Warning: Permanently added '10.128.0.238' (ED25519) to the list of known hosts.
2025/07/13 15:08:28 ignoring optional flag "sandboxArg"="0"
2025/07/13 15:08:29 parsed 1 programs
[   90.763588][ T5855] cgroup: Unknown subsys name 'net'
[   90.883093][ T5855] cgroup: Unknown subsys name 'cpuset'
[   90.891965][ T5855] cgroup: Unknown subsys name 'rlimit'
[   91.811256][   T45] cfg80211: failed to load regulatory.db
[   92.507719][ T5855] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   95.709093][ T5871] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   96.031751][ T5876] chnl_net:caif_netlink_parms(): no params data found
[   96.115713][ T5876] bridge0: port 1(bridge_slave_0) entered blocking state
[   96.123004][ T5876] bridge0: port 1(bridge_slave_0) entered disabled state
[   96.131403][ T5876] bridge_slave_0: entered allmulticast mode
[   96.138657][ T5876] bridge_slave_0: entered promiscuous mode
[   96.147615][ T5876] bridge0: port 2(bridge_slave_1) entered blocking state
[   96.154893][ T5876] bridge0: port 2(bridge_slave_1) entered disabled state
[   96.162086][ T5876] bridge_slave_1: entered allmulticast mode
[   96.169213][ T5876] bridge_slave_1: entered promiscuous mode
[   96.203155][ T5876] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   96.215214][ T5876] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   96.248536][ T5876] team0: Port device team_slave_0 added
[   96.256494][ T5876] team0: Port device team_slave_1 added
[   96.285994][ T5876] batman_adv: batadv0: Adding interface: batadv_slave_0
[   96.292996][ T5876] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   96.319617][ T5876] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   96.332641][ T5876] batman_adv: batadv0: Adding interface: batadv_slave_1
[   96.339737][ T5876] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   96.365820][ T5876] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   96.412167][ T5876] hsr_slave_0: entered promiscuous mode
[   96.418525][ T5876] hsr_slave_1: entered promiscuous mode
[   96.570176][ T5876] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   96.582434][ T5876] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   96.593301][ T5876] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   96.603886][ T5876] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   96.635790][ T5876] bridge0: port 2(bridge_slave_1) entered blocking state
[   96.643140][ T5876] bridge0: port 2(bridge_slave_1) entered forwarding state
[   96.651105][ T5876] bridge0: port 1(bridge_slave_0) entered blocking state
[   96.658220][ T5876] bridge0: port 1(bridge_slave_0) entered forwarding state
[   96.715911][ T5876] 8021q: adding VLAN 0 to HW filter on device bond0
[   96.735002][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   96.743989][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   96.762843][ T5876] 8021q: adding VLAN 0 to HW filter on device team0
[   96.776992][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[   96.784135][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[   96.798254][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[   96.805528][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[   96.995128][ T5876] 8021q: adding VLAN 0 to HW filter on device batadv0
[   97.036382][ T5876] veth0_vlan: entered promiscuous mode
[   97.047630][ T5876] veth1_vlan: entered promiscuous mode
[   97.076647][ T5876] veth0_macvtap: entered promiscuous mode
[   97.086649][ T5876] veth1_macvtap: entered promiscuous mode
[   97.109060][ T5876] batman_adv: batadv0: Interface activated: batadv_slave_0
[   97.124557][ T5876] batman_adv: batadv0: Interface activated: batadv_slave_1
[   97.139032][   T49] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   97.148288][   T49] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   97.160639][   T49] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   97.170453][   T36] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   97.281756][ T5876] syz-executor (5876) used greatest stack depth: 19896 bytes left
[   97.312757][   T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.369169][   T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.424523][   T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.513098][   T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.553602][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   98.561597][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   98.569181][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   98.578021][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   98.587433][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   99.301381][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.318446][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.364899][   T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.373702][   T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.747938][   T12] bridge_slave_1: left allmulticast mode
[   99.754163][   T12] bridge_slave_1: left promiscuous mode
[   99.760971][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   99.774280][   T12] bridge_slave_0: left allmulticast mode
