Warning: Permanently added '10.128.1.146' (ED25519) to the list of known hosts.
2024/01/09 16:47:58 ignoring optional flag "sandboxArg"="0"
2024/01/09 16:47:58 parsed 1 programs
2024/01/09 16:48:01 executed programs: 0
[  104.496978][ T5421] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  104.563786][ T5077] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  104.572378][ T5077] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  104.581573][ T5077] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  104.590627][ T5077] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  104.599349][ T5077] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  104.607946][ T5077] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  104.782941][ T5428] chnl_net:caif_netlink_parms(): no params data found
[  104.859622][ T5428] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.867352][ T5428] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.874693][ T5428] bridge_slave_0: entered allmulticast mode
[  104.882468][ T5428] bridge_slave_0: entered promiscuous mode
[  104.891982][ T5428] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.900304][ T5428] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.908663][ T5428] bridge_slave_1: entered allmulticast mode
[  104.916051][ T5428] bridge_slave_1: entered promiscuous mode
[  104.952941][ T5428] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  104.966452][ T5428] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  105.003171][ T5428] team0: Port device team_slave_0 added
[  105.013630][ T5428] team0: Port device team_slave_1 added
[  105.044942][ T5428] batman_adv: batadv0: Adding interface: batadv_slave_0
[  105.052369][ T5428] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  105.079603][ T5428] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  105.092269][ T5428] batman_adv: batadv0: Adding interface: batadv_slave_1
[  105.099496][ T5428] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  105.127429][ T5428] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  105.174854][ T5428] hsr_slave_0: entered promiscuous mode
[  105.182048][ T5428] hsr_slave_1: entered promiscuous mode
[  105.992760][ T5428] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  106.007830][ T5428] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  106.028356][ T5428] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  106.048960][ T5428] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  106.191666][ T5428] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.230294][ T5428] 8021q: adding VLAN 0 to HW filter on device team0
[  106.249741][ T5085] bridge0: port 1(bridge_slave_0) entered blocking state
[  106.258607][ T5085] bridge0: port 1(bridge_slave_0) entered forwarding state
[  106.285225][ T5085] bridge0: port 2(bridge_slave_1) entered blocking state
[  106.292679][ T5085] bridge0: port 2(bridge_slave_1) entered forwarding state
[  106.588126][ T5428] 8021q: adding VLAN 0 to HW filter on device batadv0
[  106.661629][ T4470] Bluetooth: hci0: command 0x0409 tx timeout
[  106.674890][ T5428] veth0_vlan: entered promiscuous mode
[  106.693763][ T5428] veth1_vlan: entered promiscuous mode
[  106.754089][ T5428] veth0_macvtap: entered promiscuous mode
[  106.772023][ T5428] veth1_macvtap: entered promiscuous mode
[  106.803074][ T5428] batman_adv: batadv0: Interface activated: batadv_slave_0
[  106.824726][ T5428] batman_adv: batadv0: Interface activated: batadv_slave_1
[  106.847926][ T5428] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  106.857144][ T5428] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  106.870401][ T5428] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  106.880430][ T5428] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  106.991302][ T1077] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  107.007859][ T1077] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  107.052932][ T1077] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  107.063974][ T1077] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  107.155057][ T5487] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4)
[  107.163291][ T5487] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  107.182265][ T5487] vhci_hcd vhci_hcd.0: Device attached
[  107.456890][ T5087] vhci_hcd: vhci_device speed not set
[  107.535844][ T5087] usb 9-1: new full-speed USB device number 2 using vhci_hcd
[  108.736095][ T4470] Bluetooth: hci0: command 0x041b tx timeout
[  110.817619][ T4470] Bluetooth: hci0: command 0x040f tx timeout
[  112.896145][ T4470] Bluetooth: hci0: command 0x0419 tx timeout
[  133.619508][ T1228] ieee802154 phy0 wpan0: encryption failed: -22
[  133.627144][ T1228] ieee802154 phy1 wpan1: encryption failed: -22
2024/01/09 16:48:58 executed programs: 1
[  163.195497][ T5077] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  163.204901][ T5077] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  163.213378][ T5077] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  163.221287][ T5077] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  163.230884][ T5077] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  163.239446][ T5077] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  163.399185][ T5793] chnl_net:caif_netlink_parms(): no params data found
