possible deadlock in lapbeth_device_event
============================================
WARNING: possible recursive locking detected
6.14.0-syzkaller-gacb4f33713b9 #0 Not tainted
--------------------------------------------
dhcpcd/5020 is trying to acquire lock:
ffff88803f524d28 (&dev->lock){+.+.}-{4:4}, at: netdev_lock include/linux/netdevice.h:2751 [inline]
ffff88803f524d28 (&dev->lock){+.+.}-{4:4}, at: netif_napi_add_weight include/linux/netdevice.h:2783 [inline]
ffff88803f524d28 (&dev->lock){+.+.}-{4:4}, at: lapbeth_new_device drivers/net/wan/lapbether.c:415 [inline]
ffff88803f524d28 (&dev->lock){+.+.}-{4:4}, at: lapbeth_device_event+0x766/0xa20 drivers/net/wan/lapbether.c:460
but task is already holding lock:
ffff888011c8cd28 (&dev->lock){+.+.}-{4:4}, at: netdev_lock include/linux/netdevice.h:2751 [inline]
ffff888011c8cd28 (&dev->lock){+.+.}-{4:4}, at: netdev_lock_ops include/net/netdev_lock.h:42 [inline]
ffff888011c8cd28 (&dev->lock){+.+.}-{4:4}, at: dev_change_flags+0x120/0x270 net/core/dev_api.c:67
other info that might help us debug this:
Possible unsafe locking scenario:
CPU0
----
lock(&dev->lock);
lock(&dev->lock);
*** DEADLOCK ***
May be due to missing lock nesting notation
2 locks held by dhcpcd/5020:
#0: ffffffff900e1888 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_net_lock include/linux/rtnetlink.h:130 [inline]
#0: ffffffff900e1888 (rtnl_mutex){+.+.}-{4:4}, at: devinet_ioctl+0x34e/0x1d80 net/ipv4/devinet.c:1121
#1: ffff888011c8cd28 (&dev->lock){+.+.}-{4:4}, at: netdev_lock include/linux/netdevice.h:2751 [inline]
#1: ffff888011c8cd28 (&dev->lock){+.+.}-{4:4}, at: netdev_lock_ops include/net/netdev_lock.h:42 [inline]
#1: ffff888011c8cd28 (&dev->lock){+.+.}-{4:4}, at: dev_change_flags+0x120/0x270 net/core/dev_api.c:67
stack backtrace:
CPU: 0 UID: 0 PID: 5020 Comm: dhcpcd Not tainted 6.14.0-syzkaller-gacb4f33713b9 #0 PREEMPT(full)
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
Call Trace:
__dump_stack lib/dump_stack.c:94 [inline]
dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120
print_deadlock_bug+0x2be/0x2d0 kernel/locking/lockdep.c:3042
check_deadlock kernel/locking/lockdep.c:3094 [inline]
validate_chain+0x928/0x24e0 kernel/locking/lockdep.c:3896
__lock_acquire+0xad5/0xd80 kernel/locking/lockdep.c:5235
lock_acquire+0x116/0x2f0 kernel/locking/lockdep.c:5866
__mutex_lock_common kernel/locking/mutex.c:587 [inline]
__mutex_lock+0x1a5/0x10c0 kernel/locking/mutex.c:732
netdev_lock include/linux/netdevice.h:2751 [inline]
netif_napi_add_weight include/linux/netdevice.h:2783 [inline]
lapbeth_new_device drivers/net/wan/lapbether.c:415 [inline]
lapbeth_device_event+0x766/0xa20 drivers/net/wan/lapbether.c:460
notifier_call_chain+0x1a5/0x3f0 kernel/notifier.c:85
__dev_notify_flags+0x209/0x410 net/core/dev.c:-1
netif_change_flags+0xf0/0x1a0 net/core/dev.c:9438
dev_change_flags+0x146/0x270 net/core/dev_api.c:68
devinet_ioctl+0xea4/0x1d80 net/ipv4/devinet.c:1200
inet_ioctl+0x3d9/0x4f0 net/ipv4/af_inet.c:1001
sock_do_ioctl+0x15a/0x490 net/socket.c:1190
sock_ioctl+0x644/0x900 net/socket.c:1311
vfs_ioctl fs/ioctl.c:51 [inline]
__do_sys_ioctl fs/ioctl.c:906 [inline]
__se_sys_ioctl+0xf1/0x160 fs/ioctl.c:892
do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
do_syscall_64+0xf3/0x230 arch/x86/entry/syscall_64.c:94
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7fee0c3ded49
Code: 5c c3 48 8d 44 24 08 48 89 54 24 e0 48 89 44 24 c0 48 8d 44 24 d0 48 89 44 24 c8 b8 10 00 00 00 c7 44 24 b8 10 00 00 00 0f 05 <41> 89 c0 3d 00 f0 ff ff 76 10 48 8b 15 ae 60 0d 00 f7 d8 41 83 c8
