last executing test programs: 1.513779357s ago: executing program 3 (id=4): socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f00000001c0)=0x6) unshare$auto(0x6) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) socket(0x1e, 0x1, 0x2400a) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0x300000, 0x0) prctl$auto(0xfffffc01, 0x1, 0x0, 0x1, 0xfffffffffffffffe) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x8000000003, 0xeb1, 0xfffffffffffffffa, 0x8000) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/bond_slave_1/disable_policy\x00', 0x0, 0x0) sendfile$auto(r3, r2, 0x0, 0x48) r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)) getdents$auto(r4, 0x0, 0xfff) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/block/loop15/queue/discard_granularity\x00', 0x8000, 0x0) unshare$auto(0x40000082) madvise$auto(0x0, 0xffffffffffff0009, 0x13) madvise$auto(0x7, 0xffffffffffff0001, 0x14) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) ioctl$auto(0xffffffffffffffff, 0x2203, 0xffffffffffffffff) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/bus/pci/00/03.0\x00', 0x4a801, 0x0) write$auto_proc_reg_file_ops_compat_inode(r5, &(0x7f00000007c0)="97890b1b4e114a6f544df204e114be7300", 0x11) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'tunl0\x00'}) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r6 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x40400, 0x0) ioctl$auto_posix_clock_file_operations_posix_clock(r6, 0x43403d05, 0x0) 763.267434ms ago: executing program 1 (id=2): mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000) madvise$auto(0x0, 0xffffffffffff0006, 0x17) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0) bind$auto(0x3, 0x0, 0x6a) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x9, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x65, 0x8000001f, 0x9, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0) sendmsg$auto(0xffffffffffffffff, 0x0, 0xfff) msync$auto(0x2, 0x9, 0x40) select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0x100000001, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, &(0x7f0000000280)={0x6, 0xcb}) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0xfffffdef) ioctl$auto(0xffffffffffffffff, 0x900064b5, 0xc14) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_ftrace_avail_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/available_events\x00', 0x69a002, 0x0) mmap$auto(0xfffffffffffffffd, 0x2, 0x80000000000007ec, 0x16, 0xffffffffffffffff, 0x70) unshare$auto(0x40000080) socket(0xa, 0x1, 0x100) setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b) r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x60d80, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000140)={{0x2400003, 0x1008, 0x5, 0x2, 0x4}, "0b0000007a4d30983899a7e1325b6aa2526b4fee4c23c323f3093cdcc3ccf1bf"}) 347.102152ms ago: executing program 0 (id=1): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/loop13/queue/wbt_lat_usec\x00', 0x206a1, 0x0) socket(0x15, 0x5, 0x0) getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0) r0 = pidfd_open$auto(0x1, 0x0) setns(r0, 0x60020000) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x403, 0x8000) r1 = openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000200), 0x22000, 0x0) ioctl$auto_FS_IOC_GETFLAGS(r1, 0x80086601, 0x5) getcwd$auto(0x0, 0xffffffffffffffff) mount_setattr$auto(r0, 0x0, 0x0, &(0x7f0000000640)={0x6, 0x9}, 0x283) 294.332328ms ago: executing program 3 (id=5): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), r0) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'wlan1\x00', 0x0}) mmap$auto(0x0, 0x20009, 0x12, 0xeb1, 0x401, 0x8000) syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x3, 0x100) socket(0x2a, 0x2, 0x0) ioctl$auto(0x3, 0x541b, 0x38) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x1e1180, 0x0) r5 = ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto(r5, 0x4010ae67, r6) write$auto_fops_u64_ro_(r5, &(0x7f0000000340)="3a09910ca4f20d22f59688252922d7106a95450e3f5415a4851f9cf83c4087e58ed351c9756658a6fec6eee42b14cfc5a6dc5ed25562711e51a9e036e6e4322436aa7d34d25dbcc2fd18ec602b6ab09be114a8516c0f90fa51ddfa61810023fd5b97fd13bf116296bbadc1398beb596be89f4c46e55f13754c22c259ba7dcb6cafea6fc7f4", 0x85) mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x101, 0x4) socket(0xa, 0x801, 0x84) r7 = socket(0x2, 0x801, 0x100) r8 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'veth0_to_bridge\x00', 0x0}) sendmsg$auto_IOAM6_CMD_NS_SET_SCHEMA(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4080}, 0x40054) bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_5={@target_ifindex=r9, r7, 0x9f, 0x0, 0x1, @relative_fd, 0x5}, 0x96) sendmsg$auto_ETHTOOL_MSG_RINGS_SET(r0, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f00000001c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010027bd7000ffdbdf251000000008000900100000000c0001800800010087f6a095bcea6b6f9b3e65b37f0eaf3f9668fe04055500d0f650cdae40a1d9d887229f77fb9e552c8132726248a9a2ae1af006c74871a9eca4b5b144d717c59b732dcfdc286c02ac8d36274a4e9e5d0f35adcabd1085b41b8cf33a40f049bbcfdc0e4e3e5c4c9b1783d587c1824d6f02f9563239b676f76f69867799ea666915f57eb43122c681f318d4b144f0ebac4a77343c13682830d56127761158941f4ca825da08e0c7a7b462ae8b5cdb0c75d3772cf677812fcd4a89d9e1bdb240976682bebc3dc525a4347010e54eb84aeaaa83c301e0f71f631513e77395c1ec95129484b336334eb99caceeabcc484ab4aaadd7482835246f1785b3237d440efdcc6fc361a503b275cebff0b9c138e1669d7b5cf04117a044a47884e1f5d76c40b0e9021bf3fc3c43f3afa4cf87c7e9ad28d2aa74888a4a72371896ea2bfd0686e4c6fb5b5d83b23fa5efc39ddd", @ANYRES32=r3, @ANYBLOB], 0x28}}, 0x80000) r10 = seccomp$auto(0x7a, 0x2, &(0x7f0000000400)="879418a37b85a16f6d86dddf5238f385e7a4d1939396170e5f62f22c3cc061c6d5f2437c12ff1f3d6f8523cf10591c7833f90a1a31c146ab1a657837") sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r10, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x34, r1, 0x200, 0x70bd2a, 0x25dfdbff, {}, [@ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0x3}, @ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8, 0x8, 0x5}, @ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0x2}, @ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0x9291}]}, 0x34}, 0x1, 0x0, 0x0, 0x4001}, 0x8801) 226.252777ms ago: executing program 2 (id=3): mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000) madvise$auto(0x0, 0xffffffffffff0006, 0x17) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0) bind$auto(0x3, 0x0, 0x6a) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x9, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x65, 0x8000001f, 0x9, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0) sendmsg$auto(0xffffffffffffffff, 0x0, 0xfff) msync$auto(0x2, 0x9, 