last executing test programs: 1.763582042s ago: executing program 0 (id=1): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/memory/memory15/online\x00', 0xa001, 0x0) write$auto(r0, &(0x7f0000000140)='0[.[\x00', 0xcd04) adjtimex$auto(&(0x7f0000000000)={0x4, 0x0, 0xcbe9, 0xffff, 0xa, 0x80000000, 0xd37f, 0x0, 0xffff, 0xc, 0x3, {0x10, 0x6}, 0xfffffffffffffffc, 0x10002, 0x2, 0x4, 0x0, 0xfffffffdfffffffa, 0x1, 0x0, 0x9, 0x7, 0xffffffff}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000) r1 = gettid() process_vm_readv$auto(r1, &(0x7f0000000040)={0x0, 0x2}, 0x4, &(0x7f00000000c0)={0x0, 0x100000000000002}, 0x3, 0x0) sysfs$auto(0x2, 0x101000000000007, 0x0) keyctl$auto(0x2000000000000017, 0x8000, 0x2d, 0xc4, 0x20803) r2 = bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3) mmap$auto(0x0, 0x20009, 0x20004000010000df, 0xeb2, r2, 0x8000) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d) sendfile$auto(0x6, 0x3, 0x0, 0xfdef) io_setup$auto(0x80002, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_FORWARD2(0xffffffffffffffff, 0x40084149, &(0x7f0000001080)=0x7) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x500, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0x5f, 0x1b5e, 0x2, 0x8000) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x0, 0x0) prctl$auto(0x1000000003b, 0x1, 0x4, 0x4, 0x7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000001040), 0x40, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) fcntl$auto(0x2, 0x401, 0x80000001) ioctl$auto_TIOCVHANGUP2(r3, 0x5437, 0x0) r4 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) read$auto_rng_chrdev_ops_core(r4, &(0x7f0000000040)=""/4096, 0xfffffe82) 1.685904971s ago: executing program 3 (id=4): openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty0\x00', 0x80, 0x0) mmap$auto(0xfffffffffffffffe, 0x400008, 0xdf, 0x9b72, 0x7, 0x800008000) bpf$auto(0xa, &(0x7f00000001c0)=@query={@target_ifindex, 0x8, 0x81, 0x3c, 0x1, @count=0x6, 0x0, 0x4, 0x0, 0x9, 0x570}, 0xd) socket(0x2, 0x2, 0x0) socket(0x28, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x1c8340, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) select$auto(0xd, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xffffffffffff7fff, 0x1, 0x948b, 0x2, 0x17f4da0a, 0x400000006, 0x3, 0x300000000000000, 0x9, 0x5, 0x6d3c, 0x5, 0x80000000002]}, 0x0) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0) write$auto_seq_oss_f_ops_seq_oss(r0, &(0x7f0000000c80)="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", 0x300) close_range$auto(0x0, 0xfffffffffffff000, 0x0) mlock$auto(0xfbe8, 0x4) mlock$auto(0x7, 0xe) mlock$auto(0x7c88, 0x7fff) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x81, 0x8000) r1 = socketpair$auto(0xfff, 0x1, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto(0x4, 0x0, 0x100082) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x11, 0x80003, 0x300) setsockopt$auto(0x3, 0x1, 0x28, 0x0, 0x808) read$auto(0x3, 0x0, 0x80) recvfrom$auto(0x3, 0x0, 0x800000000e, 0xa00, 0x0, 0xfffffffffffffffd) read$auto_ima_measurements_ops_ima_fs(r1, &(0x7f0000000040)=""/219, 0xdb) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) 1.09500466s ago: executing program 3 (id=5): semget$auto(0x0, 0x13c, 0x1ff) semtimedop$auto(0x0, &(0x7f0000000000)={0x7, 0x9, 0x36ec}, 0x1, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/tty/ptyc1/power/runtime_active_time\x00', 0x5aa82, 0x0) sendfile$auto(r0, r0, 0x0, 0x1) 902.79496ms ago: executing program 3 (id=6): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_random_fops_random(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0) read$auto_random_fops_random(r1, 0x0, 0x0) r2 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000880), r0) sendmsg$auto_BATADV_CMD_GET_ORIGINATORS(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000080)={0x1c, r2, 0x3abba0b2ae0bab93, 0x70bd2c, 0x25dfdbfb, {}, [@BATADV_ATTR_HOP_PENALTY={0xfffffe9a, 0x35, 0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4840}, 0x4040010) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000980), r3) sendmsg$auto_TIPC_NL_MEDIA_SET(r3, &(0x7f000000a4c0)={0x0, 0x0, &(0x7f000000a480)={&(0x7f0000009800)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010029bd7000ffdbdf250c00007e000005a075645e827b010101"], 0x20}, 0x1, 0x0, 0x0, 0x4000}, 0x20000048) 752.604979ms ago: executing program 1 (id=2): kexec_load$auto(0xfffffffffffffffb, 0x2, &(0x7f0000000140)={@buf=0x0, 0x80000000, 0x4, 0xffffffffffffffff}, 0x4) r0 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0) ioctl$auto(0x3, 0x81484d11, 0x38) pivot_root$auto(0x0, &(0x7f00000004c0)='/\x00\xf5\xdf\xeb\xa1\xb1\xccYE\x92\x0e\xf1\xb6?S\xad\xdeiN\xc0\xb6\xa7>\x95\x1e\xdd\x03;t}\"\x01\xbf\an4>j<\xcb\xe0n\xa1\xae\xf7;\xf5\tJ\xb0\x95\xd5\x96\xae(\xd2\x06\xa7\xc2o\xe25\x8b\xe4\xac\x87\x98NAe\xf0\xf1\xd9\xd36\x98\x86\xca\xf6\xf8\xd0/\x1f\xb3\xe4N\xc0\x06\'\x11\x8a\xe108N/\xcc\x1f\xa9\xd0\xac\xf2\xf5\x90\xbbO\xcc\xa9qH\x00[\x86o\xf4\xaf\x93\x14\xbf|@\xb6E\xd5\xa7\xa9^\x84\x19\xca\x84\\\xb9u8\xa4\f\x7f\xa1Vh\xdc\'\x0e\xf6\xd9;\xcf@\xea\xde\xa0\xa8\xea\xef\xfcK5\x87Z\xc1\xccOx\x8bn\x1b\x93@o\xf7\xe30\x90\b\aQ_\xb9\x9dO\xab\xea \x88\xdc\xda>\xdc.O.\xc8\xe2\x04D\xc6\x14A\x7f\x000\xdd*\a\vX\xb0\x8bI\xd0K)u\x13{-\x02\xb2B\xabd[\xdd\xdc\x10M\x9c\x88a\xfd\xa1\x12\xeb\xe0O\xf8\xbf37e\x1e\xf1@\xe3\xae\xe4\xef\xbd|D\x1e;3\x99g\xd8\xf5\xf3\xe0\x96D\x93\x93\x86m\xa0Fn;\xff\xc3}\xb8\xcd\x0f0F\x96\x98\xd0\x19\xf5\xdf\xf1B\x17_t\xe4|i\xcd\x81|w\xfcNc\xdd\xb8\xdbQ\x0fb}c`=F\x91_\xbd+E\b\x14\x848\xe3\xee/\xe37\xcb\x00\xd7\xe0\x8f\xb2\xffU\xa3\n\xb3PW\x11\xe1\xdd\x05\x86\x9c\xcf\xfe\xfapL\xb2\x05\x82\xf4\xf2v\xe8\x83\xc9*M\x90\xa6P\x98\xb1\x94\x84\xb7\x00\xf2\xf0#\xd4\xe4\xe2\xaa~\x1d\xbc \xa2y\xae@\xab\x1d\xd8pBg\xbb\xa8|g\xc70.\x04\"\ff\xb0\xc6umooMT\xa8\xd3\x97 ?\xf1\x80\x01\x80\x10\xe9\x84Ff\xd4WU\xc41\xc3}\x03\xdc\'\xdd\xecJ\x97\xdb\xed\rr\xb6-$\x8b\xc5i\xe3\x113\x89M\xe4\xd7\x1dX\xc9\x15\x00\xd7j1t\\ \x88>s\xb5\x83\xf3\xef\x05\xb8+Y\x04{\x9a\x8e|\xfd\x92\xfb\xd1\"\x85\xb1\xf4*=\xee{\x7fS%;\xfd\xc0,\xa7\x973\xdc\x7f/B\xd8pe!\xd8sl\x15g\xd5\x05\x8eRQ\nm\xaa\xf2N\x1d\xda\xeb\xe3\x06\xd1at\xd9\xd5\xb2\xcb\xf5\x83\x84\x1eF\xab\x00\x8f\xa4\xb3\xd6\xaf\xcee3s\t\xf5\xcc*\xff\xf5\xf2\x98\x89T\x80\xa8\xae\x1e0\xe5\xa6\xc9.\v}\xa3\vi\x06e\xbd\xa1u\xc5_B\x8a\xe2@sF\xfd\xa9\x8f\x11\xdc\xbe\rjrb\x8a\xa6\x0f\xb3Zq\xf2\xce\xbc\xf3X\xcc\a\xe8v\xdb\xa0\x1cb0x0}) sendmsg$auto_NL80211_CMD_SET_WOWLAN(r3, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="0100ff000000000000ea4900000008000300", @ANYRES32=r5], 0x1c}}, 0x14000080) r6 = waitid$auto_P_PID(0x1, 0xffffffffffffffff, &(0x7f0000000100)={@_si_pad}, 0x6, &(0x7f0000000180)={{0x3, 0x48c7c470}, {0x3374, 0x6}, 0x5, 0xfffffffffffffffa, 0x2, 0xd31, 0x9, 0x0, 0xc5, 0x7, 0x7, 0x9, 0x8, 0x8557, 0x7, 0xe4}) r7 = setfsuid$auto(0xee01) setresuid$auto(0x0, r7, 0x0) sendmsg$auto_NL80211_CMD_SET_WIPHY_NETNS(r2, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000240)={&(0x7f0000001200)={0x1720, r4, 0x2, 0x70bd2b, 0x25dfdbfb, {}, [@NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI={0x5, 0xf6, 0x5}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x16e1, 0x84, 0x0, 0x1, [@typed={0x8, 0x84, 0x0, 0x0, @fd=r0}, @nested={0x138f, 0x6, 0x0, 0x1, [@nested={0x1180, 0xa6, 0x0, 0x1, [@nested={0x1136, 0x27, 0x0, 0x1, [@generic="2a60e95b66b097922e1b", @typed={0x8, 0x8b, 0x0, 0x0, @u32=0x8}, @nested={0x4, 0x123}, @nested={0x4, 0x8a}, @typed={0x1004, 0x29, 0x0, 0x0, @binary="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"}, @nested={0x4, 0xab}, @generic="6df265f916d9a92d1718bddb84b21222621e67841ba84cc027d65a7912d99a84443359e36cc7013fa391eba681eaf0a9315f77e69a4b55f7324d90ca7062ddf26236a45bdc67fb3e28aaffd0c8fea347c38241dbdf7841d197edd7997ca5ad586fc87f11fadce86d7a227c474e8e7794f1a2def74b63880eee21025c3b47c29645ba1c30fb9660644ca0a8b0cdb2cf5cac3f959aaf59db77dd77e6e356afb8ce12435a72c06600c65d7b01cceaa25645d761961017db8683", @generic="23d870e363500afa37242ac79aedc4b8fc719b35fc75e54173ed23e1d0d890a619553f1e170db00827e165f5b01ebba8b7a268684385383fcfaeadf15ab4b822c2a420050d9fe41f2f3ededb873de01d7bb48206", @nested={0x4, 0x46}]}, @typed={0xa, 0x88, 0x0, 0x0, @str='-{!