Warning: Permanently added '[localhost]:57341' (ED25519) to the list of known hosts. 2025/09/25 17:43:16 parsed 1 programs syzkaller login: [ 55.073283][ T5852] cgroup: Unknown subsys name 'net' [ 55.200125][ T5852] cgroup: Unknown subsys name 'cpuset' [ 55.205084][ T5852] cgroup: Unknown subsys name 'rlimit' [ 57.033066][ T5852] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 59.753561][ T5859] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 60.223565][ T5878] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 60.228559][ T5878] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 60.232001][ T5878] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 60.235915][ T5878] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 60.239135][ T5878] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 62.022511][ T5911] chnl_net:caif_netlink_parms(): no params data found [ 62.094597][ T5911] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.100044][ T5911] bridge0: port 1(bridge_slave_0) entered disabled state [ 62.102791][ T5911] bridge_slave_0: entered allmulticast mode [ 62.106050][ T5911] bridge_slave_0: entered promiscuous mode [ 62.110844][ T5911] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.113176][ T5911] bridge0: port 2(bridge_slave_1) entered disabled state [ 62.115985][ T5911] bridge_slave_1: entered allmulticast mode [ 62.118635][ T5911] bridge_slave_1: entered promiscuous mode [ 62.140006][ T5911] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 62.145484][ T5911] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 62.168763][ T5911] team0: Port device team_slave_0 added [ 62.172972][ T5911] team0: Port device team_slave_1 added [ 62.190109][ T5911] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 62.192326][ T5911] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 62.201648][ T5911] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 62.207186][ T5911] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 62.209403][ T5911] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 62.217822][ T5911] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 62.245438][ T5911] hsr_slave_0: entered promiscuous mode [ 62.247912][ T5911] hsr_slave_1: entered promiscuous mode [ 62.342124][ T5911] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 62.348703][ T5911] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 62.353500][ T5911] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 62.358701][ T5911] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 62.379922][ T5911] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.382545][ T5911] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.385860][ T5911] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.388821][ T5911] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.434084][ T5911] 8021q: adding VLAN 0 to HW filter on device bond0 [ 62.445110][ T1090] bridge0: port 1(bridge_slave_0) entered disabled state [ 62.450273][ T1090] bridge0: port 2(bridge_slave_1) entered disabled state [ 62.462446][ T5911] 8021q: adding VLAN 0 to HW filter on device team0 [ 62.472731][ T1090] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.475918][ T1090] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.487284][ T1090] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.490190][ T1090] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.658697][ T5911] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 62.696737][ T5911] veth0_vlan: entered promiscuous mode [ 62.704279][ T5911] veth1_vlan: entered promiscuous mode [ 62.731622][ T5911] veth0_macvtap: entered promiscuous mode [ 62.737649][ T5911] veth1_macvtap: entered promiscuous mode [ 62.752151][ T5911] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 62.763822][ T5911] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 62.773920][ T5866] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.778829][ T5866] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.782884][ T5866] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.791223][ T5866] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.899356][ T13] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 62.995449][ T13] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 63.071467][ T13] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 63.144611][ T13] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 63.162988][ T1088] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 63.167364][ T1088] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 63.190469][ T1088] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 63.193753][ T1088] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 2025/09/25 17:43:26 executed programs: 0 [ 63.690802][ T5878] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 63.694413][ T5878] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 63.700125][ T5878] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 63.704241][ T5878] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 63.708626][ T5878] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 63.864330][ T5959] chnl_net:caif_netlink_parms(): no params data found [ 63.909141][ T5959] bridge0: port 1(bridge_slave_0) entered blocking state [ 63.911420][ T5959] bridge0: port 1(bridge_slave_0) entered disabled state [ 63.913668][ T5959] bridge_slave_0: entered allmulticast mode [ 63.916994][ T5959] bridge_slave_0: entered promiscuous mode [ 63.920592][ T5959] bridge0: port 2(bridge_slave_1) entered blocking state [ 63.922858][ T5959] bridge0: port 2(bridge_slave_1) entered disabled state [ 63.925189][ T5959] bridge_slave_1: entered allmulticast mode [ 63.929256][ T5959] bridge_slave_1: entered promiscuous mode [ 63.953498][ T5959] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 63.959891][ T5959] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 63.984268][ T5959] team0: Port device team_slave_0 added [ 63.989320][ T5959] team0: Port device team_slave_1 added [ 64.011951][ T5959] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 64.014272][ T5959] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 64.023169][ T5959] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 64.028037][ T5959] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 64.030286][ T5959] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 64.040182][ T5959] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 64.065059][ T5959] hsr_slave_0: