syzkaller login: [ 91.888679][ T793] cfg80211: failed to load regulatory.db Warning: Permanently added '[localhost]:33347' (ED25519) to the list of known hosts. 2025/07/12 16:47:50 ignoring optional flag "sandboxArg"="0" 2025/07/12 16:47:52 parsed 1 programs [ 359.550739][ T5380] cgroup: Unknown subsys name 'net' [ 359.622989][ T5380] cgroup: Unknown subsys name 'cpuset' [ 359.628988][ T5380] cgroup: Unknown subsys name 'rlimit' [ 361.306817][ T5380] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 365.970643][ T5388] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 366.739087][ T45] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 366.743284][ T45] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 366.747108][ T45] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 366.751392][ T45] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 366.755063][ T45] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 370.200777][ T5432] chnl_net:caif_netlink_parms(): no params data found [ 370.335112][ T5432] bridge0: port 1(bridge_slave_0) entered blocking state [ 370.349030][ T5432] bridge0: port 1(bridge_slave_0) entered disabled state [ 370.351778][ T5432] bridge_slave_0: entered allmulticast mode [ 370.359479][ T5432] bridge_slave_0: entered promiscuous mode [ 370.369876][ T5432] bridge0: port 2(bridge_slave_1) entered blocking state [ 370.372909][ T5432] bridge0: port 2(bridge_slave_1) entered disabled state [ 370.375781][ T5432] bridge_slave_1: entered allmulticast mode [ 370.390304][ T5432] bridge_slave_1: entered promiscuous mode [ 370.441523][ T5432] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 370.447887][ T5432] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 370.498772][ T5432] team0: Port device team_slave_0 added [ 370.511056][ T5432] team0: Port device team_slave_1 added [ 370.558986][ T5432] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 370.561884][ T5432] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 370.589191][ T5432] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 370.609318][ T5432] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 370.612291][ T5432] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 370.639219][ T5432] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 370.712440][ T5432] hsr_slave_0: entered promiscuous mode [ 370.730714][ T5432] hsr_slave_1: entered promiscuous mode [ 371.031498][ T5432] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 371.052032][ T5432] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 371.069527][ T5432] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 371.075278][ T5432] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 371.236436][ T5432] 8021q: adding VLAN 0 to HW filter on device bond0 [ 371.272481][ T5432] 8021q: adding VLAN 0 to HW filter on device team0 [ 371.296809][ T5362] bridge0: port 1(bridge_slave_0) entered blocking state [ 371.300172][ T5362] bridge0: port 1(bridge_slave_0) entered forwarding state [ 371.314196][ T1038] bridge0: port 2(bridge_slave_1) entered blocking state [ 371.317281][ T1038] bridge0: port 2(bridge_slave_1) entered forwarding state [ 371.386687][ T5432] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 371.401357][ T5432] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 371.691307][ T5432] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 371.748294][ T5432] veth0_vlan: entered promiscuous mode [ 371.758218][ T5432] veth1_vlan: entered promiscuous mode [ 371.786494][ T5432] veth0_macvtap: entered promiscuous mode [ 371.793494][ T5432] veth1_macvtap: entered promiscuous mode [ 371.812063][ T5432] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 371.824084][ T5432] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 371.833396][ T5432] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 371.837397][ T5432] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 371.842185][ T5432] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 371.845837][ T5432] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 372.011474][ T5362] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 372.069284][ T5362] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 372.125897][ T5362] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 372.241432][ T5362] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 372.451419][ T1038] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 372.455596][ T1038] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 372.520896][ T1038] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 372.527693][ T1038] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 374.025700][ T5362] bridge_slave_1: left allmulticast mode [ 374.049269][ T5362] bridge_slave_1: left promiscuous mode [ 374.053288][ T5362] bridge0: port 2(bridge_slave_1) entered disabled state [ 374.116534][ T5362] bridge_slave_0: left allmulticast mode [ 374.131966][ T5362] bridge_slave_0: left promiscuous mode [ 374.134568][ T5362] bridge0: port 1(bridge_slave_0) entered disabled state [ 374.721461][ T5362] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 374.732100][ T5362] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 374.736134][ T5362] bond0 (unregistering): Released all slaves [ 374.828854][ T5362] hsr_slave_0: left promiscuous mode [ 374.834491][ T5362] hsr_slave_1: left promiscuous mode [ 374.837613][ T5362] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 