Warning: Permanently added '10.128.1.30' (ED25519) to the list of known hosts. 2023/11/25 11:38:14 ignoring optional flag "sandboxArg"="0" 2023/11/25 11:38:15 parsed 1 programs [ 81.937198][ T9] cfg80211: failed to load regulatory.db [ 81.969941][ T5326] cgroup: Unknown subsys name 'net' [ 81.980608][ T5326] cgroup: Unknown subsys name 'rlimit' 2023/11/25 11:38:15 executed programs: 0 [ 83.143048][ T50] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 83.151674][ T50] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 83.159872][ T50] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 83.167989][ T50] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 83.177184][ T50] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 83.184623][ T50] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 83.286846][ T5332] chnl_net:caif_netlink_parms(): no params data found [ 83.338058][ T5332] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.346984][ T5332] bridge0: port 1(bridge_slave_0) entered disabled state [ 83.354372][ T5332] bridge_slave_0: entered allmulticast mode [ 83.361485][ T5332] bridge_slave_0: entered promiscuous mode [ 83.370224][ T5332] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.377583][ T5332] bridge0: port 2(bridge_slave_1) entered disabled state [ 83.385010][ T5332] bridge_slave_1: entered allmulticast mode [ 83.392034][ T5332] bridge_slave_1: entered promiscuous mode [ 83.417810][ T5332] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 83.429903][ T5332] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 83.458091][ T5332] team0: Port device team_slave_0 added [ 83.467237][ T5332] team0: Port device team_slave_1 added [ 83.489738][ T5332] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 83.496973][ T5332] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.523703][ T5332] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 83.535839][ T5332] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 83.543199][ T5332] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.570616][ T5332] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 83.603330][ T5332] hsr_slave_0: entered promiscuous mode [ 83.610433][ T5332] hsr_slave_1: entered promiscuous mode [ 83.693055][ T5332] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.700196][ T5332] bridge0: port 2(bridge_slave_1) entered forwarding state [ 83.707844][ T5332] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.715115][ T5332] bridge0: port 1(bridge_slave_0) entered forwarding state [ 83.764102][ T5332] 8021q: adding VLAN 0 to HW filter on device bond0 [ 83.778717][ T9] bridge0: port 1(bridge_slave_0) entered disabled state [ 83.788518][ T9] bridge0: port 2(bridge_slave_1) entered disabled state [ 83.803279][ T5332] 8021q: adding VLAN 0 to HW filter on device team0 [ 83.815848][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.823156][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 83.836812][ T27] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.844210][ T27] bridge0: port 2(bridge_slave_1) entered forwarding state [ 83.899369][ T5332] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 