 113.416701][ T4920] alloc_dinode+0x2e8/0x3fc [ 113.417903][ T4920] gfs2_create_inode+0x9e4/0x1058 [ 113.419233][ T4920] gfs2_atomic_open+0xc8/0x1c4 [ 113.420538][ T4920] path_openat+0xb50/0x26e4 [ 113.421772][ T4920] do_filp_open+0x164/0x330 [ 113.423022][ T4920] do_sys_openat2+0x128/0x3d8 [ 113.424253][ T4920] __arm64_sys_openat+0x120/0x154 [ 113.425635][ T4920] invoke_syscall+0x98/0x2b8 [ 113.426852][ T4920] el0_svc_common+0x138/0x258 [ 113.428086][ T4920] do_el0_svc+0x58/0x14c [ 113.429210][ T4920] el0_svc+0x78/0x1e0 [ 113.430299][ T4920] el0t_64_sync_handler+0xcc/0xe4 [ 113.431644][ T4920] el0t_64_sync+0x1a0/0x1a4 1970/01/01 00:01:53 executed programs: 3