374.841830][ T5362] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 374.846140][ T5362] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 374.850491][ T5362] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 374.862461][ T5362] veth1_macvtap: left promiscuous mode [ 374.865011][ T5362] veth0_macvtap: left promiscuous mode [ 374.867647][ T5362] veth1_vlan: left promiscuous mode [ 374.870655][ T5362] veth0_vlan: left promiscuous mode [ 375.170748][ T5362] team0 (unregistering): Port device team_slave_1 removed [ 375.196311][ T5362] team0 (unregistering): Port device team_slave_0 removed 2025/07/12 16:48:11 executed programs: 0 [ 376.515217][ T4689] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 376.520928][ T4689] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 376.524741][ T4689] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 376.528218][ T4689] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 376.532028][ T4689] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 377.103887][ T5496] chnl_net:caif_netlink_parms(): no params data found [ 377.300938][ T5496] bridge0: port 1(bridge_slave_0) entered blocking state [ 377.304761][ T5496] bridge0: port 1(bridge_slave_0) entered disabled state [ 377.307796][ T5496] bridge_slave_0: entered allmulticast mode [ 377.321905][ T5496] bridge_slave_0: entered promiscuous mode [ 377.325917][ T5496] bridge0: port 2(bridge_slave_1) entered blocking state [ 377.339973][ T5496] bridge0: port 2(bridge_slave_1) entered disabled state [ 377.342987][ T5496] bridge_slave_1: entered allmulticast mode [ 377.361327][ T5496] bridge_slave_1: entered promiscuous mode [ 377.421382][ T5496] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 377.427584][ T5496] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 377.481408][ T5496] team0: Port device team_slave_0 added [ 377.500725][ T5496] team0: Port device team_slave_1 added [ 377.530096][ T5496] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 377.533000][ T5496] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 377.546253][ T5496] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 377.561923][ T5496] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 377.564991][ T5496] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 377.598921][ T5496] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 377.682420][ T5496] hsr_slave_0: entered promiscuous mode [ 377.685778][ T5496] hsr_slave_1: entered promiscuous mode [ 378.424791][ T5496] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 378.457364][ T5496] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 378.467012][ T5496] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 378.483773][ T5496] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 378.601575][ T4689] Bluetooth: hci0: command tx timeout [ 378.617695][ T5496] 8021q: adding VLAN 0 to HW filter on device bond0 [ 378.662474][ T5496] 8021q: adding VLAN 0 to HW filter on device team0 [ 378.682913][ T1039] bridge0: port 1(bridge_slave_0) entered blocking state [ 378.686064][ T1039] bridge0: port 1(bridge_slave_0) entered forwarding state [ 378.707526][ T1039] bridge0: port 2(bridge_slave_1) entered blocking state [ 378.711656][ T1039] bridge0: port 2(bridge_slave_1) entered forwarding state [ 379.087214][ T5496] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 379.155877][ T5496] veth0_vlan: entered promiscuous mode [ 379.179652][ T5496] veth1_vlan: entered promiscuous mode [ 379.240000][ T5496] veth0_macvtap: entered promiscuous mode [ 379.245425][ T5496] veth1_macvtap: entered promiscuous mode [ 379.275793][ T5496] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 379.297737][ T5496] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 379.316256][ T5496] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 379.329867][ T5496] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 379.333419][ T5496] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 379.336778][ T5496] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 379.475388][ T1039] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 379.496816][ T1039] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 379.557736][ T5445] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 379.568204][ T5445] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 380.681301][ T4689] Bluetooth: hci0: command tx timeout 2025/07/12 16:48:16 executed programs: 17 [ 382.759583][ T4689] Bluetooth: hci0: command tx timeout [ 383.721463][ T1314] ieee802154 phy0 wpan0: encryption failed: -22 [ 383.724544][ T1314] ieee802154 phy1 wpan1: encryption failed: -22 [ 384.838985][ T4689] Bluetooth: hci0: command tx timeout 2025/07/12 16:48:21 executed programs: 77 2025/07/12 16:48:26 executed programs: 149 2025/07/12 16:48:31 executed programs: 218 2025/07/12 16:48:37 executed programs: 292 2025/07/12 16:48:42 executed programs: 366 2025/07/12 16:48:47 executed programs: 439 2025/07/12 16:48:52 executed programs: 510 2025/07/12 16:48:57 executed programs: 584 [ 423.058969][ T45] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 423.063817][ T45] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 423.069022][ T45] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 423.074705][ T45] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 423.079773][ T45] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 