possible deadlock in lapbeth_device_event ============================================ WARNING: possible recursive locking detected 6.14.0-syzkaller-gacb4f33713b9 #0 Not tainted -------------------------------------------- dhcpcd/5023 is trying to acquire lock: ffff8880558d0d28 (&dev->lock){+.+.}-{4:4}, at: netdev_lock include/linux/netdevice.h:2751 [inline] ffff8880558d0d28 (&dev->lock){+.+.}-{4:4}, at: netif_napi_add_weight include/linux/netdevice.h:2783 [inline] ffff8880558d0d28 (&dev->lock){+.+.}-{4:4}, at: lapbeth_new_device drivers/net/wan/lapbether.c:415 [inline] ffff8880558d0d28 (&dev->lock){+.+.}-{4:4}, at: lapbeth_device_event+0x766/0xa20 drivers/net/wan/lapbether.c:460 but task is already holding lock: ffff888012bd8d28 (&dev->lock){+.+.}-{4:4}, at: netdev_lock include/linux/netdevice.h:2751 [inline] ffff888012bd8d28 (&dev->lock){+.+.}-{4:4}, at: netdev_lock_ops include/net/netdev_lock.h:42 [inline] ffff888012bd8d28 (&dev->lock){+.+.}-{4:4}, at: dev_change_flags+0x120/0x270 net/core/dev_api.c:67 other info that might help us debug this: Possible unsafe locking scenario: CPU0 ---- lock(&dev->lock); lock(&dev->lock); *** DEADLOCK *** May be due to missing lock nesting notation 2 locks held by dhcpcd/5023: #0: ffffffff900e1888 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_net_lock include/linux/rtnetlink.h:130 [inline] #0: ffffffff900e1888 (rtnl_mutex){+.+.}-{4:4}, at: devinet_ioctl+0x34e/0x1d80 net/ipv4/devinet.c:1121 #1: ffff888012bd8d28 (&dev->lock){+.+.}-{4:4}, at: netdev_lock include/linux/netdevice.h:2751 [inline] #1: ffff888012bd8d28 (&dev->lock){+.+.}-{4:4}, at: netdev_lock_ops include/net/netdev_lock.h:42 [inline] #1: ffff888012bd8d28 (&dev->lock){+.+.}-{4:4}, at: dev_change_flags+0x120/0x270 net/core/dev_api.c:67 stack backtrace: CPU: 0 UID: 0 PID: 5023 Comm: dhcpcd Not tainted 6.14.0-syzkaller-gacb4f33713b9 #0 PREEMPT(full) Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 Call Trace: <TASK> __dump_stack lib/dump_stack.c:94 [inline] dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120 print_deadlock_bug+0x2be/0x2d0 kernel/locking/lockdep.c:3042 check_deadlock kernel/locking/lockdep.c:3094 [inline] validate_chain+0x928/0x24e0 kernel/locking/lockdep.c:3896 __lock_acquire+0xad5/0xd80 kernel/locking/lockdep.c:5235 lock_acquire+0x116/0x2f0 kernel/locking/lockdep.c:5866 __mutex_lock_common kernel/locking/mutex.c:587 [inline] __mutex_lock+0x1a5/0x10c0 kernel/locking/mutex.c:732 netdev_lock include/linux/netdevice.h:2751 [inline] netif_napi_add_weight include/linux/netdevice.h:2783 [inline] lapbeth_new_device drivers/net/wan/lapbether.c:415 [inline] lapbeth_device_event+0x766/0xa20 drivers/net/wan/lapbether.c:460 notifier_call_chain+0x1a5/0x3f0 kernel/notifier.c:85 __dev_notify_flags+0x209/0x410 net/core/dev.c:-1 netif_change_flags+0xf0/0x1a0 net/core/dev.c:9438 dev_change_flags+0x146/0x270 net/core/dev_api.c:68 devinet_ioctl+0xea4/0x1d80 net/ipv4/devinet.c:1200 inet_ioctl+0x3d9/0x4f0 net/ipv4/af_inet.c:1001 sock_do_ioctl+0x15a/0x490 net/socket.c:1190 sock_ioctl+0x644/0x900 net/socket.c:1311 vfs_ioctl fs/ioctl.c:51 [inline] __do_sys_ioctl fs/ioctl.c:906 [inline] __se_sys_ioctl+0xf1/0x160 fs/ioctl.c:892 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline] do_syscall_64+0xf3/0x230 arch/x86/entry/syscall_64.c:94 entry_SYSCALL_64_after_hwframe+0x77/0x7f RIP: 0033:0x7f2562e64d49 Code: 5c c3 48 8d 44 24 08 48 89 54 24 e0 48 89 44 24 c0 48 8d 44 24 d0 48 89 44 24 c8 b8 10 00 00 00 c7 44 24 b8 10 00 00 00 0f 05 <41> 89 c0 3d 00 f0 ff ff 76 10 48 8b 15 ae 60 0d 00 f7 d8 41 83 c8 RSP: 002b:00007ffced44c878 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 00007f2562d966c0 RCX: 00007f2562e64d49 RDX: 00007ffced45ca68 RSI: 0000000000008914 RDI: 0000000000000010 RBP: 00007ffced46cc28 R08: 00007ffced45ca28 R09: 00007ffced45c9d8 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffced45ca68 R14: 0000000000000028 R15: 0000000000008914 </TASK> Warning: Identity file root not accessible: No such file or directory. Warning: Permanently added '[localhost]:19596' (ED25519) to the list of known hosts. 