0x40) select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0x100000001, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, &(0x7f0000000280)={0x6, 0xcb}) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0xfffffdef) ioctl$auto(0xffffffffffffffff, 0x900064b5, 0xc14) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_ftrace_avail_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/available_events\x00', 0x69a002, 0x0) mmap$auto(0xfffffffffffffffd, 0x2, 0x80000000000007ec, 0x16, 0xffffffffffffffff, 0x70) unshare$auto(0x40000080) socket(0xa, 0x1, 0x100) setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b) r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x60d80, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000140)={{0x2400003, 0x1008, 0x5, 0x2, 0x4}, "0b0000007a4d30983899a7e1325b6aa2526b4fee4c23c323f3093cdcc3ccf1bf"}) 0s ago: executing program 0 (id=6): mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x3) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram13\x00', 0xe8742, 0x0) write$auto(r0, &(0x7f0000000000)='/dev/nullb0\x00', 0xb2) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x3, 0x6) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001080), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video0\x00', 0x42146, 0x0) write$auto(0x3, 0x0, 0xfdef) r4 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x400, 0x0) ioctl$auto(r4, 0x800064bc, 0x1e6) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="810b25bd7000ffdbdf251100000008000300", @ANYRES32=r5], 0x1c}, 0x1, 0x0, 0x0, 0x20000084}, 0x0) mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x80000000000000a, 0x2, 0x0) socket(0xa, 0x801, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) pipe2$auto(0x0, 0x800) open(0x0, 0x261c2, 0x84) close_range$auto(0x2, 0x8000, 0x0) r6 = socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r7 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000280)={'vcan0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r8, r7, 0x4, 0x1ff, r6, @relative_id=0x13, 0xe600}, 0xf) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.4' (ED25519) to the list of known hosts. [ 90.909537][ T5823] cgroup: Unknown subsys name 'net' [ 91.084742][ T5823] cgroup: Unknown subsys name 'cpuset' [ 91.094764][ T5823] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 93.024416][ T5823] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 95.202371][ T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 95.211518][ T51] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 95.220628][ T51] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 95.228109][ T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 95.241185][ T5842] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 95.257319][ T5842] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 95.271062][ T5842] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 95.281905][ T5842] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 95.301182][ T5842] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 95.320201][ T5838] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 95.326786][ T5843] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 95.335376][ T5843] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 95.342781][ T5838] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 95.344138][ T5843] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 95.351367][ T5838] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 95.357302][ T5843] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 95.365848][ T5838] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 95.379630][ T5838] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 95.388271][ T5839] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 95.396934][ T5838] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 96.003611][ T5840] chnl_net:caif_netlink_parms(): no params data found [ 96.087765][ T5844] chnl_net:caif_netlink_parms(): no params data found [ 96.151651][ T5832] chnl_net:caif_netlink_parms(): no params data found [ 96.254238][ T5836] chnl_net:caif_netlink_parms(): no params data found [ 96.288770][ T5840] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.296061][ T5840] bridge0: port 1(bridge_slave_0) entered disabled state [ 96.303893][ T5840] bridge_slave_0: entered allmulticast mode [ 96.311816][ T5840] bridge_slave_0: entered promiscuous mode [ 96.351937][ T5840] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.359217][ T5840] bridge0: port 2(bridge_slave_1) entered disabled state [ 96.366508][ T5840] bridge_slave_1: entered allmulticast mode [ 96.374038][ T5840] bridge_slave_1: entered promiscuous mode [ 96.488795][ T5840] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 96.502913][ T5840] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 96.518457][ T5844] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.527206][ T5844] bridge0: port 1(bridge_slave_0) entered disabled state [ 96.535014][ T5844] bridge_slave_0: entered allmulticast mode [ 96.543250][ T5844] bridge_slave_0: entered promiscuous mode [ 96.551441][ T5832] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.558603][ T5832] bridge0: port 1(bridge_slave_0) entered disabled state [ 96.565977][ T5832] bridge_slave_0: entered allmulticast mode [ 96.573547][ T5832] bridge_slave_0: entered promiscuous mode [ 96.582035][ T5832] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.589186][ T5832] bridge0: port 2(bridge_slave_1) entered disabled state [ 96.596453][ T5832] bridge_slave_1: entered allmulticast mode [ 96.604162][ T5832] bridge_slave_1: entered promiscuous mode [ 96.636438][ T5844] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.643802][ T5844] bridge0: port 2(bridge_slave_1) entered disabled state [ 96.651153][ T5844] bridge_slave_1: entered allmulticast mode [ 96.658485][ T5844] bridge_slave_1: entered promiscuous mode [ 96.697222][ T5840] team0: Port device team_slave_0 added [ 96.762800][ T5840] team0: Port device team_slave_1 added [ 96.772283][ T5832] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 96.795884][ T5836] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.803219][ T5836] bridge0: port 1(bridge_slave_0) entered disabled state [ 96.811096][ T5836] bridge_slave_0: entered allmulticast mode [ 96.818575][ T5836] bridge_slave_0: entered promiscuous mode [ 96.829471][ T5844] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 96.871086][ T5832] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 96.895067][ T5836] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.904852][ T5836] bridge0: port 2(bridge_slave_1) entered disabled state [ 96.912198][ T5836] bridge_slave_1: entered allmulticast mode [ 96.919632][ T5836] bridge_slave_1: entered promiscuous mode [ 96.929832][ T5844] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 