last executing test programs: 0s ago: executing program 3 (id=4): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x3ffffffffffffda, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f0000000000)='./bus\x00', 0x0, &(0x7f0000001900)=ANY=[], 0x1, 0x1d2, &(0x7f0000000580)="$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") r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000001, 0x10012, r3, 0x2a065000) bpf$MAP_CREATE(0x0, 0x0, 0x0) msgget$private(0x0, 0x0) msgctl$IPC_SET(0x0, 0x1, 0x0) r4 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r4, &(0x7f0000000140)={0x2, 0x0, @multicast2}, 0x10) r5 = socket$nl_route(0x10, 0x3, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) sendmsg$nl_route_sched(r5, 0x0, 0x0) sendmmsg$inet(r4, &(0x7f0000000d80), 0x0, 0x0) sched_setscheduler(0x0, 0x0, &(0x7f0000000080)) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.170' (ED25519) to the list of known hosts. [ 50.187728][ T5215] cgroup: Unknown subsys name 'net' [ 50.319424][ T5215] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 51.683574][ T5215] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 54.791427][ T5229] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 54.799343][ T5229] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 54.807733][ T5229] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 54.815541][ T5229] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 54.817760][ T5240] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 54.822861][ T5229] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 54.833720][ T5240] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 54.838194][ T5229] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 54.851951][ T5229] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 54.852865][ T5240] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 54.866041][ T5242] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 54.874350][ T5240] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 54.881387][ T5239] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 54.889850][ T5240] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 54.898516][ T5239] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 54.904166][ T4629] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 54.913837][ T4629] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 54.921110][ T4629] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 54.930145][ T4629] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 54.933230][ T5239] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 54.939900][ T54] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 54.946102][ T5240] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 54.951904][ T4629] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 54.959190][ T5240] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 54.973733][ T5240] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 54.977325][ T4629] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 54.988396][ T5240] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 55.009515][ T5240] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 55.017213][ T5240] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 55.024805][ T5240] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 55.423259][ T5232] chnl_net:caif_netlink_parms(): no params data found [ 55.454372][ T5225] chnl_net:caif_netlink_parms(): no params data found [ 55.483022][ T5226] chnl_net:caif_netlink_parms(): no params data found [ 55.560108][ T5230] chnl_net:caif_netlink_parms(): no params data found [ 55.592460][ T5232] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.600126][ T5232] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.608478][ T5232] bridge_slave_0: entered allmulticast mode [ 55.615478][ T5232] bridge_slave_0: entered promiscuous mode [ 55.642871][ T5237] chnl_net:caif_netlink_parms(): no params data found [ 55.659716][ T5232] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.667266][ T5232] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.674659][ T5232] bridge_slave_1: entered allmulticast mode [ 55.681176][ T5232] bridge_slave_1: entered promiscuous mode [ 55.761715][ T5225] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.770319][ T5225] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.779519][ T5225] bridge_slave_0: entered allmulticast mode [ 55.787584][ T5225] bridge_slave_0: entered promiscuous mode [ 55.795576][ T5225] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.802656][ T5225] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.810025][ T5225] bridge_slave_1: entered allmulticast mode [ 55.817120][ T5225] bridge_slave_1: entered promiscuous mode [ 55.826261][ T5232] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 55.837278][ T5232] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 55.849323][ T5226] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.856455][ T5226] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.863641][ T5226] bridge_slave_0: entered allmulticast mode [ 55.870245][ T5226] bridge_slave_0: entered promiscuous mode [ 55.899512][ T5226] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.906785][ T5226] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.913989][ T5226] bridge_slave_1: entered allmulticast mode [ 55.920468][ T5226] bridge_slave_1: entered promiscuous mode [ 55.975147][ T5225] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 55.987825][ T5232] team0: Port device team_slave_0 added [ 55.996167][ T5232] team0: Port device team_slave_1 added [ 56.011105][ T5226] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 56.022605][ T5226] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 56.032018][ T5237] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.042171][ T5237] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.049917][ T5237] bridge_slave_0: entered allmulticast mode [ 56.057196][ T5237] bridge_slave_0: entered promiscuous mode [ 56.065445][ T5225] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 56.100982][ T5237] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.108203][ T5237] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.118520][ T5237] bridge_slave_1: entered allmulticast mode [ 56.125335][ T5237] bridge_slave_1: entered promiscuous mode [ 56.149407][ T5230] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.156880][ T5230] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.164813][ T5230] bridge_slave_0: entered allmulticast mode [ 56.171284][ T5230] bridge_slave_0: entered promiscuous mode [ 56.190902][ T5226] team0: Port device team_slave_0 added [ 56.198051][ T5226] team0: Port device team_slave_1 added [ 56.213230][ T5225] team0: Port device team_slave_0 added [ 56.219781][ T5232] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 56.227151][ T5232] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 56.253431][ T5232] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 56.266656][ T5232] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 56.273697][ T5232] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 56.299788][ T5232] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 56.311255][ T5230] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.318622][ T5230] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.325988][ T5230] bridge_slave_1: entered allmulticast mode [ 56.332547][ T5230] bridge_slave_1: entered promiscuous mode [ 56.352105][ T5237] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 56.362644][ T5225] team0: Port device team_slave_1 added [ 56.396301][ T5226] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 56.403348][ T5226] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 56.429384][ T5226] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 56.441840][ T5237] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 56.475646][ T5226] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 56.482611][ T5226] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 56.509046][ T5226] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 56.539832][ T5225] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 56.547591][ T5225] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 56.579489][ T5225] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 56.593907][ T5225] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 56.600963][ T5225] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 56.627743][ T5225] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 56.640655][ T5230] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 56.655356][ T5230] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 56.674990][ T5232] hsr_slave_0: entered promiscuous mode [ 56.681511][ T5232] hsr_slave_1: entered promiscuous mode [ 56.716736][ T5237] team0: Port device team_slave_0 added [ 56.758932][ T5230] team0: Port device team_slave_0 added [ 56.767876][ T5237] team0: Port device team_slave_1 added [ 56.786260][ T5226] hsr_slave_0: entered promiscuous mode [ 56.792830][ T5226] hsr_slave_1: entered promiscuous mode [ 56.798873][ T5226] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 56.806854][ T5226] Cannot create hsr debugfs directory [ 