Warning: Permanently added '10.128.0.152' (ED25519) to the list of known hosts. 1970/01/01 00:00:35 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:00:36 parsed 1 programs syzkaller login: [ 38.856151][ T4302] cgroup: Unknown subsys name 'net' [ 39.105162][ T4302] cgroup: Unknown subsys name 'rlimit' [ 39.476824][ T4302] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS [ 49.501230][ T4324] chnl_net:caif_netlink_parms(): no params data found [ 49.536626][ T4324] bridge0: port 1(bridge_slave_0) entered blocking state [ 49.538673][ T4324] bridge0: port 1(bridge_slave_0) entered disabled state [ 49.541481][ T4324] device bridge_slave_0 entered promiscuous mode [ 49.545360][ T4324] bridge0: port 2(bridge_slave_1) entered blocking state [ 49.547374][ T4324] bridge0: port 2(bridge_slave_1) entered disabled state [ 49.549799][ T4324] device bridge_slave_1 entered promiscuous mode [ 49.563944][ T4324] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 49.567899][ T4324] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 49.583353][ T4324] team0: Port device team_slave_0 added [ 49.586299][ T4324] team0: Port device team_slave_1 added [ 49.600454][ T4324] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 49.602339][ T4324] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 49.608990][ T4324] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 49.613700][ T4324] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 49.615560][ T4324] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 49.622838][ T4324] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 49.681932][ T4324] device hsr_slave_0 entered promiscuous mode [ 49.720292][ T4324] device hsr_slave_1 entered promiscuous mode [ 49.848474][ T4324] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 49.905559][ T4324] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 49.964043][ T4324] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 50.024104][ T4324] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 50.090272][ T4324] bridge0: port 2(bridge_slave_1) entered blocking state [ 50.092303][ T4324] bridge0: port 2(bridge_slave_1) entered forwarding state [ 50.094642][ T4324] bridge0: port 1(bridge_slave_0) entered blocking state [ 50.096567][ T4324] bridge0: port 1(bridge_slave_0) entered forwarding state [ 50.158792][ T4324] 8021q: adding VLAN 0 to HW filter on device bond0 [ 50.168341][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 50.172888][ T39] bridge0: port 1(bridge_slave_0) entered disabled state [ 50.176243][ T39] bridge0: port 2(bridge_slave_1) entered disabled state [ 50.184007][ T4324] 8021q: adding VLAN 0 to HW filter on device team0 [ 50.190547][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 50.193157][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 50.195127][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 50.204151][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 50.206664][ T39] bridge0: port 2(bridge_slave_1) entered blocking state [ 50.208500][ T39] bridge0: port 2(bridge_slave_1) entered forwarding state [ 50.217397][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 50.224248][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 50.231507][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 50.238008][ T865] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 50.243217][ T865] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 50.247904][ T4324] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 50.352445][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 50.354752][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 50.361100][ T4324] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 50.372628][ T865] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 50.383998][ T865] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 50.386968][ T865] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 50.389448][ T865] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 50.394093][ T4324] device veth0_vlan entered promiscuous mode [ 50.399554][ T4324] device veth1_vlan entered promiscuous mode [ 50.413267][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 50.415822][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 50.418396][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 50.423894][ T4324] device veth0_macvtap entered promiscuous mode [ 50.427905][ T4324] device veth1_macvtap entered promiscuous mode [ 50.442080][ T4324] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 50.444276][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 50.447036][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 50.451793][ T4324] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 50.453977][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 