Warning: Permanently added '10.128.0.98' (ED25519) to the list of known hosts. 2024/12/20 07:05:43 ignoring optional flag "sandboxArg"="0" 2024/12/20 07:05:44 parsed 1 programs [ 302.691816][ T5850] cgroup: Unknown subsys name 'net' [ 302.841856][ T5850] cgroup: Unknown subsys name 'cpuset' [ 302.850103][ T5850] cgroup: Unknown subsys name 'rlimit' [ 304.095557][ T5850] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 306.383662][ T5860] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 306.924441][ T54] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 306.934707][ T54] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 306.942569][ T54] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 306.952182][ T54] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 306.961151][ T54] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 306.969010][ T54] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 307.166157][ T3538] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 307.181676][ T3538] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 307.210407][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 307.218510][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 308.527705][ T5913] chnl_net:caif_netlink_parms(): no params data found [ 308.613263][ T5913] bridge0: port 1(bridge_slave_0) entered blocking state [ 308.620722][ T5913] bridge0: port 1(bridge_slave_0) entered disabled state [ 308.627919][ T5913] bridge_slave_0: entered allmulticast mode [ 308.635507][ T5913] bridge_slave_0: entered promiscuous mode [ 308.644366][ T5913] bridge0: port 2(bridge_slave_1) entered blocking state [ 308.652677][ T5913] bridge0: port 2(bridge_slave_1) entered disabled state [ 308.660438][ T5913] bridge_slave_1: entered allmulticast mode [ 308.666960][ T5913] bridge_slave_1: entered promiscuous mode [ 308.695571][ T5913] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 308.722326][ T5913] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 308.746411][ T5913] team0: Port device team_slave_0 added [ 308.759058][ T5913] team0: Port device team_slave_1 added [ 308.787230][ T5913] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 308.794604][ T5913] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 308.820573][ T5913] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 308.836003][ T5913] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 308.843078][ T5913] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 308.869455][ T5913] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 308.900158][ T5913] hsr_slave_0: entered promiscuous mode [ 308.906796][ T5913] hsr_slave_1: entered promiscuous mode [ 309.011323][ T5913] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 309.021518][ T5913] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 309.031123][ T5913] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 309.041278][ T5913] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 309.064310][ T5913] bridge0: port 2(bridge_slave_1) entered blocking state [ 309.071547][ T5913] bridge0: port 2(bridge_slave_1) entered forwarding state [ 309.079669][ T5913] bridge0: port 1(bridge_slave_0) entered blocking state [ 309.086772][ T5913] bridge0: port 1(bridge_slave_0) entered forwarding state [ 309.132186][ T5913] 8021q: adding VLAN 0 to HW filter on device bond0 [ 309.148254][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 309.157890][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 309.174873][ T5913] 8021q: adding VLAN 0 to HW filter on device team0 [ 309.192012][ T1337] bridge0: port 1(bridge_slave_0) entered blocking state [ 309.199190][ T1337] bridge0: port 1(bridge_slave_0) entered forwarding state [ 309.212726][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 309.219862][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 309.336792][ T5913] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 309.373343][ T5913] veth0_vlan: entered promiscuous mode [ 309.385243][ T5913] veth1_vlan: entered promiscuous mode [ 309.406448][ T5913] veth0_macvtap: entered promiscuous mode [ 309.415024][ T5913] veth1_macvtap: entered promiscuous mode [ 309.434549][ T5913] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 309.450277][ T5913] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 309.462037][ T5913] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 309.471542][ T5913] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 309.481513][ T5913] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 309.490301][ T5913] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 309.595683][ T5913] syz-executor (5913) used greatest stack depth: 17688 bytes left [ 309.656271][ T35] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 309.742426][ T35] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 309.811311][ T35] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 309.872823][ T35] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 2024/12/20 07:05:54 executed programs: 0 [ 310.737693][ T5142] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 310.745987][ T5142] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 310.754225][ T5142] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 310.764613][ T5142] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 310.772603][ T5142] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 310.780462][ T5142] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 310.886386][ T5947] chnl_net:caif_netlink_parms(): no params data found [ 310.936696][ T5947] bridge0: port 1(bridge_slave_0) entered blocking state [ 310.943969][ T5947] bridge0: port 1(bridge_slave_0) entered disabled state [ 310.951238][ T5947] bridge_slave_0: entered allmulticast mode [ 310.957883][ T5947] bridge_slave_0: entered promiscuous mode [ 310.966099][ T5947] bridge0: port 2(bridge_slave_1) entered blocking state [ 310.974027][ T5947] bridge0: port 2(bridge_slave_1) entered disabled state [ 310.981392][ T5947] bridge_slave_1: entered allmulticast mode [ 310.987962][ T5947] bridge_slave_1: entered promiscuous mode [ 311.013448][ T5947] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 311.025110][ T5947] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 311.054755][ T5947] team0: Port device team_slave_0 added [ 311.063397][ T5947] team0: Port device team_slave_1 added [ 311.083402][ T5947] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 311.091153][ T5947] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 311.117406][ T5947] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 311.130129][ T5947] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 311.137090][ T5947] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 311.163509][ T5947] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 311.196483][ T5947] hsr_slave_0: entered promiscuous mode [ 311.203209][ T5947] hsr_slave_1: entered promiscuous mode [ 311.209660][ T5947] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 311.217457][ T5947] Cannot create hsr debugfs directory [ 312.839351][ T54] Bluetooth: hci0: command tx timeout [ 313.005453][ T35] bridge_slave_1: left allmulticast mode [ 313.012213][ T35] bridge_slave_1: left promiscuous mode [ 313.019215][ T35] bridge0: port 2(bridge_slave_1) entered disabled state [ 313.032566][ T35] bridge_slave_0: left allmulticast mode [ 313.039697][ T35] bridge_slave_0: left promiscuous mode [ 313.045444][ T35] bridge0: port 1(bridge_slave_0) entered disabled state [ 313.292922][ T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 313.303962][ T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 313.314932][ T35] bond0 (unregistering): Released all slaves [ 313.440500][ T35] hsr_slave_0: left promiscuous mode [ 313.446516][ T35] hsr_slave_1: left promiscuous mode [ 313.454516][ T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 313.466775][ T35] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 313.475615][ T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 313.485702][ T35] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 313.506341][ T35] veth1_macvtap: left promiscuous mode [ 313.512406][ T35] veth0_macvtap: left promiscuous mode [ 313.518031][ T35] veth1_vlan: left promiscuous mode [ 313.524172][ T35] veth0_vlan: left promiscuous mode [ 313.862250][ T35] team0 (unregistering): Port device team_slave_1 removed [ 313.892428][ T35] team0 (unregistering): Port device team_slave_0 removed [ 314.368293][ T5947] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 314.380510][ T5947] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 314.392188][ T5947] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 314.402616][ T5947] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 314.612051][ T5947] 8021q: adding VLAN 0 to HW filter on device bond0 [ 314.644099][ T5947] 8021q: adding VLAN 0 to HW filter on device team0 [ 314.659090][ T1309] bridge0: port 1(bridge_slave_0) entered blocking state [ 314.666282][ T1309] bridge0: port 1(bridge_slave_0) entered forwarding state [ 314.706546][ T3538] bridge0: port 2(bridge_slave_1) entered blocking state [ 314.713756][ T3538] bridge0: port 2(bridge_slave_1) entered forwarding state [ 314.919155][ T54] Bluetooth: hci0: command tx timeout [ 314.967543][ T5947] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 315.013879][ T5947] veth0_vlan: entered promiscuous mode [ 315.027775][ T5947] veth1_vlan: entered promiscuous mode [ 315.061660][ T5947] veth0_macvtap: entered promiscuous mode [ 315.072507][ T5947] veth1_macvtap: entered promiscuous mode [ 315.090334][ T5947] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 315.104027][ T5947] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 315.115616][ T5947] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 315.124461][ T5947] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 315.133590][ T5947] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 315.142677][ T5947] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 315.190999][ T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 315.203139][ T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 315.223654][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 315.231747][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 315.264248][ T6003] netlink: 'syz.0.16': attribute type 10 has an invalid length. [ 315.291606][ T6003] team0: Port device wlan1 added [ 315.317763][ T6004] netlink: 'syz.0.17': attribute type 10 has an invalid length. [ 315.353057][ T6005] netlink: 'syz.0.18': attribute type 10 has an invalid length. [ 315.382007][ T6006] netlink: 'syz.0.19': attribute type 10 has an invalid length. [ 315.413320][ T6007] netlink: 'syz.0.20': attribute type 10 has an invalid length. [ 315.442133][ T6008] netlink: 'syz.0.21': attribute type 10 has an invalid length. [ 315.470340][ T6009] netlink: 'syz.0.22': attribute type 10 has an invalid length. [ 315.492718][ T6010] netlink: 'syz.0.23': attribute type 10 has an invalid length. [ 315.518040][ T6011] netlink: 'syz.0.24': attribute type 10 has an invalid length. [ 315.546438][ T6012] netlink: 'syz.0.25': attribute type 10 has an invalid length. 2024/12/20 07:05:59 executed programs: 19 [ 316.998672][ T54] Bluetooth: hci0: command tx timeout [ 317.402509][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.409206][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 319.079638][ T54] Bluetooth: hci0: command tx timeout [ 320.294942][ T6278] validate_nla: 265 callbacks suppressed [ 320.294956][ T6278] netlink: 'syz.0.291': attribute type 10 has an invalid length. [ 320.318701][ T6279] netlink: 'syz.0.292': attribute type 10 has an invalid length. [ 320.336385][ T6280] netlink: 'syz.0.293': attribute type 10 has an invalid length. [ 320.375151][ T6281] netlink: 'syz.0.294': attribute type 10 has an invalid length. [ 320.393340][ T6282] netlink: 'syz.0.295': attribute type 10 has an invalid length. [ 320.410924][ T6283] netlink: 'syz.0.296': attribute type 10 has an invalid length. [ 320.433650][ T6284] netlink: 'syz.0.297': attribute type 10 has an invalid length. [ 320.453140][ T6285] netlink: 'syz.0.298': attribute type 10 has an invalid length. [ 320.471963][ T6286] netlink: 'syz.0.299': attribute type 10 has an invalid length. [ 320.494016][ T6287] netlink: 'syz.0.300': attribute type 10 has an invalid length. 