RSP: 002b:00007fffc59e98d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 00007fee0c3106c0 RCX: 00007fee0c3ded49
RDX: 00007fffc59f9ac8 RSI: 0000000000008914 RDI: 000000000000000f
RBP: 00007fffc5a09c88 R08: 00007fffc59f9a88 R09: 00007fffc59f9a38
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007fffc59f9ac8 R14: 0000000000000028 R15: 0000000000008914
Warning: Permanently added '[localhost]:37130' (ED25519) to the list of known hosts.
2025/03/28 19:48:07 ignoring optional flag "sandboxArg"="0"
2025/03/28 19:48:08 parsed 1 programs
[ 65.431065][ T5310] cgroup: Unknown subsys name 'net'
[ 65.517327][ T5310] cgroup: Unknown subsys name 'cpuset'
[ 65.521740][ T5310] cgroup: Unknown subsys name 'rlimit'
[ 66.845753][ T5310] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 71.181260][ T5318] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 72.085245][ T74] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 72.088500][ T74] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 72.138354][ T74] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 72.142118][ T74] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 74.636456][ T5379] chnl_net:caif_netlink_parms(): no params data found
[ 74.705445][ T5379] bridge0: port 1(bridge_slave_0) entered blocking state
[ 74.714690][ T5379] bridge0: port 1(bridge_slave_0) entered disabled state
[ 74.717660][ T5379] bridge_slave_0: entered allmulticast mode
[ 74.724976][ T5379] bridge_slave_0: entered promiscuous mode
[ 74.736879][ T5379] bridge0: port 2(bridge_slave_1) entered blocking state
[ 74.739733][ T5379] bridge0: port 2(bridge_slave_1) entered disabled state
[ 74.742451][ T5379] bridge_slave_1: entered allmulticast mode
[ 74.756153][ T5379] bridge_slave_1: entered promiscuous mode
[ 74.787060][ T5379] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 74.792590][ T5379] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 74.835413][ T5379] team0: Port device team_slave_0 added
[ 74.839176][ T5379] team0: Port device team_slave_1 added
[ 74.862198][ T5379] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 74.874187][ T5379] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 74.894538][ T5379] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 74.905356][ T5379] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 74.908063][ T5379] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 74.934473][ T5379] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 74.979336][ T5379] hsr_slave_0: entered promiscuous mode
[ 74.982077][ T5379] hsr_slave_1: entered promiscuous mode
[ 75.158041][ T5379] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 75.178671][ T5379] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 75.185693][ T5379] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 75.197183][ T5379] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 75.233055][ T5379] bridge0: port 2(bridge_slave_1) entered blocking state
[ 75.236258][ T5379] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 75.240187][ T5379] bridge0: port 1(bridge_slave_0) entered blocking state
[ 75.243163][ T5379] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 75.333584][ T5379] 8021q: adding VLAN 0 to HW filter on device bond0
[ 75.359622][ T5379] 8021q: adding VLAN 0 to HW filter on device team0
[ 75.365396][ T74] bridge0: port 1(bridge_slave_0) entered disabled state
[ 75.375653][ T74] bridge0: port 2(bridge_slave_1) entered disabled state
[ 75.408702][ T74] bridge0: port 1(bridge_slave_0) entered blocking state
