last executing test programs: 3.545472186s ago: executing program 3 (id=4): ioctl$sock_proto_private(0xffffffffffffffff, 0x89de, 0x0) write$FUSE_BMAP(0xffffffffffffffff, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) setsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, &(0x7f0000000540), 0x4) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f0000000080)={'gre0\x00', @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3c}}) connect$l2tp6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x20) r3 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f0000000040)=ANY=[@ANYBLOB="e00000027f0000010000000003"], 0x1c) 3.088570468s ago: executing program 0 (id=1): r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ip_vs_stats_percpu\x00') openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, &(0x7f0000000300)) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f00000003c0)={0x0, 0x0, 0x0, 'queue0\x00'}) r1 = syz_open_dev$sndpcmc(&(0x7f0000000040), 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ptrace$getregs(0xffffffffffffffff, r2, 0x3, &(0x7f00000020c0)=""/44) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff) openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r1, 0xc2604110, &(0x7f00000001c0)={0x0, [[0x8403], [0x0, 0x100000]], '\x00', [{0x0, 0x7fff}, {}, {}, {}, {}, {}, {0x0, 0x1}]}) close_range(r0, 0xffffffffffffffff, 0x0) io_uring_setup(0x1bab, &(0x7f00000000c0)={0x0, 0x0, 0x2}) r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000042c0)='fdinfo/3\x00') read$FUSE(r5, &(0x7f0000000080)={0x2020}, 0x2020) 2.304597669s ago: executing program 3 (id=6): prlimit64(0x0, 0xe, &(0x7f0000000140)={0xff, 0xfffffffffffffffc}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000000c0)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000001400), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000380)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000340), 0x106}}, 0x20) r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000700)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000006c0), 0x2}}, 0x20) write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000680)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000400), 0x106}}, 0x20) write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000b80)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000b40)}}, 0x20) write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f00000003c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000900), 0x111}}, 0x20) r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000940)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0), 0x2}}, 0x20) write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000780), 0x13f}}, 0x20) write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000100), 0x111}}, 0x20) writev(r4, &(0x7f0000000000)=[{&(0x7f0000000080), 0x62}, {&(0x7f0000000100)="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", 0x682c}, {&(0x7f0000001480)="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", 0x1001}], 0x3) 1.07178333s ago: executing program 3 (id=7): r0 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000002c0)) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000200)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x1b, 0x4, 0x0, 0x0, 0x6c, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x1c, 0x0, 0x0, 0x0, [0x401, 0x1000, 0x0, 0x0, 0x15a, 0x0]}, @rr={0x7, 0xb, 0x3f, [@local, @loopback]}, @timestamp_prespec={0x44, 0x24, 0x0, 0x3, 0x0, [{@dev}, {@local}, {@private}, {@local}]}, @noop, @noop, @lsrr={0x83, 0xb, 0x0, [@private, @rand_addr]}]}}}}}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$IOCTL_GET_NCIDEV_IDX(r4, 0x0, &(0x7f00000000c0)=0x0) r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/netfilter\x00') fstat(r6, &(0x7f0000000040)) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r7) sendmsg$NFC_CMD_DEV_UP(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x1c, r8, 0x1, 0x0, 0x0, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r5}]}, 0x1c}}, 0x0) write$nci(r4, &(0x7f0000000900)=ANY=[@ANYBLOB="fbe1ce62"], 0x4) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0) write$binfmt_script(r9, &(0x7f0000000240), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r9, 0x0) r10 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r10, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) r12 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_INTERFACE(r10, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r12, @ANYBLOB="0500000000000000000006000000080003002bca1a6b0340fc56a1ca9dd401a6919d42c64ec70b55f395425a2fdc4365b21e69d0ca61662a35d3a00c4a32f1afcf7c23ca306fa2a740b24d6723c542de7e19e88b5e9d4e693c02a3c7f5c6a4cfc2a69a9e43a24b4bdcd294e683de97410589ebc64d001df508e2553d47fab7de6329ae80e7161829bc323a8a83289a570b36d8fa91c37dc2b699a711b13653531b11645e31bbbd6567a441480f803a4a5085ea8f7f1ba4c83d", @ANYRES32=r11, @ANYBLOB="080005000b000000"], 0x24}}, 0x0) syz_80211_join_ibss(&(0x7f0000000040)='wlan0\x00', 0x0, 0x0, 0x0) r13 = dup(r3) r14 = ioctl$KVM_CREATE_VCPU(r13, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r14, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10) r15 = syz_io_uring_setup(0x7afc, &(0x7f00000000c0)={0x0, 0xa35a, 0x20, 0x1, 0x17a, 0x0, r6}, &(0x7f0000000180), &(0x7f0000000280)) syz_io_uring_setup(0x1790, &(0x7f0000000380)={0x0, 0x5294, 0x80, 0x3, 0x12c, 0x0, r15}, &(0x7f0000000400), &(0x7f0000000440)) mknod$loop(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 1.060098148s ago: executing program 0 (id=8): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) socket$igmp(0x2, 0x3, 0x2) openat$vimc1(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) connect$l2tp6(0xffffffffffffffff, 0x0, 0x0) sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x48004) syz_extract_tcp_res(&(0x7f0000000080), 0x0, 0x101) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000540)=@security={'security\x00', 0x4, 0x4, 0x4c0, 0xffffffff, 0x0, 0x0, 0x2b0, 0xffffffff, 0xffffffff, 0x3f0, 0x3f0, 0x3f0, 0xffffffff, 0x7fffffe, 0x0, {[{{@ipv6={@dev, @ipv4={'\x00', '\xff\xff', @multicast1}, [], [], 'bridge_slave_1\x00', 'geneve0\x00'}, 0x0, 0x1b0, 0x1d8, 0x0, {}, [@common=@dst={{0x48}}, @common=@unspec=@string={{0xc0}, {0x0, 0x0, 'kmp\x00', "a38455d67b0633c77377af818fbba939943755c0a07fac1300dd851e136c187e0ede7cd67fae8be8fa37e218176b320409724e92a42eca15a1f7477233a7974ff18e78958d575575ff706059fdde3db296fa871031b79105baeb7bc1912ef125b3cf84bec049d5d6f06c34f2e0e5a5a93f5b1e41e35a29b82424c2ac80f36689", 0x57}}]}, @common=@unspec=@NFQUEUE2={0x28}}, {{@uncond, 0x0, 0xa8, 0xd8}, @common=@unspec=@CONNMARK={0x30}}, {{@ipv6={@private1, @mcast1, [], [], 'geneve1\x00', 'macvlan0\x00'}, 0x0, 0x118, 0x140, 0x0, {}, [@common=@unspec=@helper={{0x48}, {0x0, 'syz0\x00'}}, @common=@ipv6header={{0x28}}]}, @common=@unspec=@CONNSECMARK={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x520) 0s ago: executing program 0 (id=9): sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x602, 0x0) mknod(&(0x7f0000000540)='./file1\x00', 0x0, 0x0) socket$phonet_pipe(0x23, 0x5, 0x2) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') write$rfkill(r0, &(0x7f00000004c0)={0x0, 0x0, 0x3, 0x1}, 0x8) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.219' (ED25519) to the list of known hosts. [ 73.490762][ T30] audit: type=1400 audit(1720200165.949:87): avc: denied { mounton } for pid=5073 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1925 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 73.498900][ T5073] cgroup: Unknown subsys name 'net' [ 73.518851][ T30] audit: type=1400 audit(1720200165.949:88): avc: denied { mount } for pid=5073 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 73.544560][ T30] audit: type=1400 audit(1720200165.999:89): avc: denied { unmount } for pid=5073 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 73.669050][ T5073] cgroup: Unknown subsys name 'rlimit' [ 73.806671][ T30] audit: type=1400 audit(1720200166.259:90): avc: denied { setattr } for pid=5073 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=733 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 73.844008][ T30] audit: type=1400 audit(1720200166.259:91): avc: denied { create } for pid=5073 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 73.868598][ T30] audit: type=1400 audit(1720200166.269:92): avc: denied { write } for pid=5073 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 73.889817][ T30] audit: type=1400 audit(1720200166.269:93): avc: denied { read } for pid=5073 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 73.910217][ T30] audit: type=1400 audit(1720200166.279:94): avc: denied { mounton } for pid=5073 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 Setting up swapspace version 1, size = 127995904 bytes [ 73.935214][ T30] audit: type=1400 audit(1720200166.279:95): avc: denied { mount } for pid=5073 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 73.958802][ T30] audit: type=1400 audit(1720200166.319:96): avc: denied { read } for pid=4749 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=1 [ 73.962464][ T5074] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 75.332759][ T5073] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 78.850538][ T30] kauditd_printk_skb: 6 callbacks suppressed [ 78.850557][ T30] audit: type=1400 audit(1720200171.299:103): avc: denied { mounton } for pid=5082 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 78.925244][ T30] audit: type=1400 audit(1720200171.309:104): avc: denied { mount } for pid=5083 comm="syz-executor" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1 [ 78.958069][ T30] audit: type=1400 audit(1720200171.309:105): avc: denied { create } for pid=5083 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 78.967293][ T5099] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 78.979501][ T30] audit: type=1400 audit(1720200171.309:106): avc: denied { read write } for pid=5083 