last executing test programs: 1.714310833s ago: executing program 0 (id=9703): sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, &(0x7f0000004080)={0x0, 0x0, &(0x7f0000004040)={&(0x7f0000000180)={0x18, 0x0, 0x1, 0x70bd26, 0x25dfdbff, {}, [@TIPC_NLA_BEARER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x4}, 0x80) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e"], 0x1ac}}, 0x0) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000080), 0x6, 0xa505}, 0x800}, 0x7, 0x8) 1.48618592s ago: executing program 0 (id=9706): mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, 0x0, 0x6a) recvmmsg$auto(0x3, 0x0, 0xfffe, 0x52, 0x0) 1.206639647s ago: executing program 1 (id=9711): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x2, 0x5, 0x0) io_uring_setup$auto(0x4, 0x0) getsockopt$auto(r0, 0x84, 0xd, 0x0, 0x0) 1.103510381s ago: executing program 2 (id=9713): r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f00000000c0)={0x0, 0x4b, &(0x7f0000000040)={&(0x7f0000000440)={0x2c, r0, 0x13, 0x70bd2c, 0x25dfdbdd, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r2}, @NL80211_ATTR_WIPHY_TX_POWER_SETTING={0x8, 0x61, 0x4}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24004080}, 0x20040894) 976.622359ms ago: executing program 3 (id=9714): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) sysfs$auto(0x2, 0x3e, 0x0) r0 = fsopen$auto(0x0, 0x1) fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0) 951.731434ms ago: executing program 1 (id=9715): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) chroot$auto(&(0x7f0000000080)='}[,&*}\x00') 926.89679ms ago: executing program 2 (id=9716): openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat2$dir(0xffffffffffffff9c, 0x0, &(0x7f0000000240)={0x82000, 0x8, 0x1}, 0x18) readv$auto(0x3, &(0x7f0000001100)={0x0, 0xffff}, 0x1) 808.339202ms ago: executing program 3 (id=9717): futex$auto(0x0, 0x6, 0x7, 0x0, 0x0, 0xc687) rseq$auto(&(0x7f0000000080)={0x8, 0x2, 0x9b, 0x6, 0x1, 0x5}, 0xfffffffb, 0x8, 0x3) r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$auto_FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000080)) 769.529064ms ago: executing program 1 (id=9718): r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='.\x00', 0x40400, 0xd8) fchmod$auto(r0, 0x9) setreuid$auto(0x4, 0x8) open(&(0x7f0000000100)='.\x00', 0x595002, 0x408) 751.345133ms ago: executing program 2 (id=9719): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) madvise$auto_MADV_GUARD_INSTALL(0x0, 0x100000000, 0x66) mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0) mincore$auto(0x1000, 0x8001, 0x0) 724.966159ms ago: executing program 0 (id=9720): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000700), r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000740)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_CHANNEL(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000780)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="01e926bd7000fddbdf252620000008000300", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0x4080}, 0x20000000) 642.33759ms ago: executing program 3 (id=9721): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x15, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) setsockopt$auto(r0, 0x114, 0x1, 0x0, 0x1c) 601.025458ms ago: executing program 1 (id=9722): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0) r0 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) ioctl$auto(r1, 0x2272, r0) 543.531559ms ago: executing program 2 (id=9723): mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) r0 = socket(0x80000000000000a, 0x2, 0x0) getsockopt$auto(r0, 0x88, 0x69, 0x0, 0x0) 519.126085ms ago: executing program 0 (id=9724): r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x48400, 0x41) fchmod$auto(r0, 0x7439) setreuid$auto(0x4, 0x8) mkdir$auto(&(0x7f0000000040)='./file0\x00', 0xfee) 450.024281ms ago: executing program 3 (id=9725): mmap$auto(0x0, 0x40006, 0xdf, 0x200009b72, 0x7, 0x28000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_5={@target_fd=0x5, 0x7f, 0x9c, 0x7b2, 0x1, @relative_fd=0x2, 0x80}, 0x96) bpf$auto(0x15, 0x0, 0x0) 408.780337ms ago: executing program 1 (id=9726): sendmsg$auto_OVS_DP_CMD_DEL(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="3ae90f7c", @ANYRES16=0x0, @ANYBLOB="01002bbd7000ffdbdf2502"], 0x14}, 0x1, 0x0, 0x0, 0x8044}, 0x4001090) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='R'], 0x1ac}}, 0x40000) r0 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 321.594383ms ago: executing program 0 (id=9727): mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0xa, 0x1, 0x84) get_robust_list$auto(0x1, 0xffffffffffffffff, 0x0) getsockopt$auto(r0, 0x0, 0x481, 0x0, 0x0) 255.666561ms ago: executing program 2 (id=9728): socket(0x2, 0x5, 0x0) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) semctl$auto(0x201, 0xfffffffffffffffa, 0x3, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x72, 0x0, 0xc) 214.44412ms ago: executing program 3 (id=9729): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x1c, 0x0) r0 = fsopen$auto(0x0, 0x1) fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0) 116.460975ms ago: executing program 0 (id=9730): close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$auto(0x3, 0x8208ae63, 0x38) 102.734702ms ago: executing program 1 (id=9731): openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x0, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) memfd_create$auto(0x0, 0x4) close_range$auto(0x2, 0x8, 0x0) 38.652304ms ago: executing program 2 (id=9732): r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0) ioctl$auto(r0, 0x5646, r0) read$auto_v4l2_fops_v4l2_dev(r0, &(0x7f0000000280)=""/40, 0x28) ioctl$auto(r0, 0x2400000, 0xffffffffffffffff) 0s ago: executing program 3 (id=9733): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zram0\x00', 0x6e642, 0x0) preadv$auto(0xffffffffffffffff, &(0x7f00000011c0)={&(0x7f00000001c0)="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", 0x8000}, 0x3c, 0x1, 0xac0) write$auto(r0, &(0x7f0000000400)='odev/audio1\x00', 0x100000a3d9) kernel console output (not intermixed with test programs): h0_macvtap: entered promiscuous mode [ 84.551870][ T5824] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 84.557867][ T5827] veth1_macvtap: entered promiscuous mode [ 84.588621][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.632026][ T13] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.677442][ T13] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.686941][ T13] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.713722][ T5826] veth0_macvtap: entered promiscuous mode [ 84.721427][ T13] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.735351][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 84.769601][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.800613][ T5826] veth1_macvtap: entered promiscuous mode [ 84.870023][ T85] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.890553][ T85] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.924379][ T85] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.950907][ T85] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.977244][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 85.004815][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 85.112087][ T85] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.123576][ T85] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.147892][ T3584] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.149094][ T85] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.168806][ T85] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.185668][ T3584] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.259131][ T195] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.286005][ T195] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.321488][ T85] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.346348][ T85] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.405504][ T85] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.413390][ T85] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.510826][ T85] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.534568][ T85] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.595104][ T3584] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.635645][ T3584] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.979799][ T5837] Bluetooth: hci3: command tx timeout [ 85.979825][ T5835] Bluetooth: hci1: command tx timeout [ 85.985237][ T5833] Bluetooth: hci0: command tx timeout [ 85.990965][ T5148] Bluetooth: hci2: command tx timeout [ 88.066137][ T5835] Bluetooth: hci1: command tx timeout [ 88.071629][ T5835] Bluetooth: hci2: command tx timeout [ 88.077520][ T5148] Bluetooth: hci0: command tx timeout [ 88.079489][ T5833] Bluetooth: hci3: command tx timeout [ 89.840300][ T6097] Process accounting resumed [ 91.631022][ T6177] ptrace attach of "./syz-executor exec"[5827] was attempted by "./syz-executor exec"[6177] [ 91.977042][ T24] cfg80211: failed to load regulatory.db [ 92.605544][ T30] audit: type=1800 audit(1843104522.420:2): pid=6217 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.147" name="features" dev="configfs" ino=8760 res=0 errno=0 [ 93.546081][ T6259] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 94.808566][ T30] audit: type=1800 audit(1843104524.630:3): pid=6316 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.195" name="features" dev="configfs" ino=8137 res=0 errno=0 [ 95.704201][ T6354] futex_wake_op: syz.0.212 tries to shift op by -1; fix this program [ 96.517180][ T6391] ima: policy update failed [ 96.545191][ T30] audit: type=1802 audit(1843105553.360:4): pid=6391 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.229" res=0 errno=0 [ 98.238335][ T30] audit: type=1800 audit(1843105555.060:5): pid=6469 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.268" name="version" dev="configfs" ino=10271 res=0 errno=0 [ 98.891755][ T6501] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 100.493210][ T6579] syz.2.321(6579): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 101.098035][ T30] audit: type=1800 audit(1843105557.920:6): pid=6608 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.335" name="features" dev="configfs" ino=9474 res=0 errno=0 [ 101.477196][ T6627] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 102.736421][ T30] audit: type=1800 audit(1843105559.550:7): pid=6686 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.375" name="features" dev="configfs" ino=9593 res=0 errno=0 [ 104.919540][ T5833] Bluetooth: hci1: unexpected event 0x34 length: 726 > 6 [ 106.863068][ T6882] syz.2.471 (6882): attempted to duplicate a private mapping with mremap. This is not supported. [ 109.437928][ T6995] syz.0.525 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 110.266292][ T7023] mmap: syz.3.539 (7023) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 111.886016][ T5833] Bluetooth: hci2: unknown advertising packet type: 0xea [ 116.416043][ T7283] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 118.316941][ T5833] Bluetooth: hci1: unexpected event 0x01 length: 124 > 1 [ 118.405129][ T7377] random: crng reseeded on system resumption [ 120.022259][ T7448] Process accounting paused [ 120.437104][ T7475] capability: warning: `syz.0.759' uses deprecated v2 capabilities in a way that may be insecure [ 120.685979][ T5833] Bluetooth: hci2: unexpected event 0x32 length: 727 > 9 [ 120.701674][ T7488] __vm_enough_memory: pid: 7488, comm: syz.1.765, bytes: 4398046511104 not enough memory for the allocation [ 120.732848][ T7489] random: crng reseeded on system resumption [ 121.380756][ T7517] random: crng reseeded on system resumption [ 121.647388][ T5833] Bluetooth: hci2: unexpected event 0x23 length: 127 > 13 [ 123.525973][ T7620] ======================================================= [ 123.525973][ T7620] WARNING: The mand mount option has been deprecated and [ 123.525973][ T7620] and is ignored by this kernel. Remove the mand [ 123.525973][ T7620] option from the mount to silence this warning. [ 123.525973][ T7620] ======================================================= [ 124.489124][ T30] audit: type=1800 audit(1843106604.309:8): pid=7662 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.852" name="dummy_udc" dev="gadgetfs" ino=6791 res=0 errno=0 [ 125.284610][ T5833] Bluetooth: hci3: unexpected event 0x3e length: 358 > 260 [ 125.284647][ T5833] Bluetooth: hci3: unexpected subevent 0x1b length: 357 > 260 [ 126.947261][ T7778] futex_wake_op: syz.1.910 tries to shift op by -2048; fix this program [ 127.795805][ T30] audit: type=1800 audit(1843106607.618:9): pid=7820 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.929" name="trace_pipe" dev="tracefs" ino=3531 res=0 errno=0 [ 127.938049][ T30] audit: type=1800 audit(1843106607.758:10): pid=7824 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.932" name="dbroot" dev="configfs" ino=13583 res=0 errno=0 [ 128.697333][ T30] audit: type=1800 audit(1843106608.517:11): pid=7860 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.950" name="members" dev="configfs" ino=14360 res=0 errno=0 [ 132.952950][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.959478][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 137.333230][ T8229] capability: warning: `syz.3.1132' uses 32-bit capabilities (legacy support in use) [ 138.433226][ T8278] can: request_module (can-proto-5) failed. [ 138.974316][ T8311] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 139.007194][ T30] audit: type=1800 audit(1843124962.824:12): pid=8311 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1170" name="trace_pipe" dev="tracefs" ino=3486 res=0 errno=0 [ 143.456097][ T30] audit: type=1800 audit(1843124967.262:13): pid=8528 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1280" name="lu_gp_id" dev="configfs" ino=15660 res=0 errno=0 [ 144.774446][ T8591] ptrace attach of "./syz-executor exec"[5824] was attempted by "./syz-executor exec"[8591] [ 146.215265][ T8652] Unable to find swap-space signature [ 146.746974][ T5833] Bluetooth: hci0: unexpected event 0x03 length: 123 > 11 [ 147.635221][ T8721] nfs: Bad value for 'source' [ 149.470740][ T8711] kexec: Could not allocate control_code_buffer [ 150.394368][ T8778] Process accounting resumed [ 153.253844][ T8947] i2c i2c-0: new_device: Invalid device name [ 155.733111][ T9046] usb usb15: usbfs: process 9046 (syz.1.1537) did not claim interface 0 before use [ 157.761699][ T9139] program syz.0.1582 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 158.202233][ T9160] udc dummy_udc.0: soft-connect without a gadget driver [ 158.901021][ T9192] ecryptfs_miscdev_response: (sizeof(*msg) + msg->data_len) = [1067213646]; data_size = [146]. Invalid packet. [ 158.913087][ T9192] ecryptfs_miscdev_write: Failed to deliver miscdev response to requesting operation; rc = [-22] [ 159.737637][ T9229] rnbd_client L213: map_device: Parameters missing [ 162.695173][ T9368] QAT: failed to copy from user cfg_data. [ 164.305835][ T9441] cifs: Unknown parameter 'no+ 1`rsFn)aHāh`9kA}1\D@.ZCg^' [ 164.450778][ T9447] vhci_hcd vhci_hcd.2: USB_PORT_FEAT_BH_PORT_RESET req not supported for USB 2.0 roothub [ 165.212346][ T30] audit: type=1400 audit(1843124989.020:14): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=9480 comm="syz.2.1750" [ 165.871003][ T9513] binder: 9512:9513 ioctl c0306201 200000000000 returned -14 [ 166.013473][ T9519] kstrtoul() returned -22 for lu_gp_id [ 166.019893][ T30] audit: type=1800 audit(1843124989.810:15): pid=9519 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1768" name="lu_gp_id" dev="configfs" ino=18837 res=0 errno=0 [ 166.999246][ T9565] vhci_hcd vhci_hcd.2: USB_PORT_FEAT_BH_PORT_RESET req not supported for USB 2.0 roothub [ 167.744112][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 167.750531][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 168.468936][ T9633] sctp: Changing rto_alpha or rto_beta may lead to suboptimal rtt/srtt estimations! [ 168.512064][ T9634] [U] ^\ [ 168.643830][ T9643] scsi_dev_info_list_add_str: bad dev info string ')zD 5fk+*X#R84*VsndvqQW}~YrȀ-8VGDƘLB%v†v}Ypq|?O[,! 