96.940741][ T10] cfg80211: failed to load regulatory.db [ 96.953567][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 96.960608][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.987124][ T5840] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 97.044702][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 97.051753][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.078393][ T5840] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 97.093909][ T5832] team0: Port device team_slave_0 added [ 97.133378][ T5844] team0: Port device team_slave_0 added [ 97.153180][ T5832] team0: Port device team_slave_1 added [ 97.164372][ T5836] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 97.184541][ T5836] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 97.198014][ T5844] team0: Port device team_slave_1 added [ 97.319053][ T5844] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 97.326981][ T5844] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.353968][ T5844] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 97.354028][ T5838] Bluetooth: hci2: command tx timeout [ 97.367557][ T5844] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 97.377890][ T5844] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.404293][ T5844] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 97.411323][ T5838] Bluetooth: hci0: command tx timeout [ 97.426064][ T5840] hsr_slave_0: entered promiscuous mode [ 97.433287][ T5840] hsr_slave_1: entered promiscuous mode [ 97.441123][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 97.448118][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.474108][ T5832] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 97.488342][ T5836] team0: Port device team_slave_0 added [ 97.490638][ T51] Bluetooth: hci1: command tx timeout [ 97.499742][ T5838] Bluetooth: hci3: command tx timeout [ 97.502821][ T5836] team0: Port device team_slave_1 added [ 97.521336][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 97.528329][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.554895][ T5832] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 97.593562][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 97.600692][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.627212][ T5836] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 97.698297][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 97.709069][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.735780][ T5836] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 97.770151][ T5844] hsr_slave_0: entered promiscuous mode [ 97.777458][ T5844] hsr_slave_1: entered promiscuous mode [ 97.784528][ T5844] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 97.792360][ T5844] Cannot create hsr debugfs directory [ 97.902971][ T5836] hsr_slave_0: entered promiscuous mode [ 97.909555][ T5836] hsr_slave_1: entered promiscuous mode [ 97.916371][ T5836] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 97.924399][ T5836] Cannot create hsr debugfs directory [ 97.935718][ T5832] hsr_slave_0: entered promiscuous mode [ 97.942515][ T5832] hsr_slave_1: entered promiscuous mode [ 97.948881][ T5832] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 97.956595][ T5832] Cannot create hsr debugfs directory [ 98.409287][ T5840] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 98.423195][ T5840] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 98.435892][ T5840] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 98.447161][ T5840] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 98.529897][ T5844] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 98.542891][ T5844] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 98.556814][ T5844] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 98.574846][ T5844] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 98.645365][ T5832] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 98.663311][ T5832] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 98.681460][ T5832] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 98.709972][ T5832] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 98.807556][ T5836] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 98.818415][ T5836] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 98.842639][ T5836] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 98.856064][ T5836] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 98.924322][ T5840] 8021q: adding VLAN 0 to HW filter on device bond0 [ 99.008658][ T5840] 8021q: adding VLAN 0 to HW filter on device team0 [ 99.046286][ T5844] 8021q: adding VLAN 0 to HW filter on device bond0 [ 99.059560][ T994] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.067011][ T994] bridge0: port 1(bridge_slave_0) entered forwarding state [ 99.095702][ T994] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.102930][ T994] bridge0: port 2(bridge_slave_1) entered forwarding state [ 99.145752][ T5844] 8021q: adding VLAN 0 to HW filter on device team0 [ 99.176429][ T59] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.183685][ T59] bridge0: port 1(bridge_slave_0) entered forwarding state [ 99.220281][ T994] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.227509][ T994] bridge0: port 2(bridge_slave_1) entered forwarding state [ 99.243157][ T5832] 8021q: adding VLAN 0 to HW filter on device bond0 [ 99.266333][ T5836] 8021q: adding VLAN 0 to HW filter on device bond0 [ 99.333161][ T5832] 8021q: adding VLAN 0 to HW filter on device team0 [ 99.354342][ T5836] 8021q: adding VLAN 0 to HW filter on device team0 [ 99.384084][ T59] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.391303][ T59] bridge0: port 1(bridge_slave_0) entered forwarding state [ 99.405797][ T59] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.413021][ T59] bridge0: port 1(bridge_slave_0) entered forwarding state [ 99.421111][ T5838] Bluetooth: hci2: command tx timeout [ 99.433817][ T59] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.441046][ T59] bridge0: port 2(bridge_slave_1) entered forwarding state [ 99.475622][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.482819][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 99.495063][ T5838] Bluetooth: hci0: command tx timeout [ 99.570693][ T5838] Bluetooth: hci3: command tx timeout [ 99.576214][ T5838] Bluetooth: hci1: command tx timeout [ 99.829537][ T5840] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 100.004385][ T5840] veth0_vlan: entered promiscuous mode [ 100.056753][ T5840] veth1_vlan: entered promiscuous mode [ 100.085659][ T5844] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 100.176232][ T5840] veth0_macvtap: entered promiscuous mode [ 100.217943][ T5840] veth1_macvtap: entered promiscuous mode [ 