last executing test programs:
0s ago: executing program 3 (id=4):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x3ffffffffffffda, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f0000000000)='./bus\x00', 0x0, &(0x7f0000001900)=ANY=[], 0x1, 0x1d2, &(0x7f0000000580)="$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")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000001, 0x10012, r3, 0x2a065000)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
msgctl$IPC_SET(0x0, 0x1, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000000140)={0x2, 0x0, @multicast2}, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$nl_route_sched(r5, 0x0, 0x0)
sendmmsg$inet(r4, &(0x7f0000000d80), 0x0, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000080))
kernel console output (not intermixed with test programs):
Warning: Permanently added '10.128.0.170' (ED25519) to the list of known hosts.
[ 50.187728][ T5215] cgroup: Unknown subsys name 'net'
[ 50.319424][ T5215] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 51.683574][ T5215] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 54.791427][ T5229] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 54.799343][ T5229] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 54.807733][ T5229] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 54.815541][ T5229] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 54.817760][ T5240] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 54.822861][ T5229] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 54.833720][ T5240] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 54.838194][ T5229] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 54.851951][ T5229] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 54.852865][ T5240] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 54.866041][ T5242] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 54.874350][ T5240] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 54.881387][ T5239] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 54.889850][ T5240] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 54.898516][ T5239] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 54.904166][ T4629] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 54.913837][ T4629] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 54.921110][ T4629] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 54.930145][ T4629] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 54.933230][ T5239] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 54.939900][ T54] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 54.946102][ T5240] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 54.951904][ T4629] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 54.959190][ T5240] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 54.973733][ T5240] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 54.977325][ T4629] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 54.988396][ T5240] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 55.009515][ T5240] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 55.017213][ T5240] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 55.024805][ T5240] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 55.423259][ T5232] chnl_net:caif_netlink_parms(): no params data found
[ 55.454372][ T5225] chnl_net:caif_netlink_parms(): no params data found
[ 55.483022][ T5226] chnl_net:caif_netlink_parms(): no params data found
[ 55.560108][ T5230] chnl_net:caif_netlink_parms(): no params data found
[ 55.592460][ T5232] bridge0: port 1(bridge_slave_0) entered blocking state
[ 55.600126][ T5232] bridge0: port 1(bridge_slave_0) entered disabled state
[ 55.608478][ T5232] bridge_slave_0: entered allmulticast mode
[ 55.615478][ T5232] bridge_slave_0: entered promiscuous mode
[ 55.642871][ T5237] chnl_net:caif_netlink_parms(): no params data found
[ 55.659716][ T5232] bridge0: port 2(bridge_slave_1) entered blocking state
[ 55.667266][ T5232] bridge0: port 2(bridge_slave_1) entered disabled state
[ 55.674659][ T5232] bridge_slave_1: entered allmulticast mode
[ 55.681176][ T5232] bridge_slave_1: entered promiscuous mode
[ 55.761715][ T5225] bridge0: port 1(bridge_slave_0) entered blocking state
[ 55.770319][ T5225] bridge0: port 1(bridge_slave_0) entered disabled state
[ 55.779519][ T5225] bridge_slave_0: entered allmulticast mode
[ 55.787584][ T5225] bridge_slave_0: entered promiscuous mode
[ 55.795576][ T5225] bridge0: port 2(bridge_slave_1) entered blocking state
[ 55.802656][ T5225] bridge0: port 2(bridge_slave_1) entered disabled state
