Warning: Permanently added '10.128.0.165' (ED25519) to the list of known hosts. 1970/01/01 00:00:34 parsed 1 programs syzkaller login: [ 36.200821][ T6575] cgroup: Unknown subsys name 'net' [ 36.350525][ T6575] cgroup: Unknown subsys name 'cpuset' [ 36.352420][ T6575] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 36.545092][ T6575] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SS [ 41.315368][ T6592] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 41.933442][ T6161] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 41.934006][ T6161] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 41.934164][ T6161] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 41.934440][ T6161] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 41.934613][ T6161] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 41.972023][ T793] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 41.975400][ T793] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 41.978333][ T6636] chnl_net:caif_netlink_parms(): no params data found [ 42.058694][ T793] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 42.060255][ T793] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 42.096895][ T6636] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.097328][ T6636] bridge0: port 1(bridge_slave_0) entered disabled state [ 42.097400][ T6636] bridge_slave_0: entered allmulticast mode [ 42.097847][ T6636] bridge_slave_0: entered promiscuous mode [ 42.107461][ T6636] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.108988][ T6636] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.110530][ T6636] bridge_slave_1: entered allmulticast mode [ 42.115562][ T6636] bridge_slave_1: entered promiscuous mode [ 42.245137][ T6636] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 42.246049][ T6636] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 42.273454][ T6636] team0: Port device team_slave_0 added [ 42.274210][ T6636] team0: Port device team_slave_1 added [ 42.281255][ T6636] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 42.281280][ T6636] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 42.281291][ T6636] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 42.282141][ T6636] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 42.282149][ T6636] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 42.282160][ T6636] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 42.308315][ T6636] hsr_slave_0: entered promiscuous mode [ 42.308699][ T6636] hsr_slave_1: entered promiscuous mode [ 42.600639][ T6636] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 42.602673][ T6636] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 42.603855][ T6636] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 42.605090][ T6636] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 42.623770][ T6636] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.623822][ T6636] bridge0: port 2(bridge_slave_1) entered forwarding state [ 42.624002][ T6636] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.624026][ T6636] bridge0: port 1(bridge_slave_0) entered forwarding state [ 42.641547][ T6636] 8021q: adding VLAN 0 to HW filter on device bond0 [ 42.645591][ T793] bridge0: port 1(bridge_slave_0) entered disabled state [ 42.647402][ T793] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.651555][ T6636] 8021q: adding VLAN 0 to HW filter on device team0 [ 42.661162][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.661206][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 42.661859][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.661876][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 42.705355][ T6636] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 42.718839][ T6636] veth0_vlan: entered promiscuous mode [ 42.722057][ T6636] veth1_vlan: entered promiscuous mode [ 42.728201][ T6636] veth0_macvtap: entered promiscuous mode [ 42.730661][ T6636] veth1_macvtap: entered promiscuous mode [ 42.735141][ T6636] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 42.738804][ T6636] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 42.743889][ T2083] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 42.744034][ T2083] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 42.744050][ T2083] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 42.744063][ T2083] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 1970/01/01 00:00:42 executed programs: 0 [ 42.814316][ T53] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 42.815993][ T53] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 42.816878][ T53] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 42.817363][ T53] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 42.817543][ T53] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 42.848044][ T53] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 42.849511][ T53] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 42.849830][ T53] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 42.850161][ T53] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 42.850349][ T53] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 42.865429][ T6693] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 