100.263862][ T5844] veth0_vlan: entered promiscuous mode [ 100.313606][ T5844] veth1_vlan: entered promiscuous mode [ 100.326671][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 100.342827][ T5836] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 100.367307][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 100.387549][ T5840] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.399850][ T5840] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.409585][ T5840] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.419091][ T5840] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.440192][ T5832] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 100.552974][ T5844] veth0_macvtap: entered promiscuous mode [ 100.590274][ T5844] veth1_macvtap: entered promiscuous mode [ 100.591127][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 100.618895][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 100.657832][ T5832] veth0_vlan: entered promiscuous mode [ 100.685294][ T5836] veth0_vlan: entered promiscuous mode [ 100.713642][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 100.724420][ T5832] veth1_vlan: entered promiscuous mode [ 100.733604][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 100.734473][ T5836] veth1_vlan: entered promiscuous mode [ 100.755189][ T5844] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 100.782815][ T5844] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 100.818811][ T5844] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.828896][ T5844] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.838150][ T5844] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.847238][ T5844] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.889674][ T5840] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 100.927517][ T5832] veth0_macvtap: entered promiscuous mode [ 100.954405][ T5832] veth1_macvtap: entered promiscuous mode [ 101.013564][ T5836] veth0_macvtap: entered promiscuous mode [ 101.049043][ T5836] veth1_macvtap: entered promiscuous mode [ 101.072538][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 101.086147][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 101.128980][ T5832] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.138393][ T5832] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.149218][ T5832] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.162164][ T5832] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.222778][ T2915] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.239787][ T2915] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.253416][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 101.275032][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 101.368184][ T5836] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.394192][ T5836] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.409281][ T5836] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.419342][ T5836] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.474305][ T2915] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.492980][ T2915] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.498298][ T5838] Bluetooth: hci2: command tx timeout [ 101.571936][ T5838] Bluetooth: hci0: command tx timeout [ 101.646520][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.655316][ T5838] Bluetooth: hci1: command tx timeout [ 101.662702][ T51] Bluetooth: hci3: command tx timeout [ 101.705435][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.753917][ T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.781921][ T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.858470][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.889900][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.948526][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.986205][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.291193][ T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!! [ 102.300696][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 102.561733][ T5942] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 103.582009][ T5838] Bluetooth: hci2: command tx timeout [ 103.651287][ T5838] Bluetooth: hci0: command tx timeout [ 103.730788][ T5838] Bluetooth: hci1: command tx timeout [ 103.736270][ T5838] Bluetooth: hci3: command tx timeout [ 137.896767][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 137.903502][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 199.334338][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.340793][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 221.890530][ T5155] Bluetooth: hci2: command 0x0406 tx timeout [ 221.896624][ T5842] Bluetooth: hci0: command 0x0406 tx timeout [ 221.906229][ T51] Bluetooth: hci1: command 0x0406 tx timeout [ 221.906275][ T5155] Bluetooth: hci3: command 0x0406 tx timeout [ 254.370549][ T31] INFO: task kworker/u8:2:36 blocked for more than 143 seconds. [ 254.378265][ T31] Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 [ 254.390612][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 254.400108][ T31] task:kworker/u8:2 state:D stack:24072 pid:36 tgid:36 ppid:2 task_flags:0x4248060 flags:0x00004000 [ 254.413199][ T31] Workqueue: writeback wb_workfn (flush-8:0) [ 254.419285][ T31] Call Trace: [ 254.422735][ T31] [ 254.426022][ T31] __schedule+0x116a/0x5de0 [ 254.430736][ T31] ? save_trace+0x4e/0x380 [ 254.435222][ T31] ? blk_mq_flush_plug_list+0x145/0x600 [ 254.440894][ T31] ? __lock_acquire+0x622/0x1c90 [ 254.445929][ T31] ? __pfx___schedule+0x10/0x10 [ 254.450966][ T31] ? __blk_flush_plug+0x2f3/0x4b0 [ 254.456057][ T31] ? find_held_lock+0x2b/0x80 [ 254.460828][ T31] ? schedule+0x2d7/0x3a0 [ 254.465257][ T31] schedule+0xe7/0x3a0 [ 254.469384][ T31] io_schedule+0xbf/0x130 [ 254.474083][ T31] bit_wait_io+0x15/0xe0 [ 254.478461][ T31] __wait_on_bit+0x62/0x180 [ 254.483075][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 254.488105][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 254.493662][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 254.501978][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 254.507521][ T31] do_get_write_access+0x93d/0x1320 [ 254.516940][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 254.523068][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 254.529198][ T31] ext4_mb_mark_context+0x1db/0xd40 [ 254.536125][ T31] ? find_held_lock+0x2b/0x80 [ 254.540930][ T31] ? __pfx_ext4_mb_mark_context+0x10/0x10 [ 254.546730][ T31] ext4_mb_mark_diskspace_used+0x466/0x8c0 [ 254.552719][ T31] ? __pfx_ext4_mb_mark_diskspace_used+0x10/0x10 [ 254.559140][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 254.564602][ T31] ? ext4_mb_new_blocks+0x287e/0x4f00 [ 254.570046][ T31] ext4_mb_new_blocks+0xa5b/0x4f00 [ 254.575316][ T31] ? rcu_is_watching+0x12/0xc0 [ 254.580134][ T31] ? trace_kmalloc+0x2b/0xd0 [ 254.584810][ T31] ? __kmalloc_noprof+0x242/0x510 [ 254.589917][ T31] ? __pfx_ext4_mb_new_blocks+0x10/0x10 [ 254.595614][ T31] ? ext4_ext_search_right+0x2c7/0xba0 [ 254.602919][ T31] ? ext4_inode_to_goal_block+0x347/0x450 [ 254.608800][ T31] ext4_ext_map_blocks+0x1cc9/0x5ff0 [ 254.614479][ T31] ? stack_trace_save+0x8e/0xc0 [ 254.619385][ T31] ? __pfx_stack_trace_save+0x10/0x10 [ 254.624921][ T31] ? __pfx_ext4_ext_map_blocks+0x10/0x10 [ 254.630729][ T31] ? ext4_alloc_io_end_vec+0x2b/0x1c0 [ 254.636178][ T31] ? __pfx___might_resched+0x10/0x10 [ 254.642044][ T31] ? __pfx_down_write+0x10/0x10 [ 254.646956][ T31] ? ext4_es_lookup_extent+0xc7/0xc50 [ 254.652451][ T31] ext4_map_blocks+0x6b4/0x14b0 [ 254.657378][ T31] ? __pfx_ext4_map_blocks+0x10/0x10 [ 254.662786][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 254.668193][ T31] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 254.673985][ T31] ext4_do_writepages+0x1a2c/0x3490 [ 254.679284][ T31] ? __pfx_ext4_do_writepages+0x10/0x10 [ 254.684961][ T31] ? ext4_writepages+0x37a/0x7d0 [ 254.689959][ T31] ext4_writepages+0x37a/0x7d0 [ 254.694873][ T31] ? __pfx_ext4_writepages+0x10/0x10 [ 254.700289][ T31] ? do_writepages+0x4b7/0x600 [ 254.706359][ T31] ? __pfx_ext4_writepages+0x10/0x10 [ 254.711815][ T31] do_writepages+0x277/0x600 [ 254.716464][ T31] ? __pfx_do_writepages+0x10/0x10 [ 254.721675][ T31] ? reacquire_held_locks+0xcd/0x1f0 [ 254.727002][ T31] ? writeback_sb_inodes+0x3a4/0xf90 [ 254.732397][ T31] __writeback_single_inode+0x160/0xfb0 [ 254.738012][ T31] ? __pfx___writeback_single_inode+0x10/0x10 [ 254.744140][ T31] ? do_raw_spin_unlock+0x172/0x230 [ 254.749398][ T31] writeback_sb_inodes+0x601/0xf90 [ 254.754654][ T31] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 254.760449][ T31] ? _raw_spin_unlock+0x28/0x50 [ 254.765365][ T31] ? move_expired_inodes+0x5a0/0x850 [ 254.770968][ T31] __writeback_inodes_wb+0xf8/0x2d0 [ 254.776231][ T31] ? __pfx___writeback_inodes_wb+0x10/0x10 [ 254.782148][ T31] ? queue_io+0x3f6/0x520 [ 254.786510][ T31] wb_writeback+0x7f3/0xb70 [ 254.791143][ T31] ? __pfx_wb_writeback+0x10/0x10 [ 254.796237][ T31] ? get_nr_dirty_inodes+0x170/0x1e0 [ 254.801598][ T31] wb_workfn+0x8ca/0xbe0 [ 254.807117][ T31] ? try_to_wake_up+0x157/0x1680 [ 254.812224][ T31] ? __pfx_wb_workfn+0x10/0x10 [ 254.817036][ T31] ? rcu_is_watching+0x12/0xc0 [ 254.821851][ T31] process_one_work+0x9cf/0x1b70 [ 254.826840][ T31] ? __pfx_batadv_iv_send_outstanding_bat_ogm_packet+0x10/0x10 [ 254.834497][ T31] ? __pfx_process_one_work+0x10/0x10 [ 254.839918][ T31] ? assign_work+0x1a0/0x250 [ 254.844604][ T31] worker_thread+0x6c8/0xf10 [ 254.849250][ T31] ? __kthread_parkme+0x19e/0x250 [ 254.854560][ T31] ? __pfx_worker_thread+0x10/0x10 [ 254.859799][ T31] kthread+0x3c2/0x780 [ 254.864050][ T31] ? __pfx_kthread+0x10/0x10 [ 254.868855][ T31] ? rcu_is_watching+0x12/0xc0 [ 254.873726][ T31] ? __pfx_kthread+0x10/0x10 [ 254.878386][ T31] ret_from_fork+0x5d7/0x6f0 [ 254.883138][ T31] ? __pfx_kthread+0x10/0x10 [ 254.887794][ T31] ret_from_fork_asm+0x1a/0x30 [ 254.892720][ T31] [ 254.895898][ T31] INFO: task jbd2/sda1-8:5167 blocked for more than 143 seconds. [ 254.903672][ T31] Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 [ 254.912688][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 254.921433][ T31] task:jbd2/sda1-8 state:D stack:26664 pid:5167 tgid:5167 ppid:2 task_flags:0x240040 flags:0x00004000 [ 254.933520][ T31] Call Trace: [ 254.936806][ T31] [ 254.939790][ T31] __schedule+0x116a/0x5de0 [ 254.944393][ T31] ? find_held_lock+0x2b/0x80 [ 254.949108][ T31] ? __lock_acquire+0x622/0x1c90 [ 254.954111][ T31] ? __pfx___schedule+0x10/0x10 [ 254.959007][ T31] ? find_held_lock+0x2b/0x80 [ 254.963736][ T31] ? schedule+0x2d7/0x3a0 [ 254.968115][ T31] schedule+0xe7/0x3a0 [ 254.972286][ T31] io_schedule+0xbf/0x130 [ 254.976674][ T31] bit_wait_io+0x15/0xe0 [ 254.981051][ T31] __wait_on_bit+0x62/0x180 [ 254.985614][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 254.990672][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 254.996120][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 255.002208][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 255.007741][ T31] ? __pfx___might_resched+0x10/0x10 [ 255.014701][ T31] __wait_on_buffer+0x64/0x70 [ 255.019540][ T31] jbd2_journal_commit_transaction+0x387b/0x68f0 [ 255.026013][ T31] ? __pfx_jbd2_journal_commit_transaction+0x10/0x10 [ 255.032781][ T31] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 255.038654][ T31] ? debug_object_deactivate+0x1ec/0x3a0 [ 255.044366][ T31] ? __pfx_debug_object_deactivate+0x10/0x10 [ 255.050475][ T31] ? find_held_lock+0x2b/0x80 [ 255.055210][ T31] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 255.061115][ T31] ? rcu_is_watching+0x12/0xc0 [ 255.065936][ T31] kjournald2+0x1f4/0x760 [ 255.070349][ T31] ? __pfx_kjournald2+0x10/0x10 [ 255.075261][ T31] ? find_held_lock+0x2b/0x80 [ 255.079960][ T31] ? __pfx_autoremove_wake_function+0x10/0x10 [ 255.086187][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 255.091535][ T31] ? __kthread_parkme+0x19e/0x250 [ 255.096619][ T31] ? __pfx_kjournald2+0x10/0x10 [ 255.101574][ T31] kthread+0x3c2/0x780 [ 255.105684][ T31] ? __pfx_kthread+0x10/0x10 [ 255.110363][ T31] ? rcu_is_watching+0x12/0xc0 [ 255.116429][ T31] ? __pfx_kthread+0x10/0x10 [ 255.121144][ T31] ret_from_fork+0x5d7/0x6f0 [ 255.125784][ T31] ? __pfx_kthread+0x10/0x10 [ 255.130469][ T31] ret_from_fork_asm+0x1a/0x30 [ 255.135305][ T31] [ 255.138390][ T31] INFO: task syz.1.2:5928 blocked for more than 144 seconds. [ 255.145834][ T31] Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 [ 255.153177][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 255.161889][ T31] task:syz.1.2 state:D stack:25512 pid:5928 tgid:5928 ppid:5844 task_flags:0x440040 flags:0x00004004 [ 255.173930][ T31] Call Trace: [ 255.177229][ T31] [ 255.180171][ T31] __schedule+0x116a/0x5de0 [ 255.184775][ T31] ? __pfx___schedule+0x10/0x10 [ 255.189670][ T31] ? find_held_lock+0x2b/0x80 [ 255.194415][ T31] ? schedule+0x2d7/0x3a0 [ 255.198794][ T31] schedule+0xe7/0x3a0 [ 255.202948][ T31] io_schedule+0xbf/0x130 [ 255.207327][ T31] bit_wait_io+0x15/0xe0 [ 255.211666][ T31] __wait_on_bit+0x62/0x180 [ 255.217705][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 255.222793][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 255.228233][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 255.234288][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 255.239792][ T31] do_get_write_access+0x93d/0x1320 [ 255.245087][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 255.251230][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 