Warning: Permanently added '[localhost]:19697' (ED25519) to the list of known hosts. 2025/11/06 04:42:04 parsed 1 programs syzkaller login: [ 63.679869][ T5824] cgroup: Unknown subsys name 'net' [ 63.783846][ T5824] cgroup: Unknown subsys name 'cpuset' [ 63.790116][ T5824] cgroup: Unknown subsys name 'rlimit' [ 65.810554][ T5824] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 68.873440][ T5831] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 70.146609][ T5857] chnl_net:caif_netlink_parms(): no params data found [ 70.220111][ T5857] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.223133][ T5857] bridge0: port 1(bridge_slave_0) entered disabled state [ 70.225612][ T5857] bridge_slave_0: entered allmulticast mode [ 70.229552][ T5857] bridge_slave_0: entered promiscuous mode [ 70.233928][ T5857] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.236394][ T5857] bridge0: port 2(bridge_slave_1) entered disabled state [ 70.238734][ T5857] bridge_slave_1: entered allmulticast mode [ 70.242967][ T5857] bridge_slave_1: entered promiscuous mode [ 70.271913][ T5857] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 70.277666][ T5857] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 70.304414][ T5857] team0: Port device team_slave_0 added [ 70.308323][ T5857] team0: Port device team_slave_1 added [ 70.333954][ T5857] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 70.336297][ T5857] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 70.344386][ T5857] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 70.350595][ T5857] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 70.353079][ T5857] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 70.360748][ T5857] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 70.390077][ T5857] hsr_slave_0: entered promiscuous mode [ 70.392699][ T5857] hsr_slave_1: entered promiscuous mode [ 70.502934][ T5857] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 70.509853][ T5857] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 70.515363][ T5857] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 70.521492][ T5857] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 70.548321][ T5857] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.550779][ T5857] bridge0: port 2(bridge_slave_1) entered forwarding state [ 70.553724][ T5857] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.556026][ T5857] bridge0: port 1(bridge_slave_0) entered forwarding state [ 70.597158][ T5857] 8021q: adding VLAN 0 to HW filter on device bond0 [ 70.607654][ T1962] bridge0: port 1(bridge_slave_0) entered disabled state [ 70.610948][ T1962] bridge0: port 2(bridge_slave_1) entered disabled state [ 70.622178][ T5857] 8021q: adding VLAN 0 to HW filter on device team0 [ 70.633481][ T85] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.636192][ T85] bridge0: port 1(bridge_slave_0) entered forwarding state [ 70.645976][ T85] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.648671][ T85] bridge0: port 2(bridge_slave_1) entered forwarding state [ 70.788011][ T5857] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 70.833498][ T5857] veth0_vlan: entered promiscuous mode [ 70.841906][ T5857] veth1_vlan: entered promiscuous mode [ 70.867490][ T5857] veth0_macvtap: entered promiscuous mode [ 70.874794][ T5857] veth1_macvtap: entered promiscuous mode [ 70.889893][ T5857] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 70.900964][ T5857] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 70.912423][ T5658] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.918539][ T5658] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.923075][ T5658] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.926373][ T5658] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.057042][ T5864] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 71.140872][ T5864] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 71.183342][ T5864] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 71.240266][ T5864] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 71.512792][ T1361] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.515491][ T1361] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.533001][ T5898] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 71.536128][ T5898] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 71.539321][ T5898] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 71.542352][ T5898] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 71.545231][ T5898] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 71.730246][ T1962] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 71.732686][ T1962] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 71.760138][ T1962] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 71.762976][ T1962] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 2025/11/06 04:42:15 executed programs: 0 [ 