42.865785][ T6693] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 42.865926][ T6693] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 42.866210][ T6693] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 42.866384][ T6693] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 42.886472][ T6653] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 42.886945][ T6653] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 42.887118][ T6653] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 42.887400][ T6653] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 42.887595][ T6653] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 42.894162][ T6693] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 42.894549][ T6693] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 42.894701][ T6693] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 42.894958][ T6693] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 42.895146][ T6693] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 42.974787][ T3911] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 43.028978][ T3911] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 43.097337][ T3911] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 43.150315][ T3911] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 43.169736][ T6690] chnl_net:caif_netlink_parms(): no params data found [ 43.208873][ T6698] chnl_net:caif_netlink_parms(): no params data found [ 43.219734][ T6694] chnl_net:caif_netlink_parms(): no params data found [ 43.233616][ T6699] chnl_net:caif_netlink_parms(): no params data found [ 43.284550][ T6686] chnl_net:caif_netlink_parms(): no params data found [ 43.287436][ T6690] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.287528][ T6690] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.287589][ T6690] bridge_slave_0: entered allmulticast mode [ 43.288057][ T6690] bridge_slave_0: entered promiscuous mode [ 43.298983][ T6690] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.299786][ T6690] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.299872][ T6690] bridge_slave_1: entered allmulticast mode [ 43.300340][ T6690] bridge_slave_1: entered promiscuous mode [ 43.303567][ T6698] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.304724][ T6698] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.306227][ T6698] bridge_slave_0: entered allmulticast mode [ 43.307865][ T6698] bridge_slave_0: entered promiscuous mode [ 43.316127][ T6694] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.316406][ T6694] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.316469][ T6694] bridge_slave_0: entered allmulticast mode [ 43.316897][ T6694] bridge_slave_0: entered promiscuous mode [ 43.321550][ T6698] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.321599][ T6698] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.322151][ T6698] bridge_slave_1: entered allmulticast mode [ 43.322692][ T6698] bridge_slave_1: entered promiscuous mode [ 43.327117][ T6694] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.328314][ T6694] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.329692][ T6694] bridge_slave_1: entered allmulticast mode [ 43.331221][ T6694] bridge_slave_1: entered promiscuous mode [ 43.354150][ T6690] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 43.371452][ T6694] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 43.373159][ T6699] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.373239][ T6699] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.373333][ T6699] bridge_slave_0: entered allmulticast mode [ 43.373819][ T6699] bridge_slave_0: entered promiscuous mode [ 43.375272][ T6690] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 43.375692][ T6699] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.375711][ T6699] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.375789][ T6699] bridge_slave_1: entered allmulticast mode [ 43.376416][ T6699] bridge_slave_1: entered promiscuous mode [ 43.378213][ T6698] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 43.395192][ T6698] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 43.396129][ T6694] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 43.400776][ T6699] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 43.401967][ T6699] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 43.420113][ T6686] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.420546][ T6686] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.420616][ T6686] bridge_slave_0: entered allmulticast mode [ 43.421074][ T6686] bridge_slave_0: entered promiscuous mode [ 43.422954][ T6690] team0: Port device team_slave_0 added [ 43.423342][ T6686] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.423360][ T6686] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.423431][ T6686] bridge_slave_1: entered allmulticast mode [ 43.423845][ T6686] bridge_slave_1: entered promiscuous mode [ 43.427879][ T6690] team0: Port device team_slave_1 added [ 43.431974][ T6698] team0: Port device team_slave_0 added [ 43.432915][ T6698] team0: Port device team_slave_1 added [ 43.433948][ T6699] team0: Port device team_slave_0 added [ 43.438078][ T6694] team0: Port device