Warning: Permanently added '10.128.1.185' (ECDSA) to the list of known hosts. 2023/04/21 13:40:43 ignoring optional flag "sandboxArg"="0" 2023/04/21 13:40:44 parsed 1 programs 2023/04/21 13:40:44 executed programs: 0 [ 58.241682][ T4050] chnl_net:caif_netlink_parms(): no params data found [ 58.273447][ T4050] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.280595][ T4050] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.288069][ T4050] device bridge_slave_0 entered promiscuous mode [ 58.295784][ T4050] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.302952][ T4050] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.310610][ T4050] device bridge_slave_1 entered promiscuous mode [ 58.327420][ T4050] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.338635][ T4050] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.358137][ T4050] team0: Port device team_slave_0 added [ 58.366356][ T4050] team0: Port device team_slave_1 added [ 58.382089][ T4050] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 58.389047][ T4050] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 58.415190][ T4050] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 58.427119][ T4050] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 58.434498][ T4050] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 58.461231][ T4050] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 58.487165][ T4050] device hsr_slave_0 entered promiscuous mode [ 58.493684][ T4050] device hsr_slave_1 entered promiscuous mode [ 58.875618][ T4050] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 58.888499][ T4050] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 58.897970][ T4050] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 58.908430][ T4050] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 58.929730][ T4050] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.936908][ T4050] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.944280][ T4050] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.951371][ T4050] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.002808][ T4050] 8021q: adding VLAN 0 to HW filter on device bond0 [ 59.017424][ T3604] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 59.026927][ T3604] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.036389][ T3604] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.044700][ T3604] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 59.058804][ T4050] 8021q: adding VLAN 0 to HW filter on device team0 [ 59.070055][ T3604] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 59.080078][ T3604] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.087210][ T3604] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.114705][ T3603] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 59.123685][ T3603] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.130785][ T3603] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.140815][ T3603] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 59.149579][ T3603] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 59.159424][ T3603] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 59.172489][ T4050] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 59.187201][ T4050] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 59.196744][ T3604] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 59.206237][ T3604] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 59.301020][ T3604] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 59.308591][ T3604] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 59.324822][ T4050] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 59.352359][ T3604] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 59.361964][ T3604] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 59.380642][ T3604] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 59.388955][ T3604] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 59.401352][ T4050] device veth0_vlan entered promiscuous mode [ 59.411067][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 59.418897][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 59.432007][ T4050] device veth1_vlan entered promiscuous mode [ 59.454222][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 59.464212][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 59.474310][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 59.484262][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 59.495185][ T4050] device veth0_macvtap entered promiscuous mode [ 59.508527][ T4050] device veth1_macvtap entered promiscuous mode [ 