possible deadlock in lapbeth_device_event
============================================
WARNING: possible recursive locking detected
6.14.0-syzkaller-g7f2ff7b62617 #0 Not tainted
--------------------------------------------
dhcpcd/5027 is trying to acquire lock:
ffff888057b04d30 (&dev->lock){+.+.}-{4:4}, at: netdev_lock include/linux/netdevice.h:2751 [inline]
ffff888057b04d30 (&dev->lock){+.+.}-{4:4}, at: netif_napi_add_weight include/linux/netdevice.h:2783 [inline]
ffff888057b04d30 (&dev->lock){+.+.}-{4:4}, at: lapbeth_new_device drivers/net/wan/lapbether.c:415 [inline]
ffff888057b04d30 (&dev->lock){+.+.}-{4:4}, at: lapbeth_device_event+0x766/0xa20 drivers/net/wan/lapbether.c:460
but task is already holding lock:
ffff888043f38d30 (&dev->lock){+.+.}-{4:4}, at: netdev_lock include/linux/netdevice.h:2751 [inline]
ffff888043f38d30 (&dev->lock){+.+.}-{4:4}, at: netdev_lock_ops include/net/netdev_lock.h:42 [inline]
ffff888043f38d30 (&dev->lock){+.+.}-{4:4}, at: dev_change_flags+0x120/0x270 net/core/dev_api.c:67
other info that might help us debug this:
Possible unsafe locking scenario:
CPU0
----
lock(&dev->lock);
lock(&dev->lock);
*** DEADLOCK ***
May be due to missing lock nesting notation
2 locks held by dhcpcd/5027:
#0: ffffffff900f3048 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_net_lock include/linux/rtnetlink.h:130 [inline]
#0: ffffffff900f3048 (rtnl_mutex){+.+.}-{4:4}, at: devinet_ioctl+0x34e/0x1d80 net/ipv4/devinet.c:1121
#1: ffff888043f38d30 (&dev->lock){+.+.}-{4:4}, at: netdev_lock include/linux/netdevice.h:2751 [inline]
#1: ffff888043f38d30 (&dev->lock){+.+.}-{4:4}, at: netdev_lock_ops include/net/netdev_lock.h:42 [inline]
#1: ffff888043f38d30 (&dev->lock){+.+.}-{4:4}, at: dev_change_flags+0x120/0x270 net/core/dev_api.c:67
stack backtrace:
CPU: 0 UID: 0 PID: 5027 Comm: dhcpcd Not tainted 6.14.0-syzkaller-g7f2ff7b62617 #0 PREEMPT(full)
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
Call Trace:
__dump_stack lib/dump_stack.c:94 [inline]
dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120
print_deadlock_bug+0x2be/0x2d0 kernel/locking/lockdep.c:3042
check_deadlock kernel/locking/lockdep.c:3094 [inline]
validate_chain+0x928/0x24e0 kernel/locking/lockdep.c:3896
__lock_acquire+0xad5/0xd80 kernel/locking/lockdep.c:5235
lock_acquire+0x116/0x2f0 kernel/locking/lockdep.c:5866
__mutex_lock_common kernel/locking/mutex.c:587 [inline]
__mutex_lock+0x1a5/0x10c0 kernel/locking/mutex.c:732
netdev_lock include/linux/netdevice.h:2751 [inline]
netif_napi_add_weight include/linux/netdevice.h:2783 [inline]
lapbeth_new_device drivers/net/wan/lapbether.c:415 [inline]
lapbeth_device_event+0x766/0xa20 drivers/net/wan/lapbether.c:460
notifier_call_chain+0x1a5/0x3f0 kernel/notifier.c:85
__dev_notify_flags+0x209/0x410 net/core/dev.c:-1
netif_change_flags+0xf0/0x1a0 net/core/dev.c:9438
dev_change_flags+0x146/0x270 net/core/dev_api.c:68
devinet_ioctl+0xea4/0x1d80 net/ipv4/devinet.c:1200
inet_ioctl+0x3d9/0x4f0 net/ipv4/af_inet.c:1001
sock_do_ioctl+0x15a/0x490 net/socket.c:1190
sock_ioctl+0x644/0x900 net/socket.c:1311
vfs_ioctl fs/ioctl.c:51 [inline]
__do_sys_ioctl fs/ioctl.c:906 [inline]
__se_sys_ioctl+0xf1/0x160 fs/ioctl.c:892
do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
do_syscall_64+0xf3/0x230 arch/x86/entry/syscall_64.c:94
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f6d8a89fd49
Code: 5c c3 48 8d 44 24 08 48 89 54 24 e0 48 89 44 24 c0 48 8d 44 24 d0 48 89 44 24 c8 b8 10 00 00 00 c7 44 24 b8 10 00 00 00 0f 05 <41> 89 c0 3d 00 f0 ff ff 76 10 48 8b 15 ae 60 0d 00 f7 d8 41 83 c8
