possible deadlock in lapbeth_device_event

============================================
WARNING: possible recursive locking detected
6.14.0-syzkaller-gacb4f33713b9 #0 Not tainted
--------------------------------------------
dhcpcd/5023 is trying to acquire lock:
ffff8880558d0d28 (&dev->lock){+.+.}-{4:4}, at: netdev_lock include/linux/netdevice.h:2751 [inline]
ffff8880558d0d28 (&dev->lock){+.+.}-{4:4}, at: netif_napi_add_weight include/linux/netdevice.h:2783 [inline]
ffff8880558d0d28 (&dev->lock){+.+.}-{4:4}, at: lapbeth_new_device drivers/net/wan/lapbether.c:415 [inline]
ffff8880558d0d28 (&dev->lock){+.+.}-{4:4}, at: lapbeth_device_event+0x766/0xa20 drivers/net/wan/lapbether.c:460

but task is already holding lock:
ffff888012bd8d28 (&dev->lock){+.+.}-{4:4}, at: netdev_lock include/linux/netdevice.h:2751 [inline]
ffff888012bd8d28 (&dev->lock){+.+.}-{4:4}, at: netdev_lock_ops include/net/netdev_lock.h:42 [inline]
ffff888012bd8d28 (&dev->lock){+.+.}-{4:4}, at: dev_change_flags+0x120/0x270 net/core/dev_api.c:67

other info that might help us debug this:
 Possible unsafe locking scenario:

       CPU0
       ----
  lock(&dev->lock);
  lock(&dev->lock);

 *** DEADLOCK ***

 May be due to missing lock nesting notation

2 locks held by dhcpcd/5023:
 #0: ffffffff900e1888 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_net_lock include/linux/rtnetlink.h:130 [inline]
 #0: ffffffff900e1888 (rtnl_mutex){+.+.}-{4:4}, at: devinet_ioctl+0x34e/0x1d80 net/ipv4/devinet.c:1121
 #1: ffff888012bd8d28 (&dev->lock){+.+.}-{4:4}, at: netdev_lock include/linux/netdevice.h:2751 [inline]
 #1: ffff888012bd8d28 (&dev->lock){+.+.}-{4:4}, at: netdev_lock_ops include/net/netdev_lock.h:42 [inline]
 #1: ffff888012bd8d28 (&dev->lock){+.+.}-{4:4}, at: dev_change_flags+0x120/0x270 net/core/dev_api.c:67

stack backtrace:
CPU: 0 UID: 0 PID: 5023 Comm: dhcpcd Not tainted 6.14.0-syzkaller-gacb4f33713b9 #0 PREEMPT(full) 
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
Call Trace:
 <TASK>
 __dump_stack lib/dump_stack.c:94 [inline]
 dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120
 print_deadlock_bug+0x2be/0x2d0 kernel/locking/lockdep.c:3042
 check_deadlock kernel/locking/lockdep.c:3094 [inline]
 validate_chain+0x928/0x24e0 kernel/locking/lockdep.c:3896
 __lock_acquire+0xad5/0xd80 kernel/locking/lockdep.c:5235
 lock_acquire+0x116/0x2f0 kernel/locking/lockdep.c:5866
 __mutex_lock_common kernel/locking/mutex.c:587 [inline]
 __mutex_lock+0x1a5/0x10c0 kernel/locking/mutex.c:732
 netdev_lock include/linux/netdevice.h:2751 [inline]
 netif_napi_add_weight include/linux/netdevice.h:2783 [inline]
 lapbeth_new_device drivers/net/wan/lapbether.c:415 [inline]
 lapbeth_device_event+0x766/0xa20 drivers/net/wan/lapbether.c:460
 notifier_call_chain+0x1a5/0x3f0 kernel/notifier.c:85
 __dev_notify_flags+0x209/0x410 net/core/dev.c:-1
 netif_change_flags+0xf0/0x1a0 net/core/dev.c:9438
 dev_change_flags+0x146/0x270 net/core/dev_api.c:68
 devinet_ioctl+0xea4/0x1d80 net/ipv4/devinet.c:1200
 inet_ioctl+0x3d9/0x4f0 net/ipv4/af_inet.c:1001
 sock_do_ioctl+0x15a/0x490 net/socket.c:1190
 sock_ioctl+0x644/0x900 net/socket.c:1311
 vfs_ioctl fs/ioctl.c:51 [inline]
 __do_sys_ioctl fs/ioctl.c:906 [inline]
 __se_sys_ioctl+0xf1/0x160 fs/ioctl.c:892
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xf3/0x230 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f2562e64d49
Code: 5c c3 48 8d 44 24 08 48 89 54 24 e0 48 89 44 24 c0 48 8d 44 24 d0 48 89 44 24 c8 b8 10 00 00 00 c7 44 24 b8 10 00 00 00 0f 05 <41> 89 c0 3d 00 f0 ff ff 76 10 48 8b 15 ae 60 0d 00 f7 d8 41 83 c8
RSP: 002b:00007ffced44c878 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 00007f2562d966c0 RCX: 00007f2562e64d49
RDX: 00007ffced45ca68 RSI: 0000000000008914 RDI: 0000000000000010
RBP: 00007ffced46cc28 R08: 00007ffced45ca28 R09: 00007ffced45c9d8
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffced45ca68 R14: 0000000000000028 R15: 0000000000008914
 </TASK>


