Warning: Permanently added '10.128.1.44' (ED25519) to the list of known hosts.
2025/11/25 16:28:46 parsed 1 programs
[   89.495086][ T5790] cgroup: Unknown subsys name 'net'
[   89.661786][ T5790] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   91.397299][ T5790] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   92.266052][  T787] cfg80211: failed to load regulatory.db
[   94.067889][ T5818] chnl_net:caif_netlink_parms(): no params data found
[   94.149395][ T5818] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.157806][ T5818] bridge0: port 1(bridge_slave_0) entered disabled state
[   94.165114][ T5818] bridge_slave_0: entered allmulticast mode
[   94.172212][ T5818] bridge_slave_0: entered promiscuous mode
[   94.184969][ T5818] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.192221][ T5818] bridge0: port 2(bridge_slave_1) entered disabled state
[   94.199582][ T5818] bridge_slave_1: entered allmulticast mode
[   94.206661][ T5818] bridge_slave_1: entered promiscuous mode
[   94.245798][ T5818] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   94.257665][ T5818] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   94.297084][ T5818] team0: Port device team_slave_0 added
[   94.307552][ T5818] team0: Port device team_slave_1 added
[   94.340633][ T5818] batman_adv: batadv0: Adding interface: batadv_slave_0
[   94.347962][ T5818] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   94.373976][ T5818] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   94.387808][ T5818] batman_adv: batadv0: Adding interface: batadv_slave_1
[   94.395012][ T5818] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   94.421097][ T5818] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   94.475419][ T5818] hsr_slave_0: entered promiscuous mode
[   94.482079][ T5818] hsr_slave_1: entered promiscuous mode
[   94.674885][ T5818] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   94.687067][ T5818] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   94.698915][ T5818] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   94.709487][ T5818] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   94.752089][ T5818] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.759435][ T5818] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.767693][ T5818] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.774926][ T5818] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.840699][ T5818] 8021q: adding VLAN 0 to HW filter on device bond0
[   94.874784][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   94.883575][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   94.902850][ T5818] 8021q: adding VLAN 0 to HW filter on device team0
[   94.923948][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.931113][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.947400][ T1086] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.954628][ T1086] bridge0: port 2(bridge_slave_1) entered forwarding state
[   95.182674][ T5818] 8021q: adding VLAN 0 to HW filter on device batadv0
[   95.235869][ T5818] veth0_vlan: entered promiscuous mode
[   95.252050][ T5818] veth1_vlan: entered promiscuous mode
[   95.293276][ T5818] veth0_macvtap: entered promiscuous mode
[   95.302955][ T5818] veth1_macvtap: entered promiscuous mode
[   95.321771][ T5818] batman_adv: batadv0: Interface activated: batadv_slave_0
[   95.338602][ T5818] batman_adv: batadv0: Interface activated: batadv_slave_1
[   95.351442][ T5818] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   95.361756][ T5818] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   95.370900][ T5818] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   95.379894][ T5818] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   95.550865][   T62] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   95.661287][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.671051][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.702689][   T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.710900][   T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.330573][ T5854] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   96.341760][ T5854] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   96.350556][ T5854] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   96.360045][ T5854] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   96.369226][ T5854] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   96.377954][ T5854] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   98.015817][   T62] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/11/25 16:28:58 executed programs: 0
[   98.783635][ T5854] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   98.791822][ T5854] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   98.799808][ T5854] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   98.808702][ T5854] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   98.818719][ T5854] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   98.826667][ T5854] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   98.997745][ T5895] chnl_net:caif_netlink_parms(): no params data found
[   99.072635][ T5895] bridge0: port 1(bridge_slave_0) entered blocking state
[   99.079985][ T5895] bridge0: port 1(bridge_slave_0) entered disabled state
[   99.088039][ T5895] bridge_slave_0: entered allmulticast mode
