last executing test programs: 7m58.539768414s ago: executing program 0 (id=2415): r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$auto_SO_ATTACH_REUSEPORT_CBPF(r0, 0x1, 0x33, &(0x7f0000000280)='o\x00\xfb\x00\x00\x00\xe4(\xe5\xb9Y\xacS\xbe\xcc4\xf9!\xd0\x92<\x9bf\x01j\x83\xb3\xd7a.\x92\xf5\xb0j\xd3\x01\xfe:\x93\xed\xe4\x16\a\xcemS\xeb\x93D\b\xdb\x0f\x9f\x903\xad?\x17\xddF2\x7f\x15~\x94\x1d\x1c\x83\x03\xb9K\x04\xd3\x99\xe6[\xf8\xddn`\xdb\x19\xa9R\xc2\x00\x8a\xc7>\xfbC\x9e\xcfY\xaa\xc9\x99_\x8d\xc14o\xd9\x97\xf9\xb6\x80\xc0Tf\xea\x82\x8f\x82^\xf7\x01\x894?\xf7\xb8\"\x9dd/\x15\xf5\x013\x84\xe8\xdev\x8eW\xfaym\x8a_\x0e\xc5\xde\x90\xc4$\xbb\xaa\x839]\x14m{R,i\x80\xecM.\xa9\'<\xd6\xc8\xd6\xc4\x1b\xd2\xd6\x193<\".\x85\xea\xb7\x9d\xa3r\xca\xeeP\xdeu4\xf2s\x9b\x03\xbex.\x17\xf2\xa4\xba\x9a$\x1f.e\v3.\xd1{}\x94\xd9\xc4\xf1\xa9\x9aK\xbc?0x\xa1G\xf5\xd3K\xf7\xa25=\x9f+\x1d\xe7\x00', 0x10) 7m58.375482845s ago: executing program 0 (id=2420): unshare$auto(0x200) unshare$auto(0x20000) 7m58.261927027s ago: executing program 0 (id=2422): socket(0xa, 0x3, 0x3a) setsockopt$auto(0x400000000000003, 0x29, 0xca, 0x0, 0x567) 7m58.117012192s ago: executing program 0 (id=2425): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) ioctl$auto_SNDCTL_DSP_GETFMTS(r0, 0x8004500b, &(0x7f0000000140)) 7m57.809491346s ago: executing program 0 (id=2433): ioperm$auto(0xd44, 0x6, 0x8) tkill$auto(0x80000000000001, 0x7) 7m57.29050986s ago: executing program 0 (id=2445): ioperm$auto(0x800, 0x5, 0xd) process_mrelease$auto(0x24d, 0xd) 7m57.009341566s ago: executing program 32 (id=2445): ioperm$auto(0x800, 0x5, 0xd) process_mrelease$auto(0x24d, 0xd) 2.939711159s ago: executing program 3 (id=9766): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000001c0), r0) sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x20, r1, 0x301, 0x4070bd25, 0x25dfdbff, {}, [@CTRL_ATTR_FAMILY_NAME={0xc, 0x2, 'nl80211\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040810) 2.544294671s ago: executing program 3 (id=9771): openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev7\x00', 0x1600, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) ioctl$auto(0x3, 0xc0585604, 0x38) 2.338566318s ago: executing program 3 (id=9772): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = socket(0xa, 0x1, 0x84) getsockopt$auto(r0, 0x84, 0x0, 0x0, 0x0) 2.038823006s ago: executing program 3 (id=9775): openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0xa8900, 0x0) process_vm_readv$auto(0x0, &(0x7f0000000080)={0x0, 0x6}, 0x26, 0x0, 0x6, 0x0) readv$auto(0x3, &(0x7f0000000040)={&(0x7f0000000000), 0x36a}, 0x6) 1.748165238s ago: executing program 3 (id=9779): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sg0\x00', 0x0, 0x0) ioctl$auto_BLKSECTGET2(r0, 0x1267, 0x0) 1.586242239s ago: executing program 2 (id=9782): r0 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_PHY_GET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x2c, r0, 0x1, 0x70bd29, 0x25dfdbfc, {}, [@ETHTOOL_A_PHY_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvtap0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x16fd8c82eb8da012}, 0x400c0) 1.515153723s ago: executing program 3 (id=9783): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xfffffffffffefffd, 0x17) write$auto(0xca, &(0x7f0000000000)='\x04>\x01\x01\x00\x00\x00\x01\x00\xb6', 0x7f) 1.478301659s ago: executing program 1 (id=9784): r0 = open(&(0x7f0000000140)='./file0\x00', 0x161342, 0x100) write$auto(r0, &(0x7f0000000000)='}\x00', 0x8) lseek$auto(0x3, 0x2, 0x4) 1.377947686s ago: executing program 4 (id=9785): r0 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)={0x28, r0, 0x1, 0x70bd29, 0x25dfdc02, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0xc, 0x1, 0x0, 0x1, [@nested={0x8, 0x10, 0x0, 0x1, [@nested={0x4, 0x12e}]}]}, @OVS_FLOW_ATTR_PROBE={0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x200400f0}, 0x800) 1.267154968s ago: executing program 1 (id=9786): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000000c0)={0x1c, r1, 0x1, 0x70bd29, 0x25dfdbfd, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0xa}]}, 0x1c}}, 0x4000) 1.267084929s ago: executing program 2 (id=9787): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x1f, 0x0) 1.158907957s ago: executing program 4 (id=9788): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000002c00), 0xffffffffffffffff) sendmsg$auto_OVS_CT_LIMIT_CMD_GET(r0, &(0x7f0000004480)={0x0, 0x0, &(0x7f0000004440)={&(0x7f0000003dc0)={0x34, r1, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x1c, 0x1, 0x0, 0x1, [@nested={0x18, 0x10a, 0x0, 0x1, [@typed={0xc, 0xc2, 0x0, 0x0, @u64=0xfffffffffffff000}, @nested={0x4, 0x106}, @nested={0x4, 0xec}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000840}, 0x840) 1.056903491s ago: executing program 2 (id=9789): mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x10, 0x3, 0x0, 0x2, 0x0) prctl$auto_PR_SET_NAME(0xf, 0x5, 0x0, 0x8, 0xff) 893.383476ms ago: executing program 4 (id=9790): r0 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000002c0), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_TSCONFIG_GET(r1, &(0x7f0000002080)={0x0, 0x0, &(0x7f0000002040)={&(0x7f0000002000)={0x2c, r0, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@ETHTOOL_A_TSCONFIG_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40}, 0x0) 706.704534ms ago: executing program 1 (id=9791): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) r0 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000400)='/dev/fuse\x00', 0x1cb041, 0x0) sendfile$auto(r0, 0x3, 0x0, 0x7ffff000) 621.958389ms ago: executing program 4 (id=9792): set_mempolicy$auto(0x6005, &(0x7f0000000040)=0x5, 0x4) r0 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/numa_maps\x00', 0x20000, 0x0) read$auto_proc_sessionid_operations_base(r0, &(0x7f00000000c0)=""/4096, 0x1000) 487.799896ms ago: executing program 1 (id=9793): socket(0x11, 0x80003, 0x304) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/packet\x00', 0x2840, 0x0) read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000001080)=""/244, 0xf4) 450.973501ms ago: executing program 2 (id=9794): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000001100)='/proc/sys/net/ipv6/conf/wlan1/ioam6_enabled\x00', 0x2102, 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/ip_local_port_range\x00', 0x20202, 0x0) sendfile$auto(r0, r1, 0x0, 0x1) 354.050593ms ago: executing program 4 (id=9795): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_PHY_GET(r0, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="010326bd7000ffdbdf252d0000002b76af9f8e198a5f54476146b6ddc8be3e0d79814d37ebf1f033ea98e3735f1e609a3963013b685d697c7c7d"], 0x14}, 0x1, 0x0, 0x0, 0x2404c012}, 0x80) 260.126891ms ago: executing program 1 (id=9796): openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/vm/nr_hugepages\x00', 0x68001, 0x0) personality$auto(0x40004010410ffc) mmap$auto(0x0, 0x7, 0xffb, 0x8000000008011, 0x3, 0x8000) 221.826035ms ago: executing program 2 (id=9797): r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r0, &(0x7f00000001c0)="2a1d264add69b6440800ac8caf4bdecc30b530ac6ebbff950e1a647d6a08a1b55dde5a409b73830b7803aef33addb33f3a800002000000f179fa3d472949a7264a1b2547c4346fa2e5f21fce0030523285c82be9da9b31", 0x57) write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="000072f0f511770a1508af5d", 0xc) 112.387893ms ago: executing program 4 (id=9798): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000004100)={0x84, r1, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@HWSIM_ATTR_FREQ={0x8, 0x13, 0x8001}, @HWSIM_ATTR_RADIO_ID={0x8, 0xa, 0x1}, @HWSIM_ATTR_PMSR_RESULT={0x60, 0x1c, 0x0, 0x1, [@NL80211_PMSR_ATTR_PEERS={0x5c, 0x5, 0x0, 0x1, [{0x40, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0x3b, 0x1, "6b074ccd6dcf3891b543b8004df8a752d9e2a1f0729e6681abe3905ce26957e840379d8c6fad9e9377379fd47c7f3467de1d0e6ae268b1"}]}, {0x18, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0x14, 0x1, "ad74853b62df1c21396376fbd6e891ed"}]}]}]}]}, 0x84}, 0x1, 0x0, 0x0, 0x24040000}, 0x8018880) 47.920402ms ago: executing program 1 (id=9799): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x4000000, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) 0s ago: executing program 2 (id=9800): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000000c0)={0x1c, r1, 0x1, 0x70bd29, 0x25dfdbfd, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0xa}]}, 0x1c}}, 0x4000) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.145' (ED25519) to the list of known hosts. [ 94.260867][ T5829] cgroup: Unknown subsys name 'net' [ 94.401248][ T5829] cgroup: Unknown subsys name 'cpuset' [ 94.410829][ T5829] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 96.203920][ T5829] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 97.088339][ T9] cfg80211: failed to load regulatory.db [ 98.369637][ T5850] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 98.386947][ T5850] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 98.395641][ T5849] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 98.403665][ T5851] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 98.405250][ T5849] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 98.411036][ T5853] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 98.418610][ T5849] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 98.426502][ T5853] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 98.434586][ T5849] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 98.439650][ T5853] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 98.447296][ T5849] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 98.454850][ T5851] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 98.469003][ T5853] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 98.476304][ T5849] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 98.476558][ T5852] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 98.491306][ T5853] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 98.491799][ T5849] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 98.501261][ T5853] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 98.508802][ T5849] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 98.519832][ T5153] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 99.085487][ T5838] chnl_net:caif_netlink_parms(): no params data found [ 99.143740][ T5840] chnl_net:caif_netlink_parms(): no params data found [ 99.247167][ T5843] chnl_net:caif_netlink_parms(): no params data found [ 99.414923][ T5838] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.422341][ T5838] bridge0: port 1(bridge_slave_0) entered disabled state [ 99.429956][ T5838] bridge_slave_0: entered allmulticast mode [ 99.438436][ T5838] bridge_slave_0: entered promiscuous mode [ 99.472503][ T5840] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.479716][ T5840] bridge0: port 1(bridge_slave_0) entered disabled state [ 99.487077][ T5840] bridge_slave_0: entered allmulticast mode [ 99.494426][ T5840] bridge_slave_0: entered promiscuous mode [ 99.503578][ T5838] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.511089][ T5838] bridge0: port 2(bridge_slave_1) entered disabled state [ 99.518425][ T5838] bridge_slave_1: entered allmulticast mode [ 99.525783][ T5838] bridge_slave_1: entered promiscuous mode [ 99.533424][ T5839] chnl_net:caif_netlink_parms(): no params data found [ 99.560348][ T5840] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.567577][ T5840] bridge0: port 2(bridge_slave_1) entered disabled state [ 99.574728][ T5840] bridge_slave_1: entered allmulticast mode [ 99.582943][ T5840] bridge_slave_1: entered promiscuous mode [ 99.687232][ T5838] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 99.700677][ T5838] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 99.743036][ T5840] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 99.788489][ T5843] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.795886][ T5843] bridge0: port 1(bridge_slave_0) entered disabled state [ 99.803366][ T5843] bridge_slave_0: entered allmulticast mode [ 99.810899][ T5843] bridge_slave_0: entered promiscuous mode [ 99.822302][ T5840] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 99.857620][ T5838] team0: Port device team_slave_0 added [ 99.864012][ T5843] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.871275][ T5843] bridge0: port 2(bridge_slave_1) entered disabled state [ 99.878867][ T5843] bridge_slave_1: entered allmulticast mode [ 99.886293][ T5843] bridge_slave_1: entered promiscuous mode [ 99.937817][ T5838] team0: Port device team_slave_1 added [ 99.943850][ T5839] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.951127][ T5839] bridge0: port 1(bridge_slave_0) entered disabled state [ 99.958463][ T5839] bridge_slave_0: entered allmulticast mode [ 99.965798][ T5839] bridge_slave_0: entered promiscuous mode [ 99.990881][ T5840] team0: Port device team_slave_0 added [ 100.001337][ T5840] team0: Port device team_slave_1 added [ 100.033671][ T5839] bridge0: port 2(bridge_slave_1) entered blocking state [ 100.040991][ T5839] bridge0: port 2(bridge_slave_1) entered disabled state [ 100.048537][ T5839] bridge_slave_1: entered allmulticast mode [ 100.055844][ T5839] bridge_slave_1: entered promiscuous mode [ 100.093126][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 100.100178][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.126271][ T5838] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 100.162599][ T5843] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 100.188083][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 100.195082][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.221557][ T5838] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 100.249093][ T5843] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 100.275572][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 100.282916][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.310283][ T5840] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 100.323610][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 100.330974][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.357711][ T5840] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 100.382260][ T5839] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 100.418592][ T5843] team0: Port device team_slave_0 added [ 100.428318][ T5843] team0: Port device team_slave_1 added [ 100.451231][ T5839] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 100.527317][ T55] Bluetooth: hci2: command tx timeout [ 100.540442][ T5839] team0: Port device team_slave_0 added [ 100.546181][ T55] Bluetooth: hci1: command tx timeout [ 100.557290][ T5839] team0: Port device team_slave_1 added [ 100.570516][ T5838] hsr_slave_0: entered promiscuous mode [ 100.577081][ T5838] hsr_slave_1: entered promiscuous mode [ 100.584519][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 100.592075][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.618512][ T5843] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 100.618549][ T55] Bluetooth: hci0: command tx timeout [ 100.631999][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 100.635357][ T5153] Bluetooth: hci3: command tx timeout [ 100.643282][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.673783][ T5843] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 100.767110][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 100.774085][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.800327][ T5839] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 100.813746][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 100.821085][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.847130][ T5839] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 100.864316][ T5840] hsr_slave_0: entered promiscuous mode [ 100.870964][ T5840] hsr_slave_1: entered promiscuous mode [ 100.877802][ T5840] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 100.885593][ T5840] Cannot create hsr debugfs directory [ 101.008013][ T5843] hsr_slave_0: entered promiscuous mode [ 101.014468][ T5843] hsr_slave_1: entered promiscuous mode [ 101.021552][ T5843] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 101.029756][ T5843] Cannot create hsr debugfs directory [ 101.089406][ T5839] hsr_slave_0: entered promiscuous mode [ 101.095869][ T5839] hsr_slave_1: entered promiscuous mode [ 101.103000][ T5839] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 101.110707][ T5839] Cannot create hsr debugfs directory [ 101.539896][ T5838] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 101.553917][ T5838] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 101.567552][ T5838] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 101.591708][ T5838] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 101.652414][ T5840] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 101.666720][ T5840] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 101.679778][ T5840] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 101.708778][ T5840] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 101.779537][ T5839] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 101.798956][ T5839] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 101.829273][ T5839] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 101.865505][ T5839] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 101.951073][ T5843] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 101.967590][ T5843] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 101.998278][ T5843] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 102.013156][ T5843] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 102.083984][ T5840] 8021q: adding VLAN 0 to HW filter on device bond0 [ 102.126463][ T5838] 8021q: adding VLAN 0 to HW filter on device bond0 [ 102.145712][ T5840] 8021q: adding VLAN 0 to HW filter on device team0 [ 102.192513][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 102.199860][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 102.212934][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 102.220112][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 102.266566][ T5838] 8021q: adding VLAN 0 to HW filter on device team0 [ 102.293157][ T1152] bridge0: port 1(bridge_slave_0) entered blocking state [ 102.300371][ T1152] bridge0: port 1(bridge_slave_0) entered forwarding state [ 102.354759][ T1152] bridge0: port 2(bridge_slave_1) entered blocking state [ 102.361926][ T1152] bridge0: port 2(bridge_slave_1) entered forwarding state [ 102.438081][ T5839] 8021q: adding VLAN 0 to HW filter on device bond0 [ 102.491726][ T5843] 8021q: adding VLAN 0 to HW filter on device bond0 [ 102.535318][ T5839] 8021q: adding VLAN 0 to HW filter on device team0 [ 102.573060][ T5843] 8021q: adding VLAN 0 to HW filter on device team0 [ 102.607383][ T55] Bluetooth: hci1: command tx timeout [ 102.612902][ T55] Bluetooth: hci2: command tx timeout [ 102.621598][ T53] bridge0: port 1(bridge_slave_0) entered blocking state [ 102.628924][ T53] bridge0: port 1(bridge_slave_0) entered forwarding state [ 102.640455][ T53] bridge0: port 1(bridge_slave_0) entered blocking state [ 102.647659][ T53] bridge0: port 1(bridge_slave_0) entered forwarding state [ 102.675181][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 102.682427][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 102.689495][ T55] Bluetooth: hci0: command tx timeout [ 102.694620][ T5153] Bluetooth: hci3: command tx timeout [ 102.705537][ T1152] bridge0: port 2(bridge_slave_1) entered blocking state [ 102.712770][ T1152] bridge0: port 2(bridge_slave_1) entered forwarding state [ 102.911886][ T5840] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 102.942705][ T5839] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 103.078770][ T5838] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 103.184136][ T5840] veth0_vlan: entered promiscuous mode [ 103.215343][ T5840] veth1_vlan: entered promiscuous mode [ 103.259742][ T5838] veth0_vlan: entered promiscuous mode [ 103.305435][ T5838] veth1_vlan: entered promiscuous mode [ 103.364870][ T5840] veth0_macvtap: entered promiscuous mode [ 103.390605][ T5843] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 103.401005][ T5840] veth1_macvtap: entered promiscuous mode [ 103.448300][ T5839] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 103.483858][ T5838] veth0_macvtap: entered promiscuous mode [ 103.493215][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 103.516999][ T5838] veth1_macvtap: entered promiscuous mode [ 103.535545][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 103.553022][ T5840] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.562178][ T5840] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.572752][ T5840] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.583670][ T5840] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.633233][ T5843] veth0_vlan: entered promiscuous mode [ 103.651830][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 103.664125][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 103.676907][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 103.714662][ T5843] veth1_vlan: entered promiscuous mode [ 103.723250][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 103.737116][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 103.750364][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 103.763737][ T5839] veth0_vlan: entered promiscuous mode [ 103.779765][ T5838] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.788676][ T5838] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.798775][ T5838] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.809535][ T5838] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.849335][ T5839] veth1_vlan: entered promiscuous mode [ 103.954134][ T5843] veth0_macvtap: entered promiscuous mode [ 103.977005][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.985054][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.029740][ T5843] veth1_macvtap: entered promiscuous mode [ 104.049041][ T5839] veth0_macvtap: entered promiscuous mode [ 104.067656][ T1152] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.075535][ T1152] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.082688][ T5843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 104.098391][ T5843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 104.109307][ T5843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 104.121797][ T5843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 104.135362][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 104.161262][ T5839] veth1_macvtap: entered promiscuous mode [ 104.185039][ T5843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 104.200153][ T5843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 104.214735][ T5843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 104.225845][ T5843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 104.241707][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 104.285909][ T5843] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.302830][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.304433][ T5843] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.320995][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.329906][ T5843] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.338763][ T5843] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.400654][ T5840] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 104.402530][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 104.429280][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 104.440627][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 104.452224][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 104.462507][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 104.473169][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 104.487028][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 104.499366][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 104.510178][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 104.520574][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 104.531522][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 104.541563][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 104.552114][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 104.563841][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 104.579914][ T5839] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.588889][ T5839] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.597661][ T5839] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.607052][ T5839] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.621043][ T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.642814][ T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.686396][ T5153] Bluetooth: hci2: command tx timeout [ 104.686639][ T55] Bluetooth: hci1: command tx timeout [ 104.766385][ T55] Bluetooth: hci0: command tx timeout [ 104.767213][ T5153] Bluetooth: hci3: command tx timeout [ 104.865955][ T1137] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.906478][ T1137] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 105.023823][ T1137] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 105.100920][ T1137] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 105.268858][ T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 105.309946][ T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 105.439435][ T82] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 105.458907][ T82] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 106.767852][ T5153] Bluetooth: hci1: command tx timeout [ 106.773347][ T55] Bluetooth: hci2: command tx timeout [ 106.849415][ T5153] Bluetooth: hci3: command tx timeout [ 106.854932][ T5153] Bluetooth: hci0: command tx timeout [ 110.273152][ T6089] ptrace attach of "./syz-executor exec"[5840] was attempted by "./syz-executor exec"[6089] [ 111.499021][ T6137] syz.0.115 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 112.555659][ T6176] mmap: syz.3.136 (6176) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 118.274113][ T6354] nfs: Bad value for 'source' [ 119.228318][ T6386] Unable to find swap-space signature [ 119.261242][ T6381] can: request_module (can-proto-3) failed. [ 123.197560][ T6502] syz_tun: tun_chr_ioctl cmd 9 [ 125.284107][ T6538] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 125.302408][ T6538] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 125.348797][ T6538] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 125.400914][ T6538] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 125.425229][ T6538] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 125.460671][ T6538] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 125.471589][ T6538] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 125.480670][ T6538] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 125.491742][ T6538] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 125.503319][ T6538] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 125.511812][ T6538] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 125.534045][ T6538] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 126.606387][ T5153] Bluetooth: hci1: command 0x0c1a tx timeout [ 127.406248][ T5153] Bluetooth: hci0: command 0x0c1a tx timeout [ 127.486309][ T5153] Bluetooth: hci2: command 0x0c1a tx timeout [ 127.566423][ T5153] Bluetooth: hci3: command 0x0c1a tx timeout [ 128.686161][ T5153] Bluetooth: hci1: command 0x0c1a tx timeout [ 129.494148][ T5153] Bluetooth: hci0: command 0x0c1a tx timeout [ 129.569111][ T5153] Bluetooth: hci2: command 0x0c1a tx timeout [ 129.646147][ T5153] Bluetooth: hci3: command 0x0c1a tx timeout [ 130.763657][ T5153] Bluetooth: hci1: command 0x0c1a tx timeout [ 131.569714][ T5153] Bluetooth: hci0: command 0x0c1a tx timeout [ 131.643585][ T5153] Bluetooth: hci2: command 0x0c1a tx timeout [ 131.718393][ T5153] Bluetooth: hci3: command 0x0c1a tx timeout [ 133.027215][ T6890] Process accounting resumed [ 134.631229][ T30] audit: type=1800 audit(1745362597.015:2): pid=6969 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.524" name="version" dev="configfs" ino=9601 res=0 errno=0 [ 135.220984][ T6998] syz_tun: tun_chr_ioctl cmd 4294967291 [ 138.038690][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 138.045337][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 138.628694][ T7147] syz_tun: tun_chr_ioctl cmd 1074025679 [ 145.135539][ T7435] ptrace attach of "./syz-executor exec"[5840] was attempted by "./syz-executor exec"[7435] [ 147.172890][ T5153] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 149.324159][ T30] audit: type=1800 audit(1030.106:3): pid=7623 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.845" name="members" dev="configfs" ino=11815 res=0 errno=0 [ 151.432723][ T30] audit: type=1800 audit(1032.227:4): pid=7710 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.886" name="dummy_udc" dev="gadgetfs" ino=6346 res=0 errno=0 [ 152.261320][ T7748] capability: warning: `syz.3.904' uses deprecated v2 capabilities in a way that may be insecure [ 152.385701][ T30] audit: type=1800 audit(1033.182:5): pid=7752 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.909" name="lu_gp_id" dev="configfs" ino=12726 res=0 errno=0 [ 156.385441][ T30] audit: type=1326 audit(4294967297.427:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7918 comm="syz.2.992" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f83bd18e169 code=0x0 [ 158.555366][ T7933] kexec: Could not allocate control_code_buffer [ 159.979139][ T5153] Bluetooth: hci2: unexpected event 0x20 length: 123 > 7 [ 160.410622][ T8073] Process accounting resumed [ 161.776362][ T30] audit: type=1326 audit(4294968325.850:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8147 comm="syz.2.1105" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f83bd18e169 code=0x0 [ 162.734273][ T8189] Process accounting resumed [ 162.945107][ T5153] Bluetooth: hci0: unexpected event 0x17 length: 123 > 6 [ 162.946800][ T5153] Bluetooth: hci1: unexpected event 0x3e length: 728 > 260 [ 162.954208][ T5153] Bluetooth: hci1: unexpected subevent 0x0c length: 727 > 5 [ 163.053769][ T8199] Process accounting paused [ 163.157138][ T8212] Process accounting resumed [ 163.311366][ T8221] random: crng reseeded on system resumption [ 163.672996][ T5153] Bluetooth: hci3: unexpected event 0x3e length: 728 > 260 [ 163.673033][ T5153] Bluetooth: hci3: unexpected subevent 0x0c length: 727 > 5 [ 165.812826][ T30] audit: type=1800 audit(4294968329.899:8): pid=8334 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1197" name="members" dev="configfs" ino=14076 res=0 errno=0 [ 167.067402][ T8324] kexec: Could not allocate control_code_buffer [ 167.974222][ T8422] random: crng reseeded on system resumption [ 168.051298][ T5153] Bluetooth: hci2: unexpected event 0x36 length: 123 > 7 [ 169.835012][ T30] audit: type=1800 audit(4294968333.937:9): pid=8511 