syzkaller login: [ 53.361203][ T5746] sshd (5746) used greatest stack depth: 19560 bytes left Warning: Permanently added '[localhost]:41157' (ED25519) to the list of known hosts. 2026/03/03 21:44:41 parsed 1 programs [ 60.923725][ T5808] cgroup: Unknown subsys name 'net' [ 61.045956][ T5808] cgroup: Unknown subsys name 'cpuset' [ 61.051095][ T5808] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 62.516352][ T5808] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 64.968285][ T56] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 64.971065][ T56] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 64.973925][ T56] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 64.976498][ T56] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 64.979030][ T56] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 65.143312][ T5827] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 65.626176][ T5842] chnl_net:caif_netlink_parms(): no params data found [ 65.841101][ T5842] bridge0: port 1(bridge_slave_0) entered blocking state [ 65.844178][ T5842] bridge0: port 1(bridge_slave_0) entered disabled state [ 65.846824][ T5842] bridge_slave_0: entered allmulticast mode [ 65.849728][ T5842] bridge_slave_0: entered promiscuous mode [ 65.883615][ T5842] bridge0: port 2(bridge_slave_1) entered blocking state [ 65.885912][ T5842] bridge0: port 2(bridge_slave_1) entered disabled state [ 65.888238][ T5842] bridge_slave_1: entered allmulticast mode [ 65.890903][ T5842] bridge_slave_1: entered promiscuous mode [ 65.947075][ T5842] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 65.964450][ T5842] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 66.008303][ T5842] team0: Port device team_slave_0 added [ 66.013905][ T5842] team0: Port device team_slave_1 added [ 66.037856][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 66.040062][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 66.048980][ T5842] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 66.057996][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 66.060191][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 66.081478][ T5842] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 66.203924][ T5842] hsr_slave_0: entered promiscuous mode [ 66.206439][ T5842] hsr_slave_1: entered promiscuous mode [ 66.220958][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 66.233409][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 66.318708][ T69] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 66.324094][ T69] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 66.624237][ T5842] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 66.630610][ T5842] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 66.645469][ T5842] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 66.650381][ T5842] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 67.038349][ T5842] 8021q: adding VLAN 0 to HW filter on device bond0 [ 67.151343][ T5842] 8021q: adding VLAN 0 to HW filter on device team0 [ 67.175036][ T52] bridge0: port 1(bridge_slave_0) entered blocking state [ 67.178042][ T52] bridge0: port 1(bridge_slave_0) entered forwarding state [ 67.189672][ T52] bridge0: port 2(bridge_slave_1) entered blocking state [ 67.192216][ T52] bridge0: port 2(bridge_slave_1) entered forwarding state [ 67.509890][ T5842] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 67.546049][ T5842] veth0_vlan: entered promiscuous mode [ 67.555235][ T5842] veth1_vlan: entered promiscuous mode [ 67.574414][ T5842] veth0_macvtap: entered promiscuous mode [ 67.578438][ T5842] veth1_macvtap: entered promiscuous mode [ 67.587019][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 67.596125][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 67.605538][ T5673] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.609118][ T5673] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.611922][ T5673] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.614944][ T5673] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 2026/03/03 21:44:50 executed programs: 0 [ 67.742807][ T5195] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 67.745934][ T5195] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 67.749269][ T5195] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 67.761306][ T5195] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 67.765817][ T5195] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 67.790568][ T56] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 67.809002][ T5824] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 67.813119][ T5824] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 67.817298][ T5928] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 67.820793][ T5824] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 67.824687][ T5824] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 67.828370][ T5824] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 67.835697][ T5928] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 67.838877][ T5928] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 67.843429][ T5824] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 68.168845][ T5924] chnl_net:caif_netlink_parms(): no params data found [ 68.213687][ T5673] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 68.271181][ T5921] chnl_net:caif_netlink_parms(): no params data found [ 68.343347][ T5923] chnl_net:caif_netlink_parms(): no params data found [ 68.369906][ T5924] bridge0: port 1(bridge_slave_0) entered blocking state [ 68.373070][ T5924] bridge0: port 1(bridge_slave_0) entered disabled state [ 68.376026][ T5924] bridge_slave_0: entered allmulticast mode [ 68.379844][ T5924] bridge_slave_0: entered promiscuous mode [ 68.416837][ T5924] bridge0: port 2(bridge_slave_1) entered blocking state [ 68.419786][ T5924] bridge0: port 2(bridge_slave_1) entered disabled state [ 68.423078][ T5924] bridge_slave_1: entered allmulticast mode [ 68.426814][ T5924] bridge_slave_1: entered promiscuous mode [ 68.482761][ T5921] bridge0: port 1(bridge_slave_0) entered blocking state [ 68.485756][ T5921] bridge0: port 1(bridge_slave_0) entered disabled state [ 68.488686][ T5921] bridge_slave_0: entered allmulticast mode [ 68.492789][ T5921] bridge_slave_0: entered promiscuous mode [ 68.497688][ T5921] bridge0: port 2(bridge_slave_1) entered blocking state [ 68.500519][ T5921] bridge0: port 2(bridge_slave_1) entered disabled state [ 68.504326][ T5921] bridge_slave_1: entered allmulticast mode [ 68.508003][ T5921] bridge_slave_1: entered promiscuous mode [ 68.519962][ T5924] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 68.546719][ T5924] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 68.564224][ T5921] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 68.592640][ T5921] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 68.629975][ T5924] team0: Port device team_slave_0 added [ 68.633031][ T5923] bridge0: port 1(bridge_slave_0) entered blocking state [ 68.636151][ T5923] bridge0: port 1(bridge_slave_0) entered disabled state [ 68.639124][ T5923] bridge_slave_0: entered allmulticast mode [ 68.643440][ T5923] bridge_slave_0: entered promiscuous mode [ 68.648091][ T5923] bridge0: port 2(bridge_slave_1) entered blocking state [ 68.650940][ T5923] bridge0: port 2(bridge_slave_1) entered disabled state [ 68.654248][ T5923] bridge_slave_1: entered allmulticast mode [ 68.658106][ T5923] bridge_slave_1: entered promiscuous mode [ 68.675692][ T5921] team0: Port device team_slave_0 added [ 68.679805][ T5924] team0: Port device team_slave_1 added [ 68.718245][ T5921] team0: Port device team_slave_1 added [ 68.735720][ T5923] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 68.750964][ T5924] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 68.754260][ T5924] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 68.765439][ T5924] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 