255.257358][ T31] ext4_reserve_inode_write+0x1be/0x340 [ 255.263240][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 255.268770][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 255.274844][ T31] ? rcu_is_watching+0x12/0xc0 [ 255.279647][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 255.285331][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 255.290613][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 255.296327][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 255.302032][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 255.307059][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 255.312503][ T31] ext4_dirty_inode+0xd9/0x130 [ 255.318727][ T31] ? rcu_is_watching+0x12/0xc0 [ 255.323603][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 255.328675][ T31] generic_update_time+0xcf/0xf0 [ 255.333689][ T31] file_update_time+0x17d/0x1c0 [ 255.338592][ T31] ext4_page_mkwrite+0x35e/0x1760 [ 255.343707][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 255.349250][ T31] do_page_mkwrite+0x171/0x380 [ 255.354107][ T31] __handle_mm_fault+0x3829/0x5490 [ 255.359303][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 255.364868][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 255.370126][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 255.375500][ T31] handle_mm_fault+0x589/0xd10 [ 255.380427][ T31] ? __pkru_allows_pkey+0x21/0xb0 [ 255.385523][ T31] do_user_addr_fault+0x60c/0x1370 [ 255.390768][ T31] ? rcu_is_watching+0x12/0xc0 [ 255.395583][ T31] exc_page_fault+0x5c/0xb0 [ 255.400150][ T31] asm_exc_page_fault+0x26/0x30 [ 255.405061][ T31] RIP: 0033:0x7f34d2c6f262 [ 255.409522][ T31] RSP: 002b:00007fff74fe8910 EFLAGS: 00010202 [ 255.421143][ T31] RAX: 0000000000019008 RBX: 00007f34d3ae5720 RCX: 0000000000000000 [ 255.429170][ T31] RDX: 0000001b30707000 RSI: 0000000000000008 RDI: 00007f34d3ae5720 [ 255.437337][ T31] RBP: 000000000000048f R08: 00007f34d1bfb0b0 R09: 00007f34d2fa2000 [ 255.445713][ T31] R10: 00007f34d1bfb008 R11: 0000000000000016 R12: ffffffff825f7384 [ 255.453934][ T31] R13: 00007f34d2fb61f8 R14: 0000000000000100 R15: fffffffffffe7000 [ 255.462019][ T31] ? kernfs_root+0x94/0x2a0 [ 255.466577][ T31] [ 255.469605][ T31] INFO: task syz.3.5:5935 blocked for more than 144 seconds. [ 255.477036][ T31] Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 [ 255.484371][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 255.493227][ T31] task:syz.3.5 state:D stack:26280 pid:5935 tgid:5935 ppid:5840 task_flags:0x440040 flags:0x00004004 [ 255.505579][ T31] Call Trace: [ 255.508920][ T31] [ 255.511981][ T31] __schedule+0x116a/0x5de0 [ 255.516636][ T31] ? save_trace+0x4e/0x380 [ 255.521784][ T31] ? __lock_acquire+0x622/0x1c90 [ 255.526790][ T31] ? __pfx___schedule+0x10/0x10 [ 255.531735][ T31] ? find_held_lock+0x2b/0x80 [ 255.536454][ T31] ? schedule+0x2d7/0x3a0 [ 255.540918][ T31] schedule+0xe7/0x3a0 [ 255.545062][ T31] io_schedule+0xbf/0x130 [ 255.549464][ T31] bit_wait_io+0x15/0xe0 [ 255.553848][ T31] __wait_on_bit+0x62/0x180 [ 255.558516][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 255.563817][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 255.569265][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 255.575440][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 255.581021][ T31] do_get_write_access+0x93d/0x1320 [ 255.586249][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 255.592313][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 255.598444][ T31] ext4_reserve_inode_write+0x1be/0x340 [ 255.604104][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 255.609631][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 255.615723][ T31] ? rcu_is_watching+0x12/0xc0 [ 255.620586][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 255.626709][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 255.632066][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 255.637771][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 255.643522][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 255.648526][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 255.654205][ T31] ext4_dirty_inode+0xd9/0x130 [ 255.659016][ T31] ? rcu_is_watching+0x12/0xc0 [ 255.665187][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 255.670673][ T31] generic_update_time+0xcf/0xf0 [ 255.675671][ T31] file_update_time+0x17d/0x1c0 [ 255.680608][ T31] ext4_page_mkwrite+0x35e/0x1760 [ 255.685690][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 255.691280][ T31] ? inode_to_bdi+0x9e/0x160 [ 255.695915][ T31] do_page_mkwrite+0x171/0x380 [ 255.700799][ T31] __handle_mm_fault+0x3829/0x5490 [ 255.705977][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 255.711597][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 255.716883][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 255.722321][ T31] handle_mm_fault+0x589/0xd10 [ 255.727805][ T31] ? __pkru_allows_pkey+0x21/0xb0 [ 255.733189][ T31] do_user_addr_fault+0x60c/0x1370 [ 255.738374][ T31] ? rcu_is_watching+0x12/0xc0 [ 255.743234][ T31] exc_page_fault+0x5c/0xb0 [ 255.747807][ T31] asm_exc_page_fault+0x26/0x30 [ 255.752841][ T31] RIP: 0033:0x7f3469e6f262 [ 255.757323][ T31] RSP: 002b:00007ffd5c7187a0 EFLAGS: 00010202 [ 255.763515][ T31] RAX: 0000000000014008 RBX: 00007f346ace5720 RCX: 0000000000000000 [ 255.771666][ T31] RDX: 0000001b3090c000 RSI: 0000000000000008 RDI: 00007f346ace5720 [ 255.779689][ T31] RBP: 0000000000000c15 R08: 00007f34691fd058 R09: 00007f346a1a2000 [ 255.787982][ T31] R10: 00007f34691fd008 R11: 000000000000000b R12: ffffffff839e38ee [ 255.796050][ T31] R13: 00007f346a1b6118 R14: 00000000000003e9 R15: fffffffffffec000 [ 255.804155][ T31] ? debugfs_create_dir+0xee/0x5f0 [ 255.809356][ T31] [ 255.812621][ T31] INFO: task syz.2.3:5937 blocked for more than 144 seconds. [ 255.820032][ T31] Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 [ 255.828126][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 255.836907][ T31] task:syz.2.3 state:D stack:26280 pid:5937 tgid:5937 ppid:5836 task_flags:0x440040 flags:0x00004004 [ 255.848936][ T31] Call Trace: [ 255.852280][ T31] [ 255.855233][ T31] __schedule+0x116a/0x5de0 [ 255.859770][ T31] ? __pfx___schedule+0x10/0x10 [ 255.864709][ T31] ? find_held_lock+0x2b/0x80 [ 255.869436][ T31] ? schedule+0x2d7/0x3a0 [ 255.873881][ T31] schedule+0xe7/0x3a0 [ 255.878002][ T31] io_schedule+0xbf/0x130 [ 255.882446][ T31] bit_wait_io+0x15/0xe0 [ 255.886740][ T31] __wait_on_bit+0x62/0x180 [ 255.891962][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 255.896960][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 255.902843][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 255.908898][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 