Warning: Permanently added '10.128.15.206' (ECDSA) to the list of known hosts.
2022/11/18 01:35:59 ignoring optional flag "sandboxArg"="0"
2022/11/18 01:35:59 parsed 1 programs
2022/11/18 01:35:59 executed programs: 0
[ 65.209056][ T47] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 65.217435][ T47] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 65.225187][ T47] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 65.233555][ T47] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 65.240785][ T47] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 65.249040][ T4101] Bluetooth: hci0: HCI_REQ-0x0c1a
[ 65.317313][ T4101] chnl_net:caif_netlink_parms(): no params data found
[ 65.348054][ T4101] bridge0: port 1(bridge_slave_0) entered blocking state
[ 65.355178][ T4101] bridge0: port 1(bridge_slave_0) entered disabled state
[ 65.362933][ T4101] device bridge_slave_0 entered promiscuous mode
[ 65.370701][ T4101] bridge0: port 2(bridge_slave_1) entered blocking state
[ 65.378453][ T4101] bridge0: port 2(bridge_slave_1) entered disabled state
[ 65.386155][ T4101] device bridge_slave_1 entered promiscuous mode
[ 65.401800][ T4101] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 65.413185][ T4101] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 65.432103][ T4101] team0: Port device team_slave_0 added
[ 65.439016][ T4101] team0: Port device team_slave_1 added
[ 65.453391][ T4101] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 65.460731][ T4101] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 65.487548][ T4101] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 65.499308][ T4101] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 65.506762][ T4101] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 65.532844][ T4101] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 65.556002][ T4101] device hsr_slave_0 entered promiscuous mode
[ 65.562613][ T4101] device hsr_slave_1 entered promiscuous mode
[ 65.778236][ T1257] ieee802154 phy0 wpan0: encryption failed: -22
[ 65.785228][ T1257] ieee802154 phy1 wpan1: encryption failed: -22
[ 66.021249][ T4101] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 66.032012][ T4101] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 66.042324][ T4101] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 66.052807][ T4101] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 66.073489][ T4101] bridge0: port 2(bridge_slave_1) entered blocking state
[ 66.080705][ T4101] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 66.088099][ T4101] bridge0: port 1(bridge_slave_0) entered blocking state
[ 66.095267][ T4101] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 66.145167][ T4101] 8021q: adding VLAN 0 to HW filter on device bond0
[ 66.160163][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 66.171132][ T22] bridge0: port 1(bridge_slave_0) entered disabled state
[ 66.180134][ T22] bridge0: port 2(bridge_slave_1) entered disabled state
[ 66.189209][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 66.202502][ T4101] 8021q: adding VLAN 0 to HW filter on device team0
[ 66.215901][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 66.224160][ T22] bridge0: port 1(bridge_slave_0) entered blocking state
[ 66.231215][ T22] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 66.248443][ T4131] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 66.256915][ T4131] bridge0: port 2(bridge_slave_1) entered blocking state
[ 66.263977][ T4131] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 66.284769][ T4101] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 66.297274][ T4101] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 66.311551][ T4128] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 66.320601][ T4128] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 66.329671][ T4128] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 66.338506][ T4128] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 66.351548][ T4128] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 66.359774][ T4128] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 66.490658][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 66.500545][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 66.510190][ T4101] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 66.529631][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 66.540891][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 66.560598][ T4128] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 66.570781][ T4128] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 66.581145][ T4101] device veth0_vlan entered promiscuous mode