[ 75.411797][ T74] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 75.417574][ T74] bridge0: port 2(bridge_slave_1) entered blocking state
[ 75.421401][ T74] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 75.477567][ T5379] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 75.640289][ T5379] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 75.699467][ T5379] veth0_vlan: entered promiscuous mode
[ 75.708151][ T5379] veth1_vlan: entered promiscuous mode
[ 75.759859][ T5379] veth0_macvtap: entered promiscuous mode
[ 75.765516][ T5379] veth1_macvtap: entered promiscuous mode
[ 75.790089][ T5379] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 75.806718][ T5379] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 75.819746][ T5379] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 75.823608][ T5379] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 75.835378][ T5379] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 75.845787][ T5379] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 76.035720][ T5379] syz-executor (5379) used greatest stack depth: 19968 bytes left
[ 76.056391][ T1038] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 76.093870][ T1038] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 76.145934][ T1038] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 76.197690][ T1038] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 76.210819][ T5402] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 76.216506][ T5402] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 76.219606][ T5402] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 76.223823][ T5402] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 76.228940][ T5402] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 76.376870][ T1311] ieee802154 phy0 wpan0: encryption failed: -22
[ 76.379648][ T1311] ieee802154 phy1 wpan1: encryption failed: -22
2025/03/28 19:48:22 executed programs: 0
[ 77.213241][ T4666] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 77.217435][ T4666] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 77.220565][ T4666] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 77.225007][ T4666] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 77.228062][ T4666] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 77.405919][ T5416] chnl_net:caif_netlink_parms(): no params data found
[ 77.448473][ T5416] bridge0: port 1(bridge_slave_0) entered blocking state
[ 77.452002][ T5416] bridge0: port 1(bridge_slave_0) entered disabled state
[ 77.455744][ T5416] bridge_slave_0: entered allmulticast mode
[ 77.458871][ T5416] bridge_slave_0: entered promiscuous mode
[ 77.462496][ T5416] bridge0: port 2(bridge_slave_1) entered blocking state
[ 77.466571][ T5416] bridge0: port 2(bridge_slave_1) entered disabled state
[ 77.469411][ T5416] bridge_slave_1: entered allmulticast mode
[ 77.472336][ T5416] bridge_slave_1: entered promiscuous mode
[ 77.486052][ T5416] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 77.491641][ T5416] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 77.507909][ T5416] team0: Port device team_slave_0 added
[ 77.512906][ T5416] team0: Port device team_slave_1 added
[ 77.525178][ T5416] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 77.528058][ T5416] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 77.539309][ T5416] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 77.545405][ T5416] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 77.548046][ T5416] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 77.558992][ T5416] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 77.586013][ T5416] hsr_slave_0: entered promiscuous mode
