[   81.958185][   T25] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.1.190' (ED25519) to the list of known hosts.
2025/01/31 04:45:10 ignoring optional flag "sandboxArg"="0"
2025/01/31 04:45:10 ignoring optional flag "type"="gce"
2025/01/31 04:45:10 parsed 1 programs
2025/01/31 04:45:12 executed programs: 0
[   85.800198][ T6137] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   85.847231][ T5146] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   85.856464][ T5146] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   85.864766][ T5146] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   85.874993][ T5146] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   85.882972][ T5146] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   85.891810][ T5146] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   85.987832][ T6144] chnl_net:caif_netlink_parms(): no params data found
[   86.029346][ T6144] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.036601][ T6144] bridge0: port 1(bridge_slave_0) entered disabled state
[   86.043882][ T6144] bridge_slave_0: entered allmulticast mode
[   86.050503][ T6144] bridge_slave_0: entered promiscuous mode
[   86.057935][ T6144] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.065359][ T6144] bridge0: port 2(bridge_slave_1) entered disabled state
[   86.072536][ T6144] bridge_slave_1: entered allmulticast mode
[   86.079501][ T6144] bridge_slave_1: entered promiscuous mode
[   86.099806][ T6144] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   86.111454][ T6144] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   86.134136][ T6144] team0: Port device team_slave_0 added
[   86.141736][ T6144] team0: Port device team_slave_1 added
[   86.159929][ T6144] batman_adv: batadv0: Adding interface: batadv_slave_0
[   86.166999][ T6144] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.194031][ T6144] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   86.206404][ T6144] batman_adv: batadv0: Adding interface: batadv_slave_1
[   86.213450][ T6144] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.239789][ T6144] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   86.270584][ T6144] hsr_slave_0: entered promiscuous mode
[   86.276715][ T6144] hsr_slave_1: entered promiscuous mode
[   86.779609][ T6144] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   86.789491][ T6144] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   86.799715][ T6144] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   86.812219][ T6144] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   86.838634][ T6144] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.846420][ T6144] bridge0: port 2(bridge_slave_1) entered forwarding state
[   86.853879][ T6144] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.861021][ T6144] bridge0: port 1(bridge_slave_0) entered forwarding state
[   86.915860][ T6144] 8021q: adding VLAN 0 to HW filter on device bond0
[   86.932643][   T53] bridge0: port 1(bridge_slave_0) entered disabled state
[   86.942445][   T53] bridge0: port 2(bridge_slave_1) entered disabled state
[   86.961204][ T6144] 8021q: adding VLAN 0 to HW filter on device team0
[   86.976250][   T53] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.983422][   T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[   86.997973][ T3607] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.005134][ T3607] bridge0: port 2(bridge_slave_1) entered forwarding state
[   87.198741][ T6144] 8021q: adding VLAN 0 to HW filter on device batadv0
[   87.249188][ T6144] veth0_vlan: entered promiscuous mode
[   87.263094][ T6144] veth1_vlan: entered promiscuous mode
[   87.288677][ T6144] veth0_macvtap: entered promiscuous mode
[   87.299380][ T6144] veth1_macvtap: entered promiscuous mode
[   87.318452][ T6144] batman_adv: batadv0: Interface activated: batadv_slave_0
[   87.329536][ T6144] batman_adv: batadv0: Interface activated: batadv_slave_1
[   87.347801][ T6144] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   87.357682][ T6144] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   87.368319][ T6144] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   87.379379][ T6144] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   87.463185][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   87.482737][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.510712][   T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   87.520076][   T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.959033][ T5146] Bluetooth: hci0: command tx timeout
[   90.033721][ T5146] Bluetooth: hci0: command tx timeout
2025/01/31 04:45:17 executed programs: 114
[   92.113617][ T5146] Bluetooth: hci0: command tx timeout
[   94.194716][ T5146] Bluetooth: hci0: command tx timeout
2025/01/31 04:45:22 executed programs: 323
2025/01/31 04:45:27 executed programs: 630
2025/01/31 04:45:32 executed programs: 941
2025/01/31 04:45:37 executed programs: 1258
2025/01/31 04:45:42 executed programs: 1573
2025/01/31 04:45:47 executed programs: 1890
2025/01/31 04:45:52 executed programs: 2204
2025/01/31 04:45:57 executed programs: 2519
[  133.157057][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  133.165579][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
2025/01/31 04:46:02 executed programs: 2835
2025/01/31 04:46:07 executed programs: 3134
2025/01/31 04:46:12 executed programs: 3451
2025/01/31 04:46:17 executed programs: 3766
2025/01/31 04:46:22 executed programs: 4078
2025/01/31 04:46:27 executed programs: 4391
2025/01/31 04:46:32 executed programs: 4707
[  168.714112][T16272] 
[  168.716493][T16272] ======================================================
[  168.723501][T16272] WARNING: possible circular locking dependency detected
[  168.730544][T16272] 6.13.0-syzkaller-09760-g69e858e0b8b2 #0 Not tainted
[  168.737393][T16272] ------------------------------------------------------
[  168.744404][T16272] syz-executor.0/16272 is trying to acquire lock:
[  168.750831][T16272] ffff888032d6fc50 ((work_completion)(&new_smc->smc_listen_work)){+.+.}-{0:0}, at: __flush_work+0xe9/0xc60
[  168.762247][T16272] 
[  168.762247][T16272] but task is already holding lock:
[  168.769623][T16272] ffff88802aa55e58 (sk_lock-AF_SMC/1){+.+.}-{0:0}, at: smc_release+0x234/0x540
[  168.778593][T16272] 
[  168.778593][T16272] which lock already depends on the new lock.
