Warning: Permanently added '10.128.0.38' (ED25519) to the list of known hosts.
2024/05/20 16:44:17 fuzzer started
2024/05/20 16:44:17 dialing manager at 10.128.0.163:30011
syzkaller login: [ 51.346147][ T3546] cgroup: Unknown subsys name 'net'
[ 51.529680][ T3546] cgroup: Unknown subsys name 'rlimit'
2024/05/20 16:44:19 starting 5 executor processes
[ 52.526492][ T3552] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 52.538344][ T3552] syz-executor (3552) used greatest stack depth: 19984 bytes left
[ 53.116712][ T3563] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 53.124456][ T3563] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 53.132132][ T3563] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 53.139826][ T3563] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 53.147660][ T3565] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 53.155031][ T3565] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 53.253040][ T3562] chnl_net:caif_netlink_parms(): no params data found
[ 53.290200][ T3562] bridge0: port 1(bridge_slave_0) entered blocking state
[ 53.297907][ T3562] bridge0: port 1(bridge_slave_0) entered disabled state
[ 53.305757][ T3562] device bridge_slave_0 entered promiscuous mode
[ 53.314275][ T3562] bridge0: port 2(bridge_slave_1) entered blocking state
[ 53.321353][ T3562] bridge0: port 2(bridge_slave_1) entered disabled state
[ 53.329141][ T3562] device bridge_slave_1 entered promiscuous mode
[ 53.348024][ T3562] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 53.358610][ T3562] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 53.379466][ T3562] team0: Port device team_slave_0 added
[ 53.386446][ T3562] team0: Port device team_slave_1 added
[ 53.402685][ T3562] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 53.409611][ T3562] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 53.435685][ T3562] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 53.447852][ T3562] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 53.454848][ T3562] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 53.480933][ T3562] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 53.508024][ T3562] device hsr_slave_0 entered promiscuous mode
[ 53.514801][ T3562] device hsr_slave_1 entered promiscuous mode
[ 53.587856][ T3562] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 53.597643][ T3562] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 53.606339][ T3562] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 53.614859][ T3562] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 53.633799][ T3562] bridge0: port 2(bridge_slave_1) entered blocking state
[ 53.640909][ T3562] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 53.648618][ T3562] bridge0: port 1(bridge_slave_0) entered blocking state
[ 53.655704][ T3562] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 53.693813][ T3562] 8021q: adding VLAN 0 to HW filter on device bond0
[ 53.706421][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 53.716145][ T154] bridge0: port 1(bridge_slave_0) entered disabled state
[ 53.725055][ T154] bridge0: port 2(bridge_slave_1) entered disabled state
[ 53.733230][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 53.746419][ T3562] 8021q: adding VLAN 0 to HW filter on device team0
[ 53.756303][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 53.765487][ T22] bridge0: port 1(bridge_slave_0) entered blocking state
[ 53.772566][ T22] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 53.792297][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 53.800657][ T22] bridge0: port 2(bridge_slave_1) entered blocking state
[ 53.807777][ T22] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 53.816286][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 53.827232][ T152] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 53.835832][ T152] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 53.848071][ T3572] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 53.859533][ T3562] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 53.870973][ T3562] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 53.879491][ T152] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 53.977217][ T3572] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 53.985913][ T3572] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 53.997046][ T3562] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 54.012808][ T152] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 54.030262][ T3562] device veth0_vlan entered promiscuous mode
[ 54.037526][ T3574] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 54.046108][ T3574] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 54.054207][ T3574] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 54.065929][ T3562] device veth1_vlan entered promiscuous mode
[ 54.082443][ T3572] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 54.090270][ T3572] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 54.099130][ T3572] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 54.108739][ T3562] device veth0_macvtap entered promiscuous mode
[ 54.119441][ T3562] device veth1_macvtap entered promiscuous mode
[ 54.134264][ T3562] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 54.142709][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 54.152189][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 54.163477][ T3562] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 54.172683][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 54.182155][ T3562] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 54.190880][ T3562] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 54.199895][ T3562] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 54.209467][ T3562] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 54.264202][ T51] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 54.279684][ T51] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 54.289547][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 54.290727][ T3571] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 54.306500][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
executing program 0:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000240)=ANY=[@ANYBLOB="1201000059d360205f0501d09288000000010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000700)={0x84, &(0x7f0000000280), 0x0, &(0x7f0000000340)={0x0, 0x8, 0x1}, &(0x7f0000000380)={0x20, 0x0, 0x4, {0x0, 0x2}}, &(0x7f00000003c0)={0x20, 0x0, 0x4, {0x800}}, &(0x7f0000000400)={0x40, 0x7, 0x2, 0x151}, &(0x7f0000000440)={0x40, 0x9, 0x1, 0x4}, &(0x7f0000000480)={0x40, 0xb, 0x2, "1b71"}, &(0x7f00000004c0)={0x40, 0xf, 0x2}, &(0x7f0000000500)={0x40, 0x13, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, &(0x7f0000000580)={0x40, 0x17, 0x6, @remote}, &(0x7f00000005c0)={0x40, 0x19, 0x2, '@W'}, &(0x7f0000000600)={0x40, 0x1a, 0x2, 0x1}, &(0x7f0000000640)={0x40, 0x1c, 0x1, 0x40}, &(0x7f0000000680)={0x40, 0x1e, 0x1}, &(0x7f00000006c0)={0x40, 0x21, 0x1}})
[ 54.315737][ T3571] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 54.631492][ T3571] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[ 54.872103][ T3571] usb 1-1: Using ep0 maxpacket: 32
[ 54.992057][ T3571] usb 1-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[ 55.001282][ T3571] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 55.012306][ T3571] usb 1-1: config 0 descriptor??
[ 55.054377][ T3571] gspca_main: nw80x-2.14.0 probing 055f:d001
[ 55.252650][ T3565] Bluetooth: hci0: command tx timeout
[ 55.711527][ T3571] gspca_nw80x: reg_w err -71
[ 55.716157][ T3571] nw80x: probe of 1-1:0.0 failed with error -71
[ 55.727223][ T3571] usb 1-1: USB disconnect, device number 2
[ 56.429355][ T47] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 56.437540][ T47] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 56.445719][ T47] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 56.453885][ T47] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 56.461591][ T47] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 56.468925][ T47] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 56.501833][ T3563] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 56.509866][ T3563] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 56.518755][ T3563] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 56.528712][ T3563] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 56.537466][ T3563] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 56.544922][ T3563] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 56.581912][ T3565] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 56.590069][ T3565] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 56.598617][ T3565] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 56.606624][ T3565] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 56.614395][ T3565] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 56.621932][ T3565] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 56.803625][ T3563] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 56.812628][ T3563] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 56.820259][ T3563] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 56.828642][ T3563] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 56.836520][ T3563] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 56.844748][ T3563] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
