Warning: Permanently added '[localhost]:26059' (ED25519) to the list of known hosts.
2025/11/26 04:19:43 parsed 1 programs
syzkaller login: [   54.794752][ T5829] cgroup: Unknown subsys name 'net'
[   54.899155][ T5829] cgroup: Unknown subsys name 'cpuset'
[   54.905224][ T5829] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   56.282817][ T5829] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   58.548392][ T5837] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   59.456082][ T5867] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   59.460098][ T5867] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   59.464332][ T5867] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   59.468211][ T5867] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   59.471633][ T5867] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   59.802298][ T3941] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   59.806612][ T3941] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   59.826858][ T3043] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   59.830110][ T3043] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   60.667317][ T5895] chnl_net:caif_netlink_parms(): no params data found
[   60.750464][ T5895] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.753523][ T5895] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.756669][ T5895] bridge_slave_0: entered allmulticast mode
[   60.759501][ T5895] bridge_slave_0: entered promiscuous mode
[   60.764100][ T5895] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.766585][ T5895] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.768882][ T5895] bridge_slave_1: entered allmulticast mode
[   60.771577][ T5895] bridge_slave_1: entered promiscuous mode
[   60.793510][ T5895] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   60.801566][ T5895] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   60.828696][ T5895] team0: Port device team_slave_0 added
[   60.836006][ T5895] team0: Port device team_slave_1 added
[   60.865863][ T5895] batman_adv: batadv0: Adding interface: batadv_slave_0
[   60.868582][ T5895] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   60.877547][ T5895] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   60.882616][ T5895] batman_adv: batadv0: Adding interface: batadv_slave_1
[   60.885233][ T5895] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   60.892970][ T5895] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   60.920380][ T5895] hsr_slave_0: entered promiscuous mode
[   60.922797][ T5895] hsr_slave_1: entered promiscuous mode
[   61.064676][ T5895] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   61.073936][ T5895] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   61.080645][ T5895] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   61.089570][ T5895] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   61.119666][ T5895] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.121937][ T5895] bridge0: port 2(bridge_slave_1) entered forwarding state
[   61.125093][ T5895] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.127295][ T5895] bridge0: port 1(bridge_slave_0) entered forwarding state
[   61.179392][ T5895] 8021q: adding VLAN 0 to HW filter on device bond0
[   61.198738][ T3501] bridge0: port 1(bridge_slave_0) entered disabled state
[   61.202734][ T3501] bridge0: port 2(bridge_slave_1) entered disabled state
[   61.218633][ T5895] 8021q: adding VLAN 0 to HW filter on device team0
[   61.231510][ T3501] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.234680][ T3501] bridge0: port 1(bridge_slave_0) entered forwarding state
[   61.245287][ T3501] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.248189][ T3501] bridge0: port 2(bridge_slave_1) entered forwarding state
[   61.386996][ T5895] 8021q: adding VLAN 0 to HW filter on device batadv0
[   61.418335][ T5895] veth0_vlan: entered promiscuous mode
[   61.424952][ T5895] veth1_vlan: entered promiscuous mode
[   61.443319][ T5895] veth0_macvtap: entered promiscuous mode
[   61.447974][ T5895] veth1_macvtap: entered promiscuous mode
[   61.462236][ T5895] batman_adv: batadv0: Interface activated: batadv_slave_0
[   61.469567][ T5895] batman_adv: batadv0: Interface activated: batadv_slave_1
[   61.479666][ T5844] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   61.483432][ T5844] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   61.490378][ T5844] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   61.496237][ T5844] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   61.597812][ T5895] syz-executor (5895) used greatest stack depth: 19496 bytes left
[   61.630181][ T5844] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.715948][ T5844] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.776165][ T5844] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.844299][ T5844] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/11/26 04:19:53 executed programs: 0
[   62.236294][ T5867] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   62.239819][ T5867] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   62.248703][ T5867] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   62.252818][ T5867] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   62.257219][ T5867] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   62.404006][ T5937] chnl_net:caif_netlink_parms(): no params data found
