[ 64.514708][ T2307] ieee802154 phy0 wpan0: encryption failed: -22 [ 64.516594][ T2307] ieee802154 phy1 wpan1: encryption failed: -22 Warning: Permanently added '10.128.1.91' (ED25519) to the list of known hosts. 1970/01/01 00:01:08 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:01:08 parsed 1 programs [ 68.489663][ T6596] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SS [ 68.952248][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 68.955952][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.965357][ T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 68.967309][ T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 69.232066][ T52] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 69.235727][ T52] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 69.238432][ T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 69.244780][ T52] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 69.247955][ T52] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 69.249888][ T52] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 69.635694][ T2214] cfg80211: failed to load regulatory.db [ 70.189349][ T6679] chnl_net:caif_netlink_parms(): no params data found [ 70.327285][ T6679] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.329112][ T6679] bridge0: port 1(bridge_slave_0) entered disabled state [ 70.331066][ T6679] bridge_slave_0: entered allmulticast mode [ 70.333097][ T6679] bridge_slave_0: entered promiscuous mode [ 70.336273][ T6679] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.337977][ T6679] bridge0: port 2(bridge_slave_1) entered disabled state [ 70.339866][ T6679] bridge_slave_1: entered allmulticast mode [ 70.341877][ T6679] bridge_slave_1: entered promiscuous mode [ 70.397179][ T6679] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 70.400693][ T6679] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 70.419626][ T6679] team0: Port device team_slave_0 added [ 70.422282][ T6679] team0: Port device team_slave_1 added [ 70.436782][ T6679] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 70.438440][ T6679] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 70.445944][ T6679] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 70.449551][ T6679] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 70.451300][ T6679] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 70.459743][ T6679] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 70.594970][ T6679] hsr_slave_0: entered promiscuous mode [ 70.633583][ T6679] hsr_slave_1: entered promiscuous mode [ 71.647028][ T6679] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 71.650510][ T6679] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 71.654872][ T6679] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 71.659133][ T6679] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 71.701593][ T6679] 8021q: adding VLAN 0 to HW filter on device bond0 [ 71.711037][ T6679] 8021q: adding VLAN 0 to HW filter on device team0 [ 71.716149][ T2214] bridge0: port 1(bridge_slave_0) entered blocking state [ 71.717974][ T2214] bridge0: port 1(bridge_slave_0) entered forwarding state [ 71.725283][ T2214] bridge0: port 2(bridge_slave_1) entered blocking state [ 71.727101][ T2214] bridge0: port 2(bridge_slave_1) entered forwarding state [ 71.745129][ T6679] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 71.816422][ T6679] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 71.837065][ T6679] veth0_vlan: entered promiscuous mode [ 71.842121][ T6679] veth1_vlan: entered promiscuous mode [ 71.857560][ T6679] veth0_macvtap: entered promiscuous mode [ 71.860697][ T6679] veth1_macvtap: entered promiscuous mode [ 71.869108][ T6679] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 71.874404][ T6679] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 