Warning: Permanently added '10.128.10.2' (ED25519) to the list of known hosts.
1970/01/01 00:00:58 ignoring optional flag "sandboxArg"="0"
1970/01/01 00:00:58 parsed 1 programs
1970/01/01 00:00:58 executed programs: 0
[   58.865422][ T5658] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   58.868460][ T5658] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   58.870796][ T5658] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   58.873360][ T5658] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   58.875611][ T5658] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   58.877617][ T5658] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   58.950819][ T6440] chnl_net:caif_netlink_parms(): no params data found
[   58.979462][ T6440] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.981512][ T6440] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.983516][ T6440] bridge_slave_0: entered allmulticast mode
[   58.985586][ T6440] bridge_slave_0: entered promiscuous mode
[   58.988930][ T6440] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.990853][ T6440] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.992805][ T6440] bridge_slave_1: entered allmulticast mode
[   58.994937][ T6440] bridge_slave_1: entered promiscuous mode
[   59.007826][ T6440] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   59.012352][ T6440] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   59.024736][ T6440] team0: Port device team_slave_0 added
[   59.027929][ T6440] team0: Port device team_slave_1 added
[   59.040167][ T6440] batman_adv: batadv0: Adding interface: batadv_slave_0
[   59.042022][ T6440] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.049086][ T6440] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   59.053158][ T6440] batman_adv: batadv0: Adding interface: batadv_slave_1
[   59.054953][ T6440] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.062258][ T6440] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   59.119648][ T6440] hsr_slave_0: entered promiscuous mode
[   59.158355][ T6440] hsr_slave_1: entered promiscuous mode
[   59.937937][ T6440] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   59.988594][ T6440] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   60.033478][ T6440] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   60.069981][ T6440] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   60.145467][ T6440] 8021q: adding VLAN 0 to HW filter on device bond0
[   60.156458][ T6440] 8021q: adding VLAN 0 to HW filter on device team0
[   60.169137][ T1652] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.171336][ T1652] bridge0: port 1(bridge_slave_0) entered forwarding state
[   60.174678][ T1652] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.176627][ T1652] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.192816][ T6440] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   60.269886][ T6440] 8021q: adding VLAN 0 to HW filter on device batadv0
[   60.294222][ T6440] veth0_vlan: entered promiscuous mode
[   60.301749][ T6440] veth1_vlan: entered promiscuous mode
[   60.318119][ T6440] veth0_macvtap: entered promiscuous mode
[   60.321634][ T6440] veth1_macvtap: entered promiscuous mode
[   60.336502][ T6440] batman_adv: batadv0: Interface activated: batadv_slave_0
[   60.344638][ T6440] batman_adv: batadv0: Interface activated: batadv_slave_1
[   60.350401][ T6440] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   60.352727][ T6440] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   60.355066][ T6440] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   60.357530][ T6440] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   60.401872][   T40] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   60.404019][   T40] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   60.421183][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   60.423301][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   60.950906][ T6090] Bluetooth: hci0: command 0x0409 tx timeout
[   61.101117][  T137] 
[   61.101800][  T137] ======================================================
[   61.103687][  T137] WARNING: possible circular locking dependency detected
[   61.105616][  T137] 6.6.0-rc7-syzkaller-00089-g8de1e7afcc1c #0 Not tainted
[   61.107492][  T137] ------------------------------------------------------
[   61.109341][  T137] kworker/u4:4/137 is trying to acquire lock:
[   61.110941][  T137] ffff0000c7d00df0 (&rs->rs_recv_lock){....}-{2:2}, at: rds_wake_sk_sleep+0x34/0xc8
[   61.113460][  T137] 
[   61.113460][  T137] but task is already holding lock:
[   61.115417][  T137] ffff0000da6d4100 (&rm->m_rs_lock){....}-{2:2}, at: rds_send_remove_from_sock+0x134/0x78c
[   61.118271][  T137] 
[   61.118271][  T137] which lock already depends on the new lock.
