Warning: Permanently added '10.128.1.26' (ED25519) to the list of known hosts. 2023/11/25 08:02:42 ignoring optional flag "sandboxArg"="0" 2023/11/25 08:02:42 parsed 1 programs 2023/11/25 08:02:42 executed programs: 0 [ 80.301142][ T5333] cgroup: Unknown subsys name 'net' [ 80.313287][ T5333] cgroup: Unknown subsys name 'rlimit' [ 81.441527][ T4996] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 81.450094][ T4996] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 81.458443][ T4996] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 81.466858][ T4996] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 81.475715][ T4996] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 81.483229][ T4996] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 81.589130][ T5340] chnl_net:caif_netlink_parms(): no params data found [ 81.644556][ T5340] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.651804][ T5340] bridge0: port 1(bridge_slave_0) entered disabled state [ 81.659252][ T5340] bridge_slave_0: entered allmulticast mode [ 81.666110][ T5340] bridge_slave_0: entered promiscuous mode [ 81.675301][ T5340] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.682609][ T5340] bridge0: port 2(bridge_slave_1) entered disabled state [ 81.690265][ T5340] bridge_slave_1: entered allmulticast mode [ 81.697838][ T5340] bridge_slave_1: entered promiscuous mode [ 81.723736][ T5340] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 81.736811][ T5340] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 81.764138][ T5340] team0: Port device team_slave_0 added [ 81.772652][ T5340] team0: Port device team_slave_1 added [ 81.795358][ T5340] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 81.802428][ T5340] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 81.830666][ T5340] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 81.843077][ T5340] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 81.850373][ T5340] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 81.876676][ T5340] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 81.908285][ T5340] hsr_slave_0: entered promiscuous mode [ 81.914752][ T5340] hsr_slave_1: entered promiscuous mode [ 82.001860][ T5340] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.009405][ T5340] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.017008][ T5340] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.024330][ T5340] bridge0: port 1(bridge_slave_0) entered forwarding state [ 82.075997][ T5340] 8021q: adding VLAN 0 to HW filter on device bond0 [ 82.096383][ T5002] bridge0: port 1(bridge_slave_0) entered disabled state [ 82.106249][ T5002] bridge0: port 2(bridge_slave_1) entered disabled state [ 82.123483][ T5340] 8021q: adding VLAN 0 to HW filter on device team0 [ 82.137324][ T5002] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.144797][ T5002] bridge0: port 1(bridge_slave_0) entered forwarding state [ 82.165129][ T9] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.172346][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.226956][ T5340] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 82.316315][ T27] cfg80211: failed to load regulatory.db [ 