[ 76.605126][ T1114] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.1.100' (ECDSA) to the list of known hosts. 2023/04/20 13:58:39 ignoring optional flag "sandboxArg"="0" 2023/04/20 13:58:39 parsed 1 programs 2023/04/20 13:58:39 executed programs: 0 [ 79.279772][ T5511] cgroup: Unknown subsys name 'net' [ 79.292657][ T5511] cgroup: Unknown subsys name 'rlimit' [ 82.522947][ T5081] Bluetooth: hci0: Opcode 0x c03 failed: -110 [ 84.611739][ T4396] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 84.620711][ T4396] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 84.628913][ T4396] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 84.637237][ T4396] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 84.645421][ T4396] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 84.652860][ T4396] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 84.727049][ T5539] chnl_net:caif_netlink_parms(): no params data found [ 84.767659][ T5539] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.775337][ T5539] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.782611][ T5539] bridge_slave_0: entered allmulticast mode [ 84.790011][ T5539] bridge_slave_0: entered promiscuous mode [ 84.798171][ T5539] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.805385][ T5539] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.812995][ T5539] bridge_slave_1: entered allmulticast mode [ 84.819694][ T5539] bridge_slave_1: entered promiscuous mode [ 84.840931][ T5539] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 84.851998][ T5539] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 84.874400][ T5539] team0: Port device team_slave_0 added [ 84.882137][ T5539] team0: Port device team_slave_1 added [ 84.900637][ T5539] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 84.907722][ T5539] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 84.934327][ T5539] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 84.947762][ T5539] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 84.954887][ T5539] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 84.981008][ T5539] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 85.006716][ T5539] hsr_slave_0: entered promiscuous mode [ 85.013597][ T5539] hsr_slave_1: entered promiscuous mode [ 85.075078][ T5539] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.082212][ T5539] bridge0: port 2(bridge_slave_1) entered forwarding state [ 85.089647][ T5539] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.096791][ T5539] bridge0: port 1(bridge_slave_0) entered forwarding state [ 85.134811][ T5539] 8021q: adding VLAN 0 to HW filter on device bond0 [ 85.148982][ T5093] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 85.156992][ T5093] bridge0: port 1(bridge_slave_0) entered disabled state [ 85.166093][ T5093] bridge0: port 2(bridge_slave_1) entered disabled state [ 85.174130][ T5093] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 85.187125][ T5539] 8021q: adding VLAN 0 to HW filter on device team0 [ 85.196946][ T5093] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 85.206160][ T5093] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.213300][ T5093] bridge0: port 1(bridge_slave_0) entered forwarding state [ 85.234999][ T5093] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 85.243592][ T5093] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.250654][ T5093] bridge0: port 2(bridge_slave_1) entered forwarding state [ 85.259155][ T5093] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 85.269088][ T5093] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 85.279842][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 85.289334][ T1114] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 85.301380][ T5539] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 85.313547][ T5539] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 85.321815][ T1114] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 85.339312][ T755] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 85.346980][ T755] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 85.359615][ T5539] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 85.706434][ T755] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 85.724007][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 85.732402][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 85.742532][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 85.751068][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 85.761534][ T5539] veth0_vlan: entered promiscuous mode [ 85.771848][ T5539] veth1_vlan: entered promiscuous mode [ 85.788963][ T5539] veth0_macvtap: entered promiscuous mode [ 85.795644][ T755] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 85.804559][ T755] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 85.813380][ T755] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 85.821815][ T755] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 85.833885][ T5539] veth1_macvtap: entered promiscuous mode [ 85.850723][ T5539] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 85.858687][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 85.867024][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 85.875264][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 85.884275][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 85.896477][ T5539] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 85.904359][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 85.913129][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 85.964407][ T56] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.972621][ T56] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.990389][ T1114] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 86.005845][ T56] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.014664][ T56] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.024793][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 86.067258][ T5559] [ 86.069722][ T5559] ============================================ [ 86.075884][ T5559] WARNING: possible recursive locking detected [ 86.082025][ T5559] 6.3.0-rc7-next-20230419-syzkaller-13077-g3cdbc01c40e3 #0 Not tainted [ 86.090248][ T5559] -------------------------------------------- [ 86.096381][ T5559] syz-executor.0/5559 is trying to acquire lock: [ 86.102689][ T5559] ffff88807cff70d8 (_xmit_ETHER#2){+.-.}-{2:2}, at: __dev_queue_xmit+0x2d2d/0x3c10 [ 86.111999][ T5559] [ 86.111999][ T5559] but task is already holding lock: [ 86.119363][ T5559] ffff888027c220d8 (_xmit_ETHER#2){+.-.}-{2:2}, at: sch_direct_xmit+0x31c/0xc30 [ 86.128495][ T5559] [ 86.128495][ T5559] other info that might help us debug this: [ 86.136542][ T5559] Possible unsafe locking scenario: [ 86.136542][ T5559] [ 86.144076][ T5559] CPU0 [ 86.147355][ T5559] ---- [ 86.150626][ T5559] lock(_xmit_ETHER#2); [ 86.154871][ T5559] lock(_xmit_ETHER#2); [ 86.159206][ T5559] [ 86.159206][ T5559] *** DEADLOCK *** [ 86.159206][ T5559] [ 86.167431][ T5559] May be due to missing lock nesting notation [ 86.167431][ T5559] [ 86.175756][ T5559] 6 locks held by syz-executor.0/5559: [ 86.181199][ T5559] #0: ffffffff8c797e40 (rcu_read_lock){....}-{1:2}, at: ip_finish_output2+0x29c/0x22b0 [ 86.190957][ T5559] #1: ffffffff8c797de0 (rcu_read_lock_bh){....}-{1:2}, at: __dev_queue_xmit+0x22c/0x3c10 [ 86.200955][ T5559] #2: ffff8880223e0258 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock){+...