[ 51.000678][ T1043] bridge0: port 1(bridge_slave_0) entered disabled state [ 51.012090][ T1043] device veth1_macvtap left promiscuous mode [ 51.018392][ T1043] device veth0_macvtap left promiscuous mode [ 51.024422][ T1043] device veth1_vlan left promiscuous mode [ 51.030493][ T1043] device veth0_vlan left promiscuous mode [ 51.133552][ T1043] team0 (unregistering): Port device team_slave_1 removed [ 51.144485][ T1043] team0 (unregistering): Port device team_slave_0 removed [ 51.155351][ T1043] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 51.169884][ T1043] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 51.208291][ T1043] bond0 (unregistering): Released all slaves Warning: Permanently added '10.128.10.60' (ECDSA) to the list of known hosts. 2022/11/19 06:58:04 ignoring optional flag "sandboxArg"="0" 2022/11/19 06:58:04 parsed 1 programs 2022/11/19 06:58:04 executed programs: 0 [ 65.824338][ T47] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 65.832514][ T47] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 65.840872][ T47] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 65.851013][ T47] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 65.859506][ T47] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 65.868934][ T4090] Bluetooth: hci0: HCI_REQ-0x0c1a [ 65.897882][ T1254] ieee802154 phy0 wpan0: encryption failed: -22 [ 65.904315][ T1254] ieee802154 phy1 wpan1: encryption failed: -22 [ 65.961402][ T4090] chnl_net:caif_netlink_parms(): no params data found [ 65.995080][ T4090] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.002457][ T4090] bridge0: port 1(bridge_slave_0) entered disabled state [ 66.010411][ T4090] device bridge_slave_0 entered promiscuous mode [ 66.019003][ T4090] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.027687][ T4090] bridge0: port 2(bridge_slave_1) entered disabled state [ 66.035402][ T4090] device bridge_slave_1 entered promiscuous mode [ 66.052803][ T4090] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 66.063838][ T4090] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 66.085240][ T4090] team0: Port device team_slave_0 added [ 66.092556][ T4090] team0: Port device team_slave_1 added [ 66.108352][ T4090] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 66.115383][ T4090] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 66.142017][ T4090] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 66.155066][ T4090] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 66.162098][ T4090] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 66.188237][ T4090] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 66.213571][ T4090] device hsr_slave_0 entered promiscuous mode [ 66.220411][ T4090] device hsr_slave_1 entered promiscuous mode [ 66.897041][ T4090] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 66.906961][ T4090] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 66.916674][ T4090] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 66.926738][ T4090] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 66.948818][ T4090] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.955937][ T4090] bridge0: port 2(bridge_slave_1) entered forwarding state [ 66.963282][ T4090] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.970508][ T4090] bridge0: port 1(bridge_slave_0) entered forwarding state [ 67.018959][ T26] bridge0: port 