84.097251][ T5332] veth0_vlan: entered promiscuous mode [ 84.111704][ T5332] veth1_vlan: entered promiscuous mode [ 84.137313][ T5332] veth0_macvtap: entered promiscuous mode [ 84.147569][ T5332] veth1_macvtap: entered promiscuous mode [ 84.163711][ T5332] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 84.178188][ T5332] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.233796][ T132] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.244817][ T132] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.271270][ T2422] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.279173][ T2422] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.329671][ T5352] [ 84.332024][ T5352] ============================================ [ 84.338183][ T5352] WARNING: possible recursive locking detected [ 84.344633][ T5352] 6.7.0-rc2-syzkaller-00195-g0f5cc96c367f-dirty #0 Not tainted [ 84.352260][ T5352] -------------------------------------------- [ 84.358496][ T5352] syz-executor.0/5352 is trying to acquire lock: [ 84.364807][ T5352] ffff88806adeb8d8 (&queue->_xmit_lock){+.-.}-{2:2}, at: __dev_queue_xmit+0x1622/0x38e0 [ 84.374809][ T5352] [ 84.374809][ T5352] but task is already holding lock: [ 84.382360][ T5352] ffff8880762430d8 (&queue->_xmit_lock){+.-.}-{2:2}, at: sch_direct_xmit+0x1c4/0x5f0 [ 84.392723][ T5352] [ 84.392723][ T5352] other info that might help us debug this: [ 84.400770][ T5352] Possible unsafe locking scenario: [ 84.400770][ T5352] [ 84.408397][ T5352] CPU0 [ 84.411668][ T5352] ---- [ 84.415048][ T5352] lock(&queue->_xmit_lock); [ 84.419718][ T5352] lock(&queue->_xmit_lock); [ 84.424408][ T5352] [ 84.424408][ T5352] *** DEADLOCK *** [ 84.424408][ T5352] [ 84.432639][ T5352] May be due to missing lock nesting notation [ 84.432639][ T5352] [ 84.441140][ T5352] 6 locks held by syz-executor.0/5352: [ 84.446818][ T5352] #0: ffffffff8cb25ba0 (rcu_read_lock){....}-{1:2}, at: ip_finish_output2+0x467/0x1360 [ 84.457104][ T5352] #1: ffffffff8cb25c00 (rcu_read_lock_bh){....}-{1:2}, at: __dev_queue_xmit+0x23e/0x38e0 [ 84.467117][ T5352] #2: ffff88807f8e0258 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock){+...}-{2:2}, at: __dev_queue_xmit+0x11d0/0x38e0 [ 84.479652][ T5352] #3: ffff8880762430d8 (&queue->_xmit_lock){+.-.}-{2:2}, at: sch_direct_xmit+0x1c4/0x5f0 [ 84.489745][ T5352] #4: ffffffff8cb25ba0 (rcu_read_lock){....}-{1:2}, at: ip_finish_output2+0x467/0x1360 [ 84.499886][ T5352] #5: ffffffff8cb25c00 (rcu_read_lock_bh){....}-{1:2}, at: __dev_queue_xmit+0x23e/0x38e0 [ 84.509906][ T5352] [ 84.509906][ T5352] stack backtrace: [ 84.516062][ T5352] CPU: 1 PID: 5352 Comm: syz-executor.0 Not tainted 6.7.0-rc2-syzkaller-00195-g0f5cc96c367f-dirty #0 [ 84.526997][ T5352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023 [ 84.537175][ T5352] Call Trace: [ 84.540708][ T5352] [ 84.543891][ T5352] dump_stack_lvl+0x1e7/0x2d0 [ 84.548667][ T5352] ? nf_tcp_handle_invalid+0x650/0x650 [ 84.554126][ T5352] ? print_deadlock_bug+0x462/0x600 [ 84.559320][ T5352] ? _find_first_zero_bit+0xd4/0x100 [ 84.564614][ T5352] __lock_acquire+0x6a81/0x7f70 [ 84.569466][ T5352] ? __stack_depot_save+0x4dc/0x650 [ 