[ 76.566923][ T1619] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.0.154' (ED25519) to the list of known hosts. 2023/08/23 23:15:49 ignoring optional flag "sandboxArg"="0" 2023/08/23 23:15:49 parsed 1 programs 2023/08/23 23:15:49 executed programs: 0 [ 81.218877][ T5360] cgroup: Unknown subsys name 'net' [ 81.228830][ T5360] cgroup: Unknown subsys name 'rlimit' [ 82.330564][ T4422] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 82.338854][ T4422] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 82.347376][ T4422] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 82.356533][ T4422] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 82.364135][ T4422] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 82.372073][ T4422] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 82.450409][ T5367] chnl_net:caif_netlink_parms(): no params data found [ 82.493490][ T5367] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.500757][ T5367] bridge0: port 1(bridge_slave_0) entered disabled state [ 82.508045][ T5367] bridge_slave_0: entered allmulticast mode [ 82.515344][ T5367] bridge_slave_0: entered promiscuous mode [ 82.523476][ T5367] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.530800][ T5367] bridge0: port 2(bridge_slave_1) entered disabled state [ 82.538092][ T5367] bridge_slave_1: entered allmulticast mode [ 82.544621][ T5367] bridge_slave_1: entered promiscuous mode [ 82.564462][ T5367] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 82.577033][ T5367] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 82.599689][ T5367] team0: Port device team_slave_0 added [ 82.606929][ T5367] team0: Port device team_slave_1 added [ 82.626501][ T5367] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 82.633657][ T5367] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 82.660015][ T5367] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 82.671867][ T5367] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 82.678907][ T5367] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 82.704832][ T5367] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 82.730773][ T5367] hsr_slave_0: entered promiscuous mode [ 82.737019][ T5367] hsr_slave_1: entered promiscuous mode [ 82.797072][ T5367] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.804147][ T5367] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.811532][ T5367] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.818696][ T5367] bridge0: port 1(bridge_slave_0) entered forwarding state [ 82.854681][ T5367] 8021q: adding VLAN 0 to HW filter on device bond0 [ 82.868103][ T1619] bridge0: port 1(bridge_slave_0) entered disabled state [ 82.877620][ T1619] bridge0: port 2(bridge_slave_1) entered disabled state [ 82.891111][ T5367] 8021q: adding VLAN 0 to HW filter on device team0 [ 82.901342][ T1619] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.908586][ T1619] bridge0: port 1(bridge_slave_0) entered forwarding state [ 82.919777][ T7] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.926914][ T7] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.973581][ T5367] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.246420][ T5367] veth0_vlan: entered promiscuous mode [ 83.256226][ T5367] veth1_vlan: entered promiscuous mode [ 83.280660][ T5367] veth0_macvtap: entered promiscuous mode [ 83.289179][ T5367] veth1_macvtap: entered promiscuous mode [ 83.304039][ T5367] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 83.318213][ T5367] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 83.366105][ T775] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.374019][ T775] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.398712][ T7] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.406750][ T7] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.452731][ C0] [ 83.455091][ C0] ================================ [ 83.460218][ C0] WARNING: inconsistent lock state [ 83.465324][ C0] 6.5.0-rc7-syzkaller-00024-g93f5de5f648d #0 Not tainted [ 83.472329][ C0] -------------------------------- [ 83.477413][ C0] inconsistent {HARDIRQ-ON-W} -> {IN-HARDIRQ-W} usage. [ 83.484239][ C0] syz-executor.0/5387 [HC1[1]:SC0[0]:HE0:SE1] takes: [ 83.490979][ C0] ffffffff8dbfdd58 (sync_timeline_list_lock){?.