last executing test programs: 47.398209083s ago: executing program 3 (id=8845): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x40009, 0x1ff, 0x9b72, 0x7, 0x28000) setreuid$auto(0x0, 0x20000000004) socket(0x2b, 0x1, 0x1) getsockopt$auto(0x4, 0x6, 0x2a, 0x83bf, 0x6) socket(0x18, 0x5, 0x2) 47.093454603s ago: executing program 3 (id=8848): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x3ff, 0x3) close_range$auto(0x2, 0x8000, 0x0) pselect6$auto(0x5, 0x5, 0x5, 0x7, 0x0, 0x0) futex$auto(0x9, 0x2, 0x80000001, 0x400000000002, 0xef, 0x9) r0 = socket(0x22, 0x3, 0x6) r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000140), 0xffffffffffffffff) eventfd$auto(0x7) write$auto(0x3, 0x0, 0x81) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) clock_gettime$auto(0xb, 0x3) read$auto(0x3, 0x0, 0x80) sendmsg$auto_NBD_CMD_CONNECT158(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYRES8=r1, @ANYRESDEC=r0, @ANYRESDEC=r0, @ANYRESOCT=0x0, @ANYRES16=r1], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x8085) 46.897745011s ago: executing program 3 (id=8851): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f00000006c0), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_CONNECT158(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002ebd7000fbfbdf250100309d819803008b0c000000000000040007000c00020005000000000000000c000400fcab00000000000015ac75429cef106712e379e8f510aab96b4826f760abb325c750bdb8f57ec540844db8b563bc398aa9733710cfea9d1b42c4de0b814da4bbe6c0c76deb85b513dd14e0a4e74899a25e086fbbe059339273c1bafa8ca672a23d5b0037b1cff70e55aea698a8e8b476ef54f2ae73cae37f8a"], 0x3c}, 0x1, 0x0, 0x0, 0x4000090}, 0x4000800) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x3ff, 0x3) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_IOAM6(&(0x7f0000000540), 0xffffffffffffffff) sendmsg$auto_IOAM6_CMD_NS_SET_SCHEMA115(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="0127bd4724ca3bdd990006"], 0x1c}, 0x1, 0x0, 0x0, 0x804}, 0x40000) sendmsg$auto_IOAM6_CMD_NS_SET_SCHEMA115(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r5, 0x200, 0x70bd28, 0x25dfdbfb, {}, [@IOAM6_ATTR_SC_ID={0x8, 0x4, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40095}, 0x40) statmount$auto(0x7, 0x9, 0x0, 0x0) sendmsg$auto_SMC_PNETID_ADD421(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="010027bd7000fedbdf25020000000d00010009"], 0x24}, 0x1, 0x0, 0x0, 0x8840}, 0x10) sendmsg$auto_SMC_PNETID_DEL422(r2, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x64, 0x0, 0x10, 0x70bd2b, 0x25dfdbfb, {}, [@SMC_PNETID_IBPORT={0x5, 0x4, 0x3}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x81}, @SMC_PNETID_NAME={0xb, 0x1, 'TIPCv2\x00'}, @SMC_PNETID_IBPORT={0x5}, @SMC_PNETID_IBNAME={0x6, 0x3, '#\x00'}, @SMC_PNETID_IBNAME={0xb, 0x3, 'TIPCv2\x00'}, @SMC_PNETID_NAME={0x5, 0x1, '\x00'}, @SMC_PNETID_NAME={0x5, 0x1, '\x00'}, @SMC_PNETID_NAME={0x5, 0x1, '\x00'}]}, 0x64}}, 0x40011) close_range$auto(0x2, 0x8000, 0x0) syz_genetlink_get_family_id$auto_TIPCv2(&(0x7f0000000000), r0) mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x8, 0x7) timerfd_settime$auto(0x7a, 0xffff, 0x7fff, 0x0) socket(0x18, 0x3, 0x9ef) socket(0x25, 0x4, 0x0) mmap$auto(0x400000000000, 0x20009, 0x7, 0xeb1, 0x401, 0x8000) mlockall$auto(0x7) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) semctl$auto(0x1ff, 0x2, 0x13, 0x4) mq_open$auto(0x7, 0x1, 0x3, 0x5) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x10000, 0xf9) getsockopt$auto(0x6, 0x40000000029, 0x19, 0x9, 0x6) 46.667104647s ago: executing program 0 (id=8852): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x27ffe) mincore$auto(0x0, 0x8000000000005b, 0x2) bpf$auto(0x800000000000001d, 0x9, 0x9) 46.383902012s ago: executing program 0 (id=8855): socket(0x1, 0x2, 0x0) socket(0x2b, 0x1, 0x1) socket$nl_generic(0x10, 0x3, 0x10) fcntl$auto(0x4, 0x4, 0xa553) mmap$auto(0x0, 0x9, 0xdf, 0x9b72, 0x2, 0x8000) semctl$auto(0x1ff, 0x2, 0x13, 0x4) pselect6$auto(0x6, 0x5, 0x5, 0x7, 0xba, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080)) fcntl$auto(0x300000400000000, 0xffff, 0x80000001) getdents$auto(0x600000000, 0x3, 0xd00) pidfd_open$auto(0x90, 0x1c0) 46.05253858s ago: executing program 0 (id=8857): mmap$auto(0x0, 0xfffffffffffffffa, 0x1000000004, 0x80009b72, 0x10000000000006, 0x8000) mmap$auto(0x0, 0x8, 0x1000000004, 0x19b72, 0x2, 0x8000) r0 = getpid() getrandom$auto(0x204c243c, 0x20000, 0x5) mmap$auto(0x0, 0xe, 0x8d1f, 0x30, 0x80000001, 0x6) mmap$auto(0x6b, 0x6, 0xfffffffffffffffc, 0x14, 0x9, 0x1) syz_open_procfs$namespace(r0, &(0x7f0000000000)='ns/pid\x00') 45.763167736s ago: executing program 0 (id=8860): fcntl$auto(0x2, 0x2, 0x80000001) close_range$auto(0x0, 0xffefffffffffeffc, 0x104000000000002) fanotify_init$auto(0x4, 0x2000000002) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x402, 0x8000) r0 = socket(0x11, 0x80003, 0x300) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x2, 0x28000) socket(0x2, 0xa, 0xe57a) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$auto(0x3, 0x800005411, 0x38) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_MAC80211_HWSIM(&(0x7f0000000200), r1) sendmsg$auto_HWSIM_CMD_REGISTER80(r1, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000240)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB='\x00\x00\x00\x00'], 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000000) r3 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000040), r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', 0x0}) sendmsg$auto_BATADV_CMD_GET_BLA_CLAIM2(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="fff2471e401ad5df10dbb10e22a77bd0c503b84837698461c2e536325dba7d8ba72cc42b591414cc7999d35701cc0998b5e5d9ce75bae9f9d2c03fa0a7cfc331739b5e940a728e6b6b89435131476a706b3d86309e13d8b854ac218b26d077f8f95bcbc0d2ba96ba26319c81da8b4155ac62eaadac353da4", @ANYRES16=r3, @ANYBLOB="000329bd7000ffdbdf250b00000008000300", @ANYRES32=r4, @ANYBLOB="05003000000000000500290000000000"], 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x40001) syz_genetlink_get_family_id$auto_TASKSTATS(0x0, 0xffffffffffffffff) setsockopt$auto(0x3, 0x1, 0x8, 0x6, 0x7b4) r5 = socket(0x10, 0x2, 0x0) sendmsg$auto_ETHTOOL_MSG_FEC_SET37(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x20040010}, 0x44) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) get_robust_list$auto(0x1, 0x3f8, 0x9) mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x9c8, 0xa, 0x2) mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) socket(0xa, 0x3, 0x6) statx$auto(0x94b, 0xaa5, 0x401, 0xfffffffffffffffd, 0xfff) setsockopt$auto(0x3, 0x29, 0x1b, 0xe33, 0x90) socket(0x21, 0x2, 0xa) dup2$auto(0x0, 0x3) socket(0x2, 0x1, 0x0) 45.186591492s ago: executing program 0 (id=8862): socket$nl_generic(0x10, 0x3, 0x10) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x27f1) close_range$auto(0x6, 0xb0, 0x6) (async) inotify_init$auto() socket(0x15, 0x5, 0x0) (async) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async) process_mrelease$auto(0x24d, 0xd) (async) signalfd$auto(0x7fffffffffffffff, 0xc, 0x8) semctl$auto(0x1ff, 0x2, 0x13, 0x4) (async) pselect6$auto(0x6, 0x5, 0x5, 0x7, 0xba, 0x0) close_range$auto(0x8, 0xb44d, 0x7) shutdown$auto(0x5, 0x2) (async, rerun: 32) splice$auto(0x4, 0x0, 0x2, 0x0, 0x1000, 0xf) (rerun: 32) close_range$auto(0x3, 0x6, 0x200) 44.113911013s ago: executing program 0 (id=8864): clock_nanosleep$auto(0x5, 0xb, 0x7, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) move_pages$auto(0x1, 0x2000000000003, 0xff, 0x0, 0x1, 0x8000000000000000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x4, 0x2) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x3ff, 0x3) mmap$auto(0x8000000000000000, 0x8, 0x2ab, 0x11, 0x1000, 0x1) io_uring_register$auto(0x100000001, 0xd, 0x1006, 0x20) semctl$auto(0x8000000000000000, 0x92e, 0x2, 0x929) 43.456814221s ago: executing program 3 (id=8866): mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) vfork$auto() exit$auto(0x2) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) open(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00', 0x121342, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/cgroup\x00') r1 = socket(0x2, 0x1, 0x106) mmap$auto(0xf000, 0x8, 0x1000000003, 0x9b72, 0x2, 0x8000) sendmsg$auto_CGROUPSTATS_CMD_GET19(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0}, 0x1, 0x0, 0x0, 0x40014}, 0x20004080) sendfile$auto(0x3, 0x3, 0x0, 0x2) memfd_create$auto(0x5, 0xf) socket(0x22, 0x2, 0x24) open(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00', 0x121342, 0x0) sendfile$auto(0x6, 0x3, 0x0, 0xc01) syz_genetlink_get_family_id$auto_tcp_metrics(0x0, 0xffffffffffffffff) r2 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000040), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_GTP_CMD_GETPDP70(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002bbd7000fcdbdf2502000000080001000000000008000200ff7f0000080007"], 0x2c}, 0x1, 0x0, 0x0, 0x4000884}, 0x200040d4) r4 = socket$nl_generic(0x10, 0x3, 0x10) remap_file_pages$auto(0x6, 0xb2c3, 0x0, 0xfffffffffffffff9, 0x3) r5 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000005980), 0xffffffffffffffff) sendmsg$auto_OVS_VPORT_CMD_SET398(r4, &(0x7f0000005a40)={0x0, 0x0, &(0x7f0000005a00)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01002cd97000fedbdf2504000000080001000400000008000800156699ef", @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x4f6ee205c09ed06}, 0x20000000) r6 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000040), r0) prctl$auto(0x4, 0x7ff, 0x2, 0x8000000000000000, 0x703b) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'batadv_slave_0\x00'}) sendmsg$auto_BATADV_CMD_GET_BLA_BACKBONE1(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, r6, 0x789, 0x70bd25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x48004}, 0x24000044) 41.936482183s ago: executing program 3 (id=8870): mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000) semctl$auto(0x1ff, 0x2, 0x13, 0x1) io_uring_setup$auto(0xffffffffffffffff, 0x7) arch_prctl$auto(0x1003, 0x8000000000000001) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) mmap$auto(0x8000000000000000, 0xffffffffffffffff, 0xfffffffffffffffc, 0x50, 0x5, 0x10001) fanotify_init$auto(0x65, 0x2) mmap$auto(0x0, 0x9, 0x7fffffffffffffff, 0x8b72, 0x2, 0x8000) io_uring_setup$auto(0x48, 0x10) io_uring_register$auto(0x100000001, 0x0, 0xa, 0x8) clone$auto(0x7, 0x7fffffffffffffff, 0xfffffffffffffffa, 0x6, 0x1) 41.684709726s ago: executing program 3 (id=8871): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0xa, 0x2, 0x0) mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0x2000000000003, 0xff, 0x0, 0x1, 0x8000000000000000) setsockopt$auto(0x3, 0x88, 0x1, 0x633, 0x9) socket$nl_generic(0x10, 0x3, 0x10) semctl$auto(0x1ff, 0x2, 0x13, 0x4) pselect6$auto(0x5, 0x5, 0x5, 0x7, 0x0, 0x0) syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000040), 0xffffffffffffffff) mbind$auto(0x0, 0x91d2, 0x4, 0xe8a5, 0x6, 0x2) clone$auto(0x7, 0xd281, 0x6, 0x0, 0x1ff) 25.323435487s ago: executing program 2 (id=8914): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) futimesat$auto(0xbc, 0xffffffffffffffef, 0x3) fstatfs$auto(0x3, 0x8) set_mempolicy$auto(0x6, 0x9, 0xf) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) lsm_list_modules$auto(0x1, 0x6, 0x0) bpf$auto(0x5, 0x1, 0x504) 24.602205617s ago: executing program 2 (id=8915): mmap$auto(0x8, 0x88, 0xb, 0x9b76, 0x2, 0x8000) memfd_create$auto(0x5, 0xf) syz_open_procfs$namespace(0x0, 0x0) fstatfs$auto(0x6, 0x2) mprotect$auto(0x9d31, 0x5, 0x85a2) r0 = socket(0x2, 0x3, 0x6) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) 23.6201031s ago: executing program 2 (id=8916): mmap$auto(0x0, 0x7, 0xdf, 0x9b72, 0x2, 0x8000) semctl$auto(0x8, 0x2, 0x13, 0x9) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socket$nl_generic(0x10, 0x3, 0x10) epoll_create$auto(0x4) ioctl$auto(0x3, 0x40088a01, 0xfffffffffffff4e0) bind$auto(0x452d, 0xf8, 0x0) memfd_create$auto(0x5, 0xf) fchmodat2$auto(0x7, 0xff, 0x4, 0x1000) connect$auto(0x10000, 0x7, 0x7) close_range$auto(0x0, 0xfffffffffffff000, 0x2) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) prlimit64$auto(0x1, 0x9, 0x3, 0x1) syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/cgroup\x00') r0 = socket$nl_generic(0x10, 0x3, 0x10) setresuid$auto(0x0, 0x8, 0x8000) ioctl$sock_SIOCGIFINDEX(r0, 0x8927, &(0x7f0000000040)={'pim6reg1\x00'}) bpf$auto(0x16, 0x5, 0x0) time$auto(0x20000009) sysfs$auto(0x0, 0x4186, 0x1) timer_create$auto(0x2, 0x2, 0x8a) 21.846631369s ago: executing program 2 (id=8919): socket(0x2, 0x2, 0x1) (async) dup2$auto(0x0, 0x3) (async) dup2$auto(0x5, 0x3) (async) semctl$auto(0x7, 0x3, 0x5, 0xe0dc) 21.111621912s ago: executing program 2 (id=8920): futex$auto(0x20000200, 0x8, 0x7, 0x4d77, 0x70, 0x7fffffffffffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0xfffffffffffffffa, 0x4, 0xda, 0x15, 0x8, 0xfffffffffffffffb) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffffffffff0001, 0x15) sendmsg$auto_HWSIM_CMD_NEW_RADIO79(0xffffffffffffffff, 0x0, 0x4004) futex$auto(0x20000700, 0x8, 0x7, 0x4d77, 0x70, 0x7fffffffffffffff) getrusage$auto(0x7fffffffffffffff, 0xb) mmap$auto(0x0, 0x40008, 0x1000000004, 0x9b72, 0x2, 0x8000) mmap$auto(0xf000, 0x8, 0x1000000003, 0x9b72, 0x2, 0x8000) mmap$auto(0xf000, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) open(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00', 0x121342, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) open(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00', 0x121342, 0x0) semctl$auto(0x80001ff, 0x804, 0x13, 0x4) keyctl$auto(0x1, 0x7, 0x100, 0x8, 0x4) getsockopt$auto(0x200, 0x6, 0x2, 0x6, 0x8) madvise$auto(0x0, 0xffffffffffff0005, 0x19) clone$auto(0x4, 0x400, 0x9, 0x2, 0xd1) mmap$auto(0x1887, 0x7, 0x5, 0x16, 0x2, 0x2) mmap$auto(0x0, 0x40009, 0xdb, 0x9b72, 0x7, 0x28000) 14.775197917s ago: executing program 2 (id=8928): r0 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1d, 0x2, 0x6) recvfrom$auto(0x4, 0x5634, 0xffffffff, 0x3f9, 0x2, 0x9) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_MODULE_FW_FLASH_ACT46(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="012b6c80e4513db972f7490025bd0700000000250c"], 0x14}, 0x1, 0x0, 0x0, 0x8005}, 0x0) 2.955435676s ago: executing program 1 (id=8947): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8927, &(0x7f0000000040)={'pim6reg1\x00'}) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x27f1) getpeername$auto(0x800000000003, 0x8000bb3d, 0x9) 2.628867208s ago: executing program 1 (id=8948): mmap$auto(0x0, 0x9a, 0x4, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) request_key$auto(0x8, 0x6, 0x8, 0x6) clock_nanosleep$auto(0x7, 0x6, 0x0, 0x8) madvise$auto(0x0, 0x3, 0x4) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r0 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) lstat$auto(0x20000000, 0x3) r1 = socket(0x2, 0x1, 0x106) sendmsg$auto_NL802154_CMD_NEW_SEC_DEVKEY335(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x4c010}, 0x24000000) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'gretap0\x00'}) sendmsg$auto_OVS_DP_CMD_NEW384(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010028bd7000fddbdf2501000000060001002d0000000800070005000000210001000032c2f865000059f9c9b8a12d13f868d3aadd6ae102c0d0cec649e28800000008000200030000000a0001002d2b5e875d00000008002200000000000500010000000000"], 0x6c}, 0x1, 0x0, 0x0, 0x40a4}, 0x4004) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ipvlan0\x00', 0x0}) sendmsg$auto_OVS_DP_CMD_NEW384(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="6a000a79db0550", @ANYRES16=r3, @ANYBLOB="000427bd7000ffdbdf25010000000b0001006e732f6970630000080005000180ffff0b0001006e732f697063000008000500f5de000008000200e308000008000900", @ANYRES32=r4, @ANYBLOB="08000500010000000800070001000080"], 0x5c}, 0x1, 0x0, 0x0, 0x20000000}, 0x4040) syz_open_procfs$namespace(0x0, &(0x7f00000014c0)='ns/ipc\x00') 1.583772436s ago: executing program 1 (id=8949): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0xfffffffffffffffe, 0x7, 0x9, 0x9b72, 0x7, 0x7ffe) personality$auto(0x40004010410ffc) shmctl$auto(0xfffffffffffffff9, 0x1, 0x7fffffffffffffff) mmap$auto(0xf000, 0x8, 0x1000000003, 0x9b72, 0x2, 0x8000) socket(0x1, 0x2, 0x0) ioperm$auto(0x3b, 0xf99b, 0x6) umask$auto(0x101) setsockopt$auto(0x6, 0x1, 0x43, 0x480b, 0x800000) 1.462719451s ago: executing program 1 (id=8950): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) socket(0x2, 0x1, 0x106) madvise$auto(0x0, 0xffffffffffff0005, 0x19) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0x23, 0x2, 0x0) sendmsg$auto_TCP_METRICS_CMD_GET427(r0, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x7feb7afaaf532465}, 0x4c, &(0x7f00000002c0)={&(0x7f0000000240)={0x4c, 0x0, 0x100, 0x70bd2a, 0x25dfdbfd, {}, [@TCP_METRICS_ATTR_SADDR_IPV4={0x8, 0xb, @rand_addr=0x64010102}, @TCP_METRICS_ATTR_ADDR_IPV6={0x14, 0x2, @mcast2}, @TCP_METRICS_ATTR_SADDR_IPV4={0x8, 0xb, @broadcast}, @TCP_METRICS_ATTR_ADDR_IPV6={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000801}, 0x40) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0xf000, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) utimes$auto(0x6, 0x4b38) mseal$auto(0x8000, 0x7, 0x0) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0xf000, 0x8, 0x1000000003, 0x9b72, 0x2, 0x8000) open_by_handle_at$auto(0x0, 0x2, 0x3) mmap$auto(0xf000, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x3ff, 0x3) io_uring_register$auto(0x100000001, 0x1b, 0x5944, 0x1) socket(0xa, 0x2, 0x0) setsockopt$auto(0x3, 0x0, 0x30, 0xe33, 0xa206) setsockopt$auto(0x5, 0x1, 0x4b, 0x4809, 0x9) 150.988968ms ago: executing program 1 (id=8951): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioprio_set$auto(0x1, 0x0, 0x0) ioprio_get$auto(0x2000000002, 0x0) r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000040), 0xffffffffffffffff) mmap$auto(0x1, 0x0, 0x0, 0x15, 0x0, 0x8001) mmap$auto(0xe095, 0x1707, 0x4000000000df, 0xeb1, 0x401, 0x101) semctl$auto(0x1ff, 0x2, 0x13, 0x4) bpf$auto(0x10, 0x5, 0x8) sendmsg$auto_OVS_FLOW_CMD_GET387(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)={0x14, r1, 0x1, 0x70bd27, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000015}, 0x8b0) 0s ago: executing program 1 (id=8952): setregid$auto(0xffffffffffffffff, 0xffffffff) mmap$auto(0x0, 0x4, 0x4004000000df, 0x40eb2, 0x402, 0xb00000000000) write$auto(0x800000000000c8, 0x9, 0x8) ioperm$auto(0x2, 0x3, 0x1) close_range$auto(0x200, 