RSP: 002b:00007ffc746bbf18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 00007f6d8a7d16c0 RCX: 00007f6d8a89fd49
RDX: 00007ffc746cc108 RSI: 0000000000008914 RDI: 000000000000000c
RBP: 00007ffc746dc2c8 R08: 00007ffc746cc0c8 R09: 00007ffc746cc078
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffc746cc108 R14: 0000000000000028 R15: 0000000000008914
Warning: Permanently added '[localhost]:40436' (ED25519) to the list of known hosts.
2025/03/30 08:40:28 ignoring optional flag "sandboxArg"="0"
2025/03/30 08:40:28 ignoring optional flag "type"="qemu"
2025/03/30 08:40:28 parsed 1 programs
[ 65.664106][ T5313] cgroup: Unknown subsys name 'net'
[ 65.748556][ T5313] cgroup: Unknown subsys name 'cpuset'
[ 65.752570][ T5313] cgroup: Unknown subsys name 'rlimit'
[ 67.077598][ T5313] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 70.702058][ T31] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 70.705274][ T31] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 70.724749][ T1096] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 70.728801][ T1096] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 70.798487][ T5323] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 71.882898][ T5342] chnl_net:caif_netlink_parms(): no params data found
[ 71.950106][ T5342] bridge0: port 1(bridge_slave_0) entered blocking state
[ 71.956645][ T5342] bridge0: port 1(bridge_slave_0) entered disabled state
[ 71.959840][ T5342] bridge_slave_0: entered allmulticast mode
[ 71.976274][ T5342] bridge_slave_0: entered promiscuous mode
[ 71.981918][ T5342] bridge0: port 2(bridge_slave_1) entered blocking state
[ 71.984881][ T5342] bridge0: port 2(bridge_slave_1) entered disabled state
[ 71.996189][ T5342] bridge_slave_1: entered allmulticast mode
[ 71.999171][ T5342] bridge_slave_1: entered promiscuous mode
[ 72.027374][ T5342] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 72.032394][ T5342] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 72.068038][ T5342] team0: Port device team_slave_0 added
[ 72.071787][ T5342] team0: Port device team_slave_1 added
[ 72.097561][ T5342] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 72.100238][ T5342] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 72.126611][ T5342] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 72.147150][ T5342] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 72.150264][ T5342] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 72.168694][ T5342] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 72.213822][ T5342] hsr_slave_0: entered promiscuous mode
[ 72.227106][ T5342] hsr_slave_1: entered promiscuous mode
[ 72.371276][ T5342] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 72.388205][ T5342] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 72.393594][ T5342] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 72.409495][ T5342] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 72.452481][ T5342] bridge0: port 2(bridge_slave_1) entered blocking state
[ 72.455690][ T5342] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 72.459495][ T5342] bridge0: port 1(bridge_slave_0) entered blocking state
[ 72.462456][ T5342] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 72.551965][ T5342] 8021q: adding VLAN 0 to HW filter on device bond0
[ 72.574394][ T1096] bridge0: port 1(bridge_slave_0) entered disabled state
[ 72.578547][ T1096] bridge0: port 2(bridge_slave_1) entered disabled state
[ 72.597292][ T5342] 8021q: adding VLAN 0 to HW filter on device team0
