Warning: Permanently added '10.128.1.65' (ED25519) to the list of known hosts. 2023/11/26 10:32:09 ignoring optional flag "sandboxArg"="0" 2023/11/26 10:32:09 parsed 1 programs 2023/11/26 10:32:09 executed programs: 0 [ 80.150467][ T5327] cgroup: Unknown subsys name 'net' [ 80.161678][ T5327] cgroup: Unknown subsys name 'rlimit' [ 81.275443][ T4385] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 81.283784][ T4385] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 81.292470][ T4385] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 81.300875][ T4385] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 81.309929][ T4385] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 81.317337][ T4385] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 81.419779][ T5333] chnl_net:caif_netlink_parms(): no params data found [ 81.476016][ T5333] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.483496][ T5333] bridge0: port 1(bridge_slave_0) entered disabled state [ 81.491276][ T5333] bridge_slave_0: entered allmulticast mode [ 81.498259][ T5333] bridge_slave_0: entered promiscuous mode [ 81.506106][ T5333] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.513861][ T5333] bridge0: port 2(bridge_slave_1) entered disabled state [ 81.521647][ T5333] bridge_slave_1: entered allmulticast mode [ 81.529452][ T5333] bridge_slave_1: entered promiscuous mode [ 81.554737][ T5333] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 81.566274][ T5333] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 81.594909][ T5333] team0: Port device team_slave_0 added [ 81.603545][ T5333] team0: Port device team_slave_1 added [ 81.625089][ T5333] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 81.632524][ T5333] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 81.659842][ T5333] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 81.672156][ T5333] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 81.679365][ T5333] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 81.706119][ T5333] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 81.737341][ T5333] hsr_slave_0: entered promiscuous mode [ 81.743659][ T5333] hsr_slave_1: entered promiscuous mode [ 81.824383][ T5333] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.831813][ T5333] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.839305][ T5333] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.846688][ T5333] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.897337][ T5333] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.913352][ T4999] bridge0: port 1(bridge_slave_0) entered disabled state [ 81.921499][ T4999] bridge0: port 2(bridge_slave_1) entered disabled state [ 81.936824][ T5333] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.950219][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.957840][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.969122][ T9] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.976243][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.032598][ T5333] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 82.071500][ T918] cfg80211: failed to load regulatory.db [ 82.252891][ T5333] veth0_vlan: entered promiscuous mode [ 