*/\x00'}, @typed={0x8, 0x120, 0x0, 0x0, @fd=r0}, @nested={0x4, 0x11}, @nested={0x4, 0x16}, @nested={0x25, 0x11, 0x0, 0x1, [@typed={0x8, 0xbc, 0x0, 0x0, @u32=0x80}, @nested={0x4, 0x115}, @generic="b8bc96dbd4dcba6e475aedef30ea07121bcee562e4"]}]}, @nested={0x4, 0x128}, @typed={0x14, 0xcb, 0x0, 0x0, @ipv6=@empty}, @generic="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", @typed={0x8, 0x147, 0x0, 0x0, @pid=r6}, @generic="1f", @generic="a251302aa833cb89eab682f8ea20f62b16b75c7755ebb65ebafc4c66797118b855d2060fc51b28bea5e054932f0a476679d904632c2cfd6c41e04727059011a8b0506ef28f0b923d58bdc27ef51a70b6a30d0dfe7b6156068fab9eaea24752ae23fc41ffe47292886506d9073aecac0dcfdd0a30be05f37ec771e16b274fd61574ef4f55bc867015148ca5665cbed2441ab0f45923b4eb2fd677b29d747b8a5cc4799ce728031c31b2e4967169456c45f4b1737c8a2ab81b3511c308b91a15f11d4c0b3b5b9704981cd843d527d4a4b9a182c89bf2de05058d357bf206a7b88a4cadc144ee", @nested={0x4, 0x86}, @nested={0x4, 0x46}]}, @generic="c069f4844c95b595116045fb247faf56890c042344e1e6d93e110c156c4955fe03", @nested={0x14, 0x35, 0x0, 0x1, [@nested={0x4, 0x147}, @nested={0x4, 0x82}, @typed={0x8, 0xa, 0x0, 0x0, @u32=0x2}]}, @generic="6887e8238b7f1aab7853130855b1a09f580007d5ed605e", @generic="71b88cc833dba40762ca3a098fbfb69cfe397561d2c666dd0b0c8fbbd0fdb95fd655b5a73faf723a5102287d68ff931de1bd2e62acd2e0690893ecff15d4ad42d129bab16e6b94fc59d8c9195feb2589477523797f5156d3fa103db796cd464bc530eb730ea6b5602449c074a76e4a8b2cde4550e1a3c3cee46171b65437cb188b09a2692b48be5497de304c117859cdb6a79920e071fb5bce0c66c9d53e0c62dcd82c8340f2ded94b3b3309214599950615174ccf671029db3e9ea74c144674eabca55dd612751b817b9ec1e2", @nested={0x224, 0x4, 0x0, 0x1, [@nested={0x4, 0x11}, @typed={0x8, 0x11b, 0x0, 0x0, @uid=r7}, @generic="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", @typed={0x14, 0xe4, 0x0, 0x0, @ipv6=@empty}, @generic="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", @nested={0x4, 0xf1}]}, @typed={0x8, 0x82, 0x0, 0x0, @ipv4=@private=0xa010102}]}, @NL80211_ATTR_VHT_CAPABILITY={0x16, 0x9d, "f128dea93e83fafa18f8cc92c4b04df498dc"}, @NL80211_ATTR_STA_PLINK_ACTION={0x5, 0x19, 0xe9}]}, 0x1720}, 0x1, 0x0, 0x0, 0x4040841}, 0x10) openat$auto_ftrace_set_event_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/set_event_pid\x00', 0xa0241, 0xffeb) 639.614988ms ago: executing program 3 (id=7): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000980), r0) sendmsg$auto_TIPC_NL_MEDIA_SET(r0, &(0x7f000000a4c0)={0x0, 0x0, &(0x7f000000a480)={&(0x7f0000009800)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010029bd7000ffdbdf250c00007e000005a075645e827b010101"], 0x20}, 0x1, 0x0, 0x700, 0x4000}, 0x20000048) 475.643982ms ago: executing program 1 (id=8): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001100)='/proc/bus/pci/00/03.0\x00', 0xa0581, 0x0) write$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000001140)="8cbdca", 0x3) writev$auto(r0, &(0x7f0000001d40)={0x0, 0x2}, 0x6) mseal$auto(0x0, 0x7dda, 0x0) name_to_handle_at$auto(0xffffffffffffffff, &(0x7f0000000000)='/dev/kvm\x00', &(0x7f0000000040)={0x81, 0x8, "631157b04f7c3705cf93e62cd57a3967535b011dd2012e7ef52b96d2b1bcf9716006bd53a9cbcceee415db77d5c1234834996b0e2db62ead6e8c8bf1fbbed5ddb8a9c1a150716c8813251546901b88870e147b55d9e3983016ffe27e159593cb02bfa002a8921df4c7f56b09403e691e334ea30d645dc34c37ee47c807b727ee30"}, 0x0, 0x2) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) 374.78311ms ago: executing program 3 (id=9): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(0x3, 0x0, 0x7fffffff) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) mmap$auto(0x0, 0x40009, 0x36, 0x9b72, 0x7, 0x28000) ioctl$auto(r1, 0x4b66, 0x1) write$auto(0x1, 0x0, 0x80000000) bpf$auto(0x0, &(0x7f00000003c0)=@task_fd_query={0x0, r0, 0xd, 0x89, 0x2, 0x4, r0, 0x81, 0x9}, 0x6f4) read$auto(0x3, 0x0, 0x80) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) readv$auto(r0, 0x0, 0x401) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) ioctl$auto_SNDCTL_DSP_GETOSPACE(0xffffffffffffffff, 0x8010500c, &(0x7f0000004040)) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x100000000002, 0x783, 0x3, 0x8000000008011, r2, 0x40) write$auto(0x3, 0x0, 0xfffffdef) write$auto(0x3, 0x0, 0xfffffdef) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2b, 0x1, 0x1) r3 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40) recvmmsg$auto(r3, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) 374.632699ms ago: executing program 2 (id=3): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000) close_range$auto(0x2, 0xffffffffffffffff, 0x0) r0 = openat$auto_u32_array_fops_file(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim1/ports/2/udp_ports_table1\x00', 0x329000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'ip6gre0\x00', 0x0}) r4 = clone3$auto(&(0x7f00000000c0)={0x589e894f, 0x6, 0x0, 0x9, 0xc6, 0xab44, 0x3, 0x1, 0x3, 0x3, 0xfffffffffffffffb}, 0x1ff) sendmsg$auto_OVS_DP_CMD_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004540)={&(0x7f0000000140)={0x40, r2, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@OVS_DP_ATTR_IFINDEX={0x8, 0x9, r3}, @OVS_DP_ATTR_USER_FEATURES={0x8, 0x5, 0x80}, @OVS_DP_ATTR_NAME={0x11, 0x1, 'ovs_\x12\x00\x00\x00\x00\x00\a\x00\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, r4}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x2000000) fcntl$auto(r0, 0x3ff, r4) fsconfig$auto_JFFS2_COMPR_MODE_FORCELZO(0xffffffffffffffff, 0x120000, 0x0, 0x0, 0x4) sendmsg$auto_TIPC_NL_BEARER_GET(0xffffffffffffffff, 0x0, 0x20008000) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) clock_settime$auto(0xfffffffb, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) io_uring_setup$auto(0x6, 0x0) openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace_marker_raw\x00', 0x401, 0x0) write$auto(0x3, 0x0, 0x5c8) r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) fstat$auto(r5, 0x0) ioctl$auto(0x3, 0x40081271, 0x38) 277.147772ms ago: executing program 1 (id=10): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/mtd/mtd0/size\x00', 0x8000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000100)=""/16, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01002abd7000fcdbdf250400ff0f00000000000034e6de69a1509e3e2906366733"], 0x2c}, 0x1, 0x0, 0x0, 0x44048058}, 0x4000800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) socket(0x10, 0x3, 0x6) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11"], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 49.04458ms ago: executing program 0 (id=11): r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/card1/pcm0p/sub0/hw_params\x00', 0x1c1282, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) ioctl$auto_KVM_HAS_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee3, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) ppoll$auto(0x0, 0x9, 0x0, 0x0, 0x8) syz_clone3(0x0, 0x0) clock_gettime$auto(0x5, &(0x7f0000000180)={0x10001, 0x1cc}) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) futex_wait$auto(0x0, 0x0, 0x7f, 0x2, 0x0, 0x1) write$auto(0xffffffffffffffff, 0x0, 0x4) r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000980), r0) sendmsg$auto_TIPC_NL_MEDIA_SET(r0, &(0x7f000000a4c0)={0x0, 0x0, &(0x7f000000a480)={&(0x7f0000009800)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010029bd7000ffdbdf250c00007e000005a075645e827b010101"], 0x20}, 0x1, 0x0, 0x0, 0x4000}, 0x20000048) 0s ago: executing program 1 (id=12): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0x4a, 0x0) close_range$auto(0x2, 0x8, 0x0) fsopen$auto(0x0, 0x1) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/rpc/nfsd.export/channel\x00', 0x8f3b7a51b8162d21, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3) r1 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(r1, r1, 0x0) r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video35\x00', 0xa200, 0x0) ioctl$auto(r2, 0xc0585611, r2) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/vhci_hcd.14/usb37/37-0:1.0/ep_81/type\x00', 0x200000, 0x0) read$auto(r3, 0x0, 0x20) mmap$auto(0x0, 0x40009, 0xa, 0x9b72, 0x2, 0x28000) capset$auto(&(0x7f0000000100)={0x20080522}, 0x0) r4 = openat$auto_evm_key_ops_evm_secfs(0xffffffffffffff9c, &(0x7f00000000c0), 0x40802, 0x0) write$auto(r4, 0x0, 0x881) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0xffffffffffffffff) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x224e81, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x180342, 0x0) msgsnd$auto(0x0, &(0x7f0000000040)={0x5}, 0x1000, 0x4) msgctl$auto(0x0, 0x0, 0x0) r5 = openat$auto_nvmf_dev_fops_fabrics(0xffffffffffffff9c, &(0x7f0000000040), 0xa0000, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) write$auto(r5, &(0x7f0000000100)='\x04>\x01\x01\x00\x00\x00\x01\x80\xb6', 0x7f) read$auto_nvmf_dev_fops_fabrics(r5, &(0x7f0000000080)=""/71, 0x47) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.9' (ED25519) to the list of known hosts. [ 79.410393][ T5820] cgroup: Unknown subsys name 'net' [ 79.559107][ T5820] cgroup: Unknown subsys name 'cpuset' [ 79.568185][ T5820] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 80.945474][ T5820] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 82.789249][ T5830] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 82.798852][ T5830] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 82.806782][ T5830] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 82.825595][ T5830] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 82.835503][ T5830] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 82.850265][ T5833] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 82.859101][ T5830] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 82.867375][ T5830] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 82.877051][ T5830] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 82.885681][ T5142] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 82.926000][ T55] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 82.944877][ T5830] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 82.952650][ T5830] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 82.960352][ T5833] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 82.961058][ T5830] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 82.975831][ T5833] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 82.983643][ T5833] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 82.995563][ T5142] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 83.009728][ T5833] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 83.017706][ T5833] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 83.418814][ T5832] chnl_net:caif_netlink_parms(): no params data found [ 83.517038][ T5829] chnl_net:caif_netlink_parms(): no params data found [ 83.657995][ T5836] chnl_net:caif_netlink_parms(): no params data found [ 83.673396][ T5837] chnl_net:caif_netlink_parms(): no params data found [ 83.713580][ T5832] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.720905][ T5832] bridge0: port 1(bridge_slave_0) entered disabled state [ 83.729985][ T5832] bridge_slave_0: entered allmulticast mode [ 83.737678][ T5832] bridge_slave_0: entered promiscuous mode [ 83.798699][ T5832] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.806053][ T5832] bridge0: port 2(bridge_slave_1) entered disabled state [ 83.813297][ T5832] bridge_slave_1: entered allmulticast mode [ 83.820560][ T5832] bridge_slave_1: entered promiscuous mode [ 83.844269][ T5829] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.852222][ T5829] bridge0: port 1(bridge_slave_0) entered disabled state [ 83.859590][ T5829] bridge_slave_0: entered allmulticast mode [ 83.867370][ T5829] bridge_slave_0: entered promiscuous mode [ 83.916121][ T5829] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.923375][ T5829] bridge0: port 2(bridge_slave_1) entered disabled state [ 83.930671][ T5829] bridge_slave_1: entered allmulticast mode [ 83.939300][ T5829] bridge_slave_1: entered promiscuous mode [ 83.952638][ T5832] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 84.003657][ T5832] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 84.027696][ T5836] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.034867][ T5836] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.042558][ T5836] bridge_slave_0: entered allmulticast mode [ 84.050666][ T5836] bridge_slave_0: entered promiscuous mode [ 84.059974][ T5836] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.067296][ T5836] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.074453][ T5836] bridge_slave_1: entered allmulticast mode [ 84.081686][ T5836] bridge_slave_1: entered promiscuous mode [ 84.122188][ T5832] team0: Port device team_slave_0 added [ 84.142181][ T5829] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 84.155967][ T5829] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 84.181723][ T5832] team0: Port device team_slave_1 added [ 84.211205][ T5837] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.218559][ T5837] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.226398][ T5837] bridge_slave_0: entered allmulticast mode [ 84.233343][ T5837] bridge_slave_0: entered promiscuous mode [ 84.241833][ T5837] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.249323][ T5837] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.256648][ T5837] bridge_slave_1: entered allmulticast mode [ 84.263800][ T5837] bridge_slave_1: entered promiscuous mode [ 84.285600][ T5836] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 84.328900][ T5836] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 84.341104][ T5829] team0: Port device team_slave_0 added [ 84.360602][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 84.368155][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 84.394660][ T5832] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 84.418403][ T5829] team0: Port device team_slave_1 added [ 84.427365][ T5837] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 84.444931][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 84.452548][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 84.479113][ T5832] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 84.514085][ T5837] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 84.536245][ T5836] team0: Port device team_slave_0 added [ 84.568662][ T5836] team0: Port device team_slave_1 added [ 84.575093][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 84.582153][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 84.609129][ T5829] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 84.621822][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 84.628867][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 84.654816][ T5829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 84.709253][ T5837] team0: Port device team_slave_0 added [ 84.733462][ T5832] hsr_slave_0: entered promiscuous mode [ 84.740120][ T5832] hsr_slave_1: entered promiscuous mode [ 84.763147][ T5837] team0: Port device team_slave_1 added [ 84.770806][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 84.778480][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 84.804639][ T5836] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 84.817408][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 84.824372][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 84.850370][ T5836] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 84.920498][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 84.928108][ T5833] Bluetooth: hci1: command tx timeout [ 84.928434][ T5833] Bluetooth: hci0: command tx timeout [ 84.940357][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 84.968103][ T5837] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 84.981460][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 84.988827][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 85.015643][ T5837] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 85.066343][ T5829] hsr_slave_0: entered promiscuous mode [ 85.072599][ T5829] hsr_slave_1: entered promiscuous mode [ 85.079002][ T5829] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 85.086817][ T5833] Bluetooth: hci3: command tx timeout [ 85.087089][ T5833] Bluetooth: hci2: command tx timeout [ 85.098337][ T5829] Cannot create hsr debugfs directory [ 85.132258][ T5836] hsr_slave_0: entered promiscuous mode [ 85.140475][ T5836] hsr_slave_1: entered promiscuous mode [ 85.146911][ T5836] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 85.154508][ T5836] Cannot create hsr debugfs directory [ 85.277597][ T5837] hsr_slave_0: entered promiscuous mode [ 85.288117][ T5837] hsr_slave_1: entered promiscuous mode [ 85.294196][ T5837] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 85.302419][ T5837] Cannot create hsr debugfs directory [ 85.575617][ T5832] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 85.610795][ T5832] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 85.636737][ T5832] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 85.652132][ T5832] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 85.734262][ T5829] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 85.761992][ T5829] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 85.783707][ T5829] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 85.817323][ T5829] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 85.880082][ T5836] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 85.906483][ T5836] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 85.929346][ T5836] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 85.944061][ T5836] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 85.987388][ T5837] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 86.011090][ T5837] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 86.023602][ T5837] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 86.033954][ T5837] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 