[ 72.611892][ T1096] bridge0: port 1(bridge_slave_0) entered blocking state
[ 72.614870][ T1096] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 72.628047][ T1096] bridge0: port 2(bridge_slave_1) entered blocking state
[ 72.631126][ T1096] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 72.847955][ T5342] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 72.887560][ T5342] veth0_vlan: entered promiscuous mode
[ 72.900523][ T5342] veth1_vlan: entered promiscuous mode
[ 72.928359][ T5342] veth0_macvtap: entered promiscuous mode
[ 72.939043][ T5342] veth1_macvtap: entered promiscuous mode
[ 72.961201][ T5342] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 72.981743][ T5342] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 72.990756][ T5342] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 72.995447][ T5342] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 73.016758][ T5342] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 73.020321][ T5342] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 73.248638][ T1037] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 73.330607][ T1037] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 73.392948][ T1037] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 73.464781][ T1037] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 74.583729][ T49] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 74.588431][ T49] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 74.591685][ T49] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 74.594951][ T49] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 74.598877][ T49] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 75.760902][ T1037] bridge_slave_1: left allmulticast mode
[ 75.763366][ T1037] bridge_slave_1: left promiscuous mode
[ 75.777633][ T1037] bridge0: port 2(bridge_slave_1) entered disabled state
[ 75.797985][ T1037] bridge_slave_0: left allmulticast mode
[ 75.800361][ T1037] bridge_slave_0: left promiscuous mode
[ 75.802755][ T1037] bridge0: port 1(bridge_slave_0) entered disabled state
[ 76.261293][ T1037] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 76.278293][ T1037] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 76.282597][ T1037] bond0 (unregistering): Released all slaves
[ 76.311254][ T5027]
[ 76.312281][ T5027] ============================================
[ 76.314650][ T5027] WARNING: possible recursive locking detected
[ 76.317110][ T5027] 6.14.0-syzkaller-g7f2ff7b62617 #0 Not tainted
[ 76.320563][ T5027] --------------------------------------------
[ 76.323148][ T5027] dhcpcd/5027 is trying to acquire lock:
[ 76.325436][ T5027] ffff888057b04d30 (&dev->lock){+.+.}-{4:4}, at: lapbeth_device_event+0x766/0xa20
[ 76.329668][ T5027]
[ 76.329668][ T5027] but task is already holding lock:
[ 76.332625][ T5027] ffff888043f38d30 (&dev->lock){+.+.}-{4:4}, at: dev_change_flags+0x120/0x270
[ 76.336346][ T5027]
[ 76.336346][ T5027] other info that might help us debug this:
[ 76.339499][ T5027] Possible unsafe locking scenario:
[ 76.339499][ T5027]
[ 76.342635][ T5027] CPU0
[ 76.344044][ T5027] ----
[ 76.345540][ T5027] lock(&dev->lock);
[ 76.347206][ T5027] lock(&dev->lock);
[ 76.348766][ T5027]
[ 76.348766][ T5027] *** DEADLOCK ***
[ 76.348766][ T5027]
[ 76.351962][ T5027] May be due to missing lock nesting notation
[ 76.351962][ T5027]
[ 76.355172][ T5027] 2 locks held by dhcpcd/5027:
[ 76.357074][ T5027] #0: ffffffff900f3048 (rtnl_mutex){+.+.}-{4:4}, at: devinet_ioctl+0x34e/0x1d80
[ 76.360627][ T5027] #1: ffff888043f38d30 (&dev->lock){+.+.}-{4:4}, at: dev_change_flags+0x120/0x270