2024/12/20 07:06:04 executed programs: 296 [ 325.303766][ T6561] validate_nla: 272 callbacks suppressed [ 325.303780][ T6561] netlink: 'syz.0.573': attribute type 10 has an invalid length. [ 325.326865][ T6562] netlink: 'syz.0.574': attribute type 10 has an invalid length. [ 325.344101][ T6563] netlink: 'syz.0.575': attribute type 10 has an invalid length. [ 325.374788][ T6564] netlink: 'syz.0.576': attribute type 10 has an invalid length. [ 325.393393][ T6565] netlink: 'syz.0.577': attribute type 10 has an invalid length. [ 325.410544][ T6566] netlink: 'syz.0.578': attribute type 10 has an invalid length. [ 325.433789][ T6567] netlink: 'syz.0.579': attribute type 10 has an invalid length. [ 325.452036][ T6568] netlink: 'syz.0.580': attribute type 10 has an invalid length. [ 325.469151][ T6569] netlink: 'syz.0.581': attribute type 10 has an invalid length. [ 325.504205][ T6570] netlink: 'syz.0.582': attribute type 10 has an invalid length. 2024/12/20 07:06:09 executed programs: 578 [ 326.154074][ T5142] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 326.164607][ T5142] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 326.173214][ T5142] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 326.182863][ T5142] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 326.191343][ T5142] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 326.200041][ T5142] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 326.292085][ T6607] chnl_net:caif_netlink_parms(): no params data found [ 326.344848][ T52] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 326.365868][ T6607] bridge0: port 1(bridge_slave_0) entered blocking state [ 326.373309][ T6607] bridge0: port 1(bridge_slave_0) entered disabled state [ 326.380635][ T6607] bridge_slave_0: entered allmulticast mode [ 326.387190][ T6607] bridge_slave_0: entered promiscuous mode [ 326.396020][ T6607] bridge0: port 2(bridge_slave_1) entered blocking state [ 326.403350][ T6607] bridge0: port 2(bridge_slave_1) entered disabled state [ 326.410938][ T6607] bridge_slave_1: entered allmulticast mode [ 326.417505][ T6607] bridge_slave_1: entered promiscuous mode [ 326.432166][ T52] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 326.460247][ T6607] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 326.472742][ T6607] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 326.488862][ T52] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 326.514340][ T6607] team0: Port device team_slave_0 added [ 326.523262][ T6607] team0: Port device team_slave_1 added [ 326.546701][ T52] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 326.565862][ T6607] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 326.573261][ T6607] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 326.599217][ T6607] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 326.610887][ T6607] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 326.617840][ T6607] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 326.643775][ T6607] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 326.677270][ T6607] hsr_slave_0: entered promiscuous mode [ 326.683945][ T6607] hsr_slave_1: entered promiscuous mode [ 326.754147][ T52] bridge_slave_1: left allmulticast mode [ 326.764050][ T52] bridge_slave_1: left promiscuous mode [ 326.770390][ T52] bridge0: port 2(bridge_slave_1) entered disabled state [ 326.781683][ T52] bridge_slave_0: left allmulticast mode [ 326.787345][ T52] bridge_slave_0: left promiscuous mode [ 326.793192][ T52] bridge0: port 1(bridge_slave_0) entered disabled state [ 327.007868][ T52] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 327.020758][ T52] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 327.030726][ T52] bond0 (unregistering): Released all slaves [ 327.124524][ T52] [ 327.126875][ T52] ====================================================== [ 327.133877][ T52] WARNING: possible circular locking dependency detected [ 327.140887][ T52] 6.13.0-rc3-syzkaller-g8eef6ac4d70e #0 Not tainted [ 327.147448][ T52] ------------------------------------------------------ [ 327.154443][ T52] kworker/u8:3/52 is trying to acquire lock: [ 327.160407][ T52] ffff8880725a8e00 (team->team_lock_key#2){+.