Warning: Identity file root not accessible: No such file or directory.
Warning: Permanently added '[localhost]:19596' (ED25519) to the list of known hosts.
2025/03/28 08:53:06 ignoring optional flag "sandboxArg"="0"
2025/03/28 08:53:08 parsed 1 programs
[   66.184154][ T5318] cgroup: Unknown subsys name 'net'
[   66.245481][ T5318] cgroup: Unknown subsys name 'cpuset'
[   66.249820][ T5318] cgroup: Unknown subsys name 'rlimit'
[   67.596360][ T5318] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   72.439175][ T5330] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   72.539365][ T5344] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   72.543266][ T5344] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   72.546436][ T5344] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   72.549738][ T5344] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   72.553510][ T5344] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   73.482815][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.486075][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.957581][   T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.960710][   T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.144413][ T5331] chnl_net:caif_netlink_parms(): no params data found
[   74.539931][ T5331] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.620639][ T5331] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.659142][ T5331] bridge_slave_0: entered allmulticast mode
[   74.692967][ T5331] bridge_slave_0: entered promiscuous mode
[   74.924743][ T5331] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.937950][ T5331] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.940979][ T5331] bridge_slave_1: entered allmulticast mode
[   74.980689][ T5331] bridge_slave_1: entered promiscuous mode
[   75.175150][ T5331] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   75.330635][ T5331] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   75.494880][ T5331] team0: Port device team_slave_0 added
[   75.499746][ T5331] team0: Port device team_slave_1 added
[   75.641919][ T5331] batman_adv: batadv0: Adding interface: batadv_slave_0
[   75.658325][ T5331] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   75.744827][ T5331] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   75.803032][ T5331] batman_adv: batadv0: Adding interface: batadv_slave_1
[   75.805902][ T5331] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   75.879597][ T5331] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   76.246401][ T5331] hsr_slave_0: entered promiscuous mode
[   76.289071][ T5331] hsr_slave_1: entered promiscuous mode
[   76.393151][ T1312] ieee802154 phy0 wpan0: encryption failed: -22
[   76.395696][ T1312] ieee802154 phy1 wpan1: encryption failed: -22
[   76.828765][ T5331] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   76.844286][ T5331] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   76.855854][ T5331] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   76.865662][ T5331] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   76.970664][ T5331] 8021q: adding VLAN 0 to HW filter on device bond0
[   76.988554][ T5331] 8021q: adding VLAN 0 to HW filter on device team0
[   77.005592][ T1084] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.008423][ T1084] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.033644][ T1084] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.036413][ T1084] bridge0: port 2(bridge_slave_1) entered forwarding state
[   77.225982][ T5331] 8021q: adding VLAN 0 to HW filter on device batadv0
[   77.459719][ T5331] veth0_vlan: entered promiscuous mode
[   77.474401][ T5331] veth1_vlan: entered promiscuous mode
[   77.508490][ T5331] veth0_macvtap: entered promiscuous mode
[   77.524675][ T5331] veth1_macvtap: entered promiscuous mode
[   77.544011][ T5331] batman_adv: batadv0: Interface activated: batadv_slave_0