[  163.477222][ T5793] bridge0: port 1(bridge_slave_0) entered blocking state
[  163.484703][ T5793] bridge0: port 1(bridge_slave_0) entered disabled state
[  163.492127][ T5793] bridge_slave_0: entered allmulticast mode
[  163.500493][ T5793] bridge_slave_0: entered promiscuous mode
[  163.509166][ T5793] bridge0: port 2(bridge_slave_1) entered blocking state
[  163.516544][ T5793] bridge0: port 2(bridge_slave_1) entered disabled state
[  163.523839][ T5793] bridge_slave_1: entered allmulticast mode
[  163.532177][ T5793] bridge_slave_1: entered promiscuous mode
[  163.568265][ T5793] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  163.580564][ T5793] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  163.617738][ T5793] team0: Port device team_slave_0 added
[  163.627915][ T5793] team0: Port device team_slave_1 added
[  163.660818][ T5793] batman_adv: batadv0: Adding interface: batadv_slave_0
[  163.667936][ T5793] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  163.694107][ T5793] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  163.707162][ T5793] batman_adv: batadv0: Adding interface: batadv_slave_1
[  163.714122][ T5793] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  163.740884][ T5793] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  163.789204][ T5793] hsr_slave_0: entered promiscuous mode
[  163.798599][ T5793] hsr_slave_1: entered promiscuous mode
[  163.804861][ T5793] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  163.812978][ T5793] Cannot create hsr debugfs directory
[  163.939214][ T5793] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.004395][ T5793] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.076056][ T5793] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.183534][ T5793] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.339737][ T5793] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  164.351566][ T5793] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  164.362807][ T5793] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  164.374918][ T5793] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  164.404739][ T5793] bridge0: port 2(bridge_slave_1) entered blocking state
[  164.412083][ T5793] bridge0: port 2(bridge_slave_1) entered forwarding state
[  164.420418][ T5793] bridge0: port 1(bridge_slave_0) entered blocking state
[  164.428463][ T5793] bridge0: port 1(bridge_slave_0) entered forwarding state
[  164.439450][   T23] bridge0: port 1(bridge_slave_0) entered disabled state
[  164.447664][   T23] bridge0: port 2(bridge_slave_1) entered disabled state
[  164.521333][ T5793] 8021q: adding VLAN 0 to HW filter on device bond0
[  164.543310][ T5793] 8021q: adding VLAN 0 to HW filter on device team0
[  164.558477][  T781] bridge0: port 1(bridge_slave_0) entered blocking state
[  164.565911][  T781] bridge0: port 1(bridge_slave_0) entered forwarding state
[  164.581957][   T23] bridge0: port 2(bridge_slave_1) entered blocking state
[  164.590036][   T23] bridge0: port 2(bridge_slave_1) entered forwarding state
[  164.644880][ T5793] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  164.782338][ T5793] 8021q: adding VLAN 0 to HW filter on device batadv0
[  164.835733][ T5793] veth0_vlan: entered promiscuous mode
[  164.850276][ T5793] veth1_vlan: entered promiscuous mode
[  164.891048][ T5793] veth0_macvtap: entered promiscuous mode
[  164.902543][ T5793] veth1_macvtap: entered promiscuous mode
[  164.922305][ T5793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  164.934555][ T5793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  164.949168][ T5793] batman_adv: batadv0: Interface activated: batadv_slave_0
[  164.967231][ T5793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  164.978536][ T5793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  164.990323][ T5793] batman_adv: batadv0: Interface activated: batadv_slave_1
[  165.003697][ T5793] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  165.014088][ T5793] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  165.023126][ T5793] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  165.033126][ T5793] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  165.119151][  T781] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  165.127726][  T781] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  165.165194][ T1077] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  165.174484][ T1077] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  165.277881][ T5808] vhci_hcd vhci_hcd.0: port 0 already used
[  165.296154][ T4470] Bluetooth: hci1: command 0x0409 tx timeout
[  167.385532][ T4470] Bluetooth: hci1: command 0x041b tx timeout
[  169.456781][ T4470] Bluetooth: hci1: command 0x040f tx timeout
[  171.536360][ T4470] Bluetooth: hci1: command 0x0419 tx timeout
[  195.058844][ T1228] ieee802154 phy0 wpan0: encryption failed: -22
[  195.065541][ T1228] ieee802154 phy1 wpan1: encryption failed: -22
2024/01/09 16:49:56 executed programs: 2