82.262846][ T5333] veth1_vlan: entered promiscuous mode [ 82.287023][ T5333] veth0_macvtap: entered promiscuous mode [ 82.296249][ T5333] veth1_macvtap: entered promiscuous mode [ 82.314720][ T5333] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.329221][ T5333] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 82.386241][ T48] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.397292][ T48] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.422526][ T1838] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.432289][ T1838] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.480604][ T5354] [ 82.482969][ T5354] ============================================ [ 82.489373][ T5354] WARNING: possible recursive locking detected [ 82.495520][ T5354] 6.7.0-rc2-syzkaller-00242-g090472ed9c92-dirty #0 Not tainted [ 82.503242][ T5354] -------------------------------------------- [ 82.509556][ T5354] syz-executor.0/5354 is trying to acquire lock: [ 82.516403][ T5354] ffff8880216e40d8 (_xmit_ETHER#2){+.-.}-{2:2}, at: __dev_queue_xmit+0x1622/0x38e0 [ 82.526425][ T5354] [ 82.526425][ T5354] but task is already holding lock: [ 82.533886][ T5354] ffff88807a6cfcd8 (_xmit_ETHER#2){+.-.}-{2:2}, at: sch_direct_xmit+0x24d/0x5f0 [ 82.543292][ T5354] [ 82.543292][ T5354] other info that might help us debug this: [ 82.552061][ T5354] Possible unsafe locking scenario: [ 82.552061][ T5354] [ 82.559851][ T5354] CPU0 [ 82.563215][ T5354] ---- [ 82.566498][ T5354] lock(_xmit_ETHER#2); [ 82.570746][ T5354] lock(_xmit_ETHER#2); [ 82.575184][ T5354] [ 82.575184][ T5354] *** DEADLOCK *** [ 82.575184][ T5354] [ 82.583591][ T5354] May be due to missing lock nesting notation [ 82.583591][ T5354] [ 82.592513][ T5354] 6 locks held by syz-executor.0/5354: [ 82.598021][ T5354] #0: ffffffff8cb25ba0 (rcu_read_lock){....}-{1:2}, at: ip_finish_output2+0x467/0x1360 [ 82.607866][ T5354] #1: ffffffff8cb25c00 (rcu_read_lock_bh){....}-{1:2}, at: __dev_queue_xmit+0x23e/0x38e0 [ 82.617802][ T5354] #2: ffff88814b0da258 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock){+...}-{2:2}, at: __dev_queue_xmit+0x11d0/0x38e0 [ 82.630522][ T5354] #3: ffff88807a6cfcd8 (_xmit_ETHER#2){+.-.}-{2:2}, at: sch_direct_xmit+0x24d/0x5f0 [ 82.640205][ T5354] #4: ffffffff8cb25ba0 (rcu_read_lock){....}-{1:2}, at: ip_finish_output2+0x467/0x1360 [ 82.650151][ T5354] #5: ffffffff8cb25c00 (rcu_read_lock_bh){....}-{1:2}, at: __dev_queue_xmit+0x23e/0x38e0 [ 82.660586][ T5354] [ 82.660586][ T5354] stack backtrace: [ 82.666470][ T5354] CPU: 0 PID: 5354 Comm: syz-executor.0 Not tainted 6.7.0-rc2-syzkaller-00242-g090472ed9c92-dirty #0 [ 82.677561][ T5354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023 [ 82.688154][ T5354] Call Trace: [ 82.691562][ T5354] [ 82.694567][ T5354] dump_stack_lvl+0x1e7/0x2d0 [ 82.699417][ T5354] ? nf_tcp_handle_invalid+0x650/0x650 [ 82.705050][ T5354] ? print_deadlock_bug+0x462/0x600 [ 82.710329][ T5354] ? _find_first_zero_bit+0xd4/0x100 [ 82.715733][ T5354] __lock_acquire+0x6a81/0x7f70 [ 82.720579][ T5354] ? __stack_depot_save+0x4dc/0x650 [ 82.725789][ T5354] ? kasan_save_stack+0x4f/0x60 [ 82.730658][ T5354] ? kasan_save_stack+0x3f/0x60 [ 82.735512][ T5354] ? __dev_queue_xmit+0x7fc/0x38e0 [ 82.740622][ T5354] ? verify_lock_unused+0x140/0x140 [ 82.745823][ T5354] ? erspan_xmit+0x9c6/0x13e0 [ 82.750514][ T5354] ? dev_hard_start_xmit+0x241/0x750 [ 82.755996][ T5354] ? sch_direct_xmit+0x2db/0x5f0 [ 82.761121][ T5354] ? __dev_queue_xmit+0x187c/0x38e0 [ 82.766426][ T5354] ? ip_finish_output2+0xe6d/0x1360 [ 82.771629][ T5354] ? ip_send_skb+0x117/0x1b0 [ 82.776246][ T5354] ? udp_send_skb+0x931/0x1200 [ 82.781449][ T5354] ? csum_partial+0x234/0x2b0 [ 82.786299][ T5354] ? __skb_checksum+0x850/0x850 [ 82.791150][ T5354] ? __skb_checksum+0x787/0x850 [ 82.796004][ T5354] ? skb_checksum+0x88/0xe0 [ 82.800615][ T5354] ? validate_xmit_xfrm+0xc1/0x1190 [ 82.805831][ T5354] ? csum_partial_ext+0x30/0x30 [ 82.810726][ T5354] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0 [ 82.817003][ T5354] lock_acquire+0x1e3/0x520 [ 82.821712][ T5354] ? __dev_queue_xmit+0x1622/0x38e0 [ 82.826925][ T5354] ? skb_checksum_help+0x321/0x740 [ 82.832147][ T5354] ? read_lock_is_recursive+0x20/0x20 [ 82.837535][ T5354] ? validate_xmit_skb+0xa01/0x1120 [ 82.842838][ T5354] ? rcu_read_lock_bh_held+0x7e/0x120 [ 82.848550][ T5354] ? validate_xmit_skb_list+0x130/0x130 [ 82.854088][ T5354] _raw_spin_lock+0x2e/0x40 [ 82.858594][ T5354] ? __dev_queue_xmit+0x1622/0x38e0 [ 82.863869][ T5354] __dev_queue_xmit+0x1622/0x38e0 [ 82.868973][ T5354] ? print_irqtrace_events+0x220/0x220 [ 82.874772][ T5354] ? neigh_resolve_output+0x44e/0x6e0 [ 82.880234][ T5354] ? __dev_queue_xmit+0x23e/0x38e0 [ 82.885345][ T5354] ? read_seqbegin+0x208/0x2b0 [ 82.890164][ T5354] ? netdev_core_pick_tx+0x2f0/0x2f0 [ 82.895445][ T5354] ? neigh_resolve_output+0x2ec/0x6e0 [ 82.900896][ T5354] ? eth_header+0x11c/0x1f0 [ 82.905474][ T5354] ? __asan_memcpy+0x40/0x70 [ 82.910058][ T5354] ? eth_header+0x11c/0x1f0 [ 82.914565][ T5354] ? llc_sysctl_exit+0x70/0x70 [ 82.919403][ T5354] ? neigh_resolve_output+0x611/0x6e0 [ 82.924814][ T5354] ? ip_finish_output2+0x467/0x1360 [ 82.930013][ T5354] ? ip_finish_output2+0x467/0x1360 [ 82.935292][ T5354] ip_finish_output2+0xe6d/0x1360 [ 82.940396][ T5354] ? nf_hook+0x9e/0x450 [ 82.944714][ T5354] ? ip_finish_output2+0x467/0x1360 [ 82.950089][ T5354] ? dst_release+0x50/0x50 [ 82.954510][ T5354] ? ip_fragment+0x210/0x210 [ 82.959096][ T5354] ? __ip_local_out+0x3d2/0x4e0 [ 82.964468][ T5354] ? ip_skb_dst_mtu+0x60c/0x990 [ 82.969309][ T5354] ? __ip_finish_output+0x3e0/0x4b0 [ 82.974761][ T5354] iptunnel_xmit+0x540/0x9b0 [ 82.979606][ T5354] ip_tunnel_xmit+0x20e4/0x2940 [ 82.984455][ T5354] ? tnl_update_pmtu+0x10b0/0x10b0 [ 82.989649][ T5354] ? skb_push+0x97/0x100 [ 82.993894][ T5354] ? __gre_xmit+0x118/0x1b0 [ 82.998493][ T5354] erspan_xmit+0x9c6/0x13e0 [ 83.003191][ T5354] dev_hard_start_xmit+0x241/0x750 [ 83.008397][ T5354] sch_direct_xmit+0x2db/0x5f0 [ 83.013215][ T5354] ? mrp_pdu_parse_vecattr_event+0x2c0/0x2c0 [ 83.019448][ T5354] __dev_queue_xmit+0x187c/0x38e0 [ 83.024482][ T5354] ? print_irqtrace_events+0x220/0x220 [ 83.030032][ T5354] ? neigh_resolve_output+0x44e/0x6e0 [ 83.035574][ T5354] ? __dev_queue_xmit+0x23e/0x38e0 [ 83.041618][ T5354] ? read_seqbegin+0x208/0x2b0 [ 83.046568][ T5354] ? netdev_core_pick_tx+0x2f0/0x2f0 [ 83.052107][ T5354] ? neigh_resolve_output+0x2ec/0x6e0 [ 83.057468][ T5354] ? eth_header+0x11c/0x1f0 [ 83.061980][ T5354] ? __asan_memcpy+0x40/0x70 [ 83.066583][ T5354] ? eth_header+0x11c/0x1f0 [ 83.071340][ T5354] ? llc_sysctl_exit+0x70/0x70 [ 83.076204][ T5354] ? neigh_resolve_output+0x611/0x6e0 [ 83.082136][ T5354] ? ip_finish_output2+0x467/0x1360 [ 83.087342][ T5354] ? ip_finish_output2+0x467/0x1360 [ 83.092540][ T5354] ip_finish_output2+0xe6d/0x1360 [ 83.097654][ T5354] ? nf_hook+0x9e/0x450 [ 83.102175][ T5354] ? ip_finish_output2+0x467/0x1360 [ 83.107369][ T5354] ? ip_fragment+0x210/0x210 [ 83.111946][ T5354] ? ip_fast_csum+0x1f0/0x2b0 [ 83.116633][ T5354] ? ip_skb_dst_mtu+0x60c/0x990 [ 83.121505][ T5354] ? __ip_finish_output+0x3e0/0x4b0 [ 83.126927][ T5354] ip_send_skb+0x117/0x1b0 [ 83.131338][ T5354] udp_send_skb+0x931/0x1200 [ 83.135946][ T5354] udp_sendmsg+0x1c17/0x2a70 [ 83.140745][ T5354] ? ip_skb_dst_mtu+0x990/0x990 [ 83.145600][ T5354] ? udp_cmsg_send+0x340/0x340 [ 83.150461][ T5354] ? __lock_acquire+0x1267/0x7f70 [ 83.155570][ T5354] udpv6_sendmsg+0x1342/0x3220 [ 83.160615][ T5354] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0 [ 83.166611][ T5354] ? udp_v6_early_demux+0xf30/0xf30 [ 83.171819][ T5354] ? smack_socket_sendmsg+0x172/0x530 [ 83.177277][ T5354] ? tomoyo_socket_bind_permission+0x340/0x340 [ 83.183683][ T5354] ? iovec_from_user+0x61/0x240 [ 83.188615][ T5354] ? inet_send_prepare+0x21/0x250 [ 83.193636][ T5354] ? inet6_compat_ioctl+0x560/0x560 [ 83.198913][ T5354] ____sys_sendmsg+0x592/0x890 [ 83.203669][ T5354] ? __sys_sendmsg_sock+0x30/0x30 [ 83.208940][ T5354] ? __fget_files+0x3fe/0x480 [ 83.213655][ T5354] __sys_sendmmsg+0x3b2/0x730 [ 83.218345][ T5354] ? __ia32_sys_sendmsg+0x90/0x90 [ 83.223538][ T5354] ? plist_check_list+0x20d/0x220 [ 83.228741][ T5354] ? __might_sleep+0xc0/0xc0 [ 83.233327][ T5354] ? __might_fault+0xa5/0x120 [ 83.238207][ T5354] ? syscall_enter_from_user_mode+0x32/0x230 [ 83.244285][ T5354] __x64_sys_sendmmsg+0xa0/0xb0 [ 83.249145][ T5354] do_syscall_64+0x44/0x110 [ 83.253670][ T5354] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 83.259684][ T5354] RIP: 0033:0x7f6d49e798a9 [ 83.264278][ T5354] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 83.284496][ T5354] RSP: 002b:00007f6d4b01e0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 83.293168][ T5354] RAX: ffffffffffffffda RBX: 00007f6d49f8bf60 RCX: 00007f6d49e798a9 [ 83.301228][ T5354] RDX: 0000000000000001 RSI: 0000000020004d80 RDI: 0000000000000004 [ 83.309360][ T5354] RBP: 00007f6d49ed5074 R08: 0000000000000000 R09: 0000000000000000 [ 83.317316][ T5354] R10: 0000000004000000 R11: 0000000000000246 R12: 0000000000000000 [ 83.325558][ T5354] R13: 000000000000000b R14: 00007f6d49f8bf60 R15: 00007ffe004ace78 [ 83.333615][ T5354] [ 83.347897][ T4385] Bluetooth: hci0: command 0x0409 tx timeout [ 83.358064][ T5354] syz-executor.0 (5354) used greatest stack depth: 18544 bytes left 2023/11/26 10:32:14 executed programs: 145 [ 85.428158][ T4385] Bluetooth: hci0: command 0x041b tx timeout [ 87.508484][ T4385] Bluetooth: hci0: command 0x040f tx timeout [ 89.597928][ T4385] Bluetooth: hci0: command 0x0419 tx timeout 2023/11/26 10:32:19 executed programs: 537