[ 77.589647][ T5416] hsr_slave_1: entered promiscuous mode
[ 77.593099][ T5416] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 77.597535][ T5416] Cannot create hsr debugfs directory
[ 78.455449][ T1038] bridge_slave_1: left allmulticast mode
[ 78.457824][ T1038] bridge_slave_1: left promiscuous mode
[ 78.461048][ T1038] bridge0: port 2(bridge_slave_1) entered disabled state
[ 78.476818][ T1038] bridge_slave_0: left allmulticast mode
[ 78.479016][ T1038] bridge_slave_0: left promiscuous mode
[ 78.481393][ T1038] bridge0: port 1(bridge_slave_0) entered disabled state
[ 78.810878][ T1038] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 78.817209][ T1038] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 78.821603][ T1038] bond0 (unregistering): Released all slaves
[ 78.843836][ T5020]
[ 78.844886][ T5020] ============================================
[ 78.847423][ T5020] WARNING: possible recursive locking detected
[ 78.849921][ T5020] 6.14.0-syzkaller-gacb4f33713b9 #0 Not tainted
[ 78.853518][ T5020] --------------------------------------------
[ 78.856000][ T5020] dhcpcd/5020 is trying to acquire lock:
[ 78.858024][ T5020] ffff88803f524d28 (&dev->lock){+.+.}-{4:4}, at: lapbeth_device_event+0x766/0xa20
[ 78.861750][ T5020]
[ 78.861750][ T5020] but task is already holding lock:
[ 78.864836][ T5020] ffff888011c8cd28 (&dev->lock){+.+.}-{4:4}, at: dev_change_flags+0x120/0x270
[ 78.868546][ T5020]
[ 78.868546][ T5020] other info that might help us debug this:
[ 78.871739][ T5020] Possible unsafe locking scenario:
[ 78.871739][ T5020]
[ 78.874685][ T5020] CPU0
[ 78.876054][ T5020] ----
[ 78.877409][ T5020] lock(&dev->lock);
[ 78.879050][ T5020] lock(&dev->lock);
[ 78.880790][ T5020]
[ 78.880790][ T5020] *** DEADLOCK ***
[ 78.880790][ T5020]
[ 78.883996][ T5020] May be due to missing lock nesting notation
[ 78.883996][ T5020]
[ 78.887246][ T5020] 2 locks held by dhcpcd/5020:
[ 78.889234][ T5020] #0: ffffffff900e1888 (rtnl_mutex){+.+.}-{4:4}, at: devinet_ioctl+0x34e/0x1d80
[ 78.892812][ T5020] #1: ffff888011c8cd28 (&dev->lock){+.+.}-{4:4}, at: dev_change_flags+0x120/0x270
[ 78.896592][ T5020]
[ 78.896592][ T5020] stack backtrace:
[ 78.899175][ T5020] CPU: 0 UID: 0 PID: 5020 Comm: dhcpcd Not tainted 6.14.0-syzkaller-gacb4f33713b9 #0 PREEMPT(full)
[ 78.899189][ T5020] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 78.899196][ T5020] Call Trace:
[ 78.899204][ T5020]
[ 78.899209][ T5020] dump_stack_lvl+0x241/0x360
[ 78.899227][ T5020] ? __pfx_dump_stack_lvl+0x10/0x10
[ 78.899240][ T5020] ? __pfx__printk+0x10/0x10
[ 78.899258][ T5020] ? print_lock+0x171/0x1a0
[ 78.899267][ T5020] print_deadlock_bug+0x2be/0x2d0
[ 78.899275][ T5020] validate_chain+0x928/0x24e0
[ 78.899282][ T5020] ? stack_depot_save_flags+0x3a/0x970
[ 78.899291][ T5020] ? look_up_lock_class+0x7b/0x170
[ 78.899299][ T5020] ? register_lock_class+0x54/0x330
[ 78.899309][ T5020] __lock_acquire+0xad5/0xd80
[ 78.899320][ T5020] lock_acquire+0x116/0x2f0
[ 78.899330][ T5020] ? lapbeth_device_event+0x766/0xa20
[ 78.899346][ T5020] __mutex_lock+0x1a5/0x10c0
[ 78.899358][ T5020] ? lapbeth_device_event+0x766/0xa20
[ 78.899373][ T5020] ? ref_tracker_alloc+0x316/0x4c0
[ 78.899385][ T5020] ? lapbeth_device_event+0x766/0xa20
[ 78.899398][ T5020] ? rcu_is_watching+0x15/0xb0
[ 78.899408][ T5020] ? __pfx___mutex_lock+0x10/0x10
[ 78.899423][ T5020] ? __raw_spin_lock_init+0x45/0x100