1(bridge_slave_0) entered disabled state [ 67.026641][ T26] bridge0: port 2(bridge_slave_1) entered disabled state [ 67.045087][ T4090] 8021q: adding VLAN 0 to HW filter on device bond0 [ 67.058648][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 67.067284][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 67.077780][ T4090] 8021q: adding VLAN 0 to HW filter on device team0 [ 67.088810][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 67.098442][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 67.108574][ T26] bridge0: port 1(bridge_slave_0) entered blocking state [ 67.116032][ T26] bridge0: port 1(bridge_slave_0) entered forwarding state [ 67.136391][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 67.145383][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 67.155337][ T26] bridge0: port 2(bridge_slave_1) entered blocking state [ 67.162803][ T26] bridge0: port 2(bridge_slave_1) entered forwarding state [ 67.171066][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 67.181273][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 67.190244][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 67.199691][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 67.208405][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 67.217252][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 67.230997][ T4090] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 67.243253][ T4090] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 67.258691][ T4130] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 67.267220][ T4130] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 67.276655][ T4130] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 67.285059][ T4130] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 67.294251][ T4130] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 67.305799][ T4130] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 67.445883][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 67.453894][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 67.465142][ T4090] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 67.486090][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 67.495160][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 67.514214][ T4090] device veth0_vlan entered promiscuous mode [ 67.523668][ T156] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 67.532466][ T156] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 67.545379][ T4090] device veth1_vlan entered promiscuous mode [ 67.554004][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 67.563291][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 67.571434][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 67.594134][ T156] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 67.604001][ T156] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 67.612748][ T156] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 67.624761][ T4090] device veth0_macvtap entered promiscuous mode [ 67.635488][ T4090] device veth1_macvtap entered promiscuous mode [ 67.652817][ T4090] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 67.662862][ T156] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 67.672290][ T156] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 67.681952][ T156] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 67.690670][ T156] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 67.702774][ T4090] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 67.711587][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 67.721971][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 67.732591][ T4090] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.743233][ T4090] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.752267][ T4090] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.762671][ T4090] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.820309][ T1104] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 67.831947][ T1104] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 67.857168][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 67.865915][ T1043] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 67.873961][ T1043] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 67.883220][ T4130] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 67.886305][ T47] Bluetooth: hci0: command 0x0409 tx timeout [ 67.949623][ T4177] [ 67.952070][ T4177] ===================================================== [ 67.959781][ T4177] WARNING: SOFTIRQ-safe -> SOFTIRQ-unsafe lock order detected [ 67.967227][ T4177] 6.1.0-rc4-syzkaller #0 Not tainted [ 67.972504][ T4177] ----------------------------------------------------- [ 67.979514][ T4177] syz-executor.0/4177 [HC0[0]:SC0[4]:HE1:SE0] is trying to acquire: [ 67.987656][ T4177] ffff88801dba1bb8 (k-clock-AF_INET){+++.}-{2:2}, at: sock_i_uid+0x1a/0xa0 [ 67.996264][ T4177] [ 67.996264][ T4177] and this task is already holding: [ 68.003626][ T4177] ffffc900018706a8 (&tcp_hashinfo.bhash[i].lock){+.-.}-{2:2}, at: inet_csk_get_port+0x44c/0x2210 [ 68.014336][ T4177] which would create a new lock dependency: [ 68.020404][ T4177] (&tcp_hashinfo.bhash[i].lock){+.-.}-{2:2} -> (k-clock-AF_INET){+++.}-{2:2} [ 68.029344][ T4177] [ 68.029344][ T4177] but this new dependency connects a SOFTIRQ-irq-safe lock: [ 68.038956][ T4177] (&tcp_hashinfo.bhash[i].lock){+.-.}-{2:2} [ 68.038970][ T4177] [ 68.038970][ T4177] ... which became SOFTIRQ-irq-safe at: [ 68.052806][ T4177] lock_acquire+0x1e3/0x630 [ 68.057408][ T4177] _raw_spin_lock+0x2e/0x40 [ 68.061986][ T4177] __inet_inherit_port+0x260/0x1470 [ 68.067263][ T4177] tcp_v4_syn_recv_sock+0xa07/0x1290 [ 68.072625][ T4177] tcp_check_req+0x384/0x1650 [ 68.077403][ T4177] tcp_v4_rcv+0x1d4d/0x33d0 [ 68.081982][ T4177] ip_protocol_deliver_rcu+0x7f/0x5f0 [ 68.087512][ T4177] ip_local_deliver_finish+0x29c/0x400 [ 68.093397][ T4177] ip_sublist_rcv_finish+0x88/0x250 [ 68.098704][ T4177] ip_sublist_rcv+0x436/0x840 [ 68.103733][ T4177] ip_list_rcv+0x2a5/0x3e0 [ 68.108319][ T4177] __netif_receive_skb_list_core+0x490/0x8a0 [ 68.114431][ T4177] netif_receive_skb_list_internal+0x5f3/0xc90 [ 68.120864][ T4177] napi_complete_done+0x187/0x700 [ 68.125971][ T4177] virtnet_poll+0xabc/0x10f0 [ 68.130640][ T4177] __napi_poll+0x9e/0x5c0 [ 68.135047][ T4177] net_rx_action+0x8c8/0xcc0 [ 68.139721][ T4177] __do_softirq+0x1fb/0xadc [ 68.144321][ T4177] __irq_exit_rcu+0x123/0x180 [ 68.149163][ T4177] irq_exit_rcu+0x9/0x20 [ 68.153651][ T4177] common_interrupt+0xad/0xd0 [ 68.158414][ T4177] asm_common_interrupt+0x26/0x40 [ 68.163511][ T4177] acpi_idle_do_entry+0x185/0x200 [ 68.168608][ T4177] acpi_idle_enter+0x2c7/0x4c0 [ 68.173626][ T4177] cpuidle_enter_state+0x156/0xc40 [ 68.178898][ T4177] cpuidle_enter+0x49/0xa0 [ 68.183397][ T4177] do_idle+0x3f7/0x590 [ 68.187544][ T4177] cpu_startup_entry+0x18/0x20 [ 68.192606][ T4177] start_secondary+0x256/0x300 [ 68.197471][ T4177] secondary_startup_64_no_verify+0xce/0xdb [ 68.203715][ T4177] [ 68.203715][ T4177] to a SOFTIRQ-irq-unsafe lock: [ 68.210811][ T4177] (k-clock-AF_INET){+++.