team_slave_0 added [ 43.446533][ T6699] team0: Port device team_slave_1 added [ 43.451077][ T6694] team0: Port device team_slave_1 added [ 43.455175][ T6690] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 43.456511][ T6690] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 43.459126][ T6690] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 43.468260][ T6686] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 43.473894][ T6698] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 43.473916][ T6698] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 43.473928][ T6698] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 43.474401][ T6690] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 43.474409][ T6690] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 43.474421][ T6690] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 43.474876][ T6699] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 43.474885][ T6699] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 43.474897][ T6699] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 43.482523][ T6686] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 43.491931][ T6698] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 43.491944][ T6698] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 43.491960][ T6698] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 43.492459][ T6699] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 43.492469][ T6699] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 43.492481][ T6699] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 43.502965][ T6694] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 43.502975][ T6694] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 43.502988][ T6694] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 43.505296][ T6694] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 43.505303][ T6694] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 43.505314][ T6694] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 43.511758][ T6686] team0: Port device team_slave_0 added [ 43.513277][ T6690] hsr_slave_0: entered promiscuous mode [ 43.513573][ T6690] hsr_slave_1: entered promiscuous mode [ 43.514493][ T6690] debugfs: 'hsr0' already exists in 'hsr' [ 43.514551][ T6690] Cannot create hsr debugfs directory [ 43.515513][ T6686] team0: Port device team_slave_1 added [ 43.536305][ T6694] hsr_slave_0: entered promiscuous mode [ 43.536659][ T6694] hsr_slave_1: entered promiscuous mode [ 43.536872][ T6694] debugfs: 'hsr0' already exists in 'hsr' [ 43.536881][ T6694] Cannot create hsr debugfs directory [ 43.543447][ T6699] hsr_slave_0: entered promiscuous mode [ 43.543814][ T6699] hsr_slave_1: entered promiscuous mode [ 43.544040][ T6699] debugfs: 'hsr0' already exists in 'hsr' [ 43.544051][ T6699] Cannot create hsr debugfs directory [ 43.547701][ T6686] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 43.547890][ T6686] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 43.547908][ T6686] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 43.551732][ T6698] hsr_slave_0: entered promiscuous mode [ 43.552071][ T6698] hsr_slave_1: entered promiscuous mode [ 43.552295][ T6698] debugfs: 'hsr0' already exists in 'hsr' [ 43.552304][ T6698] Cannot create hsr debugfs directory [ 43.559864][ T6686] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 43.559895][ T6686] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 43.559912][ T6686] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 43.593809][ T6686] hsr_slave_0: entered promiscuous mode [ 43.594159][ T6686] hsr_slave_1: entered promiscuous mode [ 43.594386][ T6686] debugfs: 'hsr0' already exists in 'hsr' [ 43.594396][ T6686] Cannot create hsr debugfs directory [ 43.733643][ T6690] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 43.736210][ T6690] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 43.738932][ T6690] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 43.741625][ T6690] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 43.751059][ T6690] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.751104][ T6690] bridge0: port 2(bridge_slave_1) entered forwarding state [ 43.751183][ T6690] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.751212][ T6690] bridge0: port 1(bridge_slave_0) entered forwarding state [ 43.766568][ T6690] 8021q: adding VLAN 0 to HW filter on device bond0 [ 43.770395][ T6690] 8021q: adding VLAN 0 to HW filter on device team0 [ 43.772894][ T647] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.790498][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.790537][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 43.841692][ T6690] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 43.855051][ T6690] veth0_vlan: entered promiscuous mode [ 43.856940][ T6690] veth1_vlan: entered promiscuous mode [ 43.863591][ T6690] veth0_macvtap: entered promiscuous mode [ 43.864645][ T6690] veth1_macvtap: entered promiscuous mode [ 43.868090][ T6690] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 43.869508][ T6690] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 43.871974][ T647] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 43.872028][ T647] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 43.872158][ T647] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 43.872259][ T647] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 43.889967][ T647] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 43.891295][ T647] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 43.897506][ T793] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 43.900409][ T793] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 44.889595][ T6653] Bluetooth: hci3: command tx timeout [ 44.889854][ T53] Bluetooth: hci2: command tx timeout [ 44.889955][ T53] Bluetooth: hci1: command tx timeout [ 44.890098][ T6693] Bluetooth: hci4: command tx timeout [ 44.969101][ T6752] Bluetooth: hci5: command tx timeout [ 46.475791][ T3911] bridge_slave_1: left allmulticast mode [ 46.476988][ T3911] bridge_slave_1: left promiscuous mode [ 46.478358][ T3911] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.483455][ T3911] bridge_slave_0: left allmulticast mode [ 46.483481][ T3911] bridge_slave_0: left promiscuous mode [ 46.483946][ T3911] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.643476][ T3911] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 46.670397][ T3911] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 46.689892][ T3911] bond0 (unregistering): Released all slaves [ 46.763611][ T3911] hsr_slave_0: left promiscuous mode [ 46.764691][ T3911] hsr_slave_1: left promiscuous mode [ 46.765277][ T3911] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 46.765291][ T3911] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 46.766132][ T3911] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 46.766143][ T3911] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 46.777888][ T3911] veth1_macvtap: left promiscuous mode [ 46.777956][ T3911] veth0_macvtap: left promiscuous mode [ 46.778005][ T3911] veth1_vlan: left promiscuous mode [ 46.778400][ T3911] veth0_vlan: left promiscuous mode [ 46.911643][ T3911] team0 (unregistering): Port device team_slave_1 removed [ 46.918054][ T3911] team0 (unregistering): Port device team_slave_0 removed [ 46.969160][ T6752] Bluetooth: hci3: command tx timeout [ 46.969442][ T6752] Bluetooth: hci4: command tx timeout [ 46.969456][ T6752] Bluetooth: hci1: command tx timeout [ 46.969467][ T6752] Bluetooth: hci2: command tx timeout [ 47.050023][ T6161] Bluetooth: hci5: command tx timeout [ 47.147624][ T6686] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 47.167051][ T6686] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 47.179247][ T6686] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 47.181952][ T6686] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 47.204581][ T6699] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 47.207411][ T6699] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 47.219669][ T6699] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 47.234440][ T6699] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 47.290349][ T6694] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 47.294030][ T6694] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 47.298092][ T6694] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 47.302026][ T6694] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 47.383831][ T6698] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 47.386354][ T6698] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 47.388897][ T6686] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.391682][ T6698] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 47.395256][ T6698] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 47.402494][ T6686] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.431235][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.431275][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.432567][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.432589][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.448740][ T6699] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.469089][ T6699] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.484197][ T793] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.484240][ T793] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.551978][ T6694] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.553259][ T647] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.553278][ T647] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.555150][ T6686] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 47.576715][ T6698] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.578863][ T6694] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.603729][ T6698] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.609621][ T793] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.609667][ T793] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.613248][ T793] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.613280][ T793] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.618507][ T793] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.618545][ T793] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.624141][ T793] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.624183][ T793] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.699722][ T6686] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.704889][ T6694] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 47.731411][ T6686] veth0_vlan: entered promiscuous mode [ 47.765856][ T6686] veth1_vlan: entered promiscuous mode [ 47.775809][ T6699] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.800855][ T6686] veth0_macvtap: entered promiscuous mode [ 47.823006][ T6686] veth1_macvtap: entered promiscuous mode [ 47.826347][ T6686] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 47.855809][ T6686] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 47.862544][ T793] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.864446][ T793] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.867546][ T793] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.869294][ T793] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.875671][ T6694] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.883340][ T6698] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.895331][ T6698] veth0_vlan: entered promiscuous mode [ 47.898455][ T6698] veth1_vlan: entered promiscuous mode [ 47.956117][ T6698] veth0_macvtap: entered promiscuous mode [ 47.958345][ T905] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.958501][ T6694] veth0_vlan: entered promiscuous mode [ 47.959942][ T905] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.963100][ T6698] veth1_macvtap: entered promiscuous mode [ 47.968332][ T6699] veth0_vlan: entered promiscuous mode [ 47.983355][ T6694] veth1_vlan: entered promiscuous mode [ 47.983765][ T3911] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.983774][ T3911] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.992069][ T6699] veth1_vlan: entered promiscuous mode [ 48.003037][ T6698] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.008145][ T6698] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.012383][ T2083] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.013289][ T2083] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.013443][ T2083] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.013462][ T2083] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 1970/01/01 00:00:48 executed programs: 12 [ 48.028794][ T6699] veth0_macvtap: entered promiscuous mode [ 48.034335][ T6694] veth0_macvtap: entered promiscuous mode [ 48.041064][ T6699] veth1_macvtap: entered promiscuous mode [ 48.046531][ T6694] veth1_macvtap: entered promiscuous mode [ 48.075697][ T6699] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.085475][ T6694] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.093939][ T6699] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.096528][ T6694] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.098479][ T793] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.098672][ T793] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.116785][ T3911] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.118406][ T3911] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.118910][ T3911] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.118937][ T3911] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.118959][ T3911] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.118974][ T3911] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.118989][ T3911] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.119004][ T3911] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.136145][ T2083] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.136179][ T2083] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.170784][ T3911] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.171057][ T3911] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.183766][ T5748] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.183802][ T5748] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.194466][ T5748] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.194495][ T5748] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.217330][ T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.217362][ T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.049427][ T6161] Bluetooth: hci2: command tx timeout [ 49.049454][ T6653] Bluetooth: hci4: command tx timeout [ 49.049993][ T6161] Bluetooth: hci3: command tx timeout [ 49.050547][ T6752] Bluetooth: hci1: command tx timeout [ 49.129729][ T6653] Bluetooth: hci5: command tx timeout [ 50.199737][ T6844] [ 50.200150][ T6844] ===================================================== [ 50.201196][ T6844] WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected [ 50.202333][ T6844] syzkaller #0 Not tainted [ 50.202933][ T6844] ----------------------------------------------------- [ 50.203933][ T6844] syz.4.21/6844 [HC0[0]:SC0[0]:HE0:SE1] is trying to acquire: [ 50.205020][ T6844] ffff800097626150 (&p->sequence){+.-.}-{0:0}, at: __fprop_add_percpu_max+0x130/0x1f4 [ 50.206411][ T6844] [ 50.206411][ T6844] and this task is already holding: [ 50.207452][ T6844] ffff0000f9a21040 (&xa->xa_lock#10){-...}-{3:3}, at: __folio_end_writeback+0x10c/0x6f8 [ 50.208846][ T6844] which would create a new lock dependency: [ 50.209750][ T6844] (&xa->xa_lock#10){-...