[  168.778593][T16272] 
[  168.788977][T16272] 
[  168.788977][T16272] the existing dependency chain (in reverse order) is:
[  168.797989][T16272] 
[  168.797989][T16272] -> #1 (sk_lock-AF_SMC/1){+.+.}-{0:0}:
[  168.805760][T16272]        lock_acquire+0x1ed/0x550
[  168.810770][T16272]        lock_sock_nested+0x48/0x100
[  168.816144][T16272]        smc_listen_out+0x11b/0x3e0
[  168.821322][T16272]        process_scheduled_works+0xa66/0x1840
[  168.827378][T16272]        worker_thread+0x870/0xd30
[  168.832503][T16272]        kthread+0x7a9/0x920
[  168.837139][T16272]        ret_from_fork+0x4b/0x80
[  168.842063][T16272]        ret_from_fork_asm+0x1a/0x30
[  168.847698][T16272] 
[  168.847698][T16272] -> #0 ((work_completion)(&new_smc->smc_listen_work)){+.+.}-{0:0}:
[  168.857960][T16272]        validate_chain+0x18ef/0x5920
[  168.863475][T16272]        __lock_acquire+0x1397/0x2100
[  168.868848][T16272]        lock_acquire+0x1ed/0x550
[  168.873854][T16272]        __flush_work+0x739/0xc60
[  168.878879][T16272]        __cancel_work_sync+0xbc/0x110
[  168.884417][T16272]        smc_clcsock_release+0x62/0xf0
[  168.889871][T16272]        __smc_release+0x683/0x800
[  168.895080][T16272]        smc_close_non_accepted+0xd8/0x1f0
[  168.900867][T16272]        smc_close_active+0xadb/0xe90
[  168.906223][T16272]        __smc_release+0xa0/0x800
[  168.911229][T16272]        smc_release+0x2dc/0x540
[  168.916147][T16272]        sock_close+0xbc/0x240
[  168.920888][T16272]        __fput+0x3e9/0x9f0
[  168.925399][T16272]        __x64_sys_close+0x7f/0x110
[  168.930591][T16272]        do_syscall_64+0xf3/0x230
[  168.935685][T16272]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.942094][T16272] 
[  168.942094][T16272] other info that might help us debug this:
[  168.942094][T16272] 
[  168.952304][T16272]  Possible unsafe locking scenario:
[  168.952304][T16272] 
[  168.959825][T16272]        CPU0                    CPU1
[  168.965209][T16272]        ----                    ----
[  168.970552][T16272]   lock(sk_lock-AF_SMC/1);
[  168.975065][T16272]                                lock((work_completion)(&new_smc->smc_listen_work));
[  168.984512][T16272]                                lock(sk_lock-AF_SMC/1);
[  168.991522][T16272]   lock((work_completion)(&new_smc->smc_listen_work));
[  168.998456][T16272] 
[  168.998456][T16272]  *** DEADLOCK ***
[  168.998456][T16272] 
[  169.006774][T16272] 3 locks held by syz-executor.0/16272:
[  169.012298][T16272]  #0: ffff88806a5dac08 (&sb->s_type->i_mutex_key#10){+.+.}-{4:4}, at: sock_close+0x90/0x240
[  169.022465][T16272]  #1: ffff88802aa55e58 (sk_lock-AF_SMC/1){+.+.}-{0:0}, at: smc_release+0x234/0x540
[  169.031863][T16272]  #2: ffffffff8e9387a0 (rcu_read_lock){....}-{1:3}, at: __flush_work+0xe9/0xc60
[  169.041120][T16272] 
[  169.041120][T16272] stack backtrace:
[  169.047178][T16272] CPU: 1 UID: 0 PID: 16272 Comm: syz-executor.0 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[  169.047192][T16272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  169.047201][T16272] Call Trace:
[  169.047206][T16272]  <TASK>
[  169.047211][T16272]  dump_stack_lvl+0x241/0x360
[  169.047225][T16272]  ? __pfx_dump_stack_lvl+0x10/0x10
[  169.047234][T16272]  ? __pfx__printk+0x10/0x10
[  169.047250][T16272]  print_circular_bug+0x13a/0x1b0