86.074463][ T5832] 8021q: adding VLAN 0 to HW filter on device bond0 [ 86.152173][ T5832] 8021q: adding VLAN 0 to HW filter on device team0 [ 86.180993][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 86.188293][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 86.204502][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.211730][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 86.278828][ T5829] 8021q: adding VLAN 0 to HW filter on device bond0 [ 86.323715][ T5837] 8021q: adding VLAN 0 to HW filter on device bond0 [ 86.337575][ T5829] 8021q: adding VLAN 0 to HW filter on device team0 [ 86.358112][ T3523] bridge0: port 1(bridge_slave_0) entered blocking state [ 86.365356][ T3523] bridge0: port 1(bridge_slave_0) entered forwarding state [ 86.393457][ T3523] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.400659][ T3523] bridge0: port 2(bridge_slave_1) entered forwarding state [ 86.450610][ T5832] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 86.471236][ T5837] 8021q: adding VLAN 0 to HW filter on device team0 [ 86.496877][ T5836] 8021q: adding VLAN 0 to HW filter on device bond0 [ 86.523451][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 86.530670][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 86.560462][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.567746][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 86.636506][ T5836] 8021q: adding VLAN 0 to HW filter on device team0 [ 86.670626][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 86.677858][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 86.717307][ T4195] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.724484][ T4195] bridge0: port 2(bridge_slave_1) entered forwarding state [ 86.914256][ T5836] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 86.963094][ T5832] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 86.994896][ T5829] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 87.007540][ T55] Bluetooth: hci0: command tx timeout [ 87.012992][ T55] Bluetooth: hci1: command tx timeout [ 87.132302][ T5832] veth0_vlan: entered promiscuous mode [ 87.177536][ T55] Bluetooth: hci2: command tx timeout [ 87.177542][ T5833] Bluetooth: hci3: command tx timeout [ 87.201797][ T5832] veth1_vlan: entered promiscuous mode [ 87.227579][ T5837] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 87.256379][ T5829] veth0_vlan: entered promiscuous mode [ 87.308798][ T5832] veth0_macvtap: entered promiscuous mode [ 87.321457][ T5829] veth1_vlan: entered promiscuous mode [ 87.343973][ T5832] veth1_macvtap: entered promiscuous mode [ 87.404263][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 87.417661][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 87.474278][ T5829] veth0_macvtap: entered promiscuous mode [ 87.483733][ T5837] veth0_vlan: entered promiscuous mode [ 87.497120][ T5832] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.507273][ T5832] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.516382][ T5832] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.525108][ T5832] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.561015][ T5829] veth1_macvtap: entered promiscuous mode [ 87.593952][ T5836] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 87.614737][ T5837] veth1_vlan: entered promiscuous mode [ 87.633574][ T5829] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 87.648581][ T5829] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 87.662786][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 87.700649][ T5829] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 87.714267][ T5829] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 87.730762][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 87.759200][ T5829] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.768606][ T5829] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.777748][ T5829] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.786902][ T5829] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.801113][ T5837] veth0_macvtap: entered promiscuous mode [ 87.853083][ T5837] veth1_macvtap: entered promiscuous mode [ 87.863454][ T5836] veth0_vlan: entered promiscuous mode [ 87.883600][ T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 87.899953][ T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 87.915606][ T5836] veth1_vlan: entered promiscuous mode [ 87.937673][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 87.951621][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 87.962913][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 87.973707][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 87.986307][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 88.022528][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 88.033645][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 88.043955][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 88.054685][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 88.066845][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 88.083309][ T5837] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.092330][ T5837] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.101536][ T5837] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.110382][ T5837] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.146368][ T63] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 88.154207][ T63] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 88.180373][ T4195] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 88.189778][ T4195] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 88.211297][ T4195] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 88.217361][ T5836] veth0_macvtap: entered promiscuous mode [ 88.221108][ T4195] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 88.247194][ T5836] veth1_macvtap: entered promiscuous mode [ 88.314803][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 88.354395][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 88.364685][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 88.376018][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 88.386096][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 88.397075][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 88.409211][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 88.430355][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 88.446467][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 88.457220][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 88.459277][ T5832] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 88.473374][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 88.492464][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 88.503026][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 88.513890][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 88.550279][ T5836] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.562563][ T5836] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.573308][ T5836] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.583577][ T5836] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.623912][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 88.652667][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 88.697696][ T5890] page: refcount:4 mapcount:3 mapping:0000000000000000 index:0x7f13b25c9 pfn:0x79c00 [ 88.717189][ T5890] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 88.724455][ T5890] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 88.739377][ T5890] raw: 00000007f13b25c9 0000000000000000 0000000400000002 0000000000000000 [ 88.760453][ T5890] page dumped because: unmovable page [ 88.780347][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 88.791951][ T5890] page_owner tracks the page as allocated [ 88.801504][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 88.812825][ T5890] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 5825, tgid 5825 (syz-executor), ts 82361967377, free_ts 82177505852 [ 88.838380][ T5890] post_alloc_hook+0x181/0x1b0 [ 88.844309][ T5890] get_page_from_freelist+0x135c/0x3920 [ 88.853242][ T5890] __alloc_frozen_pages_noprof+0x263/0x23a0 [ 88.862189][ T5890] alloc_pages_mpol+0x1fb/0x550 [ 88.867770][ T5890] alloc_pages_noprof+0x131/0x390 [ 88.867827][ T5890] __vmalloc_node_range_noprof+0x732/0x1540 [ 88.867867][ T5890] vmalloc_user_noprof+0x6b/0x90 [ 88.867897][ T5890] kcov_ioctl+0x4c/0x730 [ 88.867922][ T5890] __x64_sys_ioctl+0x190/0x200 [ 88.867947][ T5890] do_syscall_64+0xcd/0x230 [ 88.867973][ T5890] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 88.867994][ T5890] page last free pid 5820 tgid 5820 stack trace: [ 88.868008][ T5890] free_unref_folios+0x999/0x1630 [ 88.868030][ T5890] folios_put_refs+0x56f/0x740 [ 88.868055][ T5890] free_pages_and_swap_cache+0x245/0x4a0 [ 88.928502][ T5890] __tlb_batch_free_encoded_pages+0xf9/0x290 [ 88.934544][ T5890] tlb_finish_mmu+0x168/0x7b0 [ 88.941545][ T5890] vms_clear_ptes+0x55e/0x770 [ 88.946652][ T5890] vms_complete_munmap_vmas+0x1ca/0x970 [ 88.952247][ T5890] do_vmi_align_munmap+0x43b/0x7d0 [ 88.955708][ T5892] GUP no longer grows the stack in syz.0.1 (5892): 14000-401000 (4000) [ 88.958457][ T5890] do_vmi_munmap+0x208/0x3e0 [ 88.970778][ T5890] __vm_munmap+0x19a/0x390 [ 88.976425][ T5890] __x64_sys_munmap+0x59/0x80 [ 88.979960][ T5892] CPU: 1 UID: 0 PID: 5892 Comm: syz.0.1 Not tainted 6.15.0-rc3-syzkaller-00283-gf1a3944c860b #0 PREEMPT(full) [ 88.979995][ T5892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 88.980013][ T5892] Call Trace: [ 88.980021][ T5892] [ 88.980034][ T5892] dump_stack_lvl+0x16c/0x1f0 [ 88.980067][ T5892] gup_vma_lookup+0x1d2/0x220 [ 88.980103][ T5892] __get_user_pages+0x234/0x36f0 [ 88.980149][ T5892] ? check_irq_usage+0xcb/0x920 [ 88.980178][ T5892] ? __pfx___get_user_pages+0x10/0x10 [ 88.980223][ T5892] __gup_longterm_locked+0x20d/0x1850 [ 88.980268][ T5892] ? __pfx___gup_longterm_locked+0x10/0x10 [ 88.980319][ T5892] pin_user_pages_remote+0xed/0x140 [ 88.980355][ T5892] ? __pfx_pin_user_pages_remote+0x10/0x10 [ 88.980388][ T5892] ? mm_access+0x22d/0x2e0 [ 88.980427][ T5892] process_vm_rw_core.constprop.0+0x41b/0x9a0 [ 88.980462][ T5892] ? futex_wait_queue+0x14c/0x220 [ 88.980490][ T5892] ? futex_unqueue+0xba/0x140 [ 88.980518][ T5892] ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10 [ 88.980549][ T5892] ? iovec_from_user+0xbb/0x140 [ 88.980599][ T5892] ? iovec_from_user+0xbb/0x140 [ 88.980641][ T5892] process_vm_rw+0x216/0x2c0 [ 88.980672][ T5892] ? __pfx_process_vm_rw+0x10/0x10 [ 88.980743][ T5892] ? xfd_validate_state+0x5d/0x180 [ 88.980786][ T5892] __x64_sys_process_vm_readv+0xe2/0x1c0 [ 88.980814][ T5892] ? do_syscall_64+0x91/0x230 [ 88.980841][ T5892] ? lockdep_hardirqs_on+0x7c/0x110 [ 88.980867][ T5892] do_syscall_64+0xcd/0x230 [ 88.980897][ T5892] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 88.980922][ T5892] RIP: 0033:0x7f2f7438e969 [ 88.980941][ T5892] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 88.980964][ T5892] RSP: 002b:00007f2f721f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000136 [ 88.980987][ T5892] RAX: ffffffffffffffda RBX: 00007f2f745b6080 RCX: 00007f2f7438e969 [ 88.981002][ T5892] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 0000000000000005 [ 88.981017][ T5892] RBP: 00007f2f74410ab1 R08: 0000000000000003 R09: 0000000000000000 [ 88.981031][ T5892] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000000 [ 88.981046][ T5892] R13: 0000000000000000 R14: 00007f2f745b6080 R15: 00007ffda25b9338 [ 88.981079][ T5892] [ 89.125407][ T55] Bluetooth: hci0: command tx timeout [ 89.129268][ T5890] do_syscall_64+0xcd/0x230 [ 89.130258][ T5833] Bluetooth: hci1: command tx timeout [ 89.136119][ T5890] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 89.250609][ T55] Bluetooth: hci3: command tx timeout [ 89.250676][ T5142] Bluetooth: hci2: command tx timeout [ 89.477140][ T3523] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.485013][ T3523] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.610177][ T5901] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6'. [ 89.682366][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.721776][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.237017][ T5915] netlink: 20 bytes leftover after parsing attributes in process `syz.1.10'. [ 90.249022][ T5915] Zero length message leads to an empty skb [ 90.444197][ T5912] ovs_: entered promiscuous mode [ 91.245614][ T5142] Bluetooth: hci0: command tx timeout [ 91.325395][ T5142] Bluetooth: hci3: command tx timeout [ 91.335675][ T5833] Bluetooth: hci1: command tx timeout [ 91.341173][ T5142] Bluetooth: hci2: command tx timeout [ 91.966583][ T47] cfg80211: failed to load regulatory.db [ 132.928173][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.934688][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.378742][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.385196][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 206.685386][ T5835] Bluetooth: hci0: command 0x0406 tx timeout [ 206.691465][ T5835] Bluetooth: hci2: command 0x0406 tx timeout [ 206.704427][ T5835] Bluetooth: hci1: command 0x0406 tx timeout [ 206.710645][ T5835] Bluetooth: hci3: command 0x0406 tx timeout [ 243.007450][ T31] INFO: task kworker/u8:7:3523 blocked for more than 143 seconds. [ 243.015526][ T31] Not tainted 6.15.0-rc3-syzkaller-00283-gf1a3944c860b #0 [ 243.023333][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 243.032069][ T31] task:kworker/u8:7 state:D stack:24152 pid:3523 tgid:3523 ppid:2 task_flags:0x4248060 flags:0x00004000 [ 243.044214][ T31] Workqueue: writeback wb_workfn (flush-8:0) [ 243.051426][ T31] Call Trace: [ 243.054750][ T31] [ 243.059647][ T31] __schedule+0x116f/0x5de0 [ 243.064211][ T31] ? blk_mq_flush_plug_list+0x75a/0x1c70 [ 243.069989][ T31] ? add_lock_to_list+0x9d/0x130 [ 243.074985][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 243.084120][ T31] ? __pfx___schedule+0x10/0x10 [ 243.090618][ T31] ? __blk_flush_plug+0x2f3/0x4b0 [ 243.098407][ T31] ? find_held_lock+0x2b/0x80 [ 243.103152][ T31] ? schedule+0x2d7/0x3a0 [ 243.108459][ T31] schedule+0xe7/0x3a0 [ 243.112576][ T31] io_schedule+0xbf/0x130 [ 243.119613][ T31] bit_wait_io+0x15/0xe0 [ 243.123912][ T31] __wait_on_bit+0x62/0x180 [ 243.128544][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 243.133527][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 243.139103][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 243.147835][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 243.155553][ T31] do_get_write_access+0x93d/0x12a0 [ 243.160820][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 243.169848][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 243.177852][ T31] ext4_mb_mark_context+0x175/0xd40 [ 243.183114][ T31] ? find_held_lock+0x2b/0x80 [ 243.190167][ T31] ? __pfx_ext4_mb_mark_context+0x10/0x10 [ 243.196043][ T31] ext4_mb_mark_diskspace_used+0x466/0x8c0 [ 243.201903][ T31] ? __pfx_ext4_mb_mark_diskspace_used+0x10/0x10 [ 243.208390][ T31] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 243.214065][ T31] ? ext4_mb_new_blocks+0x287e/0x4f00 [ 243.219578][ T31] ext4_mb_new_blocks+0xa5b/0x4f00 [ 243.224769][ T31] ? rcu_is_watching+0x12/0xc0 [ 243.229609][ T31] ? trace_kmalloc+0x2b/0xd0 [ 243.234398][ T31] ? __kmalloc_noprof+0x242/0x510 [ 243.239515][ T31] ? unwind_next_frame+0x3f4/0x20a0 [ 243.244751][ T31] ? __pfx_ext4_mb_new_blocks+0x10/0x10 [ 243.252650][ T31] ? ext4_ext_search_right+0x2c2/0xb90 [ 243.260298][ T31] ? ext4_find_extent+0x7fc/0xa70 [ 243.265399][ T31] ? ext4_inode_to_goal_block+0x347/0x450 [ 243.271142][ T31] ext4_ext_map_blocks+0x1b95/0x5d60 [ 243.276567][ T31] ? stack_trace_save+0x8e/0xc0 [ 243.281441][ T31] ? __pfx_stack_trace_save+0x10/0x10 [ 243.286908][ T31] ? __pfx_ext4_ext_map_blocks+0x10/0x10 [ 243.292556][ T31] ? __kasan_slab_alloc+0x89/0x90 [ 243.297688][ T31] ? ext4_do_writepages+0x1432/0x3490 [ 243.303111][ T31] ? __pfx___might_resched+0x10/0x10 [ 243.308451][ T31] ? __pfx_down_write+0x10/0x10 [ 243.313333][ T31] ? ext4_es_lookup_extent+0xc7/0xc50 [ 243.318804][ T31] ext4_map_blocks+0x45b/0x1390 [ 243.323678][ T31] ? __pfx_ext4_map_blocks+0x10/0x10 [ 243.329001][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 243.334391][ T31] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 243.340095][ T31] ext4_do_writepages+0x1a2c/0x3490 [ 243.345340][ T31] ? arch_stack_walk+0x85/0x100 [ 243.350201][ T31] ? __pfx_ext4_do_writepages+0x10/0x10 [ 243.357244][ T31] ? ext4_writepages+0x37a/0x7d0 [ 243.362219][ T31] ext4_writepages+0x37a/0x7d0 [ 243.367014][ T31] ? __pfx_ext4_writepages+0x10/0x10 [ 243.372324][ T31] ? do_writepages+0x6b6/0x820 [ 243.377141][ T31] ? __pfx_ext4_writepages+0x10/0x10 [ 243.382444][ T31] do_writepages+0x1b2/0x820 [ 243.387066][ T31] ? __pfx_do_writepages+0x10/0x10 [ 243.392186][ T31] ? __lock_acquire+0xaa4/0x1ba0 [ 243.397187][ T31] ? reacquire_held_locks+0xcd/0x1f0 [ 243.402504][ T31] __writeback_single_inode+0x160/0xfb0 [ 243.408124][ T31] ? __pfx___writeback_single_inode+0x10/0x10 [ 243.414211][ T31] ? do_raw_spin_unlock+0x172/0x230 [ 243.419474][ T31] writeback_sb_inodes+0x601/0xf90 [ 243.424631][ T31] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 243.430360][ T31] ? _raw_spin_unlock+0x28/0x50 [ 243.435254][ T31] ? move_expired_inodes+0x5a0/0x850 [ 243.440575][ T31] __writeback_inodes_wb+0xf8/0x2d0 [ 243.445838][ T31] ? __pfx___writeback_inodes_wb+0x10/0x10 [ 243.451676][ T31] ? queue_io+0x3f6/0x520 [ 243.456087][ T31] wb_writeback+0x7f3/0xb70 [ 243.461448][ T31] ? __pfx_wb_writeback+0x10/0x10 [ 243.466577][ T31] ? get_nr_dirty_inodes+0x170/0x1e0 [ 243.471881][ T31] wb_workfn+0x8ca/0xbe0 [ 243.476175][ T31] ? try_to_wake_up+0x157/0x1680 [ 243.481126][ T31] ? __pfx_wb_workfn+0x10/0x10 [ 243.486220][ T31] ? rcu_is_watching+0x12/0xc0 [ 243.491009][ T31] process_one_work+0x9cc/0x1b70 [ 243.496738][ T31] ? __pfx_process_one_work+0x10/0x10 [ 243.502155][ T31] ? assign_work+0x1a0/0x250 [ 243.506798][ T31] worker_thread+0x6c8/0xf10 [ 243.511417][ T31] ? __kthread_parkme+0x19e/0x250 [ 243.516525][ T31] ? __pfx_worker_thread+0x10/0x10 [ 243.521666][ T31] kthread+0x3c2/0x780 [ 243.525793][ T31] ? __pfx_kthread+0x10/0x10 [ 243.530403][ T31] ? __pfx_kthread+0x10/0x10 [ 243.534989][ T31] ? __pfx_kthread+0x10/0x10 [ 243.539628][ T31] ? __pfx_kthread+0x10/0x10 [ 243.544236][ T31] ? rcu_is_watching+0x12/0xc0 [ 243.549057][ T31] ? __pfx_kthread+0x10/0x10 [ 243.553683][ T31] ret_from_fork+0x45/0x80 [ 243.558159][ T31] ? __pfx_kthread+0x10/0x10 [ 243.563896][ T31] ret_from_fork_asm+0x1a/0x30 [ 243.568764][ T31] [ 243.571812][ T31] INFO: task jbd2/sda1-8:5164 blocked for more than 143 seconds. [ 243.579579][ T31] Not tainted 6.15.0-rc3-syzkaller-00283-gf1a3944c860b #0 [ 243.587277][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 243.595997][ T31] task:jbd2/sda1-8 state:D stack:26616 pid:5164 tgid:5164 ppid:2 task_flags:0x240040 flags:0x00004000 [ 243.608015][ T31] Call Trace: [ 243.611297][ T31] [ 243.614226][ T31] __schedule+0x116f/0x5de0 [ 243.619033][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 243.624004][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 243.629003][ T31] ? __pfx___schedule+0x10/0x10 [ 243.633875][ T31] ? find_held_lock+0x2b/0x80 [ 243.638608][ T31] ? schedule+0x2d7/0x3a0 [ 243.642982][ T31] schedule+0xe7/0x3a0 [ 243.647503][ T31] io_schedule+0xbf/0x130 [ 243.651869][ T31] bit_wait_io+0x15/0xe0 [ 243.656232][ T31] __wait_on_bit+0x62/0x180 [ 243.660753][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 243.666805][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 243.672202][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 243.678357][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 243.683873][ T31] ? __pfx___might_resched+0x10/0x10 [ 243.689258][ T31] __wait_on_buffer+0x64/0x70 [ 243.693971][ T31] jbd2_journal_commit_transaction+0x382e/0x6830 [ 243.700394][ T31] ? __pfx_jbd2_journal_commit_transaction+0x10/0x10 [ 243.707146][ T31] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 243.712965][ T31] ? debug_object_deactivate+0x1ec/0x3a0 [ 243.718669][ T31] ? __pfx_debug_object_deactivate+0x10/0x10 [ 243.724956][ T31] ? find_held_lock+0x2b/0x80 [ 243.729800][ T31] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 243.735681][ T31] ? rcu_is_watching+0x12/0xc0 [ 243.740459][ T31] kjournald2+0x1f4/0x760 [ 243.744788][ T31] ? __pfx_kjournald2+0x10/0x10 [ 243.749679][ T31] ? find_held_lock+0x2b/0x80 [ 243.754367][ T31] ? __pfx_autoremove_wake_function+0x10/0x10 [ 243.760479][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 243.766834][ T31] ? __kthread_parkme+0x19e/0x250 [ 243.771892][ T31] ? __pfx_kjournald2+0x10/0x10 [ 243.776787][ T31] kthread+0x3c2/0x780 [ 243.780883][ T31] ? __pfx_kthread+0x10/0x10 [ 243.785556][ T31] ? __pfx_kthread+0x10/0x10 [ 243.790166][ T31] ? __pfx_kthread+0x10/0x10 [ 243.794757][ T31] ? __pfx_kthread+0x10/0x10 [ 243.799394][ T31] ? rcu_is_watching+0x12/0xc0 [ 243.804170][ T31] ? __pfx_kthread+0x10/0x10 [ 243.808840][ T31] ret_from_fork+0x45/0x80 [ 243.813295][ T31] ? __pfx_kthread+0x10/0x10 [ 243.817981][ T31] ret_from_fork_asm+0x1a/0x30 [ 243.822809][ T31] [ 243.826140][ T31] INFO: task syz-executor:5820 blocked for more than 144 seconds. [ 243.833962][ T31] Not tainted 6.15.0-rc3-syzkaller-00283-gf1a3944c860b #0 [ 243.841638][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 243.850380][ T31] task:syz-executor state:D stack:23680 pid:5820 tgid:5820 ppid:5818 task_flags:0x440100 flags:0x00000002 [ 243.862551][ T31] Call Trace: [ 243.865971][ T31] [ 243.870044][ T31] __schedule+0x116f/0x5de0 [ 243.874574][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 243.879600][ T31] ? __pfx___schedule+0x10/0x10 [ 243.884466][ T31] ? find_held_lock+0x2b/0x80 [ 243.889293][ T31] ? schedule+0x2d7/0x3a0 [ 243.893648][ T31] schedule+0xe7/0x3a0 [ 243.897797][ T31] io_schedule+0xbf/0x130 [ 243.902143][ T31] bit_wait_io+0x15/0xe0 [ 243.906447][ T31] __wait_on_bit+0x62/0x180 [ 243.910984][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 243.915988][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 243.921381][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 243.927411][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 243.932892][ T31] do_get_write_access+0x93d/0x12a0 [ 243.938182][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 243.944190][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 243.950344][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 243.955962][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 243.961441][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 243.966991][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 243.973955][ T31] ? rcu_is_watching+0x12/0xc0 [ 243.978837][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 243.984510][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 243.989776][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 243.995504][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 244.001161][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 244.006146][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 244.011534][ T31] ext4_dirty_inode+0xd9/0x130 [ 244.016358][ T31] ? rcu_is_watching+0x12/0xc0 [ 244.021133][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 244.026247][ T31] generic_update_time+0xcf/0xf0 [ 244.031217][ T31] file_update_time+0x17d/0x1c0 [ 244.036144][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 244.041195][ T31] ? rcu_read_unlock+0x17/0x60 [ 244.046033][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 244.051595][ T31] ? __pfx_filemap_map_pages+0x10/0x10 [ 244.057163][ T31] ? pte_alloc_one+0x2b1/0x380 [ 244.061950][ T31] do_page_mkwrite+0x171/0x380 [ 244.066767][ T31] do_pte_missing+0x29c/0x3fb0 [ 244.071559][ T31] __handle_mm_fault+0x103d/0x2a40 [ 244.077876][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 244.083372][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 244.088639][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 244.093877][ T31] handle_mm_fault+0x3fe/0xad0 [ 244.098704][ T31] do_user_addr_fault+0x60c/0x1370 [ 244.103837][ T31] exc_page_fault+0x5c/0xc0 [ 244.108382][ T31] asm_exc_page_fault+0x26/0x30 [ 244.113243][ T31] RIP: 0033:0x7f13b82689c5 [ 244.117702][ T31] RSP: 002b:00007ffcffccdf00 EFLAGS: 00010202 [ 244.123781][ T31] RAX: 00007f13b2fffe6c RBX: 00007ffcffcce000 RCX: 0000000000000000 [ 244.131832][ T31] RDX: 00007f13b2fffe68 RSI: 0000000000000008 RDI: 00007ffcffcce000 [ 244.139850][ T31] RBP: 00000000000003e6 R08: 0000000000000000 R09: 0000000000000000 [ 244.147871][ T31] R10: 00007ffcffccdfe0 R11: 0000000000000000 R12: 0000000000000000 [ 244.155883][ T31] R13: 0000000000000194 R14: fffffffffffffe6c R15: 0000000000000194 [ 244.163854][ T31] [ 244.167052][ T31] INFO: task syz.3.9:5909 blocked for more than 144 seconds. [ 244.174442][ T31] Not tainted 6.15.0-rc3-syzkaller-00283-gf1a3944c860b #0 [ 244.183312][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 244.192105][ T31] task:syz.3.9 state:D stack:27432 pid:5909 tgid:5909 ppid:5832 task_flags:0x440040 flags:0x00004004 [ 244.204151][ T31] Call Trace: [ 244.207756][ T31] [ 244.210727][ T31] __schedule+0x116f/0x5de0 [ 244.215376][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 244.220366][ T31] ? __pfx___schedule+0x10/0x10 [ 244.225657][ T31] ? find_held_lock+0x2b/0x80 [ 244.230381][ T31] ? schedule+0x2d7/0x3a0 [ 244.234900][ T31] schedule+0xe7/0x3a0 [ 244.239059][ T31] io_schedule+0xbf/0x130 [ 244.243417][ T31] bit_wait_io+0x15/0xe0 [ 244.247721][ T31] __wait_on_bit+0x62/0x180 [ 244.252254][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 244.257227][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 244.262618][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 244.268655][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 244.274134][ T31] do_get_write_access+0x93d/0x12a0 [ 244.280301][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 