[   99.095967][ T5895] bridge_slave_0: entered promiscuous mode
[   99.105258][ T5895] bridge0: port 2(bridge_slave_1) entered blocking state
[   99.112539][ T5895] bridge0: port 2(bridge_slave_1) entered disabled state
[   99.120621][ T5895] bridge_slave_1: entered allmulticast mode
[   99.127830][ T5895] bridge_slave_1: entered promiscuous mode
[   99.162653][ T5895] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   99.175823][ T5895] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   99.213629][ T5895] team0: Port device team_slave_0 added
[   99.222256][ T5895] team0: Port device team_slave_1 added
[   99.252046][ T5895] batman_adv: batadv0: Adding interface: batadv_slave_0
[   99.259394][ T5895] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   99.285383][ T5895] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   99.297773][ T5895] batman_adv: batadv0: Adding interface: batadv_slave_1
[   99.305612][ T5895] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   99.332055][ T5895] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   99.379312][ T5895] hsr_slave_0: entered promiscuous mode
[   99.386184][ T5895] hsr_slave_1: entered promiscuous mode
[   99.392549][ T5895] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   99.401285][ T5895] Cannot create hsr debugfs directory
[  100.428312][   T62] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.488636][   T62] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.904817][ T5101] Bluetooth: hci0: command tx timeout
[  101.465229][   T62] hsr_slave_0: left promiscuous mode
[  101.471811][   T62] hsr_slave_1: left promiscuous mode
[  101.481107][   T62] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  101.488903][   T62] batman_adv: batadv0: Removing interface: batadv_slave_0
[  101.500777][   T62] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  101.508821][   T62] batman_adv: batadv0: Removing interface: batadv_slave_1
[  101.521423][   T62] bridge_slave_1: left allmulticast mode
[  101.527683][   T62] bridge_slave_1: left promiscuous mode
[  101.536989][   T62] bridge0: port 2(bridge_slave_1) entered disabled state
[  101.557225][   T62] bridge_slave_0: left allmulticast mode
[  101.563003][   T62] bridge_slave_0: left promiscuous mode
[  101.569497][   T62] bridge0: port 1(bridge_slave_0) entered disabled state
[  101.607382][   T62] veth1_macvtap: left promiscuous mode
[  101.614033][   T62] veth0_macvtap: left promiscuous mode
[  101.619765][   T62] veth1_vlan: left promiscuous mode
[  101.626366][   T62] veth0_vlan: left promiscuous mode
[  102.073413][   T62] team0 (unregistering): Port device team_slave_1 removed
[  102.110353][   T62] team0 (unregistering): Port device team_slave_0 removed
[  102.159489][   T62] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  102.205190][   T62] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  102.597946][   T62] bond0 (unregistering): Released all slaves
[  102.707838][ T5895] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  102.720240][ T5895] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  102.742781][ T5895] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  102.764962][ T5895] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  102.918172][ T5895] 8021q: adding VLAN 0 to HW filter on device bond0
[  102.962863][ T5895] 8021q: adding VLAN 0 to HW filter on device team0
[  102.978132][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.983349][ T5101] Bluetooth: hci0: command tx timeout
[  102.985405][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  103.007885][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.015115][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[  103.323601][ T5895] 8021q: adding VLAN 0 to HW filter on device batadv0
[  103.405200][ T5895] veth0_vlan: entered promiscuous mode
[  103.422328][ T5895] veth1_vlan: entered promiscuous mode
[  103.477752][ T5895] veth0_macvtap: entered promiscuous mode
[  103.489780][ T5895] veth1_macvtap: entered promiscuous mode
[  103.508662][ T5895] batman_adv: batadv0: Interface activated: batadv_slave_0
[  103.526105][ T5895] batman_adv: batadv0: Interface activated: batadv_slave_1
[  103.539383][ T5895] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  103.549080][ T5895] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  103.559504][ T5895] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  103.568912][ T5895] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  103.635540][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  103.648177][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  103.677441][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  103.686141][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  104.025135][  T787] usb 1-1: new full-speed USB device number 2 using dummy_hcd
[  104.217080][  T787] usb 1-1: config 0 interface 0 altsetting 251 endpoint 0x9 has an invalid bInterval 0, changing to 4
[  104.228480][  T787] usb 1-1: config 0 interface 0 has no altsetting 0
[  104.239924][  T787] usb 1-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  104.249531][  T787] usb 1-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  104.260244][  T787] usb 1-1: Product: syz
[  104.264934][  T787] usb 1-1: Manufacturer: syz
[  104.269590][  T787] usb 1-1: SerialNumber: syz
[  104.280943][  T787] usb 1-1: config 0 descriptor??