}-{2:2}, at: __dev_queue_xmit+0x12ae/0x3c10 [ 86.213739][ T5559] #3: ffff888027c220d8 (_xmit_ETHER#2){+.-.}-{2:2}, at: sch_direct_xmit+0x31c/0xc30 [ 86.223315][ T5559] #4: ffffffff8c797e40 (rcu_read_lock){....}-{1:2}, at: ip_finish_output2+0x29c/0x22b0 [ 86.233239][ T5559] #5: ffffffff8c797de0 (rcu_read_lock_bh){....}-{1:2}, at: __dev_queue_xmit+0x22c/0x3c10 [ 86.243289][ T5559] [ 86.243289][ T5559] stack backtrace: [ 86.249259][ T5559] CPU: 1 PID: 5559 Comm: syz-executor.0 Not tainted 6.3.0-rc7-next-20230419-syzkaller-13077-g3cdbc01c40e3 #0 [ 86.260886][ T5559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023 [ 86.270983][ T5559] Call Trace: [ 86.274255][ T5559] [ 86.277290][ T5559] dump_stack_lvl+0xd9/0x150 [ 86.282065][ T5559] __lock_acquire+0x13b3/0x5df0 [ 86.287110][ T5559] ? udp_sendmsg+0x1b86/0x27e0 [ 86.291993][ T5559] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 86.298042][ T5559] ? skb_checksum+0x94/0xc0 [ 86.302543][ T5559] lock_acquire.part.0+0x11c/0x370 [ 86.307751][ T5559] ? __dev_queue_xmit+0x2d2d/0x3c10 [ 86.312952][ T5559] ? lock_sync+0x190/0x190 [ 86.317569][ T5559] ? rcu_is_watching+0x12/0xb0 [ 86.322339][ T5559] ? trace_lock_acquire+0x12d/0x180 [ 86.327534][ T5559] ? __dev_queue_xmit+0x2d2d/0x3c10 [ 86.332750][ T5559] ? lock_acquire+0x32/0xc0 [ 86.337252][ T5559] ? __dev_queue_xmit+0x2d2d/0x3c10 [ 86.342551][ T5559] _raw_spin_lock+0x2e/0x40 [ 86.347075][ T5559] ? __dev_queue_xmit+0x2d2d/0x3c10 [ 86.352270][ T5559] __dev_queue_xmit+0x2d2d/0x3c10 [ 86.357294][ T5559] ? print_usage_bug.part.0+0x660/0x660 [ 86.362873][ T5559] ? netdev_core_pick_tx+0x390/0x390 [ 86.368288][ T5559] ? find_held_lock+0x2d/0x110 [ 86.373077][ T5559] ? ip_finish_output2+0x778/0x22b0 [ 86.378284][ T5559] ? lock_downgrade+0x690/0x690 [ 86.383141][ T5559] ? mark_held_locks+0x9f/0xe0 [ 86.387926][ T5559] ? skb_push+0x9b/0xe0 [ 86.392159][ T5559] neigh_resolve_output+0x51b/0x870 [ 86.397738][ T5559] ip_finish_output2+0x778/0x22b0 [ 86.402770][ T5559] ? nf_hook+0x20d/0x640 [ 86.407117][ T5559] ? ip_fragment.constprop.0+0x240/0x240 [ 86.412736][ T5559] ? nf_hook+0x640/0x640 [ 86.416979][ T5559] ? lockdep_hardirqs_on+0x7d/0x100 [ 86.422183][ T5559] __ip_finish_output+0x396/0x650 [ 86.427201][ T5559] ip_finish_output+0x31/0x280 [ 86.431954][ T5559] ip_output+0x1a3/0x320 [ 86.436211][ T5559] ip_local_out+0xb3/0x1a0 [ 86.440794][ T5559] iptunnel_xmit+0x622/0xa40 [ 86.445573][ T5559] ip_tunnel_xmit+0xfc0/0x3170 [ 86.450424][ T5559] ? ip_md_tunnel_xmit+0x1f80/0x1f80 [ 86.455920][ T5559] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 86.461929][ T5559] ? __gre_xmit+0x4f4/0x980 [ 86.466616][ T5559] erspan_xmit+0x1130/0x2760 [ 86.471309][ T5559] dev_hard_start_xmit+0x187/0x700 [ 86.476515][ T5559] sch_direct_xmit+0x1a3/0xc30 [ 86.481398][ T5559] ? rcu_is_watching+0x12/0xb0 [ 86.486373][ T5559] ? netif_carrier_on+0x110/0x110 [ 86.491483][ T5559] ? lock_acquire+0x32/0xc0 [ 86.496154][ T5559] ? __dev_queue_xmit+0x12ae/0x3c10 [ 86.501456][ T5559] __dev_queue_xmit+0x14d6/0x3c10 [ 86.506505][ T5559] ? netdev_core_pick_tx+0x390/0x390 [ 86.511966][ T5559] ? find_held_lock+0x2d/0x110 [ 86.516831][ T5559] ? ip_finish_output2+0x778/0x22b0 [ 86.522023][ T5559] ? lock_downgrade+0x690/0x690 [ 86.526964][ T5559] ? trace_lock_acquire+0x12d/0x180 [ 86.532347][ T5559] ? skb_push+0x9b/0xe0 [ 86.536506][ T5559] neigh_resolve_output+0x51b/0x870 [ 86.541746][ T5559] ip_finish_output2+0x778/0x22b0 [ 86.546763][ T5559] ? nf_hook+0x20d/0x640 [ 86.551138][ T5559] ? ip_fragment.constprop.0+0x240/0x240 [ 86.556854][ T5559] ? nf_hook+0x640/0x640 [ 86.561105][ T5559] ? __build_flow_key.constprop.0+0x3f3/0x6f0 [ 86.567181][ T5559] __ip_finish_output+0x396/0x650 [ 86.572195][ T5559] ip_finish_output+0x31/0x280 [ 86.576948][ T5559] ip_output+0x1a3/0x320 [ 86.581370][ T5559] ip_send_skb+0xd8/0x260 [ 86.585704][ T5559] udp_send_skb+0x73a/0x14a0 [ 86.590341][ T5559] udp_sendmsg+0x1b86/0x27e0 [ 86.594926][ T5559] ? ip_frag_init+0x320/0x320 [ 86.599599][ T5559] ? udp_recvmsg+0x12d0/0x12d0 [ 86.604375][ T5559] ? mark_lock.part.0+0xee/0x1970 [ 86.609506][ T5559] ? print_usage_bug.part.0+0x660/0x660 [ 86.615148][ T5559] ? print_usage_bug.part.0+0x660/0x660 [ 86.620700][ T5559] ? mark_lock.part.0+0xee/0x1970 [ 86.625730][ T5559] ? __lock_acquire+0x1916/0x5df0 [ 86.630772][ T5559] udpv6_sendmsg+0x180a/0x2d50 [ 86.635533][ T5559] ? udp_v6_push_pending_frames+0x200/0x200 [ 86.641442][ T5559] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 86.647506][ T5559] ? find_held_lock+0x2d/0x110 [ 86.652280][ T5559] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 86.658262][ T5559] ? aa_sk_perm+0x31d/0xb10 [ 86.662761][ T5559] ? aa_af_perm+0x240/0x240 [ 86.667264][ T5559] ? iovec_from_user+0xb2/0x1d0 [ 86.672205][ T5559] inet6_sendmsg+0x9d/0xe0 [ 86.676638][ T5559] ? inet6_compat_ioctl+0x320/0x320 [ 86.681848][ T5559] sock_sendmsg+0xde/0x190 [ 86.686264][ T5559] ____sys_sendmsg+0x334/0x900 [ 86.691028][ T5559] ? copy_msghdr_from_user+0xfc/0x150 [ 86.696494][ T5559] ? kernel_sendmsg+0x50/0x50 [ 86.701191][ T5559] ? rcu_is_watching+0x12/0xb0 [ 86.705964][ T5559] ___sys_sendmsg+0x110/0x1b0 [ 86.710652][ T5559] ? do_recvmmsg+0x6e0/0x6e0 [ 86.715373][ T5559] ? __fget_files+0x248/0x480 [ 86.720103][ T5559] ? lock_downgrade+0x690/0x690 [ 86.724966][ T5559] ? trace_lock_acquire+0x12d/0x180 [ 86.730442][ T5559] ? receive_fd+0x110/0x110 [ 86.734942][ T5559] ? lock_acquire+0x32/0xc0 [ 86.739530][ T5559] ? receive_fd+0x110/0x110 [ 86.744033][ T5559] ? __fget_files+0x26a/0x480 [ 86.748713][ T5559] ? __fget_light+0xe5/0x270 [ 86.753302][ T5559] __sys_sendmmsg+0x18f/0x460 [ 86.757977][ T5559] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 86.763003][ T5559] ? __local_bh_enable_ip+0xa4/0x130 [ 86.768311][ T5559] ? __ia32_sys_get_robust_list+0x400/0x400 [ 86.774199][ T5559] ? fput+0x2f/0x1a0 [ 86.778113][ T5559] ? xfd_validate_state+0x5d/0x180 [ 86.783304][ T5559] ? restore_fpregs_from_fpstate+0xc1/0x1c0 [ 86.789190][ T5559] ? __sys_socket+0x8e/0x250 [ 86.793798][ T5559] ? rcu_is_watching+0x12/0xb0 [ 86.798596][ T5559] __x64_sys_sendmmsg+0x9d/0x100 [ 86.803539][ T5559] ? syscall_enter_from_user_mode+0x26/0x80 [ 86.810301][ T5559] do_syscall_64+0x39/0xb0 [ 86.814812][ T5559] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 86.820723][ T5559] RIP: 0033:0x7efcaf2890e9 [ 86.825157][ T5559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 86.845286][ T5559] RSP: 002b:00007efcb0485168 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 86.853785][ T5559] RAX: ffffffffffffffda RBX: 00007efcaf39bf60 RCX: 00007efcaf2890e9 [ 86.861754][ T5559] RDX: 0000000000000001 RSI: 0000000020004d80 RDI: 0000000000000004 2023/04/20 13:58:47 executed programs: 1 [ 86.869820][ T5559] RBP: 00007efcaf2e308d R08: 0000000000000000 R09: 0000000000000000 [ 86.878173][ T5559] R10: 0000000004000000 R11: 0000000000000246 R12: 0000000000000000 [ 86.886229][ T5559] R13: 00007ffc9508a66f R14: 00007efcb0485300 R15: 0000000000022000 [ 86.894718][ T5559] [ 86.899240][ T4396] Bluetooth: hci0: command 0x0409 tx timeout [ 88.922857][ T4396] Bluetooth: hci0: command 0x041b tx timeout [ 91.003069][ T4396] Bluetooth: hci0: command 0x040f tx timeout 2023/04/20 13:58:52 executed programs: 381 [ 93.083499][ T4396] Bluetooth: hci0: command 0x0419 tx timeout