[ 55.810025][ T5225] bridge_slave_1: entered allmulticast mode
[ 55.817120][ T5225] bridge_slave_1: entered promiscuous mode
[ 55.826261][ T5232] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 55.837278][ T5232] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 55.849323][ T5226] bridge0: port 1(bridge_slave_0) entered blocking state
[ 55.856455][ T5226] bridge0: port 1(bridge_slave_0) entered disabled state
[ 55.863641][ T5226] bridge_slave_0: entered allmulticast mode
[ 55.870245][ T5226] bridge_slave_0: entered promiscuous mode
[ 55.899512][ T5226] bridge0: port 2(bridge_slave_1) entered blocking state
[ 55.906785][ T5226] bridge0: port 2(bridge_slave_1) entered disabled state
[ 55.913989][ T5226] bridge_slave_1: entered allmulticast mode
[ 55.920468][ T5226] bridge_slave_1: entered promiscuous mode
[ 55.975147][ T5225] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 55.987825][ T5232] team0: Port device team_slave_0 added
[ 55.996167][ T5232] team0: Port device team_slave_1 added
[ 56.011105][ T5226] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 56.022605][ T5226] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 56.032018][ T5237] bridge0: port 1(bridge_slave_0) entered blocking state
[ 56.042171][ T5237] bridge0: port 1(bridge_slave_0) entered disabled state
[ 56.049917][ T5237] bridge_slave_0: entered allmulticast mode
[ 56.057196][ T5237] bridge_slave_0: entered promiscuous mode
[ 56.065445][ T5225] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 56.100982][ T5237] bridge0: port 2(bridge_slave_1) entered blocking state
[ 56.108203][ T5237] bridge0: port 2(bridge_slave_1) entered disabled state
[ 56.118520][ T5237] bridge_slave_1: entered allmulticast mode
[ 56.125335][ T5237] bridge_slave_1: entered promiscuous mode
[ 56.149407][ T5230] bridge0: port 1(bridge_slave_0) entered blocking state
[ 56.156880][ T5230] bridge0: port 1(bridge_slave_0) entered disabled state
[ 56.164813][ T5230] bridge_slave_0: entered allmulticast mode
[ 56.171284][ T5230] bridge_slave_0: entered promiscuous mode
[ 56.190902][ T5226] team0: Port device team_slave_0 added
[ 56.198051][ T5226] team0: Port device team_slave_1 added
[ 56.213230][ T5225] team0: Port device team_slave_0 added
[ 56.219781][ T5232] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 56.227151][ T5232] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 56.253431][ T5232] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 56.266656][ T5232] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 56.273697][ T5232] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 56.299788][ T5232] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 56.311255][ T5230] bridge0: port 2(bridge_slave_1) entered blocking state
[ 56.318622][ T5230] bridge0: port 2(bridge_slave_1) entered disabled state
[ 56.325988][ T5230] bridge_slave_1: entered allmulticast mode
[ 56.332547][ T5230] bridge_slave_1: entered promiscuous mode
[ 56.352105][ T5237] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 56.362644][ T5225] team0: Port device team_slave_1 added
[ 56.396301][ T5226] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 56.403348][ T5226] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 56.429384][ T5226] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 56.441840][ T5237] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 56.475646][ T5226] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 56.482611][ T5226] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 56.509046][ T5226] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 56.539832][ T5225] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 56.547591][ T5225] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 56.579489][ T5225] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 56.593907][ T5225] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 56.600963][ T5225] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 56.627743][ T5225] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 56.640655][ T5230] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 56.655356][ T5230] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 56.674990][ T5232] hsr_slave_0: entered promiscuous mode
[ 56.681511][ T5232] hsr_slave_1: entered promiscuous mode
[ 56.716736][ T5237] team0: Port device team_slave_0 added
[ 56.758932][ T5230] team0: Port device team_slave_0 added
[ 56.767876][ T5237] team0: Port device team_slave_1 added
[ 56.786260][ T5226] hsr_slave_0: entered promiscuous mode
[ 56.792830][ T5226] hsr_slave_1: entered promiscuous mode
[ 56.798873][ T5226] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 56.806854][ T5226] Cannot create hsr debugfs directory
