Warning: Permanently added '10.128.0.86' (ED25519) to the list of known hosts. 2024/12/13 01:42:32 ignoring optional flag "sandboxArg"="0" 2024/12/13 01:42:33 parsed 1 programs [ 301.611833][ T5853] cgroup: Unknown subsys name 'net' [ 301.720117][ T5853] cgroup: Unknown subsys name 'cpuset' [ 301.727950][ T5853] cgroup: Unknown subsys name 'rlimit' [ 302.982260][ T5853] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 305.626236][ T5861] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 305.727360][ T5869] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 305.737025][ T5869] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 305.745900][ T5869] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 305.755048][ T5869] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 305.762923][ T5869] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 305.770702][ T5869] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 306.252590][ T5885] chnl_net:caif_netlink_parms(): no params data found [ 306.301654][ T5885] bridge0: port 1(bridge_slave_0) entered blocking state [ 306.309738][ T5885] bridge0: port 1(bridge_slave_0) entered disabled state [ 306.316945][ T5885] bridge_slave_0: entered allmulticast mode [ 306.325219][ T5885] bridge_slave_0: entered promiscuous mode [ 306.334883][ T5885] bridge0: port 2(bridge_slave_1) entered blocking state [ 306.342328][ T5885] bridge0: port 2(bridge_slave_1) entered disabled state [ 306.349729][ T5885] bridge_slave_1: entered allmulticast mode [ 306.356699][ T5885] bridge_slave_1: entered promiscuous mode [ 306.411210][ T5885] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 306.422732][ T5885] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 306.468066][ T5885] team0: Port device team_slave_0 added [ 306.480595][ T5885] team0: Port device team_slave_1 added [ 306.501744][ T5885] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 306.508764][ T5885] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 306.534789][ T5885] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 306.548231][ T5885] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 306.555211][ T5885] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 306.581142][ T5885] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 306.617285][ T5885] hsr_slave_0: entered promiscuous mode [ 306.625678][ T5885] hsr_slave_1: entered promiscuous mode [ 306.725991][ T5885] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 306.738160][ T5885] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 306.747904][ T5885] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 306.756573][ T5885] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 306.779403][ T5885] bridge0: port 2(bridge_slave_1) entered blocking state [ 306.786805][ T5885] bridge0: port 2(bridge_slave_1) entered forwarding state [ 306.794768][ T5885] bridge0: port 1(bridge_slave_0) entered blocking state [ 306.801892][ T5885] bridge0: port 1(bridge_slave_0) entered forwarding state [ 306.846121][ T5885] 8021q: adding VLAN 0 to HW filter on device bond0 [ 306.863742][ T1071] bridge0: port 1(bridge_slave_0) entered disabled state [ 306.872880][ T1071] bridge0: port 2(bridge_slave_1) entered disabled state [ 306.888626][ T5885] 8021q: adding VLAN 0 to HW filter on device team0 [ 306.901878][ T1071] bridge0: port 1(bridge_slave_0) entered blocking state [ 306.909045][ T1071] bridge0: port 1(bridge_slave_0) entered forwarding state [ 306.926324][ T1071] bridge0: port 2(bridge_slave_1) entered blocking state [ 306.933491][ T1071] bridge0: port 2(bridge_slave_1) entered forwarding state [ 307.053665][ T5885] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 307.083214][ T5885] veth0_vlan: entered promiscuous mode [ 307.095176][ T5885] veth1_vlan: entered promiscuous mode [ 307.116183][ T5885] veth0_macvtap: entered promiscuous mode [ 307.124490][ T5885] veth1_macvtap: entered promiscuous mode [ 307.141830][ T5885] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 307.155398][ T5885] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 307.166397][ T5885] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 