[ 66.590167][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 66.598216][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 66.610115][ T4101] device veth1_vlan entered promiscuous mode
[ 66.631337][ T3652] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 66.639406][ T3652] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 66.648609][ T3652] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 66.657351][ T3652] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 66.668491][ T4101] device veth0_macvtap entered promiscuous mode
[ 66.678978][ T4101] device veth1_macvtap entered promiscuous mode
[ 66.694644][ T4101] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 66.702691][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 66.711645][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 66.720407][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 66.729746][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 66.741427][ T4101] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 66.750221][ T4128] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 66.759318][ T4128] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 66.769848][ T4101] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 66.779456][ T4101] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 66.788895][ T4101] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 66.798065][ T4101] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 66.887653][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 66.907361][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 66.927492][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 66.958175][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 66.968816][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 67.002336][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 67.153003][ T27] audit: type=1804 audit(1668735361.549:2): pid=4175 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir907789738/syzkaller.9WRez7/0/cgroup.controllers" dev="sda1" ino=1148 res=1 errno=0
[ 67.186671][ T4175] BUG: sleeping function called from invalid context at include/linux/percpu-rwsem.h:49
[ 67.196722][ T4175] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 4175, name: syz-executor.0
[ 67.206445][ T4175] preempt_count: 1, expected: 0
[ 67.211313][ T4175] RCU nest depth: 0, expected: 0
[ 67.216449][ T4175] 3 locks held by syz-executor.0/4175:
[ 67.221900][ T4175] #0: ffffffff8d0969d0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x14/0x30
[ 67.230439][ T4175] #1: ffffffff8d096a88 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x3e5/0x630
[ 67.239774][ T4175] #2: ffff88801168cc38 (k-clock-AF_INET){+++.}-{2:2}, at: l2tp_tunnel_register+0xf9/0xf60
[ 67.249843][ T4175] Preemption disabled at:
[ 67.249851][ T4175] [<0000000000000000>] 0x0
[ 67.258636][ T4175] CPU: 0 PID: 4175 Comm: syz-executor.0 Not tainted 6.1.0-rc4-syzkaller #0
[ 67.267219][ T4175] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 67.277281][ T4175] Call Trace:
[ 67.280571][ T4175]
[ 67.283504][ T4175] dump_stack_lvl+0x5b/0x81
[ 67.288182][ T4175] __might_resched.cold+0x222/0x26b
[ 67.293388][ T4175] cpus_read_lock+0x15/0xd0
[ 67.297891][ T4175] static_key_slow_inc+0xd/0x20
[ 67.302743][ T4175] l2tp_tunnel_register+0x9c3/0xf60
[ 67.307943][ T4175] ? l2tp_tunnel_del_work+0x690/0x690
[ 67.313344][ T4175] ? snprintf+0xd0/0xd0
[ 67.317511][ T4175] ? debug_object_free+0x360/0x360
[ 67.322620][ T4175] ? lockdep_init_map_type+0x21e/0x800
[ 67.328082][ T4175] ? l2tp_recv_common+0x2e80/0x2e80
[ 67.333278][ T4175] ? l2tp_tunnel_delete+0x30/0x30
[ 67.338318][ T4175] ? l2tp_tunnel_create+0x2a6/0x490
[ 67.343518][ T4175] l2tp_nl_cmd_tunnel_create+0x364/0x9a0
[ 67.349239][ T4175] ? l2tp_tunnel_notify.constprop.0+0x140/0x140
[ 67.355572][ T4175] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xb0/0x230
[ 67.362945][ T4175] ? __nla_parse+0x26/0x30
[ 67.367363][ T4175] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x159/0x230
[ 67.374717][ T4175] genl_family_rcv_msg_doit+0x1e4/0x2f0
[ 67.380412][ T4175] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x230/0x230
[ 67.387754][ T4175] ? mutex_lock_io_nested+0x11a0/0x11a0
[ 67.393281][ T4175] ? security_capable+0x50/0x90
[ 67.398220][ T4175] genl_rcv_msg+0x34c/0x630