[ 76.364156][ T5027]
[ 76.364156][ T5027] stack backtrace:
[ 76.366484][ T5027] CPU: 0 UID: 0 PID: 5027 Comm: dhcpcd Not tainted 6.14.0-syzkaller-g7f2ff7b62617 #0 PREEMPT(full)
[ 76.366497][ T5027] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 76.366504][ T5027] Call Trace:
[ 76.366510][ T5027]
[ 76.366515][ T5027] dump_stack_lvl+0x241/0x360
[ 76.366532][ T5027] ? __pfx_dump_stack_lvl+0x10/0x10
[ 76.366546][ T5027] ? __pfx__printk+0x10/0x10
[ 76.366558][ T5027] ? print_lock+0x171/0x1a0
[ 76.366572][ T5027] print_deadlock_bug+0x2be/0x2d0
[ 76.366584][ T5027] validate_chain+0x928/0x24e0
[ 76.366596][ T5027] ? stack_depot_save_flags+0x3a/0x970
[ 76.366611][ T5027] ? look_up_lock_class+0x7b/0x170
[ 76.366624][ T5027] ? register_lock_class+0x54/0x330
[ 76.366634][ T5027] __lock_acquire+0xad5/0xd80
[ 76.366645][ T5027] lock_acquire+0x116/0x2f0
[ 76.366654][ T5027] ? lapbeth_device_event+0x766/0xa20
[ 76.366666][ T5027] __mutex_lock+0x1a5/0x10c0
[ 76.366678][ T5027] ? lapbeth_device_event+0x766/0xa20
[ 76.366689][ T5027] ? ref_tracker_alloc+0x316/0x4c0
[ 76.366702][ T5027] ? lapbeth_device_event+0x766/0xa20
[ 76.366711][ T5027] ? rcu_is_watching+0x15/0xb0
[ 76.366722][ T5027] ? __pfx___mutex_lock+0x10/0x10
[ 76.366737][ T5027] ? __raw_spin_lock_init+0x45/0x100
[ 76.366750][ T5027] lapbeth_device_event+0x766/0xa20
[ 76.366760][ T5027] notifier_call_chain+0x1a5/0x3f0
[ 76.366773][ T5027] __dev_notify_flags+0x209/0x410
[ 76.366786][ T5027] ? __pfx___dev_notify_flags+0x10/0x10
[ 76.366797][ T5027] ? __dev_change_flags+0x517/0x700
[ 76.366807][ T5027] ? __pfx___mutex_lock+0x10/0x10
[ 76.366819][ T5027] ? __pfx___dev_change_flags+0x10/0x10
[ 76.366831][ T5027] ? __pfx___mutex_lock+0x10/0x10
[ 76.366843][ T5027] netif_change_flags+0xf0/0x1a0
[ 76.366856][ T5027] dev_change_flags+0x146/0x270
[ 76.366869][ T5027] devinet_ioctl+0xea4/0x1d80
[ 76.366881][ T5027] ? __pfx_devinet_ioctl+0x10/0x10
[ 76.366890][ T5027] ? get_user_ifreq+0x1bb/0x200
[ 76.366903][ T5027] inet_ioctl+0x3d9/0x4f0
[ 76.366915][ T5027] ? __pfx_inet_ioctl+0x10/0x10
[ 76.366926][ T5027] ? lockdep_hardirqs_on+0x9d/0x150
[ 76.366942][ T5027] ? tomoyo_path_number_perm+0x215/0x790
[ 76.366953][ T5027] sock_do_ioctl+0x15a/0x490
[ 76.366968][ T5027] ? __pfx_sock_do_ioctl+0x10/0x10
[ 76.366983][ T5027] sock_ioctl+0x644/0x900
[ 76.366995][ T5027] ? __pfx_sock_ioctl+0x10/0x10
[ 76.367007][ T5027] ? __sys_socket+0x209/0x3c0
[ 76.367016][ T5027] ? __pfx_sock_ioctl+0x10/0x10
[ 76.367029][ T5027] __se_sys_ioctl+0xf1/0x160
[ 76.367042][ T5027] do_syscall_64+0xf3/0x230
[ 76.367055][ T5027] ? clear_bhb_loop+0x45/0xa0
[ 76.367066][ T5027] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 76.367077][ T5027] RIP: 0033:0x7f6d8a89fd49
[ 76.367088][ T5027] Code: 5c c3 48 8d 44 24 08 48 89 54 24 e0 48 89 44 24 c0 48 8d 44 24 d0 48 89 44 24 c8 b8 10 00 00 00 c7 44 24 b8 10 00 00 00 0f 05 <41> 89 c0 3d 00 f0 ff ff 76 10 48 8b 15 ae 60 0d 00 f7 d8 41 83 c8
[ 76.367096][ T5027] RSP: 002b:00007ffc746bbf18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 76.367107][ T5027] RAX: ffffffffffffffda RBX: 00007f6d8a7d16c0 RCX: 00007f6d8a89fd49
[ 76.367115][ T5027] RDX: 00007ffc746cc108 RSI: 0000000000008914 RDI: 000000000000000c
[ 76.367122][ T5027] RBP: 00007ffc746dc2c8 R08: 00007ffc746cc0c8 R09: 00007ffc746cc078
[ 76.367128][ T5027] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 76.367134][ T5027] R13: 00007ffc746cc108 R14: 0000000000000028 R15: 0000000000008914
[ 76.367143][ T5027]
[ 76.538224][ T1312] ieee802154 phy0 wpan0: encryption failed: -22