[   62.456213][ T5937] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.458496][ T5937] bridge0: port 1(bridge_slave_0) entered disabled state
[   62.460753][ T5937] bridge_slave_0: entered allmulticast mode
[   62.463526][ T5937] bridge_slave_0: entered promiscuous mode
[   62.467664][ T5937] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.469941][ T5937] bridge0: port 2(bridge_slave_1) entered disabled state
[   62.472188][ T5937] bridge_slave_1: entered allmulticast mode
[   62.477775][ T5937] bridge_slave_1: entered promiscuous mode
[   62.500046][ T5937] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   62.505826][ T5937] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   62.527384][ T5937] team0: Port device team_slave_0 added
[   62.530752][ T5937] team0: Port device team_slave_1 added
[   62.556808][ T5937] batman_adv: batadv0: Adding interface: batadv_slave_0
[   62.558957][ T5937] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   62.567322][ T5937] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   62.571755][ T5937] batman_adv: batadv0: Adding interface: batadv_slave_1
[   62.574127][ T5937] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   62.581800][ T5937] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   62.609881][ T5937] hsr_slave_0: entered promiscuous mode
[   62.612298][ T5937] hsr_slave_1: entered promiscuous mode
[   62.615002][ T5937] debugfs: 'hsr0' already exists in 'hsr'
[   62.616794][ T5937] Cannot create hsr debugfs directory
[   64.249625][ T5844] bridge_slave_1: left allmulticast mode
[   64.251463][ T5844] bridge_slave_1: left promiscuous mode
[   64.253777][ T5844] bridge0: port 2(bridge_slave_1) entered disabled state
[   64.267909][ T5844] bridge_slave_0: left allmulticast mode
[   64.269747][ T5844] bridge_slave_0: left promiscuous mode
[   64.271574][ T5844] bridge0: port 1(bridge_slave_0) entered disabled state
[   64.294088][ T5867] Bluetooth: hci0: command tx timeout
[   64.504665][ T5844] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   64.509983][ T5844] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   64.514172][ T5844] bond0 (unregistering): Released all slaves
[   64.586706][ T5844] hsr_slave_0: left promiscuous mode
[   64.589022][ T5844] hsr_slave_1: left promiscuous mode
[   64.591195][ T5844] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   64.593559][ T5844] batman_adv: batadv0: Removing interface: batadv_slave_0
[   64.600928][ T5844] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   64.603279][ T5844] batman_adv: batadv0: Removing interface: batadv_slave_1
[   64.625172][ T5844] veth1_macvtap: left promiscuous mode
[   64.627716][ T5844] veth0_macvtap: left promiscuous mode
[   64.629535][ T5844] veth1_vlan: left promiscuous mode
[   64.631300][ T5844] veth0_vlan: left promiscuous mode
[   64.903340][ T5844] team0 (unregistering): Port device team_slave_1 removed
[   64.925945][ T5844] team0 (unregistering): Port device team_slave_0 removed
[   65.317601][ T5937] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   65.327372][ T5937] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   65.337661][ T5937] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   65.342377][ T5937] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   65.428545][ T5937] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.439373][ T5937] 8021q: adding VLAN 0 to HW filter on device team0
[   65.446785][ T3501] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.449048][ T3501] bridge0: port 1(bridge_slave_0) entered forwarding state
[   65.457260][ T3501] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.459516][ T3501] bridge0: port 2(bridge_slave_1) entered forwarding state
[   65.684658][ T5937] 8021q: adding VLAN 0 to HW filter on device batadv0
[   65.726708][ T5937] veth0_vlan: entered promiscuous mode
[   65.739869][ T5937] veth1_vlan: entered promiscuous mode
[   65.759358][ T5937] veth0_macvtap: entered promiscuous mode
[   65.763558][ T5937] veth1_macvtap: entered promiscuous mode
[   65.773174][ T5937] batman_adv: batadv0: Interface activated: batadv_slave_0
[   65.788861][ T5937] batman_adv: batadv0: Interface activated: batadv_slave_1
[   65.796600][ T5844] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   65.800653][ T5844] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   65.804758][ T5844] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   65.808563][ T5844] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   65.852852][ T3043] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   65.860021][ T3043] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   65.878689][ T3043] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   65.881086][ T3043] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   65.946431][ T3941] 
[   65.947622][ T3941] =============================
[   65.949623][ T3941] WARNING: suspicious RCU usage
[   65.951584][ T3941] syzkaller #0 Not tainted
[   65.953382][ T3941] -----------------------------
[   65.955470][ T3941] io_uring/eventfd.c:160 suspicious rcu_dereference_protected() usage!