[ 67.402699][ T4175] ? genl_start+0x630/0x630
[ 67.407197][ T4175] ? lock_acquire+0x1e3/0x630
[ 67.411952][ T4175] ? l2tp_tunnel_notify.constprop.0+0x140/0x140
[ 67.418179][ T4175] ? lock_release+0x810/0x810
[ 67.422838][ T4175] ? ref_tracker_dir_exit+0x3b0/0x3b0
[ 67.428385][ T4175] netlink_rcv_skb+0x11c/0x370
[ 67.433130][ T4175] ? genl_start+0x630/0x630
[ 67.437646][ T4175] ? netlink_ack+0xb80/0xb80
[ 67.442399][ T4175] ? netlink_deliver_tap+0x135/0xac0
[ 67.447698][ T4175] genl_rcv+0x23/0x30
[ 67.451669][ T4175] netlink_unicast+0x437/0x710
[ 67.456437][ T4175] ? netlink_attachskb+0x740/0x740
[ 67.461526][ T4175] ? __check_object_size+0x2b0/0x3c0
[ 67.466810][ T4175] netlink_sendmsg+0x786/0xc30
[ 67.471552][ T4175] ? netlink_unicast+0x710/0x710
[ 67.476461][ T4175] ? __kmem_cache_free+0xaf/0x3b0
[ 67.481464][ T4175] ? netlink_unicast+0x710/0x710
[ 67.486380][ T4175] sock_sendmsg+0xaf/0xe0
[ 67.490695][ T4175] sock_no_sendpage+0x100/0x150
[ 67.495885][ T4175] ? sk_page_frag_refill+0x2b0/0x2b0
[ 67.501178][ T4175] ? debug_check_no_obj_freed+0x210/0x420
[ 67.506881][ T4175] ? mark_held_locks+0x9f/0xe0
[ 67.511626][ T4175] kernel_sendpage.part.0+0x12f/0x520
[ 67.516972][ T4175] ? kernel_sendpage+0xd0/0xd0
[ 67.521713][ T4175] sock_sendpage+0xc1/0x190
[ 67.526213][ T4175] pipe_to_sendpage+0x249/0x410
[ 67.531044][ T4175] ? propagate_umount+0x1840/0x1840
[ 67.536571][ T4175] __splice_from_pipe+0x375/0x810
[ 67.541571][ T4175] ? propagate_umount+0x1840/0x1840
[ 67.546744][ T4175] ? generic_file_splice_read+0x178/0x440
[ 67.552526][ T4175] generic_splice_sendpage+0xbe/0x120
[ 67.557868][ T4175] ? add_to_pipe+0x370/0x370
[ 67.562434][ T4175] ? __do_sys_vmsplice+0x830/0x830
[ 67.567528][ T4175] direct_splice_actor+0xff/0x1d0
[ 67.572546][ T4175] splice_direct_to_actor+0x2bf/0x790
[ 67.577906][ T4175] ? do_splice_direct+0x260/0x260
[ 67.582922][ T4175] ? folio_flags.constprop.0+0xd0/0xd0
[ 67.588371][ T4175] ? apparmor_file_permission+0x13c/0x450
[ 67.594076][ T4175] do_splice_direct+0x14c/0x260
[ 67.598903][ T4175] ? splice_direct_to_actor+0x790/0x790
[ 67.604429][ T4175] ? apparmor_file_permission+0x13c/0x450
[ 67.610129][ T4175] ? security_file_permission+0x40/0x90
[ 67.615651][ T4175] do_sendfile+0x93d/0x1150
[ 67.620134][ T4175] ? do_futex+0x12c/0x230
[ 67.624471][ T4175] ? vfs_iocb_iter_write+0x3b0/0x3b0
[ 67.629726][ T4175] ? xfd_validate_state+0x23/0x120
[ 67.634837][ T4175] ? restore_fpregs_from_fpstate+0x94/0x170
[ 67.640808][ T4175] __x64_sys_sendfile64+0x18a/0x1d0
[ 67.646001][ T4175] ? __ia32_sys_sendfile+0x1d0/0x1d0
[ 67.651273][ T4175] ? lockdep_hardirqs_on_prepare+0x17f/0x410
[ 67.657317][ T4175] ? syscall_enter_from_user_mode+0x26/0xb0
[ 67.663213][ T4175] do_syscall_64+0x39/0xb0
[ 67.667608][ T4175] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 67.673475][ T4175] RIP: 0033:0x7f5b5a68b639
[ 67.677868][ T4175] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 67.697461][ T4175] RSP: 002b:00007f5b5b350168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 67.705854][ T4175] RAX: ffffffffffffffda RBX: 00007f5b5a7abf80 RCX: 00007f5b5a68b639
[ 67.713801][ T4175] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 67.721746][ T4175] RBP: 00007f5b5a6e6ae9 R08: 0000000000000000 R09: 0000000000000000
[ 67.729732][ T4175] R10: 0000000100000000 R11: 0000000000000246 R12: 0000000000000000
[ 67.737787][ T4175] R13: 00007ffc53d868ef R14: 00007f5b5b350300 R15: 0000000000022000
[ 67.745751][ T4175]
[ 67.750883][ T47] Bluetooth: hci0: command 0x0409 tx timeout
[ 67.987606][ T27] audit: type=1804 audit(1668735362.389:3): pid=4196 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir907789738/syzkaller.9WRez7/1/cgroup.controllers" dev="sda1" ino=1148 res=1 errno=0
[ 67.991269][ T4196]
[ 68.015895][ T4196] ======================================================
[ 68.022984][ T4196] WARNING: possible circular locking dependency detected
[ 68.029991][ T4196] 6.1.0-rc4-syzkaller #0 Tainted: G W
[ 68.036822][ T4196] ------------------------------------------------------
[ 68.043911][ T4196] syz-executor.0/4196 is trying to acquire lock:
[ 68.050223][ T4196] ffff8880766f33f0 (k-sk_lock-AF_INET){+.+.}-{0:0}, at: sk_common_release+0x5b/0x2e0
[ 68.059685][ T4196]
[ 68.059685][ T4196] but task is already holding lock:
[ 68.067041][ T4196] ffff8880766f3678 (k-clock-AF_INET){+++.}-{2:2}, at: l2tp_tunnel_register+0xf9/0xf60
[ 68.076594][ T4196]
[ 68.076594][ T4196] which lock already depends on the new lock.