[  221.354222][ T5077] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  221.364664][ T5077] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  221.373051][ T5077] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  221.382128][ T5077] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  221.390056][ T5077] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  221.397584][ T5077] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  221.568222][ T5812] chnl_net:caif_netlink_parms(): no params data found
[  221.651307][ T5812] bridge0: port 1(bridge_slave_0) entered blocking state
[  221.658810][ T5812] bridge0: port 1(bridge_slave_0) entered disabled state
[  221.666736][ T5812] bridge_slave_0: entered allmulticast mode
[  221.674173][ T5812] bridge_slave_0: entered promiscuous mode
[  221.683012][ T5812] bridge0: port 2(bridge_slave_1) entered blocking state
[  221.690711][ T5812] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.698575][ T5812] bridge_slave_1: entered allmulticast mode
[  221.706412][ T5812] bridge_slave_1: entered promiscuous mode
[  221.743054][ T5812] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  221.759158][ T5812] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  221.799365][ T5812] team0: Port device team_slave_0 added
[  221.809756][ T5812] team0: Port device team_slave_1 added
[  221.845191][ T5812] batman_adv: batadv0: Adding interface: batadv_slave_0
[  221.852484][ T5812] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  221.878928][ T5812] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  221.892815][ T5812] batman_adv: batadv0: Adding interface: batadv_slave_1
[  221.900764][ T5812] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  221.927426][ T5812] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  221.976679][ T5812] hsr_slave_0: entered promiscuous mode
[  221.983608][ T5812] hsr_slave_1: entered promiscuous mode
[  221.990426][ T5812] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  221.998418][ T5812] Cannot create hsr debugfs directory
[  222.132616][ T5812] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.220507][ T5812] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.312333][ T5812] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.414565][ T5812] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.602233][ T5812] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  222.612798][ T5812] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  222.623934][ T5812] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  222.634668][ T5812] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  222.730615][ T5812] 8021q: adding VLAN 0 to HW filter on device bond0
[  222.753653][ T5812] 8021q: adding VLAN 0 to HW filter on device team0
[  222.772600][   T23] bridge0: port 1(bridge_slave_0) entered blocking state
[  222.780095][   T23] bridge0: port 1(bridge_slave_0) entered forwarding state
[  222.801211][ T5085] bridge0: port 2(bridge_slave_1) entered blocking state
[  222.808429][ T5085] bridge0: port 2(bridge_slave_1) entered forwarding state
[  222.994848][ T5812] 8021q: adding VLAN 0 to HW filter on device batadv0
[  223.051037][ T5812] veth0_vlan: entered promiscuous mode
[  223.064075][ T5812] veth1_vlan: entered promiscuous mode
[  223.101974][ T5812] veth0_macvtap: entered promiscuous mode
[  223.113757][ T5812] veth1_macvtap: entered promiscuous mode
[  223.138418][ T5812] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  223.149970][ T5812] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  223.160823][ T5812] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  223.175343][ T5812] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  223.189195][ T5812] batman_adv: batadv0: Interface activated: batadv_slave_0
[  223.210854][ T5812] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  223.221615][ T5812] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  223.232691][ T5812] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  223.244524][ T5812] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  223.258357][ T5812] batman_adv: batadv0: Interface activated: batadv_slave_1
[  223.273695][ T5812] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  223.283732][ T5812] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  223.293865][ T5812] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  223.303400][ T5812] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  223.394276][ T2825] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  223.408545][ T2825] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  223.438676][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  223.447042][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  223.465975][ T5077] Bluetooth: hci2: command 0x0409 tx timeout
[  223.549547][ T5828] vhci_hcd vhci_hcd.0: port 0 already used
[  225.535438][ T5077] Bluetooth: hci2: command 0x041b tx timeout
[  227.615455][ T5077] Bluetooth: hci2: command 0x040f tx timeout
[  227.857254][ T5077] Bluetooth: hci0: command 0x0406 tx timeout
[  229.695476][ T4470] Bluetooth: hci2: command 0x0419 tx timeout
[  254.576301][   T29] INFO: task syz-executor.0:5486 blocked for more than 143 seconds.