7xWDr%[}E$3?G9Ff=lrGH;2L<=|8 -c Fո"[v9q4Mmvqk[(iNDСMX PSqqX4X`V!;r֍)y]WzfIH0,v{q8שUܹ䑉m؛HTwCz-nR%2]x05oՕ|3>lS*L/Cdgӑ[C=Cwem)l#' ''S.sHgi-TY%ܹF*8nFTH?i{' '' [ 173.929478][ T5929] Process accounting resumed [ 175.885215][ T9965] block2mtd: device name too long [ 176.561631][ T9993] hub 1-0:1.0: USB hub found [ 176.566817][ T9993] hub 1-0:1.0: 1 port detected [ 176.987371][T10012] block2mtd: illegal erase size [ 177.145535][T10016] hub 1-0:1.0: USB hub found [ 177.166758][T10016] hub 1-0:1.0: 1 port detected [ 177.722833][T10044] hub 1-0:1.0: USB hub found [ 177.757410][T10044] hub 1-0:1.0: 1 port detected [ 178.535860][ T195] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 178.562709][T10078] ACPI: EC: Assuming SCI_EVT clearing on QR_EC writes [ 178.982283][T10097] hub 1-0:1.0: USB hub found [ 179.009955][T10097] hub 1-0:1.0: 1 port detected [ 179.197636][T10107] synth uevent: /module/null_blk: unknown uevent action string [ 180.252663][T10163] program syz.0.2077 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 180.533695][T10171] Process accounting paused [ 180.658667][ C0] unchecked MSR access error: WRMSR to 0x418 (tried to write 0x0000000000000322) at rIP: 0xffffffff81b1213a (__mcheck_cpu_init_prepare_banks+0x18a/0x380) [ 180.674346][ C0] Call Trace: [ 180.677640][ C0] [ 180.680497][ C0] ? __pfx___mcheck_cpu_init_prepare_banks+0x10/0x10 [ 180.687198][ C0] ? sched_clock_cpu+0x6c/0x570 [ 180.692068][ C0] ? __pfx_mce_cpu_restart+0x10/0x10 [ 180.697369][ C0] mce_cpu_restart+0xd5/0x1f0 [ 180.702066][ C0] __flush_smp_call_function_queue+0x281/0x960 [ 180.708232][ C0] __sysvec_call_function_single+0x81/0x470 [ 180.714142][ C0] sysvec_call_function_single+0x51/0xc0 [ 180.719778][ C0] asm_sysvec_call_function_single+0x1a/0x20 [ 180.725765][ C0] RIP: 0010:stack_access_ok+0xc/0x1d0 [ 180.731148][ C0] Code: 41 5f 5d e9 56 01 da 09 e8 31 ce d6 09 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 b8 00 00 00 00 00 fc ff df 41 55 <41> 54 49 89 d4 48 89 fa 55 48 c1 ea 03 48 89 f5 53 48 89 fb 48 83 [ 180.750769][ C0] RSP: 0000:ffffc90000007998 EFLAGS: 00000246 [ 180.756858][ C0] RAX: dffffc0000000000 RBX: 0000000000000002 RCX: ffffffff9187586c [ 180.764830][ C0] RDX: 0000000000000008 RSI: ffffc90000007da0 RDI: ffffc90000007a18 [ 180.772806][ C0] RBP: ffffc90000007a60 R08: ffffffff91875870 R09: 0000000000000007 [ 180.780777][ C0] R10: 0000000000000200 R11: 00000000000173b2 R12: ffffc90000007a68 [ 180.788751][ C0] R13: ffffc90000007a18 R14: ffffc90000007da8 R15: ffffc90000007a4c [ 180.796741][ C0] unwind_next_frame+0xb0b/0x1ea0 [ 180.801782][ C0] ? __kasan_slab_free+0x5f/0x80 [ 180.806730][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 180.812891][ C0] arch_stack_walk+0x94/0xf0 [ 180.817495][ C0] ? __kasan_slab_free+0x5f/0x80 [ 180.822443][ C0] stack_trace_save+0x8e/0xc0 [ 180.827126][ C0] ? __pfx_stack_trace_save+0x10/0x10 [ 180.832504][ C0] ? __lock_acquire+0x4a5/0x2630 [ 180.837452][ C0] kasan_save_stack+0x30/0x50 [ 180.842130][ C0] ? kasan_save_stack+0x30/0x50 [ 180.846980][ C0] ? kasan_save_track+0x14/0x30 [ 180.851829][ C0] ? kasan_save_free_info+0x3b/0x70 [ 180.857039][ C0] ? __kasan_slab_free+0x5f/0x80 [ 180.862019][ C0] kasan_save_track+0x14/0x30 [ 180.866696][ C0] kasan_save_free_info+0x3b/0x70 [ 180.871745][ C0] __kasan_slab_free+0x5f/0x80 [ 180.876532][ C0] __rcu_free_sheaf_prepare+0x5d/0x2f0 [ 180.882011][ C0] ? rcu_core+0x59d/0x10d0 [ 180.886456][ C0] ? rcu_core+0x59d/0x10d0 [ 180.890888][ C0] ? rcu_core+0x59d/0x10d0 [ 180.895316][ C0] rcu_free_sheaf+0x1a/0xe0 [ 180.899837][ C0] rcu_core+0x5a2/0x10d0 [ 180.904099][ C0] ? __pfx_rcu_core+0x10/0x10 [ 180.908788][ C0] ? ktime_get+0x1a7/0x300 [ 180.913213][ C0] ? mark_held_locks+0x40/0x70 [ 180.917992][ C0] handle_softirqs+0x1eb/0x9e0 [ 180.922771][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 180.928077][ C0] __irq_exit_rcu+0xef/0x150 [ 180.932675][ C0] irq_exit_rcu+0x9/0x30 [ 180.936918][ C0] sysvec_apic_timer_interrupt+0xa3/0xc0 [ 180.942553][ C0] [ 180.945481][ C0] [ 180.948414][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 180.954405][ C0] RIP: 0010:__sanitizer_cov_trace_pc+0x3f/0x70 [ 180.960577][ C0] Code: 05 12 a9 00 01 ff 00 74 1b f6 c4 01 74 07 a9 00 00 ff 00 74 05 c3 cc cc cc cc 8b 82 a4 16 00 00 85 c0 74 f1 8b 82 80 16 00 00 <83> f8 02 75 e6 48 8b 8a 88 16 00 00 8b 92 84 16 00 00 48 8b 01 48 [ 180.980196][ C0] RSP: 0000:ffffc9000ddae9a8 EFLAGS: 00000246 [ 180.986281][ C0] RAX: 0000000000000000 RBX: 000000000000000f RCX: ffffffff8280aed2 [ 180.994253][ C0] RDX: ffff8880344e0000 RSI: ffffffff82809ba3 RDI: 000000000000000f [ 181.002224][ C0] RBP: 0000000000000000 R08: 0000000000000007 R09: 0000000000000000 [ 181.010194][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 181.018163][ C0] R13: 0000000000000001 R14: dffffc0000000000 R15: 0000000000000000 [ 181.026145][ C0] ? page_table_check_set+0x4d2/0xa10 [ 181.031536][ C0] ? __nr_to_section+0x13/0xe0 [ 181.036334][ C0] __nr_to_section+0x13/0xe0 [ 181.040930][ C0] page_table_check_set+0x3b/0xa10 [ 181.046054][ C0] __page_table_check_ptes_set+0x27a/0x4e0 [ 181.051870][ C0] ? __pfx___page_table_check_ptes_set+0x10/0x10 [ 181.058204][ C0] ? find_held_lock+0x2b/0x80 [ 181.062897][ C0] page_vma_mkclean_one.constprop.0+0x509/0x7b0 [ 181.069156][ C0] ? __pfx_page_vma_mkclean_one.constprop.0+0x10/0x10 [ 181.075944][ C0] page_mkclean_one+0x1cd/0x2b0 [ 181.080805][ C0] ? __pfx_page_mkclean_one+0x10/0x10 [ 181.086194][ C0] ? __pfx___might_resched+0x10/0x10 [ 181.091495][ C0] ? vma_interval_tree_iter_next+0x103/0x240 [ 181.097492][ C0] __rmap_walk_file+0x383/0x680 [ 181.102361][ C0] rmap_walk_file+0x1d8/0x2a0 [ 181.107046][ C0] folio_mkclean+0x2af/0x4e0 [ 181.111644][ C0] ? __pfx_folio_mkclean+0x10/0x10 [ 181.116768][ C0] ? __pfx_page_mkclean_one+0x10/0x10 [ 181.122150][ C0] ? __pfx_invalid_mkclean_vma+0x10/0x10 [ 181.127787][ C0] ? bio_add_folio+0x76/0x90 [ 181.132379][ C0] ? wbc_account_cgroup_owner+0x90/0x370 [ 181.138020][ C0] folio_clear_dirty_for_io+0x1ba/0x820 [ 181.143575][ C0] mpage_submit_folio+0x84/0x330 [ 181.148523][ C0] mpage_process_page_bufs+0x473/0x8d0 [ 181.154000][ C0] mpage_prepare_extent_to_map+0xb50/0x1920 [ 181.159919][ C0] ? __pfx_mpage_prepare_extent_to_map+0x10/0x10 [ 181.166300][ C0] ? kmem_cache_alloc_noprof+0x292/0x6e0 [ 181.171976][ C0] ? ext4_init_io_end+0x24/0x170 [ 181.176943][ C0] ext4_do_writepages+0x9f9/0x3f50 [ 181.182095][ C0] ? __pfx_ext4_do_writepages+0x10/0x10 [ 181.187679][ C0] ? ext4_writepages+0x347/0x790 [ 181.192637][ C0] ext4_writepages+0x347/0x790 [ 181.197421][ C0] ? __pfx_ext4_writepages+0x10/0x10 [ 181.202737][ C0] ? __pfx_ext4_writepages+0x10/0x10 [ 181.208037][ C0] do_writepages+0x278/0x600 [ 181.212640][ C0] ? __pfx_do_writepages+0x10/0x10 [ 181.217769][ C0] __writeback_single_inode+0x164/0x13c0 [ 181.223415][ C0] ? find_held_lock+0x2b/0x80 [ 181.228100][ C0] ? __pfx___writeback_single_inode+0x10/0x10 [ 181.234287][ C0] ? do_raw_spin_unlock+0x145/0x1e0 [ 181.239534][ C0] writeback_sb_inodes+0x766/0x1c70 [ 181.244768][ C0] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 181.250458][ C0] ? _raw_spin_unlock+0x28/0x50 [ 181.255329][ C0] ? move_expired_inodes+0x5ea/0x8f0 [ 181.260636][ C0] __writeback_inodes_wb+0xf8/0x2d0 [ 181.265866][ C0] ? __pfx___writeback_inodes_wb+0x10/0x10 [ 181.271690][ C0] ? queue_io+0x287/0x550 [ 181.276033][ C0] wb_writeback+0x755/0xbe0 [ 181.280557][ C0] ? __pfx_wb_writeback+0x10/0x10 [ 181.285607][ C0] ? mark_held_locks+0x40/0x70 [ 181.290390][ C0] wb_workfn+0x74d/0xc00 [ 181.294657][ C0] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 181.300569][ C0] ? __pfx_wb_workfn+0x10/0x10 [ 181.305358][ C0] ? rcu_is_watching+0x12/0xc0 [ 181.310146][ C0] process_one_work+0xa23/0x19a0 [ 181.315130][ C0] ? __pfx_process_one_work+0x10/0x10 [ 181.320554][ C0] ? __pfx_wb_workfn+0x10/0x10 [ 181.325370][ C0] worker_thread+0x5ef/0xe50 [ 181.330004][ C0] ? kthread+0x13a/0x450 [ 181.334266][ C0] ? __pfx_worker_thread+0x10/0x10 [ 181.339393][ C0] kthread+0x370/0x450 [ 181.343479][ C0] ? __pfx_kthread+0x10/0x10 [ 181.348090][ C0] ret_from_fork+0x754/0xd80 [ 181.352712][ C0] ? __pfx_ret_from_fork+0x10/0x10 [ 181.357859][ C0] ? __switch_to+0x7b4/0x1120 [ 181.362553][ C0] ? __pfx_kthread+0x10/0x10 [ 181.367164][ C0] ret_from_fork_asm+0x1a/0x30 [ 181.371955][ C0] [ 181.861483][ T5833] Bluetooth: hci0: unexpected subevent 0x0c length: 118 > 5 [ 182.600391][T10243] dlm: plock device version mismatch: kernel (1.2.0), user (1489226698.240317300.1121487582) [ 183.008714][T10265] scsi_dev_info_list_add_str: bad dev info string '' '' '' [ 183.965708][T10311] usb usb11: usbfs: interface 0 claimed by hub while 'syz.1.2150' sets config #7 [ 184.746031][T10349] kAFS: Invalid Command on /proc/fs/afs/cells file [ 185.038918][T10363] blkio.reset_stats is deprecated [ 185.913846][T10408] block loop4: the capability attribute has been deprecated. [ 185.934842][ T30] audit: type=1800 audit(1843125009.740:16): pid=10409 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2199" name="dbroot" dev="configfs" ino=21594 res=0 errno=0 [ 186.284477][T10425] tipc: Can't bind to reserved service type 63 [ 186.812596][T10449] ptrace attach of "./syz-executor exec"[5826] was attempted by "./syz-executor exec"[10449] [ 187.664612][T10489] nvme_fabrics: unknown parameter or missing value '@' in ctrl creation request [ 189.599811][T10586] queue_state_write: operation too long [ 189.605643][T10586] queue_state_write: use 'run', 'start' or 'kick' [ 191.734932][T10677] smpboot: CPU 1 is now offline [ 193.030930][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 193.037364][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 196.598958][T10894] Setting dangerous option i915.mitigations - tainting kernel [ 196.650996][T10894] Bad "i915.mitigations=CmâUQF\ ", 'CmâUQF\' is unknown [ 198.634768][T10973] RDS: rds_bind could not find a transport for 7bc:c94c:4e37:70c4::, load rds_tcp or rds_rdma? [ 199.623207][T11007] random: crng reseeded on system resumption [ 200.797791][ T30] audit: type=1800 audit(1843125024.590:17): pid=11046 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2495" name="members" dev="configfs" ino=24150 res=0 errno=0 [ 202.231438][ T5837] Bluetooth: hci2: command 0x0406 tx timeout [ 206.707557][ T5828] Bluetooth: hci3: command 0x0406 tx timeout [ 206.713601][ T5828] Bluetooth: hci0: command 0x0406 tx timeout [ 206.719697][ T5148] Bluetooth: hci1: command 0x0406 tx timeout [ 207.192924][T11264] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 207.327345][T11264] CIFS mount error: No usable UNC path provided in device string! [ 207.327345][T11264] [ 207.397762][T11264] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 208.263070][T11300] random: crng reseeded on system resumption [ 208.760258][T11316] bond0: invalid ARP target specified [ 209.926325][T11354] random: crng reseeded on system resumption [ 210.057534][T11360] ICMPv6: process `syz.1.2648' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 210.566512][T11372] ACPI: \_SB_.LNKS: No IRQ available. Try pci=noacpi or acpi=off [ 210.644432][T11372] pci 0000:00:01.3: PCI INT A: no GSI [ 210.662818][T11379] Process accounting resumed [ 211.127696][T11403] virtio-pci 0000:00:04.0: [Firmware Bug]: Overriding NUMA node to -1. Contact your vendor for updates. [ 211.407920][T11411] nvme_fcloop: unknown parameter or missing value '1' [ 211.940450][ T30] audit: type=1800 audit(4294967310.657:18): pid=11432 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2685" name="discovery_nqn" dev="configfs" ino=25395 res=0 errno=0 [ 214.196896][T11524] syz.0.2730 uses obsolete (PF_INET,SOCK_PACKET) [ 215.219593][T11567] usb usb13: check_ctrlrecip: process 11567 (syz.2.2750) requesting ep 01 but needs 81 [ 215.263325][T11570] bond0: no command found in slaves file - use +ifname or -ifname [ 215.284855][T11567] usb usb13: usbfs: process 11567 (syz.2.2750) did not claim interface 0 before use [ 217.439826][T11656] i2c i2c-0: delete_device: Can't find device in list [ 219.152445][T11731] vivid-007: ================= START STATUS ================= [ 219.200482][T11731] vivid-007: Generate PTS: true [ 219.239020][T11731] vivid-007: Generate SCR: true [ 219.261786][T11731] tpg source WxH: 320x240 (Y'CbCr) [ 219.266946][T11731] tpg field: 1 [ 219.310758][T11731] tpg crop: (0,0)/320x240 [ 219.327423][T11731] tpg compose: (0,0)/320x240 [ 219.361092][T11731] tpg colorspace: 8 [ 219.379407][T11731] tpg transfer function: 0/0 [ 219.409776][T11731] tpg Y'CbCr encoding: 0/0 [ 219.437479][T11731] tpg quantization: 0/0 [ 219.454789][T11731] tpg RGB range: 0/2 [ 219.479934][T11731] vivid-007: ================== END STATUS ================== [ 220.165414][T11768] < [ 221.060019][T11806] block2mtd: error: cannot open device inX±jFBB>U;߸Ilk [ 222.367413][T11862] ima: policy update failed [ 222.380041][ T30] audit: type=1802 audit(4294967321.087:19): pid=11862 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.2899" res=0 errno=0 [ 223.107366][ T5835] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 223.107397][ T5835] Bluetooth: hci0: unexpected subevent 0x0e length: 725 > 15 [ 223.123872][ T5835] Bluetooth: hci0: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f [ 223.493301][T11912] ima: policy update failed [ 223.520384][ T30] audit: type=1802 audit(4294967322.237:20): pid=11912 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.2922" res=0 errno=0 [ 223.915883][T11930] process 'syz.0.2931' launched '/dev/fd/3' with NULL argv: empty string added [ 225.354168][T11998] binder: binder_mmap: 11996 0-1000 bad vm_flags failed -1 [ 225.514135][T12004] busy [ 228.568314][T12140] i8042 aux 00:02: in use; can't configure [ 230.180315][T12213] bond0: no command found in slaves file - use +ifname or -ifname [ 230.257293][T12215] syz.1.3069: vmalloc error: size 18446744073709551615, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 230.325885][T12215] CPU: 0 UID: 0 PID: 12215 Comm: syz.1.3069 Tainted: G U I syzkaller #0 PREEMPT(full) [ 230.325913][T12215] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND [ 230.325919][T12215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 230.325928][T12215] Call Trace: [ 230.325934][T12215] [ 230.325940][T12215] dump_stack_lvl+0x100/0x190 [ 230.325968][T12215] warn_alloc.cold+0x95/0x1c1 [ 230.325994][T12215] ? __pfx_warn_alloc+0x10/0x10 [ 230.326019][T12215] ? __lock_acquire+0x4a5/0x2630 [ 230.326048][T12215] __vmalloc_node_range_noprof+0x1252/0x1530 [ 230.326071][T12215] ? rcu_is_watching+0x12/0xc0 [ 230.326094][T12215] ? trace_contention_end+0x140/0x180 [ 230.326115][T12215] ? dvb_dvr_do_ioctl+0x15d/0x270 [ 230.326134][T12215] ? dvb_dvr_do_ioctl+0x7e/0x270 [ 230.326150][T12215] ? tomoyo_path_number_perm+0x28f/0x580 [ 230.326168][T12215] ? tomoyo_path_number_perm+0x28f/0x580 [ 230.326187][T12215] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 230.326205][T12215] ? __pfx___mutex_lock+0x10/0x10 [ 230.326226][T12215] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 230.326243][T12215] ? futex_wake+0x1ad/0x530 [ 230.326267][T12215] ? dvb_dvr_do_ioctl+0x15d/0x270 [ 230.326283][T12215] __vmalloc_node_noprof+0xad/0xf0 [ 230.326302][T12215] ? dvb_dvr_do_ioctl+0x15d/0x270 [ 230.326322][T12215] dvb_dvr_do_ioctl+0x15d/0x270 [ 230.326342][T12215] dvb_usercopy+0x167/0x340 [ 230.326357][T12215] ? __pfx_dvb_dvr_do_ioctl+0x10/0x10 [ 230.326375][T12215] ? __pfx_dvb_usercopy+0x10/0x10 [ 230.326398][T12215] ? __fget_files+0x21f/0x3d0 [ 230.326417][T12215] dvb_dvr_ioctl+0x29/0x40 [ 230.326432][T12215] ? __pfx_dvb_dvr_ioctl+0x10/0x10 [ 230.326449][T12215] __x64_sys_ioctl+0x18e/0x210 [ 230.326472][T12215] do_syscall_64+0x106/0xf80 [ 230.326487][T12215] ? clear_bhb_loop+0x40/0x90 [ 230.326504][T12215] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 230.326520][T12215] RIP: 0033:0x7f683f59c819 [ 230.326539][T12215] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 230.326554][T12215] RSP: 002b:00007f68403ad028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 230.326569][T12215] RAX: ffffffffffffffda RBX: 00007f683f815fa0 RCX: 00007f683f59c819 [ 230.326579][T12215] RDX: ffffffffffffffff RSI: 0000000000006f2d RDI: 0000000000000003 [ 230.326588][T12215] RBP: 00007f683f632c91 R08: 0000000000000000 R09: 0000000000000000 [ 230.326597][T12215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 230.326605][T12215] R13: 00007f683f816038 R14: 00007f683f815fa0 R15: 00007ffd95a713d8 [ 230.326626][T12215] [ 230.326635][T12215] Mem-Info: [ 230.768684][T12228] sd 0:0:1:0: PR command failed: 1026 [ 230.774113][T12228] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 230.796420][T12228] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 230.850477][T11936] Bluetooth: hci0: unexpected event 0x3e length: 0 < 1 [ 231.654905][T12215] active_anon:5894 inactive_anon:0 isolated_anon:0 [ 231.654905][T12215] active_file:16425 inactive_file:40214 isolated_file:0 [ 231.654905][T12215] unevictable:768 dirty:201 writeback:0 [ 231.654905][T12215] slab_reclaimable:10652 slab_unreclaimable:91269 [ 231.654905][T12215] mapped:24333 shmem:1358 pagetables:1055 [ 231.654905][T12215] sec_pagetables:0 bounce:0 [ 231.654905][T12215] kernel_misc_reclaimable:0 [ 231.654905][T12215] free:1327027 free_pcp:16995 free_cma:0 [ 231.729171][T12266] overlayfs: "check_copy_up" module option is obsolete [ 231.891176][T12215] Node 0 active_anon:25700kB inactive_anon:0kB active_file:65700kB inactive_file:160660kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:97428kB dirty:804kB writeback:0kB shmem:3896kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:4096kB kernel_stack:10880kB pagetables:4128kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 232.077433][T12215] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:196kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:64kB pagetables:144kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 232.242376][T12215] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 232.404021][T12215] lowmem_reserve[]: 0 2477 2478 2478 2478 [ 232.438469][T12215] Node 0 DMA32 free:1378784kB boost:0kB min:34304kB low:42880kB high:51456kB reserved_highatomic:0KB free_highatomic:0KB active_anon:25612kB inactive_anon:0kB active_file:65700kB inactive_file:160660kB unevictable:1536kB writepending:884kB zspages:0kB present:3129332kB managed:2537260kB mlocked:0kB bounce:0kB free_pcp:37632kB local_pcp:37632kB free_cma:0kB [ 232.495812][T12293] sd 0:0:1:0: PR command failed: 1026 [ 232.508007][T12293] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 232.543630][T12293] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 232.630588][T12215] lowmem_reserve[]: 0 0 1 1 1 [ 232.635367][T12215] Node 0 Normal free:0kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1052kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:4kB free_cma:0kB [ 232.880137][T12215] lowmem_reserve[]: 0 0 0 0 0 [ 232.884979][T12215] Node 1 Normal free:3913964kB boost:0kB min:55584kB low:69480kB high:83376kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:196kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:28500kB local_pcp:28500kB free_cma:0kB [ 233.152032][T12215] lowmem_reserve[]: 0 0 0 0 0 [ 233.156768][T12215] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 233.264962][T12215] Node 0 DMA32: 4802*4kB (UME) 2665*8kB (UM) 1457*16kB (UME) 470*32kB (UME) 199*64kB (UM) 242*128kB (UM) 129*256kB (UME) 99*512kB (UM) 35*1024kB (UME) 3*2048kB (UM) 276*4096kB (UM) = 1378784kB [ 233.374483][T12215] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 233.390049][T12321] aoe: can't write to that file. [ 233.443954][T12215] Node 1 Normal: 7*4kB (U) 8*8kB (U) 15*16kB (U) 5*32kB (U) 4*64kB (UM) 2*128kB (M) 3*256kB (M) 3*512kB (UM) 1*1024kB (M) 3*2048kB (U) 953*4096kB (UM) = 3913964kB [ 233.529555][T12215] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 233.602062][T12215] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 233.635291][T12215] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 233.712962][T12215] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 233.770837][T12215] 57995 total pagecache pages [ 233.795050][T12215] 0 pages in swap cache [ 233.810590][T12215] Free swap = 124996kB [ 233.859607][T12215] Total swap = 124996kB [ 233.880241][T12215] 2097051 pages RAM [ 