[  169.047260][T16272]  check_noncircular+0x36a/0x4a0
[  169.047270][T16272]  ? __pfx_check_noncircular+0x10/0x10
[  169.047278][T16272]  ? lockdep_lock+0x123/0x2b0
[  169.047291][T16272]  validate_chain+0x18ef/0x5920
[  169.047304][T16272]  ? __pfx_validate_chain+0x10/0x10
[  169.047315][T16272]  ? look_up_lock_class+0x77/0x170
[  169.047327][T16272]  ? register_lock_class+0x102/0x980
[  169.047339][T16272]  ? __pfx_register_lock_class+0x10/0x10
[  169.047350][T16272]  ? do_raw_spin_lock+0x14f/0x370
[  169.047359][T16272]  ? __pfx_lock_release+0x10/0x10
[  169.047371][T16272]  ? mark_lock+0x9a/0x360
[  169.047383][T16272]  __lock_acquire+0x1397/0x2100
[  169.047396][T16272]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  169.047407][T16272]  lock_acquire+0x1ed/0x550
[  169.047418][T16272]  ? __flush_work+0xe9/0xc60
[  169.047437][T16272]  ? __pfx_lock_acquire+0x10/0x10
[  169.047448][T16272]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  169.047460][T16272]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  169.047472][T16272]  ? _raw_spin_unlock_irq+0x23/0x50
[  169.047481][T16272]  ? __flush_work+0xe9/0xc60
[  169.047492][T16272]  __flush_work+0x739/0xc60
[  169.047503][T16272]  ? __flush_work+0xe9/0xc60
[  169.047513][T16272]  ? __flush_work+0xe9/0xc60
[  169.047525][T16272]  ? __pfx___flush_work+0x10/0x10
[  169.047536][T16272]  ? __pfx_wq_barrier_func+0x10/0x10
[  169.047548][T16272]  ? __pfx___cancel_work+0x10/0x10
[  169.047559][T16272]  ? lockdep_hardirqs_on+0x99/0x150
[  169.047569][T16272]  ? __local_bh_enable_ip+0x168/0x200
[  169.047578][T16272]  ? __smc_release+0x67b/0x800
[  169.047589][T16272]  __cancel_work_sync+0xbc/0x110
[  169.047600][T16272]  smc_clcsock_release+0x62/0xf0
[  169.047614][T16272]  __smc_release+0x683/0x800
[  169.047624][T16272]  smc_close_non_accepted+0xd8/0x1f0
[  169.047636][T16272]  smc_close_active+0xadb/0xe90
[  169.047648][T16272]  ? __pfx_sock_def_readable+0x10/0x10
[  169.047659][T16272]  __smc_release+0xa0/0x800
[  169.047669][T16272]  smc_release+0x2dc/0x540
[  169.047679][T16272]  sock_close+0xbc/0x240
[  169.047689][T16272]  ? __pfx_sock_close+0x10/0x10
[  169.047699][T16272]  __fput+0x3e9/0x9f0
[  169.047712][T16272]  __x64_sys_close+0x7f/0x110
[  169.047722][T16272]  do_syscall_64+0xf3/0x230
[  169.047734][T16272]  ? clear_bhb_loop+0x35/0x90
[  169.047748][T16272]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.047760][T16272] RIP: 0033:0x7ff108c7bc9a
[  169.047773][T16272] Code: 48 3d 00 f0 ff ff 77 48 c3 0f 1f 80 00 00 00 00 48 83 ec 18 89 7c 24 0c e8 03 7f 02 00 8b 7c 24 0c 89 c2 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 36 89 d7 89 44 24 0c e8 63 7f 02 00 8b 44 24
[  169.047780][T16272] RSP: 002b:00007ffc6d7382a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  169.047790][T16272] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00007ff108c7bc9a
[  169.047797][T16272] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[  169.047809][T16272] RBP: 0000000000000032 R08: 0000001b33b60000 R09: 00007ff108dabf8c
[  169.047815][T16272] R10: 00007ffc6d7383f0 R11: 0000000000000293 R12: 00007ff1088003f8
[  169.047821][T16272] R13: ffffffffffffffff R14: 00007ff108800000 R15: 00000000000292e5
[  169.047830][T16272]  </TASK>
2025/01/31 04:46:37 executed programs: 5026
2025/01/31 04:46:42 executed programs: 5491