423.186248][ T5362] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 423.237339][ T5362] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 423.284844][ T5362] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 423.342960][ T5362] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 423.375836][ T7388] chnl_net:caif_netlink_parms(): no params data found [ 423.564596][ T5362] bridge_slave_1: left allmulticast mode [ 423.566841][ T5362] bridge_slave_1: left promiscuous mode [ 423.572905][ T5362] bridge0: port 2(bridge_slave_1) entered disabled state [ 423.590022][ T5362] bridge_slave_0: left allmulticast mode [ 423.592570][ T5362] bridge_slave_0: left promiscuous mode [ 423.595376][ T5362] bridge0: port 1(bridge_slave_0) entered disabled state [ 424.166358][ T5362] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 424.172118][ T5362] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 424.177164][ T5362] bond0 (unregistering): Released all slaves [ 424.297629][ T7388] bridge0: port 1(bridge_slave_0) entered blocking state [ 424.313382][ T7388] bridge0: port 1(bridge_slave_0) entered disabled state [ 424.316540][ T7388] bridge_slave_0: entered allmulticast mode [ 424.323220][ T7388] bridge_slave_0: entered promiscuous mode [ 424.334771][ T7388] bridge0: port 2(bridge_slave_1) entered blocking state [ 424.359086][ T7388] bridge0: port 2(bridge_slave_1) entered disabled state [ 424.362398][ T7388] bridge_slave_1: entered allmulticast mode [ 424.366401][ T7388] bridge_slave_1: entered promiscuous mode [ 424.467555][ T7388] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 424.481431][ T7388] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 424.563908][ T5362] hsr_slave_0: left promiscuous mode [ 424.570126][ T5362] hsr_slave_1: left promiscuous mode [ 424.580013][ T5362] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 424.583912][ T5362] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 424.600244][ T5362] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 424.603570][ T5362] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 424.626436][ T5362] veth1_macvtap: left promiscuous mode [ 424.639958][ T5362] veth0_macvtap: left promiscuous mode [ 424.642616][ T5362] veth1_vlan: left promiscuous mode [ 424.645024][ T5362] veth0_vlan: left promiscuous mode [ 425.045240][ T5362] team0 (unregistering): Port device team_slave_1 removed [ 425.066778][ T5362] team0 (unregistering): Port device team_slave_0 removed [ 425.162033][ T4689] Bluetooth: hci0: command tx timeout [ 425.353328][ T7388] team0: Port device team_slave_0 added [ 425.392166][ T7388] team0: Port device team_slave_1 added [ 425.452219][ T7388] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 425.455276][ T7388] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 425.475263][ T7388] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 425.512026][ T7388] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 425.515092][ T7388] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 425.553917][ T7388] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 425.661133][ T7388] hsr_slave_0: entered promiscuous mode [ 425.679356][ T7388] hsr_slave_1: entered promiscuous mode [ 426.422517][ T7388] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 426.442401][ T7388] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 426.448321][ T7388] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 426.470434][ T7388] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 426.645486][ T7388] 8021q: adding VLAN 0 to HW filter on device bond0 [ 426.676391][ T7388] 8021q: adding VLAN 0 to HW filter on device team0 [ 426.688027][ T5362] bridge0: port 1(bridge_slave_0) entered blocking state [ 426.691421][ T5362] bridge0: port 1(bridge_slave_0) entered forwarding state [ 426.707077][ T3024] bridge0: port 2(bridge_slave_1) entered blocking state [ 426.711082][ T3024] bridge0: port 2(bridge_slave_1) entered forwarding state [ 427.064642][ T7388] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 427.141954][ T7388] veth0_vlan: entered promiscuous mode [ 427.161860][ T7388] veth1_vlan: entered promiscuous mode [ 427.204555][ T7388] veth0_macvtap: entered promiscuous mode [ 427.221689][ T7388] veth1_macvtap: entered promiscuous mode [ 427.240744][ T4689] Bluetooth: hci0: command tx timeout [ 427.262790][ T7388] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 427.272771][ T7388] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 427.291347][ T7388] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 427.294946][ T7388] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 427.310725][ T7388] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 427.314817][ T7388] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 427.443676][ T1039] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 427.447064][ T1039] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 427.506987][ T3024] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 427.513346][ T3024] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 2025/07/12 16:49:02 executed programs: 602 [ 429.318591][ T4689] Bluetooth: hci0: command tx timeout [ 431.401618][ T4689] Bluetooth: hci0: command tx timeout 2025/07/12 16:49:08 executed programs: 668 2025/07/12 16:49:13 executed programs: 741 2025/07/12 16:49:18 executed programs: 814 [ 445.162253][ T1314] ieee802154 phy0 wpan0: encryption failed: -22 [ 445.166675][ T1314] ieee802154 phy1 wpan1: encryption failed: -22 2025/07/12 16:49:23 executed programs: 887 2025/07/12 16:49:28 executed programs: 961 2025/07/12 16:49:33 executed programs: 1033 2025/07/12 16:49:38 executed programs: 1106 2025/07/12 16:49:43 executed programs: 1179 [ 469.464510][ T45] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 469.469306][ T45] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 469.473472][ T45] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 469.477985][ T45] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 469.482261][ T45] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 469.588314][ T5362] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 469.641587][ T5362] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 469.696390][ T5362] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 469.744337][ T5362] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 469.934786][ T9276] chnl_net:caif_netlink_parms(): no params data found [ 469.953928][ T5362] bridge_slave_1: left allmulticast mode [ 469.956477][ T5362] bridge_slave_1: left promiscuous mode [ 469.972164][ T5362] bridge0: port 2(bridge_slave_1) entered disabled state [ 469.978201][ T5362] bridge_slave_0: left allmulticast mode [ 469.985948][ T5362] bridge_slave_0: left promiscuous mode [ 469.992759][ T5362] bridge0: port 1(bridge_slave_0) entered disabled state [ 470.431205][ T5362] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 470.436957][ T5362] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 470.442663][ T5362] bond0 (unregistering): Released all slaves [ 470.701459][ T9276] bridge0: port 1(bridge_slave_0) entered blocking state [ 470.704674][ T9276] bridge0: port 1(bridge_slave_0) entered disabled state [ 470.707645][ T9276] bridge_slave_0: entered allmulticast mode [ 470.713061][ T9276] bridge_slave_0: entered promiscuous mode [ 470.731125][ T9276] bridge0: port 2(bridge_slave_1) entered blocking state [ 470.734268][ T9276] bridge0: port 2(bridge_slave_1) entered disabled state [ 470.737414][ T9276] bridge_slave_1: entered allmulticast mode [ 470.757935][ T9276] bridge_slave_1: entered promiscuous mode [ 470.783572][ T5362] hsr_slave_0: left promiscuous mode [ 470.798743][ T5362] hsr_slave_1: left promiscuous mode [ 470.801819][ T5362] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 470.805007][ T5362] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 470.819189][ T5362] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 470.822626][ T5362] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 470.853318][ T5362] veth1_macvtap: left promiscuous mode [ 470.855712][ T5362] veth0_macvtap: left promiscuous mode [ 470.858333][ T5362] veth1_vlan: left promiscuous mode [ 470.878724][ T5362] veth0_vlan: left promiscuous mode [ 471.258002][ T5362] team0 (unregistering): Port device team_slave_1 removed [ 471.280217][ T5362] team0 (unregistering): Port device team_slave_0 removed [ 471.558735][ T45] Bluetooth: hci0: command tx timeout [ 471.621245][ T9276] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 471.627284][ T9276] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 471.730986][ T9276] team0: Port device team_slave_0 added [ 471.741237][ T9276] team0: Port device team_slave_1 added [ 471.792460][ T9276] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 471.795500][ T9276] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 471.830129][ T9276] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 471.855039][ T9276] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 471.858139][ T9276] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 471.892817][ T9276] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 471.962516][ T9276] hsr_slave_0: entered promiscuous mode [ 471.976028][ T9276] hsr_slave_1: entered promiscuous mode [ 472.590639][ T9276] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 472.601609][ T9276] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 472.612669][ T9276] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 472.629981][ T9276] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 472.766549][ T9276] 8021q: adding VLAN 0 to HW filter on device bond0 [ 472.812367][ T9276] 8021q: adding VLAN 0 to HW filter on device team0 [ 472.823306][ T5445] bridge0: port 1(bridge_slave_0) entered blocking state [ 472.826440][ T5445] bridge0: port 1(bridge_slave_0) entered forwarding state [ 472.862724][ T5445] bridge0: port 2(bridge_slave_1) entered blocking state [ 472.865807][ T5445] bridge0: port 2(bridge_slave_1) entered forwarding state [ 473.191906][ T9276] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 473.264955][ T9276] veth0_vlan: entered promiscuous mode [ 473.289337][ T9276] veth1_vlan: entered promiscuous mode [ 473.343900][ T9276] veth0_macvtap: entered promiscuous mode [ 473.351259][ T9276] veth1_macvtap: entered promiscuous mode [ 473.394087][ T9276] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 473.415758][ T9276] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 473.433182][ T9276] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 473.436834][ T9276] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 473.449011][ T9276] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 473.452601][ T9276] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 473.574757][ T1039] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 473.578259][ T1039] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 473.647893][ T45] Bluetooth: hci0: command tx timeout [ 473.672269][ T3024] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 473.676819][ T3024] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 2025/07/12 16:49:49 executed programs: 1202 [ 475.718857][ T45] Bluetooth: hci0: command tx timeout [ 477.798817][ T45] Bluetooth: hci0: command tx timeout 2025/07/12 16:49:54 executed programs: 1272 2025/07/12 16:49:59 executed programs: 1346 2025/07/12 16:50:04 executed programs: 1420 2025/07/12 16:50:09 executed programs: 1493 2025/07/12 16:50:14 executed programs: 1566 2025/07/12 16:50:19 executed programs: 1640 [ 506.602227][ T1314] ieee802154 phy0 wpan0: encryption failed: -22 [ 506.605054][ T1314] ieee802154 phy1 wpan1: encryption failed: -22 2025/07/12 16:50:24 executed programs: 1713 2025/07/12 16:50:29 executed programs: 1786 [ 515.078330][ T4689] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 515.083498][ T4689] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 515.087428][ T4689] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 515.096625][ T4689] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 515.101043][ T4689] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 515.219523][ T5445] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 515.277952][ T5445] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 515.322298][ T5445] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 515.382235][ T5445] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 515.410362][T11152] chnl_net:caif_netlink_parms(): no params data found [ 515.605985][ T5445] bridge_slave_1: left allmulticast mode [ 515.618546][ T5445] bridge_slave_1: left promiscuous mode [ 515.621173][ T5445] bridge0: port 2(bridge_slave_1) entered disabled state [ 515.626590][ T5445] bridge_slave_0: left allmulticast mode [ 515.639317][ T5445] bridge_slave_0: left promiscuous mode [ 515.641755][ T5445] bridge0: port 1(bridge_slave_0) entered disabled state [ 516.087357][ T5445] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 516.093987][ T5445] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 516.101509][ T5445] bond0 (unregistering): Released all slaves [ 516.174684][T11152] bridge0: port 1(bridge_slave_0) entered blocking state [ 516.177619][T11152] bridge0: port 1(bridge_slave_0) entered disabled state [ 516.194125][T11152] bridge_slave_0: entered allmulticast mode [ 516.203501][T11152] bridge_slave_0: entered promiscuous mode [ 516.227022][T11152] bridge0: port 2(bridge_slave_1) entered blocking state [ 516.231550][T11152] bridge0: port 2(bridge_slave_1) entered disabled state [ 516.234798][T11152] bridge_slave_1: entered allmulticast mode [ 516.243412][T11152] bridge_slave_1: entered promiscuous mode [ 516.322733][T11152] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 516.340783][T11152] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 516.372802][ T5445] hsr_slave_0: left promiscuous mode [ 516.380095][ T5445] hsr_slave_1: left promiscuous mode [ 516.393800][ T5445] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 516.397187][ T5445] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 516.409700][ T5445] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 516.413164][ T5445] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 516.438319][ T5445] veth1_macvtap: left promiscuous mode [ 516.449611][ T5445] veth0_macvtap: left promiscuous mode [ 516.452329][ T5445] veth1_vlan: left promiscuous mode [ 516.454741][ T5445] veth0_vlan: left promiscuous mode [ 516.991854][ T5445] team0 (unregistering): Port device team_slave_1 removed [ 517.019274][ T5445] team0 (unregistering): Port device team_slave_0 removed [ 517.162957][ T4689] Bluetooth: hci0: command tx timeout [ 517.380865][T11152] team0: Port device team_slave_0 added [ 517.400300][T11152] team0: Port device team_slave_1 added [ 517.458691][T11152] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 517.461788][T11152] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 517.513138][T11152] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 517.529970][T11152] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 517.533179][T11152] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 517.563522][T11152] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 517.639165][T11152] hsr_slave_0: entered promiscuous mode [ 517.650293][T11152] hsr_slave_1: entered promiscuous mode [ 518.263740][T11152] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 518.281373][T11152] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 518.292434][T11152] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 518.306108][T11152] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 518.473861][T11152] 8021q: adding VLAN 0 to HW filter on device bond0 [ 518.512458][T11152] 8021q: adding VLAN 0 to HW filter on device team0 [ 518.534611][ T5445] bridge0: port 1(bridge_slave_0) entered blocking state [ 518.537692][ T5445] bridge0: port 1(bridge_slave_0) entered forwarding state [ 518.554208][ T5445] bridge0: port 2(bridge_slave_1) entered blocking state [ 518.557468][ T5445] bridge0: port 2(bridge_slave_1) entered forwarding state [ 518.632868][T11152] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 