audit: type=1804 audit(1620571135.688:571): pid=4494 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.3" name="/root/syzkaller-testdir454263228/syzkaller.AZ4Iba/1485/bus" dev="sda1" ino=14072 res=1
BUG: MAX_LOCKDEP_CHAINS too low!
turning off the locking correctness validator.
CPU: 0 PID: 4494 Comm: syz-executor.3 Not tainted 4.14.232-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:17 [inline]
 dump_stack+0x1b2/0x281 lib/dump_stack.c:58
 add_chain_cache kernel/locking/lockdep.c:2303 [inline]
 lookup_chain_cache_add kernel/locking/lockdep.c:2415 [inline]
 validate_chain kernel/locking/lockdep.c:2435 [inline]
 __lock_acquire.cold+0x19a/0x97c kernel/locking/lockdep.c:3491
 lock_acquire+0x170/0x3f0 kernel/locking/lockdep.c:3998
 __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]
 _raw_spin_lock_irqsave+0x8c/0xc0 kernel/locking/spinlock.c:160
 try_to_wake_up+0x6a/0x1100 kernel/sched/core.c:1997
 swake_up_locked kernel/sched/swait.c:28 [inline]
 swake_up_locked kernel/sched/swait.c:20 [inline]
 swake_up+0x71/0x1b0 kernel/sched/swait.c:38
 rcu_read_unlock_special+0x8db/0xdd0 kernel/rcu/tree_plugin.h:526
 __rcu_read_unlock+0x158/0x160 kernel/rcu/update.c:260
 rcu_read_unlock include/linux/rcupdate.h:684 [inline]
 ip_route_output_key_hash+0x1b9/0x2a0 net/ipv4/route.c:2345
 __ip_route_output_key include/net/route.h:126 [inline]
 ip_route_output_flow+0x23/0x130 net/ipv4/route.c:2601
 udp_sendmsg+0x13b5/0x1c80 net/ipv4/udp.c:1025
 inet_sendmsg+0x11a/0x4e0 net/ipv4/af_inet.c:762
 sock_sendmsg_nosec net/socket.c:646 [inline]
 sock_sendmsg+0xb5/0x100 net/socket.c:656
 rxrpc_send_data_packet+0xa6e/0x1260 net/rxrpc/output.c:337
 rxrpc_queue_packet net/rxrpc/sendmsg.c:184 [inline]
 rxrpc_send_data+0xbc5/0x2710 net/rxrpc/sendmsg.c:367
 rxrpc_do_sendmsg+0x9cc/0xfb0 net/rxrpc/sendmsg.c:639
 rxrpc_sendmsg+0x3cf/0x5f0 net/rxrpc/af_rxrpc.c:543
 sock_sendmsg_nosec net/socket.c:646 [inline]
 sock_sendmsg+0xb5/0x100 net/socket.c:656
 ___sys_sendmsg+0x326/0x800 net/socket.c:2062
 __sys_sendmmsg+0x129/0x330 net/socket.c:2152
 SYSC_sendmmsg net/socket.c:2183 [inline]
 SyS_sendmmsg+0x2f/0x50 net/socket.c:2178
 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292
 entry_SYSCALL_64_after_hwframe+0x46/0xbb
RIP: 0033:0x4665f9
RSP: 002b:00007f70ee762188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
RAX: ffffffffffffffda RBX: 000000000056c008 RCX: 00000000004665f9
RDX: 0000000000000001 RSI: 0000000020005c00 RDI: 0000000000000007
RBP: 00000000004bfce1 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 000000000056c008
R13: 00007ffed95c4b7f R14: 00007f70ee762300 R15: 0000000000022000
netlink: 36 bytes leftover after parsing attributes in process `syz-executor.2'.
