Warning: Permanently added '10.128.1.112' (ED25519) to the list of known hosts. 2025/07/29 19:36:36 ignoring optional flag "sandboxArg"="0" 2025/07/29 19:36:37 parsed 1 programs [ 52.853066][ T4188] cgroup: Unknown subsys name 'net' [ 52.988823][ T4188] cgroup: Unknown subsys name 'rlimit' [ 54.180088][ T4188] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS [ 56.321767][ T154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.337350][ T154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.355895][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 56.374024][ T1279] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.382717][ T1279] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.392071][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 57.494841][ T4267] chnl_net:caif_netlink_parms(): no params data found [ 57.531079][ T4267] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.539001][ T4267] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.546968][ T4267] device bridge_slave_0 entered promiscuous mode [ 57.556189][ T4267] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.563296][ T4267] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.571132][ T4267] device bridge_slave_1 entered promiscuous mode [ 57.590060][ T4267] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.600854][ T4267] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.622590][ T4267] team0: Port device team_slave_0 added [ 57.630081][ T4267] team0: Port device team_slave_1 added [ 57.646559][ T4267] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 57.653500][ T4267] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 57.680145][ T4267] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 57.692458][ T4267] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 57.699462][ T4267] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 57.725670][ T4267] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 57.752538][ T4267] device hsr_slave_0 entered promiscuous mode [ 57.759676][ T4267] device hsr_slave_1 entered promiscuous mode [ 57.835757][ T4267] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 57.846376][ T4267] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 57.873396][ T4267] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 57.882427][ T4267] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 57.904476][ T4267] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.911847][ T4267] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.919775][ T4267] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.926859][ T4267] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.978747][ T4267] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.009989][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 58.020131][ T1279] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.029808][ T1279] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.037702][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 58.050266][ T4267] 8021q: adding VLAN 0 to HW filter on device team0 [ 58.077647][ T1576] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 58.086687][ T1576] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.093788][ T1576] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.117181][ T1576] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 58.125743][ T1576] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.132860][ T1576] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.142269][ T1576] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 58.151380][ T1576] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 58.160069][ T1576] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 58.168603][ T1576] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 58.179728][ T4267] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 58.191428][ T4267] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 58.203779][ T1576] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 58.298158][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 58.305767][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 58.317879][ T4267] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 58.332904][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 58.374881][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 58.383150][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 58.391032][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 58.400085][ T4267] device veth0_vlan entered promiscuous mode [ 58.423044][ T4267] device veth1_vlan entered promiscuous mode [ 58.441467][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 58.449887][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 58.459060][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 58.471956][ T4267] device veth0_macvtap entered promiscuous mode [ 58.482312][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 58.491906][ T4267] device veth1_macvtap entered promiscuous mode [ 58.518176][ T4267] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 58.526179][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 58.535214][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 58.548641][ T4267] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 58.556537][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 58.566524][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 58.593360][ T4267] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.602595][ T4267] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.611543][ T4267] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.621543][ T4267] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.715962][ T4267] syz-executor (4267) used greatest stack depth: 20448 bytes left 2025/07/29 19:36:45 executed programs: 0 [ 59.407893][ T4292] chnl_net:caif_netlink_parms(): no params data found [ 59.466341][ T4292] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.473487][ T4292] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.482627][ T4292] device bridge_slave_0 entered promiscuous mode [ 59.492690][ T4292] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.500970][ T4292] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.510305][ T4292] device bridge_slave_1 entered promiscuous mode [ 59.539379][ T4292] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 59.553612][ T4292] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 59.581128][ T4292] team0: Port device team_slave_0 added [ 59.588735][ T4292] team0: Port device team_slave_1 added [ 59.611410][ T4292] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 59.618498][ T4292] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 59.651924][ T4292] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 59.664813][ T4292] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 59.671862][ T4292] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 59.697963][ T4292] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 59.740890][ T4292] device hsr_slave_0 entered promiscuous mode [ 59.747800][ T4292] device hsr_slave_1 entered promiscuous mode [ 59.755058][ T4292] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 59.762848][ T4292] Cannot create hsr debugfs directory [ 59.856433][ T4292] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 61.304421][ T2857] Bluetooth: hci0: command 0x0409 tx timeout [ 62.730095][ T4292] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 63.384400][ T4261] Bluetooth: hci0: command 0x041b tx timeout [ 63.938463][ T4292] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 64.009785][ T4292] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 64.199409][ T4292] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 64.208273][ T4292] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 64.225441][ T4292] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 64.234288][ T4292] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 64.289177][ T4292] 8021q: adding VLAN 0 to HW filter on device bond0 [ 64.300413][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 64.308813][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 64.319419][ T4292] 8021q: adding VLAN 0 to HW filter on device team0 [ 64.335395][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 64.345548][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 64.354356][ T144] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.361407][ T144] bridge0: port 1(bridge_slave_0) entered forwarding state [ 64.371107][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 64.387662][ T9] device hsr_slave_0 left promiscuous mode [ 64.394415][ T9] device hsr_slave_1 left promiscuous mode [ 64.400785][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 64.409060][ T9] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 64.417309][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 64.425602][ T9] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 64.433158][ T9] device bridge_slave_1 left promiscuous mode [ 64.439651][ T9] bridge0: port 2(bridge_slave_1) entered disabled state [ 64.451804][ T9] device bridge_slave_0 left promiscuous mode [ 64.459075][ T9] bridge0: port 1(bridge_slave_0) entered disabled state [ 64.474699][ T9] device veth1_macvtap left promiscuous mode [ 64.480874][ T9] device veth0_macvtap left promiscuous mode [ 64.487046][ T9] device veth1_vlan left promiscuous mode [ 64.492918][ T9] device veth0_vlan left promiscuous mode [ 64.611335][ T9] team0 (unregistering): Port device team_slave_1 removed [ 64.623778][ T9] team0 (unregistering): Port device team_slave_0 removed [ 64.636295][ T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 64.649105][ T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 64.697553][ T9] bond0 (unregistering): Released all slaves [ 64.760207][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 64.769097][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 64.777659][ T144] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.784713][ T144] bridge0: port 2(bridge_slave_1) entered forwarding state [ 64.795278][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 64.805352][ T1576] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 64.818368][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 64.827813][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 64.846545][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 