[   76.608673][    T7] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.10.42' (ECDSA) to the list of known hosts.
2023/06/22 09:24:50 ignoring optional flag "sandboxArg"="0"
2023/06/22 09:24:50 parsed 1 programs
2023/06/22 09:24:50 executed programs: 0
[   79.192301][ T5335] cgroup: Unknown subsys name 'net'
[   79.201508][ T5335] cgroup: Unknown subsys name 'rlimit'
[   80.292637][ T4401] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   80.300947][ T4401] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   80.309024][ T4401] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   80.317256][ T4401] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   80.325333][ T4401] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   80.332634][ T4401] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   80.401689][ T5340] chnl_net:caif_netlink_parms(): no params data found
[   80.439721][ T5340] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.446857][ T5340] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.454380][ T5340] bridge_slave_0: entered allmulticast mode
[   80.461772][ T5340] bridge_slave_0: entered promiscuous mode
[   80.469320][ T5340] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.476457][ T5340] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.483883][ T5340] bridge_slave_1: entered allmulticast mode
[   80.490566][ T5340] bridge_slave_1: entered promiscuous mode
[   80.509938][ T5340] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   80.520992][ T5340] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   80.543838][ T5340] team0: Port device team_slave_0 added
[   80.551133][ T5340] team0: Port device team_slave_1 added
[   80.568034][ T5340] batman_adv: batadv0: Adding interface: batadv_slave_0
[   80.575013][ T5340] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   80.601418][ T5340] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   80.613588][ T5340] batman_adv: batadv0: Adding interface: batadv_slave_1
[   80.620876][ T5340] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   80.647327][ T5340] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   80.672211][ T5340] hsr_slave_0: entered promiscuous mode
[   80.678876][ T5340] hsr_slave_1: entered promiscuous mode
[   80.735252][ T5340] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.742425][ T5340] bridge0: port 2(bridge_slave_1) entered forwarding state
[   80.749815][ T5340] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.756966][ T5340] bridge0: port 1(bridge_slave_0) entered forwarding state
[   80.793195][ T5340] 8021q: adding VLAN 0 to HW filter on device bond0
[   80.804834][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   80.813628][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.822040][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.830091][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   80.842908][ T5340] 8021q: adding VLAN 0 to HW filter on device team0
[   80.852547][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   80.861550][    T7] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.868694][    T7] bridge0: port 1(bridge_slave_0) entered forwarding state
[   80.880057][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   80.889170][   T26] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.896238][   T26] bridge0: port 2(bridge_slave_1) entered forwarding state
[   80.913071][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   80.929229][ T5340] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   80.940324][ T5340] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   80.953398][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   80.962147][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   80.970594][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   80.979127][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   80.987869][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   81.003897][ T5340] 8021q: adding VLAN 0 to HW filter on device batadv0
[   81.012762][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   81.020907][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   81.276844][ T5340] veth0_vlan: entered promiscuous mode