[ 56.817751][ T5225] hsr_slave_0: entered promiscuous mode
[ 56.824121][ T5225] hsr_slave_1: entered promiscuous mode
[ 56.830065][ T5225] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 56.837832][ T5225] Cannot create hsr debugfs directory
[ 56.854627][ T5230] team0: Port device team_slave_1 added
[ 56.874074][ T5237] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 56.881031][ T5237] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 56.908331][ T5237] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 56.944390][ T5237] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 56.951339][ T5237] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 56.977532][ T5237] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 57.015964][ T5230] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 57.023371][ T5230] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 57.049366][ T5230] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 57.060843][ T5229] Bluetooth: hci4: command tx timeout
[ 57.062486][ T5230] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 57.066783][ T5240] Bluetooth: hci3: command tx timeout
[ 57.073373][ T4629] Bluetooth: hci0: command tx timeout
[ 57.073590][ T4629] Bluetooth: hci1: command tx timeout
[ 57.079165][ T5229] Bluetooth: hci2: command tx timeout
[ 57.085252][ T5230] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 57.121774][ T5230] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 57.248320][ T5230] hsr_slave_0: entered promiscuous mode
[ 57.254584][ T5230] hsr_slave_1: entered promiscuous mode
[ 57.260445][ T5230] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 57.268224][ T5230] Cannot create hsr debugfs directory
[ 57.288999][ T5237] hsr_slave_0: entered promiscuous mode
[ 57.295939][ T5237] hsr_slave_1: entered promiscuous mode
[ 57.301837][ T5237] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 57.309839][ T5237] Cannot create hsr debugfs directory
[ 57.431104][ T5225] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 57.464254][ T5225] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 57.472660][ T5225] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 57.502752][ T5225] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 57.579241][ T5232] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 57.588470][ T5232] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 57.599762][ T5232] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 57.610614][ T5232] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 57.683513][ T5226] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 57.692297][ T5226] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 57.718546][ T5226] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 57.739696][ T5226] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 57.793171][ T5230] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 57.805485][ T5230] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 57.815497][ T5230] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 57.843178][ T5230] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 57.864084][ T5225] 8021q: adding VLAN 0 to HW filter on device bond0
[ 57.881036][ T5237] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 57.898294][ T5237] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 57.933313][ T5237] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 57.942043][ T5237] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 57.954953][ T5232] 8021q: adding VLAN 0 to HW filter on device bond0
[ 57.964596][ T5225] 8021q: adding VLAN 0 to HW filter on device team0
[ 58.014123][ T3614] bridge0: port 1(bridge_slave_0) entered blocking state
[ 58.021317][ T3614] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 58.038251][ T1120] bridge0: port 2(bridge_slave_1) entered blocking state
[ 58.045412][ T1120] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 58.067145][ T5232] 8021q: adding VLAN 0 to HW filter on device team0
[ 58.119001][ T1878] bridge0: port 1(bridge_slave_0) entered blocking state
[ 58.126127][ T1878] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 58.145139][ T5230] 8021q: adding VLAN 0 to HW filter on device bond0
[ 58.158577][ T1878] bridge0: port 2(bridge_slave_1) entered blocking state
[ 58.165691][ T1878] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 58.209858][ T5226] 8021q: adding VLAN 0 to HW filter on device bond0
[ 58.274529][ T5230] 8021q: adding VLAN 0 to HW filter on device team0
[ 58.292117][ T5237] 8021q: adding VLAN 0 to HW filter on device bond0
[ 58.338992][ T5226] 8021q: adding VLAN 0 to HW filter on device team0