executing program 0:
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x1080a, &(0x7f0000000080)=ANY=[@ANYBLOB="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"], 0x1, 0x66f, &(0x7f0000000240)="$eJzs3VtrG+kdx/HfyLKteEtY2hJCyCZPki44NFVG8sZBpNBVRyN7WkkjZuRiQ2FJN/YSImfbJIXGN4tveoDtG+jd3vSiL6LQ676L3rWwtHeF3qjMSQfrZG0cZw/fj9nVaOY/z/OfGWX+jK15RgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQJZTs+2SpYbX2tk10zm1wG/OWJ60tqzbycTtuf1KVvSfCgVdTmZd/u5g8aXofzd1NXl3VYXopaCjty69/eA7+Vy2/oyEvggt2uDzl0dPHna7+89OEbukhZt/k5Q7RdCW2/JC32tWt1zjhb6pbG7ad7froal7DTfcCztu0ziBm+v4gVl3bptSpbJh3OKev9PaqlUbbjbz/g/Ktr1pfrKaHGhJxdDZ9hoNr7UVx0SLo5j75tOfJwFutWnMwePu/sa8JKOg0mmCyvOCyna5XCqVy6XNe5V79207PzbDjlh2n8YizvxDi6+Yszt5A68oF9X/f1hSQwW1tKNdmYk/jmoK5Ks5ZXkqq//v3nUHneTH+x2u/1mVvyz9KF18RXH9v5a8uzat/k/JxcjEK0xaYk2Zv9jPctrKc73UkZ7oobrqal/PzqBtI3P9TFo5h58tuWrJUyhfnpqqxnNMOseook1tytYH2lZdoYzq8tSQq1B7CtWRG3+iHAVyVVVHvgIZrcvRbRmVVFFFGzJyVdSefO2opS3VVNV/e73egR7H+31jRo7KgkpTAlaHg8ozWppW/3/xSfI5Teu/Tf3/pko+B6vpWWxWDPAl0Euv/xd0/fVkAwAAAAAAXgcr/u27Ff/t/h1JPdW9hmu/6bQAAAAAAMAZstRb1VVZir/Spndkcf0PAAAAAMDXjRXfY2dJWou/1G8N7oQ6zS8Bls4hRQAAAAAA8IriO/+vrUi9eNCK67IWuv4HAAAAAABfAb8fGmM/n42x28v+rJ+TFLZXrb/+e1XBsnXc3v2edViNllQP05ixbwB06lesi+lAvfHLiqT4neP2g9NBMPvjDn5+MG+sfys4kcDK0nADUxKwop438+k7faobySo3VpLYR0c5xUuSXtbqXsMtOn7jQUnV6sVcx93t/Prp499IQT/1g8fd/eKHH3cfxbkcR7OOD6NGPxlJJzd5ZwxyeRGPtxDfczFpiy+onnX5h1ZzzYr7tbPtX1L1MDfc0awDMOjzt7qZHLOba0ns2lF/xP1oFxSi7S8V40M2svXBsjXIonRyyycdiClZFOIsbiUxt9ZvJS9ZflE7Oavw/SWpXBw/BiNZlIezmL8vrP+M7YtZWaT7YiPK4m9RQ1Oy2Fgsi7EjAgBvysGgCsWDmI/V3aw8ZCe1L1R35lf390er+4s/9XrxCktSPv3bxMxeCorO6OtWXIdWkicO5K9MOKPbaV0paMoZ3X6F6hb19ZfBM5DStMey+F+v13tQivv944mq+lm0wmdT+w0b5aVoF959cfjLeAD8yEf7H+0/LZc3Nu33bPteWcvxZqQvS6L2AADGzH/GztwI6z3dSCJuPPrXu8nUSMX7dv8rBUV9qI/V1SPdyR4hcH1yq2tDX0O4k1y1auiq1Vx6+8EF6WRsSXemXtXFtXQottyPXVa2ymilHsRuvOajAADA+bo5pw5Prv+Fkfp/R+tJxPqVidfdo7X85BOCp8WW5if//lnvDQAAvhnc4HNrrfM7Kwi89gelSqVU7Wy7JvCdn5rAq225xmt13MDZrra2XNMO/I7v+A3TDrTq1dzQhDvtth90TN0PTNsPvd34ye8mffR76DarrY7nhO2GWw1d4/itTtXpmJoXOqa98+OGF267Qbxy2HYdr+451Y7nt0zo7wSOWzQmdN2hQK/mtjpe3YsmW6YdeM1qsGd+5jd2mq6puaETeO2OnzSY9eW16n7QjJstqrfwgw4BAPg6ev7y6MnDbnf/2YyJY82PSSdWJjTIGEEAAHzJDMr1AisVXmNCAAAAAAAAAAAAAAAAAAAAAABgzGnu/1toYnnSzYJSf86vLp6qHUtnndgiE7lF18puiTh68vcZwRf6c7LdPxxzfG4b+M9vSW/Fc5TMyZ99XxfivXF+B+6HB8kenRoTLZy4aLV/LPJz/jlko0csmOHTP09Z1Ov1erNXXx3ta2XWBo5O5CU9W3mFQ3DOJyIA5+7/AQAA//+tXje4")
open(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)
[ 57.023243][ T3587] chnl_net:caif_netlink_parms(): no params data found
[ 57.055172][ T3590] chnl_net:caif_netlink_parms(): no params data found
[ 57.079143][ T3602] loop0: detected capacity change from 0 to 164
[ 57.143878][ T3602] syz-executor.0: attempt to access beyond end of device
[ 57.143878][ T3602] loop0: rw=524288, sector=263328, nr_sectors = 4 limit=164
[ 57.181118][ T3589] chnl_net:caif_netlink_parms(): no params data found
executing program 0:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0xe2, 0x54, 0x46, 0x10, 0x23a7, 0xfedc, 0xe00b, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x3, 0x42}}]}}]}}, 0x0)
syz_usb_control_io$uac1(r0, &(0x7f0000000040)={0xc, 0x0, &(0x7f0000000140)={0x0, 0x3, 0x6, @string={0x6, 0x3, "7bdd738e"}}}, 0x0)
[ 57.181813][ T3602] syz-executor.0: attempt to access beyond end of device
[ 57.181813][ T3602] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[ 57.205195][ T27] audit: type=1800 audit(1716223463.698:2): pid=3602 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.0" name="file0" dev="loop0" ino=1862 res=0 errno=0
[ 57.321504][ T3563] Bluetooth: hci0: command tx timeout
[ 57.355551][ T3589] bridge0: port 1(bridge_slave_0) entered blocking state
[ 57.362801][ T3589] bridge0: port 1(bridge_slave_0) entered disabled state
[ 57.370435][ T3589] device bridge_slave_0 entered promiscuous mode
[ 57.397709][ T3589] bridge0: port 2(bridge_slave_1) entered blocking state
[ 57.406612][ T3589] bridge0: port 2(bridge_slave_1) entered disabled state
[ 57.417315][ T3589] device bridge_slave_1 entered promiscuous mode
[ 57.427285][ T3593] chnl_net:caif_netlink_parms(): no params data found
[ 57.437262][ T3587] bridge0: port 1(bridge_slave_0) entered blocking state
[ 57.446319][ T3587] bridge0: port 1(bridge_slave_0) entered disabled state
[ 57.455513][ T3587] device bridge_slave_0 entered promiscuous mode
[ 57.465357][ T3587] bridge0: port 2(bridge_slave_1) entered blocking state
[ 57.473780][ T3587] bridge0: port 2(bridge_slave_1) entered disabled state
[ 57.482784][ T3587] device bridge_slave_1 entered promiscuous mode
[ 57.489574][ T3590] bridge0: port 1(bridge_slave_0) entered blocking state
[ 57.498068][ T3590] bridge0: port 1(bridge_slave_0) entered disabled state
[ 57.507043][ T3590] device bridge_slave_0 entered promiscuous mode
[ 57.531453][ T3575] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[ 57.545761][ T3590] bridge0: port 2(bridge_slave_1) entered blocking state
[ 57.555506][ T3590] bridge0: port 2(bridge_slave_1) entered disabled state
[ 57.564402][ T3590] device bridge_slave_1 entered promiscuous mode
[ 57.585089][ T3589] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 57.597225][ T3589] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 57.615517][ T3587] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 57.649623][ T3587] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 57.663496][ T3590] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 57.677494][ T3589] team0: Port device team_slave_0 added
[ 57.691774][ T3590] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 57.709305][ T3589] team0: Port device team_slave_1 added
[ 57.724368][ T3587] team0: Port device team_slave_0 added
[ 57.756249][ T3587] team0: Port device team_slave_1 added
[ 57.777385][ T3590] team0: Port device team_slave_0 added
[ 57.785938][ T3590] team0: Port device team_slave_1 added
[ 57.791593][ T3575] usb 1-1: Using ep0 maxpacket: 16
[ 57.798420][ T3593] bridge0: port 1(bridge_slave_0) entered blocking state
[ 57.808451][ T3593] bridge0: port 1(bridge_slave_0) entered disabled state
[ 57.816182][ T3593] device bridge_slave_0 entered promiscuous mode
[ 57.824704][ T3589] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 57.831805][ T3589] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 57.857923][ T3589] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 57.885526][ T3593] bridge0: port 2(bridge_slave_1) entered blocking state
[ 57.892742][ T3593] bridge0: port 2(bridge_slave_1) entered disabled state
[ 57.900366][ T3593] device bridge_slave_1 entered promiscuous mode
[ 57.908299][ T3589] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 57.915418][ T3589] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 57.941653][ T3589] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 57.965217][ T3587] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 57.972380][ T3587] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 57.999016][ T3587] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 58.021131][ T3590] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 58.028141][ T3590] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 58.054905][ T3590] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 58.066435][ T3587] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 58.076238][ T3587] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 58.105531][ T3587] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 58.135792][ T3590] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 58.143125][ T3575] usb 1-1: New USB device found, idVendor=23a7, idProduct=fedc, bcdDevice=e0.0b
[ 58.146446][ T3590] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 58.152604][ T3575] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 58.184015][ T3590] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 58.186589][ T3575] usb 1-1: Product: syz
[ 58.211109][ T3575] usb 1-1: Manufacturer: syz
[ 58.216239][ T3575] usb 1-1: SerialNumber: syz
[ 58.222053][ T3593] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 58.223457][ T3575] usb 1-1: config 0 descriptor??