71.877573][ T6679] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.879657][ T6679] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.881963][ T6679] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.886560][ T6679] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.225624][ T588] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 1970/01/01 00:01:12 executed programs: 0 [ 72.324659][ T588] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 72.375632][ T52] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 72.382623][ T52] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 72.388474][ T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 72.391243][ T52] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 72.394676][ T52] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 72.397334][ T52] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 72.434645][ T588] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 72.526331][ T588] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 72.544287][ T6850] chnl_net:caif_netlink_parms(): no params data found [ 72.571187][ T6850] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.573141][ T6850] bridge0: port 1(bridge_slave_0) entered disabled state [ 72.576179][ T6850] bridge_slave_0: entered allmulticast mode [ 72.578192][ T6850] bridge_slave_0: entered promiscuous mode [ 72.581379][ T6850] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.583165][ T6850] bridge0: port 2(bridge_slave_1) entered disabled state [ 72.587214][ T6850] bridge_slave_1: entered allmulticast mode [ 72.589195][ T6850] bridge_slave_1: entered promiscuous mode [ 72.602124][ T6850] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 72.606023][ T6850] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 72.618009][ T6850] team0: Port device team_slave_0 added [ 72.620680][ T6850] team0: Port device team_slave_1 added [ 72.631543][ T6850] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 72.633535][ T6850] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 72.640132][ T6850] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 72.644275][ T6850] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 72.645989][ T6850] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 72.652276][ T6850] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 72.715103][ T6850] hsr_slave_0: entered promiscuous mode [ 72.765304][ T6850] hsr_slave_1: entered promiscuous mode [ 72.803423][ T6850] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 72.805271][ T6850] Cannot create hsr debugfs directory [ 74.423352][ T52] Bluetooth: hci0: command tx timeout [ 76.503371][ T52] Bluetooth: hci0: command tx timeout [ 77.084211][ T588] bridge_slave_1: left allmulticast mode [ 77.085793][ T588] bridge_slave_1: left promiscuous mode [ 77.087325][ T588] bridge0: port 2(bridge_slave_1) entered disabled state [ 77.092995][ T588] bridge_slave_0: left allmulticast mode [ 77.095612][ T588] bridge_slave_0: left promiscuous mode [ 77.097485][ T588] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.583377][ T52] Bluetooth: hci0: command tx timeout [ 78.795303][ T588] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 78.835495][ T588] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 78.884767][ T588] bond0 (unregistering): Released all slaves [ 79.128222][ T588] hsr_slave_0: left promiscuous mode [ 79.177478][ T588] hsr_slave_1: left promiscuous mode [ 79.243444][ T588] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 79.245434][ T588] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 79.247961][ T588] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 79.249942][ T588] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 79.258159][ T588] veth1_macvtap: left promiscuous mode [ 79.259700][ T588] veth0_macvtap: left promiscuous mode [ 79.261184][ T588] veth1_vlan: left promiscuous mode [ 79.262641][ T588] veth0_vlan: left promiscuous mode [ 80.663439][ T52] Bluetooth: hci0: command tx timeout [ 81.095136][ T588] team0 (unregistering): Port device team_slave_1 removed [ 81.315154][ T588] team0 (unregistering): Port device team_slave_0 removed [ 83.702219][ T6850] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 83.705830][ T6850] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 83.709071][ T6850] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 83.713475][ T6850] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 83.745574][ T6850] 8021q: adding VLAN 0 to HW filter on device bond0 [ 83.753095][ T6850] 8021q: adding VLAN 0 to HW filter on device team0 [ 83.757823][ T27] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.760159][ T27] bridge0: port 1(bridge_slave_0) entered forwarding state [ 83.775300][ T27] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.777229][ T27] bridge0: port 2(bridge_slave_1) entered forwarding state [ 83.848072][ T6850] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.869444][ T6850] veth0_vlan: entered promiscuous mode [ 83.875145][ T6850] veth1_vlan: entered promiscuous mode [ 83.886273][ T6850] veth0_macvtap: entered promiscuous mode [ 83.889517][ T6850] veth1_macvtap: entered promiscuous mode [ 83.896222][ T6850] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 83.901288][ T6850] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 83.905591][ T6850] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.907850][ T6850] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.910230][ T6850] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.912451][ T6850] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.949222][ T4200] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.951297][ T4200] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.966715][ T4200] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.968829][ T4200] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.030641][ T7050] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. 1970/01/01 00:01:24 executed programs: 1 [ 84.045380][ T7052] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 84.061715][ T7054] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 84.077590][ T7056] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 84.091494][ T7058] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 84.108394][ T7060] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 84.126576][ T7062] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 84.140783][ T7064] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 84.159324][ T7066] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 84.185488][ T7068] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 89.043822][ T7628] __nla_validate_parse: 279 callbacks suppressed [ 89.043837][ T7628] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 89.061490][ T7630] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 89.077844][ T7632] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 89.092749][ T7634] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 89.107995][ T7636] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 89.124057][ T7638] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 89.139252][ T7640] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 89.155771][ T7642] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 89.170463][ T7644] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 89.185737][ T7646] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. 