233.899215][T12215] 0 pages HighMem/MovableOnly [ 233.919139][T12215] 430858 pages reserved [ 233.941189][T12215] 0 pages cma reserved [ 234.227025][T12226] Bluetooth: hci1: Unexpected cc 0x7c89 with no status [ 235.636142][T12409] kAFS: Invalid Command on /proc/fs/afs/cells file [ 237.076722][T12472] kAFS: unparsable volume name [ 237.457758][T12491] random: crng reseeded on system resumption [ 238.452094][T12531] warning: `syz.0.3222' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 240.806521][T12634] Process accounting paused [ 242.124306][T12226] Bluetooth: hci0: Unexpected cc 0x7c89 with no status [ 243.397353][T12744] program syz.3.3325 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 244.059081][T12226] Bluetooth: hci3: Unexpected cc 0x7c89 with no status [ 248.015586][T12935] delete_channel: no stack [ 248.197805][T12946] nvme_fcloop: unknown parameter or missing value '' [ 248.804474][T12974] i2c i2c-0: delete_device: Can't parse I2C address [ 249.403976][T13001] bdi 43:192: the stable_pages_required attribute has been removed. Use the stable_writes queue attribute instead. [ 251.912081][T13110] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 252.126633][T13119] batman_adv: Routing algorithm '7' is not supported [ 253.222542][T13167] ptrace attach of "./syz-executor exec"[5827] was attempted by ""[13167] [ 255.839457][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.845752][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.149041][T13290] usb usb22: usbfs: process 13290 (syz.0.3595) did not claim interface 1 before use [ 257.394358][T13342] Line length is too long: Should be less than 4094 [ 258.480487][T13387] ubi31: attaching mtd0 [ 258.511721][T13387] ubi31: scanning is finished [ 258.537378][T13387] ubi31 error: ubi_read_volume_table: the layout volume was not found [ 258.710359][T13387] ubi31 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 258.742533][T13361] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 258.822434][T13395] __vm_enough_memory: pid: 13395, comm: syz.2.3647, bytes: 9223372036854775808 not enough memory for the allocation [ 261.769381][T13506] could not allocate digest TFM handle [ 262.527385][ T30] audit: type=1800 audit(4294967361.237:21): pid=13548 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3721" name="lu_gp_id" dev="configfs" ino=32203 res=0 errno=0 [ 262.556889][T13548] ALUA LU Group already has a valid ID, ignoring request [ 263.567815][T13590] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 264.220684][T13614] delete_channel: no stack [ 265.354904][T13663] usb usb2: usbfs: process 13663 (syz.2.3779) did not claim interface 4 before use [ 265.376296][T13667] [ 265.483507][T13670] ACPI: Can not change Invalid GPE/Fixed Event status [ 267.006805][T13733] zram0: detected capacity change from 0 to 16 [ 267.019303][T13734] CIFS mount error: No usable UNC path provided in device string! [ 267.019303][T13734] [ 267.063387][T13734] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 267.637774][T13760] vivid-007: ================= START STATUS ================= [ 267.669230][T13760] vivid-007: Enable Output Cropping: true [ 267.727374][T13760] vivid-007: Enable Output Composing: true [ 267.753573][T13760] vivid-007: Enable Output Scaler: true [ 267.795207][T13760] vivid-007: Tx RGB Quantization Range: Automatic [ 267.823357][T13760] vivid-007: Transmit Mode: HDMI [ 267.867016][T13760] vivid-007: Hotplug Present: 0x00000000 [ 267.927816][T13760] vivid-007: RxSense Present: 0x00000000 [ 267.957592][T13760] vivid-007: EDID Present: 0x00000000 [ 268.001868][T13760] vivid-007: ================== END STATUS ================== [ 269.833713][T13846] usb usb4: usbfs: process 13846 (syz.1.3860) did not claim interface 0 before use [ 269.861640][T13847] bond0: option mode: unable to set because the bond device is up [ 270.347537][T13866] nfs4: Unknown parameter 'ECH];^YىZL`~^g ' [ 271.154613][T13893] Process accounting resumed [ 272.116708][T13928] program syz.3.3891 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 272.184188][T13928] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 274.265568][T13999] binder: 13998:13999 ioctl c0306201 0 returned -14 [ 274.566722][T14012] QAT: Device 250 not found [ 274.937436][T14026] ICMPv6: process `syz.3.3930' is using deprecated sysctl (syscall) net.ipv6.neigh.veth0_to_bridge.base_reachable_time - use net.ipv6.neigh.veth0_to_bridge.base_reachable_time_ms instead [ 277.730024][ T30] audit: type=1800 audit(4294967376.447:22): pid=14133 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3972" name="dbroot" dev="configfs" ino=33859 res=0 errno=0 [ 277.759812][T14133] db_root: cannot open: /dev/audio1 [ 277.765161][T14133] db_root: not a directory: /dev/audio1 [ 277.962256][ T30] audit: type=1800 audit(4294967376.677:23): pid=14140 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3976" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0 [ 281.912122][T14283] uvcvideo: [Deprecated]: nodrop parameter will be eventually removed. [ 282.397889][ T30] audit: type=1806 audit(4294967381.107:24): res=-14 [ 285.892555][T14439] zram: Added device: zram1 [ 286.139708][T14452] block2mtd: error: cannot open device /sys/module/block2mtd/parameters/block2mtd [ 286.928980][T14487] bond0: option slaves: interface -]=,Don?I|a CB does not exist! [ 288.686806][T14563] random: crng reseeded on system resumption [ 290.263234][T14626] i2c i2c-0: new_device: Missing parameters [ 290.517419][ T30] audit: type=1800 audit(4294967389.227:25): pid=14639 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.4221" name="dbroot" dev="configfs" ino=35431 res=0 errno=0 [ 292.402814][T14705] zswap: compressor Z(u not available [ 292.447384][T14718] program syz.0.4259 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 294.986997][T12226] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 295.540128][ T30] audit: type=1807 audit(4294967394.257:26): UNKNOWN=0"]$|1j0B|dӉO+/xWӦ^gq%ḦrO res=0 [ 295.557733][T14840] ima: policy update failed [ 295.615109][ T30] audit: type=1802 audit(4294967394.257:27): pid=14841 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.1.4318" res=0 errno=0 [ 295.765910][ T30] audit: type=1802 audit(4294967394.297:28): pid=14840 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.4318" res=0 errno=0 [ 296.650553][T14881] bond0: invalid ARP target specified [ 297.029775][T12226] Bluetooth: hci3: command 0x0406 tx timeout [ 297.855382][T14927] delete_channel: no stack [ 298.017606][T14935] process 'syz.1.4364' launched '/dev/fd/3' with NULL argv: empty string added [ 299.108350][T14827] Bluetooth: hci3: command 0x0406 tx timeout [ 299.891182][T15008] mmap: syz.1.4401 (15008) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 300.105065][T15017] vhci_hcd vhci_hcd.1: invalid port number 16 [ 300.133514][T15017] vhci_hcd vhci_hcd.1: USB_PORT_FEAT_SUSPEND req not supported for USB 3.0 roothub [ 301.404237][T12226] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 301.489217][T15069] Process accounting paused [ 303.427430][T14827] Bluetooth: hci0: command 0x0406 tx timeout [ 304.498756][T12226] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 305.507484][T15193] Bluetooth: hci0: command 0x0406 tx timeout [ 306.044017][T15249] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 306.553804][T12226] Bluetooth: hci1: command 0x0406 tx timeout [ 306.993324][T15287] QAT: failed to copy from user. [ 307.864487][T14827] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 308.627889][T14827] Bluetooth: hci1: command 0x0406 tx timeout [ 308.702244][T15345] nvme_fabrics: missing parameter 'transport=%s' [ 308.722000][T15345] nvme_fabrics: missing parameter 'nqn=%s' [ 309.060267][T12226] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 309.069005][T12226] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:0' [ 309.079399][T12226] CPU: 0 UID: 0 PID: 12226 Comm: kworker/u12:1 Tainted: G U I syzkaller #0 PREEMPT(full) [ 309.079426][T12226] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND [ 309.079432][T12226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 309.079450][T12226] Workqueue: hci2 hci_rx_work [ 309.079481][T12226] Call Trace: [ 309.079486][T12226] [ 309.079492][T12226] dump_stack_lvl+0x100/0x190 [ 309.079517][T12226] sysfs_warn_dup.cold+0x1c/0x28 [ 309.079538][T12226] sysfs_create_dir_ns+0x24b/0x2b0 [ 309.079559][T12226] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 309.079579][T12226] ? find_held_lock+0x2b/0x80 [ 309.079594][T12226] ? kobject_add_internal+0x25f/0x930 [ 309.079612][T12226] ? kobject_add_internal+0x25f/0x930 [ 309.079631][T12226] ? do_raw_spin_unlock+0x145/0x1e0 [ 309.079654][T12226] kobject_add_internal+0x2c8/0x930 [ 309.079675][T12226] kobject_add+0x16a/0x1e0 [ 309.079694][T12226] ? __pfx_kobject_add+0x10/0x10 [ 309.079710][T12226] ? class_to_subsys+0x10f/0x150 [ 309.079734][T12226] ? kobject_put+0xb9/0x640 [ 309.079749][T12226] ? _raw_spin_unlock+0x28/0x50 [ 309.079777][T12226] device_add+0x294/0x1950 [ 309.079797][T12226] ? __pfx_dev_set_name+0x10/0x10 [ 309.079819][T12226] ? __pfx_device_add+0x10/0x10 [ 309.079839][T12226] ? mgmt_send_event_skb+0x2fb/0x460 [ 309.079865][T12226] hci_conn_add_sysfs+0x1a3/0x260 [ 309.079881][T12226] le_conn_complete_evt+0x11eb/0x1f60 [ 309.079908][T12226] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 309.079935][T12226] ? __pfx_bt_warn+0x10/0x10 [ 309.079958][T12226] hci_le_conn_complete_evt+0x23c/0x3a0 [ 309.079981][T12226] ? skb_pull_data+0x15f/0x1e0 [ 309.080003][T12226] hci_le_meta_evt+0x34a/0x5f0 [ 309.080025][T12226] ? __pfx_hci_le_conn_complete_evt+0x10/0x10 [ 309.080049][T12226] hci_event_packet+0x51c/0xcd0 [ 309.080071][T12226] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 309.080093][T12226] ? __pfx_hci_event_packet+0x10/0x10 [ 309.080116][T12226] ? kcov_remote_start+0x374/0x660 [ 309.080131][T12226] ? lockdep_hardirqs_on+0x78/0x100 [ 309.080151][T12226] hci_rx_work+0x451/0xfc0 [ 309.080175][T12226] process_one_work+0xa23/0x19a0 [ 309.080205][T12226] ? __pfx_process_one_work+0x10/0x10 [ 309.080232][T12226] ? __pfx_hci_rx_work+0x10/0x10 [ 309.080254][T12226] worker_thread+0x5ef/0xe50 [ 309.080280][T12226] ? __pfx_worker_thread+0x10/0x10 [ 309.080302][T12226] ? kthread+0x13a/0x450 [ 309.080320][T12226] ? __pfx_worker_thread+0x10/0x10 [ 309.080339][T12226] kthread+0x370/0x450 [ 309.080358][T12226] ? __pfx_kthread+0x10/0x10 [ 309.080378][T12226] ret_from_fork+0x754/0xd80 [ 309.080401][T12226] ? __pfx_ret_from_fork+0x10/0x10 [ 309.080424][T12226] ? __switch_to+0x7b4/0x1120 [ 309.080440][T12226] ? __pfx_kthread+0x10/0x10 [ 309.080461][T12226] ret_from_fork_asm+0x1a/0x30 [ 309.080487][T12226] [ 309.080508][T12226] kobject: kobject_add_internal failed for hci2:0 with -EEXIST, don't try to register things with the same name in the same directory. [ 309.392614][T12226] Bluetooth: hci2: failed to register connection device [ 309.907890][T12226] Bluetooth: hci2: command 0x0406 tx timeout [ 310.338103][T15392] bond0: option slaves: interface - does not exist! [ 310.640210][T15405] usbip-vudc usbip-vudc.0: gadget not bound [ 311.987755][T12226] Bluetooth: hci2: command 0x0406 tx timeout [ 312.915566][T12226] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 313.159764][T15510] vmstat_refresh: nr_hugetlb -2048 [ 314.071257][T14827] Bluetooth: hci2: command 0x0406 tx timeout [ 314.948391][T15193] Bluetooth: hci0: command 0x0406 tx timeout [ 315.314938][T15583] nvme_fcloop: unknown parameter or missing value '7=";&L=j"Yq'R"' [ 316.147291][T15193] Bluetooth: hci2: command 0x0406 tx timeout [ 316.496950][T15627] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 317.032736][T15193] Bluetooth: hci0: command 0x0406 tx timeout [ 317.277044][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.283542][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.899874][T15688] WARNING! power/level is deprecated; use power/control instead [ 318.980953][T15730] Setting dangerous option i915.mitigations - tainting kernel [ 320.678279][T15778] Debayer A: ================= START STATUS ================= [ 320.721202][T15778] Debayer A: Debayer Mean Window Size: 3 [ 320.727055][T15778] Debayer A: ================== END STATUS ================== [ 323.430574][T15864] misc userio: Invalid payload size [ 326.177285][ T30] audit: type=1800 audit(4294967424.887:29): pid=15953 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.4855" name="members" dev="configfs" ino=39980 res=0 errno=0 [ 326.580419][T15969] kAFS: Invalid Command on /proc/fs/afs/cells file [ 329.756632][T16096] vhci_hcd vhci_hcd.2: invalid port number 253 [ 329.787805][T16096] vhci_hcd vhci_hcd.2: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 331.448166][T16160] aoe: copy from user failed [ 331.452803][T16160] aoe: could not set interface list: too many interfaces [ 331.544654][T16161] Process accounting resumed syzkaller syzkaller login: [ 339.576210][T16436] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 340.533070][T16457] usb usb36: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 340.597363][T16457] vhci_hcd vhci_hcd.1: default hub control req: 0000 v0000 i0000 l0 [ 340.700958][T16462] vhci_hcd vhci_hcd.2: invalid port number 16 [ 340.775072][T16462] vhci_hcd vhci_hcd.2: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub [ 341.688393][T16502] zswap: compressor Zu~^8acu0|,aRrqP')ޱ`*]T]X؃(ۂTN>_r$z&[+x[DPxe?m3Qz not available [ 342.436802][T16529] block2mtd: illegal erase size [ 344.245329][ T30] audit: type=1400 audit(4294967442.957:30): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=16600 comm="syz.0.5175" [ 344.652719][ T30] audit: type=1800 audit(4294967443.357:31): pid=16618 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.5182" name="sr0" dev="devtmpfs" ino=2845 res=0 errno=0 [ 345.237691][T16643] vhci_hcd: not connected 4 [ 345.979147][T16669] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [1]. [ 346.089874][T16675] bond0: Unable to set down delay as MII monitoring is disabled [ 347.143599][T12226] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 347.151926][T12226] Bluetooth: hci3: Invalid handle: 0x3a4a > 0x0eff [ 348.236021][T16749] synth uevent: /bus/mei: unknown uevent action string [ 348.341648][T12226] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 348.350984][T12226] Bluetooth: hci2: Invalid handle: 0x3a4a > 0x0eff [ 348.436340][T16756] program syz.1.5247 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 348.498483][T16756] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 349.578756][T15193] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 349.586217][T15193] Bluetooth: hci0: Invalid handle: 0x3a4a > 0x0eff [ 349.727670][T16799] binder: 16796:16799 ioctl c018620c 200000000040 returned -22 [ 350.561969][T16826] ICMPv6: process `syz.1.5280' is using deprecated sysctl (syscall) net.ipv6.neigh.wg1.retrans_time - use net.ipv6.neigh.wg1.retrans_time_ms instead [ 351.678757][T12226] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 351.686519][T12226] Bluetooth: hci1: Invalid handle: 0x3a4a > 0x0eff [ 352.942612][T16912] QAT: failed to copy from user cfg_data. [ 353.545157][T16929] nvme_fcloop: unknown parameter or missing value '0' [ 353.794814][T16939] : Can't lookup blockdev [ 354.465338][T16964] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 354.736635][T16964] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 354.949701][T16964] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 355.084792][T16964] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 355.273951][T16964] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 356.429304][ T30] audit: type=1326 audit(4294967455.137:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17027 comm="syz.3.5380" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f1a21f9c819 code=0x0 [ 356.758832][T17035] kAFS: No cell specified [ 358.945298][T12226] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 358.955516][T12226] Bluetooth: hci0: Invalid handle: 0x3a4a > 0x0eff [ 360.548213][T17177] syz.0.5451 uses obsolete (PF_INET,SOCK_PACKET) [ 361.633166][T17216] Process accounting paused [ 361.961949][T17233] ceph: Failed to parse sending metrics switch value 'P^' [ 362.006039][T17236] blktrace: Concurrent blktraces are not allowed on sg0 [ 362.942865][T17275] [U] 0="/ [ 362.956970][T17275] [U] [ 362.974442][T17275] [U] EeQ@ [ 362.998055][T17274] [U]  [ 363.249320][T15193] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 363.256863][T15193] Bluetooth: hci2: Invalid handle: 0x3a4a > 0x0eff [ 365.447674][T17357] QAT: Invalid ioctl 21531 [ 365.672768][T12226] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 365.672792][T12226] Bluetooth: hci2: unexpected subevent 0x06 length: 725 > 10 [ 366.420552][T17395] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78800 [ 366.468533][T17395] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 366.504697][T17395] page_type: f2(table) [ 366.543889][T17395] raw: 00fff00000000000 0000000000000000 0000000000000000 0000000000000000 [ 366.597339][T17395] raw: 0000000000000000 ffff88806e56e0c0 00000001f2000000 0000000000000000 [ 366.644219][T17395] page dumped because: unmovable page [ 366.676606][T17395] page_owner tracks the page as allocated [ 366.710340][T17395] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x440dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO|__GFP_COMP), pid 5196, tgid 5196 (udevd), ts 76586702810, free_ts 76305950041 [ 366.802699][T17395] post_alloc_hook+0x153/0x170 [ 366.815665][T17395] get_page_from_freelist+0x111d/0x3140 [ 366.855967][T17395] __alloc_frozen_pages_noprof+0x27c/0x2ba0 [ 366.887452][T17395] alloc_pages_mpol+0x1fb/0x550 [ 366.897341][T17413] vivid-003: ================= START STATUS ================= [ 366.918018][T17395] alloc_pages_noprof+0x136/0x390 [ 366.931410][T17413] vivid-003: Radio HW Seek Mode: Bounded [ 366.939854][T17395] __pmd_alloc+0x3b/0x950 [ 366.962098][T17395] copy_page_range+0x45b6/0x6600 [ 366.973721][T17413] vivid-003: Radio Programmable HW Seek: false [ 366.993888][T17395] dup_mmap+0xd25/0x2180 [ 367.004445][T17413] vivid-003: RDS Rx I/O Mode: Block I/O [ 367.018443][T17395] copy_process+0x7523/0x7a40 [ 