}-{3:3} -> (&p->sequence){+.-.}-{0:0} [ 50.210928][ T6844] [ 50.210928][ T6844] but this new dependency connects a HARDIRQ-irq-safe lock: [ 50.212288][ T6844] (&xa->xa_lock#10){-...}-{3:3} [ 50.212326][ T6844] [ 50.212326][ T6844] ... which became HARDIRQ-irq-safe at: [ 50.214156][ T6844] lock_acquire+0x140/0x2e0 [ 50.214840][ T6844] _raw_spin_lock_irqsave+0x5c/0x7c [ 50.215629][ T6844] __folio_end_writeback+0x10c/0x6f8 [ 50.216419][ T6844] folio_end_writeback_no_dropbehind+0xd0/0x204 [ 50.217366][ T6844] folio_end_writeback+0xd8/0x248 [ 50.218085][ T6844] end_buffer_async_write+0x20c/0x350 [ 50.218904][ T6844] end_bio_bh_io_sync+0xb0/0x184 [ 50.219611][ T6844] bio_endio+0x8d4/0x910 [ 50.220309][ T6844] blk_mq_end_request_batch+0x49c/0x105c [ 50.221131][ T6844] nvme_irq+0x1ec/0x240 [ 50.221752][ T6844] __handle_irq_event_percpu+0x20c/0x8e4 [ 50.222585][ T6844] handle_irq_event+0x9c/0x1d0 [ 50.223331][ T6844] handle_fasteoi_irq+0x328/0x8d8 [ 50.224054][ T6844] generic_handle_domain_irq+0xe0/0x140 [ 50.224889][ T6844] gic_handle_irq+0x6c/0x18c [ 50.225548][ T6844] call_on_irq_stack+0x30/0x48 [ 50.226235][ T6844] do_interrupt_handler+0xd4/0x138 [ 50.227025][ T6844] el1_interrupt+0x3c/0x60 [ 50.227687][ T6844] el1h_64_irq_handler+0x18/0x24 [ 50.228451][ T6844] el1h_64_irq+0x6c/0x70 [ 50.229091][ T6844] raw_spin_rq_unlock_irq+0x18/0x24 [ 50.229841][ T6844] __schedule+0x1410/0x2a7c [ 50.230493][ T6844] schedule+0xb4/0x230 [ 50.231098][ T6844] do_sched_yield+0x160/0x1ec [ 50.231778][ T6844] __arm64_sys_sched_yield+0x10/0x20 [ 50.232562][ T6844] invoke_syscall+0x98/0x254 [ 50.233247][ T6844] el0_svc_common+0xe8/0x23c [ 50.233937][ T6844] do_el0_svc+0x48/0x58 [ 50.234567][ T6844] el0_svc+0x5c/0x26c [ 50.235187][ T6844] el0t_64_sync_handler+0x84/0x12c [ 50.235920][ T6844] el0t_64_sync+0x198/0x19c [ 50.236574][ T6844] [ 50.236574][ T6844] to a HARDIRQ-irq-unsafe lock: [ 50.237519][ T6844] (&p->sequence){+.-.}-{0:0} [ 50.237547][ T6844] [ 50.237547][ T6844] ... which became HARDIRQ-irq-unsafe at: [ 50.239296][ T6844] ... [ 50.239304][ T6844] lock_acquire+0x140/0x2e0 [ 50.240291][ T6844] fprop_new_period+0x3b8/0x718 [ 50.240996][ T6844] writeout_period+0x94/0x11c [ 50.241713][ T6844] call_timer_fn+0x19c/0x814 [ 50.242407][ T6844] __run_timer_base+0x51c/0x76c [ 50.243161][ T6844] run_timer_softirq+0x11c/0x194 [ 50.243864][ T6844] handle_softirqs+0x31c/0xc88 [ 50.244586][ T6844] __do_softirq+0x14/0x20 [ 50.245220][ T6844] ____do_softirq+0x14/0x20 [ 50.245904][ T6844] call_on_irq_stack+0x30/0x48 [ 50.246590][ T6844] do_softirq_own_stack+0x20/0x2c [ 50.247329][ T6844] __irq_exit_rcu+0x1b0/0x478 [ 50.247995][ T6844] irq_exit_rcu+0x14/0x84 [ 50.248633][ T6844] el1_interrupt+0x40/0x60 [ 50.249274][ T6844] el1h_64_irq_handler+0x18/0x24 [ 50.249965][ T6844] el1h_64_irq+0x6c/0x70 [ 50.250552][ T6844] _raw_spin_unlock_irq+0x34/0x80 [ 50.251249][ T6844] get_signal+0xee4/0x12f8 [ 50.251909][ T6844] arch_do_signal_or_restart+0x1b8/0x46d4 [ 50.252691][ T6844] exit_to_user_mode_loop+0x88/0x18c [ 50.253433][ T6844] el0_svc+0x17c/0x26c [ 50.254026][ T6844] el0t_64_sync_handler+0x84/0x12c [ 50.254783][ T6844] el0t_64_sync+0x198/0x19c [ 50.255410][ T6844] [ 50.255410][ T6844] other info that might help us debug this: [ 50.255410][ T6844] [ 50.256855][ T6844] Possible interrupt unsafe locking scenario: [ 50.256855][ T6844] [ 50.257994][ T6844] CPU0 CPU1 [ 50.258746][ T6844] ---- ---- [ 50.259478][ T6844] lock(&p->sequence); [ 50.260063][ T6844] local_irq_disable(); [ 50.261046][ T6844] lock(&xa->xa_lock#10); [ 50.262063][ T6844] lock(&p->sequence); [ 50.262989][ T6844] [ 50.263497][ T6844] lock(&xa->xa_lock#10); [ 50.264229][ T6844] [ 50.264229][ T6844] *** DEADLOCK *** [ 50.264229][ T6844] [ 50.265368][ T6844] 5 locks held by syz.4.21/6844: [ 50.266042][ T6844] #0: ffff0000def85b38 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x1fc/0x2a0 [ 50.267375][ T6844] #1: ffff0000cfbca420 (sb_writers#11){.+.+}-{0:0}, at: vfs_writev+0x21c/0x7cc [ 50.268719][ T6844] #2: ffff0000f9a20f48 (&sb->s_type->i_mutex_key#22){+.+.}-{4:4}, at: fuse_fsync+0xf0/0x2b8 [ 50.270215][ T6844] #3: ffff0000f9a21438 (&fi->lock){+.+.}-{3:3}, at: fuse_iomap_writeback_submit+0xd4/0x220 [ 50.271626][ T6844] #4: ffff0000f9a21040 (&xa->xa_lock#10){-...}-{3:3}, at: __folio_end_writeback+0x10c/0x6f8 [ 50.273124][ T6844] [ 50.273124][ T6844] the dependencies between HARDIRQ-irq-safe lock and the holding lock: [ 50.274538][ T6844] -> (&xa->xa_lock#10){-...