Warning: Permanently added '10.128.1.6' (ED25519) to the list of known hosts. 2024/11/26 18:49:55 ignoring optional flag "sandboxArg"="0" 2024/11/26 18:49:55 parsed 1 programs [ 340.662714][ T5873] cgroup: Unknown subsys name 'net' [ 340.788667][ T5873] cgroup: Unknown subsys name 'cpuset' [ 340.796887][ T5873] cgroup: Unknown subsys name 'rlimit' [ 342.096099][ T5873] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 344.483322][ T5881] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 345.583968][ T54] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 345.592546][ T54] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 345.601655][ T54] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 345.612483][ T54] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 345.622150][ T54] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 345.629591][ T54] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 345.854494][ T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 345.868515][ T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 345.895121][ T127] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 345.903739][ T127] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 347.339904][ T5950] chnl_net:caif_netlink_parms(): no params data found [ 347.402078][ T5950] bridge0: port 1(bridge_slave_0) entered blocking state [ 347.410424][ T5950] bridge0: port 1(bridge_slave_0) entered disabled state [ 347.418139][ T5950] bridge_slave_0: entered allmulticast mode [ 347.425222][ T5950] bridge_slave_0: entered promiscuous mode [ 347.434341][ T5950] bridge0: port 2(bridge_slave_1) entered blocking state [ 347.441605][ T5950] bridge0: port 2(bridge_slave_1) entered disabled state [ 347.449033][ T5950] bridge_slave_1: entered allmulticast mode [ 347.455727][ T5950] bridge_slave_1: entered promiscuous mode [ 347.487857][ T5950] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 347.499742][ T5950] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 347.530497][ T5950] team0: Port device team_slave_0 added [ 347.539429][ T5950] team0: Port device team_slave_1 added [ 347.563504][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 347.571081][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 347.597398][ T5950] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 347.610092][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 347.617174][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 347.643223][ T5950] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 347.675815][ T5950] hsr_slave_0: entered promiscuous mode [ 347.682209][ T5950] hsr_slave_1: entered promiscuous mode [ 347.779258][ T5950] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 347.789458][ T5950] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 347.799586][ T5950] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 347.808840][ T5950] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 347.874812][ T5950] 8021q: adding VLAN 0 to HW filter on device bond0 [ 347.899647][ T5950] 8021q: adding VLAN 0 to HW filter on device team0 [ 347.911237][ T35] bridge0: port 1(bridge_slave_0) entered blocking state [ 347.918502][ T35] bridge0: port 1(bridge_slave_0) entered forwarding state [ 347.932396][ T35] bridge0: port 2(bridge_slave_1) entered blocking state [ 347.939559][ T35] bridge0: port 2(bridge_slave_1) entered forwarding state [ 348.067088][ T5950] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 348.107094][ T5950] veth0_vlan: entered promiscuous mode [ 348.117785][ T5950] veth1_vlan: entered promiscuous mode [ 348.141123][ T5950] veth0_macvtap: entered promiscuous mode [ 348.150534][ T5950] veth1_macvtap: entered promiscuous mode [ 348.168645][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 348.182093][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 348.193143][ T5950] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 348.203020][ T5950] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 348.212239][ T5950] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 348.221611][ T5950] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 2024/11/26 18:50:05 executed programs: 0 [ 348.329080][ T5950] syz-executor (5950) used greatest stack depth: 18640 bytes left [ 348.348023][ T54] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 348.357030][ T54] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 348.365378][ T54] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 348.377924][ T54] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 348.380048][ T127] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 348.386636][ T54] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 348.403098][ T54] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 348.463614][ T127] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 348.546303][ T127] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 348.567029][ T5967] chnl_net:caif_netlink_parms(): no params data found [ 348.608198][ T127] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 348.641015][ T5967] bridge0: port 1(bridge_slave_0) entered blocking state [ 348.648392][ T5967] bridge0: port 1(bridge_slave_0) entered disabled state [ 348.655722][ T5967] bridge_slave_0: entered allmulticast mode [ 348.662658][ T5967] bridge_slave_0: entered promiscuous mode [ 348.671692][ T5967] bridge0: port 2(bridge_slave_1) entered blocking state [ 348.679512][ T5967] bridge0: port 2(bridge_slave_1) entered disabled state [ 348.687242][ T5967] bridge_slave_1: entered allmulticast mode [ 348.694021][ T5967] bridge_slave_1: entered promiscuous mode [ 348.721886][ T5967] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 348.733519][ T5967] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 348.762337][ T5967] team0: Port device team_slave_0 added [ 348.770536][ T5967] team0: Port device team_slave_1 added [ 348.794949][ T5967] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 348.802185][ T5967] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 348.828593][ T5967] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 348.840829][ T5967] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 348.847978][ T5967] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 348.873986][ T5967] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 348.907168][ T5967] hsr_slave_0: entered promiscuous mode [ 348.915114][ T5967] hsr_slave_1: entered promiscuous mode [ 348.921529][ T5967] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 348.929500][ T5967] Cannot create hsr debugfs directory [ 350.426389][ T54] Bluetooth: hci0: command tx timeout [ 351.637088][ T127] bridge_slave_1: left allmulticast mode [ 351.643219][ T127] bridge_slave_1: left promiscuous mode [ 351.654816][ T127] bridge0: port 2(bridge_slave_1) entered disabled state [ 351.668778][ T127] bridge_slave_0: left allmulticast mode [ 351.674444][ T127] bridge_slave_0: left promiscuous mode [ 351.680254][ T127] bridge0: port 1(bridge_slave_0) entered disabled state [ 351.937426][ T127] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 351.948352][ T127] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 351.959844][ T127] bond0 (unregistering): Released all slaves [ 352.070393][ T127] hsr_slave_0: left promiscuous mode [ 352.077943][ T127] hsr_slave_1: left promiscuous mode [ 352.084074][ T127] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 352.091888][ T127] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 352.102679][ T127] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 352.111007][ T127] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 352.133859][ T127] veth1_macvtap: left promiscuous mode [ 352.139923][ T127] veth0_macvtap: left promiscuous mode [ 352.148802][ T127] veth1_vlan: left promiscuous mode [ 352.154379][ T127] veth0_vlan: left promiscuous mode [ 352.517714][ T54] Bluetooth: hci0: command tx timeout [ 352.527907][ T127] team0 (unregistering): Port device team_slave_1 removed [ 352.556562][ T127] team0 (unregistering): Port device team_slave_0 removed [ 352.974584][ T5967] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 352.993141][ T5967] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 353.009927][ T5967] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 353.021379][ T5967] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 353.117459][ T5967] 8021q: adding VLAN 0 to HW filter on device bond0 [ 353.136994][ T5967] 8021q: adding VLAN 0 to HW filter on device team0 [ 353.151594][ T127] bridge0: port 1(bridge_slave_0) entered blocking state [ 353.158799][ T127] bridge0: port 1(bridge_slave_0) entered forwarding state [ 353.173141][ T53] bridge0: port 2(bridge_slave_1) entered blocking state [ 353.180297][ T53] bridge0: port 2(bridge_slave_1) entered forwarding state [ 353.310717][ T5967] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 353.341983][ T5967] veth0_vlan: entered promiscuous mode [ 353.354164][ T5967] veth1_vlan: entered promiscuous mode [ 353.375657][ T5967] veth0_macvtap: entered promiscuous mode [ 353.384832][ T5967] veth1_macvtap: entered promiscuous mode [ 353.400158][ T5967] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 353.413668][ T5967] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 353.424390][ T5967] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 353.433787][ T5967] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 353.443332][ T5967] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 353.452447][ T5967] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 353.500629][ T1102] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 353.515094][ T1102] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 353.538551][ T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 2024/11/26 18:50:10 executed programs: 2 [ 353.547179][ T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 353.587776][ T6012] netlink: 'syz.0.15': attribute type 10 has an invalid length. [ 353.610958][ T6012] team0: Port device wlan1 added [ 353.638649][ T6013] netlink: 'syz.0.16': attribute type 10 has an invalid length. [ 353.672259][ T6014] netlink: 'syz.0.17': attribute type 10 has an invalid length. [ 353.700361][ T6015] netlink: 'syz.0.18': attribute type 10 has an invalid length. [ 353.726725][ T6016] netlink: 'syz.0.19': attribute type 10 has an invalid length. [ 353.752254][ T6017] netlink: 'syz.0.20': attribute type 10 has an invalid length. [ 353.772454][ T6018] netlink: 'syz.0.21': attribute type 10 has an invalid length. [ 353.792874][ T6019] netlink: 'syz.0.22': attribute type 10 has an invalid length. [ 353.812861][ T6020] netlink: 'syz.0.23': attribute type 10 has an invalid length. [ 353.831461][ T6021] netlink: 'syz.0.24': attribute type 10 has an invalid length. [ 354.586165][ T54] Bluetooth: hci0: command tx timeout [ 356.666952][ T54] Bluetooth: hci0: command tx timeout 2024/11/26 18:50:15 executed programs: 277 [ 358.603111][ T6296] validate_nla: 268 callbacks suppressed [ 358.603125][ T6296] netlink: 'syz.0.293': attribute type 10 has an invalid length. [ 358.627658][ T6297] netlink: 'syz.0.294': attribute type 10 has an invalid length. [ 358.651748][ T6298] netlink: 'syz.0.295': attribute type 10 has an invalid length. [ 358.671628][ T6299] netlink: 'syz.0.296': attribute type 10 has an invalid length. [ 358.690801][ T6300] netlink: 'syz.0.297': attribute type 10 has an invalid length. [ 358.711080][ T6301] netlink: 'syz.0.298': attribute type 10 has an invalid length. [ 358.729597][ T6302] netlink: 'syz.0.299': attribute type 10 has an invalid length. [ 358.747781][ T6303] netlink: 'syz.0.300': attribute type 10 has an invalid length. [ 358.781696][ T6304] netlink: 'syz.0.301': attribute type 10 has an invalid length. [ 358.802295][ T6305] netlink: 'syz.0.302': attribute type 10 has an invalid length. 