367.035889][T17413] vivid-003: Generate RBDS Instead of RDS: false [ 367.046098][T17395] kernel_clone+0xfc/0x9a0 [ 367.091227][T17395] __do_sys_clone+0xd9/0x120 [ 367.100984][T17413] vivid-003: RDS Reception: true [ 367.111252][T17395] do_syscall_64+0x106/0xf80 [ 367.115997][T17413] vivid-003: RDS Program Type: 0 inactive [ 367.125327][T17422] : Can't lookup blockdev [ 367.137328][T17395] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 367.143408][T17413] vivid-003: RDS PS Name: inactive [ 367.160484][T17413] vivid-003: RDS Radio Text: inactive [ 367.170559][T17395] page last free pid 0 tgid 0 stack trace: [ 367.192843][T17413] vivid-003: RDS Traffic Announcement: false inactive [ 367.199811][T17395] __free_frozen_pages+0x7e1/0x10d0 [ 367.230820][T17395] tlb_remove_table_rcu+0x2cf/0x380 [ 367.236249][T17395] rcu_core+0x5a2/0x10d0 [ 367.240697][T17413] vivid-003: RDS Traffic Program: false inactive [ 367.276502][T17413] vivid-003: RDS Music: false inactive [ 367.292719][T17395] handle_softirqs+0x1eb/0x9e0 [ 367.301016][T17413] vivid-003: ================== END STATUS ================== [ 367.317274][T17395] __irq_exit_rcu+0xef/0x150 [ 367.321915][T17395] irq_exit_rcu+0x9/0x30 [ 367.358724][T17395] sysvec_apic_timer_interrupt+0xa3/0xc0 [ 367.364394][T17395] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 367.748992][T12226] Bluetooth: hci2: command 0x0406 tx timeout [ 368.541985][T17472] aoe: invalid device specification [ 368.710755][T17478] Setting dangerous option i915.mitigations - tainting kernel [ 369.648494][T17509] vhci_hcd vhci_hcd.2: vhci_device speed not set [ 370.175936][T17529] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(12) [ 370.458057][T17540] ima: Unable to open file: /sys/kernel/security/integrity/ima/policy (-26) [ 370.458595][T17539] ima: policy update failed [ 370.517619][ T30] audit: type=1802 audit(4294967469.227:33): pid=17539 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.5626" res=0 errno=0 [ 371.819328][ T30] audit: type=1800 audit(4294967470.537:34): pid=17595 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.5652" name="discovery_nqn" dev="configfs" ino=45381 res=0 errno=0 [ 372.060804][T17604] kAFS: Invalid Command on /proc/fs/afs/cells file [ 373.349049][T17652] Format for deleting device is "id" (uint). [ 375.139855][T17710] nvme_fcloop: unknown parameter or missing value '7' [ 376.155830][T17753] syz.3.5729 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 377.187249][T17791] i2c i2c-0: delete_device: Extra parameters [ 378.080718][T17821] vhci_hcd vhci_hcd.1: invalid port number 14 [ 378.117350][T17821] vhci_hcd vhci_hcd.1: Wrong hub descriptor type for USB 3.0 roothub. [ 378.717407][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.723722][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.915609][T17841] block nbd0: NBD_DISCONNECT [ 379.105170][T17838] kAFS: Invalid Command on /proc/fs/afs/cells file [ 389.004901][T17818] syz.3.5756 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 389.185491][T17818] CPU: 0 UID: 0 PID: 17818 Comm: syz.3.5756 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 389.185520][T17818] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 389.185526][T17818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 389.185543][T17818] Call Trace: [ 389.185548][T17818] [ 389.185554][T17818] dump_stack_lvl+0x100/0x190 [ 389.185582][T17818] dump_header+0xfb/0x606 [ 389.185599][T17818] oom_kill_process.cold+0xd/0x330 [ 389.185617][T17818] out_of_memory+0x340/0x14f0 [ 389.185644][T17818] ? __pfx_out_of_memory+0x10/0x10 [ 389.185672][T17818] mem_cgroup_out_of_memory+0xc6/0x130 [ 389.185694][T17818] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 389.185714][T17818] ? find_held_lock+0x2b/0x80 [ 389.185733][T17818] ? do_raw_spin_unlock+0x145/0x1e0 [ 389.185755][T17818] ? _raw_spin_unlock+0x28/0x50 [ 389.185781][T17818] try_charge_memcg+0x652/0xc90 [ 389.185801][T17818] ? __pfx_try_charge_memcg+0x10/0x10 [ 389.185818][T17818] ? find_held_lock+0x2b/0x80 [ 389.185831][T17818] ? rcu_read_unlock+0x17/0x60 [ 389.185847][T17818] ? rcu_read_unlock+0x17/0x60 [ 389.185870][T17818] charge_memcg+0xa6/0x280 [ 389.185886][T17818] __mem_cgroup_charge+0x2b/0x1e0 [ 389.185906][T17818] filemap_add_folio+0xe7/0x690 [ 389.185931][T17818] ? __pfx_filemap_add_folio+0x10/0x10 [ 389.185960][T17818] __filemap_get_folio_mpol+0x5d5/0xe70 [ 389.185980][T17818] filemap_fault+0x8a2/0x2eb0 [ 389.185998][T17818] ? __folio_batch_add_and_move+0x464/0xc60 [ 389.186013][T17818] ? __pfx_filemap_fault+0x10/0x10 [ 389.186030][T17818] ? __pfx_filemap_map_pages+0x10/0x10 [ 389.186058][T17818] __do_fault+0x10d/0x550 [ 389.186075][T17818] do_fault+0xabb/0x18e0 [ 389.186097][T17818] __handle_mm_fault+0x1815/0x2b60 [ 389.186123][T17818] ? __pfx___handle_mm_fault+0x10/0x10 [ 389.186150][T17818] ? pte_offset_map_lock+0x174/0x320 [ 389.186166][T17818] ? find_held_lock+0x2b/0x80 [ 389.186186][T17818] ? follow_page_pte+0x5b3/0x1400 [ 389.186208][T17818] handle_mm_fault+0x36d/0xa20 [ 389.186233][T17818] __get_user_pages+0xf9c/0x34d0 [ 389.186258][T17818] ? __pfx___get_user_pages+0x10/0x10 [ 389.186281][T17818] get_dump_page+0x27e/0x3d0 [ 389.186299][T17818] ? __pfx_get_dump_page+0x10/0x10 [ 389.186317][T17818] ? dump_user_range+0x73b/0xb50 [ 389.186339][T17818] dump_user_range+0x18d/0xb50 [ 389.186361][T17818] ? __pfx_dump_user_range+0x10/0x10 [ 389.186384][T17818] ? __pfx_writenote+0x10/0x10 [ 389.186408][T17818] elf_core_dump+0x2d5f/0x3d10 [ 389.186438][T17818] ? __pfx_elf_core_dump+0x10/0x10 [ 389.186457][T17818] ? kasan_save_stack+0x3f/0x50 [ 389.186471][T17818] ? kasan_save_track+0x14/0x30 [ 389.186483][T17818] ? __kasan_kmalloc+0xaa/0xb0 [ 389.186495][T17818] ? __kvmalloc_node_noprof+0x360/0xa00 [ 389.186510][T17818] ? exit_to_user_mode_loop+0x86/0x4a0 [ 389.186529][T17818] ? ret_from_fork+0x95b/0xd80 [ 389.186550][T17818] ? ret_from_fork_asm+0x1a/0x30 [ 389.186567][T17818] ? 0xffffffffff600000 [ 389.186612][T17818] ? vfs_coredump+0x27bc/0x5570 [ 389.186628][T17818] vfs_coredump+0x27bc/0x5570 [ 389.186651][T17818] ? __lock_acquire+0x4a5/0x2630 [ 389.186670][T17818] ? __pfx_vfs_coredump+0x10/0x10 [ 389.186688][T17818] ? __lock_acquire+0x4a5/0x2630 [ 389.186710][T17818] ? __lock_acquire+0x4a5/0x2630 [ 389.186732][T17818] ? lock_acquire+0x1cf/0x380 [ 389.186754][T17818] ? lock_acquire+0x1cf/0x380 [ 389.186784][T17818] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 389.186801][T17818] ? arch_stack_walk+0x94/0xf0 [ 389.186819][T17818] ? ret_from_fork_asm+0x1a/0x30 [ 389.186837][T17818] ? __sigqueue_free+0xbe/0x2a0 [ 389.186857][T17818] ? stack_trace_save+0x8e/0xc0 [ 389.186872][T17818] ? __pfx_stack_trace_save+0x10/0x10 [ 389.186887][T17818] ? stack_depot_save_flags+0x27/0x9d0 [ 389.186907][T17818] ? __lock_acquire+0x4a5/0x2630 [ 389.186933][T17818] ? ret_from_fork_asm+0x1a/0x30 [ 389.186974][T17818] ? proc_coredump_connector+0x2d3/0x4f0 [ 389.186997][T17818] ? __pfx_proc_coredump_connector+0x10/0x10 [ 389.187024][T17818] ? rcu_is_watching+0x12/0xc0 [ 389.187051][T17818] get_signal+0x1f2a/0x21e0 [ 389.187075][T17818] ? __pfx_get_signal+0x10/0x10 [ 389.187097][T17818] arch_do_signal_or_restart+0x91/0x770 [ 389.187117][T17818] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 389.187147][T17818] ? do_raw_spin_lock+0x128/0x260 [ 389.187177][T17818] exit_to_user_mode_loop+0x86/0x4a0 [ 389.187199][T17818] ret_from_fork+0x95b/0xd80 [ 389.187221][T17818] ? __pfx_ret_from_fork+0x10/0x10 [ 389.187243][T17818] ? rcu_is_watching+0x12/0xc0 [ 389.187266][T17818] ? __switch_to+0x7b4/0x1120 [ 389.187285][T17818] ret_from_fork_asm+0x1a/0x30 [ 389.187311][T17818] [ 391.352575][T17818] memory: usage 2788kB, limit 3072kB, failcnt 12437 [ 391.386067][T17818] memory+swap: usage 15072kB, limit 9007199254740988kB, failcnt 0 [ 391.422048][T17818] kmem: usage 1220kB, limit 9007199254740988kB, failcnt 0 [ 391.449147][T17818] Memory cgroup stats for /syz3: [ 391.449374][T17818] cache 1265664 [ 391.485749][T17818] rss 57344 [ 391.504561][T17818] rss_huge 0 [ 391.518512][T17818] shmem 937984 [ 391.530734][T17818] mapped_file 327680 [ 391.542407][T17818] dirty 4096 [ 391.553262][T17818] writeback 0 [ 391.565459][T17818] workingset_refault_anon 726 [ 391.582249][T17818] workingset_refault_file 11944 [ 391.587422][T17818] swap 12578816 [ 391.604655][T17818] swapcached 23900160 [ 391.623345][T17818] pgpgin 99127 [ 391.657260][T17818] pgpgout 99368 [ 391.660774][T17818] pgfault 156422 [ 391.689527][T17818] pgmajfault 620 [ 391.724914][T17818] inactive_anon 995328 [ 391.742714][T17818] active_anon 24576 [ 391.746541][T17818] inactive_file 266240 [ 391.760363][T18142] Process accounting resumed [ 391.773462][T17818] active_file 61440 [ 391.799564][T17818] unevictable 0 [ 391.820674][T17818] hierarchical_memory_limit 3145728 [ 391.825982][T17818] hierarchical_memsw_limit 9223372036854771712 [ 391.873425][T17818] total_cache 1265664 [ 391.903056][T17818] total_rss 57344 [ 391.906709][T17818] total_rss_huge 0 [ 391.940109][T17818] total_shmem 937984 [ 391.944046][T17818] total_mapped_file 327680 [ 392.006418][T17818] total_dirty 4096 [ 392.011817][T17818] total_writeback 0 [ 392.015623][T17818] total_workingset_refault_anon 726 [ 392.072394][T17818] total_workingset_refault_file 11944 [ 392.086993][T17818] total_swap 12578816 [ 392.123992][T17818] total_swapcached 23900160 [ 392.139618][T18157] usb usb35: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 392.166030][T17818] total_pgpgin 99127 [ 392.170046][T17818] total_pgpgout 99368 [ 392.174018][T17818] total_pgfault 156422 [ 392.179004][T18157] vhci_hcd vhci_hcd.1: SetHubDepth req not supported for USB 2.0 roothub [ 392.206437][T17818] total_pgmajfault 620 [ 392.224960][T17818] total_inactive_anon 995328 [ 392.261127][T17818] total_active_anon 24576 [ 392.265501][T17818] total_inactive_file 266240 [ 392.312194][T17818] total_active_file 61440 [ 392.316551][T17818] total_unevictable 0 [ 392.359169][T17818] anon_cost 0 [ 392.362475][T17818] file_cost 0 [ 392.365745][T17818] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.5756,pid=17818,uid=0 [ 392.477570][T17818] Memory cgroup out of memory: Killed process 17818 (syz.3.5756) total-vm:104276kB, anon-rss:1236kB, file-rss:23088kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000 [ 392.915702][ T30] audit: type=1800 audit(4294967491.627:35): pid=18180 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.5938" name="dbroot" dev="configfs" ino=47282 res=0 errno=0 [ 392.967993][T17818] syz.3.5756 (17818) used greatest stack depth: 19184 bytes left [ 393.740703][T18205] usb usb36: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 393.769578][T18205] vhci_hcd vhci_hcd.1: Wrong hub descriptor type for USB 3.0 roothub. [ 393.790710][T18208] capability: warning: `syz.2.5952' uses deprecated v2 capabilities in a way that may be insecure [ 396.735856][ T30] audit: type=1804 audit(4294967495.447:36): pid=18300 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.5997" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 398.144036][T18339] Format for unlinking a device is "netnsfd:ifidx" (int uint). [ 401.433487][ T30] audit: type=1800 audit(4294967500.147:37): pid=18431 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.6060" name="dbroot" dev="configfs" ino=48163 res=0 errno=0 [ 404.467424][T18527] TCP: TCP_TX_DELAY enabled [ 405.059786][T18546] kafs: addr_prefs: Invalid Command [ 405.311239][T18553] busy [ 407.097388][T18613] usb usb24: usbfs: process 18613 (syz.1.6151) did not claim interface 0 before use [ 407.629761][T18630] deleting an unspecified loop device is not supported. Ijn9_VQ8j@:U%Ux0 R@x@qrIB@[*t ;S;x=Gcqx)Z*16GSu bmIK7 [ 411.073800][T18745] Kernel: The 'panic_print' parameter is now deprecated. Please use 'panic_sys_info' and 'panic_console_replay' instead. [ 417.012151][T18981] cifs: Unknown parameter ') Up̢{V ]762']Ψ!gʮ79fM<*ysEh' [ 417.487697][T19000] pci 0000:00:00.0: MSI/MSI-X allowed for future drivers [ 418.132444][T19025] synth uevent: /devices/platform/vivid.0/cec26: unknown uevent action string [ 418.190809][T19025] cec cec26: uevent: failed to send synthetic uevent: -22 [ 420.044676][T19093] QAT: failed to copy from user cfg_data. [ 420.207763][T19098] bond0: option packets_per_slave: invalid value ( Xnp) [ 420.238442][T19098] bond0: option packets_per_slave: allowed values 0 - 65535 [ 420.277529][T19099] delete_channel: no stack [ 420.498848][ T30] audit: type=1806 audit(4294967519.217:38): xattr="." res=0 [ 421.191680][T19133] synth uevent: /devices/platform/dummy_hcd.3/usb4/ep_00: unknown uevent action string [ 421.247449][T19133] ep_00: uevent: failed to send synthetic uevent: -22 [ 421.765496][T19148] Process accounting paused [ 421.993093][ T30] audit: type=1800 audit(4294967520.697:39): pid=19163 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.6420" name="lu_gp_id" dev="configfs" ino=50564 res=0 errno=0 [ 425.107310][T19277] syz.1.6476 (19277): drop_caches: 0 [ 426.589617][T19323] vhci_hcd vhci_hcd.1: invalid port number 14 [ 428.257372][T19377] bonding: no command found in bonding_masters - use +ifname or -ifname [ 429.227610][T19410] ecryptfs_miscdev_write: memdup_user returned error [-14] [ 431.145949][T19463] bond0: invalid ARP target specified [ 431.154989][T19465] scsi_strcpy_devinfo: vendor string '/&c~n] | [ 431.154989][T19465] M' is too long [ 431.200456][T19465] scsi_strcpy_devinfo: model string 'Dd5 K2b [ 431.200456][T19465] W ' is too long [ 432.098898][T19503] block2mtd: parameter too long [ 432.639011][T19525] Scaler: ================= START STATUS ================= [ 432.701910][T19525] Scaler: ================== END STATUS ================== [ 433.690320][T19564] block2mtd: error: cannot open device inX±jFBB>U;߸Ilk [ 434.412959][T19595] ecryptfs_parse_packet_length: Five-byte packet length not supported [ 434.466402][T19595] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 435.840725][T19649] zram: Can't change algorithm for initialized device [ 437.003771][T19700] wlan1: mtu less than device minimum [ 437.185473][T19711] i2c i2c-0: new_device: Can't parse I2C address [ 437.513082][T19723] [ 437.938027][T19739] kernel read not supported for file /\*)A (pid: 19739 comm: syz.3.6700) [ 437.997473][ T30] audit: type=1800 audit(4294985880.716:40): pid=19739 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.6700" name="\*)A" dev="mqueue" ino=25842 res=0 errno=0 [ 439.574526][T19804] [U] ^R [ 440.153057][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.160438][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 442.045289][T19902] block2mtd: too many arguments [ 443.545946][T19955] ecryptfs_miscdev_write: Invalid packet size [192] [ 444.637613][T19999] block2mtd: Using custom MTD label '' for dev [ 444.643913][T19999] block2mtd: error: cannot open device [ 448.387141][T20121] rtc_cmos 00:00: Alarms can be up to one day in the future [ 448.712293][T20132] ======================================================= [ 448.712293][T20132] WARNING: The mand mount option has been deprecated and [ 448.712293][T20132] and is ignored by this kernel. Remove the mand [ 448.712293][T20132] option from the mount to silence this warning. [ 448.712293][T20132] ======================================================= [ 449.086883][T20138] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 449.752295][T20160] delete_channel: no stack [ 450.007502][T20167] netlink: 16 bytes leftover after parsing attributes in process `syz.0.6904'. [ 450.564493][T20183] netlink: 'syz.2.6912': attribute type 1 has an invalid length. [ 451.207970][T20198] bond0: option lp_interval: invalid value () [ 451.229447][T20198] bond0: option lp_interval: allowed values 1 - 2147483647 [ 451.357390][T20207] nbd: must specify a device to reconfigure [ 451.792449][T20221] netlink: zone id is out of range [ 451.837793][T20221] netlink: zone id is out of range [ 451.842951][T20221] netlink: zone id is out of range [ 451.907478][T20221] netlink: zone id is out of range [ 451.934402][T20221] netlink: zone id is out of range [ 451.967299][T20221] netlink: zone id is out of range [ 451.989905][T20221] netlink: zone id is out of range [ 452.018996][T20221] netlink: zone id is out of range [ 452.044428][T20221] netlink: zone id is out of range [ 452.092396][T20221] netlink: zone id is out of range [ 452.154266][T20221] Process accounting resumed [ 453.816679][T20297] netlink: 'syz.3.6966': attribute type 2 has an invalid length. [ 454.507716][T20322] Zero length message leads to an empty skb [ 457.214166][T20411] smc: net device dummy0 applied user defined pnetid DUMMY0 [ 457.984062][T20442] FAULT_INJECTION: forcing a failure. [ 457.984062][T20442] name failslab, interval 1, probability 0, space 0, times 1 [ 458.057509][T20442] CPU: 0 UID: 0 PID: 20442 Comm: syz.3.7035 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 458.057539][T20442] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 458.057546][T20442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 458.057555][T20442] Call Trace: [ 458.057561][T20442] [ 458.057568][T20442] dump_stack_lvl+0x100/0x190 [ 458.057596][T20442] should_fail_ex.cold+0x5/0xa [ 458.057615][T20442] should_failslab+0xc2/0x120 [ 458.057632][T20442] __kmalloc_node_noprof+0xe6/0x850 [ 458.057654][T20442] ? get_callchain_buffers+0x1e5/0x380 [ 458.057677][T20442] get_callchain_buffers+0x1e5/0x380 [ 458.057695][T20442] ? security_capable+0x80/0x260 [ 458.057712][T20442] stack_map_alloc+0x316/0x610 [ 458.057730][T20442] ? __pfx_stack_map_mem_usage+0x10/0x10 [ 458.057747][T20442] map_create+0x84e/0x2ba0 [ 458.057762][T20442] ? futex_unqueue+0x13d/0x2c0 [ 458.057781][T20442] ? __futex_wait+0x256/0x300 [ 458.057808][T20442] ? __pfx_map_create+0x10/0x10 [ 458.057821][T20442] ? __might_fault+0xc5/0x140 [ 458.057842][T20442] ? __might_fault+0xc5/0x140 [ 458.057870][T20442] __sys_bpf+0x2091/0x4b90 [ 458.057890][T20442] ? __pfx___sys_bpf+0x10/0x10 [ 458.057907][T20442] ? __pfx_futex_wait+0x10/0x10 [ 458.057933][T20442] ? ksys_write+0x190/0x250 [ 458.057952][T20442] ? do_futex+0x192/0x350 [ 458.057981][T20442] ? xfd_validate_state+0x129/0x190 [ 458.058007][T20442] __x64_sys_bpf+0x7b/0xc0 [ 458.058024][T20442] ? lockdep_hardirqs_on+0x78/0x100 [ 458.058040][T20442] do_syscall_64+0x106/0xf80 [ 458.058054][T20442] ? clear_bhb_loop+0x40/0x90 [ 458.058073][T20442] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 458.058088][T20442] RIP: 0033:0x7f1a21f9c819 [ 458.058101][T20442] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 458.058114][T20442] RSP: 002b:00007f1a22e20028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 458.058134][T20442] RAX: ffffffffffffffda RBX: 00007f1a22215fa0 RCX: 00007f1a21f9c819 [ 458.058144][T20442] RDX: 00000000000006f4 RSI: 0000200000000580 RDI: 0000000000000000 [ 458.058153][T20442] RBP: 00007f1a22032c91 R08: 0000000000000000 R09: 0000000000000000 [ 458.058161][T20442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 458.058169][T20442] R13: 00007f1a22216038 R14: 00007f1a22215fa0 R15: 00007fffbff3c0a8 [ 458.058189][T20442] [ 458.406349][T20449] netlink: 342 bytes leftover after parsing attributes in process `syz.1.7038'. [ 458.605582][T20458] net_ratelimit: 10 callbacks suppressed [ 458.605598][T20458] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 458.617977][T20458] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 459.517062][T20483] netlink: 'syz.3.7055': attribute type 1 has an invalid length. [ 459.714540][T20493] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7060'. [ 459.852328][T20495] netlink: 'syz.2.7062': attribute type 1 has an invalid length. [ 463.786372][T20642] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 464.401724][T19421] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 464.555082][T19421] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 464.645891][T19421] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 464.839030][T19421] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 465.411161][T19421] bridge_slave_1: left allmulticast mode [ 465.452479][T20678] netlink: 20 bytes leftover after parsing attributes in process `syz.2.7149'. [ 465.476193][T19421] bridge_slave_1: left promiscuous mode [ 465.512595][T19421] bridge0: port 2(bridge_slave_1) entered disabled state [ 465.564542][T15193] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 465.580684][T15193] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 465.588883][T15193] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 465.596482][T15193] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 465.604843][T15193] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 465.644649][T19421] bridge_slave_0: left allmulticast mode [ 465.675151][T19421] bridge_slave_0: left promiscuous mode [ 465.703630][T19421] bridge0: port 1(bridge_slave_0) entered disabled state [ 465.849863][T20691] netlink: set zone limit has 8 unknown bytes [ 466.313542][T19421] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 466.346719][T19421] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 466.375763][T19421] bond0 (unregistering): Released all slaves [ 466.440894][ T30] audit: type=1800 audit(4294985909.156:41): pid=20678 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.7149" name="regulatory.db" dev="sda1" ino=448 res=0 errno=0 [ 466.479771][T20678] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -4 [ 466.532481][T20678] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -4 [ 466.585678][T20678] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 467.132042][T20723] netlink: 'syz.2.7162': attribute type 1 has an invalid length. [ 467.264112][T19421] hsr_slave_0: left promiscuous mode [ 467.320386][T19421] hsr_slave_1: left promiscuous mode [ 467.353191][T19421] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 467.400379][T19421] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 467.473849][T20732] netlink: 'syz.0.7166': attribute type 1 has an invalid length. [ 467.493839][T19421] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 467.521855][T19421] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 467.579046][T19421] veth1_macvtap: left promiscuous mode [ 467.584836][T19421] veth0_macvtap: left promiscuous mode [ 467.621143][T19421] veth1_vlan: left promiscuous mode [ 467.639355][T19421] veth0_vlan: left promiscuous mode [ 467.667321][T15193] Bluetooth: hci2: command tx timeout [ 467.959795][T19421] team0 (unregistering): Port device team_slave_1 removed [ 467.978570][T19421] team0 (unregistering): Port device team_slave_0 removed [ 468.075604][T19421] smc: removing net device dummy0 with user defined pnetid DUMMY0 [ 468.138168][T20681] chnl_net:caif_netlink_parms(): no params data found [ 468.563828][T20681] bridge0: port 1(bridge_slave_0) entered blocking state [ 468.647112][T20681] bridge0: port 1(bridge_slave_0) entered disabled state [ 468.710829][T20681] bridge_slave_0: entered allmulticast mode [ 468.749681][T20681] bridge_slave_0: entered promiscuous mode [ 468.793153][T20681] bridge0: port 2(bridge_slave_1) entered blocking state [ 468.822740][T20681] bridge0: port 2(bridge_slave_1) entered disabled state [ 468.850199][T20681] bridge_slave_1: entered allmulticast mode [ 468.895962][T20681] bridge_slave_1: entered promiscuous mode [ 469.075185][T20681] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 469.165209][T20681] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 469.335513][T20786] sctp: [Deprecated]: syz.2.7182 (pid 20786) Use of int in max_burst socket option deprecated. [ 469.335513][T20786] Use struct sctp_assoc_value instead [ 469.353019][T20681] team0: Port device team_slave_0 added [ 469.370058][T20681] team0: Port device team_slave_1 added [ 469.497278][T20681] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 469.528920][T20681] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 469.648829][T20681] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 469.707730][T20681] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 469.735908][T20681] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 469.775159][T15193] Bluetooth: hci2: command tx timeout [ 469.868888][T20681] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 469.881136][T20801] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 470.041790][T20681] hsr_slave_0: entered promiscuous mode [ 470.070112][T20681] hsr_slave_1: entered promiscuous mode [ 470.080695][T20807] zram0: detected capacity change from 16 to 0 [ 470.097914][T20681] debugfs: 'hsr0' already exists in 'hsr' [ 470.106859][T20807] zram: Removed device: zram0 [ 470.117323][T20681] Cannot create hsr debugfs directory [ 470.435684][T20814] tc_dump_action: action bad kind [ 471.478626][T20846] openvswitch: netlink: IP tunnel dst address not specified [ 471.536399][T20681] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 471.619183][T20681] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 471.697841][T20681] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 471.783583][T20681] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 471.799474][T20855] netlink: 'syz.1.7207': attribute type 8 has an invalid length. [ 471.830520][T15193] Bluetooth: hci2: command tx timeout [ 472.204795][T20681] 8021q: adding VLAN 0 to HW filter on device bond0 [ 472.336084][T20681] 8021q: adding VLAN 0 to HW filter on device team0 [ 472.459229][T14141] bridge0: port 1(bridge_slave_0) entered blocking state [ 472.466373][T14141] bridge0: port 1(bridge_slave_0) entered forwarding state [ 472.511660][T20886] openvswitch: netlink: Duplicate key (type 15). [ 472.574413][T14141] bridge0: port 2(bridge_slave_1) entered blocking state [ 472.581697][T14141] bridge0: port 2(bridge_slave_1) entered forwarding state [ 473.490163][T20681] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 473.706820][T20681] veth0_vlan: entered promiscuous mode [ 473.803500][T20681] veth1_vlan: entered promiscuous mode [ 473.918930][T15193] Bluetooth: hci2: command tx timeout [ 473.994938][T20681] veth0_macvtap: entered promiscuous mode [ 474.061380][T20681] veth1_macvtap: entered promiscuous mode [ 474.170999][T20681] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 474.245640][T20681] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 474.322042][T12042] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 474.399202][T12042] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 474.494650][T12042] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 474.580528][T12042] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 474.846183][T12042] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 474.903741][T12042] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 475.066351][T14141] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 475.120188][T14141] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 475.311535][T20681] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 475.618900][T20991] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 476.032600][T21003] tipc: Started in network mode [ 476.068802][T21003] tipc: Node identity ee00, cluster identity 4711 [ 476.123451][T21003] tipc: Node number set to 60928 [ 477.201502][T21043] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7275'. [ 477.668423][T21058] netlink: 'syz.0.7283': attribute type 4 has an invalid length. [ 477.719320][T21058] netlink: 'syz.0.7283': attribute type 1 has an invalid length. [ 479.508716][T21122] FAULT_INJECTION: forcing a failure. [ 479.508716][T21122] name failslab, interval 1, probability 0, space 0, times 0 [ 479.557571][T21122] CPU: 0 UID: 0 PID: 21122 Comm: syz.1.7314 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 479.557602][T21122] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 479.557609][T21122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 479.557618][T21122] Call Trace: [ 479.557624][T21122] [ 479.557629][T21122] dump_stack_lvl+0x100/0x190 [ 479.557657][T21122] should_fail_ex.cold+0x5/0xa [ 479.557677][T21122] should_failslab+0xc2/0x120 [ 479.557694][T21122] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 479.557717][T21122] ? __d_alloc+0x34/0xa80 [ 479.557739][T21122] __d_alloc+0x34/0xa80 [ 479.557758][T21122] d_alloc_pseudo+0x1c/0xc0 [ 479.557779][T21122] alloc_file_pseudo+0xcf/0x230 [ 479.557800][T21122] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 479.557824][T21122] __shmem_file_setup+0x221/0x490 [ 479.557846][T21122] ? __pfx___shmem_file_setup+0x10/0x10 [ 479.557869][T21122] ? vm_area_alloc+0x1f/0x160 [ 479.557891][T21122] shmem_zero_setup+0x96/0x1b0 [ 479.557907][T21122] __mmap_region+0x21f6/0x2a50 [ 479.557933][T21122] ? __pfx___mmap_region+0x10/0x10 [ 479.557956][T21122] ? __lock_acquire+0x4a5/0x2630 [ 479.557976][T21122] ? set_next_entity+0x11e/0x9c0 [ 479.558001][T21122] ? __lock_acquire+0x4a5/0x2630 [ 479.558019][T21122] ? find_held_lock+0x2b/0x80 [ 479.558045][T21122] ? find_held_lock+0x2b/0x80 [ 479.558058][T21122] ? finish_task_switch.isra.0+0x200/0xb80 [ 479.558075][T21122] ? finish_task_switch.isra.0+0x200/0xb80 [ 479.558098][T21122] ? trace_sched_exit_tp+0x13a/0x180 [ 479.558117][T21122] ? __schedule+0x1000/0x6120 [ 479.558154][T21122] ? rcu_is_watching+0x12/0xc0 [ 479.558176][T21122] ? cap_capable+0x107/0x460 [ 479.558195][T21122] mmap_region+0x180/0x3e0 [ 479.558221][T21122] do_mmap+0xc63/0x12f0 [ 479.558242][T21122] ? __pfx_do_mmap+0x10/0x10 [ 479.558258][T21122] ? __pfx_down_write_killable+0x10/0x10 [ 479.558280][T21122] vm_mmap_pgoff+0x29e/0x470 [ 479.558301][T21122] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 479.558319][T21122] ? do_futex+0x192/0x350 [ 479.558338][T21122] ? __pfx_do_futex+0x10/0x10 [ 479.558361][T21122] ksys_mmap_pgoff+0xe1/0x650 [ 479.558386][T21122] ? __x64_sys_futex+0x34f/0x4d0 [ 479.558404][T21122] ? __x64_sys_futex+0x358/0x4d0 [ 479.558424][T21122] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 479.558441][T21122] ? xfd_validate_state+0x129/0x190 [ 479.558468][T21122] __x64_sys_mmap+0x125/0x190 [ 479.558492][T21122] do_syscall_64+0x106/0xf80 [ 479.558507][T21122] ? clear_bhb_loop+0x40/0x90 [ 479.558525][T21122] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 479.558540][T21122] RIP: 0033:0x7f683f59c819 [ 479.558553][T21122] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 479.558567][T21122] RSP: 002b:00007f68403ad028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 479.558581][T21122] RAX: ffffffffffffffda RBX: 00007f683f815fa0 RCX: 00007f683f59c819 [ 479.558590][T21122] RDX: 0000000000000006 RSI: 000000000402000c RDI: 0000000000000000 [ 479.558599][T21122] RBP: 00007f683f632c91 R08: 0000000000000003 R09: 0000000000008000 [ 479.558607][T21122] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 479.558615][T21122] R13: 00007f683f816038 R14: 00007f683f815fa0 R15: 00007ffd95a713d8 [ 479.558635][T21122] [ 480.172718][T21137] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 481.436831][T21185] nfsd: Unknown parameter '' [ 482.326266][T21216] Process accounting paused [ 482.467715][T21222] netlink: 28 bytes leftover after parsing attributes in process `syz.3.7360'. [ 482.555035][T21221] NFSD: Failed to start, no listeners configured. [ 483.692720][T21268] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7384'. [ 484.607463][T21293] netlink: 16 bytes leftover after parsing attributes in process `syz.1.7395'. [ 486.107785][T21338] HfR: entered promiscuous mode [ 487.205129][T21381] FAULT_INJECTION: forcing a failure. [ 487.205129][T21381] name failslab, interval 1, probability 0, space 0, times 0 [ 487.282287][T21381] CPU: 0 UID: 0 PID: 21381 Comm: syz.2.7439 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 487.282318][T21381] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 487.282324][T21381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 487.282333][T21381] Call Trace: [ 487.282339][T21381] [ 487.282344][T21381] dump_stack_lvl+0x100/0x190 [ 487.282372][T21381] should_fail_ex.cold+0x5/0xa [ 487.282391][T21381] should_failslab+0xc2/0x120 [ 487.282408][T21381] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 487.282431][T21381] ? __d_alloc+0x34/0xa80 [ 487.282453][T21381] __d_alloc+0x34/0xa80 [ 487.282472][T21381] d_alloc+0x4a/0x1e0 [ 487.282490][T21381] lookup_one_qstr_excl+0x175/0x250 [ 487.282512][T21381] start_dirop+0x59/0xb0 [ 487.282526][T21381] simple_start_creating+0xf9/0x110 [ 487.282541][T21381] ? __pfx_simple_start_creating+0x10/0x10 [ 487.282565][T21381] ? mntput+0x70/0xa0 [ 487.282579][T21381] ? simple_pin_fs+0xa3/0x190 [ 487.282601][T21381] debugfs_start_creating.part.0+0x82/0x170 [ 487.282621][T21381] __debugfs_create_file+0xb3/0x4f0 [ 487.282641][T21381] debugfs_create_file_full+0x41/0x60 [ 487.282660][T21381] ref_tracker_dir_debugfs+0x19e/0x2e0 [ 487.282682][T21381] ? __pfx_ref_tracker_dir_debugfs+0x10/0x10 [ 487.282702][T21381] ? rcu_is_watching+0x12/0xc0 [ 487.282741][T21381] ? lockdep_init_map_type+0x5c/0x250 [ 487.282764][T21381] preinit_net.part.0+0x24e/0x8f0 [ 487.282781][T21381] copy_net_ns+0x339/0x7c0 [ 487.282799][T21381] create_new_namespaces+0x3ea/0xac0 [ 487.282820][T21381] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 487.282839][T21381] ksys_unshare+0x473/0xad0 [ 487.282859][T21381] ? __pfx_ksys_unshare+0x10/0x10 [ 487.282884][T21381] __x64_sys_unshare+0x31/0x40 [ 487.282902][T21381] do_syscall_64+0x106/0xf80 [ 487.282917][T21381] ? clear_bhb_loop+0x40/0x90 [ 487.282936][T21381] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 487.282950][T21381] RIP: 0033:0x7f310f59c819 [ 487.282963][T21381] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 487.282977][T21381] RSP: 002b:00007f311050c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 487.282992][T21381] RAX: ffffffffffffffda RBX: 00007f310f815fa0 RCX: 00007f310f59c819 [ 487.283002][T21381] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 487.283010][T21381] RBP: 00007f310f632c91 R08: 0000000000000000 R09: 0000000000000000 [ 487.283018][T21381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 487.283026][T21381] R13: 00007f310f816038 R14: 00007f310f815fa0 R15: 00007ffc127e5ce8 [ 487.283045][T21381] [ 488.049586][T21389] NFSD: Failed to start, no listeners configured. [ 490.600840][T15193] Bluetooth: hci0: unexpected subevent 0x18 length: 123 > 19 [ 490.608315][T15193] Bluetooth: hci0: Unable to find connection for dst f9:56:cc:cc:70:a9 sid 0x00 [ 491.136618][T21482] NFSD: Failed to start, no listeners configured. [ 491.393964][T21493] capability: warning: `syz.2.7493' uses 32-bit capabilities (legacy support in use) [ 491.773222][T21504] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input28 [ 492.332168][T21521] netlink: Unknown nat attribute (0) [ 493.426479][T21558] tc_dump_action: action bad kind [ 494.210330][T21581] netlink: 338 bytes leftover after parsing attributes in process `syz.1.7534'. [ 494.355768][T21587] netlink: 338 bytes leftover after parsing attributes in process `syz.1.7534'. [ 496.240538][ T30] audit: type=1107 audit(4294985938.956:42): pid=21645 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 496.339916][ T30] audit: type=1107 audit(4294985938.986:43): pid=21645 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 498.004262][T21705] FAULT_INJECTION: forcing a failure. [ 498.004262][T21705] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 498.110344][T21705] CPU: 0 UID: 0 PID: 21705 Comm: syz.2.7594 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 498.110399][T21705] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 498.110413][T21705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 498.110431][T21705] Call Trace: [ 498.110441][T21705] [ 498.110452][T21705] dump_stack_lvl+0x100/0x190 [ 498.110487][T21705] should_fail_ex.cold+0x5/0xa [ 498.110503][T21705] ? prepare_alloc_pages+0x16d/0x5f0 [ 498.110530][T21705] should_fail_alloc_page+0xeb/0x140 [ 498.110549][T21705] prepare_alloc_pages+0x1f0/0x5f0 [ 498.110567][T21705] ? bpf_ksym_find+0x124/0x1c0 [ 498.110589][T21705] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 498.110619][T21705] ? __kernel_text_address+0xd/0x30 [ 498.110641][T21705] ? unwind_get_return_address+0x59/0xa0 [ 498.110659][T21705] ? arch_stack_walk+0xa6/0xf0 [ 498.110680][T21705] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 498.110703][T21705] ? stack_trace_save+0x8e/0xc0 [ 498.110718][T21705] ? __pfx_stack_trace_save+0x10/0x10 [ 498.110734][T21705] ? stack_depot_save_flags+0x27/0x9d0 [ 