Warning: Permanently added '10.128.0.25' (ED25519) to the list of known hosts. 1970/01/01 00:01:32 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:01:33 parsed 1 programs [ 96.481561][ T6869] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SS [ 106.382624][ T2107] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 106.384680][ T2107] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 106.397186][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 106.399764][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.281886][ T6976] chnl_net:caif_netlink_parms(): no params data found [ 108.319008][ T6976] bridge0: port 1(bridge_slave_0) entered blocking state [ 108.321095][ T6976] bridge0: port 1(bridge_slave_0) entered disabled state [ 108.323112][ T6976] bridge_slave_0: entered allmulticast mode [ 108.325238][ T6976] bridge_slave_0: entered promiscuous mode [ 108.328623][ T6976] bridge0: port 2(bridge_slave_1) entered blocking state [ 108.330691][ T6976] bridge0: port 2(bridge_slave_1) entered disabled state [ 108.332668][ T6976] bridge_slave_1: entered allmulticast mode [ 108.334660][ T6976] bridge_slave_1: entered promiscuous mode [ 108.345335][ T6976] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 108.351110][ T6976] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 108.368861][ T6976] team0: Port device team_slave_0 added [ 108.371985][ T6976] team0: Port device team_slave_1 added [ 108.382636][ T6976] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 108.384468][ T6976] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 108.391929][ T6976] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 108.395861][ T6976] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 108.398404][ T6976] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 108.405381][ T6976] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 108.502238][ T6976] hsr_slave_0: entered promiscuous mode [ 108.504212][ T6976] hsr_slave_1: entered promiscuous mode [ 109.322656][ T6976] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 109.332034][ T6976] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 109.339501][ T6976] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 109.343366][ T6976] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 109.382323][ T6976] 8021q: adding VLAN 0 to HW filter on device bond0 [ 109.391492][ T6976] 8021q: adding VLAN 0 to HW filter on device team0 [ 109.395829][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 109.397769][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 109.402966][ T43] bridge0: port 2(bridge_slave_1) entered blocking state [ 109.404926][ T43] bridge0: port 2(bridge_slave_1) entered forwarding state [ 109.497178][ T6976] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 109.525570][ T6976] veth0_vlan: entered promiscuous mode [ 109.532364][ T6976] veth1_vlan: entered promiscuous mode [ 109.543551][ T6976] veth0_macvtap: entered promiscuous mode [ 109.549387][ T6976] veth1_macvtap: entered promiscuous mode [ 109.560791][ T6976] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 109.566223][ T6976] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 109.572091][ T6976] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.574584][ T6976] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.576981][ T6976] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.580834][ T6976] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.701286][ T54] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 109.704052][ T54] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 109.706534][ T54] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 109.710806][ T54] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 109.713214][ T54] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 109.715328][ T54] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 109.919709][ T43] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 109.989957][ T43] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 110.050781][ T43] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 110.141309][ T43] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 1970/01/01 00:01:50 executed programs: 0 [ 110.830227][ T54] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 110.833908][ T54] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 110.836386][ T54] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 110.840039][ T54] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 110.842407][ T54] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 110.844801][ T54] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 110.930045][ T7188] chnl_net:caif_netlink_parms(): no params data found [ 110.968653][ T7188] bridge0: port 1(bridge_slave_0) entered blocking state [ 110.972221][ T7188] bridge0: port 1(bridge_slave_0) entered