2024/11/26 18:50:20 executed programs: 553 [ 363.617213][ T6570] validate_nla: 264 callbacks suppressed [ 363.617231][ T6570] netlink: 'syz.0.567': attribute type 10 has an invalid length. [ 363.643421][ T6571] netlink: 'syz.0.568': attribute type 10 has an invalid length. [ 363.661215][ T6572] netlink: 'syz.0.569': attribute type 10 has an invalid length. [ 363.680110][ T6573] netlink: 'syz.0.570': attribute type 10 has an invalid length. [ 363.701428][ T6574] netlink: 'syz.0.571': attribute type 10 has an invalid length. [ 363.720326][ T6575] netlink: 'syz.0.572': attribute type 10 has an invalid length. [ 363.738310][ T6576] netlink: 'syz.0.573': attribute type 10 has an invalid length. [ 363.761444][ T6577] netlink: 'syz.0.574': attribute type 10 has an invalid length. [ 363.779411][ T6578] netlink: 'syz.0.575': attribute type 10 has an invalid length. [ 363.797757][ T6579] netlink: 'syz.0.576': attribute type 10 has an invalid length. [ 364.544512][ T5164] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 364.558613][ T5164] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 364.567801][ T5164] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 364.581057][ T5164] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 364.588908][ T5164] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 364.598501][ T5164] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 364.691586][ T6619] chnl_net:caif_netlink_parms(): no params data found [ 364.734715][ T6619] bridge0: port 1(bridge_slave_0) entered blocking state [ 364.741943][ T6619] bridge0: port 1(bridge_slave_0) entered disabled state [ 364.749272][ T6619] bridge_slave_0: entered allmulticast mode [ 364.756323][ T6619] bridge_slave_0: entered promiscuous mode [ 364.763646][ T6619] bridge0: port 2(bridge_slave_1) entered blocking state [ 364.771188][ T6619] bridge0: port 2(bridge_slave_1) entered disabled state [ 364.778509][ T6619] bridge_slave_1: entered allmulticast mode [ 364.785076][ T6619] bridge_slave_1: entered promiscuous mode [ 364.822723][ T127] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 364.839491][ T6619] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 364.850951][ T6619] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 364.877858][ T127] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 364.898556][ T6619] team0: Port device team_slave_0 added [ 364.906458][ T6619] team0: Port device team_slave_1 added [ 364.925033][ T6619] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 364.932538][ T6619] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 364.958637][ T6619] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 364.977107][ T127] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 364.991530][ T6619] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 364.998805][ T6619] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 365.024904][ T6619] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 365.065165][ T127] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 365.085286][ T6619] hsr_slave_0: entered promiscuous mode [ 365.092237][ T6619] hsr_slave_1: entered promiscuous mode [ 365.219638][ T127] bridge_slave_1: left allmulticast mode [ 365.225338][ T127] bridge_slave_1: left promiscuous mode [ 365.231539][ T127] bridge0: port 2(bridge_slave_1) entered disabled state [ 365.241656][ T127] bridge_slave_0: left allmulticast mode [ 365.248601][ T127] bridge_slave_0: left promiscuous mode [ 365.254344][ T127] bridge0: port 1(bridge_slave_0) entered disabled state [ 365.518229][ T127] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 365.528666][ T127] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 365.539064][ T127] bond0 (unregistering): Released all slaves [ 365.658792][ T127] [ 365.661180][ T127] ====================================================== [ 365.668214][ T127] WARNING: possible circular locking dependency detected [ 365.675260][ T127] 6.12.0-syzkaller-09435-g2c22dc1ee3a1 #0 Not tainted [ 365.682033][ T127] ------------------------------------------------------ [ 365.689068][ T127] kworker/u8:5/127 is trying to acquire lock: [ 365.695157][ T127] ffff888029774e00 (team->team_lock_key#2){+.+.