[ 58.357142][ T5237] 8021q: adding VLAN 0 to HW filter on device team0
[ 58.381274][ T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 58.388413][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 58.401991][ T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 58.409086][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 58.418304][ T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 58.425456][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 58.442387][ T1120] bridge0: port 2(bridge_slave_1) entered blocking state
[ 58.449536][ T1120] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 58.491148][ T3614] bridge0: port 1(bridge_slave_0) entered blocking state
[ 58.498293][ T3614] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 58.541622][ T3614] bridge0: port 2(bridge_slave_1) entered blocking state
[ 58.548718][ T3614] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 58.599432][ T5225] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 58.622065][ T5232] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 58.780650][ T5232] veth0_vlan: entered promiscuous mode
[ 58.842576][ T5225] veth0_vlan: entered promiscuous mode
[ 58.875399][ T5232] veth1_vlan: entered promiscuous mode
[ 58.890525][ T5225] veth1_vlan: entered promiscuous mode
[ 58.975689][ T5225] veth0_macvtap: entered promiscuous mode
[ 59.001514][ T5225] veth1_macvtap: entered promiscuous mode
[ 59.017727][ T5232] veth0_macvtap: entered promiscuous mode
[ 59.046595][ T5232] veth1_macvtap: entered promiscuous mode
[ 59.070474][ T5237] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 59.095395][ T5225] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 59.109880][ T5226] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 59.125236][ T5225] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 59.142457][ T5229] Bluetooth: hci2: command tx timeout
[ 59.143048][ T5238] Bluetooth: hci1: command tx timeout
[ 59.148692][ T5240] Bluetooth: hci3: command tx timeout
[ 59.154109][ T4629] Bluetooth: hci4: command tx timeout
[ 59.158602][ T5229] Bluetooth: hci0: command tx timeout
[ 59.172875][ T5232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 59.183531][ T5232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 59.194672][ T5232] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 59.218118][ T5230] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 59.228310][ T5225] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 59.239386][ T5225] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 59.249047][ T5225] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 59.257938][ T5225] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 59.281791][ T5237] veth0_vlan: entered promiscuous mode
[ 59.289649][ T5232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 59.301480][ T5232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 59.319793][ T5232] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 59.338194][ T5232] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 59.350719][ T5232] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 59.365966][ T5232] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 59.378490][ T5232] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 59.428376][ T5237] veth1_vlan: entered promiscuous mode
[ 59.537559][ T5237] veth0_macvtap: entered promiscuous mode
[ 59.554198][ T5226] veth0_vlan: entered promiscuous mode
[ 59.592639][ T5237] veth1_macvtap: entered promiscuous mode
[ 59.619595][ T1120] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 59.628283][ T5226] veth1_vlan: entered promiscuous mode
[ 59.640188][ T1120] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 59.643310][ T5230] veth0_vlan: entered promiscuous mode
[ 59.685496][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 59.702435][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 59.717449][ T5237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 59.731905][ T5237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 59.742026][ T5237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 59.752528][ T5237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 59.763695][ T5237] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 59.781955][ T5226] veth0_macvtap: entered promiscuous mode
[ 59.797161][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 59.809529][ T5230] veth1_vlan: entered promiscuous mode