[   77.551238][ T5331] batman_adv: batadv0: Interface activated: batadv_slave_1
[   77.565951][ T5331] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   77.569687][ T5331] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   77.582909][ T5331] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   77.586479][ T5331] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
2025/03/28 08:53:22 executed programs: 0
[   77.836167][ T4668] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   77.839919][ T4668] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   77.850500][ T4668] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   77.854199][ T4668] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   77.860799][ T4668] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   78.044927][ T5436] chnl_net:caif_netlink_parms(): no params data found
[   78.111705][ T5436] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.124157][ T5436] bridge0: port 1(bridge_slave_0) entered disabled state
[   78.127180][ T5436] bridge_slave_0: entered allmulticast mode
[   78.135550][ T5436] bridge_slave_0: entered promiscuous mode
[   78.145884][ T5436] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.148946][ T5436] bridge0: port 2(bridge_slave_1) entered disabled state
[   78.151893][ T5436] bridge_slave_1: entered allmulticast mode
[   78.157116][ T5436] bridge_slave_1: entered promiscuous mode
[   78.171484][ T5436] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   78.176932][ T5436] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   78.193409][ T5436] team0: Port device team_slave_0 added
[   78.197425][ T5436] team0: Port device team_slave_1 added
[   78.210237][ T5436] batman_adv: batadv0: Adding interface: batadv_slave_0
[   78.213410][ T5436] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   78.225297][ T5436] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   78.233950][ T5436] batman_adv: batadv0: Adding interface: batadv_slave_1
[   78.236864][ T5436] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   78.248575][ T5436] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   78.272542][ T5436] hsr_slave_0: entered promiscuous mode
[   78.275215][ T5436] hsr_slave_1: entered promiscuous mode
[   78.277897][ T5436] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   78.281229][ T5436] Cannot create hsr debugfs directory
[   78.365190][ T5436] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   78.374205][ T5436] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   78.390155][ T5436] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   78.406405][ T5436] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   78.445560][ T5436] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.448627][ T5436] bridge0: port 2(bridge_slave_1) entered forwarding state
[   78.452377][ T5436] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.455381][ T5436] bridge0: port 1(bridge_slave_0) entered forwarding state
[   78.558340][ T5436] 8021q: adding VLAN 0 to HW filter on device bond0
[   78.579527][ T1084] bridge0: port 1(bridge_slave_0) entered disabled state
[   78.583952][ T1084] bridge0: port 2(bridge_slave_1) entered disabled state
[   78.593405][ T5436] 8021q: adding VLAN 0 to HW filter on device team0
[   78.603776][   T42] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.606671][   T42] bridge0: port 1(bridge_slave_0) entered forwarding state
[   78.615840][   T42] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.619061][   T42] bridge0: port 2(bridge_slave_1) entered forwarding state
[   78.797526][ T5436] 8021q: adding VLAN 0 to HW filter on device batadv0
[   78.849640][ T5436] veth0_vlan: entered promiscuous mode
[   78.878721][ T5436] veth1_vlan: entered promiscuous mode
[   78.916008][ T5436] veth0_macvtap: entered promiscuous mode
[   78.926335][ T5436] veth1_macvtap: entered promiscuous mode