BTRFS info (device loop0): disabling disk space caching
BTRFS info (device loop0): force zlib compression
BTRFS info (device loop0): has skinny extents
audit: type=1804 audit(1620571135.818:572): pid=4512 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.3" name="/root/syzkaller-testdir454263228/syzkaller.AZ4Iba/1486/bus" dev="sda1" ino=14010 res=1
IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
audit: type=1804 audit(1620571135.938:573): pid=4528 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.3" name="/root/syzkaller-testdir454263228/syzkaller.AZ4Iba/1487/bus" dev="sda1" ino=14010 res=1
audit: type=1326 audit(1620571136.238:574): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=4551 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=231 compat=0 ip=0x4665f9 code=0x0
BTRFS info (device loop0): disabling disk space caching
BTRFS info (device loop0): force zlib compression
BTRFS info (device loop0): has skinny extents
audit: type=1326 audit(1620571137.038:575): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=4551 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=231 compat=0 ip=0x4665f9 code=0x0
BTRFS info (device loop0): disabling disk space caching
BTRFS info (device loop0): force zlib compression
BTRFS info (device loop0): has skinny extents
BTRFS info (device loop0): disabling disk space caching
BTRFS info (device loop0): force zlib compression
BTRFS info (device loop0): has skinny extents
netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
BTRFS info (device loop0): disabling disk space caching
BTRFS info (device loop0): force zlib compression
BTRFS info (device loop0): has skinny extents
batman_adv: batadv0: Interface deactivated: batadv_slave_0
batman_adv: batadv0: Removing interface: batadv_slave_0
batman_adv: batadv0: Interface deactivated: batadv_slave_1
batman_adv: batadv0: Removing interface: batadv_slave_1
device bridge_slave_1 left promiscuous mode
bridge0: port 2(bridge_slave_1) entered disabled state
device bridge_slave_0 left promiscuous mode
bridge0: port 1(bridge_slave_0) entered disabled state
device veth1_macvtap left promiscuous mode
device veth0_macvtap left promiscuous mode
device veth1_vlan left promiscuous mode
device veth0_vlan left promiscuous mode
device hsr_slave_1 left promiscuous mode
device hsr_slave_0 left promiscuous mode
team0 (unregistering): Port device team_slave_1 removed
team0 (unregistering): Port device team_slave_0 removed
bond0 (unregistering): Releasing backup interface bond_slave_1
bond0 (unregistering): Releasing backup interface bond_slave_0
bond0 (unregistering): Released all slaves
IPVS: ftp: loaded support on port[0] = 21
chnl_net:caif_netlink_parms(): no params data found
bridge0: port 1(bridge_slave_0) entered blocking state
bridge0: port 1(bridge_slave_0) entered disabled state
device bridge_slave_0 entered promiscuous mode
bridge0: port 2(bridge_slave_1) entered blocking state
bridge0: port 2(bridge_slave_1) entered disabled state
device bridge_slave_1 entered promiscuous mode
bond0: Enslaving bond_slave_0 as an active interface with an up link
bond0: Enslaving bond_slave_1 as an active interface with an up link
IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
team0: Port device team_slave_0 added
IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
team0: Port device team_slave_1 added
batman_adv: batadv0: Adding interface: batadv_slave_0
batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
batman_adv: batadv0: Adding interface: batadv_slave_1
batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
device hsr_slave_0 entered promiscuous mode
device hsr_slave_1 entered promiscuous mode
IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
bridge0: port 2(bridge_slave_1) entered blocking state
bridge0: port 2(bridge_slave_1) entered forwarding state
bridge0: port 1(bridge_slave_0) entered blocking state
bridge0: port 1(bridge_slave_0) entered forwarding state
IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready
8021q: adding VLAN 0 to HW filter on device bond0
IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
bridge0: port 1(bridge_slave_0) entered disabled state
bridge0: port 2(bridge_slave_1) entered disabled state
IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
8021q: adding VLAN 0 to HW filter on device team0
IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
bridge0: port 1(bridge_slave_0) entered blocking state
bridge0: port 1(bridge_slave_0) entered forwarding state
IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
bridge0: port 2(bridge_slave_1) entered blocking state
bridge0: port 2(bridge_slave_1) entered forwarding state
IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
8021q: adding VLAN 0 to HW filter on device batadv0
IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready
IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready
IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready
IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready
IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
device veth0_vlan entered promiscuous mode
device veth1_vlan entered promiscuous mode
IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready
IPv6: ADDRCONF(NETDEV_UP): macvlan1: link is not ready
IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready
IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
device veth0_macvtap entered promiscuous mode
IPv6: ADDRCONF(NETDEV_UP): macvtap0: link is not ready
device veth1_macvtap entered promiscuous mode
IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready
IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready
IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
IPv6: ADDRCONF(NETDEV_UP): batadv_slave_0: link is not ready
batman_adv: batadv0: Interface activated: batadv_slave_0
IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
IPv6: ADDRCONF(NETDEV_UP): batadv_slave_1: link is not ready
batman_adv: batadv0: Interface activated: batadv_slave_1
IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
IPVS: ftp: loaded support on port[0] = 21
TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
netlink: 48 bytes leftover after parsing attributes in process `syz-executor.2'.