}-{4:4}, at: team_del_slave+0x32/0x1d0 [ 365.704801][ T127] [ 365.704801][ T127] but task is already holding lock: [ 365.712182][ T127] ffff888031f88768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0x12b/0x700 [ 365.722577][ T127] [ 365.722577][ T127] which lock already depends on the new lock. [ 365.722577][ T127] [ 365.732994][ T127] [ 365.732994][ T127] the existing dependency chain (in reverse order) is: [ 365.742022][ T127] [ 365.742022][ T127] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 365.749757][ T127] lock_acquire+0x1ed/0x550 [ 365.754779][ T127] __mutex_lock+0x1ac/0xee0 [ 365.759797][ T127] ieee80211_open+0xe7/0x200 [ 365.764896][ T127] __dev_open+0x2d3/0x450 [ 365.769745][ T127] dev_open+0xae/0x1b0 [ 365.774321][ T127] team_add_slave+0x9c8/0x2760 [ 365.779595][ T127] do_setlink+0xe40/0x4210 [ 365.784523][ T127] rtnl_newlink+0x171c/0x24f0 [ 365.789708][ T127] rtnetlink_rcv_msg+0x791/0xcf0 [ 365.795161][ T127] netlink_rcv_skb+0x1e3/0x430 [ 365.800438][ T127] netlink_unicast+0x7f6/0x990 [ 365.805718][ T127] netlink_sendmsg+0x8e4/0xcb0 [ 365.810993][ T127] __sock_sendmsg+0x221/0x270 [ 365.816178][ T127] ____sys_sendmsg+0x52a/0x7e0 [ 365.821454][ T127] __sys_sendmsg+0x269/0x350 [ 365.826558][ T127] do_syscall_64+0xf3/0x230 [ 365.831574][ T127] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 365.837978][ T127] [ 365.837978][ T127] -> #0 (team->team_lock_key#2){+.+.}-{4:4}: [ 365.846148][ T127] validate_chain+0x18ef/0x5920 [ 365.851511][ T127] __lock_acquire+0x1397/0x2100 [ 365.856870][ T127] lock_acquire+0x1ed/0x550 [ 365.861880][ T127] __mutex_lock+0x1ac/0xee0 [ 365.866897][ T127] team_del_slave+0x32/0x1d0 [ 365.872000][ T127] team_device_event+0x200/0x5b0 [ 365.877453][ T127] notifier_call_chain+0x19f/0x3e0 [ 365.883095][ T127] unregister_netdevice_many_notify+0xedd/0x1da0 [ 365.889957][ T127] unregister_netdevice_queue+0x303/0x370 [ 365.896200][ T127] _cfg80211_unregister_wdev+0x163/0x590 [ 365.902348][ T127] ieee80211_remove_interfaces+0x4db/0x700 [ 365.908681][ T127] ieee80211_unregister_hw+0x5d/0x2c0 [ 365.914566][ T127] mac80211_hwsim_del_radio+0x2c4/0x4c0 [ 365.920622][ T127] hwsim_exit_net+0x5c1/0x670 [ 365.925812][ T127] cleanup_net+0x802/0xcc0 [ 365.930744][ T127] process_scheduled_works+0xa63/0x1850 [ 365.936804][ T127] worker_thread+0x870/0xd30 [ 365.941902][ T127] kthread+0x2f0/0x390 [ 365.946481][ T127] ret_from_fork+0x4b/0x80 [ 365.951406][ T127] ret_from_fork_asm+0x1a/0x30 [ 365.956774][ T127] [ 365.956774][ T127] other info that might help us debug this: [ 365.956774][ T127] [ 365.966988][ T127] Possible unsafe locking scenario: [ 365.966988][ T127] [ 365.974425][ T127] CPU0 CPU1 [ 365.979775][ T127] ---- ---- [ 365.985123][ T127] lock(&rdev->wiphy.mtx); [ 365.989620][ T127] lock(team->team_lock_key#2); [ 365.997076][ T127] lock(&rdev->wiphy.mtx); [ 366.004088][ T127] lock(team->team_lock_key#2); [ 366.009024][ T127] [ 366.009024][ T127] *** DEADLOCK *** [ 366.009024][ T127] [ 366.017151][ T127] 5 locks held by kworker/u8:5/127: [ 366.022331][ T127] #0: ffff88801baed948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 366.033213][ T127] #1: ffffc90002de7d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 366.043749][ T127] #2: ffffffff8fcdbe10 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0x16a/0xcc0 [ 366.053148][ T127] #3: ffffffff8fce8948 (rtnl_mutex){+.+.}-{4:4}, at: ieee80211_unregister_hw+0x55/0x2c0 [ 366.062978][ T127] #4: ffff888031f88768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0x12b/0x700 [ 366.073765][ T127] [ 366.073765][ T127] stack backtrace: [ 366.079654][ T127] CPU: 0 UID: 0 PID: 127 Comm: kworker/u8:5 Not tainted 6.12.0-syzkaller-09435-g2c22dc1ee3a1 #0 [ 366.090054][ T127] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 366.100139][ T127] Workqueue: netns cleanup_net [ 366.104908][ T127] Call Trace: [ 366.108181][ T127] [ 366.111103][ T127] dump_stack_lvl+0x241/0x360 [ 366.115780][ T127] ? __pfx_dump_stack_lvl+0x10/0x10 [ 366.120971][ T127] ? __pfx__printk+0x10/0x10 [ 366.125555][ T127] print_circular_bug+0x13a/0x1b0 [ 366.130574][ T127] check_noncircular+0x36a/0x4a0 [ 366.135507][ T127] ? __pfx_check_noncircular+0x10/0x10 [ 366.140959][ T127] ? lockdep_lock+0x123/0x2b0 [ 366.145624][ T127] ? __pfx_validate_chain+0x10/0x10 [ 366.150817][ T127] ? __pfx_validate_chain+0x10/0x10 [ 366.156006][ T127] validate_chain+0x18ef/0x5920 [ 366.160854][ T127] ? __pfx_validate_chain+0x10/0x10 [ 366.166044][ T127] ? __lock_acquire+0x1397/0x2100 [ 366.171060][ T127] ? __pfx_validate_chain+0x10/0x10 [ 366.176257][ T127] ? mark_lock+0x9a/0x360 [ 366.180583][ T127] ? mark_lock+0x9a/0x360 [ 366.184912][ T127] __lock_acquire+0x1397/0x2100 [ 366.189762][ T127] lock_acquire+0x1ed/0x550 [ 366.194256][ T127] ? team_del_slave+0x32/0x1d0 [ 366.199010][ T127] ? __pfx_lock_acquire+0x10/0x10 [ 366.204026][ T127] ? __pfx___might_resched+0x10/0x10 [ 366.209311][ T127] __mutex_lock+0x1ac/0xee0 [ 366.213806][ T127] ? team_del_slave+0x32/0x1d0 [ 366.218562][ T127] ? trace_contention_end+0x3c/0x120 [ 366.223843][ T127] ? __mutex_lock+0x37f/0xee0 [ 366.228514][ T127] ? __pfx___try_to_del_timer_sync+0x10/0x10 [ 366.234485][ T127] ? team_del_slave+0x32/0x1d0 [ 366.239240][ T127] ? __pfx___mutex_lock+0x10/0x10 [ 366.244260][ T127] ? __mutex_unlock_slowpath+0x21e/0x790 [ 366.249980][ T127] ? __asan_memset+0x23/0x50 [ 366.254560][ T127] team_del_slave+0x32/0x1d0 [ 366.259150][ T127] team_device_event+0x200/0x5b0 [ 366.264084][ T127] ? notifier_call_chain+0x162/0x3e0 [ 366.269356][ T127] notifier_call_chain+0x19f/0x3e0 [ 366.274458][ T127] unregister_netdevice_many_notify+0xedd/0x1da0 [ 366.280805][ T127] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 366.287559][ T127] ? kernfs_remove_by_name_ns+0x11b/0x160 [ 366.293274][ T127] ? __pfx_lock_release+0x10/0x10 [ 366.298301][ T127] unregister_netdevice_queue+0x303/0x370 [ 366.304016][ T127] ? __pfx_up_write+0x10/0x10 [ 366.308700][ T127] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 366.314936][ T127] ? kernfs_remove_by_name_ns+0x11b/0x160 [ 366.320671][ T127] _cfg80211_unregister_wdev+0x163/0x590 [ 366.326312][ T127] ieee80211_remove_interfaces+0x4db/0x700 [ 366.332114][ T127] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 366.338439][ T127] ieee80211_unregister_hw+0x5d/0x2c0 [ 366.343808][ T127] mac80211_hwsim_del_radio+0x2c4/0x4c0 [ 366.349364][ T127] ? __pfx_mac80211_hwsim_del_radio+0x10/0x10 [ 366.355424][ T127] hwsim_exit_net+0x5c1/0x670 [ 366.360095][ T127] ? __pfx_hwsim_exit_net+0x10/0x10 [ 366.365286][ T127] ? __ip_vs_dev_cleanup_batch+0x239/0x260 [ 366.371082][ T127] cleanup_net+0x802/0xcc0 [ 366.375497][ T127] ? __pfx_cleanup_net+0x10/0x10 [ 366.380428][ T127] ? process_scheduled_works+0x976/0x1850 [ 366.386140][ T127] process_scheduled_works+0xa63/0x1850 [ 366.391692][ T127] ? __pfx_process_scheduled_works+0x10/0x10 [ 366.397669][ T127] ? assign_work+0x364/0x3d0 [ 366.402258][ T127] worker_thread+0x870/0xd30 [ 366.406838][ T127] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 366.412843][ T127] ? __kthread_parkme+0x169/0x1d0 [ 366.417856][ T127] ? __pfx_worker_thread+0x10/0x10 [ 366.422985][ T127] kthread+0x2f0/0x390 [ 366.427047][ T127] ? __pfx_worker_thread+0x10/0x10 [ 366.432144][ T127] ? __pfx_kthread+0x10/0x10 [ 366.436723][ T127] ret_from_fork+0x4b/0x80 [ 366.441130][ T127] ? __pfx_kthread+0x10/0x10 [ 366.445709][ T127] ret_from_fork_asm+0x1a/0x30 [ 366.450475][ T127] [ 366.460998][ T127] team0: Port device wlan1 removed [ 366.561275][ T127] hsr_slave_0: left promiscuous mode [ 366.566989][ T127] hsr_slave_1: left promiscuous mode [ 366.572674][ T127] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 366.580127][ T127] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 366.588640][ T127] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 366.596401][ T127] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 366.604899][ T127] veth1_macvtap: left promiscuous mode [ 366.610546][ T127] veth0_macvtap: left promiscuous mode [ 366.616150][ T127] veth1_vlan: left promiscuous mode [ 366.621374][ T127] veth0_vlan: left promiscuous mode [ 366.665539][ T5164] Bluetooth: hci1: command tx timeout [ 366.729088][ T127] team0 (unregistering): Port device team_slave_1 removed [ 366.750717][ T127] team0 (unregistering): Port device team_slave_0 removed [ 366.844004][ T6619] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 366.853320][ T6619] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 366.863376][ T6619] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 366.871885][ T6619] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 366.946978][ T6619] 8021q: adding VLAN 0 to HW filter on device bond0 [ 366.982168][ T6619] 8021q: adding VLAN 0 to HW filter on device team0 [ 367.009618][ T1102] bridge0: port 1(bridge_slave_0) entered blocking state [ 367.016779][ T1102] bridge0: port 1(bridge_slave_0) entered forwarding state [ 367.025370][ T1102] bridge0: port 2(bridge_slave_1) entered blocking state [ 367.032527][ T1102] bridge0: port 2(bridge_slave_1) entered forwarding state [ 367.167631][ T6619] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 367.191674][ T6619] veth0_vlan: entered promiscuous mode [ 367.200174][ T6619] veth1_vlan: entered promiscuous mode [ 367.216629][ T6619] veth0_macvtap: entered promiscuous mode [ 367.224118][ T6619] veth1_macvtap: entered promiscuous mode [ 367.235850][ T6619] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 367.246837][ T6619] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 367.256862][ T6619] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 367.267250][ T6619] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 367.276321][ T6619] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 367.285023][ T6619] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 367.308461][ T6619] ieee80211 phy7: Selected rate control algorithm 'minstrel_ht' [ 367.323382][ T127] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 367.324616][ T6619] ieee80211 phy8: Selected rate control algorithm 'minstrel_ht' [ 367.339253][ T127] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 367.353507][ T1102] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 367.361998][ T1102] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 367.387190][ T6661] team0: Port device wlan1 added 2024/11/26 18:50:26 executed programs: 678 [ 368.639577][ T6736] validate_nla: 113 callbacks suppressed [ 368.639591][ T6736] netlink: 'syz.0.690': attribute type 10 has an invalid length. [ 368.659975][ T6737] netlink: 'syz.0.691': attribute type 10 has an invalid length. [ 368.674522][ T6738] netlink: 'syz.0.692': attribute type 10 has an invalid length. [ 368.699864][ T6739] netlink: 'syz.0.693': attribute type 10 has an invalid length. [ 368.714649][ T6740] netlink: 'syz.0.694': attribute type 10 has an invalid length. [ 368.729911][ T6741] netlink: 'syz.0.695': attribute type 10 has an invalid length. [ 368.745745][ T5164] Bluetooth: hci1: command tx timeout [ 368.759307][ T6742] netlink: 'syz.0.696': attribute type 10 has an invalid length. [ 368.774324][ T6743] netlink: 'syz.0.697': attribute type 10 has an invalid length. [ 368.788325][ T6744] netlink: 'syz.0.698': attribute type 10 has an invalid length. [ 368.820176][ T6745] netlink: 'syz.0.699': attribute type 10 has an invalid length. [ 370.825670][ T5164] Bluetooth: hci1: command tx timeout [ 372.906728][ T5164] Bluetooth: hci1: command tx timeout [ 373.647922][ T7033] validate_nla: 287 callbacks suppressed [ 373.647936][ T7033] netlink: 'syz.0.987': attribute type 10 has an invalid length. [ 373.667668][ T7034] netlink: 'syz.0.988': attribute type 10 has an invalid length. [ 373.689177][ T7035] netlink: 'syz.0.989': attribute type 10 has an invalid length. [ 373.703554][ T7036] netlink: 'syz.0.990': attribute type 10 has an invalid length. [ 373.718196][ T7037] netlink: 'syz.0.991': attribute type 10 has an invalid length. 2024/11/26 18:50:31 executed programs: 977 [ 373.750120][ T7038] netlink: 'syz.0.992': attribute type 10 has an invalid length. [ 373.764244][ T7039] netlink: 'syz.0.993': attribute type 10 has an invalid length. [ 373.778528][ T7040] netlink: 'syz.0.994': attribute type 10 has an invalid length. [ 373.809847][ T7041] netlink: 'syz.0.995': attribute type 10 has an invalid length. [ 373.824436][ T7042] netlink: 'syz.0.996': attribute type 10 has an invalid length.