[ 59.812818][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 59.824148][ T5237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 59.837236][ T5237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 59.847336][ T5237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 59.858204][ T5237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 59.869142][ T5237] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 59.885497][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 59.899810][ T5226] veth1_macvtap: entered promiscuous mode
[ 59.913105][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 59.948268][ T5230] veth0_macvtap: entered promiscuous mode
[ 59.978474][ T5237] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 60.003764][ T5237] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 60.014684][ T5237] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 60.025903][ T5237] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 60.039013][ T5226] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 60.063697][ T5226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 60.075088][ T5226] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 60.086711][ T5226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 60.097130][ T5226] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 60.118671][ T5226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 60.140175][ T5226] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 60.163405][ T5230] veth1_macvtap: entered promiscuous mode
[ 60.192057][ T5230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 60.202991][ T5230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 60.213320][ T5230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 60.224084][ T5230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 60.234582][ T5230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 60.245276][ T5230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 60.256417][ T5230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 60.267061][ T5230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 60.283153][ T5230] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 60.342353][ T5312] loop3: detected capacity change from 0 to 8
[ 60.456525][ T5312] ==================================================================
[ 60.464621][ T5312] BUG: KASAN: slab-use-after-free in squashfs_readahead+0x210c/0x2680
[ 60.472887][ T5312] Read of size 4 at addr ffff88802bb55c40 by task syz.3.4/5312
[ 60.480427][ T5312]
[ 60.482755][ T5312] CPU: 0 UID: 0 PID: 5312 Comm: syz.3.4 Not tainted 6.11.0-rc4-next-20240822-syzkaller #0
[ 60.492648][ T5312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 60.502702][ T5312] Call Trace:
[ 60.505988][ T5312] <TASK>
[ 60.508923][ T5312] dump_stack_lvl+0x241/0x360
[ 60.513614][ T5312] ? __pfx_dump_stack_lvl+0x10/0x10
[ 60.518819][ T5312] ? __pfx__printk+0x10/0x10
[ 60.523425][ T5312] ? _printk+0xd5/0x120
[ 60.527580][ T5312] ? __virt_addr_valid+0x183/0x530
[ 60.532702][ T5312] ? __virt_addr_valid+0x183/0x530
[ 60.537826][ T5312] print_report+0x169/0x550
[ 60.542339][ T5312] ? __virt_addr_valid+0x183/0x530
[ 60.547452][ T5312] ? __virt_addr_valid+0x183/0x530
[ 60.552563][ T5312] ? __virt_addr_valid+0x45f/0x530
[ 60.557686][ T5312] ? __phys_addr+0xba/0x170
[ 60.562203][ T5312] ? squashfs_readahead+0x210c/0x2680
[ 60.567583][ T5312] kasan_report+0x143/0x180
[ 60.572095][ T5312] ? squashfs_readahead+0x210c/0x2680
[ 60.577474][ T5312] squashfs_readahead+0x210c/0x2680
[ 60.582686][ T5312] ? squashfs_readahead+0x6f0/0x2680
[ 60.587978][ T5312] ? __pfx_squashfs_readahead+0x10/0x10
[ 60.593531][ T5312] ? __pfx_squashfs_readahead+0x10/0x10
[ 60.599086][ T5312] read_pages+0x17e/0x840
[ 60.603429][ T5312] ? percpu_ref_put+0x19/0x180
[ 60.608212][ T5312] ? __pfx_read_pages+0x10/0x10
[ 60.613067][ T5312] ? filemap_add_folio+0x26d/0x650
[ 60.618181][ T5312] ? __pfx_filemap_add_folio+0x10/0x10
[ 60.623643][ T5312] page_cache_ra_unbounded+0x6ce/0x7f0
[ 60.629108][ T5312] filemap_get_pages+0x543/0x2330
[ 60.634146][ T5312] ? __pfx_filemap_get_pages+0x10/0x10
[ 60.639609][ T5312] ? __pfx___might_resched+0x10/0x10
[ 60.644904][ T5312] filemap_read+0x457/0xfa0
[ 60.649422][ T5312] ? __pfx_filemap_read+0x10/0x10
[ 60.654459][ T5312] ? iov_iter_kvec+0x4e/0x180
[ 60.659145][ T5312] __kernel_read+0x532/0x9f0
[ 60.663735][ T5312] ? do_sys_openat2+0x13e/0x1d0
[ 60.668596][ T5312] ? __x64_sys_openat+0x247/0x2a0
[ 60.673638][ T5312] ? __pfx___kernel_read+0x10/0x10
[ 60.678767][ T5312] integrity_kernel_read+0xb0/0x100
[ 60.683964][ T5312] ? __pfx_integrity_kernel_read+0x10/0x10
[ 60.689759][ T5312] ? ima_calc_file_hash+0xab7/0x1b30
[ 60.695038][ T5312] ? __kmalloc_cache_noprof+0x19c/0x2c0
[ 60.700594][ T5312] ima_calc_file_hash+0xaef/0x1b30
[ 60.705718][ T5312] ? __pfx_ima_calc_file_hash+0x10/0x10
