Warning: Permanently added '10.128.15.199' (ED25519) to the list of known hosts.
1970/01/01 00:00:41 ignoring optional flag "sandboxArg"="0"
1970/01/01 00:00:42 parsed 1 programs
[   44.961311][ T4032] cgroup: Unknown subsys name 'net'
[   45.224962][ T4032] cgroup: Unknown subsys name 'rlimit'
[   45.579555][ T4032] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k SSFS
[   55.123228][ T4092] chnl_net:caif_netlink_parms(): no params data found
[   55.164180][ T4092] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.166250][ T4092] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.169262][ T4092] device bridge_slave_0 entered promiscuous mode
[   55.173920][ T4092] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.175951][ T4092] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.178582][ T4092] device bridge_slave_1 entered promiscuous mode
[   55.196614][ T4092] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   55.201343][ T4092] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   55.217417][ T4092] team0: Port device team_slave_0 added
[   55.221579][ T4092] team0: Port device team_slave_1 added
[   55.236482][ T4092] batman_adv: batadv0: Adding interface: batadv_slave_0
[   55.238364][ T4092] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.245818][ T4092] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   55.251084][ T4092] batman_adv: batadv0: Adding interface: batadv_slave_1
[   55.253011][ T4092] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.261665][ T4092] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   55.322402][ T4092] device hsr_slave_0 entered promiscuous mode
[   55.360248][ T4092] device hsr_slave_1 entered promiscuous mode
[   55.488546][ T4092] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   55.540886][ T4092] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   55.601292][ T4092] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   55.643174][ T4092] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   55.687121][ T4092] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.689242][ T4092] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.691902][ T4092] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.693925][ T4092] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.744201][ T4092] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.753190][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   55.757833][  T153] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.763109][  T153] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.766194][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   55.774546][ T4092] 8021q: adding VLAN 0 to HW filter on device team0
[   55.782765][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   55.785750][  T153] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.787610][  T153] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.800727][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   55.803482][  T153] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.805421][  T153] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.816855][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   55.821991][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   55.828316][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   55.841627][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   55.845474][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   55.851167][ T4092] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   55.934325][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   55.936518][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   55.961100][ T4092] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.974822][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   55.986495][  T562] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   55.989819][  T562] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   55.992404][  T562] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   55.998886][ T4092] device veth0_vlan entered promiscuous mode
[   56.007070][ T4092] device veth1_vlan entered promiscuous mode
[   56.024883][  T562] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   56.027638][  T562] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   56.034533][  T562] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   56.042960][ T4092] device veth0_macvtap entered promiscuous mode
[   56.048221][ T4092] device veth1_macvtap entered promiscuous mode
[   56.060275][ T4092] batman_adv: batadv0: Interface activated: batadv_slave_0
[   56.064727][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   56.068129][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   56.076183][ T4092] batman_adv: batadv0: Interface activated: batadv_slave_1
[   56.078932][  T562] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   56.083920][ T4092] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.086565][ T4092] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.090256][ T4092] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.092648][ T4092] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.252152][  T153] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.257883][  T153] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.263773][  T562] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   56.272781][  T153] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.275014][  T153] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.277972][  T562] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