0x431b6, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x0, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x0, 0x2, 0x9b72, 0x7, 0x28000) mincore$auto(0x0, 0x8000000000005b, 0x2) close_range$auto(0x0, 0xfffffffffffff000, 0x2) syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid_for_children\x00') r1 = socket(0x25, 0x1, 0x3a) socket(0xa, 0x2, 0x88) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) getrlimit$auto(0x2, 0x4) setsockopt$auto(0x3, 0x29, 0x4c, 0x2, 0x4) ioctl$auto(0x1, 0x890b, 0x8) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) r2 = syz_genetlink_get_family_id$auto_MAC80211_HWSIM(&(0x7f0000000080), r1) sendmsg$auto_HWSIM_CMD_FRAME77(r0, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="30010000", @ANYRES16=r2, @ANYBLOB="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"], 0x138}, 0x1, 0x0, 0x0, 0x4000081}, 0x0) open(&(0x7f0000000800)='./file0\x00', 0xaf44529eb48add62, 0x154) msgrcv$auto(0x6dab, 0xff, 0x7, 0xb, 0x3) userfaultfd$auto(0x1) r3 = getpid() syz_open_procfs$namespace(r3, &(0x7f00000000c0)='ns/cgroup\x00') execveat$auto(0x0, 0x8, 0x7, 0xe3a, 0x1000) clone$auto(0x3b46, 0x6, 0x20000048, 0x0, 0x10) get_mempolicy$auto(0x9, 0x5, 0xde, 0xffffffffffffffff, 0x3) get_mempolicy$auto(0x2, 0x5, 0x7, 0x3, 0x479716c7) kernel console output (not intermixed with test programs): 249 > 4 [ 2026.986986][T15351] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 2026.996042][T15351] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 2027.928419][T10313] delete_channel: no stack [ 2028.602138][ T6515] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2028.634193][ T6515] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2028.658575][ T6515] bond0 (unregistering): Released all slaves [ 2029.097478][ T5237] Bluetooth: hci1: command tx timeout [ 2029.932898][ T6515] hsr_slave_0: left promiscuous mode [ 2029.975056][ T6515] hsr_slave_1: left promiscuous mode [ 2030.014341][ T6515] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 2030.039261][ T6515] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 2030.098238][ T6515] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 2030.117249][ T6515] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 2030.250250][ T6515] veth1_macvtap: left promiscuous mode [ 2030.255863][ T6515] veth0_macvtap: left promiscuous mode [ 2030.277010][ T6515] veth1_vlan: left promiscuous mode [ 2030.291553][ T6515] veth0_vlan: left promiscuous mode [ 2031.177264][ T5237] Bluetooth: hci1: command tx timeout [ 2031.559050][ T6515] team0 (unregistering): Port device team_slave_1 removed [ 2031.610332][T10417] netlink: 'syz.0.7928': attribute type 11 has an invalid length. [ 2031.675032][ T6515] team0 (unregistering): Port device team_slave_0 removed [ 2032.966574][T10293] chnl_net:caif_netlink_parms(): no params data found [ 2033.256749][ T5237] Bluetooth: hci1: command tx timeout [ 2033.430137][T10293] bridge0: port 1(bridge_slave_0) entered blocking state [ 2033.458004][T10293] bridge0: port 1(bridge_slave_0) entered disabled state [ 2033.486090][T10293] bridge_slave_0: entered allmulticast mode [ 2033.499676][T10293] bridge_slave_0: entered promiscuous mode [ 2033.539545][T10293] bridge0: port 2(bridge_slave_1) entered blocking state [ 2033.569124][T10293] bridge0: port 2(bridge_slave_1) entered disabled state [ 2033.587485][T10293] bridge_slave_1: entered allmulticast mode [ 2033.608702][T10293] bridge_slave_1: entered promiscuous mode [ 2033.753252][T10293] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2033.791090][T10293] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2033.905326][T10293] team0: Port device team_slave_0 added [ 2033.944130][T10293] team0: Port device team_slave_1 added [ 2034.018041][T10293] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 2034.025026][T10293] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2034.092345][T10293] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 2034.126994][T10293] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 2034.137033][T10293] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2034.206066][T10293] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 2034.445790][T10293] hsr_slave_0: entered promiscuous mode [ 2034.456210][T10293] hsr_slave_1: entered promiscuous mode [ 2034.474627][T10293] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 2034.483716][T10293] Cannot create hsr debugfs directory [ 2035.233921][T10500] delete_channel: no stack [ 2035.274633][T10498] delete_channel: no stack [ 2035.337758][ T5237] Bluetooth: hci1: command tx timeout [ 2036.411983][T10293] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 2036.461176][T10293] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 2036.475808][T10553] netlink: 2 bytes leftover after parsing attributes in process `syz.2.7957'. [ 2036.502578][T10293] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 2036.549910][T10293] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 2036.975203][T10293] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2037.039727][T10293] 8021q: adding VLAN 0 to HW filter on device team0 [ 2037.082885][ T348] bridge0: port 1(bridge_slave_0) entered blocking state [ 2037.090112][ T348] bridge0: port 1(bridge_slave_0) entered forwarding state [ 2037.159621][ T348] bridge0: port 2(bridge_slave_1) entered blocking state [ 2037.166872][ T348] bridge0: port 2(bridge_slave_1) entered forwarding state [ 2037.406029][T10293] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 2037.662447][ T1269] ieee802154 phy0 wpan0: encryption failed: -22 [ 2037.674241][ T1269] ieee802154 phy1 wpan1: encryption failed: -22 [ 2037.965982][T10293] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 2038.118404][T10293] veth0_vlan: entered promiscuous mode [ 2038.147852][T10293] veth1_vlan: entered promiscuous mode [ 2038.292022][T10293] veth0_macvtap: entered promiscuous mode [ 2038.336210][T10293] veth1_macvtap: entered promiscuous mode [ 2038.386380][T10293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2038.432582][T10293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2038.449672][T10293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2038.476609][T10293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2038.490098][T10293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2038.508018][T10293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2038.519536][T10293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2038.540527][T10293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2038.571746][T10293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2038.600262][T10293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2038.616210][T10293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2038.651854][T10293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2038.671500][T10293] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 2038.749808][T10293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2038.786757][T10293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2038.835171][T10293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2038.877397][T10293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2038.913452][T10293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2038.954879][T10293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2038.984024][T10293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2039.018013][T10293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2039.046673][T10293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2039.087302][T10293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2039.124683][T10293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2039.179095][T10293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2039.218891][T10293] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 2039.233886][T10293] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2039.275302][T10293] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2039.311131][T10293] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2039.330566][T10293] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2039.929846][ T1377] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2039.966673][ T1377] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2040.120440][ T1377] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2040.166764][ T1377] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2042.050289][ T348] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2042.653661][ T348] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2043.203504][ T348] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2043.700941][T10920] Invalid ELF header magic: != ELF [ 2043.729449][ T348] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2043.965075][T10927] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7981'. [ 2044.028658][T15351] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 2044.038993][T15351] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 2044.046976][T15351] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 2044.056378][T15351] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 2044.068362][T15351] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 2044.078959][T15351] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 2044.473556][ T348] bridge_slave_1: left allmulticast mode [ 2044.498920][ T348] bridge_slave_1: left promiscuous mode [ 2044.516954][ T348] bridge0: port 2(bridge_slave_1) entered disabled state [ 2044.563530][ T348] bridge_slave_0: left allmulticast mode [ 2044.581341][ T348] bridge_slave_0: left promiscuous mode [ 2044.611665][ T348] bridge0: port 1(bridge_slave_0) entered disabled state [ 2045.936757][T10950] delete_channel: no stack [ 2046.137097][ T5237] Bluetooth: hci2: command tx timeout [ 2047.847715][ T348] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2048.071329][ T348] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2048.217133][ T5237] Bluetooth: hci2: command tx timeout [ 2048.279282][ T348] bond0 (unregistering): Released all slaves [ 2049.440889][T10929] chnl_net:caif_netlink_parms(): no params data found [ 2050.297914][ T5237] Bluetooth: hci2: command tx timeout [ 2050.520021][T10929] bridge0: port 1(bridge_slave_0) entered blocking state [ 2050.569086][T10929] bridge0: port 1(bridge_slave_0) entered disabled state [ 2050.576379][T10929] bridge_slave_0: entered allmulticast mode [ 2050.598768][T10929] bridge_slave_0: entered promiscuous mode [ 2050.621157][T10929] bridge0: port 2(bridge_slave_1) entered blocking state [ 2050.661093][T10929] bridge0: port 2(bridge_slave_1) entered disabled state [ 2050.676261][T10929] bridge_slave_1: entered allmulticast mode [ 2050.687624][T10929] bridge_slave_1: entered promiscuous mode [ 2051.793411][T10929] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2051.922988][T10929] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2052.379842][ T5237] Bluetooth: hci2: command tx timeout [ 2052.995524][T10929] team0: Port device team_slave_0 added [ 2053.780240][ T348] hsr_slave_0: left promiscuous mode [ 2053.876567][ T348] hsr_slave_1: left promiscuous mode [ 2054.053963][ T348] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 2054.087519][ T348] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 2054.179688][ T348] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 2054.214974][ T348] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 2054.341375][ T348] veth1_macvtap: left promiscuous mode [ 2054.361929][ T348] veth0_macvtap: left promiscuous mode [ 2054.383631][ T348] veth1_vlan: left promiscuous mode [ 2054.406896][ T348] veth0_vlan: left promiscuous mode [ 2055.087900][ T5237] Bluetooth: hci0: Received unexpected HCI Event 0x00 [ 2055.268924][T11124] FAULT_INJECTION: forcing a failure. [ 2055.268924][T11124] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2055.337032][T11124] CPU: 0 UID: 0 PID: 11124 Comm: syz.0.8023 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 2055.347503][T11124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 2055.357578][T11124] Call Trace: [ 2055.360870][T11124] [ 2055.363818][T11124] dump_stack_lvl+0x16c/0x1f0 [ 2055.368531][T11124] should_fail_ex+0x497/0x5b0 [ 2055.373242][T11124] _copy_from_user+0x30/0xf0 [ 2055.377867][T11124] get_timespec64+0x8c/0x240 [ 2055.382482][T11124] ? __pfx_get_timespec64+0x10/0x10 [ 2055.387716][T11124] do_pselect.constprop.0+0xc2/0x1f0 [ 2055.393028][T11124] ? __pfx_do_pselect.constprop.0+0x10/0x10 [ 2055.398929][T11124] ? ksys_semctl.constprop.0+0x150/0x2e0 [ 2055.404572][T11124] __x64_sys_pselect6+0x183/0x240 [ 2055.409602][T11124] ? __pfx___x64_sys_pselect6+0x10/0x10 [ 2055.415164][T11124] do_syscall_64+0xcd/0x250 [ 2055.419673][T11124] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2055.425575][T11124] RIP: 0033:0x7fc2ea57def9 [ 2055.429988][T11124] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2055.449598][T11124] RSP: 002b:00007fc2eb2bc038 EFLAGS: 00000246 ORIG_RAX: 000000000000010e [ 2055.458014][T11124] RAX: ffffffffffffffda RBX: 00007fc2ea735f80 RCX: 00007fc2ea57def9 [ 2055.465985][T11124] RDX: 0000000000000005 RSI: 0000000000000005 RDI: 0000000000000006 [ 2055.473953][T11124] RBP: 00007fc2eb2bc090 R08: 00000000000000ba R09: 0000000000000000 [ 2055.481919][T11124] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000001 [ 2055.489884][T11124] R13: 0000000000000000 R14: 00007fc2ea735f80 R15: 00007ffffa6ee218 [ 2055.497864][T11124] [ 2058.625433][T11166] FAULT_INJECTION: forcing a failure. [ 2058.625433][T11166] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2058.657259][T11166] CPU: 1 UID: 0 PID: 11166 Comm: syz.1.8032 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 2058.667732][T11166] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 2058.677811][T11166] Call Trace: [ 2058.681132][T11166] [ 2058.684086][T11166] dump_stack_lvl+0x16c/0x1f0 [ 2058.688802][T11166] should_fail_ex+0x497/0x5b0 [ 2058.693513][T11166] _copy_from_user+0x30/0xf0 [ 2058.698143][T11166] core_sys_select+0x2b6/0xa10 [ 2058.702943][T11166] ? __pfx_core_sys_select+0x10/0x10 [ 2058.708256][T11166] ? find_held_lock+0x2d/0x110 [ 2058.713044][T11166] ? __might_fault+0x13b/0x190 [ 2058.717877][T11166] ? set_user_sigmask+0x217/0x2a0 [ 2058.722936][T11166] ? __pfx_set_user_sigmask+0x10/0x10 [ 2058.728349][T11166] do_pselect.constprop.0+0x1a0/0x1f0 [ 2058.733752][T11166] ? __pfx_do_pselect.constprop.0+0x10/0x10 [ 2058.739674][T11166] ? ksys_semctl.constprop.0+0x150/0x2e0 [ 2058.745341][T11166] __x64_sys_pselect6+0x183/0x240 [ 2058.750394][T11166] ? __pfx___x64_sys_pselect6+0x10/0x10 [ 2058.755975][T11166] do_syscall_64+0xcd/0x250 [ 2058.760499][T11166] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2058.766424][T11166] RIP: 0033:0x7fabeb37def9 [ 2058.770853][T11166] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2058.790486][T11166] RSP: 002b:00007fabec152038 EFLAGS: 00000246 ORIG_RAX: 000000000000010e [ 2058.798932][T11166] RAX: ffffffffffffffda RBX: 00007fabeb535f80 RCX: 00007fabeb37def9 [ 2058.806928][T11166] RDX: 0000000000000005 RSI: 0000000000000005 RDI: 0000000000000006 [ 2058.814925][T11166] RBP: 00007fabec152090 R08: 00000000000000ba R09: 0000000000000000 [ 2058.822916][T11166] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000001 [ 2058.830906][T11166] R13: 0000000000000000 R14: 00007fabeb535f80 R15: 00007ffcc4c88048 [ 2058.838918][T11166] [ 2058.865031][ T348] team0 (unregistering): Port device team_slave_1 removed [ 2059.137704][ T348] team0 (unregistering): Port device team_slave_0 removed [ 2060.332501][T10929] team0: Port device team_slave_1 added [ 2060.617623][T10929] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 2060.624619][T10929] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2060.706233][T10929] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 2060.744431][T10929] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 2060.785167][T10929] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2060.834904][T10929] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 2061.089034][T10929] hsr_slave_0: entered promiscuous mode [ 2061.137272][T10929] hsr_slave_1: entered promiscuous mode [ 2061.195428][T10929] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 2061.212783][T10929] Cannot create hsr debugfs directory [ 2063.371796][T10929] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 2063.431103][T10929] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 2063.462985][T10929] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 2063.551324][T10929] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 2063.918345][T10929] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2064.004731][T10929] 8021q: adding VLAN 0 to HW filter on device team0 [ 2064.073636][ T1085] bridge0: port 1(bridge_slave_0) entered blocking state [ 2064.080880][ T1085] bridge0: port 1(bridge_slave_0) entered forwarding state [ 2064.155498][ T348] bridge0: port 2(bridge_slave_1) entered blocking state [ 2064.162728][ T348] bridge0: port 2(bridge_slave_1) entered forwarding state [ 2065.016149][T10929] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 2065.262595][T10929] veth0_vlan: entered promiscuous mode [ 2065.361458][T10929] veth1_vlan: entered promiscuous mode [ 2065.485849][T10929] veth0_macvtap: entered promiscuous mode [ 2065.547743][T10929] veth1_macvtap: entered promiscuous mode [ 2065.634444][T10929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2065.653736][T10929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2065.689156][T10929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2065.714514][T10929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2065.755266][T10929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2065.773141][T10929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2065.803496][T10929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2065.822766][T10929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2065.841405][T10929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2065.863833][T10929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2065.889713][T10929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2065.915577][T10929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2065.955399][T10929] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 