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1285" name="trace_pipe" dev="tracefs" ino=1098 res=0 errno=0 [ 172.401584][ T8627] random: crng reseeded on system resumption [ 172.485405][ T8632] ======================================================= [ 172.485405][ T8632] WARNING: The mand mount option has been deprecated and [ 172.485405][ T8632] and is ignored by this kernel. Remove the mand [ 172.485405][ T8632] option from the mount to silence this warning. [ 172.485405][ T8632] ======================================================= [ 173.663804][ T30] audit: type=1800 audit(4294968337.785:10): pid=8684 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1372" name="trace_pipe" dev="tracefs" ino=1056 res=0 errno=0 [ 176.419789][ T30] audit: type=1800 audit(4294968340.560:11): pid=8826 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1443" name="discovery_nqn" dev="configfs" ino=15942 res=0 errno=0 [ 179.332084][ T5153] Bluetooth: hci2: unexpected event 0x23 length: 127 > 13 [ 181.341871][ T9079] i2c i2c-0: delete_device: Extra parameters [ 181.583134][ T9087] ima: policy update failed [ 181.597229][ T30] audit: type=1802 audit(4294968345.767:12): pid=9087 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1573" res=0 errno=0 [ 182.609105][ T5153] Bluetooth: hci1: unexpected event 0x3d length: 726 > 14 [ 182.995746][ T9157] delete_channel: no stack [ 186.042830][ T9301] nvme_fabrics: missing parameter 'transport=%s' [ 186.049647][ T9301] nvme_fabrics: missing parameter 'nqn=%s' [ 188.456113][ T9417] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 188.519986][ T9417] CIFS mount error: No usable UNC path provided in device string! [ 188.519986][ T9417] [ 188.533718][ T9417] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 188.708474][ T9425] kAFS: No cell specified [ 189.372144][ T9455] bond0: option packets_per_slave: invalid value ( Xnp) [ 189.384770][ T9455] bond0: option packets_per_slave: allowed values 0 - 65535 [ 190.407901][ T9497] Process accounting paused [ 190.912891][ T9528] Debayer A: ================= START STATUS ================= [ 190.940069][ T9528] Debayer A: Debayer Mean Window Size: 3 [ 190.962225][ T9528] Debayer A: ================== END STATUS ================== [ 191.057543][ T9532] writes to the poll attribute are ignored. [ 191.072189][ T9532] please use driver specific parameters instead. [ 192.781851][ T9610] Process accounting paused [ 193.441416][ T9627] Process accounting paused [ 194.624436][ T9693] kAFS: Invalid Command on /proc/fs/afs/cells file [ 196.824975][ T30] audit: type=1800 audit(4294968361.066:13): pid=9796 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1908" name="lu_gp_id" dev="configfs" ino=19612 res=0 errno=0 [ 197.268882][ T9817] : Can't lookup blockdev [ 199.149705][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.156305][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 199.260847][ T9904] ima: policy update failed [ 199.272878][ T30] audit: type=1802 audit(4294968363.528:14): pid=9904 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1961" res=0 errno=0 [ 200.632217][ T9962] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 201.219895][ T9988] synth uevent: /bus/hid/drivers/zeroplus: unknown uevent action string [ 203.505228][ T30] audit: type=1800 audit(4294968367.791:15): pid=10108 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2058" name="members" dev="configfs" ino=19045 res=0 errno=0 [ 204.433748][T10158] usbcore.quirks: string doesn't fit in 127 chars. [ 205.122367][T10192] i2c i2c-0: new_device: Missing parameters [ 207.274643][T10296] mmap: syz.1.2145 (10296): VmData 39489536 exceed data ulimit 3. Update limits or use boot option ignore_rlimit_data. [ 208.799882][T10370] syz.3.2177 uses obsolete (PF_INET,SOCK_PACKET) [ 212.193344][T10486] aoe: copy from user failed [ 212.199331][T10486] aoe: could not set interface list: too many interfaces [ 213.891479][T10509] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 214.458460][ T30] audit: type=1807 audit(4294968378.787:16): UNKNOWN=0"]$|1j0B|dӉO+/xWӦ^gq%ḦrO res=0 [ 214.458694][T10581] ima: policy update failed [ 214.510913][ T30] audit: type=1802 audit(4294968378.797:17): pid=10582 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.1.2279" res=0 errno=0 [ 214.618097][ T30] audit: type=1802 audit(4294968378.838:18): pid=10581 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.2279" res=0 errno=0 [ 215.289751][T10615] aoe: invalid device specification [ 218.840720][T10751] i2c i2c-0: new_device: Can't parse I2C address [ 219.212993][T10759] zram: Added device: zram1 [ 219.287771][T10763] scsi_strcpy_devinfo: vendor string '/&c~n] | [ 219.287771][T10763] M' is too long [ 219.329736][T10763] scsi_strcpy_devinfo: model string 'Dd5 K2b [ 219.329736][T10763] W ' is too long [ 220.291590][T10782] Process accounting resumed [ 221.054611][T10816] kafs: addr_prefs: Invalid Command [ 222.644123][T10896] Process accounting resumed [ 223.417642][ T53] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 223.522899][ T53] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 223.652514][ T53] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 223.820155][ T53] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 224.025471][T10953] ptrace attach of "./syz-executor exec"[5843] was attempted by "./syz-executor exec"[10953] [ 224.203221][ T53] bridge_slave_1: left allmulticast mode [ 224.225106][ T53] bridge_slave_1: left promiscuous mode [ 224.246165][ T53] bridge0: port 2(bridge_slave_1) entered disabled state [ 224.308960][ T53] bridge_slave_0: left allmulticast mode [ 224.323687][ T53] bridge_slave_0: left promiscuous mode [ 224.329609][ T53] bridge0: port 1(bridge_slave_0) entered disabled state [ 224.466844][ T55] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 224.476370][ T55] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 224.493738][ T55] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 224.507960][ T55] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 224.516930][ T55] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 225.342074][ T53] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 225.364389][ T53] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 225.392597][ T53] bond0 (unregistering): Released all slaves [ 226.044775][ T53] hsr_slave_0: left promiscuous mode [ 226.088401][ T53] hsr_slave_1: left promiscuous mode [ 226.110822][ T53] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 226.155996][ T53] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 226.185875][ T53] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 226.224298][ T53] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 226.313141][ T53] veth1_macvtap: left promiscuous mode [ 226.327466][ T53] veth0_macvtap: left promiscuous mode [ 226.327701][ T53] veth1_vlan: left promiscuous mode [ 226.359365][ T53] veth0_vlan: left promiscuous mode [ 226.593276][ T55] Bluetooth: hci1: command tx timeout [ 227.356532][ T53] team0 (unregistering): Port device team_slave_1 removed [ 227.436261][ T53] team0 (unregistering): Port device team_slave_0 removed [ 228.661322][ T55] Bluetooth: hci1: command tx timeout [ 228.717707][T11105] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0) [ 228.729840][T10966] chnl_net:caif_netlink_parms(): no params data found [ 229.041187][T10966] bridge0: port 1(bridge_slave_0) entered blocking state [ 229.062520][T10966] bridge0: port 1(bridge_slave_0) entered disabled state [ 229.082769][T10966] bridge_slave_0: entered allmulticast mode [ 229.101271][T10966] bridge_slave_0: entered promiscuous mode [ 229.129648][T10966] bridge0: port 2(bridge_slave_1) entered blocking state [ 229.136898][T10966] bridge0: port 2(bridge_slave_1) entered disabled state [ 229.157147][T10966] bridge_slave_1: entered allmulticast mode [ 229.171470][T10966] bridge_slave_1: entered promiscuous mode [ 229.292591][T10966] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 229.470334][T10966] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 229.682027][T10966] team0: Port device team_slave_0 added [ 229.753047][T10966] team0: Port device team_slave_1 added [ 229.976827][T10966] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 230.004548][T10966] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 230.054193][T10966] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 230.089358][T10966] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 230.110711][T10966] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 230.136707][ C1] vkms_vblank_simulate: vblank timer overrun [ 230.183146][T10966] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 230.335314][T10966] hsr_slave_0: entered promiscuous mode [ 230.362808][T10966] hsr_slave_1: entered promiscuous mode [ 230.369317][T10966] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 230.388014][T10966] Cannot create hsr debugfs directory [ 230.653199][T11179] ptrace attach of "./syz-executor exec"[5840] was attempted by ""[11179] [ 230.730551][ T55] Bluetooth: hci1: command tx timeout [ 231.043342][T10966] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 231.097421][T10966] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 231.157712][T10966] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 231.207287][T10966] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 231.554463][T10966] 8021q: adding VLAN 0 to HW filter on device bond0 [ 231.649653][T10966] 8021q: adding VLAN 0 to HW filter on device team0 [ 231.708527][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 231.715817][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 231.795286][ T1152] bridge0: port 2(bridge_slave_1) entered blocking state [ 231.802540][ T1152] bridge0: port 2(bridge_slave_1) entered forwarding state [ 232.517818][T10966] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 232.801461][ T55] Bluetooth: hci1: command tx timeout [ 232.884232][T10966] veth0_vlan: entered promiscuous mode [ 232.912391][T10966] veth1_vlan: entered promiscuous mode [ 232.957727][T10966] veth0_macvtap: entered promiscuous mode [ 232.975857][T10966] veth1_macvtap: entered promiscuous mode [ 232.998335][T10966] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 233.009053][T10966] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.022096][T10966] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 233.032793][T10966] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.042805][T10966] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 233.053458][T10966] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.064854][T10966] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 233.076500][T10966] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 233.087178][T10966] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.097306][T10966] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 233.107961][T10966] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.117792][T10966] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 233.129618][T10966] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.141398][T10966] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 233.159427][T10966] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.168334][T10966] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.177035][T10966] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.186265][T10966] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.302024][ T1137] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 233.320061][ T1137] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 233.371864][ T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 233.383840][ T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 236.059627][T11375] usb usb2: usbfs: process 11375 (syz.3.2601) did not claim interface 1 before use [ 238.598220][T11488] : Can't lookup blockdev [ 239.485059][T11520] vivid-003: ================= START STATUS ================= [ 239.505358][T11520] vivid-003: Radio HW Seek Mode: Bounded [ 239.511484][T11520] vivid-003: Radio Programmable HW Seek: false [ 239.535283][T11520] vivid-003: RDS Rx I/O Mode: Block I/O [ 239.542324][T11520] vivid-003: Generate RBDS Instead of RDS: false [ 239.574416][T11520] vivid-003: RDS Reception: true [ 239.584595][T11520] vivid-003: RDS Program Type: 0 inactive [ 239.617180][T11520] vivid-003: RDS PS Name: inactive [ 239.628166][T11520] vivid-003: RDS Radio Text: inactive [ 239.634766][T11520] vivid-003: RDS Traffic Announcement: false inactive [ 239.670241][T11520] vivid-003: RDS Traffic Program: false inactive [ 239.698028][T11520] vivid-003: RDS Music: false inactive [ 239.704212][T11520] vivid-003: ================== END STATUS ================== [ 241.985661][T11633] cifs: Unknown parameter '#ʑC ˀH/R{<' [ 243.079651][T11680] i2c i2c-0: delete_device: Can't parse I2C address [ 243.625833][T11708] ceph: Failed to parse sending metrics switch value 'P^' [ 244.698741][T11760] process 'syz.4.2773' launched '/dev/fd/3' with NULL argv: empty string added [ 250.377050][T12016] usb usb15: usbfs: process 12016 (syz.1.2884) did not claim interface 0 before use [ 250.383205][T12003] Process accounting paused [ 252.671149][T12116] Process accounting paused [ 252.800400][ T30] audit: type=1800 audit(4294967299.402:19): pid=12129 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2926" name="dbroot" dev="configfs" ino=26688 res=0 errno=0 [ 252.815980][T12129] db_root: not a directory: /dev/audio1 [ 255.328264][T12240] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(5) [ 255.883127][T12267] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 260.164690][T12464] usb usb8: usbfs: interface 0 claimed by hub while 'syz.4.3057' sets config #5 [ 260.262347][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 260.270867][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 263.348512][ T55] Bluetooth: hci2: unexpected event 0x02 length: 726 > 260 [ 266.464527][T12733] WARNING! power/level is deprecated; use power/control instead [ 266.745690][ T55] Bluetooth: hci0: unexpected event 0x02 length: 726 > 260 [ 269.429444][T12873] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 270.182472][ T55] Bluetooth: hci1: unexpected event 0x02 length: 726 > 260 [ 272.277998][T13012] block2mtd: illegal erase size [ 272.489904][T13025] ecryptfs_miscdev_write: Error while inspecting packet size [ 273.986562][T13082] RDS: rds_bind could not find a transport for 7bc:c94c:4e37:70c4::, load rds_tcp or rds_rdma? [ 274.557218][ T55] Bluetooth: hci3: unexpected event 0x02 length: 726 > 260 [ 275.335855][ T55] Bluetooth: hci2: ACL packet for unknown connection handle 0 [ 275.840653][T13141] delete_channel: no stack [ 276.736901][T13179] nvme_fabrics: missing parameter 'transport=%s' [ 276.743813][T13179] nvme_fabrics: missing parameter 'nqn=%s' [ 277.778559][ T55] Bluetooth: hci0: unexpected event 0x02 length: 726 > 260 [ 280.252840][T13341] QAT: Invalid ioctl 21531 [ 280.285350][T13345] ACPI: EC: Assuming SCI_EVT clearing on QR_EC writes [ 280.305448][T13339] Process accounting resumed [ 281.417341][ T55] Bluetooth: hci2: unexpected event 0x02 length: 726 > 260 [ 282.540293][T13449] Process accounting resumed [ 286.044478][T13610] Setting dangerous option i915.mitigations - tainting kernel [ 287.603880][ T30] audit: type=1800 audit(4294967334.373:20): pid=13673 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3639" name="discovery_nqn" dev="configfs" ino=31536 res=0 