307.175659][ T5885] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 307.185986][ T5885] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 307.194961][ T5885] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 307.302549][ T5885] syz-executor (5885) used greatest stack depth: 18512 bytes left [ 307.350384][ T61] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 307.404293][ T1071] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 307.416519][ T1071] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 307.434645][ T61] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 307.464603][ T1071] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 307.472672][ T1071] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 307.504234][ T61] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 307.568909][ T61] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 2024/12/13 01:42:43 executed programs: 0 [ 309.589261][ T5869] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 309.597633][ T5869] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 309.605300][ T5869] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 309.616025][ T5869] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 309.624529][ T5869] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 309.632717][ T5869] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 309.739022][ T5946] chnl_net:caif_netlink_parms(): no params data found [ 309.783448][ T5946] bridge0: port 1(bridge_slave_0) entered blocking state [ 309.790766][ T5946] bridge0: port 1(bridge_slave_0) entered disabled state [ 309.800145][ T5946] bridge_slave_0: entered allmulticast mode [ 309.806700][ T5946] bridge_slave_0: entered promiscuous mode [ 309.814081][ T5946] bridge0: port 2(bridge_slave_1) entered blocking state [ 309.821360][ T5946] bridge0: port 2(bridge_slave_1) entered disabled state [ 309.828642][ T5946] bridge_slave_1: entered allmulticast mode [ 309.835258][ T5946] bridge_slave_1: entered promiscuous mode [ 309.857274][ T5946] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 309.869384][ T5946] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 309.893958][ T5946] team0: Port device team_slave_0 added [ 309.901399][ T5946] team0: Port device team_slave_1 added [ 309.920455][ T5946] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 309.927870][ T5946] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 309.953900][ T5946] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 309.965760][ T5946] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 309.973368][ T5946] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 309.999395][ T5946] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 310.030775][ T5946] hsr_slave_0: entered promiscuous mode [ 310.037270][ T5946] hsr_slave_1: entered promiscuous mode [ 310.043431][ T5946] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 310.051354][ T5946] Cannot create hsr debugfs directory [ 310.224047][ T61] bridge_slave_1: left allmulticast mode [ 310.232172][ T61] bridge_slave_1: left promiscuous mode [ 310.240071][ T61] bridge0: port 2(bridge_slave_1) entered disabled state [ 310.252869][ T61] bridge_slave_0: left allmulticast mode [ 310.258654][ T61] bridge_slave_0: left promiscuous mode [ 310.264879][ T61] bridge0: port 1(bridge_slave_0) entered disabled state [ 310.490106][ T61] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 310.501053][ T61] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 310.511288][ T61] bond0 (unregistering): Released all slaves [ 310.611353][ T61] hsr_slave_0: left promiscuous mode [ 310.621122][ T61] hsr_slave_1: left promiscuous mode [ 310.630042][ T61] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 310.639928][ T61] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 310.649154][ T61] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 310.656592][ T61] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 310.676896][ T61] veth1_macvtap: left promiscuous mode [ 310.685264][ T61] veth0_macvtap: left promiscuous mode [ 310.691089][ T61] veth1_vlan: left promiscuous mode [ 310.696639][ T61] veth0_vlan: left promiscuous mode [ 311.053365][ T61] team0 (unregistering): Port device team_slave_1 removed [ 311.083303][ T61] team0 (unregistering): Port device team_slave_0 removed [ 311.638115][ T5946] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 311.649676][ T5946] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 311.662606][ T5946] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 311.674351][ T5946] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 311.708536][ T5869] Bluetooth: hci0: command tx timeout [ 311.782069][ T5946] 8021q: adding VLAN 0 to HW filter on device bond0 [ 312.133173][ T5946] 8021q: adding VLAN 0 to HW filter on device team0 [ 312.147042][ T1071] bridge0: port 1(bridge_slave_0) entered blocking state [ 312.154265][ T1071] bridge0: port 1(bridge_slave_0) entered forwarding state [ 312.188642][ T1071] bridge0: port 2(bridge_slave_1) entered blocking state [ 312.195794][ T1071] bridge0: port 2(bridge_slave_1) entered forwarding state [ 312.540636][ T5946] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 312.613404][ T5946] veth0_vlan: entered promiscuous mode [ 312.646713][ T5946] veth1_vlan: entered promiscuous mode [ 312.674751][ T5946] veth0_macvtap: entered promiscuous mode [ 312.688225][ T5946] veth1_macvtap: entered promiscuous mode [ 312.706212][ T5946] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 312.722744][ T5946] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 312.733263][ T5946] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 312.743421][ T5946] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 312.752516][ T5946] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 312.761655][ T5946] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 312.836922][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 312.852590][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 312.886201][ T1071] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 312.904087][ T1071] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 312.952120][ T6016] netlink: 'syz.0.16': attribute type 10 has an invalid length. [ 312.983014][ T6016] team0: Port device wlan1 added [ 313.005190][ T6017] netlink: 'syz.0.17': attribute type 10 has an invalid length. [ 313.039369][ T6018] netlink: 'syz.0.18': attribute type 10 has an invalid length. [ 313.075924][ T6019] netlink: 'syz.0.19': attribute type 10 has an invalid length. [ 313.104486][ T6020] netlink: 'syz.0.20': attribute type 10 has an invalid length. [ 313.129905][ T6021] netlink: 'syz.0.21': attribute type 10 has an invalid length. [ 313.153853][ T6022] netlink: 'syz.0.22': attribute type 10 has an invalid length. [ 313.178427][ T6023] netlink: 'syz.0.23': attribute type 10 has an invalid length. [ 313.203078][ T6024] netlink: 'syz.0.24': attribute type 10 has an invalid length. [ 313.228387][ T6025] netlink: 'syz.0.25': attribute type 10 has an invalid length. [ 313.787279][ T5869] Bluetooth: hci0: command tx timeout 2024/12/13 01:42:48 executed programs: 78 [ 315.877992][ T5869] Bluetooth: hci0: command tx timeout [ 317.309555][ T1293] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.316174][ T1293] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.947693][ T5869] Bluetooth: hci0: command tx timeout [ 317.963594][ T6283] validate_nla: 257 callbacks suppressed [ 317.963608][ T6283] netlink: 'syz.0.283': attribute type 10 has an invalid length. [ 317.988204][ T6284] netlink: 'syz.0.284': attribute type 10 has an invalid length. [ 318.006100][ T6285] netlink: 'syz.0.285': attribute type 10 has an invalid length. [ 318.034238][ T6286] netlink: 'syz.0.286': attribute type 10 has an invalid length. [ 318.052852][ T6287] netlink: 'syz.0.287': attribute type 10 has an invalid length. [ 318.070474][ T6288] netlink: 'syz.0.288': attribute type 10 has an invalid length. [ 318.092682][ T6289] netlink: 'syz.0.289': attribute type 10 has an invalid length. [ 318.112414][ T6290] netlink: 'syz.0.290': attribute type 10 has an invalid length. [ 318.129769][ T6291] netlink: 'syz.0.291': attribute type 10 has an invalid length. [ 318.163720][ T6292] netlink: 'syz.0.292': attribute type 10 has an invalid length. 