64.854750][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 64.867762][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 64.877325][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 64.887015][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 64.897037][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 64.905655][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 64.916200][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 64.992354][ T1576] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 65.000472][ T1576] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 65.016157][ T4292] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 65.040409][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 65.049120][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 65.065553][ T1576] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 65.074952][ T1576] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 65.083220][ T1576] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 65.091309][ T1576] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 65.101435][ T4292] device veth0_vlan entered promiscuous mode [ 65.114119][ T4292] device veth1_vlan entered promiscuous mode [ 65.130836][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 65.139268][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 65.148239][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 65.157223][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 65.167178][ T4292] device veth0_macvtap entered promiscuous mode [ 65.178455][ T4292] device veth1_macvtap entered promiscuous mode [ 65.197905][ T4292] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 65.206281][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 65.215617][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 65.225173][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 65.234071][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 65.246053][ T4292] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 65.253980][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 65.262794][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 65.278621][ T4292] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.287837][ T4292] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.297065][ T4292] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.306840][ T4292] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.369693][ T144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.383889][ T144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.392765][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 65.407792][ T144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 2025/07/29 19:36:51 executed programs: 2 [ 65.416004][ T144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.425338][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 65.473874][ T4306] Bluetooth: hci0: command 0x040f tx timeout [ 65.494469][ T21] [ 65.496817][ T21] ====================================================== [ 65.503901][ T21] WARNING: possible circular locking dependency detected [ 65.511023][ T21] 5.15.189-syzkaller #0 Not tainted [ 65.516195][ T21] ------------------------------------------------------ [ 65.523192][ T21] kworker/1:0/21 is trying to acquire lock: [ 65.529066][ T21] ffff8880b9127e78 (krc.lock){..-.}-{2:2}, at: kvfree_call_rcu+0x186/0x7c0 [ 65.537663][ T21] [ 65.537663][ T21] but task is already holding lock: [ 65.545137][ T21] ffff88801d3af9b8 (&trie->lock){..-.}-{2:2}, at: trie_delete_elem+0x90/0x710 [ 65.553985][ T21] [ 65.553985][ T21] which lock already depends on the new lock. [ 65.553985][ T21] [ 65.564369][ T21] [ 65.564369][ T21] the existing dependency chain (in reverse order) is: [ 65.573357][ T21] [ 65.573357][ T21] -> #2 (&trie->lock){..-.}-{2:2}: [ 65.580625][ T21] _raw_spin_lock_irqsave+0xa4/0xf0 [ 65.586323][ T21] trie_delete_elem+0x90/0x710 [ 65.591582][ T21] bpf_prog_2c29ac5cdc6b1842+0x3a/0xc0c [ 65.597624][ T21] bpf_trace_run3+0x17e/0x320 [ 65.602797][ T21] enqueue_timer+0x394/0x520 [ 65.607882][ T21] __mod_timer+0x8e1/0xd20 [ 65.612792][ T21] schedule_timeout+0x157/0x280 [ 65.618137][ T21] msleep+0x31/0x50 [ 65.622445][ T21] nsim_fib_event_work+0x2643/0x3240 [ 65.628225][ T21] process_one_work+0x863/0x1000 [ 65.633676][ T21] worker_thread+0xdca/0x12a0 [ 65.638847][ T21] kthread+0x436/0x520 [ 65.643412][ T21] ret_from_fork+0x1f/0x30 [ 65.648330][ T21] [ 65.648330][ T21] -> #1 (&base->lock){-.-.}-{2:2}: [ 65.655602][ T21] _raw_spin_lock_irqsave+0xa4/0xf0 [ 65.661309][ T21] lock_timer_base+0x123/0x270 [ 65.666574][ T21] __mod_timer+0x117/0xd20 [ 65.671491][ T21] queue_delayed_work_on+0x126/0x1e0 [ 65.677285][ T21] kvfree_call_rcu+0x4a9/0x7c0 [ 65.682650][ T21] rtnl_register_internal+0x44e/0x540 [ 65.688523][ T21] rtnl_register+0x2e/0x70 [ 65.693435][ T21] ip_rt_init+0x2e0/0x3a0 [ 65.698260][ T21] ip_init+0xa/0x20 [ 65.702561][ T21] inet_init+0x28b/0x3a0 [ 65.707439][ T21] do_one_initcall+0x1ee/0x680 [ 65.712704][ T21] do_initcall_level+0x137/0x1f0 [ 65.718140][ T21] do_initcalls+0x4b/0x90 [ 65.722962][ T21] kernel_init_freeable+0x3ce/0x560 [ 65.728682][ T21] kernel_init+0x19/0x1b0 [ 65.733513][ T21] ret_from_fork+0x1f/0x30 [ 65.738425][ T21] [ 65.738425][ T21] -> #0 (krc.lock){..