Warning: Permanently added '10.128.0.235' (ED25519) to the list of known hosts.
2025/07/31 02:43:33 ignoring optional flag "sandboxArg"="0"
2025/07/31 02:43:34 parsed 1 programs
[   93.485106][ T5792] cgroup: Unknown subsys name 'net'
[   93.650627][ T5792] cgroup: Unknown subsys name 'rlimit'
[   95.449708][ T5792] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   98.173271][ T5825] chnl_net:caif_netlink_parms(): no params data found
[   98.252900][ T5825] bridge0: port 1(bridge_slave_0) entered blocking state
[   98.260592][ T5825] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.268707][ T5825] bridge_slave_0: entered allmulticast mode
[   98.275848][ T5825] bridge_slave_0: entered promiscuous mode
[   98.284843][ T5825] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.292833][ T5825] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.300040][ T5825] bridge_slave_1: entered allmulticast mode
[   98.307486][ T5825] bridge_slave_1: entered promiscuous mode
[   98.368162][ T5825] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   98.383701][ T5825] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   98.416171][ T5825] team0: Port device team_slave_0 added
[   98.425121][ T5825] team0: Port device team_slave_1 added
[   98.455229][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_0
[   98.462371][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   98.488360][ T5825] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   98.512183][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_1
[   98.519157][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   98.545178][ T5825] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   98.588285][ T5825] hsr_slave_0: entered promiscuous mode
[   98.597083][ T5825] hsr_slave_1: entered promiscuous mode
[   98.773575][ T5825] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   98.785729][ T5825] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   98.805795][ T5825] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   98.816097][ T5825] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   98.863104][  T788] cfg80211: failed to load regulatory.db
[   98.869744][ T5825] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.877091][ T5825] bridge0: port 2(bridge_slave_1) entered forwarding state
[   98.885456][ T5825] bridge0: port 1(bridge_slave_0) entered blocking state
[   98.892711][ T5825] bridge0: port 1(bridge_slave_0) entered forwarding state
[   98.981173][ T5825] 8021q: adding VLAN 0 to HW filter on device bond0
[   99.001301][ T3434] bridge0: port 1(bridge_slave_0) entered disabled state
[   99.009888][ T3434] bridge0: port 2(bridge_slave_1) entered disabled state
[   99.037916][ T5825] 8021q: adding VLAN 0 to HW filter on device team0
[   99.052886][ T3434] bridge0: port 1(bridge_slave_0) entered blocking state
[   99.060305][ T3434] bridge0: port 1(bridge_slave_0) entered forwarding state
[   99.079147][ T3434] bridge0: port 2(bridge_slave_1) entered blocking state
[   99.086317][ T3434] bridge0: port 2(bridge_slave_1) entered forwarding state
[   99.322422][ T5825] 8021q: adding VLAN 0 to HW filter on device batadv0
[   99.365605][ T5825] veth0_vlan: entered promiscuous mode
[   99.377713][ T5825] veth1_vlan: entered promiscuous mode
[   99.409204][ T5825] veth0_macvtap: entered promiscuous mode
[   99.419124][ T5825] veth1_macvtap: entered promiscuous mode
[   99.439878][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_0
[   99.455552][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_1
[   99.469024][ T5825] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   99.478255][ T5825] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   99.487577][ T5825] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   99.499667][ T5825] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   99.659259][ T2920] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.318890][   T54] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  100.340276][   T54] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  100.369303][   T48] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  100.377829][   T48] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  101.987032][ T5886] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  101.997237][ T5886] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  102.005246][ T5886] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  102.014103][ T5886] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  102.021969][ T5886] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  102.029386][ T5886] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
2025/07/31 02:43:46 executed programs: 0
[  102.530141][ T2920] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.588043][ T5103] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  102.597283][ T5103] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  102.606198][ T5103] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  102.616253][ T5103] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  102.624346][ T5103] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  102.631687][ T5103] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  102.801026][ T5898] chnl_net:caif_netlink_parms(): no params data found
[  102.871670][ T5898] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.879081][ T5898] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.886496][ T5898] bridge_slave_0: entered allmulticast mode
[  102.893703][ T5898] bridge_slave_0: entered promiscuous mode