+.}-{2:2}, at: sync_timeline_debug_remove+0x2c/0x150 [ 83.501758][ C0] {HARDIRQ-ON-W} state was registered at: [ 83.507719][ C0] trace_hardirqs_on+0x28/0x40 [ 83.512936][ C0] _raw_spin_unlock_irq+0x23/0x50 [ 83.518066][ C0] sync_info_debugfs_show+0x158/0x4c0 [ 83.523540][ C0] seq_read_iter+0x43e/0xd10 [ 83.528388][ C0] seq_read+0x28d/0x380 [ 83.532730][ C0] vfs_read+0x279/0xb00 [ 83.536968][ C0] ksys_read+0x1a0/0x2c0 [ 83.541286][ C0] do_syscall_64+0x41/0xc0 [ 83.545773][ C0] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 83.551833][ C0] irq event stamp: 4286 [ 83.555980][ C0] hardirqs last enabled at (4285): [] _raw_spin_unlock_irq+0x23/0x50 [ 83.565877][ C0] hardirqs last disabled at (4286): [] sysvec_irq_work+0xe/0xb0 [ 83.575075][ C0] softirqs last enabled at (1516): [] __irq_exit_rcu+0xf1/0x1b0 [ 83.584354][ C0] softirqs last disabled at (1077): [] __irq_exit_rcu+0xf1/0x1b0 [ 83.593622][ C0] [ 83.593622][ C0] other info that might help us debug this: [ 83.601754][ C0] Possible unsafe locking scenario: [ 83.601754][ C0] [ 83.609185][ C0] CPU0 [ 83.612446][ C0] ---- [ 83.615711][ C0] lock(sync_timeline_list_lock); [ 83.620814][ C0] [ 83.624247][ C0] lock(sync_timeline_list_lock); [ 83.629517][ C0] [ 83.629517][ C0] *** DEADLOCK *** [ 83.629517][ C0] [ 83.637642][ C0] no locks held by syz-executor.0/5387. [ 83.643201][ C0] [ 83.643201][ C0] stack backtrace: [ 83.649072][ C0] CPU: 0 PID: 5387 Comm: syz-executor.0 Not tainted 6.5.0-rc7-syzkaller-00024-g93f5de5f648d #0 [ 83.659393][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023 [ 83.669867][ C0] Call Trace: [ 83.673224][ C0] [ 83.676056][ C0] dump_stack_lvl+0x1e7/0x2d0 [ 83.680732][ C0] ? nf_tcp_handle_invalid+0x650/0x650 [ 83.686182][ C0] ? print_usage_bug+0x60a/0x890 [ 83.691117][ C0] valid_state+0x135/0x1c0 [ 83.695557][ C0] mark_lock_irq+0xac/0xba0 [ 83.700052][ C0] ? stack_trace_save+0x117/0x1c0 [ 83.705070][ C0] ? save_trace+0xb40/0xb40 [ 83.709578][ C0] ? stack_trace_snprint+0xf0/0xf0 [ 83.714693][ C0] ? lockdep_lock+0x123/0x2b0 [ 83.719360][ C0] ? save_trace+0x5a/0xb40 [ 83.723776][ C0] ? lockdep_unlock+0x169/0x300 [ 83.728625][ C0] mark_lock+0x21b/0x340 [ 83.733110][ C0] __lock_acquire+0xce0/0x7f70 [ 83.737867][ C0] ? do_raw_spin_unlock+0x13b/0x8b0 [ 83.743149][ C0] ? verify_lock_unused+0x140/0x140 [ 83.748335][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 83.754303][ C0] ? verify_lock_unused+0x140/0x140 [ 83.759502][ C0] ? stack_trace_save+0x117/0x1c0 [ 83.764518][ C0] ? stack_trace_snprint+0xf0/0xf0 [ 83.769629][ C0] ? __stack_depot_save+0x4dc/0x650 [ 83.774814][ C0] ? kasan_save_stack+0x4f/0x60 [ 83.779659][ C0] ? kasan_save_stack+0x3f/0x60 [ 83.784500][ C0] ? __kasan_record_aux_stack+0xad/0xc0 [ 83.790033][ C0] ? kvfree_call_rcu+0xf8/0x790 [ 83.794869][ C0] ? dma_fence_array_release+0x13e/0x240 [ 83.800488][ C0] ? irq_work_single+0xd9/0x230 [ 83.805343][ C0] ? irq_work_run+0x18b/0x350 [ 83.810013][ C0] lock_acquire+0x1e3/0x520 [ 83.814508][ C0] ? sync_timeline_debug_remove+0x2c/0x150 [ 83.820309][ C0] ? read_lock_is_recursive+0x20/0x20 [ 83.825672][ C0] ? timeline_fence_release+0x1ce/0x250 [ 83.831219][ C0] ? do_raw_spin_lock+0x14d/0x3a0 [ 83.836323][ C0] ? __lock_acquire+0x7f70/0x7f70 [ 83.841340][ C0] ? do_raw_spin_unlock+0x13b/0x8b0 [ 83.846530][ C0] _raw_spin_lock_irqsave+0xd5/0x120 [ 83.851803][ C0] ? sync_timeline_debug_remove+0x2c/0x150 [ 83.857598][ C0] ? _raw_spin_lock+0x40/0x40 [ 83.862267][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 83.868148][ C0] ? _raw_spin_unlock+0x40/0x40 [ 83.873159][ C0] ? kvfree_call_rcu+0x488/0x790 [ 83.878090][ C0] sync_timeline_debug_remove+0x2c/0x150 [ 83.883715][ C0] timeline_fence_release+0x204/0x250 [ 83.889081][ C0] dma_fence_array_release+0x13e/0x240 [ 83.894801][ C0] irq_work_single+0xd9/0x230 [ 83.899560][ C0] irq_work_run+0x18b/0x350 [ 83.904506][ C0] ? irq_work_single+0x230/0x230 [ 83.909534][ C0] ? __irq_exit_rcu+0xfd/0x1b0 [ 83.914384][ C0] ? irq_exit_rcu+0x20/0x20 [ 83.919054][ C0] __sysvec_irq_work+0xa0/0x260 [ 83.923896][ C0] sysvec_irq_work+0x8d/0xb0 [ 83.928473][ C0] [ 83.931481][ C0] [ 83.934484][ C0] asm_sysvec_irq_work+0x1a/0x20 [ 83.939409][ C0] RIP: 0010:_raw_spin_unlock_irq+0x29/0x50 [ 83.945207][ C0] Code: 00 f3 0f 1e fa 53 48 89 fb 48 83 c7 18 48 8b 74 24 08 e8 2a 9e a4 f6 48 89 df e8 32 8e a5 f6 e8 dd 83 cb f6 fb bf 01 00 00 00 22 e9 97 f6 65 8b 05 43 c0 3c 75 85 c0 74 02 5b c3 e8 c0 91 39 [ 83.964807][ C0] RSP: 0018:ffffc9000587f8d0 EFLAGS: 00000286 [ 83.970886][ C0] RAX: e59f0e9862db6900 RBX: ffff888029f86350 RCX: ffffffff91fac203 [ 83.978871][ C0] RDX: dffffc0000000000 RSI: ffffffff8b0a9860 RDI: 0000000000000001 [ 83.986863][ C0] RBP: ffff8880279e2e3c R08: ffffffff8e9877ef R09: 1ffffffff1d30efd [ 83.994852][ C0] R10: dffffc0000000000 R11: fffffbfff1d30efe R12: ffff888029f86340 [ 84.002828][ C0] R13: ffff8880279e2e00 R14: dffffc0000000000 R15: ffff888029f86300 [ 84.011087][ C0] sw_sync_debugfs_release+0x149/0x1c0 [ 84.017025][ C0] ? sw_sync_debugfs_open+0x250/0x250 [ 84.022580][ C0] __fput+0x3f8/0x950 [ 84.026590][ C0] task_work_run+0x24a/0x300 [ 84.031180][ C0] ? task_work_cancel+0x2b0/0x2b0 [ 84.036212][ C0] ? exit_task_namespaces+0xe1/0xf0 [ 84.041747][ C0] do_exit+0x68f/0x2290 [ 84.045900][ C0] ? put_task_struct+0x80/0x80 [ 84.050766][ C0] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0 [ 84.056929][ C0] ? print_irqtrace_events+0x220/0x220 [ 84.062389][ C0] ? _raw_spin_lock_irq+0xdf/0x120 [ 84.067500][ C0] do_group_exit+0x206/0x2c0 [ 84.072086][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 84.077288][ C0] ? lockdep_hardirqs_on+0x98/0x140 [ 84.082654][ C0] get_signal+0x1709/0x17e0 [ 84.087159][ C0] ? ptrace_notify+0x380/0x380 [ 84.091908][ C0] ? do_futex+0x37f/0x530 [ 84.096234][ C0] arch_do_signal_or_restart+0x91/0x670 [ 84.101862][ C0] ? get_sigframe_size+0x10/0x10 [ 84.106800][ C0] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0 [ 84.112775][ C0] ? exit_to_user_mode_loop+0x39/0x100 [ 84.118339][ C0] exit_to_user_mode_loop+0x6a/0x100 [ 84.123700][ C0] exit_to_user_mode_prepare+0xb1/0x140 [ 84.129235][ C0] syscall_exit_to_user_mode+0x64/0x280 [ 84.134777][ C0] do_syscall_64+0x4d/0xc0 [ 84.139189][ C0] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 84.145077][ C0] RIP: 0033:0x7fabc1a798e9 [ 84.149480][ C0] Code: Unable to access opcode bytes at 0x7fabc1a798bf. [ 84.156583][ C0] RSP: 002b:00007fabc2bae178 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 84.164991][ C0] RAX: 0000000000000001 RBX: 00007fabc1b8bf68 RCX: 00007fabc1a798e9 [ 84.172953][ C0] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fabc1b8bf6c [ 84.180911][ C0] RBP: 00007fabc1b8bf60 R08: 00007ffcb23bc0b0 R09: 00007fabc2bae6c0 [ 84.188957][ C0] R10: 0000000000000008 R11: 0000000000000246 R12: 00007fabc1b8bf6c [ 84.196917][ C0] R13: 000000000000000b R14: 00007ffcb23877f0 R15: 00007ffcb23878d8 [ 84.205055][ C0] [ 84.406866][ T4422] Bluetooth: hci0: command 0x0409 tx timeout 2023/08/23 23:15:54 executed programs: 103 [ 86.485402][ T5019] Bluetooth: hci0: command 0x041b tx timeout [ 88.565421][ T5019] Bluetooth: hci0: command 0x040f tx timeout [ 90.645344][ T5019] Bluetooth: hci0: command 0x0419 tx timeout 2023/08/23 23:15:59 executed programs: 362