[ 76.605808][ T54] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.10.56' (ED25519) to the list of known hosts. 2023/11/03 16:01:43 ignoring optional flag "sandboxArg"="0" 2023/11/03 16:01:43 parsed 1 programs 2023/11/03 16:01:43 executed programs: 0 [ 79.438933][ T5394] cgroup: Unknown subsys name 'net' [ 79.449315][ T5394] cgroup: Unknown subsys name 'rlimit' [ 80.594683][ T4451] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 80.602555][ T4451] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 80.611007][ T4451] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 80.618715][ T4451] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 80.626012][ T4451] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 80.633284][ T4451] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 80.725870][ T5400] chnl_net:caif_netlink_parms(): no params data found [ 80.775846][ T5400] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.783038][ T5400] bridge0: port 1(bridge_slave_0) entered disabled state [ 80.790332][ T5400] bridge_slave_0: entered allmulticast mode [ 80.797231][ T5400] bridge_slave_0: entered promiscuous mode [ 80.805753][ T5400] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.813363][ T5400] bridge0: port 2(bridge_slave_1) entered disabled state [ 80.820664][ T5400] bridge_slave_1: entered allmulticast mode [ 80.828454][ T5400] bridge_slave_1: entered promiscuous mode [ 80.851764][ T5400] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 80.862991][ T5400] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 80.889832][ T5400] team0: Port device team_slave_0 added [ 80.898275][ T5400] team0: Port device team_slave_1 added [ 80.919620][ T5400] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 80.926664][ T5400] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 80.952783][ T5400] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 80.966330][ T5400] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 80.973327][ T5400] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 80.999351][ T5400] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 81.030766][ T5400] hsr_slave_0: entered promiscuous mode [ 81.037607][ T5400] hsr_slave_1: entered promiscuous mode [ 81.113485][ T5400] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.120610][ T5400] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.128051][ T5400] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.135158][ T5400] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.182150][ T5400] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.196072][ T5400] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.206079][ T54] bridge0: port 1(bridge_slave_0) entered disabled state [ 81.214245][ T54] bridge0: port 2(bridge_slave_1) entered disabled state [ 81.239476][ T1136] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.246594][ T1136] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.254835][ T1136] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.261997][ T1136] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.282115][ T5400] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 81.292780][ T5400] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 81.323952][ T5400] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 81.551960][ T5400] veth0_vlan: entered promiscuous mode [ 81.568936][ T5400] veth1_vlan: entered promiscuous mode [ 81.592101][ T5400] veth0_macvtap: entered promiscuous mode [ 81.601151][ T5400] veth1_macvtap: entered promiscuous mode [ 81.616044][ T5400] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 81.630930][ T5400] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 81.684361][ T1080] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.694940][ T1080] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.720417][ T1080] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.729632][ T1080] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.773015][ T5421] [ 81.775359][ T5421] ============================================ [ 81.781504][ T5421] WARNING: possible recursive locking detected [ 81.787830][ T5421] 6.6.0-syzkaller-12401-g8f6f76a6a29f #0 Not tainted [ 81.794483][ T5421] -------------------------------------------- [ 81.800608][ T5421] syz-executor.0/5421 is trying to acquire lock: [ 81.806910][ T5421] ffff888020fa50d8 (_xmit_ETHER#2){+.-.}-{2:2}, at: __dev_queue_xmit+0x1694/0x3a30 [ 81.816215][ T5421] [ 81.816215][ T5421] but task is already holding lock: [ 81.823584][ T5421] ffff88807898a0d8 (_xmit_ETHER#2){+.-.}-{2:2}, at: sch_direct_xmit+0x1c4/0x5f0 [ 81.832624][ T5421] [ 81.832624][ T5421] other info that might help us debug this: [ 81.840672][ T5421] Possible unsafe locking scenario: [ 81.840672][ T5421] [ 81.848194][ T5421] CPU0 [ 81.851454][ T5421] ---- [ 81.854711][ T5421] lock(_xmit_ETHER#2); [ 81.858944][ T5421] lock(_xmit_ETHER#2); [ 81.863188][ T5421] [ 81.863188][ T5421] *** DEADLOCK *** [ 81.863188][ T5421] [ 81.871321][ T5421] May be due to missing lock nesting notation [ 81.871321][ T5421] [ 81.879622][ T5421] 6 locks held by syz-executor.0/5421: [ 81.885058][ T5421] #0: ffffffff8d92d1e0 (rcu_read_lock){....}-{1:2}, at: ip_finish_output2+0x467/0x1360 [ 81.894809][ T5421] #1: ffffffff8d92d240 (rcu_read_lock_bh){....}-{1:2}, at: __dev_queue_xmit+0x2c4/0x3a30 [ 81.904708][ T5421] #2: ffff8881482df258 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock){+...}-{2:2}, at: __dev_queue_xmit+0x1242/0x3a30 [ 81.917142][ T5421] #3: ffff88807898a0d8 (_xmit_ETHER#2){+.-.}-{2:2}, at: sch_direct_xmit+0x1c4/0x5f0 [ 81.926669][ T5421] #4: ffffffff8d92d1e0 (rcu_read_lock){....}-{1:2}, at: ip_finish_output2+0x467/0x1360 [ 81.936396][ T5421] #5: ffffffff8d92d240 (rcu_read_lock_bh){....}-{1:2}, at: __dev_queue_xmit+0x2c4/0x3a30 [ 81.946486][ T5421] [ 81.946486][ T5421] stack backtrace: [ 81.952479][ T5421] CPU: 1 PID: 5421 Comm: syz-executor.0 Not tainted 6.6.0-syzkaller-12401-g8f6f76a6a29f #0 [ 81.962438][ T5421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 81.972663][ T5421] Call Trace: [ 81.975932][ T5421] [ 81.978861][ T5421] dump_stack_lvl+0x1e7/0x2d0 [ 81.983553][ T5421] ? nf_tcp_handle_invalid+0x650/0x650 [ 81.989027][ T5421] ? print_deadlock_bug+0x462/0x600 [ 81.994334][ T5421] ? _find_first_zero_bit+0xd4/0x100 [ 81.999610][ T5421] __lock_acquire+0x6a81/0x7f70 [ 82.004543][ T5421] ? __stack_depot_save+0x4dc/0x650 [ 82.009744][ T5421] ? kasan_save_stack+0x4f/0x60 [ 82.014674][ T5421] ? kasan_save_stack+0x3f/0x60 [ 82.019598][ T5421] ? __dev_queue_xmit+0x86e/0x3a30 [ 82.024700][ T5421] ? verify_lock_unused+0x140/0x140 [ 82.029909][ T5421] ? erspan_xmit+0x9c6/0x13e0 [ 82.034580][ T5421] ? dev_hard_start_xmit+0x241/0x750 [ 82.039851][ T5421] ? sch_direct_xmit+0x2b6/0x5f0 [ 82.046603][ T5421] ? __dev_queue_xmit+0x18ee/0x3a30 [ 82.051806][ T5421] ? ip_finish_output2+0xe6d/0x1360 [ 82.057004][ T5421] ? ip_send_skb+0x117/0x1b0 [ 82.061574][ T5421] ? udp_send_skb+0xa6d/0x13e0 [ 82.066322][ T5421] ? csum_partial+0x234/0x2b0 [ 82.070983][ T5421] ? __skb_checksum+0x850/0x850 [ 82.075825][ T5421] ? __skb_checksum+0x787/0x850 [ 82.080670][ T5421] ? skb_checksum+0x88/0xe0 [ 82.085162][ T5421] ? validate_xmit_xfrm+0xc1/0x1260 [ 82.090341][ T5421] ? pskb_trim_rcsum_slow+0x520/0x520 [ 82.095694][ T5421] ? csum_partial_ext+0x30/0x30 [ 82.100540][ T5421] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0 [ 82.106506][ T5421] lock_acquire+0x1e3/0x520 [ 82.111011][ T5421] ? __dev_queue_xmit+0x1694/0x3a30 [ 82.116194][ T5421] ? skb_checksum_help+0x321/0x740 [ 82.121294][ T5421] ? read_lock_is_recursive+0x20/0x20 [ 82.126649][ T5421] ? validate_xmit_skb+0xa01/0x1120 [ 82.131832][ T5421] ? rcu_read_lock_bh_held+0x7e/0x120 [ 82.137191][ T5421] ? validate_xmit_skb_list+0x130/0x130 [ 82.142720][ T5421] _raw_spin_lock+0x2e/0x40 [ 82.147208][ T5421] ? __dev_queue_xmit+0x1694/0x3a30 [ 82.152402][ T5421] __dev_queue_xmit+0x1694/0x3a30 [ 82.157495][ T5421] ? print_irqtrace_events+0x220/0x220 [ 82.162939][ T5421] ? neigh_resolve_output+0x43e/0x710 [ 82.168391][ T5421] ? __dev_queue_xmit+0x2c4/0x3a30 [ 82.173481][ T5421] ? read_seqbegin+0x208/0x2b0 [ 82.178226][ T5421] ? netdev_core_pick_tx+0x330/0x330 [ 82.183497][ T5421] ? neigh_resolve_output+0x2d5/0x710 [ 82.188854][ T5421] ? eth_header+0x11c/0x1f0 [ 82.193342][ T5421] ? __asan_memcpy+0x40/0x70 [ 82.197920][ T5421] ? eth_header+0x11c/0x1f0 [ 82.202418][ T5421] ? llc_sysctl_exit+0x70/0x70 [ 82.207164][ T5421] ? neigh_resolve_output+0x5ee/0x710 [ 82.212524][ T5421] ? ip_finish_output2+0x467/0x1360 [ 82.217708][ T5421] ? ip_finish_output2+0x467/0x1360 [ 82.222903][ T5421] ip_finish_output2+0xe6d/0x1360 [ 82.228025][ T5421] ? nf_hook+0x9e/0x450 [ 82.232164][ T5421] ? ip_finish_output2+0x467/0x1360 [ 82.237371][ T5421] ? dst_release+0x50/0x50 [ 82.241782][ T5421] ? ip_fragment+0x210/0x210 [ 82.246358][ T5421] ? __ip_local_out+0x3d2/0x4e0 [ 82.251193][ T5421] ? ip_skb_dst_mtu+0x60c/0x990 [ 82.256031][ T5421] ? __ip_finish_output+0x3e0/0x4b0 [ 82.261229][ T5421] iptunnel_xmit+0x540/0x9b0 [ 82.265910][ T5421] ip_tunnel_xmit+0x20d8/0x2940 [ 82.270764][ T5421] ? tnl_update_pmtu+0x10b0/0x10b0 [ 82.275864][ T5421] ? skb_push+0x97/0x100 [ 82.280097][ T5421] ? __gre_xmit+0x118/0x1b0 [ 82.284586][ T5421] erspan_xmit+0x9c6/0x13e0 [ 82.289077][ T5421] dev_hard_start_xmit+0x241/0x750 [ 82.294179][ T5421] sch_direct_xmit+0x2b6/0x5f0 [ 82.298930][ T5421] ? mrp_pdu_parse_vecattr_event+0x2c0/0x2c0 [ 82.304903][ T5421] __dev_queue_xmit+0x18ee/0x3a30 [ 82.309915][ T5421] ? print_irqtrace_events+0x220/0x220 [ 82.315354][ T5421] ? neigh_resolve_output+0x43e/0x710 [ 82.320715][ T5421] ? __dev_queue_xmit+0x2c4/0x3a30 [ 82.325829][ T5421] ? read_seqbegin+0x208/0x2b0 [ 82.330582][ T5421] ? netdev_core_pick_tx+0x330/0x330 [ 82.335856][ T5421] ? neigh_resolve_output+0x2d5/0x710 [ 82.341215][ T5421] ? eth_header+0x11c/0x1f0 [ 82.345710][ T5421] ? __asan_memcpy+0x40/0x70 [ 82.350295][ T5421] ? eth_header+0x11c/0x1f0 [ 82.354794][ T5421] ? llc_sysctl_exit+0x70/0x70 [ 82.359544][ T5421] ? neigh_resolve_output+0x5ee/0x710 [ 82.364908][ T5421] ? ip_finish_output2+0x467/0x1360 [ 82.370093][ T5421] ? ip_finish_output2+0x467/0x1360 [ 82.375277][ T5421] ip_finish_output2+0xe6d/0x1360 [ 82.380286][ T5421] ? ip_finish_output2+0x467/0x1360 [ 82.385476][ T5421] ? ip_mc_finish_output+0x560/0x560 [ 82.390746][ T5421] ? ip_fragment+0x210/0x210 [ 82.395321][ T5421] ? __asan_memset+0x23/0x40 [ 82.399907][ T5421] ? ip_fast_csum+0x1f0/0x2b0 [ 82.404566][ T5421] ? ip_skb_dst_mtu+0x60c/0x990 [ 82.409397][ T5421] ? __ip_finish_output+0x3e0/0x4b0 [ 82.414578][ T5421] ip_send_skb+0x117/0x1b0 [ 82.418980][ T5421] udp_send_skb+0xa6d/0x13e0 [ 82.423558][ T5421] udp_sendmsg+0x1c1b/0x2a70 [ 82.428156][ T5421] ? ip_skb_dst_mtu+0x990/0x990 [ 82.433012][ T5421] ? udp_cmsg_send+0x340/0x340 [ 82.437794][ T5421] ? mark_lock+0x9a/0x340 [ 82.442111][ T5421] ? __lock_acquire+0x1345/0x7f70 [ 82.447140][ T5421] udpv6_sendmsg+0x135d/0x3250 [ 82.451902][ T5421] ? udp_v6_early_demux+0x1000/0x1000 [ 82.457256][ T5421] ? smack_socket_sendmsg+0x172/0x530 [ 82.462614][ T5421] ? tomoyo_socket_bind_permission+0x340/0x340 [ 82.468752][ T5421] ? iovec_from_user+0x61/0x240 [ 82.473591][ T5421] ? __import_iovec+0x361/0x880 [ 82.478423][ T5421] ? sock_rps_record_flow+0x1a/0x400 [ 82.483690][ T5421] ? inet_send_prepare+0x21/0x250 [ 82.488706][ T5421] ? inet_send_prepare+0x5a/0x250 [ 82.493728][ T5421] ? inet6_compat_ioctl+0x560/0x560 [ 82.498906][ T5421] ____sys_sendmsg+0x592/0x890 [ 82.503663][ T5421] ? __sys_sendmsg_sock+0x30/0x30 [ 82.508678][ T5421] ? __fget_files+0x3fe/0x480 [ 82.513431][ T5421] __sys_sendmmsg+0x3b2/0x730 [ 82.518098][ T5421] ? __ia32_sys_sendmsg+0x90/0x90 [ 82.523108][ T5421] ? try_to_wake_up+0x994/0x1440 [ 82.528036][ T5421] ? __lock_acquire+0x7f70/0x7f70 [ 82.533143][ T5421] ? plist_check_list+0x20d/0x220 [ 82.538169][ T5421] ? __might_sleep+0xc0/0xc0 [ 82.542759][ T5421] ? __might_fault+0xa5/0x120 [ 82.547418][ T5421] ? __lock_acquire+0x7f70/0x7f70 [ 82.552424][ T5421] ? __local_bh_enable_ip+0x168/0x1f0 [ 82.557786][ T5421] ? ip6_datagram_connect+0x38/0x40 [ 82.562981][ T5421] ? __might_fault+0xa5/0x120 [ 82.567651][ T5421] ? print_irqtrace_events+0x220/0x220 [ 82.573102][ T5421] ? syscall_enter_from_user_mode+0x32/0x230 [ 82.579073][ T5421] __x64_sys_sendmmsg+0xa0/0xb0 [ 82.584009][ T5421] do_syscall_64+0x44/0x110 [ 82.588524][ T5421] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 82.594421][ T5421] RIP: 0033:0x7f90d3a798a9 [ 82.598840][ T5421] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 82.618430][ T5421] RSP: 002b:00007f90d4c160c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 82.626835][ T5421] RAX: ffffffffffffffda RBX: 00007f90d3b8bf60 RCX: 00007f90d3a798a9 [ 82.635063][ T5421] RDX: 0000000000000001 RSI: 0000000020004d80 RDI: 0000000000000004 [ 82.643029][ T5421] RBP: 00007f90d3ad5074 R08: 0000000000000000 R09: 0000000000000000 [ 82.650988][ T5421] R10: 0000000004000000 R11: 0000000000000246 R12: 0000000000000000 [ 82.658960][ T5421] R13: 000000000000000b R14: 00007f90d3b8bf60 R15: 00007ffd586e7e88 [ 82.666928][ T5421] [ 82.669728][ T4451] Bluetooth: hci0: command 0x0409 tx timeout 2023/11/03 16:01:48 executed programs: 106 [ 84.747888][ T4451] Bluetooth: hci0: command 0x041b tx timeout [ 86.827097][ T4451] Bluetooth: hci0: command 0x040f tx timeout [ 88.916833][ T4451] Bluetooth: hci0: command 0x0419 tx timeout 2023/11/03 16:01:53 executed programs: 545