[ 58.253200][ T3593] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 58.271316][ T3589] device hsr_slave_0 entered promiscuous mode
[ 58.278144][ T3589] device hsr_slave_1 entered promiscuous mode
[ 58.285202][ T3589] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 58.293484][ T3589] Cannot create hsr debugfs directory
[ 58.300875][ T3590] device hsr_slave_0 entered promiscuous mode
[ 58.308204][ T3590] device hsr_slave_1 entered promiscuous mode
[ 58.315546][ T3590] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 58.323742][ T3590] Cannot create hsr debugfs directory
[ 58.360265][ T3587] device hsr_slave_0 entered promiscuous mode
[ 58.367319][ T3587] device hsr_slave_1 entered promiscuous mode
[ 58.374382][ T3587] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 58.382144][ T3587] Cannot create hsr debugfs directory
[ 58.389805][ T3593] team0: Port device team_slave_0 added
[ 58.421759][ T3593] team0: Port device team_slave_1 added
[ 58.506964][ T3593] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 58.514013][ T3593] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 58.540007][ T3563] Bluetooth: hci1: command tx timeout
[ 58.546946][ T3593] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 58.560372][ T3593] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 58.561222][ T3575] usb 1-1: MIDIStreaming interface descriptor not found
[ 58.567757][ T3593] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 58.600680][ T3593] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 58.611550][ T3565] Bluetooth: hci2: command tx timeout
[ 58.638777][ T3575] usb 1-1: USB disconnect, device number 3
[ 58.681776][ T3565] Bluetooth: hci3: command tx timeout
[ 58.695315][ T3620] udevd[3620]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 58.799589][ T3593] device hsr_slave_0 entered promiscuous mode
[ 58.806264][ T3593] device hsr_slave_1 entered promiscuous mode
[ 58.813087][ T3593] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 58.820631][ T3593] Cannot create hsr debugfs directory
[ 58.895588][ T3590] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 58.910189][ T3590] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 58.921828][ T3565] Bluetooth: hci4: command tx timeout
[ 58.947322][ T3590] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 58.971950][ T3590] netdevsim netdevsim3 netdevsim3: renamed from eth3
executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001c40)=@newtaction={0xf0, 0x30, 0x1, 0x0, 0x0, {}, [{0xdc, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c}]]}, {0x4}, {0xc}, {0xc}}}, @m_police={0x6c, 0x2, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x1}}]]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xf0}}, 0x0)
[ 59.014546][ T3589] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 59.035128][ T3589] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 59.074715][ T3589] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 59.401923][ T3565] Bluetooth: hci0: command tx timeout
[ 60.601537][ T3565] Bluetooth: hci1: command tx timeout
[ 60.681630][ T3565] Bluetooth: hci2: command tx timeout
[ 60.761627][ T3565] Bluetooth: hci3: command tx timeout
[ 61.001623][ T3565] Bluetooth: hci4: command tx timeout
[ 61.491665][ T3565] Bluetooth: hci0: command tx timeout
[ 62.681915][ T3565] Bluetooth: hci1: command tx timeout
[ 62.761526][ T3565] Bluetooth: hci2: command tx timeout
[ 62.851607][ T3565] Bluetooth: hci3: command tx timeout
[ 63.091519][ T3565] Bluetooth: hci4: command tx timeout
[ 64.771808][ T3565] Bluetooth: hci1: command tx timeout
[ 64.851562][ T3563] Bluetooth: hci2: command tx timeout
[ 64.931629][ T3565] Bluetooth: hci3: command tx timeout
[ 65.161632][ T3563] Bluetooth: hci4: command tx timeout
[ 71.172018][ T1255] ieee802154 phy0 wpan0: encryption failed: -22
[ 71.178516][ T1255] ieee802154 phy1 wpan1: encryption failed: -22
[ 76.289163][ T14] cfg80211: failed to load regulatory.db
executing program 0:
syz_mount_image$nilfs2(&(0x7f0000000040), &(0x7f0000000300)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[], 0x1, 0xabb, &(0x7f0000000340)="$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")
mknodat(0xffffffffffffff9c, &(0x7f0000000180)='./file5\x00', 0x0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000000a40)='./file5\x00', 0x2)
[ 89.286389][ T3563] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 89.294415][ T3563] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 89.303433][ T3563] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 89.323418][ T3563] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 89.330931][ T3563] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 89.338471][ T3563] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 91.401625][ T3563] Bluetooth: hci5: command tx timeout
[ 93.481563][ T3563] Bluetooth: hci5: command tx timeout
[ 95.571603][ T3563] Bluetooth: hci5: command tx timeout
[ 97.641509][ T3563] Bluetooth: hci5: command tx timeout
[ 121.492248][ T3565] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 121.510537][ T47] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 121.518443][ T47] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 121.541806][ T3646] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 121.549380][ T3646] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 121.559537][ T3646] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 121.567368][ T3646] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 121.574956][ T3646] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[ 121.582914][ T3646] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 121.592323][ T3646] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 121.597379][ T3649] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 121.599668][ T3646] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 121.607540][ T3649] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 121.626624][ T3646] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 121.629037][ T3563] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[ 121.634401][ T3646] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[ 121.640770][ T3563] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 121.648157][ T3646] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 121.786115][ T3563] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[ 121.795642][ T3563] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[ 121.803239][ T3563] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[ 121.810952][ T3563] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[ 121.819135][ T3563] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[ 121.826760][ T3563] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[ 123.721575][ T3649] Bluetooth: hci6: command tx timeout
[ 123.721591][ T3563] Bluetooth: hci8: command tx timeout
[ 123.721794][ T3563] Bluetooth: hci7: command tx timeout
[ 123.882749][ T3563] Bluetooth: hci9: command tx timeout
[ 125.801508][ T3563] Bluetooth: hci6: command tx timeout
[ 125.801524][ T3652] Bluetooth: hci8: command tx timeout
[ 125.801551][ T3652] Bluetooth: hci7: command tx timeout
[ 125.961562][ T3652] Bluetooth: hci9: command tx timeout
[ 127.881511][ T3652] Bluetooth: hci6: command tx timeout
[ 127.881520][ T3649] Bluetooth: hci8: command tx timeout
[ 127.892912][ T3563] Bluetooth: hci7: command tx timeout
[ 128.051656][ T3649] Bluetooth: hci9: command tx timeout
[ 129.961497][ T3649] Bluetooth: hci8: command tx timeout
[ 129.966942][ T3649] Bluetooth: hci7: command tx timeout
[ 129.972543][ T3652] Bluetooth: hci6: command tx timeout
[ 130.121759][ T3649] Bluetooth: hci9: command tx timeout
[ 132.612228][ T1255] ieee802154 phy0 wpan0: encryption failed: -22
[ 132.618538][ T1255] ieee802154 phy1 wpan1: encryption failed: -22
