syzkaller login: [ 36.502169][ T2977] cgroup: Unknown subsys name 'net'
[ 36.629751][ T2977] cgroup: Unknown subsys name 'cpuset'
[ 36.635893][ T2977] cgroup: Unknown subsys name 'rlimit'
[ 37.784864][ T2977] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 38.527572][ T2988] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 39.472077][ T3029] veth0_vlan: entered promiscuous mode
[ 39.751355][ T11] veth0_vlan: left promiscuous mode
[ 40.485699][ T3208] veth0_vlan: entered promiscuous mode
[ 40.840719][ T277] veth0_vlan: left promiscuous mode
Warning: Permanently added '10.128.0.151' (ED25519) to the list of known hosts.
2025/02/15 06:18:43 ignoring optional flag "sandboxArg"="0"
2025/02/15 06:18:43 ignoring optional flag "type"="gce"
2025/02/15 06:18:43 parsed 1 programs
[ 61.561385][ T3401] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 63.091150][ T3432] veth0_vlan: entered promiscuous mode
[ 63.392589][ T50] veth0_vlan: left promiscuous mode
2025/02/15 06:18:47 executed programs: 0
[ 64.235366][ T3633] veth0_vlan: entered promiscuous mode
[ 64.698804][ T3203] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[ 64.848623][ T3203] usb 1-1: Using ep0 maxpacket: 16
[ 64.856833][ T3203] usb 1-1: New USB device found, idVendor=0b05, idProduct=1736, bcdDevice= d.b1
[ 64.866215][ T3203] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 64.874208][ T3203] usb 1-1: Product: syz
[ 64.878337][ T3203] usb 1-1: Manufacturer: syz
[ 64.883022][ T3203] usb 1-1: SerialNumber: syz
[ 64.889016][ T3203] usb 1-1: config 0 descriptor??
[ 65.096141][ T3203] dvb-usb: found a 'Asus My Cinema-U3000Hybrid' in cold state, will try to load a firmware
[ 65.120141][ T3203] dvb-usb: downloading firmware from file 'dvb-usb-dib0700-1.20.fw'
[ 65.128146][ T3203] dib0700: firmware download failed at 7 with -22
[ 65.309505][ T770] cfg80211: failed to load regulatory.db
[ 65.450699][ T3813] FAULT_INJECTION: forcing a failure.
[ 65.450699][ T3813] name failslab, interval 1, probability 0, space 0, times 1
[ 65.463405][ T3813] CPU: 0 UID: 0 PID: 3813 Comm: syz.0.15 Not tainted 6.14.0-rc2-syzkaller #0
[ 65.463410][ T3813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 65.463415][ T3813] Call Trace:
[ 65.463418][ T3813]
[ 65.463420][ T3813] dump_stack_lvl+0xa3/0x100
[ 65.463430][ T3813] should_fail_ex+0x189/0x1a0
[ 65.463436][ T3813] should_failslab+0x53/0x70
[ 65.463441][ T3813] __kmalloc_cache_noprof+0x61/0x3e0
[ 65.463445][ T3813] ? async_schedule_node_domain+0x2b/0xb0
[ 65.463448][ T3813] ? __pfx___async_dev_cache_fw_image+0x10/0x10
[ 65.463453][ T3813] async_schedule_node_domain+0x2b/0xb0
[ 65.463455][ T3813] dev_cache_fw_image+0x165/0x1a0
[ 65.463459][ T3813] ? __pfx_dev_cache_fw_image+0x10/0x10
[ 65.463462][ T3813] dpm_for_each_dev+0x47/0x70
[ 65.463466][ T3813] fw_pm_notify+0xee/0x150
[ 65.463469][ T3813] ? __pfx_autoremove_wake_function+0x10/0x10
[ 65.463474][ T3813] notifier_call_chain+0x6d/0x100
[ 65.463479][ T3813] blocking_notifier_call_chain_robust+0x60/0xc0
[ 65.463482][ T3813] pm_notifier_call_chain_robust+0x1b/0x40