50.456881][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 50.462253][ T4324] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.464674][ T4324] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.467010][ T4324] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.469410][ T4324] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 51.454632][ T11] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 51.954717][ T4369] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 51.957690][ T4369] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 51.960353][ T4369] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 51.963301][ T4369] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 51.965681][ T4369] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 51.967793][ T4369] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 52.631378][ T4377] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 52.633623][ T4377] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 52.636843][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 52.648873][ T4377] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 52.651155][ T4377] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 52.654005][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 1970/01/01 00:00:52 executed programs: 0 [ 52.984531][ T47] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 52.987126][ T47] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 52.989475][ T47] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 52.992706][ T47] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 52.995060][ T47] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 52.997231][ T47] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 53.086795][ T4394] chnl_net:caif_netlink_parms(): no params data found [ 53.115591][ T4394] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.117583][ T4394] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.121731][ T4394] device bridge_slave_0 entered promiscuous mode [ 53.125082][ T4394] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.127029][ T4394] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.129557][ T4394] device bridge_slave_1 entered promiscuous mode [ 53.144330][ T4394] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 53.148397][ T4394] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 53.161096][ T4394] team0: Port device team_slave_0 added [ 53.164072][ T4394] team0: Port device team_slave_1 added [ 53.175417][ T4394] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 53.177286][ T4394] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 53.184677][ T4394] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 53.188802][ T4394] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 53.190877][ T4394] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 53.197843][ T4394] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 53.263453][ T4394] device hsr_slave_0 entered promiscuous mode [ 53.330449][ T4394] device hsr_slave_1 entered promiscuous mode [ 53.370115][ T4394] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 53.372335][ T4394] Cannot create hsr debugfs directory [ 53.411718][ T11] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 55.040590][ T4369] Bluetooth: hci0: command 0x0409 tx timeout [ 55.592887][ T11] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 55.673862][ T11] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 56.636127][ T4394] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 56.803311][ T4394] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 56.851846][ T4394] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 56.891640][ T4394] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 57.022774][ T4394] 8021q: adding VLAN 0 to HW filter on device bond0 [ 57.087473][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 57.090190][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 57.094700][ T4394] 8021q: adding VLAN 0 to HW filter on device team0 [ 57.098798][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 57.101821][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.104287][ T39] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.106209][ T39] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.108875][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 57.113609][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 57.116208][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 57.118603][ T39] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.120651][ T39] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.123275][ T47] Bluetooth: hci0: command 0x041b tx timeout [ 57.173232][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 57.188212][ T4394] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 