[   78.948276][ T5436] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   78.958661][ T5436] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.974157][ T5436] batman_adv: batadv0: Interface activated: batadv_slave_0
[   78.984156][ T5436] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.988309][ T5436] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   79.004482][ T5436] batman_adv: batadv0: Interface activated: batadv_slave_1
[   79.024328][ T5436] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   79.027728][ T5436] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   79.031620][ T5436] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   79.053507][ T5436] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   79.141304][ T1048] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.151613][ T1048] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.165723][ T1048] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.175704][ T1048] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.505822][ T1084] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.322339][ T1084] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.569891][ T1084] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.610051][ T1084] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.695651][ T1084] bridge_slave_1: left allmulticast mode
[   80.698073][ T1084] bridge_slave_1: left promiscuous mode
[   80.700943][ T1084] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.716580][ T1084] bridge_slave_0: left allmulticast mode
[   80.718643][ T1084] bridge_slave_0: left promiscuous mode
[   80.720620][ T1084] bridge0: port 1(bridge_slave_0) entered disabled state
[   81.029582][ T1084] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   81.035756][ T1084] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   81.040856][ T1084] bond0 (unregistering): Released all slaves
[   81.055158][ T5023] 
[   81.056229][ T5023] ============================================
[   81.058713][ T5023] WARNING: possible recursive locking detected
[   81.061175][ T5023] 6.14.0-syzkaller-gacb4f33713b9 #0 Not tainted
[   81.063703][ T5023] --------------------------------------------
[   81.066232][ T5023] dhcpcd/5023 is trying to acquire lock:
[   81.068470][ T5023] ffff8880558d0d28 (&dev->lock){+.+.}-{4:4}, at: lapbeth_device_event+0x766/0xa20
[   81.072279][ T5023] 
[   81.072279][ T5023] but task is already holding lock:
[   81.075179][ T5023] ffff888012bd8d28 (&dev->lock){+.+.}-{4:4}, at: dev_change_flags+0x120/0x270
[   81.078734][ T5023] 
[   81.078734][ T5023] other info that might help us debug this:
[   81.081918][ T5023]  Possible unsafe locking scenario:
[   81.081918][ T5023] 
[   81.085072][ T5023]        CPU0
[   81.086431][ T5023]        ----
[   81.087802][ T5023]   lock(&dev->lock);
[   81.089479][ T5023]   lock(&dev->lock);
[   81.091172][ T5023] 
[   81.091172][ T5023]  *** DEADLOCK ***
[   81.091172][ T5023] 
[   81.094517][ T5023]  May be due to missing lock nesting notation
[   81.094517][ T5023] 
[   81.097881][ T5023] 2 locks held by dhcpcd/5023:
[   81.099804][ T5023]  #0: ffffffff900e1888 (rtnl_mutex){+.+.}-{4:4}, at: devinet_ioctl+0x34e/0x1d80
[   81.103401][ T5023]  #1: ffff888012bd8d28 (&dev->lock){+.+.}-{4:4}, at: dev_change_flags+0x120/0x270
[   81.107235][ T5023] 
[   81.107235][ T5023] stack backtrace:
[   81.109709][ T5023] CPU: 0 UID: 0 PID: 5023 Comm: dhcpcd Not tainted 6.14.0-syzkaller-gacb4f33713b9 #0 PREEMPT(full) 
[   81.109724][ T5023] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   81.109733][ T5023] Call Trace:
[   81.109740][ T5023]  <TASK>
[   81.109746][ T5023]  dump_stack_lvl+0x241/0x360
[   81.109766][ T5023]  ? __pfx_dump_stack_lvl+0x10/0x10
[   81.109780][ T5023]  ? __pfx__printk+0x10/0x10
[   81.109792][ T5023]  ? print_lock+0x171/0x1a0
[   81.109804][ T5023]  print_deadlock_bug+0x2be/0x2d0
[   81.109816][ T5023]  validate_chain+0x928/0x24e0