68.776240][ T5923] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 68.791074][ T5924] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 68.794137][ T5924] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 68.804511][ T5924] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 68.833443][ T5921] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 68.836218][ T5921] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 68.846382][ T5921] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 68.853328][ T5921] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 68.856130][ T5921] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 68.866571][ T5921] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 68.880357][ T5923] team0: Port device team_slave_0 added [ 68.886086][ T5923] team0: Port device team_slave_1 added [ 68.922231][ T5923] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 68.924885][ T5923] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 68.935811][ T5923] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 68.972898][ T5923] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 68.975760][ T5923] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 68.986562][ T5923] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 69.006338][ T5924] hsr_slave_0: entered promiscuous mode [ 69.009527][ T5924] hsr_slave_1: entered promiscuous mode [ 69.012668][ T5924] debugfs: 'hsr0' already exists in 'hsr' [ 69.014885][ T5924] Cannot create hsr debugfs directory [ 69.043567][ T5921] hsr_slave_0: entered promiscuous mode [ 69.046860][ T5921] hsr_slave_1: entered promiscuous mode [ 69.049790][ T5921] debugfs: 'hsr0' already exists in 'hsr' [ 69.052598][ T5921] Cannot create hsr debugfs directory [ 69.096794][ T5923] hsr_slave_0: entered promiscuous mode [ 69.100147][ T5923] hsr_slave_1: entered promiscuous mode [ 69.104259][ T5923] debugfs: 'hsr0' already exists in 'hsr' [ 69.106619][ T5923] Cannot create hsr debugfs directory [ 69.325929][ T5673] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 69.453006][ T5921] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 69.459007][ T5921] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 69.466020][ T5921] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 69.472767][ T5921] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 69.547835][ T5921] 8021q: adding VLAN 0 to HW filter on device bond0 [ 69.567812][ T5921] 8021q: adding VLAN 0 to HW filter on device team0 [ 69.574625][ T52] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.577207][ T52] bridge0: port 1(bridge_slave_0) entered forwarding state [ 69.588321][ T52] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.590977][ T52] bridge0: port 2(bridge_slave_1) entered forwarding state [ 69.703561][ T5921] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 69.726273][ T5921] veth0_vlan: entered promiscuous mode [ 69.732819][ T5921] veth1_vlan: entered promiscuous mode [ 69.748486][ T5921] veth0_macvtap: entered promiscuous mode [ 69.758327][ T5921] veth1_macvtap: entered promiscuous mode [ 69.769080][ T5921] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 69.778181][ T5921] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 69.786036][ T5846] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.790246][ T5903] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.793993][ T5903] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.802552][ T5903] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.823589][ T56] Bluetooth: hci0: command tx timeout [ 69.852819][ T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 69.856099][ T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 69.888848][ T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 69.892811][ T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 69.901858][ T56] Bluetooth: hci1: command tx timeout [ 69.902293][ T5195] Bluetooth: hci2: