last executing test programs: 0s ago: executing program 0 (id=1): r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x88c00, 0x0) ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000d00)={0xc, 0x0, 0x0}) ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000040)={0x28, 0x7, r1, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000}) ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f0000000340)={0x48, 0x5, r1, 0x0, 0xffffffffffffffff, 0x1}) ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r0, 0x3ba0, &(0x7f0000000180)={0x48, 0x7, r2, 0x0, 0x10001, 0x0, 0x1, 0xd6fe2, 0x3d3b4e}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.42' (ED25519) to the list of known hosts. [ 192.419500][ T5767] cgroup: Unknown subsys name 'net' [ 192.533810][ T5767] cgroup: Unknown subsys name 'cpuset' [ 192.549775][ T5767] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 199.005777][ T5767] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 203.853955][ T5081] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 203.863245][ T5081] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 203.878688][ T5081] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 203.896463][ T5787] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 203.914393][ T5787] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 203.925153][ T5787] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 203.936852][ T5787] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 203.956157][ T5787] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 203.983772][ T5787] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 203.998268][ T5787] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 204.103858][ T50] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 204.112059][ T5791] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 204.123353][ T5791] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 204.142536][ T5791] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 204.151998][ T5791] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 204.165848][ T5791] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 204.175368][ T5791] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 204.190851][ T50] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 204.201853][ T5800] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 204.227421][ T5800] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 204.251715][ T5800] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 204.268431][ T5800] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 204.278572][ T5792] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 204.299053][ T5792] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 204.317761][ T5792] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 205.732372][ T5789] chnl_net:caif_netlink_parms(): no params data found [ 205.979844][ T5785] chnl_net:caif_netlink_parms(): no params data found [ 206.017344][ T5787] Bluetooth: hci0: command tx timeout [ 206.100424][ T5787] Bluetooth: hci1: command tx timeout [ 206.198793][ T5794] chnl_net:caif_netlink_parms(): no params data found [ 206.225039][ T5796] chnl_net:caif_netlink_parms(): no params data found [ 206.347373][ T5787] Bluetooth: hci4: command tx timeout [ 206.347793][ T5792] Bluetooth: hci2: command tx timeout [ 206.417393][ T5792] Bluetooth: hci3: command tx timeout [ 206.455511][ T5795] chnl_net:caif_netlink_parms(): no params data found [ 207.189485][ T5789] bridge0: port 1(bridge_slave_0) entered blocking state [ 207.197381][ T5789] bridge0: port 1(bridge_slave_0) entered disabled state [ 207.210991][ T5789] bridge_slave_0: entered allmulticast mode [ 207.221328][ T5789] bridge_slave_0: entered promiscuous mode [ 207.312040][ T5789] bridge0: port 2(bridge_slave_1) entered blocking state [ 207.319771][ T5789] bridge0: port 2(bridge_slave_1) entered disabled state [ 207.347605][ T5789] bridge_slave_1: entered allmulticast mode [ 207.367635][ T5789] bridge_slave_1: entered promiscuous mode [ 207.430091][ T5785] bridge0: port 1(bridge_slave_0) entered blocking state [ 207.437713][ T5785] bridge0: port 1(bridge_slave_0) entered disabled state [ 207.445703][ T5785] bridge_slave_0: entered allmulticast mode [ 207.455226][ T5785] bridge_slave_0: entered promiscuous mode [ 207.540543][ T5785] bridge0: port 2(bridge_slave_1) entered blocking state [ 207.548909][ T5785] bridge0: port 2(bridge_slave_1) entered disabled state [ 207.559768][ T5785] bridge_slave_1: entered allmulticast mode [ 207.570601][ T5785] bridge_slave_1: entered promiscuous mode [ 207.652866][ T5794] bridge0: port 1(bridge_slave_0) entered blocking state [ 207.660634][ T5794] bridge0: port 1(bridge_slave_0) entered disabled state [ 207.669343][ T5794] bridge_slave_0: entered allmulticast mode [ 207.680129][ T5794] bridge_slave_0: entered promiscuous mode [ 207.756780][ T5789] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 207.767270][ T5794] bridge0: port 2(bridge_slave_1) entered blocking state [ 207.774809][ T5794] bridge0: port 2(bridge_slave_1) entered disabled state [ 207.812120][ T5794] bridge_slave_1: entered allmulticast mode [ 207.822746][ T5794] bridge_slave_1: entered promiscuous mode [ 207.906918][ T5796] bridge0: port 1(bridge_slave_0) entered blocking state [ 207.915332][ T5796] bridge0: port 1(bridge_slave_0) entered disabled state [ 207.924312][ T5796] bridge_slave_0: entered allmulticast mode [ 207.933241][ T5796] bridge_slave_0: entered promiscuous mode [ 207.956039][ T5789] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 208.004368][ T5785] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 208.042002][ T5796] bridge0: port 2(bridge_slave_1) entered blocking state [ 208.050060][ T5796] bridge0: port 2(bridge_slave_1) entered disabled state [ 208.058351][ T5796] bridge_slave_1: entered allmulticast mode [ 208.067403][ T5796] bridge_slave_1: entered promiscuous mode [ 208.097757][ T5792] Bluetooth: hci0: command tx timeout [ 208.146895][ T5785] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 208.157233][ T5795] bridge0: port 1(bridge_slave_0) entered blocking state [ 208.164773][ T5795] bridge0: port 1(bridge_slave_0) entered disabled state [ 208.173369][ T5795] bridge_slave_0: entered allmulticast mode [ 208.182427][ T5795] bridge_slave_0: entered promiscuous mode [ 208.187875][ T5792] Bluetooth: hci1: command tx timeout [ 208.266739][ T5794] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 208.285633][ T5789] team0: Port device team_slave_0 added [ 208.321095][ T5795] bridge0: port 2(bridge_slave_1) entered blocking state [ 208.328869][ T5795] bridge0: port 2(bridge_slave_1) entered disabled state [ 208.336878][ T5795] bridge_slave_1: entered allmulticast mode [ 208.346384][ T5795] bridge_slave_1: entered promiscuous mode [ 208.394243][ T5794] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 208.412064][ T5789] team0: Port device team_slave_1 added [ 208.418709][ T5792] Bluetooth: hci2: command tx timeout [ 208.418769][ T5787] Bluetooth: hci4: command tx timeout [ 208.490620][ T5796] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 208.500107][ T5792] Bluetooth: hci3: command tx timeout [ 208.568785][ T5785] team0: Port device team_slave_0 added [ 208.613651][ T5796] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 208.687891][ T5785] team0: Port device team_slave_1 added [ 208.720972][ T5795] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 208.770161][ T5794] team0: Port device team_slave_0 added [ 208.778538][ T5789] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 208.785760][ T5789] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 208.812314][ T5789] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 208.859130][ T5795] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 208.905595][ T5794] team0: Port device team_slave_1 added [ 208.914108][ T5789] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 208.921434][ T5789] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 208.948117][ T5789] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 209.026108][ T5796] team0: Port device team_slave_0 added [ 209.083255][ T5785] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 209.090743][ T5785] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 209.117171][ T5785] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 209.168319][ T5796] team0: Port device team_slave_1 added [ 209.204538][ T5785] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 209.211764][ T5785] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 209.238229][ T5785] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 209.261344][ T5795] team0: Port device team_slave_0 added [ 209.299333][ T5794] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 209.306406][ T5794] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 209.333476][ T5794] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 209.401328][ T5795] team0: Port device team_slave_1 added [ 209.439453][ T5794] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 209.446563][ T5794] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 209.473372][ T5794] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 209.549899][ T5796] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 209.557573][ T5796] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 209.584196][ T5796] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 209.638525][ T5789] hsr_slave_0: entered promiscuous mode [ 209.648210][ T5789] hsr_slave_1: entered promiscuous mode [ 209.688487][ T5796] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 209.695637][ T5796] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 209.722322][ T5796] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 209.789326][ T5795] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 209.796415][ T5795] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 209.823070][ T5795] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 209.913132][ T5795] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 209.920448][ T5795] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 209.948579][ T5795] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 209.977991][ T5785] hsr_slave_0: entered promiscuous mode [ 209.987206][ T5785] hsr_slave_1: entered promiscuous mode [ 209.995248][ T5785] debugfs: 'hsr0' already exists in 'hsr' [ 210.001553][ T5785] Cannot create hsr debugfs directory [ 210.125869][ T5794] hsr_slave_0: entered promiscuous mode [ 210.135052][ T5794] hsr_slave_1: entered promiscuous mode [ 210.143639][ T5794] debugfs: 'hsr0' already exists in 'hsr' [ 210.149637][ T5794] Cannot create hsr debugfs directory [ 210.177499][ T5792] Bluetooth: hci0: command tx timeout [ 210.258701][ T5792] Bluetooth: hci1: command tx timeout [ 210.313595][ T5796] hsr_slave_0: entered promiscuous mode [ 210.323007][ T5796] hsr_slave_1: entered promiscuous mode [ 210.331607][ T5796] debugfs: 'hsr0' already exists in 'hsr' [ 210.337672][ T5796] Cannot create hsr debugfs directory [ 210.497576][ T5792] Bluetooth: hci2: command tx timeout [ 210.503261][ T5787] Bluetooth: hci4: command tx timeout [ 210.557530][ T5795] hsr_slave_0: entered promiscuous mode [ 210.567496][ T5795] hsr_slave_1: entered promiscuous mode [ 210.575623][ T5795] debugfs: 'hsr0' already exists in 'hsr' [ 210.582294][ T5795] Cannot create hsr debugfs directory [ 210.584708][ T5792] Bluetooth: hci3: command tx timeout [ 211.831892][ T5789] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 211.872481][ T5789] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 211.899179][ T5789] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 211.957762][ T5789] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 212.051278][ T5795] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 212.089729][ T5795] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 212.116248][ T5795] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 212.141883][ T5795] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 212.257749][ T5792] Bluetooth: hci0: command tx timeout [ 212.338023][ T5792] Bluetooth: hci1: command tx timeout [ 212.431845][ T5785] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 212.459775][ T5785] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 212.482194][ T5785] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 212.550434][ T5785] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 212.577501][ T5792] Bluetooth: hci2: command tx timeout [ 212.580318][ T5787] Bluetooth: hci4: command tx timeout [ 212.657513][ T5787] Bluetooth: hci3: command tx timeout [ 212.848887][ T5796] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 212.905699][ T5796] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 212.946813][ T5796] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 213.024228][ T5796] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 213.280898][ T5789] 8021q: adding VLAN 0 to HW filter on device bond0 [ 213.311448][ T5794] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 213.335732][ T5794] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 213.358706][ T5794] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 213.392764][ T5794] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 213.614401][ T5789] 8021q: adding VLAN 0 to HW filter on device team0 [ 213.698939][ T2117] bridge0: port 1(bridge_slave_0) entered blocking state [ 213.706673][ T2117] bridge0: port 1(bridge_slave_0) entered forwarding state [ 213.826000][ T2117] bridge0: port 2(bridge_slave_1) entered blocking state [ 213.833553][ T2117] bridge0: port 2(bridge_slave_1) entered forwarding state [ 213.905790][ T5795] 8021q: adding VLAN 0 to HW filter on device bond0 [ 214.176626][ T5795] 8021q: adding VLAN 0 to HW filter on device team0 [ 214.233363][ T61] bridge0: port 1(bridge_slave_0) entered blocking state [ 214.240809][ T61] bridge0: port 1(bridge_slave_0) entered forwarding state [ 214.333846][ T5785] 8021q: adding VLAN 0 to HW filter on device bond0 [ 214.370762][ T61] bridge0: port 2(bridge_slave_1) entered blocking state [ 214.378392][ T61] bridge0: port 2(bridge_slave_1) entered forwarding state [ 214.491087][ T5796] 8021q: adding VLAN 0 to HW filter on device bond0 [ 214.667393][ T5785] 8021q: adding VLAN 0 to HW filter on device team0 [ 214.798250][ T135] bridge0: port 1(bridge_slave_0) entered blocking state [ 214.805808][ T135] bridge0: port 1(bridge_slave_0) entered forwarding state [ 214.893737][ T5796] 8021q: adding VLAN 0 to HW filter on device team0 [ 214.945608][ T5794] 8021q: adding VLAN 0 to HW filter on device bond0 [ 214.966948][ T135] bridge0: port 2(bridge_slave_1) entered