[ 154.345191][ T3652] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[ 154.359394][ T3652] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[ 154.369153][ T3652] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[ 154.382824][ T3652] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[ 154.390426][ T3652] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3
[ 154.397965][ T3652] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[ 156.441617][ T3649] Bluetooth: hci10: command tx timeout
[ 158.521564][ T3649] Bluetooth: hci10: command tx timeout
[ 160.601552][ T3649] Bluetooth: hci10: command tx timeout
[ 162.681614][ T3649] Bluetooth: hci10: command tx timeout
[ 175.641589][ T3563] Bluetooth: hci0: command 0x0406 tx timeout
[ 180.761460][ T47] Bluetooth: hci3: command 0x0406 tx timeout
[ 180.761510][ T3651] Bluetooth: hci4: command 0x0406 tx timeout
[ 180.767491][ T47] Bluetooth: hci2: command 0x0406 tx timeout
[ 180.773958][ T3646] Bluetooth: hci1: command 0x0406 tx timeout
[ 186.536757][ T3646] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[ 186.546231][ T3646] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[ 186.554502][ T3646] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[ 186.585366][ T3565] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[ 186.591856][ T47] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[ 186.596887][ T3565] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3
[ 186.600443][ T47] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[ 186.610396][ T3565] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[ 186.614587][ T47] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[ 186.629338][ T47] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[ 186.637076][ T47] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3
[ 186.644473][ T47] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[ 186.677151][ T47] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[ 186.685671][ T47] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[ 186.697523][ T47] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[ 186.705363][ T47] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[ 186.713215][ T47] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3
[ 186.720493][ T47] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[ 186.774036][ T3649] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[ 186.788738][ T3649] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[ 186.796295][ T3649] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[ 186.804611][ T3649] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[ 186.812681][ T3649] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3
[ 186.819962][ T3649] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[ 188.681470][ T3649] Bluetooth: hci11: command tx timeout
[ 188.681646][ T47] Bluetooth: hci13: command tx timeout
[ 188.762611][ T47] Bluetooth: hci12: command tx timeout
[ 188.841469][ T47] Bluetooth: hci14: command tx timeout
[ 190.761526][ T47] Bluetooth: hci13: command tx timeout
[ 190.767327][ T47] Bluetooth: hci11: command tx timeout
[ 190.851522][ T47] Bluetooth: hci12: command tx timeout
[ 190.921483][ T47] Bluetooth: hci14: command tx timeout
[ 192.841633][ T47] Bluetooth: hci11: command tx timeout
[ 192.847157][ T47] Bluetooth: hci13: command tx timeout
[ 192.931564][ T47] Bluetooth: hci12: command tx timeout
[ 193.001431][ T47] Bluetooth: hci14: command tx timeout
[ 194.051936][ T1255] ieee802154 phy0 wpan0: encryption failed: -22
[ 194.058240][ T1255] ieee802154 phy1 wpan1: encryption failed: -22
[ 194.921572][ T47] Bluetooth: hci13: command tx timeout
[ 194.927096][ T47] Bluetooth: hci11: command tx timeout
[ 195.001480][ T47] Bluetooth: hci12: command tx timeout
[ 195.082840][ T47] Bluetooth: hci14: command tx timeout
[ 211.481410][ T3646] Bluetooth: hci5: command 0x0406 tx timeout
[ 215.161542][ T28] INFO: task syz-executor.1:3587 blocked for more than 143 seconds.
[ 215.169692][ T28] Not tainted 6.1.91-syzkaller #0
[ 215.183885][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 215.192968][ T28] task:syz-executor.1 state:D stack:21736 pid:3587 ppid:1 flags:0x00004006
[ 215.202575][ T28] Call Trace:
[ 215.205863][ T28]
[ 215.208800][ T28] __schedule+0x142d/0x4550
[ 215.213833][ T28] ? __mutex_lock+0x6b4/0xd80
[ 215.218528][ T28] ? __sched_text_start+0x8/0x8
[ 215.223687][ T28] ? __mutex_trylock_common+0x8d/0x2e0
[ 215.229170][ T28] ? do_raw_spin_unlock+0x137/0x8a0
[ 215.234704][ T28] schedule+0xbf/0x180
[ 215.239073][ T28] schedule_preempt_disabled+0xf/0x20
[ 215.246175][ T28] __mutex_lock+0x6b9/0xd80
[ 215.250704][ T28] ? __mutex_lock+0x53c/0xd80
[ 215.255741][ T28] ? nsim_create+0x30c/0x3f0
[ 215.260347][ T28] ? mutex_lock_nested+0x10/0x10
[ 215.268775][ T28] ? memcpy+0x3c/0x60
[ 215.273108][ T28] ? nsim_udp_tunnels_info_create+0x58e/0x7c0
[ 215.279203][ T28] nsim_create+0x30c/0x3f0
[ 215.284031][ T28] __nsim_dev_port_add+0x6ba/0xb10
[ 215.289171][ T28] ? nsim_drv_port_add+0x130/0x130
[ 215.294706][ T28] ? queue_delayed_work_on+0x1f9/0x250
[ 215.300180][ T28] ? delayed_work_timer_fn+0x80/0x80
[ 215.308827][ T28] ? init_timer_key+0x194/0x350
[ 215.314024][ T28] nsim_dev_port_add_all+0x33/0xe0
[ 215.319150][ T28] nsim_drv_probe+0x80e/0xb20
[ 215.324234][ T28] ? nsim_dev_get_vfs+0xa0/0xa0
[ 215.329102][ T28] ? kernfs_put+0x45a/0x4a0
[ 215.334017][ T28] ? kernfs_create_link+0x186/0x1f0
[ 215.339619][ T28] ? sysfs_do_create_link_sd+0xdd/0x100
[ 215.349216][ T28] ? driver_sysfs_add+0x22f/0x240
[ 215.357920][ T28] ? really_probe+0x140/0xcb0
[ 215.365961][ T28] ? nsim_bus_exit+0x210/0x210
[ 215.370739][ T28] really_probe+0x2ab/0xcb0
[ 215.375681][ T28] __driver_probe_device+0x1a2/0x3d0
[ 215.380984][ T28] driver_probe_device+0x50/0x420
[ 215.386374][ T28] __device_attach_driver+0x2cf/0x510
[ 215.392015][ T28] ? coredump_store+0x90/0x90
[ 215.396706][ T28] bus_for_each_drv+0x183/0x200
[ 215.402148][ T28] ? subsys_find_device_by_id+0x310/0x310
[ 215.407900][ T28] ? kasan_quarantine_put+0xd4/0x220
[ 215.413550][ T28] __device_attach+0x359/0x570
[ 215.418332][ T28] ? device_attach+0x20/0x20
[ 215.423203][ T28] ? kobject_uevent_env+0x54a/0x8c0
[ 215.428423][ T28] ? kobject_uevent_env+0x54a/0x8c0
[ 215.433955][ T28] bus_probe_device+0xba/0x1e0
[ 215.438735][ T28] ? device_add+0xab9/0xfd0
[ 215.443788][ T28] device_add+0xb48/0xfd0
[ 215.448153][ T28] new_device_store+0x3e5/0x800
[ 215.453356][ T28] ? kernfs_fop_write_iter+0x1e7/0x4f0
[ 215.458838][ T28] ? nsim_num_vf+0x50/0x50
[ 215.464992][ T28] ? sysfs_kf_write+0x181/0x2a0
[ 215.469871][ T28] ? sysfs_kf_read+0x300/0x300
[ 215.474988][ T28] kernfs_fop_write_iter+0x3a2/0x4f0
[ 215.480297][ T28] vfs_write+0x7ae/0xba0
[ 215.489220][ T28] ? file_end_write+0x250/0x250
[ 215.496431][ T28] ? do_sys_openat2+0x42b/0x500
[ 215.504721][ T28] ? __fdget_pos+0x2c1/0x360
[ 215.509333][ T28] ksys_write+0x19c/0x2c0
[ 215.514384][ T28] ? print_irqtrace_events+0x210/0x210
[ 215.519869][ T28] ? __ia32_sys_read+0x80/0x80
[ 215.524987][ T28] ? syscall_enter_from_user_mode+0x2e/0x230
[ 215.530981][ T28] ? lockdep_hardirqs_on+0x94/0x130
[ 215.536593][ T28] ? syscall_enter_from_user_mode+0x2e/0x230
[ 215.542803][ T28] do_syscall_64+0x3b/0xb0
[ 215.547490][ T28] ? clear_bhb_loop+0x45/0xa0
[ 215.552532][ T28] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 215.558447][ T28] RIP: 0033:0x7fcbaa07bc2f
[ 215.563154][ T28] RSP: 002b:00007ffe41ecc620 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 215.573140][ T28] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007fcbaa07bc2f
[ 215.581131][ T28] RDX: 0000000000000003 RSI: 00007ffe41ecc670 RDI: 0000000000000005
[ 215.589412][ T28] RBP: 00007fcbaa0c9067 R08: 0000000000000000 R09: 00007ffe41ecc477
[ 215.597637][ T28] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[ 215.605821][ T28] R13: 00007ffe41ecc670 R14: 00007fcbaacd4620 R15: 0000000000000003
[ 215.614073][ T28]
[ 215.617126][ T28] INFO: task syz-executor.2:3589 blocked for more than 143 seconds.