[ 68.076594][ T4196]
[ 68.086994][ T4196]
[ 68.086994][ T4196] the existing dependency chain (in reverse order) is:
[ 68.095996][ T4196]
[ 68.095996][ T4196] -> #1 (k-clock-AF_INET){+++.}-{2:2}:
[ 68.103630][ T4196] _raw_write_lock_bh+0x33/0x40
[ 68.108997][ T4196] __tcp_close+0x4a1/0xee0
[ 68.113942][ T4196] tcp_close+0x1f/0x70
[ 68.118518][ T4196] inet_release+0xf3/0x210
[ 68.123453][ T4196] sock_release+0x81/0x190
[ 68.128382][ T4196] smc_clcsock_release+0x92/0xb0
[ 68.133828][ T4196] __smc_release+0x4db/0x750
[ 68.138927][ T4196] smc_release+0x157/0x480
[ 68.143848][ T4196] __sock_release+0xbb/0x270
[ 68.149038][ T4196] sock_close+0x13/0x20
[ 68.153974][ T4196] __fput+0x1fa/0x9a0
[ 68.158474][ T4196] task_work_run+0x12f/0x220
[ 68.163608][ T4196] exit_to_user_mode_prepare+0x23c/0x250
[ 68.169934][ T4196] syscall_exit_to_user_mode+0x1d/0x50
[ 68.176105][ T4196] do_syscall_64+0x46/0xb0
[ 68.181034][ T4196] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 68.187540][ T4196]
[ 68.187540][ T4196] -> #0 (k-sk_lock-AF_INET){+.+.}-{0:0}:
[ 68.195345][ T4196] __lock_acquire+0x2a43/0x56d0
[ 68.200713][ T4196] lock_acquire+0x1e3/0x630
[ 68.205732][ T4196] udp_destroy_sock+0x2d/0x1e0
[ 68.211007][ T4196] sk_common_release+0x5b/0x2e0
[ 68.216459][ T4196] inet_release+0xf3/0x210
[ 68.221386][ T4196] sock_release+0x81/0x190
[ 68.226309][ T4196] l2tp_tunnel_register+0x9dd/0xf60
[ 68.232017][ T4196] l2tp_nl_cmd_tunnel_create+0x364/0x9a0
[ 68.238160][ T4196] genl_family_rcv_msg_doit+0x1e4/0x2f0
[ 68.244218][ T4196] genl_rcv_msg+0x34c/0x630
[ 68.249228][ T4196] netlink_rcv_skb+0x11c/0x370
[ 68.254498][ T4196] genl_rcv+0x23/0x30
[ 68.258992][ T4196] netlink_unicast+0x437/0x710
[ 68.264271][ T4196] netlink_sendmsg+0x786/0xc30
[ 68.269541][ T4196] sock_sendmsg+0xaf/0xe0
[ 68.274379][ T4196] sock_no_sendpage+0x100/0x150
[ 68.279738][ T4196] kernel_sendpage.part.0+0x12f/0x520
[ 68.285624][ T4196] sock_sendpage+0xc1/0x190
[ 68.290636][ T4196] pipe_to_sendpage+0x249/0x410
[ 68.295994][ T4196] __splice_from_pipe+0x375/0x810
[ 68.301525][ T4196] generic_splice_sendpage+0xbe/0x120
[ 68.307405][ T4196] direct_splice_actor+0xff/0x1d0
[ 68.312947][ T4196] splice_direct_to_actor+0x2bf/0x790
[ 68.318827][ T4196] do_splice_direct+0x14c/0x260
[ 68.324188][ T4196] do_sendfile+0x93d/0x1150
[ 68.329224][ T4196] __x64_sys_sendfile64+0x18a/0x1d0
[ 68.334932][ T4196] do_syscall_64+0x39/0xb0
[ 68.339861][ T4196] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 68.346351][ T4196]
[ 68.346351][ T4196] other info that might help us debug this:
[ 68.346351][ T4196]
[ 68.356834][ T4196] Possible unsafe locking scenario:
[ 68.356834][ T4196]
[ 68.364282][ T4196] CPU0 CPU1
[ 68.369632][ T4196] ---- ----
[ 68.374984][ T4196] lock(k-clock-AF_INET);
[ 68.379385][ T4196] lock(k-sk_lock-AF_INET);
[ 68.386480][ T4196] lock(k-clock-AF_INET);
[ 68.393402][ T4196] lock(k-sk_lock-AF_INET);
[ 68.397976][ T4196]
[ 68.397976][ T4196] *** DEADLOCK ***
[ 68.397976][ T4196]
[ 68.406196][ T4196] 3 locks held by syz-executor.0/4196:
[ 68.412080][ T4196] #0: ffffffff8d0969d0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x14/0x30
[ 68.420416][ T4196] #1: ffffffff8d096a88 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x3e5/0x630