84.574679][ T5352] ? kasan_save_stack+0x4f/0x60 [ 84.579624][ T5352] ? kasan_save_stack+0x3f/0x60 [ 84.584465][ T5352] ? __dev_queue_xmit+0x7fc/0x38e0 [ 84.589574][ T5352] ? verify_lock_unused+0x140/0x140 [ 84.594855][ T5352] ? erspan_xmit+0x9c6/0x13e0 [ 84.599611][ T5352] ? dev_hard_start_xmit+0x241/0x750 [ 84.604888][ T5352] ? sch_direct_xmit+0x2b6/0x5f0 [ 84.609934][ T5352] ? __dev_queue_xmit+0x187c/0x38e0 [ 84.615509][ T5352] ? ip_finish_output2+0xe6d/0x1360 [ 84.620791][ T5352] ? ip_send_skb+0x117/0x1b0 [ 84.625489][ T5352] ? udp_send_skb+0x931/0x1200 [ 84.630274][ T5352] ? csum_partial+0x234/0x2b0 [ 84.635044][ T5352] ? __skb_checksum+0x850/0x850 [ 84.639902][ T5352] ? __skb_checksum+0x787/0x850 [ 84.644857][ T5352] ? skb_checksum+0x88/0xe0 [ 84.649355][ T5352] ? validate_xmit_xfrm+0xc1/0x1190 [ 84.654740][ T5352] ? csum_partial_ext+0x30/0x30 [ 84.659605][ T5352] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0 [ 84.665848][ T5352] lock_acquire+0x1e3/0x520 [ 84.670349][ T5352] ? __dev_queue_xmit+0x1622/0x38e0 [ 84.675794][ T5352] ? skb_checksum_help+0x321/0x740 [ 84.681069][ T5352] ? read_lock_is_recursive+0x20/0x20 [ 84.686608][ T5352] ? validate_xmit_skb+0xa01/0x1120 [ 84.691845][ T5352] ? rcu_read_lock_bh_held+0x7e/0x120 [ 84.697331][ T5352] ? validate_xmit_skb_list+0x130/0x130 [ 84.703004][ T5352] _raw_spin_lock+0x2e/0x40 [ 84.707514][ T5352] ? __dev_queue_xmit+0x1622/0x38e0 [ 84.712810][ T5352] __dev_queue_xmit+0x1622/0x38e0 [ 84.717853][ T5352] ? print_irqtrace_events+0x220/0x220 [ 84.723938][ T5352] ? neigh_resolve_output+0x44e/0x6e0 [ 84.729493][ T5352] ? __dev_queue_xmit+0x23e/0x38e0 [ 84.734699][ T5352] ? read_seqbegin+0x208/0x2b0 [ 84.739649][ T5352] ? netdev_core_pick_tx+0x2f0/0x2f0 [ 84.745014][ T5352] ? neigh_resolve_output+0x2ec/0x6e0 [ 84.750378][ T5352] ? eth_header+0x11c/0x1f0 [ 84.754885][ T5352] ? __asan_memcpy+0x40/0x70 [ 84.759467][ T5352] ? eth_header+0x11c/0x1f0 [ 84.764042][ T5352] ? llc_sysctl_exit+0x70/0x70 [ 84.768881][ T5352] ? neigh_resolve_output+0x611/0x6e0 [ 84.774510][ T5352] ? ip_finish_output2+0x467/0x1360 [ 84.779707][ T5352] ? ip_finish_output2+0x467/0x1360 [ 84.784929][ T5352] ip_finish_output2+0xe6d/0x1360 [ 84.790072][ T5352] ? nf_hook+0x9e/0x450 [ 84.794779][ T5352] ? ip_finish_output2+0x467/0x1360 [ 84.800086][ T5352] ? dst_release+0x50/0x50 [ 84.804519][ T5352] ? ip_fragment+0x210/0x210 [ 84.809206][ T5352] ? __ip_local_out+0x3d2/0x4e0 [ 84.814064][ T5352] ? ip_skb_dst_mtu+0x60c/0x990 [ 84.818928][ T5352] ? __ip_finish_output+0x3e0/0x4b0 [ 84.824151][ T5352] iptunnel_xmit+0x540/0x9b0 [ 84.828765][ T5352] ip_tunnel_xmit+0x20e4/0x2940 [ 84.833632][ T5352] ? tnl_update_pmtu+0x10b0/0x10b0 [ 84.838873][ T5352] ? skb_push+0x97/0x100 [ 84.843306][ T5352] ? __gre_xmit+0x118/0x1b0 [ 84.848065][ T5352] erspan_xmit+0x9c6/0x13e0 [ 84.852653][ T5352] dev_hard_start_xmit+0x241/0x750 [ 84.858047][ T5352] sch_direct_xmit+0x2b6/0x5f0 [ 84.862832][ T5352] ? mrp_pdu_parse_vecattr_event+0x2c0/0x2c0 [ 84.868800][ T5352] __dev_queue_xmit+0x187c/0x38e0 [ 84.873843][ T5352] ? print_irqtrace_events+0x220/0x220 [ 84.879512][ T5352] ? neigh_resolve_output+0x44e/0x6e0 [ 