Warning: Permanently added '10.128.0.212' (ED25519) to the list of known hosts. [ 74.079035][ T4247] chnl_net:caif_netlink_parms(): no params data found [ 74.132178][ T4247] bridge0: port 1(bridge_slave_0) entered blocking state [ 74.139555][ T4247] bridge0: port 1(bridge_slave_0) entered disabled state [ 74.149373][ T4247] device bridge_slave_0 entered promiscuous mode [ 74.159022][ T4247] bridge0: port 2(bridge_slave_1) entered blocking state [ 74.166485][ T4247] bridge0: port 2(bridge_slave_1) entered disabled state [ 74.174701][ T4247] device bridge_slave_1 entered promiscuous mode [ 74.200045][ T4247] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 74.211442][ T4247] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 74.237080][ T4247] team0: Port device team_slave_0 added [ 74.245347][ T4247] team0: Port device team_slave_1 added [ 74.267264][ T4247] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 74.274562][ T4247] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 74.300612][ T4247] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 74.313217][ T4247] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 74.320296][ T4247] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 74.346249][ T4247] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 74.380449][ T4247] device hsr_slave_0 entered promiscuous mode [ 74.387711][ T4247] device hsr_slave_1 entered promiscuous mode [ 74.496428][ T4247] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 74.507615][ T4247] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 74.517717][ T4247] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 74.527940][ T4247] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 74.552461][ T4247] bridge0: port 2(bridge_slave_1) entered blocking state [ 74.559725][ T4247] bridge0: port 2(bridge_slave_1) entered forwarding state [ 74.568058][ T4247] bridge0: port 1(bridge_slave_0) entered blocking state [ 74.575240][ T4247] bridge0: port 1(bridge_slave_0) entered forwarding state [ 74.628790][ T4247] 8021q: adding VLAN 0 to HW filter on device bond0 [ 74.642823][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 74.655441][ T75] bridge0: port 1(bridge_slave_0) entered disabled state [ 74.664568][ T75] bridge0: port 2(bridge_slave_1) entered disabled state [ 74.673341][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 74.687970][ T4247] 8021q: adding VLAN 0 to HW filter on device team0 [ 74.700971][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 74.709610][ T75] bridge0: port 1(bridge_slave_0) entered blocking state [ 74.716734][ T75] bridge0: port 1(bridge_slave_0) entered forwarding state [ 74.737034][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 74.745863][ T75] bridge0: port 2(bridge_slave_1) entered blocking state [ 74.752959][ T75] bridge0: port 2(bridge_slave_1) entered forwarding state [ 74.766888][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 74.776128][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 74.790146][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 74.803312][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 74.817757][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 74.829596][ T4247] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 74.847750][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 74.856505][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 74.870480][ T4247] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 74.889400][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 74.909158][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 74.918750][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 74.928076][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 74.938591][ T4247] device veth0_vlan entered promiscuous mode [ 74.952147][ T4247] device veth1_vlan entered promiscuous mode [ 74.972871][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 74.981147][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 74.990013][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 75.000960][ T4247] device veth0_macvtap entered promiscuous mode [ 75.010756][ T4247] device veth1_macvtap entered promiscuous mode [ 75.028374][ T4247] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 75.037515][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 75.047200][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 75.060562][ T4247] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 75.069223][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready executing program [ 75.080844][ T4247] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.090542][ T4247] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.099458][ T4247] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.108593][ T4247] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.177532][ T4247] [ 75.179929][ T4247] ====================================================== [ 75.186976][ T4247] WARNING: possible circular locking dependency detected [ 75.194093][ T4247] 6.1.135-syzkaller #0 Not tainted [ 75.199204][ T4247] ------------------------------------------------------ [ 75.206306][ T4247] syz-executor345/4247 is trying to acquire lock: [ 75.212713][ T4247] ffff88802f850910 ((work_completion)(&new_smc->smc_listen_work)){+.+.}-{0:0}, at: __flush_work+0xd4/0xa60 [ 75.224129][ T4247] [ 75.224129][ T4247] but task is already holding lock: [ 75.231487][ T4247] ffff8880773f8130 (sk_lock-AF_SMC/1){+.+.}-{0:0}, at: smc_release+0x251/0x530 [ 75.240479][ T4247] [ 75.240479][ T4247] which lock already depends on the new lock. [ 75.240479][ T4247] [ 75.250879][ T4247] [ 75.250879][ T4247] the existing dependency chain (in reverse order) is: [ 75.259890][ T4247] [ 75.259890][ T4247] -> #1 (sk_lock-AF_SMC/1){+.+.}-{0:0}: [ 75.267630][ T4247] lock_sock_nested+0x44/0x100 [ 75.272923][ T4247] smc_listen_out+0x109/0x3d0 [ 75.278129][ T4247] process_one_work+0x898/0x1160 [ 75.283701][ T4247] worker_thread+0xaa2/0x1250 [ 75.288993][ T4247] kthread+0x29d/0x330 [ 75.293598][ T4247] ret_from_fork+0x1f/0x30 [ 75.298548][ T4247] [ 75.298548][ T4247] -> #0 ((work_completion)(&new_smc->smc_listen_work)){+.+.}-{0:0}: [ 75.308729][ T4247] __lock_acquire+0x2cf8/0x7c50 [ 75.314143][ T4247] lock_acquire+0x1b4/0x490 [ 75.319179][ T4247] __flush_work+0xed/0xa60 [ 75.324130][ T4247] __cancel_work_timer+0x3ac/0x520 [ 75.329861][ T4247] smc_clcsock_release+0x5c/0xe0 [ 75.335426][ T4247] __smc_release+0x661/0x7d0 [ 75.340574][ T4247] smc_close_non_accepted+0xd1/0x1f0 [ 75.346395][ T4247] smc_close_active+0xb00/0xea0 [ 75.351783][ T4247] __smc_release+0x8d/0x7d0 [ 75.356818][ T4247] smc_release+0x2ca/0x530 [ 75.361851][ T4247] sock_close+0xd5/0x240 [ 75.366629][ T4247] __fput+0x22c/0x920 [ 75.371152][ T4247] task_work_run+0x1ca/0x250 [ 75.376284][ T4247] do_exit+0x936/0x2400 [ 75.380979][ T4247] do_group_exit+0x217/0x2d0 [ 75.386109][ T4247] __x64_sys_exit_group+0x3b/0x40 [ 75.391683][ T4247] do_syscall_64+0x4c/0xa0 [ 75.396633][ T4247] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 75.403069][ T4247] [ 75.403069][ T4247] other info that might help us debug this: [ 75.403069][ T4247] [ 75.413301][ T4247] Possible unsafe locking scenario: [ 75.413301][ T4247] [ 75.420752][ T4247] CPU0 CPU1 [ 75.426118][ T4247] ---- ---- [ 75.431481][ T4247] lock(sk_lock-AF_SMC/1); [ 75.435997][ T4247] lock((work_completion)(&new_smc->smc_listen_work)); [ 75.445459][ T4247] lock(sk_lock-AF_SMC/1); [ 75.452496][ T4247] lock((work_completion)(&new_smc->smc_listen_work)); [ 75.459436][ T4247] [ 75.459436][ T4247] *** DEADLOCK *** [ 75.459436][ T4247] [ 75.467582][ T4247] 2 locks held by syz-executor345/4247: [ 75.473126][ T4247] #0: ffff888072779410 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x90/0x240 [ 75.483343][ T4247] #1: ffff8880773f8130 (sk_lock-AF_SMC/1){+.+.