[ 65.463485][ T3813] snapshot_open+0x108/0x150
[ 65.463488][ T3813] misc_open+0xf9/0x120
[ 65.463492][ T3813] chrdev_open+0x1d8/0x230
[ 65.463495][ T3813] ? __pfx_chrdev_open+0x10/0x10
[ 65.463497][ T3813] do_dentry_open+0x387/0x4e0
[ 65.463500][ T3813] vfs_open+0x28/0xe0
[ 65.463502][ T3813] path_openat+0xbc2/0xdf0
[ 65.463506][ T3813] ? __virt_addr_valid+0xad/0x240
[ 65.463510][ T3813] ? __virt_addr_valid+0xad/0x240
[ 65.463512][ T3813] do_filp_open+0xc5/0x180
[ 65.463516][ T3813] do_sys_openat2+0x7e/0xe0
[ 65.463519][ T3813] __x64_sys_openat+0x7c/0xa0
[ 65.463521][ T3813] do_syscall_64+0xa0/0x1b0
[ 65.463526][ T3813] ? clear_bhb_loop+0x35/0x90
[ 65.463530][ T3813] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 65.463534][ T3813] RIP: 0033:0x7fe651175b59
[ 65.463537][ T3813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 65.463539][ T3813] RSP: 002b:00007fe651e8a048 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 65.463542][ T3813] RAX: ffffffffffffffda RBX: 00007fe651306038 RCX: 00007fe651175b59
[ 65.463544][ T3813] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffffffffffffff9c
[ 65.463545][ T3813] RBP: 00007fe651e8a0a0 R08: 0000000000000000 R09: 0000000000000000
[ 65.463546][ T3813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 65.463547][ T3813] R13: 000000000000006e R14: 00007fe651306038 R15: 00007fff168b5de8
[ 65.463549][ T3813]
[ 65.464013][ T3813]
[ 65.716289][ T3813] ============================================
[ 65.722842][ T3813] WARNING: possible recursive locking detected
[ 65.728963][ T3813] 6.14.0-rc2-syzkaller #0 Not tainted
[ 65.734297][ T3813] --------------------------------------------
[ 65.740409][ T3813] syz.0.15/3813 is trying to acquire lock:
[ 65.746184][ T3813] ffffffff84323f70 (fw_lock){+.+.}-{4:4}, at: assign_fw+0x27/0x2a0
[ 65.754072][ T3813]
[ 65.754072][ T3813] but task is already holding lock:
[ 65.761420][ T3813] ffffffff84323f70 (fw_lock){+.+.}-{4:4}, at: fw_pm_notify+0xd6/0x150
[ 65.769547][ T3813]
[ 65.769547][ T3813] other info that might help us debug this:
[ 65.777574][ T3813] Possible unsafe locking scenario:
[ 65.777574][ T3813]
[ 65.784994][ T3813] CPU0
[ 65.788244][ T3813] ----
[ 65.791495][ T3813] lock(fw_lock);
[ 65.795200][ T3813] lock(fw_lock);
[ 65.798897][ T3813]
[ 65.798897][ T3813] *** DEADLOCK ***
[ 65.798897][ T3813]
[ 65.807014][ T3813] May be due to missing lock nesting notation
[ 65.807014][ T3813]
[ 65.815295][ T3813] 5 locks held by syz.0.15/3813:
[ 65.820195][ T3813] #0: ffffffff8430def0 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x2c/0x120
[ 65.828610][ T3813] #1: ffffffff84108ed8 (system_transition_mutex){+.+.}-{4:4}, at: lock_system_sleep+0x2a/0x40
[ 65.838901][ T3813] #2: ffffffff8410e7d0 ((pm_chain_head).rwsem){++++}-{4:4}, at: blocking_notifier_call_chain_robust+0x40/0xc0
[ 65.850767][ T3813] #3: ffffffff84323f70 (fw_lock){+.+.}-{4:4}, at: fw_pm_notify+0xd6/0x150
[ 65.859326][ T3813] #4: ffffffff843235a0 (dpm_list_mtx){+.+.}-{4:4}, at: dpm_for_each_dev+0x24/0x70
[ 65.868575][ T3813]