56.817751][ T5225] hsr_slave_0: entered promiscuous mode [ 56.824121][ T5225] hsr_slave_1: entered promiscuous mode [ 56.830065][ T5225] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 56.837832][ T5225] Cannot create hsr debugfs directory [ 56.854627][ T5230] team0: Port device team_slave_1 added [ 56.874074][ T5237] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 56.881031][ T5237] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 56.908331][ T5237] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 56.944390][ T5237] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 56.951339][ T5237] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 56.977532][ T5237] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 57.015964][ T5230] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 57.023371][ T5230] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 57.049366][ T5230] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 57.060843][ T5229] Bluetooth: hci4: command tx timeout [ 57.062486][ T5230] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 57.066783][ T5240] Bluetooth: hci3: command tx timeout [ 57.073373][ T4629] Bluetooth: hci0: command tx timeout [ 57.073590][ T4629] Bluetooth: hci1: command tx timeout [ 57.079165][ T5229] Bluetooth: hci2: command tx timeout [ 57.085252][ T5230] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 57.121774][ T5230] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 57.248320][ T5230] hsr_slave_0: entered promiscuous mode [ 57.254584][ T5230] hsr_slave_1: entered promiscuous mode [ 57.260445][ T5230] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 57.268224][ T5230] Cannot create hsr debugfs directory [ 57.288999][ T5237] hsr_slave_0: entered promiscuous mode [ 57.295939][ T5237] hsr_slave_1: entered promiscuous mode [ 57.301837][ T5237] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 57.309839][ T5237] Cannot create hsr debugfs directory [ 57.431104][ T5225] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 57.464254][ T5225] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 57.472660][ T5225] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 57.502752][ T5225] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 57.579241][ T5232] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 57.588470][ T5232] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 57.599762][ T5232] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 57.610614][ T5232] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 57.683513][ T5226] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 57.692297][ T5226] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 57.718546][ T5226] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 57.739696][ T5226] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 57.793171][ T5230] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 57.805485][ T5230] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 57.815497][ T5230] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 57.843178][ T5230] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 57.864084][ T5225] 8021q: adding VLAN 0 to HW filter on device bond0 [ 57.881036][ T5237] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 57.898294][ T5237] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 57.933313][ T5237] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 57.942043][ T5237] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 57.954953][ T5232] 8021q: adding VLAN 0 to HW filter on device bond0 [ 57.964596][ T5225] 8021q: adding VLAN 0 to HW filter on device team0 [ 58.014123][ T3614] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.021317][ T3614] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.038251][ T1120] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.045412][ T1120] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.067145][ T5232] 8021q: adding VLAN 0 to HW filter on device team0 [ 58.119001][ T1878] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.126127][ T1878] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.145139][ T5230] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.158577][ T1878] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.165691][ T1878] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.209858][ T5226] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.274529][ T5230] 8021q: adding VLAN 0 to HW filter on device team0 [ 58.292117][ T5237] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.338992][ T5226] 8021q: adding VLAN 0 to HW filter on device team0 [ 58.357142][ T5237] 8021q: adding VLAN 0 to HW filter on device team0 [ 58.381274][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.388413][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.401991][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.409086][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.418304][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.425456][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.442387][ T1120] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.449536][ T1120] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.491148][ T3614] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.498293][ T3614] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.541622][ T3614] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.548718][ T3614] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.599432][ T5225] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 58.622065][ T5232] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 58.780650][ T5232] veth0_vlan: entered promiscuous mode [ 58.842576][ T5225] veth0_vlan: entered promiscuous mode [ 58.875399][ T5232] veth1_vlan: entered promiscuous mode [ 58.890525][ T5225] veth1_vlan: entered promiscuous mode [ 58.975689][ T5225] veth0_macvtap: entered promiscuous mode [ 59.001514][ T5225] veth1_macvtap: entered promiscuous mode [ 59.017727][ T5232] veth0_macvtap: entered promiscuous mode [ 59.046595][ T5232] veth1_macvtap: entered promiscuous mode [ 59.070474][ T5237] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 59.095395][ T5225] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 59.109880][ T5226] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 59.125236][ T5225] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 59.142457][ T5229] Bluetooth: hci2: command tx timeout [ 59.143048][ T5238] Bluetooth: hci1: command tx timeout [ 59.148692][ T5240] Bluetooth: hci3: command tx timeout [ 59.154109][ T4629] Bluetooth: hci4: command tx timeout [ 59.158602][ T5229] Bluetooth: hci0: command tx timeout [ 59.172875][ T5232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 59.183531][ T5232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.194672][ T5232] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 59.218118][ T5230] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 59.228310][ T5225] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.239386][ T5225] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.249047][ T5225] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.257938][ T5225] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.281791][ T5237] veth0_vlan: entered promiscuous mode [ 59.289649][ T5232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 59.301480][ T5232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.319793][ T5232] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 59.338194][ T5232] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.350719][ T5232] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.365966][ T5232] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.378490][ T5232] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.428376][ T5237] veth1_vlan: entered promiscuous mode [ 59.537559][ T5237] veth0_macvtap: entered promiscuous mode [ 59.554198][ T5226] veth0_vlan: entered promiscuous mode [ 59.592639][ T5237] veth1_macvtap: entered promiscuous mode [ 59.619595][ T1120] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 59.628283][ T5226] veth1_vlan: entered promiscuous mode [ 59.640188][ T1120] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 59.643310][ T5230] veth0_vlan: entered promiscuous mode [ 59.685496][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 59.702435][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 59.717449][ T5237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 59.731905][ T5237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.742026][ T5237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 59.752528][ T5237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.763695][ T5237] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 59.781955][ T5226] veth0_macvtap: entered promiscuous mode [ 59.797161][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 59.809529][ T5230] veth1_vlan: entered promiscuous mode [ 59.812818][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 59.824148][ T5237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 59.837236][ T5237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.847336][ T5237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 59.858204][ T5237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.869142][ T5237] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 59.885497][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 59.899810][ T5226] veth1_macvtap: entered promiscuous mode [ 59.913105][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 59.948268][ T5230] veth0_macvtap: entered promiscuous mode [ 59.978474][ T5237] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.003764][ T5237] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.014684][ T5237] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.025903][ T5237] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.039013][ T5226] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 60.063697][ T5226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.075088][ T5226] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 60.086711][ T5226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.097130][ T5226] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 60.118671][ T5226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.140175][ T5226] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 60.163405][ T5230] veth1_macvtap: entered promiscuous mode [ 60.192057][ T5230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 60.202991][ T5230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.213320][ T5230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 60.224084][ T5230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.234582][ T5230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 60.245276][ T5230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.256417][ T5230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 60.267061][ T5230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.283153][ T5230] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 60.342353][ T5312] loop3: detected capacity change from 0 to 8 [ 60.456525][ T5312] ================================================================== [ 60.464621][ T5312] BUG: KASAN: slab-use-after-free in squashfs_readahead+0x210c/0x2680 [ 60.472887][ T5312] Read of size 4 at addr ffff88802bb55c40 by task syz.3.4/5312 [ 60.480427][ T5312] [ 60.482755][ T5312] CPU: 0 UID: 0 PID: 5312 Comm: syz.3.4 Not tainted 6.11.0-rc4-next-20240822-syzkaller #0 [ 60.492648][ T5312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 60.502702][ T5312] Call Trace: [ 60.505988][ T5312] [ 60.508923][ T5312] dump_stack_lvl+0x241/0x360 [ 60.513614][ T5312] ? __pfx_dump_stack_lvl+0x10/0x10 [ 60.518819][ T5312] ? __pfx__printk+0x10/0x10 [ 60.523425][ T5312] ? _printk+0xd5/0x120 [ 60.527580][ T5312] ? __virt_addr_valid+0x183/0x530 [ 60.532702][ T5312] ? __virt_addr_valid+0x183/0x530 [ 60.537826][ T5312] print_report+0x169/0x550 [ 60.542339][ T5312] ? __virt_addr_valid+0x183/0x530 [ 60.547452][ T5312] ? __virt_addr_valid+0x183/0x530 [ 60.552563][ T5312] ? __virt_addr_valid+0x45f/0x530 [ 60.557686][ T5312] ? __phys_addr+0xba/0x170 [ 60.562203][ T5312] ? squashfs_readahead+0x210c/0x2680 [ 60.567583][ T5312] kasan_report+0x143/0x180 [ 60.572095][ T5312] ? squashfs_readahead+0x210c/0x2680 [ 60.577474][ T5312] squashfs_readahead+0x210c/0x2680 [ 60.582686][ T5312] ? squashfs_readahead+0x6f0/0x2680 [ 60.587978][ T5312] ? __pfx_squashfs_readahead+0x10/0x10 [ 60.593531][ T5312] ? __pfx_squashfs_readahead+0x10/0x10 [ 60.599086][ T5312] read_pages+0x17e/0x840 [ 60.603429][ T5312] ? percpu_ref_put+0x19/0x180 [ 60.608212][ T5312] ? __pfx_read_pages+0x10/0x10 [ 60.613067][ T5312] ? filemap_add_folio+0x26d/0x650 [ 60.618181][ T5312] ? __pfx_filemap_add_folio+0x10/0x10 [ 60.623643][ T5312] page_cache_ra_unbounded+0x6ce/0x7f0 [ 60.629108][ T5312] filemap_get_pages+0x543/0x2330 [ 60.634146][ T5312] ? __pfx_filemap_get_pages+0x10/0x10 [ 60.639609][ T5312] ? __pfx___might_resched+0x10/0x10 [ 60.644904][ T5312] filemap_read+0x457/0xfa0 [ 60.649422][ T5312] ? __pfx_filemap_read+0x10/0x10 [ 60.654459][ T5312] ? iov_iter_kvec+0x4e/0x180 [ 60.659145][ T5312] __kernel_read+0x532/0x9f0 [ 60.663735][ T5312] ? do_sys_openat2+0x13e/0x1d0 [ 60.668596][ T5312] ? __x64_sys_openat+0x247/0x2a0 [ 60.673638][ T5312] ? __pfx___kernel_read+0x10/0x10 [ 60.678767][ T5312] integrity_kernel_read+0xb0/0x100 [ 60.683964][ T5312] ? __pfx_integrity_kernel_read+0x10/0x10 [ 60.689759][ T5312] ? ima_calc_file_hash+0xab7/0x1b30 [ 60.695038][ T5312] ? __kmalloc_cache_noprof+0x19c/0x2c0 [ 60.700594][ T5312] ima_calc_file_hash+0xaef/0x1b30 [ 60.705718][ T5312] ? __pfx_ima_calc_file_hash+0x10/0x10 [ 60.711260][ T5312] ? _raw_spin_unlock_irqrestore+0x130/0x140 [ 60.717245][ T5312] ? __x64_sys_openat+0x247/0x2a0 [ 60.722264][ T5312] ? do_syscall_64+0xf3/0x230 [ 60.726933][ T5312] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 60.732994][ T5312] ? mark_lock+0x9a/0x360 [ 60.737320][ T5312] ? make_vfsgid+0x46/0x90 [ 60.741725][ T5312] ? generic_fillattr+0x59c/0x840 [ 60.746767][ T5312] ima_collect_measurement+0x526/0xb20 [ 60.752235][ T5312] ? __pfx_ima_collect_measurement+0x10/0x10 [ 60.758224][ T5312] ? squashfs_xattr_handler_get+0x585/0x900 [ 60.764132][ T5312] ? ima_get_hash_algo+0x156/0x4d0 [ 60.769236][ T5312] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 60.774687][ T5312] process_measurement+0x1357/0x1fb0 [ 60.779972][ T5312] ? __pfx_process_measurement+0x10/0x10 [ 60.785601][ T5312] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 60.791583][ T5312] ? irqentry_exit+0x63/0x90 [ 60.796165][ T5312] ? lockdep_hardirqs_on+0x99/0x150 [ 60.801353][ T5312] ? inode_to_bdi+0x69/0xf0 [ 60.805845][ T5312] ? apparmor_current_getsecid_subj+0xde/0x1b0 [ 60.811995][ T5312] ima_file_check+0xf2/0x170 [ 60.816579][ T5312] ? __pfx_ima_file_check+0x10/0x10 [ 60.821771][ T5312] security_file_post_open+0xb9/0x280 [ 60.827155][ T5312] path_openat+0x2cd0/0x3590 [ 60.831750][ T5312] ? __pfx_path_openat+0x10/0x10 [ 60.836683][ T5312] do_filp_open+0x235/0x490 [ 60.841183][ T5312] ? __pfx_do_filp_open+0x10/0x10 [ 60.846215][ T5312] ? _raw_spin_unlock+0x28/0x50 [ 60.851059][ T5312] ? alloc_fd+0x5a1/0x640 [ 60.855387][ T5312] do_sys_openat2+0x13e/0x1d0 [ 60.860059][ T5312] ? __pfx_do_sys_openat2+0x10/0x10 [ 60.865255][ T5312] __x64_sys_openat+0x247/0x2a0 [ 60.870099][ T5312] ? __pfx___x64_sys_openat+0x10/0x10 [ 60.875470][ T5312] ? do_syscall_64+0x100/0x230 [ 60.880229][ T5312] ? do_syscall_64+0xb6/0x230 [ 60.884898][ T5312] do_syscall_64+0xf3/0x230 [ 60.889391][ T5312] ? clear_bhb_loop+0x35/0x90 [ 60.894061][ T5312] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 60.899953][ T5312] RIP: 0033:0x7fa1c2f79e79 [ 60.904364][ T5312] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 60.923960][ T5312] RSP: 002b:00007fa1c3d6d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 60.932359][ T5312] RAX: ffffffffffffffda RBX: 00007fa1c3116130 RCX: 00007fa1c2f79e79 [ 60.940315][ T5312] RDX: 0000000000000000 RSI: 0000000020000100 RDI: ffffffffffffff9c [ 60.948274][ T5312] RBP: 00007fa1c2fe7916 R08: 0000000000000000 R09: 0000000000000000 [ 60.956230][ T5312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 60.964187][ T5312] R13: 0000000000000000 R14: 00007fa1c3116130 R15: 00007ffde5820628 [ 60.972153][ T5312] [ 60.975155][ T5312] [ 60.977475][ T5312] Allocated by task 5312: [ 60.981785][ T5312] kasan_save_track+0x3f/0x80 [ 60.986453][ T5312] __kasan_kmalloc+0x98/0xb0 [ 60.991028][ T5312] __kmalloc_cache_noprof+0x19c/0x2c0 [ 60.996389][ T5312] squashfs_page_actor_init_special+0x64/0x440 [ 61.002534][ T5312] squashfs_readahead+0x188f/0x2680 [ 61.007719][ T5312] read_pages+0x17e/0x840 [ 61.012031][ T5312] page_cache_ra_unbounded+0x6ce/0x7f0 [ 61.017476][ T5312] filemap_get_pages+0x543/0x2330 [ 61.022486][ T5312] filemap_read+0x457/0xfa0 [ 61.026976][ T5312] __kernel_read+0x532/0x9f0 [ 61.031552][ T5312] integrity_kernel_read+0xb0/0x100 [ 61.036737][ T5312] ima_calc_file_hash+0xaef/0x1b30 [ 61.041852][ T5312] ima_collect_measurement+0x526/0xb20 [ 61.047318][ T5312] process_measurement+0x1357/0x1fb0 [ 61.052595][ T5312] ima_file_check+0xf2/0x170 [ 61.057179][ T5312] security_file_post_open+0xb9/0x280 [ 61.062540][ T5312] path_openat+0x2cd0/0x3590 [ 61.067115][ T5312] do_filp_open+0x235/0x490 [ 61.071606][ T5312] do_sys_openat2+0x13e/0x1d0 [ 61.076274][ T5312] __x64_sys_openat+0x247/0x2a0 [ 61.081112][ T5312] do_syscall_64+0xf3/0x230 [ 61.085601][ T5312] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 61.091481][ T5312] [ 61.093792][ T5312] Freed by task 5312: [ 61.097750][ T5312] kasan_save_track+0x3f/0x80 [ 61.102414][ T5312] kasan_save_free_info+0x40/0x50 [ 61.107431][ T5312] __kasan_slab_free+0x59/0x70 [ 61.112178][ T5312] kfree+0x196/0x3e0 [ 61.116060][ T5312] squashfs_readahead+0x195b/0x2680 [ 61.121252][ T5312] read_pages+0x17e/0x840 [ 61.125567][ T5312] page_cache_ra_unbounded+0x6ce/0x7f0 [ 61.131009][ T5312] filemap_get_pages+0x543/0x2330 [ 61.136019][ T5312] filemap_read+0x457/0xfa0 [ 61.140510][ T5312] __kernel_read+0x532/0x9f0 [ 61.145085][ T5312] integrity_kernel_read+0xb0/0x100 [ 61.150272][ T5312] ima_calc_file_hash+0xaef/0x1b30 [ 61.155375][ T5312] ima_collect_measurement+0x526/0xb20 [ 61.160826][ T5312] process_measurement+0x1357/0x1fb0 [ 61.166101][ T5312] ima_file_check+0xf2/0x170 [ 61.170674][ T5312] security_file_post_open+0xb9/0x280 [ 61.176034][ T5312] path_openat+0x2cd0/0x3590 [ 61.180607][ T5312] do_filp_open+0x235/0x490 [ 61.185092][ T5312] do_sys_openat2+0x13e/0x1d0 [ 61.189758][ T5312] __x64_sys_openat+0x247/0x2a0 [ 61.194597][ T5312] do_syscall_64+0xf3/0x230 [ 61.199089][ T5312] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 61.204966][ T5312] [ 61.207274][ T5312] The buggy address belongs to the object at ffff88802bb55c00 [ 61.207274][ T5312] which belongs to the cache kmalloc-96 of size 96 [ 61.221133][ T5312] The buggy address is located 64 bytes inside of [ 61.221133][ T5312] freed 96-byte region [ffff88802bb55c00, ffff88802bb55c60) [ 61.234749][ T5312] [ 61.237057][ T5312] The buggy address belongs to the physical page: [ 61.243455][ T5312] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2bb55 [ 61.252202][ T5312] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 61.259306][ T5312] page_type: 0xfdffffff(slab) [ 61.263972][ T5312] raw: 00fff00000000000 ffff888015841280 dead000000000100 dead000000000122 [ 61.272539][ T5312] raw: 0000000000000000 0000000080200020 00000001fdffffff 0000000000000000 [ 61.281099][ T5312] page dumped because: kasan: bad access detected [ 61.287498][ T5312] page_owner tracks the page as allocated [ 61.293192][ T5312] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x152cc0(GFP_USER|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 2633, tgid 2633 (kworker/0:3), ts 60282972002, free_ts 59835891875 [ 61.312274][ T5312] post_alloc_hook+0x1f3/0x230 [ 61.317025][ T5312] get_page_from_freelist+0x3131/0x3280 [ 61.322555][ T5312] __alloc_pages_noprof+0x29e/0x780 [ 61.327737][ T5312] alloc_slab_page+0x5f/0x120 [ 61.332483][ T5312] allocate_slab+0x5a/0x2f0 [ 61.336972][ T5312] ___slab_alloc+0xcd1/0x14b0 [ 61.341630][ T5312] __slab_alloc+0x58/0xa0 [ 61.345942][ T5312] __kmalloc_cache_noprof+0x1d5/0x2c0 [ 61.351300][ T5312] nsim_fib_event_work+0x19c5/0x4130 [ 61.356573][ T5312] process_scheduled_works+0xa63/0x1850 [ 61.362107][ T5312] worker_thread+0x86d/0xd10 [ 61.366687][ T5312] kthread+0x2f0/0x390 [ 61.370739][ T5312] ret_from_fork+0x4b/0x80 [ 61.375146][ T5312] ret_from_fork_asm+0x1a/0x30 [ 61.379897][ T5312] page last free pid 5230 tgid 5230 stack trace: [ 61.386202][ T5312] free_unref_page+0xc07/0xd90 [ 61.390947][ T5312] __put_partials+0xeb/0x130 [ 61.395521][ T5312] put_cpu_partial+0x17c/0x250 [ 61.400269][ T5312] __slab_free+0x2ea/0x3d0 [ 61.404668][ T5312] qlist_free_all+0x9e/0x140 [ 61.409246][ T5312] kasan_quarantine_reduce+0x14f/0x170 [ 61.414686][ T5312] __kasan_slab_alloc+0x23/0x80 [ 61.419522][ T5312] kmem_cache_alloc_node_noprof+0x16b/0x320 [ 61.425404][ T5312] __alloc_skb+0x1c3/0x440 [ 61.429810][ T5312] netlink_sendmsg+0x638/0xcb0 [ 61.434646][ T5312] __sock_sendmsg+0x221/0x270 [ 61.439307][ T5312] __sys_sendto+0x3a8/0x500 [ 61.443798][ T5312] __x64_sys_sendto+0xde/0x100 [ 61.448555][ T5312] do_syscall_64+0xf3/0x230 [ 61.453046][ T5312] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 61.458926][ T5312] [ 61.461231][ T5312] Memory state around the buggy address: [ 61.466841][ T5312] ffff88802bb55b00: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc [ 61.474884][ T5312] ffff88802bb55b80: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc [ 61.482924][ T5312] >ffff88802bb55c00: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc [ 61.490961][ T5312] ^ [ 61.497088][ T5312] ffff88802bb55c80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 61.505134][ T5312] ffff88802bb55d00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 61.513314][ T5312] ================================================================== [ 61.542469][ T5229] Bluetooth: hci0: command tx timeout [ 61.548925][ T5229] Bluetooth: hci3: command tx timeout [ 61.555311][ T5229] Bluetooth: hci1: command tx timeout [ 61.561042][ T5229] Bluetooth: hci4: command tx timeout [ 61.569080][ T5229] Bluetooth: hci2: command tx timeout [ 61.593932][ T5312] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 61.601148][ T5312] CPU: 1 UID: 0 PID: 5312 Comm: syz.3.4 Not tainted 6.11.0-rc4-next-20240822-syzkaller #0 [ 61.611042][ T5312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 61.621099][ T5312] Call Trace: [ 61.624367][ T5312] [ 61.627298][ T5312] dump_stack_lvl+0x241/0x360 [ 61.631972][ T5312] ? __pfx_dump_stack_lvl+0x10/0x10 [ 61.637163][ T5312] ? __pfx__printk+0x10/0x10 [ 61.641744][ T5312] ? preempt_schedule+0xe1/0xf0 [ 61.646583][ T5312] ? vscnprintf+0x5d/0x90 [ 61.650904][ T5312] panic+0x349/0x880 [ 61.654792][ T5312] ? check_panic_on_warn+0x21/0xb0 [ 61.659893][ T5312] ? __pfx_panic+0x10/0x10 [ 61.664309][ T5312] ? _raw_spin_unlock_irqrestore+0x130/0x140 [ 61.670277][ T5312] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 61.676596][ T5312] ? print_report+0x502/0x550 [ 61.681267][ T5312] check_panic_on_warn+0x86/0xb0 [ 61.686192][ T5312] ? squashfs_readahead+0x210c/0x2680 [ 61.691559][ T5312] end_report+0x77/0x160 [ 61.695793][ T5312] kasan_report+0x154/0x180 [ 61.700287][ T5312] ? squashfs_readahead+0x210c/0x2680 [ 61.705672][ T5312] squashfs_readahead+0x210c/0x2680 [ 61.710881][ T5312] ? squashfs_readahead+0x6f0/0x2680 [ 61.716165][ T5312] ? __pfx_squashfs_readahead+0x10/0x10 [ 61.721720][ T5312] ? __pfx_squashfs_readahead+0x10/0x10 [ 61.727271][ T5312] read_pages+0x17e/0x840 [ 61.731590][ T5312] ? percpu_ref_put+0x19/0x180 [ 61.736347][ T5312] ? __pfx_read_pages+0x10/0x10 [ 61.741184][ T5312] ? filemap_add_folio+0x26d/0x650 [ 61.746283][ T5312] ? __pfx_filemap_add_folio+0x10/0x10 [ 61.751731][ T5312] page_cache_ra_unbounded+0x6ce/0x7f0 [ 61.757182][ T5312] filemap_get_pages+0x543/0x2330 [ 61.762206][ T5312] ? __pfx_filemap_get_pages+0x10/0x10 [ 61.767665][ T5312] ? __pfx___might_resched+0x10/0x10 [ 61.772951][ T5312] filemap_read+0x457/0xfa0 [ 61.777454][ T5312] ? __pfx_filemap_read+0x10/0x10 [ 61.782473][ T5312] ? iov_iter_kvec+0x4e/0x180 [ 61.787144][ T5312] __kernel_read+0x532/0x9f0 [ 61.791723][ T5312] ? do_sys_openat2+0x13e/0x1d0 [ 61.796565][ T5312] ? __x64_sys_openat+0x247/0x2a0 [ 61.801581][ T5312] ? __pfx___kernel_read+0x10/0x10 [ 61.806686][ T5312] integrity_kernel_read+0xb0/0x100 [ 61.811876][ T5312] ? __pfx_integrity_kernel_read+0x10/0x10 [ 61.817671][ T5312] ? ima_calc_file_hash+0xab7/0x1b30 [ 61.822949][ T5312] ? __kmalloc_cache_noprof+0x19c/0x2c0 [ 61.828485][ T5312] ima_calc_file_hash+0xaef/0x1b30 [ 61.833596][ T5312] ? __pfx_ima_calc_file_hash+0x10/0x10 [ 61.839133][ T5312] ? _raw_spin_unlock_irqrestore+0x130/0x140 [ 61.845112][ T5312] ? __x64_sys_openat+0x247/0x2a0 [ 61.850125][ T5312] ? do_syscall_64+0xf3/0x230 [ 61.854817][ T5312] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 61.860877][ T5312] ? mark_lock+0x9a/0x360 [ 61.865194][ T5312] ? make_vfsgid+0x46/0x90 [ 61.869596][ T5312] ? generic_fillattr+0x59c/0x840 [ 61.874616][ T5312] ima_collect_measurement+0x526/0xb20 [ 61.880072][ T5312] ? __pfx_ima_collect_measurement+0x10/0x10 [ 61.886046][ T5312] ? squashfs_xattr_handler_get+0x585/0x900 [ 61.891941][ T5312] ? ima_get_hash_algo+0x156/0x4d0 [ 61.897038][ T5312] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 61.902486][ T5312] process_measurement+0x1357/0x1fb0 [ 61.907765][ T5312] ? __pfx_process_measurement+0x10/0x10 [ 61.913389][ T5312] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 61.919366][ T5312] ? irqentry_exit+0x63/0x90 [ 61.923941][ T5312] ? lockdep_hardirqs_on+0x99/0x150 [ 61.929125][ T5312] ? inode_to_bdi+0x69/0xf0 [ 61.933616][ T5312] ? apparmor_current_getsecid_subj+0xde/0x1b0 [ 61.939758][ T5312] ima_file_check+0xf2/0x170 [ 61.944338][ T5312] ? __pfx_ima_file_check+0x10/0x10 [ 61.949527][ T5312] security_file_post_open+0xb9/0x280 [ 61.954888][ T5312] path_openat+0x2cd0/0x3590 [ 61.959474][ T5312] ? __pfx_path_openat+0x10/0x10 [ 61.964403][ T5312] do_filp_open+0x235/0x490 [ 61.968895][ T5312] ? __pfx_do_filp_open+0x10/0x10 [ 61.973917][ T5312] ? _raw_spin_unlock+0x28/0x50 [ 61.978753][ T5312] ? alloc_fd+0x5a1/0x640 [ 61.983077][ T5312] do_sys_openat2+0x13e/0x1d0 [ 61.987752][ T5312] ? __pfx_do_sys_openat2+0x10/0x10 [ 61.992944][ T5312] __x64_sys_openat+0x247/0x2a0 [ 61.997786][ T5312] ? __pfx___x64_sys_openat+0x10/0x10 [ 62.003148][ T5312] ? do_syscall_64+0x100/0x230 [ 62.007900][ T5312] ? do_syscall_64+0xb6/0x230 [ 62.012561][ T5312] do_syscall_64+0xf3/0x230 [ 62.017050][ T5312] ? clear_bhb_loop+0x35/0x90 [ 62.021717][ T5312] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 62.027595][ T5312] RIP: 0033:0x7fa1c2f79e79 [ 62.031995][ T5312] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 62.051585][ T5312] RSP: 002b:00007fa1c3d6d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 62.059988][ T5312] RAX: ffffffffffffffda RBX: 00007fa1c3116130 RCX: 00007fa1c2f79e79 [ 62.067945][ T5312] RDX: 0000000000000000 RSI: 0000000020000100 RDI: ffffffffffffff9c [ 62.075911][ T5312] RBP: 00007fa1c2fe7916 R08: 0000000000000000 R09: 0000000000000000 [ 62.083873][ T5312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 62.091831][ T5312] R13: 0000000000000000 R14: 00007fa1c3116130 R15: 00007ffde5820628 [ 62.099797][ T5312] [ 62.103010][ T5312] Kernel Offset: disabled [ 62.107314][ T5312] Rebooting in 86400 seconds..