[   81.109828][ T5023]  ? stack_depot_save_flags+0x3a/0x970
[   81.109842][ T5023]  ? look_up_lock_class+0x7b/0x170
[   81.109857][ T5023]  ? register_lock_class+0x54/0x330
[   81.109880][ T5023]  __lock_acquire+0xad5/0xd80
[   81.109897][ T5023]  lock_acquire+0x116/0x2f0
[   81.109910][ T5023]  ? lapbeth_device_event+0x766/0xa20
[   81.109926][ T5023]  __mutex_lock+0x1a5/0x10c0
[   81.109939][ T5023]  ? lapbeth_device_event+0x766/0xa20
[   81.109953][ T5023]  ? ref_tracker_alloc+0x316/0x4c0
[   81.109965][ T5023]  ? lapbeth_device_event+0x766/0xa20
[   81.109979][ T5023]  ? rcu_is_watching+0x15/0xb0
[   81.109991][ T5023]  ? __pfx___mutex_lock+0x10/0x10
[   81.110007][ T5023]  ? __raw_spin_lock_init+0x45/0x100
[   81.110020][ T5023]  lapbeth_device_event+0x766/0xa20
[   81.110036][ T5023]  notifier_call_chain+0x1a5/0x3f0
[   81.110050][ T5023]  __dev_notify_flags+0x209/0x410
[   81.110062][ T5023]  ? __pfx___dev_notify_flags+0x10/0x10
[   81.110071][ T5023]  ? __dev_change_flags+0x517/0x700
[   81.110081][ T5023]  ? __pfx___mutex_lock+0x10/0x10
[   81.110094][ T5023]  ? __pfx___dev_change_flags+0x10/0x10
[   81.110104][ T5023]  ? __pfx___mutex_lock+0x10/0x10
[   81.110117][ T5023]  netif_change_flags+0xf0/0x1a0
[   81.110127][ T5023]  dev_change_flags+0x146/0x270
[   81.110144][ T5023]  devinet_ioctl+0xea4/0x1d80
[   81.110161][ T5023]  ? __pfx_devinet_ioctl+0x10/0x10
[   81.110176][ T5023]  ? get_user_ifreq+0x1bb/0x200
[   81.110188][ T5023]  inet_ioctl+0x3d9/0x4f0
[   81.110200][ T5023]  ? __pfx_inet_ioctl+0x10/0x10
[   81.110211][ T5023]  ? lockdep_hardirqs_on+0x9d/0x150
[   81.110227][ T5023]  ? tomoyo_path_number_perm+0x215/0x790
[   81.110245][ T5023]  sock_do_ioctl+0x15a/0x490
[   81.110259][ T5023]  ? __pfx_sock_do_ioctl+0x10/0x10
[   81.110271][ T5023]  ? fd_install+0x9c/0x4c0
[   81.110287][ T5023]  sock_ioctl+0x644/0x900
[   81.110300][ T5023]  ? __pfx_sock_ioctl+0x10/0x10
[   81.110312][ T5023]  ? __sys_socket+0x209/0x3c0
[   81.110329][ T5023]  ? __pfx_sock_ioctl+0x10/0x10
[   81.110342][ T5023]  __se_sys_ioctl+0xf1/0x160
[   81.110355][ T5023]  do_syscall_64+0xf3/0x230
[   81.110369][ T5023]  ? clear_bhb_loop+0x45/0xa0
[   81.110381][ T5023]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.110392][ T5023] RIP: 0033:0x7f2562e64d49
[   81.110404][ T5023] Code: 5c c3 48 8d 44 24 08 48 89 54 24 e0 48 89 44 24 c0 48 8d 44 24 d0 48 89 44 24 c8 b8 10 00 00 00 c7 44 24 b8 10 00 00 00 0f 05 <41> 89 c0 3d 00 f0 ff ff 76 10 48 8b 15 ae 60 0d 00 f7 d8 41 83 c8
[   81.110413][ T5023] RSP: 002b:00007ffced44c878 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   81.110426][ T5023] RAX: ffffffffffffffda RBX: 00007f2562d966c0 RCX: 00007f2562e64d49
[   81.110434][ T5023] RDX: 00007ffced45ca68 RSI: 0000000000008914 RDI: 0000000000000010
[   81.110441][ T5023] RBP: 00007ffced46cc28 R08: 00007ffced45ca28 R09: 00007ffced45c9d8
[   81.110449][ T5023] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   81.110455][ T5023] R13: 00007ffced45ca68 R14: 0000000000000028 R15: 0000000000008914
[   81.110465][ T5023]  </TASK>
[   81.304739][ T1084] hsr_slave_0: left promiscuous mode
[   81.307273][ T1084] hsr_slave_1: left promiscuous mode
[   81.309714][ T1084] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   81.314309][ T1084] batman_adv: batadv0: Removing interface: batadv_slave_0
[   81.317730][ T1084] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   81.320810][ T1084] batman_adv: batadv0: Removing interface: batadv_slave_1
[   81.326362][ T1084] veth1_macvtap: left promiscuous mode
[   81.328706][ T1084] veth0_macvtap: left promiscuous mode
[   81.330993][ T1084] veth1_vlan: left promiscuous mode
[   81.342575][ T1084] veth0_vlan: left promiscuous mode
[   81.497754][ T1084] team0 (unregistering): Port device team_slave_1 removed
[   81.510156][ T1084] team0 (unregistering): Port device team_slave_0 removed
[   86.625317][   T10] cfg80211: failed to load regulatory.db