[ 78.899435][ T5020] lapbeth_device_event+0x766/0xa20
[ 78.899449][ T5020] notifier_call_chain+0x1a5/0x3f0
[ 78.899461][ T5020] __dev_notify_flags+0x209/0x410
[ 78.899472][ T5020] ? __pfx___dev_notify_flags+0x10/0x10
[ 78.899480][ T5020] ? __dev_change_flags+0x517/0x700
[ 78.899489][ T5020] ? __pfx___mutex_lock+0x10/0x10
[ 78.899501][ T5020] ? __pfx___dev_change_flags+0x10/0x10
[ 78.899511][ T5020] ? __pfx___mutex_lock+0x10/0x10
[ 78.899547][ T5020] netif_change_flags+0xf0/0x1a0
[ 78.899560][ T5020] dev_change_flags+0x146/0x270
[ 78.899575][ T5020] devinet_ioctl+0xea4/0x1d80
[ 78.899592][ T5020] ? __pfx_devinet_ioctl+0x10/0x10
[ 78.899605][ T5020] ? get_user_ifreq+0x1bb/0x200
[ 78.899618][ T5020] inet_ioctl+0x3d9/0x4f0
[ 78.899629][ T5020] ? __pfx_inet_ioctl+0x10/0x10
[ 78.899639][ T5020] ? lockdep_hardirqs_on+0x9d/0x150
[ 78.899654][ T5020] ? tomoyo_path_number_perm+0x215/0x790
[ 78.899670][ T5020] sock_do_ioctl+0x15a/0x490
[ 78.899683][ T5020] ? __pfx_sock_do_ioctl+0x10/0x10
[ 78.899696][ T5020] ? fd_install+0x9c/0x4c0
[ 78.899713][ T5020] sock_ioctl+0x644/0x900
[ 78.899725][ T5020] ? __pfx_sock_ioctl+0x10/0x10
[ 78.899736][ T5020] ? __sys_socket+0x209/0x3c0
[ 78.899751][ T5020] ? __pfx_sock_ioctl+0x10/0x10
[ 78.899763][ T5020] __se_sys_ioctl+0xf1/0x160
[ 78.899775][ T5020] do_syscall_64+0xf3/0x230
[ 78.899788][ T5020] ? clear_bhb_loop+0x45/0xa0
[ 78.899800][ T5020] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 78.899810][ T5020] RIP: 0033:0x7fee0c3ded49
[ 78.899820][ T5020] Code: 5c c3 48 8d 44 24 08 48 89 54 24 e0 48 89 44 24 c0 48 8d 44 24 d0 48 89 44 24 c8 b8 10 00 00 00 c7 44 24 b8 10 00 00 00 0f 05 <41> 89 c0 3d 00 f0 ff ff 76 10 48 8b 15 ae 60 0d 00 f7 d8 41 83 c8
[ 78.899829][ T5020] RSP: 002b:00007fffc59e98d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 78.899840][ T5020] RAX: ffffffffffffffda RBX: 00007fee0c3106c0 RCX: 00007fee0c3ded49
[ 78.899849][ T5020] RDX: 00007fffc59f9ac8 RSI: 0000000000008914 RDI: 000000000000000f
[ 78.899855][ T5020] RBP: 00007fffc5a09c88 R08: 00007fffc59f9a88 R09: 00007fffc59f9a38
[ 78.899862][ T5020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 78.899868][ T5020] R13: 00007fffc59f9ac8 R14: 0000000000000028 R15: 0000000000008914
[ 78.899878][ T5020]
[ 79.081478][ T1038] hsr_slave_0: left promiscuous mode
[ 79.084697][ T1038] hsr_slave_1: left promiscuous mode
[ 79.087291][ T1038] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 79.090423][ T1038] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 79.096444][ T1038] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 79.099413][ T1038] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 79.106040][ T1038] veth1_macvtap: left promiscuous mode
[ 79.108438][ T1038] veth0_macvtap: left promiscuous mode
[ 79.110706][ T1038] veth1_vlan: left promiscuous mode
[ 79.112779][ T1038] veth0_vlan: left promiscuous mode
[ 79.255312][ T4666] Bluetooth: hci0: command tx timeout
[ 79.282691][ T1038] team0 (unregistering): Port device team_slave_1 removed
[ 79.297759][ T1038] team0 (unregistering): Port device team_slave_0 removed
[ 79.483350][ T5416] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 79.496135][ T5416] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 79.518392][ T5416] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 79.535741][ T5416] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 79.618659][ T5416] 8021q: adding VLAN 0 to HW filter on device bond0
[ 79.636282][ T5416] 8021q: adding VLAN 0 to HW filter on device team0