2024/12/13 01:42:53 executed programs: 357 [ 322.995007][ T6568] validate_nla: 275 callbacks suppressed [ 322.995023][ T6568] netlink: 'syz.0.568': attribute type 10 has an invalid length. [ 323.019499][ T6569] netlink: 'syz.0.569': attribute type 10 has an invalid length. [ 323.038114][ T6570] netlink: 'syz.0.570': attribute type 10 has an invalid length. [ 323.064056][ T6571] netlink: 'syz.0.571': attribute type 10 has an invalid length. [ 323.084111][ T6572] netlink: 'syz.0.572': attribute type 10 has an invalid length. [ 323.101456][ T6573] netlink: 'syz.0.573': attribute type 10 has an invalid length. [ 323.122608][ T6574] netlink: 'syz.0.574': attribute type 10 has an invalid length. [ 323.140130][ T6575] netlink: 'syz.0.575': attribute type 10 has an invalid length. [ 323.158364][ T6576] netlink: 'syz.0.576': attribute type 10 has an invalid length. [ 323.183546][ T6577] netlink: 'syz.0.577': attribute type 10 has an invalid length. [ 323.890703][ T5145] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 323.900782][ T5145] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 323.909894][ T5145] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 323.920662][ T5145] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 323.929305][ T5145] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 323.936637][ T5145] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 324.029242][ T6618] chnl_net:caif_netlink_parms(): no params data found [ 324.061758][ T52] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 324.100859][ T6618] bridge0: port 1(bridge_slave_0) entered blocking state [ 324.108373][ T6618] bridge0: port 1(bridge_slave_0) entered disabled state [ 324.115686][ T6618] bridge_slave_0: entered allmulticast mode [ 324.122656][ T6618] bridge_slave_0: entered promiscuous mode [ 324.138020][ T52] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 324.151617][ T6618] bridge0: port 2(bridge_slave_1) entered blocking state [ 324.158822][ T6618] bridge0: port 2(bridge_slave_1) entered disabled state [ 324.165937][ T6618] bridge_slave_1: entered allmulticast mode [ 324.173328][ T6618] bridge_slave_1: entered promiscuous mode [ 324.200982][ T52] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 324.216578][ T6618] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 324.228109][ T6618] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 324.253121][ T6618] team0: Port device team_slave_0 added [ 324.270716][ T52] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 324.284884][ T6618] team0: Port device team_slave_1 added [ 324.304280][ T6618] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 324.311416][ T6618] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 324.338781][ T6618] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 324.351525][ T6618] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 324.358801][ T6618] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 324.384896][ T6618] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 324.419283][ T6618] hsr_slave_0: entered promiscuous mode [ 324.425990][ T6618] hsr_slave_1: entered promiscuous mode [ 324.501509][ T52] bridge_slave_1: left allmulticast mode [ 324.507642][ T52] bridge_slave_1: left promiscuous mode [ 324.513308][ T52] bridge0: port 2(bridge_slave_1) entered disabled state [ 324.523113][ T52] bridge_slave_0: left allmulticast mode [ 324.529009][ T52] bridge_slave_0: left promiscuous mode [ 324.534652][ T52] bridge0: port 1(bridge_slave_0) entered disabled state [ 324.750677][ T52] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 324.761243][ T52] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 324.771205][ T52] bond0 (unregistering): Released all slaves [ 324.873145][ T52] [ 324.875504][ T52] ====================================================== [ 324.882513][ T52] WARNING: possible circular locking dependency detected [ 324.889520][ T52] 6.13.0-rc2-syzkaller-g04789af756a4 #0 Not tainted [ 324.896101][ T52] ------------------------------------------------------ [ 324.903136][ T52] kworker/u8:3/52 is trying to acquire lock: [ 324.909129][ T52] ffff88807c11ce00 (team->team_lock_key#2){+.