[   81.284588][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   81.294078][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   81.302548][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   81.310498][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   81.322753][ T5340] veth1_vlan: entered promiscuous mode
[   81.339123][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   81.347059][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   81.355905][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   81.365761][ T5340] veth0_macvtap: entered promiscuous mode
[   81.375510][ T5340] veth1_macvtap: entered promiscuous mode
[   81.390830][ T5340] batman_adv: batadv0: Interface activated: batadv_slave_0
[   81.399053][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   81.409418][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   81.419852][ T5340] batman_adv: batadv0: Interface activated: batadv_slave_1
[   81.427972][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   81.436461][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   81.485362][   T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.500851][   T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.515003][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   81.524966][ T2432] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.533295][ T2432] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.543020][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   82.368477][ T4401] Bluetooth: hci0: command 0x0409 tx timeout
[   82.415067][ T5359] 
[   82.417421][ T5359] ============================================
[   82.423563][ T5359] WARNING: possible recursive locking detected
[   82.429694][ T5359] 6.4.0-rc7-syzkaller-gdad9774deaf1 #0 Not tainted
[   82.436175][ T5359] --------------------------------------------
[   82.442306][ T5359] syz-executor.0/5359 is trying to acquire lock:
[   82.449136][ T5359] ffffffff8d7bfbb8 (qp_broker_list.mutex){+.+.}-{3:3}, at: vmci_qp_broker_detach+0xf5/0x1210
[   82.459481][ T5359] 
[   82.459481][ T5359] but task is already holding lock:
[   82.466918][ T5359] ffffffff8d7bfbb8 (qp_broker_list.mutex){+.+.}-{3:3}, at: vmci_qp_broker_detach+0xf5/0x1210
[   82.477173][ T5359] 
[   82.477173][ T5359] other info that might help us debug this:
[   82.485214][ T5359]  Possible unsafe locking scenario:
[   82.485214][ T5359] 
[   82.492644][ T5359]        CPU0
[   82.495906][ T5359]        ----
[   82.499257][ T5359]   lock(qp_broker_list.mutex);
[   82.504091][ T5359]   lock(qp_broker_list.mutex);
[   82.508926][ T5359] 
[   82.508926][ T5359]  *** DEADLOCK ***
[   82.508926][ T5359] 
[   82.517071][ T5359]  May be due to missing lock nesting notation
[   82.517071][ T5359] 
[   82.525383][ T5359] 1 lock held by syz-executor.0/5359:
[   82.530759][ T5359]  #0: ffffffff8d7bfbb8 (qp_broker_list.mutex){+.+.}-{3:3}, at: vmci_qp_broker_detach+0xf5/0x1210
[   82.541465][ T5359] 
[   82.541465][ T5359] stack backtrace:
[   82.547524][ T5359] CPU: 1 PID: 5359 Comm: syz-executor.0 Not tainted 6.4.0-rc7-syzkaller-gdad9774deaf1 #0
[   82.557307][ T5359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023
[   82.567355][ T5359] Call Trace:
[   82.570628][ T5359]  <TASK>
[   82.573546][ T5359]  dump_stack_lvl+0x1e7/0x2d0
[   82.578215][ T5359]  ? nf_tcp_handle_invalid+0x650/0x650
[   82.583664][ T5359]  ? panic+0x770/0x770
[   82.587817][ T5359]  validate_chain+0x473a/0x58f0
[   82.592670][ T5359]  ? stack_trace_snprint+0xf0/0xf0
[   82.597801][ T5359]  ? __lock_acquire+0x1316/0x2070
[   82.602817][ T5359]  ? reacquire_held_locks+0x660/0x660
[   82.608182][ T5359]  ? mark_lock+0x9a/0x340
[   82.612500][ T5359]  ? __lock_acquire+0x1316/0x2070
[   82.617516][ T5359]  ? mark_lock+0x9a/0x340
[   82.621843][ T5359]  __lock_acquire+0x1316/0x2070
[   82.626862][ T5359]  lock_acquire+0x1e3/0x520
[   82.631354][ T5359]  ? vmci_qp_broker_detach+0xf5/0x1210
[   82.636811][ T5359]  ? read_lock_is_recursive+0x20/0x20
[   82.642175][ T5359]  ? __might_sleep+0xc0/0xc0
[   82.646761][ T5359]  ? stack_trace_save+0x117/0x1c0