[  254.585147][   T29]       Not tainted 6.7.0-syzkaller-g9f8413c4a66f #0
[  254.595418][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  254.604152][   T29] task:syz-executor.0  state:D stack:26864 pid:5486  tgid:5486  ppid:5428   flags:0x00000006
[  254.614748][   T29] Call Trace:
[  254.618682][   T29]  <TASK>
[  254.621645][   T29]  __schedule+0xf12/0x5c00
[  254.626206][   T29]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[  254.632249][   T29]  ? io_schedule_timeout+0x150/0x150
[  254.637772][   T29]  ? schedule+0x1fc/0x270
[  254.642283][   T29]  ? reacquire_held_locks+0x4c0/0x4c0
[  254.647976][   T29]  ? __mutex_lock+0x5b4/0x9d0
[  254.653078][   T29]  ? __mutex_trylock_common+0x78/0x250
[  254.658777][   T29]  schedule+0xe9/0x270
[  254.662871][   T29]  schedule_preempt_disabled+0x13/0x20
[  254.668464][   T29]  __mutex_lock+0x5b9/0x9d0
[  254.672990][   T29]  ? locks_remove_posix+0x28e/0x440
[  254.678300][   T29]  ? usbdev_release+0x87/0x470
[  254.683119][   T29]  ? mutex_trylock+0x130/0x130
[  254.688311][   T29]  ? __fsnotify_update_child_dentry_flags+0x360/0x360
[  254.695177][   T29]  ? locks_remove_file+0x399/0x5a0
[  254.700394][   T29]  ? free_async+0x4e0/0x4e0
[  254.704935][   T29]  ? usbdev_release+0x87/0x470
[  254.709942][   T29]  usbdev_release+0x87/0x470
[  254.714584][   T29]  ? free_async+0x4e0/0x4e0
[  254.719153][   T29]  __fput+0x270/0xb70
[  254.723254][   T29]  __fput_sync+0x47/0x50
[  254.727634][   T29]  __x64_sys_close+0x87/0xf0
[  254.732266][   T29]  do_syscall_64+0xd3/0x250
[  254.737584][   T29]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[  254.743528][   T29] RIP: 0033:0x7f8877c7b9da
[  254.748107][   T29] RSP: 002b:00007ffe2fc9e410 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  254.758606][   T29] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f8877c7b9da
[  254.766861][   T29] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  254.774892][   T29] RBP: 0000000000000032 R08: 0000001b2ef60000 R09: 00007f8877d9bf8c
[  254.783573][   T29] R10: 00007ffe2fc9e560 R11: 0000000000000293 R12: 00007f88778000c8
[  254.791809][   T29] R13: ffffffffffffffff R14: 00007f8877800000 R15: 000000000001a244
[  254.799878][   T29]  </TASK>
[  254.802938][   T29] 
[  254.802938][   T29] Showing all locks held in the system:
[  254.811616][   T29] 1 lock held by khungtaskd/29:
[  254.817601][   T29]  #0: ffffffff8cfadae0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x75/0x340
[  254.828482][   T29] 2 locks held by getty/4826:
[  254.833453][   T29]  #0: ffff88814b0d10a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  254.844980][   T29]  #1: ffffc900015b72f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xfc6/0x1490
[  254.855474][   T29] 5 locks held by kworker/0:5/5087:
[  254.860787][   T29]  #0: ffff88801566f538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_one_work+0x789/0x15d0
[  254.871659][   T29]  #1: ffffc900049dfd80 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_one_work+0x7eb/0x15d0