1970/01/01 00:00:56 executed programs: 0
[   56.800837][ T4127] chnl_net:caif_netlink_parms(): no params data found
[   56.840417][ T4127] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.842413][ T4127] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.845100][ T4127] device bridge_slave_0 entered promiscuous mode
[   56.880616][ T4127] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.882932][ T4127] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.885567][ T4127] device bridge_slave_1 entered promiscuous mode
[   56.904430][ T4127] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   56.910793][ T4127] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   56.931067][ T4127] team0: Port device team_slave_0 added
[   56.934777][ T4127] team0: Port device team_slave_1 added
[   56.950432][ T4127] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.952451][ T4127] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.960348][ T4127] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.964834][ T4127] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.966873][ T4127] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.974426][ T4127] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   57.030976][ T4127] device hsr_slave_0 entered promiscuous mode
[   57.079031][ T4127] device hsr_slave_1 entered promiscuous mode
[   57.118754][ T4127] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   57.121261][ T4127] Cannot create hsr debugfs directory
[   57.190717][ T4127] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.739320][ T4110] Bluetooth: hci0: command 0x0409 tx timeout
[   59.658203][ T4127] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.820052][   T25] Bluetooth: hci0: command 0x041b tx timeout
[   61.617079][ T4127] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.671015][ T4127] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.889638][ T4127] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   61.942263][ T4127] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   61.990777][ T4127] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   62.032145][ T4127] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   62.125893][ T4127] 8021q: adding VLAN 0 to HW filter on device bond0
[   62.139769][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   62.142423][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   62.148102][ T4127] 8021q: adding VLAN 0 to HW filter on device team0
[   62.159175][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   62.162045][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   62.164775][  T153] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.166718][  T153] bridge0: port 1(bridge_slave_0) entered forwarding state
[   62.177300][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   62.180317][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   62.183134][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   62.185758][  T153] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.187866][  T153] bridge0: port 2(bridge_slave_1) entered forwarding state
[   62.191438][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   62.196965][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   62.203119][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   62.206278][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   62.211558][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   62.229211][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   62.232805][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   62.235673][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   62.241134][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   62.243993][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   62.246795][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   62.251096][ T4127] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   62.336543][ T4127] 8021q: adding VLAN 0 to HW filter on device batadv0
[   62.340040][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   62.342326][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   62.355987][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   62.359955][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   62.374289][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   62.377203][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   62.380765][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   62.384599][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   62.389307][ T4127] device veth0_vlan entered promiscuous mode
[   62.397367][ T4127] device veth1_vlan entered promiscuous mode
[   62.423600][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   62.426298][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   62.431356][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   62.434246][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   62.441710][ T4127] device veth0_macvtap entered promiscuous mode
[   62.713193][ T4127] device veth1_macvtap entered promiscuous mode
[   62.728120][ T4127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   62.731845][ T4127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.735910][ T4127] batman_adv: batadv0: Interface activated: batadv_slave_0