[ 76.540859][ T1312] ieee802154 phy1 wpan1: encryption failed: -22
[ 76.728307][ T1037] hsr_slave_0: left promiscuous mode
[ 76.730736][ T1037] hsr_slave_1: left promiscuous mode
[ 76.733133][ T1037] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 76.737967][ T1037] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 76.741702][ T1037] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 76.744672][ T1037] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 76.757849][ T1037] veth1_macvtap: left promiscuous mode
[ 76.760139][ T1037] veth0_macvtap: left promiscuous mode
[ 76.762374][ T1037] veth1_vlan: left promiscuous mode
[ 76.764517][ T1037] veth0_vlan: left promiscuous mode
[ 76.864889][ T1037] team0 (unregistering): Port device team_slave_1 removed
[ 76.878975][ T1037] team0 (unregistering): Port device team_slave_0 removed
2025/03/30 08:40:42 executed programs: 0
[ 77.140725][ T4674] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 77.143679][ T4674] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 77.149261][ T4674] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 77.152352][ T4674] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 77.155383][ T4674] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 77.346675][ T5428] chnl_net:caif_netlink_parms(): no params data found
[ 77.430004][ T5428] bridge0: port 1(bridge_slave_0) entered blocking state
[ 77.432699][ T5428] bridge0: port 1(bridge_slave_0) entered disabled state
[ 77.435588][ T5428] bridge_slave_0: entered allmulticast mode
[ 77.451263][ T5428] bridge_slave_0: entered promiscuous mode
[ 77.466705][ T5428] bridge0: port 2(bridge_slave_1) entered blocking state
[ 77.469503][ T5428] bridge0: port 2(bridge_slave_1) entered disabled state
[ 77.472397][ T5428] bridge_slave_1: entered allmulticast mode
[ 77.475004][ T5428] bridge_slave_1: entered promiscuous mode
[ 77.526896][ T5428] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 77.532576][ T5428] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 77.559689][ T5428] team0: Port device team_slave_0 added
[ 77.567646][ T5428] team0: Port device team_slave_1 added
[ 77.602307][ T5428] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 77.605184][ T5428] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 77.626326][ T5428] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 77.649102][ T5428] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 77.651855][ T5428] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 77.676504][ T5428] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 77.714900][ T5428] hsr_slave_0: entered promiscuous mode
[ 77.746368][ T5428] hsr_slave_1: entered promiscuous mode
[ 78.059978][ T5428] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 78.071610][ T5428] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 78.088177][ T5428] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 78.097190][ T5428] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 78.134471][ T5428] bridge0: port 2(bridge_slave_1) entered blocking state
[ 78.137429][ T5428] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 78.140362][ T5428] bridge0: port 1(bridge_slave_0) entered blocking state
[ 78.143201][ T5428] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 78.259426][ T5428] 8021q: adding VLAN 0 to HW filter on device bond0
[ 78.267994][ T1096] bridge0: port 1(bridge_slave_0) entered disabled state
[ 78.276514][ T1096] bridge0: port 2(bridge_slave_1) entered disabled state
[ 78.291562][ T5428] 8021q: adding VLAN 0 to HW filter on device team0