[ 215.625426][ T28] Not tainted 6.1.91-syzkaller #0
[ 215.630973][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 215.639966][ T28] task:syz-executor.2 state:D stack:21736 pid:3589 ppid:1 flags:0x00004006
[ 215.649768][ T28] Call Trace:
[ 215.653315][ T28]
[ 215.656263][ T28] __schedule+0x142d/0x4550
[ 215.660797][ T28] ? __mutex_lock+0x6b4/0xd80
[ 215.665826][ T28] ? __sched_text_start+0x8/0x8
[ 215.670693][ T28] ? __mutex_trylock_common+0x8d/0x2e0
[ 215.676504][ T28] ? do_raw_spin_unlock+0x137/0x8a0
[ 215.683374][ T28] schedule+0xbf/0x180
[ 215.687469][ T28] schedule_preempt_disabled+0xf/0x20
[ 215.693826][ T28] __mutex_lock+0x6b9/0xd80
[ 215.698351][ T28] ? __mutex_lock+0x53c/0xd80
[ 215.703313][ T28] ? rtnetlink_rcv_msg+0x7c1/0xff0
[ 215.708440][ T28] ? mutex_lock_nested+0x10/0x10
[ 215.713727][ T28] ? rtnetlink_rcv_msg+0x1f9/0xff0
[ 215.718854][ T28] rtnetlink_rcv_msg+0x7c1/0xff0
[ 215.724186][ T28] ? rtnetlink_bind+0x80/0x80
[ 215.728884][ T28] ? stack_trace_save+0x1c0/0x1c0
[ 215.734323][ T28] ? kernel_text_address+0x9f/0xd0
[ 215.739452][ T28] ? __kernel_text_address+0x9/0x40
[ 215.744929][ T28] ? unwind_get_return_address+0x49/0x80
[ 215.750962][ T28] ? arch_stack_walk+0xf3/0x140
[ 215.756272][ T28] ? mark_lock+0x9a/0x340
[ 215.760633][ T28] ? mark_lock+0x9a/0x340
[ 215.765257][ T28] ? __lock_acquire+0x125b/0x1f80
[ 215.770330][ T28] netlink_rcv_skb+0x1cd/0x410
[ 215.775528][ T28] ? rtnetlink_bind+0x80/0x80
[ 215.780221][ T28] ? netlink_ack+0x1290/0x1290
[ 215.785944][ T28] ? netlink_deliver_tap+0x2e/0x1b0
[ 215.791165][ T28] netlink_unicast+0x7d8/0x970
[ 215.797608][ T28] ? netlink_detachskb+0x90/0x90
[ 215.806836][ T28] ? __virt_addr_valid+0x44a/0x520
[ 215.814285][ T28] ? __phys_addr_symbol+0x2b/0x70
[ 215.819324][ T28] ? __check_object_size+0x4dd/0xa30
[ 215.828049][ T28] ? bpf_lsm_netlink_send+0x5/0x10
[ 215.833549][ T28] netlink_sendmsg+0xa26/0xd60
[ 215.838337][ T28] ? netlink_getsockopt+0x580/0x580
[ 215.843868][ T28] ? __might_fault+0xa1/0x110
[ 215.848562][ T28] ? aa_sock_msg_perm+0x91/0x150
[ 215.854199][ T28] ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 215.859502][ T28] ? security_socket_sendmsg+0x7d/0xa0
[ 215.865258][ T28] ? netlink_getsockopt+0x580/0x580
[ 215.870467][ T28] __sys_sendto+0x480/0x600
[ 215.875326][ T28] ? __ia32_sys_getpeername+0x80/0x80
[ 215.880747][ T28] ? print_irqtrace_events+0x210/0x210
[ 215.886562][ T28] __x64_sys_sendto+0xda/0xf0
[ 215.891262][ T28] do_syscall_64+0x3b/0xb0
[ 215.896008][ T28] ? clear_bhb_loop+0x45/0xa0
[ 215.900702][ T28] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 215.908377][ T28] RIP: 0033:0x7fac9de7ebdc
[ 215.913064][ T28] RSP: 002b:00007fffa7c73f50 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 215.921692][ T28] RAX: ffffffffffffffda RBX: 00007fac9ead35c0 RCX: 00007fac9de7ebdc
[ 215.929675][ T28] RDX: 0000000000000030 RSI: 00007fac9ead3610 RDI: 0000000000000006
[ 215.937993][ T28] RBP: 0000000000000000 R08: 00007fffa7c73fa4 R09: 000000000000000c
[ 215.949275][ T28] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000006
[ 215.958052][ T28] R13: 0000000000000000 R14: 00007fac9ead3610 R15: 0000000000000000
[ 215.966344][ T28]
[ 215.969394][ T28] INFO: task syz-executor.3:3590 blocked for more than 144 seconds.
[ 215.978053][ T28] Not tainted 6.1.91-syzkaller #0
[ 215.986929][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 215.995916][ T28] task:syz-executor.3 state:D stack:21208 pid:3590 ppid:1 flags:0x00004006
[ 216.005443][ T28] Call Trace:
[ 216.008730][ T28]
[ 216.013725][ T28] __schedule+0x142d/0x4550
[ 216.018274][ T28] ? __mutex_lock+0x6b4/0xd80
[ 216.026957][ T28] ? __sched_text_start+0x8/0x8
[ 216.034256][ T28] ? __mutex_trylock_common+0x8d/0x2e0
[ 216.039742][ T28] ? do_raw_spin_unlock+0x137/0x8a0
[ 216.049155][ T28] schedule+0xbf/0x180
[ 216.056116][ T28] schedule_preempt_disabled+0xf/0x20
[ 216.061795][ T28] __mutex_lock+0x6b9/0xd80
[ 216.066319][ T28] ? __mutex_lock+0x53c/0xd80
[ 216.071004][ T28] ? rtnetlink_rcv_msg+0x7c1/0xff0
[ 216.076702][ T28] ? mutex_lock_nested+0x10/0x10
[ 216.081859][ T28] ? rtnetlink_rcv_msg+0x1f9/0xff0
[ 216.086983][ T28] rtnetlink_rcv_msg+0x7c1/0xff0
[ 216.092343][ T28] ? rtnetlink_bind+0x80/0x80
[ 216.097033][ T28] ? stack_trace_save+0x1c0/0x1c0
[ 216.102344][ T28] ? kernel_text_address+0x9f/0xd0
[ 216.107471][ T28] ? __kernel_text_address+0x9/0x40
[ 216.112998][ T28] ? unwind_get_return_address+0x49/0x80
[ 216.118660][ T28] ? arch_stack_walk+0xf3/0x140
[ 216.125259][ T28] ? mark_lock+0x9a/0x340
[ 216.129623][ T28] ? mark_lock+0x9a/0x340
[ 216.134308][ T28] ? __lock_acquire+0x125b/0x1f80
[ 216.139385][ T28] netlink_rcv_skb+0x1cd/0x410
[ 216.144433][ T28] ? rtnetlink_bind+0x80/0x80
[ 216.149126][ T28] ? netlink_ack+0x1290/0x1290
[ 216.154246][ T28] ? netlink_deliver_tap+0x2e/0x1b0
[ 216.159734][ T28] netlink_unicast+0x7d8/0x970
[ 216.164826][ T28] ? netlink_detachskb+0x90/0x90
[ 216.169781][ T28] ? __virt_addr_valid+0x44a/0x520
[ 216.175218][ T28] ? __phys_addr_symbol+0x2b/0x70
[ 216.180256][ T28] ? __check_object_size+0x4dd/0xa30
[ 216.185844][ T28] ? bpf_lsm_netlink_send+0x5/0x10
[ 216.190972][ T28] netlink_sendmsg+0xa26/0xd60
[ 216.196074][ T28] ? netlink_getsockopt+0x580/0x580
[ 216.201285][ T28] ? __might_fault+0xa1/0x110
[ 216.206308][ T28] ? aa_sock_msg_perm+0x91/0x150
[ 216.211260][ T28] ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 216.216948][ T28] ? security_socket_sendmsg+0x7d/0xa0
[ 216.222652][ T28] ? netlink_getsockopt+0x580/0x580
[ 216.227862][ T28] __sys_sendto+0x480/0x600
[ 216.234119][ T28] ? __ia32_sys_getpeername+0x80/0x80
[ 216.239548][ T28] ? print_irqtrace_events+0x210/0x210
[ 216.248450][ T28] __x64_sys_sendto+0xda/0xf0
[ 216.255474][ T28] do_syscall_64+0x3b/0xb0
[ 216.259916][ T28] ? clear_bhb_loop+0x45/0xa0
[ 216.268284][ T28] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 216.274560][ T28] RIP: 0033:0x7f0efee7ebdc
[ 216.278989][ T28] RSP: 002b:00007ffdcdeda430 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 216.287814][ T28] RAX: ffffffffffffffda RBX: 00007f0effad4620 RCX: 00007f0efee7ebdc
[ 216.296140][ T28] RDX: 0000000000000040 RSI: 00007f0effad4670 RDI: 0000000000000003
[ 216.304328][ T28] RBP: 0000000000000000 R08: 00007ffdcdeda484 R09: 000000000000000c
[ 216.312573][ T28] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[ 216.320553][ T28] R13: 0000000000000000 R14: 00007f0effad4670 R15: 0000000000000000
[ 216.328830][ T28]
[ 216.332131][ T28] INFO: task syz-executor.4:3593 blocked for more than 144 seconds.
