./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2988522033 <...> Warning: Permanently added '10.128.1.52' (ED25519) to the list of known hosts. execve("./syz-executor2988522033", ["./syz-executor2988522033"], 0x7ffca885aa80 /* 10 vars */) = 0 brk(NULL) = 0x55555748c000 brk(0x55555748cd00) = 0x55555748cd00 arch_prctl(ARCH_SET_FS, 0x55555748c380) = 0 set_tid_address(0x55555748c650) = 5072 set_robust_list(0x55555748c660, 24) = 0 rseq(0x55555748cca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor2988522033", 4096) = 28 getrandom("\x6c\xd0\x2d\x12\xa7\x1d\x96\xa7", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55555748cd00 brk(0x5555574add00) = 0x5555574add00 brk(0x5555574ae000) = 0x5555574ae000 mprotect(0x7f90f7f72000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 unshare(CLONE_NEWPID) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5073 attached , child_tidptr=0x55555748c650) = 5073 [pid 5073] set_robust_list(0x55555748c660, 24) = 0 [pid 5073] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy) [pid 5073] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5073] setsid() = 1 [pid 5073] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0 [pid 5073] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0 [pid 5073] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0 [pid 5073] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0 [pid 5073] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0 [pid 5073] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0 [pid 5073] unshare(CLONE_NEWNS) = 0 [pid 5073] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0 [pid 5073] unshare(CLONE_NEWIPC) = 0 [pid 5073] unshare(CLONE_NEWCGROUP) = 0 [pid 5073] unshare(CLONE_NEWUTS) = 0 [pid 5073] unshare(CLONE_SYSVSEM) = 0 [pid 5073] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5073] write(3, "16777216", 8) = 8 [pid 5073] close(3) = 0 [pid 5073] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3 [pid 5073] write(3, "536870912", 9) = 9 [pid 5073] close(3) = 0 [pid 5073] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5073] write(3, "1024", 4) = 4 [pid 5073] close(3) = 0 [pid 5073] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5073] write(3, "8192", 4) = 4 [pid 5073] close(3) = 0 [pid 5073] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5073] write(3, "1024", 4) = 4 [pid 5073] close(3) = 0 [pid 5073] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3 [pid 5073] write(3, "1024", 4) = 4 [pid 5073] close(3) = 0 [pid 5073] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3 [pid 5073] write(3, "1024 1048576 500 1024", 21) = 21 [pid 5073] close(3) = 0 [pid 5073] getpid() = 1 [pid 5073] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<team_lock_key){+.+.}-{3:3}, at: team_port_change_check+0x51/0x1e0 [ 67.487537][ T5073] [ 67.487537][ T5073] but task is already holding lock: [ 67.494971][ T5073] ffff8880268c0d00 (team->team_lock_key){+.+.