[ 78.320296][ T1038] bridge0: port 1(bridge_slave_0) entered blocking state
[ 78.323055][ T1038] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 78.332060][ T1038] bridge0: port 2(bridge_slave_1) entered blocking state
[ 78.334867][ T1038] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 78.562748][ T5428] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 78.617205][ T5428] veth0_vlan: entered promiscuous mode
[ 78.629405][ T5428] veth1_vlan: entered promiscuous mode
[ 78.671230][ T5428] veth0_macvtap: entered promiscuous mode
[ 78.683491][ T5428] veth1_macvtap: entered promiscuous mode
[ 78.717771][ T5428] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 78.722447][ T5428] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 78.757130][ T5428] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 78.760611][ T5428] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 78.764060][ T5428] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 78.796002][ T5428] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 78.852953][ T5428] ieee80211 phy5: Selected rate control algorithm 'minstrel_ht'
[ 78.911469][ T1096] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 78.914594][ T1096] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 78.919787][ T5428] ieee80211 phy6: Selected rate control algorithm 'minstrel_ht'
[ 78.964517][ T31] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 78.968560][ T31] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
VM DIAGNOSIS:
08:40:42 Registers:
info registers vcpu 0
CPU#0
RAX=0000000000000079 RBX=ffffffff9aa60b00 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=0000000000000000 RSP=ffffc9000ceeec50
R8 =ffffffff8594373b R9 =1ffff11006861046 R10=dffffc0000000000 R11=ffffffff859436f0
R12=dffffc0000000000 R13=0000000000000079 R14=0000000000000079 R15=00000000000003f8
RIP=ffffffff8594376e RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f6d8a7d1740 ffffffff 00c00000
GS =0000 ffff88808c5b7000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007f0586a714a0 CR3=0000000011e88000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c0c1c0fc Opmask01=000000000000007f Opmask02=00000000feff7f7f Opmask03=0000000000000000
Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 69253a6925632500 3d45444f4d564544
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffccc0e0b20 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff000000ff000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ff000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000ff0000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffff00
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffff00ffffffff ffffffffffffffff
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 47555c5a5a4f0a03 1a171d1f4b4b4b47
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 014a4703574c0145 5d474a0c13056560
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 696c2f7273752f00 534b4e494c564544 00454d414e564544 005845444e494649
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7665642027627375 2720746e65726170 20646e6966206f74 20656c62616e7500
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5340410502475650 0205514b40574455 05414b4c43054a51 05404947444b5000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000302d7874 2f7365756575712f 356874652f74656e 2f306d6973766564
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0006318b3f1a8cd9 000055c1651ae910 0000000000000061 0000000000000035
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2648383a3a26483b 3a0a00307f617930 382433273f397b27 697a787c69303b7e
