[ 9.428094][ T3991] eql: remember to turn off Van-Jacobson compression on your slave devices Starting crond: [ 9.462751][ T39] gvnic 0000:00:00.0 enp0s0: Device link is up. [ 9.471317][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): enp0s0: link becomes ready OK Starting sshd: OK syzkaller Warning: Permanently added '10.128.0.79' (ED25519) to the list of known hosts. 1970/01/01 00:00:33 parsed 1 programs syzkaller login: [ 34.634387][ T4325] cgroup: Unknown subsys name 'net' [ 34.851302][ T4325] cgroup: Unknown subsys name 'rlimit' [ 35.124438][ T4325] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS [ 39.181841][ T39] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 39.183215][ T39] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 39.184822][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 39.194569][ T200] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 39.195911][ T200] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 39.197444][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 39.384836][ T4372] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 39.386553][ T4372] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 39.387928][ T4372] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 39.391010][ T4372] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 39.392456][ T4372] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 39.393691][ T4372] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 39.971303][ T4414] chnl_net:caif_netlink_parms(): no params data found [ 39.990872][ T4414] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.992142][ T4414] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.993689][ T4414] device bridge_slave_0 entered promiscuous mode [ 39.995967][ T4414] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.997119][ T4414] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.998767][ T4414] device bridge_slave_1 entered promiscuous mode [ 40.007070][ T4414] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 40.010495][ T4414] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 40.018160][ T4414] team0: Port device team_slave_0 added [ 40.020096][ T4414] team0: Port device team_slave_1 added [ 40.026584][ T4414] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 40.027705][ T4414] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 40.032142][ T4414] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 40.036269][ T4414] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 40.037422][ T4414] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 40.041844][ T4414] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 40.129681][ T4414] device hsr_slave_0 entered promiscuous mode [ 40.169084][ T4414] device hsr_slave_1 entered promiscuous mode [ 40.264487][ T4414] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 40.290650][ T4414] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 40.371087][ T4414] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 40.431593][ T4414] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 40.509893][ T4414] 8021q: adding VLAN 0 to HW filter on device bond0 [ 40.514123][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 40.515912][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 40.519637][ T4414] 8021q: adding VLAN 0 to HW filter on device team0 [ 40.522561][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 40.524339][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 40.526039][ T39] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.527332][ T39] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.530119][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 40.543733][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 40.545235][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 40.546611][ T200] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.547675][ T200] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.550884][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 40.554192][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 40.558036][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 40.560761][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 40.562342][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 40.563891][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 40.565396][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 40.568413][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 40.571313][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 40.573727][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 40.634360][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 