errno=0 [ 288.735883][T13725] program syz.2.3665 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 290.334946][T13805] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT [ 291.493363][T13860] blktrace: Concurrent blktraces are not allowed on ram7 [ 292.552314][T13911] : Can't lookup blockdev [ 293.615565][T13946] ubi0: attaching mtd0 [ 293.635947][T13946] ubi0: scanning is finished [ 293.640613][T13946] ubi0: empty MTD device detected [ 293.653244][T13946] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 293.761348][T13946] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 294.578116][T13982] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 295.506964][T14021] nvme_fcloop: unknown parameter or missing value '^/]' [ 296.280801][T14055] sysfs_service_op_show: Client not running :-5: [ 297.775229][T14119] nfsd: Unknown parameter '^B-' [ 298.182944][T14136] dlm: plock device version mismatch: kernel (1.2.0), user (1489226698.240317300.1121487582) [ 299.560853][T14196] sg_write: data in/out 3292/1 bytes for SCSI command 0xa3-- guessing data in; [ 299.560853][T14196] program syz.2.3898 not setting count and/or reply_len properly [ 300.060033][T14218] usb usb24: check_ctrlrecip: process 14218 (syz.4.3907) requesting ep 01 but needs 81 [ 300.089643][T14218] usb usb24: usbfs: process 14218 (syz.4.3907) did not claim interface 0 before use [ 306.756158][T14527] queue_state_write: operation too long [ 306.773045][T14527] queue_state_write: use 'run', 'start' or 'kick' [ 307.087008][ T30] audit: type=1806 audit(4294967353.964:21): xattr=2EC7871B res=-22 [ 310.665040][T14695] Process accounting paused [ 311.730824][ T30] audit: type=1800 audit(4294967358.638:22): pid=14752 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.4165" name="discovery_nqn" dev="configfs" ino=34374 res=0 errno=0 [ 312.195788][T14770] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 312.252760][T14776] ima: policy update failed [ 312.258968][ T30] audit: type=1802 audit(4294967359.171:23): pid=14776 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.4178" res=0 errno=0 [ 312.321481][T14770] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 312.438801][T14770] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 312.494890][T14784] Process accounting paused [ 312.532693][T14770] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 313.389874][ T30] audit: type=1400 audit(4294967360.297:24): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=14822 comm="syz.1.4199" [ 314.441062][T14862] delete_channel: no stack [ 314.876563][T14874] nvme_fabrics: unknown parameter or missing value '7' in ctrl creation request [ 318.158183][T15003] deleting an unspecified loop device is not supported. [ 319.736622][T15075] : Can't lookup blockdev [ 320.161175][T15087] Invalid input. Must be >= 4608 [ 321.393960][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 321.400875][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 321.691359][T15147] Malformed UNC in devname [ 321.691359][T15147] [ 321.708671][T15147] CIFS: VFS: Malformed UNC in devname [ 324.952418][T15297] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input23 [ 325.243687][T15308] block2mtd: device name too long [ 325.639763][T15326] kAFS: Invalid Command on /proc/fs/afs/cells file [ 328.141295][ T55] Bluetooth: hci1: unexpected subevent 0x04 length: 122 > 11 [ 328.612204][T15475] ima: policy update failed [ 328.616866][ T30] audit: type=1807 audit(4294967375.606:25): UNKNOWN= res=0 [ 328.636455][ T30] audit: type=1802 audit(4294967375.606:26): pid=15476 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.3.4494" res=0 errno=0 [ 328.701617][ T30] audit: type=1802 audit(4294967375.656:27): pid=15475 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.4494" res=0 errno=0 [ 328.867009][T15490] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 329.573377][ T55] Bluetooth: hci2: Unable to find connection for big 0xd2 [ 331.546457][T15616] futex_wake_op: syz.1.4544 tries to shift op by 64; fix this program [ 335.409252][T15796] Format for deleting device is "id" (uint). [ 335.525016][T15800] misc userio: Invalid payload size [ 335.944767][T15824] kafs: addr_prefs: Too many elements in string [ 336.732143][ T30] audit: type=1800 audit(4294967383.768:28): pid=15862 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.4658" name="lu_gp_id" dev="configfs" ino=38008 res=0 errno=0 [ 336.739121][T15862] kstrtoul() returned -22 for lu_gp_id [ 336.899207][ T5153] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 337.586184][ T5153] Bluetooth: hci1: Unable to find connection for big 0xd2 [ 339.151531][T15967] kAFS: Invalid Command on /proc/fs/afs/cells file [ 339.497134][T15981] kafs: addr_prefs: Too many elements in string [ 339.952940][T16005] kafs: addr_prefs: Too many elements in string [ 340.125721][ T55] Bluetooth: hci3: Unable to find connection for big 0xd2 [ 340.605063][T16033] Process accounting resumed [ 340.773069][T16042] block nbd14: the capability attribute has been deprecated. [ 341.264572][T16068] uvcvideo: [Deprecated]: nodrop parameter will be eventually removed. [ 341.846789][T16092] block nbd8: NBD_DISCONNECT [ 342.359641][T16115] Process accounting resumed [ 342.759702][T16137] Invalid ELF header magic: != ELF [ 342.971009][T16147] vmstat_refresh: nr_hugetlb -2048 [ 344.232341][ T5153] Bluetooth: hci3: Unable to find connection for big 0xd2 [ 344.758193][T16232] bond0: no command found in slaves file - use +ifname or -ifname [ 345.051546][ T5153] Bluetooth: hci1: Unable to find connection for big 0xd2 [ 345.387569][T16260] ima: policy update failed [ 345.434078][ T30] audit: type=1802 audit(4294967392.483:29): pid=16260 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.4850" res=0 errno=0 [ 345.950912][T16283] Invalid ELF header magic: != ELF [ 345.983219][T16289] vivid-007: ================= START STATUS ================= [ 346.002669][T16289] vivid-007: Enable Output Cropping: true [ 346.016612][T16289] vivid-007: Enable Output Composing: true [ 346.032130][T16289] vivid-007: Enable Output Scaler: true [ 346.045301][T16289] vivid-007: Tx RGB Quantization Range: Automatic [ 346.083934][T16289] vivid-007: Transmit Mode: HDMI [ 346.088989][T16289] vivid-007: Hotplug Present: 0x00000000 [ 346.130541][T16289] vivid-007: RxSense Present: 0x00000000 [ 346.147418][T16289] vivid-007: EDID Present: 0x00000000 [ 346.163371][T16289] vivid-007: ================== END STATUS ================== [ 346.655442][ T30] audit: type=1800 audit(4294967393.740:30): pid=16319 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.4879" name="dbroot" dev="configfs" ino=38767 res=0 errno=0 [ 346.664921][T16319] db_root: cannot open: [ 347.321674][T16349] Invalid ELF header magic: != ELF [ 347.785864][T16375] QAT: failed to copy from user cfg_data. [ 348.321881][ T5153] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 348.918393][ T5153] Bluetooth: hci1: command 0x0406 tx timeout [ 352.222559][T16588] ICMPv6: process `syz.2.5012' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 352.393549][T16596] usbip-vudc usbip-vudc.0: gadget not bound [ 352.536158][T16600] sysfs_service_op_store: Client not running :-5: [ 352.707770][ T30] audit: type=1400 audit(4294967399.831:31): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=16605 comm="syz.1.5020" [ 353.107364][T16626] cougar: G6 mapped to F18 [ 353.419521][T16645] ubi0: attaching mtd0 [ 353.434049][T16645] ubi0 error: ubi_attach_mtd_dev: bad VID header (3969) or data offsets (4033) [ 354.645677][T16707] usbip-vudc usbip-vudc.0: gadget not bound [ 355.969259][T16791] dyndbg: bad flag-op , at start of [ 355.974833][T16791] dyndbg: flags parse failed [ 355.986302][T16791] dyndbg: bad flag-op , at start of [ 355.993897][T16791] dyndbg: flags parse failed [ 357.369189][T16860] delete_channel: no stack [ 358.083494][T16912] syz.4.5146 (16912): attempted to duplicate a private mapping with mremap. This is not supported. [ 359.986380][T17025] bond0: option mode: unable to set because the bond device is up [ 365.642959][T17417] Setting dangerous option i915.mitigations - tainting kernel [ 365.861096][ T30] audit: type=1800 audit(4294967413.050:32): pid=17426 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.5304" name="members" dev="configfs" ino=41963 res=0 errno=0 [ 366.361003][T17454] bond0: no command found in slaves file - use +ifname or -ifname [ 367.015665][ T22] process 5840 (syz-executor) no longer affine to cpu1 [ 367.060053][ T5846] smpboot: CPU 1 is now offline [ 367.684082][T17529] program syz.1.5339 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 367.733604][T17529] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 368.939706][ T55] Bluetooth: hci3: unexpected event 0x3e length: 728 > 260 [ 368.939738][ T55] Bluetooth: hci3: unexpected subevent 0x03 length: 727 > 9 [ 370.554484][T17621] Process accounting paused [ 371.701695][ T5846] Process accounting resumed [ 372.348666][T17687] Process accounting paused [ 373.494443][T17746] queue_state_write: unsupported operation '' [ 373.534598][T17746] queue_state_write: use 'run', 'start' or 'kick' [ 374.874474][T17796] scsi_dev_info_list_add_str: bad dev info string ')zD 5fk+*X#R84*VsndvqQW}~YrȀ-8VGDƘLB%v†v}Ypq|?O[,! 7xWDr%[}E$3?G9Ff=lrGH;2L<=|8 -c Fո"[v9q4Mmvqk[(iNDСMX PSqqX4X`V!;r֍)y]WzfIH0,v{q8שUܹ䑉m؛HTwCz-nR%2]x05oՕ|3>lS*L/Cdgӑ[C=Cwem)l#' ''S.sHgi-TY%ܹF*8nFTH?i{' '' [ 378.883363][T17932] bdi 43:96: the stable_pages_required attribute has been removed. Use the stable_writes queue attribute instead. [ 381.213392][T18014] bcache: register_bcache() error : failed to open device [ 381.234258][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 381.241715][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 383.312369][T18093] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x7f5acf4d5 pfn:0x78400 [ 383.333422][T18094] rnbd_client L202: map_device: Unknown parameter or missing value '(' [ 383.386595][T18093] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 383.418809][T18093] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 383.471060][T18093] raw: 00000007f5acf4d5 0000000000000000 00000001ffffffff 0000000000000000 [ 383.518143][T18093] page dumped because: unmovable page [ 383.539732][T18093] page_owner tracks the page as allocated [ 383.577951][T18093] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xcc0(GFP_KERNEL), pid 10935, tgid 10935 (syz-executor), ts 224265137143, free_ts 223510100110 [ 383.651368][T18093] post_alloc_hook+0x181/0x1b0 [ 383.671244][T18093] get_page_from_freelist+0x135c/0x3920 [ 383.709634][T18093] __alloc_frozen_pages_noprof+0x263/0x23a0 [ 383.741995][T18093] alloc_pages_mpol+0x1fb/0x550 [ 383.768036][T18093] alloc_pages_noprof+0x131/0x390 [ 383.788436][T18093] get_free_pages_noprof+0xc/0x40 [ 383.818453][T18093] kasan_populate_vmalloc_pte+0x2d/0x160 [ 383.844916][T18093] __apply_to_page_range+0x617/0xd60 [ 383.875568][T18093] alloc_vmap_area+0x919/0x2970 [ 383.893948][T18093] __get_vm_area_node+0x1a7/0x300 [ 383.938658][T18093] __vmalloc_node_range_noprof+0x277/0x1540 [ 383.955679][T18093] vmalloc_user_noprof+0x6b/0x90 [ 383.973510][T18093] kcov_ioctl+0x4c/0x730 [ 383.998109][T18093] __x64_sys_ioctl+0x190/0x200 [ 384.018660][T18093] do_syscall_64+0xcd/0x230 [ 384.032285][T18093] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 384.057350][T18093] page last free pid 5834 tgid 5834 stack trace: [ 384.082922][T18093] __free_frozen_pages+0x69d/0xff0 [ 384.109962][T18093] vfree+0x176/0x960 [ 384.145002][T18093] kcov_close+0x34/0x60 [ 384.149236][T18093] __fput+0x3ff/0xb70 [ 384.206260][T18093] task_work_run+0x14d/0x240 [ 384.223832][T18093] do_exit+0xafb/0x2c30 [ 384.248315][T18093] do_group_exit+0xd3/0x2a0 [ 384.258621][T18093] __x64_sys_exit_group+0x3e/0x50 [ 384.281813][T18093] x64_sys_call+0x1530/0x1730 [ 384.286562][T18093] do_syscall_64+0xcd/0x230 [ 384.320485][T18093] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 384.552400][ T30] audit: type=1800 audit(4294967431.827:33): pid=18126 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.5620" name="discovery_nqn" dev="configfs" ino=44934 res=0 errno=0 [ 385.512007][T18164] ima: Unable to open file: /suritRy/integrity?iqa/policy (-2) [ 385.512472][T18161] ima: policy update failed [ 385.594325][ T30] audit: type=1802 audit(4294967432.872:34): pid=18161 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.5637" res=0 errno=0 [ 386.117521][T18185] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [1048706]. [ 389.607382][T18307] bond0: Unable to set down delay as MII monitoring is disabled [ 392.427411][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 392.435558][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 393.240990][T18414] syz.1.5760: vmalloc error: size 141863388262170624, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 393.325543][T18414] CPU: 0 UID: 0 PID: 18414 Comm: syz.1.5760 Tainted: G U 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 393.325583][T18414] Tainted: [U]=USER [ 393.325590][T18414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 393.325607][T18414] Call Trace: [ 393.325615][T18414] [ 393.325627][T18414] dump_stack_lvl+0x16c/0x1f0 [ 393.325665][T18414] warn_alloc+0x248/0x3a0 [ 393.325696][T18414] ? __pfx_warn_alloc+0x10/0x10 [ 393.325730][T18414] ? check_path.constprop.0+0x24/0x50 [ 393.325774][T18414] __vmalloc_node_range_noprof+0x10ea/0x1540 [ 393.325809][T18414] ? disksize_store+0x117/0x670 [ 393.325843][T18414] ? __pfx___might_resched+0x10/0x10 [ 393.325871][T18414] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 393.325900][T18414] ? down_write+0x14d/0x200 [ 393.325936][T18414] ? __pfx_down_write+0x10/0x10 [ 393.325972][T18414] ? disksize_store+0x117/0x670 [ 393.326001][T18414] vzalloc_noprof+0x6b/0x90 [ 393.326023][T18414] ? disksize_store+0x117/0x670 [ 393.326050][T18414] disksize_store+0x117/0x670 [ 393.326084][T18414] ? __pfx_disksize_store+0x10/0x10 [ 393.326111][T18414] dev_attr_store+0x55/0x80 [ 393.326134][T18414] ? __pfx_dev_attr_store+0x10/0x10 [ 393.326156][T18414] sysfs_kf_write+0xef/0x150 [ 393.326201][T18414] kernfs_fop_write_iter+0x351/0x510 [ 393.326232][T18414] ? __pfx_sysfs_kf_write+0x10/0x10 [ 393.326271][T18414] vfs_write+0x5ba/0x1180 [ 393.326296][T18414] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 393.326330][T18414] ? __pfx___mutex_lock+0x10/0x10 [ 393.326364][T18414] ? __pfx_vfs_write+0x10/0x10 [ 393.326409][T18414] ksys_write+0x12a/0x240 [ 393.326433][T18414] ? __pfx_ksys_write+0x10/0x10 [ 393.326455][T18414] ? rcu_is_watching+0x12/0xc0 [ 393.326488][T18414] do_syscall_64+0xcd/0x230 [ 393.326524][T18414] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 393.326547][T18414] RIP: 0033:0x7f3946d8e169 [ 393.326571][T18414] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 393.326594][T18414] RSP: 002b:00007f3947cb1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 393.326615][T18414] RAX: ffffffffffffffda RBX: 00007f3946fb5fa0 RCX: 00007f3946d8e169 [ 393.326631][T18414] RDX: 0000000000000055 RSI: 0000200000000ec0 RDI: 0000000000000003 [ 393.326645][T18414] RBP: 00007f3946e10a68 R08: 0000000000000000 R09: 0000000000000000 [ 393.326659][T18414] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 393.326672][T18414] R13: 0000000000000000 R14: 00007f3946fb5fa0 R15: 00007fff1d3d6068 [ 393.326702][T18414] [ 393.589786][T18414] Mem-Info: [ 393.594262][T18414] active_anon:4529 inactive_anon:0 isolated_anon:0 [ 393.594262][T18414] active_file:10929 