2025/03/28 08:53:06 ignoring optional flag "sandboxArg"="0" 2025/03/28 08:53:08 parsed 1 programs [ 66.184154][ T5318] cgroup: Unknown subsys name 'net' [ 66.245481][ T5318] cgroup: Unknown subsys name 'cpuset' [ 66.249820][ T5318] cgroup: Unknown subsys name 'rlimit' [ 67.596360][ T5318] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 72.439175][ T5330] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 72.539365][ T5344] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 72.543266][ T5344] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 72.546436][ T5344] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 72.549738][ T5344] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 72.553510][ T5344] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 73.482815][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 73.486075][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 73.957581][ T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 73.960710][ T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.144413][ T5331] chnl_net:caif_netlink_parms(): no params data found [ 74.539931][ T5331] bridge0: port 1(bridge_slave_0) entered blocking state [ 74.620639][ T5331] bridge0: port 1(bridge_slave_0) entered disabled state [ 74.659142][ T5331] bridge_slave_0: entered allmulticast mode [ 74.692967][ T5331] bridge_slave_0: entered promiscuous mode [ 74.924743][ T5331] bridge0: port 2(bridge_slave_1) entered blocking state [ 74.937950][ T5331] bridge0: port 2(bridge_slave_1) entered disabled state [ 74.940979][ T5331] bridge_slave_1: entered allmulticast mode [ 74.980689][ T5331] bridge_slave_1: entered promiscuous mode [ 75.175150][ T5331] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 75.330635][ T5331] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 75.494880][ T5331] team0: Port device team_slave_0 added [ 75.499746][ T5331] team0: Port device team_slave_1 added [ 75.641919][ T5331] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 75.658325][ T5331] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 75.744827][ T5331] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 75.803032][ T5331] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 75.805902][ T5331] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 75.879597][ T5331] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 76.246401][ T5331] hsr_slave_0: entered promiscuous mode [ 76.289071][ T5331] hsr_slave_1: entered promiscuous mode [ 76.393151][ T1312] ieee802154 phy0 wpan0: encryption failed: -22 [ 76.395696][ T1312] ieee802154 phy1 wpan1: encryption failed: -22 [ 76.828765][ T5331] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 76.844286][ T5331] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 76.855854][ T5331] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 76.865662][ T5331] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 76.970664][ T5331] 8021q: adding VLAN 0 to HW filter on device bond0 [ 76.988554][ T5331] 8021q: adding VLAN 0 to HW filter on device team0 [ 77.005592][ T1084] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.008423][ T1084] bridge0: port 1(bridge_slave_0) entered forwarding state [ 77.033644][ T1084] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.036413][ T1084] bridge0: port 2(bridge_slave_1) entered forwarding state [ 77.225982][ T5331] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 77.459719][ T5331] veth0_vlan: entered promiscuous mode [ 77.474401][ T5331] veth1_vlan: entered promiscuous mode [ 77.508490][ T5331] veth0_macvtap: entered promiscuous mode [ 77.524675][ T5331] veth1_macvtap: entered promiscuous mode [ 77.544011][ T5331] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 77.551238][ T5331] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 77.565951][ T5331] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.569687][ T5331] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.582909][ T5331] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.586479][ T5331] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 2025/03/28 08:53:22 executed programs: 0 [ 77.836167][ T4668] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 77.839919][ T4668] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 77.850500][ T4668] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 77.854199][ T4668] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 77.860799][ T4668] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 78.044927][ T5436] chnl_net:caif_netlink_parms(): no params data found [ 78.111705][ T5436] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.124157][ T5436] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.127180][ T5436] bridge_slave_0: entered allmulticast mode [ 78.135550][ T5436] bridge_slave_0: entered promiscuous mode [ 78.145884][ T5436] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.148946][ T5436] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.151893][ T5436] bridge_slave_1: entered allmulticast mode [ 78.157116][ T5436] bridge_slave_1: entered promiscuous mode [ 78.171484][ T5436] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.176932][ T5436] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 78.193409][ T5436] team0: Port device team_slave_0 added [ 78.197425][ T5436] team0: Port device team_slave_1 added [ 78.210237][ T5436] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 78.213410][ T5436] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 78.225297][ T5436] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 78.233950][ T5436] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 78.236864][ T5436] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 78.248575][ T5436] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 78.272542][ T5436] hsr_slave_0: entered promiscuous mode [ 78.275215][ T5436] hsr_slave_1: entered promiscuous mode [ 78.277897][ T5436] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 78.281229][ T5436] Cannot create hsr debugfs directory [ 78.365190][ T5436] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 78.374205][ T5436] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 78.390155][ T5436] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 78.406405][ T5436] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 78.445560][ T5436] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.448627][ T5436] bridge0: port 2(bridge_slave_1) entered forwarding state [ 78.452377][ T5436] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.455381][ T5436] bridge0: port 1(bridge_slave_0) entered forwarding state [ 78.558340][ T5436] 8021q: adding VLAN 0 to HW filter on device bond0 [ 78.579527][ T1084] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.583952][ T1084] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.593405][ T5436] 8021q: adding VLAN 0 to HW filter on device team0 [ 78.603776][ T42] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.606671][ T42] bridge0: port 1(bridge_slave_0) entered forwarding state [ 78.615840][ T42] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.619061][ T42] bridge0: port 2(bridge_slave_1) entered forwarding state [ 78.797526][ T5436] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 78.849640][ T5436] veth0_vlan: entered promiscuous mode [ 78.878721][ T5436] veth1_vlan: entered promiscuous mode [ 78.916008][ T5436] veth0_macvtap: entered promiscuous mode [ 78.926335][ T5436] veth1_macvtap: entered promiscuous mode [ 78.948276][ T5436] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 78.958661][ T5436] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.974157][ T5436] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 78.984156][ T5436] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 78.988309][ T5436] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 79.004482][ T5436] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 79.024328][ T5436] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.027728][ T5436] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.031620][ T5436] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.053507][ T5436] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.141304][ T1048] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 79.151613][ T1048] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 79.165723][ T1048] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 79.175704][ T1048] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 79.505822][ T1084] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 80.322339][ T1084] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 80.569891][ T1084] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 80.610051][ T1084] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 80.695651][ T1084] bridge_slave_1: left allmulticast mode [ 80.698073][ T1084] bridge_slave_1: left promiscuous mode [ 80.700943][ T1084] bridge0: port 2(bridge_slave_1) entered disabled state [ 80.716580][ T1084] bridge_slave_0: left allmulticast mode [ 80.718643][ T1084] bridge_slave_0: left promiscuous mode [ 80.720620][ T1084] bridge0: port 1(bridge_slave_0) entered disabled state [ 81.029582][ T1084] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 81.035756][ T1084] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 81.040856][ T1084] bond0 (unregistering): Released all slaves [ 81.055158][ T5023] [ 81.056229][ T5023] ============================================ [ 81.058713][ T5023] WARNING: possible recursive locking detected [ 81.061175][ T5023] 6.14.0-syzkaller-gacb4f33713b9 #0 Not tainted [ 81.063703][ T5023] -------------------------------------------- [ 81.066232][ T5023] dhcpcd/5023 is trying to acquire lock: [ 81.068470][ T5023] ffff8880558d0d28 (&dev->lock){+.+.}-{4:4}, at: lapbeth_device_event+0x766/0xa20 [ 81.072279][ T5023] [ 81.072279][ T5023] but task is already holding lock: [ 81.075179][ T5023] ffff888012bd8d28 (&dev->lock){+.+.}-{4:4}, at: dev_change_flags+0x120/0x270 [ 81.078734][ T5023] [ 81.078734][ T5023] other info that might help us debug this: [ 81.081918][ T5023] Possible unsafe locking scenario: [ 81.081918][ T5023] [ 81.085072][ T5023] CPU0 [ 81.086431][ T5023] ---- [ 81.087802][ T5023] lock(&dev->lock); [ 81.089479][ T5023] lock(&dev->lock); [ 81.091172][ T5023] [ 81.091172][ T5023] *** DEADLOCK *** [ 81.091172][ T5023] [ 81.094517][ T5023] May be due to missing lock nesting notation [ 81.094517][ T5023] [ 81.097881][ T5023] 2 locks held by dhcpcd/5023: [ 81.099804][ T5023] #0: ffffffff900e1888 (rtnl_mutex){+.+.}-{4:4}, at: devinet_ioctl+0x34e/0x1d80 [ 81.103401][ T5023] #1: ffff888012bd8d28 (&dev->lock){+.+.}-{4:4}, at: dev_change_flags+0x120/0x270 [ 81.107235][ T5023] [ 81.107235][ T5023] stack backtrace: [ 81.109709][ T5023] CPU: 0 UID: 0 PID: 5023 Comm: dhcpcd Not tainted 6.14.0-syzkaller-gacb4f33713b9 #0 PREEMPT(full) [ 81.109724][ T5023] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 81.109733][ T5023] Call Trace: [ 81.109740][ T5023] <TASK> [ 81.109746][ T5023] dump_stack_lvl+0x241/0x360 [ 81.109766][ T5023] ? __pfx_dump_stack_lvl+0x10/0x10 [ 81.109780][ T5023] ? __pfx__printk+0x10/0x10 [ 81.109792][ T5023] ? print_lock+0x171/0x1a0 [ 81.109804][ T5023] print_deadlock_bug+0x2be/0x2d0 [ 81.109816][ T5023] validate_chain+0x928/0x24e0 [ 81.109828][ T5023] ? stack_depot_save_flags+0x3a/0x970 [ 81.109842][ T5023] ? look_up_lock_class+0x7b/0x170 [ 81.109857][ T5023] ? register_lock_class+0x54/0x330 [ 81.109880][ T5023] __lock_acquire+0xad5/0xd80 [ 81.109897][ T5023] lock_acquire+0x116/0x2f0 [ 81.109910][ T5023] ? lapbeth_device_event+0x766/0xa20 [ 81.109926][ T5023] __mutex_lock+0x1a5/0x10c0 [ 81.109939][ T5023] ? lapbeth_device_event+0x766/0xa20 [ 81.109953][ T5023] ? ref_tracker_alloc+0x316/0x4c0 [ 81.109965][ T5023] ? lapbeth_device_event+0x766/0xa20 [ 81.109979][ T5023] ? rcu_is_watching+0x15/0xb0 [ 81.109991][ T5023] ? __pfx___mutex_lock+0x10/0x10 [ 81.110007][ T5023] ? __raw_spin_lock_init+0x45/0x100 [ 81.110020][ T5023] lapbeth_device_event+0x766/0xa20 [ 81.110036][ T5023] notifier_call_chain+0x1a5/0x3f0 [ 81.110050][ T5023] __dev_notify_flags+0x209/0x410 [ 81.110062][ T5023] ? __pfx___dev_notify_flags+0x10/0x10 [ 81.110071][ T5023] ? __dev_change_flags+0x517/0x700 [ 81.110081][ T5023] ? __pfx___mutex_lock+0x10/0x10 [ 81.110094][ T5023] ? __pfx___dev_change_flags+0x10/0x10 [ 81.110104][ T5023] ? __pfx___mutex_lock+0x10/0x10 [ 81.110117][ T5023] netif_change_flags+0xf0/0x1a0 [ 81.110127][ T5023] dev_change_flags+0x146/0x270 [ 81.110144][ T5023] devinet_ioctl+0xea4/0x1d80 [ 81.110161][ T5023] ? __pfx_devinet_ioctl+0x10/0x10 [ 81.110176][ T5023] ? get_user_ifreq+0x1bb/0x200 [ 81.110188][ T5023] inet_ioctl+0x3d9/0x4f0 [ 81.110200][ T5023] ? __pfx_inet_ioctl+0x10/0x10 [ 81.110211][ T5023] ? lockdep_hardirqs_on+0x9d/0x150 [ 81.110227][ T5023] ? tomoyo_path_number_perm+0x215/0x790 [ 81.110245][ T5023] sock_do_ioctl+0x15a/0x490 [ 81.110259][ T5023] ? __pfx_sock_do_ioctl+0x10/0x10 [ 81.110271][ T5023] ? fd_install+0x9c/0x4c0 [ 81.110287][ T5023] sock_ioctl+0x644/0x900 [ 81.110300][ T5023] ? __pfx_sock_ioctl+0x10/0x10 [ 81.110312][ T5023] ? __sys_socket+0x209/0x3c0 [ 81.110329][ T5023] ? __pfx_sock_ioctl+0x10/0x10 [ 81.110342][ T5023] __se_sys_ioctl+0xf1/0x160 [ 81.110355][ T5023] do_syscall_64+0xf3/0x230 [ 81.110369][ T5023] ? clear_bhb_loop+0x45/0xa0 [ 81.110381][ T5023] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 81.110392][ T5023] RIP: 0033:0x7f2562e64d49 [ 81.110404][ T5023] Code: 5c c3 48 8d 44 24 08 48 89 54 24 e0 48 89 44 24 c0 48 8d 44 24 d0 48 89 44 24 c8 b8 10 00 00 00 c7 44 24 b8 10 00 00 00 0f 05 <41> 89 c0 3d 00 f0 ff ff 76 10 48 8b 15 ae 60 0d 00 f7 d8 41 83 c8 [ 81.110413][ T5023] RSP: 002b:00007ffced44c878 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 81.110426][ T5023] RAX: ffffffffffffffda RBX: 00007f2562d966c0 RCX: 00007f2562e64d49 [ 81.110434][ T5023] RDX: 00007ffced45ca68 RSI: 0000000000008914 RDI: 0000000000000010 [ 81.110441][ T5023] RBP: 00007ffced46cc28 R08: 00007ffced45ca28 R09: 00007ffced45c9d8 [ 81.110449][ T5023] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 81.110455][ T5023] R13: 00007ffced45ca68 R14: 0000000000000028 R15: 0000000000008914 [ 81.110465][ T5023] </TASK> [ 81.304739][ T1084] hsr_slave_0: left promiscuous mode [ 81.307273][ T1084] hsr_slave_1: left promiscuous mode [ 81.309714][ T1084] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 81.314309][ T1084] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 81.317730][ T1084] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 81.320810][ T1084] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 81.326362][ T1084] veth1_macvtap: left promiscuous mode [ 81.328706][ T1084] veth0_macvtap: left promiscuous mode [ 81.330993][ T1084] veth1_vlan: left promiscuous mode [ 81.342575][ T1084] veth0_vlan: left promiscuous mode [ 81.497754][ T1084] team0 (unregistering): Port device team_slave_1 removed [ 81.510156][ T1084] team0 (unregistering): Port device team_slave_0 removed [ 86.625317][ T10] cfg80211: failed to load regulatory.db VM DIAGNOSIS: 08:53:34 Registers: info registers vcpu 0 CPU#0 RAX=1f3ba317c8976e00 RBX=ffffffff8197cc2e RCX=ffffffff8c25172c RDX=0000000000000001 RSI=ffffffff8ca15360 RDI=ffffffff8197cc2e RBP=ffffffff8ea07eb8 RSP=ffffffff8ea07d68 R8 =ffff88801fc32b5b R9 =1ffff11003f8656b R10=dffffc0000000000 R11=ffffed1003f8656c R12=1ffffffff1d40fc6 R13=1ffffffff1d52cb0 R14=0000000000000000 R15=dffffc0000000000 RIP=ffffffff8c252933 RFL=000002c6 [--SZ-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88808c5f1000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000559a490db080 CR3=000000000eb38000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000c0000000 Opmask01=0000000000000002 Opmask02=000000000000ffdf Opmask03=0000000000000000 Opmask04=00000000ffffffdf Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe4565f2e0 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00ff000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000041 0000000004ba5500 44455a494c414954 494e495f43455355 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6f742079617272 