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a323a3a264c3d3a 3a26333d3a3a263c 3d3a3a263f3d3a3a 263e3d3a3a26383d
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000a00000a005f 485441505f220041 4e4f47202c004400 000a00652422000a
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000a00000a005f 485441000a000041 494e47202c004400 000a0049000a000a
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
syzkaller build log:
go env (err=)
GO111MODULE='auto'
GOARCH='amd64'
GOBIN=''
GOCACHE='/syzkaller/.cache/go-build'
GOENV='/syzkaller/.config/go/env'
GOEXE=''
GOEXPERIMENT=''
GOFLAGS=''
GOHOSTARCH='amd64'
GOHOSTOS='linux'
GOINSECURE=''
GOMODCACHE='/syzkaller/jobs/linux/gopath/pkg/mod'
GONOPROXY=''
GONOSUMDB=''
GOOS='linux'
GOPATH='/syzkaller/jobs/linux/gopath'
GOPRIVATE=''
GOPROXY='https://proxy.golang.org,direct'
GOROOT='/usr/local/go'
GOSUMDB='sum.golang.org'
GOTMPDIR=''
GOTOOLCHAIN='auto'
GOTOOLDIR='/usr/local/go/pkg/tool/linux_amd64'
GOVCS=''
GOVERSION='go1.22.7'
GCCGO='gccgo'
GOAMD64='v1'
AR='ar'
CC='gcc'
CXX='g++'
CGO_ENABLED='1'
GOMOD='/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller/go.mod'
GOWORK=''
CGO_CFLAGS='-O2 -g'
CGO_CPPFLAGS=''
CGO_CXXFLAGS='-O2 -g'
CGO_FFLAGS='-O2 -g'
CGO_LDFLAGS='-O2 -g'
PKG_CONFIG='pkg-config'
GOGCCFLAGS='-fPIC -m64 -pthread -Wl,--no-gc-sections -fmessage-length=0 -ffile-prefix-map=/tmp/go-build4023684684=/tmp/go-build -gno-record-gcc-switches'
git status (err=)
HEAD detached at c673ca06b23c
nothing to commit, working tree clean
tput: No value for $TERM and no -T specified
tput: No value for $TERM and no -T specified
Makefile:31: run command via tools/syz-env for best compatibility, see:
Makefile:32: https://github.com/google/syzkaller/blob/master/docs/contributing.md#using-syz-env
go list -f '{{.Stale}}' ./sys/syz-sysgen | grep -q false || go install ./sys/syz-sysgen
make .descriptions
tput: No value for $TERM and no -T specified
tput: No value for $TERM and no -T specified
Makefile:31: run command via tools/syz-env for best compatibility, see:
Makefile:32: https://github.com/google/syzkaller/blob/master/docs/contributing.md#using-syz-env
bin/syz-sysgen
go fmt ./sys/... >/dev/null
touch .descriptions
GOOS=linux GOARCH=amd64 go build "-ldflags=-s -w -X github.com/google/syzkaller/prog.GitRevision=c673ca06b23cea94091ab496ef62c3513e434585 -X 'github.com/google/syzkaller/prog.gitRevisionDate=20240916-123108'" "-tags=syz_target syz_os_linux syz_arch_amd64 " -o ./bin/linux_amd64/syz-execprog github.com/google/syzkaller/tools/syz-execprog
mkdir -p ./bin/linux_amd64
g++ -o ./bin/linux_amd64/syz-executor executor/executor.cc \
-m64 -O2 -pthread -Wall -Werror -Wparentheses -Wunused-const-variable -Wframe-larger-than=16384 -Wno-stringop-overflow -Wno-array-bounds -Wno-format-overflow -Wno-unused-but-set-variable -Wno-unused-command-line-argument -static-pie -std=c++17 -I. -Iexecutor/_include -fpermissive -w -DGOOS_linux=1 -DGOARCH_amd64=1 \
-DHOSTGOOS_linux=1 -DGIT_REVISION=\"c673ca06b23cea94091ab496ef62c3513e434585\"
/usr/bin/ld: /tmp/ccPsj1k5.o: in function `test_cover_filter()':
executor.cc:(.text+0x1413b): warning: the use of `tempnam' is dangerous, better use `mkstemp'
/usr/bin/ld: /tmp/ccPsj1k5.o: in function `Connection::Connect(char const*, char const*)':
executor.cc:(.text._ZN10Connection7ConnectEPKcS1_[_ZN10Connection7ConnectEPKcS1_]+0x104): warning: Using 'gethostbyname' in statically linked applications requires at runtime the shared libraries from the glibc version used for linking