command tx timeout [ 70.420290][ T5673] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 70.960422][ T5673] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 71.076753][ T5673] bridge_slave_1: left allmulticast mode [ 71.084834][ T5673] bridge_slave_1: left promiscuous mode [ 71.087136][ T5673] bridge0: port 2(bridge_slave_1) entered disabled state [ 71.105263][ T5673] bridge_slave_0: left allmulticast mode [ 71.107113][ T5673] bridge_slave_0: left promiscuous mode [ 71.109037][ T5673] bridge0: port 1(bridge_slave_0) entered disabled state [ 71.277787][ T5673] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 71.284921][ T5673] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 71.289202][ T5673] bond0 (unregistering): Released all slaves [ 71.453765][ T5673] hsr_slave_0: left promiscuous mode [ 71.464570][ T5673] hsr_slave_1: left promiscuous mode [ 71.473211][ T5673] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 71.487839][ T5673] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 71.492792][ T5673] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 71.498719][ T5673] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 71.551321][ T5673] veth1_macvtap: left promiscuous mode [ 71.553694][ T5673] veth0_macvtap: left promiscuous mode [ 71.561686][ T5673] veth1_vlan: left promiscuous mode [ 71.563665][ T5673] veth0_vlan: left promiscuous mode [ 71.808090][ T5673] team0 (unregistering): Port device team_slave_1 removed [ 71.821539][ T5673] team0 (unregistering): Port device team_slave_0 removed [ 71.901625][ T5195] Bluetooth: hci0: command tx timeout [ 71.981716][ T5195] Bluetooth: hci1: command tx timeout [ 71.983910][ T5195] Bluetooth: hci2: command tx timeout [ 72.362000][ T5924] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 72.390928][ T5924] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 72.407374][ T5924] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 72.415882][ T5924] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 72.507243][ T5923] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 72.522341][ T5923] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 72.547476][ T5923] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 72.575891][ T5923] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 72.674059][ T5924] 8021q: adding VLAN 0 to HW filter on device bond0 [ 72.686304][ T5924] 8021q: adding VLAN 0 to HW filter on device team0 [ 72.723886][ T69] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.726288][ T69] bridge0: port 1(bridge_slave_0) entered forwarding state [ 72.737071][ T69] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.739335][ T69] bridge0: port 2(bridge_slave_1) entered forwarding state 2026/03/03 21:44:55 executed programs: 112 [ 72.796209][ T5924] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 72.890170][ T5923] 8021q: adding VLAN 0 to HW filter on device bond0 [ 72.935579][ T5923] 8021q: adding VLAN 0 to HW filter on device team0 [ 72.945562][ T52] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.948039][ T52] bridge0: port 1(bridge_slave_0) entered forwarding state [ 72.964582][ T52] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.966990][ T52] bridge0: port 2(bridge_slave_1) entered forwarding state [ 73.077209][ T5924] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.177975][ T5924] veth0_vlan: entered promiscuous mode [ 73.189167][ T5923] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.200928][ T5924] veth1_vlan: entered promiscuous mode [ 73.275676][ T5923] veth0_vlan: entered promiscuous mode [ 73.280097][ T5924] veth0_macvtap: entered promiscuous mode [ 73.294573][ T5923] veth1_vlan: entered promiscuous mode [ 73.298285][ T5924] veth1_macvtap: entered promiscuous mode [ 73.329587][ T5924] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 73.349435][ T5924] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 73.354023][ T5923] veth0_macvtap: entered promiscuous