inactive_file:39091 isolated_file:0 [ 393.594262][T18414] unevictable:768 dirty:208 writeback:0 [ 393.594262][T18414] slab_reclaimable:10636 slab_unreclaimable:95781 [ 393.594262][T18414] mapped:23683 shmem:1449 pagetables:830 [ 393.594262][T18414] sec_pagetables:0 bounce:0 [ 393.594262][T18414] kernel_misc_reclaimable:0 [ 393.594262][T18414] free:1346825 free_pcp:134 free_cma:0 [ 393.639969][T18414] Node 0 active_anon:18116kB inactive_anon:0kB active_file:43716kB inactive_file:156356kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:94732kB dirty:828kB writeback:0kB shmem:4260kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10416kB pagetables:3320kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 393.674625][T18414] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 393.706520][T18414] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 393.735261][T18414] lowmem_reserve[]: 0 2482 2483 2483 2483 [ 393.741424][T18414] Node 0 DMA32 free:1466960kB boost:0kB min:34336kB low:42920kB high:51504kB reserved_highatomic:0KB active_anon:18072kB inactive_anon:0kB active_file:43716kB inactive_file:154788kB unevictable:1536kB writepending:828kB present:3129332kB managed:2541752kB mlocked:0kB bounce:0kB free_pcp:376kB local_pcp:376kB free_cma:0kB [ 393.772711][T18414] lowmem_reserve[]: 0 0 1 1 1 [ 393.778162][T18414] Node 0 Normal free:24kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1568kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB [ 393.805835][T18414] lowmem_reserve[]: 0 0 0 0 0 [ 393.810612][T18414] Node 1 Normal free:3904956kB boost:0kB min:55540kB low:69424kB high:83308kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:152kB local_pcp:152kB free_cma:0kB [ 393.840205][T18414] lowmem_reserve[]: 0 0 0 0 0 [ 393.845230][T18414] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 393.877645][T18414] Node 0 DMA32: 1557*4kB (UM) 1246*8kB (UM) 490*16kB (UME) 444*32kB (UME) 359*64kB (UM) 102*128kB (UME) 149*256kB (UME) 93*512kB (UME) 54*1024kB (UME) 13*2048kB (UM) 299*4096kB (UM) = 1466660kB [ 393.918587][T18414] Node 0 Normal: 2*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 24kB [ 393.931715][T18414] Node 1 Normal: 237*4kB (UME) 59*8kB (UME) 31*16kB (UME) 188*32kB (UME) 97*64kB (UME) 29*128kB (UME) 18*256kB (UM) 7*512kB (UM) 2*1024kB (ME) 1*2048kB (E) 946*4096kB (M) = 3904956kB [ 393.957929][T18414] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 393.983423][T18414] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 394.007856][T18414] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 394.087604][T18414] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 394.128139][T18414] 51469 total pagecache pages [ 394.133379][T18414] 0 pages in swap cache [ 394.138518][T18414] Free swap = 124996kB [ 394.145445][T18414] Total swap = 124996kB [ 394.150227][T18414] 2097051 pages RAM [ 394.160453][T18414] 0 pages HighMem/MovableOnly [ 394.165149][T18414] 429571 pages reserved [ 394.169337][T18414] 0 pages cma reserved [ 394.932745][T18451] ima: Unable to open file: /sys/kernel/security/integrity/ima/policy (-26) [ 394.933247][T18448] ima: policy update failed [ 395.017079][ T30] audit: type=1802 audit(4294967442.351:35): pid=18448 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.5779" res=0 errno=0 [ 398.811387][T18576] Line length is too long: Should be less than 4094 [ 398.839401][T18577] Setting dangerous option i915.mitigations - tainting kernel [ 399.880821][T18613] Per memcg swappiness does not exist in cgroup v2. See memory.reclaim or memory.swap.max there [ 399.880821][T18613] [ 400.317777][T18629] vivid-007: ================= START STATUS ================= [ 400.400923][T18629] vivid-007: Generate PTS: true [ 400.406495][T18629] vivid-007: Generate SCR: true [ 400.440765][T18629] tpg source WxH: 640x360 (Y'CbCr) [ 400.464336][T18629] tpg field: 1 [ 400.479720][T18629] tpg crop: (0,0)/640x360 [ 400.497291][T18629] tpg compose: (0,0)/640x360 [ 400.516282][T18629] tpg colorspace: 8 [ 400.531298][T18629] tpg transfer function: 0/2 [ 400.538096][T18635] Process accounting resumed [ 400.550514][T18629] tpg Y'CbCr encoding: 0/1 [ 400.565689][T18629] tpg quantization: 0/2 [ 400.590378][T18629] tpg RGB range: 0/2 [ 400.604044][T18629] vivid-007: ================== END STATUS ================== [ 402.275911][T18685] Process accounting resumed [ 407.763724][T18882] overlayfs: "check_copy_up" module option is obsolete [ 411.893460][T19033] synth uevent: /devices/platform/i8042: unknown uevent action string [ 411.939457][T19035] Scaler: ================= START STATUS ================= [ 411.947062][T19033] i8042 i8042: uevent: failed to send synthetic uevent: -22 [ 411.980763][T19035] Scaler: ================== END STATUS ================== [ 414.210909][T19056] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 414.980681][T19129] warning: `syz.4.6112' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 415.540205][T19151] ecryptfs_miscdev_write: Invalid packet size [192] [ 416.498840][T19184] rnbd_client L213: map_device: Parameters missing [ 417.832549][T19226] ICMPv6: process `syz.4.6159' is using deprecated sysctl (syscall) net.ipv6.neigh.veth0_to_bridge.base_reachable_time - use net.ipv6.neigh.veth0_to_bridge.base_reachable_time_ms instead [ 419.449643][ T55] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 420.280861][T19291] udc dummy_udc.0: soft-connect without a gadget driver [ 421.928707][ T55] Bluetooth: hci2: unexpected event for opcode 0x7c89 [ 426.980377][T19472] syz.1.6281: vmalloc error: size 141863388262170624, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 427.047876][T19472] CPU: 0 UID: 0 PID: 19472 Comm: syz.1.6281 Tainted: G U 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 427.047915][T19472] Tainted: [U]=USER [ 427.047923][T19472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 427.047936][T19472] Call Trace: [ 427.047943][T19472] [ 427.047952][T19472] dump_stack_lvl+0x16c/0x1f0 [ 427.047990][T19472] warn_alloc+0x248/0x3a0 [ 427.048021][T19472] ? __pfx_warn_alloc+0x10/0x10 [ 427.048052][T19472] ? stack_trace_save+0x8e/0xc0 [ 427.048082][T19472] ? register_lock_class+0x41/0x4c0 [ 427.048117][T19472] ? __lock_acquire+0x5ca/0x1ba0 [ 427.048157][T19472] __vmalloc_node_range_noprof+0x10ea/0x1540 [ 427.048193][T19472] ? disksize_store+0x117/0x670 [ 427.048226][T19472] ? __pfx___might_resched+0x10/0x10 [ 427.048254][T19472] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 427.048283][T19472] ? down_write+0x14d/0x200 [ 427.048319][T19472] ? __pfx_down_write+0x10/0x10 [ 427.048355][T19472] ? disksize_store+0x117/0x670 [ 427.048384][T19472] vzalloc_noprof+0x6b/0x90 [ 427.048406][T19472] ? disksize_store+0x117/0x670 [ 427.048433][T19472] disksize_store+0x117/0x670 [ 427.048466][T19472] ? __pfx_disksize_store+0x10/0x10 [ 427.048493][T19472] dev_attr_store+0x55/0x80 [ 427.048516][T19472] ? __pfx_dev_attr_store+0x10/0x10 [ 427.048538][T19472] sysfs_kf_write+0xef/0x150 [ 427.048576][T19472] kernfs_fop_write_iter+0x351/0x510 [ 427.048615][T19472] ? __pfx_sysfs_kf_write+0x10/0x10 [ 427.048655][T19472] vfs_write+0x5ba/0x1180 [ 427.048680][T19472] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 427.048717][T19472] ? __pfx___mutex_lock+0x10/0x10 [ 427.048754][T19472] ? __pfx_vfs_write+0x10/0x10 [ 427.048799][T19472] ksys_write+0x12a/0x240 [ 427.048823][T19472] ? __pfx_ksys_write+0x10/0x10 [ 427.048845][T19472] ? rcu_is_watching+0x12/0xc0 [ 427.048880][T19472] do_syscall_64+0xcd/0x230 [ 427.048917][T19472] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 427.048940][T19472] RIP: 0033:0x7f3946d8e169 [ 427.048958][T19472] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 427.048980][T19472] RSP: 002b:00007f3947cb1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 427.049002][T19472] RAX: ffffffffffffffda RBX: 00007f3946fb5fa0 RCX: 00007f3946d8e169 [ 427.049017][T19472] RDX: 0000000000000006 RSI: 0000200000000ec0 RDI: 0000000000000003 [ 427.049031][T19472] RBP: 00007f3946e10a68 R08: 0000000000000000 R09: 0000000000000000 [ 427.049044][T19472] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 427.049058][T19472] R13: 0000000000000000 R14: 00007f3946fb5fa0 R15: 00007fff1d3d6068 [ 427.049088][T19472] [ 427.049097][T19472] Mem-Info: [ 428.115631][T19472] active_anon:9532 inactive_anon:0 isolated_anon:0 [ 428.115631][T19472] active_file:5773 inactive_file:48694 isolated_file:0 [ 428.115631][T19472] unevictable:768 dirty:243 writeback:0 [ 428.115631][T19472] slab_reclaimable:10659 slab_unreclaimable:95893 [ 428.115631][T19472] mapped:23758 shmem:6436 pagetables:852 [ 428.115631][T19472] sec_pagetables:0 bounce:0 [ 428.115631][T19472] kernel_misc_reclaimable:0 [ 428.115631][T19472] free:1335751 free_pcp:1144 free_cma:0 [ 428.446437][T19472] Node 0 active_anon:31720kB inactive_anon:0kB active_file:23092kB inactive_file:194768kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:94940kB dirty:996kB writeback:0kB shmem:17976kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10096kB pagetables:3532kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 428.631202][T19472] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 428.764158][T19472] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 428.890322][T19472] lowmem_reserve[]: 0 2482 2483 2483 2483 [ 428.924542][T19472] Node 0 DMA32 free:1438712kB boost:0kB min:34336kB low:42920kB high:51504kB reserved_highatomic:0KB active_anon:22732kB inactive_anon:0kB active_file:23092kB inactive_file:193200kB unevictable:1536kB writepending:996kB present:3129332kB managed:2541752kB mlocked:0kB bounce:0kB free_pcp:2528kB local_pcp:2528kB free_cma:0kB [ 428.955022][ C0] vkms_vblank_simulate: vblank timer overrun [ 429.152423][T19472] lowmem_reserve[]: 0 0 1 1 1 [ 429.157258][T19472] Node 0 Normal free:24kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1568kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB [ 429.350041][T19472] lowmem_reserve[]: 0 0 0 0 0 [ 429.354843][T19472] Node 1 Normal free:3905644kB boost:0kB min:55540kB low:69424kB high:83308kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:16kB free_cma:0kB [ 429.383707][ C0] vkms_vblank_simulate: vblank timer overrun [ 429.550173][T19472] lowmem_reserve[]: 0 0 0 0 0 [ 429.554983][T19472] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 429.642100][T19528] kAFS: Invalid Command on /proc/fs/afs/cells file [ 429.648804][T19472] Node 0 DMA32: 1393*4kB (UM) 1138*8kB (UME) 432*16kB (UME) 384*32kB (UME) 457*64kB (UM) 137*128kB (UME) 125*256kB (UME) 57*512kB (UME) 57*1024kB (UME) 10*2048kB (UM) 299*4096kB (UM) = 1445396kB [ 429.745542][T19472] Node 0 Normal: 2*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 24kB [ 429.800147][T19472] Node 1 Normal: 239*4kB (UME) 60*8kB (UME) 35*16kB (UME) 207*32kB (UME) 97*64kB (UME) 29*128kB (UME) 18*256kB (UM) 7*512kB (UM) 2*1024kB (ME) 1*2048kB (E) 946*4096kB (M) = 3905644kB [ 429.871416][T19529] Process accounting resumed [ 429.889142][T19472] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 429.954491][T19472] Node 0 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB [ 429.990861][T19472] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 430.038017][T19472] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 430.093771][T19472] 55871 total pagecache pages [ 430.104416][T19472] 0 pages in swap cache [ 430.126127][T19472] Free swap = 124996kB [ 430.163490][T19472] Total swap = 124996kB [ 430.172097][T19472] 2097051 pages RAM [ 430.189972][T19472] 0 pages HighMem/MovableOnly [ 430.226491][T19472] 429571 pages reserved [ 430.237557][T19472] 0 pages cma reserved [ 430.539682][T19548] Process accounting paused [ 432.249362][T19607] Process accounting paused [ 433.400711][T19656] bond0: option lp_interval: invalid value (/sys/devices/platform/vkms/graphics/fb0/rotate) [ 433.465639][T19656] bond0: option lp_interval: allowed values 1 - 2147483647 [ 437.076410][T19789] QAT: failed to copy from user. [ 440.332559][T19904] block2mtd: illegal erase size [ 440.602610][T19917] syz_tun: tun_chr_ioctl cmd 2147767511 [ 443.642117][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 443.652734][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 446.779084][T20129] nfs: Unknown parameter 'w`_I+; HY Lu>>uh*C<+ ' [ 448.497938][T20190] scsi_dev_info_list_add_str: bad dev info string '' '' '' [ 448.711137][T20196] ima: policy update failed [ 448.715818][ T30] audit: type=1802 audit(4294967496.331:36): pid=20196 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.6633" res=0 errno=0 [ 449.176137][T20213] kafs: addr_prefs: Invalid Command [ 449.854307][T20237] CIFS mount error: No usable UNC path provided in device string! [ 449.854307][T20237] [ 449.906512][T20237] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 451.634360][ T55] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 451.634392][ T55] Bluetooth: hci3: unexpected subevent 0x05 length: 725 > 12 [ 452.158881][T20323] blkio.reset_stats is deprecated [ 453.269536][T20362] i2c i2c-0: new_device: Invalid device name [ 453.651448][ T55] Bluetooth: hci3: command 0x0c1a tx timeout [ 456.221105][T20464] [ 457.223762][T20500] hub 3-0:1.0: USB hub found [ 457.246994][T20500] hub 3-0:1.0: 1 port detected [ 457.307470][T20500] usb usb3: authorized to connect [ 457.998234][T20528] kAFS: unparsable volume name [ 458.233456][T20539] block2mtd: Using custom MTD label '' for dev [ 458.260440][T20539] block2mtd: error: cannot open device [ 459.212073][T20573] ecryptfs_miscdev_write: memdup_user returned error [-14] [ 459.471952][T20579] program syz.3.6820 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 459.545507][T20579] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 459.756106][T20582] Process accounting paused [ 460.591109][T20612] program syz.4.6835 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 460.609535][T20608] Process accounting resumed [ 461.566343][T20646] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet. [ 462.198822][T20665] Process accounting resumed [ 463.766511][T20720] Unable to find swap-space signature [ 464.902952][T20760] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app [ 471.947921][T20955] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 471.998437][T20955] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 472.022360][T20955] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 472.062944][T20955] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 472.106048][T20955] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 472.640633][T21007] < [ 473.310245][ T55] Bluetooth: hci0: command 0x0c1a tx timeout [ 473.856783][T21040] program syz.4.7026 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 473.949361][ T55] Bluetooth: hci2: command 0x0c1a tx timeout [ 474.014602][T21042] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 474.026151][ T55] Bluetooth: hci3: command 0x0c1a tx timeout [ 474.104771][ T55] Bluetooth: hci1: command 0x0406 tx timeout [ 474.553718][T21053] syz_tun: tun_chr_ioctl cmd 2147767519 [ 474.786728][T21060] program syz.1.7037 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 476.178792][ T55] Bluetooth: hci1: command 0x0406 tx timeout [ 477.998627][T21139] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 478.040580][T21139] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 478.069418][T21139] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 478.099071][T21139] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 479.361673][ T55] Bluetooth: hci0: command 0x0c1a tx timeout [ 480.080355][ T55] Bluetooth: hci3: command 0x0c1a tx timeout [ 480.090450][ T5153] Bluetooth: hci2: command 0x0c1a tx timeout [ 480.153475][ T5153] Bluetooth: hci1: command 0x0406 tx timeout [ 482.964723][T21318] synth uevent: /bus/memstick: unknown uevent action string [ 486.444070][T21412] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 486.492720][T21412] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 486.498790][T21412] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 486.581450][T21412] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 486.972176][T21465] ICMPv6: process `syz.1.7205' is using deprecated sysctl (syscall) net.ipv6.neigh.macsec0.base_reachable_time - use net.ipv6.neigh.macsec0.base_reachable_time_ms instead [ 487.875561][ T55] Bluetooth: hci0: command 0x0c1a tx timeout [ 488.510096][ T55] Bluetooth: hci3: command 0x0c1a tx timeout [ 488.516170][ T5153] Bluetooth: hci2: command 0x0c1a tx timeout [ 488.589565][ T55] Bluetooth: hci1: command 0x0406 tx timeout [ 488.597522][T21520] ubi0: attaching mtd0 [ 488.630442][T21520] ubi0 error: ubi_attach_mtd_dev: bad VID header (63) or data offsets (127) [ 489.380610][T21549] ICMPv6: process `syz.1.7246' is using deprecated sysctl (syscall) net.ipv6.neigh.wg1.retrans_time - use net.ipv6.neigh.wg1.retrans_time_ms instead [ 489.915418][T21562] Process accounting resumed [ 490.456575][T21581] Process accounting paused [ 492.195298][T21643] Process accounting paused [ 493.200161][T21661] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 493.231477][T21661] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 493.281334][T21661] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 493.329219][T21661] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 494.571122][ T55] Bluetooth: hci0: command 0x0c1a tx timeout [ 495.274888][ T5153] Bluetooth: hci3: command 0x0c1a tx timeout [ 495.280984][ T55] Bluetooth: hci2: command 0x0c1a tx timeout [ 495.358629][ T5153] Bluetooth: hci1: command 0x0406 tx timeout [ 496.252354][T21771] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 496.290911][T21771] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 496.341718][T21771] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 496.386122][T21771] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 497.667331][ T5153] Bluetooth: hci0: command 0x0c1a tx timeout [ 497.778156][T21859] openvswitch: netlink: IP tunnel dst address not specified [ 498.255703][T21875] sctp: [Deprecated]: syz.1.7378 (pid 21875) Use of int in max_burst socket option deprecated. [ 498.255703][T21875] Use struct sctp_assoc_value instead [ 498.299109][ T5153] Bluetooth: hci3: command 0x0c1a tx timeout [ 498.305226][ T55] Bluetooth: hci2: command 0x0c1a tx timeout [ 498.378828][ T55] Bluetooth: hci1: command 0x0406 tx timeout [ 498.639488][T21888] program syz.3.7384 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 499.013145][T21897] netlink: 'syz.2.7387': attribute type 11 has an invalid length. [ 499.060222][T21897] netlink: 'syz.2.7387': attribute type 11 has an invalid length. [ 499.100311][T21897] netlink: 'syz.2.7387': attribute type 11 has an invalid length. [ 500.207345][ T30] audit: type=1800 audit(4294967548.088:37): pid=21930 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.7411" name="discovery_nqn" dev="configfs" ino=56489 res=0 errno=0 [ 500.706840][T21946] unsupported nla_type 32969 [ 502.678086][T22004] vivid-003: ================= START STATUS ================= [ 502.712648][T22004] vivid-003: Radio HW Seek Mode: Bounded [ 502.737492][T22004] vivid-003: Radio Programmable HW Seek: false [ 502.762998][T22004] vivid-003: RDS Rx I/O Mode: Block I/O [ 502.789972][T22004] vivid-003: Generate RBDS Instead of RDS: false [ 502.819194][T22004] vivid-003: RDS Reception: true [ 502.844865][T22004] vivid-003: RDS Program Type: 0 inactive [ 502.867851][T22004] vivid-003: RDS PS Name: inactive [ 502.907254][T22004] vivid-003: RDS Radio Text: inactive [ 502.939556][T22004] vivid-003: RDS Traffic Announcement: false inactive [ 502.991840][T22004] vivid-003: RDS Traffic Program: false inactive [ 503.016124][T22004] vivid-003: RDS Music: false inactive [ 503.043996][T22004] vivid-003: ================== END STATUS ================== [ 504.237944][T22043] sd 0:0:1:0: PR command failed: 1026 [ 504.243419][T22043] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 504.327107][T22043] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 504.753930][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 504.768147][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 506.067868][T22095] netlink: 'syz.3.7476': attribute type 22 has an invalid length. [ 506.094580][T22096] perf: Dynamic interrupt throttling disabled, can hang your system! [ 506.410631][T22102] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input40 [ 507.313284][T22142] Zero length message leads to an empty skb [ 507.848150][T22161] openvswitch: netlink: Key type 29 is not supported [ 508.635992][T22186] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 508.885418][ T1152] bridge_slave_1: left allmulticast mode [ 508.904356][ T1152] bridge_slave_1: left promiscuous mode [ 508.915865][T22194] capability: warning: `syz.2.7516' uses 32-bit capabilities (legacy support in use) [ 508.939214][ T1152] bridge0: port 2(bridge_slave_1) entered disabled state [ 508.968939][ T1152] bridge_slave_0: left allmulticast mode [ 508.990782][ T1152] bridge_slave_0: left promiscuous mode [ 509.013247][ T1152] bridge0: port 1(bridge_slave_0) entered disabled state [ 510.012587][ T1152] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 510.053496][ T1152] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 510.096057][ T1152] bond0 (unregistering): Released all slaves [ 510.374683][T22212] netlink: 342 bytes leftover after parsing attributes in process `syz.3.7524'. [ 510.462031][ T5153] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 510.474655][ T5153] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 510.485558][ T5153] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 510.494970][ T5153] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 510.509141][ T5153] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 511.100516][ T1152] hsr_slave_0: left promiscuous mode [ 511.145460][T22257] sctp: [Deprecated]: syz.3.7531 (pid 22257) Use of int in max_burst socket option deprecated. [ 511.145460][T22257] Use struct sctp_assoc_value instead [ 511.192056][ T1152] hsr_slave_1: left promiscuous mode [ 511.206874][ T1152] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 511.263091][ T1152] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 511.303676][ T1152] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 511.358015][ T1152] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 511.490646][ T1152] veth1_macvtap: left promiscuous mode [ 511.496234][ T1152] veth0_macvtap: left promiscuous mode [ 511.549632][ T1152] veth1_vlan: left promiscuous mode [ 511.585621][ T1152] veth0_vlan: left promiscuous mode [ 512.546533][ T5153] Bluetooth: hci1: command tx timeout [ 513.068217][ T1152] team0 (unregistering): Port device team_slave_1 removed [ 513.165429][ T1152] team0 (unregistering): Port device team_slave_0 removed [ 514.507922][T22215] chnl_net:caif_netlink_parms(): no params data found [ 514.614563][ T5153] Bluetooth: hci1: command tx timeout [ 515.084593][T22215] bridge0: port 1(bridge_slave_0) entered blocking state [ 515.121865][T22215] bridge0: port 1(bridge_slave_0) entered disabled state [ 515.155526][T22215] bridge_slave_0: entered allmulticast mode [ 515.187463][T22215] bridge_slave_0: entered promiscuous mode [ 515.234667][T22215] bridge0: port 2(bridge_slave_1) entered blocking state [ 515.286480][T22215] bridge0: port 2(bridge_slave_1) entered disabled state [ 515.323923][T22215] bridge_slave_1: entered allmulticast mode [ 515.364638][T22215] bridge_slave_1: entered promiscuous mode [ 515.384985][T22467] netlink: 260 bytes leftover after parsing attributes in process `syz.3.7558'. [ 515.552856][T22215] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 515.635547][T22215] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 515.876418][T22215] team0: Port device team_slave_0 added [ 515.944401][T22215] team0: Port device team_slave_1 added [ 516.140683][T22215] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 516.180336][T22215] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 516.314274][T22215] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 516.396698][T22215] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 516.403671][T22215] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 516.554146][T22215] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 516.687822][ T5153] Bluetooth: hci1: command tx timeout [ 516.824702][T22215] hsr_slave_0: entered promiscuous mode [ 516.847462][T22215] hsr_slave_1: entered promiscuous mode [ 516.870705][T22215] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 516.899610][T22215] Cannot create hsr debugfs directory [ 517.745225][T22215] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 517.816715][T22215] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 517.906547][T22215] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 517.971211][T22215] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 518.432181][T22215] 8021q: adding VLAN 0 to HW filter on device bond0 [ 518.457229][T22705] netlink: 'syz.3.7590': attribute type 1 has an invalid length. [ 518.539824][T22215] 8021q: adding VLAN 0 to HW filter on device team0 [ 518.669580][ T82] bridge0: port 1(bridge_slave_0) entered blocking state [ 518.676783][ T82] bridge0: port 1(bridge_slave_0) entered forwarding state [ 518.746750][ T82] bridge0: port 2(bridge_slave_1) entered blocking state [ 518.754003][ T82] bridge0: port 2(bridge_slave_1) entered forwarding state [ 518.768133][ T5153] Bluetooth: hci1: command tx timeout [ 519.515290][T22733] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 519.563445][T22215] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 519.856996][T22738] Process accounting paused [ 520.472660][T22743] Process accounting resumed [ 520.743504][T22215] veth0_vlan: entered promiscuous mode [ 520.835523][T22215] veth1_vlan: entered promiscuous mode [ 521.010377][T22215] veth0_macvtap: entered promiscuous mode [ 521.065947][T22215] veth1_macvtap: entered promiscuous mode [ 521.149139][T22215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 521.236650][T22215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 521.296650][T22215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 521.379323][T22215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 521.436226][T22215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 521.488683][T22215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 521.551131][T22215] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 521.624490][T22215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 521.688933][T22215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 521.742226][T22215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 521.792105][T22215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 521.844599][T22215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 521.899889][T22215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 521.954178][T22215] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 522.020488][T22215] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 522.074921][T22215] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 522.106445][T22215] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 522.124186][T22787] Process accounting resumed [ 522.141583][T22215] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 522.312634][T22790] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 5 [ 522.538237][ T1152] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 522.594841][ T1152] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 522.780060][ T82] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 522.831001][ T82] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 522.936217][T22811] nbd: must specify an index to disconnect [ 527.131613][T22941] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 527.420322][T22951] openvswitch: netlink: Geneve opt len 1 is not a multiple of 4. [ 529.682272][T23015] ucma_write: process 4266 (syz.2.7717) changed security contexts after opening file descriptor, this is not allowed. [ 532.098709][ T5153] Bluetooth: hci2: unexpected event 0x3e length: 723 > 260 [ 532.098742][ T5153] Bluetooth: hci2: unexpected subevent 0x0d length: 722 > 260 [ 532.116650][ T5153] Bluetooth: hci2: Unknown advertising packet type: 0x7f [ 532.116731][ T5153] Bluetooth: hci2: Malformed LE Event: 0x0d [ 533.747316][T23124] syz_tun: tun_chr_ioctl cmd 1074025681 [ 533.932575][T23147] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 535.298400][T23182] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16) [ 535.411659][T23182] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 537.434412][T23239] openvswitch: netlink: IP tunnel dst address not specified [ 538.185613][T23257] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7817'. [ 539.562258][T23297] openvswitch: netlink: Flow actions attr not present in new flow. [ 539.687811][T23299] MTRR 1 not used [ 539.835538][T23303] netlink: 'syz.1.7840': attribute type 2 has an invalid length. [ 540.448824][ T30] audit: type=1800 audit(4294967298.226:38): pid=23320 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.7847" name="members" dev="configfs" ino=60430 res=0 errno=0 [ 542.500987][T23371] delete_channel: no stack [ 543.180608][T23395] netlink: set zone limit has 8 unknown bytes [ 543.833775][T23418] netlink: 'syz.1.7889': attribute type 1 has an invalid length. [ 543.860153][T23418] nbd: error processing sock list [ 544.279120][T23430] netlink: zone id is out of range [ 545.341411][T23466] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7912'. [ 547.613802][T23536] Format for adding new device is "id port_count num_queues" (uint uint unit). [ 548.961370][T23565] netlink: 'syz.4.7945': attribute type 1 has an invalid length. [ 549.822241][T23585] Process accounting resumed [ 550.025204][T23588] cifs: Unknown parameter '' [ 550.508570][T23601] Process accounting paused [ 551.138786][T23622] netlink: 'syz.3.7971': attribute type 2 has an invalid length. [ 552.105071][T23645] Process accounting paused [ 552.825359][T23667] nbd: couldn't find device at index 33904 [ 553.386317][T23682] netlink: 'syz.3.7998': attribute type 11 has an invalid length. [ 553.442868][T23682] netlink: 'syz.3.7998': attribute type 11 has an invalid length. [ 553.477151][T23682] netlink: 'syz.3.7998': attribute type 11 has an invalid length. [ 553.522969][T23682] netlink: 'syz.3.7998': attribute type 11 has an invalid length. [ 554.467333][T23711] netlink: 'syz.4.8008': attribute type 1 has an invalid length. [ 555.902222][T23742] openvswitch: netlink: VXLAN extension 0 has unexpected len 4 expected 0 [ 558.756724][T23815] netlink: 12 bytes leftover after parsing attributes in process `syz.1.8052'. [ 561.900340][T23878] batman_adv: Routing algorithm '' is not supported [ 562.641533][T23915] openvswitch: netlink: push_nsh: missing base or metadata attributes [ 563.935230][T23949] cifs: Unknown parameter 'T.