[   99.780053][   T12] bridge_slave_0: left promiscuous mode
[   99.786451][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  100.135218][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  100.147704][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  100.158533][   T12] bond0 (unregistering): Released all slaves
[  100.312746][   T12] hsr_slave_0: left promiscuous mode
[  100.319013][   T12] hsr_slave_1: left promiscuous mode
[  100.328643][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  100.346039][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  100.358327][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  100.372267][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  100.394290][   T12] veth1_macvtap: left promiscuous mode
[  100.406391][   T12] veth0_macvtap: left promiscuous mode
[  100.412617][   T12] veth1_vlan: left promiscuous mode
[  100.418103][   T12] veth0_vlan: left promiscuous mode
[  100.804354][   T12] team0 (unregistering): Port device team_slave_1 removed
[  100.836597][   T12] team0 (unregistering): Port device team_slave_0 removed
2025/07/13 15:08:44 executed programs: 0
[  102.051265][ T5171] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  102.059340][ T5171] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  102.066863][ T5171] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  102.075046][ T5171] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  102.084881][ T5171] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  102.707316][ T5984] chnl_net:caif_netlink_parms(): no params data found
[  103.049248][ T5984] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.056491][ T5984] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.064164][ T5984] bridge_slave_0: entered allmulticast mode
[  103.071249][ T5984] bridge_slave_0: entered promiscuous mode
[  103.085970][ T5984] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.100414][ T5984] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.107692][ T5984] bridge_slave_1: entered allmulticast mode
[  103.117442][ T5984] bridge_slave_1: entered promiscuous mode
[  103.224492][ T5984] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  103.247193][ T5984] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  103.362415][ T5984] team0: Port device team_slave_0 added
[  103.380732][ T5984] team0: Port device team_slave_1 added
[  103.429641][ T5984] batman_adv: batadv0: Adding interface: batadv_slave_0
[  103.436726][ T5984] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  103.463247][ T5984] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  103.478084][ T5984] batman_adv: batadv0: Adding interface: batadv_slave_1
[  103.485538][ T5984] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  103.511835][ T5984] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  103.603364][ T5984] hsr_slave_0: entered promiscuous mode
[  103.611825][ T5984] hsr_slave_1: entered promiscuous mode
[  104.130111][   T51] Bluetooth: hci0: command tx timeout
[  104.167573][ T5984] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  104.179683][ T5984] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  104.194443][ T5984] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  104.205706][ T5984] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  104.323484][ T5984] 8021q: adding VLAN 0 to HW filter on device bond0
[  104.350209][ T5984] 8021q: adding VLAN 0 to HW filter on device team0
[  104.365885][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.373134][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  104.398380][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.405599][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  104.678605][ T5984] 8021q: adding VLAN 0 to HW filter on device batadv0
[  104.733999][ T5984] veth0_vlan: entered promiscuous mode
[  104.748008][ T5984] veth1_vlan: entered promiscuous mode
[  104.786983][ T5984] veth0_macvtap: entered promiscuous mode
[  104.798854][ T5984] veth1_macvtap: entered promiscuous mode
[  104.826540][ T5984] batman_adv: batadv0: Interface activated: batadv_slave_0
[  104.843154][ T5984] batman_adv: batadv0: Interface activated: batadv_slave_1
[  104.859446][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  104.870512][ T1119] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  104.898404][ T1119] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  104.908041][ T1119] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  104.982837][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  104.995122][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.038766][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.047505][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.375391][ T6079] 
[  105.377768][ T6079] =====================================
[  105.383322][ T6079] WARNING: bad unlock balance detected!
[  105.388878][ T6079] 6.16.0-rc5-next-20250711-syzkaller #0 Not tainted
[  105.395466][ T6079] -------------------------------------
[  105.401003][ T6079] syz.0.21/6079 is trying to release lock (vm_lock) at:
[  105.407947][ T6079] [<ffffffff825aa9e7>] query_matching_vma+0x2f7/0x5c0
[  105.414752][ T6079] but there are no more locks to release!