VM DIAGNOSIS:
08:53:34  Registers:
info registers vcpu 0

CPU#0
RAX=1f3ba317c8976e00 RBX=ffffffff8197cc2e RCX=ffffffff8c25172c RDX=0000000000000001
RSI=ffffffff8ca15360 RDI=ffffffff8197cc2e RBP=ffffffff8ea07eb8 RSP=ffffffff8ea07d68
R8 =ffff88801fc32b5b R9 =1ffff11003f8656b R10=dffffc0000000000 R11=ffffed1003f8656c
R12=1ffffffff1d40fc6 R13=1ffffffff1d52cb0 R14=0000000000000000 R15=dffffc0000000000
RIP=ffffffff8c252933 RFL=000002c6 [--SZ-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88808c5f1000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000559a490db080 CR3=000000000eb38000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c0000000 Opmask01=0000000000000002 Opmask02=000000000000ffdf Opmask03=0000000000000000
Opmask04=00000000ffffffdf Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe4565f2e0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00ff000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000041 0000000004ba5500 44455a494c414954 494e495f43455355
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6f742079617272 6120656c75722079 7261726f706d6574 002a3f005b3f2a00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a4a51055c445757 440540495057055c 5744574a55484051 000f1a005b1a0f00
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 93ec52b753abf664 0000559f10a805fd 0000000000000091 00302d787400302e
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f08f25f1f20 00007f08f25f1f20 00000000000004f1 0000000000003031
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 59647a305f474f5b 647c79303a243a78 68303e3b3a38253b 3a253e3a6e68303b
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 382433273f397b27 697a787c69303b7e 69305f474f5b647c 6930382433273f39
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692054524f50202c 2064696c61696d20 0070253a20252054 524f504d49005452
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692020520050202c 2025204f504d4900 0061253a20252000 2527204d49005452
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000