+.}-{4:4}, at: team_del_slave+0x32/0x1d0 [ 324.918778][ T52] [ 324.918778][ T52] but task is already holding lock: [ 324.926164][ T52] ffff888011960768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0x12b/0x700 [ 324.936552][ T52] [ 324.936552][ T52] which lock already depends on the new lock. [ 324.936552][ T52] [ 324.946971][ T52] [ 324.946971][ T52] the existing dependency chain (in reverse order) is: [ 324.956002][ T52] [ 324.956002][ T52] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 324.963771][ T52] lock_acquire+0x1ed/0x550 [ 324.968816][ T52] __mutex_lock+0x1ac/0xee0 [ 324.973864][ T52] ieee80211_open+0xe7/0x200 [ 324.978993][ T52] __dev_open+0x2d3/0x450 [ 324.983866][ T52] dev_open+0xae/0x1b0 [ 324.988487][ T52] team_add_slave+0x9c8/0x2760 [ 324.993778][ T52] do_setlink+0xe40/0x4210 [ 324.998714][ T52] rtnl_newlink+0x1a81/0x20e0 [ 325.003906][ T52] rtnetlink_rcv_msg+0x791/0xcf0 [ 325.009353][ T52] netlink_rcv_skb+0x1e3/0x430 [ 325.014626][ T52] netlink_unicast+0x7f6/0x990 [ 325.019902][ T52] netlink_sendmsg+0x8e4/0xcb0 [ 325.025173][ T52] __sock_sendmsg+0x221/0x270 [ 325.030370][ T52] ____sys_sendmsg+0x52a/0x7e0 [ 325.035646][ T52] __sys_sendmsg+0x269/0x350 [ 325.040751][ T52] do_syscall_64+0xf3/0x230 [ 325.045771][ T52] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 325.052180][ T52] [ 325.052180][ T52] -> #0 (team->team_lock_key#2){+.+.}-{4:4}: [ 325.060351][ T52] validate_chain+0x18ef/0x5920 [ 325.065715][ T52] __lock_acquire+0x1397/0x2100 [ 325.071083][ T52] lock_acquire+0x1ed/0x550 [ 325.076097][ T52] __mutex_lock+0x1ac/0xee0 [ 325.081111][ T52] team_del_slave+0x32/0x1d0 [ 325.086221][ T52] team_device_event+0x200/0x5b0 [ 325.091668][ T52] notifier_call_chain+0x1a5/0x3f0 [ 325.097292][ T52] unregister_netdevice_many_notify+0xedd/0x1da0 [ 325.104131][ T52] unregister_netdevice_queue+0x303/0x370 [ 325.110358][ T52] _cfg80211_unregister_wdev+0x163/0x590 [ 325.116506][ T52] ieee80211_remove_interfaces+0x4db/0x700 [ 325.122824][ T52] ieee80211_unregister_hw+0x5d/0x2c0 [ 325.128707][ T52] mac80211_hwsim_del_radio+0x2c4/0x4c0 [ 325.134764][ T52] hwsim_exit_net+0x5c1/0x670 [ 325.139948][ T52] cleanup_net+0x802/0xcc0 [ 325.144878][ T52] process_scheduled_works+0xa66/0x1840 [ 325.150951][ T52] worker_thread+0x870/0xd30 [ 325.156079][ T52] kthread+0x2f0/0x390 [ 325.160673][ T52] ret_from_fork+0x4b/0x80 [ 325.165616][ T52] ret_from_fork_asm+0x1a/0x30 [ 325.170893][ T52] [ 325.170893][ T52] other info that might help us debug this: [ 325.170893][ T52] [ 325.181108][ T52] Possible unsafe locking scenario: [ 325.181108][ T52] [ 325.188543][ T52] CPU0 CPU1 [ 325.193903][ T52] ---- ---- [ 325.199251][ T52] lock(&rdev->wiphy.mtx); [ 325.203750][ T52] lock(team->team_lock_key#2); [ 325.211203][ T52] lock(&rdev->wiphy.mtx); [ 325.218218][ T52] lock(team->team_lock_key#2); [ 325.223154][ T52] [ 325.223154][ T52] *** DEADLOCK *** [ 325.223154][ T52] [ 325.231285][ T52] 5 locks held by kworker/u8:3/52: [ 325.236389][ T52] #0: ffff88801baed948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840 [ 325.247260][ T52] #1: ffffc90000bc7d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840 [ 325.257778][ T52] #2: ffffffff8fca4fd0 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0x16a/0xcc0 [ 325.267172][ T52] #3: ffffffff8fcb1448 (rtnl_mutex){+.+.}-{4:4}, at: ieee80211_unregister_hw+0x55/0x2c0 [ 325.276993][ T52] #4: ffff888011960768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0x12b/0x700 [ 325.287775][ T52] [ 325.287775][ T52] stack backtrace: [ 325.293667][ T52] CPU: 1 UID: 0 PID: 52 Comm: kworker/u8:3 Not tainted 6.13.0-rc2-syzkaller-g04789af756a4 #0 [ 325.303807][ T52] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 325.313852][ T52] Workqueue: netns cleanup_net [ 325.318622][ T52] Call Trace: [ 325.321901][ T52] [ 325.324824][ T52] dump_stack_lvl+0x241/0x360 [ 325.329496][ T52] ? __pfx_dump_stack_lvl+0x10/0x10 [ 325.334701][ T52] ? __pfx__printk+0x10/0x10 [ 325.339287][ T52] print_circular_bug+0x13a/0x1b0 [ 325.344309][ T52] check_noncircular+0x36a/0x4a0 [ 325.349242][ T52] ? __pfx_check_noncircular+0x10/0x10 [ 325.354698][ T52] ? lockdep_lock+0x123/0x2b0 [ 325.359365][ T52] ? __pfx_validate_chain+0x10/0x10 [ 325.364558][ T52] ? __pfx_validate_chain+0x10/0x10 [ 325.369749][ T52] validate_chain+0x18ef/0x5920 [ 325.374597][ T52] ? __pfx_validate_chain+0x10/0x10 [ 325.379786][ T52] ? __lock_acquire+0x1397/0x2100 [ 325.384804][ T52] ? __pfx_validate_chain+0x10/0x10 [ 325.390006][ T52] ? mark_lock+0x9a/0x360 [ 325.394332][ T52] ? mark_lock+0x9a/0x360 [ 325.398655][ T52] __lock_acquire+0x1397/0x2100 [ 325.403500][ T52] lock_acquire+0x1ed/0x550 [ 325.407993][ T52] ? team_del_slave+0x32/0x1d0 [ 325.412751][ T52] ? __pfx_lock_acquire+0x10/0x10 [ 325.417766][ T52] ? __pfx___might_resched+0x10/0x10 [ 325.423050][ T52] __mutex_lock+0x1ac/0xee0 [ 325.427547][ T52] ? team_del_slave+0x32/0x1d0 [ 325.432302][ T52] ? trace_contention_end+0x3c/0x120 [ 325.437580][ T52] ? __mutex_lock+0x37f/0xee0 [ 325.442246][ T52] ? __pfx___try_to_del_timer_sync+0x10/0x10 [ 325.448216][ T52] ? team_del_slave+0x32/0x1d0 [ 325.452972][ T52] ? __pfx___mutex_lock+0x10/0x10 [ 325.457989][ T52] ? __mutex_unlock_slowpath+0x21e/0x790 [ 325.463614][ T52] ? __asan_memset+0x23/0x50 [ 325.468193][ T52] team_del_slave+0x32/0x1d0 [ 325.472780][ T52] team_device_event+0x200/0x5b0 [ 325.477707][ T52] ? notifier_call_chain+0x15a/0x3f0 [ 325.482986][ T52] notifier_call_chain+0x1a5/0x3f0 [ 325.488090][ T52] unregister_netdevice_many_notify+0xedd/0x1da0 [ 325.494423][ T52] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 325.501180][ T52] ? kernfs_remove_by_name_ns+0x11b/0x160 [ 325.506890][ T52] ? __pfx_lock_release+0x10/0x10 [ 325.511913][ T52] unregister_netdevice_queue+0x303/0x370 [ 325.517624][ T52] ? __pfx_up_write+0x10/0x10 [ 325.522292][ T52] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 325.528523][ T52] ? kernfs_remove_by_name_ns+0x11b/0x160 [ 325.534234][ T52] _cfg80211_unregister_wdev+0x163/0x590 [ 325.539863][ T52] ieee80211_remove_interfaces+0x4db/0x700 [ 325.545660][ T52] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 325.551976][ T52] ? rcu_is_watching+0x15/0xb0 [ 325.556736][ T52] ieee80211_unregister_hw+0x5d/0x2c0 [ 325.562095][ T52] mac80211_hwsim_del_radio+0x2c4/0x4c0 [ 325.567648][ T52] ? __pfx_mac80211_hwsim_del_radio+0x10/0x10 [ 325.573708][ T52] hwsim_exit_net+0x5c1/0x670 [ 325.578379][ T52] ? __pfx_hwsim_exit_net+0x10/0x10 [ 325.583566][ T52] ? __ip_vs_dev_cleanup_batch+0x239/0x260 [ 325.589451][ T52] cleanup_net+0x802/0xcc0 [ 325.593866][ T52] ? __pfx_cleanup_net+0x10/0x10 [ 325.598807][ T52] ? process_scheduled_works+0x976/0x1840 [ 325.604520][ T52] process_scheduled_works+0xa66/0x1840 [ 325.610060][ T52] ? __pfx_process_scheduled_works+0x10/0x10 [ 325.616035][ T52] ? assign_work+0x364/0x3d0 [ 325.620612][ T52] worker_thread+0x870/0xd30 [ 325.625196][ T52] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 325.631088][ T52] ? __kthread_parkme+0x169/0x1d0 [ 325.636108][ T52] ? __pfx_worker_thread+0x10/0x10 [ 325.641211][ T52] kthread+0x2f0/0x390 [ 325.645271][ T52] ? __pfx_worker_thread+0x10/0x10 [ 325.650371][ T52] ? __pfx_kthread+0x10/0x10 [ 325.654951][ T52] ret_from_fork+0x4b/0x80 [ 325.659360][ T52] ? __pfx_kthread+0x10/0x10 [ 325.663939][ T52] ret_from_fork_asm+0x1a/0x30 [ 325.668695][ T52] [ 325.677016][ T52] team0: Port device wlan1 removed [ 325.789134][ T52] hsr_slave_0: left promiscuous mode [ 325.794846][ T52] hsr_slave_1: left promiscuous mode [ 325.802441][ T52] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 325.809877][ T52] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 325.817629][ T52] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 325.825025][ T52] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 325.833671][ T52] veth1_macvtap: left promiscuous mode [ 325.839998][ T52] veth0_macvtap: left promiscuous mode [ 325.845502][ T52] veth1_vlan: left promiscuous mode [ 325.850829][ T52] veth0_vlan: left promiscuous mode [ 325.940383][ T52] team0 (unregistering): Port device team_slave_1 removed [ 325.961885][ T52] team0 (unregistering): Port device