[   62.740073][  T562] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   62.742873][  T562] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   62.745978][  T562] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   62.751676][  T562] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   62.754852][ T4127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   62.757643][ T4127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.761694][ T4127] batman_adv: batadv0: Interface activated: batadv_slave_1
[   62.764526][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   62.767395][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   62.774702][ T4127] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   62.777243][ T4127] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   62.780684][ T4127] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   62.783260][ T4127] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   62.836350][  T562] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.846043][  T562] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   62.851896][  T136] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.852164][ T1819] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   62.854266][  T136] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   62.859043][ T1819] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
1970/01/01 00:01:02 executed programs: 2
[   62.901053][ T4105] Bluetooth: hci0: command 0x040f tx timeout
[   63.066048][ T4139] 
[   63.066791][ T4139] ======================================================
[   63.068663][ T4139] WARNING: possible circular locking dependency detected
[   63.070634][ T4139] 5.15.185-syzkaller #0 Not tainted
[   63.071998][ T4139] ------------------------------------------------------
[   63.073970][ T4139] syz.0.16/4139 is trying to acquire lock:
[   63.075603][ T4139] ffff0000d137cc28 ((work_completion)(&hdev->bg_scan_update)){+.+.}-{0:0}, at: __flush_work+0xcc/0x1bc
[   63.078629][ T4139] 
[   63.078629][ T4139] but task is already holding lock:
[   63.080756][ T4139] ffff800016507d48 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_fop_write+0x238/0x5cc
[   63.083486][ T4139] 
[   63.083486][ T4139] which lock already depends on the new lock.
[   63.083486][ T4139] 
[   63.086334][ T4139] 
[   63.086334][ T4139] the existing dependency chain (in reverse order) is:
[   63.088734][ T4139] 
[   63.088734][ T4139] -> #4 (rfkill_global_mutex){+.+.}-{3:3}:
[   63.090950][ T4139]        __mutex_lock_common+0x194/0x1edc
[   63.092558][ T4139]        mutex_lock_nested+0xac/0x11c
[   63.094014][ T4139]        rfkill_register+0x44/0x77c
[   63.095391][ T4139]        hci_register_dev+0x3d8/0x854
[   63.096924][ T4139]        vhci_create_device+0x2bc/0x564
[   63.098509][ T4139]        vhci_write+0x30c/0x3ac
[   63.101003][ T4139]        vfs_write+0x7c8/0xa2c
[   63.102418][ T4139]        ksys_write+0x120/0x210
[   63.103839][ T4139]        __arm64_sys_write+0x7c/0x90
[   63.105315][ T4139]        invoke_syscall+0x98/0x2b8
[   63.106700][ T4139]        el0_svc_common+0x138/0x258
[   63.108107][ T4139]        do_el0_svc+0x58/0x14c
[   63.109463][ T4139]        el0_svc+0x78/0x1e0
[   63.110692][ T4139]        el0t_64_sync_handler+0xcc/0xe4
[   63.112261][ T4139]        el0t_64_sync+0x1a0/0x1a4
[   63.113691][ T4139] 
[   63.113691][ T4139] -> #3 (&data->open_mutex){+.+.}-{3:3}:
[   63.115866][ T4139]        __mutex_lock_common+0x194/0x1edc
[   63.117402][ T4139]        mutex_lock_nested+0xac/0x11c
[   63.118807][ T4139]        vhci_send_frame+0x88/0x118
[   63.120288][ T4139]        hci_send_frame+0x194/0x2f0
[   63.121726][ T4139]        hci_tx_work+0x7e4/0x1394
[   63.123155][ T4139]        process_one_work+0x79c/0x1140
[   63.124687][ T4139]        worker_thread+0x8f4/0x101c
[   63.126078][ T4139]        kthread+0x374/0x454
[   63.127394][ T4139]        ret_from_fork+0x10/0x20
[   63.128748][ T4139] 
[   63.128748][ T4139] -> #2 ((work_completion)(&hdev->tx_work)){+.+.}-{0:0}:
[   63.131291][ T4139]        __flush_work+0xf4/0x1bc
[   63.132624][ T4139]        flush_work+0x24/0x38
[   63.133936][ T4139]        hci_dev_do_close+0x164/0x105c
[   63.135455][ T4139]        hci_unregister_dev+0x23c/0x4c0
[   63.137057][ T4139]        vhci_release+0x74/0xc4
[   63.138400][ T4139]        __fput+0x1c0/0x7f8
[   63.139638][ T4139]        ____fput+0x20/0x30
[   63.140889][ T4139]        task_work_run+0x12c/0x1e0
[   63.142253][ T4139]        do_exit+0x67c/0x1f58
[   63.143515][ T4139]        do_group_exit+0x100/0x268
[   63.145010][ T4139]        get_signal+0x73c/0x1340
[   63.146420][ T4139]        do_notify_resume+0x35c/0x3128
[   63.148006][ T4139]        el0_svc+0xf0/0x1e0
[   63.149256][ T4139]        el0t_64_sync_handler+0xcc/0xe4
[   63.150768][ T4139]        el0t_64_sync+0x1a0/0x1a4
[   63.152175][ T4139] 
[   63.152175][ T4139] -> #1 (&hdev->req_lock){+.+.}-{3:3}:
[   63.154367][ T4139]        __mutex_lock_common+0x194/0x1edc
[   63.155998][ T4139]        mutex_lock_nested+0xac/0x11c
[   63.157505][ T4139]        bg_scan_update+0x48/0x3d0
[   63.158929][ T4139]        process_one_work+0x79c/0x1140
[   63.160462][ T4139]        worker_thread+0x8f4/0x101c
[   63.161921][ T4139]        kthread+0x374/0x454