255.914461][ T31] do_get_write_access+0x93d/0x1320 [ 255.919717][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 255.925891][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 255.932680][ T31] ext4_reserve_inode_write+0x1be/0x340 [ 255.938487][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 255.944064][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 255.950115][ T31] ? rcu_is_watching+0x12/0xc0 [ 255.954957][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 255.960676][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 255.965905][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 255.971624][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 255.977341][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 255.982381][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 255.987816][ T31] ext4_dirty_inode+0xd9/0x130 [ 255.992707][ T31] ? rcu_is_watching+0x12/0xc0 [ 255.997519][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 256.002782][ T31] generic_update_time+0xcf/0xf0 [ 256.007757][ T31] file_update_time+0x17d/0x1c0 [ 256.012699][ T31] ext4_page_mkwrite+0x35e/0x1760 [ 256.017788][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 256.023340][ T31] do_page_mkwrite+0x171/0x380 [ 256.028157][ T31] __handle_mm_fault+0x3829/0x5490 [ 256.033876][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 256.040006][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 256.045323][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 256.050857][ T31] handle_mm_fault+0x589/0xd10 [ 256.055665][ T31] ? __pkru_allows_pkey+0x21/0xb0 [ 256.060770][ T31] do_user_addr_fault+0x60c/0x1370 [ 256.065927][ T31] ? rcu_is_watching+0x12/0xc0 [ 256.070762][ T31] exc_page_fault+0x5c/0xb0 [ 256.075311][ T31] asm_exc_page_fault+0x26/0x30 [ 256.080168][ T31] RIP: 0033:0x7fbcf1c6f262 [ 256.084668][ T31] RSP: 002b:00007fffb02fdbf0 EFLAGS: 00010202 [ 256.090801][ T31] RAX: 0000000000005008 RBX: 00007fbcf2ae5720 RCX: 0000000000000000 [ 256.098800][ T31] RDX: 0000001b3081b000 RSI: 0000000000000008 RDI: 00007fbcf2ae5720 [ 256.106834][ T31] RBP: 0000000000000310 R08: 00007fbcf0ffd058 R09: 00007fbcf1fa2000 [ 256.114990][ T31] R10: 00007fbcf0ffd008 R11: 0000000000000003 R12: ffffffff848ae8a3 [ 256.123046][ T31] R13: 00007fbcf1fb6118 R14: 0000000000000172 R15: ffffffffffffb000 [ 256.131223][ T31] ? security_d_instantiate+0x53/0x1a0 [ 256.137382][ T31] [ 256.140506][ T31] INFO: task syz.0.6:5943 blocked for more than 145 seconds. [ 256.147916][ T31] Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 [ 256.155257][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 256.164072][ T31] task:syz.0.6 state:D stack:27656 pid:5943 tgid:5943 ppid:5832 task_flags:0x440040 flags:0x00004004 [ 256.176132][ T31] Call Trace: [ 256.179437][ T31] [ 256.182443][ T31] __schedule+0x116a/0x5de0 [ 256.186985][ T31] ? __lock_acquire+0x622/0x1c90 [ 256.191999][ T31] ? __pfx___schedule+0x10/0x10 [ 256.196918][ T31] ? find_held_lock+0x2b/0x80 [ 256.201680][ T31] ? schedule+0x2d7/0x3a0 [ 256.206055][ T31] schedule+0xe7/0x3a0 [ 256.210173][ T31] io_schedule+0xbf/0x130 [ 256.214673][ T31] bit_wait_io+0x15/0xe0 [ 256.218935][ T31] __wait_on_bit+0x62/0x180 [ 256.223667][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 256.228656][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 256.234112][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 256.240432][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 256.245955][ T31] do_get_write_access+0x93d/0x1320 [ 256.251523][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 256.257553][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 256.263716][ T31] ext4_reserve_inode_write+0x1be/0x340 [ 256.269313][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 256.274862][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 256.280927][ T31] ? rcu_is_watching+0x12/0xc0 [ 256.285722][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 256.291490][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 256.296725][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 256.302510][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 256.308207][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 256.313301][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 256.318733][ T31] ext4_dirty_inode+0xd9/0x130 [ 256.323581][ T31] ? rcu_is_watching+0x12/0xc0 [ 256.328380][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 256.333649][ T31] generic_update_time+0xcf/0xf0 [ 256.338702][ T31] file_update_time+0x17d/0x1c0 [ 256.344172][ T31] ext4_page_mkwrite+0x35e/0x1760 [ 256.349253][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 256.354906][ T31] do_page_mkwrite+0x171/0x380 [ 256.359730][ T31] __handle_mm_fault+0x3829/0x5490 [ 256.364917][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 256.370514][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 256.375770][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 256.381058][ T31] handle_mm_fault+0x589/0xd10 [ 256.385859][ T31] ? __pkru_allows_pkey+0x21/0xb0 [ 256.390951][ T31] do_user_addr_fault+0x60c/0x1370 [ 256.396103][ T31] ? rcu_is_watching+0x12/0xc0 [ 256.400950][ T31] exc_page_fault+0x5c/0xb0 [ 256.405498][ T31] asm_exc_page_fault+0x26/0x30 [ 256.410442][ T31] RIP: 0033:0x7f69f8c6f262 [ 256.414892][ T31] RSP: 002b:00007ffc94adf160 EFLAGS: 00010202 [ 256.421017][ T31] RAX: 000000000000b008 RBX: 00007f69f9ae5720 RCX: 0000000000000000 [ 256.429008][ T31] RDX: 0000001b30615000 RSI: 0000000000000008 RDI: 00007f69f9ae5720 [ 256.437072][ T31] RBP: 0000000000000a3e R08: 00007f69f83ff060 R09: 00007f69f8fa2000 [ 256.445788][ T31] R10: 00007f69f83ff008 R11: 0000000000000007 R12: ffffffff89954b14 [ 256.453922][ T31] R13: 00007f69f8fb6038 R14: 00000000000001f9 R15: ffffffffffff5000 [ 256.462038][ T31] ? __rhashtable_lookup.constprop.0+0x574/0x760 [ 256.468449][ T31] [ 256.471583][ T31] [ 256.471583][ T31] Showing all locks held in the system: [ 256.479390][ T31] 1 lock held by khungtaskd/31: [ 256.484314][ T31] #0: ffffffff8e3c4b40 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0 [ 256.494270][ T31] 7 locks held by kworker/u8:2/36: [ 256.499382][ T31] #0: ffff88801fafd948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70 [ 256.510274][ T31] #1: ffffc90000ac7d10 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70 [ 256.522256][ T31] #2: ffff8880332aa0e0 (&type->s_umount_key#31){++++}-{4:4}, at: super_trylock_shared+0x1e/0xf0 [ 256.532919][ T31] #3: ffff8880332acb98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x277/0x600 [ 256.543329][ T31] #4: ffff8880332ae950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 256.553933][ T31] #5: ffff8880774c3bd0 (&ei->i_data_sem){++++}-{4:4}, at: ext4_map_blocks+0x5b6/0x14b0 [ 256.563841][ T31] #6: ffffe8ffffd1e878 (&lg->lg_mutex){+.