team_slave_0 removed [ 326.027214][ T5145] Bluetooth: hci0: command tx timeout [ 326.145411][ T6618] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 326.164289][ T6618] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 326.181734][ T6618] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 326.197975][ T6618] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 326.265326][ T6618] 8021q: adding VLAN 0 to HW filter on device bond0 [ 326.280614][ T6618] 8021q: adding VLAN 0 to HW filter on device team0 [ 326.292227][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 326.299349][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 326.328407][ T1076] bridge0: port 2(bridge_slave_1) entered blocking state [ 326.335508][ T1076] bridge0: port 2(bridge_slave_1) entered forwarding state [ 326.458986][ T6618] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 326.486759][ T6618] veth0_vlan: entered promiscuous mode [ 326.496600][ T6618] veth1_vlan: entered promiscuous mode [ 326.519295][ T6618] veth0_macvtap: entered promiscuous mode [ 326.529250][ T6618] veth1_macvtap: entered promiscuous mode [ 326.543902][ T6618] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 326.556468][ T6618] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 326.568775][ T6618] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 326.578964][ T6618] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 326.588453][ T6618] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 326.597811][ T6618] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 326.620688][ T6618] ieee80211 phy7: Selected rate control algorithm 'minstrel_ht' [ 326.638224][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 326.641488][ T6618] ieee80211 phy8: Selected rate control algorithm 'minstrel_ht' [ 326.646056][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 2024/12/13 01:43:00 executed programs: 602 [ 326.668018][ T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 326.675871][ T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 326.701777][ T6674] team0: Port device wlan1 added [ 328.032312][ T6752] validate_nla: 116 callbacks suppressed [ 328.032331][ T6752] netlink: 'syz.0.694': attribute type 10 has an invalid length. [ 328.052520][ T6753] netlink: 'syz.0.695': attribute type 10 has an invalid length. [ 328.067582][ T6754] netlink: 'syz.0.696': attribute type 10 has an invalid length. [ 328.101304][ T6755] netlink: 'syz.0.697': attribute type 10 has an invalid length. [ 328.109741][ T5145] Bluetooth: hci0: command tx timeout [ 328.122420][ T6756] netlink: 'syz.0.698': attribute type 10 has an invalid length. [ 328.136214][ T6757] netlink: 'syz.0.699': attribute type 10 has an invalid length. [ 328.160656][ T6758] netlink: 'syz.0.700': attribute type 10 has an invalid length. [ 328.174657][ T6759] netlink: 'syz.0.701': attribute type 10 has an invalid length. [ 328.189217][ T6760] netlink: 'syz.0.702': attribute type 10 has an invalid length. [ 328.220907][ T6761] netlink: 'syz.0.703': attribute type 10 has an invalid length. [ 330.188374][ T5145] Bluetooth: hci0: command tx timeout 2024/12/13 01:43:05 executed programs: 894 [ 332.269389][ T5145] Bluetooth: hci0: command tx timeout [ 333.070807][ T7049] validate_nla: 287 callbacks suppressed [ 333.070825][ T7049] netlink: 'syz.0.991': attribute type 10 has an invalid length. [ 333.090688][ T7050] netlink: 'syz.0.992': attribute type 10 has an invalid length. [ 333.104504][ T7051] netlink: 'syz.0.993': attribute type 10 has an invalid length. [ 333.130676][ T7052] netlink: 'syz.0.994': attribute type 10 has an invalid length. [ 333.144854][ T7053] netlink: 'syz.0.995': attribute type 10 has an invalid length. [ 333.158911][ T7054] netlink: 'syz.0.996': attribute type 10 has an invalid length. [ 333.191021][ T7055] netlink: 'syz.0.997': attribute type 10 has an invalid length. [ 333.205009][ T7056] netlink: 'syz.0.998': attribute type 10 has an invalid length. [ 333.219357][ T7057] netlink: 'syz.0.999': attribute type 10 has an invalid length. [ 333.251262][ T7058] netlink: 'syz.0.1000': attribute type 10 has an invalid length.