84.885009][ T5352] ? __dev_queue_xmit+0x23e/0x38e0 [ 84.890201][ T5352] ? read_seqbegin+0x208/0x2b0 [ 84.894975][ T5352] ? netdev_core_pick_tx+0x2f0/0x2f0 [ 84.900249][ T5352] ? neigh_resolve_output+0x2ec/0x6e0 [ 84.905783][ T5352] ? eth_header+0x11c/0x1f0 [ 84.910445][ T5352] ? __asan_memcpy+0x40/0x70 [ 84.915213][ T5352] ? eth_header+0x11c/0x1f0 [ 84.919972][ T5352] ? llc_sysctl_exit+0x70/0x70 [ 84.924810][ T5352] ? neigh_resolve_output+0x611/0x6e0 [ 84.930188][ T5352] ? ip_finish_output2+0x467/0x1360 [ 84.935470][ T5352] ? ip_finish_output2+0x467/0x1360 [ 84.940835][ T5352] ip_finish_output2+0xe6d/0x1360 [ 84.946027][ T5352] ? nf_hook+0x9e/0x450 [ 84.950345][ T5352] ? ip_finish_output2+0x467/0x1360 [ 84.955710][ T5352] ? ip_fragment+0x210/0x210 [ 84.960327][ T5352] ? ip_fast_csum+0x1f0/0x2b0 [ 84.965104][ T5352] ? ip_skb_dst_mtu+0x60c/0x990 [ 84.970257][ T5352] ? __ip_finish_output+0x3e0/0x4b0 [ 84.975886][ T5352] ip_send_skb+0x117/0x1b0 [ 84.980296][ T5352] udp_send_skb+0x931/0x1200 [ 84.984974][ T5352] udp_sendmsg+0x1c17/0x2a70 [ 84.989992][ T5352] ? ip_skb_dst_mtu+0x990/0x990 [ 84.994838][ T5352] ? udp_cmsg_send+0x340/0x340 [ 84.999619][ T5352] ? __lock_acquire+0x1267/0x7f70 [ 85.004640][ T5352] udpv6_sendmsg+0x1342/0x3220 [ 85.009607][ T5352] ? udp_v6_early_demux+0xf30/0xf30 [ 85.014803][ T5352] ? smack_socket_sendmsg+0x172/0x530 [ 85.020257][ T5352] ? tomoyo_socket_bind_permission+0x340/0x340 [ 85.026396][ T5352] ? iovec_from_user+0x61/0x240 [ 85.031247][ T5352] ? inet_send_prepare+0x21/0x250 [ 85.036362][ T5352] ? inet6_compat_ioctl+0x560/0x560 [ 85.043030][ T5352] ____sys_sendmsg+0x592/0x890 [ 85.047783][ T5352] ? __sys_sendmsg_sock+0x30/0x30 [ 85.052799][ T5352] ? __fget_files+0x3fe/0x480 [ 85.057472][ T5352] __sys_sendmmsg+0x3b2/0x730 [ 85.062675][ T5352] ? __ia32_sys_sendmsg+0x90/0x90 [ 85.068224][ T5352] ? __might_sleep+0xc0/0xc0 [ 85.072900][ T5352] ? __might_fault+0xa5/0x120 [ 85.077585][ T5352] ? syscall_enter_from_user_mode+0x32/0x230 [ 85.083648][ T5352] __x64_sys_sendmmsg+0xa0/0xb0 [ 85.088491][ T5352] do_syscall_64+0x44/0x110 [ 85.093073][ T5352] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 85.099043][ T5352] RIP: 0033:0x7f25aa8798a9 [ 85.103534][ T5352] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 85.123561][ T5352] RSP: 002b:00007f25a9ffe0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 85.132052][ T5352] RAX: ffffffffffffffda RBX: 00007f25aa98bf60 RCX: 00007f25aa8798a9 [ 85.140388][ T5352] RDX: 0000000000000001 RSI: 0000000020004d80 RDI: 0000000000000004 [ 85.148647][ T5352] RBP: 00007f25aa8d5074 R08: 0000000000000000 R09: 0000000000000000 [ 85.156973][ T5352] R10: 0000000004000000 R11: 0000000000000246 R12: 0000000000000000 [ 85.165318][ T5352] R13: 000000000000000b R14: 00007f25aa98bf60 R15: 00007fff36da4898 [ 85.173508][ T5352] [ 85.225705][ T50] Bluetooth: hci0: command 0x0409 tx timeout 2023/11/25 11:38:20 executed programs: 148 [ 87.295365][ T50] Bluetooth: hci0: command 0x041b tx timeout [ 89.375598][ T50] Bluetooth: hci0: command 0x040f tx timeout [ 91.446756][ T50] Bluetooth: hci0: command 0x0419 tx timeout 2023/11/25 11:38:25 executed programs: 560