}-{3:3}, at: team_add_slave+0xad/0x2750 [ 67.504442][ T5073] [ 67.504442][ T5073] other info that might help us debug this: [ 67.512481][ T5073] Possible unsafe locking scenario: [ 67.512481][ T5073] [ 67.519918][ T5073] CPU0 [ 67.523195][ T5073] ---- [ 67.526463][ T5073] lock(team->team_lock_key); [ 67.531229][ T5073] lock(team->team_lock_key); [ 67.535990][ T5073] [ 67.535990][ T5073] *** DEADLOCK *** [ 67.535990][ T5073] [ 67.544121][ T5073] May be due to missing lock nesting notation [ 67.544121][ T5073] [ 67.552420][ T5073] 2 locks held by syz-executor298/5073: [ 67.557944][ T5073] #0: ffffffff8f375d88 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040 [ 67.567423][ T5073] #1: ffff8880268c0d00 (team->team_lock_key){+.+.}-{3:3}, at: team_add_slave+0xad/0x2750 [ 67.577332][ T5073] [ 67.577332][ T5073] stack backtrace: [ 67.583200][ T5073] CPU: 0 PID: 5073 Comm: syz-executor298 Not tainted 6.8.0-rc7-syzkaller #0 [ 67.591856][ T5073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 67.601893][ T5073] Call Trace: [ 67.605156][ T5073] [ 67.608076][ T5073] dump_stack_lvl+0x1e7/0x2e0 [ 67.612759][ T5073] ? __pfx_dump_stack_lvl+0x10/0x10 [ 67.617950][ T5073] ? print_deadlock_bug+0x479/0x620 [ 67.623190][ T5073] ? _find_first_zero_bit+0xd4/0x100 [ 67.628482][ T5073] validate_chain+0x15c0/0x58e0 [ 67.633336][ T5073] ? _raw_spin_unlock_irqrestore+0x8f/0x140 [ 67.639233][ T5073] ? __wake_up_common_lock+0x18c/0x1e0 [ 67.644685][ T5073] ? __pfx_validate_chain+0x10/0x10 [ 67.649970][ T5073] ? consume_skb+0xc6/0x160 [ 67.654463][ T5073] ? netlink_broadcast_filtered+0x1259/0x1290 [ 67.660527][ T5073] ? nlmsg_notify+0xfb/0x1c0 [ 67.665102][ T5073] ? nlmsg_notify+0x15a/0x1c0 [ 67.669761][ T5073] ? rtmsg_fib+0x3a3/0x630 [ 67.674165][ T5073] ? mark_lock+0x9a/0x350 [ 67.678480][ T5073] ? __pfx_rtmsg_fib+0x10/0x10 [ 67.683231][ T5073] __lock_acquire+0x1345/0x1fd0 [ 67.688086][ T5073] lock_acquire+0x1e3/0x530 [ 67.692587][ T5073] ? team_port_change_check+0x51/0x1e0 [ 67.698056][ T5073] ? __pfx_lock_acquire+0x10/0x10 [ 67.703094][ T5073] ? neigh_lookup+0xb1/0x500 [ 67.707696][ T5073] ? __pfx___might_resched+0x10/0x10 [ 67.712976][ T5073] ? __pfx_cfg80211_netdev_notifier_call+0x10/0x10 [ 67.719470][ T5073] ? __pfx_arp_key_eq+0x10/0x10 [ 67.724309][ T5073] __mutex_lock+0x136/0xd70 [ 67.728800][ T5073] ? team_port_change_check+0x51/0x1e0 [ 67.734249][ T5073] ? neigh_lookup+0xb1/0x500 [ 67.738828][ T5073] ? __pfx_neigh_lookup+0x10/0x10 [ 67.743931][ T5073] ? bond_netdev_event+0xdd/0xf20 [ 67.748951][ T5073] ? team_port_change_check+0x51/0x1e0 [ 67.754400][ T5073] ? __pfx___mutex_lock+0x10/0x10 [ 67.759417][ T5073] ? __asan_memset+0x23/0x50 [ 67.764028][ T5073] team_port_change_check+0x51/0x1e0 [ 67.769307][ T5073] team_device_event+0x4e9/0x5b0 [ 67.774233][ T5073] ? notifier_call_chain+0x166/0x3b0 [ 67.779510][ T5073] notifier_call_chain+0x18f/0x3b0 [ 67.784621][ T5073] __dev_notify_flags+0x207/0x400 [ 67.789654][ T5073] ? dev_set_rx_mode+0xb8/0x2e0 [ 67.794491][ T5073] ? __pfx___dev_notify_flags+0x10/0x10 [ 67.800019][ T5073] ? __dev_change_flags+0x515/0x6f0 [ 67.805203][ T5073] ? __pfx___dev_change_flags+0x10/0x10 [ 67.810734][ T5073] ? dsa_user_netdevice_event+0x71c/0x2970 [ 67.816526][ T5073] dev_change_flags+0xf0/0x1a0 [ 67.821275][ T5073] vlan_device_event+0x1b81/0x1de0 [ 67.826375][ T5073] ? rt6_multipath_rebalance+0x860/0x880 [ 67.831993][ T5073] ? br_device_event+0x148/0x970 [ 67.836918][ T5073] ? __pfx_phonet_device_notify+0x10/0x10 [ 67.842630][ T5073] ? __pfx_vlan_device_event+0x10/0x10 [ 67.848073][ T5073] ? __pfx_br_device_event+0x10/0x10 [ 67.853348][ T5073] ? raw_notifier+0x9d/0x740 [ 67.857921][ T5073] ? isotp_notifier+0xa4/0x6b0 [ 67.862678][ T5073] ? cgw_notifier+0xd8/0x3b0 [ 67.867254][ T5073] ? packet_notifier+0x76/0xa30 [ 67.872092][ T5073] notifier_call_chain+0x18f/0x3b0 [ 67.877193][ T5073] dev_open+0x13a/0x1b0 [ 67.881342][ T5073] ? __pfx_dev_open+0x10/0x10 [ 67.886010][ T5073] ? team_add_slave+0x8a0/0x2750 [ 67.890940][ T5073] team_add_slave+0x9b3/0x2750 [ 67.895696][ T5073] ? __pfx___dev_notify_flags+0x10/0x10 [ 67.901238][ T5073] ? __dev_change_flags+0x515/0x6f0 [ 67.906421][ T5073] ? __pfx_team_add_slave+0x10/0x10 [ 67.911608][ T5073] ? __pfx___dev_change_flags+0x10/0x10 [ 67.917138][ T5073] ? vprintk_emit+0x607/0x720 [ 67.921802][ T5073] ? mutex_is_locked+0x12/0x50 [ 67.926551][ T5073] do_setlink+0xe58/0x41c0 [ 67.930964][ T5073] ? __nla_validate_parse+0x4e4/0x2f70 [ 67.936414][ T5073] ? __pfx__printk+0x10/0x10 [ 67.941007][ T5073] ? __pfx_do_setlink+0x10/0x10 [ 67.945849][ T5073] ? __nla_validate_parse+0x2599/0x2f70 [ 67.951390][ T5073] ? __pfx___nla_validate_parse+0x10/0x10 [ 67.957119][ T5073] ? __pfx_validate_chain+0x10/0x10 [ 67.962312][ T5073] ? __pfx_lock_acquire+0x10/0x10 [ 67.967330][ T5073] ? validate_linkmsg+0x71e/0x900 [ 67.972339][ T5073] rtnl_setlink+0x40d/0x5a0 [ 67.976827][ T5073] ? mark_lock+0x9a/0x350 [ 67.981143][ T5073] ? __pfx_rtnl_setlink+0x10/0x10 [ 67.986157][ T5073] ? kernel_text_address+0xa7/0xe0 [ 67.991274][ T5073] ? rcu_read_unlock+0x8c/0xa0 [ 67.996024][ T5073] ? __pfx___mutex_lock+0x10/0x10 [ 68.001213][ T5073] ? __pfx_rtnl_setlink+0x10/0x10 [ 68.006224][ T5073] rtnetlink_rcv_msg+0x885/0x1040 [ 68.011238][ T5073] ? rtnetlink_rcv_msg+0x208/0x1040 [ 68.016429][ T5073] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 68.021886][ T5073] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 68.027856][ T5073] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 68.034176][ T5073] ? __local_bh_enable_ip+0x168/0x200 [ 68.039538][ T5073] ? lockdep_hardirqs_on+0x98/0x140 [ 68.044725][ T5073] ? __local_bh_enable_ip+0x168/0x200 [ 68.050089][ T5073] ? __dev_queue_xmit+0x2c4/0x3b10 [ 68.055188][ T5073] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 68.060898][ T5073] ? __dev_queue_xmit+0x2c4/0x3b10 [ 68.065997][ T5073] ? __dev_queue_xmit+0x15fd/0x3b10 [ 68.071186][ T5073] ? __dev_queue_xmit+0x2c4/0x3b10 [ 68.076284][ T5073] ? ref_tracker_free+0x643/0x7e0 [ 68.081297][ T5073] netlink_rcv_skb+0x1e3/0x430 [ 68.086051][ T5073] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 68.091499][ T5073] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 68.096781][ T5073] ? netlink_deliver_tap+0x2e/0x1b0 [ 68.101964][ T5073] netlink_unicast+0x7ea/0x980 [ 68.106722][ T5073] ? __pfx_netlink_unicast+0x10/0x10 [ 68.111994][ T5073] ? __virt_addr_valid+0x44e/0x520 [ 68.117095][ T5073] ? __phys_addr_symbol+0x2f/0x70 [ 68.122104][ T5073] ? __check_object_size+0x4bb/0xa00 [ 68.127376][ T5073] ? bpf_lsm_netlink_send+0x9/0x10 [ 68.132476][ T5073] netlink_sendmsg+0xa3b/0xd70 [ 68.137230][ T5073] ? __pfx_netlink_sendmsg+0x10/0x10 [ 68.142500][ T5073] ? aa_sock_msg_perm+0x91/0x160 [ 68.147430][ T5073] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 68.152701][ T5073] ? security_socket_sendmsg+0x87/0xb0 [ 68.158151][ T5073] ? __pfx_netlink_sendmsg+0x10/0x10 [ 68.163420][ T5073] __sock_sendmsg+0x221/0x270 [ 68.168090][ T5073] sock_write_iter+0x2dd/0x400 [ 68.173017][ T5073] ? __pfx_sock_write_iter+0x10/0x10 [ 68.178308][ T5073] ? __lock_acquire+0x1345/0x1fd0 [ 68.183324][ T5073] do_iter_readv_writev+0x46c/0x640 [ 68.188513][ T5073] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 68.194224][ T5073] ? bpf_lsm_file_permission+0x9/0x10 [ 68.199758][ T5073] ? security_file_permission+0x7f/0xa0 [ 68.205293][ T5073] ? rw_verify_area+0x1d2/0x580 [ 68.210134][ T5073] vfs_writev+0x395/0xbb0 [ 68.214454][ T5073] ? __pfx_vfs_writev+0x10/0x10 [ 68.219295][ T5073] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 68.225613][ T5073] ? _raw_spin_unlock_irq+0x23/0x50 [ 68.230796][ T5073] ? lockdep_hardirqs_on+0x98/0x140 [ 68.235992][ T5073] ? __fdget_pos+0x1a1/0x320 [ 68.240569][ T5073] do_writev+0x1b1/0x350 [ 68.244809][ T5073] ? __pfx_do_writev+0x10/0x10 [ 68.249560][ T5073] ? do_syscall_64+0x108/0x240 [ 68.254311][ T5073] ? syscall_trace_enter+0x5e/0x150 [ 68.259498][ T5073] do_syscall_64+0xf9/0x240 [ 68.263998][ T5073] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 68.269974][ T5073] RIP: 0033:0x7f90f7ef9a89 [ 68.274395][ T5073] Code: 48 83 c4 28 c3 e8 d7 19 00 00 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 68.294005][ T5073] RSP: 002b:00007ffc93dc60e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 68.302499][ T5073] RAX: ffffffffffffffda RBX: 00007f90f7f473d3 RCX: 00007f90f7ef9a89 [ 68.310473][ T5073] RDX: 0000000000000001 RSI: 0000000020000040 RDI: 0000000000000004 [ 68.318428][ T5073] RBP: 00007ffc93dc6110 R08: 0000000000000001 R09: 0000000000000001 [ 68.326384][ T5073] R10: 0000000000000001 R11: 0000000000000246 R12: 00007ffc93dc6120 [ 68.334341][ T5073] R13: 00007f90f7f47004 R14: 00007ffc93dc610c R15: 0000000000000003 [ 68.342324][ T5073] [ 76.917700][ T8] cfg80211: failed to load regulatory.db