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1077 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 78.990788][ T5099] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 79.010620][ T30] audit: type=1400 audit(1720200171.309:107): avc: denied { open } for pid=5083 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1077 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 79.019127][ T5099] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 79.048892][ T5099] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 79.054240][ T5101] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 79.057245][ T5099] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 79.065100][ T5101] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 79.071697][ T5099] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 79.078179][ T5101] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 79.093494][ T5099] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 79.094322][ T5101] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 79.101051][ T5099] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 79.109441][ T5101] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 79.115719][ T5099] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 79.124213][ T5101] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 79.129779][ T30] audit: type=1400 audit(1720200171.319:108): avc: denied { ioctl } for pid=5083 comm="syz-executor" path="socket:[3727]" dev="sockfs" ino=3727 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 79.136321][ T5101] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 79.160822][ T5099] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 79.169060][ T5101] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 79.174745][ T5099] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 79.190206][ T5103] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 79.196334][ T5102] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 79.198032][ T5103] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 79.204873][ T5102] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 79.218249][ T5099] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 79.228497][ T5102] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 79.228611][ T5099] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 79.244446][ T5103] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 79.251830][ T5103] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 79.259750][ T5103] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 79.267173][ T5099] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 79.287959][ T30] audit: type=1400 audit(1720200171.709:109): avc: denied { read } for pid=5083 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 79.319969][ T30] audit: type=1400 audit(1720200171.709:110): avc: denied { open } for pid=5083 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 79.398538][ T30] audit: type=1400 audit(1720200171.709:111): avc: denied { mounton } for pid=5083 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 79.854987][ T30] audit: type=1400 audit(1720200172.309:112): avc: denied { module_request } for pid=5084 comm="syz-executor" kmod="rtnl-link-nicvf" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 80.074764][ T5084] chnl_net:caif_netlink_parms(): no params data found [ 80.146026][ T5082] chnl_net:caif_netlink_parms(): no params data found [ 80.179944][ T5093] chnl_net:caif_netlink_parms(): no params data found [ 80.312907][ T5085] chnl_net:caif_netlink_parms(): no params data found [ 80.411054][ T5083] chnl_net:caif_netlink_parms(): no params data found [ 80.424976][ T5084] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.432727][ T5084] bridge0: port 1(bridge_slave_0) entered disabled state [ 80.440646][ T5084] bridge_slave_0: entered allmulticast mode [ 80.447874][ T5084] bridge_slave_0: entered promiscuous mode [ 80.511573][ T5084] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.519960][ T5084] bridge0: port 2(bridge_slave_1) entered disabled state [ 80.527288][ T5084] bridge_slave_1: entered allmulticast mode [ 80.537995][ T5084] bridge_slave_1: entered promiscuous mode [ 80.626600][ T5082] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.634584][ T5082] bridge0: port 1(bridge_slave_0) entered disabled state [ 80.641788][ T5082] bridge_slave_0: entered allmulticast mode [ 80.649616][ T5082] bridge_slave_0: entered promiscuous mode [ 80.657573][ T5082] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.664853][ T5082] bridge0: port 2(bridge_slave_1) entered disabled state [ 80.672120][ T5082] bridge_slave_1: entered allmulticast mode [ 80.680527][ T5082] bridge_slave_1: entered promiscuous mode [ 80.713221][ T5084] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 80.726969][ T5084] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 80.759293][ T5093] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.766538][ T5093] bridge0: port 1(bridge_slave_0) entered disabled state [ 80.777018][ T5093] bridge_slave_0: entered allmulticast mode [ 80.784320][ T5093] bridge_slave_0: entered promiscuous mode [ 80.794084][ T5093] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.801402][ T5093] bridge0: port 2(bridge_slave_1) entered disabled state [ 80.808818][ T5093] bridge_slave_1: entered allmulticast mode [ 80.816620][ T5093] bridge_slave_1: entered promiscuous mode [ 80.911740][ T5084] team0: Port device team_slave_0 added [ 80.935031][ T5082] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 80.965541][ T5093] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 80.995743][ T5084] team0: Port device team_slave_1 added [ 81.014915][ T5085] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.022907][ T5085] bridge0: port 1(bridge_slave_0) entered disabled state [ 81.031100][ T5085] bridge_slave_0: entered allmulticast mode [ 81.038418][ T5085] bridge_slave_0: entered promiscuous mode [ 81.049126][ T5082] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 81.077447][ T5093] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 81.111933][ T5085] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.123268][ T5085] bridge0: port 2(bridge_slave_1) entered disabled state [ 81.130616][ T5085] bridge_slave_1: entered allmulticast mode [ 81.137616][ T5085] bridge_slave_1: entered promiscuous mode [ 81.175124][ T5083] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.182410][ T5083] bridge0: port 1(bridge_slave_0) entered disabled state [ 81.190453][ T5083] bridge_slave_0: entered allmulticast mode [ 81.197486][ T5083] bridge_slave_0: entered promiscuous mode [ 81.208007][ T5084] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 81.216892][ T5084] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 81.249447][ T5084] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 81.279270][ T5082] team0: Port device team_slave_0 added [ 81.299455][ T5083] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.306729][ T5083] bridge0: port 2(bridge_slave_1) entered disabled state [ 81.314543][ T5083] bridge_slave_1: entered allmulticast mode [ 81.322406][ T5083] bridge_slave_1: entered promiscuous mode [ 81.329491][ T5100] Bluetooth: hci1: command tx timeout [ 81.335379][ T5100] Bluetooth: hci0: command tx timeout [ 81.341830][ T5091] Bluetooth: hci2: command tx timeout [ 81.350910][ T5084] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 81.358008][ T5084] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 81.384300][ T5084] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 81.398401][ T5091] Bluetooth: hci4: command tx timeout [ 81.404454][ T5100] Bluetooth: hci3: command tx timeout [ 81.418163][ T5082] team0: Port device team_slave_1 added [ 81.428066][ T5093] team0: Port device team_slave_0 added [ 81.436112][ T5093] team0: Port device team_slave_1 added [ 81.460184][ T5083] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 81.483575][ T5085] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 81.543375][ T5083] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 81.572096][ T5085] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 81.613197][ T5093] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 81.620912][ T5093] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 81.646925][ T5093] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 81.662346][ T5093] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 81.669399][ T5093] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 81.695424][ T5093] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 81.743511][ T5083] team0: Port device team_slave_0 added [ 81.763918][ T5082] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 81.771690][ T5082] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 81.797998][ T5082] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 81.811632][ T5082] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 81.818682][ T5082] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 81.844835][ T5082] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 81.887396][ T5083] team0: Port device team_slave_1 added [ 81.911225][ T5085] team0: Port device team_slave_0 added [ 81.922996][ T5085] team0: Port device team_slave_1 added [ 81.949904][ T5084] hsr_slave_0: entered promiscuous mode [ 81.957498][ T5084] hsr_slave_1: entered promiscuous mode [ 81.983967][ T5083] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 81.991129][ T5083] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 82.018312][ T5083] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 82.094371][ T5083] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 82.102024][ T5083] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 82.132568][ T5083] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 82.180145][ T5085] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 82.187113][ T5085] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 82.220932][ T5085] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 