[  104.302188][  T787] usb 1-1: selecting invalid altsetting 0
[  104.494905][ T5943] 
[  104.497393][ T5943] ============================================
[  104.503629][ T5943] WARNING: possible recursive locking detected
[  104.509785][ T5943] syzkaller #0 Not tainted
[  104.514197][ T5943] --------------------------------------------
[  104.520353][ T5943] syz.0.17/5943 is trying to acquire lock:
[  104.526165][ T5943] ffff88802cb04b30 (&chip->mutex){+.+.}-{3:3}, at: snd_usb_endpoint_close+0x3c/0x4c0
[  104.536030][ T5943] 
[  104.536030][ T5943] but task is already holding lock:
[  104.543589][ T5943] ffff88802cb04b30 (&chip->mutex){+.+.}-{3:3}, at: snd_usb_endpoint_set_params+0x6d/0x2b50
[  104.553643][ T5943] 
[  104.553643][ T5943] other info that might help us debug this:
[  104.561717][ T5943]  Possible unsafe locking scenario:
[  104.561717][ T5943] 
[  104.569220][ T5943]        CPU0
[  104.572513][ T5943]        ----
[  104.575804][ T5943]   lock(&chip->mutex);
[  104.579983][ T5943]   lock(&chip->mutex);
[  104.584155][ T5943] 
[  104.584155][ T5943]  *** DEADLOCK ***
[  104.584155][ T5943] 
[  104.592312][ T5943]  May be due to missing lock nesting notation
[  104.592312][ T5943] 
[  104.600644][ T5943] 3 locks held by syz.0.17/5943:
[  104.605582][ T5943]  #0: ffff88802383b4e0 (&runtime->oss.params_lock){+.+.}-{3:3}, at: snd_pcm_oss_sync+0x2a7/0xc20
[  104.616411][ T5943]  #1: ffff88802383b238 (&runtime->buffer_mutex){+.+.}-{3:3}, at: snd_pcm_hw_params+0x15a/0x1c50
[  104.626969][ T5943]  #2: ffff88802cb04b30 (&chip->mutex){+.+.}-{3:3}, at: snd_usb_endpoint_set_params+0x6d/0x2b50
[  104.637463][ T5943] 
[  104.637463][ T5943] stack backtrace:
[  104.643481][ T5943] CPU: 0 PID: 5943 Comm: syz.0.17 Not tainted syzkaller #0
[  104.650717][ T5943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  104.660808][ T5943] Call Trace:
[  104.664096][ T5943]  <TASK>
[  104.667041][ T5943]  dump_stack_lvl+0x16c/0x230
[  104.671841][ T5943]  ? show_regs_print_info+0x20/0x20
[  104.677076][ T5943]  ? print_deadlock_bug+0x435/0x5d0
[  104.682293][ T5943]  __lock_acquire+0x5d40/0x7c80
[  104.687205][ T5943]  ? verify_lock_unused+0x140/0x140
[  104.692433][ T5943]  lock_acquire+0x197/0x410
[  104.696960][ T5943]  ? snd_usb_endpoint_close+0x3c/0x4c0
[  104.702472][ T5943]  ? trace_contention_end+0x39/0xe0
[  104.707729][ T5943]  ? __might_sleep+0xe0/0xe0
[  104.712355][ T5943]  ? read_lock_is_recursive+0x20/0x20
[  104.717862][ T5943]  ? wait_clear_urbs+0x184/0x390
[  104.722818][ T5943]  ? snd_usb_endpoint_sync_pending_stop+0x30/0x30
[  104.729249][ T5943]  __mutex_lock+0x129/0xcc0