40.635742][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 40.640561][ T4414] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 40.654901][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 40.660864][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 40.662782][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 40.664162][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 40.666600][ T4414] device veth0_vlan entered promiscuous mode [ 40.670284][ T4414] device veth1_vlan entered promiscuous mode [ 40.677668][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 40.679845][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 40.681500][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 40.684007][ T4414] device veth0_macvtap entered promiscuous mode [ 40.686375][ T4414] device veth1_macvtap entered promiscuous mode [ 40.700348][ T4414] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 40.701644][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 40.703294][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 40.704828][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 40.707643][ T4414] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 40.709349][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 40.710957][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 40.713493][ T4414] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.714924][ T4414] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.716265][ T4414] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.717627][ T4414] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 1970/01/01 00:00:41 executed programs: 0 [ 41.306217][ T47] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 41.307839][ T47] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 41.309747][ T47] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 41.311592][ T47] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 41.312991][ T47] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 41.314190][ T47] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 41.660909][ T4447] chnl_net:caif_netlink_parms(): no params data found [ 41.690575][ T4447] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.691876][ T4447] bridge0: port 1(bridge_slave_0) entered disabled state [ 41.693255][ T4447] device bridge_slave_0 entered promiscuous mode [ 41.697174][ T4447] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.698377][ T4447] bridge0: port 2(bridge_slave_1) entered disabled state [ 41.700002][ T4447] device bridge_slave_1 entered promiscuous mode [ 41.707544][ T4447] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 41.710197][ T4447] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 41.716916][ T4447] team0: Port device team_slave_0 added [ 41.719099][ T4447] team0: Port device team_slave_1 added [ 41.725844][ T4447] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 41.727029][ T4447] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 41.731236][ T4447] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 41.808972][ T4447] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 41.810212][ T4447] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 41.814192][ T4447] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 42.139612][ T4447] device hsr_slave_0 entered promiscuous mode [ 42.178866][ T4447] device hsr_slave_1 entered promiscuous mode [ 42.218737][ T4447] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 42.220129][ T4447] Cannot create hsr debugfs directory [ 42.400156][ T4447] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 43.369113][ T47] Bluetooth: hci0: command 0x0409 tx timeout [ 45.180131][ T4447] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 45.458639][ T47] Bluetooth: hci0: command 0x041b tx timeout [ 46.060401][ T4447] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.141651][ T4447] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.323340][ T4447] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 46.413913][ T4447] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 46.503781][ T4447] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 46.602442][ T4447] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 46.692242][ T4447] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.695956][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 46.697411][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 46.702021][ T4447] 8021q: adding VLAN 0 to HW filter on device team0 [ 46.704577][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 46.706017][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 46.707347][ T39] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.708478][ T39] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.709989][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 46.713981][ T9] device hsr_slave_0 left promiscuous mode [ 46.749177][ T9] device hsr_slave_1 left promiscuous mode [ 46.828700][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 46.829873][ T9] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 46.831538][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 46.832630][ T9] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 46.833953][ T9] device bridge_slave_1 left promiscuous mode [ 46.834959][ T9] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.879424][ T9] device bridge_slave_0 left promiscuous mode [ 46.880442][ T9] bridge0: port 1(bridge_slave_0) entered disabled state [ 47.008854][ T9] device veth1_macvtap left promiscuous mode [ 47.009942][ T9] device veth0_macvtap left promiscuous mode [ 47.010950][ T9] device veth1_vlan left promiscuous mode [ 47.011906][ T9] device veth0_vlan left promiscuous mode [ 47.528901][ T47] Bluetooth: hci0: command 0x040f tx timeout [ 48.779879][ T9] team0 (unregistering): Port device team_slave_1 removed [ 48.959874][ T9] team0 (unregistering): Port device team_slave_0 removed [ 49.119056][ T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 49.339069][ T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 49.608646][ T47] Bluetooth: hci0: command 0x0419 tx timeout [ 51.840765][ T9] bond0 (unregistering): Released all slaves [ 52.100903][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 52.102584][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 52.104160][ T200] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.105257][ T200] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.106649][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 52.108162][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 52.110284][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 52.111959][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 52.113744][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 52.115291][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 52.117173][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 52.119533][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 52.121078][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 52.123858][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 52.125314][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 52.127502][ T4447] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 52.178708][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 52.179949][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 52.182750][ T4447] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 52.188091][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 52.189960][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 52.196184][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 52.197800][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 52.200987][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 52.202561][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 52.204790][ T4447] device veth0_vlan entered promiscuous mode [ 52.207785][ T4447] device veth1_vlan entered promiscuous mode [ 52.214128][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 52.215648][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 52.217026][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 52.218522][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 52.222994][ T4447] device veth0_macvtap entered promiscuous mode [ 52.225857][ T4447] device veth1_macvtap entered promiscuous mode [ 52.234278][ T4447] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 52.235555][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 52.236977][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 52.238390][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 52.240617][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 52.243333][ T4447] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 52.244545][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 52.246102][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 52.248440][ T4447] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.250471][ T4447] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.251825][ T4447] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.253167][ T4447] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.273643][ T39] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 52.274966][ T39] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 52.276934][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 