518.637428][T11152] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 518.961013][T11152] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 519.039461][T11152] veth0_vlan: entered promiscuous mode [ 519.060353][T11152] veth1_vlan: entered promiscuous mode [ 519.112465][T11152] veth0_macvtap: entered promiscuous mode [ 519.126424][T11152] veth1_macvtap: entered promiscuous mode [ 519.171194][T11152] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 519.191205][T11152] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 519.209216][T11152] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 519.213259][T11152] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 519.217217][T11152] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 519.239183][ T4689] Bluetooth: hci0: command tx timeout [ 519.242453][T11152] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 519.381066][ T1039] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 519.384561][ T1039] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 519.446729][ T5445] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 519.455848][ T5445] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 2025/07/12 16:50:34 executed programs: 1802 [ 521.318711][ T4689] Bluetooth: hci0: command tx timeout [ 523.399480][ T4689] Bluetooth: hci0: command tx timeout 2025/07/12 16:50:39 executed programs: 1871 2025/07/12 16:50:44 executed programs: 1944 [ 662.746895][ C0] watchdog: BUG: soft lockup - CPU#0 stuck for 123s! [syz.0.2011:11811] [ 662.747014][ C0] Modules linked in: [ 662.747023][ C0] irq event stamp: 337922703 [ 662.747028][ C0] hardirqs last enabled at (337922702): [] __local_bh_enable_ip+0x12d/0x1c0 [ 662.747097][ C0] hardirqs last disabled at (337922703): [] sysvec_apic_timer_interrupt+0xe/0xc0 [ 662.747142][ C0] softirqs last enabled at (584): [] tipc_sk_rcv+0x3e9/0x2ba0 [ 662.747183][ C0] softirqs last disabled at (586): [] tipc_sk_rcv+0x421/0x2ba0 [ 662.747226][ C0] CPU: 0 UID: 0 PID: 11811 Comm: syz.0.2011 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) [ 662.747265][ C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 662.747301][ C0] RIP: 0010:__local_bh_enable_ip+0x135/0x1c0 [ 662.747315][ C0] Code: 8b e8 6f b2 e9 09 65 66 8b 05 6f 9f 1a 11 66 85 c0 75 5a bf 01 00 00 00 e8 a8 32 0b 00 e8 b3 11 42 00 fb 65 8b 05 4b 9f 1a 11 <85> c0 75 05 e8 82 f5 ad ff 48 c7 04 24 0e 36 e0 45 4b c7 04 37 00 [ 662.747324][ C0] RSP: 0018:ffffc9000e456540 EFLAGS: 00000286 [ 662.747334][ C0] RAX: 0000000000000201 RBX: 0000000000000201 RCX: 1216cf3644652a00 [ 662.747342][ C0] RDX: 0000000000000002 RSI: ffffffff8d998e51 RDI: ffffffff8be29e00 [ 662.747349][ C0] RBP: ffffc9000e4565d0 R08: ffffffff8fa1f5f7 R09: 1ffffffff1f43ebe [ 662.747357][ C0] R10: dffffc0000000000 R11: fffffbfff1f43ebf R12: ffffffff8b0f4de9 [ 662.747364][ C0] R13: dffffc0000000000 R14: dffffc0000000000 R15: 1ffff92001c8aca8 [ 662.747372][ C0] FS: 00007fa71c0906c0(0000) GS:ffff88808d21b000(0000) knlGS:0000000000000000 [ 662.747380][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 662.747388][ C0] CR2: 0000200000009000 CR3: 0000000043757000 CR4: 0000000000352ef0 [ 662.747418][ C0] Call Trace: [ 662.747512][ C0] [ 662.747527][ C0] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 662.747545][ C0] ? tipc_sk_rcv+0x3e9/0x2ba0 [ 662.747558][ C0] tipc_sk_rcv+0x3e9/0x2ba0 [ 662.747667][ C0] ? is_bpf_text_address+0x26/0x2b0 [ 662.747715][ C0] ? is_bpf_text_address+0x26/0x2b0 [ 662.747742][ C0] ? __pfx_tipc_sk_rcv+0x10/0x10 [ 662.747770][ C0] ? __raw_spin_lock_init+0x45/0x100 [ 662.747787][ C0] tipc_node_xmit+0x1c9/0xe90 [ 662.747797][ C0] ? tipc_sk_rcv+0x8a5/0x2ba0 [ 662.747808][ C0] ? tipc_node_xmit+0x1c9/0xe90 [ 662.747817][ C0] ? tipc_sk_backlog_rcv+0x1a1/0x230 [ 662.747830][ C0] ? __release_sock+0x249/0x350 [ 662.747871][ C0] ? release_sock+0x5f/0x1f0 [ 662.747882][ C0] ? __fput+0x449/0xa70 [ 662.747897][ C0] ? task_work_run+0x1d1/0x260 [ 662.747911][ C0] ? exit_to_user_mode_loop+0xec/0x110 [ 662.747923][ C0] ? do_syscall_64+0x2bd/0x3b0 [ 662.747934][ C0] ? __pfx_tipc_node_xmit+0x10/0x10 [ 662.747965][ C0] tipc_node_xmit_skb+0xf4/0x150 [ 662.747979][ C0] ? __pfx_tipc_node_xmit_skb+0x10/0x10 [ 662.747988][ C0] ? tipc_msg_reverse+0x6b5/0x8f0 [ 662.748009][ C0] ? trace_tipc_sk_rej_msg+0x9c/0x240 [ 662.748023][ C0] tipc_sk_rcv+0x29c4/0x2ba0 [ 662.748047][ C0] ? unwind_next_frame+0xa5/0x2390 [ 662.748071][ C0] ? __lock_acquire+0xab9/0xd20 [ 662.748082][ C0] ? __pfx_tipc_sk_rcv+0x10/0x10 [ 662.748109][ C0] ? __raw_spin_lock_init+0x45/0x100 [ 662.748126][ C0] tipc_node_xmit+0x1c9/0xe90 [ 662.748142][ C0] ? __pfx_tipc_node_xmit+0x10/0x10 [ 662.748152][ C0] ? __lock_acquire+0xab9/0xd20 [ 662.748183][ C0] tipc_sk_filter_rcv+0x12a0/0x30b0 [ 662.748227][ C0] ? __pfx_tipc_sk_filter_rcv+0x10/0x10 [ 662.748244][ C0] ? __local_bh_enable_ip+0x12d/0x1c0 [ 662.748268][ C0] tipc_sk_rcv+0x8a5/0x2ba0 [ 662.748279][ C0] ? tipc_msg_reverse+0x6b5/0x8f0 [ 662.748288][ C0] ? tipc_sk_filter_rcv+0x9df/0x30b0 [ 662.748300][ C0] ? tipc_sk_backlog_rcv+0x131/0x230 [ 662.748312][ C0] ? __release_sock+0x249/0x350 [ 662.748327][ C0] ? task_work_run+0x1d1/0x260 [ 662.748341][ C0] ? exit_to_user_mode_loop+0xec/0x110 [ 662.748351][ C0] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 662.748383][ C0] ? __pfx_tipc_sk_rcv+0x10/0x10 [ 662.748411][ C0] ? __raw_spin_lock_init+0x45/0x100 [ 662.748427][ C0] tipc_node_xmit+0x1c9/0xe90 [ 