82.278666][ T5093] hsr_slave_0: entered promiscuous mode [ 82.298291][ T5093] hsr_slave_1: entered promiscuous mode [ 82.304545][ T5093] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 82.313588][ T5093] Cannot create hsr debugfs directory [ 82.333849][ T5082] hsr_slave_0: entered promiscuous mode [ 82.347225][ T5082] hsr_slave_1: entered promiscuous mode [ 82.353889][ T5082] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 82.362296][ T5082] Cannot create hsr debugfs directory [ 82.426216][ T5085] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 82.434114][ T5085] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 82.474013][ T5085] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 82.724808][ T5083] hsr_slave_0: entered promiscuous mode [ 82.738767][ T5083] hsr_slave_1: entered promiscuous mode [ 82.745366][ T5083] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 82.753807][ T5083] Cannot create hsr debugfs directory [ 82.790624][ T5085] hsr_slave_0: entered promiscuous mode [ 82.796931][ T5085] hsr_slave_1: entered promiscuous mode [ 82.803572][ T5085] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 82.811238][ T5085] Cannot create hsr debugfs directory [ 83.327427][ T5084] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 83.348415][ T5084] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 83.373512][ T5084] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 83.395554][ T5084] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 83.403461][ T5100] Bluetooth: hci2: command tx timeout [ 83.403941][ T5096] Bluetooth: hci1: command tx timeout [ 83.409863][ T5091] Bluetooth: hci0: command tx timeout [ 83.469537][ T5082] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 83.477993][ T5091] Bluetooth: hci3: command tx timeout [ 83.478004][ T5096] Bluetooth: hci4: command tx timeout [ 83.517311][ T5082] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 83.528995][ T5082] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 83.547188][ T5082] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 83.616723][ T5093] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 83.627547][ T5093] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 83.642603][ T5093] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 83.663515][ T5093] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 83.809922][ T5083] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 83.824766][ T5083] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 83.836970][ T5083] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 83.865306][ T5083] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 84.063703][ T5084] 8021q: adding VLAN 0 to HW filter on device bond0 [ 84.085077][ T5085] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 84.122474][ T5085] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 84.147123][ T5082] 8021q: adding VLAN 0 to HW filter on device bond0 [ 84.173845][ T5085] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 84.186392][ T5085] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 84.220556][ T5084] 8021q: adding VLAN 0 to HW filter on device team0 [ 84.245648][ T5093] 8021q: adding VLAN 0 to HW filter on device bond0 [ 84.292136][ T5082] 8021q: adding VLAN 0 to HW filter on device team0 [ 84.316159][ T5138] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.323634][ T5138] bridge0: port 1(bridge_slave_0) entered forwarding state [ 84.373445][ T5140] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.380848][ T5140] bridge0: port 2(bridge_slave_1) entered forwarding state [ 84.410037][ T25] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.417220][ T25] bridge0: port 1(bridge_slave_0) entered forwarding state [ 84.452450][ T25] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.459674][ T25] bridge0: port 2(bridge_slave_1) entered forwarding state [ 84.490908][ T5093] 8021q: adding VLAN 0 to HW filter on device team0 [ 84.514332][ T5139] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.521468][ T5139] bridge0: port 1(bridge_slave_0) entered forwarding state [ 84.577426][ T5139] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.584554][ T5139] bridge0: port 2(bridge_slave_1) entered forwarding state [ 84.669835][ T5093] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 84.682342][ T5093] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 84.711397][ T5083] 8021q: adding VLAN 0 to HW filter on device bond0 [ 84.796750][ T5082] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 84.807330][ T30] audit: type=1400 audit(1720200177.249:113): avc: denied { sys_module } for pid=5093 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 84.923151][ T5083] 8021q: adding VLAN 0 to HW filter on device team0 [ 84.981295][ T5085] 8021q: adding VLAN 0 to HW filter on device bond0 [ 85.010909][ T25] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.018125][ T25] bridge0: port 1(bridge_slave_0) entered forwarding state [ 85.062699][ T25] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.070056][ T25] bridge0: port 2(bridge_slave_1) entered forwarding state [ 85.234905][ T5085] 8021q: adding VLAN 0 to HW filter on device team0 [ 85.293934][ T5142] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.301068][ T5142] bridge0: port 1(bridge_slave_0) entered forwarding state [ 85.329660][ T5142] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.336835][ T5142] bridge0: port 2(bridge_slave_1) entered forwarding state [ 85.359488][ T5093] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 85.419981][ T5082] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 85.478880][ T5096] Bluetooth: hci0: command tx timeout [ 85.478941][ T5091] Bluetooth: hci2: command tx timeout [ 85.489295][ T5096] Bluetooth: hci1: command tx timeout [ 85.504483][ T5084] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 85.567480][ T5096] Bluetooth: hci4: command tx timeout [ 85.567507][ T5091] Bluetooth: hci3: command tx timeout [ 85.757225][ T5082] veth0_vlan: entered promiscuous mode [ 85.829492][ T5084] veth0_vlan: entered promiscuous mode [ 85.872771][ T5082] veth1_vlan: entered promiscuous mode [ 85.927167][ T5084] veth1_vlan: entered promiscuous mode [ 86.027519][ T5082] veth0_macvtap: entered promiscuous mode [ 86.041965][ T5082] veth1_macvtap: entered promiscuous mode [ 86.105522][ T5082] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 86.120775][ T5082] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 86.145915][ T5093] veth0_vlan: entered promiscuous mode [ 86.165469][ T5082] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.174684][ T5082] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.184329][ T5082] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.193767][ T5082] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.221110][ T5084] veth0_macvtap: entered promiscuous mode [ 86.233091][ T5084] veth1_macvtap: entered promiscuous mode [ 86.253552][ T5085] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 86.290616][ T5083] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 86.303249][ T5093] veth1_vlan: entered promiscuous mode [ 86.344355][ T5084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 86.355628][ T5084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 86.368577][ T5084] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 86.457482][ T5084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 86.468643][ T5084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 86.480596][ T5084] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 86.502132][ T5084] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.511452][ T5084] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.521118][ T5084] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.532199][ T5084] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.632344][ T2903] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.661579][ T2903] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.668871][ T5085] veth0_vlan: entered promiscuous mode [ 86.745629][ T5085] veth1_vlan: entered promiscuous mode [ 86.768784][ T5083] veth0_vlan: entered promiscuous mode [ 86.783764][ T5093] veth0_macvtap: entered promiscuous mode [ 86.837278][ T5093] veth1_macvtap: entered promiscuous mode [ 86.845390][ T29] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.857509][ T29] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.865928][ T2794] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.885036][ T2794] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.950433][ T30] audit: type=1400 audit(1720200179.409:114): avc: denied { mounton } for pid=5082 comm="syz-executor" path="/root/syzkaller.05xiA1/syz-tmp" dev="sda1" ino=1944 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 86.968741][ T5083] veth1_vlan: entered promiscuous mode [ 86.985327][ T2794] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.997098][ T2794] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 87.016617][ T5085] veth0_macvtap: entered promiscuous mode [ 87.025434][ T30] audit: type=1400 audit(1720200179.409:115): avc: denied { mount } for pid=5082 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 87.055366][ T30] audit: type=1400 audit(1720200179.409:116): avc: denied { mounton } for pid=5082 comm="syz-executor" path="/root/syzkaller.05xiA1/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 87.093685][ T5085] veth1_macvtap: entered promiscuous mode [ 87.106930][ T30] audit: type=1400 audit(1720200179.409:117): avc: denied { mount } for pid=5082 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 87.137525][ T30] audit: type=1400 audit(1720200179.449:118): avc: denied { unmount } for pid=5082 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 87.162447][ T5093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 87.175315][ T5093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 87.185814][ T5093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 