[   65.958758][ T3941] 
[   65.958758][ T3941] other info that might help us debug this:
[   65.958758][ T3941] 
[   65.962860][ T3941] 
[   65.962860][ T3941] rcu_scheduler_active = 2, debug_locks = 1
[   65.965473][ T3941] 2 locks held by kworker/u10:12/3941:
[   65.967293][ T3941]  #0: ffff888168f41148 ((wq_completion)iou_exit){+.+.}-{0:0}, at: process_one_work+0x841/0x15a0
[   65.970687][ T3941]  #1: ffffc90021f3fb80 ((work_completion)(&ctx->exit_work)){+.+.}-{0:0}, at: process_one_work+0x868/0x15a0
[   65.974737][ T3941] 
[   65.974737][ T3941] stack backtrace:
[   65.977053][ T3941] CPU: 1 UID: 0 PID: 3941 Comm: kworker/u10:12 Not tainted syzkaller #0 PREEMPT(full) 
[   65.977071][ T3941] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   65.977081][ T3941] Workqueue: iou_exit io_ring_exit_work
[   65.977100][ T3941] Call Trace:
[   65.977107][ T3941]  <TASK>
[   65.977113][ T3941]  dump_stack_lvl+0x189/0x250
[   65.977137][ T3941]  ? __pfx_dump_stack_lvl+0x10/0x10
[   65.977155][ T3941]  ? __pfx__printk+0x10/0x10
[   65.977179][ T3941]  lockdep_rcu_suspicious+0x140/0x1d0
[   65.977201][ T3941]  io_eventfd_unregister+0x18b/0x1c0
[   65.977245][ T3941]  io_ring_ctx_free+0x18a/0x820
[   65.977259][ T3941]  ? __pfx_autoremove_wake_function+0x10/0x10
[   65.977275][ T3941]  ? __pfx_io_ring_ctx_free+0x10/0x10
[   65.977287][ T3941]  ? __pfx_io_ring_suspend_work+0x10/0x10
[   65.977311][ T3941]  ? __pfx_synchronize_rcu+0x10/0x10
[   65.977327][ T3941]  ? do_raw_spin_unlock+0x4d/0x240
[   65.977342][ T3941]  io_ring_exit_work+0xe71/0x1030
[   65.977353][ T3941]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   65.977379][ T3941]  ? __pfx_io_ring_exit_work+0x10/0x10
[   65.977389][ T3941]  ? stack_trace_save+0x9c/0xe0
[   65.977402][ T3941]  ? __pfx_stack_trace_save+0x10/0x10
[   65.977419][ T3941]  ? check_path+0x21/0x40
[   65.977432][ T3941]  ? __pfx_io_ring_suspend_work+0x10/0x10
[   65.977468][ T3941]  ? __pfx_io_tctx_exit_cb+0x10/0x10
[   65.977486][ T3941]  ? _raw_spin_unlock_irq+0x23/0x50
[   65.977503][ T3941]  ? process_one_work+0x868/0x15a0
[   65.977519][ T3941]  process_one_work+0x93a/0x15a0
[   65.977549][ T3941]  ? __pfx_process_one_work+0x10/0x10
[   65.977570][ T3941]  ? assign_work+0x3a1/0x410
[   65.977593][ T3941]  worker_thread+0x9b0/0xee0
[   65.977626][ T3941]  kthread+0x711/0x8a0
[   65.977641][ T3941]  ? __pfx_worker_thread+0x10/0x10
[   65.977657][ T3941]  ? __pfx_kthread+0x10/0x10
[   65.977669][ T3941]  ? _raw_spin_unlock_irq+0x23/0x50
[   65.977682][ T3941]  ? lockdep_hardirqs_on+0x98/0x140
[   65.977697][ T3941]  ? __pfx_kthread+0x10/0x10
[   65.977709][ T3941]  ret_from_fork+0x599/0xb30
[   65.977725][ T3941]  ? __pfx_ret_from_fork+0x10/0x10
[   65.977743][ T3941]  ? __switch_to_asm+0x39/0x70
[   65.977751][ T3941]  ? __switch_to_asm+0x33/0x70
[   65.977760][ T3941]  ? __pfx_kthread+0x10/0x10
[   65.977770][ T3941]  ret_from_fork_asm+0x1a/0x30
[   65.977788][ T3941]  </TASK>
[   67.696345][ T5844] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.478923][ T5844] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.538950][ T5844] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.616819][ T5844] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.734224][ T5844] bridge_slave_1: left allmulticast mode
[   69.736063][ T5844] bridge_slave_1: left promiscuous mode
[   69.737934][ T5844] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.749180][ T5844] bridge_slave_0: left allmulticast mode
[   69.751016][ T5844] bridge_slave_0: left promiscuous mode
[   69.753786][ T5844] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.986635][ T5844] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   69.991407][ T5844] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   69.995763][ T5844] bond0 (unregistering): Released all slaves
[   70.270966][ T5844] hsr_slave_0: left promiscuous mode
[   70.273292][ T5844] hsr_slave_1: left promiscuous mode
[   70.277086][ T5844] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   70.279451][ T5844] batman_adv: batadv0: Removing interface: batadv_slave_0
[   70.282322][ T5844] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   70.286468][ T5844] batman_adv: batadv0: Removing interface: batadv_slave_1
[   70.296803][ T5844] veth1_macvtap: left promiscuous mode
[   70.298689][ T5844] veth0_macvtap: left promiscuous mode
[   70.300542][ T5844] veth1_vlan: left promiscuous mode
[   70.302293][ T5844] veth0_vlan: left promiscuous mode
[   70.532641][ T5844] team0 (unregistering): Port device team_slave_1 removed
[   70.550571][ T5844] team0 (unregistering): Port device team_slave_0 removed