2066.029780][T10929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2066.096718][T10929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2066.106575][T10929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2066.160760][T10929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2066.206876][T10929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2066.222553][T11325] delete_channel: no stack [ 2066.229563][T10929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2066.267346][T10929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2066.306774][T10929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2066.334512][T10929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2066.365873][T10929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2066.400656][T10929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2066.438299][T10929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2066.481403][T10929] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 2066.545914][T10929] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2066.608130][T10929] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2066.647209][T10929] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2066.716741][T10929] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2067.129593][ T1085] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2067.166685][ T1085] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2067.298881][ T348] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2067.336764][ T348] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2068.272340][T11392] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8070'. [ 2070.317032][T11447] FAULT_INJECTION: forcing a failure. [ 2070.317032][T11447] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2070.388148][T11447] CPU: 1 UID: 0 PID: 11447 Comm: syz.0.8082 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 2070.398626][T11447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 2070.408701][T11447] Call Trace: [ 2070.411992][T11447] [ 2070.414933][T11447] dump_stack_lvl+0x16c/0x1f0 [ 2070.419636][T11447] should_fail_ex+0x497/0x5b0 [ 2070.424344][T11447] _copy_to_user+0x30/0xc0 [ 2070.428802][T11447] simple_read_from_buffer+0xd0/0x160 [ 2070.434205][T11447] proc_fail_nth_read+0x198/0x270 [ 2070.439274][T11447] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 2070.444862][T11447] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 2070.451056][T11447] vfs_read+0x1ce/0xbd0 [ 2070.455251][T11447] ? __pfx_vfs_read+0x10/0x10 [ 2070.459963][T11447] ? do_pselect.constprop.0+0x13c/0x1f0 [ 2070.465541][T11447] ? __pfx_do_pselect.constprop.0+0x10/0x10 [ 2070.471464][T11447] ? ksys_semctl.constprop.0+0x150/0x2e0 [ 2070.477131][T11447] ? __fget_light+0x173/0x210 [ 2070.481837][T11447] ksys_read+0x12f/0x260 [ 2070.486105][T11447] ? __pfx_ksys_read+0x10/0x10 [ 2070.490904][T11447] do_syscall_64+0xcd/0x250 [ 2070.495432][T11447] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2070.501351][T11447] RIP: 0033:0x7fc2ea57c93c [ 2070.505767][T11447] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 2070.525385][T11447] RSP: 002b:00007fc2eb2bc030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 2070.533815][T11447] RAX: ffffffffffffffda RBX: 00007fc2ea735f80 RCX: 00007fc2ea57c93c [ 2070.541789][T11447] RDX: 000000000000000f RSI: 00007fc2eb2bc0a0 RDI: 0000000000000006 [ 2070.549758][T11447] RBP: 00007fc2eb2bc090 R08: 0000000000000000 R09: 0000000000000000 [ 2070.557727][T11447] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000001 [ 2070.565700][T11447] R13: 0000000000000000 R14: 00007fc2ea735f80 R15: 00007ffffa6ee218 [ 2070.573688][T11447] [ 2078.509195][T11560] svc: failed to register nfsdv3 RPC service (errno 111). [ 2078.528726][T11560] svc: failed to register nfsaclv3 RPC service (errno 111). [ 2079.049907][T11570] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8119'. [ 2079.199824][T11570] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8119'. [ 2080.579804][T11606] nbd: couldn't find a device at index 8304 [ 2081.131566][T11611] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8128'. [ 2085.239524][ T6515] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2085.723387][ T6515] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2085.927743][ T6515] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2086.015010][T15351] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 2086.036983][T15351] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 2086.045029][T15351] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 2086.055365][T15351] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 2086.067369][T15351] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 2086.075119][T15351] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 2086.680215][ T6515] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2087.509918][T15351] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 2087.542993][T15351] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 2087.555140][T15351] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 2087.565187][ T6515] bridge_slave_1: left allmulticast mode [ 2087.574230][T15351] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 2087.602699][ T6515] bridge_slave_1: left promiscuous mode [ 2087.602750][T15351] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 2087.636822][T15351] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 2087.639166][ T6515] bridge0: port 2(bridge_slave_1) entered disabled state [ 2087.749794][ T6515] bridge_slave_0: left allmulticast mode [ 2087.755484][ T6515] bridge_slave_0: left promiscuous mode [ 2087.785126][ T6515] bridge0: port 1(bridge_slave_0) entered disabled state [ 2088.137855][ T5237] Bluetooth: hci2: command tx timeout [ 2088.584471][T11713] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 2089.182930][ T6515] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2089.229566][ T6515] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2089.256335][ T6515] bond0 (unregistering): Released all slaves [ 2089.278049][T11660] chnl_net:caif_netlink_parms(): no params data found [ 2089.741748][ T5237] Bluetooth: hci3: command tx timeout [ 2089.803288][T11660] bridge0: port 1(bridge_slave_0) entered blocking state [ 2089.829438][T11660] bridge0: port 1(bridge_slave_0) entered disabled state [ 2089.854468][T11660] bridge_slave_0: entered allmulticast mode [ 2089.883195][T11660] bridge_slave_0: entered promiscuous mode [ 2089.996921][T11660] bridge0: port 2(bridge_slave_1) entered blocking state [ 2090.004141][T11660] bridge0: port 2(bridge_slave_1) entered disabled state [ 2090.023605][T11660] bridge_slave_1: entered allmulticast mode [ 2090.037854][T11660] bridge_slave_1: entered promiscuous mode [ 2090.218650][ T5237] Bluetooth: hci2: command tx timeout [ 2090.351585][T11660] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2090.404176][T11660] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2090.449072][ T6515] hsr_slave_0: left promiscuous mode [ 2090.465994][ T6515] hsr_slave_1: left promiscuous mode [ 2090.474281][ T6515] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 2090.486835][ T6515] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 2090.506353][ T6515] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 2090.520516][ T6515] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 2090.619393][ T6515] veth1_macvtap: left promiscuous mode [ 2090.625007][ T6515] veth0_macvtap: left promiscuous mode [ 2090.639836][ T6515] veth1_vlan: left promiscuous mode [ 2090.658605][ T6515] veth0_vlan: left promiscuous mode [ 2091.821218][ T5237] Bluetooth: hci3: command tx timeout [ 2092.046558][ T6515] team0 (unregistering): Port device team_slave_1 removed [ 2092.174151][ T6515] team0 (unregistering): Port device team_slave_0 removed [ 2092.303630][ T5237] Bluetooth: hci2: command tx timeout [ 2092.377953][T11779] netlink: zone id is out of range [ 2092.404820][T11779] netlink: get zone limit has 4 unknown bytes [ 2092.432087][ T29] audit: type=1326 audit(7370002.470:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11778 comm="syz.3.8170" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f824b77def9 code=0x0 [ 2093.449441][T11781] delete_channel: no stack [ 2093.897070][ T5237] Bluetooth: hci3: command tx timeout [ 2094.113447][T11660] team0: Port device team_slave_0 added [ 2094.152091][T11660] team0: Port device team_slave_1 added [ 2094.332916][T11660] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 2094.356718][T11660] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2094.376922][ T5237] Bluetooth: hci2: command tx timeout [ 2094.408864][T11660] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 2094.599180][T11660] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 2094.606168][T11660] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2094.693787][T11660] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 2094.855462][T11680] chnl_net:caif_netlink_parms(): no params data found [ 2094.961030][T11660] hsr_slave_0: entered promiscuous mode [ 2094.991888][T11660] hsr_slave_1: entered promiscuous mode [ 2095.026862][T11660] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 2095.034461][T11660] Cannot create hsr debugfs directory [ 2095.702321][ T6515] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2095.976909][ T5237] Bluetooth: hci3: command tx timeout [ 2096.070480][ T6515] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2096.098529][T11680] bridge0: port 1(bridge_slave_0) entered blocking state [ 2096.115936][T11680] bridge0: port 1(bridge_slave_0) entered disabled state [ 2096.123392][T11680] bridge_slave_0: entered allmulticast mode [ 2096.138933][T11680] bridge_slave_0: entered promiscuous mode [ 2096.160376][T11680] bridge0: port 2(bridge_slave_1) entered blocking state [ 2096.167790][T11680] bridge0: port 2(bridge_slave_1) entered disabled state [ 2096.205138][T11680] bridge_slave_1: entered allmulticast mode [ 2096.236244][T11680] bridge_slave_1: entered promiscuous mode [ 2096.349697][ T6515] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2096.659808][ T6515] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2096.710334][T11680] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2096.746330][T11680] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2096.970158][T11680] team0: Port device team_slave_0 added [ 2097.010085][T11680] team0: Port device team_slave_1 added [ 2097.281099][T11841] delete_channel: no stack [ 2097.288469][T11680] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 2097.295438][T11680] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2097.366912][T11680] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 2097.773387][T11680] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 2097.801757][T11680] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2097.860880][T11856] can: request_module (can-proto-0) failed. [ 2097.890631][T11680] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 2098.476151][ T6515] bridge_slave_1: left allmulticast mode [ 2098.487283][ T6515] bridge_slave_1: left promiscuous mode [ 2098.497021][ T6515] bridge0: port 2(bridge_slave_1) entered disabled state [ 2098.529321][ T6515] bridge_slave_0: left allmulticast mode [ 2098.535018][ T6515] bridge_slave_0: left promiscuous mode [ 2098.558166][ T6515] bridge0: port 1(bridge_slave_0) entered disabled state [ 2099.107679][ T1269] ieee802154 phy0 wpan0: encryption failed: -22 [ 2099.114075][ T1269] ieee802154 phy1 wpan1: encryption failed: -22 [ 2099.467121][ T6515] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2099.490624][ T6515] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2099.525736][ T6515] bond0 (unregistering): Released all slaves [ 2099.669198][T11680] hsr_slave_0: entered promiscuous mode [ 2099.698590][T11680] hsr_slave_1: entered promiscuous mode [ 2099.722115][T11680] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 2099.750603][T11680] Cannot create hsr debugfs directory [ 2100.405484][ T6515] hsr_slave_0: left promiscuous mode [ 2100.417423][ T6515] hsr_slave_1: left promiscuous mode [ 2100.437784][ T6515] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 2100.445245][ T6515] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 2100.480632][ T6515] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 2100.499268][ T6515] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 2100.592157][ T6515] veth1_macvtap: left promiscuous mode [ 2100.626812][ T6515] veth0_macvtap: left promiscuous mode [ 2100.632579][ T6515] veth1_vlan: left promiscuous mode [ 2100.647010][ T6515] veth0_vlan: left promiscuous mode [ 2101.354985][T11904] netlink: del zone limit has 4 unknown bytes [ 2102.024631][ T6515] team0 (unregistering): Port device team_slave_1 removed [ 2102.205532][ T6515] team0 (unregistering): Port device team_slave_0 removed [ 2103.511427][T11925] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 2104.399587][T11660] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 2104.477186][T11660] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 2104.604588][T11942] FAULT_INJECTION: forcing a failure. [ 2104.604588][T11942] name failslab, interval 1, probability 0, space 0, times 0 [ 2104.640809][T11942] CPU: 1 UID: 0 PID: 11942 Comm: syz.1.8207 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 2104.651314][T11942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 2104.661391][T11942] Call Trace: [ 2104.664688][T11942] [ 2104.667892][T11942] dump_stack_lvl+0x16c/0x1f0 [ 2104.672603][T11942] should_fail_ex+0x497/0x5b0 [ 2104.677309][T11942] ? fs_reclaim_acquire+0xae/0x160 [ 2104.682452][T11942] should_failslab+0xc2/0x120 [ 2104.687158][T11942] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 2104.692643][T11942] ? security_file_alloc+0x34/0x2b0 [ 2104.697864][T11942] ? rcu_is_watching+0x12/0xc0 [ 2104.702642][T11942] security_file_alloc+0x34/0x2b0 [ 2104.707677][T11942] init_file+0x93/0x230 [ 2104.711834][T11942] alloc_empty_file+0x91/0x1e0 [ 2104.716600][T11942] path_openat+0xe1/0x2d60 [ 2104.721113][T11942] ? hlock_class+0x4e/0x130 [ 2104.725615][T11942] ? __lock_acquire+0x1620/0x3cb0 [ 2104.730659][T11942] ? __pfx_path_openat+0x10/0x10 [ 2104.735604][T11942] ? __pfx___lock_acquire+0x10/0x10 [ 2104.740804][T11942] ? find_held_lock+0x2d/0x110 [ 2104.745566][T11942] do_filp_open+0x1dc/0x430 [ 2104.750075][T11942] ? __pfx_do_filp_open+0x10/0x10 [ 2104.755125][T11942] ? _raw_spin_unlock+0x28/0x50 [ 2104.760068][T11942] ? alloc_fd+0x2d7/0x6c0 [ 2104.764409][T11942] do_sys_openat2+0x17a/0x1e0 [ 2104.769091][T11942] ? __pfx_do_sys_openat2+0x10/0x10 [ 2104.774299][T11942] __x64_sys_open+0x154/0x1e0 [ 2104.778978][T11942] ? __pfx___x64_sys_open+0x10/0x10 [ 2104.784184][T11942] do_syscall_64+0xcd/0x250 [ 2104.788690][T11942] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2104.794592][T11942] RIP: 0033:0x7fabeb37def9 [ 2104.799007][T11942] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2104.818614][T11942] RSP: 002b:00007fabec152038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 2104.827029][T11942] RAX: ffffffffffffffda RBX: 00007fabeb535f80 RCX: 00007fabeb37def9 [ 2104.834996][T11942] RDX: 0000000000000008 RSI: 0000000000125241 RDI: 0000000020000180 [ 2104.842969][T11942] RBP: 00007fabec152090 R08: 0000000000000000 R09: 0000000000000000 [ 2104.850934][T11942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2104.858902][T11942] R13: 0000000000000001 R14: 00007fabeb535f80 R15: 00007ffcc4c88048 [ 2104.866882][T11942] [ 2104.965154][T11660] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 2105.034982][T11660] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 2106.040402][T11680] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 2106.107163][T11660] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2106.116857][T11680] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 2106.240767][T11680] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 2106.311620][T11660] 8021q: adding VLAN 0 to HW filter on device team0 [ 2106.333410][T11680] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 2106.441394][ T1088] bridge0: port 1(bridge_slave_0) entered blocking state [ 2106.448649][ T1088] bridge0: port 1(bridge_slave_0) entered forwarding state [ 2106.477694][ T1088] bridge0: port 2(bridge_slave_1) entered blocking state [ 2106.484988][ T1088] bridge0: port 2(bridge_slave_1) entered forwarding state [ 2106.875146][T11680] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2106.955602][T11680] 8021q: adding VLAN 0 to HW filter on device team0 [ 2107.054358][ T1370] bridge0: port 1(bridge_slave_0) entered blocking state [ 2107.061621][ T1370] bridge0: port 1(bridge_slave_0) entered forwarding state [ 2107.148773][ T1370] bridge0: port 2(bridge_slave_1) entered blocking state [ 2107.155996][ T1370] bridge0: port 2(bridge_slave_1) entered forwarding state [ 2107.277997][T11995] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8216'. [ 2107.609629][T11660] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 2107.822479][T11660] veth0_vlan: entered promiscuous mode [ 2107.872017][T11660] veth1_vlan: entered promiscuous mode [ 2108.026330][T11660] veth0_macvtap: entered promiscuous mode [ 2108.067325][T11660] veth1_macvtap: entered promiscuous mode [ 2108.131305][T11680] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 2108.181563][T11660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2108.199508][T11660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2108.217580][T11660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2108.234619][T11660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2108.254952][T11660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2108.278191][T11660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2108.293906][T11660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2108.329422][T11660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2108.352371][T11660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2108.385745][T11660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2108.419180][T11660] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 