[ 216.340117][ T28] Not tainted 6.1.91-syzkaller #0
[ 216.347397][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 216.356992][ T28] task:syz-executor.4 state:D stack:21016 pid:3593 ppid:1 flags:0x00004006
[ 216.370202][ T28] Call Trace:
[ 216.373825][ T28]
[ 216.376769][ T28] __schedule+0x142d/0x4550
[ 216.384740][ T28] ? __mutex_lock+0x6b4/0xd80
[ 216.389435][ T28] ? __sched_text_start+0x8/0x8
[ 216.394698][ T28] ? __mutex_trylock_common+0x8d/0x2e0
[ 216.400183][ T28] ? do_raw_spin_unlock+0x137/0x8a0
[ 216.405722][ T28] schedule+0xbf/0x180
[ 216.409812][ T28] schedule_preempt_disabled+0xf/0x20
[ 216.415595][ T28] __mutex_lock+0x6b9/0xd80
[ 216.420116][ T28] ? __mutex_lock+0x53c/0xd80
[ 216.425093][ T28] ? del_device_store+0xf8/0x480
[ 216.430049][ T28] ? mutex_lock_nested+0x10/0x10
[ 216.435355][ T28] del_device_store+0xf8/0x480
[ 216.440138][ T28] ? del_port_store+0x1d0/0x1d0
[ 216.445427][ T28] ? sysfs_kf_write+0x181/0x2a0
[ 216.450303][ T28] ? sysfs_kf_read+0x300/0x300
[ 216.456696][ T28] kernfs_fop_write_iter+0x3a2/0x4f0
[ 216.462204][ T28] vfs_write+0x7ae/0xba0
[ 216.466719][ T28] ? file_end_write+0x250/0x250
[ 216.471933][ T28] ? __rseq_handle_notify_resume+0x3b7/0x1500
[ 216.478030][ T28] ? __fdget_pos+0x2c1/0x360
[ 216.483147][ T28] ksys_write+0x19c/0x2c0
[ 216.487492][ T28] ? print_irqtrace_events+0x210/0x210
[ 216.493334][ T28] ? __ia32_sys_read+0x80/0x80
[ 216.498112][ T28] ? syscall_enter_from_user_mode+0x2e/0x230
[ 216.504394][ T28] ? lockdep_hardirqs_on+0x94/0x130
[ 216.509606][ T28] ? syscall_enter_from_user_mode+0x2e/0x230
[ 216.516271][ T28] do_syscall_64+0x3b/0xb0
[ 216.520710][ T28] ? clear_bhb_loop+0x45/0xa0
[ 216.530414][ T28] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 216.536651][ T28] RIP: 0033:0x7effa4a7bc2f
[ 216.541079][ T28] RSP: 002b:00007ffd49ce9bd0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 216.549847][ T28] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007effa4a7bc2f
[ 216.558174][ T28] RDX: 0000000000000001 RSI: 00007ffd49ce9c20 RDI: 0000000000000005
[ 216.567965][ T28] RBP: 00007effa4ac9043 R08: 0000000000000000 R09: 00007ffd49ce9a27
[ 216.576216][ T28] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[ 216.584392][ T28] R13: 00007ffd49ce9c20 R14: 00007effa56d4620 R15: 0000000000000003
[ 216.592701][ T28]
[ 216.595761][ T28] INFO: task kworker/0:7:3622 blocked for more than 144 seconds.
[ 216.603899][ T28] Not tainted 6.1.91-syzkaller #0
[ 216.609449][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 216.618460][ T28] task:kworker/0:7 state:D stack:27032 pid:3622 ppid:2 flags:0x00004000
[ 216.627885][ T28] Workqueue: ipv6_addrconf addrconf_dad_work
[ 216.634142][ T28] Call Trace:
[ 216.637430][ T28]
[ 216.640368][ T28] __schedule+0x142d/0x4550
[ 216.645266][ T28] ? do_raw_spin_unlock+0x137/0x8a0
[ 216.650501][ T28] ? __sched_text_start+0x8/0x8
[ 216.655686][ T28] ? print_irqtrace_events+0x210/0x210
[ 216.661162][ T28] ? do_raw_spin_unlock+0x137/0x8a0
[ 216.666649][ T28] ? _raw_spin_unlock_irq+0x1f/0x40
[ 216.673629][ T28] ? lockdep_hardirqs_on+0x94/0x130
[ 216.678853][ T28] schedule+0xbf/0x180
[ 216.683868][ T28] schedule_preempt_disabled+0xf/0x20
[ 216.689263][ T28] __mutex_lock+0x6b9/0xd80
[ 216.694152][ T28] ? __mutex_lock+0x53c/0xd80
[ 216.698845][ T28] ? addrconf_dad_work+0xcc/0x16b0
[ 216.704490][ T28] ? mutex_lock_nested+0x10/0x10
[ 216.709462][ T28] addrconf_dad_work+0xcc/0x16b0
[ 216.718980][ T28] ? read_lock_is_recursive+0x10/0x10
[ 216.724596][ T28] ? ipv6_get_saddr_eval+0xe90/0xe90
[ 216.729892][ T28] ? print_irqtrace_events+0x210/0x210
[ 216.735754][ T28] ? _raw_spin_unlock_irqrestore+0xd9/0x130
[ 216.741878][ T28] ? do_raw_spin_unlock+0x137/0x8a0
[ 216.747094][ T28] ? process_one_work+0x7a9/0x11d0
[ 216.752593][ T28] process_one_work+0x8a9/0x11d0
[ 216.757562][ T28] ? worker_detach_from_pool+0x260/0x260
[ 216.763543][ T28] ? _raw_spin_lock_irqsave+0x120/0x120
[ 216.769104][ T28] ? kthread_data+0x4e/0xc0
[ 216.775194][ T28] ? wq_worker_running+0x97/0x190
[ 216.780252][ T28] worker_thread+0xa47/0x1200
[ 216.786417][ T28] ? _raw_spin_unlock+0x40/0x40
[ 216.791284][ T28] ? __sched_text_start+0x8/0x8
[ 216.796544][ T28] ? _raw_spin_unlock+0x40/0x40
[ 216.801613][ T28] kthread+0x28d/0x320
[ 216.805691][ T28] ? worker_clr_flags+0x190/0x190
[ 216.810719][ T28] ? kthread_blkcg+0xd0/0xd0
[ 216.815955][ T28] ret_from_fork+0x1f/0x30
[ 216.820407][ T28]
[ 216.824753][ T28]
[ 216.824753][ T28] Showing all locks held in the system:
[ 216.832856][ T28] 1 lock held by rcu_tasks_kthre/12:
[ 216.838145][ T28] #0: ffffffff8d12ae50 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xe30
[ 216.848993][ T28] 1 lock held by rcu_tasks_trace/13:
[ 216.854648][ T28] #0: ffffffff8d12b650 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xe30
[ 216.865852][ T28] 3 locks held by kworker/0:1/14:
[ 216.870881][ T28] #0: ffff888012470938 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[ 216.883036][ T28] #1: ffffc90000137d20 ((work_completion)(&fw_work->work)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[ 216.900153][ T28] #2: ffffffff8e29af28 (rtnl_mutex){+.+.}-{3:3}, at: regdb_fw_cb+0x7e/0x1b0
[ 216.910288][ T28] 1 lock held by khungtaskd/28:
[ 216.919636][ T28] #0: ffffffff8d12ac80 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x51/0x290
[ 216.931195][ T28] 2 locks held by getty/3303:
[ 216.940456][ T28] #0: ffff888027140098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70
[ 216.951699][ T28] #1: ffffc900031262f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6a7/0x1db0
[ 216.966525][ T28] 3 locks held by kworker/0:4/3571:
[ 216.973330][ T28] #0: ffff888012471938 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[ 216.990086][ T28] #1: ffffc9000454fd20 ((reg_check_chans).work){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[ 217.000872][ T28] #2: ffffffff8e29af28 (rtnl_mutex){+.+.}-{3:3}, at: reg_check_chans_work+0x8d/0xdb0
