forked to background, child pid 3187 no interfaces have a carrier [ 27.338920][ T3188] 8021q: adding VLAN 0 to HW filter on device bond0 [ 27.353711][ T3188] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller Warning: Permanently added '10.128.10.39' (ECDSA) to the list of known hosts. syzkaller login: [ 49.987091][ T3610] chnl_net:caif_netlink_parms(): no params data found [ 50.028784][ T3610] bridge0: port 1(bridge_slave_0) entered blocking state [ 50.036622][ T3610] bridge0: port 1(bridge_slave_0) entered disabled state [ 50.044600][ T3610] device bridge_slave_0 entered promiscuous mode [ 50.053634][ T3610] bridge0: port 2(bridge_slave_1) entered blocking state [ 50.060727][ T3610] bridge0: port 2(bridge_slave_1) entered disabled state [ 50.068739][ T3610] device bridge_slave_1 entered promiscuous mode [ 50.088771][ T3610] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 50.099560][ T3610] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 50.122359][ T3610] team0: Port device team_slave_0 added [ 50.129509][ T3610] team0: Port device team_slave_1 added [ 50.146601][ T3610] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 50.153673][ T3610] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 50.179615][ T3610] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 50.192877][ T3610] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 50.199833][ T3610] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 50.225779][ T3610] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 50.251250][ T3610] device hsr_slave_0 entered promiscuous mode [ 50.258311][ T3610] device hsr_slave_1 entered promiscuous mode [ 50.338178][ T3610] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 50.347960][ T3610] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 50.356740][ T3610] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 50.365975][ T3610] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 50.385829][ T3610] bridge0: port 2(bridge_slave_1) entered blocking state [ 50.393053][ T3610] bridge0: port 2(bridge_slave_1) entered forwarding state [ 50.400709][ T3610] bridge0: port 1(bridge_slave_0) entered blocking state [ 50.407992][ T3610] bridge0: port 1(bridge_slave_0) entered forwarding state [ 50.449994][ T3610] 8021q: adding VLAN 0 to HW filter on device bond0 [ 50.466031][ T3617] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 50.475990][ T3617] bridge0: port 1(bridge_slave_0) entered disabled state [ 50.484508][ T3617] bridge0: port 2(bridge_slave_1) entered disabled state [ 50.492705][ T3617] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 50.504832][ T3610] 8021q: adding VLAN 0 to HW filter on device team0 [ 50.524321][ T3617] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 50.533286][ T3617] bridge0: port 1(bridge_slave_0) entered blocking state [ 50.540345][ T3617] bridge0: port 1(bridge_slave_0) entered forwarding state [ 50.548803][ T3617] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 50.557337][ T3617] bridge0: port 2(bridge_slave_1) entered blocking state [ 50.564444][ T3617] bridge0: port 2(bridge_slave_1) entered forwarding state [ 50.584043][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 50.593227][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 50.601518][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 50.610316][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 50.621030][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 50.629888][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 50.647400][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 50.655893][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 50.669147][ T3610] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 50.775274][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 50.787618][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 50.798483][ T3610] device veth0_vlan entered promiscuous mode [ 50.805292][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 50.813839][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 50.826166][ T3610] device veth1_vlan entered promiscuous mode [ 50.843681][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 50.853142][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 50.861590][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 50.871559][ T3610] device veth0_macvtap entered promiscuous mode [ 50.883496][ T3610] device veth1_macvtap entered promiscuous mode [ 50.898949][ T3610] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 50.906535][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 50.916445][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 50.927543][ T3610] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 