}-{0:0}, at: smc_release+0x251/0x530 [ 75.492765][ T4247] [ 75.492765][ T4247] stack backtrace: [ 75.498674][ T4247] CPU: 1 PID: 4247 Comm: syz-executor345 Not tainted 6.1.135-syzkaller #0 [ 75.507194][ T4247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 75.517361][ T4247] Call Trace: [ 75.520648][ T4247] [ 75.523587][ T4247] dump_stack_lvl+0x168/0x22e [ 75.528291][ T4247] ? load_image+0x3b0/0x3b0 [ 75.532799][ T4247] ? show_regs_print_info+0x12/0x12 [ 75.538041][ T4247] ? print_circular_bug+0x12b/0x1a0 [ 75.543258][ T4247] check_noncircular+0x274/0x310 [ 75.548210][ T4247] ? add_chain_block+0x940/0x940 [ 75.553161][ T4247] ? lockdep_lock+0xdc/0x1e0 [ 75.557764][ T4247] ? rcu_is_watching+0x11/0xa0 [ 75.562542][ T4247] ? lock_release+0xd4/0x910 [ 75.567146][ T4247] ? _find_first_zero_bit+0xcf/0x100 [ 75.572447][ T4247] __lock_acquire+0x2cf8/0x7c50 [ 75.577313][ T4247] ? __lock_acquire+0x7c50/0x7c50 [ 75.582385][ T4247] ? is_bpf_text_address+0x28b/0x2a0 [ 75.587693][ T4247] ? hlock_conflict+0x59/0x1f0 [ 75.592498][ T4247] ? verify_lock_unused+0x140/0x140 [ 75.597709][ T4247] ? __bfs+0x2a3/0x5c0 [ 75.601793][ T4247] ? check_path+0x40/0x40 [ 75.606240][ T4247] ? mark_lock+0x94/0x320 [ 75.610588][ T4247] ? __lock_acquire+0x13c0/0x7c50 [ 75.615813][ T4247] ? add_chain_block+0x940/0x940 [ 75.620777][ T4247] lock_acquire+0x1b4/0x490 [ 75.625315][ T4247] ? __flush_work+0xd4/0xa60 [ 75.629928][ T4247] ? __lock_acquire+0x13c0/0x7c50 [ 75.634963][ T4247] ? read_lock_is_recursive+0x10/0x10 [ 75.640351][ T4247] ? verify_lock_unused+0x140/0x140 [ 75.645737][ T4247] ? __flush_work+0xd4/0xa60 [ 75.650358][ T4247] __flush_work+0xed/0xa60 [ 75.654816][ T4247] ? __flush_work+0xd4/0xa60 [ 75.659426][ T4247] ? verify_lock_unused+0x140/0x140 [ 75.664648][ T4247] ? flush_work+0x20/0x20 [ 75.669004][ T4247] ? try_to_grab_pending+0xf1/0x840 [ 75.674221][ T4247] ? lockdep_hardirqs_off+0x70/0x100 [ 75.679523][ T4247] ? mark_lock+0x94/0x320 [ 75.683948][ T4247] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 75.690004][ T4247] ? lock_chain_count+0x20/0x20 [ 75.694901][ T4247] ? __cancel_work_timer+0x331/0x520 [ 75.700231][ T4247] __cancel_work_timer+0x3ac/0x520 [ 75.705400][ T4247] ? cancel_work_sync+0x20/0x20 [ 75.710375][ T4247] ? __smc_release+0x659/0x7d0 [ 75.715180][ T4247] ? __local_bh_enable_ip+0x12a/0x1b0 [ 75.720577][ T4247] ? lockdep_hardirqs_on+0x94/0x140 [ 75.725974][ T4247] ? __local_bh_enable_ip+0x12a/0x1b0 [ 75.731504][ T4247] ? _local_bh_enable+0xa0/0xa0 [ 75.736385][ T4247] smc_clcsock_release+0x5c/0xe0 [ 75.741452][ T4247] __smc_release+0x661/0x7d0 [ 75.746079][ T4247] ? do_raw_spin_unlock+0x11d/0x230 [ 75.751304][ T4247] smc_close_non_accepted+0xd1/0x1f0 [ 75.756612][ T4247] smc_close_active+0xb00/0xea0 [ 75.761478][ T4247] ? sock_no_sendpage_locked+0x160/0x160 [ 75.767128][ T4247] __smc_release+0x8d/0x7d0 [ 75.771671][ T4247] ? do_raw_spin_unlock+0x11d/0x230 [ 75.776924][ T4247] smc_release+0x2ca/0x530 [ 75.781364][ T4247] sock_close+0xd5/0x240 [ 75.785626][ T4247] ? sock_mmap+0x90/0x90 [ 75.789885][ T4247] __fput+0x22c/0x920 [ 75.793879][ T4247] task_work_run+0x1ca/0x250 [ 75.798483][ T4247] ? task_work_cancel+0x230/0x230 [ 75.803519][ T4247] ? do_exit+0x931/0x2400 [ 75.807864][ T4247] ? kmem_cache_free+0xf7/0x290 [ 75.812727][ T4247] do_exit+0x936/0x2400 [ 75.816988][ T4247] ? put_task_struct+0x80/0x80 [ 75.821765][ T4247] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 75.827763][ T4247] ? lock_chain_count+0x20/0x20 [ 75.832627][ T4247] ? _raw_spin_lock_irq+0xab/0xe0 [ 75.837759][ T4247] ? _raw_spin_lock_irqsave+0xf0/0xf0 [ 75.843160][ T4247] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 75.849177][ T4247] ? _raw_spin_unlock_irq+0x1f/0x40 [ 75.854396][ T4247] ? lockdep_hardirqs_on+0x94/0x140 [ 75.859627][ T4247] do_group_exit+0x217/0x2d0 [ 75.864249][ T4247] __x64_sys_exit_group+0x3b/0x40 [ 75.869296][ T4247] do_syscall_64+0x4c/0xa0 [ 75.873728][ T4247] ? clear_bhb_loop+0x45/0xa0 [ 75.878414][ T4247] ? clear_bhb_loop+0x45/0xa0 [ 75.883111][ T4247] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 75.889023][ T4247] RIP: 0033:0x7f594b9c78e9 [ 75.893458][ T4247] Code: Unable to access opcode bytes at 0x7f594b9c78bf. [ 75.900480][ T4247] RSP: 002b:00007fff6de6d728 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 75.908904][ T4247] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f594b9c78e9 [ 75.916886][ T4247] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001 [ 75.924884][ T4247] RBP: 00007f594ba47390 R08: ffffffffffffffb8 R09: 0