[  254.883294][   T29]  #2: ffff888143338190 (&dev->mutex){....}-{3:3}, at: hub_event+0x1c1/0x4e10
[  254.892648][   T29]  #3: ffff8880214da510 (&port_dev->status_lock){+.+.}-{3:3}, at: hub_event+0x27fe/0x4e10
[  254.902875][   T29]  #4: ffff888021257268 (hcd->address0_mutex){+.+.}-{3:3}, at: hub_event+0x2827/0x4e10
[  254.912854][   T29] 1 lock held by syz-executor.0/5486:
[  254.918327][   T29]  #0: ffff888143338190 (&dev->mutex){....}-{3:3}, at: usbdev_release+0x87/0x470
[  254.927816][   T29] 1 lock held by syz-executor.0/5807:
[  254.933298][   T29]  #0: ffff888143338190 (&dev->mutex){....}-{3:3}, at: usbdev_open+0x1b4/0x8c0
[  254.942427][   T29] 1 lock held by syz-executor.0/5827:
[  254.947844][   T29]  #0: ffff888143338190 (&dev->mutex){....}-{3:3}, at: usbdev_open+0x1b4/0x8c0
[  254.957255][   T29] 
[  254.959601][   T29] =============================================
[  254.959601][   T29] 
[  254.968196][   T29] NMI backtrace for cpu 0
[  254.972633][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.7.0-syzkaller-g9f8413c4a66f #0
[  254.981593][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[  254.991738][   T29] Call Trace:
[  254.995215][   T29]  <TASK>
[  254.998169][   T29]  dump_stack_lvl+0xd9/0x1b0
[  255.003307][   T29]  nmi_cpu_backtrace+0x277/0x390
[  255.008262][   T29]  ? lapic_can_unplug_cpu+0xa0/0xa0
[  255.013486][   T29]  nmi_trigger_cpumask_backtrace+0x299/0x300
[  255.019545][   T29]  watchdog+0xf87/0x1210
[  255.023815][   T29]  ? proc_dohung_task_timeout_secs+0x90/0x90
[  255.029810][   T29]  ? lockdep_hardirqs_on+0x7d/0x110
[  255.035370][   T29]  ? __kthread_parkme+0x14b/0x220
[  255.040409][   T29]  ? proc_dohung_task_timeout_secs+0x90/0x90
[  255.046568][   T29]  kthread+0x2c6/0x3a0
[  255.051336][   T29]  ? _raw_spin_unlock_irq+0x23/0x50
[  255.056535][   T29]  ? kthread_complete_and_exit+0x40/0x40
[  255.062174][   T29]  ret_from_fork+0x45/0x80
[  255.067644][   T29]  ? kthread_complete_and_exit+0x40/0x40
[  255.073390][   T29]  ret_from_fork_asm+0x11/0x20
[  255.078200][   T29]  </TASK>
[  255.081735][   T29] Sending NMI from CPU 0 to CPUs 1:
[  255.087112][    C1] NMI backtrace for cpu 1
[  255.087124][    C1] CPU: 1 PID: 4509 Comm: syslogd Not tainted 6.7.0-syzkaller-g9f8413c4a66f #0
[  255.087146][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[  255.087157][    C1] RIP: 0010:write_comp_data+0x12/0x80
[  255.087190][    C1] Code: 04 25 c0 c2 03 00 48 8b 80 f0 15 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 49 89 d2 49 89 f8 49 89 f1 65 48 8b 14 25 c0 c2 03 00 <65> 8b 05 df 00 7c 7e a9 00 01 ff 00 74 0f f6 c4 01 74 59 8b 82 fc
[  255.087209][    C1] RSP: 0018:ffffc9000302f400 EFLAGS: 00000206
[  255.087226][    C1] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff813a239a
[  255.087238][    C1] RDX: ffff88802ab5d940 RSI: 0000000000000004 RDI: 0000000000000001
[  255.087251][    C1] RBP: ffffffff8ac9c960 R08: 0000000000000001 R09: 0000000000000004