82.441396][ T5340] veth0_vlan: entered promiscuous mode [ 82.457588][ T5340] veth1_vlan: entered promiscuous mode [ 82.482042][ T5340] veth0_macvtap: entered promiscuous mode [ 82.497391][ T5340] veth1_macvtap: entered promiscuous mode [ 82.515160][ T5340] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.529994][ T5340] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 82.606621][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.616581][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.636787][ T27] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.646502][ T27] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.697943][ T5360] [ 82.700407][ T5360] ============================================ [ 82.706837][ T5360] WARNING: possible recursive locking detected [ 82.713396][ T5360] 6.7.0-rc2-syzkaller-00195-g0f5cc96c367f-dirty #0 Not tainted [ 82.721148][ T5360] -------------------------------------------- [ 82.727389][ T5360] syz-executor.0/5360 is trying to acquire lock: [ 82.733798][ T5360] ffff888077a4d0d8 (_xmit_ETHER#2){+.-.}-{2:2}, at: __dev_queue_xmit+0x161e/0x38d0 [ 82.743767][ T5360] [ 82.743767][ T5360] but task is already holding lock: [ 82.752092][ T5360] ffff88807adc2cd8 (_xmit_ETHER#2){+.-.}-{2:2}, at: sch_direct_xmit+0x1c1/0x5f0 [ 82.761265][ T5360] [ 82.761265][ T5360] other info that might help us debug this: [ 82.769715][ T5360] Possible unsafe locking scenario: [ 82.769715][ T5360] [ 82.779708][ T5360] CPU0 [ 82.783020][ T5360] ---- [ 82.786496][ T5360] lock(_xmit_ETHER#2); [ 82.790832][ T5360] lock(_xmit_ETHER#2); [ 82.795426][ T5360] [ 82.795426][ T5360] *** DEADLOCK *** [ 82.795426][ T5360] [ 82.804180][ T5360] May be due to missing lock nesting notation [ 82.804180][ T5360] [ 82.813150][ T5360] 6 locks held by syz-executor.0/5360: [ 82.819228][ T5360] #0: ffffffff8cb25ba0 (rcu_read_lock){....}-{1:2}, at: ip_finish_output2+0x467/0x1360 [ 82.829885][ T5360] #1: ffffffff8cb25c00 (rcu_read_lock_bh){....}-{1:2}, at: __dev_queue_xmit+0x23e/0x38d0 [ 82.840621][ T5360] #2: ffff88801a9d1258 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock){+...}-{2:2}, at: __dev_queue_xmit+0x11d2/0x38d0 [ 82.855522][ T5360] #3: ffff88807adc2cd8 (_xmit_ETHER#2){+.-.}-{2:2}, at: sch_direct_xmit+0x1c1/0x5f0 [ 82.865625][ T5360] #4: ffffffff8cb25ba0 (rcu_read_lock){....}-{1:2}, at: ip_finish_output2+0x467/0x1360 [ 82.877832][ T5360] #5: ffffffff8cb25c00 (rcu_read_lock_bh){....}-{1:2}, at: __dev_queue_xmit+0x23e/0x38d0 [ 82.889876][ T5360] [ 82.889876][ T5360] stack backtrace: [ 82.897082][ T5360] CPU: 0 PID: 5360 Comm: syz-executor.0 Not tainted 6.7.0-rc2-syzkaller-00195-g0f5cc96c367f-dirty #0 [ 82.909569][ T5360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023 [ 82.920602][ T5360] Call Trace: [ 82.924174][ T5360] [ 82.927216][ T5360] dump_stack_lvl+0x1e7/0x2d0 [ 82.932111][ T5360] ? nf_tcp_handle_invalid+0x650/0x650 [ 82.937680][ T5360] ? print_deadlock_bug+0x462/0x600 [ 82.942985][ T5360] ? _find_first_zero_bit+0xd4/0x100 [ 82.948394][ T5360] __lock_acquire+0x6a81/0x7f70 [ 82.953926][ T5360] ? __stack_depot_save+0x4dc/0x650 [ 82.960106][ T5360] ? kasan_save_stack+0x4f/0x60 [ 82.965096][ T5360] ? kasan_save_stack+0x3f/0x60 [ 82.972078][ T5360] ? __dev_queue_xmit+0x7ff/0x38d0 [ 82.977314][ T5360] ? verify_lock_unused+0x140/0x140 [ 82.982698][ T5360] ? erspan_xmit+0x9c6/0x13e0 [ 82.987771][ T5360] ? dev_hard_start_xmit+0x241/0x750 [ 82.993405][ T5360] ? sch_direct_xmit+0x2bb/0x5f0 [ 82.999163][ T5360] ? __dev_queue_xmit+0x187e/0x38d0 [ 83.004663][ T5360] ? ip_finish_output2+0xe6d/0x1360 [ 83.010011][ T5360] ? ip_send_skb+0x117/0x1b0 [ 83.014970][ T5360] ? udp_send_skb+0x931/0x1200 [ 83.020030][ T5360] ? csum_partial+0x234/0x2b0 [ 83.025068][ T5360] ? __skb_checksum+0x850/0x850 [ 83.032999][ T5360] ? __skb_checksum+0x787/0x850 [ 83.038620][ T5360] ? skb_checksum+0x88/0xe0 [ 83.044448][ T5360] ? validate_xmit_xfrm+0xc1/0x1190 [ 83.050816][ T5360] ? csum_partial_ext+0x30/0x30 [ 83.058138][ T5360] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0 [ 83.065932][ T5360] lock_acquire+0x1e3/0x520 [ 83.070645][ T5360] ? __dev_queue_xmit+0x161e/0x38d0 [ 83.076209][ T5360] ? skb_checksum_help+0x321/0x740 [ 83.082137][ T5360] ? read_lock_is_recursive+0x20/0x20 [ 83.088317][ T5360] ? validate_xmit_skb+0xa01/0x1120 [ 83.094190][ T5360] ? rcu_read_lock_bh_held+0x7e/0x120 [ 83.101263][ T5360] ? validate_xmit_skb_list+0x130/0x130 [ 83.107371][ T5360] _raw_spin_lock+0x2e/0x40 [ 83.113133][ T5360] ? __dev_queue_xmit+0x161e/0x38d0 [ 83.119365][ T5360] __dev_queue_xmit+0x161e/0x38d0 [ 83.125742][ T5360] ? print_irqtrace_events+0x220/0x220 [ 83.131682][ T5360] ? __dev_queue_xmit+0x23e/0x38d0 [ 83.137987][ T5360] ? read_seqbegin+0x208/0x2b0 [ 83.144063][ T5360] ? netdev_core_pick_tx+0x2f0/0x2f0 [ 83.152767][ T5360] ? neigh_resolve_output+0x2ec/0x6e0 [ 83.159070][ T5360] ? eth_header+0x11c/0x1f0 [ 83.163833][ T5360] ? __asan_memcpy+0x40/0x70 [ 83.168571][ T5360] ? eth_header+0x11c/0x1f0 [ 83.173703][ T5360] ? llc_sysctl_exit+0x70/0x70 [ 83.178580][ T5360] ? neigh_resolve_output+0x611/0x6e0 [ 83.184497][ T5360] ? ip_finish_output2+0x467/0x1360 [ 83.191011][ T5360] ? ip_finish_output2+0x467/0x1360 [ 83.196857][ T5360] ip_finish_output2+0xe6d/0x1360 [ 83.202334][ T5360] ? nf_hook+0x9e/0x450 [ 83.206872][ T5360] ? ip_finish_output2+0x467/0x1360 [ 83.212193][ T5360] ? dst_release+0x50/0x50 [ 83.216623][ T5360] ? ip_fragment+0x210/0x210 [ 83.221357][ T5360] ? __ip_local_out+0x3d2/0x4e0 [ 83.226314][ T5360] ? ip_skb_dst_mtu+0x60c/0x990 [ 83.231717][ T5360] ? __ip_finish_output+0x3e0/0x4b0 [ 83.237294][ T5360] iptunnel_xmit+0x540/0x9b0 [ 83.242281][ T5360] ip_tunnel_xmit+0x20e4/0x2940 [ 83.247346][ T5360] ? tnl_update_pmtu+0x10b0/0x10b0 [ 83.255277][ T5360] ? skb_push+0x97/0x100 [ 83.259654][ T5360] ? __gre_xmit+0x118/0x1b0 [ 83.264280][ T5360] erspan_xmit+0x9c6/0x13e0 [ 83.269060][ T5360] dev_hard_start_xmit+0x241/0x750 [ 83.275087][ T5360] sch_direct_xmit+0x2bb/0x5f0 [ 83.280266][ T5360] ? mrp_pdu_parse_vecattr_event+0x2c0/0x2c0 [ 83.287411][ T5360] __dev_queue_xmit+0x187e/0x38d0 [ 83.292957][ T5360] ? print_irqtrace_events+0x220/0x220 [ 83.298614][ T5360] ? __dev_queue_xmit+0x23e/0x38d0 [ 83.303926][ T5360] ? read_seqbegin+0x208/0x2b0 [ 83.309150][ T5360] ? netdev_core_pick_tx+0x2f0/0x2f0 [ 83.314624][ T5360] ? neigh_resolve_output+0x2ec/0x6e0 [ 83.320177][ T5360] ? eth_header+0x11c/0x1f0 [ 83.324918][ T5360] ? __asan_memcpy+0x40/0x70 [ 83.330483][ T5360] ? eth_header+0x11c/0x1f0 [ 83.335175][ T5360] ? llc_sysctl_exit+0x70/0x70 [ 83.340233][ T5360] ? neigh_resolve_output+0x611/0x6e0 [ 83.345790][ T5360] ? ip_finish_output2+0x467/0x1360 [ 83.351018][ T5360] ? ip_finish_output2+0x467/0x1360 [ 83.356293][ T5360] ip_finish_output2+0xe6d/0x1360 [ 83.361429][ T5360] ? nf_hook+0x9e/0x450 [ 83.365947][ T5360] ? ip_finish_output2+0x467/0x1360 [ 83.371181][ T5360] ? ip_fragment+0x210/0x210 [ 83.375798][ T5360] ? ip_fast_csum+0x1f0/0x2b0 [ 83.380621][ T5360] ? ip_skb_dst_mtu+0x60c/0x990 [ 83.385684][ T5360] ? __ip_finish_output+0x3e0/0x4b0 [ 83.391079][ T5360] ip_send_skb+0x117/0x1b0 [ 83.396737][ T5360] udp_send_skb+0x931/0x1200 [ 83.401961][ T5360] udp_sendmsg+0x1c17/0x2a70 [ 83.406819][ T5360] ? ip_skb_dst_mtu+0x990/0x990 [ 83.412107][ T5360] ? udp_cmsg_send+0x340/0x340 [ 83.417059][ T5360] ? __lock_acquire+0x1267/0x7f70 [ 83.422115][ T5360] udpv6_sendmsg+0x1342/0x3220 [ 83.426916][ T5360] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0 [ 83.433173][ T5360] ? udp_v6_early_demux+0xf30/0xf30 [ 83.438506][ T5360] ? smack_socket_sendmsg+0x172/0x530 [ 83.444157][ T5360] ? tomoyo_socket_bind_permission+0x340/0x340 [ 83.450412][ T5360] ? iovec_from_user+0x61/0x240 [ 83.455375][ T5360] ? inet_send_prepare+0x21/0x250 [ 83.460542][ T5360] ? inet6_compat_ioctl+0x560/0x560 [ 83.466756][ T5360] ____sys_sendmsg+0x592/0x890 [ 83.472341][ T5360] ? __sys_sendmsg_sock+0x30/0x30 [ 83.477420][ T5360] ? __fget_files+0x3fe/0x480 [ 83.482410][ T5360] __sys_sendmmsg+0x3b2/0x730 [ 83.487468][ T5360] ? __ia32_sys_sendmsg+0x90/0x90 [ 83.492780][ T5360] ? plist_check_list+0x20d/0x220 [ 83.497831][ T5360] ? __might_sleep+0xc0/0xc0 [ 83.502545][ T5360] ? __might_fault+0xa5/0x120 [ 83.507598][ T5360] ? syscall_enter_from_user_mode+0x32/0x230 [ 83.513632][ T5360] __x64_sys_sendmmsg+0xa0/0xb0 [ 83.513829][ T4996] Bluetooth: hci0: command 0x0409 tx timeout [ 83.518680][ T5360] do_syscall_64+0x44/0x110 [ 83.518717][ T5360] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 83.518735][ T5360] RIP: 0033:0x7f668a8798a9 [ 83.540057][ T5360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 83.560221][ T5360] RSP: 002b:00007f668ba420c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 83.569241][ T5360] RAX: ffffffffffffffda RBX: 00007f668a98bf60 RCX: 00007f668a8798a9 [ 83.577235][ T5360] RDX: 0000000000000001 RSI: 0000000020004d80 RDI: 0000000000000004 [ 83.585506][ T5360] RBP: 00007f668a8d5074 R08: 0000000000000000 R09: 0000000000000000 [ 83.593745][ T5360] R10: 0000000004000000 R11: 0000000000000246 R12: 0000000000000000 [ 83.601908][ T5360] R13: 000000000000000b R14: 00007f668a98bf60 R15: 00007ffed808a478 [ 83.610480][ T5360] [ 83.646898][ T5362] syz-executor.0 (5362) used greatest stack depth: 18448 bytes left 2023/11/25 08:02:47 executed programs: 85 [ 85.595597][ T4996] Bluetooth: hci0: command 0x041b tx timeout [ 87.674461][ T4996] Bluetooth: hci0: command 0x040f tx timeout [ 89.753923][ T4996] Bluetooth: hci0: command 0x0419 tx timeout 2023/11/25 08:02:52 executed programs: 426