498.110754][T21705] ? mas_store_prealloc+0x893/0xfb0 [ 498.110776][T21705] ? kasan_save_stack+0x30/0x50 [ 498.110789][T21705] ? kasan_save_track+0x14/0x30 [ 498.110802][T21705] ? __kasan_slab_alloc+0x89/0x90 [ 498.110815][T21705] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 498.110837][T21705] ? __pmd_alloc+0xbf/0x950 [ 498.110854][T21705] ? __handle_mm_fault+0xa9e/0x2b60 [ 498.110873][T21705] ? handle_mm_fault+0x36d/0xa20 [ 498.110891][T21705] ? __get_user_pages+0xf9c/0x34d0 [ 498.110907][T21705] ? populate_vma_page_range+0x267/0x3f0 [ 498.110924][T21705] ? __mm_populate+0x107/0x3a0 [ 498.110941][T21705] ? vm_mmap_pgoff+0x37f/0x470 [ 498.110956][T21705] ? ksys_mmap_pgoff+0xe1/0x650 [ 498.110970][T21705] ? __x64_sys_mmap+0x125/0x190 [ 498.110990][T21705] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 498.111007][T21705] ? policy_nodemask+0xed/0x4f0 [ 498.111024][T21705] alloc_pages_mpol+0x1fb/0x550 [ 498.111042][T21705] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 498.111064][T21705] alloc_pages_noprof+0x136/0x390 [ 498.111081][T21705] pte_alloc_one+0x1c/0x3d0 [ 498.111098][T21705] __pte_alloc+0x6d/0x3e0 [ 498.111114][T21705] ? __pfx___pte_alloc+0x10/0x10 [ 498.111130][T21705] ? do_raw_spin_lock+0x128/0x260 [ 498.111151][T21705] ? find_held_lock+0x2b/0x80 [ 498.111167][T21705] do_anonymous_page+0x13cc/0x1fb0 [ 498.111188][T21705] ? do_huge_pmd_anonymous_page+0x7b5/0x1ab0 [ 498.111212][T21705] ? __pmd_alloc+0x3fb/0x950 [ 498.111231][T21705] __handle_mm_fault+0x1d48/0x2b60 [ 498.111254][T21705] ? mt_find+0x45e/0x8e0 [ 498.111271][T21705] ? __pfx___handle_mm_fault+0x10/0x10 [ 498.111290][T21705] ? __pfx_mt_find+0x10/0x10 [ 498.111321][T21705] handle_mm_fault+0x36d/0xa20 [ 498.111344][T21705] __get_user_pages+0xf9c/0x34d0 [ 498.111369][T21705] ? __pfx___get_user_pages+0x10/0x10 [ 498.111391][T21705] populate_vma_page_range+0x267/0x3f0 [ 498.111411][T21705] ? __pfx_populate_vma_page_range+0x10/0x10 [ 498.111429][T21705] ? __pfx_find_vma_intersection+0x10/0x10 [ 498.111446][T21705] ? do_mmap+0x93f/0x12f0 [ 498.111465][T21705] __mm_populate+0x107/0x3a0 [ 498.111483][T21705] ? __pfx___mm_populate+0x10/0x10 [ 498.111503][T21705] ? up_write+0x290/0x4f0 [ 498.111535][T21705] vm_mmap_pgoff+0x37f/0x470 [ 498.111557][T21705] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 498.111576][T21705] ? do_futex+0x192/0x350 [ 498.111597][T21705] ? __pfx_do_futex+0x10/0x10 [ 498.111620][T21705] ksys_mmap_pgoff+0xe1/0x650 [ 498.111636][T21705] ? __x64_sys_futex+0x34f/0x4d0 [ 498.111654][T21705] ? __x64_sys_futex+0x358/0x4d0 [ 498.111678][T21705] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 498.111696][T21705] ? xfd_validate_state+0x129/0x190 [ 498.111722][T21705] __x64_sys_mmap+0x125/0x190 [ 498.111748][T21705] do_syscall_64+0x106/0xf80 [ 498.111764][T21705] ? clear_bhb_loop+0x40/0x90 [ 498.111782][T21705] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 498.111796][T21705] RIP: 0033:0x7f310f59c819 [ 498.111811][T21705] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 498.111825][T21705] RSP: 002b:00007f311050c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 498.111840][T21705] RAX: ffffffffffffffda RBX: 00007f310f815fa0 RCX: 00007f310f59c819 [ 498.111850][T21705] RDX: 00000000000000df RSI: 0000000000040009 RDI: 0000000000000000 [ 498.111859][T21705] RBP: 00007f310f632c91 R08: 0000000000000007 R09: 0000000000028000 [ 498.111868][T21705] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 498.111877][T21705] R13: 00007f310f816038 R14: 00007f310f815fa0 R15: 00007ffc127e5ce8 [ 498.111896][T21705] [ 501.593918][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.607334][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 502.161453][T21814] netlink: 'syz.2.7643': attribute type 1 has an invalid length. [ 504.810321][T21906] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7687'. [ 509.743138][T22080] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7770'. [ 510.418791][T22110] netlink: 'syz.3.7784': attribute type 1 has an invalid length. [ 510.466156][T22110] nbd: error processing sock list [ 510.514702][T22112] binder_alloc: binder_alloc_mmap_handler: 22111 0-1000 already mapped failed -16 [ 510.684655][T22118] dyndbg: expected <4096 bytes into control [ 512.267129][T22176] netlink: 3 bytes leftover after parsing attributes in process `syz.0.7815'. [ 512.416977][T22176] Process accounting resumed [ 512.600911][T22188] random: crng reseeded on system resumption [ 513.166528][T22210] program syz.3.7832 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 514.861217][T22271] : entered promiscuous mode [ 516.428872][T22330] openvswitch: netlink: IPv6 tunnel dst address is zero [ 517.067977][T22352] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 517.074388][T22352] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 517.857447][T22379] FAULT_INJECTION: forcing a failure. [ 517.857447][T22379] name fail_futex, interval 1, probability 0, space 0, times 1 [ 517.870322][T22379] CPU: 0 UID: 0 PID: 22379 Comm: syz.1.7912 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 517.870350][T22379] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 517.870357][T22379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 517.870366][T22379] Call Trace: [ 517.870372][T22379] [ 517.870378][T22379] dump_stack_lvl+0x100/0x190 [ 517.870406][T22379] should_fail_ex.cold+0x5/0xa [ 517.870425][T22379] should_fail_futex+0x4c/0x60 [ 517.870444][T22379] futex_lock_pi_atomic+0xe7/0xaf0 [ 517.870470][T22379] futex_lock_pi+0x24f/0x7b0 [ 517.870496][T22379] ? __pfx_futex_lock_pi+0x10/0x10 [ 517.870519][T22379] ? __pfx___futex_wait+0x10/0x10 [ 517.870559][T22379] ? __pfx_futex_wake_mark+0x10/0x10 [ 517.870585][T22379] ? ksys_write+0x190/0x250 [ 517.870599][T22379] ? ksys_write+0x190/0x250 [ 517.870617][T22379] do_futex+0x18a/0x350 [ 517.870636][T22379] ? __pfx_do_futex+0x10/0x10 [ 517.870666][T22379] __x64_sys_futex+0x34f/0x4d0 [ 517.870688][T22379] ? __pfx___x64_sys_futex+0x10/0x10 [ 517.870714][T22379] do_syscall_64+0x106/0xf80 [ 517.870730][T22379] ? clear_bhb_loop+0x40/0x90 [ 517.870748][T22379] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 517.870763][T22379] RIP: 0033:0x7f683f59c819 [ 517.870777][T22379] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 517.870791][T22379] RSP: 002b:00007f68403ad028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 517.870806][T22379] RAX: ffffffffffffffda RBX: 00007f683f815fa0 RCX: 00007f683f59c819 [ 517.870815][T22379] RDX: 0000000000000007 RSI: 0000000000000006 RDI: 0000200000000040 [ 517.870824][T22379] RBP: 00007f683f632c91 R08: 0000000000000000 R09: 000000000000c687 [ 517.870833][T22379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 517.870841][T22379] R13: 00007f683f816038 R14: 00007f683f815fa0 R15: 00007ffd95a713d8 [ 517.870861][T22379] [ 518.347838][T22387] openvswitch: netlink: IP tunnel TTL not specified. [ 519.437403][T22424] netlink: ct family unspecified [ 520.080678][T22450] FAULT_INJECTION: forcing a failure. [ 520.080678][T22450] name failslab, interval 1, probability 0, space 0, times 0 [ 520.167522][T22450] CPU: 0 UID: 0 PID: 22450 Comm: syz.3.7948 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 520.167554][T22450] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 520.167560][T22450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 520.167569][T22450] Call Trace: [ 520.167575][T22450] [ 520.167581][T22450] dump_stack_lvl+0x100/0x190 [ 520.167608][T22450] should_fail_ex.cold+0x5/0xa [ 520.167627][T22450] should_failslab+0xc2/0x120 [ 520.167644][T22450] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 520.167669][T22450] ? __d_alloc+0x34/0xa80 [ 520.167685][T22450] ? __pfx_stack_trace_save+0x10/0x10 [ 520.167712][T22450] __d_alloc+0x34/0xa80 [ 520.167732][T22450] d_alloc_parallel+0x111/0x14e0 [ 520.167761][T22450] ? find_held_lock+0x2b/0x80 [ 520.167775][T22450] ? __d_lookup+0x25c/0x4a0 [ 520.167800][T22450] ? __pfx_d_alloc_parallel+0x10/0x10 [ 520.167829][T22450] ? __d_lookup+0x266/0x4a0 [ 520.167855][T22450] lookup_open.isra.0+0x57c/0x11b0 [ 520.167882][T22450] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 520.167907][T22450] ? __pfx___might_resched+0x10/0x10 [ 520.167929][T22450] ? mnt_get_write_access+0x52/0x2f0 [ 520.167953][T22450] ? __pfx_down_write+0x10/0x10 [ 520.167970][T22450] ? mnt_get_write_access+0x1e9/0x2f0 [ 520.167993][T22450] path_openat+0x2291/0x31a0 [ 520.168012][T22450] ? entry_SYSCALL_64_after_hwframe+0x48/0x7f [ 520.168030][T22450] ? __pfx_path_openat+0x10/0x10 [ 520.168054][T22450] do_file_open+0x20e/0x430 [ 520.168072][T22450] ? __pfx_do_file_open+0x10/0x10 [ 520.168101][T22450] ? _raw_spin_unlock+0x28/0x50 [ 520.168123][T22450] ? alloc_fd+0x476/0x790 [ 520.168143][T22450] do_sys_openat2+0x10d/0x1e0 [ 520.168163][T22450] ? __pfx_do_sys_openat2+0x10/0x10 [ 520.168190][T22450] __x64_sys_open+0xfe/0x1d0 [ 520.168210][T22450] ? __pfx___x64_sys_open+0x10/0x10 [ 520.168237][T22450] do_syscall_64+0x106/0xf80 [ 520.168251][T22450] ? clear_bhb_loop+0x40/0x90 [ 520.168269][T22450] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 520.168283][T22450] RIP: 0033:0x7f281dd9c819 [ 520.168297][T22450] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 520.168311][T22450] RSP: 002b:00007f281ec42028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 520.168325][T22450] RAX: ffffffffffffffda RBX: 00007f281e015fa0 RCX: 00007f281dd9c819 [ 520.168334][T22450] RDX: e1d2b27bdc14aabc RSI: 0000000000004242 RDI: 00002000000000c0 [ 520.168343][T22450] RBP: 00007f281de32c91 R08: 0000000000000000 R09: 0000000000000000 [ 520.168352][T22450] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 520.168360][T22450] R13: 00007f281e016038 R14: 00007f281e015fa0 R15: 00007ffc85e16c18 [ 520.168381][T22450] [ 522.294385][T22522] MTRR 1 not used [ 522.610866][T22534] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 523.047694][T22548] openvswitch: netlink: VXLAN extension message has 1 unknown bytes. [ 523.151477][T22554] openvswitch: netlink: IP tunnel dst address not specified [ 523.259742][T22556] netlink: 'syz.0.8001': attribute type 11 has an invalid length. [ 523.855955][T22581] openvswitch: netlink: Missing valid actions attribute. [ 524.795530][T22614] nbd: must specify a size in bytes for the device [ 526.060488][T22660] netlink: Conntrack attr has 5 unknown bytes [ 526.561516][T22676] netlink: 'syz.3.8060': attribute type 2 has an invalid length. [ 530.456322][T22816] FAULT_INJECTION: forcing a failure. [ 530.456322][T22816] name failslab, interval 1, probability 0, space 0, times 0 [ 530.486878][T22816] CPU: 0 UID: 0 PID: 22816 Comm: syz.2.8128 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 530.486916][T22816] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 530.486930][T22816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 530.486940][T22816] Call Trace: [ 530.486945][T22816] [ 530.486951][T22816] dump_stack_lvl+0x100/0x190 [ 530.486980][T22816] should_fail_ex.cold+0x5/0xa [ 530.486999][T22816] should_failslab+0xc2/0x120 [ 530.487016][T22816] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 530.487032][T22816] ? kstrdup_const+0x63/0x80 [ 530.487050][T22816] kstrdup+0x51/0xe0 [ 530.487065][T22816] kstrdup_const+0x63/0x80 [ 530.487084][T22816] alloc_vfsmnt+0xe5/0x6a0 [ 530.487102][T22816] ? __pfx___might_resched+0x10/0x10 [ 530.487126][T22816] clone_mnt+0x4b/0x930 [ 530.487156][T22816] copy_tree+0xfc/0xbf0 [ 530.487171][T22816] ? __pfx_down_write+0x10/0x10 [ 530.487193][T22816] copy_mnt_ns+0x2bd/0xc30 [ 530.487215][T22816] ? create_new_namespaces+0x30/0xac0 [ 530.487232][T22816] ? rcu_is_watching+0x12/0xc0 [ 530.487257][T22816] create_new_namespaces+0xd3/0xac0 [ 530.487272][T22816] ? bpf_lsm_capable+0x9/0x10 [ 530.487288][T22816] ? security_capable+0x80/0x260 [ 530.487305][T22816] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 530.487323][T22816] ksys_unshare+0x473/0xad0 [ 530.487344][T22816] ? __pfx_ksys_unshare+0x10/0x10 [ 530.487377][T22816] __x64_sys_unshare+0x31/0x40 [ 530.487396][T22816] do_syscall_64+0x106/0xf80 [ 530.487411][T22816] ? clear_bhb_loop+0x40/0x90 [ 530.487429][T22816] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 530.487444][T22816] RIP: 0033:0x7f310f59c819 [ 530.487458][T22816] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 530.487472][T22816] RSP: 002b:00007f311050c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 530.487486][T22816] RAX: ffffffffffffffda RBX: 00007f310f815fa0 RCX: 00007f310f59c819 [ 530.487495][T22816] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000020000 [ 530.487505][T22816] RBP: 00007f310f632c91 R08: 0000000000000000 R09: 0000000000000000 [ 530.487513][T22816] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 530.487522][T22816] R13: 00007f310f816038 R14: 00007f310f815fa0 R15: 00007ffc127e5ce8 [ 530.487542][T22816] [ 531.499457][T22824] ksmbd: Unknown IPC event: 14, ignore. [ 532.311822][T22851] netlink: 'syz.2.8146': attribute type 2 has an invalid length. [ 532.489797][T22858] openvswitch: netlink: Duplicate or invalid key (type 0). [ 532.937656][T22875] FAULT_INJECTION: forcing a failure. [ 532.937656][T22875] name failslab, interval 1, probability 0, space 0, times 0 [ 532.951413][T22876] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8158'. [ 533.087473][T22875] CPU: 0 UID: 0 PID: 22875 Comm: syz.1.8155 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 533.087512][T22875] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 533.087521][T22875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 533.087531][T22875] Call Trace: [ 533.087537][T22875] [ 533.087542][T22875] dump_stack_lvl+0x100/0x190 [ 533.087571][T22875] should_fail_ex.cold+0x5/0xa [ 533.087589][T22875] ? udpv6_init_sock+0x24e/0x450 [ 533.087610][T22875] should_failslab+0xc2/0x120 [ 533.087627][T22875] __kmalloc_noprof+0xe0/0x850 [ 533.087651][T22875] ? lockdep_init_map_type+0x5c/0x250 [ 533.087675][T22875] udpv6_init_sock+0x24e/0x450 [ 533.087695][T22875] ? __pfx_udpv6_init_sock+0x10/0x10 [ 533.087718][T22875] inet6_create+0xb21/0x12b0 [ 533.087735][T22875] ? inet6_create+0x7f/0x12b0 [ 533.087752][T22875] __sock_create+0x339/0x860 [ 533.087775][T22875] __sys_socket+0x14d/0x260 [ 533.087795][T22875] ? __pfx___sys_socket+0x10/0x10 [ 533.087820][T22875] __x64_sys_socket+0x72/0xb0 [ 533.087838][T22875] ? lockdep_hardirqs_on+0x78/0x100 [ 533.087854][T22875] do_syscall_64+0x106/0xf80 [ 533.087869][T22875] ? clear_bhb_loop+0x40/0x90 [ 533.087887][T22875] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 533.087902][T22875] RIP: 0033:0x7f683f59c819 [ 533.087915][T22875] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 533.087929][T22875] RSP: 002b:00007f68403ad028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 533.087944][T22875] RAX: ffffffffffffffda RBX: 00007f683f815fa0 RCX: 00007f683f59c819 [ 533.087953][T22875] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 000000000000000a [ 533.087961][T22875] RBP: 00007f683f632c91 R08: 0000000000000000 R09: 0000000000000000 [ 533.087970][T22875] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 533.087978][T22875] R13: 00007f683f816038 R14: 00007f683f815fa0 R15: 00007ffd95a713d8 [ 533.087997][T22875] [ 533.718957][T22885] netlink: zone id is out of range [ 533.759750][T22885] netlink: zone id is out of range [ 533.817469][T22885] netlink: zone id is out of range [ 533.861722][T22885] netlink: zone id is out of range [ 534.038705][T22885] netlink: set zone limit has 8 unknown bytes [ 534.397685][T22910] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 535.092187][T15193] Bluetooth: hci0: ACL packet too small [ 535.555965][T22950] IPVS: length: 131 != 8 [ 535.769921][T22958] netlink: zone id is out of range [ 535.806099][T22958] netlink: zone id is out of range [ 535.846032][T22958] netlink: get zone limit has 8 unknown bytes [ 536.010741][T22965] .