2108.467370][T11660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2108.479943][T11660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2108.508201][T11660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2108.527709][T11660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2108.558840][T11660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2108.596764][T11660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2108.608284][T11660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2108.624348][T11660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2108.643732][T11660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2108.659236][T11660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2108.689288][T11660] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 2108.812406][T11660] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2108.856786][T11660] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2108.886740][T11660] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2108.896157][T11660] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2109.040312][T11680] veth0_vlan: entered promiscuous mode [ 2109.203522][T11680] veth1_vlan: entered promiscuous mode [ 2109.396512][ T1085] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2109.436142][ T1085] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2109.514697][T11680] veth0_macvtap: entered promiscuous mode [ 2109.579852][T11680] veth1_macvtap: entered promiscuous mode [ 2109.682125][T11680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2109.719795][ T1088] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2109.727902][ T1088] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2109.735827][T11680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2109.766735][T11680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2109.794128][T11680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2109.831295][T11680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2109.864289][T11680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2109.901547][T11680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2109.939586][T11680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2109.969056][T11680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2110.002268][T11680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2110.017084][T11680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2110.028620][T11680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2110.050662][T11680] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 2110.121905][T11680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2110.166863][T11680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2110.198509][T11680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2110.236857][T11680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2110.267197][T11680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2110.288031][T11680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2110.319973][T11680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2110.354560][T11680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2110.385128][T11680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2110.426721][T11680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2110.457565][T11680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2110.494208][T11680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2110.522306][T11680] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 2110.603918][T11680] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2110.666086][T11680] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2110.692174][T11680] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2110.718032][T11680] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2111.109266][ T348] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2111.138663][ T348] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2111.269173][ T29] audit: type=1326 audit(7370021.310:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12074 comm="syz.3.8229" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f824b77def9 code=0x0 [ 2111.296260][ T6515] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2111.324699][ T6515] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2112.748878][T12121] delete_channel: no stack [ 2115.939718][ T1088] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2116.350787][ T1088] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2116.537565][T15351] Bluetooth: hci0: command 0x0406 tx timeout [ 2116.680429][ T1088] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2116.848035][T12263] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8267'. [ 2117.020725][ T1088] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2117.574025][ T1088] bridge_slave_1: left allmulticast mode [ 2117.595163][ T1088] bridge_slave_1: left promiscuous mode [ 2117.636344][ T1088] bridge0: port 2(bridge_slave_1) entered disabled state [ 2117.645719][T15351] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 2117.660608][T15351] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 2117.670089][T15351] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 2117.680475][T15351] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 2117.690169][T15351] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 2117.707108][T15351] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 2117.767988][ T1088] bridge_slave_0: left allmulticast mode [ 2117.811867][ T1088] bridge_slave_0: left promiscuous mode [ 2117.828213][ T1088] bridge0: port 1(bridge_slave_0) entered disabled state [ 2119.736851][ T5237] Bluetooth: hci3: command tx timeout [ 2120.072342][ T1088] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2120.108493][ T1088] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2120.180300][ T1088] bond0 (unregistering): Released all slaves [ 2121.471810][T12289] chnl_net:caif_netlink_parms(): no params data found [ 2121.817153][ T5237] Bluetooth: hci3: command tx timeout [ 2122.287389][ T1088] hsr_slave_0: left promiscuous mode [ 2122.299217][ T1088] hsr_slave_1: left promiscuous mode [ 2122.305685][ T1088] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 2122.333230][ T1088] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 2122.382447][ T1088] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 2122.397824][ T1088] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 2122.459537][ T1088] veth1_macvtap: left promiscuous mode [ 2122.465137][ T1088] veth0_macvtap: left promiscuous mode [ 2122.497249][ T1088] veth1_vlan: left promiscuous mode [ 2122.516913][ T1088] veth0_vlan: left promiscuous mode [ 2123.901911][ T5237] Bluetooth: hci3: command tx timeout [ 2124.962585][ T1088] team0 (unregistering): Port device team_slave_1 removed [ 2125.133385][ T1088] team0 (unregistering): Port device team_slave_0 removed [ 2125.977363][ T5237] Bluetooth: hci3: command tx timeout [ 2127.090115][T12289] bridge0: port 1(bridge_slave_0) entered blocking state [ 2127.157141][T12289] bridge0: port 1(bridge_slave_0) entered disabled state [ 2127.193871][T12289] bridge_slave_0: entered allmulticast mode [ 2127.210660][T12289] bridge_slave_0: entered promiscuous mode [ 2127.235338][T12289] bridge0: port 2(bridge_slave_1) entered blocking state [ 2127.284879][T12289] bridge0: port 2(bridge_slave_1) entered disabled state [ 2127.300438][T12289] bridge_slave_1: entered allmulticast mode [ 2127.330198][T12289] bridge_slave_1: entered promiscuous mode [ 2127.489097][T12289] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2127.547687][T12289] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2127.725851][T12289] team0: Port device team_slave_0 added [ 2127.774183][T12289] team0: Port device team_slave_1 added [ 2127.934589][T12289] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 2127.953658][T12289] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2128.007326][T12289] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 2128.058860][T12289] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 2128.108889][T12289] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2128.207410][T12289] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 2128.476115][T12289] hsr_slave_0: entered promiscuous mode [ 2128.512224][T12289] hsr_slave_1: entered promiscuous mode [ 2129.826289][T12535] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 2130.367375][T12289] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 2130.432099][T12289] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 2130.510100][T12289] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 2130.577196][T12289] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 2130.911081][T12289] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2130.994544][T12289] 8021q: adding VLAN 0 to HW filter on device team0 [ 2131.071819][ T1088] bridge0: port 1(bridge_slave_0) entered blocking state [ 2131.079069][ T1088] bridge0: port 1(bridge_slave_0) entered forwarding state [ 2131.199009][ T1377] bridge0: port 2(bridge_slave_1) entered blocking state [ 2131.206225][ T1377] bridge0: port 2(bridge_slave_1) entered forwarding state [ 2131.896341][T12585] netlink: 244 bytes leftover after parsing attributes in process `syz.1.8327'. [ 2131.912082][T12289] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 2132.056673][T12289] veth0_vlan: entered promiscuous mode [ 2132.093055][T12289] veth1_vlan: entered promiscuous mode [ 2132.211516][T12289] veth0_macvtap: entered promiscuous mode [ 2132.255694][T12289] veth1_macvtap: entered promiscuous mode [ 2132.353465][T12289] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2132.387603][T12289] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2132.418663][T12289] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2132.459644][T12289] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2132.479870][T12289] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2132.518126][T12289] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2132.556798][T12289] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2132.596758][T12289] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2132.606613][T12289] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2132.675842][T12289] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2132.706753][T12289] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2132.732292][T12289] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2132.753960][T12289] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 2132.781453][T12289] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2132.822041][T12289] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2132.855326][T12289] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2132.873378][T12289] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2132.896015][T12289] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2132.915195][T12289] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2132.947646][T12289] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2132.960772][T12289] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2132.990058][T12289] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2133.023991][T12289] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2133.059699][T12289] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2133.076678][T12289] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2133.102446][T12289] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 2133.173958][T12289] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2133.188788][T12289] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2133.203222][T12289] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2133.218947][T12289] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2133.491221][ T1370] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2133.526713][ T1370] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2133.593886][ T1371] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2133.620773][ T1371] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2139.005822][T13167] netlink: 64 bytes leftover after parsing attributes in process `syz.0.8376'. [ 2146.216510][T13375] ptrace attach of "./syz-executor exec"[10293] was attempted by "./syz-executor exec"[13375] [ 2146.754801][T13389] netlink: 'syz.3.8437': attribute type 11 has an invalid length. [ 2146.790692][T13389] netlink: 5 bytes leftover after parsing attributes in process `syz.3.8437'. [ 2146.869810][T13389] netlink: 'syz.3.8437': attribute type 11 has an invalid length. [ 2146.993979][T13385] netlink: 60 bytes leftover after parsing attributes in process `syz.2.8434'. [ 2149.504439][T13453] ^‡]: entered promiscuous mode [ 2150.020531][T13461] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 2152.379700][T15351] Bluetooth: hci1: command 0x0406 tx timeout [ 2154.966246][T13533] kexec: Could not allocate control_code_buffer [ 2160.542953][ T1269] ieee802154 phy0 wpan0: encryption failed: -22 [ 2160.549723][ T1269] ieee802154 phy1 wpan1: encryption failed: -22 [ 2163.617034][T13596] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8487'. [ 2163.645335][T13597] delete_channel: no stack [ 2164.028476][T13606] nbd: must specify at least one socket [ 2171.157064][T13761] netlink: 20 bytes leftover after parsing attributes in process `syz.0.8542'. [ 2172.717921][T13811] delete_channel: no stack [ 2172.764634][T13811] delete_channel: no stack [ 2173.366841][T13830] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8559'. [ 2173.376098][T13830] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8559'. [ 2176.617125][T13932] netlink: 180 bytes leftover after parsing attributes in process `syz.3.8582'. [ 2177.838595][T13969] netlink: 'syz.2.8590': attribute type 1 has an invalid length. [ 2182.239106][T14011] netlink: 556 bytes leftover after parsing attributes in process `syz.1.8604'. [ 2182.337668][T14011] openvswitch: netlink: Key 0 has unexpected len 152 expected 0 [ 2183.758093][T14022] delete_channel: no stack [ 2183.784484][T14022] delete_channel: no stack [ 2188.044094][T15351] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 2188.055140][T15351] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 2188.066966][T15351] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 2188.086854][T15351] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 2188.094810][T15351] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 2188.102664][T15351] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 2189.103381][T14088] chnl_net:caif_netlink_parms(): no params data found [ 2189.720008][T14088] bridge0: port 1(bridge_slave_0) entered blocking state [ 2189.744069][T14088] bridge0: port 1(bridge_slave_0) entered disabled state [ 2189.779958][T14088] bridge_slave_0: entered allmulticast mode [ 2189.819117][T14088] bridge_slave_0: entered promiscuous mode [ 2189.848606][T14088] bridge0: port 2(bridge_slave_1) entered blocking state [ 2189.855784][T14088] bridge0: port 2(bridge_slave_1) entered disabled state [ 2189.886334][T14088] bridge_slave_1: entered allmulticast mode [ 2189.905264][T14088] bridge_slave_1: entered promiscuous mode [ 2190.217825][ T5237] Bluetooth: hci4: command tx timeout [ 2190.226241][T14088] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2190.308836][T14088] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2190.574662][T14128] Invalid ELF header magic: != ELF [ 2190.671811][T14088] team0: Port device team_slave_0 added [ 2190.758339][T14088] team0: Port device team_slave_1 added [ 2190.952328][T14088] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 2190.966729][T14088] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2191.023882][T14088] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 2191.058925][T14088] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 2191.066047][T14088] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2191.156819][T14088] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 2191.763746][T14088] hsr_slave_0: entered promiscuous mode [ 2191.858432][T14088] hsr_slave_1: entered promiscuous mode [ 2191.957137][T14088] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 2191.996187][T14088] Cannot create hsr debugfs directory [ 2192.296837][ T5237] Bluetooth: hci4: command tx timeout [ 2192.992295][T14088] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2193.721184][T14088] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2194.259737][T14088] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2194.377295][ T5237] Bluetooth: hci4: command tx timeout [ 2194.900429][T14088] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2195.291148][T14088] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 2195.325661][T14088] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 2195.372583][T14088] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 2195.432999][T14088] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 2195.794064][T14088] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2195.882522][T14088] 8021q: adding VLAN 0 to HW filter on device team0 [ 2195.962357][ T1366] bridge0: port 1(bridge_slave_0) entered blocking state [ 2195.969591][ T1366] bridge0: port 1(bridge_slave_0) entered forwarding state [ 2196.019726][ T1366] bridge0: port 2(bridge_slave_1) entered blocking state [ 2196.026990][ T1366] bridge0: port 2(bridge_slave_1) entered forwarding state [ 2196.305599][T14088] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 2196.457558][ T5237] Bluetooth: hci4: command tx timeout [ 2197.200526][T14088] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 2197.361006][T14088] veth0_vlan: entered promiscuous mode [ 2197.415115][T14088] veth1_vlan: entered promiscuous mode [ 2197.566218][T14088] veth0_macvtap: entered promiscuous mode [ 2197.603310][T14088] veth1_macvtap: entered promiscuous mode [ 2197.716905][T14088] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2197.756722][T14088] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2197.798240][T14088] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2197.838093][T14088] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2197.876703][T14088] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2197.917953][T14088] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2197.936683][T14088] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2197.981153][T14088] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2198.017429][T14088] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2198.062117][T14088] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2198.088965][T14088] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2198.141533][T14088] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2198.163848][T14088] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2198.217152][T14088] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2198.240911][T14088] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 