[   82.651784][ T5359]  ? stack_trace_snprint+0xf0/0xf0
[   82.656887][ T5359]  __mutex_lock_common+0x1d8/0x2530
[   82.662072][ T5359]  ? vmci_qp_broker_detach+0xf5/0x1210
[   82.667530][ T5359]  ? kasan_set_track+0x61/0x70
[   82.672280][ T5359]  ? kasan_save_free_info+0x2b/0x40
[   82.677496][ T5359]  ? ____kasan_slab_free+0xd6/0x120
[   82.682705][ T5359]  ? __kmem_cache_free+0x264/0x3c0
[   82.687815][ T5359]  ? vmci_ctx_enqueue_datagram+0x392/0x430
[   82.693617][ T5359]  ? vmci_datagram_dispatch+0x441/0xbd0
[   82.699152][ T5359]  ? vmci_qp_broker_detach+0xb58/0x1210
[   82.704684][ T5359]  ? vmci_ctx_put+0x7d1/0xe30
[   82.709344][ T5359]  ? vmci_host_close+0x9b/0x160
[   82.714180][ T5359]  ? __fput+0x3b7/0x890
[   82.718318][ T5359]  ? task_work_run+0x24a/0x300
[   82.723064][ T5359]  ? vmci_qp_broker_detach+0xf5/0x1210
[   82.728510][ T5359]  ? exit_to_user_mode_prepare+0xb1/0x140
[   82.734211][ T5359]  ? syscall_exit_to_user_mode+0x64/0x280
[   82.739916][ T5359]  ? do_syscall_64+0x4d/0xc0
[   82.744490][ T5359]  ? mutex_lock_io_nested+0x60/0x60
[   82.749676][ T5359]  ? mark_lock+0x9a/0x340
[   82.753996][ T5359]  mutex_lock_nested+0x1b/0x20
[   82.758747][ T5359]  vmci_qp_broker_detach+0xf5/0x1210
[   82.764019][ T5359]  ? print_irqtrace_events+0x220/0x220
[   82.769469][ T5359]  ? qp_notify_peer+0x380/0x380
[   82.774308][ T5359]  ? lockdep_hardirqs_on+0x98/0x140
[   82.779755][ T5359]  ? __kmem_cache_free+0x264/0x3c0
[   82.784861][ T5359]  ? vmci_ctx_put+0x770/0xe30
[   82.789534][ T5359]  vmci_ctx_put+0x7d1/0xe30
[   82.794111][ T5359]  ? preempt_schedule+0xdd/0xf0
[   82.798951][ T5359]  ? vmci_ctx_destroy+0x100/0x100
[   82.803970][ T5359]  ? __lock_acquire+0x2070/0x2070
[   82.809005][ T5359]  ? preempt_schedule_thunk+0x1a/0x20
[   82.814630][ T5359]  vmci_ctx_enqueue_datagram+0x392/0x430
[   82.820256][ T5359]  vmci_datagram_dispatch+0x441/0xbd0
[   82.825617][ T5359]  ? rcu_lock_release+0x30/0x30
[   82.830484][ T5359]  vmci_qp_broker_detach+0xb58/0x1210
[   82.835845][ T5359]  ? qp_notify_peer+0x380/0x380
[   82.840882][ T5359]  ? lockdep_hardirqs_on+0x98/0x140
[   82.846266][ T5359]  ? __kmem_cache_free+0x264/0x3c0
[   82.851376][ T5359]  ? vmci_ctx_put+0x770/0xe30
[   82.856061][ T5359]  vmci_ctx_put+0x7d1/0xe30
[   82.860580][ T5359]  ? __lock_acquire+0x2070/0x2070
[   82.865679][ T5359]  ? do_raw_spin_lock+0x14d/0x3a0
[   82.870739][ T5359]  ? vmci_ctx_destroy+0x100/0x100
[   82.875763][ T5359]  ? do_raw_spin_unlock+0x13b/0x8b0
[   82.880954][ T5359]  vmci_host_close+0x9b/0x160
[   82.885624][ T5359]  ? vmci_host_open+0xe0/0xe0
[   82.890289][ T5359]  __fput+0x3b7/0x890
[   82.894349][ T5359]  task_work_run+0x24a/0x300
[   82.898927][ T5359]  ? task_work_cancel+0x2b0/0x2b0
[   82.903940][ T5359]  ? exit_to_user_mode_loop+0x39/0x100
[   82.909388][ T5359]  exit_to_user_mode_loop+0xd9/0x100
[   82.914658][ T5359]  exit_to_user_mode_prepare+0xb1/0x140
[   82.920207][ T5359]  syscall_exit_to_user_mode+0x64/0x280
[   82.925769][ T5359]  do_syscall_64+0x4d/0xc0
[   82.930187][ T5359]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   82.936069][ T5359] RIP: 0033:0x7fef5743bc8b
[   82.940570][ T5359] Code: 0f 05 48 3d 00 f0 ff ff 77 45 c3 0f 1f 40 00 48 83 ec 18 89 7c 24 0c e8 63 fc ff ff 8b 7c 24 0c 41 89 c0 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 44 89 c7 89 44 24 0c e8 a1 fc ff ff 8b 44
[   82.960258][ T5359] RSP: 002b:00007ffec1bc4d80 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[   82.968832][ T5359] RAX: 0000000000000000 RBX: 0000000000000005 RCX: 00007fef5743bc8b
[   82.976787][ T5359] RDX: 0000001b31720000 RSI: 0000000000000000 RDI: 0000000000000004
[   82.984744][ T5359] RBP: 00007fef5759d960 R08: 0000000000000000 R09: 0000000000000010
[   82.992792][ T5359] R10: 00007ffec1bf9080 R11: 0000000000000293 R12: 00000000000141c7
[   83.000754][ T5359] R13: 00007ffec1bc4e80 R14: 00007ffec1bc4ea0 R15: 0000000000000032
[   83.008757][ T5359]  </TASK>
[   84.447606][ T4401] Bluetooth: hci0: command 0x041b tx timeout
[   86.527654][ T4401] Bluetooth: hci0: command 0x040f tx timeout
[   88.607506][ T4401] Bluetooth: hci0: command 0x0419 tx timeout