244.289857][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 244.296145][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 244.301743][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 244.307650][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 244.313061][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 244.319117][ T31] ? rcu_is_watching+0x12/0xc0 [ 244.323900][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 244.329600][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 244.334832][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 244.340542][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 244.346244][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 244.351205][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 244.356645][ T31] ext4_dirty_inode+0xd9/0x130 [ 244.361424][ T31] ? rcu_is_watching+0x12/0xc0 [ 244.366251][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 244.371302][ T31] generic_update_time+0xcf/0xf0 [ 244.376271][ T31] file_update_time+0x17d/0x1c0 [ 244.381916][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 244.387040][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 244.392572][ T31] do_page_mkwrite+0x171/0x380 [ 244.397416][ T31] do_pte_missing+0x29c/0x3fb0 [ 244.402221][ T31] ? __handle_mm_fault+0x1010/0x2a40 [ 244.407573][ T31] __handle_mm_fault+0x103d/0x2a40 [ 244.412704][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 244.418214][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 244.423441][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 244.428723][ T31] handle_mm_fault+0x3fe/0xad0 [ 244.433657][ T31] do_user_addr_fault+0x60c/0x1370 [ 244.438850][ T31] exc_page_fault+0x5c/0xc0 [ 244.443380][ T31] asm_exc_page_fault+0x26/0x30 [ 244.448420][ T31] RIP: 0033:0x7fdaea06f282 [ 244.452854][ T31] RSP: 002b:00007ffe70b86f20 EFLAGS: 00010202 [ 244.459412][ T31] RAX: 0000000000012008 RBX: 00007fdaeaee5720 RCX: 0000000000000000 [ 244.467466][ T31] RDX: 0000001b3060e000 RSI: 0000000000000008 RDI: 00007fdaeaee5720 [ 244.475511][ T31] RBP: 0000000000000622 R08: 00007fdae97ff048 R09: 00007fdaea3a2000 [ 244.484291][ T31] R10: 00007fdae97ff008 R11: 0000000000000002 R12: ffffffff815f9563 [ 244.492335][ T31] R13: 00007fdaea3b6038 R14: 0000000000000610 R15: fffffffffffee000 [ 244.500347][ T31] ? switch_fpu_return+0x73/0x1b0 [ 244.505437][ T31] [ 244.508478][ T31] INFO: task syz.0.11:5917 blocked for more than 144 seconds. [ 244.516024][ T31] Not tainted 6.15.0-rc3-syzkaller-00283-gf1a3944c860b #0 [ 244.523660][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 244.532369][ T31] task:syz.0.11 state:D stack:27432 pid:5917 tgid:5917 ppid:5829 task_flags:0x440040 flags:0x00000004 [ 244.544445][ T31] Call Trace: [ 244.547779][ T31] [ 244.550719][ T31] __schedule+0x116f/0x5de0 [ 244.555284][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 244.560247][ T31] ? __pfx___schedule+0x10/0x10 [ 244.565092][ T31] ? find_held_lock+0x2b/0x80 [ 244.569827][ T31] ? schedule+0x2d7/0x3a0 [ 244.574182][ T31] schedule+0xe7/0x3a0 [ 244.578309][ T31] io_schedule+0xbf/0x130 [ 244.582654][ T31] bit_wait_io+0x15/0xe0 [ 244.587965][ T31] __wait_on_bit+0x62/0x180 [ 244.592510][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 244.597489][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 244.602883][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 244.608909][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 244.614390][ T31] do_get_write_access+0x93d/0x12a0 [ 244.619725][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 244.625770][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 244.631863][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 244.637465][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 244.642961][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 244.648378][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 244.654394][ T31] ? rcu_is_watching+0x12/0xc0 [ 244.659191][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 244.664837][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 244.670072][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 244.675759][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 244.681413][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 244.687724][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 244.693144][ T31] ext4_dirty_inode+0xd9/0x130 [ 244.697950][ T31] ? rcu_is_watching+0x12/0xc0 [ 244.702812][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 244.707894][ T31] generic_update_time+0xcf/0xf0 [ 244.712848][ T31] file_update_time+0x17d/0x1c0 [ 244.717755][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 244.722795][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 244.728294][ T31] do_page_mkwrite+0x171/0x380 [ 244.733079][ T31] do_pte_missing+0x29c/0x3fb0 [ 244.737898][ T31] ? __handle_mm_fault+0x1010/0x2a40 [ 244.743196][ T31] __handle_mm_fault+0x103d/0x2a40 [ 244.748387][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 244.753861][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 244.759101][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 244.764336][ T31] handle_mm_fault+0x3fe/0xad0 [ 244.769151][ T31] do_user_addr_fault+0x60c/0x1370 [ 244.774284][ T31] exc_page_fault+0x5c/0xc0 [ 244.778851][ T31] asm_exc_page_fault+0x26/0x30 [ 244.783722][ T31] RIP: 0033:0x7f2f7426f282 [ 244.788201][ T31] RSP: 002b:00007ffda25b9390 EFLAGS: 00010202 [ 244.795088][ T31] RAX: 0000000000009008 RBX: 00007f2f750e5720 RCX: 0000000000000000 [ 244.803122][ T31] RDX: 0000001b30317000 RSI: 0000000000000008 RDI: 00007f2f750e5720 [ 244.811155][ T31] RBP: 00000000000005f1 R08: 00007f2f735fd050 R09: 00007f2f745a2000 [ 244.819173][ T31] R10: 00007f2f735fd008 R11: 0000000000000007 R12: ffffffff8b669719 [ 244.827219][ T31] R13: 00007f2f745b6118 R14: 000000000000007b R15: ffffffffffff7000 [ 244.835631][ T31] ? xas_alloc+0x99/0x460 [ 244.840004][ T31] [ 244.843031][ T31] INFO: task syz.1.12:5919 blocked for more than 145 seconds. [ 244.850834][ T31] Not tainted 6.15.0-rc3-syzkaller-00283-gf1a3944c860b #0 [ 244.858745][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 244.869739][ T31] task:syz.1.12 state:D stack:26488 pid:5919 tgid:5919 ppid:5837 task_flags:0x440040 flags:0x00000004 [ 244.881979][ T31] Call Trace: [ 244.885333][ T31] [ 244.888377][ T31] __schedule+0x116f/0x5de0 [ 244.893775][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 244.898894][ T31] ? __pfx___schedule+0x10/0x10 [ 244.903797][ T31] ? find_held_lock+0x2b/0x80 [ 244.908547][ T31] ? schedule+0x2d7/0x3a0 [ 244.912919][ T31] schedule+0xe7/0x3a0 [ 244.917096][ T31] io_schedule+0xbf/0x130 [ 244.921448][ T31] bit_wait_io+0x15/0xe0 [ 244.926275][ T31] __wait_on_bit+0x62/0x180 [ 244.930814][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 244.935871][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 244.941274][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 244.947340][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 244.952847][ T31] do_get_write_access+0x93d/0x12a0 [ 244.958147][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 244.964164][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 244.970315][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 244.976009][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 244.981502][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 244.986936][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 244.992950][ T31] ? rcu_is_watching+0x12/0xc0 [ 244.999041][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 245.004711][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 245.010050][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 245.015800][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 245.021465][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 245.026474][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 245.031975][ T31] ext4_dirty_inode+0xd9/0x130 [ 245.036855][ T31] ? rcu_is_watching+0x12/0xc0 [ 245.041636][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 245.046706][ T31] generic_update_time+0xcf/0xf0 [ 245.051655][ T31] file_update_time+0x17d/0x1c0 [ 245.056609][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 245.061654][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 245.067153][ T31] ? __pfx_filemap_map_pages+0x10/0x10 [ 245.072643][ T31] ? pte_alloc_one+0x2b1/0x380 [ 245.077521][ T31] do_page_mkwrite+0x171/0x380 [ 245.082336][ T31] do_pte_missing+0x29c/0x3fb0 [ 245.088393][ T31] __handle_mm_fault+0x103d/0x2a40 [ 245.093639][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 245.099900][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 