[ 217.012533][ T28] 3 locks held by kworker/1:3/3574:
[ 217.017762][ T28] #0: ffff888028fcdd38 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[ 217.029161][ T28] #1: ffffc9000450fd20 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[ 217.042587][ T28] #2: ffffffff8e29af28 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x15/0x30
[ 217.052446][ T28] 7 locks held by syz-executor.1/3587:
[ 217.057913][ T28] #0: ffff88801bd12460 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x269/0xba0
[ 217.067194][ T28] #1: ffff88807c5de888 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1e7/0x4f0
[ 217.077236][ T28] #2: ffff888022366918 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20b/0x4f0
[ 217.088102][ T28] #3: ffffffff8dc0dd28 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: new_device_store+0x1ad/0x800
[ 217.098732][ T28] #4: ffff888145aa40e8 (&dev->mutex){....}-{3:3}, at: __device_attach+0x8a/0x570
[ 217.108848][ T28] #5: ffff888145aa62f8 (&devlink->lock_key#4){+.+.}-{3:3}, at: nsim_drv_probe+0xc9/0xb20
[ 217.119080][ T28] #6: ffffffff8e29af28 (rtnl_mutex){+.+.}-{3:3}, at: nsim_create+0x30c/0x3f0
[ 217.129392][ T28] 1 lock held by syz-executor.2/3589:
[ 217.134978][ T28] #0: ffffffff8e29af28 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7c1/0xff0
[ 217.144680][ T28] 1 lock held by syz-executor.3/3590:
[ 217.150061][ T28] #0: ffffffff8e29af28 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7c1/0xff0
[ 217.159774][ T28] 4 locks held by syz-executor.4/3593:
[ 217.165723][ T28] #0: ffff88801bd12460 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x269/0xba0
[ 217.174887][ T28] #1: ffff888059b29488 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1e7/0x4f0
[ 217.185434][ T28] #2: ffff888022366a00 (kn->active#51){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20b/0x4f0
[ 217.199818][ T28] #3: ffffffff8dc0dd28 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xf8/0x480
[ 217.210481][ T28] 3 locks held by kworker/0:7/3622:
[ 217.215990][ T28] #0: ffff888028fcdd38 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[ 217.227448][ T28] #1: ffffc90004ca7d20 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[ 217.241205][ T28] #2: ffffffff8e29af28 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xcc/0x16b0
[ 217.250931][ T28] 1 lock held by syz-executor.0/3624:
[ 217.256532][ T28] 1 lock held by syz-executor.0/3627:
[ 217.262164][ T28] #0: ffffffff8e29af28 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7c1/0xff0
[ 217.271853][ T28] 1 lock held by syz-executor.1/3641:
[ 217.277232][ T28] #0: ffffffff8e29af28 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7c1/0xff0
[ 217.287553][ T28] 1 lock held by syz-executor.3/3644:
[ 217.297255][ T28] #0: ffffffff8e29af28 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7c1/0xff0
[ 217.307006][ T28] 1 lock held by syz-executor.2/3645:
[ 217.312678][ T28] #0: ffffffff8e29af28 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7c1/0xff0
[ 217.322502][ T28] 1 lock held by syz-executor.4/3654:
[ 217.327881][ T28] #0: ffffffff8e29af28 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7c1/0xff0
[ 217.337639][ T28] 1 lock held by syz-executor.0/3657:
[ 217.344551][ T28] #0: ffffffff8e29af28 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7c1/0xff0
[ 217.354204][ T28] 1 lock held by syz-executor.1/3666:
[ 217.359578][ T28] #0: ffffffff8e29af28 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7c1/0xff0
[ 217.369359][ T28] 1 lock held by syz-executor.3/3669:
[ 217.374980][ T28] #0: ffffffff8e29af28 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7c1/0xff0
[ 217.384658][ T28] 1 lock held by syz-executor.2/3670:
[ 217.390310][ T28] #0: ffffffff8e29af28 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7c1/0xff0
[ 217.400206][ T28] 1 lock held by syz-executor.4/3674:
[ 217.405869][ T28] #0: ffffffff8e29af28 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7c1/0xff0
[ 217.415573][ T28]
[ 217.417911][ T28] =============================================
[ 217.417911][ T28]
[ 217.427047][ T28] NMI backtrace for cpu 0
[ 217.431379][ T28] CPU: 0 PID: 28 Comm: khungtaskd Not tainted 6.1.91-syzkaller #0
[ 217.439270][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[ 217.449326][ T28] Call Trace:
[ 217.452608][ T28]
[ 217.455542][ T28] dump_stack_lvl+0x1e3/0x2cb
[ 217.460234][ T28] ? nf_tcp_handle_invalid+0x642/0x642
[ 217.465701][ T28] ? panic+0x764/0x764
[ 217.469770][ T28] ? vprintk_emit+0x622/0x740
[ 217.474459][ T28] ? printk_sprint+0x490/0x490
[ 217.479239][ T28] ? nmi_cpu_backtrace+0x252/0x560
[ 217.484367][ T28] nmi_cpu_backtrace+0x4e1/0x560
[ 217.489325][ T28] ? nmi_trigger_cpumask_backtrace+0x3f0/0x3f0
[ 217.495487][ T28] ? _printk+0xd1/0x111
[ 217.499646][ T28] ? panic+0x764/0x764
[ 217.503721][ T28] ? __wake_up_klogd+0xcc/0x100
[ 217.508576][ T28] ? panic+0x764/0x764
[ 217.512652][ T28] ? nmi_trigger_cpumask_backtrace+0xe2/0x3f0
[ 217.518730][ T28] ? arch_trigger_cpumask_backtrace+0x10/0x10
[ 217.524801][ T28] nmi_trigger_cpumask_backtrace+0x1b0/0x3f0
[ 217.530777][ T28] watchdog+0xf88/0xfd0
[ 217.534929][ T28] ? watchdog+0x1f8/0xfd0
[ 217.539250][ T28] kthread+0x28d/0x320
[ 217.543306][ T28] ? hungtask_pm_notify+0x50/0x50
[ 217.548323][ T28] ? kthread_blkcg+0xd0/0xd0
[ 217.552899][ T28] ret_from_fork+0x1f/0x30
[ 217.557316][ T28]
[ 217.560710][ T28] Sending NMI from CPU 0 to CPUs 1:
[ 217.566093][ C1] NMI backtrace for cpu 1
[ 217.566102][ C1] CPU: 1 PID: 11 Comm: kworker/u4:1 Not tainted 6.1.91-syzkaller #0
[ 217.566117][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[ 217.566125][ C1] Workqueue: phy4 ieee80211_iface_work