+.}-{4:4}, at: ext4_mb_initialize_context+0x81c/0xdf0 [ 256.574443][ T31] 2 locks held by getty/5598: [ 256.579151][ T31] #0: ffff88814c45a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 256.589004][ T31] #1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0 [ 256.599258][ T31] 3 locks held by syz-executor/5823: [ 256.604615][ T31] #0: ffff888077ef0448 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 256.614104][ T31] #1: ffff8880332aa520 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 256.623745][ T31] #2: ffff8880332ae950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 256.633502][ T31] 3 locks held by syz.1.2/5928: [ 256.638384][ T31] #0: ffff8880781381c8 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 256.649378][ T31] #1: ffff8880332aa520 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 256.659069][ T31] #2: ffff8880332ae950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 256.668871][ T31] 3 locks held by syz.3.5/5935: [ 256.673838][ T31] #0: ffff888025dd1948 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 256.683254][ T31] #1: ffff8880332aa520 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 256.693012][ T31] #2: ffff8880332ae950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 256.702770][ T31] 3 locks held by syz.2.3/5937: [ 256.707641][ T31] #0: ffff88807793b588 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 256.717066][ T31] #1: ffff8880332aa520 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 256.726689][ T31] #2: ffff8880332ae950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 256.736354][ T31] 3 locks held by syz.0.6/5943: [ 256.741298][ T31] #0: ffff8880359f8308 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 256.751245][ T31] #1: ffff8880332aa520 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 256.760870][ T31] #2: ffff8880332ae950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 256.770752][ T31] [ 256.773105][ T31] ============================================= [ 256.773105][ T31] [ 256.781598][ T31] NMI backtrace for cpu 0 [ 256.781624][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) [ 256.781655][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 256.781671][ T31] Call Trace: [ 256.781679][ T31] [ 256.781689][ T31] dump_stack_lvl+0x116/0x1f0 [ 256.781720][ T31] nmi_cpu_backtrace+0x27b/0x390 [ 256.781758][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 256.781796][ T31] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 256.781838][ T31] watchdog+0xf70/0x12c0 [ 256.781890][ T31] ? __pfx_watchdog+0x10/0x10 [ 256.781930][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 256.781975][ T31] ? __kthread_parkme+0x19e/0x250 [ 256.782012][ T31] ? __pfx_watchdog+0x10/0x10 [ 256.782053][ T31] kthread+0x3c2/0x780 [ 256.782093][ T31] ? __pfx_kthread+0x10/0x10 [ 256.782137][ T31] ? rcu_is_watching+0x12/0xc0 [ 256.782167][ T31] ? __pfx_kthread+0x10/0x10 [ 256.782217][ T31] ret_from_fork+0x5d7/0x6f0 [ 256.782251][ T31] ? __pfx_kthread+0x10/0x10 [ 256.782289][ T31] ret_from_fork_asm+0x1a/0x30 [ 256.782350][ T31] [ 256.782360][ T31] Sending NMI from CPU 0 to CPUs 1: [ 256.901324][ C1] NMI backtrace for cpu 1 [ 256.901340][ C1] CPU: 1 UID: 0 PID: 49 Comm: kworker/u8:3 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) [ 256.901367][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 256.901381][ C1] Workqueue: events_unbound nsim_dev_trap_report_work [ 256.901416][ C1] RIP: 0010:consume_skb+0x2b/0x100 [ 256.901442][ C1] Code: 0f 1e fa 41 54 55 53 48 89 fb e8 90 d8 6b f8 48 85 db 74 4d 4c 8d a3 e4 00 00 00 bd ff ff ff ff e8 7a d8 6b f8 be 04 00 00 00 <4c> 89 e7 e8 ed a6 d1 f8 f0 0f c1 ab e4 00 00 00 31 ff 89 ee e8 9c [ 256.901463][ C1] RSP: 0018:ffffc90000b97b80 EFLAGS: 00000293 [ 256.901479][ C1] RAX: 0000000000000000 RBX: ffff888033f4aa00 RCX: 0000000000000006 [ 256.901493][ C1] RDX: ffff888022edbc00 RSI: 0000000000000004 RDI: ffff888033f4aa00 [ 256.901506][ C1] RBP: 00000000ffffffff R08: 0000000000000001 R09: 0000000000000001 [ 256.901519][ C1] R10: ffffffff90883657 R11: 0000000000000001 R12: ffff888033f4aae4 [ 256.901532][ C1] R13: ffffffff8c4ff61c R14: dffffc0000000000 R15: 0000000000000000 [ 256.901545][ C1] FS: 0000000000000000(0000) GS:ffff888124a62000(0000) knlGS:0000000000000000 [ 256.901564][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 256.901586][ C1] CR2: 000055f1ead1c2a8 CR3: 000000003573e000 CR4: 00000000003526f0 [ 256.901600][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 256.901612][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 256.901625][ C1] Call Trace: [ 256.901631][ C1] [ 256.901641][ C1] nsim_dev_trap_report_work+0x8bd/0xcf0 [ 256.901680][ C1] process_one_work+0x9cf/0x1b70 [ 256.901719][ C1] ? __pfx_batadv_nc_worker+0x10/0x10 [ 256.901752][ C1] ? __pfx_process_one_work+0x10/0x10 [ 256.901790][ C1] ? assign_work+0x1a0/0x250 [ 256.901821][ C1] worker_thread+0x6c8/0xf10 [ 256.901861][ C1] ? __pfx_worker_thread+0x10/0x10 [ 256.901894][ C1] kthread+0x3c2/0x780 [ 256.901924][ C1] ? __pfx_kthread+0x10/0x10 [ 256.901954][ C1] ? rcu_is_watching+0x12/0xc0 [ 256.901976][ C1] ? __pfx_kthread+0x10/0x10 [ 256.902006][ C1] ret_from_fork+0x5d7/0x6f0 [ 256.902035][ C1] ? __pfx_kthread+0x10/0x10 [ 256.902065][ C1] ret_from_fork_asm+0x1a/0x30 [ 256.902095][ C1] [ 256.903004][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 257.129452][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) [ 257.140943][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 257.151041][ T31] Call Trace: [ 257.154347][ T31] [ 257.157291][ T31] dump_stack_lvl+0x3d/0x1f0 [ 257.161909][ T31] panic+0x71c/0x800 [ 257.165830][ T31] ? __pfx_panic+0x10/0x10 [ 257.170277][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 257.175686][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 257.181693][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 257.187091][ T31] ? watchdog+0xdda/0x12c0 [ 257.191580][ T31] ? watchdog+0xdcd/0x12c0 [ 257.196027][ T31] watchdog+0xdeb/0x12c0 [ 257.200301][ T31] ? __pfx_watchdog+0x10/0x10 [ 257.205006][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 257.210245][ T31] ? __kthread_parkme+0x19e/0x250 [ 257.215307][ T31] ? __pfx_watchdog+0x10/0x10 [ 257.220008][ T31] kthread+0x3c2/0x780 [ 257.224103][ T31] ? __pfx_kthread+0x10/0x10 [ 257.228717][ T31] ? rcu_is_watching+0x12/0xc0 [ 257.233493][ T31] ? __pfx_kthread+0x10/0x10 [ 257.238122][ T31] ret_from_fork+0x5d7/0x6f0 [ 257.242742][ T31] ? __pfx_kthread+0x10/0x10 [ 257.247394][ T31] ret_from_fork_asm+0x1a/0x30 [ 257.252203][ T31] [ 257.255569][ T31] Kernel Offset: disabled [ 257.259908][ T31] Rebooting in 86400 seconds..