2198.287380][T14088] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2198.334126][T14088] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2198.378480][T14088] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2198.401791][T14088] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2198.432368][T14088] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2198.488456][T14088] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2198.526845][T14088] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2198.568276][T14088] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2198.608474][T14088] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2198.657041][T14088] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2198.678025][T14088] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2198.718259][T14088] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2198.756235][T14088] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2198.797399][T14088] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2198.839074][T14088] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 2198.870917][T14088] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2198.907755][T14088] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2198.946817][T14088] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2198.955740][T14088] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2199.035918][T14272] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8668'. [ 2199.721041][T13508] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2199.753630][T13508] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2199.899435][T14284] netlink: 61 bytes leftover after parsing attributes in process `syz.2.8672'. [ 2199.928442][T13508] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2199.936294][T13508] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2205.562186][ T29] audit: type=1800 audit(7370115.598:10): pid=14394 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.8699" name="SYSV00000014" dev="hugetlbfs" ino=0 res=0 errno=0 [ 2206.106849][T14401] Invalid ELF header magic: != ELF [ 2208.697065][T15351] Bluetooth: hci2: command 0x0406 tx timeout [ 2217.789083][T15351] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 2217.800472][T15351] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 2217.817700][T15351] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 2217.842270][T15351] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 2217.850886][T15351] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 2217.858509][T15351] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 2218.977457][T14598] FAULT_INJECTION: forcing a failure. [ 2218.977457][T14598] name failslab, interval 1, probability 0, space 0, times 0 [ 2219.067204][T14598] CPU: 0 UID: 0 PID: 14598 Comm: syz.2.8744 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 2219.077766][T14598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 2219.087933][T14598] Call Trace: [ 2219.091222][T14598] [ 2219.094165][T14598] dump_stack_lvl+0x16c/0x1f0 [ 2219.098878][T14598] should_fail_ex+0x497/0x5b0 [ 2219.103586][T14598] ? fs_reclaim_acquire+0xae/0x160 [ 2219.108725][T14598] should_failslab+0xc2/0x120 [ 2219.113432][T14598] kmem_cache_alloc_node_noprof+0x71/0x310 [ 2219.119270][T14598] ? __alloc_skb+0x2b3/0x380 [ 2219.123884][T14598] __alloc_skb+0x2b3/0x380 [ 2219.128304][T14598] ? __pfx___alloc_skb+0x10/0x10 [ 2219.133243][T14598] ? __pfx___might_resched+0x10/0x10 [ 2219.138550][T14598] netlink_alloc_large_skb+0x69/0x130 [ 2219.143922][T14598] netlink_sendmsg+0x689/0xd70 [ 2219.148686][T14598] ? __pfx_netlink_sendmsg+0x10/0x10 [ 2219.153979][T14598] ____sys_sendmsg+0x9ae/0xb40 [ 2219.158752][T14598] ? copy_msghdr_from_user+0x10b/0x160 [ 2219.164228][T14598] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2219.169525][T14598] ? __pfx___lock_acquire+0x10/0x10 [ 2219.174733][T14598] ___sys_sendmsg+0x135/0x1e0 [ 2219.179418][T14598] ? __pfx____sys_sendmsg+0x10/0x10 [ 2219.184619][T14598] ? find_held_lock+0x2d/0x110 [ 2219.189395][T14598] ? ksys_write+0x21c/0x260 [ 2219.193914][T14598] ? __fget_light+0x173/0x210 [ 2219.198601][T14598] __sys_sendmsg+0x117/0x1f0 [ 2219.203196][T14598] ? __pfx___sys_sendmsg+0x10/0x10 [ 2219.208332][T14598] do_syscall_64+0xcd/0x250 [ 2219.212875][T14598] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2219.218787][T14598] RIP: 0033:0x7f2537b7def9 [ 2219.223200][T14598] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2219.242824][T14598] RSP: 002b:00007f253898b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2219.251240][T14598] RAX: ffffffffffffffda RBX: 00007f2537d35f80 RCX: 00007f2537b7def9 [ 2219.259209][T14598] RDX: 0000000000000044 RSI: 0000000020000280 RDI: 0000000000000004 [ 2219.267180][T14598] RBP: 00007f253898b090 R08: 0000000000000000 R09: 0000000000000000 [ 2219.275147][T14598] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2219.283115][T14598] R13: 0000000000000000 R14: 00007f2537d35f80 R15: 00007ffdc7a04548 [ 2219.291099][T14598] [ 2219.976859][ T5237] Bluetooth: hci0: command tx timeout [ 2221.987726][ T1269] ieee802154 phy0 wpan0: encryption failed: -22 [ 2221.994147][ T1269] ieee802154 phy1 wpan1: encryption failed: -22 [ 2222.057125][ T5237] Bluetooth: hci0: command tx timeout [ 2222.412582][T13508] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2223.662855][T13508] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2224.137110][ T5237] Bluetooth: hci0: command tx timeout [ 2224.523604][T13508] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2224.604409][T14587] chnl_net:caif_netlink_parms(): no params data found [ 2224.875620][T15351] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 2224.890826][T15351] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 2224.899868][T15351] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 2224.912954][T15351] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 2224.921039][T15351] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 2224.928915][T15351] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 2225.461269][T13508] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2226.216889][ T5237] Bluetooth: hci0: command tx timeout [ 2226.246564][T14587] bridge0: port 1(bridge_slave_0) entered blocking state [ 2226.266815][T14587] bridge0: port 1(bridge_slave_0) entered disabled state [ 2226.274106][T14587] bridge_slave_0: entered allmulticast mode [ 2226.319163][T14587] bridge_slave_0: entered promiscuous mode [ 2226.361670][T14587] bridge0: port 2(bridge_slave_1) entered blocking state [ 2226.383647][T14587] bridge0: port 2(bridge_slave_1) entered disabled state [ 2226.401406][T14587] bridge_slave_1: entered allmulticast mode [ 2226.415060][T14587] bridge_slave_1: entered promiscuous mode [ 2226.930075][T14587] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2226.963077][T14587] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2227.018026][ T5237] Bluetooth: hci2: command tx timeout [ 2227.308380][T14587] team0: Port device team_slave_0 added [ 2227.329091][T14587] team0: Port device team_slave_1 added [ 2227.875070][T13508] bridge_slave_1: left allmulticast mode [ 2227.881859][T13508] bridge_slave_1: left promiscuous mode [ 2227.907339][T13508] bridge0: port 2(bridge_slave_1) entered disabled state [ 2228.038828][T13508] bridge_slave_0: left allmulticast mode [ 2228.044518][T13508] bridge_slave_0: left promiscuous mode [ 2228.076118][T13508] bridge0: port 1(bridge_slave_0) entered disabled state [ 2229.097122][ T5237] Bluetooth: hci2: command tx timeout [ 2230.511884][T13508] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2230.593462][T13508] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2230.625268][T13508] bond0 (unregistering): Released all slaves [ 2230.718751][T14587] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 2230.739212][T14587] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2230.807849][T14587] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 2230.821766][T14587] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 2230.834392][T14587] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2230.896766][T14587] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 2231.176861][ T5237] Bluetooth: hci2: command tx timeout [ 2231.550051][T13508] ^‡]: left promiscuous mode [ 2233.256876][ T5237] Bluetooth: hci2: command tx timeout [ 2233.335388][T14587] hsr_slave_0: entered promiscuous mode [ 2233.359476][T14587] hsr_slave_1: entered promiscuous mode [ 2233.373938][T14587] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 2233.391684][T14587] Cannot create hsr debugfs directory [ 2233.582684][T14626] chnl_net:caif_netlink_parms(): no params data found [ 2234.265690][T14688] FAULT_INJECTION: forcing a failure. [ 2234.265690][T14688] name failslab, interval 1, probability 0, space 0, times 0 [ 2234.287467][T14688] CPU: 1 UID: 0 PID: 14688 Comm: syz.0.8760 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 2234.297927][T14688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 2234.308000][T14688] Call Trace: [ 2234.311290][T14688] [ 2234.314232][T14688] dump_stack_lvl+0x16c/0x1f0 [ 2234.319123][T14688] should_fail_ex+0x497/0x5b0 [ 2234.323844][T14688] should_failslab+0xc2/0x120 [ 2234.328556][T14688] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 2234.333959][T14688] ? skb_clone+0x190/0x3f0 [ 2234.338414][T14688] skb_clone+0x190/0x3f0 [ 2234.342692][T14688] netlink_deliver_tap+0xb26/0xcf0 [ 2234.347850][T14688] netlink_unicast+0x5e1/0x7f0 [ 2234.352638][T14688] ? __pfx_netlink_unicast+0x10/0x10 [ 2234.358031][T14688] ? __phys_addr_symbol+0x30/0x80 [ 2234.363083][T14688] ? __check_object_size+0x497/0x720 [ 2234.368392][T14688] netlink_sendmsg+0x8b8/0xd70 [ 2234.373183][T14688] ? __pfx_netlink_sendmsg+0x10/0x10 [ 2234.378591][T14688] ____sys_sendmsg+0x9ae/0xb40 [ 2234.383379][T14688] ? copy_msghdr_from_user+0x10b/0x160 [ 2234.388866][T14688] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2234.394181][T14688] ? __pfx___lock_acquire+0x10/0x10 [ 2234.399417][T14688] ___sys_sendmsg+0x135/0x1e0 [ 2234.404128][T14688] ? __pfx____sys_sendmsg+0x10/0x10 [ 2234.409347][T14688] ? find_held_lock+0x2d/0x110 [ 2234.414151][T14688] ? ksys_write+0x21c/0x260 [ 2234.418704][T14688] ? __fget_light+0x173/0x210 [ 2234.423415][T14688] __sys_sendmsg+0x117/0x1f0 [ 2234.428037][T14688] ? __pfx___sys_sendmsg+0x10/0x10 [ 2234.433202][T14688] do_syscall_64+0xcd/0x250 [ 2234.437731][T14688] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2234.443653][T14688] RIP: 0033:0x7fe33fb7def9 [ 2234.448083][T14688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2234.467716][T14688] RSP: 002b:00007fe3408ac038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2234.476152][T14688] RAX: ffffffffffffffda RBX: 00007fe33fd35f80 RCX: 00007fe33fb7def9 [ 2234.484146][T14688] RDX: 0000000000000044 RSI: 0000000020000280 RDI: 0000000000000004 [ 2234.492131][T14688] RBP: 00007fe3408ac090 R08: 0000000000000000 R09: 0000000000000000 [ 2234.500117][T14688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2234.508103][T14688] R13: 0000000000000000 R14: 00007fe33fd35f80 R15: 00007ffe7cefdb28 [ 2234.516111][T14688] [ 2235.255567][T14487] syz.3.8726 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 2235.265929][T14487] CPU: 1 UID: 0 PID: 14487 Comm: syz.3.8726 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 2235.276372][T14487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 2235.286442][T14487] Call Trace: [ 2235.289732][T14487] [ 2235.292672][T14487] dump_stack_lvl+0x16c/0x1f0 [ 2235.297374][T14487] dump_header+0x101/0x900 [ 2235.301908][T14487] oom_kill_process+0x270/0xa60 [ 2235.306791][T14487] out_of_memory+0x343/0x16b0 [ 2235.311490][T14487] ? mutex_trylock+0x110/0x140 [ 2235.316279][T14487] ? __pfx_out_of_memory+0x10/0x10 [ 2235.321415][T14487] ? find_held_lock+0x2d/0x110 [ 2235.326203][T14487] mem_cgroup_out_of_memory+0x207/0x270 [ 2235.331771][T14487] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 2235.337881][T14487] ? do_raw_spin_unlock+0x172/0x230 [ 2235.343111][T14487] try_charge_memcg+0x5b9/0xaf0 [ 2235.348010][T14487] ? __pfx_try_charge_memcg+0x10/0x10 [ 2235.353422][T14487] ? get_mem_cgroup_from_mm+0x129/0x5f0 [ 2235.359009][T14487] __mem_cgroup_charge+0x99/0x270 [ 2235.364064][T14487] shmem_alloc_and_add_folio+0x214/0xce0 [ 2235.369727][T14487] ? filemap_get_entry+0x1b2/0x3c0 [ 2235.374867][T14487] ? __pfx_filemap_get_entry+0x10/0x10 [ 2235.380355][T14487] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 2235.386535][T14487] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 2235.392469][T14487] ? __shmem_is_huge+0x213/0x300 [ 2235.397441][T14487] shmem_get_folio_gfp+0xa62/0x15e0 [ 2235.402667][T14487] ? find_held_lock+0x2d/0x110 [ 2235.407450][T14487] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 2235.413106][T14487] ? inode_update_timestamps+0x165/0x580 [ 2235.418769][T14487] ? __pfx_lock_release+0x10/0x10 [ 2235.423826][T14487] shmem_write_begin+0x15a/0x2f0 [ 2235.428791][T14487] ? __pfx_shmem_write_begin+0x10/0x10 [ 2235.434274][T14487] ? lockdep_hardirqs_on+0x7c/0x110 [ 2235.439510][T14487] ? balance_dirty_pages_ratelimited_flags+0x92/0x1270 [ 2235.446389][T14487] ? ktime_get_coarse_real_ts64+0x147/0x200 [ 2235.452313][T14487] generic_perform_write+0x315/0x970 [ 2235.457636][T14487] ? __pfx_generic_perform_write+0x10/0x10 [ 2235.463468][T14487] ? __mark_inode_dirty+0x2ae/0xe60 [ 2235.468703][T14487] ? generic_update_time+0xcf/0xf0 [ 2235.473840][T14487] ? mnt_put_write_access_file+0x45/0xf0 [ 2235.479499][T14487] shmem_file_write_iter+0x10e/0x140 [ 2235.484814][T14487] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 2235.490637][T14487] __kernel_write_iter+0x318/0xa80 [ 2235.495775][T14487] ? __pfx___kernel_write_iter+0x10/0x10 [ 2235.501438][T14487] ? get_dump_page+0x15c/0x220 [ 2235.506248][T14487] dump_user_range+0x389/0x8a0 [ 2235.511054][T14487] ? __pfx_dump_user_range+0x10/0x10 [ 2235.516372][T14487] ? dump_align+0xa3/0xd0 [ 2235.520735][T14487] ? __pfx_writenote+0x10/0x10 [ 2235.525534][T14487] elf_core_dump+0x2727/0x3810 [ 2235.530327][T14487] ? hlock_class+0x4e/0x130 [ 2235.534871][T14487] ? __pfx_elf_core_dump+0x10/0x10 [ 2235.540094][T14487] ? try_to_wake_up+0x5d7/0x13e0 [ 2235.545063][T14487] ? __pfx_lock_release+0x10/0x10 [ 2235.550116][T14487] ? 0xffffffffff600000 [ 2235.554341][T14487] ? do_coredump+0x29e4/0x3da0 [ 2235.559129][T14487] do_coredump+0x29e4/0x3da0 [ 2235.563767][T14487] ? __pfx_do_coredump+0x10/0x10 [ 2235.568785][T14487] ? find_held_lock+0x2d/0x110 [ 2235.573602][T14487] get_signal+0x237c/0x26d0 [ 2235.578143][T14487] ? __pfx_get_signal+0x10/0x10 [ 2235.583017][T14487] ? rcu_is_watching+0x12/0xc0 [ 2235.587812][T14487] ? trace_irq_disable.constprop.0+0xe4/0x130 [ 2235.593912][T14487] arch_do_signal_or_restart+0x90/0x7e0 [ 2235.599480][T14487] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 2235.605669][T14487] ? do_user_addr_fault+0xa4b/0x13f0 [ 2235.610996][T14487] irqentry_exit_to_user_mode+0x13f/0x280 [ 2235.616734][T14487] asm_exc_page_fault+0x26/0x30 [ 2235.621617][T14487] RIP: 0033:0x1000 [ 2235.625345][T14487] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 <00> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 2235.644972][T14487] RSP: 002b:000000000000000e EFLAGS: 00010246 [ 2235.651063][T14487] RAX: 0000000000000000 RBX: 00007f824b936130 RCX: 00007f824b77def9 [ 2235.659055][T14487] RDX: 0000000020000048 RSI: 0000000000000006 RDI: 0000000000003b46 [ 2235.667047][T14487] RBP: 00007f824b7f0b76 R08: 0000000000000010 R09: 0000000000000000 [ 2235.675040][T14487] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2235.683024][T14487] R13: 0000000000000001 R14: 00007f824b936130 R15: 00007fff87f96608 [ 2235.691042][T14487] [ 2235.830285][T14487] memory: usage 307200kB, limit 307200kB, failcnt 59263 [ 2235.925151][T14487] memory+swap: usage 432148kB, limit 9007199254740988kB, failcnt 0 [ 2235.988525][T14487] kmem: usage 4308kB, limit 9007199254740988kB, failcnt 0 [ 2236.008343][T14487] Memory cgroup stats for /syz3: [ 2236.008510][T14487] cache 309485568 [ 2236.036741][T14487] rss 626688 [ 2236.039980][T14487] rss_huge 0 [ 2236.043188][T14487] shmem 309465088 [ 2236.086701][T14487] mapped_file 20480 [ 2236.091625][T14487] dirty 20480 [ 2236.094936][T14487] writeback 0 [ 2236.129066][T14487] workingset_refault_anon 8760 [ 2236.133870][T14487] workingset_refault_file 6907 [ 2236.157248][T14487] swap 127946752 [ 2236.160839][T14487] swapcached 49152 [ 2236.164568][T14487] pgpgin 3955938 [ 2236.181127][T14487] pgpgout 3892990 [ 2236.184797][T14487] pgfault 771226 [ 2236.188894][T14487] pgmajfault 2859 [ 2236.197051][T14487] inactive_anon 306733056 [ 2236.201453][T14487] active_anon 3407872 [ 2236.205530][T14487] inactive_file 20480 [ 2236.210255][T14487] active_file 0 [ 2236.213794][T14487] unevictable 0 [ 2236.218455][T14487] hierarchical_memory_limit 314572800 [ 2236.223953][T14487] hierarchical_memsw_limit 9223372036854771712 [ 2236.231158][T14487] total_cache 309485568 [ 2236.235409][T14487] total_rss 626688 [ 2236.239720][T14487] total_rss_huge 0 [ 2236.243540][T14487] total_shmem 309465088 [ 2236.248302][T14487] total_mapped_file 20480 [ 2236.252650][T14487] total_dirty 20480 [ 2236.259696][T14487] total_writeback 0 [ 2236.263583][T14487] total_workingset_refault_anon 8760 [ 2236.269386][T14487] total_workingset_refault_file 6907 [ 2236.274817][T14487] total_swap 127946752 [ 2236.280078][T14487] total_swapcached 49152 [ 2236.284340][T14487] total_pgpgin 3955938 [ 2236.291696][T14487] total_pgpgout 3892990 [ 2236.295875][T14487] total_pgfault 771226 [ 2236.301045][T14487] total_pgmajfault 2859 [ 2236.305399][T14487] total_inactive_anon 306733056 [ 2236.310734][T14487] total_active_anon 3407872 [ 2236.315250][T14487] total_inactive_file 20480 [ 2236.321541][T14487] total_active_file 0 [ 2236.325592][T14487] total_unevictable 0 [ 2236.330189][T14487] anon_cost 0 [ 2236.333577][T14487] file_cost 0 [ 2236.337363][T14487] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.8726,pid=14495,uid=0 [ 2236.354257][T14487] Memory cgroup out of memory: Killed process 14495 (syz.3.8726) total-vm:91728kB, anon-rss:744kB, file-rss:41264kB, shmem-rss:0kB, UID:0 pgtables:176kB oom_score_adj:1000 [ 2236.402863][T14626] bridge0: port 1(bridge_slave_0) entered blocking state [ 2236.421001][T14626] bridge0: port 1(bridge_slave_0) entered disabled state [ 2236.456970][T14626] bridge_slave_0: entered allmulticast mode [ 2236.477194][T14626] bridge_slave_0: entered promiscuous mode [ 2236.509874][T14626] bridge0: port 2(bridge_slave_1) entered blocking state [ 2236.533036][T14626] bridge0: port 2(bridge_slave_1) entered disabled state [ 2236.550828][T14626] bridge_slave_1: entered allmulticast mode [ 2236.568708][T14626] bridge_slave_1: entered promiscuous mode [ 2236.673796][T14706] can: request_module (can-proto-5) failed. [ 2238.459949][ T31] oom_reaper: reaped process 14495 (syz.3.8726), now anon-rss:84kB, file-rss:40152kB, shmem-rss:0kB [ 2239.461385][T14626] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2239.508704][T14626] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2240.811902][T14743] delete_channel: no stack [ 2241.974077][T14626] team0: Port device team_slave_0 added [ 2244.538389][T15351] Bluetooth: hci3: command 0x0406 tx timeout [ 2244.600086][T14626] team0: Port device team_slave_1 added [ 2245.445743][T14626] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 2245.472227][T14626] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2245.541213][T14626] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 2245.570967][T14626] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 2245.599884][T14626] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2245.647061][T14626] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 2245.760706][T13508] hsr_slave_0: left promiscuous mode [ 2245.793305][T13508] hsr_slave_1: left promiscuous mode [ 2245.830115][T13508] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 2245.838065][T13508] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 2245.856214][T13508] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 2245.875209][T13508] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 2245.929071][T13508] veth1_macvtap: left promiscuous mode [ 2245.946909][T13508] veth0_macvtap: left promiscuous mode [ 2245.952743][T13508] veth1_vlan: left promiscuous mode [ 2245.966958][T13508] veth0_vlan: left promiscuous mode [ 2246.814215][T11771] delete_channel: no stack [ 2247.840554][T13508] team0 (unregistering): Port device team_slave_1 removed [ 2247.963620][T13508] team0 (unregistering): Port device team_slave_0 removed [ 2249.472565][T14626] hsr_slave_0: entered promiscuous mode [ 2249.491686][T14626] hsr_slave_1: entered promiscuous mode [ 2249.499882][T14626] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 2249.507699][T14626] Cannot create hsr debugfs directory [ 2250.007015][T14587] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 2250.059753][T14587] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 2250.106584][T14587] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 2250.120344][T14587] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 2250.222478][T14626] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2250.443041][T14626] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2250.671391][T14626] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2250.993887][T14626] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2251.087720][T15351] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 2251.114471][T15351] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 2251.128139][T15351] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 2251.144659][T13508] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2251.169062][T15351] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 2251.190482][T15351] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 2251.205514][T15351] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 2251.390411][T14587] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2251.491877][T14587] 8021q: adding VLAN 0 to HW filter on device team0 [ 2251.544487][T13514] bridge0: port 1(bridge_slave_0) entered blocking state [ 2251.551716][T13514] bridge0: port 1(bridge_slave_0) entered forwarding state [ 2251.730976][T13508] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2251.853374][T13510] bridge0: port 2(bridge_slave_1) entered blocking state [ 2251.860616][T13510] bridge0: port 2(bridge_slave_1) entered forwarding state [ 2252.010191][T13508] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2252.248171][T13508] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2252.599092][T14626] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 2252.652890][T14626] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 2252.766156][T14626] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 2252.823066][T14626] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 2253.257112][T15351] Bluetooth: hci1: command tx timeout [ 2253.294312][T14587] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 2253.350245][T13508] bridge_slave_1: left allmulticast mode [ 2253.359412][T13508] bridge_slave_1: left promiscuous mode [ 2253.379183][T13508] bridge0: port 2(bridge_slave_1) entered disabled state [ 2253.444882][T13508] bridge_slave_0: left allmulticast mode [ 2253.476813][T13508] bridge_slave_0: left promiscuous mode [ 2253.483490][T13508] bridge0: port 1(bridge_slave_0) entered disabled state [ 2253.541366][T13508] bridge_slave_1: left allmulticast mode [ 2253.556841][T13508] bridge_slave_1: left promiscuous mode [ 2253.587185][T13508] bridge0: port 2(bridge_slave_1) entered disabled state [ 2253.624025][T13508] bridge_slave_0: left allmulticast mode [ 2253.630035][T13508] bridge_slave_0: left promiscuous mode [ 2253.635804][T13508] bridge0: port 1(bridge_slave_0) entered disabled state [ 2255.277682][T14926] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8803'. [ 2255.336931][T15351] Bluetooth: hci1: command tx timeout [ 2255.371075][T13508] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2255.409432][T13508] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2255.489667][T13508] bond0 (unregistering): Released all slaves [ 2255.747456][T13508] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2255.784952][T13508] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2255.809347][T13508] bond0 (unregistering): Released all slaves [ 2255.886573][T14840] chnl_net:caif_netlink_parms(): no params data found [ 2256.763329][T14840] bridge0: port 1(bridge_slave_0) entered blocking state [ 2256.786951][T14840] bridge0: port 1(bridge_slave_0) entered disabled state [ 2256.794245][T14840] bridge_slave_0: entered allmulticast mode [ 2256.828735][T14840] bridge_slave_0: entered promiscuous mode [ 2256.850585][T14840] bridge0: port 2(bridge_slave_1) entered blocking state [ 2256.861257][T14840] bridge0: port 2(bridge_slave_1) entered disabled state [ 2256.876885][T14840] bridge_slave_1: entered allmulticast mode [ 2256.884839][T14840] bridge_slave_1: entered promiscuous mode [ 2256.892505][T14587] veth0_vlan: entered promiscuous mode [ 2257.211186][T14626] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2257.229322][T14587] veth1_vlan: entered promiscuous mode [ 2257.372930][T14840] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2257.417542][T15351] Bluetooth: hci1: command tx timeout [ 2257.491635][T14840] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2257.642152][T14626] 8021q: adding VLAN 0 to HW filter on device team0 [ 2257.691191][T14840] team0: Port device team_slave_0 added [ 2257.711259][T14840] team0: Port device team_slave_1 added [ 2257.782407][T14587] veth0_macvtap: entered promiscuous mode [ 2257.886167][ T1366] bridge0: port 1(bridge_slave_0) entered blocking state [ 2257.893432][ T1366] bridge0: port 1(bridge_slave_0) entered forwarding state [ 2257.979727][T14840] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 2258.007389][T14840] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2258.063003][T14840] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 2258.099613][T14840] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 2258.108288][T14840] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2258.165890][T14840] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 2258.215260][T14587] veth1_macvtap: entered promiscuous mode [ 2258.254350][ T1366] bridge0: port 2(bridge_slave_1) entered blocking state [ 2258.261617][ T1366] bridge0: port 2(bridge_slave_1) entered forwarding state [ 2258.541273][T14840] hsr_slave_0: entered promiscuous mode [ 2258.578533][T14840] hsr_slave_1: entered promiscuous mode [ 2258.657375][T14840] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 2258.665022][T14840] Cannot create hsr debugfs directory [ 2258.741011][T14587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2258.766713][T14587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2258.776572][T14587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2258.805836][T14587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2258.836698][T14587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2258.858779][T14587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2258.877024][T14587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2258.899460][T14587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2258.920301][T14587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2258.946725][T14587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2258.968249][T14587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2258.988191][T14587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2259.006728][T14587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2259.038759][T14587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2259.059543][T14587] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 2259.432803][T14587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2259.476688][T14587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2259.486544][T14587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2259.497384][T15351] Bluetooth: hci1: command tx timeout [ 2259.522804][T14587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2259.533478][T14587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2259.545490][T14587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2259.555873][T14587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2259.577764][T14587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2259.588450][T14587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2259.599144][T14587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2259.614677][T14587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2259.630866][T14587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2259.640795][T14587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2259.652520][T14587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2259.673791][T14587] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 2259.883321][T14587] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2259.899477][T14587] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2259.917141][T14587] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2259.929866][T14587] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2260.042442][T13508] hsr_slave_0: left promiscuous mode [ 2260.076527][T13508] hsr_slave_1: left promiscuous mode [ 2260.094616][T13508] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 2260.116804][T13508] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 2260.134997][T13508] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 2260.167066][T13508] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 2260.208985][T13508] hsr_slave_0: left promiscuous mode [ 2260.229172][T13508] hsr_slave_1: left promiscuous mode [ 2260.260940][T13508] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 2260.276768][T13508] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 2260.290991][T13508] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 2260.327566][T13508] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 2260.445493][T13508] veth1_macvtap: left promiscuous mode [ 2260.463556][T13508] veth0_macvtap: left promiscuous mode [ 2260.476339][T13508] veth1_vlan: left promiscuous mode [ 2260.487312][T13508] veth0_vlan: left promiscuous mode [ 2260.497890][T13508] veth1_macvtap: left promiscuous mode [ 2260.503474][T13508] veth0_macvtap: left promiscuous mode [ 2260.523923][T13508] veth1_vlan: left promiscuous mode [ 2260.542589][T13508] veth0_vlan: left promiscuous mode [ 2262.108890][T13508] team0 (unregistering): Port device team_slave_1 removed [ 2262.230678][T13508] team0 (unregistering): Port device team_slave_0 removed [ 2263.954619][T13508] team0 (unregistering): Port device team_slave_1 removed [ 2264.038850][T13508] team0 (unregistering): Port device team_slave_0 removed [ 2265.705441][ T1366] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2265.739401][ T1366] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2265.948502][T13513] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2265.963364][T13513] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2266.241023][T14626] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 2266.523741][T14626] veth0_vlan: entered promiscuous mode [ 2266.623201][T14626] veth1_vlan: entered promiscuous mode [ 2266.671975][T14840] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 2266.693693][T14840] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 2266.805221][T14840] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 2266.865331][T14840] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 2266.925779][T14626] veth0_macvtap: entered promiscuous mode [ 2267.002480][T14626] veth1_macvtap: entered promiscuous mode [ 2267.137496][T14626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2267.167998][T14626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2267.189114][T14626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2267.222194][T14626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2267.233317][T14626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2267.245372][T14626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2267.274569][T14626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2267.297640][T14626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2267.316958][T14626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2267.346768][T14626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2267.367400][T14626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2267.386664][T14626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2267.409059][T14626] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 2267.463968][T14626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2267.496548][T14626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2267.531120][T14626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2267.556699][T14626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2267.586756][T14626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2267.617982][T14626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2267.647123][T14626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2267.676697][T14626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2267.686549][T14626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2267.756863][T14626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2267.777547][T14626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2267.805015][T14626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2267.842943][T14626] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 2267.905379][T14626] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2267.927995][T14626] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2267.948209][T14626] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2267.972199][T14626] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2268.223855][T14840] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2268.385589][T14840] 8021q: adding VLAN 0 to HW filter on device team0 [ 2268.394639][T18967] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2268.430358][T18967] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2268.490360][T13516] bridge0: port 1(bridge_slave_0) entered blocking state [ 2268.497611][T13516] bridge0: port 1(bridge_slave_0) entered forwarding state [ 2268.542181][T13516] bridge0: port 2(bridge_slave_1) entered blocking state [ 2268.549429][T13516] bridge0: port 2(bridge_slave_1) entered forwarding state [ 2268.589368][T13510] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2268.630590][T13510] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2269.461270][T14840] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 2269.654486][T14840] veth0_vlan: entered promiscuous mode [ 2269.722337][T14840] veth1_vlan: entered promiscuous mode [ 2269.874374][T14840] veth0_macvtap: entered promiscuous mode [ 2269.919997][T14840] veth1_macvtap: entered promiscuous mode [ 2270.028456][T14840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2270.076758][T14840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2270.128819][T14840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2270.157125][T14840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2270.189256][T14840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2270.223805][T14840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2270.264303][T14840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2270.295822][T14840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2270.327071][T14840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2270.346556][T14840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2270.373670][T14840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2270.416289][T14840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2270.431972][T14840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2270.452745][T14840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2270.506471][T14840] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 