[   61.118271][  T137] 
[   61.121135][  T137] 
[   61.121135][  T137] the existing dependency chain (in reverse order) is:
[   61.123491][  T137] 
[   61.123491][  T137] -> #1 (&rm->m_rs_lock){....}-{2:2}:
[   61.125530][  T137]        _raw_spin_lock_irqsave+0x5c/0x7c
[   61.127023][  T137]        rds_message_put+0x130/0xb30
[   61.128405][  T137]        rds_loop_inc_free+0x20/0x30
[   61.129861][  T137]        rds_clear_recv_queue+0x288/0x384
[   61.131439][  T137]        rds_release+0xbc/0x2d0
[   61.132721][  T137]        sock_close+0xa4/0x1e8
[   61.133962][  T137]        __fput+0x324/0x7f8
[   61.135137][  T137]        __fput_sync+0x60/0x9c
[   61.136442][  T137]        __arm64_sys_close+0x150/0x1e0
[   61.137873][  T137]        invoke_syscall+0x98/0x2b8
[   61.139242][  T137]        el0_svc_common+0x130/0x23c
[   61.140647][  T137]        do_el0_svc+0x48/0x58
[   61.141910][  T137]        el0_svc+0x54/0x158
[   61.143269][  T137]        el0t_64_sync_handler+0x84/0xfc
[   61.144724][  T137]        el0t_64_sync+0x190/0x194
[   61.146036][  T137] 
[   61.146036][  T137] -> #0 (&rs->rs_recv_lock){....}-{2:2}:
[   61.148145][  T137]        __lock_acquire+0x3370/0x75e8
[   61.149579][  T137]        lock_acquire+0x23c/0x71c
[   61.150904][  T137]        _raw_read_lock_irqsave+0x6c/0x8c
[   61.152404][  T137]        rds_wake_sk_sleep+0x34/0xc8
[   61.153834][  T137]        rds_send_remove_from_sock+0x1a4/0x78c
[   61.155646][  T137]        rds_send_path_drop_acked+0x390/0x3f0
[   61.157294][  T137]        rds_tcp_write_space+0x1a8/0x594
[   61.158810][  T137]        tcp_check_space+0x150/0x884
[   61.160212][  T137]        tcp_rcv_established+0xe14/0x1fc4
[   61.161772][  T137]        tcp_v4_do_rcv+0x3b0/0xe00
[   61.163148][  T137]        __release_sock+0x1a8/0x408
[   61.164625][  T137]        release_sock+0x68/0x1b0
[   61.165998][  T137]        tcp_sock_set_cork+0x100/0x188
[   61.167629][  T137]        rds_tcp_xmit_path_complete+0x7c/0x8c
[   61.169269][  T137]        rds_send_xmit+0x1978/0x22a0
[   61.170683][  T137]        rds_send_worker+0x84/0x36c
[   61.172072][  T137]        process_one_work+0x694/0x1204
[   61.173558][  T137]        worker_thread+0x938/0xef4
[   61.174886][  T137]        kthread+0x288/0x310
[   61.176082][  T137]        ret_from_fork+0x10/0x20
[   61.177410][  T137] 
[   61.177410][  T137] other info that might help us debug this:
[   61.177410][  T137] 
[   61.180389][  T137]  Possible unsafe locking scenario:
[   61.180389][  T137] 
[   61.182386][  T137]        CPU0                    CPU1
[   61.183789][  T137]        ----                    ----
[   61.185187][  T137]   lock(&rm->m_rs_lock);
[   61.186306][  T137]                                lock(&rs->rs_recv_lock);
[   61.188172][  T137]                                lock(&rm->m_rs_lock);
[   61.189996][  T137]   rlock(&rs->rs_recv_lock);
[   61.191277][  T137] 