+.}-{4:4}, at: team_del_slave+0x32/0x1d0 [ 327.169981][ T52] [ 327.169981][ T52] but task is already holding lock: [ 327.177321][ T52] ffff888033e70768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0x12b/0x700 [ 327.187657][ T52] [ 327.187657][ T52] which lock already depends on the new lock. [ 327.187657][ T52] [ 327.198049][ T52] [ 327.198049][ T52] the existing dependency chain (in reverse order) is: [ 327.207049][ T52] [ 327.207049][ T52] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 327.214759][ T52] lock_acquire+0x1ed/0x550 [ 327.219768][ T52] __mutex_lock+0x1ac/0xee0 [ 327.224776][ T52] ieee80211_open+0xe7/0x200 [ 327.229868][ T52] __dev_open+0x2d3/0x450 [ 327.234702][ T52] dev_open+0xae/0x1b0 [ 327.239275][ T52] team_add_slave+0x9c8/0x2760 [ 327.244542][ T52] do_setlink+0xe40/0x4210 [ 327.249462][ T52] rtnl_newlink+0x1519/0x2150 [ 327.254641][ T52] rtnetlink_rcv_msg+0x791/0xcf0 [ 327.260084][ T52] netlink_rcv_skb+0x1e3/0x430 [ 327.265348][ T52] netlink_unicast+0x7f6/0x990 [ 327.270621][ T52] netlink_sendmsg+0x8e4/0xcb0 [ 327.275882][ T52] __sock_sendmsg+0x221/0x270 [ 327.281078][ T52] ____sys_sendmsg+0x52a/0x7e0 [ 327.286342][ T52] __sys_sendmsg+0x269/0x350 [ 327.291435][ T52] do_syscall_64+0xf3/0x230 [ 327.296445][ T52] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 327.302845][ T52] [ 327.302845][ T52] -> #0 (team->team_lock_key#2){+.+.}-{4:4}: [ 327.310996][ T52] validate_chain+0x18ef/0x5920 [ 327.316382][ T52] __lock_acquire+0x1397/0x2100 [ 327.321738][ T52] lock_acquire+0x1ed/0x550 [ 327.326743][ T52] __mutex_lock+0x1ac/0xee0 [ 327.331752][ T52] team_del_slave+0x32/0x1d0 [ 327.336846][ T52] team_device_event+0x200/0x5b0 [ 327.342285][ T52] notifier_call_chain+0x1a5/0x3f0 [ 327.347898][ T52] unregister_netdevice_many_notify+0xedd/0x1da0 [ 327.354727][ T52] unregister_netdevice_queue+0x303/0x370 [ 327.360949][ T52] _cfg80211_unregister_wdev+0x163/0x590 [ 327.367082][ T52] ieee80211_remove_interfaces+0x4db/0x700 [ 327.373389][ T52] ieee80211_unregister_hw+0x5d/0x2c0 [ 327.379263][ T52] mac80211_hwsim_del_radio+0x2c4/0x4c0 [ 327.385327][ T52] hwsim_exit_net+0x5c1/0x670 [ 327.390520][ T52] cleanup_net+0x802/0xd50 [ 327.395466][ T52] process_scheduled_works+0xa66/0x1840 [ 327.401524][ T52] worker_thread+0x870/0xd30 [ 327.406618][ T52] kthread+0x2f0/0x390 [ 327.411192][ T52] ret_from_fork+0x4b/0x80 [ 327.416111][ T52] ret_from_fork_asm+0x1a/0x30 [ 327.421377][ T52] [ 327.421377][ T52] other info that might help us debug this: [ 327.421377][ T52] [ 327.431599][ T52] Possible unsafe locking scenario: [ 327.431599][ T52] [ 327.439037][ T52] CPU0 CPU1 [ 327.444395][ T52] ---- ---- [ 327.449745][ T52] lock(&rdev->wiphy.mtx); [ 327.454235][ T52] lock(team->team_lock_key#2); [ 327.461684][ T52] lock(&rdev->wiphy.mtx); [ 327.468693][ T52] lock(team->team_lock_key#2); [ 327.473619][ T52] [ 327.473619][ T52] *** DEADLOCK *** [ 327.473619][ T52] [ 327.481741][ T52] 5 locks held by kworker/u8:3/52: [ 327.486827][ T52] #0: ffff88801baed948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840 [ 327.497683][ T52] #1: ffffc90000bc7d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840 [ 327.508193][ T52] #2: ffffffff8fca6490 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0x16a/0xd50 [ 327.517568][ T52] #3: ffffffff8fcb2948 (rtnl_mutex){+.+.}-{4:4}, at: ieee80211_unregister_hw+0x55/0x2c0 [ 327.527383][ T52] #4: ffff888033e70768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0x12b/0x700 [ 327.538148][ T52] [ 327.538148][ T52] stack backtrace: [ 327.544039][ T52] CPU: 0 UID: 0 PID: 52 Comm: kworker/u8:3 Not tainted 6.13.0-rc3-syzkaller-g8eef6ac4d70e #0 [ 327.554167][ T52] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 327.564237][ T52] Workqueue: netns cleanup_net [ 327.569002][ T52] Call Trace: [ 327.572265][ T52] [ 327.575183][ T52] dump_stack_lvl+0x241/0x360 [ 327.579852][ T52] ? __pfx_dump_stack_lvl+0x10/0x10 [ 327.585038][ T52] ? __pfx__printk+0x10/0x10 [ 327.589619][ T52] print_circular_bug+0x13a/0x1b0 [ 327.594627][ T52] check_noncircular+0x36a/0x4a0 [ 327.599566][ T52] ? __pfx_check_noncircular+0x10/0x10 [ 327.605006][ T52] ? lockdep_lock+0x123/0x2b0 [ 327.609669][ T52] ? stack_trace_save+0x118/0x1d0 [ 327.614676][ T52] validate_chain+0x18ef/0x5920 [ 327.619517][ T52] ? __pfx_validate_chain+0x10/0x10 [ 327.624696][ T52] ? __lock_acquire+0x1397/0x2100 [ 327.629709][ T52] ? __pfx_validate_chain+0x10/0x10 [ 327.634894][ T52] ? mark_lock+0x9a/0x360 [ 327.639212][ T52] ? mark_lock+0x9a/0x360 [ 327.643524][ T52] __lock_acquire+0x1397/0x2100 [ 327.648366][ T52] lock_acquire+0x1ed/0x550 [ 327.652861][ T52] ? team_del_slave+0x32/0x1d0 [ 327.657608][ T52] ? __pfx_lock_acquire+0x10/0x10 [ 327.662613][ T52] ? __pfx___might_resched+0x10/0x10 [ 327.667887][ T52] __mutex_lock+0x1ac/0xee0 [ 327.672377][ T52] ? team_del_slave+0x32/0x1d0 [ 327.677125][ T52] ? trace_contention_end+0x3c/0x120 [ 327.682396][ T52] ? __mutex_lock+0x37f/0xee0 [ 327.687058][ T52] ? lockdep_hardirqs_on+0x99/0x150 [ 327.692240][ T52] ? team_del_slave+0x32/0x1d0 [ 327.696988][ T52] ? __pfx___mutex_lock+0x10/0x10 [ 327.701999][ T52] ? __mutex_unlock_slowpath+0x21e/0x790 [ 327.707642][ T52] ? __asan_memset+0x23/0x50 [ 327.712225][ T52] team_del_slave+0x32/0x1d0 [ 327.716831][ T52] team_device_event+0x200/0x5b0 [ 327.721761][ T52] ? notifier_call_chain+0x15a/0x3f0 [ 327.727034][ T52] notifier_call_chain+0x1a5/0x3f0 [ 327.732130][ T52] unregister_netdevice_many_notify+0xedd/0x1da0 [ 327.738457][ T52] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 327.745203][ T52] ? kernfs_remove_by_name_ns+0x11b/0x160 [ 327.750911][ T52] ? __pfx_lock_release+0x10/0x10 [ 327.755918][ T52] unregister_netdevice_queue+0x303/0x370 [ 327.761620][ T52] ? __pfx_up_write+0x10/0x10 [ 327.766280][ T52] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 327.772502][ T52] ? kernfs_remove_by_name_ns+0x11b/0x160 [ 327.778207][ T52] _cfg80211_unregister_wdev+0x163/0x590 [ 327.783823][ T52] ieee80211_remove_interfaces+0x4db/0x700 [ 327.789618][ T52] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 327.795928][ T52] ? rcu_is_watching+0x15/0xb0 [ 327.800678][ T52] ieee80211_unregister_hw+0x5d/0x2c0 [ 327.806033][ T52] mac80211_hwsim_del_radio+0x2c4/0x4c0 [ 327.811567][ T52] ? __pfx_mac80211_hwsim_del_radio+0x10/0x10 [ 327.817641][ T52] hwsim_exit_net+0x5c1/0x670 [ 327.822307][ T52] ? __pfx_hwsim_exit_net+0x10/0x10 [ 327.827487][ T52] ? __ip_vs_dev_cleanup_batch+0x239/0x260 [ 327.833278][ T52] cleanup_net+0x802/0xd50 [ 327.837676][ T52] ? __pfx_cleanup_net+0x10/0x10 [ 327.842594][ T52] ? process_scheduled_works+0x976/0x1840 [ 327.848292][ T52] process_scheduled_works+0xa66/0x1840 [ 327.853824][ T52] ? __pfx_process_scheduled_works+0x10/0x10 [ 327.859786][ T52] ? assign_work+0x364/0x3d0 [ 327.864355][ T52] worker_thread+0x870/0xd30 [ 327.868928][ T52] ? __kthread_parkme+0x169/0x1d0 [ 327.873931][ T52] ? __pfx_worker_thread+0x10/0x10 [ 327.879022][ T52] kthread+0x2f0/0x390 [ 327.883074][ T52] ? __pfx_worker_thread+0x10/0x10 [ 327.888164][ T52] ? __pfx_kthread+0x10/0x10 [ 327.892750][ T52] ret_from_fork+0x4b/0x80 [ 327.897149][ T52] ? __pfx_kthread+0x10/0x10 [ 327.901721][ T52] ret_from_fork_asm+0x1a/0x30 [ 327.906488][ T52] [ 327.912260][ T52] team0: Port device wlan1 removed [ 328.052129][ T52] hsr_slave_0: left promiscuous mode [ 328.057860][ T52] hsr_slave_1: left promiscuous mode [ 328.066195][ T52] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 328.073687][ T52] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 328.083800][ T52] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 328.091288][ T52] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 328.101530][ T52] veth1_macvtap: left promiscuous mode [ 328.107075][ T52] veth0_macvtap: left promiscuous mode [ 328.113541][ T52] veth1_vlan: left promiscuous mode [ 328.118880][ T52] veth0_vlan: left promiscuous mode [ 328.201562][ T52] team0 (unregistering): Port device team_slave_1 removed [ 328.221469][ T52] team0 (unregistering): Port device team_slave_0 