[  255.087264][    C1] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000001
[  255.087276][    C1] R13: 0000000000000001 R14: 0000000000000003 R15: 0000000000000001
[  255.087287][    C1] FS:  00007f214c513380(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
[  255.087308][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  255.087322][    C1] CR2: 00007ffebc0a4fe0 CR3: 0000000026980000 CR4: 00000000003506f0
[  255.087336][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  255.087347][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  255.087360][    C1] Call Trace:
[  255.087365][    C1]  <NMI>
[  255.087372][    C1]  ? show_regs+0x8f/0xa0
[  255.087400][    C1]  ? nmi_cpu_backtrace+0x1d4/0x390
[  255.087430][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x10
[  255.087461][    C1]  ? nmi_handle+0x1a6/0x570
[  255.087486][    C1]  ? write_comp_data+0x12/0x80
[  255.087510][    C1]  ? default_do_nmi+0x6a/0x160
[  255.087542][    C1]  ? exc_nmi+0x186/0x200
[  255.087571][    C1]  ? end_repeat_nmi+0xf/0x2a
[  255.087600][    C1]  ? unwind_next_frame+0xeaa/0x2390
[  255.087621][    C1]  ? write_comp_data+0x12/0x80
[  255.087645][    C1]  ? write_comp_data+0x12/0x80
[  255.087670][    C1]  ? write_comp_data+0x12/0x80
[  255.087694][    C1]  </NMI>
[  255.087699][    C1]  <TASK>
[  255.087705][    C1]  __sanitizer_cov_trace_switch+0x54/0x90
[  255.087733][    C1]  unwind_next_frame+0xeaa/0x2390
[  255.087754][    C1]  ? __unwind_start+0x6b4/0x880
[  255.087775][    C1]  __unwind_start+0x5a4/0x880
[  255.087796][    C1]  ? write_profile+0x450/0x450
[  255.087818][    C1]  arch_stack_walk+0xaf/0x170
[  255.087843][    C1]  ? arch_stack_walk+0xaf/0x170
[  255.087865][    C1]  ? __kmem_cache_free+0xc0/0x180
[  255.087894][    C1]  stack_trace_save+0x96/0xd0
[  255.087916][    C1]  ? filter_irq_stacks+0x90/0x90
[  255.087938][    C1]  ? print_usage_bug.part.0+0x550/0x550
[  255.087972][    C1]  kasan_save_stack+0x33/0x50
[  255.088026][    C1]  kasan_set_track+0x25/0x30
[  255.088054][    C1]  kasan_save_free_info+0x2b/0x40
[  255.088077][    C1]  ____kasan_slab_free+0x15b/0x1b0
[  255.088114][    C1]  slab_free_freelist_hook+0x114/0x1e0
[  255.088143][    C1]  ? skb_free_head+0x110/0x1b0
[  255.088162][    C1]  __kmem_cache_free+0xc0/0x180
[  255.088194][    C1]  skb_free_head+0x110/0x1b0
[  255.088213][    C1]  skb_release_data+0x5ba/0x870
[  255.088234][    C1]  ? unix_detach_fds+0x1a0/0x1a0
[  255.088262][    C1]  consume_skb+0xd2/0x170
[  255.088283][    C1]  __unix_dgram_recvmsg+0x814/0xee0
[  255.088312][    C1]  ? unix_stream_connect+0x1780/0x1780
[  255.088335][    C1]  ? preempt_count_sub+0x160/0x160
[  255.088357][    C1]  ? reacquire_held_locks+0x4c0/0x4c0
[  255.088389][    C1]  ? aa_sk_perm+0x2f8/0xb40
[  255.088422][    C1]  unix_dgram_recvmsg+0xc3/0xf0
[  255.088446][    C1]  ? __unix_dgram_recvmsg+0xee0/0xee0
[  255.088471][    C1]  sock_recvmsg+0xe2/0x170