[  105.420462][ T6079] 
[  105.420462][ T6079] other info that might help us debug this:
[  105.428515][ T6079] 2 locks held by syz.0.21/6079:
[  105.433454][ T6079]  #0: ffff8880752c96c8 (vm_lock){++++}-{0:0}, at: lock_next_vma+0x146/0xdc0
[  105.442254][ T6079]  #1: ffffffff8e53c5a0 (rcu_read_lock){....}-{1:3}, at: query_matching_vma+0x141/0x5c0
[  105.452008][ T6079] 
[  105.452008][ T6079] stack backtrace:
[  105.457910][ T6079] CPU: 0 UID: 0 PID: 6079 Comm: syz.0.21 Not tainted 6.16.0-rc5-next-20250711-syzkaller #0 PREEMPT(full) 
[  105.457929][ T6079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  105.457945][ T6079] Call Trace:
[  105.457952][ T6079]  <TASK>
[  105.457958][ T6079]  dump_stack_lvl+0x189/0x250
[  105.457984][ T6079]  ? __pfx_dump_stack_lvl+0x10/0x10
[  105.458005][ T6079]  ? __pfx__printk+0x10/0x10
[  105.458028][ T6079]  ? print_lock_name+0xde/0x100
[  105.458049][ T6079]  ? query_matching_vma+0x2f7/0x5c0
[  105.458068][ T6079]  print_unlock_imbalance_bug+0xdc/0xf0
[  105.458091][ T6079]  lock_release+0x269/0x3e0
[  105.458108][ T6079]  ? query_matching_vma+0x2f7/0x5c0
[  105.458128][ T6079]  ? query_matching_vma+0x141/0x5c0
[  105.458146][ T6079]  unlock_vma+0x70/0x180
[  105.458164][ T6079]  ? query_matching_vma+0x141/0x5c0
[  105.458182][ T6079]  query_matching_vma+0x2f7/0x5c0
[  105.458208][ T6079]  procfs_procmap_ioctl+0x3f9/0xd50
[  105.458229][ T6079]  ? __pfx_procfs_procmap_ioctl+0x10/0x10
[  105.458251][ T6079]  ? __fget_files+0x2a/0x420
[  105.458270][ T6079]  ? __fget_files+0x2a/0x420
[  105.458287][ T6079]  ? __fget_files+0x3a0/0x420
[  105.458304][ T6079]  ? __fget_files+0x2a/0x420
[  105.458323][ T6079]  ? bpf_lsm_file_ioctl+0x9/0x20
[  105.458344][ T6079]  ? __pfx_procfs_procmap_ioctl+0x10/0x10
[  105.458362][ T6079]  __se_sys_ioctl+0xf9/0x170
[  105.458387][ T6079]  do_syscall_64+0xfa/0x3b0
[  105.458403][ T6079]  ? lockdep_hardirqs_on+0x9c/0x150
[  105.458418][ T6079]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.458437][ T6079]  ? clear_bhb_loop+0x60/0xb0
[  105.458454][ T6079]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.458468][ T6079] RIP: 0033:0x7fa16d38e929
[  105.458486][ T6079] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.458499][ T6079] RSP: 002b:00007fa16e167038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  105.458514][ T6079] RAX: ffffffffffffffda RBX: 00007fa16d5b5fa0 RCX: 00007fa16d38e929
[  105.458525][ T6079] RDX: 0000200000000180 RSI: 00000000c0686611 RDI: 0000000000000003
[  105.458535][ T6079] RBP: 00007fa16d410b39 R08: 0000000000000000 R09: 0000000000000000
[  105.458544][ T6079] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  105.458553][ T6079] R13: 0000000000000000 R14: 00007fa16d5b5fa0 R15: 00007ffedd07ab28
[  105.458569][ T6079]  </TASK>
[  106.219445][   T51] Bluetooth: hci0: command tx timeout
[  108.289471][   T51] Bluetooth: hci0: command tx timeout
[  110.370054][   T51] Bluetooth: hci0: command tx timeout