57.191318][ T4394] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 57.195597][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 57.198503][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 57.201929][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 57.204836][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 57.208667][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 57.211414][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 57.214261][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 57.216930][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 57.219501][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 57.222618][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 57.225124][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 57.334686][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 57.336839][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 57.375123][ T4394] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 57.385090][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 57.387818][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 57.398394][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 57.401168][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 57.403858][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 57.406300][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 57.410576][ T4394] device veth0_vlan entered promiscuous mode [ 57.487202][ T4394] device veth1_vlan entered promiscuous mode [ 57.498928][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 57.501933][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 57.504369][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 57.507001][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 57.511386][ T4394] device veth0_macvtap entered promiscuous mode [ 57.515722][ T4394] device veth1_macvtap entered promiscuous mode [ 57.606342][ T4394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 57.609302][ T4394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 57.614345][ T4394] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 57.616800][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 57.619387][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 57.622463][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 57.625089][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 57.629258][ T4394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 57.632098][ T4394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 57.635498][ T4394] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 57.637547][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 57.642512][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 57.646816][ T4394] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.649188][ T4394] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.652158][ T4394] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.654506][ T4394] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.732835][ T175] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 57.737960][ T175] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 57.793068][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 57.800452][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 57.802662][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 57.805448][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 57.835331][ T11] device hsr_slave_0 left promiscuous mode [ 57.848679][ T4447] ------------[ cut here ]------------ [ 57.850259][ T4447] WARNING: CPU: 1 PID: 4447 at include/linux/fs.h:503 hugetlb_split+0x234/0x29c [ 57.852735][ T4447] Modules linked in: [ 57.853762][ T4447] CPU: 1 PID: 4447 Comm: syz.0.16 Not tainted 6.1.142-syzkaller #0 [ 57.855906][ T4447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 57.858709][ T4447] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 57.860929][ T4447] pc : hugetlb_split+0x234/0x29c [ 57.862302][ T4447] lr : hugetlb_split+0x234/0x29c [ 57.863654][ T4447] sp : ffff800020df7390 [ 57.864815][ T4447] x29: ffff800020df7390 x28: dfff800000000000 x27: ffff7000041bee90 [ 57.867060][ T4447] x26: ffff0000dc5e8a20 x25: ffff800015080000 x24: 1ffff00002a100b0 [ 57.869214][ T4447] x23: dfff800000000000 x22: 0000000000000001 x21: 0000000000000000 [ 57.871391][ T4447] x20: 0000000020000000 x19: ffff0000dc5e8a20 x18: 0000000000000000 [ 57.873726][ T4447] x17: 0000000000000000 x16: ffff8000082d0f50 x15: ffff8000080426a4 [ 57.875819][ T4447] x14: 00000000ffff8000 x13: 00000000ffd3e2db x12: 0000000000ff0100 [ 57.878053][ T4447] x11: ff00800008887be4 x10: 0000000000000000 x9 : ffff800008887be4 [ 57.880237][ T4447] x8 : ffff0000ddd1b780 x7 : 0000000000000000 x6 : 000000000000003f [ 57.882457][ T4447] x5 : 0000000000000040 x4 : 0000000000000000 x3 : ffff800008887a64 [ 57.884572][ T4447] x2 : 0000000000000000 x1 : 0000000000000000 x0 : 0000000000000000 [ 57.886706][ T4447] Call trace: [ 57.887599][ T4447] hugetlb_split+0x234/0x29c [ 57.888817][ T4447] __vma_adjust+0x438/0x16b0 [ 57.890087][ T4447] __split_vma+0x324/0x448 [ 57.891263][ T4447] do_mas_align_munmap+0x2c8/0xeec [ 57.892688][ T4447] mmap_region+0x64c/0x1860 [ 57.893901][ T4447] do_mmap+0x978/0x10dc [ 57.894997][ T4447] vm_mmap_pgoff+0x184/0x284 [ 57.896209][ T4447] ksys_mmap_pgoff+0x404/0x5a0 [ 57.897522][ T4447] __arm64_sys_mmap+0xf8/0x110 [ 57.898810][ T4447] invoke_syscall+0x98/0x2bc [ 57.900149][ T4447] el0_svc_common+0x138/0x258 [ 57.901422][ T4447] do_el0_svc+0x58/0x13c [ 57.902659][ T4447] el0_svc+0x58/0x138 [ 57.903799][ T4447] el0t_64_sync_handler+0x84/0xf0 [ 57.905173][ T4447] el0t_64_sync+0x18c/0x190 [ 57.906413][ T4447] irq event stamp: 1574 [ 57.907581][ T4447] hardirqs last enabled at (1573): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 57.910403][ T4447] hardirqs last disabled at (1574): [] el1_dbg+0x24/0x80 [ 57.912794][ T4447] softirqs last enabled at (14): [] local_bh_enable+0x10/0x34 [ 57.915275][ T4447] softirqs last disabled at (12): [] local_bh_disable+0x10/0x34 [ 57.917831][ T4447] ---[ end trace 0000000000000000 ]--- [ 57.921321][ T4447] ------------[ cut here ]------------ [ 57.922759][ T4447] WARNING: CPU: 1 PID: 4447 at include/linux/fs.h:503 hugetlb_split+0x234/0x29c [ 57.925241][ T4447] Modules linked in: [ 57.926277][ T4447] CPU: 1 PID: 4447 Comm: syz.0.16 Tainted: G W 6.1.142-syzkaller #0 [ 57.928812][ T4447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 57.931544][ T4447] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 57.933622][ T4447] pc : hugetlb_split+0x234/0x29c [ 57.934930][ T4447] lr : hugetlb_split+0x234/0x29c [ 57.936419][ T4447] sp : ffff800020df7390 [ 57.937721][ T4447] x29: ffff800020df7390 x28: dfff800000000000 x27: ffff7000041bee90 [ 57.939919][ T4447] x26: ffff0000dc5e8a20 x25: ffff800015080000 x24: 1ffff00002a100b0 [ 57.942160][ T4447] x23: dfff800000000000 x22: 0000000000000001 x21: 0000000000000000 [ 57.944308][ T4447] x20: 0000000020800000 x19: ffff0000dc5e8a20 x18: 0000000000000000 [ 57.946482][ T4447] x17: 0000000000000000 x16: ffff8000082d0f50 x15: ffff8000080426a4 [ 57.948661][ T4447] x14: 00000000ffff8000 x13: 00000000ffd3e2db x12: 0000000000ff0100 [ 57.950758][ T4447] x11: ff00800008887be4 x10: 0000000000000000 x9 : ffff800008887be4 [ 57.953009][ T4447] x8 : ffff0000ddd1b780 x7 : 0000000000000000 x6 : 000000000000003f [ 57.955172][ T4447] x5 : 0000000000000040 x4 : 0000000000000000 x3 : ffff800008887a64 [ 57.957342][ T4447] x2 : 0000000000000000 x1 : 0000000000000000 x0 : 0000000000000000 [ 57.959439][ T4447] Call trace: [ 57.960294][ T4447] hugetlb_split+0x234/0x29c [ 57.961572][ T4447] __vma_adjust+0x444/0x16b0 [ 57.962787][ T4447] __split_vma+0x324/0x448 [ 57.964020][ T4447] do_mas_align_munmap+0x2c8/0xeec [ 57.965391][ T4447] mmap_region+0x64c/0x1860 [ 57.966624][ T4447] do_mmap+0x978/0x10dc [ 57.967761][ T4447] vm_mmap_pgoff+0x184/0x284 [ 57.969040][ T4447] ksys_mmap_pgoff+0x404/0x5a0 [ 57.970307][ T4447] __arm64_sys_mmap+0xf8/0x110 [ 57.971629][ T4447] invoke_syscall+0x98/0x2bc [ 57.972834][ T4447] el0_svc_common+0x138/0x258 [ 57.974142][ T4447] do_el0_svc+0x58/0x13c [ 57.975374][ T4447] el0_svc+0x58/0x138 [ 57.976492][ T4447] el0t_64_sync_handler+0x84/0xf0 [ 57.977786][ T4447] el0t_64_sync+0x18c/0x190 [ 57.979056][ T4447] irq event stamp: 1716 [ 57.980189][ T4447] hardirqs last enabled at (1715): [] exit_to_kernel_mode+0xcc/0xfc [ 57.982852][ T4447] hardirqs last disabled at (1716): [] el1_dbg+0x24/0x80 [ 57.985172][ T4447] softirqs last enabled at (1710): [] handle_softirqs+0xaf8/0xc6c [ 57.987847][ T4447] softirqs last disabled at (1579): [] __do_softirq+0x14/0x20 [ 57.990318][ T4447] ---[ end trace 0000000000000000 ]--- [ 57.995767][ T11] device hsr_slave_1 left promiscuous mode [ 58.060507][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 58.062585][ T11] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 58.065376][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 58.067479][ T11] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 58.069925][ T11] device bridge_slave_1 left promiscuous mode [ 58.072880][ T11] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.121801][ T11] device bridge_slave_0 left promiscuous mode [ 58.123625][ T11] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.280393][ T11] device veth1_macvtap left promiscuous mode [ 58.282247][ T11] device veth0_macvtap left promiscuous mode [ 58.283983][ T11] device veth1_vlan left promiscuous mode [ 58.285665][ T11] device veth0_vlan left promiscuous mode