72.786442][ T57] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 72.791607][ T57] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 72.794642][ T57] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 72.798163][ T57] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 72.802932][ T57] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 72.987278][ T5928] chnl_net:caif_netlink_parms(): no params data found [ 73.077527][ T5928] bridge0: port 1(bridge_slave_0) entered blocking state [ 73.079866][ T5928] bridge0: port 1(bridge_slave_0) entered disabled state [ 73.082009][ T5928] bridge_slave_0: entered allmulticast mode [ 73.084533][ T5928] bridge_slave_0: entered promiscuous mode [ 73.088327][ T5928] bridge0: port 2(bridge_slave_1) entered blocking state [ 73.091174][ T5928] bridge0: port 2(bridge_slave_1) entered disabled state [ 73.093297][ T5928] bridge_slave_1: entered allmulticast mode [ 73.095768][ T5928] bridge_slave_1: entered promiscuous mode [ 73.131087][ T5928] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 73.138683][ T5928] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 73.167193][ T5928] team0: Port device team_slave_0 added [ 73.170970][ T5928] team0: Port device team_slave_1 added [ 73.191605][ T5928] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 73.193608][ T5928] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 73.201479][ T5928] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 73.205569][ T5928] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 73.207513][ T5928] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 73.214935][ T5928] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 73.244766][ T5928] hsr_slave_0: entered promiscuous mode [ 73.246943][ T5928] hsr_slave_1: entered promiscuous mode [ 73.249585][ T5928] debugfs: 'hsr0' already exists in 'hsr' [ 73.251624][ T5928] Cannot create hsr debugfs directory [ 74.022703][ T5864] bridge_slave_1: left allmulticast mode [ 74.024907][ T5864] bridge_slave_1: left promiscuous mode [ 74.027494][ T5864] bridge0: port 2(bridge_slave_1) entered disabled state [ 74.038859][ T5864] bridge_slave_0: left allmulticast mode [ 74.041971][ T5864] bridge_slave_0: left promiscuous mode [ 74.044145][ T5864] bridge0: port 1(bridge_slave_0) entered disabled state [ 74.327520][ T5864] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 74.332743][ T5864] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 74.336466][ T5864] bond0 (unregistering): Released all slaves [ 74.468447][ T5864] hsr_slave_0: left promiscuous mode [ 74.472857][ T5864] hsr_slave_1: left promiscuous mode [ 74.475456][ T5864] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 74.478148][ T5864] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 74.482283][ T5864] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 74.484866][ T5864] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 74.502897][ T5864] veth1_macvtap: left promiscuous mode [ 74.504977][ T5864] veth0_macvtap: left promiscuous mode [ 74.506852][ T5864] veth1_vlan: left promiscuous mode [ 74.508438][ T5864] veth0_vlan: left promiscuous mode [ 74.734351][ T5864] team0 (unregistering): Port device team_slave_1 removed [ 74.750573][ T5864] team0 (unregistering): Port device team_slave_0 removed [ 74.874536][ T57] Bluetooth: hci0: command tx timeout [ 75.151840][ T5928] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 75.163403][ T5928] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 75.172274][ T5928] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 75.180576][ T5928] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 75.272966][ T5928] 8021q: adding VLAN 0 to HW filter on device bond0 [ 75.291995][ T5928] 8021q: adding VLAN 0 to HW filter on device team0 [ 75.543431][ T1962] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.546165][ T1962] bridge0: port 1(bridge_slave_0) entered forwarding state [ 75.560789][ T1962] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.563621][ T1962] bridge0: port 2(bridge_slave_1) entered forwarding state [ 75.794741][ T5928] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 75.872748][ T5928] veth0_vlan: entered promiscuous mode [ 75.921437][ T5928] veth1_vlan: entered promiscuous mode [ 75.948221][ T5928] veth0_macvtap: entered promiscuous mode [ 75.962097][ T5928] veth1_macvtap: entered promiscuous mode [ 75.981653][ T5928] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 75.991707][ T5928] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 76.003641][ T5658] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.008021][ T5959] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.012907][ T5959] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.017638][ T5959] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.091830][ T1090] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 76.097055][ T1090] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 76.121912][ T1090] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 76.124714][ T1090] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 76.178549][ T5964] loop0: detected capacity change from 0 to 128 [ 76.204290][ T5964] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 76.214848][ T5964] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 76.233716][ T5964] overlayfs: upper fs needs to support d_type. [ 76.235853][ T5964] overlayfs: upper fs does not support tmpfile. [ 76.238958][ T5964] [ 76.239674][ T5964] ================================================ [ 76.241521][ T5964] WARNING: lock held when returning to user space! [ 76.243368][ T5964] syzkaller #0 Not tainted [ 76.245122][ T5964] ------------------------------------------------ [ 76.248318][ T5964] syz.0.17/5964 is leaving the kernel with locks still held! [ 76.250843][ T5964] 1 lock held by syz.0.17/5964: [ 76.252609][ T5964] #0: ffff888119a282a0 (&type->i_mutex_dir_key#8/1){+.+.}-{4:4}, at: start_creating+0xbe/0x100 [ 77.689540][ T5959] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 79.403221][ T5959] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 79.454926][ T5959] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 79.515540][ T5959] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 79.607759][ T5959] bridge_slave_1: left allmulticast mode [ 79.611953][ T5959] bridge_slave_1: left promiscuous mode [ 79.614172][ T5959] bridge0: port 2(bridge_slave_1) entered disabled state [ 79.625345][ T5959] bridge_slave_0: left allmulticast mode [ 79.627403][ T5959] bridge_slave_0: left promiscuous mode [ 79.630959][ T5959] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.746787][ T5959] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 79.750235][ T5959] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 79.753182][ T5959] bond0 (unregistering): Released all slaves [ 79.947194][ T5959] hsr_slave_0: left promiscuous mode [ 79.949719][ T5959] hsr_slave_1: left promiscuous mode [ 79.951598][ T5959] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 79.954226][ T5959] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 79.956934][ T5959] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 79.959483][ T5959] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 79.963727][ T5959] veth1_macvtap: left promiscuous mode [ 79.965538][ T5959] veth0_macvtap: left promiscuous mode [ 79.967318][ T5959] veth1_vlan: left promiscuous mode [ 79.968907][ T5959] veth0_vlan: left promiscuous mode [ 80.084851][ T5959] team0 (unregistering): Port device team_slave_1 removed [ 80.096969][ T5959] team0 (unregistering): Port device team_slave_0 removed VM DIAGNOSIS: 04:42:19 Registers: info registers vcpu 0 CPU#0 RAX=000000000000005d RBX=000000000000005d RCX=0000000000000000 RDX=00000000000003f8 RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc900036b7890 R8 =ffff888169b98237 R9 =1ffff1102d373046 R10=dffffc0000000000 R11=ffffffff8514d960 R12=dffffc0000000000 R13=ffffffff997d990e R14=ffffffff99aecf20 R15=0000000000000000 RIP=ffffffff8514d9dc RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000555581b3d500 ffffffff 00c00000 GS =0000 ffff88818eb3b000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00005589bacf8cb0 CR3=0000000117e26000 CR4=000006f0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000 XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000 XMM04=0000000000000000 0000000000000000 XMM05=0000000000000000 0000000000000000 XMM06=0000000000000000 0000000000000000 XMM07=0000000000000000 0000000000000000 XMM08=0000000000000000 0000000000000000 XMM09=0000000000000000 0000000000000000 XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000 XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000 XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=72f703791dcf9400 RBX=ffffffff81967bf7 RCX=72f703791dcf9400 RDX=0000000000000001 RSI=ffffffff8bbf0740 RDI=ffffffff81967bf7 RBP=ffffc90000197f10 RSP=ffffc90000197de0 R8 =ffff88823c632fdb R9 =1ffff110478c65fb R10=dffffc0000000000 R11=ffffed10478c65fc R12=ffffffff8f7cdc70 R13=0000000000000001 R14=0000000000000001 R15=1ffff1102c1d2000 RIP=ffffffff8b464dd3 RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8882a9f3b000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000000000000 CR3=0000000117e26000 CR4=000006f0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000 XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000 XMM04=0000000000000000 0000000000000000 XMM05=0000000000000000 0000000000000000 XMM06=0000000000000000 0000000000000000 XMM07=0000000000000000 0000000000000000 XMM08=0000000000000000 0000000000000000 XMM09=0000000000000000 0000000000000000 XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000 XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000 XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000