59.525763][ T4050] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 59.534867][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 59.545420][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 59.554457][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 59.564354][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 59.575338][ T4050] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 59.585297][ T3604] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 59.594980][ T3604] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 59.606638][ T4050] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.617248][ T4050] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.627313][ T4050] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.636810][ T4050] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.701905][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 59.709934][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 59.746271][ T3604] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 59.757375][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 59.766680][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 59.779015][ T3604] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 59.847889][ T4151] [ 59.850338][ T4151] ====================================================== [ 59.857341][ T4151] WARNING: possible circular locking dependency detected [ 59.864346][ T4151] 5.15.108-syzkaller #0 Not tainted [ 59.869528][ T4151] ------------------------------------------------------ [ 59.876530][ T4151] syz-executor.0/4151 is trying to acquire lock: [ 59.882837][ T4151] ffff88814b904460 (sb_writers#5){.+.+}-{0:0}, at: mnt_want_write+0x36/0x70 [ 59.891531][ T4151] [ 59.891531][ T4151] but task is already holding lock: [ 59.898882][ T4151] ffff8880219741a0 (&iint->mutex){+.+.}-{3:3}, at: process_measurement+0x61b/0x1510 [ 59.908390][ T4151] [ 59.908390][ T4151] which lock already depends on the new lock. [ 59.908390][ T4151] [ 59.918783][ T4151] [ 59.918783][ T4151] the existing dependency chain (in reverse order) is: [ 59.927785][ T4151] [ 59.927785][ T4151] -> #1 (&iint->mutex){+.+.}-{3:3}: [ 59.935159][ T4151] lock_acquire+0x1db/0x4f0 [ 59.940262][ T4151] __mutex_lock_common+0x1da/0x25a0 [ 59.945971][ T4151] mutex_lock_nested+0x17/0x20 [ 59.951255][ T4151] process_measurement+0x61b/0x1510 [ 59.956960][ T4151] ima_file_check+0xeb/0x170 [ 59.962048][ T4151] path_openat+0x2336/0x28d0 [ 59.967130][ T4151] do_filp_open+0x208/0x400 [ 59.972123][ T4151] do_sys_openat2+0x10b/0x430 [ 59.977292][ T4151] __x64_sys_openat+0x209/0x250 [ 59.982631][ T4151] do_syscall_64+0x3d/0xb0 [ 59.987537][ T4151] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 59.993943][ T4151] [ 59.993943][ T4151] -> #0 (sb_writers#5){.+.+}-{0:0}: [ 60.001292][ T4151] validate_chain+0x1646/0x58b0 [ 60.006633][ T4151] __lock_acquire+0x1295/0x1ff0 [ 60.011986][ T4151] lock_acquire+0x1db/0x4f0 [ 60.016979][ T4151] sb_start_write+0x49/0x140 [ 60.022092][ T4151] mnt_want_write+0x36/0x70 [ 60.027109][ T4151] ovl_maybe_copy_up+0xb1/0x100 [ 60.032454][ T4151] ovl_open+0x86/0x1f0 [ 60.037022][ T4151] do_dentry_open+0x60a/0xcc0 [ 60.042194][ T4151] dentry_open+0xb5/0xf0 [ 60.046930][ T4151] ima_calc_file_hash+0x133/0x1680 [ 60.052546][ T4151] ima_collect_measurement+0x21a/0x460 [ 60.059278][ T4151] process_measurement+0xb72/0x1510 [ 60.064989][ T4151] ima_file_check+0xeb/0x170 [ 60.070068][ T4151] path_openat+0x2336/0x28d0 [ 60.075148][ T4151] do_filp_open+0x208/0x400 [ 60.080139][ T4151] do_sys_openat2+0x10b/0x430 [ 60.085305][ T4151] __x64_sys_openat+0x209/0x250 [ 60.090754][ T4151] do_syscall_64+0x3d/0xb0 [ 60.095746][ T4151] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 60.102128][ T4151] [ 60.102128][ T4151] other info that might help us debug this: [ 60.102128][ T4151] [ 60.112326][ T4151] Possible unsafe locking scenario: [ 60.112326][ T4151] [ 60.120118][ T4151] CPU0 CPU1 [ 60.125452][ T4151] ---- ---- [ 60.130910][ T4151] lock(&iint->mutex); [ 60.135037][ T4151] lock(sb_writers#5); [ 60.141712][ T4151] lock(&iint->mutex); [ 60.148359][ T4151] lock(sb_writers#5); [ 60.152484][ T4151] [ 60.152484][ T4151] *** DEADLOCK *** [ 60.152484][ T4151] [ 60.160607][ T4151] 1 lock held by syz-executor.0/4151: [ 60.165949][ T4151] #0: ffff8880219741a0 (&iint->mutex){+.+.