[  255.088502][    C1]  sock_read_iter+0x2c3/0x3c0
[  255.088530][    C1]  ? sock_recvmsg+0x170/0x170
[  255.088563][    C1]  ? bpf_lsm_file_permission+0x9/0x10
[  255.088586][    C1]  ? security_file_permission+0x8e/0xb0
[  255.088617][    C1]  vfs_read+0x7c5/0x8f0
[  255.088640][    C1]  ? kernel_read+0x70/0x70
[  255.088663][    C1]  ? rcu_is_watching+0x12/0xb0
[  255.088689][    C1]  ? xfd_validate_state+0x5d/0x180
[  255.088721][    C1]  ? __fget_light+0x173/0x200
[  255.088744][    C1]  ksys_read+0x1f0/0x250
[  255.088765][    C1]  ? vfs_write+0xdf0/0xdf0
[  255.088789][    C1]  do_syscall_64+0xd3/0x250
[  255.088818][    C1]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[  255.088841][    C1] RIP: 0033:0x7f214c667b6a
[  255.088856][    C1] Code: 00 3d 00 00 41 00 75 0d 50 48 8d 3d 2d 08 0a 00 e8 ea 7d 01 00 31 c0 e9 07 ff ff ff 64 8b 04 25 18 00 00 00 85 c0 75 1b 0f 05 <48> 3d 00 f0 ff ff 76 6c 48 8b 15 8f a2 0d 00 f7 d8 64 89 02 48 83
[  255.088874][    C1] RSP: 002b:00007ffcfb7b8d48 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  255.088899][    C1] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f214c667b6a
[  255.088915][    C1] RDX: 00000000000000ff RSI: 000055abe4611950 RDI: 0000000000000000
[  255.088928][    C1] RBP: 000055abe4611910 R08: 0000000000000001 R09: 0000000000000000
[  255.088940][    C1] R10: 00007f214c8063a3 R11: 0000000000000246 R12: 000055abe46119a8
[  255.088953][    C1] R13: 000055abe4611950 R14: 0000000000000000 R15: 00007f214c844a80
[  255.088974][    C1]  </TASK>
[  255.089234][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[  255.599150][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.7.0-syzkaller-g9f8413c4a66f #0
[  255.608091][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[  255.618250][   T29] Call Trace:
[  255.621548][   T29]  <TASK>
[  255.624474][   T29]  dump_stack_lvl+0xd9/0x1b0
[  255.629178][   T29]  panic+0x6dc/0x790
[  255.633080][   T29]  ? panic_smp_self_stop+0xa0/0xa0
[  255.638209][   T29]  ? preempt_schedule_thunk+0x1a/0x30
[  255.644026][   T29]  ? lapic_can_unplug_cpu+0xa0/0xa0
[  255.649369][   T29]  ? preempt_schedule_thunk+0x1a/0x30
[  255.654806][   T29]  ? watchdog+0xd3e/0x1210
[  255.659675][   T29]  ? watchdog+0xd31/0x1210
[  255.664122][   T29]  watchdog+0xd4f/0x1210
[  255.668463][   T29]  ? proc_dohung_task_timeout_secs+0x90/0x90
[  255.674457][   T29]  ? lockdep_hardirqs_on+0x7d/0x110
[  255.679870][   T29]  ? __kthread_parkme+0x14b/0x220
[  255.684902][   T29]  ? proc_dohung_task_timeout_secs+0x90/0x90
[  255.691249][   T29]  kthread+0x2c6/0x3a0
[  255.695591][   T29]  ? _raw_spin_unlock_irq+0x23/0x50
[  255.701289][   T29]  ? kthread_complete_and_exit+0x40/0x40
[  255.708511][   T29]  ret_from_fork+0x45/0x80
[  255.713029][   T29]  ? kthread_complete_and_exit+0x40/0x40
[  255.718839][   T29]  ret_from_fork_asm+0x11/0x20
[  255.724102][   T29]  </TASK>
[  255.727439][   T29] Kernel Offset: disabled
[  255.731880][   T29] Rebooting in 86400 seconds..