[ 60.711260][ T5312] ? _raw_spin_unlock_irqrestore+0x130/0x140
[ 60.717245][ T5312] ? __x64_sys_openat+0x247/0x2a0
[ 60.722264][ T5312] ? do_syscall_64+0xf3/0x230
[ 60.726933][ T5312] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 60.732994][ T5312] ? mark_lock+0x9a/0x360
[ 60.737320][ T5312] ? make_vfsgid+0x46/0x90
[ 60.741725][ T5312] ? generic_fillattr+0x59c/0x840
[ 60.746767][ T5312] ima_collect_measurement+0x526/0xb20
[ 60.752235][ T5312] ? __pfx_ima_collect_measurement+0x10/0x10
[ 60.758224][ T5312] ? squashfs_xattr_handler_get+0x585/0x900
[ 60.764132][ T5312] ? ima_get_hash_algo+0x156/0x4d0
[ 60.769236][ T5312] ? __pfx_ima_get_hash_algo+0x10/0x10
[ 60.774687][ T5312] process_measurement+0x1357/0x1fb0
[ 60.779972][ T5312] ? __pfx_process_measurement+0x10/0x10
[ 60.785601][ T5312] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 60.791583][ T5312] ? irqentry_exit+0x63/0x90
[ 60.796165][ T5312] ? lockdep_hardirqs_on+0x99/0x150
[ 60.801353][ T5312] ? inode_to_bdi+0x69/0xf0
[ 60.805845][ T5312] ? apparmor_current_getsecid_subj+0xde/0x1b0
[ 60.811995][ T5312] ima_file_check+0xf2/0x170
[ 60.816579][ T5312] ? __pfx_ima_file_check+0x10/0x10
[ 60.821771][ T5312] security_file_post_open+0xb9/0x280
[ 60.827155][ T5312] path_openat+0x2cd0/0x3590
[ 60.831750][ T5312] ? __pfx_path_openat+0x10/0x10
[ 60.836683][ T5312] do_filp_open+0x235/0x490
[ 60.841183][ T5312] ? __pfx_do_filp_open+0x10/0x10
[ 60.846215][ T5312] ? _raw_spin_unlock+0x28/0x50
[ 60.851059][ T5312] ? alloc_fd+0x5a1/0x640
[ 60.855387][ T5312] do_sys_openat2+0x13e/0x1d0
[ 60.860059][ T5312] ? __pfx_do_sys_openat2+0x10/0x10
[ 60.865255][ T5312] __x64_sys_openat+0x247/0x2a0
[ 60.870099][ T5312] ? __pfx___x64_sys_openat+0x10/0x10
[ 60.875470][ T5312] ? do_syscall_64+0x100/0x230
[ 60.880229][ T5312] ? do_syscall_64+0xb6/0x230
[ 60.884898][ T5312] do_syscall_64+0xf3/0x230
[ 60.889391][ T5312] ? clear_bhb_loop+0x35/0x90
[ 60.894061][ T5312] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 60.899953][ T5312] RIP: 0033:0x7fa1c2f79e79
[ 60.904364][ T5312] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 60.923960][ T5312] RSP: 002b:00007fa1c3d6d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 60.932359][ T5312] RAX: ffffffffffffffda RBX: 00007fa1c3116130 RCX: 00007fa1c2f79e79
[ 60.940315][ T5312] RDX: 0000000000000000 RSI: 0000000020000100 RDI: ffffffffffffff9c
[ 60.948274][ T5312] RBP: 00007fa1c2fe7916 R08: 0000000000000000 R09: 0000000000000000
[ 60.956230][ T5312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 60.964187][ T5312] R13: 0000000000000000 R14: 00007fa1c3116130 R15: 00007ffde5820628
[ 60.972153][ T5312] </TASK>
[ 60.975155][ T5312]
[ 60.977475][ T5312] Allocated by task 5312:
[ 60.981785][ T5312] kasan_save_track+0x3f/0x80
[ 60.986453][ T5312] __kasan_kmalloc+0x98/0xb0
[ 60.991028][ T5312] __kmalloc_cache_noprof+0x19c/0x2c0
[ 60.996389][ T5312] squashfs_page_actor_init_special+0x64/0x440
[ 61.002534][ T5312] squashfs_readahead+0x188f/0x2680
[ 61.007719][ T5312] read_pages+0x17e/0x840
[ 61.012031][ T5312] page_cache_ra_unbounded+0x6ce/0x7f0
[ 61.017476][ T5312] filemap_get_pages+0x543/0x2330
[ 61.022486][ T5312] filemap_read+0x457/0xfa0
[ 61.026976][ T5312] __kernel_read+0x532/0x9f0
[ 61.031552][ T5312] integrity_kernel_read+0xb0/0x100
[ 61.036737][ T5312] ima_calc_file_hash+0xaef/0x1b30
[ 61.041852][ T5312] ima_collect_measurement+0x526/0xb20
[ 61.047318][ T5312] process_measurement+0x1357/0x1fb0
[ 61.052595][ T5312] ima_file_check+0xf2/0x170
[ 61.057179][ T5312] security_file_post_open+0xb9/0x280
[ 61.062540][ T5312] path_openat+0x2cd0/0x3590
[ 61.067115][ T5312] do_filp_open+0x235/0x490
[ 61.071606][ T5312] do_sys_openat2+0x13e/0x1d0
[ 61.076274][ T5312] __x64_sys_openat+0x247/0x2a0
[ 61.081112][ T5312] do_syscall_64+0xf3/0x230
[ 61.085601][ T5312] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 61.091481][ T5312]
[ 61.093792][ T5312] Freed by task 5312:
[ 61.097750][ T5312] kasan_save_track+0x3f/0x80
[ 61.102414][ T5312] kasan_save_free_info+0x40/0x50
[ 61.107431][ T5312] __kasan_slab_free+0x59/0x70
[ 61.112178][ T5312] kfree+0x196/0x3e0
[ 61.116060][ T5312] squashfs_readahead+0x195b/0x2680
[ 61.121252][ T5312] read_pages+0x17e/0x840
[ 61.125567][ T5312] page_cache_ra_unbounded+0x6ce/0x7f0
[ 61.131009][ T5312] filemap_get_pages+0x543/0x2330
[ 61.136019][ T5312] filemap_read+0x457/0xfa0
[ 61.140510][ T5312] __kernel_read+0x532/0x9f0
[ 61.145085][ T5312] integrity_kernel_read+0xb0/0x100
[ 61.150272][ T5312] ima_calc_file_hash+0xaef/0x1b30
[ 61.155375][ T5312] ima_collect_measurement+0x526/0xb20
[ 61.160826][ T5312] process_measurement+0x1357/0x1fb0