[   63.163243][ T4139]        ret_from_fork+0x10/0x20
[   63.164614][ T4139] 
[   63.164614][ T4139] -> #0 ((work_completion)(&hdev->bg_scan_update)){+.+.}-{0:0}:
[   63.167335][ T4139]        __lock_acquire+0x2928/0x651c
[   63.168774][ T4139]        lock_acquire+0x1f4/0x620
[   63.170250][ T4139]        __flush_work+0xf4/0x1bc
[   63.171689][ T4139]        __cancel_work_timer+0x2ec/0x448
[   63.173275][ T4139]        cancel_work_sync+0x24/0x38
[   63.174803][ T4139]        hci_request_cancel_all+0xbc/0x2d0
[   63.176484][ T4139]        hci_dev_do_close+0x54/0x105c
[   63.177999][ T4139]        hci_rfkill_set_block+0xdc/0x1d0
[   63.179552][ T4139]        rfkill_set_block+0x18c/0x374
[   63.181156][ T4139]        rfkill_fop_write+0x4a4/0x5cc
[   63.182667][ T4139]        vfs_write+0x280/0xa2c
[   63.183966][ T4139]        ksys_write+0x120/0x210
[   63.185325][ T4139]        __arm64_sys_write+0x7c/0x90
[   63.186785][ T4139]        invoke_syscall+0x98/0x2b8
[   63.188176][ T4139]        el0_svc_common+0x138/0x258
[   63.189697][ T4139]        do_el0_svc+0x58/0x14c
[   63.190973][ T4139]        el0_svc+0x78/0x1e0
[   63.192216][ T4139]        el0t_64_sync_handler+0xcc/0xe4
[   63.193761][ T4139]        el0t_64_sync+0x1a0/0x1a4
[   63.195133][ T4139] 
[   63.195133][ T4139] other info that might help us debug this:
[   63.195133][ T4139] 
[   63.197990][ T4139] Chain exists of:
[   63.197990][ T4139]   (work_completion)(&hdev->bg_scan_update) --> &data->open_mutex --> rfkill_global_mutex
[   63.197990][ T4139] 
[   63.202389][ T4139]  Possible unsafe locking scenario:
[   63.202389][ T4139] 
[   63.204444][ T4139]        CPU0                    CPU1
[   63.207217][ T4139]        ----                    ----
[   63.208792][ T4139]   lock(rfkill_global_mutex);
[   63.210115][ T4139]                                lock(&data->open_mutex);
[   63.212093][ T4139]                                lock(rfkill_global_mutex);
[   63.214136][ T4139]   lock((work_completion)(&hdev->bg_scan_update));
[   63.216041][ T4139] 
[   63.216041][ T4139]  *** DEADLOCK ***
[   63.216041][ T4139] 
[   63.218300][ T4139] 1 lock held by syz.0.16/4139:
[   63.219639][ T4139]  #0: ffff800016507d48 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_fop_write+0x238/0x5cc
[   63.222599][ T4139] 
[   63.222599][ T4139] stack backtrace:
[   63.224292][ T4139] CPU: 0 PID: 4139 Comm: syz.0.16 Not tainted 5.15.185-syzkaller #0
[   63.226552][ T4139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   63.229396][ T4139] Call trace:
[   63.230362][ T4139]  dump_backtrace+0x0/0x43c
[   63.231640][ T4139]  show_stack+0x2c/0x3c
[   63.232788][ T4139]  __dump_stack+0x30/0x40
[   63.233961][ T4139]  dump_stack_lvl+0xf8/0x160
[   63.235225][ T4139]  dump_stack+0x1c/0x5c
[   63.236355][ T4139]  print_circular_bug+0x148/0x1b0
[   63.237720][ T4139]  check_noncircular+0x240/0x2d4
[   63.239079][ T4139]  __lock_acquire+0x2928/0x651c
[   63.240482][ T4139]  lock_acquire+0x1f4/0x620
[   63.241726][ T4139]  __flush_work+0xf4/0x1bc
[   63.242938][ T4139]  __cancel_work_timer+0x2ec/0x448
[   63.244345][ T4139]  cancel_work_sync+0x24/0x38
[   63.245690][ T4139]  hci_request_cancel_all+0xbc/0x2d0
[   63.247160][ T4139]  hci_dev_do_close+0x54/0x105c
[   63.248423][ T4139]  hci_rfkill_set_block+0xdc/0x1d0
[   63.249809][ T4139]  rfkill_set_block+0x18c/0x374
[   63.251125][ T4139]  rfkill_fop_write+0x4a4/0x5cc
[   63.252462][ T4139]  vfs_write+0x280/0xa2c
[   63.253704][ T4139]  ksys_write+0x120/0x210
[   63.254878][ T4139]  __arm64_sys_write+0x7c/0x90
[   63.256197][ T4139]  invoke_syscall+0x98/0x2b8
[   63.257480][ T4139]  el0_svc_common+0x138/0x258
[   63.258812][ T4139]  do_el0_svc+0x58/0x14c
[   63.259947][ T4139]  el0_svc+0x78/0x1e0
[   63.261021][ T4139]  el0t_64_sync_handler+0xcc/0xe4
[   63.262399][ T4139]  el0t_64_sync+0x1a0/0x1a4
[   65.227147][ T1604] device hsr_slave_0 left promiscuous mode
[   65.258808][ T1604] device hsr_slave_1 left promiscuous mode
[   65.348811][ T1604] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   65.350930][ T1604] batman_adv: batadv0: Removing interface: batadv_slave_0
[   65.353389][ T1604] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   65.355519][ T1604] batman_adv: batadv0: Removing interface: batadv_slave_1
[   65.357940][ T1604] device bridge_slave_1 left promiscuous mode
[   65.359865][ T1604] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.399681][ T1604] device bridge_slave_0 left promiscuous mode
[   65.401513][ T1604] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.538948][ T1604] device veth1_macvtap left promiscuous mode
[   65.540779][ T1604] device veth0_macvtap left promiscuous mode
[   65.542719][ T1604] device veth1_vlan left promiscuous mode
[   65.544360][ T1604] device veth0_vlan left promiscuous mode
[   65.698883][ T1604] team0 (unregistering): Port device team_slave_1 removed
[   65.706582][ T1604] team0 (unregistering): Port device team_slave_0 removed
[   65.714920][ T1604] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   65.763842][ T1604] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   65.866015][ T1604] bond0 (unregistering): Released all slaves
1970/01/01 00:01:07 executed programs: 192
[   69.619714][ T2056] ieee802154 phy0 wpan0: encryption failed: -22
[   69.621560][ T2056] ieee802154 phy1 wpan1: encryption failed: -22
1970/01/01 00:01:12 executed programs: 480