[ 68.429446][ T4196] #2: ffff8880766f3678 (k-clock-AF_INET){+++.}-{2:2}, at: l2tp_tunnel_register+0xf9/0xf60
[ 68.439604][ T4196]
[ 68.439604][ T4196] stack backtrace:
[ 68.445483][ T4196] CPU: 1 PID: 4196 Comm: syz-executor.0 Tainted: G W 6.1.0-rc4-syzkaller #0
[ 68.455528][ T4196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 68.465669][ T4196] Call Trace:
[ 68.468939][ T4196]
[ 68.471858][ T4196] dump_stack_lvl+0x5b/0x81
[ 68.476349][ T4196] check_noncircular+0x25f/0x2e0
[ 68.481363][ T4196] ? print_circular_bug+0x1e0/0x1e0
[ 68.486550][ T4196] ? mark_lock.part.0+0xee/0x1910
[ 68.491561][ T4196] ? mark_held_locks+0x9f/0xe0
[ 68.496310][ T4196] ? lock_chain_count+0x20/0x20
[ 68.503577][ T4196] ? lockdep_hardirqs_on_prepare+0x17f/0x410
[ 68.509542][ T4196] ? __local_bh_enable_ip+0xa4/0x130
[ 68.514814][ T4196] ? lockdep_hardirqs_on+0x7d/0x100
[ 68.520006][ T4196] ? __inet_bind+0x71a/0xb50
[ 68.524582][ T4196] ? __local_bh_enable_ip+0xa4/0x130
[ 68.529854][ T4196] __lock_acquire+0x2a43/0x56d0
[ 68.535135][ T4196] ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 68.541247][ T4196] lock_acquire+0x1e3/0x630
[ 68.545741][ T4196] ? sk_common_release+0x5b/0x2e0
[ 68.550840][ T4196] ? lock_release+0x810/0x810
[ 68.555509][ T4196] ? mark_held_locks+0x9f/0xe0
[ 68.560262][ T4196] ? lockdep_hardirqs_on_prepare+0x17f/0x410
[ 68.566320][ T4196] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 68.572720][ T4196] ? lockdep_hardirqs_on+0x7d/0x100
[ 68.577909][ T4196] udp_destroy_sock+0x2d/0x1e0
[ 68.582685][ T4196] ? sk_common_release+0x5b/0x2e0
[ 68.587698][ T4196] sk_common_release+0x5b/0x2e0
[ 68.592538][ T4196] inet_release+0xf3/0x210
[ 68.596947][ T4196] sock_release+0x81/0x190
[ 68.601357][ T4196] l2tp_tunnel_register+0x9dd/0xf60
[ 68.606817][ T4196] ? l2tp_tunnel_del_work+0x690/0x690
[ 68.612869][ T4196] ? snprintf+0xd0/0xd0
[ 68.617121][ T4196] ? debug_object_free+0x360/0x360
[ 68.622221][ T4196] ? lockdep_init_map_type+0x21e/0x800
[ 68.627755][ T4196] ? lockdep_init_map_type+0x21e/0x800
[ 68.633204][ T4196] ? l2tp_tunnel_create+0x2a6/0x490
[ 68.638479][ T4196] l2tp_nl_cmd_tunnel_create+0x364/0x9a0
[ 68.644159][ T4196] ? l2tp_tunnel_notify.constprop.0+0x140/0x140
[ 68.650400][ T4196] ? __nla_parse+0x26/0x30
[ 68.654814][ T4196] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x159/0x230
[ 68.662174][ T4196] genl_family_rcv_msg_doit+0x1e4/0x2f0
[ 68.667710][ T4196] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x230/0x230
[ 68.675067][ T4196] ? mutex_lock_io_nested+0x11a0/0x11a0
[ 68.680606][ T4196] ? security_capable+0x50/0x90
[ 68.685464][ T4196] genl_rcv_msg+0x34c/0x630
[ 68.689957][ T4196] ? genl_start+0x630/0x630
[ 68.694444][ T4196] ? lock_acquire+0x1e3/0x630
[ 68.699194][ T4196] ? l2tp_tunnel_notify.constprop.0+0x140/0x140
[ 68.705422][ T4196] ? lock_release+0x810/0x810
[ 68.710087][ T4196] ? lockdep_hardirqs_on_prepare+0x17f/0x410
[ 68.716064][ T4196] ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 68.721856][ T4196] netlink_rcv_skb+0x11c/0x370
[ 68.726603][ T4196] ? genl_start+0x630/0x630
[ 68.731089][ T4196] ? netlink_ack+0xb80/0xb80
[ 68.735662][ T4196] ? netlink_deliver_tap+0x135/0xac0
[ 68.740937][ T4196] genl_rcv+0x23/0x30
[ 68.744903][ T4196] netlink_unicast+0x437/0x710