[ 61.166101][ T5312] ima_file_check+0xf2/0x170
[ 61.170674][ T5312] security_file_post_open+0xb9/0x280
[ 61.176034][ T5312] path_openat+0x2cd0/0x3590
[ 61.180607][ T5312] do_filp_open+0x235/0x490
[ 61.185092][ T5312] do_sys_openat2+0x13e/0x1d0
[ 61.189758][ T5312] __x64_sys_openat+0x247/0x2a0
[ 61.194597][ T5312] do_syscall_64+0xf3/0x230
[ 61.199089][ T5312] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 61.204966][ T5312]
[ 61.207274][ T5312] The buggy address belongs to the object at ffff88802bb55c00
[ 61.207274][ T5312] which belongs to the cache kmalloc-96 of size 96
[ 61.221133][ T5312] The buggy address is located 64 bytes inside of
[ 61.221133][ T5312] freed 96-byte region [ffff88802bb55c00, ffff88802bb55c60)
[ 61.234749][ T5312]
[ 61.237057][ T5312] The buggy address belongs to the physical page:
[ 61.243455][ T5312] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2bb55
[ 61.252202][ T5312] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 61.259306][ T5312] page_type: 0xfdffffff(slab)
[ 61.263972][ T5312] raw: 00fff00000000000 ffff888015841280 dead000000000100 dead000000000122
[ 61.272539][ T5312] raw: 0000000000000000 0000000080200020 00000001fdffffff 0000000000000000
[ 61.281099][ T5312] page dumped because: kasan: bad access detected
[ 61.287498][ T5312] page_owner tracks the page as allocated
[ 61.293192][ T5312] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x152cc0(GFP_USER|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 2633, tgid 2633 (kworker/0:3), ts 60282972002, free_ts 59835891875
[ 61.312274][ T5312] post_alloc_hook+0x1f3/0x230
[ 61.317025][ T5312] get_page_from_freelist+0x3131/0x3280
[ 61.322555][ T5312] __alloc_pages_noprof+0x29e/0x780
[ 61.327737][ T5312] alloc_slab_page+0x5f/0x120
[ 61.332483][ T5312] allocate_slab+0x5a/0x2f0
[ 61.336972][ T5312] ___slab_alloc+0xcd1/0x14b0
[ 61.341630][ T5312] __slab_alloc+0x58/0xa0
[ 61.345942][ T5312] __kmalloc_cache_noprof+0x1d5/0x2c0
[ 61.351300][ T5312] nsim_fib_event_work+0x19c5/0x4130
[ 61.356573][ T5312] process_scheduled_works+0xa63/0x1850
[ 61.362107][ T5312] worker_thread+0x86d/0xd10
[ 61.366687][ T5312] kthread+0x2f0/0x390
[ 61.370739][ T5312] ret_from_fork+0x4b/0x80
[ 61.375146][ T5312] ret_from_fork_asm+0x1a/0x30
[ 61.379897][ T5312] page last free pid 5230 tgid 5230 stack trace:
[ 61.386202][ T5312] free_unref_page+0xc07/0xd90
[ 61.390947][ T5312] __put_partials+0xeb/0x130
[ 61.395521][ T5312] put_cpu_partial+0x17c/0x250
[ 61.400269][ T5312] __slab_free+0x2ea/0x3d0
[ 61.404668][ T5312] qlist_free_all+0x9e/0x140
[ 61.409246][ T5312] kasan_quarantine_reduce+0x14f/0x170
[ 61.414686][ T5312] __kasan_slab_alloc+0x23/0x80
[ 61.419522][ T5312] kmem_cache_alloc_node_noprof+0x16b/0x320
[ 61.425404][ T5312] __alloc_skb+0x1c3/0x440
[ 61.429810][ T5312] netlink_sendmsg+0x638/0xcb0
[ 61.434646][ T5312] __sock_sendmsg+0x221/0x270
[ 61.439307][ T5312] __sys_sendto+0x3a8/0x500
[ 61.443798][ T5312] __x64_sys_sendto+0xde/0x100
[ 61.448555][ T5312] do_syscall_64+0xf3/0x230
[ 61.453046][ T5312] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 61.458926][ T5312]
[ 61.461231][ T5312] Memory state around the buggy address:
[ 61.466841][ T5312] ffff88802bb55b00: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc
[ 61.474884][ T5312] ffff88802bb55b80: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc
[ 61.482924][ T5312] >ffff88802bb55c00: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc
[ 61.490961][ T5312] ^
[ 61.497088][ T5312] ffff88802bb55c80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 61.505134][ T5312] ffff88802bb55d00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 61.513314][ T5312] ==================================================================
[ 61.542469][ T5229] Bluetooth: hci0: command tx timeout
[ 61.548925][ T5229] Bluetooth: hci3: command tx timeout
[ 61.555311][ T5229] Bluetooth: hci1: command tx timeout
[ 61.561042][ T5229] Bluetooth: hci4: command tx timeout
[ 61.569080][ T5229] Bluetooth: hci2: command tx timeout
[ 61.593932][ T5312] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 61.601148][ T5312] CPU: 1 UID: 0 PID: 5312 Comm: syz.3.4 Not tainted 6.11.0-rc4-next-20240822-syzkaller #0
[ 61.611042][ T5312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 61.621099][ T5312] Call Trace:
[ 61.624367][ T5312] <TASK>
[ 61.627298][ T5312] dump_stack_lvl+0x241/0x360
[ 61.631972][ T5312] ? __pfx_dump_stack_lvl+0x10/0x10
[ 61.637163][ T5312] ? __pfx__printk+0x10/0x10
[ 61.641744][ T5312] ? preempt_schedule+0xe1/0xf0
[ 61.646583][ T5312] ? vscnprintf+0x5d/0x90
[ 61.650904][ T5312] panic+0x349/0x880