disabled state [ 110.974179][ T7188] bridge_slave_0: entered allmulticast mode [ 110.976338][ T7188] bridge_slave_0: entered promiscuous mode [ 110.981336][ T7188] bridge0: port 2(bridge_slave_1) entered blocking state [ 110.983182][ T7188] bridge0: port 2(bridge_slave_1) entered disabled state [ 110.985005][ T7188] bridge_slave_1: entered allmulticast mode [ 110.987104][ T7188] bridge_slave_1: entered promiscuous mode [ 111.004546][ T7188] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 111.010436][ T7188] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 111.023834][ T7188] team0: Port device team_slave_0 added [ 111.026819][ T7188] team0: Port device team_slave_1 added [ 111.042434][ T7188] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 111.044210][ T7188] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 111.053626][ T7188] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 111.058757][ T7188] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 111.060785][ T7188] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 111.069989][ T7188] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 111.092793][ T7188] hsr_slave_0: entered promiscuous mode [ 111.094874][ T7188] hsr_slave_1: entered promiscuous mode [ 111.096764][ T7188] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 111.099087][ T7188] Cannot create hsr debugfs directory [ 112.897639][ T6011] Bluetooth: hci0: command tx timeout [ 112.925372][ T43] bridge_slave_1: left allmulticast mode [ 112.926846][ T43] bridge_slave_1: left promiscuous mode [ 112.935437][ T43] bridge0: port 2(bridge_slave_1) entered disabled state [ 112.940993][ T43] bridge_slave_0: left allmulticast mode [ 112.942485][ T43] bridge_slave_0: left promiscuous mode [ 112.944030][ T43] bridge0: port 1(bridge_slave_0) entered disabled state [ 114.460014][ T43] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 114.501239][ T43] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 114.539521][ T43] bond0 (unregistering): Released all slaves [ 114.592857][ T43] hsr_slave_0: left promiscuous mode [ 114.594894][ T43] hsr_slave_1: left promiscuous mode [ 114.596676][ T43] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 114.598945][ T43] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 114.601623][ T43] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 114.603595][ T43] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 114.613307][ T43] veth1_macvtap: left promiscuous mode [ 114.614754][ T43] veth0_macvtap: left promiscuous mode [ 114.616331][ T43] veth1_vlan: left promiscuous mode [ 114.618478][ T43] veth0_vlan: left promiscuous mode [ 114.977631][ T6011] Bluetooth: hci0: command tx timeout [ 116.509737][ T43] team0 (unregistering): Port device team_slave_1 removed [ 116.690004][ T43] team0 (unregistering): Port device team_slave_0 removed [ 117.067704][ T6011] Bluetooth: hci0: command tx timeout [ 119.139872][ T6011] Bluetooth: hci0: command tx timeout [ 119.674617][ T7188] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 119.682287][ T7188] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 119.686379][ T7188] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 119.709455][ T7188] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 119.748824][ T7188] 8021q: adding VLAN 0 to HW filter on device bond0 [ 119.952488][ T7188] 8021q: adding VLAN 0 to HW filter on device team0 [ 119.958167][ T222] bridge0: port 1(bridge_slave_0) entered blocking state [ 119.960169][ T222] bridge0: port 1(bridge_slave_0) entered forwarding state [ 119.962850][ T222] bridge0: port 2(bridge_slave_1) entered blocking state [ 119.964807][ T222] bridge0: port 2(bridge_slave_1) entered forwarding state [ 120.047032][ T7188] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 120.065867][ T7188] veth0_vlan: entered promiscuous mode [ 120.072929][ T7188] veth1_vlan: entered promiscuous mode [ 120.084666][ T7188] veth0_macvtap: entered promiscuous mode [ 120.088420][ T7188] veth1_macvtap: entered promiscuous mode [ 120.094673][ T7188] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 120.100221][ T7188] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 120.103868][ T7188] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 120.106160][ T7188] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 120.111764][ T7188] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 120.114164][ T7188] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 120.141879][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.144088][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.156863][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.160935][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 1970/01/01 00:02:00 executed programs: 2 [ 120.416795][ T7463] loop0: detected capacity change from 0 to 32768 [ 