}-{2:2} [ 68.210825][ T4177] [ 68.210825][ T4177] ... which became SOFTIRQ-irq-unsafe at: [ 68.223621][ T4177] ... [ 68.223626][ T4177] lock_acquire+0x1e3/0x630 [ 68.231048][ T4177] _raw_write_lock+0x2e/0x40 [ 68.235800][ T4177] l2tp_tunnel_register+0xf9/0xf60 [ 68.241082][ T4177] l2tp_nl_cmd_tunnel_create+0x364/0x9a0 [ 68.246807][ T4177] genl_family_rcv_msg_doit+0x1e4/0x2f0 [ 68.252536][ T4177] genl_rcv_msg+0x34c/0x630 [ 68.257117][ T4177] netlink_rcv_skb+0x11c/0x370 [ 68.261962][ T4177] genl_rcv+0x23/0x30 [ 68.266017][ T4177] netlink_unicast+0x437/0x710 [ 68.271340][ T4177] netlink_sendmsg+0x786/0xc30 [ 68.276274][ T4177] sock_sendmsg+0xaf/0xe0 [ 68.280770][ T4177] ____sys_sendmsg+0x5f7/0x8a0 [ 68.285649][ T4177] ___sys_sendmsg+0xdb/0x160 [ 68.290320][ T4177] __sys_sendmsg+0xc7/0x160 [ 68.294894][ T4177] do_syscall_64+0x39/0xb0 [ 68.299903][ T4177] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 68.305871][ T4177] [ 68.305871][ T4177] other info that might help us debug this: [ 68.305871][ T4177] [ 68.316189][ T4177] Possible interrupt unsafe locking scenario: [ 68.316189][ T4177] [ 68.324589][ T4177] CPU0 CPU1 [ 68.329945][ T4177] ---- ---- [ 68.335297][ T4177] lock(k-clock-AF_INET); [ 68.339702][ T4177] local_irq_disable(); [ 68.346620][ T4177] lock(&tcp_hashinfo.bhash[i].lock); [ 68.354851][ T4177] lock(k-clock-AF_INET); [ 68.361922][ T4177] [ 68.365369][ T4177] lock(&tcp_hashinfo.bhash[i].lock); [ 68.370990][ T4177] [ 68.370990][ T4177] *** DEADLOCK *** [ 68.370990][ T4177] [ 68.379294][ T4177] 3 locks held by syz-executor.0/4177: [ 68.384745][ T4177] #0: ffff888028068130 (sk_lock-AF_SMC){+.+.}-{0:0}, at: smc_bind+0xcc/0x320 [ 68.393863][ T4177] #1: ffff88801dba1930 (k-sk_lock-AF_INET){+.+.}-{0:0}, at: __inet_bind+0x69d/0xb50 [ 68.403328][ T4177] #2: ffffc900018706a8 (&tcp_hashinfo.bhash[i].lock){+.-.}-{2:2}, at: inet_csk_get_port+0x44c/0x2210 [ 68.414265][ T4177] [ 68.414265][ T4177] the dependencies between SOFTIRQ-irq-safe lock and the holding lock: [ 68.424658][ T4177] -> (&tcp_hashinfo.bhash[i].lock){+.-.}-{2:2} { [ 68.431073][ T4177] HARDIRQ-ON-W at: [ 68.435043][ T4177] lock_acquire+0x1e3/0x630 [ 68.441185][ T4177] _raw_spin_lock_bh+0x33/0x40 [ 68.447679][ T4177] inet_csk_get_port+0x44c/0x2210 [ 68.454348][ T4177] __inet6_bind+0x45c/0x1940 [ 68.460665][ T4177] inet6_bind+0x133/0x1b0 [ 68.466637][ T4177] rds_tcp_listen_init+0x263/0x450 [ 68.473785][ T4177] rds_tcp_init_net+0x1c8/0x420 [ 68.480374][ T4177] ops_init+0x9a/0x590 [ 68.486258][ T4177] register_pernet_operations+0x2df/0x750 [ 68.494232][ T4177] register_pernet_device+0x25/0x60 [ 68.501075][ T4177] rds_tcp_init+0x48/0x98 [ 68.507048][ T4177] do_one_initcall+0xf8/0x550 [ 68.513387][ T4177] kernel_init_freeable+0x5e5/0x63f [ 68.520841][ T4177] kernel_init+0x18/0x130 [ 68.526899][ T4177] ret_from_fork+0x1f/0x30 [ 68.533418][ T4177] IN-SOFTIRQ-W at: [ 68.537478][ T4177] lock_acquire+0x1e3/0x630 [ 68.543981][ T4177] _raw_spin_lock+0x2e/0x40 [ 68.550128][ T4177] __inet_inherit_port+0x260/0x1470 [ 68.557321][ T4177] tcp_v4_syn_recv_sock+0xa07/0x1290 [ 68.564427][ T4177] tcp_check_req+0x384/0x1650 [ 68.570751][ T4177] tcp_v4_rcv+0x1d4d/0x33d0 [ 68.576985][ T4177] ip_protocol_deliver_rcu+0x7f/0x5f0 [ 68.584095][ T4177] ip_local_deliver_finish+0x29c/0x400 [ 68.591199][ T4177] ip_sublist_rcv_finish+0x88/0x250 [ 68.598128][ T4177] ip_sublist_rcv+0x436/0x840 [ 68.604796][ T4177] ip_list_rcv+0x2a5/0x3e0 [ 68.611025][ T4177] __netif_receive_skb_list_core+0x490/0x8a0 [ 68.618735][ T4177] netif_receive_skb_list_internal+0x5f3/0xc90 [ 68.626536][ T4177] napi_complete_done+0x187/0x700 [ 68.633389][ T4177] virtnet_poll+0xabc/0x10f0 [ 68.639891][ T4177] __napi_poll+0x9e/0x5c0 [ 68.645863][ T4177] net_rx_action+0x8c8/0xcc0 [ 68.652266][ T4177] __do_softirq+0x1fb/0xadc [ 68.658670][ T4177] __irq_exit_rcu+0x123/0x180 [ 68.664992][ T4177] irq_exit_rcu+0x9/0x20 [ 68.670966][ T4177] common_interrupt+0xad/0xd0 [ 68.678503][ T4177] asm_common_interrupt+0x26/0x40 [ 68.685252][ T4177] acpi_idle_do_entry+0x185/0x200 [ 68.692008][ T4177] acpi_idle_enter+0x2c7/0x4c0 [ 68.698792][ T4177] cpuidle_enter_state+0x156/0xc40 [ 68.705543][ T4177] cpuidle_enter+0x49/0xa0 [ 68.711784][ T4177] do_idle+0x3f7/0x590 [ 68.718619][ T4177] cpu_startup_entry+0x18/0x20 [ 68.725020][ T4177] start_secondary+0x256/0x300 [ 68.731422][ T4177] secondary_startup_64_no_verify+0xce/0xdb [ 68.738958][ T4177] INITIAL USE at: [ 68.743011][ T4177] lock_acquire+0x1e3/0x630 [ 68.749068][ T4177] _raw_spin_lock_bh+0x33/0x40 [ 68.755688][ T4177] inet_csk_get_port+0x44c/0x2210 [ 68.762265][ T4177] __inet6_bind+0x45c/0x1940 [ 68.768411][ T4177] inet6_bind+0x133/0x1b0 [ 68.774475][ T4177] rds_tcp_listen_init+0x263/0x450 [ 68.781234][ T4177] rds_tcp_init_net+0x1c8/0x420 [ 68.787704][ T4177] ops_init+0x9a/0x590 [ 68.793416][ T4177] register_pernet_operations+0x2df/0x750 [ 68.800869][ T4177] register_pernet_device+0x25/0x60 [ 68.807622][ T4177] rds_tcp_init+0x48/0x98 [ 68.813678][ T4177] do_one_initcall+0xf8/0x550 [ 68.819912][ T4177] kernel_init_freeable+0x5e5/0x63f [ 68.826758][ T4177] kernel_init+0x18/0x130 [ 68.832733][ T4177] ret_from_fork+0x1f/0x30 [ 68.838794][ T4177] } [ 68.841281][ T4177] ... key at: [] __key.1+0x0/0x40 [ 68.848554][ T4177] [ 68.848554][ T4177] the dependencies between the lock to be acquired [ 68.848559][ T4177] and SOFTIRQ-irq-unsafe lock: [ 68.862092][ T4177] -> (k-clock-AF_INET){+++.}-{2:2} { [ 68.867375][ T4177] HARDIRQ-ON-W at: [ 68.871342][ T4177] lock_acquire+0x1e3/0x630 [ 68.877572][ T4177] _raw_write_lock_bh+0x33/0x40 [ 68.884061][ T4177] sk_common_release+0xb4/0x2e0 [ 68.890743][ T4177] inet_release+0xf3/0x210 [ 68.896802][ T4177] sock_release+0x81/0x190 [ 68.904342][ T4177] wg_socket_reinit+0x1aa/0x300 [ 68.911193][ T4177] wg_netns_pre_exit+0xed/0x1e0 [ 68.917702][ T4177] cleanup_net+0x3a8/0x980 [ 68.924110][ T4177] process_one_work+0x8ba/0x14c0 [ 68.930699][ T4177] worker_thread+0x59c/0xec0 [ 68.937365][ T4177] kthread+0x298/0x340 [ 68.943073][ T4177] ret_from_fork+0x1f/0x30 [ 68.949222][ T4177] HARDIRQ-ON-R at: [ 68.953541][ T4177] lock_acquire+0x1e3/0x630 [ 68.960037][ T4177] _raw_read_lock_bh+0x3f/0x70 [ 68.966516][ T4177] sock_i_uid+0x1a/0xa0 [ 68.972489][ T4177] udp_lib_lport_inuse+0x2c/0x3f0 [ 68.979423][ T4177] udp_lib_get_port+0x719/0x1630 [ 68.986012][ T4177] __inet_bind+0x635/0xb50 [ 68.992068][ T4177] inet_bind+0x133/0x1b0 [ 68.998223][ T4177] udp_sock_create4+0x19c/0x420 [ 69.004888][ T4177] rxe_setup_udp_tunnel.constprop.0+0xd0/0x190 [ 69.013034][ T4177] rxe_net_init+0x18/0x70 [ 69.019005][ T4177] rxe_module_init+0xb/0x30 [ 69.025244][ T4177] do_one_initcall+0xf8/0x550 [ 69.031571][ T4177] kernel_init_freeable+0x5e5/0x63f [ 69.038408][ T4177] kernel_init+0x18/0x130 [ 69.044473][ T4177] ret_from_fork+0x1f/0x30 [ 69.050710][ T4177] SOFTIRQ-ON-W at: [ 69.054959][ T4177] lock_acquire+0x1e3/0x630 [ 69.061106][ T4177] _raw_write_lock+0x2e/0x40 [ 69.067345][ T4177] l2tp_tunnel_register+0xf9/0xf60 [ 69.074623][ T4177] l2tp_nl_cmd_tunnel_create+0x364/0x9a0 [ 69.082682][ T4177] genl_family_rcv_msg_doit+0x1e4/0x2f0 [ 69.089962][ T4177] genl_rcv_msg+0x34c/0x630 [ 69.097238][ T4177] netlink_rcv_skb+0x11c/0x370 [ 69.103906][ T4177] genl_rcv+0x23/0x30 [ 69.109723][ T4177] netlink_unicast+0x437/0x710 [ 69.116135][ T4177] netlink_sendmsg+0x786/0xc30 [ 69.122631][ T4177] sock_sendmsg+0xaf/0xe0 [ 69.128692][ T4177] ____sys_sendmsg+0x5f7/0x8a0 [ 69.135275][ T4177] ___sys_sendmsg+0xdb/0x160 [ 69.141596][ T4177] __sys_sendmsg+0xc7/0x160 [ 69.147938][ T4177] do_syscall_64+0x39/0xb0 [ 69.154361][ T4177] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 69.162176][ T4177] INITIAL USE at: [ 69.166088][ T4177] lock_acquire+0x1e3/0x630 [ 69.172433][ T4177] _raw_write_lock_bh+0x33/0x40 [ 69.178934][ T4177] sk_common_release+0xb4/0x2e0 [ 69.185861][ T4177] inet_release+0xf3/0x210 [ 69.192160][ T4177] sock_release+0x81/0x190 [ 69.198222][ T4177] wg_socket_reinit+0x1aa/0x300 [ 69.204720][ T4177] wg_netns_pre_exit+0xed/0x1e0 [ 69.211127][ T4177] cleanup_net+0x3a8/0x980 [ 69.217373][ T4177] process_one_work+0x8ba/0x14c0 [ 69.224139][ T4177] worker_thread+0x59c/0xec0 [ 69.230383][ T4177] kthread+0x298/0x340 [ 69.236274][ T4177] ret_from_fork+0x1f/0x30 [ 69.242260][ T4177] INITIAL READ USE at: [ 69.246586][ T4177] lock_acquire+0x1e3/0x630 [ 69.253080][ T4177] _raw_read_lock_bh+0x3f/0x70 [ 69.259923][ T4177] sock_i_uid+0x1a/0xa0 [ 69.266082][ T4177] udp_lib_lport_inuse+0x2c/0x3f0 [ 69.273101][ T4177] udp_lib_get_port+0x719/0x1630 [ 69.280212][ T4177] __inet_bind+0x635/0xb50 [ 69.286723][ T4177] inet_bind+0x133/0x1b0 [ 69.292956][ T4177] udp_sock_create4+0x19c/0x420 [ 69.299955][ T4177] rxe_setup_udp_tunnel.constprop.0+0xd0/0x190 [ 69.308309][ T4177] rxe_net_init+0x18/0x70 [ 69.314635][ T4177] rxe_module_init+0xb/0x30 [ 69.321238][ T4177] do_one_initcall+0xf8/0x550 [ 69.328085][ T4177] kernel_init_freeable+0x5e5/0x63f [ 69.335276][ T4177] kernel_init+0x18/0x130 [ 69.341683][ T4177] ret_from_fork+0x1f/0x30 [ 69.348214][ T4177] } [ 69.350704][ T4177] ... key at: [] af_kern_callback_keys+0x20/0x300 [ 69.359284][ T4177] ... acquired at: [ 69.363447][ T4177] lock_acquire+0x1e3/0x630 [ 69.368384][ T4177] _raw_read_lock_bh+0x3f/0x70 [ 69.373929][ T4177] sock_i_uid+0x1a/0xa0 [ 69.378427][ T4177] inet_bhash2_addr_any_conflict+0x24/0x360 [ 69.384832][ T4177] inet_csk_get_port+0x16ec/0x2210 [ 69.390130][ T4177] __inet_bind+0x635/0xb50 [ 69.394716][ T4177] inet_bind+0x133/0x1b0 [ 69.399137][ T4177] smc_bind+0x27b/0x320 [ 69.403550][ T4177] __sys_bind+0x16f/0x1d0 [ 69.408232][ T4177] __x64_sys_bind+0x6e/0xb0 [ 69.412959][ T4177] do_syscall_64+0x39/0xb0 [ 69.417543][ T4177] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 69.423870][ T4177] [ 69.426189][ T4177] [ 69.426189][ T4177] stack backtrace: [ 69.432076][ T4177] CPU: 0 PID: 4177 Comm: syz-executor.0 Not tainted 6.1.0-rc4-syzkaller #0 [ 69.440654][ T4177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 69.450887][ T4177] Call Trace: [ 69.454244][ T4177] [ 69.457173][ T4177] dump_stack_lvl+0x5b/0x81 [ 69.461756][ T4177] check_irq_usage.cold+0x4e4/0x761 [ 69.466947][ T4177] ? mark_lock.part.0+0xee/0x1910 [ 69.472059][ T4177] ? print_shortest_lock_dependencies_backwards+0x80/0x80 [ 69.479352][ T4177] ? _raw_spin_unlock_irqrestore+0x54/0x70 [ 69.485592][ T4177] ? check_path.constprop.0+0x24/0x50 [ 69.491134][ T4177] ? register_lock_class+0xbe/0x1120 [ 69.496426][ T4177] ? __lock_acquire+0xbc3/0x56d0 [ 69.501365][ T4177] __lock_acquire+0x2a5b/0x56d0 [ 69.506307][ T4177] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 69.512476][ T4177] lock_acquire+0x1e3/0x630 [ 69.517006][ T4177] ? sock_i_uid+0x1a/0xa0 [ 69.521340][ T4177] ? lock_release+0x810/0x810 [ 69.526189][ T4177] ? memcg_slab_post_alloc_hook+0x249/0x480 [ 69.532254][ T4177] ? lock_downgrade+0x6e0/0x6e0 [ 69.537302][ T4177] _raw_read_lock_bh+0x3f/0x70 [ 69.542065][ T4177] ? sock_i_uid+0x1a/0xa0 [ 69.546387][ T4177] sock_i_uid+0x1a/0xa0 [ 69.550534][ T4177] inet_bhash2_addr_any_conflict+0x24/0x360 [ 69.556514][ T4177] inet_csk_get_port+0x16ec/0x2210 [ 69.561630][ T4177] ? find_held_lock+0x2d/0x110 [ 69.566391][ T4177] ? __inet_bind+0x69d/0xb50 [ 69.570983][ T4177] ? inet_csk_update_fastreuse+0xac0/0xac0 [ 69.576961][ T4177] ? mark_held_locks+0x9f/0xe0 [ 69.581740][ T4177] ? lockdep_hardirqs_on_prepare+0x17f/0x410 [ 69.588077][ T4177] ? __local_bh_enable_ip+0xa4/0x130 [ 69.593450][ T4177] __inet_bind+0x635/0xb50 [ 69.598048][ T4177] inet_bind+0x133/0x1b0 [ 69.602461][ T4177] ? __inet_bind+0xb50/0xb50 [ 69.607064][ T4177] ? lockdep_hardirqs_on_prepare+0x17f/0x410 [ 69.613308][ T4177] ? __local_bh_enable_ip+0xa4/0x130 [ 69.619024][ T4177] smc_bind+0x27b/0x320 [ 69.623175][ T4177] __sys_bind+0x16f/0x1d0 [ 69.627636][ T4177] ? __ia32_sys_socketpair+0xf0/0xf0 [ 69.632922][ T4177] ? xfd_validate_state+0x23/0x120 [ 69.638214][ T4177] ? restore_fpregs_from_fpstate+0x94/0x170 [ 69.644194][ T4177] ? kernel_fpu_begin_mask+0x1d0/0x1d0 [ 69.649751][ T4177] ? lockdep_hardirqs_on_prepare+0x17f/0x410 [ 69.655835][ T4177] __x64_sys_bind+0x6e/0xb0 [ 69.660335][ T4177] do_syscall_64+0x39/0xb0 [ 69.664815][ T4177] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 69.670790][ T4177] RIP: 0033:0x7f945768b639 [ 69.675288][ T4177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 69.695412][ T4177] RSP: 002b:00007f9458419168 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 69.703911][ T4177] RAX: ffffffffffffffda RBX: 00007f94577abf80 RCX: 00007f945768b639 [ 69.712397][ T4177] RDX: 0000000000000010 RSI: 0000000020000040 RDI: 0000000000000004 [ 69.720363][ T4177] RBP: 00007f94576e6ae9 R08: 0000000000000000 R09: 0000000000000000 [ 69.728502][ T4177] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 69.736926][ T4177] R13: 00007ffd2950ce7f R14: 00007f9458419300 R15: 0000000000022000 [ 69.745589][ T4177] [ 69.965670][ T47] Bluetooth: hci0: command 0x041b tx timeout 2022/11/19 06:58:09 executed programs: 74 [ 71.005852][ T14] cfg80211: failed to load regulatory.db [ 72.045648][ T47] Bluetooth: hci0: command 0x040f tx timeout [ 74.125775][ T47] Bluetooth: hci0: command 0x0419 tx timeout 2022/11/19 06:58:14 executed programs: 451