[ 79.644717][ T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 79.647621][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 79.651267][ T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 79.654182][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 79.685715][ T5416] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 79.689917][ T5416] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 79.827094][ T5416] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 79.851375][ T5416] veth0_vlan: entered promiscuous mode
[ 79.857973][ T5416] veth1_vlan: entered promiscuous mode
[ 79.870395][ T5416] veth0_macvtap: entered promiscuous mode
[ 79.876434][ T5416] veth1_macvtap: entered promiscuous mode
[ 79.885196][ T5416] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 79.890930][ T5416] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 79.897807][ T5416] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 79.901530][ T5416] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 79.905368][ T5416] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 79.908862][ T5416] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 79.930516][ T5416] ieee80211 phy5: Selected rate control algorithm 'minstrel_ht'
[ 79.941763][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 79.946245][ T5416] ieee80211 phy6: Selected rate control algorithm 'minstrel_ht'
[ 79.953669][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 79.965976][ T74] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 79.969325][ T74] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 86.614562][ T10] cfg80211: failed to load regulatory.db
VM DIAGNOSIS:
19:48:24 Registers:
info registers vcpu 0
CPU#0
RAX=000000000000006c RBX=ffffffff9aa26b20 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=0000000000000000 RSP=ffffc9000cfbec50
R8 =ffffffff8593365b R9 =1ffff11003dfd046 R10=dffffc0000000000 R11=ffffffff85933610
R12=dffffc0000000000 R13=000000000000006c R14=000000000000006c R15=00000000000003f8
RIP=ffffffff8593368e RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fee0c310740 ffffffff 00c00000
GS =0000 ffff88808c5f1000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=000055d856dbd131 CR3=0000000038544000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c0c0c0fc Opmask01=000000000000007f Opmask02=00000000feff7f7f Opmask03=0000000000000000
Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 69253a6925632500 3d45444f4d564544
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd325c0ef0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6565656565656565 6565656565656565
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ff000000 00000000ff000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffff00 ffffffffffffffff
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7373737373737233 7373260e97315e43
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7373737373737371 7373737373737373
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 696c2f7273752f00 534b4e494c564544 00454d414e564544 005845444e494649
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7665642027627375 2720746e65726170 20646e6966206f74 20656c62616e7500
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5340410502475650 0205514b40574455 05414b4c43054a51 05404947444b5000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 e15a192afe8596e9 0000000557de442c 0000000000000201 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f40639f2060 00007f40639f2060 00000000000009f1 0000000000000035