[   61.191277][  T137]  *** DEADLOCK ***
[   61.191277][  T137] 
[   61.193543][  T137] 5 locks held by kworker/u4:4/137:
[   61.194938][  T137]  #0: ffff0000d281c938 ((wq_completion)krdsd){+.+.}-{0:0}, at: process_one_work+0x560/0x1204
[   61.197715][  T137]  #1: ffff800096a27c20 ((work_completion)(&(&cp->cp_send_w)->work)){+.+.}-{0:0}, at: process_one_work+0x5a0/0x1204
[   61.201027][  T137]  #2: ffff0000d5b34ab0 (k-sk_lock-AF_INET){+.+.}-{0:0}, at: tcp_sock_set_cork+0x38/0x188
[   61.203781][  T137]  #3: ffff0000d5b34d38 (k-clock-AF_INET){++.-}-{2:2}, at: rds_tcp_write_space+0x38/0x594
[   61.206533][  T137]  #4: ffff0000da6d4100 (&rm->m_rs_lock){....}-{2:2}, at: rds_send_remove_from_sock+0x134/0x78c
[   61.209332][  T137] 
[   61.209332][  T137] stack backtrace:
[   61.210875][  T137] CPU: 1 PID: 137 Comm: kworker/u4:4 Not tainted 6.6.0-rc7-syzkaller-00089-g8de1e7afcc1c #0
[   61.213561][  T137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023
[   61.216300][  T137] Workqueue: krdsd rds_send_worker
[   61.217759][  T137] Call trace:
[   61.218621][  T137]  dump_backtrace+0x1b8/0x1e4
[   61.219914][  T137]  show_stack+0x2c/0x44
[   61.220977][  T137]  dump_stack_lvl+0xd0/0x124
[   61.222214][  T137]  dump_stack+0x1c/0x28
[   61.223336][  T137]  print_circular_bug+0x150/0x1b8
[   61.224669][  T137]  check_noncircular+0x310/0x404
[   61.225954][  T137]  __lock_acquire+0x3370/0x75e8
[   61.227291][  T137]  lock_acquire+0x23c/0x71c
[   61.228540][  T137]  _raw_read_lock_irqsave+0x6c/0x8c
[   61.229969][  T137]  rds_wake_sk_sleep+0x34/0xc8
[   61.231217][  T137]  rds_send_remove_from_sock+0x1a4/0x78c
[   61.232684][  T137]  rds_send_path_drop_acked+0x390/0x3f0
[   61.234172][  T137]  rds_tcp_write_space+0x1a8/0x594
[   61.235535][  T137]  tcp_check_space+0x150/0x884
[   61.236774][  T137]  tcp_rcv_established+0xe14/0x1fc4
[   61.238152][  T137]  tcp_v4_do_rcv+0x3b0/0xe00
[   61.239409][  T137]  __release_sock+0x1a8/0x408
[   61.240732][  T137]  release_sock+0x68/0x1b0
[   61.242034][  T137]  tcp_sock_set_cork+0x100/0x188
[   61.243324][  T137]  rds_tcp_xmit_path_complete+0x7c/0x8c
[   61.244818][  T137]  rds_send_xmit+0x1978/0x22a0
[   61.246024][  T137]  rds_send_worker+0x84/0x36c
[   61.247241][  T137]  process_one_work+0x694/0x1204
[   61.248572][  T137]  worker_thread+0x938/0xef4
[   61.249778][  T137]  kthread+0x288/0x310
[   61.250836][  T137]  ret_from_fork+0x10/0x20
[   63.028072][ T6090] Bluetooth: hci0: command 0x041b tx timeout
1970/01/01 00:01:03 executed programs: 114
[   64.549276][ T2209] ieee802154 phy0 wpan0: encryption failed: -22
[   64.551001][ T2209] ieee802154 phy1 wpan1: encryption failed: -22
[   65.108745][ T6090] Bluetooth: hci0: command 0x040f tx timeout
[   67.188623][ T6090] Bluetooth: hci0: command 0x0419 tx timeout
1970/01/01 00:01:08 executed programs: 522
[   69.668415][   T23] cfg80211: failed to load regulatory.db