-.}-{2:2}: [ 65.745430][ T21] __lock_acquire+0x2c33/0x7c60 [ 65.750778][ T21] lock_acquire+0x197/0x3f0 [ 65.755779][ T21] _raw_spin_lock+0x2a/0x40 [ 65.760775][ T21] kvfree_call_rcu+0x186/0x7c0 [ 65.766029][ T21] trie_delete_elem+0x58c/0x710 [ 65.771374][ T21] bpf_prog_2c29ac5cdc6b1842+0x3a/0xc0c [ 65.777414][ T21] bpf_trace_run3+0x17e/0x320 [ 65.782593][ T21] enqueue_timer+0x394/0x520 [ 65.787702][ T21] __mod_timer+0x8e1/0xd20 [ 65.792611][ T21] schedule_timeout+0x157/0x280 [ 65.797965][ T21] msleep+0x31/0x50 [ 65.802267][ T21] nsim_fib_event_work+0x2643/0x3240 [ 65.808054][ T21] process_one_work+0x863/0x1000 [ 65.813497][ T21] worker_thread+0xdca/0x12a0 [ 65.818673][ T21] kthread+0x436/0x520 [ 65.823248][ T21] ret_from_fork+0x1f/0x30 [ 65.828168][ T21] [ 65.828168][ T21] other info that might help us debug this: [ 65.828168][ T21] [ 65.838369][ T21] Chain exists of: [ 65.838369][ T21] krc.lock --> &base->lock --> &trie->lock [ 65.838369][ T21] [ 65.850179][ T21] Possible unsafe locking scenario: [ 65.850179][ T21] [ 65.857632][ T21] CPU0 CPU1 [ 65.862987][ T21] ---- ---- [ 65.868326][ T21] lock(&trie->lock); [ 65.872373][ T21] lock(&base->lock); [ 65.878941][ T21] lock(&trie->lock); [ 65.885531][ T21] lock(krc.lock); [ 65.889312][ T21] [ 65.889312][ T21] *** DEADLOCK *** [ 65.889312][ T21] [ 65.897430][ T21] 6 locks held by kworker/1:0/21: [ 65.902427][ T21] #0: ffff888016870938 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x760/0x1000 [ 65.912771][ T21] #1: ffffc90000db7d00 ((work_completion)(&data->fib_event_work)){+.+.}-{0:0}, at: process_one_work+0x7a3/0x1000 [ 65.924755][ T21] #2: ffff88802bbbf240 (&data->fib_lock){+.+.}-{3:3}, at: nsim_fib_event_work+0x271/0x3240 [ 65.934818][ T21] #3: ffff8880b9128098 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x123/0x270 [ 65.944095][ T21] #4: ffffffff8c11c360 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x5/0x30 [ 65.953367][ T21] #5: ffff88801d3af9b8 (&trie->lock){..-.}-{2:2}, at: trie_delete_elem+0x90/0x710 [ 65.962637][ T21] [ 65.962637][ T21] stack backtrace: [ 65.968593][ T21] CPU: 1 PID: 21 Comm: kworker/1:0 Not tainted 5.15.189-syzkaller #0 [ 65.976631][ T21] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 65.986661][ T21] Workqueue: events nsim_fib_event_work [ 65.992202][ T21] Call Trace: [ 65.995457][ T21] [ 65.998370][ T21] dump_stack_lvl+0x168/0x230 [ 66.003021][ T21] ? load_image+0x3b0/0x3b0 [ 66.007583][ T21] ? show_regs_print_info+0x20/0x20 [ 66.012866][ T21] ? print_circular_bug+0x12b/0x1a0 [ 66.018039][ T21] check_noncircular+0x274/0x310 [ 66.022949][ T21] ? add_chain_block+0x940/0x940 [ 66.027859][ T21] ? lockdep_lock+0xdc/0x1e0 [ 66.032430][ T21] ? mark_lock+0x94/0x320 [ 66.036731][ T21] __lock_acquire+0x2c33/0x7c60 [ 66.041559][ T21] ? verify_lock_unused+0x140/0x140 [ 66.046729][ T21] ? __lock_acquire+0x13ad/0x7c60 [ 66.051731][ T21] lock_acquire+0x197/0x3f0 [ 66.056239][ T21] ? kvfree_call_rcu+0x186/0x7c0 [ 66.061153][ T21] ? _raw_spin_lock_irqsave+0xb0/0xf0 [ 66.066504][ T21] ? read_lock_is_recursive+0x10/0x10 [ 66.071850][ T21] ? _raw_spin_unlock_irqrestore+0xaa/0x100 [ 66.077726][ T21] ? _raw_spin_unlock+0x40/0x40 [ 66.082548][ T21] ? debug_object_active_state+0x6b/0x340 [ 66.088254][ T21] _raw_spin_lock+0x2a/0x40 [ 66.092736][ T21] ? kvfree_call_rcu+0x186/0x7c0 [ 66.097659][ T21] kvfree_call_rcu+0x186/0x7c0 [ 66.102397][ T21] ? call_rcu+0x930/0x930 [ 66.106697][ T21] ? _raw_spin_lock_irqsave+0xb0/0xf0 [ 66.112056][ T21] ? _raw_spin_lock+0x40/0x40 [ 66.116705][ T21] ? longest_prefix_match+0x452/0x660 [ 66.122050][ T21] trie_delete_elem+0x58c/0x710 [ 66.126874][ T21] bpf_prog_2c29ac5cdc6b1842+0x3a/0xc0c [ 66.132392][ T21] bpf_trace_run3+0x17e/0x320 [ 66.137040][ T21] ? bpf_trace_run2+0x2d0/0x2d0 [ 66.141867][ T21] ? _raw_spin_unlock_irqrestore+0xaa/0x100 [ 66.147749][ T21] ? rcu_lock_release+0x5/0x20 [ 66.152496][ T21] enqueue_timer+0x394/0x520 [ 66.157085][ T21] __mod_timer+0x8e1/0xd20 [ 66.161519][ T21] schedule_timeout+0x157/0x280 [ 66.166347][ T21] ? console_conditional_schedule+0x40/0x40 [ 66.172229][ T21] ? update_process_times+0x200/0x200 [ 66.177587][ T21] msleep+0x31/0x50 [ 66.181372][ T21] nsim_fib_event_work+0x2643/0x3240 [ 66.186732][ T21] ? nsim_fib_create+0xaf0/0xaf0 [ 66.191647][ T21] ? __lock_acquire+0x13ad/0x7c60 [ 66.196648][ T21] ? verify_lock_unused+0x140/0x140 [ 66.201851][ T21] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 66.207927][ T21] ? _raw_spin_unlock+0x40/0x40 [ 66.212766][ T21] ? _raw_spin_unlock_irq+0x1f/0x40 [ 66.217952][ T21] process_one_work+0x863/0x1000 [ 66.222898][ T21] ? worker_detach_from_pool+0x240/0x240 [ 66.228515][ T21] ? lockdep_hardirqs_off+0x70/0x100 [ 66.233779][ T21] ? _raw_spin_lock_irq+0xab/0xe0 [ 66.238780][ T21] ? _raw_spin_lock_irqsave+0xf0/0xf0 [ 66.244125][ T21] ? wq_worker_running+0x97/0x170 [ 66.249120][ T21] worker_thread+0xdca/0x12a0 [ 66.253776][ T21] kthread+0x436/0x520 [ 66.257837][ T21] ? rcu_lock_release+0x20/0x20 [ 66.262663][ T21] ? kthread_blkcg+0xd0/0xd0 [ 66.267224][ T21] ret_from_fork+0x1f/0x30 [ 66.271684][ T21]