}-{3:3} { [ 50.275313][ T6844] IN-HARDIRQ-W at: [ 50.275893][ T6844] lock_acquire+0x140/0x2e0 [ 50.276792][ T6844] _raw_spin_lock_irqsave+0x5c/0x7c [ 50.277767][ T6844] __folio_end_writeback+0x10c/0x6f8 [ 50.278746][ T6844] folio_end_writeback_no_dropbehind+0xd0/0x204 [ 50.279833][ T6844] folio_end_writeback+0xd8/0x248 [ 50.280749][ T6844] end_buffer_async_write+0x20c/0x350 [ 50.281710][ T6844] end_bio_bh_io_sync+0xb0/0x184 [ 50.282658][ T6844] bio_endio+0x8d4/0x910 [ 50.283572][ T6844] blk_mq_end_request_batch+0x49c/0x105c [ 50.284608][ T6844] nvme_irq+0x1ec/0x240 [ 50.285470][ T6844] __handle_irq_event_percpu+0x20c/0x8e4 [ 50.286491][ T6844] handle_irq_event+0x9c/0x1d0 [ 50.287416][ T6844] handle_fasteoi_irq+0x328/0x8d8 [ 50.288343][ T6844] generic_handle_domain_irq+0xe0/0x140 [ 50.289354][ T6844] gic_handle_irq+0x6c/0x18c [ 50.290240][ T6844] call_on_irq_stack+0x30/0x48 [ 50.291188][ T6844] do_interrupt_handler+0xd4/0x138 [ 50.292171][ T6844] el1_interrupt+0x3c/0x60 [ 50.293027][ T6844] el1h_64_irq_handler+0x18/0x24 [ 50.293954][ T6844] el1h_64_irq+0x6c/0x70 [ 50.294793][ T6844] raw_spin_rq_unlock_irq+0x18/0x24 [ 50.295755][ T6844] __schedule+0x1410/0x2a7c [ 50.296642][ T6844] schedule+0xb4/0x230 [ 50.297451][ T6844] do_sched_yield+0x160/0x1ec [ 50.298305][ T6844] __arm64_sys_sched_yield+0x10/0x20 [ 50.299253][ T6844] invoke_syscall+0x98/0x254 [ 50.300127][ T6844] el0_svc_common+0xe8/0x23c [ 50.301007][ T6844] do_el0_svc+0x48/0x58 [ 50.301790][ T6844] el0_svc+0x5c/0x26c [ 50.302578][ T6844] el0t_64_sync_handler+0x84/0x12c [ 50.303534][ T6844] el0t_64_sync+0x198/0x19c [ 50.304408][ T6844] INITIAL USE at: [ 50.304962][ T6844] lock_acquire+0x140/0x2e0 [ 50.305809][ T6844] _raw_spin_lock_irq+0x58/0x70 [ 50.306679][ T6844] shmem_add_to_page_cache+0x564/0xa24 [ 50.307704][ T6844] shmem_alloc_and_add_folio+0x758/0x10c4 [ 50.308751][ T6844] shmem_get_folio_gfp+0x4d4/0x159c [ 50.309705][ T6844] shmem_read_folio_gfp+0x8c/0xf0 [ 50.310604][ T6844] drm_gem_get_pages+0x1cc/0x7c0 [ 50.311556][ T6844] drm_gem_shmem_get_pages_locked+0x1d4/0x364 [ 50.312621][ T6844] drm_gem_shmem_pin_locked+0x1f8/0x410 [ 50.313640][ T6844] drm_gem_shmem_vmap_locked+0x3cc/0x658 [ 50.314724][ T6844] drm_gem_shmem_object_vmap+0x28/0x38 [ 50.315684][ T6844] drm_gem_vmap+0x104/0x1d8 [ 50.316532][ T6844] drm_client_buffer_vmap+0x68/0xb0 [ 50.317534][ T6844] drm_fbdev_shmem_driver_fbdev_probe+0x1f4/0x700 [ 50.318648][ T6844] __drm_fb_helper_initial_config_and_unlock+0x108c/0x1728 [ 50.319900][ T6844] drm_fb_helper_initial_config+0x3c/0x58 [ 50.320975][ T6844] drm_fbdev_client_hotplug+0x154/0x22c [ 50.321991][ T6844] drm_client_register+0x13c/0x1d4 [ 50.322930][ T6844] drm_fbdev_client_setup+0x194/0x3d0 [ 50.323905][ T6844] drm_client_setup+0x114/0x228 [ 50.324756][ T6844] vkms_create+0x370/0x420 [ 50.325617][ T6844] vkms_init+0x64/0x9c [ 50.326433][ T6844] do_one_initcall+0x248/0x9b4 [ 50.327311][ T6844] do_initcall_level+0x128/0x1c4 [ 50.328243][ T6844] do_initcalls+0x70/0xd0 [ 50.329033][ T6844] do_basic_setup+0x78/0x8c [ 50.329913][ T6844] kernel_init_freeable+0x268/0x39c [ 50.330890][ T6844] kernel_init+0x24/0x1dc [ 50.331734][ T6844] ret_from_fork+0x10/0x20 [ 50.332569][ T6844] } [ 50.332925][ T6844] ... key at: [] xa_init_flags.__key+0x0/0x20 [ 50.334143][ T6844] [ 50.334143][ T6844] the dependencies between the lock to be acquired [ 50.334151][ T6844] and HARDIRQ-irq-unsafe lock: [ 50.336084][ T6844] -> (&p->sequence){+.-.}-{0:0} { [ 50.336845][ T6844] HARDIRQ-ON-W at: [ 50.337382][ T6844] lock_acquire+0x140/0x2e0 [ 50.338318][ T6844] fprop_new_period+0x3b8/0x718 [ 50.339255][ T6844] writeout_period+0x94/0x11c [ 50.340106][ T6844] call_timer_fn+0x19c/0x814 [ 50.340961][ T6844] __run_timer_base+0x51c/0x76c [ 50.341919][ T6844] run_timer_softirq+0x11c/0x194 [ 50.342903][ T6844] handle_softirqs+0x31c/0xc88 [ 50.343791][ T6844] __do_softirq+0x14/0x20 [ 50.344598][ T6844] ____do_softirq+0x14/0x20 [ 50.345463][ T6844] call_on_irq_stack+0x30/0x48 [ 50.346371][ T6844] do_softirq_own_stack+0x20/0x2c [ 50.347358][ T6844] __irq_exit_rcu+0x1b0/0x478 [ 50.348280][ T6844] irq_exit_rcu+0x14/0x84 [ 50.349227][ T6844] el1_interrupt+0x40/0x60 [ 50.350094][ T6844] el1h_64_irq_handler+0x18/0x24 [ 50.351041][ T6844] el1h_64_irq+0x6c/0x70 [ 50.351849][ T6844] _raw_spin_unlock_irq+0x34/0x80 [ 50.352778][ T6844] get_signal+0xee4/0x12f8 [ 50.353667][ T6844] arch_do_signal_or_restart+0x1b8/0x46d4 [ 50.354747][ T6844] exit_to_user_mode_loop+0x88/0x18c [ 50.355777][ T6844] el0_svc+0x17c/0x26c [ 50.356648][ T6844] el0t_64_sync_handler+0x84/0x12c [ 50.357627][ T6844] el0t_64_sync+0x198/0x19c [ 50.358500][ T6844] IN-SOFTIRQ-W at: [ 50.359031][ T6844] lock_acquire+0x140/0x2e0 [ 50.359968][ T6844] fprop_new_period+0x3b8/0x718 [ 50.360908][ T6844] writeout_period+0x94/0x11c [ 50.361844][ T6844] call_timer_fn+0x19c/0x814 [ 50.362767][ T6844] __run_timer_base+0x51c/0x76c [ 50.363723][ T6844] run_timer_softirq+0x11c/0x194 [ 50.364711][ T6844] handle_softirqs+0x31c/0xc88 [ 50.365595][ T6844] __do_softirq+0x14/0x20 [ 50.366392][ T6844] ____do_softirq+0x14/0x20 [ 50.367249][ T6844] call_on_irq_stack+0x30/0x48 [ 50.368164][ T6844] do_softirq_own_stack+0x20/0x2c [ 50.369153][ T6844] __irq_exit_rcu+0x1b0/0x478 [ 50.370118][ T6844] irq_exit_rcu+0x14/0x84 [ 50.370946][ T6844] el1_interrupt+0x40/0x60 [ 50.371783][ T6844] el1h_64_irq_handler+0x18/0x24 [ 50.372775][ T6844] el1h_64_irq+0x6c/0x70 [ 50.373644][ T6844] _raw_spin_unlock_irq+0x34/0x80 [ 50.374585][ T6844] get_signal+0xee4/0x12f8 [ 50.375547][ T6844] arch_do_signal_or_restart+0x1b8/0x46d4 [ 50.376649][ T6844] exit_to_user_mode_loop+0x88/0x18c [ 50.377562][ T6844] el0_svc+0x17c/0x26c [ 50.378354][ T6844] el0t_64_sync_handler+0x84/0x12c [ 50.379295][ T6844] el0t_64_sync+0x198/0x19c [ 50.380124][ T6844] INITIAL USE at: [ 50.380663][ T6844] lock_acquire+0x140/0x2e0 [ 50.381543][ T6844] fprop_new_period+0x3b8/0x718 [ 50.382485][ T6844] writeout_period+0x94/0x11c [ 50.383411][ T6844] call_timer_fn+0x19c/0x814 [ 50.384312][ T6844] __run_timer_base+0x51c/0x76c [ 50.385230][ T6844] run_timer_softirq+0x11c/0x194 [ 50.386137][ T6844] handle_softirqs+0x31c/0xc88 [ 50.387024][ T6844] __do_softirq+0x14/0x20 [ 50.387881][ T6844] ____do_softirq+0x14/0x20 [ 50.388722][ T6844] call_on_irq_stack+0x30/0x48 [ 50.389643][ T6844] do_softirq_own_stack+0x20/0x2c [ 50.390622][ T6844] __irq_exit_rcu+0x1b0/0x478 [ 50.391576][ T6844] irq_exit_rcu+0x14/0x84 [ 50.392407][ T6844] el1_interrupt+0x40/0x60 [ 50.393246][ T6844] el1h_64_irq_handler+0x18/0x24 [ 50.394155][ T6844] el1h_64_irq+0x6c/0x70 [ 50.395004][ T6844] _raw_spin_unlock_irq+0x34/0x80 [ 50.395925][ T6844] get_signal+0xee4/0x12f8 [ 50.396751][ T6844] arch_do_signal_or_restart+0x1b8/0x46d4 [ 50.397821][ T6844] exit_to_user_mode_loop+0x88/0x18c [ 50.398777][ T6844] el0_svc+0x17c/0x26c [ 50.399572][ T6844] el0t_64_sync_handler+0x84/0x12c [ 50.400526][ T6844] el0t_64_sync+0x198/0x19c [ 50.401383][ T6844] INITIAL READ USE at: [ 50.402010][ T6844] lock_acquire+0x140/0x2e0 [ 50.402930][ T6844] fprop_fraction_percpu+0xac/0x270 [ 50.403997][ T6844] __wb_calc_thresh+0xfc/0x3b0 [ 50.404979][ T6844] domain_over_bg_thresh+0xb8/0x1f0 [ 50.405986][ T6844] wb_over_bg_thresh+0xf8/0x17c [ 50.406950][ T6844] wb_workfn+0xa30/0xdc0 [ 50.407837][ T6844] process_one_work+0x7c0/0x1558 [ 50.408857][ T6844] worker_thread+0x958/0xed8 [ 50.409821][ T6844] kthread+0x5fc/0x75c [ 50.410765][ T6844] ret_from_fork+0x10/0x20 [ 50.411677][ T6844] } [ 50.412021][ T6844] ... key at: [] fprop_global_init.__key.1+0x0/0x20 [ 50.413225][ T6844] ... acquired at: [ 50.413790][ T6844] fprop_fraction_percpu+0xf0/0x270 [ 50.414509][ T6844] __fprop_add_percpu_max+0x130/0x1f4 [ 50.415255][ T6844] __wb_writeout_add+0xbc/0x27c [ 50.415983][ T6844] __folio_end_writeback+0x380/0x6f8 [ 50.416834][ T6844] folio_end_writeback_no_dropbehind+0xd0/0x204 [ 50.417730][ T6844] folio_end_writeback+0xd8/0x248 [ 50.418461][ T6844] iomap_finish_folio_write+0x1c0/0x2a4 [ 50.419361][ T6844] fuse_flush_writepages+0x578/0x788 [ 50.420132][ T6844] fuse_iomap_writeback_submit+0x188/0x220 [ 50.421046][ T6844] iomap_writepages+0x1dc/0x25c [ 50.421764][ T6844] fuse_writepages+0x208/0x2bc [ 50.422469][ T6844] do_writepages+0x270/0x468 [ 50.423162][ T6844] file_write_and_wait_range+0x1d0/0x2c4 [ 50.423951][ T6844] fuse_fsync+0x100/0x2b8 [ 50.424660][ T6844] vfs_fsync_range+0x160/0x19c [ 50.425398][ T6844] fuse_file_write_iter+0xa20/0xb88 [ 50.426170][ T6844] do_iter_readv_writev+0x4bc/0x720 [ 50.426913][ T6844] vfs_writev+0x29c/0x7cc [ 50.427564][ T6844] do_writev+0x128/0x290 [ 50.428237][ T6844] __arm64_sys_writev+0x80/0x94 [ 50.428974][ T6844] invoke_syscall+0x98/0x254 [ 50.429662][ T6844] el0_svc_common+0xe8/0x23c [ 50.430385][ T6844] do_el0_svc+0x48/0x58 [ 50.431039][ T6844] el0_svc+0x5c/0x26c [ 50.431670][ T6844] el0t_64_sync_handler+0x84/0x12c [ 50.432480][ T6844] el0t_64_sync+0x198/0x19c [ 50.433155][ T6844] [ 50.433609][ T6844] [ 50.433609][ T6844] stack backtrace: [ 50.434473][ T6844] CPU: 1 UID: 0 PID: 6844 Comm: syz.4.21 Not tainted syzkaller #0 PREEMPT [ 50.435704][ T6844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 50.437133][ T6844] Call trace: [ 50.437548][ T6844] show_stack+0x2c/0x3c (C) [ 50.438170][ T6844] __dump_stack+0x30/0x40 [ 50.438764][ T6844] dump_stack_lvl+0xd8/0x12c [ 50.439416][ T6844] dump_stack+0x1c/0x28 [ 50.440022][ T6844] __lock_acquire+0x3058/0x30a4 [ 50.440683][ T6844] lock_acquire+0x140/0x2e0 [ 50.441319][ T6844] fprop_fraction_percpu+0xf0/0x270 [ 50.442113][ T6844] __fprop_add_percpu_max+0x130/0x1f4 [ 50.442947][ T6844] __wb_writeout_add+0xbc/0x27c [ 50.443755][ T6844] __folio_end_writeback+0x380/0x6f8 [ 50.444594][ T6844] folio_end_writeback_no_dropbehind+0xd0/0x204 [ 50.445481][ T6844] folio_end_writeback+0xd8/0x248 [ 50.446214][ T6844] iomap_finish_folio_write+0x1c0/0x2a4 [ 50.447099][ T6844] fuse_flush_writepages+0x578/0x788 [ 50.447852][ T6844] fuse_iomap_writeback_submit+0x188/0x220 [ 50.448652][ T6844] iomap_writepages+0x1dc/0x25c [ 50.449336][ T6844] fuse_writepages+0x208/0x2bc [ 50.450000][ T6844] do_writepages+0x270/0x468 [ 50.450633][ T6844] file_write_and_wait_range+0x1d0/0x2c4 [ 50.451429][ T6844] fuse_fsync+0x100/0x2b8 [ 50.452075][ T6844] vfs_fsync_range+0x160/0x19c [ 50.452753][ T6844] fuse_file_write_iter+0xa20/0xb88 [ 50.453490][ T6844] do_iter_readv_writev+0x4bc/0x720 [ 50.454225][ T6844] vfs_writev+0x29c/0x7cc [ 50.454854][ T6844] do_writev+0x128/0x290 [ 50.455479][ T6844] __arm64_sys_writev+0x80/0x94 [ 50.456211][ T6844] invoke_syscall+0x98/0x254 [ 50.456840][ T6844] el0_svc_common+0xe8/0x23c [ 50.457532][ T6844] do_el0_svc+0x48/0x58 [ 50.458115][ T6844] el0_svc+0x5c/0x26c [ 50.458714][ T6844] el0t_64_sync_handler+0x84/0x12c [ 50.459476][ T6844] el0t_64_sync+0x198/0x19c [ 51.129387][ T6653] Bluetooth: hci3: command tx timeout [ 51.129409][ T6693] Bluetooth: hci4: command tx timeout [ 51.129419][ T6161] Bluetooth: hci1: command tx timeout [ 51.132138][ T6752] Bluetooth: hci2: command tx timeout [ 51.209288][ T6752] Bluetooth: hci5: command tx timeout 1970/01/01 00:00:53 executed programs: 21 1970/01/01 00:00:59 executed programs: 31