52.283638][ T39] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 52.284969][ T39] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 52.286672][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 1970/01/01 00:00:52 executed programs: 2 1970/01/01 00:00:57 executed programs: 215 1970/01/01 00:01:02 executed programs: 431 [ 64.489863][ T2060] ieee802154 phy0 wpan0: encryption failed: -22 [ 64.490976][ T2060] ieee802154 phy1 wpan1: encryption failed: -22 [ 66.367041][ T47] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 66.369576][ T47] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 66.371010][ T47] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 66.372595][ T47] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 66.374031][ T47] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 66.375325][ T47] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 66.426026][ T5697] chnl_net:caif_netlink_parms(): no params data found [ 68.408665][ T4370] Bluetooth: hci1: command 0x0409 tx timeout [ 70.488737][ T47] Bluetooth: hci1: command 0x041b tx timeout [ 72.568635][ T4370] Bluetooth: hci1: command 0x040f tx timeout [ 74.648670][ T47] Bluetooth: hci1: command 0x0419 tx timeout [ 88.118602][ C0] watchdog: BUG: soft lockup - CPU#0 stuck for 23s! [aoe_tx0:2060] [ 88.119990][ C0] Modules linked in: [ 88.120598][ C0] irq event stamp: 65620337 [ 88.121336][ C0] hardirqs last enabled at (65620336): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 88.123029][ C0] hardirqs last disabled at (65620337): [] el1_interrupt+0x24/0x54 [ 88.124384][ C0] softirqs last enabled at (1020): [] local_bh_enable+0x10/0x34 [ 88.125707][ C0] softirqs last disabled at (1024): [] local_bh_disable+0x10/0x34 [ 88.127000][ C0] CPU: 0 PID: 2060 Comm: aoe_tx0 Not tainted syzkaller #0 [ 88.127995][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 88.129363][ C0] pstate: 82400005 (Nzcv daif +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 88.130434][ C0] pc : _raw_spin_unlock_irqrestore+0x58/0xac [ 88.131276][ C0] lr : _raw_spin_unlock_irqrestore+0x48/0xac [ 88.132094][ C0] sp : ffff8000271c7840 [ 88.132661][ C0] x29: ffff8000271c7840 x28: ffff0000f088d430 x27: ffff0000ef4a1000 [ 88.133797][ C0] x26: ffff0000f088d3c0 x25: 1fffe0001a3e9996 x24: 0000000000000000 [ 88.134916][ C0] x23: 0000000000000000 x22: dfff800000000000 x21: ffff0000cde30fd8 [ 88.136026][ C0] x20: ffff80001c662b30 x19: 0000000000000000 x18: ffff800011abbcc0 [ 88.137267][ C0] x17: ffff8000181f9000 x16: ffff8000082d22d4 x15: ffff800017cd9fc0 [ 88.138551][ C0] x14: ffff0000d17bddd8 x13: 1ffff00002a180b1 x12: 0000000000ff0100 [ 88.139841][ C0] x11: ff0080000a893674 x10: 0000000000000003 x9 : 0000000000000080 [ 88.141060][ C0] x8 : 00000000000000c0 x7 : ffff80000b35b19c x6 : 0000000000000000 [ 88.142209][ C0] x5 : 0000000000000080 x4 : 0000000000000001 x3 : 0000000000000000 [ 88.143347][ C0] x2 : 0000000000000002 x1 : ffff800011abd7c0 x0 : ffff80018a6a7000 [ 88.144664][ C0] Call trace: [ 88.145193][ C0] _raw_spin_unlock_irqrestore+0x58/0xac [ 88.146058][ C0] uart_write_room+0x150/0x2d4 [ 88.146853][ C0] tty_write_room+0x6c/0x8c [ 88.147566][ C0] handle_tx+0x120/0x5f8 [ 88.148199][ C0] caif_xmit+0x108/0x150 [ 88.148895][ C0] dev_hard_start_xmit+0x244/0x8e0 [ 88.149686][ C0] __dev_queue_xmit+0x155c/0x309c [ 88.150392][ C0] tx+0x9c/0x1c8 [ 88.150925][ C0] kthread+0x160/0x330 [ 88.151614][ C0] kthread+0x250/0x2d8 [ 88.152204][ C0] ret_from_fork+0x10/0x20 [ 88.152845][ C0] Kernel panic - not syncing: softlockup: hung tasks [ 88.153776][ C0] CPU: 0 PID: 2060 Comm: aoe_tx0 Tainted: G L syzkaller #0 [ 88.154941][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 88.156336][ C0] Call trace: [ 88.156783][ C0] dump_backtrace+0x1c8/0x1f4 [ 88.157434][ C0] show_stack+0x2c/0x3c [ 88.158030][ C0] __dump_stack+0x30/0x40 [ 88.158626][ C0] dump_stack_lvl+0xf8/0x160 [ 88.159242][ C0] dump_stack+0x1c/0x5c [ 88.159836][ C0] panic+0x2e0/0x79c [ 88.160425][ C0] softlockup_fn+0x0/0x120 [ 88.161060][ C0] __hrtimer_run_queues+0x420/0xc64 [ 88.161789][ C0] hrtimer_interrupt+0x2bc/0xb5c [ 88.162501][ C0] arch_timer_handler_virt+0x74/0x88 [ 88.163214][ C0] handle_percpu_devid_irq+0x174/0x34c [ 88.163971][ C0] generic_handle_domain_irq+0xe0/0x140 [ 88.164764][ C0] gic_handle_irq+0x70/0x1e4 [ 88.165409][ C0] call_on_irq_stack+0x30/0x48 [ 88.166122][ C0] do_interrupt_handler+0xd4/0x138 [ 88.166935][ C0] el1_interrupt+0x34/0x54 [ 88.167580][ C0] el1h_64_irq_handler+0x18/0x24 [ 88.168313][ C0] el1h_64_irq+0x64/0x68 [ 88.168911][ C0] _raw_spin_unlock_irqrestore+0x58/0xac [ 88.169732][ C0] uart_write_room+0x150/0x2d4 [ 88.170448][ C0] tty_write_room+0x6c/0x8c [ 88.171197][ C0] handle_tx+0x120/0x5f8 [ 88.171844][ C0] caif_xmit+0x108/0x150 [ 88.172507][ C0] dev_hard_start_xmit+0x244/0x8e0 [ 88.173338][ C0] __dev_queue_xmit+0x155c/0x309c [ 88.174113][ C0] tx+0x9c/0x1c8 [ 88.174643][ C0] kthread+0x160/0x330 [ 88.175252][ C0] kthread+0x250/0x2d8 [ 88.175859][ C0] ret_from_fork+0x10/0x20 [ 88.176512][ C0] SMP: stopping secondary CPUs [ 88.177189][ C0] Kernel Offset: disabled [ 88.177830][ C0] CPU features: 0x080000,000f0097,a65bfea7 [ 88.178702][ C0] Memory Limit: none [ 88.185010][ C0] [ 88.185354][ C0] ================================ [ 88.186127][ C0] WARNING: inconsistent lock state [ 88.186939][ C0] syzkaller #0 Tainted: G L [ 88.187821][ C0] -------------------------------- [ 88.188543][ C0] inconsistent {HARDIRQ-ON-W} -> {IN-HARDIRQ-W} usage. [ 88.189468][ C0] aoe_tx0/2060 [HC1[1]:SC0[2]:HE0:SE0] takes: [ 88.190298][ C0] ffff8000151013d8 (efi_rt_lock){?...}-{2:2}, at: virt_efi_set_variable_nonblocking+0x74/0x16c [ 88.191740][ C0] {HARDIRQ-ON-W} state was registered at: [ 88.192515][ C0] lock_acquire+0x20c/0x644 [ 88.193150][ C0] _raw_spin_lock+0x54/0x6c [ 88.193785][ C0] efi_call_rts+0x260/0x9f4 [ 88.194450][ C0] process_one_work+0x7f4/0x13a8 [ 88.195167][ C0] worker_thread+0x8c8/0xfbc [ 88.195829][ C0] kthread+0x250/0x2d8 [ 88.196392][ C0] ret_from_fork+0x10/0x20 [ 88.197001][ C0] irq event stamp: 65620337 [ 88.197601][ C0] hardirqs last enabled at (65620336): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 88.199044][ C0] hardirqs last disabled at (65620337): [] el1_interrupt+0x24/0x54 [ 88.200345][ C0] softirqs last enabled at (1020): [] local_bh_enable+0x10/0x34 [ 88.201595][ C0] softirqs last disabled at (1024): [] local_bh_disable+0x10/0x34 [ 88.202950][ C0] [ 88.202950][ C0] other info that might help us debug this: [ 88.204068][ C0] Possible unsafe locking scenario: [ 88.204068][ C0] [ 88.205111][ C0] CPU0 [ 88.205566][ C0] ---- [ 88.206032][ C0] lock(efi_rt_lock); [ 88.206562][ C0] [ 88.207030][ C0] lock(efi_rt_lock); [ 88.207611][ C0] [ 88.207611][ C0] *** DEADLOCK *** [ 88.207611][ C0] [ 88.208751][ C0] 4 locks held by aoe_tx0/2060: [ 88.209398][ C0] #0: ffff800015296e60 (rcu_read_lock_bh){....}-{1:2}, at: rcu_lock_acquire+0x18/0x54 [ 88.210784][ C0] #1: ffff0000d85188d8 (_xmit_NONE#2){+...}-{2:2}, at: __dev_queue_xmit+0x1090/0x309c [ 88.212194][ C0] #2: ffff800015296e00 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x10/0x4c [ 88.213501][ C0] #3: ffff800017164608 (&psinfo->buf_lock){....}-{2:2}, at: pstore_dump+0x180/0x728 [ 88.214875][ C0] [ 88.214875][ C0] stack backtrace: [ 88.215659][ C0] CPU: 0 PID: 2060 Comm: aoe_tx0 Tainted: G L syzkaller #0 [ 88.216900][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 88.218541][ C0] Call trace: [ 88.219068][ C0] dump_backtrace+0x1c8/0x1f4 [ 88.219859][ C0] show_stack+0x2c/0x3c [ 88.220545][ C0] __dump_stack+0x30/0x40 [ 88.221244][ C0] dump_stack_lvl+0xf8/0x160 [ 88.221968][ C0] dump_stack+0x1c/0x5c [ 88.222657][ C0] print_usage_bug+0x4c0/0x6d8 [ 88.223470][ C0] mark_lock_irq+0x788/0x9e4 [ 88.224238][ C0] mark_lock+0x224/0x320 [ 88.224914][ C0] __lock_acquire+0xd2c/0x6544 [ 88.225660][ C0] lock_acquire+0x20c/0x644 [ 88.226387][ C0] _raw_spin_lock+0x54/0x6c [ 88.227117][ C0] virt_efi_set_variable_nonblocking+0x74/0x16c [ 88.228039][ C0] efivar_set_variable_locked+0x1d0/0x204 [ 88.228850][ C0] efi_pstore_write+0x26c/0x358 [ 88.229584][ C0] pstore_dump+0x504/0x728 [ 88.230197][ C0] kmsg_dump+0x170/0x260 [ 88.230801][ C0] panic+0x36c/0x79c [ 88.231462][ C0] softlockup_fn+0x0/0x120 [ 88.232188][ C0] __hrtimer_run_queues+0x420/0xc64 [ 88.233047][ C0] hrtimer_interrupt+0x2bc/0xb5c [ 88.233804][ C0] arch_timer_handler_virt+0x74/0x88 [ 88.234590][ C0] handle_percpu_devid_irq+0x174/0x34c [ 88.235399][ C0] generic_handle_domain_irq+0xe0/0x140 [ 88.236200][ C0] gic_handle_irq+0x70/0x1e4 [ 88.236860][ C0] call_on_irq_stack+0x30/0x48 [ 88.237531][ C0] do_interrupt_handler+0xd4/0x138 [ 88.238252][ C0] el1_interrupt+0x34/0x54 [ 88.238858][ C0] el1h_64_irq_handler+0x18/0x24 [ 88.239524][ C0] el1h_64_irq+0x64/0x68 [ 88.240095][ C0] _raw_spin_unlock_irqrestore+0x58/0xac [ 88.241022][ C0] uart_write_room+0x150/0x2d4 [ 88.241765][ C0] tty_write_room+0x6c/0x8c [ 88.242516][ C0] handle_tx+0x120/0x5f8 [ 88.243129][ C0] caif_xmit+0x108/0x150 [ 88.243752][ C0] dev_hard_start_xmit+0x244/0x8e0 [ 88.244502][ C0] __dev_queue_xmit+0x155c/0x309c [ 88.245320][ C0] tx+0x9c/0x1c8 [ 88.245844][ C0] kthread+0x160/0x330 [ 88.246515][ C0] kthread+0x250/0x2d8 [ 88.247152][ C0] ret_from_fork+0x10/0x20 [ 88.430421][ C0] Rebooting in 86400 seconds..