1970/01/01 00:01:29 executed programs: 290 [ 94.065304][ T8448] __nla_validate_parse: 400 callbacks suppressed [ 94.065320][ T8448] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 94.081445][ T8450] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 94.096603][ T8452] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 94.112826][ T8454] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 94.135343][ T8456] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 94.150766][ T8458] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 94.166081][ T8460] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 94.181387][ T8462] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 94.202299][ T8464] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 94.218055][ T8466] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. 1970/01/01 00:01:34 executed programs: 699 1970/01/01 00:01:39 executed programs: 1100 [ 99.074363][ T9250] __nla_validate_parse: 391 callbacks suppressed [ 99.074380][ T9250] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 99.090495][ T9252] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 99.105903][ T9254] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 99.121868][ T9256] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 99.136874][ T9258] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 99.151337][ T9260] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 99.166503][ T9262] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 99.181464][ T9264] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 99.196273][ T9266] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 99.210901][ T9268] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 104.090082][T10074] __nla_validate_parse: 402 callbacks suppressed [ 104.090098][T10074] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 104.107218][T10076] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 104.122457][T10078] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 104.137546][T10080] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 104.152136][T10082] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 104.167831][T10084] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 104.182112][T10086] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 104.197973][T10088] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 104.212999][T10090] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. [ 104.228072][T10092] netlink: 4 bytes leftover after parsing attributes in process `syz-executor'. 1970/01/01 00:01:44 executed programs: 1511 [ 128.233182][ C1] watchdog: BUG: soft lockup - CPU#1 stuck for 22s! [kworker/u8:7:4200] [ 128.235760][ C1] Modules linked in: [ 128.236698][ C1] irq event stamp: 2225211 [ 128.237800][ C1] hardirqs last enabled at (2225210): [] exit_to_kernel_mode+0xdc/0x10c [ 128.240432][ C1] hardirqs last disabled at (2225211): [] el1_interrupt+0x24/0x68 [ 128.242783][ C1] softirqs last enabled at (2220868): [] neigh_resolve_output+0x268/0x658 [ 128.245399][ C1] softirqs last disabled at (2220872): [] local_bh_disable+0x10/0x34 [ 128.247930][ C1] CPU: 1 PID: 4200 Comm: kworker/u8:7 Tainted: G W 6.10.0-rc3-syzkaller-00018-gac2193b4b460 #0 [ 128.250917][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 128.253582][ C1] Workqueue: ipv6_addrconf addrconf_dad_work [ 128.255083][ C1] pstate: 20400005 (nzCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 128.257166][ C1] pc : __list_del_entry_valid_or_report+0x88/0x158 [ 128.258848][ C1] lr : ieee80211_tx_dequeue+0x674/0x3b4c [ 128.260355][ C1] sp : ffff80009edf6650 [ 128.261421][ C1] x29: ffff80009edf6650 x28: ffff80009edf68e0 x27: dfff800000000000 [ 128.263486][ C1] x26: ffff0000e28aad88 x25: ffff0000e28aac18 x24: ffff0000e28aac28 [ 128.265517][ C1] x23: ffff0000e29ea868 x22: dfff800000000000 x21: ffff0000e28aac28 [ 128.267628][ C1] x20: ffff0000e28aac28 x19: ffff0000e29ea868 x18: 1fffe000367ae9de [ 128.269753][ C1] x17: 0000000000000000 x16: ffff800080559da4 x15: ffff700013dbecb8 [ 128.271777][ C1] x14: 1ffff00013dbecb8 x13: 0000000000000004 x12: ffffffffffffffff [ 128.273803][ C1] x11: ffff700013dbecb8 x10: ffff0000dbe50f70 x9 : 0000000000000000 [ 128.275828][ C1] x8 : 0000000000000000 x7 : ffff80008a930ac0 x6 : 0000000000000000 [ 128.277885][ C1] x5 : 0000000000000000 x4 : 0000000000000001 x3 : ffff800080350e64 [ 128.279903][ C1] x2 : dead000000000122 x1 : 00000000862445ac x0 : ffff0000e29ea870 [ 128.281996][ C1] Call trace: [ 128.282845][ C1] __list_del_entry_valid_or_report+0x88/0x158 [ 128.284368][ C1] ieee80211_tx_dequeue+0x674/0x3b4c [ 128.285719][ C1] ieee80211_handle_wake_tx_queue+0x118/0x274 [ 128.287286][ C1] ieee80211_queue_skb+0x18e0/0x2230 [ 128.288646][ C1] ieee80211_tx+0x260/0x400 [ 128.289773][ C1] ieee80211_xmit+0x278/0x354 [ 128.290938][ C1] __ieee80211_subif_start_xmit+0xab8/0x122c [ 128.292449][ C1] ieee80211_subif_start_xmit+0xe0/0x438 [ 128.293887][ C1] dev_hard_start_xmit+0x260/0x904 [ 128.295227][ C1] __dev_queue_xmit+0x1670/0x33f4 [ 128.296490][ C1] neigh_resolve_output+0x558/0x658 [ 128.297811][ C1] ip6_finish_output2+0x104c/0x1ee8 [ 128.299156][ C1] ip6_finish_output+0x428/0x7a0 [ 128.300406][ C1] ip6_output+0x274/0x594 [ 128.301503][ C1] ndisc_send_skb+0xaa8/0x14f0 [ 128.302700][ C1] ndisc_send_ns+0xd4/0x164 [ 128.303872][ C1] addrconf_dad_work+0x988/0x1350 [ 128.305158][ C1] process_one_work+0x79c/0x15b8 [ 128.306411][ C1] worker_thread+0x938/0xef4 [ 128.307556][ C1] kthread+0x288/0x310 [ 128.308585][ C1] ret_from_fork+0x10/0x20 [ 128.309709][ C1] Sending NMI from CPU 1 to CPUs 0: [ 128.311076][ C0] NMI backtrace for cpu 0 [ 128.312302][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.10.0-rc3-syzkaller-00018-gac2193b4b460 #0 [ 128.315255][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 128.317899][ C0] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 128.319981][ C0] pc : arch_local_irq_enable+0x8/0xc [ 128.321410][ C0] lr : default_idle_call+0xf8/0x128 [ 128.322770][ C0] sp : ffff80008f117cf0 [ 128.323878][ C0] x29: ffff80008f117cf0 x28: dfff800000000000 x27: 1ffff00011e22fac [ 128.326013][ C0] x26: ffff80008f19d000 x25: 0000000000000000 x24: 0000000000000001 [ 128.328163][ C0] x23: 1ffff00011e33aad x22: ffff80008f19d568 x21: 0000000000000000 [ 128.330256][ C0] x20: ffff80008f1c4e40 x19: ffff8000802e6844 x18: 1fffe000367aa1de [ 128.332365][ C0] x17: ffff80008f19d000 x16: ffff8000802e6108 x15: 0000000000000001 [ 128.334459][ C0] x14: 1fffe000367abf41 x13: 0000000000000000 x12: 0000000000000003 [ 128.336616][ C0] x11: 0000000000000001 x10: 0000000000000003 x9 : 0000000000000000 [ 128.338683][ C0] x8 : 000000000008f609 x7 : ffff80008047e2d4 x6 : 0000000000000000 [ 128.340779][ C0] x5 : 0000000000000001 x4 : 0000000000000001 x3 : ffff80008b06b4bc [ 128.342935][ C0] x2 : 0000000000000000 x1 : ffff80008b1e00a0 x0 : ffff800124c6a000 [ 128.345103][ C0] Call trace: [ 128.345933][ C0] arch_local_irq_enable+0x8/0xc [ 128.347252][ C0] do_idle+0x1f0/0x4e4 [ 128.348313][ C0] cpu_startup_entry+0x5c/0x74 [ 128.349573][ C0] rest_init+0x2dc/0x2f4 [ 128.350674][ C0] start_kernel+0x3f4/0x4f4 [ 128.351899][ C0] __primary_switched+0x84/0x8c [ 128.354051][ C1] Kernel panic - not syncing: softlockup: hung tasks [ 128.355795][ C1] CPU: 1 PID: 4200 Comm: kworker/u8:7 Tainted: G W L 6.10.0-rc3-syzkaller-00018-gac2193b4b460 #0 [ 128.358848][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 128.361448][ C1] Workqueue: ipv6_addrconf addrconf_dad_work [ 128.362984][ C1] Call trace: [ 128.363801][ C1] dump_backtrace+0x1b8/0x1e4 [ 128.364978][ C1] show_stack+0x2c/0x3c [ 128.366038][ C1] dump_stack_lvl+0xe4/0x150 [ 128.367287][ C1] dump_stack+0x1c/0x28 [ 128.368272][ C1] panic+0x300/0x884 [ 128.369195][ C1] softlockup_fn+0x0/0x120 [ 128.370275][ C1] __hrtimer_run_queues+0x468/0xce0 [ 128.371519][ C1] hrtimer_interrupt+0x2c0/0xb64 [ 128.372780][ C1] arch_timer_handler_virt+0x74/0x88 [ 128.374132][ C1] handle_percpu_devid_irq+0x174/0x308 [ 128.375605][ C1] generic_handle_domain_irq+0x7c/0xc4 [ 128.377042][ C1] gic_handle_irq+0x6c/0x190 [ 128.378265][ C1] call_on_irq_stack+0x24/0x4c [ 128.379451][ C1] do_interrupt_handler+0xd4/0x138 [ 128.380754][ C1] el1_interrupt+0x34/0x68 [ 128.381932][ C1] el1h_64_irq_handler+0x18/0x24 [ 128.383215][ C1] el1h_64_irq+0x64/0x68 [ 128.384319][ C1] __list_del_entry_valid_or_report+0x88/0x158 [ 128.385968][ C1] ieee80211_tx_dequeue+0x674/0x3b4c [ 128.387309][ C1] ieee80211_handle_wake_tx_queue+0x118/0x274 [ 128.388876][ C1] ieee80211_queue_skb+0x18e0/0x2230 [ 128.390265][ C1] ieee80211_tx+0x260/0x400 [ 128.391494][ C1] ieee80211_xmit+0x278/0x354 [ 128.392695][ C1] __ieee80211_subif_start_xmit+0xab8/0x122c [ 128.394245][ C1] ieee80211_subif_start_xmit+0xe0/0x438 [ 128.395702][ C1] dev_hard_start_xmit+0x260/0x904 [ 128.397025][ C1] __dev_queue_xmit+0x1670/0x33f4 [ 128.398340][ C1] neigh_resolve_output+0x558/0x658 [ 128.399678][ C1] ip6_finish_output2+0x104c/0x1ee8 [ 128.400996][ C1] ip6_finish_output+0x428/0x7a0 [ 128.402280][ C1] ip6_output+0x274/0x594 [ 128.403399][ C1] ndisc_send_skb+0xaa8/0x14f0 [ 128.404579][ C1] ndisc_send_ns+0xd4/0x164 [ 128.405742][ C1] addrconf_dad_work+0x988/0x1350 [ 128.407034][ C1] process_one_work+0x79c/0x15b8 [ 128.408331][ C1] worker_thread+0x938/0xef4 [ 128.409490][ C1] kthread+0x288/0x310 [ 128.410545][ C1] ret_from_fork+0x10/0x20 [ 128.411706][ C1] SMP: stopping secondary CPUs [ 128.413082][ C1] Kernel Offset: disabled [ 128.414157][ C1] CPU features: 0x00,00000103,80100128,42017203 [ 128.415726][ C1] Memory Limit: none [ 128.432127][ C1] [ 128.432744][ C1] ================================ [ 128.434064][ C1] WARNING: inconsistent lock state [ 128.435348][ C1] 6.10.0-rc3-syzkaller-00018-gac2193b4b460 #0 Tainted: G W L [ 128.437639][ C1] -------------------------------- [ 128.438936][ C1] inconsistent {HARDIRQ-ON-W} -> {IN-HARDIRQ-W} usage. [ 128.440672][ C1] kworker/u8:7/4200 [HC1[1]:SC0[4]:HE0:SE0] takes: [ 128.442385][ C1] ffff80008f1da398 (efi_rt_lock){?.+.}-{2:2}, at: arch_efi_call_virt_setup+0x24/0x30 [ 128.444820][ C1] {HARDIRQ-ON-W} state was registered at: [ 128.446276][ C1] lock_acquire+0x240/0x728 [ 128.447403][ C1] _raw_spin_lock+0x48/0x60 [ 128.448591][ C1] arch_efi_call_virt_setup+0x24/0x30 [ 128.450080][ C1] efi_call_rts+0x30/0x350 [ 128.451301][ C1] process_one_work+0x79c/0x15b8 [ 128.452629][ C1] worker_thread+0x938/0xef4 [ 128.453957][ C1] kthread+0x288/0x310 [ 128.455101][ C1] ret_from_fork+0x10/0x20 [ 128.456293][ C1] irq event stamp: 2225211 [ 128.457451][ C1] hardirqs last enabled at (2225210): [] exit_to_kernel_mode+0xdc/0x10c [ 128.460026][ C1] hardirqs last disabled at (2225211): [] el1_interrupt+0x24/0x68 [ 128.462412][ C1] softirqs last enabled at (2220868): [] neigh_resolve_output+0x268/0x658 [ 128.465023][ C1] softirqs last disabled at (2220872): [] local_bh_disable+0x10/0x34 [ 128.467549][ C1] [ 128.467549][ C1] other info that might help us debug this: [ 128.469595][ C1] Possible unsafe locking scenario: [ 128.469595][ C1] [ 128.471672][ C1] CPU0 [ 128.472507][ C1] ---- [ 128.473348][ C1] lock(efi_rt_lock); [ 128.474351][ C1] [ 128.475234][ C1] lock(efi_rt_lock); [ 128.476325][ C1] [ 128.476325][ C1] *** DEADLOCK *** [ 128.476325][ C1] [ 128.478511][ C1] 12 locks held by kworker/u8:7/4200: [ 128.479973][ C1] #0: ffff0000d21ac948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x624/0x15b8 [ 128.482812][ C1] #1: ffff80009edf7c20 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_one_work+0x6a0/0x15b8 [ 128.486046][ C1] #2: ffff800091faf5a8 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock+0x20/0x2c [ 128.488296][ C1] #3: ffff80008f3776a0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x10/0x4c [ 128.490746][ C1] #4: ffff80008f3776a0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x10/0x4c [ 128.493258][ C1] #5: ffff80008f377700 (rcu_read_lock_bh){....