[ 68.749657][ T4196] ? netlink_attachskb+0x740/0x740
[ 68.754751][ T4196] ? __check_object_size+0x2b0/0x3c0
[ 68.760032][ T4196] netlink_sendmsg+0x786/0xc30
[ 68.764786][ T4196] ? netlink_unicast+0x710/0x710
[ 68.769793][ T4196] ? __kmem_cache_free+0xaf/0x3b0
[ 68.774892][ T4196] ? netlink_unicast+0x710/0x710
[ 68.779816][ T4196] sock_sendmsg+0xaf/0xe0
[ 68.784143][ T4196] sock_no_sendpage+0x100/0x150
[ 68.789003][ T4196] ? sk_page_frag_refill+0x2b0/0x2b0
[ 68.794281][ T4196] ? debug_check_no_obj_freed+0x210/0x420
[ 68.799992][ T4196] ? mark_held_locks+0x9f/0xe0
[ 68.804747][ T4196] kernel_sendpage.part.0+0x12f/0x520
[ 68.810107][ T4196] ? kernel_sendpage+0xd0/0xd0
[ 68.814856][ T4196] sock_sendpage+0xc1/0x190
[ 68.819353][ T4196] pipe_to_sendpage+0x249/0x410
[ 68.824214][ T4196] ? propagate_umount+0x1840/0x1840
[ 68.829407][ T4196] __splice_from_pipe+0x375/0x810
[ 68.834416][ T4196] ? propagate_umount+0x1840/0x1840
[ 68.839614][ T4196] ? generic_file_splice_read+0x178/0x440
[ 68.845316][ T4196] generic_splice_sendpage+0xbe/0x120
[ 68.850673][ T4196] ? add_to_pipe+0x370/0x370
[ 68.855247][ T4196] ? __do_sys_vmsplice+0x830/0x830
[ 68.860358][ T4196] direct_splice_actor+0xff/0x1d0
[ 68.865468][ T4196] splice_direct_to_actor+0x2bf/0x790
[ 68.870830][ T4196] ? do_splice_direct+0x260/0x260
[ 68.875849][ T4196] ? folio_flags.constprop.0+0xd0/0xd0
[ 68.881300][ T4196] ? apparmor_file_permission+0x13c/0x450
[ 68.887099][ T4196] do_splice_direct+0x14c/0x260
[ 68.892047][ T4196] ? splice_direct_to_actor+0x790/0x790
[ 68.897587][ T4196] ? apparmor_file_permission+0x13c/0x450
[ 68.903305][ T4196] ? security_file_permission+0x40/0x90
[ 68.908842][ T4196] do_sendfile+0x93d/0x1150
[ 68.913337][ T4196] ? do_futex+0x12c/0x230
[ 68.917651][ T4196] ? vfs_iocb_iter_write+0x3b0/0x3b0
[ 68.922926][ T4196] ? xfd_validate_state+0x23/0x120
[ 68.928028][ T4196] ? restore_fpregs_from_fpstate+0x94/0x170
[ 68.933910][ T4196] __x64_sys_sendfile64+0x18a/0x1d0
[ 68.939094][ T4196] ? __ia32_sys_sendfile+0x1d0/0x1d0
[ 68.944549][ T4196] ? lockdep_hardirqs_on_prepare+0x17f/0x410
[ 68.950874][ T4196] ? syscall_enter_from_user_mode+0x26/0xb0
[ 68.956765][ T4196] do_syscall_64+0x39/0xb0
[ 68.961176][ T4196] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 68.967145][ T4196] RIP: 0033:0x7f5b5a68b639
[ 68.971551][ T4196] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 68.991238][ T4196] RSP: 002b:00007f5b5b350168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 68.999641][ T4196] RAX: ffffffffffffffda RBX: 00007f5b5a7abf80 RCX: 00007f5b5a68b639
[ 69.007616][ T4196] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 69.015576][ T4196] RBP: 00007f5b5a6e6ae9 R08: 0000000000000000 R09: 0000000000000000
[ 69.023627][ T4196] R10: 0000000100000000 R11: 0000000000000246 R12: 0000000000000000
[ 69.031589][ T4196] R13: 00007ffc53d868ef R14: 00007f5b5b350300 R15: 0000000000022000
[ 69.039563][ T4196]
[ 69.043534][ T4196] BUG: sleeping function called from invalid context at net/core/sock.c:3479
[ 69.052387][ T4196] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 4196, name: syz-executor.0
[ 69.061762][ T4196] preempt_count: 1, expected: 0
[ 69.066618][ T4196] RCU nest depth: 0, expected: 0
[ 69.071538][ T4196] INFO: lockdep is turned off.