87.202363][ T5093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 87.207470][ T30] audit: type=1400 audit(1720200179.469:119): avc: denied { mounton } for pid=5082 comm="syz-executor" path="/dev/binderfs" dev="devtmpfs" ino=2323 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 87.215963][ T5093] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 87.237284][ T30] audit: type=1400 audit(1720200179.469:120): avc: denied { mount } for pid=5082 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 87.270059][ T1148] cfg80211: failed to load regulatory.db [ 87.319820][ T5093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 87.342507][ T5093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 87.353979][ T5093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 87.365595][ T5093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 87.367384][ T30] audit: type=1400 audit(1720200179.819:121): avc: denied { read write } for pid=5084 comm="syz-executor" name="loop3" dev="devtmpfs" ino=651 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 87.378789][ T5093] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 87.408447][ T30] audit: type=1400 audit(1720200179.859:122): avc: denied { open } for pid=5084 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=651 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 87.416657][ T5085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 87.445013][ T5085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 87.464457][ T5085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 87.475333][ T5085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 87.502651][ T5085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 87.514490][ T5085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 87.530756][ T5085] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 87.558130][ T5091] Bluetooth: hci2: command tx timeout [ 87.568003][ T5091] Bluetooth: hci1: command tx timeout [ 87.573436][ T5091] Bluetooth: hci0: command tx timeout [ 87.606548][ T5093] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.620178][ T5093] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.640722][ T5091] Bluetooth: hci3: command tx timeout [ 87.646355][ T5096] Bluetooth: hci4: command tx timeout [ 87.652613][ T5093] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.673299][ T5093] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.703340][ T5085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 87.722862][ T5085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 87.736926][ T5085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 87.755848][ T5085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 87.777972][ T5085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 87.790125][ T5085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 87.806759][ T5085] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 88.379830][ T5085] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.402274][ T5085] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.557864][ T5085] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.566612][ T5085] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.716811][ T5083] veth0_macvtap: entered promiscuous mode [ 89.577510][ T5083] veth1_macvtap: entered promiscuous mode [ 89.954440][ T5083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 89.967359][ T2903] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.992518][ T2903] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.027550][ T5083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.061248][ T30] kauditd_printk_skb: 7 callbacks suppressed [ 90.061265][ T30] audit: type=1400 audit(1720200182.519:130): avc: denied { read } for pid=5185 comm="syz.3.7" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 90.096321][ T5186] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 90.114873][ T5083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 90.138510][ T30] audit: type=1400 audit(1720200182.549:131): avc: denied { open } for pid=5185 comm="syz.3.7" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 90.177581][ T5083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.186211][ T30] audit: type=1400 audit(1720200182.549:132): avc: denied { ioctl } for pid=5185 comm="syz.3.7" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 90.194122][ T5083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 90.225400][ T5083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.236690][ T5083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 90.272158][ T5083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.314247][ T5193] xt_NFQUEUE: number of total queues is 0 [ 90.436634][ T30] audit: type=1400 audit(1720200182.749:133): avc: denied { create } for pid=5183 comm="syz.0.8" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 90.516584][ T5083] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.782144][ T30] audit: type=1400 audit(1720200182.749:134): avc: denied { read write } for pid=5183 comm="syz.0.8" name="video1" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1 [ 90.843217][ T5083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 90.885103][ T5083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.909539][ T30] audit: type=1400 audit(1720200182.759:135): avc: denied { open } for pid=5183 comm="syz.0.8" path="/dev/video1" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1 [ 90.932960][ T30] audit: type=1400 audit(1720200183.319:136): avc: denied { read } for pid=5185 comm="syz.3.7" dev="nsfs" ino=4026532865 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 90.947689][ T5083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 90.954959][ T30] audit: type=1400 audit(1720200183.319:137): avc: denied { open } for pid=5185 comm="syz.3.7" path="net:[4026532865]" dev="nsfs" ino=4026532865 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 90.980450][ T5083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.002950][ T30] audit: type=1400 audit(1720200183.459:138): avc: denied { create } for pid=5195 comm="syz.0.9" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 91.040359][ T5083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.050899][ T5083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.060821][ T5083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.071372][ T5083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.084344][ T5083] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 91.222118][ T5083] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.236932][ T30] audit: type=1400 audit(1720200183.689:139): avc: denied { search } for pid=5198 comm="dhcpcd-run-hook" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 91.277765][ T5083] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.297761][ T5083] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.318953][ T5083] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.443059][ T2903] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.460987][ T2903] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.478036][ T5196] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 93.478778][ T5096] Bluetooth: hci0: command 0x0c1a tx timeout [ 93.484478][ T5196] Bluetooth: hci0: Error when powering off device on rfkill (-110) [ 93.976258][ T5196] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 93.982449][ T5196] Bluetooth: hci1: Error when powering off device on rfkill (-4) [ 93.995614][ T5196] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 94.001893][ T5196] Bluetooth: hci2: Error when powering off device on rfkill (-4) [ 94.013744][ T5196] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 94.021870][ T5196] Bluetooth: hci3: Error when powering off device on rfkill (-4) [ 94.033587][ T5196] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 94.041270][ T5196] Bluetooth: hci4: Error when powering off device on rfkill (-4) [ 133.330330][ T1238] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.337024][ T1238] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.770887][ T1238] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.777184][ T1238] ieee802154 phy1 wpan1: encryption failed: -22 [ 237.000055][ T31] INFO: task syz-executor:5083 blocked for more than 143 seconds. [ 237.008394][ T31] Not tainted 6.10.0-rc6-syzkaller-00163-g661e504db04c #0 [ 237.016035][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 237.024736][ T31] task:syz-executor state:D stack:23248 pid:5083 tgid:5083 ppid:1 flags:0x00000004 SYZFAIL: failed to recv rpc fd=3 want=4 sent=0 n=0 (errno 9: Bad file descriptor) [ 237.047712][ T31] Call Trace: [ 237.051045][ T31] [ 237.054011][ T31] __schedule+0xf15/0x5d00 [ 237.070638][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 237.076258][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 237.083379][ T31] ? __pfx_stack_trace_save+0x10/0x10 [ 237.088731][ T5073] syz-executor (5073) used greatest stack depth: 21168 bytes left [ 237.108223][ T31] ? __pfx___schedule+0x10/0x10 [ 237.113143][ T31] ? schedule+0x298/0x350 [ 237.117498][ T31] ? __pfx_lock_release+0x10/0x10 [ 237.123331][ T31] ? __mutex_lock+0x5b3/0x9c0 [ 237.128427][ T31] ? __mutex_trylock_common+0x78/0x250 [ 237.134315][ T31] schedule+0xe7/0x350 [ 237.138908][ T31] schedule_preempt_disabled+0x13/0x30 [ 237.144409][ T31] __mutex_lock+0x5b8/0x9c0 [ 237.153327][ T31] ? rfkill_fop_open+0x13b/0x750 [ 237.164781][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 237.170286][ T31] ? lockdep_init_map_type+0x16d/0x7d0 [ 237.175781][ T31] ? __pfx_rfkill_fop_open+0x10/0x10 [ 237.181100][ T31] ? rfkill_fop_open+0x13b/0x750 [ 237.186051][ T31] rfkill_fop_open+0x13b/0x750 [ 237.191181][ T31] ? kobject_get_unless_zero+0x157/0x1e0 [ 237.196857][ T31] ? __pfx_rfkill_fop_open+0x10/0x10 [ 237.202196][ T31] misc_open+0x3da/0x4c0 [ 237.206468][ T31] ? __pfx_misc_open+0x10/0x10 [ 237.211364][ T31] chrdev_open+0x26d/0x6f0 [ 237.215809][ T31] ? __pfx_chrdev_open+0x10/0x10 [ 237.220816][ T31] ? security_file_open+0x9d/0x8b0 [ 237.225945][ T31] do_dentry_open+0x91f/0x15f0 [ 237.230830][ T31] ? __pfx_chrdev_open+0x10/0x10 [ 237.235799][ T31] ? inode_permission+0xdd/0x5f0 [ 237.240892][ T31] vfs_open+0x82/0x3f0 [ 237.245067][ T31] ? may_open+0x1f2/0x400 [ 237.249528][ T31] path_openat+0x21fc/0x2e50 [ 237.254147][ T31] ? __pfx_path_openat+0x10/0x10 [ 237.259299][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 237.264525][ T31] ? find_held_lock+0x2d/0x110 [ 237.275105][ T31] do_filp_open+0x1dc/0x430 [ 237.279730][ T31] ? __pfx_do_filp_open+0x10/0x10 [ 237.284804][ T31] ? find_held_lock+0x2d/0x110 [ 237.289791][ T31] ? _raw_spin_unlock+0x28/0x50 [ 237.294672][ T31] ? alloc_fd+0x2d7/0x6c0 [ 237.299095][ T31] do_sys_openat2+0x17a/0x1e0 [ 237.303786][ T31] ? __pfx_do_sys_openat2+0x10/0x10 [ 237.309063][ T31] ? kasan_quarantine_put+0x10a/0x240 [ 237.314466][ T31] ? kmem_cache_free+0x12f/0x3a0 [ 237.319545][ T31] __x64_sys_openat+0x175/0x210 [ 237.324427][ T31] ? __pfx___x64_sys_openat+0x10/0x10 [ 237.329936][ T31] do_syscall_64+0xcd/0x250 [ 237.334479][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 237.340465][ T31] RIP: 0033:0x7ff26e774610 [ 237.344896][ T31] RSP: 002b:00007ffc93708510 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 237.353369][ T31] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007ff26e774610 [ 237.361447][ T31] RDX: 0000000000000002 RSI: 00007ff26e7e3e09 RDI: 00000000ffffff9c [ 237.369660][ T31] RBP: 00007ff26e7e3e09 R08: 0000000000000000 R09: 0000000000000000 [ 237.377691][ T31] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000000000c [ 237.385680][ T31] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000009 [ 237.393725][ T31] [ 237.396768][ T31] INFO: task syz-executor:5085 blocked for more than 143 seconds. [ 237.404733][ T31] Not tainted 6.10.0-rc6-syzkaller-00163-g661e504db04c #0 [ 237.412465][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 237.421219][ T31] task:syz-executor state:D stack:23632 pid:5085 tgid:5085 ppid:1 flags:0x00000004 [ 237.431505][ T31] Call Trace: [ 237.434773][ T31] [ 237.437743][ T31] __schedule+0xf15/0x5d00 [ 237.442190][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 237.447424][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 237.452693][ T31] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 237.458844][ T31] ? __pfx___schedule+0x10/0x10 [ 237.463709][ T31] ? schedule+0x298/0x350 [ 237.468091][ T31] ? __pfx_lock_release+0x10/0x10 [ 237.473319][ T31] ? __mutex_lock+0x5b3/0x9c0 [ 237.478364][ T31] ? __mutex_trylock_common+0x78/0x250 [ 237.483859][ T31] schedule+0xe7/0x350 [ 237.495466][ T31] schedule_preempt_disabled+0x13/0x30 [ 237.501043][ T31] __mutex_lock+0x5b8/0x9c0 [ 237.505566][ T31] ? kasan_quarantine_put+0x10a/0x240 [ 237.511221][ T31] ? genl_rcv_msg+0x580/0x800 [ 237.515931][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 237.521006][ T31] ? kfree_skbmem+0x10e/0x200 [ 237.525701][ T31] ? __radix_tree_lookup+0x21f/0x2c0 [ 237.531100][ T31] ? genl_rcv_msg+0x580/0x800 [ 237.535803][ T31] genl_rcv_msg+0x580/0x800 [ 237.540379][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 237.545429][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 237.550751][ T31] netlink_rcv_skb+0x16b/0x440 [ 237.555543][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 237.560753][ T31] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 237.566066][ T31] ? down_read+0xc9/0x330 [ 237.570536][ T31] ? __pfx_down_read+0x10/0x10 [ 237.575338][ T31] ? netlink_deliver_tap+0x1ae/0xd90 [ 237.581315][ T31] genl_rcv+0x28/0x40 [ 237.585332][ T31] netlink_unicast+0x542/0x820 [ 237.590286][ T31] ? __pfx_netlink_unicast+0x10/0x10 [ 237.595597][ T31] netlink_sendmsg+0x8b8/0xd70 [ 237.600444][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 237.605750][ T31] __sys_sendto+0x47f/0x4e0 [ 237.610353][ T31] ? __pfx___sys_sendto+0x10/0x10 [ 237.615407][ T31] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 237.621535][ T31] ? kasan_quarantine_put+0x10a/0x240 [ 237.626902][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 237.632140][ T31] __x64_sys_sendto+0xe0/0x1c0 [ 237.636923][ T31] ? do_syscall_64+0x91/0x250 [ 237.641677][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 237.646890][ T31] do_syscall_64+0xcd/0x250 [ 237.651588][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 237.657514][ T31] RIP: 0033:0x7f84e057796c [ 237.661987][ T31] RSP: 002b:00007ffc0e08b950 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 237.670447][ T31] RAX: ffffffffffffffda RBX: 00007f84e1234620 RCX: 00007f84e057796c [ 237.678668][ T31] RDX: 0000000000000024 RSI: 00007f84e1234670 RDI: 0000000000000003 [ 237.686652][ T31] RBP: 0000000000000000 R08: 00007ffc0e08b9a4 R09: 000000000000000c [ 237.694845][ T31] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 237.702912][ T31] R13: 0000000000000000 R14: 00007f84e1234670 R15: 0000000000000000 [ 237.711482][ T31] [ 237.714594][ T31] INFO: task syz-executor:5093 blocked for more than 144 seconds. [ 237.723671][ T31] Not tainted 6.10.0-rc6-syzkaller-00163-g661e504db04c #0 [ 237.733385][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 237.743514][ T31] task:syz-executor state:D stack:23616 pid:5093 tgid:5093 ppid:1 flags:0x00004004 [ 237.753796][ T31] Call Trace: [ 237.757082][ T31] [ 237.760084][ T31] __schedule+0xf15/0x5d00 [ 237.764530][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 237.769822][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 237.775049][ T31] ? __pfx_lock_release+0x10/0x10 [ 237.780193][ T31] ? __pfx___schedule+0x10/0x10 [ 237.785063][ T31] ? schedule+0x298/0x350 [ 237.789463][ T31] ? __pfx_lock_release+0x10/0x10 [ 237.794544][ T31] ? __mutex_lock+0x5b3/0x9c0 [ 237.799564][ T31] ? __mutex_trylock_common+0x78/0x250 [ 237.805033][ T31] schedule+0xe7/0x350 [ 237.809177][ T31] schedule_preempt_disabled+0x13/0x30 [ 237.814655][ T31] __mutex_lock+0x5b8/0x9c0 [ 237.819230][ T31] ? rfkill_register+0x3a/0xb40 [ 237.824121][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 237.829696][ T31] ? __pfx_netdev_run_todo+0x10/0x10 [ 237.835015][ T31] ? mod_delayed_work_on+0x1a9/0x1d0 [ 237.840375][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 237.845588][ T31] ? mod_delayed_work_on+0x14d/0x1d0 [ 237.851018][ T31] ? rfkill_register+0x3a/0xb40 [ 237.855903][ T31] rfkill_register+0x3a/0xb40 [ 237.860689][ T31] wiphy_register+0x26b1/0x2d00 [ 237.865582][ T31] ? __pfx_wiphy_register+0x10/0x10 [ 237.870882][ T31] ieee80211_register_hw+0x2683/0x43b0 [ 237.876364][ T31] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 237.882605][ T31] ? lockdep_init_map_type+0x16d/0x7d0 [ 237.888564][ T31] ? __asan_memset+0x23/0x50 [ 237.893184][ T31] ? __hrtimer_init+0x106/0x2c0 [ 237.898094][ T31] mac80211_hwsim_new_radio+0x22f6/0x4e50 [ 237.903844][ T31] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 237.910021][ T31] hwsim_new_radio_nl+0xaf9/0x1240 [ 237.915158][ T31] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 237.920785][ T31] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 237.928294][ T31] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 237.935694][ T31] genl_family_rcv_msg_doit+0x202/0x2f0 [ 237.941343][ T31] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 237.947447][ T31] ? ns_capable+0xd7/0x110 [ 237.952742][ T31] genl_rcv_msg+0x565/0x800 [ 237.957292][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 237.962841][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 237.968908][ T31] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 237.974507][ T31] netlink_rcv_skb+0x16b/0x440 [ 237.981204][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 237.986275][ T31] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 237.991642][ T31] ? down_read+0xc9/0x330 [ 237.995994][ T31] ? __pfx_down_read+0x10/0x10 [ 238.000833][ T31] ? netlink_deliver_tap+0x1ae/0xd90 [ 238.006141][ T31] genl_rcv+0x28/0x40 [ 238.010184][ T31] netlink_unicast+0x542/0x820 [ 238.014970][ T31] ? __pfx_netlink_unicast+0x10/0x10 [ 238.020312][ T31] netlink_sendmsg+0x8b8/0xd70 [ 238.025098][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 238.030444][ T31] __sys_sendto+0x47f/0x4e0 [ 238.034979][ T31] ? __pfx___sys_sendto+0x10/0x10 [ 238.040056][ T31] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 238.046149][ T31] ? kasan_quarantine_put+0x10a/0x240 [ 238.051586][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 238.056806][ T31] __x64_sys_sendto+0xe0/0x1c0 [ 238.061893][ T31] ? do_syscall_64+0x91/0x250 [ 238.066615][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 238.071922][ T31] do_syscall_64+0xcd/0x250 [ 238.076450][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 238.082691][ T31] RIP: 0033:0x7f2ec637796c [ 238.087101][ T31] RSP: 002b:00007ffd45a44510 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 238.096218][ T31] RAX: ffffffffffffffda RBX: 00007f2ec7034620 RCX: 00007f2ec637796c [ 238.104422][ T31] RDX: 0000000000000024 RSI: 00007f2ec7034670 RDI: 0000000000000003 [ 238.112504][ T31] RBP: 0000000000000000 R08: 00007ffd45a44564 R09: 000000000000000c [ 238.120537][ T31] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 238.128568][ T31] R13: 0000000000000000 R14: 00007f2ec7034670 R15: 0000000000000000 [ 238.136552][ T31] [ 238.139825][ T31] INFO: task kworker/0:6:5139 blocked for more than 144 seconds. [ 238.147552][ T31] Not tainted 6.10.0-rc6-syzkaller-00163-g661e504db04c #0 [ 238.155330][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 238.164088][ T31] task:kworker/0:6 state:D stack:25648 pid:5139 tgid:5139 ppid:2 flags:0x00004000 [ 238.174302][ T31] Workqueue: events rfkill_global_led_trigger_worker [ 238.181127][ T31] Call Trace: [ 238.184424][ T31] [ 238.187581][ T31] __schedule+0xf15/0x5d00 [ 238.192123][ T31] ? __pfx_mark_lock+0x10/0x10 [ 238.196913][ T31] ? __pfx___schedule+0x10/0x10 [ 238.201829][ T31] ? schedule+0x298/0x350 [ 238.206169][ T31] ? __pfx_lock_release+0x10/0x10 [ 238.211263][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 238.216489][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 238.221765][ T31] schedule+0xe7/0x350 [ 238.225835][ T31] schedule_preempt_disabled+0x13/0x30 [ 238.231330][ T31] __mutex_lock+0x5b8/0x9c0 [ 238.235854][ T31] ? rfkill_global_led_trigger_worker+0x1b/0x160 [ 238.242257][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 238.247301][ T31] ? rfkill_global_led_trigger_worker+0x1b/0x160 [ 238.253701][ T31] rfkill_global_led_trigger_worker+0x1b/0x160 [ 238.259931][ T31] process_one_work+0x9c5/0x1b40 [ 238.264885][ T31] ? __pfx_lock_acquire+0x10/0x10 [ 238.269958][ T31] ? __pfx_process_one_work+0x10/0x10 [ 238.275345][ T31] ? assign_work+0x1a0/0x250 [ 238.280077][ T31] worker_thread+0x6c8/0xf30 [ 238.284689][ T31] ? __kthread_parkme+0x148/0x220 [ 238.290243][ T31] ? __pfx_worker_thread+0x10/0x10 [ 238.295381][ T31] kthread+0x2c1/0x3a0 [ 238.299551][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 238.304778][ T31] ? __pfx_kthread+0x10/0x10 [ 238.309480][ T31] ret_from_fork+0x45/0x80 [ 238.313932][ T31] ? __pfx_kthread+0x10/0x10 [ 238.318604][ T31] ret_from_fork_asm+0x1a/0x30 [ 238.323396][ T31] [ 238.326475][ T31] INFO: task syz.3.7:5185 blocked for more than 144 seconds. [ 238.333930][ T31] Not tainted 6.10.0-rc6-syzkaller-00163-g661e504db04c #0 [ 238.341603][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 238.350342][ T31] task:syz.3.7 state:D stack:26288 pid:5185 tgid:5185 ppid:5084 flags:0x00004006 [ 238.360733][ T31] Call Trace: [ 238.364040][ T31] [ 238.366959][ T31] __schedule+0xf15/0x5d00 [ 238.371417][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 238.376643][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 238.381915][ T31] ? __pfx___schedule+0x10/0x10 [ 238.386777][ T31] ? schedule+0x298/0x350 [ 238.391325][ T31] ? __pfx_lock_release+0x10/0x10 [ 238.396375][ T31] ? __mutex_lock+0x5b3/0x9c0 [ 238.401124][ T31] ? __mutex_trylock_common+0x78/0x250 [ 238.406607][ T31] schedule+0xe7/0x350 [ 238.410717][ T31] schedule_preempt_disabled+0x13/0x30 [ 238.416194][ T31] __mutex_lock+0x5b8/0x9c0 [ 238.420771][ T31] ? do_raw_spin_unlock+0x172/0x230 [ 238.425988][ T31] ? rfkill_unregister+0xde/0x2c0 [ 238.431089][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 238.436144][ T31] ? device_del+0x6b6/0x9f0 [ 238.440752][ T31] ? __pfx_device_del+0x10/0x10 [ 238.445632][ T31] ? rfkill_unregister+0xde/0x2c0 [ 238.450750][ T31] rfkill_unregister+0xde/0x2c0 [ 238.455641][ T31] nfc_unregister_device+0x94/0x330 [ 238.460929][ T31] ? __pfx_virtual_ncidev_close+0x10/0x10 [ 238.466670][ T31] virtual_ncidev_close+0x51/0xb0 [ 238.471761][ T31] __fput+0x408/0xbb0 [ 238.475754][ T31] task_work_run+0x14e/0x250 [ 238.480435][ T31] ? __pfx_task_work_run+0x10/0x10 [ 238.485562][ T31] syscall_exit_to_user_mode+0x275/0x2a0 [ 238.491242][ T31] do_syscall_64+0xda/0x250 [ 238.495863][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 238.501805][ T31] RIP: 0033:0x7ffaa5375bd9 [ 238.506229][ T31] RSP: 002b:00007fff1d205528 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 238.514708][ T31] RAX: 0000000000000000 RBX: 00007ffaa5505a60 RCX: 00007ffaa5375bd9 [ 238.523138][ T31] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003 [ 238.531620][ T31] RBP: 00007ffaa5505a60 R08: 0000000000000006 R09: 0000001e1d20585f [ 238.539667][ T31] R10: 00000000005b1c30 R11: 0000000000000246 R12: 0000000000016695 [ 238.547702][ T31] R13: 0000000000000032 R14: 00007ffaa5505a60 R15: 00007ffaa55042c0 [ 238.555698][ T31] [ 238.558848][ T31] INFO: task syz.3.7:5186 blocked for more than 144 seconds. [ 238.566223][ T31] Not tainted 6.10.0-rc6-syzkaller-00163-g661e504db04c #0 [ 238.573942][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 238.582764][ T31] task:syz.3.7 state:D stack:26912 pid:5186 tgid:5185 ppid:5084 flags:0x00000004 [ 238.593083][ T31] Call Trace: [ 238.596558][ T31] [ 238.599780][ T31] __schedule+0xf15/0x5d00 [ 238.604407][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 238.609677][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 238.614900][ T31] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 238.621043][ T31] ? __pfx___schedule+0x10/0x10 [ 238.625912][ T31] ? schedule+0x298/0x350 [ 238.630290][ T31] ? __pfx_lock_release+0x10/0x10 [ 238.635335][ T31] ? __mutex_lock+0x5b3/0x9c0 [ 238.640096][ T31] ? __mutex_trylock_common+0x78/0x250 [ 238.645584][ T31] schedule+0xe7/0x350 [ 238.649694][ T31] schedule_preempt_disabled+0x13/0x30 [ 238.655170][ T31] __mutex_lock+0x5b8/0x9c0 [ 238.659754][ T31] ? kasan_quarantine_put+0x10a/0x240 [ 238.665151][ T31] ? genl_rcv_msg+0x580/0x800 [ 238.669896][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 238.674949][ T31] ? kfree_skbmem+0x10e/0x200 [ 238.679789][ T31] ? __radix_tree_lookup+0x21f/0x2c0 [ 238.685089][ T31] ? genl_rcv_msg+0x580/0x800 [ 238.690016][ T31] genl_rcv_msg+0x580/0x800 [ 238.694547][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 238.699801][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 238.705036][ T31] netlink_rcv_skb+0x16b/0x440 [ 238.709919][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 238.714967][ T31] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 238.720297][ T31] ? down_read+0xc9/0x330 [ 238.724658][ T31] ? __pfx_down_read+0x10/0x10 [ 238.729522][ T31] ? netlink_deliver_tap+0x1ae/0xd90 [ 238.734830][ T31] genl_rcv+0x28/0x40 [ 238.738891][ T31] netlink_unicast+0x542/0x820 [ 238.743679][ T31] ? __pfx_netlink_unicast+0x10/0x10 [ 238.749026][ T31] netlink_sendmsg+0x8b8/0xd70 [ 238.753814][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 238.759220][ T31] __sys_sendto+0x47f/0x4e0 [ 238.763745][ T31] ? __pfx___sys_sendto+0x10/0x10 [ 238.768866][ T31] ? __pfx___sys_socket+0x10/0x10 [ 238.773908][ T31] __x64_sys_sendto+0xe0/0x1c0 [ 238.778736][ T31] ? do_syscall_64+0x91/0x250 [ 238.783439][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 238.788727][ T31] do_syscall_64+0xcd/0x250 [ 238.793268][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 238.799252][ T31] RIP: 0033:0x7ffaa537796c [ 238.803779][ T31] RSP: 002b:00007ffaa61e1ed0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 238.812242][ T31] RAX: ffffffffffffffda RBX: 00007ffaa61e1fd0 RCX: 00007ffaa537796c [ 238.820276][ T31] RDX: 0000000000000020 RSI: 00007ffaa61e2020 RDI: 000000000000000c [ 238.828361][ T31] RBP: 0000000000000000 R08: 00007ffaa61e1f24 R09: 000000000000000c [ 238.836494][ T31] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000000000c [ 238.844722][ T31] R13: 00007ffaa61e1f78 R14: 00007ffaa61e2020 R15: 0000000000000000 [ 238.852788][ T31] [ 238.855898][ T31] INFO: task syz.3.7:5188 blocked for more than 145 seconds. [ 238.863350][ T31] Not tainted 6.10.0-rc6-syzkaller-00163-g661e504db04c #0 [ 238.871038][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 238.879780][ T31] task:syz.3.7 state:D stack:24672 pid:5188 tgid:5185 ppid:5084 flags:0x00000004 [ 238.889995][ T31] Call Trace: [ 238.893264][ T31] [ 238.896181][ T31] __schedule+0xf15/0x5d00 [ 238.900638][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 238.905967][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 238.911251][ T31] ? __orc_find+0x104/0x130 [ 238.915786][ T31] ? __pfx___schedule+0x10/0x10 [ 238.920906][ T31] ? schedule+0x298/0x350 [ 238.925369][ T31] ? __pfx_lock_release+0x10/0x10 [ 238.930497][ T31] ? __mutex_lock+0x5b3/0x9c0 [ 238.935191][ T31] ? __mutex_trylock_common+0x78/0x250 [ 238.940732][ T31] schedule+0xe7/0x350 [ 238.944831][ T31] schedule_preempt_disabled+0x13/0x30 [ 238.950334][ T31] __mutex_lock+0x5b8/0x9c0 [ 238.954856][ T31] ? __pfx_mark_lock+0x10/0x10 [ 238.959686][ T31] ? genl_rcv_msg+0x580/0x800 [ 238.964395][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 238.969527][ T31] ? __radix_tree_lookup+0x21f/0x2c0 [ 238.974851][ T31] ? genl_rcv_msg+0x580/0x800 [ 238.979611][ T31] genl_rcv_msg+0x580/0x800 [ 238.984138][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 238.989304][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 238.994524][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 238.999907][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 239.005379][ T31] netlink_rcv_skb+0x16b/0x440 [ 239.010275][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 239.015337][ T31] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 239.020755][ T31] ? down_read+0xc9/0x330 [ 239.025121][ T31] ? __pfx_down_read+0x10/0x10 [ 239.029968][ T31] ? netlink_deliver_tap+0x1ae/0xd90 [ 239.035278][ T31] genl_rcv+0x28/0x40 [ 239.039335][ T31] netlink_unicast+0x542/0x820 [ 239.044119][ T31] ? __pfx_netlink_unicast+0x10/0x10 [ 239.049507][ T31] netlink_sendmsg+0x8b8/0xd70 [ 239.054294][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 239.059714][ T31] __sys_sendto+0x47f/0x4e0 [ 239.064240][ T31] ? __pfx___sys_sendto+0x10/0x10 [ 239.069355][ T31] ? do_user_addr_fault+0x64e/0xe50 [ 239.074575][ T31] ? find_held_lock+0x2d/0x110 [ 239.079428][ T31] ? handle_mm_fault+0x4ec/0xa00 [ 239.084392][ T31] __x64_sys_sendto+0xe0/0x1c0 [ 239.089201][ T31] ? do_syscall_64+0x91/0x250 [ 239.093904][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 239.099166][ T31] do_syscall_64+0xcd/0x250 [ 239.103702][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.109845][ T31] RIP: 0033:0x7ffaa537796c [ 239.114283][ T31] RSP: 002b:00007ffaa61c0ed0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 239.122760][ T31] RAX: ffffffffffffffda RBX: 00007ffaa61c0fd0 RCX: 00007ffaa537796c [ 239.130817][ T31] RDX: 000000000000001c RSI: 00007ffaa61c1020 RDI: 000000000000000a [ 239.138857][ T31] RBP: 0000000000000000 R08: 00007ffaa61c0f24 R09: 000000000000000c [ 239.146837][ T31] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000000000a [ 239.154854][ T31] R13: 00007ffaa61c0f78 R14: 00007ffaa61c1020 R15: 0000000000000000 [ 239.162870][ T31] [ 239.165949][ T31] INFO: task syz.3.7:5192 blocked for more than 145 seconds. [ 239.173410][ T31] Not tainted 6.10.0-rc6-syzkaller-00163-g661e504db04c #0 [ 239.181075][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 239.189840][ T31] task:syz.3.7 state:D stack:26192 pid:5192 tgid:5185 ppid:5084 flags:0x00004004 [ 239.200078][ T31] Call Trace: [ 239.203345][ T31] [ 239.206264][ T31] __schedule+0xf15/0x5d00 [ 239.210902][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 239.216130][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 239.221397][ T31] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.227490][ T31] ? __pfx___schedule+0x10/0x10 [ 239.232431][ T31] ? schedule+0x298/0x350 [ 239.236786][ T31] ? __pfx_lock_release+0x10/0x10 [ 239.241902][ T31] ? __mutex_lock+0x5b3/0x9c0 [ 239.246610][ T31] ? __mutex_trylock_common+0x78/0x250 [ 239.252180][ T31] schedule+0xe7/0x350 [ 239.256264][ T31] schedule_preempt_disabled+0x13/0x30 [ 239.261806][ T31] __mutex_lock+0x5b8/0x9c0 [ 239.266326][ T31] ? kasan_quarantine_put+0x10a/0x240 [ 239.271773][ T31] ? genl_rcv_msg+0x580/0x800 [ 239.276469][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 239.281535][ T31] ? kfree_skbmem+0x10e/0x200 [ 239.286226][ T31] ? __radix_tree_lookup+0x21f/0x2c0 [ 239.291603][ T31] ? genl_rcv_msg+0x580/0x800 [ 239.296307][ T31] genl_rcv_msg+0x580/0x800 [ 239.300866][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 239.305912][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 239.311161][ T31] netlink_rcv_skb+0x16b/0x440 [ 239.316044][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 239.321292][ T31] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 239.326604][ T31] ? down_read+0xc9/0x330 [ 239.331169][ T31] ? __pfx_down_read+0x10/0x10 [ 239.335961][ T31] ? netlink_deliver_tap+0x1ae/0xd90 [ 239.341314][ T31] genl_rcv+0x28/0x40 [ 239.345319][ T31] netlink_unicast+0x542/0x820 [ 239.350168][ T31] ? __pfx_netlink_unicast+0x10/0x10 [ 239.355477][ T31] netlink_sendmsg+0x8b8/0xd70 [ 239.360310][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 239.365624][ T31] __sys_sendto+0x47f/0x4e0 [ 239.370205][ T31] ? __pfx___sys_sendto+0x10/0x10 [ 239.375261][ T31] __x64_sys_sendto+0xe0/0x1c0 [ 239.380147][ T31] ? do_syscall_64+0x91/0x250 [ 239.384846][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 239.390105][ T31] do_syscall_64+0xcd/0x250 [ 239.394879][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.400883][ T31] RIP: 0033:0x7ffaa537796c [ 239.405306][ T31] RSP: 002b:00007ffaa619fe70 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 239.413817][ T31] RAX: ffffffffffffffda RBX: 00007ffaa619ffb0 RCX: 00007ffaa537796c [ 239.421938][ T31] RDX: 0000000000000020 RSI: 00007ffaa61a0000 RDI: 000000000000000d [ 239.429968][ T31] RBP: 0000000000000000 R08: 00007ffaa619fec4 R09: 000000000000000c [ 239.438024][ T31] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000000000d [ 239.446002][ T31] R13: 00007ffaa619ff18 R14: 00007ffaa61a0000 R15: 0000000000000000 [ 239.454039][ T31] [ 239.457069][ T31] INFO: task syz.3.7:5197 blocked for more than 145 seconds. [ 239.464504][ T31] Not tainted 6.10.0-rc6-syzkaller-00163-g661e504db04c #0 [ 239.472203][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 239.480917][ T31] task:syz.3.7 state:D stack:26400 pid:5197 tgid:5185 ppid:5084 flags:0x00004004 [ 239.491302][ T31] Call Trace: [ 239.494628][ T31] [ 239.497578][ T31] __schedule+0xf15/0x5d00 [ 239.502084][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 239.507319][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 239.512629][ T31] ? __pfx___schedule+0x10/0x10 [ 239.517710][ T31] ? schedule+0x298/0x350 [ 239.522064][ T31] ? __pfx_lock_release+0x10/0x10 [ 239.527111][ T31] ? __mutex_lock+0x5b3/0x9c0 [ 239.531872][ T31] ? __mutex_trylock_common+0x78/0x250 [ 239.537356][ T31] schedule+0xe7/0x350 [ 239.541466][ T31] schedule_preempt_disabled+0x13/0x30 [ 239.546943][ T31] __mutex_lock+0x5b8/0x9c0 [ 239.551518][ T31] ? misc_open+0x59/0x4c0 [ 239.555872][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 239.561219][ T31] ? __pfx_lock_release+0x10/0x10 [ 239.566278][ T31] ? kobject_get_unless_zero+0x157/0x1e0 [ 239.572765][ T31] ? misc_open+0x59/0x4c0 [ 239.577140][ T31] misc_open+0x59/0x4c0 [ 239.582954][ T31] ? __pfx_misc_open+0x10/0x10 [ 239.587952][ T31] chrdev_open+0x26d/0x6f0 [ 239.592409][ T31] ? __pfx_chrdev_open+0x10/0x10 [ 239.597362][ T31] ? security_file_open+0x9d/0x8b0 [ 239.602572][ T31] do_dentry_open+0x91f/0x15f0 [ 239.607357][ T31] ? __pfx_chrdev_open+0x10/0x10 [ 239.612340][ T31] ? inode_permission+0xdd/0x5f0 [ 239.617291][ T31] vfs_open+0x82/0x3f0 [ 239.621606][ T31] ? may_open+0x1f2/0x400 [ 239.625962][ T31] path_openat+0x21fc/0x2e50 [ 239.630627][ T31] ? __pfx_path_openat+0x10/0x10 [ 239.635593][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 239.641229][ T31] ? find_held_lock+0x2d/0x110 [ 239.646156][ T31] do_filp_open+0x1dc/0x430 [ 239.650763][ T31] ? __pfx_do_filp_open+0x10/0x10 [ 239.655807][ T31] ? find_held_lock+0x2d/0x110 [ 239.660650][ T31] ? _raw_spin_unlock+0x28/0x50 [ 239.665519][ T31] ? alloc_fd+0x2d7/0x6c0 [ 239.669901][ T31] do_sys_openat2+0x17a/0x1e0 [ 239.674592][ T31] ? __pfx_do_sys_openat2+0x10/0x10 [ 239.679855][ T31] __x64_sys_openat+0x175/0x210 [ 239.684720][ T31] ? __pfx___x64_sys_openat+0x10/0x10 [ 239.690297][ T31] do_syscall_64+0xcd/0x250 [ 239.694826][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.700778][ T31] RIP: 0033:0x7ffaa5374610 [ 239.705195][ T31] RSP: 002b:00007ffaa617e480 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 239.713646][ T31] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007ffaa5374610 [ 239.722217][ T31] RDX: 0000000000000002 RSI: 00007ffaa53e3af1 RDI: 00000000ffffff9c [ 239.730251][ T31] RBP: 00007ffaa53e3af1 R08: 0000000000000000 R09: 0000000000000080 [ 239.738289][ T31] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 239.746286][ T31] R13: 0000000000000063 R14: 0000000020000000 R15: 0000000020001800 [ 239.754344][ T31] [ 239.757379][ T31] INFO: task syz.0.9:5195 blocked for more than 146 seconds. [ 239.764798][ T31] Not tainted 6.10.0-rc6-syzkaller-00163-g661e504db04c #0 [ 239.772474][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 239.781169][ T31] task:syz.0.9 state:D stack:27168 pid:5195 tgid:5195 ppid:5082 flags:0x00000004 [ 239.791387][ T31] Call Trace: [ 239.794670][ T31] [ 239.797592][ T31] __schedule+0xf15/0x5d00 [ 239.802065][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 239.807297][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 239.812574][ T31] ? __pfx___schedule+0x10/0x10 [ 239.817444][ T31] ? schedule+0x298/0x350 [ 239.821839][ T31] ? __pfx_lock_release+0x10/0x10 [ 239.826992][ T31] ? __mutex_lock+0x5b3/0x9c0 [ 239.831714][ T31] ? __mutex_trylock_common+0x78/0x250 [ 239.837238][ T31] schedule+0xe7/0x350 [ 239.841372][ T31] schedule_preempt_disabled+0x13/0x30 [ 239.846845][ T31] __mutex_lock+0x5b8/0x9c0 [ 239.851436][ T31] ? rfkill_fop_release+0x4b/0x310 [ 239.856576][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 239.861743][ T31] ? locks_remove_file+0x399/0x5a0 [ 239.867067][ T31] ? __pfx_rfkill_fop_release+0x10/0x10 [ 239.872682][ T31] ? rfkill_fop_release+0x4b/0x310 [ 239.878014][ T31] rfkill_fop_release+0x4b/0x310 [ 239.882998][ T31] ? __pfx_rfkill_fop_release+0x10/0x10 [ 239.888669][ T31] __fput+0x408/0xbb0 [ 239.892681][ T31] task_work_run+0x14e/0x250 [ 239.897300][ T31] ? __pfx_task_work_run+0x10/0x10 [ 239.902511][ T31] syscall_exit_to_user_mode+0x275/0x2a0 [ 239.908205][ T31] do_syscall_64+0xda/0x250 [ 239.912740][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.918743][ T31] RIP: 0033:0x7f0ada375bd9 [ 239.923170][ T31] RSP: 002b:00007ffcb718c3d8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 239.931793][ T31] RAX: 0000000000000000 RBX: 00007f0ada505a60 RCX: 00007f0ada375bd9 [ 239.939885][ T31] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003 [ 239.947926][ T31] RBP: 00007f0ada505a60 R08: 0000000000000006 R09: 00000008b718c70f [ 239.955913][ T31] R10: 00000000005eaf88 R11: 0000000000000246 R12: 0000000000016694 [ 239.964509][ T31] R13: 0000000000000032 R14: 00007f0ada505a60 R15: 00007ffcb718c4c0 [ 239.972600][ T31] [ 239.975643][ T31] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings [ 239.984744][ T31] [ 239.984744][ T31] Showing all locks held in the system: [ 239.992510][ T31] 1 lock held by khungtaskd/31: [ 239.997349][ T31] #0: ffffffff8dbb1620 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x75/0x340 [ 240.007272][ T31] 2 locks held by getty/4844: [ 240.012013][ T31] #0: ffff88802f7510a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 240.021854][ T31] #1: ffffc90002f062f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xfc8/0x1490 [ 240.032266][ T31] 2 locks held by syz-executor/5083: [ 240.037558][ T31] #0: ffffffff8e7d5088 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x59/0x4c0 [ 240.046513][ T31] #1: ffffffff8fbcd008 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_fop_open+0x13b/0x750 [ 240.056655][ T31] 2 locks held by syz-executor/5085: [ 240.062046][ T31] #0: ffffffff8f7e6890 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 240.070315][ T31] #1: ffffffff8f7e6948 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x580/0x800 [ 240.079547][ T31] 3 locks held by syz-executor/5093: [ 240.084839][ T31] #0: ffffffff8f7e6890 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 240.093079][ T31] #1: ffffffff8f7e6948 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x580/0x800 [ 240.102149][ T31] #2: ffffffff8fbcd008 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_register+0x3a/0xb40 [ 240.112144][ T31] 3 locks held by kworker/0:6/5139: [ 240.117343][ T31] #0: ffff888015480948 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x1277/0x1b40 [ 240.127932][ T31] #1: ffffc9000315fd80 ((work_completion)(&rfkill_global_led_trigger_work)){+.+.