}-{1:2}, at: rcu_lock_acquire+0x18/0x54 [ 128.495745][ C1] #6: ffff0000c69f28d8 (_xmit_ETHER#2){+.-.}-{2:2}, at: __dev_queue_xmit+0x1224/0x33f4 [ 128.498332][ C1] #7: ffff80008f3776a0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x10/0x4c [ 128.500736][ C1] #8: ffff0000dbe51108 (&local->handle_wake_tx_queue_lock){+.-.}-{2:2}, at: ieee80211_handle_wake_tx_queue+0x8c/0x274 [ 128.503959][ C1] #9: ffff0000dbe50f38 (&fq->lock){+.-.}-{2:2}, at: ieee80211_tx_dequeue+0x2f4/0x3b4c [ 128.506482][ C1] #10: ffff80008f3776a0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x10/0x74 [ 128.508948][ C1] #11: ffff80009183d568 (&psinfo->buf_lock){....}-{2:2}, at: pstore_dump+0x180/0xad0 [ 128.511447][ C1] [ 128.511447][ C1] stack backtrace: [ 128.512949][ C1] CPU: 1 PID: 4200 Comm: kworker/u8:7 Tainted: G W L 6.10.0-rc3-syzkaller-00018-gac2193b4b460 #0 [ 128.516027][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 128.518682][ C1] Workqueue: ipv6_addrconf addrconf_dad_work [ 128.520212][ C1] Call trace: [ 128.521044][ C1] dump_backtrace+0x1b8/0x1e4 [ 128.522243][ C1] show_stack+0x2c/0x3c [ 128.523335][ C1] dump_stack_lvl+0xe4/0x150 [ 128.524506][ C1] dump_stack+0x1c/0x28 [ 128.525587][ C1] print_usage_bug+0x698/0x9ac [ 128.526892][ C1] mark_lock_irq+0x980/0xd2c [ 128.528115][ C1] mark_lock+0x258/0x360 [ 128.529258][ C1] __lock_acquire+0xbc0/0x763c [ 128.530517][ C1] lock_acquire+0x240/0x728 [ 128.531682][ C1] _raw_spin_lock+0x48/0x60 [ 128.532851][ C1] arch_efi_call_virt_setup+0x24/0x30 [ 128.534219][ C1] virt_efi_set_variable_nb+0x6c/0x15c [ 128.535592][ C1] efivar_set_variable_locked+0x1e4/0x20c [ 128.537040][ C1] efi_pstore_write+0x424/0x63c [ 128.538302][ C1] pstore_dump+0x764/0xad0 [ 128.539431][ C1] kmsg_dump+0x17c/0x274 [ 128.540524][ C1] panic+0x34c/0x884 [ 128.541556][ C1] softlockup_fn+0x0/0x120 [ 128.542776][ C1] __hrtimer_run_queues+0x468/0xce0 [ 128.544138][ C1] hrtimer_interrupt+0x2c0/0xb64 [ 128.545395][ C1] arch_timer_handler_virt+0x74/0x88 [ 128.546780][ C1] handle_percpu_devid_irq+0x174/0x308 [ 128.548221][ C1] generic_handle_domain_irq+0x7c/0xc4 [ 128.549662][ C1] gic_handle_irq+0x6c/0x190 [ 128.550845][ C1] call_on_irq_stack+0x24/0x4c [ 128.552024][ C1] do_interrupt_handler+0xd4/0x138 [ 128.553327][ C1] el1_interrupt+0x34/0x68 [ 128.554478][ C1] el1h_64_irq_handler+0x18/0x24 [ 128.555816][ C1] el1h_64_irq+0x64/0x68 [ 128.556856][ C1] __list_del_entry_valid_or_report+0x88/0x158 [ 128.558450][ C1] ieee80211_tx_dequeue+0x674/0x3b4c [ 128.559879][ C1] ieee80211_handle_wake_tx_queue+0x118/0x274 [ 128.561421][ C1] ieee80211_queue_skb+0x18e0/0x2230 [ 128.562793][ C1] ieee80211_tx+0x260/0x400 [ 128.563981][ C1] ieee80211_xmit+0x278/0x354 [ 128.565210][ C1] __ieee80211_subif_start_xmit+0xab8/0x122c [ 128.566789][ C1] ieee80211_subif_start_xmit+0xe0/0x438 [ 128.568264][ C1] dev_hard_start_xmit+0x260/0x904 [ 128.569543][ C1] __dev_queue_xmit+0x1670/0x33f4 [ 128.570988][ C1] neigh_resolve_output+0x558/0x658 [ 128.572398][ C1] ip6_finish_output2+0x104c/0x1ee8 [ 128.573754][ C1] ip6_finish_output+0x428/0x7a0 [ 128.575030][ C1] ip6_output+0x274/0x594 [ 128.576238][ C1] ndisc_send_skb+0xaa8/0x14f0 [ 128.577531][ C1] ndisc_send_ns+0xd4/0x164 [ 128.578679][ C1] addrconf_dad_work+0x988/0x1350 [ 128.579791][ C1] process_one_work+0x79c/0x15b8 [ 128.580784][ C1] worker_thread+0x938/0xef4 [ 128.581786][ C1] kthread+0x288/0x310 [ 128.582884][ C1] ret_from_fork+0x10/0x20 [ 128.998832][ C1] Rebooting in 86400 seconds..