[ 69.076306][ T4196] Preemption disabled at:
[ 69.076310][ T4196] [<0000000000000000>] 0x0
[ 69.085017][ T4196] CPU: 1 PID: 4196 Comm: syz-executor.0 Tainted: G W 6.1.0-rc4-syzkaller #0
[ 69.095161][ T4196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 69.105208][ T4196] Call Trace:
[ 69.108478][ T4196]
[ 69.111401][ T4196] dump_stack_lvl+0x5b/0x81
[ 69.115894][ T4196] __might_resched.cold+0x222/0x26b
[ 69.121120][ T4196] __lock_sock_fast+0x1c/0xc0
[ 69.125781][ T4196] udp_destroy_sock+0x35/0x1e0
[ 69.130540][ T4196] ? sk_common_release+0x5b/0x2e0
[ 69.135553][ T4196] sk_common_release+0x5b/0x2e0
[ 69.140392][ T4196] inet_release+0xf3/0x210
[ 69.144803][ T4196] sock_release+0x81/0x190
[ 69.149206][ T4196] l2tp_tunnel_register+0x9dd/0xf60
[ 69.154406][ T4196] ? l2tp_tunnel_del_work+0x690/0x690
[ 69.159757][ T4196] ? snprintf+0xd0/0xd0
[ 69.163989][ T4196] ? debug_object_free+0x360/0x360
[ 69.169169][ T4196] ? lockdep_init_map_type+0x21e/0x800
[ 69.174619][ T4196] ? lockdep_init_map_type+0x21e/0x800
[ 69.180062][ T4196] ? l2tp_tunnel_create+0x2a6/0x490
[ 69.185240][ T4196] l2tp_nl_cmd_tunnel_create+0x364/0x9a0
[ 69.190844][ T4196] ? l2tp_tunnel_notify.constprop.0+0x140/0x140
[ 69.197064][ T4196] ? __nla_parse+0x26/0x30
[ 69.201459][ T4196] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x159/0x230
[ 69.208801][ T4196] genl_family_rcv_msg_doit+0x1e4/0x2f0
[ 69.214313][ T4196] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x230/0x230
[ 69.221646][ T4196] ? mutex_lock_io_nested+0x11a0/0x11a0
[ 69.227167][ T4196] ? security_capable+0x50/0x90
[ 69.231987][ T4196] genl_rcv_msg+0x34c/0x630
[ 69.236465][ T4196] ? genl_start+0x630/0x630
[ 69.241213][ T4196] ? lock_acquire+0x1e3/0x630
[ 69.245868][ T4196] ? l2tp_tunnel_notify.constprop.0+0x140/0x140
[ 69.252102][ T4196] ? lock_release+0x810/0x810
[ 69.256752][ T4196] ? lockdep_hardirqs_on_prepare+0x17f/0x410
[ 69.262702][ T4196] ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 69.268494][ T4196] netlink_rcv_skb+0x11c/0x370
[ 69.273240][ T4196] ? genl_start+0x630/0x630
[ 69.277719][ T4196] ? netlink_ack+0xb80/0xb80
[ 69.282287][ T4196] ? netlink_deliver_tap+0x135/0xac0
[ 69.287550][ T4196] genl_rcv+0x23/0x30
[ 69.291530][ T4196] netlink_unicast+0x437/0x710
[ 69.296271][ T4196] ? netlink_attachskb+0x740/0x740
[ 69.301348][ T4196] ? __check_object_size+0x2b0/0x3c0
[ 69.306604][ T4196] netlink_sendmsg+0x786/0xc30
[ 69.311421][ T4196] ? netlink_unicast+0x710/0x710
[ 69.316413][ T4196] ? __kmem_cache_free+0xaf/0x3b0
[ 69.321412][ T4196] ? netlink_unicast+0x710/0x710
[ 69.326577][ T4196] sock_sendmsg+0xaf/0xe0
[ 69.330878][ T4196] sock_no_sendpage+0x100/0x150
[ 69.335698][ T4196] ? sk_page_frag_refill+0x2b0/0x2b0