[ 61.654792][ T5312] ? check_panic_on_warn+0x21/0xb0
[ 61.659893][ T5312] ? __pfx_panic+0x10/0x10
[ 61.664309][ T5312] ? _raw_spin_unlock_irqrestore+0x130/0x140
[ 61.670277][ T5312] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 61.676596][ T5312] ? print_report+0x502/0x550
[ 61.681267][ T5312] check_panic_on_warn+0x86/0xb0
[ 61.686192][ T5312] ? squashfs_readahead+0x210c/0x2680
[ 61.691559][ T5312] end_report+0x77/0x160
[ 61.695793][ T5312] kasan_report+0x154/0x180
[ 61.700287][ T5312] ? squashfs_readahead+0x210c/0x2680
[ 61.705672][ T5312] squashfs_readahead+0x210c/0x2680
[ 61.710881][ T5312] ? squashfs_readahead+0x6f0/0x2680
[ 61.716165][ T5312] ? __pfx_squashfs_readahead+0x10/0x10
[ 61.721720][ T5312] ? __pfx_squashfs_readahead+0x10/0x10
[ 61.727271][ T5312] read_pages+0x17e/0x840
[ 61.731590][ T5312] ? percpu_ref_put+0x19/0x180
[ 61.736347][ T5312] ? __pfx_read_pages+0x10/0x10
[ 61.741184][ T5312] ? filemap_add_folio+0x26d/0x650
[ 61.746283][ T5312] ? __pfx_filemap_add_folio+0x10/0x10
[ 61.751731][ T5312] page_cache_ra_unbounded+0x6ce/0x7f0
[ 61.757182][ T5312] filemap_get_pages+0x543/0x2330
[ 61.762206][ T5312] ? __pfx_filemap_get_pages+0x10/0x10
[ 61.767665][ T5312] ? __pfx___might_resched+0x10/0x10
[ 61.772951][ T5312] filemap_read+0x457/0xfa0
[ 61.777454][ T5312] ? __pfx_filemap_read+0x10/0x10
[ 61.782473][ T5312] ? iov_iter_kvec+0x4e/0x180
[ 61.787144][ T5312] __kernel_read+0x532/0x9f0
[ 61.791723][ T5312] ? do_sys_openat2+0x13e/0x1d0
[ 61.796565][ T5312] ? __x64_sys_openat+0x247/0x2a0
[ 61.801581][ T5312] ? __pfx___kernel_read+0x10/0x10
[ 61.806686][ T5312] integrity_kernel_read+0xb0/0x100
[ 61.811876][ T5312] ? __pfx_integrity_kernel_read+0x10/0x10
[ 61.817671][ T5312] ? ima_calc_file_hash+0xab7/0x1b30
[ 61.822949][ T5312] ? __kmalloc_cache_noprof+0x19c/0x2c0
[ 61.828485][ T5312] ima_calc_file_hash+0xaef/0x1b30
[ 61.833596][ T5312] ? __pfx_ima_calc_file_hash+0x10/0x10
[ 61.839133][ T5312] ? _raw_spin_unlock_irqrestore+0x130/0x140
[ 61.845112][ T5312] ? __x64_sys_openat+0x247/0x2a0
[ 61.850125][ T5312] ? do_syscall_64+0xf3/0x230
[ 61.854817][ T5312] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 61.860877][ T5312] ? mark_lock+0x9a/0x360
[ 61.865194][ T5312] ? make_vfsgid+0x46/0x90
[ 61.869596][ T5312] ? generic_fillattr+0x59c/0x840
[ 61.874616][ T5312] ima_collect_measurement+0x526/0xb20
[ 61.880072][ T5312] ? __pfx_ima_collect_measurement+0x10/0x10
[ 61.886046][ T5312] ? squashfs_xattr_handler_get+0x585/0x900
[ 61.891941][ T5312] ? ima_get_hash_algo+0x156/0x4d0
[ 61.897038][ T5312] ? __pfx_ima_get_hash_algo+0x10/0x10
[ 61.902486][ T5312] process_measurement+0x1357/0x1fb0
[ 61.907765][ T5312] ? __pfx_process_measurement+0x10/0x10
[ 61.913389][ T5312] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 61.919366][ T5312] ? irqentry_exit+0x63/0x90
[ 61.923941][ T5312] ? lockdep_hardirqs_on+0x99/0x150
[ 61.929125][ T5312] ? inode_to_bdi+0x69/0xf0
[ 61.933616][ T5312] ? apparmor_current_getsecid_subj+0xde/0x1b0
[ 61.939758][ T5312] ima_file_check+0xf2/0x170
[ 61.944338][ T5312] ? __pfx_ima_file_check+0x10/0x10
[ 61.949527][ T5312] security_file_post_open+0xb9/0x280
[ 61.954888][ T5312] path_openat+0x2cd0/0x3590
[ 61.959474][ T5312] ? __pfx_path_openat+0x10/0x10
[ 61.964403][ T5312] do_filp_open+0x235/0x490
[ 61.968895][ T5312] ? __pfx_do_filp_open+0x10/0x10
[ 61.973917][ T5312] ? _raw_spin_unlock+0x28/0x50
[ 61.978753][ T5312] ? alloc_fd+0x5a1/0x640
[ 61.983077][ T5312] do_sys_openat2+0x13e/0x1d0
[ 61.987752][ T5312] ? __pfx_do_sys_openat2+0x10/0x10
[ 61.992944][ T5312] __x64_sys_openat+0x247/0x2a0
[ 61.997786][ T5312] ? __pfx___x64_sys_openat+0x10/0x10
[ 62.003148][ T5312] ? do_syscall_64+0x100/0x230
[ 62.007900][ T5312] ? do_syscall_64+0xb6/0x230
[ 62.012561][ T5312] do_syscall_64+0xf3/0x230
[ 62.017050][ T5312] ? clear_bhb_loop+0x35/0x90
[ 62.021717][ T5312] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 62.027595][ T5312] RIP: 0033:0x7fa1c2f79e79
[ 62.031995][ T5312] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 62.051585][ T5312] RSP: 002b:00007fa1c3d6d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 62.059988][ T5312] RAX: ffffffffffffffda RBX: 00007fa1c3116130 RCX: 00007fa1c2f79e79
[ 62.067945][ T5312] RDX: 0000000000000000 RSI: 0000000020000100 RDI: ffffffffffffff9c
[ 62.075911][ T5312] RBP: 00007fa1c2fe7916 R08: 0000000000000000 R09: 0000000000000000
[ 62.083873][ T5312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 62.091831][ T5312] R13: 0000000000000000 R14: 00007fa1c3116130 R15: 00007ffde5820628
[ 62.099797][ T5312] </TASK>
[ 62.103010][ T5312] Kernel Offset: disabled
[ 62.107314][ T5312] Rebooting in 86400 seconds..