print_req_error: 184 callbacks suppressed
print_req_error: I/O error, dev loop4, sector 0
print_req_error: I/O error, dev loop4, sector 0
buffer_io_error: 182 callbacks suppressed
Buffer I/O error on dev loop4, logical block 0, async page read
print_req_error: I/O error, dev loop4, sector 0
Buffer I/O error on dev loop4, logical block 0, async page read
print_req_error: I/O error, dev loop4, sector 0
Buffer I/O error on dev loop4, logical block 0, async page read
print_req_error: I/O error, dev loop4, sector 0
Buffer I/O error on dev loop4, logical block 0, async page read
print_req_error: I/O error, dev loop4, sector 0
Buffer I/O error on dev loop4, logical block 0, async page read
print_req_error: I/O error, dev loop4, sector 0
Buffer I/O error on dev loop4, logical block 0, async page read
print_req_error: I/O error, dev loop4, sector 24
Buffer I/O error on dev loop4, logical block 3, async page read
Unknown ioctl -2126991741
EXT4-fs error (device loop4): ext4_orphan_get:1245: comm syz-executor.4: couldn't read orphan inode 16 (err -116)
EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
BTRFS info (device loop0): disabling disk space caching
BTRFS info (device loop0): force zlib compression
BTRFS info (device loop0): has skinny extents
bridge0: port 3(vlan2) entered blocking state
bridge0: port 3(vlan2) entered disabled state
Unknown ioctl -2126991741
device geneve3 entered promiscuous mode
bridge0: port 3(vlan2) entered blocking state
bridge0: port 3(vlan2) entered disabled state
bridge0: port 3(vlan2) entered blocking state
bridge0: port 3(vlan2) entered disabled state
BTRFS info (device loop0): disabling disk space caching
BTRFS info (device loop0): force zlib compression
BTRFS info (device loop0): has skinny extents
base_sock_release(ffff888035f11a40) sk=ffff8880aae43680
base_sock_release(ffff888035d40500) sk=ffff88809927e880
bridge0: port 3(vlan2) entered blocking state
bridge0: port 3(vlan2) entered disabled state
BTRFS info (device loop0): disabling disk space caching
BTRFS info (device loop0): force zlib compression
BTRFS info (device loop0): has skinny extents
bridge0: port 3(vlan2) entered blocking state
bridge0: port 3(vlan2) entered disabled state
BTRFS info (device loop0): disabling disk space caching
BTRFS info (device loop0): force zlib compression
BTRFS info (device loop0): has skinny extents
IPVS: ftp: loaded support on port[0] = 21
IPVS: ftp: loaded support on port[0] = 21
BTRFS info (device loop0): disabling disk space caching
BTRFS info (device loop0): force zlib compression
BTRFS info (device loop0): has skinny extents
overlayfs: unrecognized mount option "low˙Ędir=.:file0" or missing value
overlayfs: unrecognized mount option "uppd7L)" or missing value
audit: type=1800 audit(1620571148.829:576): pid=5423 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed" comm="syz-executor.3" name="SYSV00000000" dev="hugetlbfs" ino=458763 res=0
audit: type=1800 audit(1620571148.859:577): pid=5423 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed" comm="syz-executor.3" name="SYSV00000000" dev="hugetlbfs" ino=491532 res=0
bridge0: port 3(vlan2) entered blocking state
bridge0: port 3(vlan2) entered disabled state