245.105349][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 245.110720][ T31] handle_mm_fault+0x3fe/0xad0 [ 245.115706][ T31] do_user_addr_fault+0x60c/0x1370 [ 245.120860][ T31] exc_page_fault+0x5c/0xc0 [ 245.125507][ T31] asm_exc_page_fault+0x26/0x30 [ 245.130373][ T31] RIP: 0033:0x7f59c186ea27 [ 245.134773][ T31] RSP: 002b:00007ffff315fad0 EFLAGS: 00010202 [ 245.140873][ T31] RAX: 0000001b30420000 RBX: 00007f59c26e5720 RCX: 0000001b2fe20218 [ 245.148915][ T31] RDX: 0000001b3041fffc RSI: 00000000005ffde8 RDI: 00007f59c26e5700 [ 245.156963][ T31] RBP: 0000000000000000 R08: 00007f59c1bb6118 R09: 00007f59c1ba2000 [ 245.164940][ T31] R10: 00007f59c26e5700 R11: 0000000000000001 R12: 0000000000000000 [ 245.173013][ T31] R13: 0000000000000000 R14: 0000000000000000 R15: 00000000000000ae [ 245.181125][ T31] [ 245.184241][ T31] [ 245.184241][ T31] Showing all locks held in the system: [ 245.197392][ T31] 1 lock held by rcu_exp_gp_kthr/18: [ 245.204750][ T31] #0: ffff8880b8539f18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x29/0x130 [ 245.216466][ T31] 1 lock held by khungtaskd/31: [ 245.221589][ T31] #0: ffffffff8e3bf440 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0 [ 245.232727][ T31] 2 locks held by kworker/u8:2/36: [ 245.238974][ T31] 7 locks held by kworker/u8:7/3523: [ 245.244271][ T31] #0: ffff888141ecd148 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70 [ 245.255350][ T31] #1: ffffc9000cd27d18 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70 [ 245.267385][ T31] #2: ffff88814de160e0 (&type->s_umount_key#31){++++}-{4:4}, at: super_trylock_shared+0x1e/0xf0 [ 245.278010][ T31] #3: ffff88814de20b98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x1b2/0x820 [ 245.288343][ T31] #4: ffff88814de22950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 245.298267][ T31] #5: ffff88807c01b450 (&ei->i_data_sem){++++}-{4:4}, at: ext4_map_blocks+0x355/0x1390 [ 245.309933][ T31] #6: ffffe8ffffc1faf8 (&lg->lg_mutex){+.+.}-{4:4}, at: ext4_mb_initialize_context+0x81c/0xdf0 [ 245.321043][ T31] 2 locks held by getty/5587: [ 245.326400][ T31] #0: ffff888035bd20a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 245.336467][ T31] #1: ffffc9000333b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0 [ 245.346990][ T31] 3 locks held by syz-executor/5820: [ 245.352285][ T31] #0: ffff888034554bc8 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 245.361775][ T31] #1: ffff88814de16518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 245.371544][ T31] #2: ffff88814de22950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 245.381189][ T31] 3 locks held by syz.3.9/5909: [ 245.386072][ T31] #0: ffff88807d8cb088 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 245.395460][ T31] #1: ffff88814de16518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 245.406007][ T31] #2: ffff88814de22950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 245.415728][ T31] 3 locks held by syz.0.11/5917: [ 245.420676][ T31] #0: ffff888034d96448 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 245.430058][ T31] #1: ffff88814de16518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 245.439606][ T31] #2: ffff88814de22950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 245.449296][ T31] 3 locks held by syz.1.12/5919: [ 245.454247][ T31] #0: ffff8880347fe1c8 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 245.463709][ T31] #1: ffff88814de16518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 245.473261][ T31] #2: ffff88814de22950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 245.482892][ T31] 2 locks held by dhcpcd/5948: [ 245.487702][ T31] #0: ffff88807c2e6208 (&sb->s_type->i_mutex_key#11){+.+.}-{4:4}, at: __sock_release+0x86/0x270 [ 245.498298][ T31] #1: ffffffff8e3ca978 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x280/0x3c0 [ 245.509216][ T31] [ 245.511577][ T31] ============================================= [ 245.511577][ T31] [ 245.520079][ T31] NMI backtrace for cpu 0 [ 245.520101][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc3-syzkaller-00283-gf1a3944c860b #0 PREEMPT(full) [ 245.520129][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 245.520141][ T31] Call Trace: [ 245.520149][ T31] [ 245.520158][ T31] dump_stack_lvl+0x116/0x1f0 [ 245.520190][ T31] nmi_cpu_backtrace+0x27b/0x390 [ 245.520220][ T31] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 245.520246][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 245.520280][ T31] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 245.520315][ T31] watchdog+0xf70/0x12c0 [ 245.520354][ T31] ? __pfx_watchdog+0x10/0x10 [ 245.520377][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 245.520404][ T31] ? __kthread_parkme+0x19e/0x250 [ 245.520432][ T31] ? __pfx_watchdog+0x10/0x10 [ 245.520458][ T31] kthread+0x3c2/0x780 [ 245.520488][ T31] ? __pfx_kthread+0x10/0x10 [ 245.520514][ T31] ? __pfx_kthread+0x10/0x10 [ 245.520541][ T31] ? __pfx_kthread+0x10/0x10 [ 245.520568][ T31] ? __pfx_kthread+0x10/0x10 [ 245.520592][ T31] ? rcu_is_watching+0x12/0xc0 [ 245.520614][ T31] ? __pfx_kthread+0x10/0x10 [ 245.520643][ T31] ret_from_fork+0x45/0x80 [ 245.520674][ T31] ? __pfx_kthread+0x10/0x10 [ 245.520703][ T31] ret_from_fork_asm+0x1a/0x30 [ 245.520748][ T31] [ 245.520756][ T31] Sending NMI from CPU 0 to CPUs 1: [ 245.659224][ C1] NMI backtrace for cpu 1 [ 245.659241][ C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.15.0-rc3-syzkaller-00283-gf1a3944c860b #0 PREEMPT(full) [ 245.659269][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 245.659282][ C1] RIP: 0010:pv_native_safe_halt+0xf/0x20 [ 245.659312][ C1] Code: 86 65 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 43 29 21 00 fb f4 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 [ 245.659371][ C1] RSP: 0018:ffffc90000197df8 EFLAGS: 000002c2 [ 245.659389][ C1] RAX: 000000000012ee1f RBX: 0000000000000001 RCX: ffffffff8b68c3e9 [ 245.659403][ C1] RDX: 0000000000000000 RSI: ffffffff8dbd9cfb RDI: ffffffff8bf467a0 [ 245.659417][ C1] RBP: ffffed1003b59b40 R08: 0000000000000001 R09: ffffed10170a65bd [ 245.659431][ C1] R10: ffff8880b8532deb R11: 0000000000000000 R12: 0000000000000001 [ 245.659445][ C1] R13: ffff88801dacda00 R14: ffffffff90850e10 R15: 0000000000000000 [ 245.659460][ C1] FS: 0000000000000000(0000) GS:ffff888124aef000(0000) knlGS:0000000000000000 [ 245.659480][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 245.659495][ C1] CR2: 000055d2bbf0c680 CR3: 000000000e180000 CR4: 00000000003526f0 [ 245.659509][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 245.659522][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 245.659535][ C1] Call Trace: [ 245.659542][ C1] [ 245.659550][ C1] default_idle+0x13/0x20 [ 245.659578][ C1] default_idle_call+0x6d/0xb0 [ 245.659606][ C1] do_idle+0x391/0x510 [ 245.659629][ C1] ? __pfx_do_idle+0x10/0x10 [ 245.659650][ C1] ? trace_sched_exit_tp+0x31/0x130 [ 245.659678][ C1] cpu_startup_entry+0x4f/0x60 [ 245.659699][ C1] start_secondary+0x21d/0x2b0 [ 245.659730][ C1] ? __pfx_start_secondary+0x10/0x10 [ 245.659765][ C1] common_startup_64+0x13e/0x148 [ 245.659797][ C1] [ 245.660216][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 245.858556][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc3-syzkaller-00283-gf1a3944c860b #0 PREEMPT(full) [ 245.870367][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 245.880445][ T31] Call Trace: [ 245.883722][ T31] [ 245.886652][ T31] dump_stack_lvl+0x3d/0x1f0 [ 245.891249][ T31] panic+0x71c/0x800 [ 245.895160][ T31] ? __pfx_panic+0x10/0x10 [ 245.899581][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 245.904966][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 245.910955][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 245.916428][ T31] ? watchdog+0xdda/0x12c0 [ 245.920865][ T31] ? watchdog+0xdcd/0x12c0 [ 245.925313][ T31] watchdog+0xdeb/0x12c0 [ 245.929585][ T31] ? __pfx_watchdog+0x10/0x10 [ 245.934268][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 245.939478][ T31] ? __kthread_parkme+0x19e/0x250 [ 245.944509][ T31] ? __pfx_watchdog+0x10/0x10 [ 245.949198][ T31] kthread+0x3c2/0x780 [ 245.953274][ T31] ? __pfx_kthread+0x10/0x10 [ 245.957867][ T31] ? __pfx_kthread+0x10/0x10 [ 245.962460][ T31] ? __pfx_kthread+0x10/0x10 [ 245.967055][ T31] ? __pfx_kthread+0x10/0x10 [ 245.971650][ T31] ? rcu_is_watching+0x12/0xc0 [ 245.976414][ T31] ? __pfx_kthread+0x10/0x10 [ 245.981008][ T31] ret_from_fork+0x45/0x80 [ 245.985432][ T31] ? __pfx_kthread+0x10/0x10 [ 245.990025][ T31] ret_from_fork_asm+0x1a/0x30 [ 245.994805][ T31] [ 245.998065][ T31] Kernel Offset: disabled [ 246.002381][ T31] Rebooting in 86400 seconds..