żc[$⁍)UÑnE-ʙl- -_5Z omfwYh*/xDlݩgkǐA79Xa/f_ARxM vp$^;q3n-6+ek 260 [ 579.703429][ T5153] Bluetooth: hci1: unexpected subevent 0x02 length: 507 > 260 [ 579.718662][ T5153] Bluetooth: hci1: Dropping invalid advertising data [ 579.727129][ T5153] Bluetooth: hci1: unknown advertising packet type: 0xe9 [ 579.727166][ T5153] Bluetooth: hci1: Dropping invalid advertising data [ 579.741212][ T5153] Bluetooth: hci1: Malformed LE Event: 0x02 [ 579.937178][T24386] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 579.961591][ T30] audit: type=1800 audit(4294967337.941:39): pid=24388 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.8301" name="lu_gp_id" dev="configfs" ino=64036 res=0 errno=0 [ 580.162669][T24394] futex_wake_op: syz.3.8304 tries to shift op by 64; fix this program [ 580.292680][T24378] Process accounting paused [ 580.518343][T24399] Process accounting resumed [ 580.847469][T24410] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 581.408314][T24425] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8318'. [ 582.067627][T24432] Process accounting resumed [ 582.278133][ T5153] Bluetooth: hci2: ACL packet too small [ 584.921497][T24523] syz_tun: tun_chr_ioctl cmd 1074025688 [ 585.390177][T24533] openvswitch: netlink: nsh attribute has 4 unknown bytes. [ 585.833416][T24547] program syz.4.8372 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 586.464246][T24565] dyndbg: expected <4096 bytes into control [ 587.597480][T24594] usb usb18: usbfs: process 24594 (syz.4.8394) did not claim interface 0 before use [ 588.125692][T24607] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 588.795652][T24628] ima: policy update failed [ 588.872089][ T30] audit: type=1802 audit(4294967346.898:40): pid=24628 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.8408" res=0 errno=0 [ 593.143405][T24764] zero sized request [ 595.265673][T24829] svc: failed to register nfsdv3 RPC service (errno 111). [ 595.308984][T24829] svc: failed to register nfsaclv3 RPC service (errno 111). [ 596.384249][T24865] device-mapper: ioctl: Invalid data size in the ioctl structure: 0 [ 596.886945][T24878] netlink: zone id is out of range [ 596.921087][T24878] netlink: zone id is out of range [ 596.950494][T24878] netlink: zone id is out of range [ 596.972846][T24878] netlink: zone id is out of range [ 597.011180][T24878] netlink: zone id is out of range [ 597.031805][T24878] netlink: zone id is out of range [ 597.073274][T24878] netlink: zone id is out of range [ 597.096299][T24878] netlink: zone id is out of range [ 597.130962][T24878] netlink: zone id is out of range [ 597.158218][T24878] netlink: zone id is out of range [ 598.856581][ T5153] Bluetooth: hci0: unexpected event 0x30 length: 47 > 3 [ 599.694990][T24966] Format for linking two devices is "netnsfd_a:ifidx_a netnsfd_b:ifidx_b" (int uint int uint). [ 600.189696][T24978] netlink: 'syz.3.8567': attribute type 2 has an invalid length. [ 600.881847][T24998] netlink: 'syz.4.8577': attribute type 1 has an invalid length. [ 604.090466][T25093] nbd: must specify a size in bytes for the device [ 604.352505][T25104] netlink: 'syz.1.8621': attribute type 2 has an invalid length. [ 606.089932][T25139] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 606.125557][T25139] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 606.160623][T25139] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 606.191288][T25139] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 606.228286][T25139] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 606.286669][T25139] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 607.651540][ T5153] Bluetooth: hci0: command 0x0c1a tx timeout [ 608.128813][ T5153] Bluetooth: hci2: command 0x0c1a tx timeout [ 608.207529][ T5153] Bluetooth: hci1: command 0x0c1a tx timeout [ 608.213680][ T5153] Bluetooth: hci3: command 0x0c1a tx timeout [ 610.112986][T25291] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 610.155228][T25291] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 610.264758][T25291] Process accounting resumed [ 610.276704][ T5153] Bluetooth: hci1: command 0x0c1a tx timeout [ 610.583009][T25273] Process accounting paused [ 610.962499][T25308] svc: failed to register nfsdv3 RPC service (errno 111). [ 611.008125][T25308] svc: failed to register nfsaclv3 RPC service (errno 111). [ 611.586768][T25335] netlink: 16 bytes leftover after parsing attributes in process `syz.4.8723'. [ 611.789842][T25339] netlink: 206 bytes leftover after parsing attributes in process `syz.3.8725'. [ 612.345917][ T5153] Bluetooth: hci1: command 0x0c1a tx timeout [ 614.747133][T25428] net_ratelimit: 22 callbacks suppressed [ 614.747153][T25428] openvswitch: netlink: IPv4 tunnel dst address is zero [ 615.062279][T25437] openvswitch: netlink: VXLAN extension 64 out of range max 1 [ 615.968636][T25460] netlink: 28 bytes leftover after parsing attributes in process `syz.4.8778'. [ 617.551772][T25502] nbd: must specify at least one socket [ 617.754840][T25508] netlink: zone id is out of range [ 617.778958][T25508] netlink: zone id is out of range [ 617.802574][T25508] netlink: zone id is out of range [ 617.839158][T25508] netlink: zone id is out of range [ 617.995898][T25508] netlink: set zone limit has 8 unknown bytes [ 622.008114][T25619] netlink: 'syz.1.8849': attribute type 1 has an invalid length. [ 622.371471][T25629] openvswitch: netlink: IP tunnel dst address not specified [ 622.515069][T25631] MTRR 1 not used [ 622.780421][T25641] netlink: 'syz.4.8857': attribute type 2 has an invalid length. [ 622.790744][T25640] syz_tun: tun_chr_ioctl cmd 1074025694 [ 624.510071][T25682] netlink: 'syz.2.8879': attribute type 1 has an invalid length. [ 625.639049][T25713] openvswitch: netlink: push_nsh: missing base or metadata attributes [ 626.997074][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 627.003698][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 629.867297][T25820] openvswitch: netlink: IP tunnel dst address not specified [ 630.579823][T25844] program syz.3.8952 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 630.864229][T25854] syz_tun: tun_chr_ioctl cmd 1074025698 [ 630.873743][T25853] netlink: 'syz.1.8956': attribute type 3 has an invalid length. [ 631.215030][T25857] syz.4.8958 (25857) used greatest stack depth: 21112 bytes left [ 632.013983][T25885] dyndbg: bad flag-op , at start of [ 632.047844][T25885] dyndbg: flags parse failed [ 635.583096][T25980] netlink: 12 bytes leftover after parsing attributes in process `syz.1.9010'. [ 635.622835][T25982] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 639.055493][T26056] openvswitch: netlink: ERSPAN option length err (len 256, max 255). [ 640.624339][T26079] Process accounting resumed [ 641.088649][T26072] Process accounting paused [ 643.210580][T26147] netlink: 306 bytes leftover after parsing attributes in process `syz.2.9076'. [ 644.431175][T26184] netlink: 4 bytes leftover after parsing attributes in process `syz.2.9087'. [ 645.074528][T26201] netlink: Conntrack attr type has unexpected length (type=3, length=0, expected=8) [ 645.784855][ T30] audit: type=1806 audit(4294967404.114:41): xattr="" res=-22 [ 648.103692][T26267] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 650.624795][T26333] openvswitch: netlink: Invalid MD length 0 for MD type 0 [ 651.894580][T26370] CIFS mount error: No usable UNC path provided in device string! [ 651.894580][T26370] [ 651.960851][T26370] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 653.679469][T26424] QAT: Device 0 not found [ 656.616256][T26502] nbd: illegal input index 2147483647 [ 656.778360][T26506] __vm_enough_memory: pid: 26506, comm: syz.3.9222, bytes: 4503599627366400 not enough memory for the allocation [ 658.477235][T26547] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9240'. [ 659.039089][T26556] Invalid ELF header magic: != ELF [ 660.078057][T26589] netlink: 342 bytes leftover after parsing attributes in process `syz.3.9260'. [ 660.391647][T26596] netlink: del zone limit has 8 unknown bytes [ 661.254482][T26618] netlink: Unknown conntrack attr (type=146, max=9) [ 661.683959][T26628] openvswitch: netlink: nsh attribute has unmatched MD type 0. [ 663.102339][T26664] tc_dump_action: action bad kind [ 666.071297][T26749] netlink: Conntrack attr has 16 unknown bytes [ 670.971818][T26894] Process accounting resumed [ 671.421198][T26884] Process accounting paused [ 672.958524][T26949] Console: switching to colour VGA+ 80x25 [ 675.827213][T27041] openvswitch: netlink: IPv6 tunnel dst address is zero [ 678.654689][T27137] openvswitch: netlink: Message has 4 unknown bytes. [ 679.973292][T27180] netlink: 'syz.3.9528': attribute type 1 has an invalid length. [ 683.087536][T27276] netlink: 'syz.4.9569': attribute type 11 has an invalid length. [ 683.127668][T27276] netlink: 'syz.4.9569': attribute type 11 has an invalid length. [ 683.154270][T27276] netlink: 'syz.4.9569': attribute type 11 has an invalid length. [ 683.195089][T27276] netlink: 'syz.4.9569': attribute type 11 has an invalid length. [ 683.222463][T27276] netlink: 'syz.4.9569': attribute type 11 has an invalid length. [ 683.509676][ T30] audit: type=1804 audit(4294967442.020:42): pid=27293 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.9575" name="/newroot/2369/file0" dev="tmpfs" ino=11921 res=1 errno=0 [ 683.642367][ T30] audit: type=1800 audit(4294967442.070:43): pid=27293 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.9575" name="file0" dev="tmpfs" ino=11921 res=0 errno=0 [ 685.895954][T27362] netlink: 12 bytes leftover after parsing attributes in process `syz.4.9601'. [ 688.116542][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 688.123030][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 694.662626][T27626] svc: failed to register nfsdv3 RPC service (errno 111). [ 694.720160][T27626] svc: failed to register nfsaclv3 RPC service (errno 111). [ 696.084029][T27680] netlink: 'syz.3.9741': attribute type 2 has an invalid length. [ 696.525932][T27696] program syz.4.9748 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 696.952247][T27711] openvswitch: netlink: Message has 20 unknown bytes. [ 696.961843][T27708] svc: failed to register nfsdv3 RPC service (errno 111). [ 696.998513][T27708] svc: failed to register nfsaclv3 RPC service (errno 111). [ 697.424652][T27732] openvswitch: netlink: Message has 4 unknown bytes. [ 698.270340][T27776] svc: failed to register nfsdv3 RPC service (errno 111). [ 698.322160][T27776] svc: failed to register nfsaclv3 RPC service (errno 111). [ 699.228733][ T5153] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 699.509253][T27818] svc: failed to register nfsdv3 RPC service (errno 111). [ 699.536191][T27825] netlink: zone id is out of range [ 699.554021][T27818] svc: failed to register nfsaclv3 RPC service (errno 111). [ 749.240912][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 749.250709][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 759.489380][ T5213] udevd[5213]: worker [27638] /devices/pci0000:00/0000:00:03.0/virtio0/host0/target0:0:1/0:0:1:0/block/sda is taking a long time [ 810.360938][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 810.371146][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 815.450096][ T36] kworker/u8:2 (36) used greatest stack depth: 20648 bytes left [ 847.921115][ T31] INFO: task syz-executor:5829 blocked for more than 143 seconds. [ 847.928980][ T31] Tainted: G U 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 [ 847.942286][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 847.952768][ T31] task:syz-executor state:D stack:23832 pid:5829 tgid:5829 ppid:5827 task_flags:0x440100 flags:0x00000002 [ 847.966317][ T31] Call Trace: [ 847.969627][ T31] [ 847.977977][ T31] __schedule+0x116f/0x5de0 [ 847.983893][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 847.988873][ T31] ? __pfx___schedule+0x10/0x10 [ 847.995223][ T31] ? find_held_lock+0x2b/0x80 [ 848.002763][ T31] ? schedule+0x2d7/0x3a0 [ 848.007127][ T31] schedule+0xe7/0x3a0 [ 848.014535][ T31] io_schedule+0xbf/0x130 [ 848.018903][ T31] bit_wait_io+0x15/0xe0 [ 848.024794][ T31] __wait_on_bit+0x62/0x180 [ 848.029367][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 848.035709][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 848.042507][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 848.048516][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 848.055525][ T31] do_get_write_access+0x93d/0x12a0 [ 848.062329][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 848.068339][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 848.076029][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 848.087134][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 848.094082][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 848.099498][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 848.107769][ T31] ? rcu_is_watching+0x12/0xc0 [ 848.115718][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 848.122798][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 848.128029][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 848.135124][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 848.142173][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 848.147138][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 848.153963][ T31] ext4_dirty_inode+0xd9/0x130 [ 848.158746][ T31] ? rcu_is_watching+0x12/0xc0 [ 848.164822][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 848.171235][ T31] generic_update_time+0xcf/0xf0 [ 848.176643][ T31] file_update_time+0x17d/0x1c0 [ 848.183663][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 848.188809][ T31] ? anon_pipe_read+0xc85/0x1210 [ 848.198504][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 848.206269][ T31] ? vm_normal_page+0x13b/0x2b0 [ 848.214499][ T31] ? find_held_lock+0x2b/0x80 [ 848.220596][ T31] ? find_held_lock+0x2b/0x80 [ 848.225302][ T31] do_page_mkwrite+0x171/0x380 [ 848.231552][ T31] do_wp_page+0xb9e/0x58e0 [ 848.235999][ T31] ? __pfx_do_wp_page+0x10/0x10 [ 848.242498][ T31] ? do_raw_spin_lock+0x12c/0x2b0 [ 848.247539][ T31] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 848.254402][ T31] ? ___pte_offset_map+0x1bc/0x540 [ 848.261230][ T31] __handle_mm_fault+0x1ada/0x2a40 [ 848.266370][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 848.273196][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 848.278473][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 848.285106][ T31] handle_mm_fault+0x3fe/0xad0 [ 848.291639][ T31] do_user_addr_fault+0x60c/0x1370 [ 848.296802][ T31] exc_page_fault+0x5c/0xc0 [ 848.306873][ T31] asm_exc_page_fault+0x26/0x30 [ 848.313134][ T31] RIP: 0033:0x7f5ad5a681e5 [ 848.320988][ T31] RSP: 002b:00007fff07851160 EFLAGS: 00010206 [ 848.327080][ T31] RAX: 00007f5acf7eb6dc RBX: 00007fff07851260 RCX: 0000000000000000 [ 848.336594][ T31] RDX: 00007f5acf7eb6d8 RSI: 0000000000000008 RDI: 00007fff07851260 [ 848.346004][ T31] RBP: 00000000000003e6 R08: 0000000000000000 R09: 0000000000000000 [ 848.355314][ T31] R10: 00007fff07851240 R11: 0000000000000000 R12: 0000000000000000 [ 848.364758][ T31] R13: 0000000000014924 R14: fffffffffffeb6dc R15: 0000000000014924 [ 848.374143][ T31] [ 848.377433][ T31] INFO: task syz.4.9798:27846 blocked for more than 143 seconds. [ 848.389897][ T31] Tainted: G U 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 [ 848.403202][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 848.421010][ T31] task:syz.4.9798 state:D stack:28344 pid:27846 tgid:27846 