removed [ 328.288448][ T54] Bluetooth: hci0: command tx timeout [ 328.413674][ T6607] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 328.434595][ T6607] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 328.455822][ T6607] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 328.464956][ T6607] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 328.548882][ T6607] 8021q: adding VLAN 0 to HW filter on device bond0 [ 328.562417][ T6607] 8021q: adding VLAN 0 to HW filter on device team0 [ 328.571790][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 328.578930][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 328.593102][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 328.600237][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 328.672346][ T6607] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 328.699644][ T6607] veth0_vlan: entered promiscuous mode [ 328.707841][ T6607] veth1_vlan: entered promiscuous mode [ 328.723245][ T6607] veth0_macvtap: entered promiscuous mode [ 328.731290][ T6607] veth1_macvtap: entered promiscuous mode [ 328.743932][ T6607] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 328.754859][ T6607] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 328.764498][ T6607] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 328.773287][ T6607] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 328.782331][ T6607] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 328.791060][ T6607] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 328.813052][ T6607] ieee80211 phy7: Selected rate control algorithm 'minstrel_ht' [ 328.829118][ T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 328.829990][ T6607] ieee80211 phy8: Selected rate control algorithm 'minstrel_ht' [ 328.836954][ T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 328.861661][ T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 328.869577][ T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 328.894205][ T6648] team0: Port device wlan1 added [ 330.313890][ T6734] validate_nla: 119 callbacks suppressed [ 330.313904][ T6734] netlink: 'syz.0.702': attribute type 10 has an invalid length. [ 330.351864][ T6735] netlink: 'syz.0.703': attribute type 10 has an invalid length. [ 330.359877][ T54] Bluetooth: hci0: command tx timeout [ 330.370942][ T6736] netlink: 'syz.0.704': attribute type 10 has an invalid length. [ 330.385123][ T6737] netlink: 'syz.0.705': attribute type 10 has an invalid length. [ 330.412883][ T6738] netlink: 'syz.0.706': attribute type 10 has an invalid length. [ 330.427397][ T6739] netlink: 'syz.0.707': attribute type 10 has an invalid length. [ 330.442085][ T6740] netlink: 'syz.0.708': attribute type 10 has an invalid length. [ 330.472084][ T6741] netlink: 'syz.0.709': attribute type 10 has an invalid length. [ 330.485901][ T6742] netlink: 'syz.0.710': attribute type 10 has an invalid length. [ 330.500361][ T6743] netlink: 'syz.0.711': attribute type 10 has an invalid length. 2024/12/20 07:06:14 executed programs: 711 [ 332.438444][ T54] Bluetooth: hci0: command tx timeout [ 334.519344][ T54] Bluetooth: hci0: command tx timeout [ 335.332268][ T7030] validate_nla: 285 callbacks suppressed [ 335.332282][ T7030] netlink: 'syz.0.997': attribute type 10 has an invalid length. [ 335.352687][ T7031] netlink: 'syz.0.998': attribute type 10 has an invalid length. [ 335.366590][ T7032] netlink: 'syz.0.999': attribute type 10 has an invalid length. [ 335.392786][ T7033] netlink: 'syz.0.1000': attribute type 10 has an invalid length. [ 335.407181][ T7034] netlink: 'syz.0.1001': attribute type 10 has an invalid length. [ 335.420998][ T7035] netlink: 'syz.0.1002': attribute type 10 has an invalid length. [ 335.452157][ T7036] netlink: 'syz.0.1003': attribute type 10 has an invalid length. [ 335.466414][ T7037] netlink: 'syz.0.1004': attribute type 10 has an invalid length. [ 335.480091][ T7038] netlink: 'syz.0.1005': attribute type 10 has an invalid length. [ 335.512098][ T7039] netlink: 'syz.0.1006': attribute type 10 has an invalid length. 2024/12/20 07:06:19 executed programs: 1008