[  102.902275][ T5898] bridge0: port 2(bridge_slave_1) entered blocking state
[  102.909408][ T5898] bridge0: port 2(bridge_slave_1) entered disabled state
[  102.917010][ T5898] bridge_slave_1: entered allmulticast mode
[  102.924587][ T5898] bridge_slave_1: entered promiscuous mode
[  102.957107][ T5898] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  102.968875][ T5898] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  103.004825][ T5898] team0: Port device team_slave_0 added
[  103.013240][ T5898] team0: Port device team_slave_1 added
[  103.042356][ T5898] batman_adv: batadv0: Adding interface: batadv_slave_0
[  103.049352][ T5898] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  103.075884][ T5898] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  103.089115][ T5898] batman_adv: batadv0: Adding interface: batadv_slave_1
[  103.096956][ T5898] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  103.123216][ T5898] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  103.168965][ T5898] hsr_slave_0: entered promiscuous mode
[  103.176544][ T5898] hsr_slave_1: entered promiscuous mode
[  103.183544][ T5898] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  103.191394][ T5898] Cannot create hsr debugfs directory
[  104.693256][ T5103] Bluetooth: hci0: command tx timeout
[  104.724172][ T2920] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.806879][ T2920] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.682972][ T5898] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  105.694583][ T5898] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  105.707199][ T5898] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  105.727112][ T2920] hsr_slave_0: left promiscuous mode
[  105.734355][ T2920] hsr_slave_1: left promiscuous mode
[  105.741323][ T2920] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  105.750941][ T2920] batman_adv: batadv0: Removing interface: batadv_slave_0
[  105.760413][ T2920] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  105.768698][ T2920] batman_adv: batadv0: Removing interface: batadv_slave_1
[  105.777004][ T2920] bridge_slave_1: left allmulticast mode
[  105.785282][ T2920] bridge_slave_1: left promiscuous mode
[  105.791955][ T2920] bridge0: port 2(bridge_slave_1) entered disabled state
[  105.807897][ T2920] bridge_slave_0: left allmulticast mode
[  105.825161][ T2920] bridge_slave_0: left promiscuous mode
[  105.830999][ T2920] bridge0: port 1(bridge_slave_0) entered disabled state
[  105.878730][ T2920] veth1_macvtap: left promiscuous mode
[  105.884914][ T2920] veth0_macvtap: left promiscuous mode
[  105.890627][ T2920] veth1_vlan: left promiscuous mode
[  105.896691][ T2920] veth0_vlan: left promiscuous mode
[  106.410018][ T2920] team0 (unregistering): Port device team_slave_1 removed
[  106.445465][ T2920] team0 (unregistering): Port device team_slave_0 removed
[  106.476720][ T2920] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  106.508213][ T2920] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  106.784160][ T5103] Bluetooth: hci0: command tx timeout
[  106.809861][ T2920] bond0 (unregistering): Released all slaves
[  106.882075][ T5898] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  106.963334][ T5898] 8021q: adding VLAN 0 to HW filter on device bond0
[  107.003056][ T5898] 8021q: adding VLAN 0 to HW filter on device team0
[  107.015601][   T54] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.022788][   T54] bridge0: port 1(bridge_slave_0) entered forwarding state
[  107.050017][   T54] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.057273][   T54] bridge0: port 2(bridge_slave_1) entered forwarding state
[  107.288148][ T5898] 8021q: adding VLAN 0 to HW filter on device batadv0
[  107.351715][ T5898] veth0_vlan: entered promiscuous mode
[  107.381529][ T5898] veth1_vlan: entered promiscuous mode
[  107.430275][ T5898] veth0_macvtap: entered promiscuous mode
[  107.449873][ T5898] veth1_macvtap: entered promiscuous mode
[  107.495324][ T5898] batman_adv: batadv0: Interface activated: batadv_slave_0
[  107.519606][ T5898] batman_adv: batadv0: Interface activated: batadv_slave_1
[  107.536110][ T5898] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  107.546049][ T5898] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  107.554894][ T5898] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  107.563713][ T5898] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  107.634788][ T1082] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  107.646710][ T1082] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  107.669774][ T1082] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
2025/07/31 02:43:51 executed programs: 2
[  107.678279][ T1082] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  107.764944][   T12] 
[  107.767330][   T12] ======================================================
[  107.774353][   T12] WARNING: possible circular locking dependency detected
[  107.781375][   T12] 6.6.100-syzkaller #0 Not tainted
[  107.786495][   T12] ------------------------------------------------------
[  107.793521][   T12] kworker/u4:1/12 is trying to acquire lock:
[  107.799506][   T12] ffff8880b8f295a8 (krc.lock){..-.}-{2:2}, at: kvfree_call_rcu+0x15a/0x780
[  107.808153][   T12] 
[  107.808153][   T12] but task is already holding lock:
[  107.815543][   T12] ffff8880b8f297d8 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x123/0x270
[  107.824429][   T12] 
[  107.824429][   T12] which lock already depends on the new lock.