ppid:22215 task_flags:0x440040 flags:0x00000004 [ 848.433988][ T31] Call Trace: [ 848.437283][ T31] [ 848.442339][ T31] __schedule+0x116f/0x5de0 [ 848.446883][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 848.452671][ T31] ? __pfx___schedule+0x10/0x10 [ 848.457555][ T31] ? find_held_lock+0x2b/0x80 [ 848.464120][ T31] ? schedule+0x2d7/0x3a0 [ 848.469278][ T31] schedule+0xe7/0x3a0 [ 848.473371][ T31] io_schedule+0xbf/0x130 [ 848.479860][ T31] bit_wait_io+0x15/0xe0 [ 848.484130][ T31] __wait_on_bit+0x62/0x180 [ 848.489540][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 848.494505][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 848.501905][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 848.509648][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 848.515165][ T31] do_get_write_access+0x93d/0x12a0 [ 848.528583][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 848.534601][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 848.542916][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 848.549294][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 848.554773][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 848.562226][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 848.569047][ T31] ? rcu_is_watching+0x12/0xc0 [ 848.573834][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 848.581462][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 848.586687][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 848.593198][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 848.600838][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 848.605797][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 848.612684][ T31] ext4_dirty_inode+0xd9/0x130 [ 848.619673][ T31] ? rcu_is_watching+0x12/0xc0 [ 848.626447][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 848.635621][ T31] generic_update_time+0xcf/0xf0 [ 848.647041][ T31] file_update_time+0x17d/0x1c0 [ 848.651920][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 848.659516][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 848.664999][ T31] ? __pfx_filemap_map_pages+0x10/0x10 [ 848.670844][ T31] ? pte_alloc_one+0x2b1/0x380 [ 848.675652][ T31] do_page_mkwrite+0x171/0x380 [ 848.683108][ T31] do_pte_missing+0x29c/0x3fb0 [ 848.688290][ T31] __handle_mm_fault+0x103d/0x2a40 [ 848.693439][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 848.701573][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 848.707067][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 848.713263][ T31] handle_mm_fault+0x3fe/0xad0 [ 848.721702][ T31] do_user_addr_fault+0x60c/0x1370 [ 848.729105][ T31] exc_page_fault+0x5c/0xc0 [ 848.733669][ T31] asm_exc_page_fault+0x26/0x30 [ 848.744472][ T31] RIP: 0033:0x7fcddf66e2fa [ 848.749198][ T31] RSP: 002b:00007ffe505df380 EFLAGS: 00010202 [ 848.755294][ T31] RAX: 0000001b2f320000 RBX: 00007fcde04e5720 RCX: 0000001b2f31fff8 [ 848.765873][ T31] RDX: 00000000003ffde8 RSI: 00000000003ffde8 RDI: 00007fcde04e5700 [ 848.774884][ T31] RBP: ffffffff893c1d8b R08: 00007fcddf9b6038 R09: 00007fcddf9a2000 [ 848.785592][ T31] R10: 00007fcddedff008 R11: 0000000000000000 R12: 0000000000000000 [ 848.793816][ T31] R13: 0000000000000001 R14: ffffffff893c14e1 R15: 0000000000000001 [ 848.805918][ T31] ? __x64_sys_socket+0x11/0xb0 [ 848.810873][ T31] ? __ia32_sys_socketpair+0x7b/0x100 [ 848.819507][ T31] [ 848.822586][ T31] INFO: task syz.1.9799:27848 blocked for more than 144 seconds. [ 848.832435][ T31] Tainted: G U 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 [ 848.844339][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 848.859358][ T31] task:syz.1.9799 state:D stack:28632 pid:27848 tgid:27848 ppid:5838 task_flags:0x440040 flags:0x00000004 [ 848.871754][ T31] Call Trace: [ 848.875063][ T31] [ 848.881801][ T31] __schedule+0x116f/0x5de0 [ 848.886579][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 848.891553][ T31] ? __pfx___schedule+0x10/0x10 [ 848.899092][ T31] ? find_held_lock+0x2b/0x80 [ 848.903812][ T31] ? schedule+0x2d7/0x3a0 [ 848.908479][ T31] schedule+0xe7/0x3a0 [ 848.912570][ T31] io_schedule+0xbf/0x130 [ 848.920162][ T31] bit_wait_io+0x15/0xe0 [ 848.924441][ T31] __wait_on_bit+0x62/0x180 [ 848.931168][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 848.938571][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 848.943980][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 848.950568][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 848.961305][ T31] do_get_write_access+0x93d/0x12a0 [ 848.967985][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 848.973996][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 848.983300][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 848.989507][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 848.997222][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 849.002627][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 849.008942][ T31] ? rcu_is_watching+0x12/0xc0 [ 849.013726][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 849.022783][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 849.029997][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 849.038995][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 849.044665][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 849.049942][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 849.057964][ T31] ext4_dirty_inode+0xd9/0x130 [ 849.062748][ T31] ? rcu_is_watching+0x12/0xc0 [ 849.070028][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 849.078665][ T31] generic_update_time+0xcf/0xf0 [ 849.083750][ T31] file_update_time+0x17d/0x1c0 [ 849.089525][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 849.097463][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 849.102945][ T31] ? __pfx_filemap_map_pages+0x10/0x10 [ 849.108769][ T31] ? pte_alloc_one+0x2b1/0x380 [ 849.113607][ T31] do_page_mkwrite+0x171/0x380 [ 849.120920][ T31] do_pte_missing+0x29c/0x3fb0 [ 849.126759][ T31] ? do_raw_spin_unlock+0x172/0x230 [ 849.133981][ T31] ? __pmd_alloc+0x3c2/0x870 [ 849.140131][ T31] __handle_mm_fault+0x103d/0x2a40 [ 849.146749][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 849.152229][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 849.159700][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 849.166578][ T31] handle_mm_fault+0x3fe/0xad0 [ 849.171370][ T31] do_user_addr_fault+0x60c/0x1370 [ 849.179955][ T31] exc_page_fault+0x5c/0xc0 [ 849.186629][ T31] asm_exc_page_fault+0x26/0x30 [ 849.191503][ T31] RIP: 0033:0x7f3946c64c9b [ 849.198309][ T31] RSP: 002b:00007fff1d3d61d0 EFLAGS: 00010246 [ 849.206208][ T31] RAX: 00000000003ffde8 RBX: 0000000000000000 RCX: 0000000000000000 [ 849.215624][ T31] RDX: 0000001b30720000 RSI: 0000000000400000 RDI: 00007f3946e98eb0 [ 849.226168][ T31] RBP: 0000000000000000 R08: 0000000000000004 R09: 0000000000040000 [ 849.237179][ T31] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 849.246726][ T31] R13: 00000000000927c0 R14: 00000000000abb6c R15: 00007fff1d3d6480 [ 849.255969][ T31] [ 849.259136][ T31] INFO: task syz.2.9800:27849 blocked for more than 144 seconds. [ 849.268358][ T31] Tainted: G U 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 [ 849.279487][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 849.291464][ T31] task:syz.2.9800 state:D stack:28632 pid:27849 tgid:27849 ppid:5840 task_flags:0x440040 flags:0x00000004 [ 849.307029][ T31] Call Trace: [ 849.310320][ T31] [ 849.313257][ T31] __schedule+0x116f/0x5de0 [ 849.318643][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 849.326806][ T31] ? __pfx___schedule+0x10/0x10 [ 849.331691][ T31] ? find_held_lock+0x2b/0x80 [ 849.338348][ T31] ? schedule+0x2d7/0x3a0 [ 849.342708][ T31] schedule+0xe7/0x3a0 [ 849.349152][ T31] io_schedule+0xbf/0x130 [ 849.353734][ T31] bit_wait_io+0x15/0xe0 [ 849.358015][ T31] __wait_on_bit+0x62/0x180 [ 849.362534][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 849.369839][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 849.375422][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 849.381511][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 849.389678][ T31] do_get_write_access+0x93d/0x12a0 [ 849.397559][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 849.406601][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 849.412718][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 849.419755][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 849.428901][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 849.437125][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 849.445631][ T31] ? rcu_is_watching+0x12/0xc0 [ 849.450425][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 849.456367][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 849.461591][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 849.469668][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 849.475541][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 849.480497][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 849.488314][ T31] ext4_dirty_inode+0xd9/0x130 [ 849.493597][ T31] ? rcu_is_watching+0x12/0xc0 [ 849.498381][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 849.508115][ T31] generic_update_time+0xcf/0xf0 [ 849.513789][ T31] file_update_time+0x17d/0x1c0 [ 849.518666][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 849.528101][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 849.534179][ T31] ? __pfx_filemap_map_pages+0x10/0x10 [ 849.541684][ T31] ? pte_alloc_one+0x2b1/0x380 [ 849.549159][ T31] do_page_mkwrite+0x171/0x380 [ 849.554175][ T31] do_pte_missing+0x29c/0x3fb0 [ 849.558972][ T31] ? do_raw_spin_unlock+0x172/0x230 [ 849.566809][ T31] ? __pmd_alloc+0x3c2/0x870 [ 849.571440][ T31] __handle_mm_fault+0x103d/0x2a40 [ 849.576926][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 849.585246][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 849.590478][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 849.596022][ T31] handle_mm_fault+0x3fe/0xad0 [ 849.600810][ T31] do_user_addr_fault+0x60c/0x1370 [ 849.608725][ T31] exc_page_fault+0x5c/0xc0 [ 849.615933][ T31] asm_exc_page_fault+0x26/0x30 [ 849.620807][ T31] RIP: 0033:0x7f83bd064c9b [ 849.627849][ T31] RSP: 002b:00007ffcd0094f50 EFLAGS: 00010246 [ 849.636101][ T31] RAX: 00000000005ffde8 RBX: 0000000000000000 RCX: 0000000000000000 [ 849.649177][ T31] RDX: 0000001b30820000 RSI: 0000000000600000 RDI: 00007f83bd298eb0 [ 849.657421][ T31] RBP: 0000000000000000 R08: 0000000000000004 R09: 0000000000040000 [ 849.667806][ T31] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 849.680875][ T31] R13: 00000000000927c0 R14: 00000000000abb9e R15: 00007ffcd0095200 [ 849.691487][ T31] [ 849.694579][ T31] [ 849.694579][ T31] Showing all locks held in the system: [ 849.704516][ T31] 1 lock held by khungtaskd/31: [ 849.709410][ T31] #0: ffffffff8e3bf440 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0 [ 849.720681][ T31] 3 locks held by syz-executor/5829: [ 849.730084][ T31] #0: ffff88803207ebc8 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 849.745822][ T31] #1: ffff8880347e0518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 849.758266][ T31] #2: ffff8880347e4950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 849.771051][ T31] 2 locks held by getty/26468: [ 849.775835][ T31] #0: ffff8880313ed0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 849.788702][ T31] #1: ffffc900045b52f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0 [ 849.799180][ T31] 3 locks held by syz.4.9798/27846: [ 849.806921][ T31] #0: ffff888060030e48 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 849.816619][ T31] #1: ffff8880347e0518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 849.828890][ T31] #2: ffff8880347e4950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 849.848700][ T31] 3 locks held by syz.1.9799/27848: [ 849.856035][ T31] #0: ffff888024c3bbc8 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 849.868317][ T31] #1: ffff8880347e0518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 849.878128][ T31] #2: ffff8880347e4950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 849.890461][ T31] 3 locks held by syz.2.9800/27849: [ 849.895676][ T31] #0: ffff8880304a9a88 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 849.907633][ T31] #1: ffff8880347e0518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 849.918394][ T31] #2: ffff8880347e4950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 849.931036][ T31] [ 849.933380][ T31] ============================================= [ 849.933380][ T31] [ 849.946463][ T31] NMI backtrace for cpu 0 [ 849.946483][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G U 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 849.946515][ T31] Tainted: [U]=USER [ 849.946522][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 849.946535][ T31] Call Trace: [ 849.946542][ T31] [ 849.946549][ T31] dump_stack_lvl+0x116/0x1f0 [ 849.946585][ T31] nmi_cpu_backtrace+0x27b/0x390 [ 849.946608][ T31] ? _raw_spin_unlock_irqrestore+0x61/0x80 [ 849.946638][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 849.946661][ T31] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 849.946688][ T31] watchdog+0xf70/0x12c0 [ 849.946724][ T31] ? __pfx_watchdog+0x10/0x10 [ 849.946753][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 849.946785][ T31] ? __kthread_parkme+0x19e/0x250 [ 849.946829][ T31] ? __pfx_watchdog+0x10/0x10 [ 849.946859][ T31] kthread+0x3c2/0x780 [ 849.946893][ T31] ? __pfx_kthread+0x10/0x10 [ 849.946924][ T31] ? __pfx_kthread+0x10/0x10 [ 849.946956][ T31] ? __pfx_kthread+0x10/0x10 [ 849.946999][ T31] ? __pfx_kthread+0x10/0x10 [ 849.947029][ T31] ? rcu_is_watching+0x12/0xc0 [ 849.947051][ T31] ? __pfx_kthread+0x10/0x10 [ 849.947082][ T31] ret_from_fork+0x45/0x80 [ 849.947101][ T31] ? __pfx_kthread+0x10/0x10 [ 849.947131][ T31] ret_from_fork_asm+0x1a/0x30 [ 849.947175][ T31] [ 849.947185][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 850.091266][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G U 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 850.104647][ T31] Tainted: [U]=USER [ 850.108463][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 850.118530][ T31] Call Trace: [ 850.121840][ T31] [ 850.124782][ T31] dump_stack_lvl+0x3d/0x1f0 [ 850.129507][ T31] panic+0x71c/0x800 [ 850.133434][ T31] ? __pfx_panic+0x10/0x10 [ 850.137876][ T31] ? ret_from_fork_asm+0x1a/0x30 [ 850.142843][ T31] ? nmi_backtrace_stall_check+0x6e/0x540 [ 850.148590][ T31] ? irq_work_queue+0xce/0x100 [ 850.153816][ T31] ? watchdog+0xdda/0x12c0 [ 850.158262][ T31] ? watchdog+0xdcd/0x12c0 [ 850.162700][ T31] watchdog+0xdeb/0x12c0 [ 850.166968][ T31] ? __pfx_watchdog+0x10/0x10 [ 850.171677][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 850.176908][ T31] ? __kthread_parkme+0x19e/0x250 [ 850.181952][ T31] ? __pfx_watchdog+0x10/0x10 [ 850.186648][ T31] kthread+0x3c2/0x780 [ 850.190740][ T31] ? __pfx_kthread+0x10/0x10 [ 850.195366][ T31] ? __pfx_kthread+0x10/0x10 [ 850.199973][ T31] ? __pfx_kthread+0x10/0x10 [ 850.204581][ T31] ? __pfx_kthread+0x10/0x10 [ 850.209202][ T31] ? rcu_is_watching+0x12/0xc0 [ 850.213979][ T31] ? __pfx_kthread+0x10/0x10 [ 850.218590][ T31] ret_from_fork+0x45/0x80 [ 850.223019][ T31] ? __pfx_kthread+0x10/0x10 [ 850.227627][ T31] ret_from_fork_asm+0x1a/0x30 [ 850.232421][ T31] [ 850.235506][ T31] Kernel Offset: disabled [ 850.239834][ T31] Rebooting in 86400 seconds..