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2648383a3a26483b 3a0a00307f617930 382433273f397b27 697a787c69303b7e
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a323a3a264c3d3a 3a26333d3a3a263c 3d3a3a263f3d3a3a 263e3d3a3a26383d
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692054524f50202c 2064696c61696d20 0070253a20252054 524f504d49005452
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692020520050202c 2025204f504d4900 0061253a20252000 2527204d49005452
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
syzkaller build log:
go env (err=)
GO111MODULE='auto'
GOARCH='amd64'
GOBIN=''
GOCACHE='/syzkaller/.cache/go-build'
GOENV='/syzkaller/.config/go/env'
GOEXE=''
GOEXPERIMENT=''
GOFLAGS=''
GOHOSTARCH='amd64'
GOHOSTOS='linux'
GOINSECURE=''
GOMODCACHE='/syzkaller/jobs/linux/gopath/pkg/mod'
GONOPROXY=''
GONOSUMDB=''
GOOS='linux'
GOPATH='/syzkaller/jobs/linux/gopath'
GOPRIVATE=''
GOPROXY='https://proxy.golang.org,direct'
GOROOT='/syzkaller/jobs/linux/gopath/pkg/mod/golang.org/toolchain@v0.0.1-go1.23.6.linux-amd64'
GOSUMDB='sum.golang.org'
GOTMPDIR=''
GOTOOLCHAIN='auto'
GOTOOLDIR='/syzkaller/jobs/linux/gopath/pkg/mod/golang.org/toolchain@v0.0.1-go1.23.6.linux-amd64/pkg/tool/linux_amd64'
GOVCS=''
GOVERSION='go1.23.6'
GODEBUG=''
GOTELEMETRY='local'
GOTELEMETRYDIR='/syzkaller/.config/go/telemetry'
GCCGO='gccgo'
GOAMD64='v1'
AR='ar'
CC='gcc'
CXX='g++'
CGO_ENABLED='1'
GOMOD='/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller/go.mod'
GOWORK=''
CGO_CFLAGS='-O2 -g'
CGO_CPPFLAGS=''
CGO_CXXFLAGS='-O2 -g'
CGO_FFLAGS='-O2 -g'
CGO_LDFLAGS='-O2 -g'
PKG_CONFIG='pkg-config'
GOGCCFLAGS='-fPIC -m64 -pthread -Wl,--no-gc-sections -fmessage-length=0 -ffile-prefix-map=/tmp/go-build2889342767=/tmp/go-build -gno-record-gcc-switches'
git status (err=)
HEAD detached at e28266709dd2
nothing to commit, working tree clean
tput: No value for $TERM and no -T specified
tput: No value for $TERM and no -T specified
Makefile:31: run command via tools/syz-env for best compatibility, see:
Makefile:32: https://github.com/google/syzkaller/blob/master/docs/contributing.md#using-syz-env
go list -f '{{.Stale}}' ./sys/syz-sysgen | grep -q false || go install ./sys/syz-sysgen
make .descriptions
tput: No value for $TERM and no -T specified
tput: No value for $TERM and no -T specified
Makefile:31: run command via tools/syz-env for best compatibility, see:
Makefile:32: https://github.com/google/syzkaller/blob/master/docs/contributing.md#using-syz-env
bin/syz-sysgen
touch .descriptions
GOOS=linux GOARCH=amd64 go build "-ldflags=-s -w -X github.com/google/syzkaller/prog.GitRevision=e28266709dd2a1d1452d4a5bbf271700e10335c6 -X 'github.com/google/syzkaller/prog.gitRevisionDate=20250313-150626'" -o ./bin/linux_amd64/syz-execprog github.com/google/syzkaller/tools/syz-execprog
mkdir -p ./bin/linux_amd64
g++ -o ./bin/linux_amd64/syz-executor executor/executor.cc \
-m64 -O2 -pthread -Wall -Werror -Wparentheses -Wunused-const-variable -Wframe-larger-than=16384 -Wno-stringop-overflow -Wno-array-bounds -Wno-format-overflow -Wno-unused-but-set-variable -Wno-unused-command-line-argument -static-pie -std=c++17 -I. -Iexecutor/_include -DGOOS_linux=1 -DGOARCH_amd64=1 \
-DHOSTGOOS_linux=1 -DGIT_REVISION=\"e28266709dd2a1d1452d4a5bbf271700e10335c6\"
/usr/bin/ld: /tmp/cczxoj4c.o: in function `Connection::Connect(char const*, char const*)':
executor.cc:(.text._ZN10Connection7ConnectEPKcS1_[_ZN10Connection7ConnectEPKcS1_]+0x104): warning: Using 'gethostbyname' in statically linked applications requires at runtime the shared libraries from the glibc version used for linking