Warning: Permanently added '10.128.0.192' (ED25519) to the list of known hosts. 1970/01/01 00:01:28 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:01:29 parsed 1 programs [ 92.193506][ T6866] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SS [ 104.499567][ T4690] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.501412][ T4690] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.589312][ T4603] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.591336][ T4603] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 105.041046][ T6967] chnl_net:caif_netlink_parms(): no params data found [ 105.079931][ T6967] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.081752][ T6967] bridge0: port 1(bridge_slave_0) entered disabled state [ 105.083812][ T6967] bridge_slave_0: entered allmulticast mode [ 105.085718][ T6967] bridge_slave_0: entered promiscuous mode [ 105.090259][ T6967] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.092095][ T6967] bridge0: port 2(bridge_slave_1) entered disabled state [ 105.094103][ T6967] bridge_slave_1: entered allmulticast mode [ 105.096108][ T6967] bridge_slave_1: entered promiscuous mode [ 105.110226][ T6967] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 105.113869][ T6967] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 105.248502][ T6967] team0: Port device team_slave_0 added [ 105.251238][ T6967] team0: Port device team_slave_1 added [ 105.261190][ T6967] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 105.263054][ T6967] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 105.269587][ T6967] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 105.273980][ T6967] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 105.275711][ T6967] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 105.282335][ T6967] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 105.342095][ T6967] hsr_slave_0: entered promiscuous mode [ 105.344096][ T6967] hsr_slave_1: entered promiscuous mode [ 106.259358][ T6967] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 106.262666][ T6967] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 106.265937][ T6967] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 106.269271][ T6967] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 106.365202][ T6967] 8021q: adding VLAN 0 to HW filter on device bond0 [ 106.374340][ T6967] 8021q: adding VLAN 0 to HW filter on device team0 [ 106.378604][ T668] bridge0: port 1(bridge_slave_0) entered blocking state [ 106.380459][ T668] bridge0: port 1(bridge_slave_0) entered forwarding state [ 106.394422][ T668] bridge0: port 2(bridge_slave_1) entered blocking state [ 106.396520][ T668] bridge0: port 2(bridge_slave_1) entered forwarding state [ 106.408267][ T6967] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 106.482255][ T6967] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 106.508587][ T6967] veth0_vlan: entered promiscuous mode [ 106.515791][ T6967] veth1_vlan: entered promiscuous mode [ 106.531051][ T6967] veth0_macvtap: entered promiscuous mode [ 106.534875][ T6967] veth1_macvtap: entered promiscuous mode [ 106.544949][ T6967] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 106.550354][ T6967] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 106.558302][ T6967] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.560562][ T6967] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.563952][ T6967] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.566076][ T6967] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.896011][ T4690] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 107.024827][ T4690] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 107.095456][ T6014] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 107.098692][ T6014] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 107.101041][ T6014] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 107.104423][ T6014] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 107.106427][ T6014] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 107.108260][ T6014] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 107.128473][ T4690] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 107.207834][ T4690] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 1970/01/01 00:01:48 executed programs: 0 [ 108.267578][ T6494] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 108.270986][ T6494] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 108.274478][ T6494] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 108.276640][ T6494] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 108.282892][ T6494] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 108.285756][ T6494] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 108.368400][ T7215] chnl_net:caif_netlink_parms(): no params data found [ 108.419989][ T7215] bridge0: port 1(bridge_slave_0) entered blocking state [ 108.421844][ T7215] bridge0: port 1(bridge_slave_0) entered disabled state [ 108.423723][ T7215] bridge_slave_0: entered allmulticast mode [ 108.425601][ T7215] bridge_slave_0: entered promiscuous mode [ 108.428467][ T7215] bridge0: port 2(bridge_slave_1) entered blocking state [ 108.430314][ T7215] bridge0: port 2(bridge_slave_1) entered disabled state [ 108.432051][ T7215] bridge_slave_1: entered allmulticast mode [ 108.435906][ T7215] bridge_slave_1: entered promiscuous mode [ 108.449409][ T7215] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 108.453347][ T7215] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 108.465956][ T7215] team0: Port device team_slave_0 added [ 108.468673][ T7215] team0: Port device team_slave_1 added [ 108.483002][ T7215] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 108.484657][ T7215] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 108.490481][ T7215] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 108.494697][ T7215] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 108.496356][ T7215] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 108.503091][ T7215] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 108.524546][ T7215] hsr_slave_0: entered promiscuous mode [ 108.526365][ T7215] hsr_slave_1: entered promiscuous mode [ 108.528030][ T7215] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 108.529920][ T7215] Cannot create hsr debugfs directory [ 110.323061][ T6494] Bluetooth: hci0: command tx timeout [ 110.337702][ T4690] bridge_slave_1: left allmulticast mode [ 110.339058][ T4690] bridge_slave_1: left promiscuous mode [ 110.340369][ T4690] bridge0: port 2(bridge_slave_1) entered disabled state [ 110.347993][ T4690] bridge_slave_0: left allmulticast mode [ 110.349311][ T4690] bridge_slave_0: left promiscuous mode [ 110.350596][ T4690] bridge0: port 1(bridge_slave_0) entered disabled state [ 112.014528][ T4690] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 112.064632][ T4690] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 112.114104][ T4690] bond0 (unregistering): Released all slaves [ 112.199534][ T4690] hsr_slave_0: left promiscuous mode [ 112.201350][ T4690] hsr_slave_1: left promiscuous mode [ 112.204962][ T4690] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 112.208780][ T4690] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 112.212767][ T4690] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 112.214549][ T4690] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 112.230783][ T4690] veth1_macvtap: left promiscuous mode [ 112.232199][ T4690] veth0_macvtap: left promiscuous mode [ 112.236350][ T4690] veth1_vlan: left promiscuous mode [ 112.237801][ T4690] veth0_vlan: left promiscuous mode [ 112.403426][ T6494] Bluetooth: hci0: command tx timeout [ 114.085223][ T4690] team0 (unregistering): Port device team_slave_1 removed [ 114.264541][ T4690] team0 (unregistering): Port device team_slave_0 removed [ 114.482686][ T6494] Bluetooth: hci0: command tx timeout [ 116.562867][ T6494] Bluetooth: hci0: command tx timeout [ 116.918639][ T7215] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 116.922100][ T7215] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 116.928295][ T7215] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 116.932211][ T7215] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 116.974455][ T7215] 8021q: adding VLAN 0 to HW filter on device bond0 [ 116.982957][ T7215] 8021q: adding VLAN 0 to HW filter on device team0 [ 116.987991][ T4603] bridge0: port 1(bridge_slave_0) entered blocking state [ 116.989811][ T4603] bridge0: port 1(bridge_slave_0) entered forwarding state [ 116.996114][ T45] bridge0: port 2(bridge_slave_1) entered blocking state [ 116.997962][ T45] bridge0: port 2(bridge_slave_1) entered forwarding state [ 117.067916][ T7215] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 117.070471][ T7215] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 117.251981][ T7215] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 117.275164][ T7215] veth0_vlan: entered promiscuous mode [ 117.279139][ T7215] veth1_vlan: entered promiscuous mode [ 117.306774][ T7215] veth0_macvtap: entered promiscuous mode [ 117.309865][ T7215] veth1_macvtap: entered promiscuous mode [ 117.335078][ T7215] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 117.340801][ T7215] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 117.359198][ T7215] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.361277][ T7215] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.363562][ T7215] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.365606][ T7215] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.800242][ T4603] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.802362][ T4603] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 117.818420][ T668] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.821109][ T668] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 1970/01/01 00:01:57 executed programs: 2 [ 118.061223][ T7412] loop0: detected capacity change from 0 to 32768 [ 118.096405][ T7412] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 118.138064][ T7412] XFS (loop0): Ending clean mount [ 118.144948][ T7412] XFS (loop0): Quotacheck needed: Please wait. [ 118.159333][ T7412] XFS (loop0): Quotacheck: Done. [ 120.889452][ T7412] [ 120.890156][ T7412] ===================================== [ 120.891651][ T7412] WARNING: bad unlock balance detected! [ 120.893064][ T7412] 6.14.0-rc4-syzkaller-ge056da87c780-dirty #0 Not tainted [ 120.894758][ T7412] ------------------------------------- [ 120.896147][ T7412] syz.0.16/7412 is trying to release lock (&mm->mmap_lock) at: [ 120.897923][ T7412] [] __mm_populate+0x354/0x408 [ 120.899555][ T7412] but there are no more locks to release! [ 120.901014][ T7412] [ 120.901014][ T7412] other info that might help us debug this: [ 120.903156][ T7412] no locks held by syz.0.16/7412. [ 120.904542][ T7412] [ 120.904542][ T7412] stack backtrace: [ 120.906160][ T7412] CPU: 0 UID: 0 PID: 7412 Comm: syz.0.16 Not tainted 6.14.0-rc4-syzkaller-ge056da87c780-dirty #0 [ 120.906175][ T7412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 120.906183][ T7412] Call trace: [ 120.906186][ T7412] show_stack+0x2c/0x3c (C) [ 120.906206][ T7412] dump_stack_lvl+0xe4/0x150 [ 120.906220][ T7412] dump_stack+0x1c/0x28 [ 120.906232][ T7412] print_unlock_imbalance_bug+0x254/0x2ac [ 120.906245][ T7412] lock_release+0x410/0x9e4 [ 120.906256][ T7412] up_read+0x24/0x3c [ 120.906265][ T7412] __mm_populate+0x354/0x408 [ 120.906276][ T7412] vm_mmap_pgoff+0x304/0x3c4 [ 120.906287][ T7412] ksys_mmap_pgoff+0x3a4/0x5c8 [ 120.906299][ T7412] __arm64_sys_mmap+0xf8/0x110 [ 120.906311][ T7412] invoke_syscall+0x98/0x2b8 [ 120.906323][ T7412] el0_svc_common+0x130/0x23c [ 120.906335][ T7412] do_el0_svc+0x48/0x58 [ 120.906347][ T7412] el0_svc+0x54/0x168 [ 120.906357][ T7412] el0t_64_sync_handler+0x84/0x108 [ 120.906367][ T7412] el0t_64_sync+0x198/0x19c [ 120.931724][ T7412] ------------[ cut here ]------------ [ 120.933229][ T7412] DEBUG_RWSEMS_WARN_ON(tmp < 0): count = 0xffffffffffffff00, magic = 0xffff0000d520abe0, owner = 0x1, curr 0xffff0000c9001e80, list empty [ 120.936852][ T7412] WARNING: CPU: 0 PID: 7412 at kernel/locking/rwsem.c:1346 __up_read+0x3bc/0x5f8 [ 120.939099][ T7412] Modules linked in: [ 120.940086][ T7412] CPU: 0 UID: 0 PID: 7412 Comm: syz.0.16 Not tainted 6.14.0-rc4-syzkaller-ge056da87c780-dirty #0 [ 120.942779][ T7412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 120.945429][ T7412] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 120.947416][ T7412] pc : __up_read+0x3bc/0x5f8 [ 120.948602][ T7412] lr : __up_read+0x3bc/0x5f8 [ 120.949776][ T7412] sp : ffff80009c0c79e0 [ 120.950862][ T7412] x29: ffff80009c0c7a60 x28: 1ffff00011f780cb x27: ffff80008fbc0000 [ 120.952893][ T7412] x26: dfff800000000000 x25: ffffffffffffff00 x24: ffff0000d520ac38 [ 120.955003][ T7412] x23: ffff0000d520abe0 x22: ffffffffffffff00 x21: 0000000000000001 [ 120.957000][ T7412] x20: ffff0000c9001e80 x19: ffff0000d520abe0 x18: 0000000000000008 [ 120.959101][ T7412] x17: 0000000000000000 x16: ffff8000832b81a0 x15: 0000000000000001 [ 120.961146][ T7412] x14: 1ffff00013818e94 x13: 0000000000000000 x12: 0000000000000000 [ 120.963260][ T7412] x11: 0000000000000003 x10: 0000000000ff0100 x9 : bdbc827636499100 [ 120.965284][ T7412] x8 : bdbc827636499100 x7 : 0000000000000001 x6 : 0000000000000001 [ 120.967345][ T7412] x5 : ffff80009c0c7198 x4 : ffff80008fcaf780 x3 : ffff80008324a1b4 [ 120.969368][ T7412] x2 : 0000000000000001 x1 : 0000000100000001 x0 : 0000000000000000 [ 120.971357][ T7412] Call trace: [ 120.972192][ T7412] __up_read+0x3bc/0x5f8 (P) [ 120.973366][ T7412] up_read+0x2c/0x3c [ 120.974396][ T7412] __mm_populate+0x354/0x408 [ 120.975535][ T7412] vm_mmap_pgoff+0x304/0x3c4 [ 120.976724][ T7412] ksys_mmap_pgoff+0x3a4/0x5c8 [ 120.977929][ T7412] __arm64_sys_mmap+0xf8/0x110 [ 120.979189][ T7412] invoke_syscall+0x98/0x2b8 [ 120.980373][ T7412] el0_svc_common+0x130/0x23c [ 120.981499][ T7412] do_el0_svc+0x48/0x58 [ 120.982474][ T7412] el0_svc+0x54/0x168 [ 120.983399][ T7412] el0t_64_sync_handler+0x84/0x108 [ 120.984780][ T7412] el0t_64_sync+0x198/0x19c [ 120.985853][ T7412] irq event stamp: 74469 [ 120.986861][ T7412] hardirqs last enabled at (74469): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 120.989412][ T7412] hardirqs last disabled at (74468): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 120.992104][ T7412] softirqs last enabled at (74288): [] local_bh_enable+0x10/0x34 [ 120.994566][ T7412] softirqs last disabled at (74286): [] local_bh_disable+0x10/0x34 [ 120.997014][ T7412] ---[ end trace 0000000000000000 ]--- [ 125.923050][ T2366] ieee802154 phy0 wpan0: encryption failed: -22 [ 125.924527][ T2366] ieee802154 phy1 wpan1: encryption failed: -22