overlayfs: unrecognized mount option "1844674407370955161500000000000000060928
" or missing value
device ip6gretap0 left promiscuous mode
bridge0: port 3(ip6gretap0) entered disabled state
Process accounting resumed
overlayfs: unrecognized mount option "1844674407370955161500000000000000060928
" or missing value
bond1: Releasing backup interface ip6gretap2
Process accounting resumed
batman_adv: batadv0: Removing interface: batadv_slave_1
device bridge_slave_1 left promiscuous mode
bridge0: port 2(bridge_slave_1) entered disabled state
device bridge_slave_0 left promiscuous mode
bridge0: port 1(bridge_slave_0) entered disabled state
bond1 (unregistering): Released all slaves
device hsr_slave_1 left promiscuous mode
device hsr_slave_0 left promiscuous mode
bond0 (unregistering): Releasing backup interface batadv_slave_0
team0 (unregistering): Port device team_slave_1 removed
team0 (unregistering): Port device team_slave_0 removed
bond0 (unregistering): Releasing backup interface bond_slave_1
bond0 (unregistering): Releasing backup interface bond_slave_0
bond0 (unregistering): Releasing backup interface team0
bond0 (unregistering): Released all slaves
audit: type=1804 audit(1620571150.699:578): pid=5609 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.5" name="cgroup.controllers" dev="sda1" ino=14555 res=1
BTRFS info (device loop0): disabling disk space caching
BTRFS info (device loop0): force zlib compression
BTRFS info (device loop0): has skinny extents
BTRFS warning (device loop0): loop0 checksum verify failed on 5308416 wanted 77626DAF found D76EFA26 level 0
BTRFS error (device loop0): open_ctree failed
BTRFS info (device loop0): disabling disk space caching
BTRFS info (device loop0): force zlib compression
BTRFS info (device loop0): has skinny extents
BTRFS warning (device loop0): loop0 checksum verify failed on 5308416 wanted 77626DAF found D76EFA26 level 0
BTRFS error (device loop0): open_ctree failed
BTRFS info (device loop0): disabling disk space caching
BTRFS info (device loop0): force zlib compression
BTRFS info (device loop0): has skinny extents
BTRFS warning (device loop0): loop0 checksum verify failed on 5308416 wanted 77626DAF found D76EFA26 level 0
BTRFS error (device loop0): open_ctree failed
BTRFS info (device loop0): disabling disk space caching
BTRFS info (device loop0): force zlib compression
BTRFS info (device loop0): has skinny extents
BTRFS warning (device loop0): loop0 checksum verify failed on 5308416 wanted 77626DAF found D76EFA26 level 0
BTRFS error (device loop0): open_ctree failed
bridge0: port 3(vlan2) entered blocking state
bridge0: port 3(vlan2) entered disabled state
BTRFS info (device loop0): disabling disk space caching
BTRFS info (device loop0): force zlib compression
BTRFS info (device loop0): has skinny extents
BTRFS warning (device loop0): loop0 checksum verify failed on 5308416 wanted 77626DAF found D76EFA26 level 0
BTRFS error (device loop0): open_ctree failed
BTRFS info (device loop0): disabling disk space caching
BTRFS info (device loop0): force zlib compression
BTRFS info (device loop0): has skinny extents
BTRFS warning (device loop0): loop0 checksum verify failed on 5308416 wanted 77626DAF found D76EFA26 level 0
BTRFS error (device loop0): open_ctree failed