120.447100][ T7463] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 120.481403][ T7463] XFS (loop0): Ending clean mount [ 120.487464][ T7463] XFS (loop0): Quotacheck needed: Please wait. [ 120.504886][ T7463] XFS (loop0): Quotacheck: Done. [ 123.253482][ T7463] mm: 000000001ba89fe1, mmap lock held: 0, locked: 1, __mm_populate [ 123.255818][ T7463] [ 123.256421][ T7463] ===================================== [ 123.257841][ T7463] WARNING: bad unlock balance detected! [ 123.259319][ T7463] 6.14.0-rc4-syzkaller-00034-ge056da87c780-dirty #0 Not tainted [ 123.261345][ T7463] ------------------------------------- [ 123.262845][ T7463] syz.0.16/7463 is trying to release lock (&mm->mmap_lock) at: [ 123.264934][ T7463] [] __mm_populate+0x378/0x42c [ 123.266582][ T7463] but there are no more locks to release! [ 123.268170][ T7463] [ 123.268170][ T7463] other info that might help us debug this: [ 123.270322][ T7463] no locks held by syz.0.16/7463. [ 123.271680][ T7463] [ 123.271680][ T7463] stack backtrace: [ 123.273254][ T7463] CPU: 1 UID: 0 PID: 7463 Comm: syz.0.16 Not tainted 6.14.0-rc4-syzkaller-00034-ge056da87c780-dirty #0 [ 123.273267][ T7463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 123.273275][ T7463] Call trace: [ 123.273278][ T7463] show_stack+0x2c/0x3c (C) [ 123.273297][ T7463] dump_stack_lvl+0xe4/0x150 [ 123.273310][ T7463] dump_stack+0x1c/0x28 [ 123.273322][ T7463] print_unlock_imbalance_bug+0x254/0x2ac [ 123.273335][ T7463] lock_release+0x410/0x9e4 [ 123.273345][ T7463] up_read+0x24/0x3c [ 123.273354][ T7463] __mm_populate+0x378/0x42c [ 123.273365][ T7463] vm_mmap_pgoff+0x304/0x3c4 [ 123.273376][ T7463] ksys_mmap_pgoff+0x3a4/0x5c8 [ 123.273387][ T7463] __arm64_sys_mmap+0xf8/0x110 [ 123.273399][ T7463] invoke_syscall+0x98/0x2b8 [ 123.273411][ T7463] el0_svc_common+0x130/0x23c [ 123.273423][ T7463] do_el0_svc+0x48/0x58 [ 123.273434][ T7463] el0_svc+0x54/0x168 [ 123.273444][ T7463] el0t_64_sync_handler+0x84/0x108 [ 123.273454][ T7463] el0t_64_sync+0x198/0x19c [ 123.299281][ T7463] ------------[ cut here ]------------ [ 123.300678][ T7463] DEBUG_RWSEMS_WARN_ON(tmp < 0): count = 0xffffffffffffff00, magic = 0xffff0000d584dee0, owner = 0x1, curr 0xffff0000c4da5b80, list empty [ 123.304271][ T7463] WARNING: CPU: 1 PID: 7463 at kernel/locking/rwsem.c:1346 __up_read+0x3bc/0x5f8 [ 123.306616][ T7463] Modules linked in: [ 123.307647][ T7463] CPU: 1 UID: 0 PID: 7463 Comm: syz.0.16 Not tainted 6.14.0-rc4-syzkaller-00034-ge056da87c780-dirty #0 [ 123.310562][ T7463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 123.313293][ T7463] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 123.315394][ T7463] pc : __up_read+0x3bc/0x5f8 [ 123.316676][ T7463] lr : __up_read+0x3bc/0x5f8 [ 123.317891][ T7463] sp : ffff80009e0979e0 [ 123.319005][ T7463] x29: ffff80009e097a60 x28: 1ffff00011f760cb x27: ffff80008fbb0000 [ 123.321199][ T7463] x26: dfff800000000000 x25: ffffffffffffff00 x24: ffff0000d584df38 [ 123.323430][ T7463] x23: ffff0000d584dee0 x22: ffffffffffffff00 x21: 0000000000000001 [ 123.325586][ T7463] x20: ffff0000c4da5b80 x19: ffff0000d584dee0 x18: 0000000000000008 [ 123.327718][ T7463] x17: 0000000000000000 x16: ffff8000832b41c0 x15: 0000000000000001 [ 123.329830][ T7463] x14: 1ffff00013c12e94 x13: 0000000000000000 x12: 0000000000000000 [ 123.331976][ T7463] x11: 0000000000000003 x10: 0000000000ff0100 x9 : 3ef51d0da1723500 [ 123.334078][ T7463] x8 : 3ef51d0da1723500 x7 : 0000000000000001 x6 : 0000000000000001 [ 123.336217][ T7463] x5 : ffff80009e097198 x4 : ffff80008fc9f780 x3 : ffff8000832461d4 [ 123.338347][ T7463] x2 : 0000000000000001 x1 : 0000000100000001 x0 : 0000000000000000 [ 123.340434][ T7463] Call trace: [ 123.341301][ T7463] __up_read+0x3bc/0x5f8 (P) [ 123.342538][ T7463] up_read+0x2c/0x3c [ 123.343588][ T7463] __mm_populate+0x378/0x42c [ 123.344817][ T7463] vm_mmap_pgoff+0x304/0x3c4 [ 123.346026][ T7463] ksys_mmap_pgoff+0x3a4/0x5c8 [ 123.347356][ T7463] __arm64_sys_mmap+0xf8/0x110 [ 123.348641][ T7463] invoke_syscall+0x98/0x2b8 [ 123.349843][ T7463] el0_svc_common+0x130/0x23c [ 123.351068][ T7463] do_el0_svc+0x48/0x58 [ 123.352233][ T7463] el0_svc+0x54/0x168 [ 123.353290][ T7463] el0t_64_sync_handler+0x84/0x108 [ 123.354680][ T7463] el0t_64_sync+0x198/0x19c [ 123.355865][ T7463] irq event stamp: 75153 [ 123.356971][ T7463] hardirqs last enabled at (75153): [] __console_unlock+0x70/0xc4 [ 123.359503][ T7463] hardirqs last disabled at (75152): [] __console_unlock+0x58/0xc4 [ 123.362070][ T7463] softirqs last enabled at (74970): [] local_bh_enable+0x10/0x34 [ 123.364597][ T7463] softirqs last disabled at (74968): [] local_bh_disable+0x10/0x34 [ 123.367063][ T7463] ---[ end trace 0000000000000000 ]--- [ 125.947947][ T2365] ieee802154 phy0 wpan0: encryption failed: -22 [ 125.949748][ T2365] ieee802154 phy1 wpan1: encryption failed: -22