blocking state [ 214.974688][ T135] bridge0: port 2(bridge_slave_1) entered forwarding state [ 215.077255][ T2117] bridge0: port 1(bridge_slave_0) entered blocking state [ 215.084802][ T2117] bridge0: port 1(bridge_slave_0) entered forwarding state [ 215.242964][ T61] bridge0: port 2(bridge_slave_1) entered blocking state [ 215.250558][ T61] bridge0: port 2(bridge_slave_1) entered forwarding state [ 215.323961][ T5794] 8021q: adding VLAN 0 to HW filter on device team0 [ 215.499296][ T61] bridge0: port 1(bridge_slave_0) entered blocking state [ 215.506839][ T61] bridge0: port 1(bridge_slave_0) entered forwarding state [ 215.625987][ T61] bridge0: port 2(bridge_slave_1) entered blocking state [ 215.633679][ T61] bridge0: port 2(bridge_slave_1) entered forwarding state [ 215.767860][ T5789] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 216.506885][ T5795] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 216.745331][ T5789] veth0_vlan: entered promiscuous mode [ 216.899988][ T5789] veth1_vlan: entered promiscuous mode [ 217.248040][ T5785] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 217.541581][ T5789] veth0_macvtap: entered promiscuous mode [ 217.651677][ T5789] veth1_macvtap: entered promiscuous mode [ 217.691533][ T5796] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 217.901075][ T5789] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 218.012564][ T5789] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 218.125408][ T5785] veth0_vlan: entered promiscuous mode [ 218.169060][ T61] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 218.249450][ T5794] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 218.281298][ T61] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 218.323439][ T61] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 218.352825][ T5785] veth1_vlan: entered promiscuous mode [ 218.410412][ T61] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 218.625878][ T5796] veth0_vlan: entered promiscuous mode [ 218.763380][ T5796] veth1_vlan: entered promiscuous mode [ 218.790148][ T5795] veth0_vlan: entered promiscuous mode [ 219.005292][ T5785] veth0_macvtap: entered promiscuous mode [ 219.032610][ T5795] veth1_vlan: entered promiscuous mode [ 219.095666][ T5794] veth0_vlan: entered promiscuous mode [ 219.128786][ T5785] veth1_macvtap: entered promiscuous mode [ 219.188835][ T5794] veth1_vlan: entered promiscuous mode [ 219.332594][ T5796] veth0_macvtap: entered promiscuous mode [ 219.445681][ T5796] veth1_macvtap: entered promiscuous mode [ 219.472370][ T5785] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 219.527505][ T5795] veth0_macvtap: entered promiscuous mode [ 219.593584][ T5785] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 219.654662][ T5795] veth1_macvtap: entered promiscuous mode [ 219.770133][ T5796] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 219.807764][ T61] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 219.831531][ T5796] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 219.896736][ T61] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 219.953316][ T61] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.013470][ T61] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.043292][ T5794] veth0_macvtap: entered promiscuous mode [ 220.094925][ T5795] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 220.152748][ T35] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.204351][ T35] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.221850][ T5794] veth1_macvtap: entered promiscuous mode [ 220.280659][ T5795] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 220.309030][ T35] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.329080][ T35] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.536191][ T3446] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.570715][ T5794] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 220.650931][ T3446] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.686830][ T5794] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 220.754039][ T3446] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.798066][ T35] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.878531][ T35] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.965390][ T35] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 221.010653][ T35] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 221.050364][ T35] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 223.783619][ T1303] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 223.793240][ T1303] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 224.169646][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 224.177919][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 224.759550][ T5789] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 226.213307][ T5949] ===================================================== [ 