662.748438][ C0] ? tipc_sk_filter_rcv+0x2df5/0x30b0 [ 662.748455][ C0] ? __pfx_tipc_node_xmit+0x10/0x10 [ 662.748486][ C0] tipc_node_distr_xmit+0x2a0/0x3b0 [ 662.748503][ C0] ? __pfx_tipc_node_distr_xmit+0x10/0x10 [ 662.748532][ C0] tipc_sk_backlog_rcv+0x1a1/0x230 [ 662.748549][ C0] ? __pfx_tipc_sk_backlog_rcv+0x10/0x10 [ 662.748561][ C0] ? __local_bh_enable_ip+0x12d/0x1c0 [ 662.748584][ C0] ? __pfx_tipc_sk_backlog_rcv+0x10/0x10 [ 662.748597][ C0] __release_sock+0x249/0x350 [ 662.748672][ C0] release_sock+0x5f/0x1f0 [ 662.748687][ C0] tipc_release+0x16e2/0x2160 [ 662.748707][ C0] ? tipc_release+0xae8/0x2160 [ 662.748721][ C0] ? __pfx_tipc_release+0x10/0x10 [ 662.748734][ C0] ? down_write+0x162/0x1f0 [ 662.748746][ C0] ? __pfx_down_write+0x10/0x10 [ 662.748756][ C0] ? do_raw_spin_lock+0x121/0x290 [ 662.748773][ C0] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 662.748791][ C0] sock_close+0xc3/0x240 [ 662.748808][ C0] ? __pfx_sock_close+0x10/0x10 [ 662.748822][ C0] __fput+0x449/0xa70 [ 662.748870][ C0] task_work_run+0x1d1/0x260 [ 662.748889][ C0] ? __pfx_task_work_run+0x10/0x10 [ 662.748909][ C0] ? exit_to_user_mode_loop+0x40/0x110 [ 662.748923][ C0] exit_to_user_mode_loop+0xec/0x110 [ 662.748935][ C0] do_syscall_64+0x2bd/0x3b0 [ 662.748946][ C0] ? lockdep_hardirqs_on+0x9c/0x150 [ 662.748962][ C0] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 662.748972][ C0] ? clear_bhb_loop+0x60/0xb0 [ 662.748987][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 662.748997][ C0] RIP: 0033:0x7fa71b18e929 [ 662.749085][ C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 662.749095][ C0] RSP: 002b:00007fa71c090038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 662.749107][ C0] RAX: 00000000000203a0 RBX: 00007fa71b3b5fa0 RCX: 00007fa71b18e929 [ 662.749114][ C0] RDX: 0000000000000000 RSI: 00002000000003c0 RDI: 0000000000000003 [ 662.749122][ C0] RBP: 00007fa71b210b39 R08: 0000000000000000 R09: 0000000000000000 [ 662.749128][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 662.749135][ C0] R13: 0000000000000000 R14: 00007fa71b3b5fa0 R15: 00007fffdf037f88 [ 662.749152][ C0] [ 662.749184][ C0] Kernel panic - not syncing: softlockup: hung tasks [ 663.026232][ C0] CPU: 0 UID: 0 PID: 11811 Comm: syz.0.2011 Tainted: G L 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) [ 663.031952][ C0] Tainted: [L]=SOFTLOCKUP [ 663.033797][ C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 663.038408][ C0] Call Trace: [ 663.039862][ C0] [ 663.041191][ C0] dump_stack_lvl+0x99/0x250 [ 663.043176][ C0] ? __asan_memcpy+0x40/0x70 [ 663.045126][ C0] ? __pfx_dump_stack_lvl+0x10/0x10 [ 663.047369][ C0] ? __pfx__printk+0x10/0x10 [ 663.049326][ C0] panic+0x2db/0x790 [ 663.051180][ C0] ? __pfx_panic+0x10/0x10 [ 663.053130][ C0] ? nmi_backtrace_stall_check+0x433/0x440 [ 663.056003][ C0] watchdog_timer_fn+0x862/0x870 [ 663.058709][ C0] ? __pfx_watchdog_timer_fn+0x10/0x10 [ 663.061199][ C0] ? _raw_spin_unlock_irqrestore+0xad/0x110 [ 663.063747][ C0] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 663.066532][ C0] ? __pfx_watchdog_timer_fn+0x10/0x10 [ 663.068934][ C0] ? __pfx_watchdog_timer_fn+0x10/0x10 [ 663.071416][ C0] __hrtimer_run_queues+0x4e0/0xc60 [ 663.073729][ C0] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 663.076329][ C0] hrtimer_interrupt+0x45b/0xaa0 [ 663.078496][ C0] __sysvec_apic_timer_interrupt+0x108/0x410 [ 663.081116][ C0] sysvec_apic_timer_interrupt+0xa1/0xc0 [ 663.083571][ C0] [ 663.084845][ C0] [ 663.086165][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 663.088780][ C0] RIP: 0010:__local_bh_enable_ip+0x135/0x1c0 [ 663.091481][ C0] Code: 8b e8 6f b2 e9 09 65 66 8b 05 6f 9f 1a 11 66 85 c0 75 5a bf 01 00 00 00 e8 a8 32 0b 00 e8 b3 11 42 00 fb 65 8b 05 4b 9f 1a 11 <85> c0 75 05 e8 82 f5 ad ff 48 c7 04 24 0e 36 e0 45 4b c7 04 37 00 [ 663.099829][ C0] RSP: 0018:ffffc9000e456540 EFLAGS: 00000286 [ 663.102523][ C0] RAX: 0000000000000201 RBX: 0000000000000201 RCX: 1216cf3644652a00 [ 663.105987][ C0] RDX: 0000000000000002 RSI: ffffffff8d998e51 RDI: ffffffff8be29e00 [ 663.109448][ C0] RBP: ffffc9000e4565d0 R08: ffffffff8fa1f5f7 R09: 1ffffffff1f43ebe [ 663.113257][ C0] R10: dffffc0000000000 R11: fffffbfff1f43ebf R12: ffffffff8b0f4de9 [ 663.116668][ C0] R13: dffffc0000000000 R14: dffffc0000000000 R15: 1ffff92001c8aca8 [ 663.120191][ C0] ? tipc_sk_rcv+0x3e9/0x2ba0 [ 663.122318][ C0] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 663.124771][ C0] ? tipc_sk_rcv+0x3e9/0x2ba0 [ 663.126725][ C0] tipc_sk_rcv+0x3e9/0x2ba0 [ 663.128540][ C0] ? is_bpf_text_address+0x26/0x2b0 [ 663.130892][ C0] ? is_bpf_text_address+0x26/0x2b0 [ 663.133119][ C0] ? __pfx_tipc_sk_rcv+0x10/0x10 [ 663.135285][ C0] ? __raw_spin_lock_init+0x45/0x100 [ 663.137689][ C0] tipc_node_xmit+0x1c9/0xe90 [ 663.139718][ C0] ? tipc_sk_rcv+0x8a5/0x2ba0 [ 663.142162][ C0] ? tipc_node_xmit+0x1c9/0xe90 [ 663.144352][ C0] ? tipc_sk_backlog_rcv+0x1a1/0x230 [ 663.146699][ C0] ? __release_sock+0x249/0x350 [ 663.148805][ C0] ? release_sock+0x5f/0x1f0 [ 663.150867][ C0] ? __fput+0x449/0xa70 [ 663.152860][ C0] ? task_work_run+0x1d1/0x260 [ 663.154896][ C0] ? exit_to_user_mode_loop+0xec/0x110 [ 663.157227][ C0] ? do_syscall_64+0x2bd/0x3b0 [ 663.159213][ C0] ? __pfx_tipc_node_xmit+0x10/0x10 [ 663.161363][ C0] tipc_node_xmit_skb+0xf4/0x150 [ 663.163409][ C0] ? __pfx_tipc_node_xmit_skb+0x10/0x10 [ 663.165669][ C0] ? tipc_msg_reverse+0x6b5/0x8f0 [ 663.167626][ C0] ? trace_tipc_sk_rej_msg+0x9c/0x240 [ 663.169657][ C0] tipc_sk_rcv+0x29c4/0x2ba0 [ 663.171748][ C0] ? unwind_next_frame+0xa5/0x2390 [ 663.174146][ C0] ? __lock_acquire+0xab9/0xd20 [ 663.176348][ C0] ? __pfx_tipc_sk_rcv+0x10/0x10 [ 663.178400][ C0] ? __raw_spin_lock_init+0x45/0x100 [ 663.180758][ C0] tipc_node_xmit+0x1c9/0xe90 [ 663.182911][ C0] ? __pfx_tipc_node_xmit+0x10/0x10 [ 663.185241][ C0] ? __lock_acquire+0xab9/0xd20 [ 663.187478][ C0] tipc_sk_filter_rcv+0x12a0/0x30b0 [ 663.189887][ C0] ? __pfx_tipc_sk_filter_rcv+0x10/0x10 [ 663.191990][ C0] ? __local_bh_enable_ip+0x12d/0x1c0 [ 663.194125][ C0] tipc_sk_rcv+0x8a5/0x2ba0 [ 663.195977][ C0] ? tipc_msg_reverse+0x6b5/0x8f0 [ 663.197893][ C0] ? tipc_sk_filter_rcv+0x9df/0x30b0 [ 663.199964][ C0] ? tipc_sk_backlog_rcv+0x131/0x230 [ 663.201986][ C0] ? __release_sock+0x249/0x350 [ 663.203925][ C0] ? task_work_run+0x1d1/0x260 [ 663.205796][ C0] ? exit_to_user_mode_loop+0xec/0x110 [ 663.208141][ C0] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 663.210771][ C0] ? __pfx_tipc_sk_rcv+0x10/0x10 [ 663.212915][ C0] ? __raw_spin_lock_init+0x45/0x100 [ 663.215281][ C0] tipc_node_xmit+0x1c9/0xe90 [ 663.217348][ C0] ? tipc_sk_filter_rcv+0x2df5/0x30b0 [ 663.219705][ C0] ? __pfx_tipc_node_xmit+0x10/0x10 [ 663.221954][ C0] tipc_node_distr_xmit+0x2a0/0x3b0 [ 663.224075][ C0] ? __pfx_tipc_node_distr_xmit+0x10/0x10 [ 663.226416][ C0] tipc_sk_backlog_rcv+0x1a1/0x230 [ 663.228764][ C0] ? __pfx_tipc_sk_backlog_rcv+0x10/0x10 [ 663.231091][ C0] ? __local_bh_enable_ip+0x12d/0x1c0 [ 663.233437][ C0] ? __pfx_tipc_sk_backlog_rcv+0x10/0x10 [ 663.235940][ C0] __release_sock+0x249/0x350 [ 663.238105][ C0] release_sock+0x5f/0x1f0 [ 663.239987][ C0] tipc_release+0x16e2/0x2160 [ 663.241923][ C0] ? tipc_release+0xae8/0x2160 [ 663.244067][ C0] ? __pfx_tipc_release+0x10/0x10 [ 663.246123][ C0] ? down_write+0x162/0x1f0 [ 663.248116][ C0] ? __pfx_down_write+0x10/0x10 [ 663.250242][ C0] ? do_raw_spin_lock+0x121/0x290 [ 663.252654][ C0] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 663.254930][ C0] sock_close+0xc3/0x240 [ 663.256798][ C0] ? __pfx_sock_close+0x10/0x10 [ 663.258891][ C0] __fput+0x449/0xa70 [ 663.260666][ C0] task_work_run+0x1d1/0x260 [ 663.262674][ C0] ? __pfx_task_work_run+0x10/0x10 [ 663.264924][ C0] ? exit_to_user_mode_loop+0x40/0x110 [ 663.267286][ C0] exit_to_user_mode_loop+0xec/0x110 [ 663.269543][ C0] do_syscall_64+0x2bd/0x3b0 [ 663.271585][ C0] ? lockdep_hardirqs_on+0x9c/0x150 [ 663.273865][ C0] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 663.276530][ C0] ? clear_bhb_loop+0x60/0xb0 [ 663.278662][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 663.281337][ C0] RIP: 0033:0x7fa71b18e929 [ 663.283392][ C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 663.291838][ C0] RSP: 002b:00007fa71c090038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 663.296182][ C0] RAX: 00000000000203a0 RBX: 00007fa71b3b5fa0 RCX: 00007fa71b18e929 [ 663.300030][ C0] RDX: 0000000000000000 RSI: 00002000000003c0 RDI: 0000000000000003 [ 663.303586][ C0] RBP: 00007fa71b210b39 R08: 0000000000000000 R09: 0000000000000000 [ 663.307098][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 663.310588][ C0] R13: 0000000000000000 R14: 00007fa71b3b5fa0 R15: 00007fffdf037f88 [ 663.314086][ C0] [ 663.315597][ C0] Kernel Offset: disabled [ 663.317411][ C0] Rebooting in 86400 seconds.. VM DIAGNOSIS: 16:52:58 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000043 RBX=0000000000000043 RCX=0000000000000000 RDX=00000000000003f8 RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc900000074d0 R8 =ffff888033d58237 R9 =1ffff110067ab046 R10=dffffc0000000000 R11=ffffffff85479300 R12=dffffc0000000000 R13=ffffffff99af9894 R14=ffffffff99dfe720 R15=0000000000000000 RIP=ffffffff8547937c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007fa71c0906c0 ffffffff 00c00000 GS =0000 ffff88808d21b000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000200000009000 CR3=0000000043757000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa71b211b12 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa71b211b1f ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa71b211b19 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa71b211b2d ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa71b211bb3 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa71b211c91 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa71b385488 00007fa71b385480 00007fa71b385478 00007fa71b385450 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa71beed100 00007fa71b385440 00007fa71b385458 00007fa71b3854a0 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa71b385498 00007fa71b385490 00007fa71b385488 00007fa71b385480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 97f40f0ac5a58ffb 4098b1dc01942a73 e46fb078d32b4283 315a5e5cd157df22 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 c021980b7e880b2b 7f35ca5ab6f50e83 5534c2eee00e7b17 05cd3dbebb2b041c ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 73890eb8ac147f99 7d5d24bba9e63e50 7907d48970a80747 0d233468af846971 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1da89e4be35ca0ef f2941c9405383a89 1d3b7f763e1d88b8 463e7507c562f3fe ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 97f40f0ac5a58ffb 4098b1dc01942a73 e46fb078d32b4283 315a5e5cd157df22 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000