[ 65.868575][ T3813] stack backtrace:
[ 65.874436][ T3813] CPU: 0 UID: 0 PID: 3813 Comm: syz.0.15 Not tainted 6.14.0-rc2-syzkaller #0
[ 65.874439][ T3813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 65.874441][ T3813] Call Trace:
[ 65.874443][ T3813]
[ 65.874444][ T3813] dump_stack_lvl+0xa3/0x100
[ 65.874451][ T3813] print_deadlock_bug+0x244/0x260
[ 65.874455][ T3813] __lock_acquire+0x10c4/0x2570
[ 65.874458][ T3813] ? debug_check_no_obj_freed+0xd8/0x250
[ 65.874462][ T3813] ? debug_check_no_obj_freed+0xd8/0x250
[ 65.874465][ T3813] ? assign_fw+0x27/0x2a0
[ 65.874469][ T3813] lock_acquire+0xeb/0x270
[ 65.874471][ T3813] ? assign_fw+0x27/0x2a0
[ 65.874474][ T3813] ? debug_check_no_obj_freed+0x1f2/0x250
[ 65.874477][ T3813] ? assign_fw+0x27/0x2a0
[ 65.874479][ T3813] __mutex_lock+0xaa/0xa40
[ 65.874484][ T3813] ? assign_fw+0x27/0x2a0
[ 65.874486][ T3813] ? fw_get_filesystem_firmware+0x372/0x3d0
[ 65.874489][ T3813] ? kmem_cache_free+0xf8/0x3d0
[ 65.874494][ T3813] assign_fw+0x27/0x2a0
[ 65.874497][ T3813] _request_firmware+0x39a/0x4c0
[ 65.874500][ T3813] __async_dev_cache_fw_image+0x4c/0x140
[ 65.874504][ T3813] ? __pfx___async_dev_cache_fw_image+0x10/0x10
[ 65.874508][ T3813] async_schedule_node_domain+0x7f/0xb0
[ 65.874511][ T3813] dev_cache_fw_image+0x165/0x1a0
[ 65.874515][ T3813] ? __pfx_dev_cache_fw_image+0x10/0x10
[ 65.874529][ T3813] dpm_for_each_dev+0x47/0x70
[ 65.874534][ T3813] fw_pm_notify+0xee/0x150
[ 65.874537][ T3813] ? __pfx_autoremove_wake_function+0x10/0x10
[ 65.874541][ T3813] notifier_call_chain+0x6d/0x100
[ 65.874545][ T3813] blocking_notifier_call_chain_robust+0x60/0xc0
[ 65.874549][ T3813] pm_notifier_call_chain_robust+0x1b/0x40
[ 65.874552][ T3813] snapshot_open+0x108/0x150
[ 65.874554][ T3813] misc_open+0xf9/0x120
[ 65.874559][ T3813] chrdev_open+0x1d8/0x230
[ 65.874562][ T3813] ? __pfx_chrdev_open+0x10/0x10
[ 65.874564][ T3813] do_dentry_open+0x387/0x4e0
[ 65.874567][ T3813] vfs_open+0x28/0xe0
[ 65.874569][ T3813] path_openat+0xbc2/0xdf0
[ 65.874574][ T3813] ? __virt_addr_valid+0xad/0x240
[ 65.874577][ T3813] ? __virt_addr_valid+0xad/0x240
[ 65.874580][ T3813] do_filp_open+0xc5/0x180
[ 65.874584][ T3813] do_sys_openat2+0x7e/0xe0
[ 65.874586][ T3813] __x64_sys_openat+0x7c/0xa0
[ 65.874588][ T3813] do_syscall_64+0xa0/0x1b0
[ 65.874593][ T3813] ? clear_bhb_loop+0x35/0x90
[ 65.874597][ T3813] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 65.874601][ T3813] RIP: 0033:0x7fe651175b59
[ 65.874604][ T3813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 65.874606][ T3813] RSP: 002b:00007fe651e8a048 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 65.874608][ T3813] RAX: ffffffffffffffda RBX: 00007fe651306038 RCX: 00007fe651175b59
[ 65.874610][ T3813] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffffffffffffff9c
[ 65.874611][ T3813] RBP: 00007fe651e8a0a0 R08: 0000000000000000 R09: 0000000000000000
[ 65.874612][ T3813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 65.874613][ T3813] R13: 000000000000006e R14: 00007fe651306038 R15: 00007fff168b5de8
[ 65.874615][ T3813]