[  107.824429][   T12] 
[  107.834835][   T12] 
[  107.834835][   T12] the existing dependency chain (in reverse order) is:
[  107.843856][   T12] 
[  107.843856][   T12] -> #1 (&base->lock){-.-.}-{2:2}:
[  107.851173][   T12]        _raw_spin_lock_irqsave+0xa8/0xf0
[  107.856903][   T12]        lock_timer_base+0x123/0x270
[  107.862194][   T12]        __mod_timer+0xf9/0xdb0
[  107.867073][   T12]        queue_delayed_work_on+0x12a/0x1e0
[  107.872880][   T12]        kvfree_call_rcu+0x541/0x780
[  107.878169][   T12]        rtnl_register_internal+0x486/0x590
[  107.884068][   T12]        rtnl_register+0x32/0x70
[  107.889012][   T12]        ip_rt_init+0x2ec/0x390
[  107.893868][   T12]        ip_init+0xe/0x20
[  107.898200][   T12]        inet_init+0x2c1/0x3e0
[  107.902974][   T12]        do_one_initcall+0x1fd/0x750
[  107.908267][   T12]        do_initcall_level+0x137/0x1f0
[  107.913737][   T12]        do_initcalls+0x69/0xd0
[  107.918599][   T12]        kernel_init_freeable+0x3d2/0x570
[  107.924328][   T12]        kernel_init+0x1d/0x1c0
[  107.929192][   T12]        ret_from_fork+0x48/0x80
[  107.934134][   T12]        ret_from_fork_asm+0x11/0x20
[  107.939444][   T12] 
[  107.939444][   T12] -> #0 (krc.lock){..-.}-{2:2}:
[  107.946499][   T12]        __lock_acquire+0x2ddb/0x7c80
[  107.951892][   T12]        lock_acquire+0x197/0x410
[  107.956926][   T12]        _raw_spin_lock+0x2e/0x40
[  107.962053][   T12]        kvfree_call_rcu+0x15a/0x780
[  107.967344][   T12]        trie_delete_elem+0x535/0x6a0
[  107.972726][   T12]        bpf_prog_2c29ac5cdc6b1842+0x42/0x46
[  107.978717][   T12]        bpf_trace_run3+0x1e7/0x400
[  107.983911][   T12]        __bpf_trace_timer_start+0x14a/0x1b0
[  107.989897][   T12]        enqueue_timer+0x398/0x530
[  107.995011][   T12]        __mod_timer+0x977/0xdb0
[  107.999958][   T12]        queue_delayed_work_on+0x12a/0x1e0
[  108.005773][   T12]        process_scheduled_works+0xa45/0x15b0
[  108.011858][   T12]        worker_thread+0xa55/0xfc0
[  108.016968][   T12]        kthread+0x2fa/0x390
[  108.021573][   T12]        ret_from_fork+0x48/0x80
[  108.026519][   T12]        ret_from_fork_asm+0x11/0x20
[  108.031813][   T12] 
[  108.031813][   T12] other info that might help us debug this:
[  108.031813][   T12] 
[  108.042036][   T12]  Possible unsafe locking scenario:
[  108.042036][   T12] 
[  108.049504][   T12]        CPU0                    CPU1
[  108.054875][   T12]        ----                    ----
[  108.060242][   T12]   lock(&base->lock);
[  108.064351][   T12]                                lock(krc.lock);
[  108.070684][   T12]                                lock(&base->lock);
[  108.077277][   T12]   lock(krc.lock);
[  108.081089][   T12] 
[  108.081089][   T12]  *** DEADLOCK ***
[  108.081089][   T12] 
[  108.089237][   T12] 4 locks held by kworker/u4:1/12:
[  108.094346][   T12]  #0: ffff88802d9ec938 ((wq_completion)bat_events){+.+.}-{0:0}, at: process_scheduled_works+0x957/0x15b0
[  108.105670][   T12]  #1: ffffc90000117d00 ((work_completion)(&(&bat_priv->nc.work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x957/0x15b0
[  108.118811][   T12]  #2: ffff8880b8f297d8 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x123/0x270
[  108.128143][   T12]  #3: ffffffff8cd2fba0 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run3+0xf4/0x400
[  108.137481][   T12] 
[  108.137481][   T12] stack backtrace:
[  108.143387][   T12] CPU: 1 PID: 12 Comm: kworker/u4:1 Not tainted 6.6.100-syzkaller #0