}-{0:0}, at: process_one_work+0x921/0x1b40 [ 240.141136][ T31] #2: ffffffff8fbcd008 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_global_led_trigger_worker+0x1b/0x160 [ 240.152677][ T31] 2 locks held by syz.3.7/5185: [ 240.157537][ T31] #0: ffff88807a821100 (&dev->mutex){....}-{3:3}, at: nfc_unregister_device+0x60/0x330 [ 240.167419][ T31] #1: ffffffff8fbcd008 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_unregister+0xde/0x2c0 [ 240.177602][ T31] 2 locks held by syz.3.7/5186: [ 240.182524][ T31] #0: ffffffff8f7e6890 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 240.190825][ T31] #1: ffffffff8f7e6948 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x580/0x800 [ 240.200074][ T31] 2 locks held by syz.3.7/5188: [ 240.204933][ T31] #0: ffffffff8f7e6890 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 240.213303][ T31] #1: ffffffff8f7e6948 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x580/0x800 [ 240.222386][ T31] 2 locks held by syz.3.7/5192: [ 240.227218][ T31] #0: ffffffff8f7e6890 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 240.235644][ T31] #1: ffffffff8f7e6948 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x580/0x800 [ 240.244718][ T31] 1 lock held by syz.3.7/5197: [ 240.249533][ T31] #0: ffffffff8e7d5088 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x59/0x4c0 [ 240.258123][ T31] 1 lock held by syz.0.9/5195: [ 240.262888][ T31] #0: ffffffff8fbcd008 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_fop_release+0x4b/0x310 [ 240.273162][ T31] 2 locks held by syz.0.9/5196: [ 240.278116][ T31] #0: ffffffff8fbcd008 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_fop_write+0x16e/0x570 [ 240.288343][ T31] #1: ffff88807a821100 (&dev->mutex){....}-{3:3}, at: nfc_dev_down+0x2d/0x2e0 [ 240.297369][ T31] 1 lock held by syz-executor/5279: [ 240.302637][ T31] #0: ffffffff8e7d5088 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x59/0x4c0 [ 240.311209][ T31] 1 lock held by syz-executor/5282: [ 240.316416][ T31] #0: ffffffff8e7d5088 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x59/0x4c0 [ 240.324992][ T31] 1 lock held by syz-executor/5296: [ 240.330225][ T31] #0: ffffffff8e7d5088 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x59/0x4c0 [ 240.338891][ T31] 1 lock held by syz-executor/5297: [ 240.344092][ T31] #0: ffffffff8e7d5088 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x59/0x4c0 [ 240.352613][ T31] 1 lock held by syz-executor/5298: [ 240.357969][ T31] #0: ffffffff8e7d5088 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x59/0x4c0 [ 240.366504][ T31] 1 lock held by syz-executor/5300: [ 240.372167][ T31] #0: ffffffff8e7d5088 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x59/0x4c0 [ 240.381053][ T31] 1 lock held by syz-executor/5302: [ 240.386263][ T31] #0: ffffffff8e7d5088 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x59/0x4c0 [ 240.394923][ T31] 1 lock held by syz-executor/5306: [ 240.400183][ T31] #0: ffffffff8e7d5088 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x59/0x4c0 [ 240.408731][ T31] 1 lock held by syz-executor/5307: [ 240.413933][ T31] #0: ffffffff8e7d5088 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x59/0x4c0 [ 240.422450][ T31] 1 lock held by syz-executor/5308: [ 240.427692][ T31] #0: ffffffff8e7d5088 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x59/0x4c0 [ 240.436188][ T31] 1 lock held by syz-executor/5310: [ 240.441623][ T31] #0: ffffffff8e7d5088 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x59/0x4c0 [ 240.450205][ T31] 1 lock held by syz-executor/5312: [ 240.455415][ T31] #0: ffffffff8e7d5088 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x59/0x4c0 [ 240.463957][ T31] [ 240.466281][ T31] ============================================= [ 240.466281][ T31] [ 240.474722][ T31] NMI backtrace for cpu 1 [ 240.479067][ T31] CPU: 1 PID: 31 Comm: khungtaskd Not tainted 6.10.0-rc6-syzkaller-00163-g661e504db04c #0 [ 240.488976][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 240.499042][ T31] Call Trace: [ 240.502330][ T31] [ 240.505261][ T31] dump_stack_lvl+0x116/0x1f0 [ 240.509933][ T31] nmi_cpu_backtrace+0x27b/0x390 [ 240.514864][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 240.520851][ T31] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 240.526863][ T31] watchdog+0xf86/0x1240 [ 240.531121][ T31] ? __pfx_watchdog+0x10/0x10 [ 240.535788][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 240.541072][ T31] ? __kthread_parkme+0x148/0x220 [ 240.546111][ T31] ? __pfx_watchdog+0x10/0x10 [ 240.550800][ T31] kthread+0x2c1/0x3a0 [ 240.554860][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 240.560053][ T31] ? __pfx_kthread+0x10/0x10 [ 240.564645][ T31] ret_from_fork+0x45/0x80 [ 240.569067][ T31] ? __pfx_kthread+0x10/0x10 [ 240.573656][ T31] ret_from_fork_asm+0x1a/0x30 [ 240.578426][ T31] [ 240.581777][ T31] Sending NMI from CPU 1 to CPUs 0: [ 240.587000][ C0] NMI backtrace for cpu 0 [ 240.587020][ C0] CPU: 0 PID: 2903 Comm: kworker/u8:10 Not tainted 6.10.0-rc6-syzkaller-00163-g661e504db04c #0 [ 240.587043][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 240.587055][ C0] Workqueue: events_unbound toggle_allocation_gate [ 240.587086][ C0] RIP: 0010:lockdep_hardirqs_on_prepare+0x128/0x420 [ 240.587120][ C0] Code: 80 3c 02 00 0f 85 ce 02 00 00 48 89 ab b8 0a 00 00 48 c7 c7 c0 b1 2c 8b e8 75 e6 7b 09 be 02 00 00 00 65 48 8b 1d 08 4f 98 7e <48> 89 df 65 ff 05 46 01 97 7e e8 d9 fd ff ff 85 c0 74 36 48 8d bb [ 240.587139][ C0] RSP: 0018:ffffc9000a2a7960 EFLAGS: 00000092 [ 240.587154][ C0] RAX: 0000000000000000 RBX: ffff88802bf28000 RCX: 1ffffffff1fc7f49 [ 240.587168][ C0] RDX: 1ffff110057e5157 RSI: 0000000000000002 RDI: ffffffff8b8ff680 [ 240.587182][ C0] RBP: dcf8ed6721ecf5bc R08: 0000000000000000 R09: 0000000000000001 [ 240.587195][ C0] R10: ffffffff8fe43cd7 R11: 0000000000000006 R12: 0000000000000297 [ 240.587208][ C0] R13: 0000000000000003 R14: ffffffff8dd38e80 R15: 0000000000000000 [ 240.587221][ C0] FS: 0000000000000000(0000) GS:ffff8880b9200000(0000) knlGS:0000000000000000 [ 240.587241][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 240.587256][ C0] CR2: 00007ffffb7ddf8c CR3: 000000000d97a000 CR4: 00000000003506f0 [ 240.587269][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 240.587281][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 240.587294][ C0] Call Trace: [ 240.587301][ C0] [ 240.587307][ C0] ? show_regs+0x8c/0xa0 [ 240.587335][ C0] ? nmi_cpu_backtrace+0x1d8/0x390 [ 240.587364][ C0] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 240.587391][ C0] ? nmi_handle+0x1a9/0x5c0 [ 240.587419][ C0] ? lockdep_hardirqs_on_prepare+0x128/0x420 [ 240.587448][ C0] ? default_do_nmi+0x6a/0x160 [ 240.587467][ C0] ? exc_nmi+0x170/0x1e0 [ 240.587485][ C0] ? end_repeat_nmi+0xf/0x53 [ 240.587506][ C0] ? lockdep_hardirqs_on_prepare+0x128/0x420 [ 240.587536][ C0] ? lockdep_hardirqs_on_prepare+0x128/0x420 [ 240.587565][ C0] ? lockdep_hardirqs_on_prepare+0x128/0x420 [ 240.587595][ C0] [ 240.587601][ C0] [ 240.587607][ C0] ? kmem_cache_alloc_noprof+0x86/0x2f0 [ 240.587640][ C0] trace_hardirqs_on+0x36/0x40 [ 240.587670][ C0] __text_poke+0x8d5/0xca0 [ 240.587691][ C0] ? __pfx_text_poke_memcpy+0x10/0x10 [ 240.587713][ C0] ? __pfx___text_poke+0x10/0x10 [ 240.587733][ C0] ? kmem_cache_alloc_noprof+0x86/0x2f0 [ 240.587765][ C0] text_poke_bp_batch+0x493/0x760 [ 240.587788][ C0] ? kmem_cache_alloc_bulk_noprof+0x198/0x930 [ 240.587810][ C0] ? __pfx_text_poke_bp_batch+0x10/0x10 [ 240.587837][ C0] ? __jump_label_patch+0x1db/0x400 [ 240.587861][ C0] ? arch_jump_label_transform_queue+0xc0/0x120 [ 240.587888][ C0] text_poke_finish+0x30/0x40 [ 240.587911][ C0] arch_jump_label_transform_apply+0x1c/0x30 [ 240.587937][ C0] jump_label_update+0x1d7/0x400 [ 240.587965][ C0] static_key_enable_cpuslocked+0x1b7/0x270 [ 240.587993][ C0] static_key_enable+0x1a/0x20 [ 240.588019][ C0] toggle_allocation_gate+0xf8/0x250 [ 240.588047][ C0] ? __pfx_toggle_allocation_gate+0x10/0x10 [ 240.588079][ C0] process_one_work+0x9c5/0x1b40 [ 240.588102][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 240.588130][ C0] ? __pfx_process_one_work+0x10/0x10 [ 240.588152][ C0] ? assign_work+0x1a0/0x250 [ 240.588181][ C0] worker_thread+0x6c8/0xf30 [ 240.588202][ C0] ? __kthread_parkme+0x148/0x220 [ 240.588227][ C0] ? __pfx_worker_thread+0x10/0x10 [ 240.588246][ C0] kthread+0x2c1/0x3a0 [ 240.588269][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 240.588290][ C0] ? __pfx_kthread+0x10/0x10 [ 240.588313][ C0] ret_from_fork+0x45/0x80 [ 240.588340][ C0] ? __pfx_kthread+0x10/0x10 [ 240.588363][ C0] ret_from_fork_asm+0x1a/0x30 [ 240.588393][ C0] [ 240.599060][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 240.599074][ T31] CPU: 1 PID: 31 Comm: khungtaskd Not tainted 6.10.0-rc6-syzkaller-00163-g661e504db04c #0 [ 240.599099][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 240.599112][ T31] Call Trace: [ 240.599121][ T31] [ 240.599129][ T31] dump_stack_lvl+0x3d/0x1f0 [ 240.599161][ T31] panic+0x6f5/0x7a0 [ 240.599194][ T31] ? __pfx_panic+0x10/0x10 [ 240.599225][ T31] ? preempt_schedule_thunk+0x1a/0x30 [ 240.599250][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 240.599280][ T31] ? preempt_schedule_thunk+0x1a/0x30 [ 240.599303][ T31] ? watchdog+0xd3d/0x1240 [ 240.599326][ T31] ? watchdog+0xd30/0x1240 [ 240.599349][ T31] watchdog+0xd4e/0x1240 [ 240.599373][ T31] ? __pfx_watchdog+0x10/0x10 [ 240.599395][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 240.599423][ T31] ? __kthread_parkme+0x148/0x220 [ 240.599450][ T31] ? __pfx_watchdog+0x10/0x10 [ 240.599473][ T31] kthread+0x2c1/0x3a0 [ 240.599499][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 240.599523][ T31] ? __pfx_kthread+0x10/0x10 [ 240.599549][ T31] ret_from_fork+0x45/0x80 [ 240.599586][ T31] ? __pfx_kthread+0x10/0x10 [ 240.599613][ T31] ret_from_fork_asm+0x1a/0x30 [ 240.599648][ T31] [ 240.603365][ T31] Kernel Offset: disabled [ 241.089132][ T31] Rebooting in 86400 seconds..