2270.563288][T14840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2270.615611][T14840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2270.666736][T14840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2270.708630][T14840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2270.736762][T14840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2270.767026][T14840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2270.789043][T14840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2270.826697][T14840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2270.858181][T14840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2270.889300][T14840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2270.928701][T14840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2270.971873][T14840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2271.005786][T14840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2271.050788][T14840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2271.088724][T14840] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 2271.175195][T14840] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2271.236749][T14840] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2271.245501][T14840] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2271.291049][T14840] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2271.679381][ T1366] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2271.728090][ T1366] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2271.917891][T13516] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2271.953903][T13516] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2274.851144][T15203] netlink: 40 bytes leftover after parsing attributes in process `syz.3.8851'. [ 2274.882738][T15203] nbd: must specify at least one socket [ 2275.489375][T15212] can: request_module (can-proto-3) failed. [ 2279.535576][T15251] delete_channel: no stack [ 2281.755275][T15282] Invalid ELF header magic: != ELF [ 2283.426855][ T1269] ieee802154 phy0 wpan0: encryption failed: -22 [ 2283.433335][ T1269] ieee802154 phy1 wpan1: encryption failed: -22 [ 2288.396866][T14930] delete_channel: no stack [ 2288.888683][ T5237] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 2288.898967][ T5237] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 2288.908571][ T5237] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 2288.935823][ T5237] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 2288.957910][ T5237] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 2288.965369][ T5237] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 2290.043787][T15360] chnl_net:caif_netlink_parms(): no params data found [ 2291.017134][T15351] Bluetooth: hci5: command tx timeout [ 2291.198665][T15360] bridge0: port 1(bridge_slave_0) entered blocking state [ 2291.210080][ T5237] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 2291.219973][T15360] bridge0: port 1(bridge_slave_0) entered disabled state [ 2291.229051][ T5237] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 2291.241232][ T5237] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 2291.267088][ T5237] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 2291.276016][ T5237] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 2291.283659][T15360] bridge_slave_0: entered allmulticast mode [ 2291.285399][T15360] bridge_slave_0: entered promiscuous mode [ 2291.308033][ T5237] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 2291.466943][T15360] bridge0: port 2(bridge_slave_1) entered blocking state [ 2291.474771][T15360] bridge0: port 2(bridge_slave_1) entered disabled state [ 2291.547259][T15360] bridge_slave_1: entered allmulticast mode [ 2291.598863][T15360] bridge_slave_1: entered promiscuous mode [ 2292.038450][T15360] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2292.145372][T15360] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2292.544958][T15360] team0: Port device team_slave_0 added [ 2292.810351][T15360] team0: Port device team_slave_1 added [ 2293.104403][ T5237] Bluetooth: hci5: command tx timeout [ 2293.285046][T15360] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 2293.328337][T15360] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2293.426799][ T5237] Bluetooth: hci6: command tx timeout [ 2293.486753][T15360] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 2293.568051][T15360] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 2293.575036][T15360] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2293.686768][T15360] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 2294.059403][T15360] hsr_slave_0: entered promiscuous mode [ 2294.107329][T15360] hsr_slave_1: entered promiscuous mode [ 2294.126785][T15360] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 2294.176708][T15360] Cannot create hsr debugfs directory [ 2295.176840][ T5237] Bluetooth: hci5: command tx timeout [ 2295.496860][ T5237] Bluetooth: hci6: command tx timeout [ 2295.541703][T15398] chnl_net:caif_netlink_parms(): no params data found [ 2296.084498][T15360] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2296.894050][T15360] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2297.256914][ T5237] Bluetooth: hci5: command tx timeout [ 2297.480605][T15360] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2297.567268][T15398] bridge0: port 1(bridge_slave_0) entered blocking state [ 2297.574463][T15398] bridge0: port 1(bridge_slave_0) entered disabled state [ 2297.581814][ T5237] Bluetooth: hci6: command tx timeout [ 2297.648725][T15398] bridge_slave_0: entered allmulticast mode [ 2297.695169][T15398] bridge_slave_0: entered promiscuous mode [ 2297.723122][T15398] bridge0: port 2(bridge_slave_1) entered blocking state [ 2297.776840][T15398] bridge0: port 2(bridge_slave_1) entered disabled state [ 2297.784139][T15398] bridge_slave_1: entered allmulticast mode [ 2297.820229][T15398] bridge_slave_1: entered promiscuous mode [ 2298.314552][T15360] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2298.635075][T15398] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2298.705437][T15398] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2299.405634][T15398] team0: Port device team_slave_0 added [ 2299.524775][T15398] team0: Port device team_slave_1 added [ 2299.657198][ T5237] Bluetooth: hci6: command tx timeout [ 2300.132546][T15360] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 2300.236336][T15360] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 2300.367499][T15398] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 2300.374480][T15398] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2300.506669][T15398] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 2300.549526][T15398] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 2300.556496][T15398] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2300.666741][T15398] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 2300.767003][T15360] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 2300.949440][T15360] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 2301.593624][T15339] delete_channel: no stack [ 2301.993579][T15398] hsr_slave_0: entered promiscuous mode [ 2302.095753][T15398] hsr_slave_1: entered promiscuous mode [ 2302.197926][T15398] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 2302.209874][T15398] Cannot create hsr debugfs directory [ 2305.135515][T15398] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2306.324081][T13508] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2306.530274][T15398] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2306.915954][T13508] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2307.151235][T15398] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2307.285087][T15360] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2307.551360][T13508] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2307.872068][T15398] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2308.219209][T15351] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 2308.240787][T15351] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 2308.251711][T15351] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 2308.291674][T13508] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2308.303212][T15351] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 2308.317194][T15351] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 2308.326897][T15351] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 2308.490972][T15360] 8021q: adding VLAN 0 to HW filter on device team0 [ 2308.555848][ T1366] bridge0: port 1(bridge_slave_0) entered blocking state [ 2308.563074][ T1366] bridge0: port 1(bridge_slave_0) entered forwarding state [ 2308.731842][T18967] bridge0: port 2(bridge_slave_1) entered blocking state [ 2308.739112][T18967] bridge0: port 2(bridge_slave_1) entered forwarding state [ 2309.401041][T13508] bridge_slave_1: left allmulticast mode [ 2309.420503][T13508] bridge_slave_1: left promiscuous mode [ 2309.426317][T13508] bridge0: port 2(bridge_slave_1) entered disabled state [ 2309.490358][T13508] bridge_slave_0: left allmulticast mode [ 2309.517632][T13508] bridge_slave_0: left promiscuous mode [ 2309.523518][T13508] bridge0: port 1(bridge_slave_0) entered disabled state [ 2310.391345][T15351] Bluetooth: hci2: command tx timeout [ 2311.080165][T13508] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2311.097007][T15351] Bluetooth: hci4: command 0x0406 tx timeout [ 2311.166539][T13508] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2311.214918][T13508] bond0 (unregistering): Released all slaves [ 2311.470867][T15398] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 2311.655222][T15398] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 2311.765417][T15398] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 2311.830677][T15398] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 2312.457003][ T5237] Bluetooth: hci2: command tx timeout [ 2312.898095][T13508] hsr_slave_0: left promiscuous mode [ 2312.975507][T13508] hsr_slave_1: left promiscuous mode [ 2313.033832][T13508] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 2313.056965][T13508] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 2313.078512][T13508] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 2313.085962][T13508] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 2313.220082][T13508] veth1_macvtap: left promiscuous mode [ 2313.225674][T13508] veth0_macvtap: left promiscuous mode [ 2313.236969][T13508] veth1_vlan: left promiscuous mode [ 2313.242370][T13508] veth0_vlan: left promiscuous mode [ 2314.536921][ T5237] Bluetooth: hci2: command tx timeout [ 2314.973309][T13508] team0 (unregistering): Port device team_slave_1 removed [ 2315.172154][T13508] team0 (unregistering): Port device team_slave_0 removed [ 2316.602062][T15492] chnl_net:caif_netlink_parms(): no params data found [ 2316.620373][ T5237] Bluetooth: hci2: command tx timeout [ 2316.896502][T15360] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 2317.179451][T15492] bridge0: port 1(bridge_slave_0) entered blocking state [ 2317.208554][T15492] bridge0: port 1(bridge_slave_0) entered disabled state [ 2317.247029][T15492] bridge_slave_0: entered allmulticast mode [ 2317.268629][T15492] bridge_slave_0: entered promiscuous mode [ 2317.308883][T15492] bridge0: port 2(bridge_slave_1) entered blocking state [ 2317.316073][T15492] bridge0: port 2(bridge_slave_1) entered disabled state [ 2317.347125][T15492] bridge_slave_1: entered allmulticast mode [ 2317.358743][T15492] bridge_slave_1: entered promiscuous mode [ 2317.501381][T15492] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2317.573673][T15492] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2317.784257][T15492] team0: Port device team_slave_0 added [ 2317.828431][T15360] veth0_vlan: entered promiscuous mode [ 2317.889298][T15492] team0: Port device team_slave_1 added [ 2317.903599][T15360] veth1_vlan: entered promiscuous mode [ 2318.370368][T15492] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 2318.391757][T15492] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2318.469228][T15492] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 2318.509964][T15492] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 2318.548022][T15492] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2318.618913][T15492] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 2318.654504][T15398] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2318.736606][T13508] bridge_slave_1: left allmulticast mode [ 2318.743292][T13508] bridge_slave_1: left promiscuous mode [ 2318.757536][T13508] bridge0: port 2(bridge_slave_1) entered disabled state [ 2318.806402][T13508] bridge_slave_0: left allmulticast mode [ 2318.813499][T13508] bridge_slave_0: left promiscuous mode [ 2318.823438][T13508] bridge0: port 1(bridge_slave_0) entered disabled state [ 2319.752685][T13508] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2319.776160][T13508] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2319.802025][T13508] bond0 (unregistering): Released all slaves [ 2319.963979][T15398] 8021q: adding VLAN 0 to HW filter on device team0 [ 2320.158523][T15360] veth0_macvtap: entered promiscuous mode [ 2320.195233][T15360] veth1_macvtap: entered promiscuous mode [ 2320.342540][T15492] hsr_slave_0: entered promiscuous mode [ 2320.417242][T15492] hsr_slave_1: entered promiscuous mode [ 2320.434129][T15492] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 2320.451061][T15492] Cannot create hsr debugfs directory [ 2320.752658][T13515] bridge0: port 1(bridge_slave_0) entered blocking state [ 2320.759908][T13515] bridge0: port 1(bridge_slave_0) entered forwarding state [ 2320.969021][T15360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2321.006681][T15360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2321.016528][T15360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2321.042494][T15360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2321.076604][T15360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2321.120415][T15360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2321.146795][T15360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2321.182676][T15360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2321.205324][T15360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2321.218963][T15360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2321.241356][T15360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2321.270226][T15360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2321.282868][T15360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2321.294657][T15360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2321.332691][T15360] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 2321.400034][T15360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2321.417193][T15360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2321.437144][T15360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2321.456693][T15360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2321.485580][T15360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2321.516759][T15360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2321.526599][T15360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2321.552004][T15360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2321.585413][T15360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2321.604689][T15360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2321.627648][T15360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2321.657871][T15360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2321.676313][T15360] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2321.706777][T15360] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2321.748716][T15360] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 2321.776477][T13508] hsr_slave_0: left promiscuous mode [ 2321.809865][T13508] hsr_slave_1: left promiscuous mode [ 2321.826906][T13508] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 2321.834361][T13508] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 2321.852807][T13508] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 2321.871756][T13508] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 2321.945336][T13508] veth1_macvtap: left promiscuous mode [ 2321.986943][T13508] veth0_macvtap: left promiscuous mode [ 2321.992707][T13508] veth1_vlan: left promiscuous mode [ 2322.026833][T13508] veth0_vlan: left promiscuous mode [ 2323.709132][T13508] team0 (unregistering): Port device team_slave_1 removed [ 2323.738177][ T30] INFO: task syz.0.8589:13956 blocked for more than 143 seconds. [ 2323.746406][ T30] Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 2323.776992][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 2323.785697][ T30] task:syz.0.8589 state:D stack:26464 pid:13956 tgid:13956 ppid:12289 flags:0x00000004 [ 2323.830191][ T30] Call Trace: [ 2323.833523][ T30] [ 2323.836477][ T30] __schedule+0xe37/0x5490 [ 2323.876691][ T30] ? __pfx___lock_acquire+0x10/0x10 [ 2323.881974][ T30] ? __pfx___schedule+0x10/0x10 [ 2323.897654][ T30] ? schedule+0x298/0x350 [ 2323.902040][ T30] ? __pfx_lock_release+0x10/0x10 [ 2323.917548][ T30] schedule+0xe7/0x350 [ 2323.921668][ T30] schedule_timeout+0x258/0x2a0 [ 2323.937131][ T30] ? __pfx_schedule_timeout+0x10/0x10 [ 2323.953631][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 2323.986679][ T30] __wait_for_common+0x3de/0x5f0 [ 2323.991673][ T30] ? __pfx_schedule_timeout+0x10/0x10 [ 2324.006692][ T30] ? __pfx___wait_for_common+0x10/0x10 [ 2324.026151][ T30] ? __pfx_try_to_wake_up+0x10/0x10 [ 2324.032831][ T30] wait_for_completion_state+0x1c/0x40 [ 2324.045796][ T30] do_coredump+0x821/0x3da0 [ 2324.056003][ T30] ? __pfx_do_coredump+0x10/0x10 [ 2324.075933][ T30] ? find_held_lock+0x2d/0x110 [ 2324.086686][ T30] get_signal+0x237c/0x26d0 [ 2324.091248][ T30] ? __pfx_get_signal+0x10/0x10 [ 2324.096113][ T30] ? rcu_is_watching+0x12/0xc0 [ 2324.137667][ T30] ? trace_irq_disable.constprop.0+0xe4/0x130 [ 2324.143814][ T30] arch_do_signal_or_restart+0x90/0x7e0 [ 2324.166670][ T30] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 2324.196731][ T30] ? do_user_addr_fault+0xa4b/0x13f0 [ 2324.202092][ T30] irqentry_exit_to_user_mode+0x13f/0x280 [ 2324.226750][ T30] asm_exc_page_fault+0x26/0x30 [ 2324.231667][ T30] RIP: 0033:0x7f6d8ba48263 [ 2324.236102][ T30] RSP: 002b:00007ffd46a418b0 EFLAGS: 00010246 [ 2324.276739][ T30] RAX: 0000000000000000 RBX: 00007f6d8bd362a0 RCX: 0000000000000000 [ 2324.284774][ T30] RDX: 00007f6d8bd36208 RSI: 00007f6d8bd35f80 RDI: 00007f6d8bd362a0 [ 2324.316715][ T30] RBP: 00007f6d8bd36214 R08: 00007f6d8bd35f80 R09: 0000000000000030 [ 2324.325300][ T30] R10: 0000000000000000 R11: 0000000000000004 R12: 0000000000000003 [ 2324.357962][ T30] R13: 00007f6d8bd36208 R14: 0000000000000006 R15: 0000000000000adf [ 2324.366004][ T30] [ 2324.380608][ T30] INFO: task syz.0.8589:13961 blocked for more than 144 seconds. [ 2324.398411][ T30] Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 2324.405734][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 2324.436715][ T30] task:syz.0.8589 state:D stack:27200 pid:13961 tgid:13956 ppid:12289 flags:0x00004004 [ 2324.457545][ T30] Call Trace: [ 2324.461122][ T30] [ 2324.464076][ T30] __schedule+0xe37/0x5490 [ 2324.476214][ T30] ? __pfx___lock_acquire+0x10/0x10 [ 2324.486732][ T30] ? __pfx___lock_acquire+0x10/0x10 [ 2324.491969][ T30] ? __pfx_lock_release+0x10/0x10 [ 2324.506734][ T30] ? __pfx___schedule+0x10/0x10 [ 2324.511636][ T30] ? schedule+0x298/0x350 [ 2324.516003][ T30] ? __pfx_lock_release+0x10/0x10 [ 2324.536742][ T30] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 2324.542171][ T30] ? __pfx___futex_wait+0x10/0x10 [ 2324.556936][ T30] schedule+0xe7/0x350 [ 2324.566815][ T30] do_exit+0x3fe/0x2bb0 [ 2324.571276][ T30] ? get_signal+0x8fb/0x26d0 [ 2324.575890][ T30] ? __pfx_do_exit+0x10/0x10 [ 2324.596413][ T30] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 2324.631481][ T30] do_group_exit+0xd3/0x2a0 [ 2324.636047][ T30] get_signal+0x2658/0x26d0 [ 2324.656693][ T30] ? __pfx_get_signal+0x10/0x10 [ 2324.667113][ T30] ? __pfx_do_futex+0x10/0x10 [ 2324.676763][ T30] arch_do_signal_or_restart+0x90/0x7e0 [ 2324.682359][ T30] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 2324.702344][ T30] syscall_exit_to_user_mode+0x150/0x2a0 [ 2324.708462][ T30] do_syscall_64+0xda/0x250 [ 2324.713271][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2324.719755][ T30] RIP: 0033:0x7f6d8bb7def9 [ 2324.724192][ T30] RSP: 002b:00007f6d8c9760e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 2324.735003][ T30] RAX: 0000000000000000 RBX: 00007f6d8bd36138 RCX: 00007f6d8bb7def9 [ 2324.744716][ T30] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6d8bd36138 [ 2324.753560][ T30] RBP: 00007f6d8bd36130 R08: 0000000000000000 R09: 0000000000000000 [ 2324.773014][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d8bd3613c [ 2324.795197][ T30] R13: 0000000000000000 R14: 00007ffd46a41670 R15: 00007ffd46a41758 [ 2324.803661][ T30] [ 2324.816774][ T30] INFO: task syz.0.8589:13962 blocked for more than 144 seconds. [ 2324.824509][ T30] Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 2324.845113][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 2324.865040][ T30] task:syz.0.8589 state:D stack:25328 pid:13962 tgid:13956 ppid:12289 flags:0x00004004 [ 2324.893994][ T30] Call Trace: [ 2324.897615][ T30] [ 2324.900563][ T30] __schedule+0xe37/0x5490 [ 2324.905005][ T30] ? __pfx___lock_acquire+0x10/0x10 [ 2324.922080][ T30] ? __pfx___lock_acquire+0x10/0x10 [ 2324.927657][ T30] ? futex_unqueue+0xb5/0x140 [ 2324.933723][ T30] ? __pfx___schedule+0x10/0x10 [ 2324.955242][ T30] ? schedule+0x298/0x350 [ 2324.960286][ T30] ? __pfx_lock_release+0x10/0x10 [ 2324.965358][ T30] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 2324.985172][ T30] ? __pfx___futex_wait+0x10/0x10 [ 2324.990456][ T30] schedule+0xe7/0x350 [ 2324.994597][ T30] do_exit+0x3fe/0x2bb0 [ 2325.014238][ T30] ? get_signal+0x8fb/0x26d0 [ 2325.026838][ T30] ? __pfx_do_exit+0x10/0x10 [ 2325.031469][ T30] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 2325.049809][ T30] do_group_exit+0xd3/0x2a0 [ 2325.054359][ T30] get_signal+0x2658/0x26d0 [ 2325.060048][ T30] ? find_held_lock+0x2d/0x110 [ 2325.064846][ T30] ? __pfx_get_signal+0x10/0x10 [ 2325.071135][ T30] ? __pfx_do_futex+0x10/0x10 [ 2325.075841][ T30] ? fd_install+0x223/0x750 [ 2325.088577][ T30] arch_do_signal_or_restart+0x90/0x7e0 [ 2325.094161][ T30] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 2325.109760][ T30] syscall_exit_to_user_mode+0x150/0x2a0 [ 2325.115438][ T30] do_syscall_64+0xda/0x250 [ 2325.127347][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2325.133285][ T30] RIP: 0033:0x7f6d8bb7def9 [ 2325.150549][ T30] RSP: 002b:00007f6d8c9550e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 2325.166783][ T30] RAX: fffffffffffffe00 RBX: 00007f6d8bd36210 RCX: 00007f6d8bb7def9 [ 2325.175777][ T30] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6d8bd36210 [ 2325.186002][ T30] RBP: 00007f6d8bd36208 R08: 0000000000000000 R09: 0000000000000000 [ 2325.194357][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d8bd36214 [ 2325.202692][ T30] R13: 0000000000000000 R14: 00007ffd46a41670 R15: 00007ffd46a41758 [ 2325.215431][ T30] [ 2325.230467][ T30] INFO: task syz.0.8589:13968 blocked for more than 144 seconds. [ 2325.266702][ T30] Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 2325.284607][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 2325.303765][ T30] task:syz.0.8589 state:D stack:27792 pid:13968 tgid:13956 ppid:12289 flags:0x00004004 [ 2325.315910][ T30] Call Trace: [ 2325.326911][ T30] [ 2325.329869][ T30] __schedule+0xe37/0x5490 [ 2325.334314][ T30] ? __pfx___lock_acquire+0x10/0x10 [ 2325.352543][ T30] ? __pfx___lock_acquire+0x10/0x10 [ 2325.359455][ T30] ? futex_unqueue+0xb5/0x140 [ 2325.364178][ T30] ? __pfx___schedule+0x10/0x10 [ 2325.378687][ T30] ? schedule+0x298/0x350 [ 2325.383068][ T30] ? __pfx_lock_release+0x10/0x10 [ 2325.398971][ T30] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 2325.404395][ T30] ? __pfx___futex_wait+0x10/0x10 [ 2325.417114][ T30] schedule+0xe7/0x350 [ 2325.421233][ T30] do_exit+0x3fe/0x2bb0 [ 2325.425419][ T30] ? get_signal+0x8fb/0x26d0 [ 2325.431212][ T30] ? __pfx_do_exit+0x10/0x10 [ 2325.435847][ T30] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 2325.441766][ T30] do_group_exit+0xd3/0x2a0 [ 2325.456960][ T30] get_signal+0x2658/0x26d0 [ 2325.462473][ T30] ? __pfx___mm_populate+0x10/0x10 [ 2325.483736][ T30] ? __pfx_get_signal+0x10/0x10 [ 2325.497300][ T30] ? __pfx_do_futex+0x10/0x10 [ 2325.502079][ T30] arch_do_signal_or_restart+0x90/0x7e0 [ 2325.529423][ T30] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 2325.535659][ T30] syscall_exit_to_user_mode+0x150/0x2a0 [ 2325.542476][ T30] do_syscall_64+0xda/0x250 [ 2325.548755][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2325.554859][ T30] RIP: 0033:0x7f6d8bb7def9 [ 2325.559952][ T30] RSP: 002b:00007f6d8c9340e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 2325.581663][ T30] RAX: fffffffffffffe00 RBX: 00007f6d8bd362e8 RCX: 00007f6d8bb7def9 [ 2325.606713][ T30] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6d8bd362e8 [ 2325.614728][ T30] RBP: 00007f6d8bd362e0 R08: 0000000000000000 R09: 0000000000000000 [ 2325.634706][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d8bd362ec [ 2325.643351][ T30] R13: 0000000000000000 R14: 00007ffd46a41670 R15: 00007ffd46a41758 [ 2325.657902][ T30] [ 2325.661040][ T30] INFO: task syz.0.8589:13972 blocked for more than 145 seconds. [ 2325.671559][ T30] Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 2325.680039][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 2325.690964][ T30] task:syz.0.8589 state:D stack:28752 pid:13972 tgid:13956 ppid:12289 flags:0x00004004 [ 2325.707334][ T30] Call Trace: [ 2325.710657][ T30] [ 2325.713609][ T30] __schedule+0xe37/0x5490 [ 2325.718903][ T30] ? __pfx___lock_acquire+0x10/0x10 [ 2325.724150][ T30] ? __pfx___lock_acquire+0x10/0x10 [ 2325.729900][ T30] ? futex_unqueue+0xb5/0x140 [ 2325.734626][ T30] ? __pfx___schedule+0x10/0x10 [ 2325.740130][ T30] ? schedule+0x298/0x350 [ 2325.744494][ T30] ? __pfx_lock_release+0x10/0x10 [ 2325.750067][ T30] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 2325.757849][ T30] ? __pfx___futex_wait+0x10/0x10 [ 2325.762950][ T30] schedule+0xe7/0x350 [ 2325.769063][ T30] do_exit+0x3fe/0x2bb0 [ 2325.773269][ T30] ? get_signal+0x8fb/0x26d0 [ 2325.779171][ T30] ? __pfx_do_exit+0x10/0x10 [ 2325.783807][ T30] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 2325.791138][ T30] do_group_exit+0xd3/0x2a0 [ 2325.797444][ T30] get_signal+0x2658/0x26d0 [ 2325.801989][ T30] ? __pfx_get_signal+0x10/0x10 [ 2325.810700][ T30] ? __pfx_do_futex+0x10/0x10 [ 2325.815418][ T30] arch_do_signal_or_restart+0x90/0x7e0 [ 2325.824180][ T30] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 2325.842144][ T30] syscall_exit_to_user_mode+0x150/0x2a0 [ 2325.854344][ T30] do_syscall_64+0xda/0x250 [ 2325.865864][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2325.873256][ T30] RIP: 0033:0x7f6d8bb7def9 [ 2325.886718][ T30] RSP: 002b:00007f6d8c9130e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 2325.896170][ T30] RAX: fffffffffffffe00 RBX: 00007f6d8bd363c0 RCX: 00007f6d8bb7def9 [ 2325.926400][ T30] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6d8bd363c0 [ 2325.940966][ T30] RBP: 00007f6d8bd363b8 R08: 0000000000000000 R09: 0000000000000000 [ 2325.949590][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d8bd363c4 [ 2325.959565][ T30] R13: 0000000000000000 R14: 00007ffd46a41670 R15: 00007ffd46a41758 [ 2325.968153][ T30] [ 2325.972425][ T30] [ 2325.972425][ T30] Showing all locks held in the system: [ 2325.984605][ T30] 1 lock held by pool_workqueue_/3: [ 2325.991334][ T30] #0: ffffffff8ddc52f8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: exp_funnel_lock+0x1a4/0x3b0 [ 2326.002975][ T30] 1 lock held by khungtaskd/30: [ 2326.008223][ T30] #0: ffffffff8ddb9b60 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x75/0x340 [ 2326.018559][ T30] 1 lock held by dhcpcd/4900: [ 2326.023247][ T30] #0: ffffffff8faac368 (rtnl_mutex){+.+.}-{3:3}, at: devinet_ioctl+0x1c1/0x1e10 [ 2326.036226][ T30] 2 locks held by getty/4991: [ 2326.041221][ T30] #0: ffff8880303840a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 2326.051333][ T30] #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xfba/0x1480 [ 2326.064125][ T30] 3 locks held by kworker/1:6/5323: [ 2326.069661][ T30] #0: ffff88801ac80948 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x11f0/0x1ad0 [ 2326.088755][ T30] #1: ffffc90003f57d80 (deferred_process_work){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1ad0 [ 2326.110926][ T30] #2: ffffffff8faac368 (rtnl_mutex){+.+.}-{3:3}, at: switchdev_deferred_process_work+0xe/0x20 [ 2326.126934][ T30] 3 locks held by kworker/u8:28/18967: [ 2326.132409][ T30] #0: ffff88802f71e148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x11f0/0x1ad0 [ 2326.148311][ T30] #1: ffffc9000d44fd80 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1ad0 [ 2326.162259][ T30] #2: ffffffff8faac368 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xcf/0x14d0 [ 2326.172025][ T30] 3 locks held by kworker/u8:27/1366: [ 2326.178625][ T30] #0: ffff88801ac89148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x11f0/0x1ad0 [ 2326.191076][ T30] #1: ffffc90004677d80 ((linkwatch_work).work){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1ad0 [ 2326.203217][ T30] #2: ffffffff8faac368 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0x51/0xc0 [ 2326.217180][ T30] 5 locks held by kworker/u8:55/13508: [ 2326.222664][ T30] #0: ffff88801bae5948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x11f0/0x1ad0 [ 2326.244054][ T30] #1: ffffc9000c16fd80 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1ad0 [ 2326.261223][ T30] #2: ffffffff8fa96750 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0xbb/0xb40 [ 2326.282323][ T30] #3: ffffffff8faac368 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0x8f/0x9b0 [ 2326.306740][ T30] #4: ffff88806b1dcd40 (team->team_lock_key#84){+.+.}-{3:3}, at: team_del_slave+0x31/0x1b0 [ 2326.331331][ T30] 1 lock held by syz.0.8589/13959: [ 2326.336471][ T30] 1 lock held by syz-executor/15360: [ 2326.346650][ T30] #0: ffffffff8faac368 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xea0 [ 2326.356104][ T30] 1 lock held by syz-executor/15398: [ 2326.375664][ T30] #0: ffffffff8faac368 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xea0 [ 2326.396673][ T30] 1 lock held by syz.1.8918/15452: [ 2326.402748][ T30] #0: ffffffff8faac368 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x38/0x230 [ 2326.423525][ T30] 1 lock held by syz-executor/15492: [ 2326.434095][ T30] #0: ffffffff8faac368 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xea0 [ 2326.444173][ T30] 1 lock held by syz.1.8952/15630: [ 2326.456690][ T30] #0: ffffffff8faac368 (rtnl_mutex){+.+.}-{3:3}, at: ipv6_route_ioctl+0x3d3/0x600 [ 2326.466097][ T30] [ 2326.471401][T13508] team0 (unregistering): Port device team_slave_0 removed [ 2326.516776][ T30] ============================================= [ 2326.516776][ T30] [ 2326.525242][ T30] NMI backtrace for cpu 1 [ 2326.529563][ T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 2326.539886][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 2326.549935][ T30] Call Trace: [ 2326.553209][ T30] [ 2326.556141][ T30] dump_stack_lvl+0x116/0x1f0 [ 2326.560821][ T30] nmi_cpu_backtrace+0x27b/0x390 [ 2326.565768][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 2326.571754][ T30] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 2326.577743][ T30] watchdog+0xf0c/0x1240 [ 2326.581998][ T30] ? __pfx_watchdog+0x10/0x10 [ 2326.586678][ T30] ? lockdep_hardirqs_on+0x7c/0x110 [ 2326.591882][ T30] ? __kthread_parkme+0x148/0x220 [ 2326.596910][ T30] ? __pfx_watchdog+0x10/0x10 [ 2326.601593][ T30] kthread+0x2c1/0x3a0 [ 2326.605660][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 2326.610863][ T30] ? __pfx_kthread+0x10/0x10 [ 2326.615450][ T30] ret_from_fork+0x45/0x80 [ 2326.619883][ T30] ? __pfx_kthread+0x10/0x10 [ 2326.624470][ T30] ret_from_fork_asm+0x1a/0x30 [ 2326.629248][ T30] [ 2326.635927][ T30] Sending NMI from CPU 1 to CPUs 0: [ 2326.643823][ C0] NMI backtrace for cpu 0 [ 2326.643837][ C0] CPU: 0 UID: 0 PID: 13514 Comm: kworker/u8:61 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 2326.643866][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 2326.643881][ C0] Workqueue: bat_events batadv_nc_worker [ 2326.643920][ C0] RIP: 0010:enqueue_timer+0x0/0x550 [ 2326.643953][ C0] Code: 89 fb e8 c3 53 13 00 48 89 df 5b be 01 00 00 00 e9 f5 fc ff ff 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <41> 57 41 89 d7 41 56 49 89 ce 41 55 41 54 4d 89 fc 55 48 89 fd 53 [ 2326.643975][ C0] RSP: 0018:ffffc9000c1bfa00 EFLAGS: 00000046 [ 2326.643993][ C0] RAX: 0000000000000024 RBX: ffff888066b01768 RCX: 00000001000316e4 [ 2326.644009][ C0] RDX: 0000000000000024 RSI: ffff888066b01768 RDI: ffff8880b882a840 [ 2326.644025][ C0] RBP: ffff8880b882a840 R08: 0000000000000007 R09: 000000000000003e [ 2326.644040][ C0] R10: 0000000000000001 R11: ffffffff8b4f4bc0 R12: 00000001000316e2 [ 2326.644055][ C0] R13: 0000000000000000 R14: ffff8880b882a840 R15: 00000000ffffffff [ 2326.644071][ C0] FS: 0000000000000000(0000) GS:ffff8880b8800000(0000) knlGS:0000000000000000 [ 2326.644094][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2326.644111][ C0] CR2: 0000559ebf2b5fe8 CR3: 000000000db7c000 CR4: 00000000003506f0 [ 2326.644127][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2326.644142][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2326.644157][ C0] Call Trace: [ 2326.644165][ C0] [ 2326.644174][ C0] ? show_regs+0x8c/0xa0 [ 2326.644208][ C0] ? nmi_cpu_backtrace+0x1d8/0x390 [ 2326.644243][ C0] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 2326.644275][ C0] ? nmi_handle+0x1a9/0x5c0 [ 2326.644298][ C0] ? __pfx_enqueue_timer+0x10/0x10 [ 2326.644333][ C0] ? default_do_nmi+0x6a/0x160 [ 2326.644363][ C0] ? exc_nmi+0x170/0x1e0 [ 2326.644390][ C0] ? end_repeat_nmi+0xf/0x53 [ 2326.644417][ C0] ? __pfx_enqueue_timer+0x10/0x10 [ 2326.644448][ C0] ? __pfx_enqueue_timer+0x10/0x10 [ 2326.644478][ C0] ? __pfx_enqueue_timer+0x10/0x10 [ 2326.644509][ C0] [ 2326.644516][ C0] [ 2326.644523][ C0] __mod_timer+0x8d7/0xdc0 [ 2326.644556][ C0] ? __pfx___mod_timer+0x10/0x10 [ 2326.644587][ C0] ? __pfx_lock_release+0x10/0x10 [ 2326.644620][ C0] ? clear_pending_if_disabled+0xa9/0x210 [ 2326.644649][ C0] add_timer_global+0x8a/0xc0 [ 2326.644680][ C0] __queue_delayed_work+0x1ba/0x2e0 [ 2326.644716][ C0] queue_delayed_work_on+0x12a/0x150 [ 2326.644753][ C0] batadv_nc_worker+0xb08/0x1060 [ 2326.644793][ C0] ? __pfx_batadv_nc_worker+0x10/0x10 [ 2326.644836][ C0] process_one_work+0x958/0x1ad0 [ 2326.644874][ C0] ? __pfx_batadv_nc_worker+0x10/0x10 [ 2326.644908][ C0] ? __pfx_process_one_work+0x10/0x10 [ 2326.644945][ C0] ? assign_work+0x1a0/0x250 [ 2326.644977][ C0] worker_thread+0x6c8/0xf00 [ 2326.645017][ C0] ? __pfx_worker_thread+0x10/0x10 [ 2326.645049][ C0] kthread+0x2c1/0x3a0 [ 2326.645072][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 2326.645104][ C0] ? __pfx_kthread+0x10/0x10 [ 2326.645129][ C0] ret_from_fork+0x45/0x80 [ 2326.645161][ C0] ? __pfx_kthread+0x10/0x10 [ 2326.645185][ C0] ret_from_fork_asm+0x1a/0x30 [ 2326.645225][ C0] [ 2326.759739][ T30] Kernel panic - not syncing: hung_task: blocked tasks [ 2326.759757][ T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 2326.759785][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 2326.759799][ T30] Call Trace: [ 2326.759809][ T30] [ 2326.759818][ T30] dump_stack_lvl+0x3d/0x1f0 [ 2326.759851][ T30] panic+0x6dc/0x7c0 [ 2326.759881][ T30] ? __pfx_panic+0x10/0x10 [ 2326.759909][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 2326.759939][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 2326.759970][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 2326.759995][ T30] ? watchdog+0xd76/0x1240 [ 2326.760027][ T30] ? watchdog+0xd69/0x1240 [ 2326.760067][ T30] watchdog+0xd87/0x1240 [ 2326.760103][ T30] ? __pfx_watchdog+0x10/0x10 [ 2326.760133][ T30] ? lockdep_hardirqs_on+0x7c/0x110 [ 2326.760169][ T30] ? __kthread_parkme+0x148/0x220 [ 2326.760196][ T30] ? __pfx_watchdog+0x10/0x10 [ 2326.760227][ T30] kthread+0x2c1/0x3a0 [ 2326.760250][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 2326.760281][ T30] ? __pfx_kthread+0x10/0x10 [ 2326.760306][ T30] ret_from_fork+0x45/0x80 [ 2326.760338][ T30] ? __pfx_kthread+0x10/0x10 [ 2326.760363][ T30] ret_from_fork_asm+0x1a/0x30 [ 2326.760407][ T30] [ 2326.763779][ T30] Kernel Offset: disabled [ 2327.087766][ T30] Rebooting in 86400 seconds..