syzkaller build log:
go env (err=<nil>)
GO111MODULE='auto'
GOARCH='amd64'
GOBIN=''
GOCACHE='/syzkaller/.cache/go-build'
GOENV='/syzkaller/.config/go/env'
GOEXE=''
GOEXPERIMENT=''
GOFLAGS=''
GOHOSTARCH='amd64'
GOHOSTOS='linux'
GOINSECURE=''
GOMODCACHE='/syzkaller/jobs/linux/gopath/pkg/mod'
GONOPROXY=''
GONOSUMDB=''
GOOS='linux'
GOPATH='/syzkaller/jobs/linux/gopath'
GOPRIVATE=''
GOPROXY='https://proxy.golang.org,direct'
GOROOT='/syzkaller/jobs/linux/gopath/pkg/mod/golang.org/toolchain@v0.0.1-go1.23.6.linux-amd64'
GOSUMDB='sum.golang.org'
GOTMPDIR=''
GOTOOLCHAIN='auto'
GOTOOLDIR='/syzkaller/jobs/linux/gopath/pkg/mod/golang.org/toolchain@v0.0.1-go1.23.6.linux-amd64/pkg/tool/linux_amd64'
GOVCS=''
GOVERSION='go1.23.6'
GODEBUG=''
GOTELEMETRY='local'
GOTELEMETRYDIR='/syzkaller/.config/go/telemetry'
GCCGO='gccgo'
GOAMD64='v1'
AR='ar'
CC='gcc'
CXX='g++'
CGO_ENABLED='1'
GOMOD='/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller/go.mod'
GOWORK=''
CGO_CFLAGS='-O2 -g'
CGO_CPPFLAGS=''
CGO_CXXFLAGS='-O2 -g'
CGO_FFLAGS='-O2 -g'
CGO_LDFLAGS='-O2 -g'
PKG_CONFIG='pkg-config'
GOGCCFLAGS='-fPIC -m64 -pthread -Wl,--no-gc-sections -fmessage-length=0 -ffile-prefix-map=/tmp/go-build492986844=/tmp/go-build -gno-record-gcc-switches'

git status (err=<nil>)
HEAD detached at 2afad16efd9e
nothing to commit, working tree clean


tput: No value for $TERM and no -T specified
tput: No value for $TERM and no -T specified
Makefile:31: run command via tools/syz-env for best compatibility, see:
Makefile:32: https://github.com/google/syzkaller/blob/master/docs/contributing.md#using-syz-env
go list -f '{{.Stale}}' ./sys/syz-sysgen | grep -q false || go install ./sys/syz-sysgen
make .descriptions
tput: No value for $TERM and no -T specified
tput: No value for $TERM and no -T specified
Makefile:31: run command via tools/syz-env for best compatibility, see:
Makefile:32: https://github.com/google/syzkaller/blob/master/docs/contributing.md#using-syz-env
bin/syz-sysgen
touch .descriptions
GOOS=linux GOARCH=amd64 go build "-ldflags=-s -w -X github.com/google/syzkaller/prog.GitRevision=2afad16efd9ec2029fe61dcd74d9d5154dce0f2e -X 'github.com/google/syzkaller/prog.gitRevisionDate=20250212-164902'" -o ./bin/linux_amd64/syz-execprog github.com/google/syzkaller/tools/syz-execprog
mkdir -p ./bin/linux_amd64
g++ -o ./bin/linux_amd64/syz-executor executor/executor.cc \
	-m64 -O2 -pthread -Wall -Werror -Wparentheses -Wunused-const-variable -Wframe-larger-than=16384 -Wno-stringop-overflow -Wno-array-bounds -Wno-format-overflow -Wno-unused-but-set-variable -Wno-unused-command-line-argument -static-pie -std=c++17 -I. -Iexecutor/_include   -DGOOS_linux=1 -DGOARCH_amd64=1 \
	-DHOSTGOOS_linux=1 -DGIT_REVISION=\"2afad16efd9ec2029fe61dcd74d9d5154dce0f2e\"
/usr/bin/ld: /tmp/ccAZFeEc.o: in function `Connection::Connect(char const*, char const*)':
executor.cc:(.text._ZN10Connection7ConnectEPKcS1_[_ZN10Connection7ConnectEPKcS1_]+0x104): warning: Using 'gethostbyname' in statically linked applications requires at runtime the shared libraries from the glibc version used for linking