[ 217.566143][ C1] RIP: 0010:__lock_acquire+0xf7f/0x1f80
[ 217.566163][ C1] Code: 00 8b 1b 81 e3 ff 1f 00 00 48 89 d8 48 c1 e8 06 48 8d 3c c5 20 c2 49 90 be 08 00 00 00 e8 09 97 77 00 48 0f a3 1d c1 4a df 0e <0f> 83 bb 01 00 00 48 8d 04 5b 48 c1 e0 06 48 8d 98 20 21 19 90 48
[ 217.566174][ C1] RSP: 0018:ffffc90000107100 EFLAGS: 00000057
[ 217.566185][ C1] RAX: 0000000000000001 RBX: 000000000000033d RCX: ffffffff816a7757
[ 217.566195][ C1] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff9049c280
[ 217.566203][ C1] RBP: af8103161e2f5f38 R08: dffffc0000000000 R09: fffffbfff2093851
[ 217.566214][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff88813feb4658
[ 217.566223][ C1] R13: ffff88813feb3b80 R14: 0000000000000000 R15: 1ffff11027fd68df
[ 217.566233][ C1] FS: 0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
[ 217.566245][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 217.566255][ C1] CR2: 000055ea7a4ce030 CR3: 00000000288ba000 CR4: 00000000003506e0
[ 217.566267][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 217.566275][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 217.566283][ C1] Call Trace:
[ 217.566287][ C1]
[ 217.566292][ C1] ? nmi_cpu_backtrace+0x3de/0x560
[ 217.566310][ C1] ? read_lock_is_recursive+0x10/0x10
[ 217.566328][ C1] ? nmi_trigger_cpumask_backtrace+0x3f0/0x3f0
[ 217.566352][ C1] ? nmi_cpu_backtrace_handler+0x8/0x10
[ 217.566369][ C1] ? nmi_handle+0x12e/0x440
[ 217.566387][ C1] ? nmi_handle+0x25/0x440
[ 217.566404][ C1] ? __lock_acquire+0xf7f/0x1f80
[ 217.566420][ C1] ? default_do_nmi+0x62/0x150
[ 217.566434][ C1] ? exc_nmi+0xa8/0x100
[ 217.566445][ C1] ? end_repeat_nmi+0x16/0x31
[ 217.566466][ C1] ? __lock_acquire+0xf77/0x1f80
[ 217.566483][ C1] ? __lock_acquire+0xf7f/0x1f80
[ 217.566499][ C1] ? __lock_acquire+0xf7f/0x1f80
[ 217.566516][ C1] ? __lock_acquire+0xf7f/0x1f80
[ 217.566538][ C1]
[ 217.566542][ C1]
[ 217.566552][ C1] lock_acquire+0x1f8/0x5a0
[ 217.566567][ C1] ? cfg80211_bss_update+0x88/0x21e0
[ 217.566586][ C1] ? lockdep_softirqs_on+0x590/0x590
[ 217.566604][ C1] ? read_lock_is_recursive+0x10/0x10
[ 217.566622][ C1] ? __local_bh_disable_ip+0x183/0x210
[ 217.566641][ C1] ? cfg80211_bss_update+0x88/0x21e0
[ 217.566658][ C1] ? __bpf_trace_softirq+0x10/0x10
[ 217.566677][ C1] ? cfg80211_bss_update+0x88/0x21e0
[ 217.566695][ C1] _raw_spin_lock_bh+0x31/0x40
[ 217.566710][ C1] ? cfg80211_bss_update+0x88/0x21e0
[ 217.566727][ C1] cfg80211_bss_update+0x88/0x21e0
[ 217.566747][ C1] ? __kmem_cache_alloc_node+0x137/0x260
[ 217.566764][ C1] ? cfg80211_inform_bss_frame_data+0x5e3/0x1680
[ 217.566782][ C1] ? cfg80211_inform_bss_frame_data+0x5e3/0x1680
[ 217.566801][ C1] ? rcu_is_watching+0x11/0xb0
[ 217.566813][ C1] ? cfg80211_inform_bss_frame_data+0x5e3/0x1680
[ 217.566831][ C1] ? cfg80211_inform_bss_frame_data+0x7c8/0x1680
[ 217.566851][ C1] cfg80211_inform_bss_frame_data+0xae4/0x1680
[ 217.566874][ C1] ? cfg80211_parse_mbssid_data+0x3410/0x3410
[ 217.566898][ C1] ? __lock_acquire+0x1f80/0x1f80
[ 217.566920][ C1] ieee80211_bss_info_update+0x847/0xf00
[ 217.566940][ C1] ? __lock_acquire+0x1f80/0x1f80
[ 217.566957][ C1] ? ieee80211_rx_bss_put+0x60/0x60
[ 217.566977][ C1] ? ieee80211_ibss_rx_queued_mgmt+0xeba/0x2dd0
[ 217.566992][ C1] ? ieee80211_vif_get_shift+0x225/0x280
[ 217.567009][ C1] ? __lock_acquire+0x1f80/0x1f80
[ 217.567025][ C1] ? ieee80211_sta_get_rates+0x65c/0x720
[ 217.567043][ C1] ieee80211_ibss_rx_queued_mgmt+0x1962/0x2dd0
[ 217.567064][ C1] ? ieee80211_ibss_rx_queued_mgmt+0xeba/0x2dd0
[ 217.567079][ C1] ? ieee80211_ibss_rx_no_sta+0x740/0x740
[ 217.567096][ C1] ? mark_lock+0x9a/0x340
[ 217.567114][ C1] ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[ 217.567133][ C1] ? print_irqtrace_events+0x210/0x210
[ 217.567150][ C1] ? do_raw_spin_unlock+0x137/0x8a0
[ 217.567165][ C1] ? lockdep_hardirqs_on+0x94/0x130
[ 217.567180][ C1] ? skb_dequeue+0x10f/0x140
[ 217.567195][ C1] ieee80211_iface_work+0x7aa/0xce0
[ 217.567212][ C1] ? process_one_work+0x7a9/0x11d0
[ 217.567226][ C1] process_one_work+0x8a9/0x11d0
[ 217.567246][ C1] ? worker_detach_from_pool+0x260/0x260
[ 217.567262][ C1] ? _raw_spin_lock_irqsave+0x120/0x120
[ 217.567276][ C1] ? kthread_data+0x4e/0xc0
[ 217.567295][ C1] ? wq_worker_running+0x97/0x190
[ 217.567314][ C1] worker_thread+0xa47/0x1200
[ 217.567337][ C1] kthread+0x28d/0x320
[ 217.567348][ C1] ? worker_clr_flags+0x190/0x190
[ 217.567361][ C1] ? kthread_blkcg+0xd0/0xd0
[ 217.567373][ C1] ret_from_fork+0x1f/0x30
[ 217.567393][ C1]
[ 218.074222][ T28] Kernel panic - not syncing: hung_task: blocked tasks
[ 218.081089][ T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted 6.1.91-syzkaller #0
[ 218.088891][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[ 218.098940][ T28] Call Trace:
[ 218.102227][ T28]
[ 218.105161][ T28] dump_stack_lvl+0x1e3/0x2cb
[ 218.109856][ T28] ? nf_tcp_handle_invalid+0x642/0x642
[ 218.115318][ T28] ? panic+0x764/0x764
[ 218.119388][ T28] ? llist_add_batch+0x160/0x1d0
[ 218.124338][ T28] ? vscnprintf+0x59/0x80
[ 218.128671][ T28] panic+0x318/0x764
[ 218.132573][ T28] ? nmi_trigger_cpumask_backtrace+0x2c1/0x3f0
[ 218.138738][ T28] ? memcpy_page_flushcache+0xfc/0xfc
[ 218.144118][ T28] ? nmi_trigger_cpumask_backtrace+0x2c1/0x3f0
[ 218.150274][ T28] ? nmi_trigger_cpumask_backtrace+0x33a/0x3f0
[ 218.156436][ T28] ? nmi_trigger_cpumask_backtrace+0x33f/0x3f0
[ 218.162603][ T28] watchdog+0xfc7/0xfd0
[ 218.166770][ T28] ? watchdog+0x1f8/0xfd0
[ 218.171105][ T28] kthread+0x28d/0x320
[ 218.175171][ T28] ? hungtask_pm_notify+0x50/0x50
[ 218.180208][ T28] ? kthread_blkcg+0xd0/0xd0
[ 218.184796][ T28] ret_from_fork+0x1f/0x30
[ 218.189215][ T28]
[ 218.192474][ T28] Kernel Offset: disabled
[ 218.196784][ T28] Rebooting in 86400 seconds..