^: entered promiscuous mode [ 536.236702][ T30] audit: type=1326 audit(4294967329.500:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22972 comm="syz.2.8206" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f310f59c819 code=0x0 [ 536.314360][T15193] Bluetooth: hci0: unexpected subevent 0x04 length: 122 > 11 [ 537.801931][T23028] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16) [ 537.886782][T23028] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 541.086552][T23139] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE r҄y*"l-y– [ 542.202160][T23177] netlink: del zone limit has 4 unknown bytes [ 542.469402][T23186] Process accounting paused [ 542.644571][T23199] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 543.181799][T23221] device-mapper: ioctl: Invalid data size in the ioctl structure: 0 [ 543.904161][T23251] netlink: 'syz.0.8338': attribute type 11 has an invalid length. [ 543.959947][T23251] netlink: 'syz.0.8338': attribute type 11 has an invalid length. [ 543.999141][T23251] netlink: 'syz.0.8338': attribute type 11 has an invalid length. [ 544.022661][T23251] netlink: 'syz.0.8338': attribute type 11 has an invalid length. [ 544.724471][T23285] nbd: must specify an index to disconnect [ 544.931292][T23293] netlink: 'syz.1.8356': attribute type 2 has an invalid length. [ 544.973077][T23293] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8356'. [ 546.185924][T23343] openvswitch: netlink: Port -2134900732 exceeds max allowable 65535 [ 546.347508][T23348] sctp: [Deprecated]: syz.3.8383 (pid 23348) Use of struct sctp_assoc_value in delayed_ack socket option. [ 546.347508][T23348] Use struct sctp_sack_info instead [ 550.723700][T23516] netlink: 'syz.0.8462': attribute type 11 has an invalid length. [ 550.769597][T23516] netlink: 'syz.0.8462': attribute type 11 has an invalid length. [ 550.803910][T23516] netlink: 'syz.0.8462': attribute type 11 has an invalid length. [ 551.200755][T23538] netlink: 'syz.3.8472': attribute type 1 has an invalid length. [ 551.389016][T23545] netlink: NAT attribute has 18 unknown bytes [ 551.582562][T23552] openvswitch: netlink: Geneve option length err (len 256, max 255). [ 551.743416][T23556] netlink: 'syz.0.8481': attribute type 1 has an invalid length. [ 552.454051][T23577] blktrace: Concurrent blktraces are not allowed on loop2 [ 552.871115][T23593] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xeffffd12 [ 555.409907][T23697] netlink: 'syz.2.8548': attribute type 2 has an invalid length. [ 556.155075][T23723] block nbd2: not configured, cannot reconfigure [ 556.511067][T23737] random: crng reseeded on system resumption [ 557.695502][T23782] netlink: 'syz.1.8588': attribute type 12 has an invalid length. [ 557.909301][T23788] netlink: zone id is out of range [ 557.935945][T23788] netlink: zone id is out of range [ 559.324358][T23843] nbd: illegal input index -1073741824 [ 559.989878][T23869] netlink: 'syz.1.8631': attribute type 1 has an invalid length. [ 560.047363][T23871] netlink: 'syz.0.8632': attribute type 1 has an invalid length. [ 560.585742][T23895] netlink: 'syz.1.8643': attribute type 11 has an invalid length. [ 560.967120][T23913] netlink: 16 bytes leftover after parsing attributes in process `syz.1.8652'. [ 561.682521][T23936] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8662'. [ 561.751188][T23936] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 563.031713][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.038116][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 563.633086][T24019] openvswitch: netlink: Message has 20 unknown bytes. [ 564.770008][T24061] tc_dump_action: action bad kind [ 565.787730][T24103] openvswitch: netlink: IP tunnel dst address not specified [ 566.645467][T24141] netlink: get zone limit has 4 unknown bytes [ 566.688737][T24144] netlink: 'syz.3.8761': attribute type 11 has an invalid length. [ 566.696592][T24144] netlink: 'syz.3.8761': attribute type 11 has an invalid length. [ 566.774914][T24144] netlink: 'syz.3.8761': attribute type 11 has an invalid length. [ 567.192561][T24162] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8770'. [ 567.559340][T24177] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 568.790426][T24227] openvswitch: netlink: VXLAN extension 64 out of range max 1 [ 569.635409][T24259] program syz.2.8816 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 570.627820][T24296] netlink: Unknown NAT attribute (type=262, max=9) [ 571.045965][T24314] nbd: illegal input index 37139 [ 571.330565][T24325] openvswitch: netlink: IP tunnel dst address not specified [ 572.489686][T24364] Process accounting resumed [ 574.630027][T24442] openvswitch: netlink: Flow key attr not present in new flow. [ 574.847584][T24449] ima: policy update failed [ 574.857566][ T30] audit: type=1802 audit(4294967368.120:45): pid=24449 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.8908" res=0 errno=0 [ 575.497341][T24474] nbd: couldn't find device at index 33904 [ 575.879555][T24486] debugfs: '!PjE r҄y*"l-y–L̓]' already exists in 'ieee80211' [ 577.957778][T24558] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 578.109096][T24558] CIFS mount error: No usable UNC path provided in device string! [ 578.109096][T24558] [ 578.152653][T24558] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 578.312735][T24566] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 580.801622][T24651] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 581.827370][T24694] netlink: 'syz.2.9024': attribute type 1 has an invalid length. [ 581.865662][T24694] netlink: 'syz.2.9024': attribute type 1 has an invalid length. [ 581.925268][T24694] netlink: 124 bytes leftover after parsing attributes in process `syz.2.9024'. [ 581.961148][T24694] netlink: 100 bytes leftover after parsing attributes in process `syz.2.9024'. [ 582.689668][T24726] &#$@\]\-: entered promiscuous mode [ 583.909905][T24780] openvswitch: netlink: Flow actions attr not present in new flow. [ 584.574959][T24808] openvswitch: netlink: IPv4 tunnel dst address is zero [ 585.403128][ T30] audit: type=1800 audit(4295032915.675:46): pid=24837 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.9091" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 585.962786][T24853] netlink: Failed to add  helper -22 [ 586.289075][T24870] openvswitch: netlink: Multiple metadata blocks provided [ 587.022591][T24904] FAULT_INJECTION: forcing a failure. [ 587.022591][T24904] name failslab, interval 1, probability 0, space 0, times 0 [ 587.091462][T24904] CPU: 0 UID: 0 PID: 24904 Comm: syz.2.9123 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 587.091501][T24904] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 587.091511][T24904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 587.091521][T24904] Call Trace: [ 587.091526][T24904] [ 587.091532][T24904] dump_stack_lvl+0x100/0x190 [ 587.091560][T24904] should_fail_ex.cold+0x5/0xa [ 587.091578][T24904] ? memcg_list_lru_alloc+0x4ec/0x740 [ 587.091601][T24904] should_failslab+0xc2/0x120 [ 587.091618][T24904] __kmalloc_noprof+0xe0/0x850 [ 587.091641][T24904] ? ipcget+0xee/0xf50 [ 587.091663][T24904] memcg_list_lru_alloc+0x4ec/0x740 [ 587.091691][T24904] ? __pfx_memcg_list_lru_alloc+0x10/0x10 [ 587.091713][T24904] ? rcu_read_unlock+0x17/0x60 [ 587.091736][T24904] ? get_mem_cgroup_from_objcg+0xd3/0x330 [ 587.091760][T24904] __memcg_slab_post_alloc_hook+0x130/0x990 [ 587.091782][T24904] ? kasan_save_track+0x14/0x30 [ 587.091799][T24904] kmem_cache_alloc_lru_noprof+0x592/0x6e0 [ 587.091822][T24904] ? hugetlbfs_alloc_inode+0x8c/0x1d0 [ 587.091842][T24904] hugetlbfs_alloc_inode+0x8c/0x1d0 [ 587.091858][T24904] ? __pfx_hugetlbfs_alloc_inode+0x10/0x10 [ 587.091875][T24904] alloc_inode+0x68/0x250 [ 587.091896][T24904] new_inode+0x22/0x1c0 [ 587.091917][T24904] hugetlbfs_get_inode+0x313/0x750 [ 587.091946][T24904] hugetlb_file_setup+0x3cc/0x5b0 [ 587.091967][T24904] newseg+0xabb/0xed0 [ 587.091991][T24904] ? __pfx_newseg+0x10/0x10 [ 587.092011][T24904] ? down_write+0x146/0x1f0 [ 587.092030][T24904] ? ksys_write+0x190/0x250 [ 587.092044][T24904] ? ksys_write+0x190/0x250 [ 587.092062][T24904] ipcget+0xee/0xf50 [ 587.092082][T24904] ? do_futex+0x192/0x350 [ 587.092103][T24904] ? __pfx_do_futex+0x10/0x10 [ 587.092125][T24904] ? __pfx_ipcget+0x10/0x10 [ 587.092146][T24904] ? __x64_sys_futex+0x34f/0x4d0 [ 587.092165][T24904] ? __x64_sys_futex+0x358/0x4d0 [ 587.092187][T24904] __x64_sys_shmget+0x13b/0x1b0 [ 587.092208][T24904] ? __pfx___x64_sys_shmget+0x10/0x10 [ 587.092238][T24904] do_syscall_64+0x106/0xf80 [ 587.092253][T24904] ? clear_bhb_loop+0x40/0x90 [ 587.092271][T24904] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 587.092286][T24904] RIP: 0033:0x7f310f59c819 [ 587.092300][T24904] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 587.092314][T24904] RSP: 002b:00007f311050c028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 587.092329][T24904] RAX: ffffffffffffffda RBX: 00007f310f815fa0 RCX: 00007f310f59c819 [ 587.092340][T24904] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 587.092349][T24904] RBP: 00007f310f632c91 R08: 0000000000000000 R09: 0000000000000000 [ 587.092358][T24904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 587.092367][T24904] R13: 00007f310f816038 R14: 00007f310f815fa0 R15: 00007ffc127e5ce8 [ 587.092386][T24904] [ 588.118533][T24924] HSR: entered promiscuous mode [ 588.745010][T24950] openvswitch: netlink: ct_state flags aa1414ac unsupported [ 588.921346][T24956] netlink: Conntrack attr type has unexpected length (type=3, length=0, expected=8) [ 589.704167][T24990] netlink: 12 bytes leftover after parsing attributes in process `syz.0.9164'. [ 590.114586][T25006] netlink: zone id is out of range [ 590.682037][T25032] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 590.707277][T12226] Bluetooth: hci2: command 0x0406 tx timeout [ 591.498636][T25062] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9200'. [ 592.263916][T25087] NFSD: Failed to start, no listeners configured. [ 592.964072][T25113] No such timeout policy "" [ 592.997310][T25113] netlink: Failed to associated timeout policy '' [ 593.775134][T25134] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9236'. [ 595.757890][T25196] netlink: Unknown conntrack attr (type=257, max=9) [ 596.238942][T25210] Unable to find swap-space signature [ 596.255631][T25209] NFSD: Failed to start, no listeners configured. [ 596.556817][T25216] NFSD: Failed to start, no listeners configured. [ 596.821379][T25224] openvswitch: HfR: Dropping previously announced user features [ 597.953575][T25259] : entered promiscuous mode [ 598.188489][T25265] openvswitch: netlink: IP tunnel dst address not specified [ 599.278156][T15193] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 599.278180][T15193] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 599.295339][T15193] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 599.295360][T15193] Bluetooth: hci1: Unknown advertising packet type: 0x19 [ 599.303289][T15193] Bluetooth: hci1: Unknown advertising packet type: 0x34 [ 599.310346][T15193] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 599.317430][T15193] Bluetooth: hci1: Malformed LE Event: 0x0d [ 599.927799][T25323] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 600.257520][T25331] delete_channel: no stack [ 600.404349][T25338] openvswitch: netlink: Key 15 has unexpected len 16 expected 4 [ 600.839072][T25357] netlink: 28 bytes leftover after parsing attributes in process `syz.2.9343'. [ 600.885928][T25357] netlink: 29 bytes leftover after parsing attributes in process `syz.2.9343'. [ 601.718881][T25383] NFSD: Failed to start, no listeners configured. [ 602.063262][T25395] queue_state_write: unsupported operation '' [ 602.118571][T25395] queue_state_write: use 'run', 'start' or 'kick' [ 602.639379][T25409] Process accounting paused [ 602.805787][T25422] tc_dump_action: action bad kind [ 602.830917][T25423] crash hp: kexec_trylock() failed, kdump image may be inaccurate [ 604.296314][T25421] kexec: Could not allocate control_code_buffer [ 604.650682][T25471] delete_channel: no stack [ 604.802585][T15193] Bluetooth: hci0: unexpected event 0x3e length: 508 > 260 [ 604.802608][T15193] Bluetooth: hci0: unexpected subevent 0x02 length: 507 > 260 [ 604.818239][T15193] Bluetooth: hci0: Dropping invalid advertising data [ 604.824910][T15193] Bluetooth: hci0: unknown advertising packet type: 0xe9 [ 604.824931][T15193] Bluetooth: hci0: Dropping invalid advertising data [ 604.838747][T15193] Bluetooth: hci0: Malformed LE Event: 0x02 [ 605.855529][T25511] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 606.288224][T25530] netlink: 'syz.0.9427': attribute type 1 has an invalid length. [ 606.928531][T25551] netlink: Invalid conntrack timeout [ 608.232454][T25599] netlink: 'syz.3.9459': attribute type 1 has an invalid length. [ 608.655562][T25614] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9468'. [ 609.076871][T25633] netlink: 'syz.0.9476': attribute type 1 has an invalid length. [ 609.479940][T25648] sd 0:0:1:0: PR command failed: 1026 [ 609.512732][T25648] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 609.547643][T25648] sd 0:0:1:0: Add. Sense: Invalid command operation code syzkaller syzkaller login: [ 610.638562][T25685] netlink: 'syz.1.9501': attribute type 11 has an invalid length. [ 610.676656][T25685] netlink: 'syz.1.9501': attribute type 11 has an invalid length. [ 610.701703][T25685] netlink: 'syz.1.9501': attribute type 11 has an invalid length. [ 611.078033][T15193] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 611.078056][T15193] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 611.093028][T15193] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 611.093044][T15193] Bluetooth: hci0: adv larger than maximum supported [ 611.100386][T15193] Bluetooth: hci0: adv larger than maximum supported [ 611.107046][T15193] Bluetooth: hci0: Malformed LE Event: 0x0d [ 612.095705][T15193] Bluetooth: hci1: SCO packet too small [ 612.804592][T15193] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 612.804635][T15193] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260 [ 612.820433][T15193] Bluetooth: hci3: Unknown advertising packet type: 0x7f [ 612.820450][T15193] Bluetooth: hci3: adv larger than maximum supported [ 612.827547][T15193] Bluetooth: hci3: Unknown advertising packet type: 0x5b [ 612.834209][T15193] Bluetooth: hci3: Malformed LE Event: 0x0d [ 613.162787][T25764] mmap: syz.3.9537 (25764): VmData 37597184 exceed data ulimit 3. Update limits or use boot option ignore_rlimit_data. [ 614.402151][T25802] crash hp: kexec_trylock() failed, kdump image may be inaccurate [ 614.637741][T25811] usb usb21: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 615.498263][T25841] netlink: NAT attribute has 4 unknown bytes [ 615.749813][T25800] kexec: Could not allocate control_code_buffer [ 616.469210][ T30] audit: type=1326 audit(4295032946.735:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25876 comm="syz.2.9593" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f310f59c819 code=0x0 [ 617.075132][T25900] bridge0: port 3(veth0_to_bridge) entered blocking state [ 617.118901][T25900] bridge0: port 3(veth0_to_bridge) entered disabled state [ 617.147791][T25900] veth0_to_bridge: entered allmulticast mode [ 617.175073][T25900] veth0_to_bridge: entered promiscuous mode [ 617.203878][T25900] bridge0: adding interface veth0_to_bridge with same address as a received packet (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 617.265336][T25900] bridge0: port 3(veth0_to_bridge) entered blocking state [ 617.272904][T25900] bridge0: port 3(veth0_to_bridge) entered forwarding state [ 617.544218][T25918] netlink: 148 bytes leftover after parsing attributes in process `syz.3.9612'. [ 617.994935][T25933] sctp: [Deprecated]: syz.3.9619 (pid 25933) Use of int in max_burst socket option. [ 617.994935][T25933] Use struct sctp_assoc_value instead [ 620.958928][T26044] netlink: 186 bytes leftover after parsing attributes in process `syz.2.9671'. [ 621.254522][T26054] netlink: 16 bytes leftover after parsing attributes in process `syz.3.9676'. [ 621.886053][T26078] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9688'. [ 621.939784][T26078] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9688'. [ 622.704116][T26108] netlink: 342 bytes leftover after parsing attributes in process `syz.0.9703'. [ 622.830719][T26112] netlink: 'syz.1.9705': attribute type 2 has an invalid length. [ 623.255458][T26124] sctp: [Deprecated]: syz.1.9711 (pid 26124) Use of int in maxseg socket option. [ 623.255458][T26124] Use struct sctp_assoc_value instead [ 624.059173][T26155] netlink: 350 bytes leftover after parsing attributes in process `syz.1.9726'. [ 624.413515][T26168] vivid-007: ================= START STATUS ================= [ 624.446581][T26168] vivid-007: Generate PTS: true [ 629.757189][ C0] sched: DL replenish lagged too much [ 653.361021][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 654.611652][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 733.767151][ C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 733.774229][ C0] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P5819/1:b..l P26165/1:b..l [ 733.783820][ C0] rcu: (detected by 0, t=10502 jiffies, g=128541, q=793 ncpus=1) [ 733.791628][ C0] task:syz.0.9730 state:R running task stack:27320 pid:26165 tgid:26162 ppid:5826 task_flags:0x40044c flags:0x00080000 [ 733.806200][ C0] Call Trace: [ 733.809475][ C0] [ 733.812398][ C0] __schedule+0xfee/0x6120 [ 733.816816][ C0] ? __lock_acquire+0x4a5/0x2630 [ 733.821762][ C0] ? __pfx___schedule+0x10/0x10 [ 733.826599][ C0] ? mark_held_locks+0x40/0x70 [ 733.831365][ C0] preempt_schedule_irq+0x50/0x90 [ 733.836371][ C0] irqentry_exit+0x17b/0x670 [ 733.840967][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 733.846935][ C0] RIP: 0010:lock_acquire+0x42/0x380 [ 733.852123][ C0] Code: fd 53 89 d3 48 83 ec 38 65 4c 8b 3d a0 92 29 12 4c 89 7c 24 30 4d 89 cf 66 90 65 8b 05 bb 92 29 12 83 f8 07 0f 87 f0 00 00 00 <48> 0f a3 05 86 94 f5 0e 0f 82 c2 02 00 00 8b 35 4e c8 f5 0e 85 f6 [ 733.871711][ C0] RSP: 0018:ffffc90003b17200 EFLAGS: 00000297 [ 733.877761][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000002 [ 733.885714][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff8e7e7760 [ 733.893668][ C0] RBP: ffffffff8e7e7760 R08: 0000000000000000 R09: 0000000000000000 [ 733.901617][ C0] R10: 0000000000000200 R11: 000000000000c850 R12: 0000000000000002 [ 733.909574][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 733.917541][ C0] ? unwind_next_frame+0x3be/0x1ea0 [ 733.922725][ C0] ? unwind_next_frame+0x3be/0x1ea0 [ 733.927909][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 733.934046][ C0] unwind_next_frame+0xd1/0x1ea0 [ 733.938985][ C0] ? unwind_next_frame+0xbd/0x1ea0 [ 733.944081][ C0] ? get_signal+0x1ec7/0x21e0 [ 733.948761][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 733.954912][ C0] arch_stack_walk+0x94/0xf0 [ 733.959495][ C0] ? get_signal+0x1ec7/0x21e0 [ 733.964170][ C0] stack_trace_save+0x8e/0xc0 [ 733.968839][ C0] ? __pfx_stack_trace_save+0x10/0x10 [ 733.974201][ C0] ? __lock_acquire+0x4a5/0x2630 [ 733.979147][ C0] kasan_save_stack+0x30/0x50 [ 733.983810][ C0] ? kasan_save_stack+0x30/0x50 [ 733.988643][ C0] ? kasan_save_track+0x14/0x30 [ 733.993502][ C0] ? kasan_save_free_info+0x3b/0x70 [ 733.998685][ C0] ? __kasan_slab_free+0x5f/0x80 [ 734.003603][ C0] ? free_to_pcs_bulk+0x255/0x8e0 [ 734.008614][ C0] ? mt_destroy_walk+0xa0a/0xfa0 [ 734.013534][ C0] ? __mt_destroy+0x2d7/0x390 [ 734.018193][ C0] ? exit_mmap+0x47c/0xa30 [ 734.022596][ C0] ? __mmput+0x12a/0x410 [ 734.026821][ C0] ? mmput+0x67/0x80 [ 734.030702][ C0] ? do_exit+0x819/0x2b60 [ 734.035019][ C0] ? do_group_exit+0xd5/0x2a0 [ 734.039681][ C0] ? get_signal+0x1ec7/0x21e0 [ 734.044365][ C0] kasan_save_track+0x14/0x30 [ 734.049026][ C0] kasan_save_free_info+0x3b/0x70 [ 734.054036][ C0] __kasan_slab_free+0x5f/0x80 [ 734.058782][ C0] free_to_pcs_bulk+0x255/0x8e0 [ 734.063654][ C0] mt_destroy_walk+0xa0a/0xfa0 [ 734.068407][ C0] ? __pfx_mt_destroy_walk+0x10/0x10 [ 734.073681][ C0] __mt_destroy+0x2d7/0x390 [ 734.078168][ C0] exit_mmap+0x47c/0xa30 [ 734.082396][ C0] ? __pfx_exit_mmap+0x10/0x10 [ 734.087167][ C0] __mmput+0x12a/0x410 [ 734.091220][ C0] mmput+0x67/0x80 [ 734.094925][ C0] do_exit+0x819/0x2b60 [ 734.099075][ C0] ? __pfx_do_exit+0x10/0x10 [ 734.103653][ C0] ? do_raw_spin_lock+0x128/0x260 [ 734.108667][ C0] ? find_held_lock+0x2b/0x80 [ 734.113326][ C0] ? get_signal+0x7e0/0x21e0 [ 734.117904][ C0] do_group_exit+0xd5/0x2a0 [ 734.122397][ C0] get_signal+0x1ec7/0x21e0 [ 734.126893][ C0] ? __pfx_get_signal+0x10/0x10 [ 734.131732][ C0] ? do_futex+0x192/0x350 [ 734.136052][ C0] arch_do_signal_or_restart+0x91/0x770 [ 734.141601][ C0] ? find_held_lock+0x2b/0x80 [ 734.146280][ C0] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 734.152441][ C0] ? __pfx___x64_sys_futex+0x10/0x10 [ 734.157730][ C0] exit_to_user_mode_loop+0x86/0x4a0 [ 734.163011][ C0] do_syscall_64+0x668/0xf80 [ 734.167586][ C0] ? clear_bhb_loop+0x40/0x90 [ 734.172249][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 734.178128][ C0] RIP: 0033:0x7f94a1d9c819 [ 734.182531][ C0] RSP: 002b:00007f94a2cfe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 734.190924][ C0] RAX: fffffffffffffe00 RBX: 00007f94a2015fa8 RCX: 00007f94a1d9c819 [ 734.198886][ C0] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f94a2015fa8 [ 734.206840][ C0] RBP: 00007f94a2015fa0 R08: 0000000000000000 R09: 0000000000000000 [ 734.214793][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 734.222755][ C0] R13: 00007f94a2016038 R14: 00007ffe3fffed20 R15: 00007ffe3fffee08 [ 734.230724][ C0] [ 734.233726][ C0] task:udevd state:R running task stack:23688 pid:5819 tgid:5819 ppid:5196 task_flags:0x400140 flags:0x00080000 [ 734.247203][ C0] Call Trace: [ 734.250475][ C0] [ 734.253408][ C0] __schedule+0xfee/0x6120 [ 734.257817][ C0] ? __lock_acquire+0x4a5/0x2630 [ 734.262745][ C0] ? __pfx___schedule+0x10/0x10 [ 734.267580][ C0] ? mark_held_locks+0x40/0x70 [ 734.272344][ C0] preempt_schedule_irq+0x50/0x90 [ 734.277351][ C0] irqentry_exit+0x17b/0x670 [ 734.281947][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 734.287921][ C0] RIP: 0010:lock_acquire+0x5e/0x380 [ 734.293107][ C0] Code: 05 bb 92 29 12 83 f8 07 0f 87 f0 00 00 00 48 0f a3 05 86 94 f5 0e 0f 82 c2 02 00 00 8b 35 4e c8 f5 0e 85 f6 0f 85 dd 00 00 00 <48> 8b 44 24 30 65 48 2b 05 5d 92 29 12 0f 85 02 03 00 00 48 83 c4 [ 734.312695][ C0] RSP: 0018:ffffc90003bb6ba0 EFLAGS: 00000206 [ 734.318742][ C0] RAX: 0000000000000046 RBX: 0000000000000000 RCX: 0000000000000002 [ 734.326707][ C0] RDX: 0000000000000000 RSI: ffffffff8de5d715 RDI: ffffffff8c1b1e20 [ 734.334663][ C0] RBP: ffffffff8e7e7760 R08: 00000000a5b9ddf6 R09: 0000000000000007 [ 734.342615][ C0] R10: 0000000000000200 R11: 0000000000000000 R12: 0000000000000002 [ 734.350566][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 734.358540][ C0] ? unwind_next_frame+0x3be/0x1ea0 [ 734.363741][ C0] ? unwind_next_frame+0x3be/0x1ea0 [ 734.368934][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 734.375074][ C0] unwind_next_frame+0xd1/0x1ea0 [ 734.379993][ C0] ? unwind_next_frame+0xbd/0x1ea0 [ 734.385089][ C0] ? get_page_from_freelist+0x111d/0x3140 [ 734.390813][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 734.396965][ C0] arch_stack_walk+0x94/0xf0 [ 734.401560][ C0] ? get_page_from_freelist+0x111d/0x3140 [ 734.407278][ C0] stack_trace_save+0x8e/0xc0 [ 734.411946][ C0] ? __pfx_stack_trace_save+0x10/0x10 [ 734.417324][ C0] save_stack+0x162/0x1e0 [ 734.421653][ C0] ? __pfx_save_stack+0x10/0x10 [ 734.426493][ C0] ? post_alloc_hook+0x153/0x170 [ 734.431430][ C0] ? get_page_from_freelist+0x111d/0x3140 [ 734.437149][ C0] ? __lock_acquire+0x4a5/0x2630 [ 734.442079][ C0] __set_page_owner+0x8c/0x540 [ 734.446853][ C0] ? __pfx___set_page_owner+0x10/0x10 [ 734.452212][ C0] ? bad_range+0x261/0x400 [ 734.456625][ C0] ? lockdep_hardirqs_on+0x78/0x100 [ 734.461811][ C0] post_alloc_hook+0x153/0x170 [ 734.466581][ C0] get_page_from_freelist+0x111d/0x3140 [ 734.472142][ C0] ? __pfx___might_resched+0x10/0x10 [ 734.477439][ C0] ? prepare_alloc_pages+0x16d/0x5f0 [ 734.482724][ C0] __alloc_frozen_pages_noprof+0x27c/0x2ba0 [ 734.488623][ C0] ? __pfx_stack_trace_save+0x10/0x10 [ 734.494002][ C0] ? stack_depot_save_flags+0x27/0x9d0 [ 734.499446][ C0] ? find_held_lock+0x2b/0x80 [ 734.504109][ C0] ? __kfree_rcu_sheaf+0x195/0x720 [ 734.509206][ C0] ? kasan_save_stack+0x3f/0x50 [ 734.514038][ C0] ? kasan_save_stack+0x30/0x50 [ 734.518866][ C0] ? kasan_save_track+0x14/0x30 [ 734.523693][ C0] ? __kasan_slab_alloc+0x89/0x90 [ 734.528704][ C0] ? __anon_vma_prepare+0xae/0x5e0 [ 734.533815][ C0] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 734.540134][ C0] ? mtree_range_walk+0x6ce/0xcd0 [ 734.545167][ C0] ? entry_SYSCALL_64_after_hwframe+0x55/0x7f [ 734.551221][ C0] ? lock_acquire+0x1cf/0x380 [ 734.555904][ C0] ? find_held_lock+0x2b/0x80 [ 734.560564][ C0] ? page_table_check_set+0x49a/0xa10 [ 734.565917][ C0] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 734.571801][ C0] ? policy_nodemask+0xed/0x4f0 [ 734.576640][ C0] alloc_pages_mpol+0x1fb/0x550 [ 734.581474][ C0] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 734.586831][ C0] ? __page_table_check_ptes_set+0x1b5/0x4e0 [ 734.592798][ C0] folio_alloc_mpol_noprof+0x36/0x340 [ 734.598160][ C0] vma_alloc_folio_noprof+0xed/0x1d0 [ 734.603441][ C0] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 734.609332][ C0] do_anonymous_page+0xb3a/0x1fb0 [ 734.614448][ C0] __handle_mm_fault+0x1d48/0x2b60 [ 734.619550][ C0] ? mt_find+0x45e/0x8e0 [ 734.623774][ C0] ? __pfx___handle_mm_fault+0x10/0x10 [ 734.629308][ C0] ? __pfx_mt_find+0x10/0x10 [ 734.633892][ C0] ? find_vma+0xbf/0x140 [ 734.638118][ C0] ? __pfx_find_vma+0x10/0x10 [ 734.642782][ C0] handle_mm_fault+0x36d/0xa20 [ 734.647549][ C0] do_user_addr_fault+0x74c/0x12f0 [ 734.652649][ C0] exc_page_fault+0x6f/0xd0 [ 734.657226][ C0] asm_exc_page_fault+0x26/0x30 [ 734.662060][ C0] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 734.667941][ C0] Code: 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 e9 cf 93 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 734.687530][ C0] RSP: 0018:ffffc90003bb78e8 EFLAGS: 00050206 [ 734.693581][ C0] RAX: 0000000000000001 RBX: 00007fdcc7da1000 RCX: 0000000000001000 [ 734.701535][ C0] RDX: 0000000000000001 RSI: ffff88802959a000 RDI: 00007fdcc7da1000 [ 734.709485][ C0] RBP: ffffc90003bb7d80 R08: 0000000000000000 R09: ffffed10052b35ff [ 734.717458][ C0] R10: ffff88802959afff R11: 0000000000000000 R12: 00007fdcc7da2000 [ 734.725432][ C0] R13: 00007ffffffff000 R14: ffff88802959a000 R15: 0000000000001000 [ 734.733421][ C0] _copy_to_iter+0x391/0x1720 [ 734.738105][ C0] ? __pfx__copy_to_iter+0x10/0x10 [ 734.743209][ C0] ? folio_mark_accessed+0xf3/0x1040 [ 734.748476][ C0] ? __pfx_filemap_get_pages+0x10/0x10 [ 734.753937][ C0] ? __pfx_folio_mark_accessed+0x10/0x10 [ 734.759557][ C0] copy_page_to_iter+0x12a/0x1e0 [ 734.764484][ C0] filemap_read+0x7a9/0x10a0 [ 734.769064][ C0] ? __pfx_filemap_read+0x10/0x10 [ 734.774082][ C0] ? __pfx_down_read+0x10/0x10 [ 734.778842][ C0] blkdev_read_iter+0x2c4/0x4f0 [ 734.783684][ C0] ? __pfx_blkdev_read_iter+0x10/0x10 [ 734.789066][ C0] vfs_read+0x825/0xb30 [ 734.793208][ C0] ? __pfx_vfs_read+0x10/0x10 [ 734.797872][ C0] ? ksys_mmap_pgoff+0xe9/0x650 [ 734.802726][ C0] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 734.808603][ C0] ksys_read+0x12a/0x250 [ 734.812828][ C0] ? __pfx_ksys_read+0x10/0x10 [ 734.817576][ C0] do_syscall_64+0x106/0xf80 [ 734.822148][ C0] ? clear_bhb_loop+0x40/0x90 [ 734.826822][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 734.832698][ C0] RIP: 0033:0x7fdcc7ea7407 [ 734.837183][ C0] RSP: 002b:00007fff423065f0 EFLAGS: 00000202 ORIG_RAX: 0000000000000000 [ 734.845575][ C0] RAX: ffffffffffffffda RBX: 00007fdcc85cc880 RCX: 00007fdcc7ea7407 [ 734.853549][ C0] RDX: 0000000000040000 RSI: 00007fdcc7da0000 RDI: 0000000000000009 [ 734.861502][ C0] RBP: 000055b8c2a33050 R08: 0000000000000000 R09: 0000000000000000 [ 734.869543][ C0] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000 [ 734.877495][ C0] R13: 000000003ff80000 R14: 000055b8c2a4a5c8 R15: 00007fdcc86f339c [ 734.885472][ C0] [ 734.888501][ C0] rcu: rcu_preempt kthread starved for 1618 jiffies! g128541 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 734.899698][ C0] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 734.909668][ C0] rcu: RCU grace-period kthread stack dump: [ 734.915538][ C0] task:rcu_preempt state:R running task stack:27832 pid:16 tgid:16 ppid:2 task_flags:0x208040 flags:0x00080000 [ 734.929020][ C0] Call Trace: [ 734.932285][ C0] [ 734.935202][ C0] __schedule+0xfee/0x6120 [ 734.939605][ C0] ? __lock_acquire+0x4a5/0x2630 [ 734.944541][ C0] ? __pfx___schedule+0x10/0x10 [ 734.949374][ C0] ? find_held_lock+0x2b/0x80 [ 734.954053][ C0] ? schedule+0x2bf/0x390 [ 734.958369][ C0] schedule+0xdd/0x390 [ 734.962420][ C0] schedule_timeout+0x127/0x280 [ 734.967258][ C0] ? __pfx_schedule_timeout+0x10/0x10 [ 734.972619][ C0] ? __pfx_process_timeout+0x10/0x10 [ 734.977896][ C0] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 734.983725][ C0] ? prepare_to_swait_event+0xdf/0x4a0 [ 734.989180][ C0] rcu_gp_fqs_loop+0x1a9/0x900 [ 734.993946][ C0] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 734.999231][ C0] ? __pfx_rcu_gp_init+0x10/0x10 [ 735.004166][ C0] ? __pfx_rcu_gp_cleanup+0x10/0x10 [ 735.009359][ C0] ? rcu_is_watching+0x12/0xc0 [ 735.014119][ C0] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 735.019923][ C0] rcu_gp_kthread+0x179/0x230 [ 735.024587][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 735.029780][ C0] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 735.035597][ C0] ? __kthread_parkme+0x18c/0x230 [ 735.040631][ C0] ? kthread+0x13a/0x450 [ 735.044867][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 735.050047][ C0] kthread+0x370/0x450 [ 735.054103][ C0] ? __pfx_kthread+0x10/0x10 [ 735.058679][ C0] ret_from_fork+0x754/0xd80 [ 735.063274][ C0] ? __pfx_ret_from_fork+0x10/0x10 [ 735.068374][ C0] ? __switch_to+0x7b4/0x1120 [ 735.073034][ C0] ? __pfx_kthread+0x10/0x10 [ 735.077609][ C0] ret_from_fork_asm+0x1a/0x30 [ 735.082365][ C0] [ 735.085376][ C0] rcu: Stack dump where RCU GP kthread last ran: [ 735.091684][ C0] CPU: 0 UID: 0 PID: 3410 Comm: kworker/R-bat_e Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 735.102973][ C0] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 735.115175][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 735.125211][ C0] Workqueue: bat_events batadv_dat_purge [ 735.130842][ C0] RIP: 0010:check_preemption_disabled+0x4/0xe0 [ 735.136981][ C0] Code: 8b 05 3c a0 7f 08 85 c0 74 04 90 0f 0b 90 e9 53 fc ff ff 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 41 54 55 53 <48> 83 ec 08 65 8b 1d 35 5c 7f 08 65 f7 05 26 5c 7f 08 ff ff ff 7f [ 735.156587][ C0] RSP: 0018:ffffc90000006c90 EFLAGS: 00000283 [ 735.162636][ C0] RAX: 0000000000000000 RBX: ffffffff8e7e7760 RCX: ffffffff91797c01 [ 735.170605][ C0] RDX: 0000000000000000 RSI: ffffffff8c1b1da0 RDI: ffffffff8c1b1de0 [ 735.178556][ C0] RBP: ffffffff81b7c03e R08: 0000000000000001 R09: 0000000000000007 [ 735.186522][ C0] R10: 0000000000000200 R11: 000000000000c8b1 R12: ffffc90000006dd0 [ 735.194480][ C0] R13: ffffc90000006d80 R14: ffffc90000007ff8 R15: ffffc90000006db4 [ 735.202433][ C0] FS: 0000000000000000(0000) GS:ffff888124340000(0000) knlGS:0000000000000000 [ 735.211345][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 735.217910][ C0] CR2: 00007f760e630707 CR3: 0000000065d46000 CR4: 00000000003526f0 [ 735.225867][ C0] Call Trace: [ 735.229131][ C0] [ 735.231958][ C0] ? unwind_next_frame+0x3be/0x1ea0 [ 735.237144][ C0] rcu_is_watching+0x12/0xc0 [ 735.241726][ C0] ? unwind_next_frame+0x3be/0x1ea0 [ 735.246924][ C0] lock_release+0x263/0x320 [ 735.251418][ C0] unwind_next_frame+0x3c3/0x1ea0 [ 735.256440][ C0] ? handle_softirqs+0x1eb/0x9e0 [ 735.261360][ C0] ? br_nf_dev_queue_xmit+0x5c8/0x2a20 [ 735.266810][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 735.272948][ C0] arch_stack_walk+0x94/0xf0 [ 735.277523][ C0] ? __batadv_dat_purge.part.0+0x294/0x3c0 [ 735.283334][ C0] ? do_softirq+0xac/0xe0 [ 735.287648][ C0] stack_trace_save+0x8e/0xc0 [ 735.292337][ C0] ? __pfx_stack_trace_save+0x10/0x10 [ 735.297690][ C0] ? lock_acquire+0x1cf/0x380 [ 735.302373][ C0] ? lock_acquire+0x1cf/0x380 [ 735.307034][ C0] kasan_save_stack+0x30/0x50 [ 735.311691][ C0] ? kasan_save_stack+0x30/0x50 [ 735.316523][ C0] ? kasan_save_track+0x14/0x30 [ 735.321351][ C0] ? __kasan_slab_alloc+0x89/0x90 [ 735.326355][ C0] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 735.332410][ C0] ? skb_ext_add+0xfa/0x810 [ 735.336897][ C0] ? br_nf_forward_ip.part.0+0x28/0x820 [ 735.342423][ C0] ? br_nf_forward+0xfe5/0x19f0 [ 735.347253][ C0] ? nf_hook_slow+0xbf/0x220 [ 735.351821][ C0] ? __br_forward+0x2f6/0x970 [ 735.356483][ C0] ? br_flood+0x37f/0x650 [ 735.360798][ C0] ? br_handle_frame_finish+0xff4/0x1f60 [ 735.366421][ C0] ? br_nf_hook_thresh+0x30d/0x420 [ 735.371518][ C0] ? br_nf_pre_routing_finish_ipv6+0x769/0xfb0 [ 735.377650][ C0] ? br_nf_pre_routing_ipv6+0x39c/0x8b0 [ 735.383177][ C0] ? br_nf_pre_routing+0x90d/0x1550 [ 735.388361][ C0] ? br_handle_frame+0xcdd/0x1520 [ 735.393374][ C0] ? __netif_receive_skb_core.constprop.0+0x6c5/0x3550 [ 735.400223][ C0] ? __netif_receive_skb_one_core+0xb0/0x1e0 [ 735.406189][ C0] ? __netif_receive_skb+0x1f/0x120 [ 735.411387][ C0] ? process_backlog+0x37a/0x1580 [ 735.416398][ C0] ? __napi_poll.constprop.0+0xaf/0x450 [ 735.421926][ C0] ? net_rx_action+0xa40/0xf20 [ 735.426673][ C0] ? handle_softirqs+0x1eb/0x9e0 [ 735.431634][ C0] kasan_save_track+0x14/0x30 [ 735.436296][ C0] __kasan_slab_alloc+0x89/0x90 [ 735.441149][ C0] kmem_cache_alloc_noprof+0x241/0x6e0 [ 735.446597][ C0] ? skb_ext_add+0xfa/0x810 [ 735.451088][ C0] skb_ext_add+0xfa/0x810 [ 735.455419][ C0] ? lock_acquire+0x1cf/0x380 [ 735.460086][ C0] ? find_held_lock+0x2b/0x80 [ 735.464743][ C0] ? net_generic+0xea/0x2a0 [ 735.469237][ C0] br_nf_forward_ip.part.0+0x28/0x820 [ 735.474599][ C0] br_nf_forward+0xfe5/0x19f0 [ 735.479263][ C0] nf_hook_slow+0xbf/0x220 [ 735.483677][ C0] __br_forward+0x2f6/0x970 [ 735.488172][ C0] ? __pfx___br_forward+0x10/0x10 [ 735.493186][ C0] ? __asan_memcpy+0x3c/0x60 [ 735.497772][ C0] ? __pfx_br_forward_finish+0x10/0x10 [ 735.503218][ C0] ? __skb_clone+0x570/0x760 [ 735.507798][ C0] br_flood+0x37f/0x650 [ 735.511967][ C0] br_handle_frame_finish+0xff4/0x1f60 [ 735.517418][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 735.523303][ C0] ? __local_bh_enable_ip+0x9e/0x120 [ 735.528584][ C0] ? ip6t_do_table+0xc1d/0x1c90 [ 735.533436][ C0] ? __pfx_ip6t_do_table+0x10/0x10 [ 735.538572][ C0] ? nf_hook_slow+0x167/0x220 [ 735.543249][ C0] br_nf_hook_thresh+0x30d/0x420 [ 735.548176][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 735.554062][ C0] ? __pfx_br_nf_hook_thresh+0x10/0x10 [ 735.559510][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 735.565493][ C0] ? __pfx_nf_nat_ipv6_in+0x10/0x10 [ 735.570680][ C0] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 735.576560][ C0] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 735.582529][ C0] br_nf_pre_routing_finish_ipv6+0x769/0xfb0 [ 735.588488][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 735.594371][ C0] br_nf_pre_routing_ipv6+0x39c/0x8b0 [ 735.599730][ C0] ? __pfx_br_nf_pre_routing_ipv6+0x10/0x10 [ 735.605702][ C0] ? lock_acquire+0x1cf/0x380 [ 735.610367][ C0] ? __pfx_br_nf_pre_routing_finish_ipv6+0x10/0x10 [ 735.616855][ C0] ? net_generic+0xea/0x2a0 [ 735.621351][ C0] br_nf_pre_routing+0x90d/0x1550 [ 735.626374][ C0] br_handle_frame+0xcdd/0x1520 [ 735.631216][ C0] ? __pfx_br_handle_frame+0x10/0x10 [ 735.636493][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 735.642378][ C0] ? __pfx_br_handle_frame+0x10/0x10 [ 735.647673][ C0] __netif_receive_skb_core.constprop.0+0x6c5/0x3550 [ 735.654346][ C0] ? mark_held_locks+0x40/0x70 [ 735.659101][ C0] ? kmem_cache_free+0x124/0x6a0 [ 735.664061][ C0] ? skb_release_data+0x7a0/0x9d0 [ 735.669070][ C0] ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10 [ 735.676166][ C0] ? kfree_skbmem+0x19f/0x210 [ 735.680833][ C0] ? sk_skb_reason_drop+0x114/0x1b0 [ 735.686031][ C0] ? ip6_mc_input+0x51a/0xf50 [ 735.690702][ C0] ? __pfx_ip6_mc_input+0x10/0x10 [ 735.695716][ C0] ? __lock_acquire+0x4a5/0x2630 [ 735.700642][ C0] ? process_backlog+0x32a/0x1580 [ 735.705671][ C0] __netif_receive_skb_one_core+0xb0/0x1e0 [ 735.711470][ C0] ? __pfx___netif_receive_skb_one_core+0x10/0x10 [ 735.717871][ C0] ? lock_acquire+0x1cf/0x380 [ 735.722535][ C0] ? process_backlog+0x32a/0x1580 [ 735.727550][ C0] ? process_backlog+0x32a/0x1580 [ 735.732558][ C0] __netif_receive_skb+0x1f/0x120 [ 735.737569][ C0] process_backlog+0x37a/0x1580 [ 735.742432][ C0] __napi_poll.constprop.0+0xaf/0x450 [ 735.747795][ C0] net_rx_action+0xa40/0xf20 [ 735.752378][ C0] ? __pfx_net_rx_action+0x10/0x10 [ 735.757478][ C0] ? mark_held_locks+0x40/0x70 [ 735.762231][ C0] ? lockdep_hardirqs_on+0x78/0x100 [ 735.767418][ C0] ? tmigr_handle_remote+0x132/0x380 [ 735.772693][ C0] ? run_timer_base+0x121/0x190 [ 735.777530][ C0] ? __pfx_run_timer_base+0x10/0x10 [ 735.782711][ C0] handle_softirqs+0x1eb/0x9e0 [ 735.787457][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 735.792725][ C0] ? __batadv_dat_purge.part.0+0x294/0x3c0 [ 735.798514][ C0] ? __pfx_batadv_dat_to_purge+0x10/0x10 [ 735.804134][ C0] do_softirq+0xac/0xe0 [ 735.808273][ C0] [ 735.811186][ C0] [ 735.814100][ C0] __local_bh_enable_ip+0xf8/0x120 [ 735.819196][ C0] __batadv_dat_purge.part.0+0x294/0x3c0 [ 735.824848][ C0] batadv_dat_purge+0x4b/0xa0 [ 735.829530][ C0] process_one_work+0xa23/0x19a0 [ 735.834462][ C0] ? __pfx_process_one_work+0x10/0x10 [ 735.839834][ C0] ? __pfx_batadv_dat_purge+0x10/0x10 [ 735.845194][ C0] rescuer_thread+0x905/0x14a0 [ 735.849951][ C0] ? rescuer_thread+0x240/0x14a0 [ 735.854873][ C0] ? rescuer_thread+0x118/0x14a0 [ 735.859795][ C0] ? __pfx_rescuer_thread+0x10/0x10 [ 735.864979][ C0] ? __kthread_parkme+0x18c/0x230 [ 735.869991][ C0] ? kthread+0x13a/0x450 [ 735.874217][ C0] ? __pfx_rescuer_thread+0x10/0x10 [ 735.879402][ C0] kthread+0x370/0x450 [ 735.883456][ C0] ? __pfx_kthread+0x10/0x10 [ 735.888050][ C0] ret_from_fork+0x754/0xd80 [ 735.892628][ C0] ? __pfx_ret_from_fork+0x10/0x10 [ 735.897747][ C0] ? __switch_to+0x7b4/0x1120 [ 735.902406][ C0] ? __pfx_kthread+0x10/0x10 [ 735.906981][ C0] ret_from_fork_asm+0x1a/0x30 [ 735.911751][ C0] [ 736.927642][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 736.942091][ T1303] ieee802154 phy1 wpan1: encryption failed: -22