[ 69.340952][ T4196] ? debug_check_no_obj_freed+0x210/0x420
[ 69.346644][ T4196] ? mark_held_locks+0x9f/0xe0
[ 69.351376][ T4196] kernel_sendpage.part.0+0x12f/0x520
[ 69.356718][ T4196] ? kernel_sendpage+0xd0/0xd0
[ 69.361457][ T4196] sock_sendpage+0xc1/0x190
[ 69.365951][ T4196] pipe_to_sendpage+0x249/0x410
[ 69.370954][ T4196] ? propagate_umount+0x1840/0x1840
[ 69.376130][ T4196] __splice_from_pipe+0x375/0x810
[ 69.381127][ T4196] ? propagate_umount+0x1840/0x1840
[ 69.386303][ T4196] ? generic_file_splice_read+0x178/0x440
[ 69.392084][ T4196] generic_splice_sendpage+0xbe/0x120
[ 69.397439][ T4196] ? add_to_pipe+0x370/0x370
[ 69.401996][ T4196] ? __do_sys_vmsplice+0x830/0x830
[ 69.407080][ T4196] direct_splice_actor+0xff/0x1d0
[ 69.412161][ T4196] splice_direct_to_actor+0x2bf/0x790
[ 69.417500][ T4196] ? do_splice_direct+0x260/0x260
[ 69.422490][ T4196] ? folio_flags.constprop.0+0xd0/0xd0
[ 69.427916][ T4196] ? apparmor_file_permission+0x13c/0x450
[ 69.433860][ T4196] do_splice_direct+0x14c/0x260
[ 69.438679][ T4196] ? splice_direct_to_actor+0x790/0x790
[ 69.444281][ T4196] ? apparmor_file_permission+0x13c/0x450
[ 69.449967][ T4196] ? security_file_permission+0x40/0x90
[ 69.455492][ T4196] do_sendfile+0x93d/0x1150
[ 69.459963][ T4196] ? do_futex+0x12c/0x230
[ 69.464258][ T4196] ? vfs_iocb_iter_write+0x3b0/0x3b0
[ 69.469516][ T4196] ? xfd_validate_state+0x23/0x120
[ 69.474683][ T4196] ? restore_fpregs_from_fpstate+0x94/0x170
[ 69.480545][ T4196] __x64_sys_sendfile64+0x18a/0x1d0
[ 69.485722][ T4196] ? __ia32_sys_sendfile+0x1d0/0x1d0
[ 69.490974][ T4196] ? lockdep_hardirqs_on_prepare+0x17f/0x410
[ 69.497019][ T4196] ? syscall_enter_from_user_mode+0x26/0xb0
[ 69.502889][ T4196] do_syscall_64+0x39/0xb0
[ 69.507273][ T4196] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 69.513132][ T4196] RIP: 0033:0x7f5b5a68b639
[ 69.517523][ T4196] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 69.537193][ T4196] RSP: 002b:00007f5b5b350168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 69.545659][ T4196] RAX: ffffffffffffffda RBX: 00007f5b5a7abf80 RCX: 00007f5b5a68b639
[ 69.553686][ T4196] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 69.561626][ T4196] RBP: 00007f5b5a6e6ae9 R08: 0000000000000000 R09: 0000000000000000
[ 69.569654][ T4196] R10: 0000000100000000 R11: 0000000000000246 R12: 0000000000000000
[ 69.577607][ T4196] R13: 00007ffc53d868ef R14: 00007f5b5b350300 R15: 0000000000022000
[ 69.585551][ T4196]
[ 69.775459][ T47] Bluetooth: hci0: command 0x041b tx timeout
[ 70.896493][ T155] cfg80211: failed to load regulatory.db
[ 71.855452][ T47] Bluetooth: hci0: command 0x040f tx timeout
[ 73.935475][ T47] Bluetooth: hci0: command 0x0419 tx timeout