}-{3:3}, at: process_measurement+0x61b/0x1510 [ 60.175733][ T4151] [ 60.175733][ T4151] stack backtrace: [ 60.181601][ T4151] CPU: 0 PID: 4151 Comm: syz-executor.0 Not tainted 5.15.108-syzkaller #0 [ 60.190065][ T4151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023 [ 60.200090][ T4151] Call Trace: [ 60.203354][ T4151] [ 60.206262][ T4151] dump_stack_lvl+0x163/0x213 [ 60.211102][ T4151] ? io_uring_drop_tctx_refs+0x15d/0x15d [ 60.216722][ T4151] ? print_circular_bug+0x12b/0x1a0 [ 60.221890][ T4151] check_noncircular+0x2f8/0x3b0 [ 60.226808][ T4151] ? add_chain_block+0x850/0x850 [ 60.231713][ T4151] ? lockdep_lock+0x11f/0x2a0 [ 60.236377][ T4151] validate_chain+0x1646/0x58b0 [ 60.241214][ T4151] ? kfree+0xf1/0x270 [ 60.245171][ T4151] ? kasan_set_track+0x4b/0x80 [ 60.249909][ T4151] ? __x64_sys_openat+0x209/0x250 [ 60.254908][ T4151] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 60.260947][ T4151] ? reacquire_held_locks+0x660/0x660 [ 60.266291][ T4151] ? mark_lock+0x98/0x340 [ 60.270591][ T4151] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 60.276541][ T4151] ? mark_lock+0x98/0x340 [ 60.280842][ T4151] __lock_acquire+0x1295/0x1ff0 [ 60.285666][ T4151] lock_acquire+0x1db/0x4f0 [ 60.290247][ T4151] ? mnt_want_write+0x36/0x70 [ 60.294900][ T4151] ? read_lock_is_recursive+0x10/0x10 [ 60.300251][ T4151] ? __might_sleep+0xc0/0xc0 [ 60.304897][ T4151] ? apparmor_file_open+0x4f4/0x6f0 [ 60.310071][ T4151] sb_start_write+0x49/0x140 [ 60.314628][ T4151] ? mnt_want_write+0x36/0x70 [ 60.319272][ T4151] mnt_want_write+0x36/0x70 [ 60.323757][ T4151] ovl_maybe_copy_up+0xb1/0x100 [ 60.328601][ T4151] ovl_open+0x86/0x1f0 [ 60.332663][ T4151] do_dentry_open+0x60a/0xcc0 [ 60.337399][ T4151] ? ovl_mmap+0x400/0x400 [ 60.341704][ T4151] dentry_open+0xb5/0xf0 [ 60.345932][ T4151] ima_calc_file_hash+0x133/0x1680 [ 60.351018][ T4151] ? validate_chain+0x13b7/0x58b0 [ 60.356100][ T4151] ? mark_lock+0x98/0x340 [ 60.360416][ T4151] ? __lock_acquire+0x1295/0x1ff0 [ 60.365406][ T4151] ? ima_alloc_tfm+0x2b0/0x2b0 [ 60.370149][ T4151] ? ext4_xattr_get+0x46c/0x680 [ 60.374976][ T4151] ? __lock_acquire+0x1ff0/0x1ff0 [ 60.379970][ T4151] ? __up_read+0x2b9/0x690 [ 60.384354][ T4151] ? up_read+0x20/0x20 [ 60.388408][ T4151] ? ext4_xattr_get+0x46c/0x680 [ 60.393251][ T4151] ? vfs_getxattr+0x58c/0x5d0 [ 60.397902][ T4151] ima_collect_measurement+0x21a/0x460 [ 60.403339][ T4151] ? ima_get_action+0xb0/0xb0 [ 60.407989][ T4151] ? ima_get_cache_status+0x160/0x160 [ 60.413334][ T4151] process_measurement+0xb72/0x1510 [ 60.418599][ T4151] ? ima_file_mmap+0x170/0x170 [ 60.423341][ T4151] ? apparmor_task_getsecid+0x57/0xc0 [ 60.428684][ T4151] ima_file_check+0xeb/0x170 [ 60.433254][ T4151] ? do_dentry_open+0x7ec/0xcc0 [ 60.438072][ T4151] ? ima_bprm_check+0x290/0x290 [ 60.442892][ T4151] path_openat+0x2336/0x28d0 [ 60.447458][ T4151] ? do_filp_open+0x400/0x400 [ 60.452106][ T4151] do_filp_open+0x208/0x400 [ 60.456582][ T4151] ? vfs_tmpfile+0x290/0x290 [ 60.461152][ T4151] ? _raw_spin_unlock+0x24/0x40 [ 60.465974][ T4151] ? alloc_fd+0x441/0x4d0 [ 60.470273][ T4151] do_sys_openat2+0x10b/0x430 [ 60.474919][ T4151] ? read_lock_is_recursive+0x10/0x10 [ 60.480260][ T4151] ? do_sys_open+0x1c0/0x1c0 [ 60.484907][ T4151] ? do_raw_spin_unlock+0x137/0x8b0 [ 60.490075][ T4151] ? rcu_is_watching+0x11/0xa0 [ 60.494807][ T4151] __x64_sys_openat+0x209/0x250 [ 60.499629][ T4151] ? __ia32_sys_open+0x230/0x230 [ 60.504547][ T4151] ? syscall_enter_from_user_mode+0x2e/0x230 [ 60.510501][ T4151] ? lockdep_hardirqs_on+0x94/0x130 [ 60.515675][ T4151] ? syscall_enter_from_user_mode+0x2e/0x230 [ 60.521647][ T4151] do_syscall_64+0x3d/0xb0 [ 60.526038][ T4151] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 60.531900][ T4151] RIP: 0033:0x7f8f5be790f9 [ 60.536289][ T4151] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 60.555867][ T4151] RSP: 002b:00007f8f5b1eb168 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 60.564263][ T4151] RAX: ffffffffffffffda RBX: 00007f8f5bf98f80 RCX: 00007f8f5be790f9 [ 60.572210][ T4151] RDX: 0000000000000003 RSI: 0000000020000340 RDI: 0000000000000006 [ 60.580155][ T4151] RBP: 00007f8f5bed4b39 R08: 0000000000000000 R09: 0000000000000000 [ 60.588356][ T4151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 60.596312][ T4151] R13: 00007fff30de717f R14: 00007f8f5b1eb300 R15: 0000000000022000 [ 60.604345][ T4151] [ 60.610686][ T3604] Bluetooth: hci0: command 0x0409 tx timeout [ 62.670647][ T7] Bluetooth: hci0: command 0x041b tx timeout 2023/04/21 13:40:49 executed programs: 74 [ 64.760842][ T7] Bluetooth: hci0: command 0x040f tx timeout [ 66.111343][ T1375] ieee802154 phy0 wpan0: encryption failed: -22 [ 66.117761][ T1375] ieee802154 phy1 wpan1: encryption failed: -22 [ 66.830389][ T1068] Bluetooth: hci0: command 0x0419 tx timeout 2023/04/21 13:40:54 executed programs: 277