[  108.151458][   T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  108.161552][   T12] Workqueue: bat_events batadv_nc_worker
[  108.167220][   T12] Call Trace:
[  108.170511][   T12]  <TASK>
[  108.173456][   T12]  dump_stack_lvl+0x16c/0x230
[  108.178147][   T12]  ? load_image+0x3b0/0x3b0
[  108.182692][   T12]  ? show_regs_print_info+0x20/0x20
[  108.187906][   T12]  ? print_circular_bug+0x12b/0x1a0
[  108.193123][   T12]  check_noncircular+0x2bd/0x3c0
[  108.198094][   T12]  ? print_deadlock_bug+0x5d0/0x5d0
[  108.203328][   T12]  ? lockdep_lock+0xe0/0x220
[  108.207933][   T12]  ? _find_first_zero_bit+0xd3/0x100
[  108.213228][   T12]  __lock_acquire+0x2ddb/0x7c80
[  108.218089][   T12]  ? verify_lock_unused+0x140/0x140
[  108.223297][   T12]  ? verify_lock_unused+0x140/0x140
[  108.228509][   T12]  lock_acquire+0x197/0x410
[  108.233030][   T12]  ? kvfree_call_rcu+0x15a/0x780
[  108.237981][   T12]  ? __virt_addr_valid+0x18c/0x540
[  108.243103][   T12]  ? read_lock_is_recursive+0x20/0x20
[  108.248481][   T12]  ? __virt_addr_valid+0x18c/0x540
[  108.253615][   T12]  ? __virt_addr_valid+0x18c/0x540
[  108.258730][   T12]  ? __virt_addr_valid+0x469/0x540
[  108.263847][   T12]  ? __phys_addr+0xba/0x170
[  108.268352][   T12]  _raw_spin_lock+0x2e/0x40
[  108.272867][   T12]  ? kvfree_call_rcu+0x15a/0x780
[  108.277812][   T12]  kvfree_call_rcu+0x15a/0x780
[  108.282589][   T12]  ? call_rcu+0x930/0x930
[  108.286925][   T12]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  108.292829][   T12]  ? _raw_spin_unlock+0x40/0x40
[  108.297698][   T12]  trie_delete_elem+0x535/0x6a0
[  108.302570][   T12]  bpf_prog_2c29ac5cdc6b1842+0x42/0x46
[  108.308029][   T12]  bpf_trace_run3+0x1e7/0x400
[  108.312705][   T12]  ? bpf_trace_run3+0xf4/0x400
[  108.317469][   T12]  ? bpf_trace_run2+0x3c0/0x3c0
[  108.322328][   T12]  ? __bpf_trace_timer_start+0x133/0x1b0
[  108.328163][   T12]  __bpf_trace_timer_start+0x14a/0x1b0
[  108.333648][   T12]  ? __bpf_trace_timer_class+0x100/0x100
[  108.339308][   T12]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  108.345228][   T12]  ? _raw_spin_unlock+0x40/0x40
[  108.350104][   T12]  ? _raw_spin_lock_irqsave+0xb4/0xf0
[  108.355492][   T12]  ? _raw_spin_lock+0x40/0x40
[  108.360193][   T12]  enqueue_timer+0x398/0x530
[  108.364806][   T12]  __mod_timer+0x977/0xdb0
[  108.369240][   T12]  queue_delayed_work_on+0x12a/0x1e0
[  108.374528][   T12]  ? delayed_work_timer_fn+0x80/0x80
[  108.379815][   T12]  ? batadv_nc_process_nc_paths+0xba/0x390
[  108.385633][   T12]  ? __msecs_to_jiffies+0x1e/0x50
[  108.390663][   T12]  ? batadv_nc_worker+0x4f8/0x610
[  108.395709][   T12]  ? process_scheduled_works+0x957/0x15b0
[  108.401432][   T12]  process_scheduled_works+0xa45/0x15b0
[  108.406994][   T12]  ? assign_work+0x400/0x400
[  108.411590][   T12]  ? assign_work+0x39e/0x400
[  108.416198][   T12]  worker_thread+0xa55/0xfc0
[  108.420810][   T12]  kthread+0x2fa/0x390
[  108.424883][   T12]  ? pr_cont_work+0x560/0x560
[  108.429571][   T12]  ? kthread_blkcg+0xd0/0xd0
[  108.434163][   T12]  ret_from_fork+0x48/0x80
[  108.438590][   T12]  ? kthread_blkcg+0xd0/0xd0
[  108.443186][   T12]  ret_from_fork_asm+0x11/0x20
[  108.447970][   T12]  </TASK>
[  108.852053][ T5103] Bluetooth: hci0: command tx timeout
[  110.934062][ T5103] Bluetooth: hci0: command tx timeout
2025/07/31 02:43:56 executed programs: 192
2025/07/31 02:44:01 executed programs: 432