50.935440][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 50.946488][ T3610] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.956566][ T3610] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.965547][ T3610] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 executing program [ 50.975914][ T3610] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 51.010242][ T3610] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 51.031702][ T38] [ 51.034047][ T38] ====================================================== [ 51.041044][ T38] WARNING: possible circular locking dependency detected [ 51.048043][ T38] 6.0.0-rc1-next-20220819-syzkaller #0 Not tainted [ 51.054551][ T38] ------------------------------------------------------ [ 51.061550][ T38] kworker/u4:2/38 is trying to acquire lock: [ 51.067506][ T38] ffff888026598d30 (sk_lock-AF_INET){+.+.}-{0:0}, at: strp_work+0x40/0x130 [ 51.076116][ T38] [ 51.076116][ T38] but task is already holding lock: [ 51.083457][ T38] ffffc90000af7da8 ((work_completion)(&strp->work)){+.+.}-{0:0}, at: process_one_work+0x8ae/0x1610 [ 51.094146][ T38] [ 51.094146][ T38] which lock already depends on the new lock. [ 51.094146][ T38] [ 51.104558][ T38] [ 51.104558][ T38] the existing dependency chain (in reverse order) is: [ 51.113554][ T38] [ 51.113554][ T38] -> #1 ((work_completion)(&strp->work)){+.+.}-{0:0}: [ 51.122486][ T38] __flush_work+0x105/0xae0 [ 51.127504][ T38] __cancel_work_timer+0x3f9/0x570 [ 51.133127][ T38] strp_done+0x64/0xf0 [ 51.137706][ T38] kcm_ioctl+0x913/0x1180 [ 51.142546][ T38] sock_do_ioctl+0xcc/0x230 [ 51.147557][ T38] sock_ioctl+0x2f1/0x640 [ 51.152405][ T38] __x64_sys_ioctl+0x193/0x200 [ 51.157691][ T38] do_syscall_64+0x35/0xb0 [ 51.162616][ T38] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 51.169017][ T38] [ 51.169017][ T38] -> #0 (sk_lock-AF_INET){+.+.}-{0:0}: [ 51.176643][ T38] __lock_acquire+0x2a43/0x56d0 [ 51.182003][ T38] lock_acquire+0x1ab/0x570 [ 51.187011][ T38] lock_sock_nested+0x36/0xf0 [ 51.192194][ T38] strp_work+0x40/0x130 [ 51.196865][ T38] process_one_work+0x991/0x1610 [ 51.202326][ T38] worker_thread+0x665/0x1080 [ 51.207544][ T38] kthread+0x2e4/0x3a0 [ 51.212126][ T38] ret_from_fork+0x1f/0x30 [ 51.217072][ T38] [ 51.217072][ T38] other info that might help us debug this: [ 51.217072][ T38] [ 51.227286][ T38] Possible unsafe locking scenario: [ 51.227286][ T38] [ 51.234721][ T38] CPU0 CPU1 [ 51.240082][ T38] ---- ---- [ 51.245433][ T38] lock((work_completion)(&strp->work)); [ 51.251145][ T38] lock(sk_lock-AF_INET); [ 51.258073][ T38] lock((work_completion)(&strp->work)); [ 51.266296][ T38] lock(sk_lock-AF_INET); [ 51.270696][ T38] [ 51.270696][ T38] *** DEADLOCK *** [ 51.270696][ T38] [ 51.278843][ T38] 2 locks held by kworker/u4:2/38: [ 51.283940][ T38] #0: ffff88802642d138 ((wq_completion)kstrp){+.+.}-{0:0}, at: process_one_work+0x87a/0x1610 [ 51.294201][ T38] #1: ffffc90000af7da8 ((work_completion)(&strp->work)){+.+.}-{0:0}, at: process_one_work+0x8ae/0x1610 [ 51.305323][ T38] [ 51.305323][ T38] stack backtrace: [ 51.311195][ T38] CPU: 1 PID: 38 Comm: kworker/u4:2 Not tainted 6.0.0-rc1-next-20220819-syzkaller #0 [ 51.320636][ T38] kworker/u4:2[38] cmdline: a [ 51.325994][ T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 51.336040][ T38] Workqueue: kstrp strp_work [ 51.340643][ T38] Call Trace: [ 51.343915][ T38] [ 51.346838][ T38] dump_stack_lvl+0xcd/0x134 [ 51.351432][ T38] check_noncircular+0x25f/0x2e0 [ 51.356366][ T38] ? ret_from_fork+0x1f/0x30 [ 51.360952][ T38] ? print_circular_bug+0x1e0/0x1e0 [ 51.366145][ T38] ? stack_trace_save+0x8c/0xc0 [ 51.370996][ T38] ? filter_irq_stacks+0x90/0x90 [ 51.375933][ T38] __lock_acquire+0x2a43/0x56d0 [ 51.380776][ T38] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 51.386749][ T38] lock_acquire+0x1ab/0x570 [ 51.391242][ T38] ? strp_work+0x40/0x130 [ 51.395564][ T38] ? lock_release+0x780/0x780 [ 51.400231][ T38] ? lock_release+0x780/0x780 [ 51.404894][ T38] ? lock_downgrade+0x6e0/0x6e0 [ 51.409739][ T38] ? lockdep_hardirqs_on+0x79/0x100 [ 51.414930][ T38] lock_sock_nested+0x36/0xf0 [ 51.419594][ T38] ? strp_work+0x40/0x130 [ 51.423916][ T38] strp_work+0x40/0x130 [ 51.428066][ T38] process_one_work+0x991/0x1610 [ 51.433000][ T38] ? pwq_dec_nr_in_flight+0x2a0/0x2a0 [ 51.438365][ T38] ? rwlock_bug.part.0+0x90/0x90 [ 51.443294][ T38] ? _raw_spin_lock_irq+0x41/0x50 [ 51.448311][ T38] worker_thread+0x665/0x1080 [ 51.452983][ T38] ? __kthread_parkme+0x15f/0x220 [ 51.457999][ T38] ? process_one_work+0x1610/0x1610 [ 51.463192][ T38] kthread+0x2e4/0x3a0 [ 51.467249][ T38] ? kthread_complete_and_exit+0x40/0x40 [ 51.472872][ T38] ret_from_fork+0x1f/0x30 [ 51.477282][ T38]