6120656c75722079 7261726f706d6574 002a3f005b3f2a00 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a4a51055c445757 440540495057055c 5744574a55484051 000f1a005b1a0f00 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 93ec52b753abf664 0000559f10a805fd 0000000000000091 00302d787400302e ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f08f25f1f20 00007f08f25f1f20 00000000000004f1 0000000000003031 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 59647a305f474f5b 647c79303a243a78 68303e3b3a38253b 3a253e3a6e68303b ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 382433273f397b27 697a787c69303b7e 69305f474f5b647c 6930382433273f39 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692054524f50202c 2064696c61696d20 0070253a20252054 524f504d49005452 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692020520050202c 2025204f504d4900 0061253a20252000 2527204d49005452 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 syzkaller build log: go env (err=<nil>) GO111MODULE='auto' GOARCH='amd64' GOBIN='' GOCACHE='/syzkaller/.cache/go-build' GOENV='/syzkaller/.config/go/env' GOEXE='' GOEXPERIMENT='' GOFLAGS='' GOHOSTARCH='amd64' GOHOSTOS='linux' GOINSECURE='' GOMODCACHE='/syzkaller/jobs/linux/gopath/pkg/mod' GONOPROXY='' GONOSUMDB='' GOOS='linux' GOPATH='/syzkaller/jobs/linux/gopath' GOPRIVATE='' GOPROXY='https://proxy.golang.org,direct' GOROOT='/syzkaller/jobs/linux/gopath/pkg/mod/golang.org/toolchain@v0.0.1-go1.23.6.linux-amd64' GOSUMDB='sum.golang.org' GOTMPDIR='' GOTOOLCHAIN='auto' GOTOOLDIR='/syzkaller/jobs/linux/gopath/pkg/mod/golang.org/toolchain@v0.0.1-go1.23.6.linux-amd64/pkg/tool/linux_amd64' GOVCS='' GOVERSION='go1.23.6' GODEBUG='' GOTELEMETRY='local' GOTELEMETRYDIR='/syzkaller/.config/go/telemetry' GCCGO='gccgo' GOAMD64='v1' AR='ar' CC='gcc' CXX='g++' CGO_ENABLED='1' GOMOD='/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller/go.mod' GOWORK='' CGO_CFLAGS='-O2 -g' CGO_CPPFLAGS='' CGO_CXXFLAGS='-O2 -g' CGO_FFLAGS='-O2 -g' CGO_LDFLAGS='-O2 -g' PKG_CONFIG='pkg-config' GOGCCFLAGS='-fPIC -m64 -pthread -Wl,--no-gc-sections -fmessage-length=0 -ffile-prefix-map=/tmp/go-build492986844=/tmp/go-build -gno-record-gcc-switches' git status (err=<nil>) HEAD detached at 2afad16efd9e nothing to commit, working tree clean tput: No value for $TERM and no -T specified tput: No value for $TERM and no -T specified Makefile:31: run command via tools/syz-env for best compatibility, see: Makefile:32: https://github.com/google/syzkaller/blob/master/docs/contributing.md#using-syz-env go list -f '{{.Stale}}' ./sys/syz-sysgen | grep -q false || go install ./sys/syz-sysgen make .descriptions tput: No value for $TERM and no -T specified tput: No value for $TERM and no -T specified Makefile:31: run command via tools/syz-env for best compatibility, see: Makefile:32: https://github.com/google/syzkaller/blob/master/docs/contributing.md#using-syz-env bin/syz-sysgen touch .descriptions GOOS=linux GOARCH=amd64 go build "-ldflags=-s -w -X github.com/google/syzkaller/prog.GitRevision=2afad16efd9ec2029fe61dcd74d9d5154dce0f2e -X 'github.com/google/syzkaller/prog.gitRevisionDate=20250212-164902'" -o ./bin/linux_amd64/syz-execprog github.com/google/syzkaller/tools/syz-execprog mkdir -p ./bin/linux_amd64 g++ -o ./bin/linux_amd64/syz-executor executor/executor.cc \ -m64 -O2 -pthread -Wall -Werror -Wparentheses -Wunused-const-variable -Wframe-larger-than=16384 -Wno-stringop-overflow -Wno-array-bounds -Wno-format-overflow -Wno-unused-but-set-variable -Wno-unused-command-line-argument -static-pie -std=c++17 -I. -Iexecutor/_include -DGOOS_linux=1 -DGOARCH_amd64=1 \ -DHOSTGOOS_linux=1 -DGIT_REVISION=\"2afad16efd9ec2029fe61dcd74d9d5154dce0f2e\" /usr/bin/ld: /tmp/ccAZFeEc.o: in function `Connection::Connect(char const*, char const*)': executor.cc:(.text._ZN10Connection7ConnectEPKcS1_[_ZN10Connection7ConnectEPKcS1_]+0x104): warning: Using 'gethostbyname' in statically linked applications requires at runtime the shared libraries from the glibc version used for linking