mode [ 73.369784][ T5673] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.376243][ T5673] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.389026][ T5923] veth1_macvtap: entered promiscuous mode [ 73.395034][ T5673] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.417183][ T5673] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.447557][ T5923] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 73.470388][ T5923] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 73.496293][ T5903] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.515254][ T5903] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.544442][ T5903] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.549142][ T5903] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.562357][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 73.565649][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 73.652387][ T1093] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 73.656446][ T1093] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 73.693676][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 73.700112][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 73.747015][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 73.754284][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 73.780256][ T6273] BUG: spinlock bad magic on CPU#0, syz.0.151/6273 [ 73.782812][ T6273] lock: 0xffff8881165dc808, .magic: 00000000, .owner: /-1, .owner_cpu: 0 [ 73.785727][ T6273] CPU: 0 UID: 0 PID: 6273 Comm: syz.0.151 Not tainted syzkaller #0 PREEMPT(full) [ 73.785738][ T6273] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014 [ 73.785743][ T6273] Call Trace: [ 73.785746][ T6273] [ 73.785750][ T6273] dump_stack_lvl+0xe8/0x150 [ 73.785762][ T6273] do_raw_spin_lock+0x1e5/0x2f0 [ 73.785771][ T6273] ? lock_acquire+0xf0/0x2e0 [ 73.785779][ T6273] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 73.785786][ T6273] region_del+0xbe/0x950 [ 73.785793][ T6273] ? filemap_get_folios_tag+0x558/0x660 [ 73.785800][ T6273] ? unwind_get_return_address+0x4d/0x90 [ 73.785812][ T6273] hugetlb_unreserve_pages+0xfa/0x230 [ 73.785822][ T6273] remove_inode_hugepages+0x1036/0x11a0 [ 73.785831][ T6273] ? kasan_save_stack+0x4d/0x60 [ 73.785838][ T6273] ? kasan_save_stack+0x3e/0x60 [ 73.785843][ T6273] ? kasan_record_aux_stack+0xbd/0xd0 [ 73.785853][ T6273] ? call_rcu+0xee/0x890 [ 73.785862][ T6273] ? shrink_kill+0xa9/0x2c0 [ 73.785872][ T6273] ? shrink_dentry_list+0x2e0/0x5e0 [ 73.785883][ T6273] ? shrink_dcache_tree+0xcf/0x310 [ 73.785892][ T6273] ? generic_shutdown_super+0x6f/0x2d0 [ 73.785901][ T6273] ? kill_anon_super+0x3b/0x70 [ 73.785907][ T6273] ? deactivate_locked_super+0xbc/0x130 [ 73.785916][ T6273] ? do_exit+0x69b/0x2320 [ 73.785923][ T6273] ? get_signal+0x1284/0x1330 [ 73.785931][ T6273] ? arch_do_signal_or_restart+0xbc/0x830 [ 73.785939][ T6273] ? do_syscall_64+0x32d/0xf80 [ 73.785946][ T6273] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 73.785953][ T6273] ? __pfx_remove_inode_hugepages+0x10/0x10 [ 73.785963][ T6273] ? __pfx_inode_wait_for_writeback+0x10/0x10 [ 73.785970][ T6273] ? do_raw_spin_lock+0x12b/0x2f0 [ 73.785977][ T6273] hugetlbfs_evict_inode+0xaf/0x260 [ 73.785985][ T6273] ? __pfx_hugetlbfs_evict_inode+0x10/0x10 [ 73.785993][ T6273] evict+0x61e/0xb10 [ 73.786001][ T6273] ? __pfx_evict+0x10/0x10 [ 73.786007][ T6273] ? do_raw_spin_unlock+0x4d/0x210 [ 73.786014][ T6273] ? _raw_spin_unlock+0x28/0x50 [ 73.786022][ T6273] ? iput+0xb25/0xe80 [ 73.786031][ T6273] __dentry_kill+0x1a2/0x5e0 [ 73.786039][ T6273] ? finish_dput+0xad/0x480 [ 73.786048][ T6273] finish_dput+0xc9/0x480 [ 73.786057][ T6273] shrink_dcache_for_umount+0xe1/0x1f0 [ 73.786067][ T6273] generic_shutdown_super+0x6f/0x2d0 [ 73.786077][ T6273] kill_anon_super+0x3b/0x70 [ 73.786083][ T6273] deactivate_locked_super+0xbc/0x130 [ 73.786092][ T6273] cleanup_mnt+0x437/0x4d0 [ 73.786099][ T6273] ? _raw_spin_unlock_irq+0x23/0x50 [ 73.786108][ T6273] task_work_run+0x1d9/0x270 [ 73.786116][ T6273] ? __pfx_task_work_run+0x10/0x10 [ 73.786122][ T6273] ? do_raw_spin_unlock+0x4d/0x210 [ 73.786129][ T6273] do_exit+0x69b/0x2320 [ 73.786136][ T6273] ? try_to_wake_up+0x7fc/0x1390 [ 73.786143][ T6273] ? __pfx_do_exit+0x10/0x10 [ 73.786149][ T6273] ? do_raw_spin_lock+0x12b/0x2f0 [ 73.786157][ T6273] do_group_exit+0x21b/0x2d0 [ 73.786163][ T6273] ? _raw_spin_unlock_irq+0x23/0x50 [ 73.786172][ T6273] get_signal+0x1284/0x1330 [ 73.786182][ T6273] arch_do_signal_or_restart+0xbc/0x830 [ 73.786190][ T6273] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 73.786199][ T6273] exit_to_user_mode_loop+0x86/0x480 [ 73.786207][ T6273] ? rcu_is_watching+0x15/0xb0 [ 73.786216][ T6273] do_syscall_64+0x32d/0xf80 [ 73.786222][ T6273] ? trace_irq_disable+0x3b/0x150 [ 73.786231][ T6273] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 73.786238][ T6273] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 73.786245][ T6273] RIP: 0033:0x7f6e0f19c799 [ 73.786251][ T6273] Code: Unable to access opcode bytes at 0x7f6e0f19c76f. [ 73.786255][ T6273] RSP: 002b:00007f6e101360e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 73.786263][ T6273] RAX: fffffffffffffe00 RBX: 00007f6e0f415fa8 RCX: 00007f6e0f19c799 [ 73.786268][ T6273] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6e0f415fa8 [ 73.786273][ T6273] RBP: 00007f6e0f415fa0 R08: 0000000000000000 R09: 0000000000000000 [ 73.786277][ T6273] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 73.786281][ T6273] R13: 00007f6e0f416038 R14: 00007fff1de1a520 R15: 00007fff1de1a608 [ 73.786288][ T6273] [ 73.786306][ T6273] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN PTI [ 73.939029][ T6273] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 73.941835][ T6273] CPU: 0 UID: 0 PID: 6273 Comm: syz.0.151 Not tainted syzkaller #0 PREEMPT(full) [ 73.944882][ T6273] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014 [ 73.948368][ T6273] RIP: 0010:region_del+0x108/0x950 [ 73.950138][ T6273] Code: 24 20 49 29 c4 4c 03 23 48 89 03 48 8b 5c 24 40 4c 39 eb 0f 84 64 05 00 00 e8 74 c0 9c ff 4c 89 64 24 10 49 89 df 49 c1 ef 03 <41> 80 3c 2f 00 74 08 48 89 df e8 b9 d8 06 00 48 8b 03 48 89 44 24 [ 73.956604][ T6273] RSP: 0018:ffffc90003b17330 EFLAGS: 00010246 [ 73.958541][ T6273] RAX: a69e65823ec40000 RBX: 0000000000000000 RCX: 0000000000000001 [ 73.961104][ T6273] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffffc90003b172a0 [ 73.963839][ T6273] RBP: dffffc0000000000 R08: 0000000000000003 R09: 0000000000000004 [ 73.966706][ T6273] R10: dffffc0000000000 R11: fffff52000762e54 R12: 0000000000000000 [ 73.969530][ T6273] R13: ffff8881165dc848 R14: 1ffff11022cbb909 R15: 0000000000000000 [ 73.971912][ T6273] FS: 0000000000000000(0000) GS:ffff88818de67000(0000) knlGS:0000000000000000 [ 73.974513][ T6273] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 73.976447][ T6273] CR2: 00007fc23744ea7c CR3: 000000000e54c000 CR4: 00000000000006f0 [ 73.979241][ T6273] Call Trace: [ 73.980355][ T6273] [ 73.981294][ T6273] ? filemap_get_folios_tag+0x558/0x660 [ 73.982963][ T6273] hugetlb_unreserve_pages+0xfa/0x230 [ 73.984715][ T6273] remove_inode_hugepages+0x1036/0x11a0 [ 73.986439][ T6273] ? kasan_save_stack+0x4d/0x60 [ 73.987897][ T6273] ? kasan_save_stack+0x3e/0x60 [ 73.989600][ T6273] ? kasan_record_aux_stack+0xbd/0xd0 [ 73.991616][ T6273] ? call_rcu+0xee/0x890 [ 73.993133][ T6273] ? shrink_kill+0xa9/0x2c0 [ 73.994785][ T6273] ? shrink_dentry_list+0x2e0/0x5e0 [ 73.996366][ T6273] ? shrink_dcache_tree+0xcf/0x310 [ 73.997980][ T6273] ? generic_shutdown_super+0x6f/0x2d0 [ 73.999698][ T6273] ? kill_anon_super+0x3b/0x70 [ 74.001335][ T6273] ? deactivate_locked_super+0xbc/0x130 [ 74.003050][ T6273] ? do_exit+0x69b/0x2320 [ 74.004381][ T6273] ? get_signal+0x1284/0x1330 [ 74.006060][ T6273] ? arch_do_signal_or_restart+0xbc/0x830 [ 74.008124][ T6273] ? do_syscall_64+0x32d/0xf80 [ 74.009792][ T6273] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.011767][ T6273] ? __pfx_remove_inode_hugepages+0x10/0x10 [ 74.013796][ T6273] ? __pfx_inode_wait_for_writeback+0x10/0x10 [ 74.015810][ T6273] ? do_raw_spin_lock+0x12b/0x2f0 [ 74.017332][ T6273] hugetlbfs_evict_inode+0xaf/0x260 [ 74.019038][ T6273] ? __pfx_hugetlbfs_evict_inode+0x10/0x10 [ 74.020842][ T6273] evict+0x61e/0xb10 [ 74.022070][ T6273] ? __pfx_evict+0x10/0x10 [ 74.023445][ T6273] ? do_raw_spin_unlock+0x4d/0x210 [ 74.024962][ T6273] ? _raw_spin_unlock+0x28/0x50 [ 74.026461][ T6273] ? iput+0xb25/0xe80 [ 74.027686][ T6273] __dentry_kill+0x1a2/0x5e0 [ 74.029098][ T6273] ? finish_dput+0xad/0x480 [ 74.030485][ T6273] finish_dput+0xc9/0x480 [ 74.031867][ T6273] shrink_dcache_for_umount+0xe1/0x1f0 [ 74.033722][ T6273] generic_shutdown_super+0x6f/0x2d0 [ 74.035326][ T6273] kill_anon_super+0x3b/0x70 [ 74.036748][ T6273] deactivate_locked_super+0xbc/0x130 [ 74.038379][ T6273] cleanup_mnt+0x437/0x4d0 [ 74.039751][ T6273] ? _raw_spin_unlock_irq+0x23/0x50 [ 74.041342][ T6273] task_work_run+0x1d9/0x270 [ 74.042843][ T6273] ? __pfx_task_work_run+0x10/0x10 [ 74.044400][ T6273] ? do_raw_spin_unlock+0x4d/0x210 [ 74.045952][ T6273] do_exit+0x69b/0x2320 [ 74.047190][ T6273] ? try_to_wake_up+0x7fc/0x1390 [ 74.048861][ T6273] ? __pfx_do_exit+0x10/0x10 [ 74.050305][ T6273] ? do_raw_spin_lock+0x12b/0x2f0 [ 74.051919][ T6273] do_group_exit+0x21b/0x2d0 [ 74.053353][ T6273] ? _raw_spin_unlock_irq+0x23/0x50 [ 74.054950][ T6273] get_signal+0x1284/0x1330 [ 74.056367][ T6273] arch_do_signal_or_restart+0xbc/0x830 [ 74.058222][ T6273] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 74.060448][ T6273] exit_to_user_mode_loop+0x86/0x480 [ 74.062138][ T6273] ? rcu_is_watching+0x15/0xb0 [ 74.063703][ T6273] do_syscall_64+0x32d/0xf80 [ 74.065302][ T6273] ? trace_irq_disable+0x3b/0x150 [ 74.067199][ T6273] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.069491][ T6273] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.071417][ T6273] RIP: 0033:0x7f6e0f19c799 [ 74.072870][ T6273] Code: Unable to access opcode bytes at 0x7f6e0f19c76f. [ 74.075182][ T6273] RSP: 002b:00007f6e101360e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 74.078122][ T6273] RAX: fffffffffffffe00 RBX: 00007f6e0f415fa8 RCX: 00007f6e0f19c799 [ 74.080553][ T6273] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6e0f415fa8 [ 74.082956][ T6273] RBP: 00007f6e0f415fa0 R08: 0000000000000000 R09: 0000000000000000 [ 74.085317][ T6273] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 74.087694][ T6273] R13: 00007f6e0f416038 R14: 00007fff1de1a520 R15: 00007fff1de1a608 [ 74.090222][ T6273] [ 74.091311][ T6273] Modules linked in: [ 74.092972][ T6273] ---[ end trace 0000000000000000 ]--- [ 74.094832][ T6273] RIP: 0010:region_del+0x108/0x950 [ 74.097556][ T6273] Code: 24 20 49 29 c4 4c 03 23 48 89 03 48 8b 5c 24 40 4c 39 eb 0f 84 64 05 00 00 e8 74 c0 9c ff 4c 89 64 24 10 49 89 df 49 c1 ef 03 <41> 80 3c 2f 00 74 08 48 89 df e8 b9 d8 06 00 48 8b 03 48 89 44 24 [ 74.104417][ T6273] RSP: 0018:ffffc90003b17330 EFLAGS: 00010246 [ 74.106438][ T6273] RAX: a69e65823ec40000 RBX: 0000000000000000 RCX: 0000000000000001 [ 74.108950][ T6273] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffffc90003b172a0 [ 74.111904][ T6273] RBP: dffffc0000000000 R08: 0000000000000003 R09: 0000000000000004 [ 74.114657][ T6273] R10: dffffc0000000000 R11: fffff52000762e54 R12: 0000000000000000 [ 74.117176][ T6273] R13: ffff8881165dc848 R14: 1ffff11022cbb909 R15: 0000000000000000 [ 74.119722][ T6273] FS: 0000000000000000(0000) GS:ffff88818de67000(0000) knlGS:0000000000000000 [ 74.122710][ T6273] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 74.124816][ T6273] CR2: 00007fc23744ea7c CR3: 000000000e54c000 CR4: 00000000000006f0 [ 74.127297][ T6273] Kernel panic - not syncing: Fatal exception [ 74.129847][ T6273] Kernel Offset: disabled [ 74.131162][ T6273] Rebooting in 86400 seconds..