entered promiscuous mode [ 64.067645][ T5959] hsr_slave_1: entered promiscuous mode [ 64.069806][ T5959] debugfs: 'hsr0' already exists in 'hsr' [ 64.071781][ T5959] Cannot create hsr debugfs directory [ 65.601984][ T13] bridge_slave_1: left allmulticast mode [ 65.604359][ T13] bridge_slave_1: left promiscuous mode [ 65.609386][ T13] bridge0: port 2(bridge_slave_1) entered disabled state [ 65.617091][ T13] bridge_slave_0: left allmulticast mode [ 65.619534][ T13] bridge_slave_0: left promiscuous mode [ 65.622452][ T13] bridge0: port 1(bridge_slave_0) entered disabled state [ 65.755858][ T5878] Bluetooth: hci0: command tx timeout [ 65.827257][ T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 65.832205][ T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 65.836000][ T13] bond0 (unregistering): Released all slaves [ 65.937823][ T13] hsr_slave_0: left promiscuous mode [ 65.940841][ T13] hsr_slave_1: left promiscuous mode [ 65.943691][ T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 65.947073][ T13] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 65.951212][ T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 65.954206][ T13] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 65.982299][ T13] veth1_macvtap: left promiscuous mode [ 65.984924][ T13] veth0_macvtap: left promiscuous mode [ 65.989269][ T13] veth1_vlan: left promiscuous mode [ 65.991629][ T13] veth0_vlan: left promiscuous mode [ 66.267417][ T13] team0 (unregistering): Port device team_slave_1 removed [ 66.283791][ T13] team0 (unregistering): Port device team_slave_0 removed [ 66.651278][ T5959] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 66.657931][ T5959] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 66.664197][ T5959] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 66.670230][ T5959] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 66.736973][ T5959] 8021q: adding VLAN 0 to HW filter on device bond0 [ 66.751601][ T5959] 8021q: adding VLAN 0 to HW filter on device team0 [ 66.762807][ T26] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.766021][ T26] bridge0: port 1(bridge_slave_0) entered forwarding state [ 66.777636][ T26] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.780721][ T26] bridge0: port 2(bridge_slave_1) entered forwarding state [ 67.009749][ T5959] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 67.089808][ T5959] veth0_vlan: entered promiscuous mode [ 67.098683][ T5959] veth1_vlan: entered promiscuous mode [ 67.128963][ T5959] veth0_macvtap: entered promiscuous mode [ 67.152045][ T5959] veth1_macvtap: entered promiscuous mode [ 67.166416][ T5959] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 67.177481][ T5959] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 67.187661][ T5930] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.190947][ T5930] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.194011][ T5930] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.199659][ T5930] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.264663][ T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 67.274698][ T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 67.301339][ T4022] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 67.304678][ T4022] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 67.343361][ T5990] [ 67.344467][ T5990] ================================================ [ 67.347249][ T5990] WARNING: lock held when returning to user space! [ 67.349942][ T5990] syzkaller #0 Not tainted [ 67.352296][ T5990] ------------------------------------------------ [ 67.355355][ T5990] syz.0.17/5990 is leaving the kernel with locks still held! [ 67.358458][ T5990] 1 lock held by syz.0.17/5990: [ 67.360561][ T5990] #0: ffff8880218488e8 (&resv_map->rw_sema){+.+.}-{4:4}, at: hugetlb_vmdelete_list+0x67/0x230 [ 67.835474][ T5878] Bluetooth: hci0: command tx timeout [ 69.915421][ T5878] Bluetooth: hci0: command tx timeout [ 71.037757][ T1363] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.040368][ T1363] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.995681][ T5878] Bluetooth: hci0: command tx timeout VM DIAGNOSIS: 17:43:30 Registers: info registers vcpu 0 CPU#0 RAX=000000000000006f RBX=000000000000006f RCX=0000000000000000 RDX=00000000000003f8 RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc90002acf8b0 R8 =ffff888106ab0237 R9 =1ffff11020d56046 R10=dffffc0000000000 R11=ffffffff854fada0 R12=dffffc0000000000 R13=ffffffff99b038e6 R14=ffffffff99df8460 R15=0000000000000000 RIP=ffffffff854fae1c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00005555880b5500 ffffffff 00c00000 GS =0000 ffff8880b8612000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b31263fff CR3=000000002790a000 CR4=000006f0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=0000000000000000 0000000000000000 XMM01=a82876583736db57 4e5f06ba711f10d1 XMM02=f62b7f3bacb3e538 298f3794bde61bce XMM03=393a370e4d2f42a1 292d7792691eea37 XMM04=6b8d8700ea4fe614 765e13d5b7567edb XMM05=2c0937da639697f2 6e661e726f1479a2 XMM06=5ccd28714c997f05 a751ded2b3a5c311 XMM07=a2cfd78c9ab9926f 14d997176fe857d8 XMM08=b3207c0137b98365 eb25df476b8d8700 XMM09=0000000000000000 00007f0b27812fed XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000 XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000 XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=ffffffff81b437af RBX=ffffc90000107888 RCX=ffff88801ba88000 RDX=0000000000000000 RSI=0000000000000001 RDI=0000000000000000 RBP=ffffc90000107930 RSP=ffffc90000107840 R8 =ffffffff8fa3a737 R9 =1ffffffff1f474e6 R10=dffffc0000000000 R11=ffffffff81705100 R12=1ffff92000020f11 R13=dffffc0000000000 R14=1ffff92000020f0c R15=1ffff92000020f0c RIP=ffffffff81b43797 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8881a3c12000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055562d33f4b8 CR3=000000002782c000 CR4=000006f0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000 XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000 XMM04=00ff000000000000 ff00000000000000 XMM05=0000000000000251 0000000000003031 XMM06=0000000000000000 0000000000000000 XMM07=0000000000000000 0000000000000000 XMM08=ffffffffffff0000 ffffffffffff0000 XMM09=0000000000000251 0000000000003031 XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000 XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000 XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000