226.220835][ T5949] BUG: KMSAN: uninit-value in iopt_pages_unfill_xarray+0xfe3/0x1660 [ 226.229520][ T5949] iopt_pages_unfill_xarray+0xfe3/0x1660 [ 226.235411][ T5949] iopt_area_remove_access+0x508/0x650 [ 226.241436][ T5949] iommufd_access_unpin_pages+0x637/0xa50 [ 226.247656][ T5949] iommufd_test_access_unmap+0x423/0x6b0 [ 226.253498][ T5949] iommufd_test_staccess_release+0x7f/0x140 [ 226.259951][ T5949] __fput+0x60e/0x1050 [ 226.264220][ T5949] ____fput+0x25/0x30 [ 226.268572][ T5949] task_work_run+0x208/0x2b0 [ 226.273378][ T5949] exit_to_user_mode_loop+0x2ff/0x1b20 [ 226.279305][ T5949] do_syscall_64+0x1d7/0xf80 [ 226.284120][ T5949] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 226.290542][ T5949] [ 226.292976][ T5949] Local variable batch created at: [ 226.298319][ T5949] iopt_pages_unfill_xarray+0x86/0x1660 [ 226.304120][ T5949] iopt_area_remove_access+0x508/0x650 [ 226.310025][ T5949] [ 226.312510][ T5949] CPU: 1 UID: 0 PID: 5949 Comm: syz.0.1 Not tainted syzkaller #0 PREEMPT(voluntary) [ 226.322334][ T5949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 226.332724][ T5949] ===================================================== [ 226.343963][ T5949] Disabling lock debugging due to kernel taint [ 226.354106][ T5949] Kernel panic - not syncing: kmsan.panic set ... [ 226.360762][ T5949] CPU: 1 UID: 0 PID: 5949 Comm: syz.0.1 Tainted: G B syzkaller #0 PREEMPT(voluntary) [ 226.372014][ T5949] Tainted: [B]=BAD_PAGE [ 226.376392][ T5949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 226.386710][ T5949] Call Trace: [ 226.390136][ T5949] [ 226.393199][ T5949] __dump_stack+0x26/0x30 [ 226.397748][ T5949] dump_stack_lvl+0x50/0x1c0 [ 226.402561][ T5949] ? dump_stack+0x12/0x25 [ 226.407134][ T5949] dump_stack+0x1e/0x25 [ 226.411486][ T5949] vpanic+0x435/0xd40 [ 226.415702][ T5949] panic+0x15d/0x160 [ 226.419855][ T5949] kmsan_report+0x31a/0x320 [ 226.424702][ T5949] ? __msan_warning+0x1b/0x30 [ 226.429598][ T5949] ? iopt_pages_unfill_xarray+0xfe3/0x1660 [ 226.435659][ T5949] ? iopt_area_remove_access+0x508/0x650 [ 226.441541][ T5949] ? iommufd_access_unpin_pages+0x637/0xa50 [ 226.447688][ T5949] ? iommufd_test_access_unmap+0x423/0x6b0 [ 226.453874][ T5949] ? iommufd_test_staccess_release+0x7f/0x140 [ 226.460149][ T5949] ? __fput+0x60e/0x1050 [ 226.464599][ T5949] ? ____fput+0x25/0x30 [ 226.468960][ T5949] ? task_work_run+0x208/0x2b0 [ 226.473957][ T5949] ? exit_to_user_mode_loop+0x2ff/0x1b20 [ 226.479847][ T5949] ? do_syscall_64+0x1d7/0xf80 [ 226.484967][ T5949] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 226.491274][ T5949] ? kmsan_get_metadata+0xf1/0x160 [ 226.496680][ T5949] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 226.502786][ T5949] ? xas_load+0xcec/0xd70 [ 226.507379][ T5949] ? __xas_next+0x142/0x7a0 [ 226.512113][ T5949] ? kmsan_get_metadata+0xf1/0x160 [ 226.517522][ T5949] __msan_warning+0x1b/0x30 [ 226.522274][ T5949] iopt_pages_unfill_xarray+0xfe3/0x1660 [ 226.528219][ T5949] ? kmsan_get_metadata+0xf1/0x160 [ 226.533646][ T5949] ? kmsan_get_metadata+0xf1/0x160 [ 226.539616][ T5949] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 226.545707][ T5949] ? interval_tree_remove+0x158e/0x1730 [ 226.551492][ T5949] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 226.557612][ T5949] iopt_area_remove_access+0x508/0x650 [ 226.563358][ T5949] iommufd_access_unpin_pages+0x637/0xa50 [ 226.569407][ T5949] iommufd_test_access_unmap+0x423/0x6b0 [ 226.575294][ T5949] iommufd_test_staccess_release+0x7f/0x140 [ 226.581430][ T5949] ? __pfx_iommufd_test_staccess_release+0x10/0x10 [ 226.588151][ T5949] __fput+0x60e/0x1050 [ 226.592476][ T5949] ? kmsan_get_metadata+0xf1/0x160 [ 226.597843][ T5949] ? __pfx_____fput+0x10/0x10 [ 226.602730][ T5949] ____fput+0x25/0x30 [ 226.606942][ T5949] task_work_run+0x208/0x2b0 [ 226.611783][ T5949] exit_to_user_mode_loop+0x2ff/0x1b20 [ 226.617547][ T5949] ? __x64_sys_close_range+0x97/0xe0 [ 226.623202][ T5949] do_syscall_64+0x1d7/0xf80 [ 226.628131][ T5949] ? clear_bhb_loop+0x40/0x90 [ 226.633033][ T5949] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 226.639231][ T5949] RIP: 0033:0x7f9a3759acb9 [ 226.643801][ T5949] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 226.663792][ T5949] RSP: 002b:00007ffc46aff388 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 226.672431][ T5949] RAX: 0000000000000000 RBX: 00007ffc46aff470 RCX: 00007f9a3759acb9 [ 226.680576][ T5949] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003 [ 226.688703][ T5949] RBP: 00000000000370ad R08: 0000000000000001 R09: 0000000000000000 [ 226.696916][ T5949] R10: 0000001b2d420000 R11: 0000000000000246 R12: 00007ffc46aff4b0 [ 226.705062][ T5949] R13: 00007f9a3781609c R14: 00000000000373ae R15: 00007f9a37816090 [ 226.713260][ T5949] [ 226.717039][ T5949] Kernel Offset: disabled [ 226.721472][ T5949] Rebooting in 86400 seconds..