[  104.733883][ T5943]  ? snd_usb_endpoint_close+0x3c/0x4c0
[  104.739372][ T5943]  ? usb_free_coherent+0x5d/0x90
[  104.744329][ T5943]  ? release_urbs+0x3fe/0x4a0
[  104.749064][ T5943]  ? snd_usb_endpoint_close+0x3c/0x4c0
[  104.754548][ T5943]  ? mutex_lock_nested+0x20/0x20
[  104.759513][ T5943]  ? snd_usb_endpoint_set_params+0x407/0x2b50
[  104.765628][ T5943]  snd_usb_endpoint_close+0x3c/0x4c0
[  104.770923][ T5943]  snd_usb_hw_params+0x1357/0x19c0
[  104.776062][ T5943]  ? snd_usb_pcm_close+0x300/0x300
[  104.781210][ T5943]  ? snd_pcm_lib_malloc_pages+0x300/0x690
[  104.786978][ T5943]  snd_pcm_hw_params+0x835/0x1c50
[  104.792076][ T5943]  ? snd_pcm_hw_param_first+0x6a0/0xb30
[  104.797646][ T5943]  ? snd_pcm_forward+0x6d0/0x6d0
[  104.802601][ T5943]  snd_pcm_oss_change_params_locked+0x2144/0x3d30
[  104.809047][ T5943]  ? snd_pcm_oss_read2+0x3d0/0x3d0
[  104.814321][ T5943]  ? ima_file_free+0x154/0x450
[  104.819119][ T5943]  ? mutex_lock_nested+0x20/0x20
[  104.824092][ T5943]  ? __fsnotify_parent+0x651/0x720
[  104.829326][ T5943]  snd_pcm_oss_sync+0x363/0xc20
[  104.834242][ T5943]  snd_pcm_oss_release+0x102/0x240
[  104.839473][ T5943]  ? snd_pcm_oss_open+0x1b40/0x1b40
[  104.844714][ T5943]  __fput+0x234/0x970
[  104.848781][ T5943]  task_work_run+0x1ce/0x250
[  104.853395][ T5943]  ? task_work_cancel+0x240/0x240
[  104.858431][ T5943]  ? exit_to_user_mode_loop+0x3b/0x110
[  104.863898][ T5943]  exit_to_user_mode_loop+0xe6/0x110
[  104.869232][ T5943]  exit_to_user_mode_prepare+0xf6/0x180
[  104.874802][ T5943]  syscall_exit_to_user_mode+0x1a/0x50
[  104.880290][ T5943]  do_syscall_64+0x61/0xb0
[  104.884815][ T5943]  ? clear_bhb_loop+0x40/0x90
[  104.889527][ T5943]  ? clear_bhb_loop+0x40/0x90
[  104.894253][ T5943]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  104.900190][ T5943] RIP: 0033:0x7fd25f18f749
[  104.904628][ T5943] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.924250][ T5943] RSP: 002b:00007ffc9d0a8818 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  104.932685][ T5943] RAX: 0000000000000000 RBX: 00000000000194ff RCX: 00007fd25f18f749
[  104.940692][ T5943] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  104.948734][ T5943] RBP: 0000000000000000 R08: 0000000000000001 R09: 000000029d0a8b0f
[  104.956773][ T5943] R10: 0000001b2c620000 R11: 0000000000000246 R12: 00007fd25f3e5fac
[  104.964762][ T5943] R13: 00007fd25f3e5fa0 R14: ffffffffffffffff R15: 0000000000000003
[  104.972759][ T5943]  </TASK>
[  105.063310][ T5101] Bluetooth: hci0: command tx timeout
[  107.143267][ T5101] Bluetooth: hci0: command tx timeout